INIT: Entering runlevel: 2 [info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.30' (ECDSA) to the list of known hosts. 2018/04/11 00:30:44 fuzzer started 2018/04/11 00:30:44 dialing manager at 10.128.0.26:42649 syzkaller login: [ 35.836681] can: request_module (can-proto-0) failed. [ 35.845695] can: request_module (can-proto-0) failed. 2018/04/11 00:30:52 kcov=true, comps=false 2018/04/11 00:30:56 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$rdma_cm(r0, &(0x7f0000000140)=@create_id={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffff}, 0x13f}}, 0x20) write$rdma_cm(r0, &(0x7f0000000a40)=@set_option={0xe, 0x18, 0xfa02, @ib_path={&(0x7f0000000940)=[{}], r1, 0x1, 0x1, 0x400000}}, 0x20) 2018/04/11 00:30:56 executing program 2: r0 = socket$inet(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000eed000)={0x2, 0x104e21}, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'ip6gretap0\x00', 0x0}) setsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000040)={r1}, 0xc) syz_emit_ethernet(0x423, &(0x7f000018f000)={@broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x415, 0x0, 0x0, 0x0, 0x11, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff, 0xbb}, @multicast1=0xe0000001}, @dccp={{0x0, 0x4e21, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "d73cde", 0x0, "f53475"}, "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"}}}}}, 0x0) 2018/04/11 00:30:56 executing program 7: socket$nl_crypto(0x10, 0x3, 0x15) r0 = accept4$ipx(0xffffffffffffffff, &(0x7f00000001c0), &(0x7f0000000400)=0x10, 0x800) poll(&(0x7f0000000440)=[{0xffffffffffffffff, 0x14}, {r0, 0x104}], 0x2, 0x8) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000ed4000)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1=0xe0000001}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f0000000180)=[{0x6, 0x0, 0x0, 0xe5}]}, 0x10) sendto$inet(r1, &(0x7f0000a88f88), 0x29f, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f00003d1ffc)='bbr\x00', 0x4) sendmmsg(r1, &(0x7f0000005040)=[{{&(0x7f0000001880)=@can={0x1d}, 0x80, &(0x7f0000003b40)=[{&(0x7f00000019c0)}], 0x1, &(0x7f0000003bc0)}}], 0x1, 0x0) shutdown(r1, 0x1) socketpair$inet6(0xa, 0x3, 0x8, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$SO_TIMESTAMPING(r2, 0x1, 0x25, &(0x7f0000000480), &(0x7f00000004c0)=0x4) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r2, 0x84, 0xf, &(0x7f0000000280)={0x0, @in={{0x2, 0x4e24, @loopback=0x7f000001}}, 0x8, 0x4, 0x3f, 0x3, 0x401}, &(0x7f0000000340)=0x98) getsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f0000000380)={r4, 0x4, 0xff, 0xe86, 0x0, 0x2}, &(0x7f00000003c0)=0x14) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f0000000040)={0x401, 0x6, 0x8006, 0x6145, 0x100, 0x3, 0x5, 0x2, 0x0}, &(0x7f0000000080)=0x20) setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r3, 0x84, 0x75, &(0x7f00000000c0)={r5, 0x101}, 0x8) setsockopt$sock_void(r3, 0x1, 0x24, 0x0, 0x0) 2018/04/11 00:30:56 executing program 3: syz_emit_ethernet(0x6e, &(0x7f0000000100)={@link_local={0x1, 0x80, 0xc2}, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x38, 0x3a, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x29, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}, [], "a82f7ae1cd16d2e2"}}}}}}}, &(0x7f0000000000)) 2018/04/11 00:30:56 executing program 4: r0 = syz_open_dev$sndseq(&(0x7f0000000440)='/dev/snd/seq\x00', 0x0, 0x0) read(r0, &(0x7f0000000000)=""/28, 0x1c) r1 = getpid() sched_setaffinity(r1, 0x8, &(0x7f0000000300)=0x2) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000020000000000000001008e15e7af00", 0xa9824f69d1376637, 0x10800a}) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time}) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000000380)) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r0, 0xc02c5341, &(0x7f00000000c0)) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000340)='/dev/sequencer2\x00', 0x0, 0x0) 2018/04/11 00:30:56 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000080)="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") ioctl$DRM_IOCTL_RES_CTX(r0, 0x801c581f, &(0x7f00000001c0)={0x2000000000000184, &(0x7f0000000200)}) 2018/04/11 00:30:56 executing program 6: r0 = socket(0x10, 0x2, 0x0) r1 