Warning: Permanently added '10.128.0.180' (ECDSA) to the list of known hosts.
2022/09/21 09:58:14 fuzzer started
2022/09/21 09:58:14 dialing manager at 10.128.0.163:35635
2022/09/21 09:58:14 syscalls: 3525
2022/09/21 09:58:14 code coverage: enabled
2022/09/21 09:58:14 comparison tracing: ioctl(KCOV_TRACE_CMP) failed: invalid argument
2022/09/21 09:58:14 extra coverage: extra coverage is not supported by the kernel
2022/09/21 09:58:14 delay kcov mmap: mmap returned an invalid pointer
2022/09/21 09:58:14 setuid sandbox: enabled
2022/09/21 09:58:14 namespace sandbox: enabled
2022/09/21 09:58:14 Android sandbox: /sys/fs/selinux/policy does not exist
2022/09/21 09:58:14 fault injection: enabled
2022/09/21 09:58:14 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2022/09/21 09:58:14 net packet injection: enabled
2022/09/21 09:58:14 net device setup: enabled
2022/09/21 09:58:14 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/09/21 09:58:14 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/09/21 09:58:14 USB emulation: /dev/raw-gadget does not exist
2022/09/21 09:58:14 hci packet injection: enabled
2022/09/21 09:58:14 wifi device emulation: kernel 4.17 required (have 4.14.294-syzkaller                                               )
2022/09/21 09:58:14 802.15.4 emulation: /sys/bus/platform/devices/mac802154_hwsim does not exist
2022/09/21 09:58:14 fetching corpus: 0, signal 0/2000 (executing program)
2022/09/21 09:58:14 fetching corpus: 50, signal 50413/54160 (executing program)
2022/09/21 09:58:15 fetching corpus: 100, signal 74288/79753 (executing program)
2022/09/21 09:58:15 fetching corpus: 150, signal 88007/95168 (executing program)
2022/09/21 09:58:15 fetching corpus: 200, signal 105498/114261 (executing program)
2022/09/21 09:58:15 fetching corpus: 250, signal 117691/128072 (executing program)
2022/09/21 09:58:15 fetching corpus: 300, signal 131495/143376 (executing program)
2022/09/21 09:58:16 fetching corpus: 350, signal 141670/155014 (executing program)
2022/09/21 09:58:16 fetching corpus: 400, signal 151225/166033 (executing program)
2022/09/21 09:58:16 fetching corpus: 450, signal 160578/176825 (executing program)
2022/09/21 09:58:16 fetching corpus: 500, signal 167663/185362 (executing program)
2022/09/21 09:58:16 fetching corpus: 550, signal 173678/192807 (executing program)
2022/09/21 09:58:17 fetching corpus: 600, signal 179068/199586 (executing program)
2022/09/21 09:58:17 fetching corpus: 650, signal 190117/211839 (executing program)
2022/09/21 09:58:17 fetching corpus: 700, signal 197273/220274 (executing program)
2022/09/21 09:58:17 fetching corpus: 750, signal 201230/225641 (executing program)
2022/09/21 09:58:17 fetching corpus: 800, signal 206104/231856 (executing program)
2022/09/21 09:58:17 fetching corpus: 850, signal 211804/238817 (executing program)
2022/09/21 09:58:18 fetching corpus: 900, signal 217942/246196 (executing program)
2022/09/21 09:58:18 fetching corpus: 950, signal 222715/252234 (executing program)
2022/09/21 09:58:18 fetching corpus: 1000, signal 228049/258782 (executing program)
2022/09/21 09:58:18 fetching corpus: 1050, signal 233397/265270 (executing program)
2022/09/21 09:58:18 fetching corpus: 1100, signal 237782/270839 (executing program)
2022/09/21 09:58:19 fetching corpus: 1150, signal 242949/277165 (executing program)
2022/09/21 09:58:19 fetching corpus: 1200, signal 247035/282434 (executing program)
2022/09/21 09:58:19 fetching corpus: 1250, signal 250289/286927 (executing program)
2022/09/21 09:58:19 fetching corpus: 1300, signal 254449/292207 (executing program)
2022/09/21 09:58:20 fetching corpus: 1350, signal 258827/297684 (executing program)
