[info] Using makefile-style concurrent boot in runlevel 2. [ 26.117039] audit: type=1800 audit(1544393288.027:21): pid=5837 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="bootlogs" dev="sda1" ino=2419 res=0 [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [ 27.081041] sshd (5904) used greatest stack depth: 15976 bytes left [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 31.126516] sshd (5975) used greatest stack depth: 15744 bytes left Warning: Permanently added '10.128.0.190' (ECDSA) to the list of known hosts. 2018/12/09 22:08:20 parsed 1 programs 2018/12/09 22:08:22 executed programs: 0 [ 40.448485] IPVS: ftp: loaded support on port[0] = 21 [ 40.448492] IPVS: ftp: loaded support on port[0] = 21 [ 40.463133] IPVS: ftp: loaded support on port[0] = 21 [ 40.468506] IPVS: ftp: loaded support on port[0] = 21 [ 40.480166] IPVS: ftp: loaded support on port[0] = 21 [ 40.499301] IPVS: ftp: loaded support on port[0] = 21 [ 41.872211] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.878704] bridge0: port 1(bridge_slave_0) entered disabled state [ 41.893887] device bridge_slave_0 entered promiscuous mode [ 41.930566] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.948595] bridge0: port 1(bridge_slave_0) entered disabled state [ 41.966149] device bridge_slave_0 entered promiscuous mode [ 41.979342] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.988175] bridge0: port 1(bridge_slave_0) entered disabled state [ 41.995731] device bridge_slave_0 entered promiscuous mode [ 42.005291] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.011666] bridge0: port 1(bridge_slave_0) entered disabled state [ 42.019453] device bridge_slave_0 entered promiscuous mode [ 42.029646] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.037222] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.044919] device bridge_slave_1 entered promiscuous mode [ 42.053253] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.059654] bridge0: port 1(bridge_slave_0) entered disabled state [ 42.067480] device bridge_slave_0 entered promiscuous mode [ 42.076687] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.088241] bridge0: port 1(bridge_slave_0) entered disabled state [ 42.095885] device bridge_slave_0 entered promiscuous mode [ 42.104981] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.111346] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.119249] device bridge_slave_1 entered promiscuous mode [ 42.128425] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 42.140258] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.150925] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.159848] device bridge_slave_1 entered promiscuous mode [ 42.166917] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.174688] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.188950] device bridge_slave_1 entered promiscuous mode [ 42.197004] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.204222] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.211665] device bridge_slave_1 entered promiscuous mode [ 42.221368] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 42.231706] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 42.242449] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 42.251002] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 42.280931] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.289146] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.296688] device bridge_slave_1 entered promiscuous mode [ 42.305316] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 42.314335] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 42.335959] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 42.348722] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 42.369515] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 42.399947] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 42.446180] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 42.492275] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 42.540161] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 42.576827] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 42.606333] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 42.632123] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 42.665424] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 42.677662] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 42.697756] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 42.710983] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 42.728018] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 