[ 32.754129] audit: type=1800 audit(1546192634.444:27): pid=7344 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[ 32.786696] audit: type=1800 audit(1546192634.444:28): pid=7344 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0
[....] Starting periodic command scheduler: cron�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[....] Starting OpenBSD Secure Shell server: sshd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[ 33.317993] audit: type=1800 audit(1546192635.064:29): pid=7344 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
[ 33.342434] audit: type=1800 audit(1546192635.064:30): pid=7344 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0
Debian GNU/Linux 7 syzkaller ttyS0
Warning: Permanently added '10.128.0.40' (ECDSA) to the list of known hosts.
syzkaller login: [ 44.604384] IPVS: ftp: loaded support on port[0] = 21
[ 44.660902] chnl_net:caif_netlink_parms(): no params data found
[ 44.687860] bridge0: port 1(bridge_slave_0) entered blocking state
[ 44.694402] bridge0: port 1(bridge_slave_0) entered disabled state
[ 44.701510] device bridge_slave_0 entered promiscuous mode
[ 44.708728] bridge0: port 2(bridge_slave_1) entered blocking state
[ 44.715074] bridge0: port 2(bridge_slave_1) entered disabled state
[ 44.721972] device bridge_slave_1 entered promiscuous mode
[ 44.735907] bond0: Enslaving bond_slave_0 as an active interface with an up link
[ 44.744819] bond0: Enslaving bond_slave_1 as an active interface with an up link
[ 44.761475] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[ 44.768919] team0: Port device team_slave_0 added
[ 44.774149] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[ 44.781346] team0: Port device team_slave_1 added
[ 44.786432] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[ 44.793724] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[ 44.849359] device hsr_slave_0 entered promiscuous mode
[ 44.917503] device hsr_slave_1 entered promiscuous mode
[ 44.967619] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[ 44.974427] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[ 44.986625] bridge0: port 2(bridge_slave_1) entered blocking state
[ 44.993170] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 45.000147] bridge0: port 1(bridge_slave_0) entered blocking state
[ 45.006492] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 45.034229] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready
[ 45.041714] 8021q: adding VLAN 0 to HW filter on device bond0
[ 45.050352] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[ 45.058790] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 45.077484] bridge0: port 1(bridge_slave_0) entered disabled state
[ 45.084628] bridge0: port 2(bridge_slave_1) entered disabled state
[ 45.092734] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 45.102038] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[ 45.108484] 8021q: adding VLAN 0 to HW filter on device team0
[ 45.116408] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 45.124196] bridge0: port 1(bridge_slave_0) entered blocking state
[ 45.130557] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 45.148308] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 45.155817] bridge0: port 2(bridge_slave_1) entered blocking state