2022/09/21 09:58:20 fetching corpus: 1400, signal 262953/302948 (executing program)
2022/09/21 09:58:20 fetching corpus: 1450, signal 266511/307620 (executing program)
2022/09/21 09:58:20 fetching corpus: 1500, signal 270259/312523 (executing program)
2022/09/21 09:58:20 fetching corpus: 1550, signal 274430/317709 (executing program)
2022/09/21 09:58:21 fetching corpus: 1600, signal 276571/320995 (executing program)
2022/09/21 09:58:21 fetching corpus: 1650, signal 279133/324686 (executing program)
2022/09/21 09:58:21 fetching corpus: 1700, signal 282765/329369 (executing program)
2022/09/21 09:58:21 fetching corpus: 1750, signal 285633/333372 (executing program)
2022/09/21 09:58:21 fetching corpus: 1800, signal 290116/338806 (executing program)
2022/09/21 09:58:22 fetching corpus: 1850, signal 293233/342910 (executing program)
2022/09/21 09:58:22 fetching corpus: 1900, signal 296679/347331 (executing program)
2022/09/21 09:58:22 fetching corpus: 1950, signal 299151/350865 (executing program)
2022/09/21 09:58:22 fetching corpus: 2000, signal 301282/354087 (executing program)
2022/09/21 09:58:22 fetching corpus: 2050, signal 304677/358432 (executing program)
2022/09/21 09:58:22 fetching corpus: 2100, signal 308188/362856 (executing program)
2022/09/21 09:58:23 fetching corpus: 2150, signal 311029/366664 (executing program)
2022/09/21 09:58:23 fetching corpus: 2200, signal 313373/370050 (executing program)
2022/09/21 09:58:23 fetching corpus: 2250, signal 315464/373200 (executing program)
2022/09/21 09:58:23 fetching corpus: 2300, signal 317962/376711 (executing program)
2022/09/21 09:58:24 fetching corpus: 2350, signal 320736/380434 (executing program)
2022/09/21 09:58:24 fetching corpus: 2400, signal 324066/384640 (executing program)
2022/09/21 09:58:24 fetching corpus: 2450, signal 326079/387673 (executing program)
2022/09/21 09:58:24 fetching corpus: 2500, signal 328028/390610 (executing program)
2022/09/21 09:58:24 fetching corpus: 2550, signal 329941/393515 (executing program)
2022/09/21 09:58:24 fetching corpus: 2600, signal 331625/396241 (executing program)
2022/09/21 09:58:25 fetching corpus: 2650, signal 334131/399650 (executing program)
2022/09/21 09:58:25 fetching corpus: 2700, signal 336623/403021 (executing program)
2022/09/21 09:58:25 fetching corpus: 2750, signal 338994/406274 (executing program)
2022/09/21 09:58:26 fetching corpus: 2800, signal 341394/409578 (executing program)
2022/09/21 09:58:26 fetching corpus: 2850, signal 343412/412519 (executing program)
2022/09/21 09:58:26 fetching corpus: 2900, signal 345785/415778 (executing program)
2022/09/21 09:58:26 fetching corpus: 2950, signal 347403/418357 (executing program)
2022/09/21 09:58:26 fetching corpus: 3000, signal 349353/421209 (executing program)
2022/09/21 09:58:27 fetching corpus: 3050, signal 351458/424183 (executing program)
2022/09/21 09:58:27 fetching corpus: 3100, signal 353252/426869 (executing program)
2022/09/21 09:58:27 fetching corpus: 3150, signal 355514/429943 (executing program)
2022/09/21 09:58:27 fetching corpus: 3200, signal 357156/432496 (executing program)
2022/09/21 09:58:27 fetching corpus: 3250, signal 358763/435059 (executing program)
2022/09/21 09:58:27 fetching corpus: 3300, signal 360813/437914 (executing program)
2022/09/21 09:58:28 fetching corpus: 3350, signal 363196/441078 (executing program)
2022/09/21 09:58:28 fetching corpus: 3400, signal 364644/443389 (executing program)
2022/09/21 09:58:28 fetching corpus: 3450, signal 366168/445818 (executing program)
2022/09/21 09:58:28 fetching corpus: 3500, signal 368099/448525 (executing program)
2022/09/21 09:58:28 fetching corpus: 3550, signal 370211/451427 (executing program)