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x1f70, 0x40000) ioctl$DRM_IOCTL_AGP_ALLOC(r1, 0xc0206434, &(0x7f0000000180)={0x7, 0x0, 0x10001, 0x4}) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r1, 0x84, 0x70, &(0x7f0000000280)={0x0, @in={{0x2, 0x4e20, @loopback=0x7f000001}}, [0x3, 0x5, 0x0, 0x4, 0x804, 0xb6b, 0x7ff, 0x3f, 0x1, 0x9, 0x7f, 0x0, 0x8001, 0xffffffffffffffe0, 0x48a]}, &(0x7f0000000380)=0x100) ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000040)={0x0, r2, 0x0, 0x8}) ioctl$DRM_IOCTL_SG_ALLOC(r1, 0xc0106438, &(0x7f00000000c0)={0xfff, r4}) setsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f00000005c0)={r3, 0x20, 0xfffffffffffffffb, 0x6dc, 0x8}, 0x14) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000240)='/dev/sequencer\x00', 0x800, 0x0) write(r0, &(0x7f0000000080)="2600000026004701925ef1f70722000c07fff700010000000700ff36b807475105001a000000", 0x26) 2018/04/11 00:30:56 executing program 1: syz_emit_ethernet(0x68, &(0x7f0000000100)={@link_local={0x1, 0x80, 0xc2}, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x32, 0x3a, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}, [], "a82f"}}}}}}}, &(0x7f0000000000)={0x0, 0x3, [0x0, 0xc4a]}) [ 41.063330] IPVS: ftp: loaded support on port[0] = 21 [ 41.173162] IPVS: ftp: loaded support on port[0] = 21 [ 41.210945] IPVS: ftp: loaded support on port[0] = 21 [ 41.258573] IPVS: ftp: loaded support on port[0] = 21 [ 41.350675] IPVS: ftp: loaded support on port[0] = 21 [ 41.413883] IPVS: ftp: loaded support on port[0] = 21 [ 41.498654] IPVS: ftp: loaded support on port[0] = 21 [ 41.596897] IPVS: ftp: loaded support on port[0] = 21 [ 43.418838] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 43.615385] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 43.628279] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 43.920650] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 43.927980] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 44.077937] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 44.097633] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 44.252667] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 47.336257] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 47.342394] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.615565] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 47.621736] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.677312] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 47.683467] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.810903] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 47.817107] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.848781] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 47.879489] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 47.885642] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.912906] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 47.919162] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.044578] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 48.110663] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 48.116940] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.141149] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 48.193061] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 48.235634] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 48.244486] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 48.257129] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 48.275430] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 48.281551] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.309297] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 48.319798] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 48.442259] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 48.448893] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 48.459642] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 48.490812] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 48.594517] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 48.600802] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 48.613464] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 48.636799] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 