[ 45.162167] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 45.169523] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 45.177071] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 45.184637] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 45.192512] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 45.201476] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 45.210473] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[ 45.216446] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
executing program
[ 45.229434] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[ 45.239155] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 45.250544] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[ 45.337398] ==================================================================
[ 45.344852] BUG: KASAN: slab-out-of-bounds in tun_net_xmit+0x197e/0x1be0
[ 45.351669] Read of size 8 at addr ffff88809fa64f48 by task swapper/0/0
[ 45.358396]
[ 45.360002] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 4.20.0+ #363
[ 45.366313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 45.375645] Call Trace:
[ 45.378204]
[ 45.380331] dump_stack+0x1d3/0x2c6
[ 45.383933] ? dump_stack_print_info.cold.1+0x20/0x20
[ 45.389098] ? printk+0xa7/0xcf
[ 45.392355] ? kmsg_dump_rewind_nolock+0xe4/0xe4
[ 45.397094] print_address_description.cold.8+0x9/0x1ff
[ 45.402452] kasan_report.cold.9+0x242/0x309
[ 45.406835] ? tun_net_xmit+0x197e/0x1be0
[ 45.410970] __asan_report_load8_noabort+0x14/0x20
[ 45.415878] tun_net_xmit+0x197e/0x1be0
[ 45.419830] ? rcu_read_lock_sched_held+0x108/0x120
[ 45.424822] ? tun_xdp_act.isra.49+0xa00/0xa00
[ 45.429479] ? print_usage_bug+0xc0/0xc0
[ 45.433525] ? find_held_lock+0x36/0x1c0
[ 45.437568] ? graph_lock+0x270/0x270
[ 45.441348] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 45.446865] ? check_preemption_disabled+0x48/0x280
[ 45.451862] ? __lock_is_held+0xb5/0x140
[ 45.455910] dev_hard_start_xmit+0x286/0xc80
[ 45.460314] ? dev_direct_xmit+0x6a0/0x6a0
[ 45.464527] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 45.470044] ? validate_xmit_xfrm+0x41c/0xef0
[ 45.474522] ? validate_xmit_skb+0x849/0xf70
[ 45.478913] ? netif_skb_features+0xb50/0xb50
[ 45.483390] ? _raw_spin_unlock_irqrestore+0x82/0xd0
[ 45.488479] ? _raw_spin_unlock_irqrestore+0x82/0xd0
[ 45.493561] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 45.499080] ? check_preemption_disabled+0x48/0x280
[ 45.504078] ? validate_xmit_skb_list+0xf4/0x140
[ 45.508824] sch_direct_xmit+0x48b/0x1130
[ 45.512970] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 45.518488] ? check_preemption_disabled+0x48/0x280
[ 45.523483] ? dev_watchdog+0xb10/0xb10
[ 45.527466] ? __lock_is_held+0xb5/0x140
[ 45.531522] __qdisc_run+0x624/0x19f0
[ 45.535339] ? sch_direct_xmit+0x1130/0x1130
[ 45.539730] ? lock_acquire+0x1ed/0x520
[ 45.543687] ? dev_queue_xmit+0x17/0x20
[ 45.547651] ? lock_release+0xa00/0xa00
[ 45.551615] ? mini_qdisc_pair_init+0x160/0x160
[ 45.556269] __dev_queue_xmit+0x190c/0x3ac0
[ 45.560571] ? dev_queue_xmit+0x17/0x20
[ 45.564753] ? netdev_pick_tx+0x300/0x300
[ 45.568881] ? __lock_acquire+0x62f/0x4c20
[ 45.573093] ? check_preemption_disabled+0x48/0x280
[ 45.578099] ? kasan_check_read+0x11/0x20
