[....] Starting enhanced syslogd: rsyslogd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[ 68.702301][ T26] audit: type=1800 audit(1576229685.814:25): pid=9236 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[ 68.722426][ T26] audit: type=1800 audit(1576229685.814:26): pid=9236 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[ 68.743910][ T26] audit: type=1800 audit(1576229685.814:27): pid=9236 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[....] Starting OpenBSD Secure Shell server: sshd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
Debian GNU/Linux 7 syzkaller ttyS0
Warning: Permanently added '10.128.10.22' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [ 79.003281][ T9388] IPVS: ftp: loaded support on port[0] = 21
[ 79.044004][ T9388] netlink: 2 bytes leftover after parsing attributes in process `syz-executor160'.
[ 79.085716][ C1] ==================================================================
[ 79.094034][ C1] BUG: KASAN: use-after-free in __alloc_skb+0x37b/0x5e0
[ 79.100963][ C1] Write of size 32 at addr ffff88819ed3f5c0 by task swapper/1/0
[ 79.108573][ C1]
[ 79.110891][ C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 5.5.0-rc1-syzkaller #0
[ 79.118937][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 79.129157][ C1] Call Trace:
[ 79.132422][ C1]
[ 79.135259][ C1] dump_stack+0x197/0x210
[ 79.139580][ C1] ? __alloc_skb+0x37b/0x5e0
[ 79.144152][ C1] print_address_description.constprop.0.cold+0xd4/0x30b
[ 79.151167][ C1] ? __alloc_skb+0x37b/0x5e0
[ 79.156658][ C1] ? __alloc_skb+0x37b/0x5e0
[ 79.161240][ C1] __kasan_report.cold+0x1b/0x41
[ 79.166172][ C1] ? __alloc_skb+0x37b/0x5e0
[ 79.170754][ C1] kasan_report+0x12/0x20
[ 79.175064][ C1] check_memory_region+0x134/0x1a0
[ 79.180249][ C1] memset+0x24/0x40
[ 79.184039][ C1] __alloc_skb+0x37b/0x5e0
[ 79.188437][ C1] ? __kmalloc_reserve.isra.0+0xf0/0xf0
[ 79.193963][ C1] ? __read_once_size_nocheck.constprop.0+0x10/0x10
[ 79.200547][ C1] ? get_stack_info+0x37/0x143
[ 79.205304][ C1] alloc_skb_with_frags+0x93/0x590
[ 79.211272][ C1] sock_alloc_send_pskb+0x7ad/0x920
[ 79.216467][ C1] ? sock_wmalloc+0x120/0x120
[ 79.221225][ C1] ? rcu_lockdep_current_cpu_online+0xe3/0x130
[ 79.227372][ C1] sock_alloc_send_skb+0x32/0x40
[ 79.232313][ C1] mld_newpack+0x1d7/0x7f0
[ 79.236714][ C1] ? __kasan_check_read+0x11/0x20
[ 79.242151][ C1] ? ip6_mc_hdr.isra.0.constprop.0+0x5a0/0x5a0
[ 79.248579][ C1] ? __kasan_check_read+0x11/0x20
[ 79.253816][ C1] ? __lock_acquire+0x16f2/0x4a00
[ 79.258830][ C1] ? __kasan_check_read+0x11/0x20
[ 79.263856][ C1] add_grhead.isra.0+0x299/0x370
[ 79.270360][ C1] add_grec+0x7db/0x10b0
[ 79.274629][ C1] ? do_raw_spin_lock+0x12a/0x2e0
[ 79.279644][ C1] ? mld_sendpack+0xed0/0xed0
[ 79.284309][ C1] mld_ifc_timer_expire+0x3d3/0x950
[ 79.289492][ C1] ? rcu_read_lock_sched_held+0x9c/0xd0
[ 79.295285][ C1] call_timer_fn+0x1ac/0x780
[ 79.299873][ C1] ? mld_dad_timer_expire+0x230/0x230
[ 79.305264][ C1] ? msleep_interruptible+0x150/0x150
[ 79.310624][ C1] ? run_timer_softirq+0x6b1/0x1790
[ 79.315912][ C1] ? trace_hardirqs_on+0x67/0x240
[ 79.321022][ C1] ? mld_dad_timer_expire+0x230/0x230
[ 79.327431][ C1] ? mld_dad_timer_expire+0x230/0x230
[ 79.332792][ C1] run_timer_softirq+0x6c3/0x1790
[ 79.337809][ C1] ? add_timer+0x930/0x930
[ 79.342250][ C1] ? rcu_lockdep_current_cpu_online+0xe3/0x130
[ 79.348421][ C1] ? rcu_read_lock_sched_held+0x9c/0xd0
[ 79.354050][ C1] ? rcu_read_lock_any_held.part.0+0x50/0x50
