[ 33.988609][ T266] ip (266) used greatest stack depth: 23872 bytes left
[ 47.468863][ T332] veth2: entered promiscuous mode
[ 68.197046][ T359] 8021q: 802.1Q VLAN Support v1.8
[ 93.967169][ T397] ==================================================================
[ 93.967528][ T397] BUG: KASAN: slab-use-after-free in neigh_flush_dev.isra.0+0x5e7/0x650
[ 93.967884][ T397] Write of size 8 at addr ffff88800205cc18 by task ip/397
[ 93.968175][ T397]
[ 93.968291][ T397] CPU: 0 UID: 0 PID: 397 Comm: ip Not tainted 6.12.0-rc3-virtme #1
[ 93.968642][ T397] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014
[ 93.969163][ T397] Call Trace:
[ 93.969345][ T397]
[ 93.969465][ T397] dump_stack_lvl+0x82/0xd0
[ 93.969703][ T397] print_address_description.constprop.0+0x2c/0x3b0
[ 93.970044][ T397] ? neigh_flush_dev.isra.0+0x5e7/0x650
[ 93.970285][ T397] print_report+0xb4/0x270
[ 93.970527][ T397] ? kasan_addr_to_slab+0x25/0x80
[ 93.970773][ T397] kasan_report+0xbd/0xf0
[ 93.970959][ T397] ? neigh_flush_dev.isra.0+0x5e7/0x650
[ 93.971205][ T397] neigh_flush_dev.isra.0+0x5e7/0x650
[ 93.971445][ T397] ? lock_acquire+0x32/0xc0
[ 93.971694][ T397] __neigh_ifdown.isra.0+0x74/0x440
[ 93.971932][ T397] ? blocking_notifier_call_chain+0x50/0x90
[ 93.972238][ T397] neigh_ifdown+0x10/0x20
[ 93.972417][ T397] fib_inetaddr_event+0x1e8/0x280
[ 93.972660][ T397] notifier_call_chain+0xcd/0x150
[ 93.972902][ T397] blocking_notifier_call_chain+0x66/0x90
[ 93.973145][ T397] __inet_del_ifa+0x394/0xcd0
[ 93.973389][ T397] inet_rtm_deladdr+0x381/0x770
[ 93.973638][ T397] ? __pfx_inet_rtm_deladdr+0x10/0x10
[ 93.973908][ T397] rtnetlink_rcv_msg+0x2fb/0xc10
[ 93.974150][ T397] ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 93.974388][ T397] ? hlock_class+0x4e/0x130
[ 93.974629][ T397] ? mark_lock+0x38/0x3e0
[ 93.974848][ T397] ? __lock_acquire+0xb3f/0x1580
[ 93.975102][ T397] netlink_rcv_skb+0x130/0x360
[ 93.975346][ T397] ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 93.975588][ T397] ? __pfx_netlink_rcv_skb+0x10/0x10
[ 93.975844][ T397] ? netlink_deliver_tap+0x13e/0x340
[ 93.976083][ T397] ? netlink_deliver_tap+0xc3/0x340
[ 93.976345][ T397] netlink_unicast+0x44b/0x710
[ 93.976598][ T397] ? __pfx_netlink_unicast+0x10/0x10
[ 93.976833][ T397] ? find_held_lock+0x2c/0x110
[ 93.977062][ T397] netlink_sendmsg+0x723/0xbe0
[ 93.977297][ T397] ? __pfx_netlink_sendmsg+0x10/0x10
[ 93.977531][ T397] ? __might_fault+0xc3/0x170
[ 93.977793][ T397] ? __import_iovec+0x35d/0x5d0
[ 93.978039][ T397] ____sys_sendmsg+0x7ac/0xa10
[ 93.978286][ T397] ? __pfx_____sys_sendmsg+0x10/0x10
[ 93.978517][ T397] ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 93.978804][ T397] ___sys_sendmsg+0xee/0x170
[ 93.979026][ T397] ? __pfx_stack_trace_save+0x10/0x10
[ 93.979256][ T397] ? __pfx____sys_sendmsg+0x10/0x10
[ 93.979509][ T397] ? __pfx_validate_chain+0x10/0x10
[ 93.979747][ T397] ? __pfx_slab_free_after_rcu_debug+0x10/0x10
[ 93.980043][ T397] ? kasan_save_stack+0x34/0x50
[ 93.980297][ T397] ? kasan_save_stack+0x24/0x50
[ 93.980533][ T397] ? __kasan_record_aux_stack+0x8e/0xa0
[ 93.980774][ T397] ? __call_rcu_common.constprop.0+0xa1/0x4b0
[ 93.981086][ T397] ? __x64_sys_close+0x7c/0xd0
[ 93.981327][ T397] ? do_syscall_64+0xc1/0x1d0
[ 93.981575][ T397] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 93.981868][ T397] ? __lock_acquire+0xb3f/0x1580
[ 93.982128][ T397] ? find_held_lock+0x2c/0x110
[ 93.982372][ T397] ? __lock_release+0x103/0x460
[ 93.982612][ T397] ? fdget+0x52/0x1e0
[ 93.982799][ T397] __sys_sendmsg+0xcd/0x170