2022/09/21 09:58:29 fetching corpus: 3600, signal 371801/453859 (executing program)
2022/09/21 09:58:29 fetching corpus: 3650, signal 373132/456059 (executing program)
2022/09/21 09:58:29 fetching corpus: 3700, signal 374767/458465 (executing program)
2022/09/21 09:58:29 fetching corpus: 3750, signal 376751/461193 (executing program)
2022/09/21 09:58:29 fetching corpus: 3800, signal 378858/464029 (executing program)
2022/09/21 09:58:29 fetching corpus: 3850, signal 380140/466149 (executing program)
2022/09/21 09:58:30 fetching corpus: 3900, signal 381608/468434 (executing program)
2022/09/21 09:58:30 fetching corpus: 3950, signal 383416/471060 (executing program)
2022/09/21 09:58:30 fetching corpus: 4000, signal 384902/473339 (executing program)
2022/09/21 09:58:30 fetching corpus: 4050, signal 385938/475275 (executing program)
2022/09/21 09:58:30 fetching corpus: 4100, signal 387459/477584 (executing program)
2022/09/21 09:58:30 fetching corpus: 4150, signal 389078/479947 (executing program)
2022/09/21 09:58:31 fetching corpus: 4200, signal 391020/482593 (executing program)
2022/09/21 09:58:31 fetching corpus: 4250, signal 392312/484687 (executing program)
2022/09/21 09:58:31 fetching corpus: 4300, signal 393593/486830 (executing program)
2022/09/21 09:58:31 fetching corpus: 4350, signal 395021/488985 (executing program)
2022/09/21 09:58:31 fetching corpus: 4400, signal 397865/492260 (executing program)
2022/09/21 09:58:32 fetching corpus: 4450, signal 398871/494094 (executing program)
2022/09/21 09:58:32 fetching corpus: 4500, signal 400241/496235 (executing program)
2022/09/21 09:58:32 fetching corpus: 4550, signal 401840/498526 (executing program)
2022/09/21 09:58:32 fetching corpus: 4600, signal 403113/500561 (executing program)
2022/09/21 09:58:32 fetching corpus: 4650, signal 404724/502901 (executing program)
2022/09/21 09:58:32 fetching corpus: 4700, signal 405973/504917 (executing program)
2022/09/21 09:58:33 fetching corpus: 4750, signal 407145/506831 (executing program)
2022/09/21 09:58:33 fetching corpus: 4800, signal 408845/509168 (executing program)
2022/09/21 09:58:33 fetching corpus: 4850, signal 410166/511216 (executing program)
2022/09/21 09:58:33 fetching corpus: 4900, signal 411160/512986 (executing program)
2022/09/21 09:58:33 fetching corpus: 4950, signal 412905/515363 (executing program)
2022/09/21 09:58:34 fetching corpus: 5000, signal 414601/517690 (executing program)
2022/09/21 09:58:34 fetching corpus: 5050, signal 416481/520102 (executing program)
2022/09/21 09:58:34 fetching corpus: 5100, signal 418291/522545 (executing program)
2022/09/21 09:58:34 fetching corpus: 5150, signal 419628/524527 (executing program)
2022/09/21 09:58:34 fetching corpus: 5200, signal 420572/526229 (executing program)
2022/09/21 09:58:35 fetching corpus: 5250, signal 422121/528394 (executing program)
2022/09/21 09:58:35 fetching corpus: 5300, signal 423362/530336 (executing program)
2022/09/21 09:58:35 fetching corpus: 5350, signal 424379/532068 (executing program)
2022/09/21 09:58:35 fetching corpus: 5400, signal 425342/533840 (executing program)
2022/09/21 09:58:35 fetching corpus: 5450, signal 426612/535786 (executing program)
2022/09/21 09:58:35 fetching corpus: 5500, signal 427728/537601 (executing program)
2022/09/21 09:58:36 fetching corpus: 5550, signal 429727/540064 (executing program)
2022/09/21 09:58:36 fetching corpus: 5600, signal 431043/542045 (executing program)
2022/09/21 09:58:36 fetching corpus: 5650, signal 432255/543929 (executing program)
2022/09/21 09:58:36 fetching corpus: 5700, signal 433299/545631 (executing program)
2022/09/21 09:58:36 fetching corpus: 5750, signal 434336/547384 (executing program)
