2017/08/16 01:46:43 parsed 1 programs 2017/08/16 01:46:43 executed programs: 0 syzkaller login: [ 40.856134] ================================================================== [ 40.856796] BUG: KASAN: wild-memory-access in skb_copy_ubufs+0xc51/0x1940 [ 40.857290] Read of size 4096 at addr 2efd803c991bc8dc by task syz-executor1/4406 [ 40.857833] [ 40.857951] CPU: 0 PID: 4406 Comm: syz-executor1 Not tainted 4.13.0-rc5-next-20170815+ #3 [ 40.858515] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Bochs 01/01/2011 [ 40.859077] Call Trace: [ 40.859260] dump_stack+0x194/0x257 [ 40.859499] ? arch_local_irq_restore+0x53/0x53 [ 40.859816] ? retint_kernel+0x10/0x10 [ 40.860073] ? skb_copy_ubufs+0xc51/0x1940 [ 40.860361] kasan_report+0x12e/0x340 [ 40.860658] check_memory_region+0x137/0x190 [ 40.861091] memcpy+0x23/0x50 [ 40.861358] skb_copy_ubufs+0xc51/0x1940 [ 40.861681] ? skb_release_data+0x790/0x790 [ 40.861967] ? lock_acquire+0x1d5/0x580 [ 40.862233] ? __is_insn_slot_addr+0x1fc/0x330 [ 40.862560] ? lock_downgrade+0x990/0x990 [ 40.862838] ? lock_release+0xa40/0xa40 [ 40.863094] ? __read_once_size_nocheck.constprop.8+0x10/0x10 [ 40.863477] ? entry_SYSCALL_64_fastpath+0x1f/0xbe [ 40.863791] ? bpf_prog_kallsyms_find+0xbd/0x440 [ 40.864094] ? lock_acquire+0x1d5/0x580 [ 40.864370] ? lock_acquire+0x1d5/0x580 [ 40.864479] syz-executor6 invoked oom-killer: gfp_mask=0x17080c0(GFP_KERNEL_ACCOUNT|__GFP_ZERO|__GFP_NOTRACK), nodemask=(null), order=0, oom_score_adj=0 [ 40.864483] syz-executor6 cpuset=/ mems_allowed=0-1 [ 40.866328] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 40.866798] ? lock_release+0xa40/0xa40 [ 40.867119] ? __free_insn_slot+0x5c0/0x5c0 [ 40.867455] ? unwind_dump+0x4c0/0x4c0 [ 40.867726] __netif_receive_skb_core+0x2084/0x33d0 [ 40.868055] ? unwind_get_return_address+0x61/0xa0 [ 40.868386] ? nf_ingress+0x9f0/0x9f0 [ 40.868654] ? save_stack+0xa3/0xd0 [ 40.868892] ? save_stack_trace+0x16/0x20 [ 40.869161] ? save_stack+0x43/0xd0 [ 40.869415] ? kasan_kmalloc+0xad/0xe0 [ 40.869677] ? kasan_slab_alloc+0x12/0x20 [ 40.869946] ? kmem_cache_alloc+0x12e/0x760 [ 40.870228] ? __build_skb+0x9d/0x450 [ 40.870488] ? build_skb+0x6f/0x260 [ 40.870737] ? tun_get_user+0x1db7/0x2150 [ 40.871007] ? tun_chr_write_iter+0xd8/0x190 [ 40.871290] ? __vfs_write+0x684/0x970 [ 40.871551] ? vfs_write+0x189/0x510 [ 40.871802] ? __skb_flow_get_ports+0x151/0x400 [ 40.872104] ? flow_get_u32_dst+0x130/0x130 [ 40.872392] ? __skb_flow_get_ports+0x151/0x400 [ 40.872707] ? __skb_flow_dissect+0xfa1/0x3ae0 [ 40.873005] ? __sched_text_start+0x8/0x8 [ 40.873291] ? __skb_flow_get_ports+0x400/0x400 [ 40.873620] ? lock_acquire+0x1d5/0x580 [ 40.873893] ? netif_receive_skb_internal+0x1d7/0x5e0 [ 40.874335] ? lock_downgrade+0x990/0x990 [ 40.874704] ? pvclock_read_flags+0x160/0x160 [ 40.875176] ? __build_skb+0x325/0x450 [ 40.875507] ? lock_acquire+0x1d5/0x580 [ 40.875841] ? lock_acquire+0x1d5/0x580 [ 40.876179] ? netif_receive_skb_internal+0x93/0x5e0 [ 40.876612] ? ktime_get_with_offset+0x2c1/0x420 [ 40.877014] ? lock_release+0xa40/0xa40 [ 40.877322] ? do_gettimeofday+0x190/0x190 [ 40.877627] ? __build_skb+0x450/0x450 [ 40.877897] __netif_receive_skb+0x2c/0x1b0 [ 40.878196] ? __netif_receive_skb+0x2c/0x1b0 [ 40.878517] netif_receive_skb_internal+0x10b/0x5e0 [ 40.878860] ? dev_cpu_dead+0xb00/0xb00 [ 40.879134] ? tun_device_event+0xca0/0xca0 [ 40.879440] ? futex_wake+0x680/0x680 [ 40.879702] ? __unqueue_futex+0x1c0/0x290 [ 40.879996] ? drop_futex_key_refs.isra.13+0x63/0xb0 [ 40.880350] netif_receive_skb+0xae/0x390 [ 40.880640] ? netif_receive_skb_internal+0x5e0/0x5e0 [ 40.880976] ? mark_wake_futex+0xc0/0x1c0 [ 40.881246] ? futex_wait_setup+0x3d0/0x3d0 [ 40.881533] ? tun_rx_batched.isra.43+0x5bd/0x860 [ 40.881851] tun_rx_batched.isra.43+0x5e7/0x860 [ 40.882156] ? skb_get_hash_perturb+0x9d0/0x9d0 [ 40.882472] ? tun_sock_write_space+0x370/0x370 [ 40.882778] ? tun_free_netdev+0x1b0/0x1b0 [ 40.883054] tun_get_user+0x11dd/0x2150 [ 40.883315] ? tun_flow_update+0xf70/0xf70 [ 40.883602] ? lock_acquire+0x1d5/0x580 [ 40.883864] ? lock_acquire+0x1d5/0x580 [ 40.884122] ? __tun_get+0x1ab/0x2e0 [ 40.884366] ? lock_downgrade+0x990/0x990 [ 40.884646] ? lock_release+0xa40/0xa40 [ 40.884894] ? __fget+0x35c/0x570 [ 40.885121] ? __tun_get+0x1d4/0x2e0 [ 40.885363] ? tun_chr_close+0x60/0x60 [ 40.885625] ? release_sock+0x1d4/0x2a0 [ 40.885884] ? trace_hardirqs_on+0xd/0x10 [ 40.886153] tun_chr_write_iter+0xd8/0x190 [ 40.886427] __vfs_write+0x684/0x970 [ 40.886681] ? default_llseek+0x290/0x290 [ 40.886958] ? _cond_resched+0x14/0x30 [ 40.887202] ? avc_policy_seqno+0x9/0x20 [ 40.887896] ? selinux_file_permission+0x82/0x460 [ 40.888177] ? rw_verify_area+0xe5/0x2b0 [ 40.888444] ? __fdget_raw+0x20/0x20 [ 40.888680] vfs_write+0x189/0x510 [ 40.888939] SyS_write+0xef/0x220 [ 40.889157] ? SyS_socket+0x137/0x200 [ 40.889403] ? SyS_read+0x220/0x220 [ 40.889639] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 40.889958] entry_SYSCALL_64_fastpath+0x1f/0xbe [ 40.890260] RIP: 0033:0x40bab1 [ 40.890461] RSP: 002b:00007fd192bcbc00 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 40.890966] RAX: ffffffffffffffda RBX: 000000000000002a RCX: 000000000040bab1 [ 40.891426] RDX: 000000000000002a RSI: 0000000020f01000 RDI: 0000000000000003 [ 