[ 93.983040][ T397] ? __pfx___sys_sendmsg+0x10/0x10
[ 93.983276][ T397] ? __virt_addr_valid+0x22b/0x430
[ 93.983531][ T397] do_syscall_64+0xc1/0x1d0
[ 93.983803][ T397] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 93.984098][ T397] RIP: 0033:0x7feaaeef07b7
[ 93.984348][ T397] Code: 0a 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b9 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 2e 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 51 c3 48 83 ec 28 89 54 24 1c 48 89 74 24 10
[ 93.985230][ T397] RSP: 002b:00007ffd4f0cbf48 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 93.985607][ T397] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007feaaeef07b7
[ 93.985965][ T397] RDX: 0000000000000000 RSI: 00007ffd4f0cbfb0 RDI: 0000000000000005
[ 93.986321][ T397] RBP: 0000000000000000 R08: 0000000000000003 R09: 0000000000000078
[ 93.986701][ T397] R10: 00007feaaedaeef8 R11: 0000000000000246 R12: 00007ffd4f0cc700
[ 93.987056][ T397] R13: 00000000671670a7 R14: 0000000000496600 R15: 00007ffd4f0cc708
[ 93.987442][ T397]
[ 93.987629][ T397]
[ 93.987749][ T397] Allocated by task 396:
[ 93.987933][ T397] kasan_save_stack+0x24/0x50
[ 93.988173][ T397] kasan_save_track+0x14/0x30
[ 93.988430][ T397] __kasan_kmalloc+0x7f/0x90
[ 93.988670][ T397] __kmalloc_noprof+0x1ab/0x3a0
[ 93.988910][ T397] p9_fcall_init+0x7d/0x220
[ 93.989150][ T397] p9_tag_alloc+0x1bd/0x700
[ 93.989392][ T397] p9_client_prepare_req+0xe6/0x290
[ 93.989628][ T397] p9_client_rpc+0x18d/0x930
[ 93.989868][ T397] p9_client_read_once+0x1f1/0x860
[ 93.990106][ T397] p9_client_read+0xfd/0x160
[ 93.990346][ T397] v9fs_issue_read+0x10c/0x2d0
[ 93.990585][ T397] netfs_dispatch_unbuffered_reads.isra.0+0x4e6/0x8f0
[ 93.990880][ T397] netfs_unbuffered_read+0x8e/0x310
[ 93.991114][ T397] netfs_unbuffered_read_iter_locked+0x52e/0x6f0
[ 93.991414][ T397] netfs_unbuffered_read_iter+0xa4/0xe0
[ 93.991637][ T397] do_iter_readv_writev+0x433/0x670
[ 93.991864][ T397] vfs_iter_read+0x11e/0x520
[ 93.992083][ T397] backing_file_read_iter+0x4c8/0x6f0
[ 93.992308][ T397] ovl_read_iter+0x200/0x270
[ 93.992534][ T397] vfs_read+0x74c/0xcd0
[ 93.992705][ T397] ksys_read+0xf5/0x1e0
[ 93.992873][ T397] do_syscall_64+0xc1/0x1d0
[ 93.993112][ T397] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 93.993395][ T397]
[ 93.993514][ T397] Freed by task 1802201963:
[ 93.993741][ T397] ------------[ cut here ]------------
[ 93.994018][ T397] pool index 93034 out of bounds (586) for stack id 6b6b6b6b
[ 93.994407][ T397] WARNING: CPU: 0 PID: 397 at lib/stackdepot.c:451 depot_fetch_stack+0x96/0xc0
[ 93.994844][ T397] Modules linked in: 8021q vrf veth
[ 93.995109][ T397] CPU: 0 UID: 0 PID: 397 Comm: ip Not tainted 6.12.0-rc3-virtme #1
[ 93.995475][ T397] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014
[ 93.996052][ T397] RIP: 0010:depot_fetch_stack+0x96/0xc0
[ 93.996315][ T397] Code: b8 11 ed af e8 cb c0 9a 01 83 f8 01 75 b8 90 0f 0b 90 eb b2 90 48 c7 c7 28 47 60 af 44 89 e1 44 89 ea 89 ee e8 7b f2 0d ff 90 <0f> 0b 90 90 31 c0 eb bb 90 0f 0b 90 eb b5 90 0f 0b 90 31 c0 eb ad
[ 93.997226][ T397] RSP: 0018:ffffc9000071f200 EFLAGS: 00010086
[ 93.997533][ T397] RAX: 0000000000000000 RBX: 0000000000001b50 RCX: 1ffffffff5f3b43c
[ 93.997910][ T397] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000001
[ 93.998283][ T397] RBP: 0000000000016b6a R08: 0000000000000000 R09: fffffbfff5f3b43c
[ 93.998654][ T397] R10: 0000000000000003 R11: 205d373933542020 R12: 000000006b6b6b6b
[ 93.999021][ T397] R13: 000000000000024a R14: 0000000000000008 R15: ffff888006ada300