[ 79.360040][ C1] ? trace_hardirqs_on+0x67/0x240
[ 79.365073][ C1] __do_softirq+0x262/0x98c
[ 79.369568][ C1] ? sched_clock_cpu+0x1b/0x1b0
[ 79.374424][ C1] irq_exit+0x19b/0x1e0
[ 79.378591][ C1] smp_apic_timer_interrupt+0x1a3/0x610
[ 79.384311][ C1] apic_timer_interrupt+0xf/0x20
[ 79.389373][ C1]
[ 79.392327][ C1] RIP: 0010:native_safe_halt+0xe/0x10
[ 79.397702][ C1] Code: 98 6b ea f9 eb 8a cc cc cc cc cc cc e9 07 00 00 00 0f 00 2d 44 1c 60 00 f4 c3 66 90 e9 07 00 00 00 0f 00 2d 34 1c 60 00 fb f4 cc 55 48 89 e5 41 57 41 56 41 55 41 54 53 e8 4e 5d 9a f9 e8 79
[ 79.417293][ C1] RSP: 0018:ffffc90000d3fd68 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13
[ 79.425776][ C1] RAX: 1ffffffff13266ae RBX: ffff8880a99fa340 RCX: 0000000000000000
[ 79.433740][ C1] RDX: dffffc0000000000 RSI: 0000000000000006 RDI: ffff8880a99fabd4
[ 79.441694][ C1] RBP: ffffc90000d3fd98 R08: ffff8880a99fa340 R09: 0000000000000000
[ 79.449645][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 79.457702][ C1] R13: ffffffff8a799980 R14: 0000000000000000 R15: 0000000000000001
[ 79.465675][ C1] ? default_idle+0x4e/0x360
[ 79.470246][ C1] arch_cpu_idle+0xa/0x10
[ 79.474554][ C1] default_idle_call+0x84/0xb0
[ 79.479306][ C1] do_idle+0x3c8/0x6e0
[ 79.483442][ C1] ? arch_cpu_idle_exit+0x80/0x80
[ 79.488450][ C1] ? _raw_spin_unlock_irqrestore+0x9f/0xe0
[ 79.494234][ C1] ? complete+0x61/0x80
[ 79.498368][ C1] cpu_startup_entry+0x1b/0x20
[ 79.503120][ C1] start_secondary+0x2f4/0x410
[ 79.507865][ C1] ? set_cpu_sibling_map+0x2140/0x2140
[ 79.513438][ C1] secondary_startup_64+0xa4/0xb0
[ 79.519502][ C1]
[ 79.521926][ C1] The buggy address belongs to the page:
[ 79.527585][ C1] page:ffffea00067b4fc0 refcount:0 mapcount:0 mapping:0000000000000000 index:0x0
[ 79.536692][ C1] raw: 057ffe0000000000 ffffea00067b4fc8 ffffea00067b4fc8 0000000000000000
[ 79.545261][ C1] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 79.553835][ C1] page dumped because: kasan: bad access detected
[ 79.560226][ C1]
[ 79.562541][ C1] Memory state around the buggy address:
[ 79.568153][ C1] ffff88819ed3f480: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 79.576194][ C1] ffff88819ed3f500: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 79.584330][ C1] >ffff88819ed3f580: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 79.592600][ C1] ^
[ 79.598908][ C1] ffff88819ed3f600: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 79.606968][ C1] ffff88819ed3f680: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 79.617284][ C1] ==================================================================
[ 79.625358][ C1] Disabling lock debugging due to kernel taint
[ 79.631563][ C1] Kernel panic - not syncing: panic_on_warn set ...
[ 79.638320][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B 5.5.0-rc1-syzkaller #0
[ 79.647627][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 79.657775][ C1] Call Trace:
[ 79.661053][ C1]
[ 79.663904][ C1] dump_stack+0x197/0x210
[ 79.668229][ C1] panic+0x2e3/0x75c
[ 79.672114][ C1] ? add_taint.cold+0x16/0x16
[ 79.676777][ C1] ? trace_hardirqs_on+0x5e/0x240
[ 79.681796][ C1] ? trace_hardirqs_on+0x5e/0x240
[ 79.687419][ C1] ? __alloc_skb+0x37b/0x5e0
[ 79.692183][ C1] end_report+0x47/0x4f
[ 79.696318][ C1] ? __alloc_skb+0x37b/0x5e0
[ 79.701419][ C1] __kasan_report.cold+0xe/0x41
[ 79.706679][ C1] ? __alloc_skb+0x37b/0x5e0
[ 79.711260][ C1] kasan_report+0x12/0x20
[ 79.715854][ C1] check_memory_region+0x134/0x1a0
[ 79.720954][ C1] memset+0x24/0x40