42.742977] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 42.760634] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 42.771488] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 42.782003] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 42.793479] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 42.813351] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 42.829297] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 42.839982] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 42.852555] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 42.860491] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 42.886686] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 42.908841] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 42.923284] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 42.950752] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 43.005213] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 43.026909] team0: Port device team_slave_0 added [ 43.080145] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 43.093427] team0: Port device team_slave_1 added [ 43.137581] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 43.158579] team0: Port device team_slave_0 added [ 43.167574] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 43.176623] team0: Port device team_slave_0 added [ 43.209749] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 43.251147] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 43.268903] team0: Port device team_slave_0 added [ 43.280498] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 43.294057] team0: Port device team_slave_1 added [ 43.300514] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 43.312390] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 43.319653] team0: Port device team_slave_1 added [ 43.332506] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 43.342662] team0: Port device team_slave_0 added [ 43.350131] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 43.359452] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 43.369316] team0: Port device team_slave_1 added [ 43.375389] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 43.385335] team0: Port device team_slave_0 added [ 43.392312] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 43.400368] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 43.430704] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 43.444110] team0: Port device team_slave_1 added [ 43.453128] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 43.460939] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 43.470400] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 43.487160] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 43.502415] team0: Port device team_slave_1 added [ 43.508727] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 43.517553] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 43.532486] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 43.540352] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 43.550143] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 43.563712] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 43.574452] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 43.589175] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 43.601380] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 43.617305] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 43.626687] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 43.634939] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 43.643108] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 43.653838] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 43.661909] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 43.674226] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 43.683917] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 43.694715] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 43.705131] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 43.726123] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 43.734557] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 43.742778] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 43.750468] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 43.758454] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 43.766285] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 43.775315] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 43.787889] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 