[ 4331.367900][ T1933] eth1: renamed from tmp
[ 4377.800327][ T2384] eth1: renamed from tmp
[ 4424.605383][ T2838] eth1: renamed from tmp
[ 4473.953462][ T3302] eth1: renamed from tmp
[ 4524.039784][ T3767] eth1: renamed from tmp
[ 4676.371742][ T4997] eth1: renamed from tmp
[ 4700.044222][ T5262] eth2: renamed from tmp
[ 4819.429104][ T6176] eth1: renamed from tmp
[ 4961.169195][ T7871] eth1: renamed from tmp
[ 5034.351432][ T8722] eth1: renamed from tmp
[ 5054.065717][ T8907] eth1: renamed from tmp
[ 5079.297771][ T9149] eth1: renamed from tmp
[ 5097.587463][ T9278] eth1: renamed from tmp
[ 5113.594020][ T9407] eth1: renamed from tmp
[ 5131.590691][ T9543] eth1: renamed from tmp
[ 5149.748571][ T9678] eth1: renamed from tmp
[ 5167.846577][ T9813] eth1: renamed from tmp
[ 5185.785276][ T9948] eth1: renamed from tmp
[ 5203.914978][T10083] eth1: renamed from tmp
[ 5222.283172][T10218] eth1: renamed from tmp
[ 5240.701510][T10352] eth1: renamed from tmp
[ 5259.069174][T10487] eth1: renamed from tmp
[ 5277.675255][T10622] eth1: renamed from tmp
[ 5295.820987][T10757] eth1: renamed from tmp
[ 5314.337139][T10892] eth1: renamed from tmp
[ 5332.914473][T11027] eth1: renamed from tmp
[ 5351.348250][T11163] eth1: renamed from tmp
[ 5369.641660][T11298] eth1: renamed from tmp
[ 5387.976088][T11433] eth1: renamed from tmp
[ 5406.327501][T11568] eth1: renamed from tmp
[ 5424.534367][T11704] eth1: renamed from tmp
[ 5442.882016][T11839] eth1: renamed from tmp
[ 5461.044973][T11974] eth1: renamed from tmp
[ 5479.138707][T12110] eth1: renamed from tmp
[ 5497.106237][T12245] eth1: renamed from tmp
[ 5515.320658][T12379] eth1: renamed from tmp
[ 5533.727020][T12513] eth1: renamed from tmp
[ 5552.107474][T12648] eth1: renamed from tmp
[ 5570.525134][T12783] eth1: renamed from tmp
[ 5588.884947][T12918] eth1: renamed from tmp
[ 5607.215499][T13053] eth1: renamed from tmp
[ 5625.406782][T13188] eth1: renamed from tmp
[ 5643.697346][T13323] eth1: renamed from tmp
[ 5661.886245][T13458] eth1: renamed from tmp
[ 5683.800070][T13622] eth1: renamed from tmp
[ 5705.466442][T13785] eth1: renamed from tmp
[ 5727.226257][T13948] eth1: renamed from tmp
[ 5749.014387][T14112] eth1: renamed from tmp
[ 5770.636549][T14275] eth1: renamed from tmp
[ 5792.326509][T14438] eth1: renamed from tmp
[ 5814.057470][T14600] eth1: renamed from tmp
[ 5836.334410][T14763] eth1: renamed from tmp
[ 5857.771320][T14926] eth1: renamed from tmp
[ 5878.747361][T15089] eth1: renamed from tmp
[ 5899.974763][T15252] eth1: renamed from tmp
[ 5920.927200][T15415] eth1: renamed from tmp
[ 5942.000179][T15578] eth1: renamed from tmp
[ 5952.723145][    C0] ==================================================================
[ 5952.723514][    C0] BUG: KASAN: slab-use-after-free in __udp_enqueue_schedule_skb+0x179/0xe60
[ 5952.723875][    C0] Read of size 4 at addr ffff88800c10e148 by task nettest/15654
[ 5952.724170][    C0] 
[ 5952.724275][    C0] CPU: 0 UID: 0 PID: 15654 Comm: nettest Not tainted 6.17.0-rc6-virtme #1 PREEMPT(full) 