[ 79.724761][ C1] __alloc_skb+0x37b/0x5e0
[ 79.729162][ C1] ? __kmalloc_reserve.isra.0+0xf0/0xf0
[ 79.734773][ C1] ? __read_once_size_nocheck.constprop.0+0x10/0x10
[ 79.741355][ C1] ? get_stack_info+0x37/0x143
[ 79.746180][ C1] alloc_skb_with_frags+0x93/0x590
[ 79.751469][ C1] sock_alloc_send_pskb+0x7ad/0x920
[ 79.756744][ C1] ? sock_wmalloc+0x120/0x120
[ 79.761423][ C1] ? rcu_lockdep_current_cpu_online+0xe3/0x130
[ 79.767673][ C1] sock_alloc_send_skb+0x32/0x40
[ 79.772722][ C1] mld_newpack+0x1d7/0x7f0
[ 79.777487][ C1] ? __kasan_check_read+0x11/0x20
[ 79.782677][ C1] ? ip6_mc_hdr.isra.0.constprop.0+0x5a0/0x5a0
[ 79.790464][ C1] ? __kasan_check_read+0x11/0x20
[ 79.796094][ C1] ? __lock_acquire+0x16f2/0x4a00
[ 79.803119][ C1] ? __kasan_check_read+0x11/0x20
[ 79.810912][ C1] add_grhead.isra.0+0x299/0x370
[ 79.816431][ C1] add_grec+0x7db/0x10b0
[ 79.822188][ C1] ? do_raw_spin_lock+0x12a/0x2e0
[ 79.827396][ C1] ? mld_sendpack+0xed0/0xed0
[ 79.833828][ C1] mld_ifc_timer_expire+0x3d3/0x950
[ 79.841651][ C1] ? rcu_read_lock_sched_held+0x9c/0xd0
[ 79.847885][ C1] call_timer_fn+0x1ac/0x780
[ 79.852592][ C1] ? mld_dad_timer_expire+0x230/0x230
[ 79.858174][ C1] ? msleep_interruptible+0x150/0x150
[ 79.863569][ C1] ? run_timer_softirq+0x6b1/0x1790
[ 79.869006][ C1] ? trace_hardirqs_on+0x67/0x240
[ 79.874275][ C1] ? mld_dad_timer_expire+0x230/0x230
[ 79.879643][ C1] ? mld_dad_timer_expire+0x230/0x230
[ 79.885091][ C1] run_timer_softirq+0x6c3/0x1790
[ 79.893600][ C1] ? add_timer+0x930/0x930
[ 79.898160][ C1] ? rcu_lockdep_current_cpu_online+0xe3/0x130
[ 79.905623][ C1] ? rcu_read_lock_sched_held+0x9c/0xd0
[ 79.912057][ C1] ? rcu_read_lock_any_held.part.0+0x50/0x50
[ 79.919758][ C1] ? trace_hardirqs_on+0x67/0x240
[ 79.925511][ C1] __do_softirq+0x262/0x98c
[ 79.930089][ C1] ? sched_clock_cpu+0x1b/0x1b0
[ 79.934931][ C1] irq_exit+0x19b/0x1e0
[ 79.939074][ C1] smp_apic_timer_interrupt+0x1a3/0x610
[ 79.944850][ C1] apic_timer_interrupt+0xf/0x20
[ 79.949934][ C1]
[ 79.952873][ C1] RIP: 0010:native_safe_halt+0xe/0x10
[ 79.958231][ C1] Code: 98 6b ea f9 eb 8a cc cc cc cc cc cc e9 07 00 00 00 0f 00 2d 44 1c 60 00 f4 c3 66 90 e9 07 00 00 00 0f 00 2d 34 1c 60 00 fb f4 cc 55 48 89 e5 41 57 41 56 41 55 41 54 53 e8 4e 5d 9a f9 e8 79
[ 79.977997][ C1] RSP: 0018:ffffc90000d3fd68 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13
[ 79.986393][ C1] RAX: 1ffffffff13266ae RBX: ffff8880a99fa340 RCX: 0000000000000000
[ 79.994457][ C1] RDX: dffffc0000000000 RSI: 0000000000000006 RDI: ffff8880a99fabd4
[ 80.002411][ C1] RBP: ffffc90000d3fd98 R08: ffff8880a99fa340 R09: 0000000000000000
[ 80.010659][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 80.018700][ C1] R13: ffffffff8a799980 R14: 0000000000000000 R15: 0000000000000001
[ 80.026675][ C1] ? default_idle+0x4e/0x360
[ 80.031248][ C1] arch_cpu_idle+0xa/0x10
[ 80.035554][ C1] default_idle_call+0x84/0xb0
[ 80.040389][ C1] do_idle+0x3c8/0x6e0
[ 80.044438][ C1] ? arch_cpu_idle_exit+0x80/0x80
[ 80.049444][ C1] ? _raw_spin_unlock_irqrestore+0x9f/0xe0
[ 80.055227][ C1] ? complete+0x61/0x80
[ 80.059385][ C1] cpu_startup_entry+0x1b/0x20
[ 80.064159][ C1] start_secondary+0x2f4/0x410
[ 80.068907][ C1] ? set_cpu_sibling_map+0x2140/0x2140
[ 80.074350][ C1] secondary_startup_64+0xa4/0xb0
[ 80.079401][ C1] ------------[ cut here ]------------
[ 80.084928][ C1] WARNING: CPU: 1 PID: 0 at kernel/locking/mutex.c:1419 mutex_trylock+0x279/0x2f0
[ 80.094477][ C1] Kernel panic - not syncing: panic_on_warn set ...