40.891897] RBP: 00007ffed3608c10 R08: 0000000000000000 R09: 0000000000000000 [ 40.892354] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 40.892815] R13: 0000000000000000 R14: 00007fd192bcc9c0 R15: 00007fd192bcc700 [ 40.893409] ================================================================== [ 40.893414] CPU: 3 PID: 4454 Comm: syz-executor6 Not tainted 4.13.0-rc5-next-20170815+ #3 [ 40.893417] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Bochs 01/01/2011 [ 40.893418] Call Trace: [ 40.893423] dump_stack+0x194/0x257 [ 40.893428] ? arch_local_irq_restore+0x53/0x53 [ 40.893435] dump_header+0x234/0xa0e [ 40.893438] ? check_same_owner+0x320/0x320 [ 40.893442] ? task_will_free_mem+0x252/0xaa0 [ 40.893445] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 40.893449] ? pagefault_out_of_memory+0x152/0x152 [ 40.893454] ? lock_acquire+0x1d5/0x580 [ 40.893457] ? ___ratelimit+0x30d/0x630 [ 40.893460] ? lock_downgrade+0x990/0x990 [ 40.893463] ? avc_has_perm_noaudit+0x37e/0x520 [ 40.893467] ? do_raw_spin_trylock+0x190/0x190 [ 40.893473] ? lock_downgrade+0x990/0x990 [ 40.893477] ? trace_hardirqs_on+0xd/0x10 [ 40.893481] ? ___ratelimit+0x95/0x630 [ 40.893484] ? idr_get_free+0xff0/0xff0 [ 40.893488] ? cred_has_capability+0x1a0/0x3d0 [ 40.893493] oom_kill_process+0x86d/0x13d0 [ 40.893496] ? lock_downgrade+0x990/0x990 [ 40.893498] ? lock_release+0xa40/0xa40 [ 40.893502] ? lock_release+0xa40/0xa40 [ 40.893507] ? oom_evaluate_task+0x480/0x480 [ 40.893511] ? security_capable_noaudit+0x8b/0xc0 [ 40.893516] ? has_ns_capability_noaudit+0x18c/0x2a0 [ 40.893519] ? has_capability+0x30/0x30 [ 40.893526] ? has_capability_noaudit+0x24/0x30 [ 40.893529] ? oom_badness+0xdf/0xb80 [ 40.893532] ? lock_downgrade+0x990/0x990 [ 40.893536] ? find_lock_task_mm+0x460/0x460 [ 40.893538] ? lock_release+0xa40/0xa40 [ 40.893548] ? out_of_memory+0xaaa/0x11d0 [ 40.893551] ? lock_downgrade+0x990/0x990 [ 40.893555] ? lock_release+0xa40/0xa40 [ 40.893559] ? __alloc_pages_slowpath+0x10f6/0x2ee0 [ 40.893563] ? srcu_init_notifier_head+0x80/0x80 [ 40.893567] ? oom_evaluate_task+0x284/0x480 [ 40.893572] out_of_memory+0x7dd/0x11d0 [ 40.893577] ? oom_killer_disable+0x310/0x310 [ 40.893580] ? mutex_trylock+0x23a/0x2d0 [ 40.893584] ? __ww_mutex_wakeup_for_backoff+0x240/0x240 [ 40.893587] ? check_same_owner+0x320/0x320 [ 40.893590] ? _find_next_bit+0xee/0x120 [ 40.893596] __alloc_pages_slowpath+0x1eae/0x2ee0 [ 40.893615] ? warn_alloc+0x2f0/0x2f0 [ 40.893619] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 40.893621] ? plist_check_list+0xa0/0xa0 [ 40.893624] ? native_apic_msr_write+0x5c/0x80 [ 40.893633] ? plist_add+0x760/0x760 [ 40.893638] ? hrtimer_active+0x2fb/0x410 [ 40.893643] ? rb_first_postorder+0xa0/0xa0 [ 40.893647] ? set_next_entity+0x2ca/0xd60 [ 40.893650] ? __might_sleep+0x95/0x190 [ 40.893654] ? update_load_avg+0x2a90/0x2a90 [ 40.893661] ? lock_acquire+0x1d5/0x580 [ 40.893664] ? lock_acquire+0x1d5/0x580 [ 40.893667] ? fs_reclaim_acquire+0x20/0x20 [ 40.893670] ? lock_downgrade+0x990/0x990 [ 40.893675] ? check_same_owner+0x320/0x320 [ 40.893678] ? __thp_get_unmapped_area+0x130/0x130 [ 40.893681] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 40.893686] ? __might_sleep+0x95/0x190 [ 40.893691] __alloc_pages_nodemask+0x9f7/0xd80 [ 40.893693] ? finish_task_switch+0x1aa/0x740 [ 40.893698] ? __alloc_pages_slowpath+0x2ee0/0x2ee0 [ 40.893704] ? __schedule+0x8f0/0x2070 [ 40.893709] ? __sched_text_start+0x8/0x8 [ 40.893712] ? hrtimer_start_range_ns+0x687/0xeb0 [ 40.893715] ? hrtimer_active+0x2fb/0x410 [ 40.893720] ? hrtimer_forward+0x2d0/0x2d0 [ 40.893725] alloc_pages_current+0xb6/0x1e0 [ 40.893730] pte_alloc_one+0x19/0x100 [ 40.893734] __pte_alloc+0x2a/0x300 [ 40.893738] __handle_mm_fault+0x2a6b/0x3980 [ 40.893743] ? __pmd_alloc+0x4e0/0x4e0 [ 40.893747] ? check_same_owner+0x320/0x320 [ 40.893753] ? lock_acquire+0x1d5/0x580 [ 40.893756] ? handle_mm_fault+0x23e/0x940 [ 40.893759] ? lock_downgrade+0x990/0x990 [ 40.893770] handle_mm_fault+0x3bb/0x940 [ 40.893772] ? down_read_trylock+0xdb/0x170 [ 40.893776] ? __handle_mm_fault+0x3980/0x3980 [ 40.893778] ? vmacache_find+0x61/0x270 [ 40.893782] ? find_vma+0x30/0x150 [ 40.893786] __do_page_fault+0x4f6/0xb60 [ 40.893788] ? nanosleep_copyout+0x100/0x100 [ 40.893794] trace_do_page_fault+0x141/0x730 [ 40.893797] ? _copy_from_user+0x99/0x110 [ 40.893800] ? do_page_fault+0x70/0x70 [ 40.893803] ? __hrtimer_init+0x140/0x140 [ 40.893810] ? SyS_nanosleep+0x17d/0x1f0 [ 40.893814] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 40.893819] do_async_page_fault+0x72/0xc0 [ 40.893822] async_page_fault+0x28/0x30 [ 40.893824] RIP: 0033:0x40632e [ 40.893826] RSP: 002b:00007ffce939a750 EFLAGS: 00010246 [ 40.893828] RAX: 0000000020fd5ff0 RBX: 0000000000000003 RCX: 0000000000000003 [ 40.893830] RDX: c8a1903d85ec70a6 RSI: 0000000000000000 RDI: 000000000252d840 [ 40.893831] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000d00000012 [ 40.893833] R10: 00007ffce939a7e0 R11: 0000000000000000 R12: fffffffffffffffe [ 40.893834] R13: 00000000007080cc R14: 0000000000000007 R15: 0000000020fd5ff0 [ 40.893841] Mem-Info: [ 40.893849] active_anon:10938 inactive_anon:42 isolated_anon:0 [ 40.893849] active_file:794 inactive_file:736 isolated_file:32 [ 40.893849] unevictable:0 dirty:56 