[ 93.999411][ T397] FS: 00007feaaece4800(0000) GS:ffff888036000000(0000) knlGS:0000000000000000
[ 93.999845][ T397] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 94.000179][ T397] CR2: 00000000004e3370 CR3: 0000000005f9a003 CR4: 0000000000772ef0
[ 94.000560][ T397] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 94.000947][ T397] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 94.001348][ T397] PKRU: 55555554
[ 94.001547][ T397] Call Trace:
[ 94.001734][ T397]
[ 94.001873][ T397] ? depot_fetch_stack+0x96/0xc0
[ 94.002137][ T397] ? __warn+0xd1/0x1c0
[ 94.002332][ T397] ? depot_fetch_stack+0x96/0xc0
[ 94.002600][ T397] ? report_bug+0x28c/0x2d0
[ 94.002847][ T397] ? handle_bug+0x54/0xa0
[ 94.003035][ T397] ? exc_invalid_op+0x18/0x50
[ 94.003274][ T397] ? asm_exc_invalid_op+0x1a/0x20
[ 94.003548][ T397] ? depot_fetch_stack+0x96/0xc0
[ 94.003933][ T397] ? neigh_flush_dev.isra.0+0x5e7/0x650
[ 94.004180][ T397] stack_depot_fetch+0x42/0x80
[ 94.004470][ T397] stack_depot_print+0x20/0x60
[ 94.004700][ T397] print_address_description.constprop.0+0x335/0x3b0
[ 94.005022][ T397] ? neigh_flush_dev.isra.0+0x5e7/0x650
[ 94.005266][ T397] print_report+0xb4/0x270
[ 94.005514][ T397] ? kasan_addr_to_slab+0x25/0x80
[ 94.005771][ T397] kasan_report+0xbd/0xf0
[ 94.005959][ T397] ? neigh_flush_dev.isra.0+0x5e7/0x650
[ 94.006205][ T397] neigh_flush_dev.isra.0+0x5e7/0x650
[ 94.006449][ T397] ? lock_acquire+0x32/0xc0
[ 94.006721][ T397] __neigh_ifdown.isra.0+0x74/0x440
[ 94.006990][ T397] ? blocking_notifier_call_chain+0x50/0x90
[ 94.007304][ T397] neigh_ifdown+0x10/0x20
[ 94.007491][ T397] fib_inetaddr_event+0x1e8/0x280
[ 94.007742][ T397] notifier_call_chain+0xcd/0x150
[ 94.008020][ T397] blocking_notifier_call_chain+0x66/0x90
[ 94.008269][ T397] __inet_del_ifa+0x394/0xcd0
[ 94.008554][ T397] inet_rtm_deladdr+0x381/0x770
[ 94.008815][ T397] ? __pfx_inet_rtm_deladdr+0x10/0x10
[ 94.009086][ T397] rtnetlink_rcv_msg+0x2fb/0xc10
[ 94.009334][ T397] ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 94.009612][ T397] ? hlock_class+0x4e/0x130
[ 94.009867][ T397] ? mark_lock+0x38/0x3e0
[ 94.010070][ T397] ? __lock_acquire+0xb3f/0x1580
[ 94.010474][ T397] netlink_rcv_skb+0x130/0x360
[ 94.010690][ T397] ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 94.010952][ T397] ? __pfx_netlink_rcv_skb+0x10/0x10
[ 94.011214][ T397] ? netlink_deliver_tap+0x13e/0x340
[ 94.011586][ T397] ? netlink_deliver_tap+0xc3/0x340
[ 94.011874][ T397] netlink_unicast+0x44b/0x710
[ 94.012130][ T397] ? __pfx_netlink_unicast+0x10/0x10
[ 94.012384][ T397] ? find_held_lock+0x2c/0x110
[ 94.012635][ T397] netlink_sendmsg+0x723/0xbe0
[ 94.012891][ T397] ? __pfx_netlink_sendmsg+0x10/0x10
[ 94.013140][ T397] ? __might_fault+0xc3/0x170
[ 94.013410][ T397] ? __import_iovec+0x35d/0x5d0
[ 94.013664][ T397] ____sys_sendmsg+0x7ac/0xa10
[ 94.014170][ T397] ? __pfx_____sys_sendmsg+0x10/0x10
[ 94.014394][ T397] ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 94.014708][ T397] ___sys_sendmsg+0xee/0x170
[ 94.014959][ T397] ? __pfx_stack_trace_save+0x10/0x10
[ 94.015330][ T397] ? __pfx____sys_sendmsg+0x10/0x10
[ 94.015558][ T397] ? __pfx_validate_chain+0x10/0x10
[ 94.015815][ T397] ? __pfx_slab_free_after_rcu_debug+0x10/0x10
[ 94.016121][ T397] ? kasan_save_stack+0x34/0x50
[ 94.016496][ T397] ? kasan_save_stack+0x24/0x50
[ 94.016742][ T397] ? __kasan_record_aux_stack+0x8e/0xa0
[ 94.016992][ T397] ? __call_rcu_common.constprop.0+0xa1/0x4b0
[ 94.017300][ T397] ? __x64_sys_close+0x7c/0xd0
[ 94.017678][ T397] ? do_syscall_64+0xc1/0x1d0