[ 80.101173][ C1] ------------[ cut here ]------------
[ 80.106626][ C1] WARNING: CPU: 1 PID: 0 at kernel/locking/mutex.c:1419 mutex_trylock+0x279/0x2f0
[ 80.115969][ C1] Modules linked in:
[ 80.119850][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B 5.5.0-rc1-syzkaller #0
[ 80.129374][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 80.139441][ C1] RIP: 0010:mutex_trylock+0x279/0x2f0
[ 80.144793][ C1] Code: c9 41 b8 01 00 00 00 31 c9 ba 01 00 00 00 31 f6 e8 3c 74 93 f9 58 48 8d 65 d8 b8 01 00 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 <0f> 0b e9 0c fe ff ff 48 c7 c7 20 c5 63 8b 48 89 4d d0 e8 b0 2d eb
[ 80.164776][ C1] RSP: 0018:ffffc90000da7fe8 EFLAGS: 00010006
[ 80.170918][ C1] RAX: 0000000000000505 RBX: 1ffff920001b5005 RCX: 0000000000000004
[ 80.178869][ C1] RDX: 0000000000000100 RSI: ffffffff816c1c25 RDI: ffffffff899c3c60
[ 80.186894][ C1] RBP: ffffc90000da8018 R08: 0000000000000002 R09: fffffbfff1333ae5
[ 80.194965][ C1] R10: fffffbfff1333ae4 R11: ffffffff8999d723 R12: ffffffff8b63c520
[ 80.203033][ C1] R13: 0000000000000000 R14: ffffffff87c79800 R15: ffffffff899c3c60
[ 80.211088][ C1] FS: 0000000000000000(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000
[ 80.220188][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 80.226923][ C1] CR2: 00000000004c6848 CR3: 000000000986d000 CR4: 00000000001406e0
[ 80.235048][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 80.243007][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 80.251047][ C1] Call Trace:
[ 80.254330][ C1]
[ 80.257572][ C1] ? mutex_trylock+0x1e0/0x2f0
[ 80.262359][ C1] __crash_kexec+0x91/0x200
[ 80.266847][ C1] ? kexec_crash_loaded+0x20/0x20
[ 80.271866][ C1] ? trace_hardirqs_off+0x62/0x240
[ 80.276959][ C1] ? _raw_spin_unlock_irqrestore+0x9f/0xe0
[ 80.282775][ C1] ? __printk_safe_flush+0x31e/0x3a0
[ 80.288036][ C1] ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 80.293732][ C1] ? find_next_bit+0x107/0x130
[ 80.298710][ C1] ? cpumask_next+0x41/0x50
[ 80.303305][ C1] ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 80.309010][ C1] ? printk_safe_flush+0xf2/0x140
[ 80.314033][ C1] ? mutex_trylock+0x1e0/0x2f0
[ 80.318779][ C1] panic+0x308/0x75c
[ 80.322654][ C1] ? add_taint.cold+0x16/0x16
[ 80.327311][ C1] ? printk+0xba/0xed
[ 80.331373][ C1] ? kmsg_dump_rewind_nolock+0xe4/0xe4
[ 80.337090][ C1] ? __warn.cold+0x14/0x3e
[ 80.341511][ C1] ? __warn+0xd9/0x1cf
[ 80.345702][ C1] ? mutex_trylock+0x279/0x2f0
[ 80.350470][ C1] __warn.cold+0x2f/0x3e
[ 80.354765][ C1] ? report_bug.cold+0x63/0xb2
[ 80.359775][ C1] ? mutex_trylock+0x279/0x2f0
[ 80.364644][ C1] report_bug+0x289/0x300
[ 80.368968][ C1] do_error_trap+0x11b/0x200
[ 80.373723][ C1] do_invalid_op+0x37/0x50
[ 80.378249][ C1] ? mutex_trylock+0x279/0x2f0
[ 80.383153][ C1] invalid_op+0x23/0x30
[ 80.387338][ C1] RIP: 0010:mutex_trylock+0x279/0x2f0
[ 80.392695][ C1] Code: c9 41 b8 01 00 00 00 31 c9 ba 01 00 00 00 31 f6 e8 3c 74 93 f9 58 48 8d 65 d8 b8 01 00 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 <0f> 0b e9 0c fe ff ff 48 c7 c7 20 c5 63 8b 48 89 4d d0 e8 b0 2d eb
[ 80.412308][ C1] RSP: 0018:ffffc90000da8428 EFLAGS: 00010006
[ 80.418447][ C1] RAX: 0000000000000504 RBX: 1ffff920001b508d RCX: 0000000000000004
[ 80.426396][ C1] RDX: 0000000000000100 RSI: ffffffff816c1c25 RDI: ffffffff899c3c60
[ 80.434349][ C1] RBP: ffffc90000da8458 R08: 0000000000000001 R09: fffffbfff1333ae5
