[   12.996275][  T250] IPVS: Registered protocols (TCP)
[   12.997535][  T250] IPVS: Connection hash table configured (size=4096, memory=32Kbytes)
[   12.998841][  T250] IPVS: ipvs loaded.
[   14.310446][  T267] ip (267) used greatest stack depth: 23416 bytes left
[   15.258053][  T275] bridge: filtering via arp/ip/ip6tables is no longer available by default. Update your scripts to load br_netfilter if you need this.
[   15.448179][  T276] br0: port 1(veth01) entered blocking state
[   15.448683][  T276] br0: port 1(veth01) entered disabled state
[   15.449080][  T276] veth01: entered allmulticast mode
[   15.451468][  T276] veth01: entered promiscuous mode
[   15.635173][  T277] br0: port 2(veth02) entered blocking state
[   15.635545][  T277] br0: port 2(veth02) entered disabled state
[   15.635862][  T277] veth02: entered allmulticast mode
[   15.638188][  T277] veth02: entered promiscuous mode
[   16.178562][   T37] br0: port 1(veth01) entered blocking state
[   16.179009][   T37] br0: port 1(veth01) entered forwarding state
[   17.331158][   T69] br0: port 2(veth02) entered blocking state
[   17.331510][   T69] br0: port 2(veth02) entered forwarding state
[   19.180378][  T293] IPVS: [rr] scheduler registered.
[   19.195152][  T251] IPVS: starting estimator thread 0...
[   19.259566][  T294] IPVS: using max 46 ests per chain, 110400 per kthread
[   21.154049][   T67] veth02: left allmulticast mode
[   21.154388][   T67] veth02: left promiscuous mode
[   21.154787][   T67] br0: port 2(veth02) entered disabled state
[   21.158191][   T67] veth01: left allmulticast mode
[   21.158396][   T67] veth01: left promiscuous mode
[   21.158733][   T67] br0: port 1(veth01) entered disabled state
[   21.717701][   T67] IPVS: stop unused estimator thread 0...
[   21.742741][   T67] ==================================================================
[   21.742963][   T67] BUG: KASAN: slab-use-after-free in cleanup_net+0x932/0xa40
[   21.743153][   T67] Read of size 8 at addr ffff88800bc380f8 by task kworker/u16:1/67
[   21.743336][   T67] 
[   21.743400][   T67] CPU: 2 UID: 0 PID: 67 Comm: kworker/u16:1 Not tainted 6.12.0-virtme #1
[   21.743621][   T67] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[   21.743776][   T67] Workqueue: netns cleanup_net
[   21.743907][   T67] Call Trace:
[   21.744002][   T67]  <TASK>
[   21.744072][   T67]  dump_stack_lvl+0x82/0xd0
[   21.744206][   T67]  print_address_description.constprop.0+0x2c/0x3b0
[   21.744363][   T67]  ? cleanup_net+0x932/0xa40
[   21.744496][   T67]  print_report+0xb4/0x270
[   21.744620][   T67]  ? kasan_addr_to_slab+0x25/0x80
[   21.744742][   T67]  kasan_report+0xbd/0xf0
[   21.744834][   T67]  ? cleanup_net+0x932/0xa40
[   21.744959][   T67]  cleanup_net+0x932/0xa40
[   21.745081][   T67]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   21.745212][   T67]  ? __pfx_cleanup_net+0x10/0x10
[   21.745339][   T67]  ? trace_lock_acquire+0x148/0x1f0
[   21.745464][   T67]  ? lock_acquire+0x32/0xc0
[   21.745586][   T67]  ? process_one_work+0xe0b/0x16d0
[   21.745712][   T67]  process_one_work+0xe55/0x16d0
[   21.745834][   T67]  ? __pfx___lock_release+0x10/0x10
[   21.745957][   T67]  ? __pfx_process_one_work+0x10/0x10
[   21.746079][   T67]  ? assign_work+0x16c/0x240
[   21.746205][   T67]  worker_thread+0x58c/0xce0
[   21.746325][   T67]  ? lockdep_hardirqs_on_prepare+0x275/0x410
[   21.746477][   T67]  ? __pfx_worker_thread+0x10/0x10
[   21.746599][   T67]  ? __pfx_worker_thread+0x10/0x10
[   21.746719][   T67]  kthread+0x28a/0x350
[   21.746814][   T67]  ? __pfx_kthread+0x10/0x10
[   21.746938][   T67]  ret_from_fork+0x31/0x70
[   21.747065][   T67]  ? __pfx_kthread+0x10/0x10
[   21.747189][   T67]  ret_from_fork_asm+0x1a/0x30
[   21.747318][   T67]  </TASK>
[   21.747410][   T67] 
[   21.747480][   T67] Allocated by task 259:
[   21.747585][   T67]  kasan_save_stack+0x24/0x50
[   21.747738][   T67]  kasan_save_track+0x14/0x30
[   21.747862][   T67]  __kasan_slab_alloc+0x59/0x70
[   21.747985][   T67]  kmem_cache_alloc_noprof+0x10b/0x350
