INIT: Id "6" respawning too fast: disabled for 5 minutes INIT: Id "1" respawning too fast: disabled for 5 minutes INIT: Id "3" respawning too fast: disabled for 5 minutes INIT: Id "5" respawning too fast: disabled for 5 minutes INIT: Id "2" respawning too fast: disabled for 5 minutes Warning: Permanently added 'ci-android-49-kasan-gce-6,10.128.0.20' (ECDSA) to the list of known hosts. 2017/09/24 16:44:20 parsed 1 programs 2017/09/24 16:44:20 executed programs: 0 [ 138.723235] dev_remove_pack: ffff8801d1a6a980 not found 2017/09/24 16:44:25 executed programs: 195 [ 139.534317] dev_remove_pack: ffff8801d07aba80 not found 2017/09/24 16:44:30 executed programs: 393 [ 144.186878] ================================================================== [ 144.194259] BUG: KASAN: use-after-free in do_raw_spin_lock+0x1ac/0x1e0 at addr ffff8801d07ab44c [ 144.203058] Read of size 4 by task swapper/1/0 [ 144.207604] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 4.9.51-g47589a5 #53 [ 144.214494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 144.223814] ffff8801db307760 ffffffff81d93069 ffff8801da002000 ffff8801d07ab300 [ 144.231760] ffff8801d07abb00 ffffed003a0f5689 ffff8801d07ab44c ffff8801db307788 [ 144.239720] ffffffff8153cc6c ffffed003a0f5689 ffff8801da002000 0000000000000000 [ 144.247676] Call Trace: [ 144.250221] [ 144.252251] [] dump_stack+0xc1/0x128 [ 144.257594] [] kasan_object_err+0x1c/0x70 [ 144.263355] [] kasan_report.part.1+0x21c/0x500 [ 144.269549] [] ? do_raw_spin_lock+0x1ac/0x1e0 [ 144.275659] [] __asan_report_load4_noabort+0x29/0x30 [ 144.282384] [] do_raw_spin_lock+0x1ac/0x1e0 [ 144.288319] [] _raw_spin_lock_bh+0x42/0x50 [ 144.294169] [] ? packet_rcv_has_room+0x25/0xb0 [ 144.300365] [] packet_rcv_has_room+0x25/0xb0 [ 144.306388] [] fanout_demux_rollover+0x26f/0x4d0 [ 144.312759] [] packet_rcv_fanout+0x4ce/0x620 [ 144.318785] [] __netif_receive_skb_core+0x887/0x29e0 [ 144.325510] [] ? debug_check_no_locks_freed+0x2c0/0x2c0 [ 144.332485] [] ? netif_wake_subqueue+0x210/0x210 [ 144.338864] [] ? netif_receive_skb_internal+0x92/0x390 [ 144.345753] [] __netif_receive_skb+0x5b/0x1c0 [ 144.351871] [] netif_receive_skb_internal+0xff/0x390 [ 144.358590] [] ? netif_receive_skb_internal+0x92/0x390 [ 144.365481] [] ? dev_cpu_callback+0x680/0x680 [ 144.371591] [] ? dev_gro_receive+0x1d6/0x16f0 [ 144.377699] [] ? dev_gro_receive+0x67a/0x16f0 [ 144.383807] [] ? eth_type_trans+0x2a8/0x5d0 [ 144.389741] [] napi_gro_receive+0x1fb/0x400 [ 144.395685] [] virtnet_receive+0xe1c/0x1cf0 [ 144.401620] [] ? virtnet_open+0x250/0x250 [ 144.407383] [] ? check_preemption_disabled+0x3b/0x200 [ 144.414185] [] ? debug_check_no_locks_freed+0x2c0/0x2c0 [ 144.421163] [] ? check_preemption_disabled+0x3b/0x200 [ 144.427971] [] ? debug_smp_processor_id+0x1c/0x20 [ 144.434425] [] virtnet_poll+0x26/0x140 [ 144.439925] [] net_rx_action+0x396/0xe00 [ 144.445599] [] ? sk_busy_loop+0xca0/0xca0 [ 144.451362] [] ? handle_edge_irq+0x417/0x8e0 [ 144.457383] [] ? _raw_spin_lock+0x3e/0x50 [ 144.463145] [] ? check_preemption_disabled+0x3b/0x200 [ 144.469959] [] __do_softirq+0x22d/0x964 [ 144.475547] [] irq_exit+0x165/0x190 [ 144.480788] [] do_IRQ+0x107/0x1b0 [ 144.485853] [] common_interrupt+0x8c/0x8c [ 144.491612] [ 144.493647] [] ? native_safe_halt+0x6/0x10 [ 144.499508] [] default_idle+0x55/0x360 [ 144.505011] [] arch_cpu_idle+0xa/0x10 [ 144.510424] [] default_idle_call+0x36/0x60 [ 144.516273] [] cpu_startup_entry+0x30c/0x3d0 [ 144.522304] [] ? cpu_in_idle+0x20/0x20 [ 144.527806] [] ? clockevents_register_device+0x123/0x200 [ 144.534871] [] start_secondary+0x303/0x3e0 [ 144.540719] [] ? set_cpu_sibling_map+0x11b0/0x11b0 [ 144.547262] Object at ffff8801d07ab300, in cache kmalloc-2048 size: 2048 [ 144.554062] Allocated: [ 144.556522] PID = 4273 [ 144.558986] save_stack_trace+0x16/0x20 [ 144.562922] save_stack+0x43/0xd0 [ 144.566339] kasan_kmalloc+0xad/0xe0 [ 144.570018] __kmalloc+0x11d/0x310 [ 144.573525] sk_prot_alloc+0x101/0x2a0 [ 144.577374] sk_alloc+0x3a/0x3a0 [ 144.580705] packet_create+0xf0/0x8e0 [ 144.584469] __sock_create+0x3ab/0x640 [ 144.588317] SyS_socket+0xf0/0x1b0 [ 144.591831] entry_SYSCALL_64_fastpath+0x23/0xc6 [ 144.596546] Freed: [ 144.598658] PID = 4273 [ 144.601120] save_stack_trace+0x16/0x20 [ 144.605057] save_stack+0x43/0xd0 [ 144.608475] kasan_slab_free+0x73/0xc0 [ 144.612327] kfree+0xf0/0x2f0 [ 144.615401] __sk_destruct+0x47f/0x570 [ 144.619253] sk_destruct+0x47/0x80 [ 144.622762] __sk_free+0x57/0x230 [ 144.626180] sk_free+0x23/0x30 [ 144.629337] packet_release+0x732/0xa20 [ 144.633279] sock_release+0x8d/0x1e0 [ 144.636979] sock_close+0x16/0x20 [ 144.640421] __fput+0x28c/0x6e0 [ 144.643667] ____fput+0x15/0x20 [ 144.646911] task_work_run+0x115/0x190 [ 144.650765] do_exit+0x82e/0x2a50 [ 144.654184] do_group_exit+0x108/0x320 [ 144.658036] get_signal+0x55c/0x1600 [ 144.661714] do_signal+0x87/0x1960 [ 144.665218] exit_to_usermode_loop+0xe5/0x130 [ 144.669676] syscall_return_slowpath+0x1a0/0x1e0 [ 144.674420] entry_SYSCALL_64_fastpath+0xc4/0xc6 [ 144.679141] Memory state around the buggy address: [ 144.684047] ffff8801d07ab300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 144.691374] ffff8801d07ab380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 144.698698] >ffff8801d07ab400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 144.706021] ^ [ 144.711705] ffff8801d07ab480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 144.719029] ffff8801d07ab500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 144.726352] ================================================================== [ 144.733717] ================================================================== [ 144.741047] BUG: KASAN: use-after-free in do_raw_spin_lock+0x1d3/0x1e0 at addr ffff8801d07ab458 [ 144.749847] Read of size 8 by task swapper/1/0 [ 144.754395] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B 4.9.51-g47589a5 #53 [ 144.762500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 144.771820] ffff8801db307760 ffffffff81d93069 ffff8801da002000 ffff8801d07ab300 [ 144.779785] ffff8801d07abb00 ffffed003a0f568b ffff8801d07ab458 ffff8801db307788 [ 144.788116] ffffffff8153cc6c ffffed003a0f568b ffff8801da002000 0000000000000000 [ 144.796064] Call Trace: [ 144.798627] [ 144.800666] [] dump_stack+0xc1/0x128 [ 144.806010] [] kasan_object_err+0x1c/0x70 [ 