[ 80.442486][ C1] R10: fffffbfff1333ae4 R11: ffffffff8999d723 R12: ffffffff8b63c520
[ 80.450520][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: ffffffff899c3c60
[ 80.458483][ C1] ? __crash_kexec+0x85/0x200
[ 80.463145][ C1] ? __kasan_check_write+0x14/0x20
[ 80.468243][ C1] __crash_kexec+0x91/0x200
[ 80.472739][ C1] ? kexec_crash_loaded+0x20/0x20
[ 80.477820][ C1] ? trace_hardirqs_off+0x62/0x240
[ 80.483135][ C1] ? _raw_spin_unlock_irqrestore+0x9f/0xe0
[ 80.488944][ C1] ? __printk_safe_flush+0x31e/0x3a0
[ 80.495046][ C1] ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 80.500852][ C1] ? find_next_bit+0x107/0x130
[ 80.505611][ C1] ? cpumask_next+0x41/0x50
[ 80.510090][ C1] ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 80.515877][ C1] ? printk_safe_flush+0xf2/0x140
[ 80.520878][ C1] panic+0x308/0x75c
[ 80.524927][ C1] ? add_taint.cold+0x16/0x16
[ 80.529581][ C1] ? trace_hardirqs_on+0x5e/0x240
[ 80.534581][ C1] ? trace_hardirqs_on+0x5e/0x240
[ 80.539687][ C1] ? __alloc_skb+0x37b/0x5e0
[ 80.544266][ C1] end_report+0x47/0x4f
[ 80.548410][ C1] ? __alloc_skb+0x37b/0x5e0
[ 80.552980][ C1] __kasan_report.cold+0xe/0x41
[ 80.557820][ C1] ? __alloc_skb+0x37b/0x5e0
[ 80.562385][ C1] kasan_report+0x12/0x20
[ 80.566708][ C1] check_memory_region+0x134/0x1a0
[ 80.571796][ C1] memset+0x24/0x40
[ 80.575582][ C1] __alloc_skb+0x37b/0x5e0
[ 80.579978][ C1] ? __kmalloc_reserve.isra.0+0xf0/0xf0
[ 80.585510][ C1] ? __read_once_size_nocheck.constprop.0+0x10/0x10
[ 80.592466][ C1] ? get_stack_info+0x37/0x143
[ 80.597264][ C1] alloc_skb_with_frags+0x93/0x590
[ 80.602378][ C1] sock_alloc_send_pskb+0x7ad/0x920
[ 80.607631][ C1] ? sock_wmalloc+0x120/0x120
[ 80.612413][ C1] ? rcu_lockdep_current_cpu_online+0xe3/0x130
[ 80.618558][ C1] sock_alloc_send_skb+0x32/0x40
[ 80.623575][ C1] mld_newpack+0x1d7/0x7f0
[ 80.627969][ C1] ? __kasan_check_read+0x11/0x20
[ 80.633249][ C1] ? ip6_mc_hdr.isra.0.constprop.0+0x5a0/0x5a0
[ 80.639393][ C1] ? __kasan_check_read+0x11/0x20
[ 80.644401][ C1] ? __lock_acquire+0x16f2/0x4a00
[ 80.649433][ C1] ? __kasan_check_read+0x11/0x20
[ 80.654467][ C1] add_grhead.isra.0+0x299/0x370
[ 80.659430][ C1] add_grec+0x7db/0x10b0
[ 80.663679][ C1] ? do_raw_spin_lock+0x12a/0x2e0
[ 80.668686][ C1] ? mld_sendpack+0xed0/0xed0
[ 80.673340][ C1] mld_ifc_timer_expire+0x3d3/0x950
[ 80.678881][ C1] ? rcu_read_lock_sched_held+0x9c/0xd0
[ 80.684620][ C1] call_timer_fn+0x1ac/0x780
[ 80.689204][ C1] ? mld_dad_timer_expire+0x230/0x230
[ 80.694575][ C1] ? msleep_interruptible+0x150/0x150
[ 80.700264][ C1] ? run_timer_softirq+0x6b1/0x1790
[ 80.705786][ C1] ? trace_hardirqs_on+0x67/0x240
[ 80.710905][ C1] ? mld_dad_timer_expire+0x230/0x230
[ 80.716700][ C1] ? mld_dad_timer_expire+0x230/0x230
[ 80.722148][ C1] run_timer_softirq+0x6c3/0x1790
[ 80.727159][ C1] ? add_timer+0x930/0x930
[ 80.731554][ C1] ? rcu_lockdep_current_cpu_online+0xe3/0x130
[ 80.737787][ C1] ? rcu_read_lock_sched_held+0x9c/0xd0
[ 80.743420][ C1] ? rcu_read_lock_any_held.part.0+0x50/0x50
[ 80.749408][ C1] ? trace_hardirqs_on+0x67/0x240
[ 80.754457][ C1] __do_softirq+0x262/0x98c
[ 80.758946][ C1] ? sched_clock_cpu+0x1b/0x1b0
[ 80.764558][ C1] irq_exit+0x19b/0x1e0
[ 80.768694][ C1] smp_apic_timer_interrupt+0x1a3/0x610
[ 80.774216][ C1] apic_timer_interrupt+0xf/0x20
[ 80.779135][ C1]
[ 80.782067][ C1] RIP: 0010:native_safe_halt+0xe/0x10