[ 94.017913][ T397] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.018225][ T397] ? __lock_acquire+0xb3f/0x1580
[ 94.018482][ T397] ? find_held_lock+0x2c/0x110
[ 94.018740][ T397] ? __lock_release+0x103/0x460
[ 94.019004][ T397] ? fdget+0x52/0x1e0
[ 94.019215][ T397] __sys_sendmsg+0xcd/0x170
[ 94.019475][ T397] ? __pfx___sys_sendmsg+0x10/0x10
[ 94.019882][ T397] ? __virt_addr_valid+0x22b/0x430
[ 94.020096][ T397] do_syscall_64+0xc1/0x1d0
[ 94.020349][ T397] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.020666][ T397] RIP: 0033:0x7feaaeef07b7
[ 94.021083][ T397] Code: 0a 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b9 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 2e 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 51 c3 48 83 ec 28 89 54 24 1c 48 89 74 24 10
[ 94.021910][ T397] RSP: 002b:00007ffd4f0cbf48 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 94.022420][ T397] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007feaaeef07b7
[ 94.022823][ T397] RDX: 0000000000000000 RSI: 00007ffd4f0cbfb0 RDI: 0000000000000005
[ 94.023231][ T397] RBP: 0000000000000000 R08: 0000000000000003 R09: 0000000000000078
[ 94.023742][ T397] R10: 00007feaaedaeef8 R11: 0000000000000246 R12: 00007ffd4f0cc700
[ 94.024132][ T397] R13: 00000000671670a7 R14: 0000000000496600 R15: 00007ffd4f0cc708
[ 94.024697][ T397]
[ 94.024855][ T397] irq event stamp: 72701
[ 94.025003][ T397] hardirqs last enabled at (72699): [] _raw_spin_unlock_irqrestore+0x51/0x70
[ 94.025490][ T397] hardirqs last disabled at (72701): [] _raw_spin_lock_irqsave+0x58/0x60
[ 94.025975][ T397] softirqs last enabled at (72364): [] handle_softirqs+0x32e/0x5c0
[ 94.026413][ T397] softirqs last disabled at (72700): [] __neigh_ifdown.isra.0+0x2e/0x440
[ 94.027029][ T397] ---[ end trace 0000000000000000 ]---
[ 94.027235][ T397] ------------[ cut here ]------------
[ 94.027467][ T397] corrupt handle or use after stack_depot_put()
[ 94.027517][ T397] WARNING: CPU: 0 PID: 397 at lib/stackdepot.c:711 stack_depot_fetch+0x6f/0x80
[ 94.028306][ T397] Modules linked in: 8021q vrf veth
[ 94.028539][ T397] CPU: 0 UID: 0 PID: 397 Comm: ip Tainted: G W 6.12.0-rc3-virtme #1
[ 94.029119][ T397] Tainted: [W]=WARN
[ 94.029261][ T397] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014
[ 94.029786][ T397] RIP: 0010:stack_depot_fetch+0x6f/0x80
[ 94.030034][ T397] Code: 74 1a 48 8d 50 20 48 89 13 5b 8b 40 14 5d 41 5c c3 cc cc cc cc 31 c0 c3 cc cc cc cc 90 48 c7 c7 08 48 60 af e8 62 ed 0d ff 90 <0f> 0b 90 90 eb bb 66 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90
[ 94.031052][ T397] RSP: 0018:ffffc9000071f228 EFLAGS: 00010086
[ 94.031499][ T397] RAX: 0000000000000000 RBX: ffffc9000071f248 RCX: 1ffffffff5f3b43c
[ 94.031803][ T397] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000001
[ 94.032177][ T397] RBP: 000000006b6b6b6b R08: 0000000000000000 R09: fffffbfff5f3b43c
[ 94.032673][ T397] R10: 0000000000000003 R11: 65737520726f2065 R12: 0000000000000000
[ 94.033035][ T397] R13: ffffffffae079707 R14: 0000000000000008 R15: ffff888006ada300
[ 94.033405][ T397] FS: 00007feaaece4800(0000) GS:ffff888036000000(0000) knlGS:0000000000000000
[ 94.033836][ T397] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 94.034142][ T397] CR2: 00000000004e3370 CR3: 0000000005f9a003 CR4: 0000000000772ef0
[ 94.034513][ T397] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 94.035020][ T397] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 94.035399][ T397] PKRU: 55555554
[ 94.035578][ T397] Call Trace:
[ 94.035769][ T397]
[ 94.036014][ T397] ? stack_depot_fetch+0x6f/0x80
[ 94.036215][ T397] ? __warn+0xd1/0x1c0
[ 94.036397][ T397] ? nbcon_get_cpu_emergency_nesting+0xa/0x30
[ 94.036704][ T397] ? stack_depot_fetch+0x6f/0x80
[ 94.037069][ T397] ? report_bug+0x28c/0x2d0
[ 94.037298][ T397] ? handle_bug+0x54/0xa0
[ 94.037481][ T397] ? exc_invalid_op+0x18/0x50
[ 94.037751][ T397] ? asm_exc_invalid_op+0x1a/0x20
[ 94.038016][ T397] ? neigh_flush_dev.isra.0+0x5e7/0x650
[ 94.038395][ T397] ? stack_depot_fetch+0x6f/0x80
[ 94.038586][ T397] ? stack_depot_fetch+0x6e/0x80
[ 94.038823][ T397] stack_depot_print+0x20/0x60
[ 94.039055][ T397] print_address_description.constprop.0+0x335/0x3b0
[ 94.039528][ T397] ? neigh_flush_dev.isra.0+0x5e7/0x650
[ 94.039790][ T397] print_report+0xb4/0x270
[ 94.040051][ T397] ? kasan_addr_to_slab+0x25/0x80
[ 94.040318][ T397] kasan_report+0xbd/0xf0
[ 94.040520][ T397] ? neigh_flush_dev.isra.0+0x5e7/0x650
[ 94.040765][ T397] neigh_flush_dev.isra.0+0x5e7/0x650
[ 94.041045][ T397] ? lock_acquire+0x32/0xc0
[ 94.041316][ T397] __neigh_ifdown.isra.0+0x74/0x440
[ 94.041510][ T397] ? blocking_notifier_call_chain+0x50/0x90
[ 94.041812][ T397] neigh_ifdown+0x10/0x20
[ 94.042013][ T397] fib_inetaddr_event+0x1e8/0x280
[ 94.042258][ T397] notifier_call_chain+0xcd/0x150
[ 94.042503][ T397] blocking_notifier_call_chain+0x66/0x90
[ 94.042897][ T397] __inet_del_ifa+0x394/0xcd0
[ 94.043158][ T397] inet_rtm_deladdr+0x381/0x770
[ 94.043404][ T397] ? __pfx_inet_rtm_deladdr+0x10/0x10
[ 94.043695][ T397] rtnetlink_rcv_msg+0x2fb/0xc10
[ 94.044113][ T397] ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 94.044335][ T397] ? hlock_class+0x4e/0x130
[ 94.044589][ T397] ? mark_lock+0x38/0x3e0
[ 94.044796][ T397] ? __lock_acquire+0xb3f/0x1580
[ 94.045067][ T397] netlink_rcv_skb+0x130/0x360
[ 94.045436][ T397] ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 94.045685][ T397] ? __pfx_netlink_rcv_skb+0x10/0x10
[ 94.045952][ T397] ? netlink_deliver_tap+0x13e/0x340
[ 94.046221][ T397] ? netlink_deliver_tap+0xc3/0x340
[ 94.046602][ T397] netlink_unicast+0x44b/0x710
[ 94.046826][ T397] ? __pfx_netlink_unicast+0x10/0x10
[ 94.047081][ T397] ? find_held_lock+0x2c/0x110
[ 94.047337][ T397] netlink_sendmsg+0x723/0xbe0
[ 94.047581][ T397] ? __pfx_netlink_sendmsg+0x10/0x10
[ 94.047836][ T397] ? __might_fault+0xc3/0x170
[ 94.048090][ T397] ? __import_iovec+0x35d/0x5d0
[ 94.048350][ T397] ____sys_sendmsg+0x7ac/0xa10
[ 94.048764][ T397] ? __pfx_____sys_sendmsg+0x10/0x10
[ 94.048969][ T397] ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 94.049292][ T397] ___sys_sendmsg+0xee/0x170
[ 94.049543][ T397] ? __pfx_stack_trace_save+0x10/0x10
[ 94.049917][ T397] ? __pfx____sys_sendmsg+0x10/0x10
[ 94.050154][ T397] ? __pfx_validate_chain+0x10/0x10
[ 94.050404][ T397] ? __pfx_slab_free_after_rcu_debug+0x10/0x10
[ 94.050714][ T397] ? kasan_save_stack+0x34/0x50
[ 94.051208][ T397] ? kasan_save_stack+0x24/0x50
[ 94.051413][ T397] ? __kasan_record_aux_stack+0x8e/0xa0
[ 94.051663][ T397] ? __call_rcu_common.constprop.0+0xa1/0x4b0
[ 94.051977][ T397] ? __x64_sys_close+0x7c/0xd0
[ 94.052353][ T397] ? do_syscall_64+0xc1/0x1d0
[ 94.052589][ T397] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.052901][ T397] ? __lock_acquire+0xb3f/0x1580
[ 94.053157][ T397] ? find_held_lock+0x2c/0x110
[ 94.053574][ T397] ? __lock_release+0x103/0x460
[ 94.053789][ T397] ? fdget+0x52/0x1e0
[ 94.053912][ T397] __sys_sendmsg+0xcd/0x170
[ 94.054072][ T397] ? __pfx___sys_sendmsg+0x10/0x10
[ 94.054230][ T397] ? __virt_addr_valid+0x22b/0x430