48.645282] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 48.651405] 8021q: adding VLAN 0 to HW filter on device team0 [ 48.672084] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 48.686326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 48.716231] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 48.722579] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 48.734490] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 48.746098] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 48.759650] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 48.773382] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 48.795782] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 48.883376] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 48.889504] 8021q: adding VLAN 0 to HW filter on device team0 [ 48.963610] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 48.972225] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 48.992139] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 49.019049] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 49.025349] 8021q: adding VLAN 0 to HW filter on device team0 [ 49.065929] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 49.072256] 8021q: adding VLAN 0 to HW filter on device team0 [ 49.101395] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 49.107726] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 49.129770] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 49.190907] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 49.197218] 8021q: adding VLAN 0 to HW filter on device team0 [ 49.220281] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 49.226422] 8021q: adding VLAN 0 to HW filter on device team0 [ 49.333491] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 49.339723] 8021q: adding VLAN 0 to HW filter on device team0 [ 49.382296] netlink: 2 bytes leftover after parsing attributes in process `syz-executor6'. [ 49.396345] netlink: 2 bytes leftover after parsing attributes in process `syz-executor6'. [ 49.407934] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 49.414094] 8021q: adding VLAN 0 to HW filter on device team0 2018/04/11 00:31:05 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$rdma_cm(r0, &(0x7f0000000140)=@create_id={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffff}, 0x13f}}, 0x20) write$rdma_cm(r0, &(0x7f0000000a40)=@set_option={0xe, 0x18, 0xfa02, @ib_path={&(0x7f0000000940)=[{}], r1, 0x1, 0x1, 0x400000}}, 0x20) 2018/04/11 00:31:05 executing program 7: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="02060000020000000100e0e0f4acc4a9200000ff0300000000000000fdc1c52fb8903264365780e94d22305edf2bfbfaf5b3a47db02f141d7a35e8848df50d9f0307b8"], 0x43}, 0x1}, 0x0) 2018/04/11 00:31:05 executing program 2: 2018/04/11 00:31:05 executing program 3: 2018/04/11 00:31:05 executing program 5: 2018/04/11 00:31:05 executing program 6: 2018/04/11 00:31:05 executing program 4: 2018/04/11 00:31:05 executing program 1: 2018/04/11 00:31:05 executing program 4: 2018/04/11 00:31:05 executing program 5: 2018/04/11 00:31:05 executing program 1: syz_emit_ethernet(0x11, &(0x7f0000007000)={@link_local={0x1, 0x80, 0xc2}, @random="9aa4aa24e0ff", [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x0, 0x0, @local={0xac, 0x14, 0xffffffffffffffff, 0xaa}, @multicast1=0xe0000001}, @tcp={{0x0, 0x0, 0x42424242, 0x42424242, 0x0, 0x0, 0x5}}}}}}, 0x0) 2018/04/11 00:31:05 executing program 2: syz_emit_ethernet(0x2a, &(0x7f0000000480)={@random="b100485caa2a", @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @rand_addr, @broadcast=0xffffffff}, @igmp={0x11, 0x0, 0x0, @multicast1=0xe0000001}}}}}, &(0x7f00000004c0)) 2018/04/11 00:31:05 executing program 3: syz_emit_ethernet(0x3e, &(0x7f00000001c0)={@empty, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, [], {@ipv6={0x86dd, {0x0, 0x6, "50a09c", 0x8, 0xffffff2f, 0x0, @remote={0xfe, 0x80, [], 0xbb}, @local={0xfe, 0x80, [], 0xaa}, {[], @udp={0x0, 0x6558, 0x8}}}}}}, &(0x7f0000000040)) 2018/04/11 00:31:05 executing program 6: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$rdma_cm(r0, &(0x7f0000000140)=@create_id={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffff}, 0x13f}}, 