Warning: Permanently added '10.128.1.175' (ED25519) to the list of known hosts.
2024/01/28 05:43:23 ignoring optional flag "sandboxArg"="0"
2024/01/28 05:43:23 parsed 1 programs
2024/01/28 05:43:23 executed programs: 0
[   42.862570][   T23] kauditd_printk_skb: 68 callbacks suppressed
[   42.862582][   T23] audit: type=1400 audit(1706420603.820:144): avc:  denied  { mounton } for  pid=403 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   42.893592][   T23] audit: type=1400 audit(1706420603.820:145): avc:  denied  { mount } for  pid=403 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[   43.131210][  T409] bridge0: port 1(bridge_slave_0) entered blocking state
[   43.138733][  T409] bridge0: port 1(bridge_slave_0) entered disabled state
[   43.146093][  T409] device bridge_slave_0 entered promiscuous mode
[   43.177652][  T414] bridge0: port 1(bridge_slave_0) entered blocking state
[   43.184705][  T414] bridge0: port 1(bridge_slave_0) entered disabled state
[   43.192754][  T414] device bridge_slave_0 entered promiscuous mode
[   43.199624][  T409] bridge0: port 2(bridge_slave_1) entered blocking state
[   43.206802][  T409] bridge0: port 2(bridge_slave_1) entered disabled state
[   43.214351][  T409] device bridge_slave_1 entered promiscuous mode
[   43.243358][  T416] bridge0: port 1(bridge_slave_0) entered blocking state
[   43.250758][  T416] bridge0: port 1(bridge_slave_0) entered disabled state
[   43.258300][  T416] device bridge_slave_0 entered promiscuous mode
[   43.265327][  T414] bridge0: port 2(bridge_slave_1) entered blocking state
[   43.272343][  T414] bridge0: port 2(bridge_slave_1) entered disabled state
[   43.279780][  T414] device bridge_slave_1 entered promiscuous mode
[   43.311472][  T416] bridge0: port 2(bridge_slave_1) entered blocking state
[   43.318860][  T416] bridge0: port 2(bridge_slave_1) entered disabled state
[   43.326282][  T416] device bridge_slave_1 entered promiscuous mode
[   43.375281][  T415] bridge0: port 1(bridge_slave_0) entered blocking state
[   43.382500][  T415] bridge0: port 1(bridge_slave_0) entered disabled state
[   43.390296][  T415] device bridge_slave_0 entered promiscuous mode
[   43.422964][  T415] bridge0: port 2(bridge_slave_1) entered blocking state
[   43.430316][  T415] bridge0: port 2(bridge_slave_1) entered disabled state
[   43.438105][  T415] device bridge_slave_1 entered promiscuous mode
[   43.499214][  T421] bridge0: port 1(bridge_slave_0) entered blocking state
[   43.506145][  T421] bridge0: port 1(bridge_slave_0) entered disabled state
[   43.514042][  T421] device bridge_slave_0 entered promiscuous mode
[   43.538132][  T421] bridge0: port 2(bridge_slave_1) entered blocking state
[   43.544988][  T421] bridge0: port 2(bridge_slave_1) entered disabled state
[   43.552648][  T421] device bridge_slave_1 entered promiscuous mode
[   43.586337][   T23] audit: type=1400 audit(1706420604.540:146): avc:  denied  { create } for  pid=409 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   43.607811][   T23] audit: type=1400 audit(1706420604.540:147): avc:  denied  { write } for  pid=409 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   43.628654][   T23] audit: type=1400 audit(1706420604.540:148): avc:  denied  { read } for  pid=409 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   43.646286][  T416] bridge0: port 2(bridge_slave_1) entered blocking state
[   43.655804][  T416] bridge0: port 2(bridge_slave_1) entered forwarding state
[   43.663324][  T416] bridge0: port 1(bridge_slave_0) entered blocking state
[   43.670416][  T416] bridge0: port 1(bridge_slave_0) entered forwarding state
[   43.684129][  T422] bridge0: port 1(bridge_slave_0) entered blocking state
[   43.691099][  T422] bridge0: port 1(bridge_slave_0) entered disabled state
[   43.698775][  T422] device bridge_slave_0 entered promiscuous mode
[   43.717026][  T422] bridge0: port 2(bridge_slave_1) entered blocking state
[   43.724590][  T422] bridge0: port 2(bridge_slave_1) entered disabled state
[   43.732306][  T422] device bridge_slave_1 entered promiscuous mode
[   43.753557][  T409] bridge0: port 2(bridge_slave_1) entered blocking state
[   43.760753][  T409] bridge0: port 2(bridge_slave_1) entered forwarding state
[   43.767868][  T409] bridge0: port 1(bridge_slave_0) entered blocking state
[   43.774784][  T409] bridge0: port 1(bridge_slave_0) entered forwarding state
[   43.884189][  T414] bridge0: port 2(bridge_slave_1) entered blocking state
[   43.891154][  T414] bridge0: port 2(bridge_slave_1) entered forwarding state
[   43.898398][  T414] bridge0: port 1(bridge_slave_0) entered blocking state
[   43.905429][  T414] bridge0: port 1(bridge_slave_0) entered forwarding state
[   43.921789][  T415] bridge0: port 2(bridge_slave_1) entered blocking state
[   43.929138][  T415] bridge0: port 2(bridge_slave_1) entered forwarding state
[   43.936708][  T415] bridge0: port 1(bridge_slave_0) entered blocking state
[   43.944028][  T415] bridge0: port 1(bridge_slave_0) entered forwarding state
[   43.961736][  T421] bridge0: port 2(bridge_slave_1) entered blocking state
[   43.969014][  T421] bridge0: port 2(bridge_slave_1) entered forwarding state
[   43.976248][  T421] bridge0: port 1(bridge_slave_0) entered blocking state
[   43.983506][  T421] bridge0: port 1(bridge_slave_0) entered forwarding state