[ 94.054417][ T397] do_syscall_64+0xc1/0x1d0
[ 94.054611][ T397] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.054807][ T397] RIP: 0033:0x7feaaeef07b7
[ 94.054971][ T397] Code: 0a 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b9 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 2e 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 51 c3 48 83 ec 28 89 54 24 1c 48 89 74 24 10
[ 94.055618][ T397] RSP: 002b:00007ffd4f0cbf48 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 94.055949][ T397] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007feaaeef07b7
[ 94.056182][ T397] RDX: 0000000000000000 RSI: 00007ffd4f0cbfb0 RDI: 0000000000000005
[ 94.056416][ T397] RBP: 0000000000000000 R08: 0000000000000003 R09: 0000000000000078
[ 94.056735][ T397] R10: 00007feaaedaeef8 R11: 0000000000000246 R12: 00007ffd4f0cc700
[ 94.057000][ T397] R13: 00000000671670a7 R14: 0000000000496600 R15: 00007ffd4f0cc708
[ 94.057239][ T397]
[ 94.057444][ T397] irq event stamp: 72701
[ 94.057562][ T397] hardirqs last enabled at (72699): [] _raw_spin_unlock_irqrestore+0x51/0x70
[ 94.057876][ T397] hardirqs last disabled at (72701): [] _raw_spin_lock_irqsave+0x58/0x60
[ 94.058267][ T397] softirqs last enabled at (72364): [] handle_softirqs+0x32e/0x5c0
[ 94.058554][ T397] softirqs last disabled at (72700): [] __neigh_ifdown.isra.0+0x2e/0x440
[ 94.058944][ T397] ---[ end trace 0000000000000000 ]---
[ 94.059100][ T397]
[ 94.059179][ T397] The buggy address belongs to the object at ffff88800205cc00
[ 94.059179][ T397] which belongs to the cache kmalloc-1k of size 1024
[ 94.059527][ T397] The buggy address is located 24 bytes inside of
[ 94.059527][ T397] freed 1024-byte region [ffff88800205cc00, ffff88800205d000)
[ 94.059938][ T397]
[ 94.060010][ T397] The buggy address belongs to the physical page:
[ 94.060174][ T397] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88800205cc00 pfn:0x2058
[ 94.060564][ T397] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 94.060789][ T397] flags: 0x80000000000240(workingset|head|node=0|zone=1)
[ 94.061067][ T397] page_type: f5(slab)
[ 94.061187][ T397] raw: 0080000000000240 ffff8880010430c0 ffff888001040e48 ffffea0000175410
[ 94.061451][ T397] raw: ffff88800205cc00 00000000000a0007 00000001f5000000 0000000000000000
[ 94.061798][ T397] head: 0080000000000240 ffff8880010430c0 ffff888001040e48 ffffea0000175410
[ 94.062076][ T397] head: ffff88800205cc00 00000000000a0007 00000001f5000000 0000000000000000
[ 94.062342][ T397] head: 0080000000000003 ffffea0000081601 ffffffffffffffff 0000000000000000
[ 94.062706][ T397] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[ 94.062969][ T397] page dumped because: kasan: bad access detected
[ 94.063163][ T397]
[ 94.063243][ T397] Memory state around the buggy address:
[ 94.063390][ T397] ffff88800205cb00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 94.063634][ T397] ffff88800205cb80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 94.064031][ T397] >ffff88800205cc00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 94.064258][ T397] ^
[ 94.064415][ T397] ffff88800205cc80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 94.064710][ T397] ffff88800205cd00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 94.064937][ T397] ==================================================================
[ 94.065190][ T397] Disabling lock debugging due to kernel taint
[ 94.065573][ T397] Oops: general protection fault, probably for non-canonical address 0xed6d696d6d6d6d6d: 0000 [#1] PREEMPT SMP KASAN NOPTI
