[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 37.603099][ T26] audit: type=1800 audit(1554239252.906:25): pid=7692 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 37.630115][ T26] audit: type=1800 audit(1554239252.906:26): pid=7692 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 37.656100][ T26] audit: type=1800 audit(1554239252.916:27): pid=7692 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.146' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 54.256235][ T7845] check_preemption_disabled: 3 callbacks suppressed [ 54.256247][ T7845] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-executor284/7845 [ 54.273105][ T7845] caller is sk_mc_loop+0x1d/0x210 [ 54.278134][ T7845] CPU: 0 PID: 7845 Comm: syz-executor284 Not tainted 5.1.0-rc2+ #118 [ 54.286191][ T7845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 54.296285][ T7845] Call Trace: [ 54.299581][ T7845] dump_stack+0x172/0x1f0 [ 54.304230][ T7845] __this_cpu_preempt_check+0x246/0x270 [ 54.309801][ T7845] sk_mc_loop+0x1d/0x210 [ 54.314036][ T7845] ip_mc_output+0x2ef/0xf70 [ 54.318605][ T7845] ? __ip_queue_xmit+0x1bf0/0x1bf0 [ 54.323708][ T7845] ? __ip_make_skb+0xf15/0x1820 [ 54.328559][ T7845] ? ip_append_data.part.0+0x170/0x170 [ 54.334009][ T7845] ? dst_release+0x62/0xb0 [ 54.338462][ T7845] ? __ip_make_skb+0xf93/0x1820 [ 54.343321][ T7845] ip_local_out+0xc4/0x1b0 [ 54.347753][ T7845] ip_send_skb+0x42/0xf0 [ 54.352289][ T7845] ip_push_pending_frames+0x64/0x80 [ 54.357484][ T7845] raw_sendmsg+0x1e6d/0x2f20 [ 54.362071][ T7845] ? compat_raw_getsockopt+0x100/0x100 [ 54.367633][ T7845] ? __lock_acquire+0x548/0x3fb0 [ 54.372675][ T7845] ? ___might_sleep+0x163/0x280 [ 54.377617][ T7845] ? __might_sleep+0x95/0x190 [ 54.382287][ T7845] ? debug_lockdep_rcu_enabled+0x71/0xa0 [ 54.387965][ T7845] ? aa_sk_perm+0x288/0x880 [ 54.392470][ T7845] ? lockdep_hardirqs_on+0x418/0x5d0 [ 54.397814][ T7845] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 54.403406][ T7845] inet_sendmsg+0x147/0x5e0 [ 54.407918][ T7845] ? compat_raw_getsockopt+0x100/0x100 [ 54.413485][ T7845] ? inet_sendmsg+0x147/0x5e0 [ 54.418175][ T7845] ? ipip_gro_receive+0x100/0x100 [ 54.423237][ T7845] sock_sendmsg+0xdd/0x130 [ 54.427792][ T7845] kernel_sendmsg+0x44/0x50 [ 54.432449][ T7845] sock_no_sendpage+0x116/0x150 [ 54.437302][ T7845] ? sock_kfree_s+0x70/0x70 [ 54.441812][ T7845] inet_sendpage+0x44a/0x630 [ 54.446434][ T7845] kernel_sendpage+0x95/0xf0 [ 54.451031][ T7845] ? inet_sendmsg+0x5e0/0x5e0 [ 54.455702][ T7845] sock_sendpage+0x8b/0xc0 [ 54.460204][ T7845] ? pipe_lock+0x6e/0x80 [ 54.464610][ T7845] pipe_to_sendpage+0x299/0x370 [ 54.469526][ T7845] ? kernel_sendpage+0xf0/0xf0 [ 54.474309][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 54.479676][ T7845] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 54.485909][ T7845] ? splice_from_pipe_next.part.0+0x255/0x2f0 [ 54.491972][ T7845] __splice_from_pipe+0x395/0x7d0 [ 54.497004][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 54.502419][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 54.507692][ T7845] splice_from_pipe+0x108/0x170 [ 54.512529][ T7845] ? splice_shrink_spd+0xd0/0xd0 [ 54.517462][ T7845] ? apparmor_file_permission+0x25/0x30 [ 54.522996][ T7845] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 54.529240][ T7845] ? security_file_permission+0x94/0x380 [ 54.534914][ T7845] generic_splice_sendpage+0x3c/0x50 [ 54.540241][ T7845] ? splice_from_pipe+0x170/0x170 [ 54.545280][ T7845] do_splice+0x70a/0x13c0 [ 54.549619][ T7845] ? opipe_prep.part.0+0x2d0/0x2d0 [ 54.554838][ T7845] ? __fget_light+0x1a9/0x230 [ 54.559522][ T7845] __x64_sys_splice+0x2c6/0x330 [ 54.564431][ T7845] do_syscall_64+0x103/0x610 [ 54.569019][ T7845] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 54.574981][ T7845] RIP: 0033:0x4458b9 [ 54.578871][ T7845] Code: e8 bc b7 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b 12 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 54.598626][ T7845] RSP: 002b:00007f10219b5da8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 54.607130][ T7845] RAX: ffffffffffffffda RBX: 00000000006dac58 RCX: 00000000004458b9 [ 54.615098][ T7845] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003 [ 54.623190][ T7845] RBP: 00000000006dac50 R08: 0000000000010005 R09: 0000000000000000 [ 54.631234][ T7845] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dac5c [ 54.639293][ T7845] R13: 00007ffcadb0d1df R14: 00007f10219b69c0 R15: 20c49ba5e353f7cf [ 54.649312][ T7845] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-executor284/7845 [ 54.658943][ T7845] caller is sk_mc_loop+0x1d/0x210 [ 54.664254][ T7845] CPU: 0 PID: 7845 Comm: syz-executor284 Not tainted 5.1.0-rc2+ #118 [ 54.672412][ T7845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 54.682478][ T7845] Call Trace: [ 54.685779][ T7845] dump_stack+0x172/0x1f0 [ 54.690111][ T7845] __this_cpu_preempt_check+0x246/0x270 [ 54.695784][ T7845] sk_mc_loop+0x1d/0x210 [ 54.700066][ T7845] ip_mc_output+0x2ef/0xf70 [ 54.704568][ T7845] ? __ip_queue_xmit+0x1bf0/0x1bf0 [ 54.709670][ T7845] ? __ip_make_skb+0xf15/0x1820 [ 54.714529][ T7845] ? ip_append_data.part.0+0x170/0x170 [ 54.720124][ T7845] ? dst_release+0x62/0xb0 [ 54.724539][ T7845] ? __ip_make_skb+0xf93/0x1820 [ 54.729545][ T7845] ip_local_out+0xc4/0x1b0 [ 54.734303][ T7845] ip_send_skb+0x42/0xf0 [ 54.738593][ T7845] ip_push_pending_frames+0x64/0x80 [ 54.743792][ T7845] raw_sendmsg+0x1e6d/0x2f20 [ 54.748384][ T7845] ? compat_raw_getsockopt+0x100/0x100 [ 54.753913][ T7845] ? __lock_acquire+0x548/0x3fb0 [ 54.758856][ T7845] ? ___might_sleep+0x163/0x280 [ 54.763783][ T7845] ? __might_sleep+0x95/0x190 [ 54.768452][ T7845] ? debug_lockdep_rcu_enabled+0x71/0xa0 [ 54.774116][ T7845] ? aa_sk_perm+0x288/0x880 [ 54.778618][ T7845] ? lockdep_hardirqs_on+0x418/0x5d0 [ 54.783926][ T7845] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 54.789585][ T7845] inet_sendmsg+0x147/0x5e0 [ 54.794191][ T7845] ? compat_raw_getsockopt+0x100/0x100 [ 54.799654][ T7845] ? inet_sendmsg+0x147/0x5e0 [ 54.804348][ T7845] ? ipip_gro_receive+0x100/0x100 [ 54.809375][ T7845] sock_sendmsg+0xdd/0x130 [ 54.813789][ T7845] kernel_sendmsg+0x44/0x50 [ 54.818293][ T7845] sock_no_sendpage+0x116/0x150 [ 54.823290][ T7845] ? sock_kfree_s+0x70/0x70 [ 54.827932][ T7845] inet_sendpage+0x44a/0x630 [ 54.832524][ T7845] kernel_sendpage+0x95/0xf0 [ 54.837236][ T7845] ? inet_sendmsg+0x5e0/0x5e0 [ 54.841916][ T7845] sock_sendpage+0x8b/0xc0 [ 54.846484][ T7845] ? pipe_lock+0x6e/0x80 [ 54.850726][ T7845] pipe_to_sendpage+0x299/0x370 [ 54.855659][ T7845] ? kernel_sendpage+0xf0/0xf0 [ 54.860421][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 54.865707][ T7845] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 54.872104][ T7845] ? anon_pipe_buf_release+0x1c6/0x270 [ 54.877677][ T7845] __splice_from_pipe+0x395/0x7d0 [ 54.882807][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 54.888206][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 54.893493][ T7845] splice_from_pipe+0x108/0x170 [ 54.898342][ T7845] ? splice_shrink_spd+0xd0/0xd0 [ 54.903367][ T7845] ? apparmor_file_permission+0x25/0x30 [ 54.908920][ T7845] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 54.915210][ T7845] ? security_file_permission+0x94/0x380 [ 54.920855][ T7845] generic_splice_sendpage+0x3c/0x50 [ 54.926259][ T7845] ? splice_from_pipe+0x170/0x170 [ 54.931365][ T7845] do_splice+0x70a/0x13c0 [ 54.935758][ T7845] ? opipe_prep.part.0+0x2d0/0x2d0 [ 54.940869][ T7845] ? __fget_light+0x1a9/0x230 [ 54.945585][ T7845] __x64_sys_splice+0x2c6/0x330 [ 54.950446][ T7845] do_syscall_64+0x103/0x610 [ 54.955031][ T7845] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 54.960928][ T7845] RIP: 0033:0x4458b9 [ 54.964827][ T7845] Code: e8 bc b7 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b 12 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 54.984541][ T7845] RSP: 002b:00007f10219b5da8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 54.992959][ T7845] RAX: ffffffffffffffda RBX: 00000000006dac58 RCX: 00000000004458b9 [ 55.000942][ T7845] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003 [ 55.008913][ T7845] RBP: 00000000006dac50 R08: 0000000000010005 R09: 0000000000000000 [ 55.016884][ T7845] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dac5c [ 55.025003][ T7845] R13: 00007ffcadb0d1df R14: 00007f10219b69c0 R15: 20c49ba5e353f7cf [ 55.033851][ T7845] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-executor284/7845 [ 55.043464][ T7845] caller is sk_mc_loop+0x1d/0x210 [ 55.048497][ T7845] CPU: 0 PID: 7845 Comm: syz-executor284 Not tainted 5.1.0-rc2+ #118 [ 55.056667][ T7845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 55.066726][ T7845] Call Trace: [ 55.070018][ T7845] dump_stack+0x172/0x1f0 [ 55.074450][ T7845] __this_cpu_preempt_check+0x246/0x270 [ 55.080993][ T7845] sk_mc_loop+0x1d/0x210 [ 55.085245][ T7845] ip_mc_output+0x2ef/0xf70 [ 55.089752][ T7845] ? __ip_queue_xmit+0x1bf0/0x1bf0 [ 55.094925][ T7845] ? __ip_make_skb+0xf15/0x1820 [ 55.099790][ T7845] ? ip_append_data.part.0+0x170/0x170 [ 55.105301][ T7845] ? dst_release+0x62/0xb0 [ 55.109822][ T7845] ? __ip_make_skb+0xf93/0x1820 [ 55.114677][ T7845] ip_local_out+0xc4/0x1b0 [ 55.119149][ T7845] ip_send_skb+0x42/0xf0 [ 55.123545][ T7845] ip_push_pending_frames+0x64/0x80 [ 55.128824][ T7845] raw_sendmsg+0x1e6d/0x2f20 [ 55.133642][ T7845] ? compat_raw_getsockopt+0x100/0x100 [ 55.139111][ T7845] ? __lock_acquire+0x548/0x3fb0 [ 55.144073][ T7845] ? ___might_sleep+0x163/0x280 [ 55.148915][ T7845] ? __might_sleep+0x95/0x190 [ 55.153690][ T7845] ? debug_lockdep_rcu_enabled+0x71/0xa0 [ 55.159338][ T7845] ? aa_sk_perm+0x288/0x880 [ 55.163847][ T7845] ? lockdep_hardirqs_on+0x418/0x5d0 [ 55.169140][ T7845] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 55.174691][ T7845] inet_sendmsg+0x147/0x5e0 [ 55.179231][ T7845] ? compat_raw_getsockopt+0x100/0x100 [ 55.184679][ T7845] ? inet_sendmsg+0x147/0x5e0 [ 55.189354][ T7845] ? ipip_gro_receive+0x100/0x100 [ 55.194405][ T7845] sock_sendmsg+0xdd/0x130 [ 55.198993][ T7845] kernel_sendmsg+0x44/0x50 [ 55.203491][ T7845] sock_no_sendpage+0x116/0x150 [ 55.208324][ T7845] ? sock_kfree_s+0x70/0x70 [ 55.212810][ T7845] ? debug_check_no_obj_freed+0x200/0x464 [ 55.218520][ T7845] ? mark_held_locks+0xa4/0xf0 [ 55.223388][ T7845] inet_sendpage+0x44a/0x630 [ 55.227983][ T7845] kernel_sendpage+0x95/0xf0 [ 55.232604][ T7845] ? inet_sendmsg+0x5e0/0x5e0 [ 55.237497][ T7845] sock_sendpage+0x8b/0xc0 [ 55.241903][ T7845] ? lockdep_hardirqs_on+0x418/0x5d0 [ 55.247294][ T7845] pipe_to_sendpage+0x299/0x370 [ 55.252230][ T7845] ? kernel_sendpage+0xf0/0xf0 [ 55.257022][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 55.262420][ T7845] ? __put_page+0x92/0xd0 [ 55.266734][ T7845] ? anon_pipe_buf_release+0x1c6/0x270 [ 55.272194][ T7845] __splice_from_pipe+0x395/0x7d0 [ 55.277210][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 55.282486][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 55.287761][ T7845] splice_from_pipe+0x108/0x170 [ 55.292691][ T7845] ? splice_shrink_spd+0xd0/0xd0 [ 55.297624][ T7845] ? apparmor_file_permission+0x25/0x30 [ 55.303161][ T7845] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 55.309407][ T7845] ? security_file_permission+0x94/0x380 [ 55.315217][ T7845] generic_splice_sendpage+0x3c/0x50 [ 55.320504][ T7845] ? splice_from_pipe+0x170/0x170 [ 55.325517][ T7845] do_splice+0x70a/0x13c0 [ 55.329894][ T7845] ? opipe_prep.part.0+0x2d0/0x2d0 [ 55.335000][ T7845] ? __fget_light+0x1a9/0x230 [ 55.339679][ T7845] __x64_sys_splice+0x2c6/0x330 [ 55.344688][ T7845] do_syscall_64+0x103/0x610 [ 55.349280][ T7845] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 55.355226][ T7845] RIP: 0033:0x4458b9 [ 55.359141][ T7845] Code: e8 bc b7 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b 12 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 55.378893][ T7845] RSP: 002b:00007f10219b5da8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 55.387311][ T7845] RAX: ffffffffffffffda RBX: 00000000006dac58 RCX: 00000000004458b9 [ 55.395283][ T7845] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003 [ 55.403253][ T7845] RBP: 00000000006dac50 R08: 0000000000010005 R09: 0000000000000000 [ 55.411226][ T7845] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dac5c [ 55.419264][ T7845] R13: 00007ffcadb0d1df R14: 00007f10219b69c0 R15: 20c49ba5e353f7cf [ 55.428133][ T7845] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-executor284/7845 [ 55.437682][ T7845] caller is sk_mc_loop+0x1d/0x210 [ 55.442872][ T7845] CPU: 0 PID: 7845 Comm: syz-executor284 Not tainted 5.1.0-rc2+ #118 [ 55.450957][ T7845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 55.461140][ T7845] Call Trace: [ 55.471527][ T7845] dump_stack+0x172/0x1f0 [ 55.475876][ T7845] __this_cpu_preempt_check+0x246/0x270 [ 55.481429][ T7845] sk_mc_loop+0x1d/0x210 [ 55.485710][ T7845] ip_mc_output+0x2ef/0xf70 [ 55.490221][ T7845] ? __ip_queue_xmit+0x1bf0/0x1bf0 [ 55.495334][ T7845] ? __ip_make_skb+0xf15/0x1820 [ 55.500229][ T7845] ? ip_append_data.part.0+0x170/0x170 [ 55.505737][ T7845] ? dst_release+0x62/0xb0 [ 55.510147][ T7845] ? __ip_make_skb+0xf93/0x1820 [ 55.514989][ T7845] ip_local_out+0xc4/0x1b0 [ 55.519523][ T7845] ip_send_skb+0x42/0xf0 [ 55.523864][ T7845] ip_push_pending_frames+0x64/0x80 [ 55.529150][ T7845] raw_sendmsg+0x1e6d/0x2f20 [ 55.533848][ T7845] ? compat_raw_getsockopt+0x100/0x100 [ 55.539302][ T7845] ? __lock_acquire+0x548/0x3fb0 [ 55.544239][ T7845] ? ___might_sleep+0x163/0x280 [ 55.549427][ T7845] ? __might_sleep+0x95/0x190 [ 55.554096][ T7845] ? debug_lockdep_rcu_enabled+0x71/0xa0 [ 55.559817][ T7845] ? aa_sk_perm+0x288/0x880 [ 55.564375][ T7845] ? lockdep_hardirqs_on+0x418/0x5d0 [ 55.569763][ T7845] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 55.575312][ T7845] inet_sendmsg+0x147/0x5e0 [ 55.579809][ T7845] ? compat_raw_getsockopt+0x100/0x100 [ 55.585265][ T7845] ? inet_sendmsg+0x147/0x5e0 [ 55.589938][ T7845] ? ipip_gro_receive+0x100/0x100 [ 55.595052][ T7845] sock_sendmsg+0xdd/0x130 [ 55.599544][ T7845] kernel_sendmsg+0x44/0x50 [ 55.604062][ T7845] sock_no_sendpage+0x116/0x150 [ 55.608906][ T7845] ? sock_kfree_s+0x70/0x70 [ 55.613402][ T7845] ? debug_check_no_obj_freed+0x200/0x464 [ 55.619130][ T7845] ? mark_held_locks+0xa4/0xf0 [ 55.623896][ T7845] inet_sendpage+0x44a/0x630 [ 55.628477][ T7845] kernel_sendpage+0x95/0xf0 [ 55.633174][ T7845] ? inet_sendmsg+0x5e0/0x5e0 [ 55.637850][ T7845] sock_sendpage+0x8b/0xc0 [ 55.642356][ T7845] ? lockdep_hardirqs_on+0x418/0x5d0 [ 55.647746][ T7845] pipe_to_sendpage+0x299/0x370 [ 55.652598][ T7845] ? kernel_sendpage+0xf0/0xf0 [ 55.657353][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 55.662623][ T7845] ? __put_page+0x92/0xd0 [ 55.666943][ T7845] ? anon_pipe_buf_release+0x1c6/0x270 [ 55.672387][ T7845] __splice_from_pipe+0x395/0x7d0 [ 55.677395][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 55.682701][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 55.687975][ T7845] splice_from_pipe+0x108/0x170 [ 55.692809][ T7845] ? splice_shrink_spd+0xd0/0xd0 [ 55.697864][ T7845] ? apparmor_file_permission+0x25/0x30 [ 55.703403][ T7845] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 55.709667][ T7845] ? security_file_permission+0x94/0x380 [ 55.715303][ T7845] generic_splice_sendpage+0x3c/0x50 [ 55.720674][ T7845] ? splice_from_pipe+0x170/0x170 [ 55.725850][ T7845] do_splice+0x70a/0x13c0 [ 55.730235][ T7845] ? opipe_prep.part.0+0x2d0/0x2d0 [ 55.735346][ T7845] ? __fget_light+0x1a9/0x230 [ 55.740015][ T7845] __x64_sys_splice+0x2c6/0x330 [ 55.745005][ T7845] do_syscall_64+0x103/0x610 [ 55.749600][ T7845] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 55.755475][ T7845] RIP: 0033:0x4458b9 [ 55.759351][ T7845] Code: e8 bc b7 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b 12 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 55.779130][ T7845] RSP: 002b:00007f10219b5da8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 55.787539][ T7845] RAX: ffffffffffffffda RBX: 00000000006dac58 RCX: 00000000004458b9 [ 55.795499][ T7845] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003 [ 55.803553][ T7845] RBP: 00000000006dac50 R08: 0000000000010005 R09: 0000000000000000 [ 55.811508][ T7845] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dac5c [ 55.819467][ T7845] R13: 00007ffcadb0d1df R14: 00007f10219b69c0 R15: 20c49ba5e353f7cf [ 55.828679][ T7845] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-executor284/7845 [ 55.838166][ T7845] caller is sk_mc_loop+0x1d/0x210 [ 55.843346][ T7845] CPU: 0 PID: 7845 Comm: syz-executor284 Not tainted 5.1.0-rc2+ #118 [ 55.851415][ T7845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 55.861497][ T7845] Call Trace: [ 55.864787][ T7845] dump_stack+0x172/0x1f0 [ 55.869123][ T7845] __this_cpu_preempt_check+0x246/0x270 [ 55.874692][ T7845] sk_mc_loop+0x1d/0x210 [ 55.878920][ T7845] ip_mc_output+0x2ef/0xf70 [ 55.883413][ T7845] ? __ip_queue_xmit+0x1bf0/0x1bf0 [ 55.888511][ T7845] ? __ip_make_skb+0xf15/0x1820 [ 55.893353][ T7845] ? ip_append_data.part.0+0x170/0x170 [ 55.898858][ T7845] ? dst_release+0x62/0xb0 [ 55.903269][ T7845] ? __ip_make_skb+0xf93/0x1820 [ 55.908101][ T7845] ip_local_out+0xc4/0x1b0 [ 55.912543][ T7845] ip_send_skb+0x42/0xf0 [ 55.916774][ T7845] ip_push_pending_frames+0x64/0x80 [ 55.921955][ T7845] raw_sendmsg+0x1e6d/0x2f20 [ 55.926537][ T7845] ? compat_raw_getsockopt+0x100/0x100 [ 55.931985][ T7845] ? __lock_acquire+0x548/0x3fb0 [ 55.936965][ T7845] ? ___might_sleep+0x163/0x280 [ 55.941810][ T7845] ? __might_sleep+0x95/0x190 [ 55.946469][ T7845] ? debug_lockdep_rcu_enabled+0x71/0xa0 [ 55.952087][ T7845] ? aa_sk_perm+0x288/0x880 [ 55.956572][ T7845] ? lockdep_hardirqs_on+0x418/0x5d0 [ 55.961958][ T7845] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 55.967502][ T7845] inet_sendmsg+0x147/0x5e0 [ 55.972082][ T7845] ? compat_raw_getsockopt+0x100/0x100 [ 55.977528][ T7845] ? inet_sendmsg+0x147/0x5e0 [ 55.982212][ T7845] ? ipip_gro_receive+0x100/0x100 [ 55.987223][ T7845] sock_sendmsg+0xdd/0x130 [ 55.991627][ T7845] kernel_sendmsg+0x44/0x50 [ 55.996220][ T7845] sock_no_sendpage+0x116/0x150 [ 56.001070][ T7845] ? sock_kfree_s+0x70/0x70 [ 56.005571][ T7845] ? debug_check_no_obj_freed+0x200/0x464 [ 56.011276][ T7845] ? mark_held_locks+0xa4/0xf0 [ 56.016031][ T7845] inet_sendpage+0x44a/0x630 [ 56.020614][ T7845] kernel_sendpage+0x95/0xf0 [ 56.025194][ T7845] ? inet_sendmsg+0x5e0/0x5e0 [ 56.029859][ T7845] sock_sendpage+0x8b/0xc0 [ 56.034261][ T7845] ? lockdep_hardirqs_on+0x418/0x5d0 [ 56.039623][ T7845] pipe_to_sendpage+0x299/0x370 [ 56.044467][ T7845] ? kernel_sendpage+0xf0/0xf0 [ 56.049221][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 56.055195][ T7845] ? __put_page+0x92/0xd0 [ 56.059521][ T7845] ? anon_pipe_buf_release+0x1c6/0x270 [ 56.064980][ T7845] __splice_from_pipe+0x395/0x7d0 [ 56.069987][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 56.075254][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 56.080517][ T7845] splice_from_pipe+0x108/0x170 [ 56.085475][ T7845] ? splice_shrink_spd+0xd0/0xd0 [ 56.090505][ T7845] ? apparmor_file_permission+0x25/0x30 [ 56.096043][ T7845] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 56.102448][ T7845] ? security_file_permission+0x94/0x380 [ 56.108072][ T7845] generic_splice_sendpage+0x3c/0x50 [ 56.113352][ T7845] ? splice_from_pipe+0x170/0x170 [ 56.118558][ T7845] do_splice+0x70a/0x13c0 [ 56.122888][ T7845] ? opipe_prep.part.0+0x2d0/0x2d0 [ 56.128031][ T7845] ? __fget_light+0x1a9/0x230 [ 56.132702][ T7845] __x64_sys_splice+0x2c6/0x330 [ 56.137590][ T7845] do_syscall_64+0x103/0x610 [ 56.142177][ T7845] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 56.148066][ T7845] RIP: 0033:0x4458b9 [ 56.151996][ T7845] Code: e8 bc b7 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b 12 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 56.172510][ T7845] RSP: 002b:00007f10219b5da8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 56.181006][ T7845] RAX: ffffffffffffffda RBX: 00000000006dac58 RCX: 00000000004458b9 [ 56.188974][ T7845] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003 [ 56.196982][ T7845] RBP: 