[   44.015926][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   44.024169][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   44.031472][   T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   44.039686][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   44.047003][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   44.054888][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   44.062311][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   44.069767][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   44.076770][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   44.084480][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   44.091800][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   44.149262][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   44.156967][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   44.165310][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   44.174025][   T18] bridge0: port 1(bridge_slave_0) entered blocking state
[   44.181079][   T18] bridge0: port 1(bridge_slave_0) entered forwarding state
[   44.188984][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   44.197258][   T18] bridge0: port 2(bridge_slave_1) entered blocking state
[   44.204639][   T18] bridge0: port 2(bridge_slave_1) entered forwarding state
[   44.212711][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   44.221968][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   44.230600][   T18] bridge0: port 1(bridge_slave_0) entered blocking state
[   44.238709][   T18] bridge0: port 1(bridge_slave_0) entered forwarding state
[   44.246070][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   44.254324][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   44.275493][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   44.284010][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   44.292477][   T18] bridge0: port 2(bridge_slave_1) entered blocking state
[   44.299436][   T18] bridge0: port 2(bridge_slave_1) entered forwarding state
[   44.338206][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   44.346120][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   44.355865][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   44.364162][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   44.371974][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   44.380718][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   44.389175][   T18] bridge0: port 1(bridge_slave_0) entered blocking state
[   44.396007][   T18] bridge0: port 1(bridge_slave_0) entered forwarding state
[   44.403436][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   44.411889][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   44.420140][   T18] bridge0: port 2(bridge_slave_1) entered blocking state
[   44.427137][   T18] bridge0: port 2(bridge_slave_1) entered forwarding state
[   44.434797][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   44.442167][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   44.449887][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   44.458544][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   44.466589][   T18] bridge0: port 1(bridge_slave_0) entered blocking state
[   44.473565][   T18] bridge0: port 1(bridge_slave_0) entered forwarding state
[   44.480976][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   44.489090][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   44.497393][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   44.505775][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   44.513893][   T18] bridge0: port 2(bridge_slave_1) entered blocking state
[   44.520828][   T18] bridge0: port 2(bridge_slave_1) entered forwarding state
[   44.528091][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   44.536284][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   44.581119][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   44.590306][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   44.598670][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   44.607669][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   44.618650][  T355] bridge0: port 1(bridge_slave_0) entered blocking state
[   44.625937][  T355] bridge0: port 1(bridge_slave_0) entered forwarding state
[   44.633998][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   44.642354][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   44.650693][  T355] bridge0: port 2(bridge_slave_1) entered blocking state
[   44.657862][  T355] bridge0: port 2(bridge_slave_1) entered forwarding state
[   44.665146][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   44.673535][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   44.682194][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   44.690476][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   44.698551][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   44.706307][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   44.714411][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   44.723110][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   44.731207][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   44.739502][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   44.747420][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   44.774911][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   44.782322][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   44.789955][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   44.799760][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   44.807981][  T355] bridge0: port 1(bridge_slave_0) entered blocking state