[ 94.065939][ T397] KASAN: maybe wild-memory-access in range [0x6b6b6b6b6b6b6b68-0x6b6b6b6b6b6b6b6f]
[ 94.066207][ T397] CPU: 0 UID: 0 PID: 397 Comm: ip Tainted: G B W 6.12.0-rc3-virtme #1
[ 94.066476][ T397] Tainted: [B]=BAD_PAGE, [W]=WARN
[ 94.066624][ T397] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014
[ 94.067037][ T397] RIP: 0010:neigh_flush_dev.isra.0+0x10a/0x650
[ 94.067229][ T397] Code: 0f 85 ef 04 00 00 49 8d 7f 08 49 8b 1f 48 89 f8 48 c1 e8 03 42 80 3c 28 00 0f 85 cc 04 00 00 49 8b 6f 08 48 89 e8 48 c1 e8 03 <42> 80 3c 28 00 0f 85 19 05 00 00 48 89 5d 00 48 85 db 74 1a 48 8d
[ 94.067844][ T397] RSP: 0018:ffffc9000071f388 EFLAGS: 00010202
[ 94.068033][ T397] RAX: 0d6d6d6d6d6d6d6d RBX: 6b6b6b6b6b6b6b6b RCX: ffffffffae0796f0
[ 94.068261][ T397] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88800205cc08
[ 94.068490][ T397] RBP: 6b6b6b6b6b6b6b6b R08: 0000000000000000 R09: 0000000000000000
[ 94.068714][ T397] R10: ffffffffb0571f0f R11: ffffffffac7ec8d4 R12: ffff88800205cd3c
[ 94.069017][ T397] R13: dffffc0000000000 R14: ffff8880079c1000 R15: ffff88800205cc00
[ 94.069235][ T397] FS: 00007feaaece4800(0000) GS:ffff888036000000(0000) knlGS:0000000000000000
[ 94.069492][ T397] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 94.069763][ T397] CR2: 00000000004e3370 CR3: 0000000005f9a003 CR4: 0000000000772ef0
[ 94.069984][ T397] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 94.070205][ T397] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 94.070422][ T397] PKRU: 55555554
[ 94.070536][ T397] Call Trace:
[ 94.070652][ T397]
[ 94.070728][ T397] ? die_addr+0x41/0xa0
[ 94.070848][ T397] ? exc_general_protection+0x14d/0x230
[ 94.071090][ T397] ? asm_exc_general_protection+0x26/0x30
[ 94.071236][ T397] ? kasan_save_stack+0x24/0x50
[ 94.071382][ T397] ? neigh_flush_dev.isra.0+0x5d0/0x650
[ 94.071540][ T397] ? neigh_flush_dev.isra.0+0x10a/0x650
[ 94.071766][ T397] ? neigh_flush_dev.isra.0+0x5d0/0x650
[ 94.071907][ T397] ? lock_acquire+0x32/0xc0
[ 94.072043][ T397] __neigh_ifdown.isra.0+0x74/0x440
[ 94.072184][ T397] ? blocking_notifier_call_chain+0x50/0x90
[ 94.072436][ T397] neigh_ifdown+0x10/0x20
[ 94.072542][ T397] fib_inetaddr_event+0x1e8/0x280
[ 94.072675][ T397] notifier_call_chain+0xcd/0x150
[ 94.072826][ T397] blocking_notifier_call_chain+0x66/0x90
[ 94.073033][ T397] __inet_del_ifa+0x394/0xcd0
[ 94.073188][ T397] inet_rtm_deladdr+0x381/0x770
[ 94.073334][ T397] ? __pfx_inet_rtm_deladdr+0x10/0x10
[ 94.073473][ T397] rtnetlink_rcv_msg+0x2fb/0xc10
[ 94.073628][ T397] ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 94.073912][ T397] ? hlock_class+0x4e/0x130
[ 94.074071][ T397] ? mark_lock+0x38/0x3e0
[ 94.074172][ T397] ? __lock_acquire+0xb3f/0x1580
[ 94.074312][ T397] netlink_rcv_skb+0x130/0x360
[ 94.074536][ T397] ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 94.074674][ T397] ? __pfx_netlink_rcv_skb+0x10/0x10
[ 94.074814][ T397] ? netlink_deliver_tap+0x13e/0x340
[ 94.074981][ T397] ? netlink_deliver_tap+0xc3/0x340
[ 94.075216][ T397] netlink_unicast+0x44b/0x710
[ 94.075379][ T397] ? __pfx_netlink_unicast+0x10/0x10
[ 94.075530][ T397] ? find_held_lock+0x2c/0x110
[ 94.075678][ T397] netlink_sendmsg+0x723/0xbe0
[ 94.075825][ T397] ? __pfx_netlink_sendmsg+0x10/0x10
[ 94.076055][ T397] ? __might_fault+0xc3/0x170
[ 94.076201][ T397] ? __import_iovec+0x35d/0x5d0
[ 94.076368][ T397] ____sys_sendmsg+0x7ac/0xa10
[ 94.076499][ T397] ? __pfx_____sys_sendmsg+0x10/0x10
[ 94.076742][ T397] ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 94.076933][ T397] ___sys_sendmsg+0xee/0x170