[ 45.582234] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[ 45.587504] ? mark_held_locks+0x130/0x130
[ 45.591732] ? fib_rules_lookup+0x54c/0xcd0
[ 45.596032] ? fib_rules_net_exit+0x120/0x120
[ 45.600505] ? kasan_check_read+0x11/0x20
[ 45.604627] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[ 45.609899] ? print_usage_bug+0xc0/0xc0
[ 45.613933] ? graph_lock+0x270/0x270
[ 45.617718] ? __lock_acquire+0x62f/0x4c20
[ 45.621952] ? graph_lock+0x270/0x270
[ 45.625731] ? print_usage_bug+0xc0/0xc0
[ 45.629776] ? ipv6_chk_mcast_addr+0x350/0x940
[ 45.634335] ? find_held_lock+0x36/0x1c0
[ 45.638379] ? mark_held_locks+0xc7/0x130
[ 45.642501] ? ip6_finish_output2+0x14f0/0x2930
[ 45.647149] ? ip6_finish_output2+0x14f0/0x2930
[ 45.651804] ? lockdep_hardirqs_on+0x19e/0x5c0
[ 45.656363] ? trace_hardirqs_on+0xbd/0x310
[ 45.660664] ? __bpf_trace_preemptirq_template+0x30/0x30
[ 45.666095] dev_queue_xmit+0x17/0x20
[ 45.669868] ? dev_queue_xmit+0x17/0x20
[ 45.673832] ip6_finish_output2+0x144e/0x2930
[ 45.678302] ? __do_softirq+0x30c/0xb2e
[ 45.682261] ? find_held_lock+0x36/0x1c0
[ 45.686301] ? ip6_forward_finish+0x580/0x580
[ 45.690781] ? ip6_mtu+0x39c/0x520
[ 45.694301] ? lock_downgrade+0x900/0x900
[ 45.698437] ? check_preemption_disabled+0x48/0x280
[ 45.703434] ? kasan_check_read+0x11/0x20
[ 45.707570] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[ 45.712831] ? rcu_read_unlock_special+0x370/0x370
[ 45.717754] ? ip6_mtu+0x160/0x520
[ 45.721280] ? find_match+0x10a0/0x10a0
[ 45.725231] ? kasan_check_read+0x11/0x20
[ 45.729448] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[ 45.734706] ip6_finish_output+0x583/0xc50
[ 45.738948] ? ip6_finish_output+0x583/0xc50
[ 45.743336] ip6_output+0x232/0x9d0
[ 45.746959] ? ip6_finish_output+0xc50/0xc50
[ 45.751348] ? ip6_fragment+0x3850/0x3850
[ 45.755475] ? ip6_mtu_from_fib6+0x770/0x770
[ 45.759864] mld_sendpack+0xac9/0xfa0
[ 45.763662] ? nf_hook.constprop.40+0x860/0x860
[ 45.768314] ? _raw_read_unlock_bh+0x30/0x40
[ 45.772705] ? __bpf_trace_preemptirq_template+0x30/0x30
[ 45.778161] ? __local_bh_enable_ip+0x160/0x260
[ 45.782809] mld_send_initial_cr.part.32+0x114/0x160
[ 45.787905] mld_dad_timer_expire+0x42/0x1b0
[ 45.792309] call_timer_fn+0x272/0x920
[ 45.796178] ? mld_send_initial_cr.part.32+0x160/0x160
[ 45.801433] ? process_timeout+0x40/0x40
[ 45.805473] ? __run_timers+0x7da/0xc70
[ 45.809432] ? _raw_spin_unlock_irq+0x27/0x80
[ 45.813905] ? _raw_spin_unlock_irq+0x27/0x80
[ 45.818388] ? mld_send_initial_cr.part.32+0x160/0x160
[ 45.823640] ? lockdep_hardirqs_on+0x19e/0x5c0
[ 45.828202] ? trace_hardirqs_on+0xbd/0x310
[ 45.832499] ? kasan_check_read+0x11/0x20
[ 45.836624] ? __run_timers+0x7da/0xc70
[ 45.840580] ? __bpf_trace_preemptirq_template+0x30/0x30
[ 45.846014] ? mld_send_initial_cr.part.32+0x160/0x160
[ 45.851288] __run_timers+0x7e5/0xc70
[ 45.855083] ? __bpf_trace_timer_expire_entry+0x30/0x30
[ 45.860445] ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 45.865438] ? graph_lock+0x270/0x270
[ 45.869221] ? enqueue_hrtimer+0x1a5/0x560
[ 45.873434] ? hrtimer_update_softirq_timer+0xa0/0xa0
[ 45.878603] ? find_held_lock+0x36/0x1c0
[ 45.882642] ? pvclock_read_flags+0x160/0x160
[ 45.887114] ? clockevents_program_event+0x158/0x370
