[ 241.863631][ T5260] devlink (5260) used greatest stack depth: 21664 bytes left [ 241.870055][ T5264] netdevsim netdevsim10 eni10np2: renamed from eth1 [ 241.876213][ T5268] netdevsim netdevsim10 eni10np4: renamed from eth3 [ 241.880966][ T5262] netdevsim netdevsim10 eni10np1: renamed from eth0 [ 241.888034][ T5266] netdevsim netdevsim10 eni10np3: renamed from eth2 [ 245.185421][ T5352] netdevsim netdevsim10 eni10np1: renamed from eth0 [ 245.221361][ T5353] netdevsim netdevsim10 eni10np2: renamed from eth1 [ 245.230557][ T5354] netdevsim netdevsim10 eni10np3: renamed from eth2 [ 245.238128][ T5345] netdevsim netdevsim10 eni10np4: renamed from eth3 [ 245.451764][ T5350] netdevsim netdevsim10 eni10np2: renamed from eth1 [ 245.456285][ T5346] netdevsim netdevsim10 eni10np1: renamed from eth0 [ 245.466081][ T5349] netdevsim netdevsim10 eni10np3: renamed from eth2 [ 245.517270][ T5348] netdevsim netdevsim10 eni10np4: renamed from eth3 [ 245.850860][ T5345] netdevsim netdevsim10 eni10np2: renamed from eth1 [ 245.857776][ T5346] netdevsim netdevsim10 eni10np1: renamed from eth0 [ 245.861660][ T5354] netdevsim netdevsim10 eni10np3: renamed from eth2 [ 245.863310][ T5350] netdevsim netdevsim10 eni10np4: renamed from eth3 [ 246.225217][ T5346] netdevsim netdevsim10 eni10np1: renamed from eth0 [ 246.242490][ T5354] netdevsim netdevsim10 eni10np3: renamed from eth2 [ 246.251092][ T5345] netdevsim netdevsim10 eni10np2: renamed from eth1 [ 246.255308][ T5349] netdevsim netdevsim10 eni10np4: renamed from eth3 [ 246.665267][ T5346] netdevsim netdevsim10 eni10np1: renamed from eth0 [ 246.668652][ T5349] netdevsim netdevsim10 eni10np2: renamed from eth1 [ 246.674385][ T5350] netdevsim netdevsim10 eni10np3: renamed from eth2 [ 246.692180][ T5354] netdevsim netdevsim10 eni10np4: renamed from eth3 [ 247.047977][ T5346] netdevsim netdevsim10 eni10np1: renamed from eth0 [ 247.052165][ T5345] netdevsim netdevsim10 eni10np2: renamed from eth1 [ 247.056329][ T5350] netdevsim netdevsim10 eni10np4: renamed from eth3 [ 247.119441][ T5349] netdevsim netdevsim10 eni10np3: renamed from eth2 [ 247.501439][ T5345] netdevsim netdevsim10 eni10np3: renamed from eth2 [ 247.503187][ T5346] netdevsim netdevsim10 eni10np1: renamed from eth0 [ 247.509022][ T5349] netdevsim netdevsim10 eni10np2: renamed from eth1 [ 247.513094][ T5350] netdevsim netdevsim10 eni10np4: renamed from eth3 [ 248.186012][ T5549] netdevsim netdevsim10 eni10np1: renamed from eth0 [ 248.192825][ T5550] netdevsim netdevsim10 eni10np2: renamed from eth1 [ 248.213344][ T5551] netdevsim netdevsim10 eni10np3: renamed from eth2 [ 248.231787][ T5554] netdevsim netdevsim10 eni10np4: renamed from eth3 [ 248.953551][ T5547] netdevsim netdevsim10 eni10np1: renamed from eth0 [ 248.958493][ T5554] netdevsim netdevsim10 eni10np3: renamed from eth2 [ 248.960406][ T5544] netdevsim netdevsim10 eni10np4: renamed from eth3 [ 249.157534][ T5544] netdevsim netdevsim10 eni10np1: renamed from eth0 [ 249.387537][ T5547] netdevsim netdevsim10 eni10np2: renamed from eth1 [ 249.529330][ T5551] netdevsim netdevsim10 eni10np1: renamed from eth0 [ 250.020839][ T5672] ================================================================== [ 250.021017][ T5672] BUG: KASAN: slab-out-of-bounds in devlink_nl_dumpit+0x370/0x390 [ 250.021165][ T5672] Read of size 8 at addr ff11000009febf20 by task devlink/5672 [ 250.021304][ T5672] [ 250.021355][ T5672] CPU: 2 UID: 0 PID: 5672 Comm: devlink Not tainted 7.0.0-rc2-virtme #1 PREEMPT(full) [ 250.021358][ T5672] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 250.021360][ T5672] Call Trace: [ 