43.802016] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 43.809904] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 43.819751] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 43.828542] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 43.837285] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 43.847986] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 43.861502] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 43.870694] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 43.886034] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 43.894270] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 43.903015] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 43.913530] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 43.921408] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 43.935858] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 43.960665] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 43.974452] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 43.982550] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 43.993017] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 44.003676] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 44.019229] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 44.035195] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 44.058576] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 44.069782] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 44.085699] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 44.094943] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 44.564172] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.570696] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.577868] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.584289] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.593261] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 44.668541] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.675015] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.681680] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.688141] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.703476] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 44.740195] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.746631] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.753363] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.759736] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.777702] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 44.800413] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.806841] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.813558] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.819959] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.832858] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 44.911190] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.917636] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.924399] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.930770] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.939689] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 44.997440] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.003919] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.010588] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.017017] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.033849] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 45.592867] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 45.608839] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 45.619253] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 45.628829] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 45.636424] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 45.644665] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 47.512917] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.599955] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.742384] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.758449] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.771174] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.783699] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 47.821203] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.853043] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 47.988262] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 48.032776] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 48.043059] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 48.052616] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 48.068467] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 48.087046] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 48.136625] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 48.160975] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 48.168869] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 48.180121] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 48.311276] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 48.329889] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 48.344276] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 48.354182] 8021q: adding VLAN 0 to HW filter on device team0 [ 48.369438] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 48.380103] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 48.387025] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 48.400667] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 48.416397] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 48.430300] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 48.438644] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 48.461611] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 48.474715] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 48.516713] 8021q: adding VLAN 0 to HW filter on device team0 [ 48.655398] 8021q: adding VLAN 0 to HW filter on device team0 [ 48.669171] 8021q: adding VLAN 0 to HW filter on device team0 [ 48.686461] 8021q: adding VLAN 0 to HW filter on device team0 [ 48.729504] 8021q: adding VLAN 0 to HW filter on device team0 [ 49.488931] ================================================================== [ 49.496503] BUG: KASAN: use-after-free in __list_del_entry_valid+0xf1/0x100 [ 49.503626] Read of size 8 at addr ffff8881bf31b030 by task ip/7413 [ 49.510023] [ 49.511659] CPU: 1 PID: 7413 Comm: ip Not tainted 4.20.0-rc4+ #335 [ 49.517973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 49.527328] Call Trace: [ 49.529944] dump_stack+0x244/0x39d [ 49.533583] ? dump_stack_print_info.cold.1+0x20/0x20 [ 49.538776] ? printk+0xa7/0xcf [ 49.542062] ? kmsg_dump_rewind_nolock+0xe4/0xe4 [ 49.546840] print_address_description.cold.7+0x9/0x1ff [ 49.552211] kasan_report.cold.8+0x242/0x309 [ 49.556633] ? __list_del_entry_valid+0xf1/0x100 [ 49.561395] __asan_report_load8_noabort+0x14/0x20 [ 49.566332] __list_del_entry_valid+0xf1/0x100 [ 49.570930] neigh_mark_dead+0x13b/0x410 [ 49.575004] ? neigh_change_state+0x680/0x680 [ 49.579514] ? kasan_check_read+0x11/0x20 [ 49.583686] ? do_raw_write_lock+0x14f/0x310 [ 49.588106] ? do_raw_read_unlock+0x70/0x70 [ 49.592433] ? __lock_is_held+0xb5/0x140 [ 49.596502] neigh_flush_dev+0x3a1/0x960 [ 49.600563] ? neigh_changeaddr+0x24/0x40 [ 49.604724] ? __neigh_for_each_release+0x4f0/0x4f0 [ 49.609781] ? do_raw_read_unlock+0x70/0x70 [ 49.614135] ? net_to_rxe+0xe1/0x110 [ 49.617870] neigh_changeaddr+0x31/0x40 [ 49.621850] ndisc_netdev_event+0xe6/0x5b0 [ 49.626094] ? ndisc_send_unsol_na+0x500/0x500 [ 49.630684] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 49.636233] ? netconsole_netdev_event+0x7d/0x280 [ 49.641081] notifier_call_chain+0x17e/0x380 [ 49.645507] ? unregister_die_notifier+0x20/0x20 [ 49.650267] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 49.655806] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 49.661348] ? rtnl_is_locked+0xb5/0xf0 [ 49.665322] ? rtnl_trylock+0x20/0x20 [ 49.669129] raw_notifier_call_chain+0x2d/0x40 [ 49.673717] call_netdevice_notifiers_info+0x3f/0x90 [ 49.678820] dev_set_mac_address+0x293/0x3b0 [ 49.683229] ? netdev_state_change+0x1a0/0x1a0 [ 49.687843] ? lru_cache_add+0xa50/0xa50 [ 49.691923] do_setlink+0x7c7/0x3f30 [ 49.695636] ? print_usage_bug+0xc0/0xc0 [ 49.699706] ? validate_linkmsg+0xa50/0xa50 [ 49.704029] ? wp_page_copy+0x187b/0x24f0 [ 49.708187] ? mark_held_locks+0x130/0x130 [ 49.712431] ? mark_held_locks+0x130/0x130 [ 49.716688] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 49.721898] ? validate_nla+0x29a/0x1650 [ 49.725960] ? nla_memcmp+0x90/0x90 [ 49.729618] ? mark_held_locks+0x130/0x130 [ 49.733856] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 49.739392] ? rtnl_is_locked+0xb5/0xf0 [ 49.743365] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 49.748389] ? validate_linkmsg+0x271/0xa50 [ 49.752724] ? rtnl_stats_dump+0xd70/0xd70 [ 49.756960] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 49.762497] ? netdev_master_upper_dev_get+0x173/0x250 [ 49.767770] ? __nla_parse+0x12c/0x3e0 [ 49.771672] ? netdev_has_any_upper_dev+0x170/0x170 [ 49.776700] __rtnl_newlink+0xcde/0x19e0 [ 49.780779] ? rtnl_link_unregister+0x390/0x390 [ 49.785458] ? rcu_softirq_qs+0x20/0x20 [ 49.789427] ? rcu_softirq_qs+0x20/0x20 [ 49.793399] ? unwind_dump+0x190/0x190 [ 49.797295] ? is_bpf_text_address+0xd3/0x170 [ 49.801795] ? kernel_text_address+0x79/0xf0 [ 49.806205] ? __kernel_text_address+0xd/0x40 [ 49.810722] ? unwind_get_return_address+0x61/0xa0 [ 49.815654] ? __save_stack_trace+0x8d/0xf0 [ 49.819989] ? save_stack+0xa9/0xd0 [ 49.823619] ? save_stack+0x43/0xd0 [ 49.827245] ? kasan_kmalloc+0xc7/0xe0 [ 49.831132] ? kmem_cache_alloc_trace+0x152/0x750 [ 49.835973] ? rtnl_newlink+0x4d/0xa0 [ 49.839769] ? rtnetlink_rcv_msg+0x46a/0xc20 [ 49.844176] ? netlink_rcv_skb+0x172/0x440 [ 49.848408] ? rtnetlink_rcv+0x1c/0x20 [ 49.852307] ? netlink_unicast+0x5a5/0x760 [ 49.856541] ? netlink_sendmsg+0xa18/0xfc0 [ 49.860823] ? rtnl_newlink+0x4d/0xa0 [ 49.864644] ? rcu_read_lock_sched_held+0x14f/0x180 [ 49.869661] ? kmem_cache_alloc_trace+0x353/0x750 [ 49.874504] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 49.879776] ? ns_capable_common+0x13f/0x170 [ 49.884229] ? rcu_softirq_qs+0x20/0x20 [ 49.888276] rtnl_newlink+0x6b/0xa0 [ 49.891908] ? __rtnl_newlink+0x19e0/0x19e0 [ 49.896229] rtnetlink_rcv_msg+0x46a/0xc20 [ 49.900464] ? rtnl_fdb_dump+0xd00/0xd00 [ 49.904551] netlink_rcv_skb+0x172/0x440 [ 49.908630] ? rtnl_fdb_dump+0xd00/0xd00 [ 49.912709] ? netlink_ack+0xb80/0xb80 [ 49.916609] rtnetlink_rcv+0x1c/0x20 [ 49.920324] netlink_unicast+0x5a5/0x760 [ 49.924389] ? netlink_attachskb+0x9a0/0x9a0 [ 49.928802] ? aa_sk_perm+0x22b/0x8e0 [ 49.932615] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 49.937634] netlink_sendmsg+0xa18/0xfc0 [ 49.941706] ? netlink_unicast+0x760/0x760 [ 49.945943] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 49.950873] ? apparmor_socket_sendmsg+0x29/0x30 [ 49.955632] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 49.961182] ? security_socket_sendmsg+0x94/0xc0 [ 49.965939] ? netlink_unicast+0x760/0x760 [ 49.970190] sock_sendmsg+0xd5/0x120 [ 49.973910] ___sys_sendmsg+0x7fd/0x930 [ 49.977888] ? copy_msghdr_from_user+0x580/0x580 [ 49.982648] ? zap_class+0x640/0x640 [ 49.986364] ? zap_class+0x640/0x640 [ 49.990075] ? zap_class+0x640/0x640 [ 49.993819] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 49.999354] ? __fget_light+0x2e9/0x430 [ 50.003331] ? fget_raw+0x20/0x20 [ 50.006791] ? __do_page_fault+0x620/0xe60 [ 50.011050] ? lock_downgrade+0x900/0x900 [ 50.015215] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 50.020143] ? kasan_check_read+0x11/0x20 [ 50.024301] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 50.029849] ? sockfd_lookup_light+0xc5/0x160 [ 50.034352] __sys_sendmsg+0x11d/0x280 [ 50.038242] ? __ia32_sys_shutdown+0x80/0x80 [ 50.042671] ? up_read_non_owner+0x100/0x100 [ 50.047105] ? do_syscall_64+0x9a/0x820 [ 50.051297] ? do_syscall_64+0x9a/0x820 [ 50.055300] ? trace_hardirqs_off_caller+0x310/0x310 [ 50.060409] __x64_sys_sendmsg+0x78/0xb0 [ 50.064477] do_syscall_64+0x1b9/0x820 [ 50.068371] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 50.073738] ? syscall_return_slowpath+0x5e0/0x5e0 [ 50.078665] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 50.083509] ? trace_hardirqs_on_caller+0x310/0x310 [ 50.088540] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 50.093559] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 50.099107] ? prepare_exit_to_usermode+0x291/0x3b0 [ 50.104136] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 50.108989] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 50.114181] RIP: 0033:0x7f850ee1e320 [ 50.117897] Code: 02 48 83 c8 ff eb 8d 48 8b 05 14 7b 2a 00 f7 da 64 89 10 48 83 c8 ff eb c9 90 83 3d d5 d2 2a 00 00 75 10 b8 2e 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 5e ba 00 00 48 89 04 24 [ 50.136800] RSP: 002b:00007ffcb6ff3958 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 50.144521] RAX: ffffffffffffffda RBX: 00007ffcb6ff7a50 RCX: 00007f850ee1e320 [ 50.151787] RDX: 0000000000000000 RSI: 00007ffcb6ff3990 RDI: 0000000000000003 [ 50.159055] RBP: 00007ffcb6ff3990 R08: 0000000000000000 R09: 0000000000000000 [ 50.166332] R10: 0000000000000000 R11: 0000000000000246 R12: 000000005c0d9261 [ 50.173604] R13: 0000000000000000 R14: 00000000006395c0 R15: 00007ffcb6ff8230 [ 50.180907] [ 50.183009] Allocated by task 6342: [ 50.186640] save_stack+0x43/0xd0 [ 50.190115] kasan_kmalloc+0xc7/0xe0 [ 50.193824] __kmalloc+0x15b/0x760 [ 50.197375] ___neigh_create+0x13fc/0x2600 [ 50.201609] __neigh_create+0x30/0x40 [ 50.205407] ip6_finish_output2+0xa59/0x27a0 [ 