[   21.748114][   T67]  copy_net_ns+0xc6/0x340
[   21.748210][   T67]  create_new_namespaces+0x35f/0x920
[   21.748334][   T67]  unshare_nsproxy_namespaces+0x8d/0x130
[   21.748459][   T67]  ksys_unshare+0x2a9/0x660
[   21.748587][   T67]  __x64_sys_unshare+0x31/0x40
[   21.748710][   T67]  do_syscall_64+0xc1/0x1d0
[   21.748835][   T67]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   21.748990][   T67] 
[   21.749056][   T67] Freed by task 67:
[   21.749149][   T67]  kasan_save_stack+0x24/0x50
[   21.749273][   T67]  kasan_save_track+0x14/0x30
[   21.749396][   T67]  kasan_save_free_info+0x3b/0x60
[   21.749521][   T67]  __kasan_slab_free+0x38/0x50
[   21.749642][   T67]  kmem_cache_free+0xf8/0x330
[   21.749765][   T67]  cleanup_net+0x5a8/0xa40
[   21.749886][   T67]  process_one_work+0xe55/0x16d0
[   21.750009][   T67]  worker_thread+0x58c/0xce0
[   21.750130][   T67]  kthread+0x28a/0x350
[   21.750222][   T67]  ret_from_fork+0x31/0x70
[   21.750342][   T67]  ret_from_fork_asm+0x1a/0x30
[   21.750465][   T67] 
[   21.750527][   T67] Last potentially related work creation:
[   21.750647][   T67]  kasan_save_stack+0x24/0x50
[   21.750769][   T67]  __kasan_record_aux_stack+0x8e/0xa0
[   21.750895][   T67]  insert_work+0x34/0x230
[   21.750995][   T67]  __queue_work+0x5fd/0xa40
[   21.751115][   T67]  queue_delayed_work_on+0x8c/0xa0
[   21.751237][   T67]  __inet_insert_ifa+0x751/0xb10
[   21.751365][   T67]  inet_rtm_newaddr+0x833/0xbd0
[   21.751486][   T67]  rtnetlink_rcv_msg+0x712/0xc10
[   21.751612][   T67]  netlink_rcv_skb+0x130/0x360
[   21.751742][   T67]  netlink_unicast+0x44b/0x710
[   21.751866][   T67]  netlink_sendmsg+0x723/0xbe0
[   21.751991][   T67]  ____sys_sendmsg+0x7ac/0xa10
[   21.752120][   T67]  ___sys_sendmsg+0xee/0x170
[   21.752246][   T67]  __sys_sendmsg+0x109/0x1a0
[   21.752369][   T67]  do_syscall_64+0xc1/0x1d0
[   21.752492][   T67]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   21.752646][   T67] 
[   21.752710][   T67] Second to last potentially related work creation:
[   21.752861][   T67]  kasan_save_stack+0x24/0x50
[   21.752986][   T67]  __kasan_record_aux_stack+0x8e/0xa0
[   21.753110][   T67]  insert_work+0x34/0x230
[   21.753202][   T67]  __queue_work+0x5fd/0xa40
[   21.753323][   T67]  queue_delayed_work_on+0x8c/0xa0
[   21.753449][   T67]  __inet_insert_ifa+0x751/0xb10
[   21.753572][   T67]  inetdev_event+0xb18/0xcf0
[   21.753695][   T67]  notifier_call_chain+0xcd/0x150
[   21.753818][   T67]  __dev_notify_flags+0xe6/0x250
[   21.753944][   T67]  dev_change_flags+0xec/0x160
[   21.754066][   T67]  do_setlink.constprop.0+0x79d/0x2300
[   21.754190][   T67]  rtnl_newlink+0x6de/0xa80
[   21.754313][   T67]  rtnetlink_rcv_msg+0x712/0xc10
[   21.754439][   T67]  netlink_rcv_skb+0x130/0x360
[   21.754566][   T67]  netlink_unicast+0x44b/0x710
[   21.754688][   T67]  netlink_sendmsg+0x723/0xbe0
[   21.754811][   T67]  ____sys_sendmsg+0x7ac/0xa10
[   21.754936][   T67]  ___sys_sendmsg+0xee/0x170
[   21.755061][   T67]  __sys_sendmsg+0x109/0x1a0
[   21.755184][   T67]  do_syscall_64+0xc1/0x1d0
[   21.755308][   T67]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   21.755462][   T67] 
[   21.755525][   T67] The buggy address belongs to the object at ffff88800bc38040
[   21.755525][   T67]  which belongs to the cache net_namespace of size 6592
[   21.755846][   T67] The buggy address is located 184 bytes inside of
[   21.755846][   T67]  freed 6592-byte region [ffff88800bc38040, ffff88800bc39a00)
[   21.756139][   T67] 
[   21.756200][   T67] The buggy address belongs to the physical page:
[   21.756350][   T67] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88800bc3d200 pfn:0xbc38
[   21.756594][   T67] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[   21.756777][   T67] flags: 0x80000000000240(workingset|head|node=0|zone=1)
[   21.756935][   T67] page_type: f5(slab)
[   21.757034][   T67] raw: 0080000000000240 ffff888001963240 ffff888001968088 ffff888001968088