144.811773] [] kasan_report.part.1+0x21c/0x500 [ 144.817975] [] ? do_raw_spin_lock+0x1d3/0x1e0 [ 144.824090] [] __asan_report_load8_noabort+0x29/0x30 [ 144.830809] [] do_raw_spin_lock+0x1d3/0x1e0 [ 144.836749] [] _raw_spin_lock_bh+0x42/0x50 [ 144.842602] [] ? packet_rcv_has_room+0x25/0xb0 [ 144.848801] [] packet_rcv_has_room+0x25/0xb0 [ 144.854832] [] fanout_demux_rollover+0x26f/0x4d0 [ 144.861203] [] packet_rcv_fanout+0x4ce/0x620 [ 144.867233] [] __netif_receive_skb_core+0x887/0x29e0 [ 144.873952] [] ? debug_check_no_locks_freed+0x2c0/0x2c0 [ 144.880927] [] ? netif_wake_subqueue+0x210/0x210 [ 144.887297] [] ? netif_receive_skb_internal+0x92/0x390 [ 144.894187] [] __netif_receive_skb+0x5b/0x1c0 [ 144.900295] [] netif_receive_skb_internal+0xff/0x390 [ 144.907010] [] ? netif_receive_skb_internal+0x92/0x390 [ 144.913909] [] ? dev_cpu_callback+0x680/0x680 [ 144.920016] [] ? dev_gro_receive+0x1d6/0x16f0 [ 144.926126] [] ? dev_gro_receive+0x67a/0x16f0 [ 144.932236] [] ? eth_type_trans+0x2a8/0x5d0 [ 144.938171] [] napi_gro_receive+0x1fb/0x400 [ 144.944108] [] virtnet_receive+0xe1c/0x1cf0 [ 144.950043] [] ? virtnet_open+0x250/0x250 [ 144.955807] [] ? check_preemption_disabled+0x3b/0x200 [ 144.962615] [] ? debug_check_no_locks_freed+0x2c0/0x2c0 [ 144.969590] [] ? check_preemption_disabled+0x3b/0x200 [ 144.976394] [] ? debug_smp_processor_id+0x1c/0x20 [ 144.982851] [] virtnet_poll+0x26/0x140 [ 144.988351] [] net_rx_action+0x396/0xe00 [ 144.994025] [] ? sk_busy_loop+0xca0/0xca0 [ 144.999790] [] ? handle_edge_irq+0x417/0x8e0 [ 145.005813] [] ? _raw_spin_lock+0x3e/0x50 [ 145.011573] [] ? check_preemption_disabled+0x3b/0x200 [ 145.018376] [] __do_softirq+0x22d/0x964 [ 145.023964] [] irq_exit+0x165/0x190 [ 145.029205] [] do_IRQ+0x107/0x1b0 [ 145.034281] [] common_interrupt+0x8c/0x8c [ 145.040042] [ 145.042071] [] ? native_safe_halt+0x6/0x10 [ 145.047934] [] default_idle+0x55/0x360 [ 145.053436] [] arch_cpu_idle+0xa/0x10 [ 145.058858] [] default_idle_call+0x36/0x60 [ 145.064709] [] cpu_startup_entry+0x30c/0x3d0 [ 145.070733] [] ? cpu_in_idle+0x20/0x20 [ 145.076234] [] ? clockevents_register_device+0x123/0x200 [ 145.083302] [] start_secondary+0x303/0x3e0 [ 145.089151] [] ? set_cpu_sibling_map+0x11b0/0x11b0 [ 145.095694] Object at ffff8801d07ab300, in cache kmalloc-2048 size: 2048 [ 145.102493] Allocated: [ 145.104953] PID = 4273 [ 145.107416] save_stack_trace+0x16/0x20 [ 145.111357] save_stack+0x43/0xd0 [ 145.114774] kasan_kmalloc+0xad/0xe0 [ 145.118449] __kmalloc+0x11d/0x310 [ 145.121961] sk_prot_alloc+0x101/0x2a0 [ 145.125811] sk_alloc+0x3a/0x3a0 [ 145.129141] packet_create+0xf0/0x8e0 [ 145.132909] __sock_create+0x3ab/0x640 [ 145.136759] SyS_socket+0xf0/0x1b0 [ 145.140269] entry_SYSCALL_64_fastpath+0x23/0xc6 [ 145.144985] Freed: [ 145.147097] PID = 4273 [ 145.149559] save_stack_trace+0x16/0x20 [ 145.153503] save_stack+0x43/0xd0 [ 145.156921] kasan_slab_free+0x73/0xc0 [ 145.160771] kfree+0xf0/0x2f0 [ 145.163849] __sk_destruct+0x47f/0x570 [ 145.167703] sk_destruct+0x47/0x80 [ 145.171207] __sk_free+0x57/0x230 [ 145.174622] sk_free+0x23/0x30 [ 145.177780] packet_release+0x732/0xa20 [ 145.181718] sock_release+0x8d/0x1e0 [ 145.185404] sock_close+0x16/0x20