250.021361][ T5672] [ 250.021362][ T5672] dump_stack_lvl+0x6f/0xa0 [ 250.021368][ T5672] print_address_description.constprop.0+0x6e/0x300 [ 250.021373][ T5672] print_report+0xfc/0x1fb [ 250.021374][ T5672] ? devlink_nl_dumpit+0x370/0x390 [ 250.021376][ T5672] ? __virt_addr_valid+0x1da/0x430 [ 250.021381][ T5672] ? devlink_nl_dumpit+0x370/0x390 [ 250.021382][ T5672] kasan_report+0xe8/0x120 [ 250.021386][ T5672] ? devlink_nl_dumpit+0x370/0x390 [ 250.021388][ T5672] devlink_nl_dumpit+0x370/0x390 [ 250.021390][ T5672] ? devlink_nl_fill+0x600/0x600 [ 250.021392][ T5672] genl_dumpit+0x101/0x270 [ 250.021396][ T5672] netlink_dump+0x4a1/0x13a0 [ 250.021399][ T5672] ? netlink_lookup+0x1a0/0x1a0 [ 250.021403][ T5672] ? __asan_memset+0x27/0x50 [ 250.021405][ T5672] ? genl_start+0x4ed/0x940 [ 250.021408][ T5672] __netlink_dump_start+0x60d/0x890 [ 250.021410][ T5672] genl_family_rcv_msg_dumpit+0x1aa/0x320 [ 250.021413][ T5672] ? genl_dumpit+0x270/0x270 [ 250.021415][ T5672] ? lock_acquire.part.0+0xbc/0x260 [ 250.021417][ T5672] ? find_held_lock+0x2b/0x80 [ 250.021421][ T5672] ? genl_cmd_full_to_split+0x9a0/0x9a0 [ 250.021423][ T5672] ? genl_family_rcv_msg_doit+0x2c0/0x2c0 [ 250.021424][ T5672] ? genl_release+0x180/0x180 [ 250.021426][ T5672] ? genl_rcv_msg+0x130/0x130 [ 250.021428][ T5672] ? is_bpf_text_address+0x72/0x110 [ 250.021431][ T5672] ? kernel_text_address+0x142/0x160 [ 250.021434][ T5672] genl_family_rcv_msg+0x2de/0x5b0 [ 250.021436][ T5672] ? genl_family_rcv_msg_dumpit+0x320/0x320 [ 250.021438][ T5672] ? rcu_lockdep_current_cpu_online+0x39/0x1b0 [ 250.021442][ T5672] ? devlink_nl_get_doit+0x1d0/0x1d0 [ 250.021448][ T5672] ? __lock_acquire+0x577/0xc10 [ 250.021450][ T5672] genl_rcv_msg+0xa3/0x130 [ 250.021452][ T5672] netlink_rcv_skb+0x123/0x380 [ 250.021454][ T5672] ? genl_family_rcv_msg+0x5b0/0x5b0 [ 250.021456][ T5672] ? netlink_ack+0xcc0/0xcc0 [ 250.021459][ T5672] ? netlink_deliver_tap+0xc5/0x330 [ 250.021461][ T5672] ? netlink_deliver_tap+0x13f/0x330 [ 250.021463][ T5672] genl_rcv+0x28/0x40 [ 250.021465][ T5672] netlink_unicast+0x4a3/0x770 [ 250.021468][ T5672] ? netlink_attachskb+0x810/0x810 [ 250.021469][ T5672] ? __alloc_skb+0x4c7/0x5f0 [ 250.021472][ T5672] ? napi_skb_cache_get+0x7a0/0x7a0 [ 250.021473][ T5672] ? __lock_acquire+0x577/0xc10 [ 250.021475][ T5672] netlink_sendmsg+0x735/0xc60 [ 250.021477][ T5672] ? netlink_unicast+0x770/0x770 [ 250.021480][ T5672] ? __might_fault+0x97/0x140 [ 250.021483][ T5672] ? __might_fault+0x97/0x140 [ 250.021485][ T5672] __sys_sendto+0x265/0x390 [ 250.021488][ T5672] ? __ia32_sys_getpeername+0xd0/0xd0 [ 250.021493][ T5672] ? exc_page_fault+0x6f/0xd0 [ 250.021498][ T5672] __x64_sys_sendto+0xe4/0x1f0 [ 250.021500][ T5672] ? trace_irq_enable.constprop.0+0x13c/0x190 [ 250.021503][ T5672] ? lockdep_hardirqs_on+0x84/0x130 [ 250.021505][ T5672] ? do_syscall_64+0x87/0xfc0 [ 250.021506][ T5672] do_syscall_64+0x117/0xfc0 [ 250.021507][ T5672] ? exc_page_fault+0xaf/0xd0 [ 250.021509][ T5672] entry_SYSCALL_64_after_hwframe+0x4b/0x53 [ 250.021512][ T5672] RIP: 0033:0x7fcfa19b4c5e [ 250.021515][ T5672] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa [ 250.021517][ T5672] RSP: 002b:00007ffefd0873b0 EFLAGS: 00000202 ORIG_RAX: 000000000000002c [ 250.021521][ T5672] RAX: ffffffffffffffda RBX: 000000003cbb7310 RCX: 00007fcfa19b4c5e [ 250.021522][ T5672] RDX: 0000000000000014 RSI: 000000003cbb7530 RDI: 0000000000000005 [ 250.021523][ T5672] RBP: 00007ffefd0873c0 R08: 00007fcfa1c3f980 R09: 000000000000000c [ 250.021524][ T5672] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000407ef0 [ 250.021525][ T5672] R13: 