2022/09/21 09:58:36 fetching corpus: 5800, signal 435275/548997 (executing program)
2022/09/21 09:58:37 fetching corpus: 5850, signal 436290/550678 (executing program)
2022/09/21 09:58:37 fetching corpus: 5900, signal 437486/552518 (executing program)
2022/09/21 09:58:37 fetching corpus: 5950, signal 438903/554549 (executing program)
2022/09/21 09:58:37 fetching corpus: 6000, signal 439926/556230 (executing program)
2022/09/21 09:58:37 fetching corpus: 6050, signal 440944/557874 (executing program)
2022/09/21 09:58:37 fetching corpus: 6100, signal 442694/560054 (executing program)
2022/09/21 09:58:38 fetching corpus: 6150, signal 443740/561751 (executing program)
2022/09/21 09:58:38 fetching corpus: 6200, signal 444681/563386 (executing program)
2022/09/21 09:58:38 fetching corpus: 6250, signal 448645/567092 (executing program)
2022/09/21 09:58:38 fetching corpus: 6300, signal 449772/568830 (executing program)
2022/09/21 09:58:39 fetching corpus: 6350, signal 450741/570430 (executing program)
2022/09/21 09:58:39 fetching corpus: 6400, signal 452146/572331 (executing program)
2022/09/21 09:58:39 fetching corpus: 6450, signal 453412/574215 (executing program)
2022/09/21 09:58:40 fetching corpus: 6500, signal 455063/576286 (executing program)
2022/09/21 09:58:40 fetching corpus: 6550, signal 455847/577760 (executing program)
2022/09/21 09:58:40 fetching corpus: 6600, signal 456818/579356 (executing program)
2022/09/21 09:58:40 fetching corpus: 6650, signal 457509/580702 (executing program)
2022/09/21 09:58:40 fetching corpus: 6700, signal 458444/582233 (executing program)
2022/09/21 09:58:40 fetching corpus: 6750, signal 459711/583995 (executing program)
2022/09/21 09:58:40 fetching corpus: 6800, signal 460832/585651 (executing program)
2022/09/21 09:58:41 fetching corpus: 6850, signal 462207/587491 (executing program)
2022/09/21 09:58:41 fetching corpus: 6900, signal 463817/589472 (executing program)
2022/09/21 09:58:41 fetching corpus: 6950, signal 464652/590991 (executing program)
2022/09/21 09:58:41 fetching corpus: 7000, signal 465503/592526 (executing program)
2022/09/21 09:58:41 fetching corpus: 7050, signal 466581/594195 (executing program)
2022/09/21 09:58:42 fetching corpus: 7100, signal 467583/595756 (executing program)
2022/09/21 09:58:42 fetching corpus: 7150, signal 468528/597287 (executing program)
2022/09/21 09:58:42 fetching corpus: 7200, signal 469818/599037 (executing program)
2022/09/21 09:58:42 fetching corpus: 7250, signal 470562/600402 (executing program)
2022/09/21 09:58:42 fetching corpus: 7300, signal 471665/602035 (executing program)
2022/09/21 09:58:43 fetching corpus: 7350, signal 472887/603758 (executing program)
2022/09/21 09:58:43 fetching corpus: 7400, signal 473695/605147 (executing program)
2022/09/21 09:58:43 fetching corpus: 7450, signal 474405/606523 (executing program)
2022/09/21 09:58:43 fetching corpus: 7500, signal 475447/608067 (executing program)
2022/09/21 09:58:43 fetching corpus: 7550, signal 476288/609480 (executing program)
2022/09/21 09:58:43 fetching corpus: 7600, signal 477266/610992 (executing program)
2022/09/21 09:58:44 fetching corpus: 7650, signal 478249/612516 (executing program)
2022/09/21 09:58:44 fetching corpus: 7700, signal 479251/614025 (executing program)
2022/09/21 09:58:44 fetching corpus: 7750, signal 480442/615619 (executing program)
2022/09/21 09:58:44 fetching corpus: 7800, signal 481494/617124 (executing program)
2022/09/21 09:58:44 fetching corpus: 7850, signal 482288/618484 (executing program)
2022/09/21 09:58:45 fetching corpus: 7900, signal 483015/619782 (executing program)
2022/09/21 09:58:45 fetching corpus: 7950, signal 484189/621334 (executing program)