[ 5952.724281][    C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[ 5952.724283][    C0] Call Trace:
[ 5952.724286][    C0]  <IRQ>
[ 5952.724288][    C0]  dump_stack_lvl+0x82/0xc0
[ 5952.724295][    C0]  print_address_description.constprop.0+0x2c/0x3a0
[ 5952.724304][    C0]  ? __udp_enqueue_schedule_skb+0x179/0xe60
[ 5952.724308][    C0]  print_report+0xb4/0x270
[ 5952.724312][    C0]  ? __udp_enqueue_schedule_skb+0x179/0xe60
[ 5952.724315][    C0]  ? kasan_addr_to_slab+0x21/0x70
[ 5952.724319][    C0]  ? __udp_enqueue_schedule_skb+0x179/0xe60
[ 5952.724322][    C0]  kasan_report+0xca/0x100
[ 5952.724326][    C0]  ? __udp_enqueue_schedule_skb+0x179/0xe60
[ 5952.724332][    C0]  kasan_check_range+0x39/0x1b0
[ 5952.724336][    C0]  __udp_enqueue_schedule_skb+0x179/0xe60
[ 5952.724340][    C0]  ? sk_filter_trim_cap+0x2c0/0xa40
[ 5952.724346][    C0]  ? reuseport_select_sock+0x199/0x380
[ 5952.724351][    C0]  ? fib_lookup.constprop.0+0x370/0x370
[ 5952.724354][    C0]  ? udp_sendmsg+0x21f0/0x21f0
[ 5952.724360][    C0]  udpv6_queue_rcv_one_skb+0xa35/0x14f0
[ 5952.724366][    C0]  ? __udp6_lib_lookup+0x64e/0xa40
[ 5952.724370][    C0]  ? __xfrm_policy_check2.constprop.0+0x680/0x680
[ 5952.724376][    C0]  udp6_unicast_rcv_skb+0x10b/0x2c0
[ 5952.724381][    C0]  __udp6_lib_rcv+0xa85/0x1650
[ 5952.724386][    C0]  ? udpv6_err+0xe0/0xe0
[ 5952.724392][    C0]  ip6_protocol_deliver_rcu+0x113/0x1340
[ 5952.724408][    C0]  ? rcu_is_watching+0x12/0xb0
[ 5952.724417][    C0]  ip6_input_finish+0x175/0x410
[ 5952.724421][    C0]  ip6_input+0x111/0x4f0
[ 5952.724425][    C0]  ? ip6_input_finish+0x410/0x410
[ 5952.724428][    C0]  ? ip6_rcv_core+0x9a5/0x1930
[ 5952.724432][    C0]  ? ip6_rcv_core+0x9af/0x1930
[ 5952.724438][    C0]  ipv6_rcv+0x3e1/0x5d0
[ 5952.724442][    C0]  ? __xfrm_policy_check2.constprop.0+0x540/0x540
[ 5952.724445][    C0]  ? rcu_read_lock_any_held+0x3f/0xa0
[ 5952.724449][    C0]  ? validate_chain+0x15e/0x4d0
[ 5952.724456][    C0]  ? __lock_acquire+0x449/0x7e0
[ 5952.724460][    C0]  ? __xfrm_policy_check2.constprop.0+0x540/0x540
[ 5952.724463][    C0]  ? process_backlog+0x381/0x13e0
[ 5952.724469][    C0]  __netif_receive_skb_one_core+0x108/0x180
[ 5952.724473][    C0]  ? __netif_receive_skb_list_core+0x980/0x980
[ 5952.724478][    C0]  ? rcu_is_watching+0x12/0xb0
[ 5952.724481][    C0]  ? lock_acquire+0x104/0x160
[ 5952.724483][    C0]  ? process_backlog+0x381/0x13e0
[ 5952.724488][    C0]  process_backlog+0x3c1/0x13e0
[ 5952.724494][    C0]  __napi_poll.constprop.0+0x9f/0x460
[ 5952.724499][    C0]  net_rx_action+0x54f/0xda0
[ 5952.724506][    C0]  ? __napi_poll.constprop.0+0x460/0x460
[ 5952.724509][    C0]  ? sched_ttwu_pending+0x290/0x530
[ 5952.724514][    C0]  ? __lock_release+0x5d/0x170
[ 5952.724518][    C0]  ? do_raw_spin_unlock+0x58/0x220
[ 5952.724522][    C0]  ? _raw_spin_unlock+0x2d/0x50
[ 5952.724530][    C0]  ? ttwu_do_activate+0x8c0/0x8c0
[ 5952.724535][    C0]  handle_softirqs+0x215/0x610
