[ 257.035632][ T5270] devlink (5270) used greatest stack depth: 22384 bytes left [ 257.038086][ T5276] netdevsim netdevsim10 eni10np3: renamed from eth2 [ 257.046379][ T5274] netdevsim netdevsim10 eni10np2: renamed from eth1 [ 257.048792][ T5272] netdevsim netdevsim10 eni10np1: renamed from eth0 [ 257.052827][ T5278] netdevsim netdevsim10 eni10np4: renamed from eth3 [ 260.513058][ T5350] netdevsim netdevsim10 eni10np1: renamed from eth0 [ 260.557888][ T5352] netdevsim netdevsim10 eni10np2: renamed from eth1 [ 260.567194][ T5342] netdevsim netdevsim10 eni10np4: renamed from eth3 [ 260.583840][ T5354] netdevsim netdevsim10 eni10np3: renamed from eth2 [ 260.966654][ T5349] netdevsim netdevsim10 eni10np1: renamed from eth0 [ 260.975692][ T5345] netdevsim netdevsim10 eni10np3: renamed from eth2 [ 260.982688][ T5342] netdevsim netdevsim10 eni10np2: renamed from eth1 [ 260.993698][ T5341] netdevsim netdevsim10 eni10np4: renamed from eth3 [ 261.433480][ T5349] netdevsim netdevsim10 eni10np1: renamed from eth0 [ 261.443805][ T5342] netdevsim netdevsim10 eni10np4: renamed from eth3 [ 261.448135][ T5347] netdevsim netdevsim10 eni10np3: renamed from eth2 [ 261.454646][ T5343] netdevsim netdevsim10 eni10np2: renamed from eth1 [ 261.832443][ T5347] netdevsim netdevsim10 eni10np3: renamed from eth2 [ 261.851627][ T5349] netdevsim netdevsim10 eni10np1: renamed from eth0 [ 261.864258][ T5343] netdevsim netdevsim10 eni10np2: renamed from eth1 [ 261.867057][ T5344] netdevsim netdevsim10 eni10np4: renamed from eth3 [ 262.367333][ T5349] netdevsim netdevsim10 eni10np1: renamed from eth0 [ 262.377172][ T5343] netdevsim netdevsim10 eni10np2: renamed from eth1 [ 262.380825][ T5342] netdevsim netdevsim10 eni10np3: renamed from eth2 [ 262.397507][ T5347] netdevsim netdevsim10 eni10np4: renamed from eth3 [ 262.796826][ T5349] netdevsim netdevsim10 eni10np1: renamed from eth0 [ 262.806185][ T5347] netdevsim netdevsim10 eni10np2: renamed from eth1 [ 262.811117][ T5342] netdevsim netdevsim10 eni10np3: renamed from eth2 [ 262.815488][ T5343] netdevsim netdevsim10 eni10np4: renamed from eth3 [ 263.510266][ T5510] netdevsim netdevsim10 eni10np1: renamed from eth0 [ 263.523702][ T5511] netdevsim netdevsim10 eni10np2: renamed from eth1 [ 263.538817][ T5516] netdevsim netdevsim10 eni10np3: renamed from eth2 [ 263.556516][ T5517] netdevsim netdevsim10 eni10np4: renamed from eth3 [ 263.868822][ T5501] netdevsim netdevsim10 eni10np1: renamed from eth0 [ 263.879596][ T5504] netdevsim netdevsim10 eni10np3: renamed from eth2 [ 263.894889][ T5511] netdevsim netdevsim10 eni10np4: renamed from eth3 [ 263.903792][ T5510] netdevsim netdevsim10 eni10np2: renamed from eth1 [ 265.198856][ T5501] netdevsim netdevsim10 eni10np1: renamed from eth0 [ 265.218056][ T5503] netdevsim netdevsim10 eni10np2: renamed from eth1 [ 265.233395][ T5510] netdevsim netdevsim10 eni10np3: renamed from eth2 [ 265.460101][ T5503] netdevsim netdevsim10 eni10np1: renamed from eth0 [ 265.485019][ T5510] netdevsim netdevsim10 eni10np2: renamed from eth1 [ 265.502541][ T5517] netdevsim netdevsim10 eni10np4: renamed from eth3 [ 265.786836][ T5517] netdevsim netdevsim10 eni10np2: renamed from eth1 [ 265.790577][ T5501] netdevsim netdevsim10 eni10np1: renamed from eth0 [ 266.419798][ T5677] ================================================================== [ 266.420008][ T5677] BUG: KASAN: slab-out-of-bounds in devlink_nl_dumpit+0x370/0x390 [ 266.420172][ T5677] Read of size 8 at addr ff1100000b605f20 by task devlink/5677 [ 266.420325][ T5677] [ 266.420385][ T5677] CPU: 1 UID: 0 PID: 5677 Comm: devlink Not tainted 7.0.0-rc2-virtme #1 PREEMPT(full) [ 266.420389][ T5677] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 266.420390][ T5677] Call Trace: [ 266.420392][ T5677] [ 266.420393][ T5677] dump_stack_lvl+0x6f/0xa0 [ 266.420399][ T5677] print_address_description.constprop.0+0x6e/0x300 [ 266.420404][ T5677] print_report+0xfc/0x1fb [ 266.420406][ T5677] ? devlink_nl_dumpit+0x370/0x390 [ 266.420407][ T5677] ? __virt_addr_valid+0x1da/0x430 [ 266.420412][ T5677] ? devlink_nl_dumpit+0x370/0x390 [ 266.420413][ T5677] kasan_report+0xe8/0x120 [ 266.420417][ T5677] ? devlink_nl_dumpit+0x370/0x390 [ 266.420419][ T5677] devlink_nl_dumpit+0x370/0x390 [ 266.420421][ T5677] ? devlink_nl_fill+0x600/0x600 [ 266.420423][ T5677] genl_dumpit+0x101/0x270 [ 266.420427][ T5677] netlink_dump+0x4a1/0x13a0 [ 266.420430][ T5677] ? netlink_lookup+0x1a0/0x1a0 [ 266.420433][ T5677] ? __asan_memset+0x27/0x50 [ 266.420436][ T5677] ? genl_start+0x4ed/0x940 [ 266.420438][ T5677] __netlink_dump_start+0x60d/0x890 [ 266.420441][ T5677] genl_family_rcv_msg_dumpit+0x1aa/0x320 [ 266.420444][ T5677] ? genl_dumpit+0x270/0x270 [ 266.420445][ T5677] ? lock_acquire.part.0+0xbc/0x260 [ 266.420448][ T5677] ? find_held_lock+0x2b/0x80 [ 266.420451][ T5677] ? genl_cmd_full_to_split+0x9a0/0x9a0 [ 266.420453][ T5677] ? genl_family_rcv_msg_doit+0x2c0/0x2c0 [ 266.420455][ T5677] ? genl_release+0x180/0x180 [ 266.420457][ T5677] ? genl_rcv_msg+0x130/0x130 [ 266.420459][ T5677] ? is_bpf_text_address+0x72/0x110 [ 266.420462][ T5677] ? kernel_text_address+0x142/0x160 [ 266.420464][ T5677] genl_family_rcv_msg+0x2de/0x5b0 [ 266.420467][ T5677] ? genl_family_rcv_msg_dumpit+0x320/0x320 [ 266.420469][ T5677] ? rcu_lockdep_current_cpu_online+0x39/0x1b0 [ 266.420472][ T5677] ? devlink_nl_get_doit+0x1d0/0x1d0 [ 266.420474][ T5677] ? __lock_acquire+0x577/0xc10 [ 266.420476][ T5677] genl_rcv_msg+0xa3/0x130 [ 266.420479][ T5677] netlink_rcv_skb+0x123/0x380 [ 266.420480][ T5677] ? genl_family_rcv_msg+0x5b0/0x5b0 [ 266.420483][ T5677] ? netlink_ack+0xcc0/0xcc0 [ 266.420486][ T5677] ? netlink_deliver_tap+0xc5/0x330 [ 266.420488][ T5677] ? netlink_deliver_tap+0x13f/0x330 [ 266.420490][ T5677] genl_rcv+0x28/0x40 [ 266.420492][ T5677] netlink_unicast+0x4a3/0x770 [ 266.420494][ T5677] ? netlink_attachskb+0x810/0x810 [ 266.420496][ T5677] ? __alloc_skb+0x4c7/0x5f0 [ 266.420498][ T5677] ? napi_skb_cache_get+0x7a0/0x7a0 [ 266.420500][ T5677] ? __lock_acquire+0x577/0xc10 [ 266.420501][ T5677] netlink_sendmsg+0x735/0xc60 [ 266.420504][ T5677] ? netlink_unicast+0x770/0x770 [ 266.420506][ T5677] ? __might_fault+0x97/0x140 [ 266.420509][ T5677] ? __might_fault+0x97/0x140 [ 266.420512][ T5677] __sys_sendto+0x265/0x390 [ 266.420515][ T5677] ? __ia32_sys_getpeername+0xd0/0xd0 [ 266.420520][ T5677] ? exc_page_fault+0x6f/0xd0 [ 266.420525][ T5677] __x64_sys_sendto+0xe4/0x1f0 [ 266.420527][ T5677] ? trace_irq_enable.constprop.0+0x13c/0x190 [ 266.420530][ T5677] ? lockdep_hardirqs_on+0x84/0x130 [ 266.420532][ T5677] ? do_syscall_64+0x87/0xfc0 [ 266.420533][ T5677] do_syscall_64+0x117/0xfc0 [ 266.420534][ T5677] ? exc_page_fault+0xaf/0xd0 [ 266.420536][ T5677] entry_SYSCALL_64_after_hwframe+0x4b/0x53 [ 266.420539][ T5677] RIP: 0033:0x7f24ca948c5e [ 266.420542][ T5677] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa [ 266.420544][ T5677] RSP: 002b:00007ffc9cbeb990 EFLAGS: 00000202 ORIG_RAX: 000000000000002c [ 266.420547][ T5677] RAX: ffffffffffffffda RBX: 00000000363a7310 RCX: 00007f24ca948c5e [ 266.420549][ T5677] RDX: 0000000000000014 RSI: 00000000363a7530 RDI: 0000000000000005 [ 266.420550][ T5677] RBP: 00007ffc9cbeb9a0 R08: 00007f24cabd3980 R09: 000000000000000c [ 266.420551][ T5677] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000407ef0 [ 266.420552][ T5677] R13: 00000000363a7310 R14: 0000000000000000 R15: 0000000000000001 [ 266.420555][ T5677] [ 266.420556][ T5677] [ 266.428943][ T5677] Allocated by task 5677: [ 266.429046][ T5677] kasan_save_stack+0x30/0x50 [ 266.429184][ T5677] kasan_save_track+0x14/0x30 [ 266.429319][ T5677] __kasan_kmalloc+0x7b/0x90 [ 266.429451][ T5677] __kmalloc_noprof+0x2a8/0x730 [ 266.429586][ T5677] genl_family_rcv_msg_attrs_parse.isra.0+0xa0/0x2c0 [ 266.429756][ T5677] genl_start+0x14a/0x940 [ 266.429860][ T5677] __netlink_dump_start+0x562/0x890 [ 266.429997][ T5677] genl_family_rcv_msg_dumpit+0x1aa/0x320 [ 266.430134][ T5677] genl_family_rcv_msg+0x2de/0x5b0 [ 266.430269][ T5677] genl_rcv_msg+0xa3/0x130 [ 266.430403][ T5677] netlink_rcv_skb+0x123/0x380 [ 266.430534][ T5677] genl_rcv+0x28/0x40 [ 266.430635][ T5677] netlink_unicast+0x4a3/0x770 [ 266.430776][ T5677] netlink_sendmsg+0x735/0xc60 [ 266.430909][ T5677] __sys_sendto+0x265/0x390 [ 266.431045][ T5677] __x64_sys_sendto+0xe4/0x1f0 [ 266.431182][ T5677] do_syscall_64+0x117/0xfc0 [ 266.431323][ T5677] entry_SYSCALL_64_after_hwframe+0x4b/0x53 [ 266.431498][ T5677] [ 266.431572][ T5677] The buggy address belongs to the object at ff1100000b605f10 [ 266.431572][ T5677] which belongs to the cache kmalloc-16 of size 16 [ 266.431910][ T5677] The buggy address is located 0 bytes to the right of [ 266.431910][ T5677] allocated 16-byte region [ff1100000b605f10, ff1100000b605f20) [ 266.432275][ T5677] [ 266.432343][ T5677] The buggy address belongs to the physical page: [ 266.432510][ T5677] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0xb605 [ 266.432751][ T5677] flags: 0x80000000000000(node=0|zone=1) [ 266.432894][ T5677] page_type: f5(slab) [ 266.433004][ T5677] raw: 0080000000000000 ff1100000103c7c0 ffd400000009acd0 ffd40000000a1150 [ 266.433247][ T5677] raw: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000 [ 266.433485][ T5677] page dumped because: kasan: bad access detected [ 266.433656][ T5677] [ 266.433731][ T5677] Memory state around the buggy address: [ 266.433867][ T5677] ff1100000b605e00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc 00 01 [ 266.434069][ T5677] ff1100000b605e80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 266.434264][ T5677] >ff1100000b605f00: fc fc 00 00 fc fc fc fc fc fc fc fc fc fc fc fc [ 266.434459][ T5677] ^ [ 266.434589][ T5677] ff1100000b605f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 266.434790][ T5677] ff1100000b606000: fc fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 266.434983][ T5677] ================================================================== [ 266.437782][ T5677] Disabling lock debugging due to kernel taint [ 266.564220][ T5698] netdevsim netdevsim10 eni10np1: renamed from eth0 [ 266.579915][ T5699] netdevsim netdevsim10 eni10np2: renamed from eth1 [ 266.623865][ T5689] netdevsim netdevsim10 eni10np4: renamed from eth3 [ 266.637472][ T5695] netdevsim netdevsim10 eni10np3: renamed from eth2 [ 269.231824][ T5903] Failed to register fib notifier [ 269.411556][ T5920] netdevsim netdevsim10 eni10np1: renamed from eth0 [ 269.415309][ T5921] netdevsim netdevsim10 eni10np2: renamed from eth1 [ 269.431434][ T5922] netdevsim netdevsim10 eni10np3: renamed from eth2 [ 269.445352][ T5924] netdevsim netdevsim10 eni10np4: renamed from eth3 [ 273.653861][ T6334] netdevsim netdevsim10 eni10npf0vf1: renamed from eth1 [ 273.656336][ T6333] netdevsim netdevsim10 eni10npf0vf0: renamed from eth0 [ 273.676039][ T6337] netdevsim netdevsim10 eni10npf0vf3: renamed from eth3 [ 273.693277][ T6335] netdevsim netdevsim10 eni10npf0vf2: renamed from eth2