2022/09/21 09:58:45 fetching corpus: 8000, signal 485171/622811 (executing program)
2022/09/21 09:58:45 fetching corpus: 8050, signal 486145/624259 (executing program)
2022/09/21 09:58:45 fetching corpus: 8100, signal 486777/625493 (executing program)
2022/09/21 09:58:45 fetching corpus: 8150, signal 487481/626827 (executing program)
2022/09/21 09:58:46 fetching corpus: 8200, signal 488372/628213 (executing program)
2022/09/21 09:58:46 fetching corpus: 8250, signal 489209/629603 (executing program)
2022/09/21 09:58:46 fetching corpus: 8300, signal 490148/631028 (executing program)
syzkaller login: [   60.018153] ==================================================================
[   60.025680] BUG: KASAN: stack-out-of-bounds in unwind_next_frame+0x1360/0x17d0
[   60.033040] Read of size 8 at addr ffff8880b3a6fb68 by task syz-fuzzer/7962
[   60.040123] 
[   60.041736] CPU: 0 PID: 7962 Comm: syz-fuzzer Not tainted 4.14.294-syzkaller #0
[   60.049162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022
[   60.058491] Call Trace:
[   60.061050]  <IRQ>
[   60.063211]  dump_stack+0x1b2/0x281
[   60.066838]  print_address_description.cold+0x54/0x1d3
[   60.072109]  kasan_report_error.cold+0x8a/0x191
[   60.076756]  ? unwind_next_frame+0x1360/0x17d0
[   60.081315]  __asan_report_load8_noabort+0x68/0x70
[   60.086219]  ? unwind_next_frame+0x1360/0x17d0
[   60.090777]  unwind_next_frame+0x1360/0x17d0
[   60.095162]  ? retint_kernel+0x2d/0x2d
[   60.099027]  ? deref_stack_reg+0x1a0/0x1a0
[   60.103240]  ? retint_kernel+0x2d/0x2d
[   60.107106]  __save_stack_trace+0x90/0x160
[   60.111332]  ? __ww_mutex_wakeup_for_backoff+0x210/0x210
[   60.116764]  ? ep_read_events_proc+0x440/0x440
[   60.121323]  kasan_kmalloc+0xeb/0x160
[   60.125102]  ? kasan_kmalloc+0xeb/0x160
[   60.129053]  ? kmem_cache_alloc_node+0x133/0x410
[   60.133785]  ? __alloc_skb+0x5c/0x510
[   60.137561]  ? __napi_alloc_skb+0x57/0x2d0
[   60.141772]  ? page_to_skb+0x7b/0x820
[   60.145567]  ? receive_buf+0x1f71/0x4d70
[   60.149603]  ? virtnet_poll+0x4b7/0x960
[   60.153552]  ? net_rx_action+0x466/0xfd0
[   60.157589]  ? __do_softirq+0x24d/0x9ff
[   60.161540]  ? irq_exit+0x193/0x240
[   60.165142]  ? do_IRQ+0x112/0x1d0
[   60.168570]  ? common_interrupt+0x93/0x93
[   60.172695]  ? lock_acquire+0x97/0x3f0
[   60.176563]  ? ep_scan_ready_list+0x637/0x7e0
[   60.181033]  ? retint_kernel+0x2d/0x2d
[   60.184900]  ? ip_local_deliver+0x460/0x460
[   60.189199]  ? consume_skb+0x27d/0x380
[   60.193064]  ? ip_local_deliver_finish+0xab0/0xab0
[   60.197973]  ? __lock_acquire+0x5fc/0x3f20
[   60.202186]  ? is_skb_forwardable+0x1e0/0x1e0
[   60.206660]  ? tcp4_gro_receive+0x498/0x790
[   60.210957]  ? should_fail+0x327/0x3f0
[   60.214825]  ? kmem_cache_alloc_node+0x2f8/0x410
[   60.219556]  kmem_cache_alloc_node+0x133/0x410
[   60.224117]  __alloc_skb+0x5c/0x510
[   60.227720]  __napi_alloc_skb+0x57/0x2d0
[   60.231777]  page_to_skb+0x7b/0x820
[   60.235382]  receive_buf+0x1f71/0x4d70
[   60.239251]  ? virtnet_xdp_xmit.constprop.0+0x780/0x780
[   60.244590]  ? __lock_acquire+0x5fc/0x3f20
[   60.248803]  ? detach_buf+0x422/0x580
[   60.252579]  ? __lock_acquire+0x5fc/0x3f20
[   60.256805]  ? virtqueue_get_buf_ctx+0x3d9/0x6b0
[   60.261547]  ? check_preemption_disabled+0x35/0x240
[   60.266538]  virtnet_poll+0x4b7/0x960
[   60.270314]  ? try_fill_recv+0x17b0/0x17b0
[   60.274526]  ? net_rx_action+0x244/0xfd0
[   60.278565]  net_rx_action+0x466/0xfd0
[   60.282433]  ? napi_gro_frags+0x8f0/0x8f0
[   60.286558]  ? sched_clock+0x2a/0x40
[   60.290247]  ? rcu_lockdep_current_cpu_online+0xed/0x140
[   60.295676]  __do_softirq+0x24d/0x9ff
[   60.299452]  ? check_preemption_disabled+0x35/0x240
[   60.304446]  irq_exit+0x193/0x240