[ 45.892202] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 45.897719] ? check_preemption_disabled+0x48/0x280
[ 45.902718] ? rcu_lockdep_current_cpu_online+0x1a4/0x210
[ 45.908244] ? rcu_pm_notify+0xc0/0xc0
[ 45.912110] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 45.917627] ? check_preemption_disabled+0x48/0x280
[ 45.922620] run_timer_softirq+0x52/0xb0
[ 45.926658] ? rcu_read_lock_sched_held+0x108/0x120
[ 45.931651] __do_softirq+0x30c/0xb2e
[ 45.935431] ? __irqentry_text_end+0x1f9658/0x1f9658
[ 45.940528] ? pvclock_read_flags+0x160/0x160
[ 45.944999] ? lapic_next_event+0x5a/0x90
[ 45.949128] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 45.954645] ? kvm_clock_read+0x18/0x30
[ 45.958597] ? kvm_sched_clock_read+0x9/0x20
[ 45.962982] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 45.968502] ? check_preemption_disabled+0x48/0x280
[ 45.973498] irq_exit+0x17f/0x1c0
[ 45.976933] smp_apic_timer_interrupt+0x1cb/0x760
[ 45.981759] ? smp_call_function_single_interrupt+0x650/0x650
[ 45.987629] ? interrupt_entry+0xb5/0xc0
[ 45.991675] ? trace_hardirqs_off_caller+0xbb/0x310
[ 45.996671] ? trace_hardirqs_off_caller+0xbb/0x310
[ 46.001666] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 46.006485] ? trace_hardirqs_on_caller+0x310/0x310
[ 46.011478] ? trace_hardirqs_on_caller+0x310/0x310
[ 46.016475] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 46.021303] apic_timer_interrupt+0xf/0x20
[ 46.025509]
[ 46.027736] RIP: 0010:native_safe_halt+0x6/0x10
[ 46.032393] Code: e9 2c ff ff ff 48 89 c7 48 89 45 d8 e8 a3 84 c9 f9 48 8b 45 d8 e9 ca fe ff ff 48 89 df e8 92 84 c9 f9 eb 82 55 48 89 e5 fb f4 <5d> c3 0f 1f 84 00 00 00 00 00 55 48 89 e5 f4 5d c3 90 90 90 90 90
[ 46.051369] RSP: 0018:ffffffff89607c20 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff13
[ 46.059065] RAX: dffffc0000000000 RBX: 1ffffffff12c0f88 RCX: 0000000000000000
[ 46.066315] RDX: 1ffffffff12e4969 RSI: 0000000000000001 RDI: ffffffff89724b48
[ 46.073563] RBP: ffffffff89607c20 R08: ffffffff8967aec0 R09: 0000000000000000
[ 46.080832] R10: 0000000000000000 R11: 0000000000000000 R12: ffffffff89607ce0
[ 46.088083] R13: ffffffff8a3a3260 R14: 0000000000000000 R15: 0000000000000000
[ 46.095342] default_idle+0xbf/0x490
[ 46.099039] ? rcu_dynticks_eqs_enter+0x4f/0x80
[ 46.103683] ? __sched_text_end+0x1/0x1
[ 46.107641] ? rcu_idle_enter+0x39a/0x530
[ 46.111796] ? rcu_eqs_special_set+0x1c0/0x1c0
[ 46.116377] ? tsc_verify_tsc_adjust+0x137/0x460
[ 46.121109] ? __bpf_trace_preemptirq_template+0x30/0x30
[ 46.126534] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 46.132051] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 46.137569] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 46.143087] arch_cpu_idle+0x10/0x20
[ 46.146780] default_idle_call+0x6d/0x90
[ 46.150823] do_idle+0x3db/0x5b0
[ 46.154170] ? __bpf_trace_preemptirq_template+0x30/0x30
[ 46.159597] ? arch_cpu_idle_exit+0x70/0x70
[ 46.163909] ? check_preemption_disabled+0x48/0x280
[ 46.168911] cpu_startup_entry+0x18/0x20
[ 46.172947] rest_init+0x243/0x372
[ 46.176462] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 46.181978] arch_call_rest_init+0xe/0x1b
[ 46.186102] start_kernel+0x873/0x8ae
[ 46.189881] ? mem_encrypt_init+0xb/0xb
[ 46.193837] ? early_idt_handler_common+0x3b/0x60