000000003cbb7310 R14: 0000000000000000 R15: 0000000000000001 [ 250.021527][ T5672] [ 250.021528][ T5672] [ 250.028780][ T5672] Allocated by task 5672: [ 250.028853][ T5672] kasan_save_stack+0x30/0x50 [ 250.028950][ T5672] kasan_save_track+0x14/0x30 [ 250.029045][ T5672] __kasan_kmalloc+0x7b/0x90 [ 250.029142][ T5672] __kmalloc_noprof+0x2a8/0x730 [ 250.029237][ T5672] genl_family_rcv_msg_attrs_parse.isra.0+0xa0/0x2c0 [ 250.029358][ T5672] genl_start+0x14a/0x940 [ 250.029428][ T5672] __netlink_dump_start+0x562/0x890 [ 250.029527][ T5672] genl_family_rcv_msg_dumpit+0x1aa/0x320 [ 250.029621][ T5672] genl_family_rcv_msg+0x2de/0x5b0 [ 250.029716][ T5672] genl_rcv_msg+0xa3/0x130 [ 250.029812][ T5672] netlink_rcv_skb+0x123/0x380 [ 250.029907][ T5672] genl_rcv+0x28/0x40 [ 250.029977][ T5672] netlink_unicast+0x4a3/0x770 [ 250.030072][ T5672] netlink_sendmsg+0x735/0xc60 [ 250.030165][ T5672] __sys_sendto+0x265/0x390 [ 250.030257][ T5672] __x64_sys_sendto+0xe4/0x1f0 [ 250.030357][ T5672] do_syscall_64+0x117/0xfc0 [ 250.030457][ T5672] entry_SYSCALL_64_after_hwframe+0x4b/0x53 [ 250.030575][ T5672] [ 250.030627][ T5672] The buggy address belongs to the object at ff11000009febf10 [ 250.030627][ T5672] which belongs to the cache kmalloc-16 of size 16 [ 250.030865][ T5672] The buggy address is located 0 bytes to the right of [ 250.030865][ T5672] allocated 16-byte region [ff11000009febf10, ff11000009febf20) [ 250.031116][ T5672] [ 250.031164][ T5672] The buggy address belongs to the physical page: [ 250.031284][ T5672] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x9feb [ 250.031507][ T5672] flags: 0x80000000000000(node=0|zone=1) [ 250.031604][ T5672] page_type: f5(slab) [ 250.031678][ T5672] raw: 0080000000000000 ff1100000103c7c0 ffd4000000096210 ffd40000000836d0 [ 250.031849][ T5672] raw: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000 [ 250.032012][ T5672] page dumped because: kasan: bad access detected [ 250.032132][ T5672] [ 250.032179][ T5672] Memory state around the buggy address: [ 250.032276][ T5672] ff11000009febe00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fa fb [ 250.032467][ T5672] ff11000009febe80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 250.032647][ T5672] >ff11000009febf00: fc fc 00 00 fc fc fc fc fc fc fc fc fc fc fc fc [ 250.032785][ T5672] ^ [ 250.032920][ T5672] ff11000009febf80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 250.033055][ T5672] ff11000009fec000: fc fa fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 250.033188][ T5672] ================================================================== [ 250.035453][ T5672] Disabling lock debugging due to kernel taint [ 250.054027][ T5547] netdevsim netdevsim10 eni10np1: renamed from eth0 [ 250.055599][ T5551] netdevsim netdevsim10 eni10np3: renamed from eth2 [ 250.059118][ T5544] netdevsim netdevsim10 eni10np2: renamed from eth1 [ 250.066203][ T5541] netdevsim netdevsim10 eni10np4: renamed from eth3 [ 252.760063][ T5925] Failed to register fib notifier [ 252.851614][ T5908] netdevsim netdevsim10 eni10np1: renamed from eth0 [ 252.853655][ T5900] netdevsim netdevsim10 eni10np2: renamed from eth1 [ 252.857761][ T5906] netdevsim netdevsim10 eni10np3: renamed from eth2 [ 252.860118][ T5898] netdevsim netdevsim10 eni10np4: renamed from eth3 [ 256.853954][ T6395] netdevsim netdevsim10 eni10npf0vf0: renamed from eth0 [ 256.868615][ T6397] netdevsim netdevsim10 eni10npf0vf1: renamed from eth1 [ 256.869945][ T6398] netdevsim netdevsim10 eni10npf0vf2: renamed from eth2 [ 256.883679][ T6400] netdevsim netdevsim10 eni10npf0vf3: renamed from eth3