[   60.307875]  do_IRQ+0x112/0x1d0
[   60.311131]  common_interrupt+0x93/0x93
[   60.315082]  </IRQ>
[   60.317296] RIP: 0010:lock_acquire+0x97/0x3f0
[   60.321762] RSP: 0018:ffff8880b3a6fa48 EFLAGS: 00000286 ORIG_RAX: ffffffffffffffdd
[   60.329444] RAX: 1ffffffff11e1358 RBX: ffff8880b52c0540 RCX: 0000000000000000
[   60.336689] RDX: dffffc0000000000 RSI: 0000000000000000 RDI: ffff8880b52c0dc4
[   60.343951] RBP: ffff8880b3247358 R08: 0000000000000001 R09: 0000000000000000
[   60.351202] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[   60.358450] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000001
[   60.365718]  ? ep_scan_ready_list+0x637/0x7e0
[   60.370196]  ep_scan_ready_list+0x637/0x7e0
[   60.374499]  ? __mutex_lock+0xc4/0x1310
[   60.378449]  ? ep_scan_ready_list+0x637/0x7e0
[   60.382919]  ? retint_kernel+0x2d/0x2d
[   60.386787]  ? trace_hardirqs_on_caller+0x3a8/0x580
[   60.391793]  ? ep_scan_ready_list+0x637/0x7e0
[   60.396306]  ? __ww_mutex_wakeup_for_backoff+0x210/0x210
[   60.401742]  retint_kernel+0x2d/0x2d
[   60.405438] RIP: b32472c0:ep_send_events_proc+0x0/0x9c0
[   60.410774] RSP: b3a6fc58:0000000000000000 EFLAGS: ffff8880b3a6fd78 ORIG_RAX: ffffffffffffffdd
[   60.419500] RAX: ffff8880b52c0540 RBX: ffffffff81967220 RCX: 1ffff1101674df87
[   60.426747] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8880b32472f8
[   60.434007] RBP: ffff8880b32472c0 R08: 0000000000000000 R09: 0000000000000000
[   60.441266] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8880b3a6fd78
[   60.448514] R13: 0000000000000000 R14: ffff8880b3a6fc58 R15: 0000000000000000
[   60.455766]  ? ep_read_events_proc+0x440/0x440
[   60.460328]  ? ep_scan_ready_list+0x637/0x7e0
[   60.464798]  ? lock_downgrade+0x740/0x740
[   60.468920]  ? ep_eventpoll_release+0x60/0x60
[   60.473390]  ? _raw_spin_unlock_irqrestore+0x79/0xe0
[   60.478470]  ? ep_poll+0x234/0xa50
[   60.481985]  ? __fget+0x23e/0x3e0
[   60.485413]  ? ep_poll_readyevents_proc+0x90/0x90
[   60.490232]  ? lock_downgrade+0x740/0x740
[   60.494356]  ? __fget+0x265/0x3e0
[   60.497788]  ? SyS_epoll_wait+0x150/0x1a0
[   60.501929]  ? SyS_epoll_pwait+0x1e9/0x230
[   60.506143]  ? SyS_epoll_wait+0x1a0/0x1a0
[   60.510269]  ? SyS_nanosleep+0x127/0x170
[   60.514308]  ? hrtimer_nanosleep+0x4b0/0x4b0
[   60.518707]  ? do_syscall_64+0x4c/0x640
[   60.522656]  ? SyS_epoll_wait+0x1a0/0x1a0
[   60.526781]  ? do_syscall_64+0x1d5/0x640
[   60.530822]  ? entry_SYSCALL_64_after_hwframe+0x46/0xbb
[   60.536162] 
[   60.537767] The buggy address belongs to the page:
[   60.542671] page:ffffea0002ce9bc0 count:0 mapcount:0 mapping:          (null) index:0x0
[   60.550788] flags: 0xfff00000000000()
[   60.554565] raw: 00fff00000000000 0000000000000000 0000000000000000 00000000ffffffff
[   60.562420] raw: 0000000000000000 0000000100000001 0000000000000000 0000000000000000
[   60.570271] page dumped because: kasan: bad access detected
[   60.575954] 
[   60.577557] Memory state around the buggy address:
[   60.582460]  ffff8880b3a6fa00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   60.589795]  ffff8880b3a6fa80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   60.597128] >ffff8880b3a6fb00: 00 f1 f1 f1 f1 00 00 00 f2 00 00 00 f2 f2 f2 00
[   60.604459]                                                           ^
[   60.611188]  ffff8880b3a6fb80: 00 00 00 00 f3 f3 f3 f3 f3 00 00 00 00 00 00 00
[   60.618522]  ffff8880b3a6fc00: 00 00 00 00 00 00 00 f1 f1 f1 f1 00 00 f3 f3 00
[   60.625866] ==================================================================
[   60.633219] Disabling lock debugging due to kernel taint
[   60.638724] Kernel panic - not syncing: panic_on_warn set ...