[   44.814812][  T355] bridge0: port 1(bridge_slave_0) entered forwarding state
[   44.822223][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   44.830714][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   44.839051][  T355] bridge0: port 2(bridge_slave_1) entered blocking state
[   44.845882][  T355] bridge0: port 2(bridge_slave_1) entered forwarding state
[   44.853410][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   44.861880][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   44.870087][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   44.889885][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   44.898384][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   44.909315][   T13] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   44.938273][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   44.946973][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   44.955728][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   44.979086][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   44.987091][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   44.994994][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   45.003417][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   45.017999][  T123] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   45.026314][  T123] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   45.051131][   T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   45.059853][   T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   45.068444][   T13] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   45.076525][   T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   45.084998][   T13] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   45.093324][   T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   45.111716][   T23] audit: type=1400 audit(1706420606.070:149): avc:  denied  { mounton } for  pid=416 comm="syz-executor.3" path="/dev/binderfs" dev="devtmpfs" ino=798 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   45.153836][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   45.163566][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   45.164863][   T23] audit: type=1400 audit(1706420606.130:150): avc:  denied  { mounton } for  pid=445 comm="syz-executor.3" path="/root/syzkaller-testdir1158297752/syzkaller.bIfXHR/0/file0" dev="sda1" ino=1947 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[   45.173446][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   45.208454][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   45.216628][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   45.225142][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   45.233689][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   45.242436][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   45.250658][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   45.271263][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   45.279529][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   45.287476][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   45.296783][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   45.313258][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   45.321656][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   45.338241][  T123] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   45.346499][  T123] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   45.361412][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   45.370269][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   45.378914][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   45.387132][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   45.397944][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   45.406243][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   45.409817][  T451] ==================================================================
[   45.422122][  T451] BUG: KASAN: use-after-free in fuse_copy_one+0x1c0/0x3a0
[   45.429036][  T451] Read of size 256 at addr ffff8881d9fe7010 by task syz-executor.3/451
[   45.437278][  T451] 
[   45.439547][  T451] CPU: 0 PID: 451 Comm: syz-executor.3 Not tainted 5.4.265-syzkaller-04832-g4d7b888b5774 #0
[   45.449531][  T451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   45.459417][  T451] Call Trace:
[   45.462555][  T451]  dump_stack+0x1d8/0x241
[   45.466715][  T451]  ? nf_ct_l4proto_log_invalid+0x258/0x258
[   45.472354][  T451]  ? printk+0xd1/0x111
[   45.476260][  T451]  ? fuse_copy_one+0x1c0/0x3a0
[   45.480862][  T451]  ? wake_up_klogd+0xb2/0xf0
[   45.485288][  T451]  ? fuse_copy_one+0x1c0/0x3a0
[   45.490181][  T451]  print_address_description+0x8c/0x600
[   45.495545][  T451]  ? panic+0x896/0x896
[   45.499459][  T451]  ? _raw_spin_lock+0xa4/0x1b0
[   45.504142][  T451]  ? fuse_copy_one+0x1c0/0x3a0
[   45.508746][  T451]  __kasan_report+0xf3/0x120
[   45.513167][  T451]  ? fuse_copy_one+0x1c0/0x3a0
[   45.517794][  T451]  ? fuse_copy_one+0x1c0/0x3a0
[   45.522522][  T451]  kasan_report+0x30/0x60
[   45.526745][  T451]  check_memory_region+0x272/0x280
[   45.531806][  T451]  memcpy+0x25/0x50
[   45.535434][  T451]  fuse_copy_one+0x1c0/0x3a0
[   45.540255][  T451]  fuse_copy_args+0x339/0x410
[   45.544748][  T451]  fuse_dev_do_read+0xc1b/0x1190