50.209810] ip6_finish_output+0x58c/0xc60 [ 50.214040] ip6_output+0x232/0x9d0 [ 50.217664] mld_sendpack+0xad5/0xfa0 [ 50.221475] mld_ifc_timer_expire+0x447/0x8a0 [ 50.225966] call_timer_fn+0x272/0x920 [ 50.229845] __run_timers+0x7e5/0xc70 [ 50.233653] run_timer_softirq+0x52/0xb0 [ 50.237725] __do_softirq+0x308/0xb7e [ 50.241537] [ 50.243172] Freed by task 7388: [ 50.246450] save_stack+0x43/0xd0 [ 50.249902] __kasan_slab_free+0x102/0x150 [ 50.254135] kasan_slab_free+0xe/0x10 [ 50.257932] kfree+0xcf/0x230 [ 50.261038] rcu_process_callbacks+0x1140/0x1ac0 [ 50.265789] __do_softirq+0x308/0xb7e [ 50.269579] [ 50.271205] The buggy address belongs to the object at ffff8881bf31adc0 [ 50.271205] which belongs to the cache kmalloc-1k of size 1024 [ 50.283860] The buggy address is located 624 bytes inside of [ 50.283860] 1024-byte region [ffff8881bf31adc0, ffff8881bf31b1c0) [ 50.295812] The buggy address belongs to the page: [ 50.300735] page:ffffea0006fcc680 count:1 mapcount:0 mapping:ffff8881da800ac0 index:0x0 compound_mapcount: 0 [ 50.310711] flags: 0x2fffc0000010200(slab|head) [ 50.315396] raw: 02fffc0000010200 ffffea0006fa4988 ffffea0006ef0288 ffff8881da800ac0 [ 50.323294] raw: 0000000000000000 ffff8881bf31a040 0000000100000007 0000000000000000 [ 50.331163] page dumped because: kasan: bad access detected [ 50.336885] [ 50.338501] Memory state around the buggy address: [ 50.343424] ffff8881bf31af00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 50.350776] ffff8881bf31af80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 50.358153] >ffff8881bf31b000: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 50.365498] ^ [ 50.370441] ffff8881bf31b080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 50.377794] ffff8881bf31b100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 50.385141] ================================================================== [ 50.392486] Disabling lock debugging due to kernel taint [ 50.397975] Kernel panic - not syncing: panic_on_warn set ... [ 50.403858] CPU: 1 PID: 7413 Comm: ip Tainted: G B 4.20.0-rc4+ #335 [ 50.411552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 50.420895] Call Trace: [ 50.423483] dump_stack+0x244/0x39d [ 50.427119] ? dump_stack_print_info.cold.1+0x20/0x20 [ 50.432317] panic+0x2ad/0x55c [ 50.435510] ? add_taint.cold.5+0x16/0x16 [ 50.439671] ? trace_hardirqs_on+0xb4/0x310 [ 50.443998] kasan_end_report+0x47/0x4f [ 50.447964] kasan_report.cold.8+0x76/0x309 [ 50.452287] ? __list_del_entry_valid+0xf1/0x100 [ 50.457038] __asan_report_load8_noabort+0x14/0x20 [ 50.461963] __list_del_entry_valid+0xf1/0x100 [ 50.466543] neigh_mark_dead+0x13b/0x410 [ 50.470623] ? neigh_change_state+0x680/0x680 [ 50.475150] ? kasan_check_read+0x11/0x20 [ 50.479293] ? do_raw_write_lock+0x14f/0x310 [ 50.483695] ? do_raw_read_unlock+0x70/0x70 [ 50.488012] ? __lock_is_held+0xb5/0x140 [ 50.492071] neigh_flush_dev+0x3a1/0x960 [ 50.496155] ? neigh_changeaddr+0x24/0x40 [ 50.500304] ? __neigh_for_each_release+0x4f0/0x4f0 [ 50.505311] ? do_raw_read_unlock+0x70/0x70 [ 50.509625] ? net_to_rxe+0xe1/0x110 [ 50.513343] neigh_changeaddr+0x31/0x40 [ 50.517315] ndisc_netdev_event+0xe6/0x5b0 [ 50.521546] ? ndisc_send_unsol_na+0x500/0x500 [ 50.526140] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 50.531678] ? netconsole_netdev_event+0x7d/0x280 [ 50.536522] notifier_call_chain+0x17e/0x380 [ 50.540963] ? unregister_die_notifier+0x20/0x20 [ 50.545714] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 50.551248] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 50.556780] ? rtnl_is_locked+0xb5/0xf0 [ 50.560744] ? rtnl_trylock+0x20/0x20 [ 50.564565] raw_notifier_call_chain+0x2d/0x40 [ 50.569167] call_netdevice_notifiers_info+0x3f/0x90 [ 50.574273] dev_set_mac_address+0x293/0x3b0 [ 50.578678] ? netdev_state_change+0x1a0/0x1a0 [ 50.583263] ? lru_cache_add+0xa50/0xa50 [ 50.587326] do_setlink+0x7c7/0x3f30 [ 50.591040] ? print_usage_bug+0xc0/0xc0 [ 50.595107] ? validate_linkmsg+0xa50/0xa50 [ 50.599444] ? wp_page_copy+0x187b/0x24f0 [ 50.603590] ? mark_held_locks+0x130/0x130 [ 50.607833] ? mark_held_locks+0x130/0x130 [ 50.612062] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 50.617258] ? validate_nla+0x29a/0x1650 [ 50.621317] ? nla_memcmp+0x90/0x90 [ 50.624938] ? mark_held_locks+0x130/0x130 [ 50.629173] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 50.634704] ? rtnl_is_locked+0xb5/0xf0 [ 50.638688] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 50.643697] ? validate_linkmsg+0x271/0xa50 [ 50.648017] ? rtnl_stats_dump+0xd70/0xd70 [ 