[ 94.077091][ T397] ? __pfx_stack_trace_save+0x10/0x10
[ 94.077244][ T397] ? __pfx____sys_sendmsg+0x10/0x10
[ 94.077469][ T397] ? __pfx_validate_chain+0x10/0x10
[ 94.077604][ T397] ? __pfx_slab_free_after_rcu_debug+0x10/0x10
[ 94.077769][ T397] ? kasan_save_stack+0x34/0x50
[ 94.077898][ T397] ? kasan_save_stack+0x24/0x50
[ 94.078108][ T397] ? __kasan_record_aux_stack+0x8e/0xa0
[ 94.078244][ T397] ? __call_rcu_common.constprop.0+0xa1/0x4b0
[ 94.078414][ T397] ? __x64_sys_close+0x7c/0xd0
[ 94.078568][ T397] ? do_syscall_64+0xc1/0x1d0
[ 94.078808][ T397] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.078968][ T397] ? __lock_acquire+0xb3f/0x1580
[ 94.079112][ T397] ? find_held_lock+0x2c/0x110
[ 94.079248][ T397] ? __lock_release+0x103/0x460
[ 94.079460][ T397] ? fdget+0x52/0x1e0
[ 94.079568][ T397] __sys_sendmsg+0xcd/0x170
[ 94.079699][ T397] ? __pfx___sys_sendmsg+0x10/0x10
[ 94.079828][ T397] ? __virt_addr_valid+0x22b/0x430
[ 94.080043][ T397] do_syscall_64+0xc1/0x1d0
[ 94.080175][ T397] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.080351][ T397] RIP: 0033:0x7feaaeef07b7
[ 94.080492][ T397] Code: 0a 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b9 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 2e 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 51 c3 48 83 ec 28 89 54 24 1c 48 89 74 24 10
[ 94.081047][ T397] RSP: 002b:00007ffd4f0cbf48 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 94.081247][ T397] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007feaaeef07b7
[ 94.081533][ T397] RDX: 0000000000000000 RSI: 00007ffd4f0cbfb0 RDI: 0000000000000005
[ 94.081728][ T397] RBP: 0000000000000000 R08: 0000000000000003 R09: 0000000000000078
[ 94.082002][ T397] R10: 00007feaaedaeef8 R11: 0000000000000246 R12: 00007ffd4f0cc700
[ 94.082206][ T397] R13: 00000000671670a7 R14: 0000000000496600 R15: 00007ffd4f0cc708
[ 94.082412][ T397]
[ 94.082521][ T397] Modules linked in: 8021q vrf veth
[ 94.082769][ T397] ---[ end trace 0000000000000000 ]---
[ 94.082903][ T397] RIP: 0010:neigh_flush_dev.isra.0+0x10a/0x650
[ 94.083070][ T397] Code: 0f 85 ef 04 00 00 49 8d 7f 08 49 8b 1f 48 89 f8 48 c1 e8 03 42 80 3c 28 00 0f 85 cc 04 00 00 49 8b 6f 08 48 89 e8 48 c1 e8 03 <42> 80 3c 28 00 0f 85 19 05 00 00 48 89 5d 00 48 85 db 74 1a 48 8d
[ 94.083619][ T397] RSP: 0018:ffffc9000071f388 EFLAGS: 00010202
[ 94.083820][ T397] RAX: 0d6d6d6d6d6d6d6d RBX: 6b6b6b6b6b6b6b6b RCX: ffffffffae0796f0
[ 94.084090][ T397] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88800205cc08
[ 94.084286][ T397] RBP: 6b6b6b6b6b6b6b6b R08: 0000000000000000 R09: 0000000000000000
[ 94.084486][ T397] R10: ffffffffb0571f0f R11: ffffffffac7ec8d4 R12: ffff88800205cd3c
[ 94.084755][ T397] R13: dffffc0000000000 R14: ffff8880079c1000 R15: ffff88800205cc00
[ 94.084975][ T397] FS: 00007feaaece4800(0000) GS:ffff888036000000(0000) knlGS:0000000000000000
[ 94.085305][ T397] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 94.085576][ T397] CR2: 00000000004e3370 CR3: 0000000005f9a003 CR4: 0000000000772ef0
[ 94.085794][ T397] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 94.086008][ T397] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 94.086392][ T397] PKRU: 55555554
[ 94.086511][ T397] Kernel panic - not syncing: Fatal exception in interrupt
[ 94.086824][ T397] Kernel Offset: 0x2ac00000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff)
[ 94.087231][ T397] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---
WAIT TIMEOUT stderr
Ctrl-C stderr
Ctrl-C stderr
WAIT TIMEOUT stderr