[   45.549521][  T451]  ? queue_interrupt+0x310/0x310
[   45.554410][  T451]  fuse_dev_read+0x179/0x220
[   45.558969][  T451]  ? fuse_dev_release+0x5c0/0x5c0
[   45.563835][  T451]  ? do_futex+0x13c1/0x19f0
[   45.568325][  T451]  ? __lru_cache_add+0x206/0x2b0
[   45.573360][  T451]  ? iov_iter_init+0x82/0x160
[   45.577880][  T451]  __vfs_read+0x5cd/0x730
[   45.582123][  T451]  ? rw_verify_area+0x360/0x360
[   45.586808][  T451]  ? __fsnotify_update_child_dentry_flags+0x290/0x290
[   45.593414][  T451]  ? security_file_permission+0x1dc/0x2f0
[   45.599135][  T451]  vfs_read+0x148/0x360
[   45.603125][  T451]  ksys_read+0x199/0x2c0
[   45.607216][  T451]  ? vfs_write+0x4e0/0x4e0
[   45.611582][  T451]  ? __do_page_fault+0x725/0xbb0
[   45.616373][  T451]  do_syscall_64+0xca/0x1c0
[   45.621048][  T451]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[   45.626918][  T451] 
[   45.629109][  T451] Allocated by task 446:
[   45.633378][  T451]  __kasan_kmalloc+0x171/0x210
[   45.638074][  T451]  __d_alloc+0xae/0x6a0
[   45.642040][  T451]  d_alloc_parallel+0xe7/0x1310
[   45.646913][  T451]  __lookup_slow+0x156/0x460
[   45.651338][  T451]  lookup_slow+0x53/0x70
[   45.655416][  T451]  walk_component+0x2dc/0x590
[   45.659931][  T451]  path_lookupat+0x182/0x3f0
[   45.664367][  T451]  filename_lookup+0x253/0x6e0
[   45.669045][  T451]  do_mount+0x135/0xe10
[   45.673124][  T451]  ksys_mount+0xc2/0xf0
[   45.677139][  T451]  __x64_sys_mount+0xb1/0xc0
[   45.681542][  T451]  do_syscall_64+0xca/0x1c0
[   45.685880][  T451]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[   45.691808][  T451] 
[   45.693989][  T451] Freed by task 17:
[   45.697633][  T451]  __kasan_slab_free+0x1b5/0x270
[   45.702540][  T451]  kfree+0x123/0x370
[   45.706372][  T451]  rcu_do_batch+0x451/0xa00
[   45.710935][  T451]  rcu_core+0x4c8/0xcb0
[   45.715063][  T451]  __do_softirq+0x23b/0x6b7
[   45.719352][  T451] 
[   45.721631][  T451] The buggy address belongs to the object at ffff8881d9fe7000
[   45.721631][  T451]  which belongs to the cache kmalloc-rcl-512 of size 512
[   45.736833][  T451] The buggy address is located 16 bytes inside of
[   45.736833][  T451]  512-byte region [ffff8881d9fe7000, ffff8881d9fe7200)
[   45.749940][  T451] The buggy address belongs to the page:
[   45.755418][  T451] page:ffffea000767f900 refcount:1 mapcount:0 mapping:ffff8881f5c0db80 index:0x0 compound_mapcount: 0
[   45.766262][  T451] flags: 0x8000000000010200(slab|head)
[   45.771564][  T451] raw: 8000000000010200 dead000000000100 dead000000000122 ffff8881f5c0db80
[   45.780162][  T451] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[   45.788747][  T451] page dumped because: kasan: bad access detected
[   45.794997][  T451] page_owner tracks the page as allocated
[   45.800706][  T451] page last allocated via order 2, migratetype Reclaimable, gfp_mask 0x1d20d0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL|__GFP_RECLAIMABLE)
[   45.818758][  T451]  prep_new_page+0x18f/0x370
[   45.823184][  T451]  get_page_from_freelist+0x2d13/0x2d90
[   45.828650][  T451]  __alloc_pages_nodemask+0x393/0x840
[   45.833945][  T451]  alloc_slab_page+0x39/0x3c0
[   45.838456][  T451]  new_slab+0x97/0x440
[   45.842360][  T451]  ___slab_alloc+0x2fe/0x490
[   45.846959][  T451]  __slab_alloc+0x62/0xa0
[   45.851126][  T451]  __kmalloc+0x19b/0x2e0
[   45.855207][  T451]  __d_alloc+0xae/0x6a0
[   45.859202][  T451]  d_alloc_parallel+0xe7/0x1310
[   45.863888][  T451]  __lookup_slow+0x156/0x460
[   45.868670][  T451]  lookup_slow+0x53/0x70
[   45.872747][  T451]  walk_component+0x2dc/0x590
[   45.877268][  T451]  path_lookupat+0x182/0x3f0
[   45.881881][  T451]  filename_lookup+0x253/0x6e0
[   45.886703][  T451]  do_mount+0x135/0xe10
[   45.890770][  T451] page_owner free stack trace missing
[   45.896247][  T451] 
[   45.898413][  T451] Memory state around the buggy address:
[   45.903966][  T451]  ffff8881d9fe6f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   45.911984][  T451]  ffff8881d9fe6f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   45.919866][  T451] >ffff8881d9fe7000: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   45.927854][  T451]                          ^
[   45.932278][  T451]  ffff8881d9fe7080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   45.940200][  T451]  ffff8881d9fe7100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   45.948354][  T451] ==================================================================
[   45.956542][  T451] Disabling lock debugging due to kernel taint
[   45.994216][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   46.005585][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   46.017661][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   46.026064][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   46.034851][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   46.044529][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   46.062443][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   46.070569][   T23] audit: type=1400 audit(1706420607.020:151): avc:  denied  { unmount } for  pid=416 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[   46.071263][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   46.099646][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   46.108099][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
2024/01/28 05:43:28 executed programs: 16
2024/01/28 05:43:33 executed programs: 51