[ 80.787419][ C1] Code: 98 6b ea f9 eb 8a cc cc cc cc cc cc e9 07 00 00 00 0f 00 2d 44 1c 60 00 f4 c3 66 90 e9 07 00 00 00 0f 00 2d 34 1c 60 00 fb f4 cc 55 48 89 e5 41 57 41 56 41 55 41 54 53 e8 4e 5d 9a f9 e8 79
[ 80.807185][ C1] RSP: 0018:ffffc90000d3fd68 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13
[ 80.815686][ C1] RAX: 1ffffffff13266ae RBX: ffff8880a99fa340 RCX: 0000000000000000
[ 80.823646][ C1] RDX: dffffc0000000000 RSI: 0000000000000006 RDI: ffff8880a99fabd4
[ 80.831609][ C1] RBP: ffffc90000d3fd98 R08: ffff8880a99fa340 R09: 0000000000000000
[ 80.839640][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 80.847876][ C1] R13: ffffffff8a799980 R14: 0000000000000000 R15: 0000000000000001
[ 80.855974][ C1] ? default_idle+0x4e/0x360
[ 80.861024][ C1] arch_cpu_idle+0xa/0x10
[ 80.865335][ C1] default_idle_call+0x84/0xb0
[ 80.870193][ C1] do_idle+0x3c8/0x6e0
[ 80.874244][ C1] ? arch_cpu_idle_exit+0x80/0x80
[ 80.879356][ C1] ? _raw_spin_unlock_irqrestore+0x9f/0xe0
[ 80.885150][ C1] ? complete+0x61/0x80
[ 80.889302][ C1] cpu_startup_entry+0x1b/0x20
[ 80.894045][ C1] start_secondary+0x2f4/0x410
[ 80.898787][ C1] ? set_cpu_sibling_map+0x2140/0x2140
[ 80.904230][ C1] secondary_startup_64+0xa4/0xb0
[ 80.909331][ C1] irq event stamp: 185759
[ 80.913827][ C1] hardirqs last enabled at (185758): [] kmem_cache_alloc_node_trace+0x239/0x750
[ 80.924660][ C1] hardirqs last disabled at (185759): [] _raw_spin_lock_irqsave+0x6f/0xcd
[ 80.934703][ C1] softirqs last enabled at (185746): [] _local_bh_enable+0x1c/0x30
[ 80.944327][ C1] softirqs last disabled at (185747): [] irq_exit+0x19b/0x1e0
[ 80.953328][ C1] ---[ end trace 1caab04fc4a782ee ]---
[ 80.958827][ C1] ------------[ cut here ]------------
[ 80.964279][ C1] WARNING: CPU: 1 PID: 0 at kernel/locking/mutex.c:737 mutex_unlock+0x1d/0x30
[ 80.973205][ C1] Modules linked in:
[ 80.977093][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B W 5.5.0-rc1-syzkaller #0
[ 80.986669][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 80.996796][ C1] RIP: 0010:mutex_unlock+0x1d/0x30
[ 81.001956][ C1] Code: 4c 89 ff e8 05 39 eb f9 e9 8c fb ff ff 55 65 8b 05 00 91 3a 78 a9 00 ff 1f 00 48 89 e5 75 0b 48 8b 75 08 e8 45 f9 ff ff 5d c3 <0f> 0b 48 8b 75 08 e8 38 f9 ff ff 5d c3 66 0f 1f 44 00 00 48 b8 00
[ 81.021729][ C1] RSP: 0018:ffffc90000da8018 EFLAGS: 00010006
[ 81.027777][ C1] RAX: 0000000000000505 RBX: 1ffff920001b5005 RCX: ffffffff816c1c3d
[ 81.035927][ C1] RDX: 0000000000000100 RSI: ffffffff816c1c9f RDI: ffffffff899c3c60
[ 81.043888][ C1] RBP: ffffc90000da8018 R08: ffff8880a99fa340 R09: 0000000000000000
[ 81.051940][ C1] R10: fffffbfff14f3330 R11: ffff8880a99fa340 R12: 0000000000000001
[ 81.059912][ C1] R13: 0000000000000000 R14: ffffffff87c79800 R15: 000000000000058b
[ 81.067965][ C1] FS: 0000000000000000(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000
[ 81.077196][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 81.083854][ C1] CR2: 00000000004c6848 CR3: 000000000986d000 CR4: 00000000001406e0
[ 81.091906][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 81.100049][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 81.108014][ C1] Call Trace:
[ 81.111290][ C1]
[ 81.114499][ C1] __crash_kexec+0x10b/0x200
[ 81.119269][ C1] ? kexec_crash_loaded+0x20/0x20
[ 81.124451][ C1] ? trace_hardirqs_off+0x62/0x240
[ 81.129546][ C1] ? _raw_spin_unlock_irqrestore+0x9f/0xe0