[   60.638724] 
[   60.646081] CPU: 0 PID: 7962 Comm: syz-fuzzer Tainted: G    B           4.14.294-syzkaller #0
[   60.654734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022
[   60.664097] Call Trace:
[   60.666673]  <IRQ>
[   60.668815]  dump_stack+0x1b2/0x281
[   60.672430]  panic+0x1f9/0x42d
[   60.675611]  ? add_taint.cold+0x16/0x16
[   60.679574]  kasan_end_report+0x43/0x49
[   60.683523]  kasan_report_error.cold+0xa7/0x191
[   60.688167]  ? unwind_next_frame+0x1360/0x17d0
[   60.692723]  __asan_report_load8_noabort+0x68/0x70
[   60.697628]  ? unwind_next_frame+0x1360/0x17d0
[   60.702186]  unwind_next_frame+0x1360/0x17d0
[   60.706582]  ? retint_kernel+0x2d/0x2d
[   60.710458]  ? deref_stack_reg+0x1a0/0x1a0
[   60.714680]  ? retint_kernel+0x2d/0x2d
[   60.718568]  __save_stack_trace+0x90/0x160
[   60.722787]  ? __ww_mutex_wakeup_for_backoff+0x210/0x210
[   60.728215]  ? ep_read_events_proc+0x440/0x440
[   60.732774]  kasan_kmalloc+0xeb/0x160
[   60.736550]  ? kasan_kmalloc+0xeb/0x160
[   60.740497]  ? kmem_cache_alloc_node+0x133/0x410
[   60.745232]  ? __alloc_skb+0x5c/0x510
[   60.749032]  ? __napi_alloc_skb+0x57/0x2d0
[   60.753240]  ? page_to_skb+0x7b/0x820
[   60.757014]  ? receive_buf+0x1f71/0x4d70
[   60.761047]  ? virtnet_poll+0x4b7/0x960
[   60.764995]  ? net_rx_action+0x466/0xfd0
[   60.769030]  ? __do_softirq+0x24d/0x9ff
[   60.772981]  ? irq_exit+0x193/0x240
[   60.776582]  ? do_IRQ+0x112/0x1d0
[   60.780009]  ? common_interrupt+0x93/0x93
[   60.784130]  ? lock_acquire+0x97/0x3f0
[   60.787990]  ? ep_scan_ready_list+0x637/0x7e0
[   60.792457]  ? retint_kernel+0x2d/0x2d
[   60.796323]  ? ip_local_deliver+0x460/0x460
[   60.800618]  ? consume_skb+0x27d/0x380
[   60.804479]  ? ip_local_deliver_finish+0xab0/0xab0
[   60.809386]  ? __lock_acquire+0x5fc/0x3f20
[   60.813600]  ? is_skb_forwardable+0x1e0/0x1e0
[   60.818071]  ? tcp4_gro_receive+0x498/0x790
[   60.822370]  ? should_fail+0x327/0x3f0
[   60.826236]  ? kmem_cache_alloc_node+0x2f8/0x410
[   60.830965]  kmem_cache_alloc_node+0x133/0x410
[   60.835524]  __alloc_skb+0x5c/0x510
[   60.839125]  __napi_alloc_skb+0x57/0x2d0
[   60.843161]  page_to_skb+0x7b/0x820
[   60.846763]  receive_buf+0x1f71/0x4d70
[   60.850630]  ? virtnet_xdp_xmit.constprop.0+0x780/0x780
[   60.855967]  ? __lock_acquire+0x5fc/0x3f20
[   60.860178]  ? detach_buf+0x422/0x580
[   60.863953]  ? __lock_acquire+0x5fc/0x3f20
[   60.868164]  ? virtqueue_get_buf_ctx+0x3d9/0x6b0
[   60.872894]  ? check_preemption_disabled+0x35/0x240
[   60.877887]  virtnet_poll+0x4b7/0x960
[   60.881662]  ? try_fill_recv+0x17b0/0x17b0
[   60.885873]  ? net_rx_action+0x244/0xfd0
[   60.889910]  net_rx_action+0x466/0xfd0
[   60.893792]  ? napi_gro_frags+0x8f0/0x8f0
[   60.897914]  ? sched_clock+0x2a/0x40