[ 5952.724540][    C0]  ? __dev_queue_xmit+0x97e/0x18e0
[ 5952.724544][    C0]  do_softirq+0xad/0xe0
[ 5952.724547][    C0]  </IRQ>
[ 5952.724548][    C0]  <TASK>
[ 5952.724550][    C0]  __local_bh_enable_ip+0x101/0x120
[ 5952.724553][    C0]  ? __dev_queue_xmit+0x97e/0x18e0
[ 5952.724556][    C0]  __dev_queue_xmit+0x993/0x18e0
[ 5952.724560][    C0]  ? __lock_acquire+0x449/0x7e0
[ 5952.724565][    C0]  ? netdev_core_pick_tx+0x2f0/0x2f0
[ 5952.724568][    C0]  ? ip6_finish_output+0x5b8/0xc70
[ 5952.724573][    C0]  ? neigh_hh_output+0x33a/0x520
[ 5952.724576][    C0]  ? lockdep_hardirqs_on+0x7c/0x110
[ 5952.724581][    C0]  ? neigh_hh_output+0x33a/0x520
[ 5952.724587][    C0]  ip6_finish_output+0x5b8/0xc70
[ 5952.724591][    C0]  ip6_output+0x242/0x810
[ 5952.724595][    C0]  ? ip6_finish_output+0xc70/0xc70
[ 5952.724603][    C0]  ip6_send_skb+0xef/0x350
[ 5952.724606][    C0]  udp_v6_send_skb+0x85a/0x1dc0
[ 5952.724609][    C0]  ? jhash.constprop.0+0x101/0x150
[ 5952.724615][    C0]  udpv6_sendmsg+0x1b04/0x24a0
[ 5952.724617][    C0]  ? find_held_lock+0x2b/0x80
[ 5952.724620][    C0]  ? ip_select_ident_segs+0x400/0x400
[ 5952.724629][    C0]  ? udpv6_splice_eof+0x170/0x170
[ 5952.724635][    C0]  ? rcu_read_lock_any_held+0x3f/0xa0
[ 5952.724638][    C0]  ? validate_chain+0x15e/0x4d0
[ 5952.724647][    C0]  ? __might_fault+0x117/0x170
[ 5952.724653][    C0]  ? __lock_release+0x5d/0x170
[ 5952.724659][    C0]  ? __sys_sendto+0x24b/0x380
[ 5952.724664][    C0]  __sys_sendto+0x24b/0x380
[ 5952.724667][    C0]  ? __ia32_sys_getpeername+0xb0/0xb0
[ 5952.724676][    C0]  ? __sys_recvmsg_sock+0x20/0x20
[ 5952.724683][    C0]  __x64_sys_sendto+0xe0/0x1b0
[ 5952.724687][    C0]  ? do_syscall_64+0x85/0x300
[ 5952.724690][    C0]  ? lockdep_hardirqs_on+0x7c/0x110
[ 5952.724693][    C0]  do_syscall_64+0xc1/0x300
[ 5952.724697][    C0]  entry_SYSCALL_64_after_hwframe+0x4b/0x53
[ 5952.724701][    C0] RIP: 0033:0x7f958899528a
[ 5952.724706][    C0] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb b8 0f 1f 00 f3 0f 1e fa 41 89 ca 64 8b 04 25 18 00 00 00 85 c0 75 15 b8 2c 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 7e c3 0f 1f 44 00 00 41 54 48 83 ec 30 44 89
[ 5952.724708][    C0] RSP: 002b:00007fff8ef538b8 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[ 5952.724713][    C0] RAX: ffffffffffffffda RBX: 000000000000001c RCX: 00007f958899528a
[ 5952.724715][    C0] RDX: 000000000000000c RSI: 0000000000406752 RDI: 0000000000000005
[ 5952.724717][    C0] RBP: 0000000000000005 R08: 00007fff8ef53e40 R09: 000000000000001c
[ 5952.724719][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff8ef53e40
[ 5952.724721][    C0] R13: 000000000000001c R14: 0000000000000002 R15: 0000000000000002
[ 5952.724727][    C0]  </TASK>
[ 5952.724728][    C0] 
[ 5952.744689][    C0] Allocated by task 15620:
[ 5952.744885][    C0]  kasan_save_stack+0x24/0x40
[ 5952.745086][    C0]  kasan_save_track+0x14/0x30
[ 5952.745282][    C0]  __kasan_kmalloc+0x7b/0x90