[   21.757251][   T67] raw: ffff88800bc3d200 0000000000040003 00000001f5000000 0000000000000000
[   21.757468][   T67] head: 0080000000000240 ffff888001963240 ffff888001968088 ffff888001968088
[   21.757696][   T67] head: ffff88800bc3d200 0000000000040003 00000001f5000000 0000000000000000
[   21.757915][   T67] head: 0080000000000003 ffffea00002f0e01 ffffffffffffffff 0000000000000000
[   21.758130][   T67] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[   21.758344][   T67] page dumped because: kasan: bad access detected
[   21.758494][   T67] 
[   21.758555][   T67] Memory state around the buggy address:
[   21.758675][   T67]  ffff88800bc37f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   21.758922][   T67]  ffff88800bc38000: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[   21.759154][   T67] >ffff88800bc38080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   21.759333][   T67]                                                                 ^
[   21.759508][   T67]  ffff88800bc38100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   21.759747][   T67]  ffff88800bc38180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   21.759923][   T67] ==================================================================
[   21.760152][   T67] Disabling lock debugging due to kernel taint
[   23.970465][  T353] br0: port 1(veth01) entered blocking state
[   23.970743][  T353] br0: port 1(veth01) entered disabled state
[   23.970983][  T353] veth01: entered allmulticast mode
[   23.972817][  T353] veth01: entered promiscuous mode
[   24.099090][  T354] br0: port 2(veth02) entered blocking state
[   24.099353][  T354] br0: port 2(veth02) entered disabled state
[   24.105225][  T354] veth02: entered allmulticast mode
[   24.106796][  T354] veth02: entered promiscuous mode
[   24.510212][   T40] br0: port 1(veth01) entered blocking state
[   24.510504][   T40] br0: port 1(veth01) entered forwarding state
[   25.282203][   T69] br0: port 2(veth02) entered blocking state
[   25.282457][   T69] br0: port 2(veth02) entered forwarding state
[   26.897721][   T71] IPVS: starting estimator thread 0...
[   26.960563][  T370] IPVS: using max 109 ests per chain, 261600 per kthread
[   27.270128][  T373] br0: port 2(veth02) entered disabled state
[   27.386882][  T373] veth02 (unregistering): left allmulticast mode
[   27.387218][  T373] veth02 (unregistering): left promiscuous mode
[   27.387429][  T373] br0: port 2(veth02) entered disabled state
[   28.122522][   T67] veth01: left allmulticast mode
[   28.122711][   T67] veth01: left promiscuous mode
[   28.122986][   T67] br0: port 1(veth01) entered disabled state
[   28.489848][   T67] IPVS: stop unused estimator thread 0...
[   30.814385][  T425] br0: port 1(veth01) entered blocking state
[   30.814935][  T425] br0: port 1(veth01) entered disabled state
[   30.815183][  T425] veth01: entered allmulticast mode
[   30.816726][  T425] veth01: entered promiscuous mode
[   30.947471][  T426] br0: port 2(veth02) entered blocking state
[   30.948115][  T426] br0: port 2(veth02) entered disabled state
[   30.948341][  T426] veth02: entered allmulticast mode
[   30.949781][  T426] veth02: entered promiscuous mode
[   31.322183][   T40] br0: port 1(veth01) entered blocking state
[   31.322499][   T40] br0: port 1(veth01) entered forwarding state
[   32.091715][   T40] br0: port 2(veth02) entered blocking state
[   32.091962][   T40] br0: port 2(veth02) entered forwarding state
[   33.566270][  T440] ipip: IPv4 and MPLS over IPv4 tunneling driver
[   34.177502][   T71] IPVS: starting estimator thread 0...
[   34.241571][  T449] IPVS: using max 110 ests per chain, 264000 per kthread
[   36.062604][   T67] veth02: left allmulticast mode
[   36.062905][   T67] veth02: left promiscuous mode
[   36.063335][   T67] br0: port 2(veth02) entered disabled state
[   36.065147][   T67] veth01: left allmulticast mode
[   36.065411][   T67] veth01: left promiscuous mode
[   36.065836][   T67] br0: port 1(veth01) entered disabled state
[   36.464457][   T67] IPVS: stop unused estimator thread 0...