[ 46.198661] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 46.204176] ? x86_family+0x3e/0x50
[ 46.207791] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 46.213311] x86_64_start_reservations+0x29/0x2b
[ 46.218043] x86_64_start_kernel+0x76/0x79
[ 46.222256] secondary_startup_64+0xa4/0xb0
[ 46.226555]
[ 46.228158] Allocated by task 7497:
[ 46.231773] save_stack+0x43/0xd0
[ 46.235200] kasan_kmalloc+0xc7/0xe0
[ 46.238887] __kmalloc_node+0x50/0x70
[ 46.242770] kvmalloc_node+0x65/0xf0
[ 46.246478] tun_device_event+0x56a/0x106c
[ 46.250689] notifier_call_chain+0x17e/0x380
[ 46.255073] raw_notifier_call_chain+0x2d/0x40
[ 46.259634] call_netdevice_notifiers_info+0x3f/0x90
[ 46.264711] dev_change_tx_queue_len+0x188/0x270
[ 46.269438] dev_ifsioc+0x79b/0xa80
[ 46.273147] dev_ioctl+0x1b5/0xcc0
[ 46.276665] sock_do_ioctl+0x1f6/0x420
[ 46.280527] sock_ioctl+0x313/0x690
[ 46.284139] do_vfs_ioctl+0x1de/0x1790
[ 46.288013] ksys_ioctl+0xa9/0xd0
[ 46.291450] __x64_sys_ioctl+0x73/0xb0
[ 46.295314] do_syscall_64+0x1b9/0x820
[ 46.299184] entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 46.304342]
[ 46.305952] Freed by task 4400:
[ 46.309209] save_stack+0x43/0xd0
[ 46.312635] __kasan_slab_free+0x102/0x150
[ 46.316842] kasan_slab_free+0xe/0x10
[ 46.320617] kfree+0xcf/0x230
[ 46.323698] single_release+0x8f/0xb0
[ 46.327574] __fput+0x385/0xa30
[ 46.330845] ____fput+0x15/0x20
[ 46.334108] task_work_run+0x1e8/0x2a0
[ 46.337972] exit_to_usermode_loop+0x318/0x380
[ 46.342528] do_syscall_64+0x6be/0x820
[ 46.346388] entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 46.351557]
[ 46.353164] The buggy address belongs to the object at ffff88809fa64f40
[ 46.353164] which belongs to the cache kmalloc-32 of size 32
[ 46.365621] The buggy address is located 8 bytes inside of
[ 46.365621] 32-byte region [ffff88809fa64f40, ffff88809fa64f60)
[ 46.377215] The buggy address belongs to the page:
[ 46.382144] page:ffffea00027e9900 count:1 mapcount:0 mapping:ffff88812c3f01c0 index:0xffff88809fa64fc1
[ 46.391571] flags: 0x1fffc0000000200(slab)
[ 46.395781] raw: 01fffc0000000200 ffffea0002837048 ffffea00028f0888 ffff88812c3f01c0
[ 46.403638] raw: ffff88809fa64fc1 ffff88809fa64000 000000010000003f 0000000000000000
[ 46.411492] page dumped because: kasan: bad access detected
[ 46.417191]
[ 46.418826] Memory state around the buggy address:
[ 46.423728] ffff88809fa64e00: fb fb fb fb fc fc fc fc fb fb fb fb fc fc fc fc
[ 46.431168] ffff88809fa64e80: fb fb fb fb fc fc fc fc fb fb fb fb fc fc fc fc
[ 46.438510] >ffff88809fa64f00: fb fb fb fb fc fc fc fc 00 fc fc fc fc fc fc fc
[ 46.445842] ^
[ 46.451526] ffff88809fa64f80: 06 fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 46.458862] ffff88809fa65000: fc fc fc fc fc fc fc fc 00 00 00 00 00 00 00 00
[ 46.466233] ==================================================================
[ 46.473563] Disabling lock debugging due to kernel taint
[ 46.479018] Kernel panic - not syncing: panic_on_warn set ...
[ 46.484895] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G B 4.20.0+ #363
[ 46.492586] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 46.501910] Call Trace:
[ 46.504464]
[ 46.506592] dump_stack+0x1d3/0x2c6
[ 46.510204] ? dump_stack_print_info.cold.1+0x20/0x20