[ 5952.745475][    C0]  __kmalloc_noprof+0x1d4/0x460
[ 5952.745677][    C0]  udpv6_init_sock+0x237/0x410
[ 5952.745880][    C0]  inet6_create.part.0+0x989/0x10b0
[ 5952.746075][    C0]  __sock_create+0x235/0x690
[ 5952.746271][    C0]  __sys_socket+0x116/0x1d0
[ 5952.746465][    C0]  __x64_sys_socket+0x72/0xb0
[ 5952.746658][    C0]  do_syscall_64+0xc1/0x300
[ 5952.746855][    C0]  entry_SYSCALL_64_after_hwframe+0x4b/0x53
[ 5952.747099][    C0] 
[ 5952.747201][    C0] Freed by task 15620:
[ 5952.747346][    C0]  kasan_save_stack+0x24/0x40
[ 5952.747543][    C0]  kasan_save_track+0x14/0x30
[ 5952.747738][    C0]  kasan_save_free_info+0x3b/0x60
[ 5952.747934][    C0]  __kasan_slab_free+0x3b/0x50
[ 5952.748128][    C0]  kfree+0x144/0x320
[ 5952.748275][    C0]  sk_common_release+0x60/0x300
[ 5952.748476][    C0]  inet_release+0x100/0x220
[ 5952.748675][    C0]  __sock_release+0xa0/0x250
[ 5952.748873][    C0]  sock_close+0x18/0x20
[ 5952.749019][    C0]  __fput+0x35c/0xa70
[ 5952.749169][    C0]  fput_close_sync+0xdd/0x1b0
[ 5952.749362][    C0]  __x64_sys_close+0x7d/0xd0
[ 5952.749557][    C0]  do_syscall_64+0xc1/0x300
[ 5952.749752][    C0]  entry_SYSCALL_64_after_hwframe+0x4b/0x53
[ 5952.749995][    C0] 
[ 5952.750093][    C0] The buggy address belongs to the object at ffff88800c10e140
[ 5952.750093][    C0]  which belongs to the cache kmalloc-64 of size 64
[ 5952.750568][    C0] The buggy address is located 8 bytes inside of
[ 5952.750568][    C0]  freed 64-byte region [ffff88800c10e140, ffff88800c10e180)
[ 5952.751043][    C0] 
[ 5952.751141][    C0] The buggy address belongs to the physical page:
[ 5952.751378][    C0] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88800c10e240 pfn:0xc10e
[ 5952.751772][    C0] flags: 0x80000000000200(workingset|node=0|zone=1)
[ 5952.752020][    C0] page_type: f5(slab)
[ 5952.752312][    C0] raw: 0080000000000200 ffff888001042ac0 ffffea00003e8ed0 ffffea0000251290
[ 5952.752659][    C0] raw: ffff88800c10e240 000000000010000c 00000000f5000000 0000000000000000
[ 5952.753014][    C0] page dumped because: kasan: bad access detected
[ 5952.753385][    C0] 
[ 5952.753482][    C0] Memory state around the buggy address:
[ 5952.753671][    C0]  ffff88800c10e000: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[ 5952.754084][    C0]  ffff88800c10e080: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 5952.754364][    C0] >ffff88800c10e100: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[ 5952.754656][    C0]                                               ^
[ 5952.755019][    C0]  ffff88800c10e180: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 5952.755302][    C0]  ffff88800c10e200: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[ 5952.755582][    C0] ==================================================================
[ 5952.756013][    C0] Disabling lock debugging due to kernel taint
[ 5959.561287][T15741] eth1: renamed from tmp
[ 5974.596577][T15904] eth1: renamed from tmp