[   60.901602]  ? rcu_lockdep_current_cpu_online+0xed/0x140
[   60.907029]  __do_softirq+0x24d/0x9ff
[   60.910809]  ? check_preemption_disabled+0x35/0x240
[   60.915801]  irq_exit+0x193/0x240
[   60.919231]  do_IRQ+0x112/0x1d0
[   60.922494]  common_interrupt+0x93/0x93
[   60.926442]  </IRQ>
[   60.928655] RIP: 0010:lock_acquire+0x97/0x3f0
[   60.933122] RSP: 0018:ffff8880b3a6fa48 EFLAGS: 00000286 ORIG_RAX: ffffffffffffffdd
[   60.940805] RAX: 1ffffffff11e1358 RBX: ffff8880b52c0540 RCX: 0000000000000000
[   60.948049] RDX: dffffc0000000000 RSI: 0000000000000000 RDI: ffff8880b52c0dc4
[   60.955296] RBP: ffff8880b3247358 R08: 0000000000000001 R09: 0000000000000000
[   60.962541] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[   60.969784] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000001
[   60.977037]  ? ep_scan_ready_list+0x637/0x7e0
[   60.981506]  ep_scan_ready_list+0x637/0x7e0
[   60.985805]  ? __mutex_lock+0xc4/0x1310
[   60.989754]  ? ep_scan_ready_list+0x637/0x7e0
[   60.994222]  ? retint_kernel+0x2d/0x2d
[   60.998098]  ? trace_hardirqs_on_caller+0x3a8/0x580
[   61.003089]  ? ep_scan_ready_list+0x637/0x7e0
[   61.007558]  ? __ww_mutex_wakeup_for_backoff+0x210/0x210
[   61.012983]  retint_kernel+0x2d/0x2d
[   61.016673] RIP: b32472c0:ep_send_events_proc+0x0/0x9c0
[   61.022024] RSP: b3a6fc58:0000000000000000 EFLAGS: ffff8880b3a6fd78 ORIG_RAX: ffffffffffffffdd
[   61.030745] RAX: ffff8880b52c0540 RBX: ffffffff81967220 RCX: 1ffff1101674df87
[   61.037990] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8880b32472f8
[   61.045234] RBP: ffff8880b32472c0 R08: 0000000000000000 R09: 0000000000000000
[   61.052478] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8880b3a6fd78
[   61.059723] R13: 0000000000000000 R14: ffff8880b3a6fc58 R15: 0000000000000000
[   61.066991]  ? ep_read_events_proc+0x440/0x440
[   61.071549]  ? ep_scan_ready_list+0x637/0x7e0
[   61.076021]  ? lock_downgrade+0x740/0x740
[   61.080142]  ? ep_eventpoll_release+0x60/0x60
[   61.084612]  ? _raw_spin_unlock_irqrestore+0x79/0xe0
[   61.089705]  ? ep_poll+0x234/0xa50
[   61.093219]  ? __fget+0x23e/0x3e0
[   61.096647]  ? ep_poll_readyevents_proc+0x90/0x90
[   61.101462]  ? lock_downgrade+0x740/0x740
[   61.105584]  ? __fget+0x265/0x3e0
[   61.109012]  ? SyS_epoll_wait+0x150/0x1a0
[   61.113137]  ? SyS_epoll_pwait+0x1e9/0x230
[   61.117363]  ? SyS_epoll_wait+0x1a0/0x1a0
[   61.121484]  ? SyS_nanosleep+0x127/0x170
[   61.125520]  ? hrtimer_nanosleep+0x4b0/0x4b0
[   61.129902]  ? do_syscall_64+0x4c/0x640
[   61.133851]  ? SyS_epoll_wait+0x1a0/0x1a0
[   61.137975]  ? do_syscall_64+0x1d5/0x640
[   61.142014]  ? entry_SYSCALL_64_after_hwframe+0x46/0xbb
[   61.147520] Kernel Offset: disabled
[   61.151152] Rebooting in 86400 seconds..