[ 46.515389] panic+0x2ad/0x55f
[ 46.518558] ? add_taint.cold.5+0x16/0x16
[ 46.522678] ? trace_hardirqs_on+0x9a/0x310
[ 46.526974] ? trace_hardirqs_on+0xb4/0x310
[ 46.531267] ? trace_hardirqs_on+0xb4/0x310
[ 46.535565] kasan_end_report+0x47/0x4f
[ 46.539513] kasan_report.cold.9+0x76/0x309
[ 46.543805] ? tun_net_xmit+0x197e/0x1be0
[ 46.547927] __asan_report_load8_noabort+0x14/0x20
[ 46.552828] tun_net_xmit+0x197e/0x1be0
[ 46.556775] ? rcu_read_lock_sched_held+0x108/0x120
[ 46.561767] ? tun_xdp_act.isra.49+0xa00/0xa00
[ 46.566325] ? print_usage_bug+0xc0/0xc0
[ 46.570358] ? find_held_lock+0x36/0x1c0
[ 46.574402] ? graph_lock+0x270/0x270
[ 46.578179] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 46.583694] ? check_preemption_disabled+0x48/0x280
[ 46.588687] ? __lock_is_held+0xb5/0x140
[ 46.592723] dev_hard_start_xmit+0x286/0xc80
[ 46.597107] ? dev_direct_xmit+0x6a0/0x6a0
[ 46.601318] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 46.606833] ? validate_xmit_xfrm+0x41c/0xef0
[ 46.611306] ? validate_xmit_skb+0x849/0xf70
[ 46.615692] ? netif_skb_features+0xb50/0xb50
[ 46.620170] ? _raw_spin_unlock_irqrestore+0x82/0xd0
[ 46.625244] ? _raw_spin_unlock_irqrestore+0x82/0xd0
[ 46.630326] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 46.635840] ? check_preemption_disabled+0x48/0x280
[ 46.640837] ? validate_xmit_skb_list+0xf4/0x140
[ 46.645569] sch_direct_xmit+0x48b/0x1130
[ 46.649697] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 46.655210] ? check_preemption_disabled+0x48/0x280
[ 46.660204] ? dev_watchdog+0xb10/0xb10
[ 46.664151] ? __lock_is_held+0xb5/0x140
[ 46.668193] __qdisc_run+0x624/0x19f0
[ 46.671979] ? sch_direct_xmit+0x1130/0x1130
[ 46.676360] ? lock_acquire+0x1ed/0x520
[ 46.680326] ? dev_queue_xmit+0x17/0x20
[ 46.684286] ? lock_release+0xa00/0xa00
[ 46.688237] ? mini_qdisc_pair_init+0x160/0x160
[ 46.692887] __dev_queue_xmit+0x190c/0x3ac0
[ 46.697280] ? dev_queue_xmit+0x17/0x20
[ 46.701242] ? netdev_pick_tx+0x300/0x300
[ 46.705367] ? __lock_acquire+0x62f/0x4c20
[ 46.709593] ? check_preemption_disabled+0x48/0x280
[ 46.714587] ? kasan_check_read+0x11/0x20
[ 46.718711] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[ 46.723964] ? mark_held_locks+0x130/0x130
[ 46.728174] ? fib_rules_lookup+0x54c/0xcd0
[ 46.732469] ? fib_rules_net_exit+0x120/0x120
[ 46.737026] ? kasan_check_read+0x11/0x20
[ 46.741147] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[ 46.746395] ? print_usage_bug+0xc0/0xc0
[ 46.750433] ? graph_lock+0x270/0x270
[ 46.754207] ? __lock_acquire+0x62f/0x4c20
[ 46.758426] ? graph_lock+0x270/0x270
[ 46.762204] ? print_usage_bug+0xc0/0xc0
[ 46.766242] ? ipv6_chk_mcast_addr+0x350/0x940
[ 46.770803] ? find_held_lock+0x36/0x1c0
[ 46.774841] ? mark_held_locks+0xc7/0x130
[ 46.778998] ? ip6_finish_output2+0x14f0/0x2930
[ 46.783646] ? ip6_finish_output2+0x14f0/0x2930
[ 46.788294] ? lockdep_hardirqs_on+0x19e/0x5c0
[ 46.792858] ? trace_hardirqs_on+0xbd/0x310
[ 46.797167] ? __bpf_trace_preemptirq_template+0x30/0x30
[ 46.802604] dev_queue_xmit+0x17/0x20
[ 46.806382] ? dev_queue_xmit+0x17/0x20
[ 46.810336] ip6_finish_output2+0x144e/0x2930
[ 46.814806] ? __do_softirq+0x30c/0xb2e
[ 46.818762] ? find_held_lock+0x36/0x1c0
[ 46.822799] ? ip6_forward_finish+0x580/0x580
