Warning: Permanently added '10.128.10.17' (ECDSA) to the list of known hosts.
[   70.028297][ T9107] IPVS: ftp: loaded support on port[0] = 21
[   70.075418][ T9107] chnl_net:caif_netlink_parms(): no params data found
[   70.111491][ T9107] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.119489][ T9107] bridge0: port 1(bridge_slave_0) entered disabled state
[   70.128138][ T9107] device bridge_slave_0 entered promiscuous mode
[   70.137078][ T9107] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.144346][ T9107] bridge0: port 2(bridge_slave_1) entered disabled state
[   70.152337][ T9107] device bridge_slave_1 entered promiscuous mode
[   70.169079][ T9107] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   70.179693][ T9107] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   70.198117][ T9107] team0: Port device team_slave_0 added
[   70.205066][ T9107] team0: Port device team_slave_1 added
[   70.219005][ T9107] batman_adv: batadv0: Adding interface: batadv_slave_0
[   70.226051][ T9107] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.252554][ T9107] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   70.264960][ T9107] batman_adv: batadv0: Adding interface: batadv_slave_1
[   70.272043][ T9107] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.297972][ T9107] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   70.353444][ T9107] device hsr_slave_0 entered promiscuous mode
[   70.411624][ T9107] device hsr_slave_1 entered promiscuous mode
[   70.534318][ T9107] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   70.574248][ T9107] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   70.633876][ T9107] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   70.683376][ T9107] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   70.754551][ T9107] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.761821][ T9107] bridge0: port 2(bridge_slave_1) entered forwarding state
[   70.769477][ T9107] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.776588][ T9107] bridge0: port 1(bridge_slave_0) entered forwarding state
[   70.815208][ T9107] 8021q: adding VLAN 0 to HW filter on device bond0
[   70.827377][ T3103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   70.837805][ T3103] bridge0: port 1(bridge_slave_0) entered disabled state
[   70.845980][ T3103] bridge0: port 2(bridge_slave_1) entered disabled state
[   70.853870][ T3103] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   70.867278][ T9107] 8021q: adding VLAN 0 to HW filter on device team0
[   70.877531][ T3100] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   70.886061][ T3100] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.893133][ T3100] bridge0: port 1(bridge_slave_0) entered forwarding state
[   70.903905][ T3103] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   70.913707][ T3103] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.920750][ T3103] bridge0: port 2(bridge_slave_1) entered forwarding state
[   70.941886][ T3100] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   70.950324][ T3100] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   70.961404][ T3100] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   70.969556][ T3100] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   70.983075][ T2754] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   70.993506][ T9107] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   71.009841][ T2754] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   71.017621][ T2754] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   71.028860][ T9107] 8021q: adding VLAN 0 to HW filter on device batadv0
[   71.045867][ T3100] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   71.064215][ T2754] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   71.072796][ T2754] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   71.081005][ T2754] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   71.094394][ T9107] device veth0_vlan entered promiscuous mode
[   71.106167][ T9107] device veth1_vlan entered promiscuous mode
[   71.134944][ T3100] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   71.144345][ T3100] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   71.156813][ T9107] device veth0_macvtap entered promiscuous mode