[ 81.135951][ C1] ? __printk_safe_flush+0x31e/0x3a0
[ 81.141321][ C1] ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 81.147465][ C1] ? find_next_bit+0x107/0x130
[ 81.152226][ C1] ? cpumask_next+0x41/0x50
[ 81.156724][ C1] ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 81.162456][ C1] ? printk_safe_flush+0xf2/0x140
[ 81.167696][ C1] ? mutex_trylock+0x1e0/0x2f0
[ 81.172558][ C1] panic+0x308/0x75c
[ 81.176436][ C1] ? add_taint.cold+0x16/0x16
[ 81.181090][ C1] ? printk+0xba/0xed
[ 81.185073][ C1] ? kmsg_dump_rewind_nolock+0xe4/0xe4
[ 81.190859][ C1] ? __warn.cold+0x14/0x3e
[ 81.195346][ C1] ? __warn+0xd9/0x1cf
[ 81.199406][ C1] ? mutex_trylock+0x279/0x2f0
[ 81.205498][ C1] __warn.cold+0x2f/0x3e
[ 81.210089][ C1] ? report_bug.cold+0x63/0xb2
[ 81.215000][ C1] ? mutex_trylock+0x279/0x2f0
[ 81.219923][ C1] report_bug+0x289/0x300
[ 81.224369][ C1] do_error_trap+0x11b/0x200
[ 81.229005][ C1] do_invalid_op+0x37/0x50
[ 81.233721][ C1] ? mutex_trylock+0x279/0x2f0
[ 81.238475][ C1] invalid_op+0x23/0x30
[ 81.242630][ C1] RIP: 0010:mutex_trylock+0x279/0x2f0
[ 81.247992][ C1] Code: c9 41 b8 01 00 00 00 31 c9 ba 01 00 00 00 31 f6 e8 3c 74 93 f9 58 48 8d 65 d8 b8 01 00 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 <0f> 0b e9 0c fe ff ff 48 c7 c7 20 c5 63 8b 48 89 4d d0 e8 b0 2d eb
[ 81.267574][ C1] RSP: 0018:ffffc90000da8428 EFLAGS: 00010006
[ 81.273741][ C1] RAX: 0000000000000504 RBX: 1ffff920001b508d RCX: 0000000000000004
[ 81.283882][ C1] RDX: 0000000000000100 RSI: ffffffff816c1c25 RDI: ffffffff899c3c60
[ 81.292010][ C1] RBP: ffffc90000da8458 R08: 0000000000000001 R09: fffffbfff1333ae5
[ 81.300051][ C1] R10: fffffbfff1333ae4 R11: ffffffff8999d723 R12: ffffffff8b63c520
[ 81.308277][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: ffffffff899c3c60
[ 81.316246][ C1] ? __crash_kexec+0x85/0x200
[ 81.320899][ C1] ? __kasan_check_write+0x14/0x20
[ 81.325997][ C1] __crash_kexec+0x91/0x200
[ 81.330564][ C1] ? kexec_crash_loaded+0x20/0x20
[ 81.335569][ C1] ? trace_hardirqs_off+0x62/0x240
[ 81.340680][ C1] ? _raw_spin_unlock_irqrestore+0x9f/0xe0
[ 81.346468][ C1] ? __printk_safe_flush+0x31e/0x3a0
[ 81.351731][ C1] ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 81.358384][ C1] ? find_next_bit+0x107/0x130
[ 81.363127][ C1] ? cpumask_next+0x41/0x50
[ 81.368482][ C1] ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 81.374189][ C1] ? printk_safe_flush+0xf2/0x140
[ 81.379205][ C1] panic+0x308/0x75c
[ 81.383079][ C1] ? add_taint.cold+0x16/0x16
[ 81.387734][ C1] ? trace_hardirqs_on+0x5e/0x240
[ 81.393008][ C1] ? trace_hardirqs_on+0x5e/0x240
[ 81.398284][ C1] ? __alloc_skb+0x37b/0x5e0
[ 81.402902][ C1] end_report+0x47/0x4f
[ 81.407565][ C1] ? __alloc_skb+0x37b/0x5e0
[ 81.412226][ C1] __kasan_report.cold+0xe/0x41
[ 81.417671][ C1] ? __alloc_skb+0x37b/0x5e0
[ 81.422248][ C1] kasan_report+0x12/0x20
[ 81.426554][ C1] check_memory_region+0x134/0x1a0
[ 81.431757][ C1] memset+0x24/0x40
[ 81.435551][ C1] __alloc_skb+0x37b/0x5e0
[ 81.439954][ C1] ? __kmalloc_reserve.isra.0+0xf0/0xf0
[ 81.445496][ C1] ? __read_once_size_nocheck.constprop.0+0x10/0x10
[ 81.452208][ C1] ? get_stack_info+0x37/0x143
[ 81.456968][ C1] alloc_skb_with_frags+0x93/0x590
[ 81.463122][ C1] sock_alloc_send_pskb+0x7ad/0x920
[ 81.468319][ C1] ? sock_wmalloc+0x120/0x120
[ 81.473087][ C1] ? rcu_lockdep_current_cpu_online+0xe3/0x130