writeback:0 unstable:0 [ 40.893849] slab_reclaimable:5319 slab_unreclaimable:26802 [ 40.893849] mapped:1273 shmem:49 pagetables:504 bounce:0 [ 40.893849] free:10045 free_pcp:745 free_cma:0 [ 40.893854] Node 0 active_anon:22316kB inactive_anon:108kB active_file:512kB inactive_file:396kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:576kB dirty:96kB writeback:0kB shmem:116kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 69632kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 40.893859] Node 1 active_anon:21436kB inactive_anon:60kB active_file:2664kB inactive_file:2548kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:4516kB dirty:128kB writeback:0kB shmem:80kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 2048kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 40.893860] Node 0 DMA free:3744kB min:640kB low:800kB high:960kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 40.893866] lowmem_reserve[]: 0 884 884 884 [ 40.893870] Node 0 DMA32 free:18884kB min:36500kB low:45624kB high:54748kB active_anon:22316kB inactive_anon:108kB active_file:416kB inactive_file:908kB unevictable:0kB writepending:96kB present:1032192kB managed:907904kB mlocked:0kB kernel_stack:2336kB pagetables:1264kB bounce:0kB free_pcp:1424kB local_pcp:624kB free_cma:0kB [ 40.893876] lowmem_reserve[]: 0 0 0 0 [ 40.893880] Node 1 DMA32 free:17552kB min:30440kB low:38048kB high:45656kB active_anon:21436kB inactive_anon:60kB active_file:2664kB inactive_file:3328kB unevictable:0kB writepending:128kB present:1048560kB managed:755224kB mlocked:0kB kernel_stack:2592kB pagetables:752kB bounce:0kB free_pcp:1556kB local_pcp:624kB free_cma:0kB [ 40.893886] lowmem_reserve[]: 0 0 0 0 [ 40.893890] Node 0 DMA: 0*4kB 1*8kB (U) 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 1*512kB (U) 1*1024kB (U) 1*2048kB (M) 0*4096kB = 3720kB [ 40.893905] Node 0 DMA32: 510*4kB (UM) 335*8kB (UM) 179*16kB (ME) 75*32kB (UME) 36*64kB (ME) 12*128kB (UME) 2*256kB (UM) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (M) 0*4096kB = 19456kB [ 40.893924] Node 1 DMA32: 589*4kB (UME) 238*8kB (UM) 73*16kB (ME) 20*32kB (UME) 9*64kB (ME) 4*128kB (ME) 3*256kB (ME) 3*512kB (UME) 2*1024kB (UM) 3*2048kB (M) 0*4096kB = 17652kB [ 40.893943] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 40.893945] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 40.893946] 1572 total pagecache pages [ 40.893948] 0 pages in swap cache [ 40.893949] Swap cache stats: add 0, delete 0, find 0/0 [ 40.893950] Free swap = 0kB [ 40.893951] Total swap = 0kB [ 40.893952] 524186 pages RAM [ 40.893953] 0 pages HighMem/MovableOnly [ 40.893954] 