00000000006dac50 R08: 0000000000010005 R09: 0000000000000000 [ 56.204949][ T7845] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dac5c [ 56.212994][ T7845] R13: 00007ffcadb0d1df R14: 00007f10219b69c0 R15: 20c49ba5e353f7cf [ 56.221811][ T7845] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-executor284/7845 [ 56.231439][ T7845] caller is sk_mc_loop+0x1d/0x210 [ 56.236469][ T7845] CPU: 0 PID: 7845 Comm: syz-executor284 Not tainted 5.1.0-rc2+ #118 [ 56.244513][ T7845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 56.256156][ T7845] Call Trace: [ 56.259439][ T7845] dump_stack+0x172/0x1f0 [ 56.263765][ T7845] __this_cpu_preempt_check+0x246/0x270 [ 56.269322][ T7845] sk_mc_loop+0x1d/0x210 [ 56.273573][ T7845] ip_mc_output+0x2ef/0xf70 [ 56.278066][ T7845] ? __ip_queue_xmit+0x1bf0/0x1bf0 [ 56.283157][ T7845] ? __ip_make_skb+0xf15/0x1820 [ 56.288001][ T7845] ? ip_append_data.part.0+0x170/0x170 [ 56.293445][ T7845] ? dst_release+0x62/0xb0 [ 56.297937][ T7845] ? __ip_make_skb+0xf93/0x1820 [ 56.302782][ T7845] ip_local_out+0xc4/0x1b0 [ 56.307186][ T7845] ip_send_skb+0x42/0xf0 [ 56.311430][ T7845] ip_push_pending_frames+0x64/0x80 [ 56.316611][ T7845] raw_sendmsg+0x1e6d/0x2f20 [ 56.321190][ T7845] ? compat_raw_getsockopt+0x100/0x100 [ 56.326657][ T7845] ? __lock_acquire+0x548/0x3fb0 [ 56.331609][ T7845] ? ___might_sleep+0x163/0x280 [ 56.336446][ T7845] ? __might_sleep+0x95/0x190 [ 56.341140][ T7845] ? debug_lockdep_rcu_enabled+0x71/0xa0 [ 56.346757][ T7845] ? aa_sk_perm+0x288/0x880 [ 56.351274][ T7845] ? lockdep_hardirqs_on+0x418/0x5d0 [ 56.356547][ T7845] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 56.362113][ T7845] inet_sendmsg+0x147/0x5e0 [ 56.366607][ T7845] ? compat_raw_getsockopt+0x100/0x100 [ 56.372052][ T7845] ? inet_sendmsg+0x147/0x5e0 [ 56.376714][ T7845] ? ipip_gro_receive+0x100/0x100 [ 56.381738][ T7845] sock_sendmsg+0xdd/0x130 [ 56.386154][ T7845] kernel_sendmsg+0x44/0x50 [ 56.390640][ T7845] sock_no_sendpage+0x116/0x150 [ 56.395468][ T7845] ? sock_kfree_s+0x70/0x70 [ 56.399976][ T7845] ? debug_check_no_obj_freed+0x200/0x464 [ 56.405685][ T7845] ? mark_held_locks+0xa4/0xf0 [ 56.410436][ T7845] inet_sendpage+0x44a/0x630 [ 56.415011][ T7845] kernel_sendpage+0x95/0xf0 [ 56.419580][ T7845] ? inet_sendmsg+0x5e0/0x5e0 [ 56.424243][ T7845] sock_sendpage+0x8b/0xc0 [ 56.428646][ T7845] ? lockdep_hardirqs_on+0x418/0x5d0 [ 56.433922][ T7845] pipe_to_sendpage+0x299/0x370 [ 56.438760][ T7845] ? kernel_sendpage+0xf0/0xf0 [ 56.443513][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 56.448813][ T7845] ? __put_page+0x92/0xd0 [ 56.453136][ T7845] ? anon_pipe_buf_release+0x1c6/0x270 [ 56.460261][ T7845] __splice_from_pipe+0x395/0x7d0 [ 56.465289][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 56.470559][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 56.475824][ T7845] splice_from_pipe+0x108/0x170 [ 56.480681][ T7845] ? splice_shrink_spd+0xd0/0xd0 [ 56.485610][ T7845] ? apparmor_file_permission+0x25/0x30 [ 56.491138][ T7845] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 56.497361][ T7845] ? security_file_permission+0x94/0x380 [ 56.502981][ T7845] generic_splice_sendpage+0x3c/0x50 [ 56.508243][ T7845] ? splice_from_pipe+0x170/0x170 [ 56.513248][ T7845] do_splice+0x70a/0x13c0 [ 56.517560][ T7845] ? opipe_prep.part.0+0x2d0/0x2d0 [ 56.522658][ T7845] ? __fget_light+0x1a9/0x230 [ 56.527320][ T7845] __x64_sys_splice+0x2c6/0x330 [ 56.532155][ T7845] do_syscall_64+0x103/0x610 [ 56.536727][ T7845] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 56.542600][ T7845] RIP: 0033:0x4458b9 [ 56.546473][ T7845] Code: e8 bc b7 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b 12 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 56.566996][ T7845] RSP: 002b:00007f10219b5da8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 56.575391][ T7845] RAX: ffffffffffffffda RBX: 00000000006dac58 RCX: 00000000004458b9 [ 56.583349][ T7845] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003 [ 56.591299][ T7845] RBP: 00000000006dac50 R08: 0000000000010005 R09: 0000000000000000 [ 56.599376][ T7845] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dac5c [ 56.607327][ T7845] R13: 00007ffcadb0d1df R14: 00007f10219b69c0 R15: 20c49ba5e353f7cf [ 56.616141][ T7845] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-executor284/7845 [ 56.625608][ T7845] caller is sk_mc_loop+0x1d/0x210 [ 56.630731][ T7845] CPU: 0 PID: 7845 Comm: syz-executor284 Not tainted 5.1.0-rc2+ #118 [ 56.638791][ T7845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 56.648844][ T7845] Call Trace: [ 56.652136][ T7845] dump_stack+0x172/0x1f0 [ 56.656477][ T7845] __this_cpu_preempt_check+0x246/0x270 [ 56.662005][ T7845] sk_mc_loop+0x1d/0x210 [ 56.666249][ T7845] ip_mc_output+0x2ef/0xf70 [ 56.670734][ T7845] ? __ip_queue_xmit+0x1bf0/0x1bf0 [ 56.675824][ T7845] ? __ip_make_skb+0xf15/0x1820 [ 56.680656][ T7845] ? ip_append_data.part.0+0x170/0x170 [ 56.686108][ T7845] ? dst_release+0x62/0xb0 [ 56.690504][ T7845] ? __ip_make_skb+0xf93/0x1820 [ 56.695333][ T7845] ip_local_out+0xc4/0x1b0 [ 56.699733][ T7845] ip_send_skb+0x42/0xf0 [ 56.703961][ T7845] ip_push_pending_frames+0x64/0x80 [ 56.709145][ T7845] raw_sendmsg+0x1e6d/0x2f20 [ 56.713746][ T7845] ? compat_raw_getsockopt+0x100/0x100 [ 56.719203][ T7845] ? __lock_acquire+0x548/0x3fb0 [ 56.724130][ T7845] ? ___might_sleep+0x163/0x280 [ 56.728964][ T7845] ? __might_sleep+0x95/0x190 [ 56.733622][ T7845] ? debug_lockdep_rcu_enabled+0x71/0xa0 [ 56.739233][ T7845] ? aa_sk_perm+0x288/0x880 [ 56.743891][ T7845] ? lockdep_hardirqs_on+0x418/0x5d0 [ 56.749160][ T7845] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 56.754721][ T7845] inet_sendmsg+0x147/0x5e0 [ 56.759227][ T7845] ? compat_raw_getsockopt+0x100/0x100 [ 56.764758][ T7845] ? inet_sendmsg+0x147/0x5e0 [ 56.769422][ T7845] ? ipip_gro_receive+0x100/0x100 [ 56.774429][ T7845] sock_sendmsg+0xdd/0x130 [ 56.778832][ T7845] kernel_sendmsg+0x44/0x50 [ 56.783331][ T7845] sock_no_sendpage+0x116/0x150 [ 56.788336][ T7845] ? sock_kfree_s+0x70/0x70 [ 56.792822][ T7845] ? debug_check_no_obj_freed+0x200/0x464 [ 56.798547][ T7845] ? mark_held_locks+0xa4/0xf0 [ 56.803320][ T7845] inet_sendpage+0x44a/0x630 [ 56.807934][ T7845] kernel_sendpage+0x95/0xf0 [ 56.812527][ T7845] ? inet_sendmsg+0x5e0/0x5e0 [ 56.817191][ T7845] sock_sendpage+0x8b/0xc0 [ 56.821592][ T7845] ? lockdep_hardirqs_on+0x418/0x5d0 [ 56.826867][ T7845] pipe_to_sendpage+0x299/0x370 [ 56.831710][ T7845] ? kernel_sendpage+0xf0/0xf0 [ 56.836472][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 56.841745][ T7845] ? __put_page+0x92/0xd0 [ 56.846058][ T7845] ? anon_pipe_buf_release+0x1c6/0x270 [ 56.851503][ T7845] __splice_from_pipe+0x395/0x7d0 [ 56.856513][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 56.861805][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 56.867075][ T7845] splice_from_pipe+0x108/0x170 [ 56.871907][ T7845] ? splice_shrink_spd+0xd0/0xd0 [ 56.876835][ T7845] ? apparmor_file_permission+0x25/0x30 [ 56.882374][ T7845] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 56.888605][ T7845] ? security_file_permission+0x94/0x380 [ 56.894255][ T7845] generic_splice_sendpage+0x3c/0x50 [ 56.899536][ T7845] ? splice_from_pipe+0x170/0x170 [ 56.904578][ T7845] do_splice+0x70a/0x13c0 [ 56.908905][ T7845] ? opipe_prep.part.0+0x2d0/0x2d0 [ 56.914089][ T7845] ? __fget_light+0x1a9/0x230 [ 56.918770][ T7845] __x64_sys_splice+0x2c6/0x330 [ 56.923605][ T7845] do_syscall_64+0x103/0x610 [ 56.928175][ T7845] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 56.934063][ T7845] RIP: 0033:0x4458b9 [ 56.937941][ T7845] Code: e8 bc b7 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b 12 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 56.957632][ T7845] RSP: 002b:00007f10219b5da8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 56.966058][ T7845] RAX: ffffffffffffffda RBX: 00000000006dac58 RCX: 00000000004458b9 [ 56.974023][ T7845] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003 [ 56.981979][ T7845] RBP: 00000000006dac50 R08: 0000000000010005 R09: 0000000000000000 [ 56.989937][ T7845] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dac5c [ 56.997930][ T7845] R13: 00007ffcadb0d1df R14: 00007f10219b69c0 R15: 20c49ba5e353f7cf [ 57.006671][ T7845] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-executor284/7845 [ 57.016126][ T7845] caller is sk_mc_loop+0x1d/0x210 [ 57.021354][ T7845] CPU: 0 PID: 7845 Comm: syz-executor284 Not tainted 5.1.0-rc2+ #118 [ 57.029448][ T7845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 57.039504][ T7845] Call Trace: [ 57.042790][ T7845] dump_stack+0x172/0x1f0 [ 57.047104][ T7845] __this_cpu_preempt_check+0x246/0x270 [ 57.052629][ T7845] sk_mc_loop+0x1d/0x210 [ 57.056852][ T7845] ip_mc_output+0x2ef/0xf70 [ 57.061344][ T7845] ? __ip_queue_xmit+0x1bf0/0x1bf0 [ 57.066456][ T7845] ? __ip_make_skb+0xf15/0x1820 [ 57.071305][ T7845] ? ip_append_data.part.0+0x170/0x170 [ 57.076742][ T7845] ? dst_release+0x62/0xb0 [ 57.081157][ T7845] ? __ip_make_skb+0xf93/0x1820 [ 57.085992][ T7845] ip_local_out+0xc4/0x1b0 [ 57.090393][ T7845] ip_send_skb+0x42/0xf0 [ 57.094622][ T7845] ip_push_pending_frames+0x64/0x80 [ 57.099983][ T7845] raw_sendmsg+0x1e6d/0x2f20 [ 57.104599][ T7845] ? compat_raw_getsockopt+0x100/0x100 [ 57.110077][ T7845] ? __lock_acquire+0x548/0x3fb0 [ 57.115005][ T7845] ? ___might_sleep+0x163/0x280 [ 57.119943][ T7845] ? __might_sleep+0x95/0x190 [ 57.124621][ T7845] ? debug_lockdep_rcu_enabled+0x71/0xa0 [ 57.130258][ T7845] ? aa_sk_perm+0x288/0x880 [ 57.134743][ T7845] ? lockdep_hardirqs_on+0x418/0x5d0 [ 57.140104][ T7845] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 57.145635][ T7845] inet_sendmsg+0x147/0x5e0 [ 57.150121][ T7845] ? compat_raw_getsockopt+0x100/0x100 [ 57.155560][ T7845] ? inet_sendmsg+0x147/0x5e0 [ 57.160307][ T7845] ? ipip_gro_receive+0x100/0x100 [ 57.165317][ T7845] sock_sendmsg+0xdd/0x130 [ 57.169713][ T7845] kernel_sendmsg+0x44/0x50 [ 57.174198][ T7845] sock_no_sendpage+0x116/0x150 [ 57.179114][ T7845] ? sock_kfree_s+0x70/0x70 [ 57.183598][ T7845] ? debug_check_no_obj_freed+0x200/0x464 [ 57.189324][ T7845] ? mark_held_locks+0xa4/0xf0 [ 57.194079][ T7845] inet_sendpage+0x44a/0x630 [ 57.198652][ T7845] kernel_sendpage+0x95/0xf0 [ 57.203219][ T7845] ? inet_sendmsg+0x5e0/0x5e0 [ 57.207872][ T7845] sock_sendpage+0x8b/0xc0 [ 57.212269][ T7845] ? lockdep_hardirqs_on+0x418/0x5d0 [ 57.217537][ T7845] pipe_to_sendpage+0x299/0x370 [ 57.222386][ T7845] ? kernel_sendpage+0xf0/0xf0 [ 57.227137][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 57.232422][ T7845] ? __put_page+0x92/0xd0 [ 57.236750][ T7845] ? anon_pipe_buf_release+0x1c6/0x270 [ 57.242207][ T7845] __splice_from_pipe+0x395/0x7d0 [ 57.247218][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 57.252574][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 57.258039][ T7845] splice_from_pipe+0x108/0x170 [ 57.262926][ T7845] ? splice_shrink_spd+0xd0/0xd0 [ 57.267864][ T7845] ? apparmor_file_permission+0x25/0x30 [ 57.273403][ T7845] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 57.279625][ T7845] ? security_file_permission+0x94/0x380 [ 57.285254][ T7845] generic_splice_sendpage+0x3c/0x50 [ 57.290519][ T7845] ? splice_from_pipe+0x170/0x170 [ 57.295522][ T7845] do_splice+0x70a/0x13c0 [ 57.299843][ T7845] ? opipe_prep.part.0+0x2d0/0x2d0 [ 57.304968][ T7845] ? __fget_light+0x1a9/0x230 [ 57.309629][ T7845] __x64_sys_splice+0x2c6/0x330 [ 57.314462][ T7845] do_syscall_64+0x103/0x610 [ 57.319053][ T7845] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 57.324942][ T7845] RIP: 0033:0x4458b9 [ 57.328856][ T7845] Code: e8 bc b7 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b 12 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 57.348473][ T7845] RSP: 002b:00007f10219b5da8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 57.356886][ T7845] RAX: ffffffffffffffda RBX: 00000000006dac58 RCX: 00000000004458b9 [ 57.364885][ T7845] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003 [ 57.373097][ T7845] RBP: 00000000006dac50 R08: 0000000000010005 R09: 0000000000000000 [ 57.381081][ T7845] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dac5c [ 57.389049][ T7845] R13: 00007ffcadb0d1df R14: 00007f10219b69c0 R15: 20c49ba5e353f7cf [ 57.397709][ T7845] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-executor284/7845 [ 57.407130][ T7845] caller is sk_mc_loop+0x1d/0x210 [ 57.412210][ T7845] CPU: 0 PID: 7845 Comm: syz-executor284 Not tainted 5.1.0-rc2+ #118 [ 57.420273][ T7845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 57.430312][ T7845] Call Trace: [ 57.433603][ T7845] dump_stack+0x172/0x1f0 [ 57.437916][ T7845] __this_cpu_preempt_check+0x246/0x270 [ 57.443446][ T7845] sk_mc_loop+0x1d/0x210 [ 57.447701][ T7845] ip_mc_output+0x2ef/0xf70 [ 57.452288][ T7845] ? __ip_queue_xmit+0x1bf0/0x1bf0 [ 57.457462][ T7845] ? __ip_make_skb+0xf15/0x1820 [ 57.462486][ T7845] ? ip_append_data.part.0+0x170/0x170 [ 57.472454][ T7845] ? dst_release+0x62/0xb0 [ 57.476854][ T7845] ? __ip_make_skb+0xf93/0x1820 [ 57.481691][ T7845] ip_local_out+0xc4/0x1b0 [ 57.486120][ T7845] ip_send_skb+0x42/0xf0 [ 57.490357][ T7845] ip_push_pending_frames+0x64/0x80 [ 57.495545][ T7845] raw_sendmsg+0x1e6d/0x2f20 [ 57.500121][ T7845] ? compat_raw_getsockopt+0x100/0x100 [ 57.505577][ T7845] ? __lock_acquire+0x548/0x3fb0 [ 57.510504][ T7845] ? ___might_sleep+0x163/0x280 [ 57.515341][ T7845] ? __might_sleep+0x95/0x190 [ 57.520120][ T7845] ? debug_lockdep_rcu_enabled+0x71/0xa0 [ 57.525742][ T7845] ? aa_sk_perm+0x288/0x880 [ 57.530258][ T7845] ? lockdep_hardirqs_on+0x418/0x5d0 [ 57.535672][ T7845] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 57.541222][ T7845] inet_sendmsg+0x147/0x5e0 [ 57.545750][ T7845] ? compat_raw_getsockopt+0x100/0x100 [ 57.551192][ T7845] ? inet_sendmsg+0x147/0x5e0 [ 57.555945][ T7845] ? ipip_gro_receive+0x100/0x100 [ 57.560980][ T7845] sock_sendmsg+0xdd/0x130 [ 57.565376][ T7845] kernel_sendmsg+0x44/0x50 [ 57.569960][ T7845] sock_no_sendpage+0x116/0x150 [ 57.574790][ T7845] ? sock_kfree_s+0x70/0x70 [ 57.579410][ T7845] ? debug_check_no_obj_freed+0x200/0x464 [ 57.585115][ T7845] ? mark_held_locks+0xa4/0xf0 [ 57.589897][ T7845] inet_sendpage+0x44a/0x630 [ 57.594511][ T7845] kernel_sendpage+0x95/0xf0 [ 57.599105][ T7845] ? inet_sendmsg+0x5e0/0x5e0 [ 57.603762][ T7845] sock_sendpage+0x8b/0xc0 [ 57.608156][ T7845] ? lockdep_hardirqs_on+0x418/0x5d0 [ 57.613432][ T7845] pipe_to_sendpage+0x299/0x370 [ 57.618298][ T7845] ? kernel_sendpage+0xf0/0xf0 [ 57.623044][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 57.628311][ T7845] ? __put_page+0x92/0xd0 [ 57.632626][ T7845] ? anon_pipe_buf_release+0x1c6/0x270 [ 57.638084][ T7845] __splice_from_pipe+0x395/0x7d0 [ 57.643116][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 57.648400][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 57.653670][ T7845] splice_from_pipe+0x108/0x170 [ 57.658517][ T7845] ? splice_shrink_spd+0xd0/0xd0 [ 57.663438][ T7845] ? apparmor_file_permission+0x25/0x30 [ 57.668970][ T7845] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 57.675202][ T7845] ? security_file_permission+0x94/0x380 [ 57.680850][ T7845] generic_splice_sendpage+0x3c/0x50 [ 57.686119][ T7845] ? splice_from_pipe+0x170/0x170 [ 57.691123][ T7845] do_splice+0x70a/0x13c0 [ 57.695439][ T7845] ? opipe_prep.part.0+0x2d0/0x2d0 [ 57.700550][ T7845] ? __fget_light+0x1a9/0x230 [ 57.705209][ T7845] __x64_sys_splice+0x2c6/0x330 [ 57.710047][ T7845] do_syscall_64+0x103/0x610 [ 57.714642][ T7845] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 57.720511][ T7845] RIP: 0033:0x4458b9 [ 57.724385][ T7845] Code: e8 bc b7 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b 12 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 57.743982][ T7845] RSP: 002b:00007f10219b5da8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 57.752377][ T7845] RAX: ffffffffffffffda RBX: 00000000006dac58 RCX: 00000000004458b9 [ 57.760420][ T7845] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003 [ 57.768388][ T7845] RBP: 00000000006dac50 R08: 0000000000010005 R09: 0000000000000000 [ 57.776342][ T7845] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dac5c [ 57.784309][ T7845] R13: 00007ffcadb0d1df R14: 00007f10219b69c0 R15: 20c49ba5e353f7cf [ 57.793026][ T7845] BUG: using __this_cpu_read() in preemptible [00000000] code: syz-executor284/7845 [ 57.802586][ T7845] caller is sk_mc_loop+0x1d/0x210 [ 57.807636][ T7845] CPU: 0 PID: 7845 Comm: syz-executor284 Not tainted 5.1.0-rc2+ #118 [ 57.815676][ T7845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 57.825797][ T7845] Call Trace: [ 57.829074][ T7845] dump_stack+0x172/0x1f0 [ 57.833396][ T7845] __this_cpu_preempt_check+0x246/0x270 [ 57.838938][ T7845] sk_mc_loop+0x1d/0x210 [ 57.843179][ T7845] ip_mc_output+0x2ef/0xf70 [ 57.847664][ T7845] ? __ip_queue_xmit+0x1bf0/0x1bf0 [ 57.852768][ T7845] ? __ip_make_skb+0xf15/0x1820 [ 57.857601][ T7845] ? ip_append_data.part.0+0x170/0x170 [ 57.863040][ T7845] ? dst_release+0x62/0xb0 [ 57.867439][ T7845] ? __ip_make_skb+0xf93/0x1820 [ 57.872269][ T7845] ip_local_out+0xc4/0x1b0 [ 57.876841][ T7845] ip_send_skb+0x42/0xf0 [ 57.881064][ T7845] ip_push_pending_frames+0x64/0x80 [ 57.886238][ T7845] raw_sendmsg+0x1e6d/0x2f20 [ 57.890848][ T7845] ? compat_raw_getsockopt+0x100/0x100 [ 57.896317][ T7845] ? __lock_acquire+0x548/0x3fb0 [ 57.901274][ T7845] ? ___might_sleep+0x163/0x280 [ 57.906107][ T7845] ? __might_sleep+0x95/0x190 [ 57.910765][ T7845] ? debug_lockdep_rcu_enabled+0x71/0xa0 [ 57.916375][ T7845] ? aa_sk_perm+0x288/0x880 [ 57.920888][ T7845] ? lockdep_hardirqs_on+0x418/0x5d0 [ 57.926161][ T7845] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 57.931686][ T7845] inet_sendmsg+0x147/0x5e0 [ 57.936340][ T7845] ? compat_raw_getsockopt+0x100/0x100 [ 57.941779][ T7845] ? inet_sendmsg+0x147/0x5e0 [ 57.946440][ T7845] ? ipip_gro_receive+0x100/0x100 [ 57.951477][ T7845] sock_sendmsg+0xdd/0x130 [ 57.955979][ T7845] kernel_sendmsg+0x44/0x50 [ 57.960554][ T7845] sock_no_sendpage+0x116/0x150 [ 57.965381][ T7845] ? sock_kfree_s+0x70/0x70 [ 57.969863][ T7845] ? debug_check_no_obj_freed+0x200/0x464 [ 57.975652][ T7845] ? mark_held_locks+0xa4/0xf0 [ 57.980399][ T7845] inet_sendpage+0x44a/0x630 [ 57.985002][ T7845] kernel_sendpage+0x95/0xf0 [ 57.989575][ T7845] ? inet_sendmsg+0x5e0/0x5e0 [ 57.994230][ T7845] sock_sendpage+0x8b/0xc0 [ 57.998622][ T7845] ? lockdep_hardirqs_on+0x418/0x5d0 [ 58.003893][ T7845] pipe_to_sendpage+0x299/0x370 [ 58.008742][ T7845] ? kernel_sendpage+0xf0/0xf0 [ 58.013506][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 58.018958][ T7845] ? __put_page+0x92/0xd0 [ 58.023274][ T7845] ? anon_pipe_buf_release+0x1c6/0x270 [ 58.028767][ T7845] __splice_from_pipe+0x395/0x7d0 [ 58.033794][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 58.039064][ T7845] ? direct_splice_actor+0x1a0/0x1a0 [ 58.044330][ T7845] splice_from_pipe+0x108/0x170 [ 58.049159][ T7845] ? splice_shrink_spd+0xd0/0xd0 [ 58.054079][ T7845] ? apparmor_file_permission+0x25/0x30 [ 58.059617][ T7845] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 58.065876][ T7845] ? security_file_permission+0x94/0x380 [ 58.071495][ T7845] generic_splice_sendpage+0x3c/0x50 [ 58.076758][ T7845] ? splice_from_pipe+0x170/0x170 [ 58.081766][ T7845] do_splice+0x70a/0x13c0 [ 58.086085][ T7845] ? opipe_prep.part.0+0x2d0/0x2d0 [ 58.091203][ T7845] ? __fget_light+0x1a9/0x230 [ 58.095937][ T7845] __x64_sys_splice+0x2c6/0x330 [ 58.100782][ T7845] do_syscall_64+0x103/0x610 [ 58.105364][ T7845] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 58.111256][ T7845] RIP: 0033:0x4458b9 [ 58.115152][ T7845] Code: e8 bc b7 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b 12 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 58.134743][ T7845] RSP: 002b:00007f10219b5da8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 58.143136][ T7845] RAX: ffffffffffffffda RBX: 00000000006dac58 RCX: 00000000004458b9 [ 58.151105][ T7845] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003 [ 58.159401][ T7845] RBP: 00000000006dac50 R08: 0000000000010005 R09: 0000000000000000 [ 58.167352][ T7845] R10: 0000000000000000 R11: 0000000000000246 R12: 0