[   71.167184][ T9107] device veth1_macvtap entered promiscuous mode
[   71.184095][ T9107] batman_adv: batadv0: Interface activated: batadv_slave_0
[   71.192111][ T2754] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   71.200238][ T2754] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   71.209719][ T2754] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   71.218707][ T2754] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   71.231010][ T9107] batman_adv: batadv0: Interface activated: batadv_slave_1
[   71.240059][ T3100] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   71.249042][ T3100] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
executing program
[   71.421686][    C0] ==================================================================
[   71.429995][    C0] BUG: KASAN: use-after-free in find_match+0xb5/0xa10
[   71.436748][    C0] Read of size 8 at addr ffff8880985c6320 by task ksoftirqd/0/9
[   71.444375][    C0] 
[   71.446697][    C0] CPU: 0 PID: 9 Comm: ksoftirqd/0 Not tainted 5.6.0-rc1-syzkaller #0
[   71.455291][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   71.465473][    C0] Call Trace:
[   71.468793][    C0]  dump_stack+0x1fb/0x318
[   71.473137][    C0]  print_address_description+0x74/0x5c0
[   71.478738][    C0]  ? vprintk_default+0x28/0x30
[   71.483518][    C0]  ? vprintk_func+0x158/0x170
[   71.488247][    C0]  ? printk+0x62/0x8d
[   71.492328][    C0]  __kasan_report+0x149/0x1c0
[   71.497009][    C0]  ? find_match+0xb5/0xa10
[   71.501417][    C0]  kasan_report+0x26/0x50
[   71.505763][    C0]  __asan_report_load8_noabort+0x14/0x20
[   71.511504][    C0]  find_match+0xb5/0xa10
[   71.515917][    C0]  __find_rr_leaf+0x1f6/0xb50
[   71.520598][    C0]  fib6_table_lookup+0x44f/0xb00
[   71.525550][    C0]  ip6_pol_route+0x187/0x1910
[   71.530343][    C0]  ip6_pol_route_input+0x54/0x80
[   71.535293][    C0]  ? ip6_route_input_lookup+0xd0/0xd0
[   71.540657][    C0]  fib6_rule_lookup+0x1e3/0x640
[   71.545527][    C0]  ip6_route_input+0x792/0xb20
[   71.550303][    C0]  ip6_rcv_finish_core+0x1f5/0x400
[   71.555525][    C0]  ip6_rcv_finish+0x138/0x260
[   71.560217][    C0]  ipv6_rcv+0xb0/0xe0
[   71.564186][    C0]  ? ip6_rcv_finish_core+0x400/0x400
[   71.569475][    C0]  __netif_receive_skb+0x136/0x370
[   71.574582][    C0]  process_backlog+0x4e8/0x980
[   71.579408][    C0]  net_rx_action+0x5ef/0x10c0
[   71.584088][    C0]  __do_softirq+0x283/0x7bd
[   71.588644][    C0]  ? run_ksoftirqd+0x64/0xf0
[   71.593231][    C0]  run_ksoftirqd+0x64/0xf0
[   71.597896][    C0]  ? ksoftirqd_should_run+0x20/0x20
[   71.603079][    C0]  smpboot_thread_fn+0x5a0/0x990
[   71.608016][    C0]  kthread+0x332/0x350
[   71.612154][    C0]  ? cpu_report_death+0x120/0x120
[   71.617259][    C0]  ? kthread_blkcg+0xe0/0xe0
[   71.621857][    C0]  ret_from_fork+0x24/0x30
[   71.626372][    C0] 
[   71.628686][    C0] Allocated by task 9107:
[   71.633276][    C0]  __kasan_kmalloc+0x118/0x1c0
[   71.638030][    C0]  kasan_kmalloc+0x9/0x10
[   71.642346][    C0]  __kmalloc_node+0x4d/0x60
[   71.646834][    C0]  kvmalloc_node+0x85/0x110
[   71.651331][    C0]  alloc_netdev_mqs+0x8e/0xd40
[   71.656090][    C0]  vti6_init_net+0x112/0x320
[   71.660750][    C0]  ops_init+0x355/0x430
[   71.665073][    C0]  setup_net+0x1eb/0x7f0
[   71.669422][    C0]  copy_net_ns+0x334/0x540
[   71.673852][    C0]  create_new_namespaces+0x4d7/0x9c0
[   71.679333][    C0]  unshare_nsproxy_namespaces+0x12a/0x190
[   71.685041][    C0]  ksys_unshare+0x478/0xa00
[   71.690406][    C0]  __x64_sys_unshare+0x38/0x40
[   71.695153][    C0]  do_syscall_64+0xf7/0x1c0
[   71.699643][    C0]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   71.705511][    C0] 
[   71.707827][    C0] Freed by task 9107:
[   71.711899][    C0]  __kasan_slab_free+0x12e/0x1e0
[   71.716838][    C0]  kasan_slab_free+0xe/0x10
[   71.721366][    C0]  kfree+0x10d/0x220
[   71.725249][    C0]  netdev_name_node_alt_destroy+0x35c/0x380
[   71.731175][    C0]  rtnl_linkprop+0x42d/0x680
[   71.735898][    C0]  rtnl_dellinkprop+0x2a/0x40