[ 81.479323][ C1] sock_alloc_send_skb+0x32/0x40
[ 81.484250][ C1] mld_newpack+0x1d7/0x7f0
[ 81.488844][ C1] ? __kasan_check_read+0x11/0x20
[ 81.494073][ C1] ? ip6_mc_hdr.isra.0.constprop.0+0x5a0/0x5a0
[ 81.500379][ C1] ? __kasan_check_read+0x11/0x20
[ 81.505389][ C1] ? __lock_acquire+0x16f2/0x4a00
[ 81.510495][ C1] ? __kasan_check_read+0x11/0x20
[ 81.515641][ C1] add_grhead.isra.0+0x299/0x370
[ 81.520732][ C1] add_grec+0x7db/0x10b0
[ 81.525064][ C1] ? do_raw_spin_lock+0x12a/0x2e0
[ 81.530187][ C1] ? mld_sendpack+0xed0/0xed0
[ 81.534989][ C1] mld_ifc_timer_expire+0x3d3/0x950
[ 81.540499][ C1] ? rcu_read_lock_sched_held+0x9c/0xd0
[ 81.546297][ C1] call_timer_fn+0x1ac/0x780
[ 81.550895][ C1] ? mld_dad_timer_expire+0x230/0x230
[ 81.556257][ C1] ? msleep_interruptible+0x150/0x150
[ 81.561633][ C1] ? run_timer_softirq+0x6b1/0x1790
[ 81.566812][ C1] ? trace_hardirqs_on+0x67/0x240
[ 81.571931][ C1] ? mld_dad_timer_expire+0x230/0x230
[ 81.577300][ C1] ? mld_dad_timer_expire+0x230/0x230
[ 81.582991][ C1] run_timer_softirq+0x6c3/0x1790
[ 81.588253][ C1] ? add_timer+0x930/0x930
[ 81.593058][ C1] ? rcu_lockdep_current_cpu_online+0xe3/0x130
[ 81.599223][ C1] ? rcu_read_lock_sched_held+0x9c/0xd0
[ 81.605393][ C1] ? rcu_read_lock_any_held.part.0+0x50/0x50
[ 81.611706][ C1] ? trace_hardirqs_on+0x67/0x240
[ 81.617907][ C1] __do_softirq+0x262/0x98c
[ 81.622601][ C1] ? sched_clock_cpu+0x1b/0x1b0
[ 81.627722][ C1] irq_exit+0x19b/0x1e0
[ 81.632075][ C1] smp_apic_timer_interrupt+0x1a3/0x610
[ 81.637739][ C1] apic_timer_interrupt+0xf/0x20
[ 81.643129][ C1]
[ 81.646093][ C1] RIP: 0010:native_safe_halt+0xe/0x10
[ 81.651704][ C1] Code: 98 6b ea f9 eb 8a cc cc cc cc cc cc e9 07 00 00 00 0f 00 2d 44 1c 60 00 f4 c3 66 90 e9 07 00 00 00 0f 00 2d 34 1c 60 00 fb f4 cc 55 48 89 e5 41 57 41 56 41 55 41 54 53 e8 4e 5d 9a f9 e8 79
[ 81.672722][ C1] RSP: 0018:ffffc90000d3fd68 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13
[ 81.681138][ C1] RAX: 1ffffffff13266ae RBX: ffff8880a99fa340 RCX: 0000000000000000
[ 81.689314][ C1] RDX: dffffc0000000000 RSI: 0000000000000006 RDI: ffff8880a99fabd4
[ 81.698363][ C1] RBP: ffffc90000d3fd98 R08: ffff8880a99fa340 R09: 0000000000000000
[ 81.706955][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[ 81.715257][ C1] R13: ffffffff8a799980 R14: 0000000000000000 R15: 0000000000000001
[ 81.723730][ C1] ? default_idle+0x4e/0x360
[ 81.728445][ C1] arch_cpu_idle+0xa/0x10
[ 81.732795][ C1] default_idle_call+0x84/0xb0
[ 81.737822][ C1] do_idle+0x3c8/0x6e0
[ 81.742087][ C1] ? arch_cpu_idle_exit+0x80/0x80
[ 81.748002][ C1] ? _raw_spin_unlock_irqrestore+0x9f/0xe0
[ 81.753939][ C1] ? complete+0x61/0x80
[ 81.758283][ C1] cpu_startup_entry+0x1b/0x20
[ 81.763159][ C1] start_secondary+0x2f4/0x410
[ 81.767933][ C1] ? set_cpu_sibling_map+0x2140/0x2140
[ 81.773677][ C1] secondary_startup_64+0xa4/0xb0
[ 81.778709][ C1] irq event stamp: 185759
[ 81.783225][ C1] hardirqs last enabled at (185758): [] kmem_cache_alloc_node_trace+0x239/0x750
[ 81.794418][ C1] hardirqs last disabled at (185759): [] _raw_spin_lock_irqsave+0x6f/0xcd
[ 81.804868][ C1] softirqs last enabled at (185746): [] _local_bh_enable+0x1c/0x30
[ 81.815721][ C1] softirqs last disabled at (185747): [] irq_exit+0x19b/0x1e0
[ 81.824914][ C1] ---[ end trace 1caab04fc4a782ef ]---
[ 81.832543][ C1] Kernel Offset: disabled
[ 81.837177][ C1] Rebooting in 86400 seconds..