50.652248] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 50.657783] ? netdev_master_upper_dev_get+0x173/0x250 [ 50.663054] ? __nla_parse+0x12c/0x3e0 [ 50.666934] ? netdev_has_any_upper_dev+0x170/0x170 [ 50.671946] __rtnl_newlink+0xcde/0x19e0 [ 50.676008] ? rtnl_link_unregister+0x390/0x390 [ 50.680671] ? rcu_softirq_qs+0x20/0x20 [ 50.684640] ? rcu_softirq_qs+0x20/0x20 [ 50.688614] ? unwind_dump+0x190/0x190 [ 50.692521] ? is_bpf_text_address+0xd3/0x170 [ 50.697012] ? kernel_text_address+0x79/0xf0 [ 50.701414] ? __kernel_text_address+0xd/0x40 [ 50.705910] ? unwind_get_return_address+0x61/0xa0 [ 50.710837] ? __save_stack_trace+0x8d/0xf0 [ 50.715160] ? save_stack+0xa9/0xd0 [ 50.718780] ? save_stack+0x43/0xd0 [ 50.722413] ? kasan_kmalloc+0xc7/0xe0 [ 50.726293] ? kmem_cache_alloc_trace+0x152/0x750 [ 50.731127] ? rtnl_newlink+0x4d/0xa0 [ 50.734918] ? rtnetlink_rcv_msg+0x46a/0xc20 [ 50.739326] ? netlink_rcv_skb+0x172/0x440 [ 50.743565] ? rtnetlink_rcv+0x1c/0x20 [ 50.747445] ? netlink_unicast+0x5a5/0x760 [ 50.751674] ? netlink_sendmsg+0xa18/0xfc0 [ 50.755926] ? rtnl_newlink+0x4d/0xa0 [ 50.759734] ? rcu_read_lock_sched_held+0x14f/0x180 [ 50.764740] ? kmem_cache_alloc_trace+0x353/0x750 [ 50.769614] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 50.774884] ? ns_capable_common+0x13f/0x170 [ 50.779285] ? rcu_softirq_qs+0x20/0x20 [ 50.783283] rtnl_newlink+0x6b/0xa0 [ 50.786916] ? __rtnl_newlink+0x19e0/0x19e0 [ 50.791240] rtnetlink_rcv_msg+0x46a/0xc20 [ 50.795475] ? rtnl_fdb_dump+0xd00/0xd00 [ 50.799566] netlink_rcv_skb+0x172/0x440 [ 50.803672] ? rtnl_fdb_dump+0xd00/0xd00 [ 50.807739] ? netlink_ack+0xb80/0xb80 [ 50.811628] rtnetlink_rcv+0x1c/0x20 [ 50.815344] netlink_unicast+0x5a5/0x760 [ 50.819402] ? netlink_attachskb+0x9a0/0x9a0 [ 50.823802] ? aa_sk_perm+0x22b/0x8e0 [ 50.827601] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 50.832673] netlink_sendmsg+0xa18/0xfc0 [ 50.836763] ? netlink_unicast+0x760/0x760 [ 50.840989] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 50.845910] ? apparmor_socket_sendmsg+0x29/0x30 [ 50.850659] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 50.856197] ? security_socket_sendmsg+0x94/0xc0 [ 50.860961] ? netlink_unicast+0x760/0x760 [ 50.865190] sock_sendmsg+0xd5/0x120 [ 50.868895] ___sys_sendmsg+0x7fd/0x930 [ 50.872865] ? copy_msghdr_from_user+0x580/0x580 [ 50.877640] ? zap_class+0x640/0x640 [ 50.881382] ? zap_class+0x640/0x640 [ 50.885107] ? zap_class+0x640/0x640 [ 50.888837] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 50.894369] ? __fget_light+0x2e9/0x430 [ 50.898337] ? fget_raw+0x20/0x20 [ 50.901793] ? __do_page_fault+0x620/0xe60 [ 50.906036] ? lock_downgrade+0x900/0x900 [ 50.910177] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 50.915106] ? kasan_check_read+0x11/0x20 [ 50.919254] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 50.924787] ? sockfd_lookup_light+0xc5/0x160 [ 50.929282] __sys_sendmsg+0x11d/0x280 [ 50.933170] ? __ia32_sys_shutdown+0x80/0x80 [ 50.937577] ? up_read_non_owner+0x100/0x100 [ 50.942018] ? do_syscall_64+0x9a/0x820 [ 50.946001] ? do_syscall_64+0x9a/0x820 [ 50.949987] ? trace_hardirqs_off_caller+0x310/0x310 [ 50.955099] __x64_sys_sendmsg+0x78/0xb0 [ 50.959161] do_syscall_64+0x1b9/0x820 [ 50.963047] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 50.968425] ? syscall_return_slowpath+0x5e0/0x5e0 [ 50.973349] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 50.978204] ? trace_hardirqs_on_caller+0x310/0x310 [ 50.983214] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 50.988224] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 50.993753] ? prepare_exit_to_usermode+0x291/0x3b0 [ 50.998764] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 51.003627] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 51.008809] RIP: 0033:0x7f850ee1e320 [ 51.012537] Code: 02 48 83 c8 ff eb 8d 48 8b 05 14 7b 2a 00 f7 da 64 89 10 48 83 c8 ff eb c9 90 83 3d d5 d2 2a 00 00 75 10 b8 2e 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 5e ba 00 00 48 89 04 24 [ 51.031429] RSP: 002b:00007ffcb6ff3958 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 51.039145] RAX: ffffffffffffffda RBX: 00007ffcb6ff7a50 RCX: 00007f850ee1e320 [ 51.046409] RDX: 0000000000000000 RSI: 00007ffcb6ff3990 RDI: 0000000000000003 [ 51.053669] RBP: 00007ffcb6ff3990 R08: 0000000000000000 R09: 0000000000000000 [ 51.061201] R10: 0000000000000000 R11: 0000000000000246 R12: 000000005c0d9261 [ 51.068462] R13: 0000000000000000 R14: 00000000006395c0 R15: 00007ffcb6ff8230 [ 51.076723] Kernel Offset: disabled [ 51.080368] Rebooting in 86400 seconds..