[   71.740559][    C0]  rtnetlink_rcv_msg+0x889/0xd40
[   71.745487][    C0]  netlink_rcv_skb+0x19e/0x3e0
[   71.750234][    C0]  rtnetlink_rcv+0x1c/0x20
[   71.754666][    C0]  netlink_unicast+0x766/0x920
[   71.759410][    C0]  netlink_sendmsg+0xa2b/0xd40
[   71.764166][    C0]  ____sys_sendmsg+0x4f7/0x7f0
[   71.768965][    C0]  __sys_sendmsg+0x1ed/0x290
[   71.773547][    C0]  __x64_sys_sendmsg+0x7f/0x90
[   71.778312][    C0]  do_syscall_64+0xf7/0x1c0
[   71.782801][    C0]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   71.788706][    C0] 
[   71.791026][    C0] The buggy address belongs to the object at ffff8880985c6000
[   71.791026][    C0]  which belongs to the cache kmalloc-4k of size 4096
[   71.805070][    C0] The buggy address is located 800 bytes inside of
[   71.805070][    C0]  4096-byte region [ffff8880985c6000, ffff8880985c7000)
[   71.818424][    C0] The buggy address belongs to the page:
[   71.824061][    C0] page:ffffea0002617180 refcount:1 mapcount:0 mapping:ffff8880aa402000 index:0x0 compound_mapcount: 0
[   71.835081][    C0] flags: 0xfffe0000010200(slab|head)
[   71.840380][    C0] raw: 00fffe0000010200 ffffea000275e808 ffffea0002620c08 ffff8880aa402000
[   71.848970][    C0] raw: 0000000000000000 ffff8880985c6000 0000000100000001 0000000000000000
[   71.857547][    C0] page dumped because: kasan: bad access detected
[   71.863961][    C0] 
[   71.866288][    C0] Memory state around the buggy address:
[   71.871920][    C0]  ffff8880985c6200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   71.880077][    C0]  ffff8880985c6280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   71.888237][    C0] >ffff8880985c6300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   71.896295][    C0]                                ^
[   71.901480][    C0]  ffff8880985c6380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   71.909562][    C0]  ffff8880985c6400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   71.917609][    C0] ==================================================================
[   71.925657][    C0] Disabling lock debugging due to kernel taint
[   71.931934][    C0] Kernel panic - not syncing: panic_on_warn set ...
[   71.938616][    C0] CPU: 0 PID: 9 Comm: ksoftirqd/0 Tainted: G    B             5.6.0-rc1-syzkaller #0
[   71.949265][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   71.959311][    C0] Call Trace:
[   71.962744][    C0]  dump_stack+0x1fb/0x318
[   71.967076][    C0]  panic+0x264/0x7a9
[   71.970965][    C0]  ? __kasan_report+0x193/0x1c0
[   71.975803][    C0]  ? trace_hardirqs_on+0x34/0x80
[   71.980737][    C0]  ? _raw_spin_unlock_irqrestore+0xa8/0xe0
[   71.986532][    C0]  __kasan_report+0x1b9/0x1c0
[   71.991201][    C0]  ? find_match+0xb5/0xa10
[   71.995842][    C0]  kasan_report+0x26/0x50
[   72.000163][    C0]  __asan_report_load8_noabort+0x14/0x20
[   72.006349][    C0]  find_match+0xb5/0xa10
[   72.010639][    C0]  __find_rr_leaf+0x1f6/0xb50
[   72.015469][    C0]  fib6_table_lookup+0x44f/0xb00
[   72.020405][    C0]  ip6_pol_route+0x187/0x1910
[   72.025089][    C0]  ip6_pol_route_input+0x54/0x80
[   72.030013][    C0]  ? ip6_route_input_lookup+0xd0/0xd0
[   72.035373][    C0]  fib6_rule_lookup+0x1e3/0x640
[   72.040222][    C0]  ip6_route_input+0x792/0xb20
[   72.045094][    C0]  ip6_rcv_finish_core+0x1f5/0x400
[   72.050296][    C0]  ip6_rcv_finish+0x138/0x260
[   72.055075][    C0]  ipv6_rcv+0xb0/0xe0
[   72.059051][    C0]  ? ip6_rcv_finish_core+0x400/0x400
[   72.064376][    C0]  __netif_receive_skb+0x136/0x370
[   72.069479][    C0]  process_backlog+0x4e8/0x980
[   72.074240][    C0]  net_rx_action+0x5ef/0x10c0
[   72.078921][    C0]  __do_softirq+0x283/0x7bd
[   72.083424][    C0]  ? run_ksoftirqd+0x64/0xf0
[   72.088001][    C0]  run_ksoftirqd+0x64/0xf0
[   72.092401][    C0]  ? ksoftirqd_should_run+0x20/0x20
[   72.097586][    C0]  smpboot_thread_fn+0x5a0/0x990
[   72.102572][    C0]  kthread+0x332/0x350
[   72.106724][    C0]  ? cpu_report_death+0x120/0x120
[   72.111737][    C0]  ? kthread_blkcg+0xe0/0xe0
[   72.116323][    C0]  ret_from_fork+0x24/0x30
[   72.122182][    C0] Kernel Offset: disabled
[   72.126603][    C0] Rebooting in 86400 seconds..