0x20) write$rdma_cm(r0, &(0x7f0000000a40)=@set_option={0xe, 0x18, 0xfa00, @ib_path={&(0x7f0000000940)=[{}, {0x2b}], r1, 0x1, 0x1, 0x90}}, 0x20) 2018/04/11 00:31:05 executing program 7: [ 50.444671] kasan: CONFIG_KASAN_INLINE enabled [ 50.449598] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 50.457013] general protection fault: 0000 [#1] SMP KASAN [ 50.462542] Dumping ftrace buffer: [ 50.466071] (ftrace buffer empty) [ 50.469768] Modules linked in: [ 50.472958] CPU: 1 PID: 5926 Comm: syz-executor6 Not tainted 4.16.0+ #288 [ 50.479873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 50.489230] RIP: 0010:ucma_set_ib_path.isra.14+0x26a/0x850 [ 50.494839] RSP: 0018:ffff8801b689f7a0 EFLAGS: 00010202 [ 50.500194] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000029 [ 50.507455] RDX: dffffc0000000000 RSI: ffffc90007472000 RDI: 0000000000000148 [ 50.514716] RBP: ffff8801b689f9a0 R08: ffffed0036d13f0e R09: ffffffff87b6ca9c [ 50.521983] R10: 0000000000000002 R11: ffffed0036d13f0d R12: ffff8801b689f850 [ 50.529250] R13: 1ffff10036d13ef6 R14: ffff8801b53f1870 R15: ffff8801ac42f6c0 [ 50.536510] FS: 0000000000000000(0000) GS:ffff8801db100000(0063) knlGS:00000000f5f5bb40 [ 50.544728] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 50.550605] CR2: 0000000008135f48 CR3: 00000001b70de000 CR4: 00000000001406e0 [ 50.557875] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 50.565141] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 50.572407] Call Trace: [ 50.575000] ? ucma_event_handler+0xfa0/0xfa0 [ 50.579501] ? __might_fault+0x110/0x1d0 [ 50.583541] ? lock_downgrade+0x980/0x980 [ 50.587662] ? kasan_check_read+0x11/0x20 [ 50.591804] ? __might_sleep+0x95/0x190 [ 50.595770] ? kasan_check_write+0x14/0x20 [ 50.599990] ? _copy_from_user+0x99/0x110 [ 50.604117] ucma_set_option+0x234/0x520 [ 50.608153] ? ucma_set_option+0x234/0x520 [ 50.612364] ? ucma_set_ib_path.isra.14+0x850/0x850 [ 50.617359] ? kasan_check_write+0x14/0x20 [ 50.621575] ? _copy_from_user+0x99/0x110 [ 50.625700] ucma_write+0x2d6/0x3d0 [ 50.629321] ? ucma_set_ib_path.isra.14+0x850/0x850 [ 50.634315] ? ucma_close_id+0x60/0x60 [ 50.638179] ? do_raw_spin_trylock+0x1a0/0x1a0 [ 50.642737] ? ucma_close_id+0x60/0x60 [ 50.646603] __vfs_write+0xef/0x970 [ 50.650215] ? kernel_read+0x120/0x120 [ 50.654091] ? may_open_dev+0xe0/0xe0 [ 50.657874] ? fsnotify+0x7b3/0x1140 [ 50.661574] ? rcu_is_watching+0x85/0x130 [ 50.665702] ? rcu_pm_notify+0xc0/0xc0 [ 50.669572] ? security_file_permission+0x89/0x1e0 [ 50.674473] ? rw_verify_area+0xe5/0x2b0 [ 50.678520] ? __fdget_raw+0x20/0x20 [ 50.682207] vfs_write+0x189/0x510 [ 50.685722] ksys_write+0xef/0x220 [ 50.689234] ? SyS_read+0x30/0x30 [ 50.692672] ? compat_SyS_ioctl+0x77/0x2a30 [ 50.696967] SyS_write+0x24/0x30 [ 50.700306] ? ksys_write+0x220/0x220 [ 50.704084] do_fast_syscall_32+0x3ec/0xf9f [ 50.708380] ? do_int80_syscall_32+0x9c0/0x9c0 [ 50.712935] ? finish_task_switch+0x1b9/0x970 [ 50.717400] ? finish_task_switch+0x17a/0x970 [ 50.721882] ? syscall_return_slowpath+0x2ac/0x550 [ 50.726786] ? prepare_exit_to_usermode+0x350/0x350 [ 50.731777] ? sysret32_from_system_call+0x5/0x3c [ 50.736598] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 50.741414] entry_SYSENTER_compat+0x70/0x7f [ 50.745806] RIP: 0023:0xf7f5fc99 [ 50.749141] RSP: 002b:00000000f5f5b0ac EFLAGS: 00000282 ORIG_RAX: 0000000000000004 [ 50.756820] RAX: ffffffffffffffda RBX: 0000000000000013 RCX: 0000000020000a40 [ 50.764061] RDX: 0000000000000020 RSI: 0000000000000000 RDI: 0000000000000000 [ 50.771301] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 50.778546] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 50.785798] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 50.793049] Code: 00 00 48 c1 ea 03 80 3c 02 00 0f 85 0d 05 00 00 49 8b 07 48 ba 00 00 00 00 00 fc ff df 48 8d b8 48 01 00 00 48 89 f9 48 c1 e9 03 <80> 3c 11 00 0f 85 54 05 00 00 48 c1 e3 04 48 03 98 48 01 00 00 [ 50.812148] RIP: ucma_set_ib_path.isra.14+0x26a/0x850 RSP: ffff8801b689f7a0 [ 50.819273] ---[ end trace 1ce881df5623e53f ]--- [ 50.824036] Kernel panic - not syncing: Fatal exception [ 50.829848] Dumping ftrace buffer: [ 50.833367] (ftrace buffer empty) [ 50.837048] Kernel Offset: disabled [ 50.840655] Rebooting in 86400 seconds..