104427 pages reserved [ 40.893955] [ pid ] uid tgid total_vm rss nr_ptes nr_pmds swapents oom_score_adj name [ 40.893969] [ 1506] 0 1506 5349 521 16 3 0 -1000 udevd [ 40.893973] [ 2761] 0 2761 5348 496 15 3 0 -1000 udevd [ 40.893977] [ 2772] 0 2772 2493 635 8 3 0 0 dhclient [ 40.893981] [ 2902] 0 2902 14237 489 23 3 0 0 rsyslogd [ 40.893984] [ 2938] 0 2938 4725 423 14 3 0 0 cron [ 40.893988] [ 2963] 0 2963 12490 493 28 3 0 -1000 sshd [ 40.893992] [ 2988] 0 2988 3694 412 13 3 0 0 getty [ 40.893996] [ 2989] 0 2989 3694 411 13 3 0 0 getty [ 40.894000] [ 2990] 0 2990 3694 400 12 3 0 0 getty [ 40.894014] [ 2991] 0 2991 3694 400 14 3 0 0 getty [ 40.894017] [ 2992] 0 2992 3694 394 13 3 0 0 getty [ 40.894021] [ 2993] 0 2993 3694 396 13 3 0 0 getty [ 40.894025] [ 2994] 0 2994 3649 377 13 3 0 0 getty [ 40.894029] [ 2995] 0 2995 5348 496 15 3 0 -1000 udevd [ 40.894033] [ 3016] 0 3016 17820 581 37 3 0 0 sshd [ 40.894037] [ 3018] 0 3018 40848 1778 21 5 0 0 syz-execprog [ 40.894041] [ 3025] 0 3025 5297 113 6 2 0 0 syz-executor0 [ 40.894044] [ 3027] 0 3027 5297 132 7 3 0 0 syz-executor0 [ 40.894048] [ 3033] 0 3033 5297 97 7 2 0 0 syz-executor3 [ 40.894052] [ 3035] 0 3035 5297 113 5 2 0 0 syz-executor1 [ 40.894056] [ 3036] 0 3036 5297 112 6 2 0 0 syz-executor4 [ 40.894059] [ 3038] 0 3038 5297 133 6 3 0 0 syz-executor1 [ 40.894063] [ 3041] 0 3041 5297 133 8 3 0 0 syz-executor3 [ 40.894066] [ 3042] 0 3042 5297 96 6 2 0 0 syz-executor2 [ 40.894070] [ 3043] 0 3043 5297 131 7 3 0 0 syz-executor4 [ 40.894074] [ 3045] 0 3045 5297 114 6 2 0 0 syz-executor6 [ 40.894077] [ 3047] 0 3047 5297 132 7 3 0 0 syz-executor2 [ 40.894081] [ 3050] 0 3050 5297 113 6 2 0 0 syz-executor7 [ 40.894084] [ 3052] 0 3052 5297 133 7 3 0 0 syz-executor6 [ 40.894088] [ 3054] 0 3054 5348 496 15 3 0 -1000 udevd [ 40.894092] [ 3057] 0 3057 5348 496 15 3 0 -1000 udevd [ 40.894096] [ 3058] 0 3058 5297 96 6 2 0 0 syz-executor5 [ 40.894099] [ 3059] 0 3059 5297 132 7 3 0 0 syz-executor7 [ 40.894103] [ 3063] 0 3063 5348 256 15 3 0 -1000 udevd [ 40.894107] [ 3071] 0 3071 5297 131 7 3 0 0 syz-executor5 [ 40.894111] [ 4406] 0 4373 9513 2723 14 4 0 0 syz-executor1 [ 40.894115] [ 4452] 0 4452 9480 1553 12 4 0 0 syz-executor3 [ 40.894118] [ 4454] 0 4454 9480 1553 11 4 0 0 syz-executor6 [ 40.894122] [ 4457] 0 4457 9480 1552 11 4 0 0 syz-executor2 [ 40.894124] Out of memory: Kill process 4373 (syz-executor1) score 6 or sacrifice child [ 40.894132] Killed process 4406 (syz-executor1) total-vm:38052kB, anon-rss:10376kB, file-rss:516kB, shmem-rss:0kB [ 40.984279] Kernel panic - not syncing: panic_on_warn set ... [ 40.984279] [ 40.984901] CPU: 0 PID: 4406 Comm: syz-executor1 Tainted: G B 4.13.0-rc5-next-20170815+ #3 [ 40.985741] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Bochs 01/01/2011 [ 40.986449] Call Trace: [ 40.986675] dump_stack+0x194/0x257 [ 40.986986] ? arch_local_irq_restore+0x53/0x53 [ 40.987400] ? kasan_end_report+0x32/0x50 [ 40.987664] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 40.987950] ? skb_copy_ubufs+0xb90/0x1940 [ 40.988225] panic+0x1e4/0x417 [ 40.988516] ? __warn+0x1d9/0x1d9 [ 40.988752] ? skb_copy_ubufs+0xc51/0x1940 [ 40.989030] kasan_end_report+0x50/0x50 [ 40.989398] kasan_report+0x137/0x340 [ 40.989772] check_memory_region+0x137/0x190 [ 40.990210] memcpy+0x23/0x50 [ 40.990525] skb_copy_ubufs+0xc51/0x1940 [ 40.990881] ? skb_release_data+0x790/0x790 [ 40.991164] ? lock_acquire+0x1d5/0x580 [ 40.991445] ? __is_insn_slot_addr+0x1fc/0x330 [ 40.991745] ? lock_downgrade+0x990/0x990 [ 40.992018] ? lock_release+0xa40/0xa40 [ 40.992296] ? __read_once_size_nocheck.constprop.8+0x10/0x10 [ 40.992687] ? entry_SYSCALL_64_fastpath+0x1f/0xbe [ 40.993010] ? bpf_prog_kallsyms_find+0xbd/0x440 [ 40.993337] ? lock_acquire+0x1d5/0x580 [ 40.993602] ? lock_acquire+0x1d5/0x580 [ 40.994346] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 40.994690] ? lock_release+0xa40/0xa40 [ 40.994955] ? __free_insn_slot+0x5c0/0x5c0 [ 40.995279] ? unwind_dump+0x4c0/0x4c0 [ 40.995546] __netif_receive_skb_core+0x2084/0x33d0 [ 40.995878] ? unwind_get_return_address+0x61/0xa0 [ 40.996277] ? nf_ingress+0x9f0/0x9f0 [ 40.996586] ? save_stack+0xa3/0xd0 [ 40.996824] ? save_stack_trace+0x16/0x20 [ 40.997116] ? save_stack+0x43/0xd0 [ 40.997389] ? kasan_kmalloc+0xad/0xe0 [ 40.997645] ? kasan_slab_alloc+0x12/0x20 [ 40.997917] ? kmem_cache_alloc+0x12e/0x760 [ 40.998203] ? __build_skb+0x9d/0x450 [ 40.998498] ? build_skb+0x6f/0x260 [ 40.998738] ? tun_get_user+0x1db7/0x2150 [ 40.999051] ? tun_chr_write_iter+0xd8/0x190 [ 40.999398] ? __vfs_write+0x684/0x970 [ 40.999710] ? vfs_write+0x189/0x510 [ 41.000008] ? __skb_flow_get_ports+0x151/0x400 [ 41.000377] ? flow_get_u32_dst+0x130/0x130 [ 41.000728] ? __skb_flow_get_ports+0x151/0x400 [ 41.001105] ? __skb_flow_dissect+0xfa1/0x3ae0 [ 41.001484] ? __sched_text_start+0x8/0x8 [ 41.001838] ? __skb_flow_get_ports+0x400/0x400 [ 41.002244] ? lock_acquire+0x1d5/0x580 [ 41.002565] ? netif_receive_skb_internal+0x1d7/0x5e0 [ 41.002989] ? lock_downgrade+0x990/0x990 [ 41.003323] ? pvclock_read_flags+0x160/0x160 [ 41.003710] ? __build_skb+0x325/0x450 [ 41.004031] ? lock_acquire+0x1d5/0x580 [ 41.004393] ? lock_acquire+0x1d5/0x580 [ 41.004745] ? netif_receive_skb_internal+0x93/0x5e0 [ 41.005163] ? ktime_get_with_offset+0x2c1/0x420 [ 41.005565] ? lock_release+0xa40/0xa40 [ 41.005913] ? do_gettimeofday+0x190/0x190 [ 41.006323] ? __build_skb+0x450/0x450 [ 41.006681] __netif_receive_skb+0x2c/0x1b0 [ 41.007072] ? __netif_receive_skb+0x2c/0x1b0 [ 41.007446] netif_receive_skb_internal+0x10b/0x5e0 [ 41.007938] ? dev_cpu_dead+0xb00/0xb00 [ 41.008312] ? tun_device_event+0xca0/0xca0 [ 41.008664] ? futex_wake+0x680/0x680 [ 41.008974] ? __unqueue_futex+0x1c0/0x290 [ 41.009350] ? drop_futex_key_refs.isra.13+0x63/0xb0 [ 41.009796] netif_receive_skb+0xae/0x390 [ 41.010183] ? netif_receive_skb_internal+0x5e0/0x5e0 [ 41.010610] ? mark_wake_futex+0xc0/0x1c0 [ 41.010940] ? futex_wait_setup+0x3d0/0x3d0 [ 41.011286] ? tun_rx_batched.isra.43+0x5bd/0x860 [ 41.011763] tun_rx_batched.isra.43+0x5e7/0x860 [ 41.012161] ? skb_get_hash_perturb+0x9d0/0x9d0 [ 41.012555] ? tun_sock_write_space+0x370/0x370 [ 41.012924] ? tun_free_netdev+0x1b0/0x1b0 [ 41.013270] tun_get_user+0x11dd/0x2150 [ 41.013622] ? tun_flow_update+0xf70/0xf70 [ 41.013977] ? lock_acquire+0x1d5/0x580 [ 41.014307] ? lock_acquire+0x1d5/0x580 [ 41.014665] ? __tun_get+0x1ab/0x2e0 [ 41.015424] ? lock_downgrade+0x990/0x990 [ 41.015799] ? lock_release+0xa40/0xa40 [ 41.016131] ? __fget+0x35c/0x570 [ 41.016429] ? __tun_get+0x1d4/0x2e0 [ 41.016728] ? tun_chr_close+0x60/0x60 [ 41.017039] ? release_sock+0x1d4/0x2a0 [ 41.017419] ? trace_hardirqs_on+0xd/0x10 [ 41.017769] tun_chr_write_iter+0xd8/0x190 [ 41.018108] __vfs_write+0x684/0x970 [ 41.018407] ? default_llseek+0x290/0x290 [ 41.018737] ? _cond_resched+0x14/0x30 [ 41.019048] ? avc_policy_seqno+0x9/0x20 [ 41.019374] ? selinux_file_permission+0x82/0x460 [ 41.019764] ? rw_verify_area+0xe5/0x2b0 [ 41.020089] ? __fdget_raw+0x20/0x20 [ 41.020375] vfs_write+0x189/0x510 [ 41.020669] SyS_write+0xef/0x220 [ 41.020997] ? SyS_socket+0x137/0x200 [ 41.021265] ? SyS_read+0x220/0x220 [ 41.021551] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 41.021938] entry_SYSCALL_64_fastpath+0x1f/0xbe [ 41.022323] RIP: 0033:0x40bab1 [ 41.022581] RSP: 002b:00007fd192bcbc00 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 41.023257] RAX: ffffffffffffffda RBX: 000000000000002a RCX: 000000000040bab1 [ 41.023899] RDX: 000000000000002a RSI: 0000000020f01000 RDI: 0000000000000003 [ 41.024520] RBP: 00007ffed3608c10 R08: 0000000000000000 R09: 0000000000000000 [ 41.025091] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 41.025574] R13: 0000000000000000 R14: 00007fd192bcc9c0 R15: 00007fd192bcc700 [ 41.026174] Dumping ftrace buffer: [ 41.026374] (ftrace buffer empty) [ 41.026579] Kernel Offset: disabled [ 41.026783] Rebooting in 86400 seconds..