[ 46.827285] ? ip6_mtu+0x39c/0x520
[ 46.830808] ? lock_downgrade+0x900/0x900
[ 46.834933] ? check_preemption_disabled+0x48/0x280
[ 46.839944] ? kasan_check_read+0x11/0x20
[ 46.844072] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[ 46.849325] ? rcu_read_unlock_special+0x370/0x370
[ 46.854233] ? ip6_mtu+0x160/0x520
[ 46.857754] ? find_match+0x10a0/0x10a0
[ 46.861705] ? kasan_check_read+0x11/0x20
[ 46.865829] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[ 46.871088] ip6_finish_output+0x583/0xc50
[ 46.875298] ? ip6_finish_output+0x583/0xc50
[ 46.879682] ip6_output+0x232/0x9d0
[ 46.883283] ? ip6_finish_output+0xc50/0xc50
[ 46.887673] ? ip6_fragment+0x3850/0x3850
[ 46.891806] ? ip6_mtu_from_fib6+0x770/0x770
[ 46.896193] mld_sendpack+0xac9/0xfa0
[ 46.899979] ? nf_hook.constprop.40+0x860/0x860
[ 46.904624] ? _raw_read_unlock_bh+0x30/0x40
[ 46.909007] ? __bpf_trace_preemptirq_template+0x30/0x30
[ 46.914431] ? __local_bh_enable_ip+0x160/0x260
[ 46.919077] mld_send_initial_cr.part.32+0x114/0x160
[ 46.924166] mld_dad_timer_expire+0x42/0x1b0
[ 46.928549] call_timer_fn+0x272/0x920
[ 46.932410] ? mld_send_initial_cr.part.32+0x160/0x160
[ 46.937664] ? process_timeout+0x40/0x40
[ 46.941703] ? __run_timers+0x7da/0xc70
[ 46.945654] ? _raw_spin_unlock_irq+0x27/0x80
[ 46.950124] ? _raw_spin_unlock_irq+0x27/0x80
[ 46.954592] ? mld_send_initial_cr.part.32+0x160/0x160
[ 46.959857] ? lockdep_hardirqs_on+0x19e/0x5c0
[ 46.964417] ? trace_hardirqs_on+0xbd/0x310
[ 46.968713] ? kasan_check_read+0x11/0x20
[ 46.972839] ? __run_timers+0x7da/0xc70
[ 46.976786] ? __bpf_trace_preemptirq_template+0x30/0x30
[ 46.982219] ? mld_send_initial_cr.part.32+0x160/0x160
[ 46.987473] __run_timers+0x7e5/0xc70
[ 46.991258] ? __bpf_trace_timer_expire_entry+0x30/0x30
[ 46.996602] ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 47.001603] ? graph_lock+0x270/0x270
[ 47.005390] ? enqueue_hrtimer+0x1a5/0x560
[ 47.009603] ? hrtimer_update_softirq_timer+0xa0/0xa0
[ 47.014769] ? find_held_lock+0x36/0x1c0
[ 47.018810] ? pvclock_read_flags+0x160/0x160
[ 47.023299] ? clockevents_program_event+0x158/0x370
[ 47.028380] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 47.033893] ? check_preemption_disabled+0x48/0x280
[ 47.038888] ? rcu_lockdep_current_cpu_online+0x1a4/0x210
[ 47.044403] ? rcu_pm_notify+0xc0/0xc0
[ 47.048279] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 47.053792] ? check_preemption_disabled+0x48/0x280
[ 47.058784] run_timer_softirq+0x52/0xb0
[ 47.062821] ? rcu_read_lock_sched_held+0x108/0x120
[ 47.067816] __do_softirq+0x30c/0xb2e
[ 47.071607] ? __irqentry_text_end+0x1f9658/0x1f9658
[ 47.076688] ? pvclock_read_flags+0x160/0x160
[ 47.081155] ? lapic_next_event+0x5a/0x90
[ 47.085282] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 47.090800] ? kvm_clock_read+0x18/0x30
[ 47.094759] ? kvm_sched_clock_read+0x9/0x20
[ 47.099159] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 47.104672] ? check_preemption_disabled+0x48/0x280
[ 47.109667] irq_exit+0x17f/0x1c0
[ 47.113099] smp_apic_timer_interrupt+0x1cb/0x760
[ 47.117914] ? smp_call_function_single_interrupt+0x650/0x650
[ 47.123781] ? interrupt_entry+0xb5/0xc0
[ 47.127841] ? trace_hardirqs_off_caller+0xbb/0x310
[ 47.132842] ? trace_hardirqs_off_caller+0xbb/0x310
[ 47.137838] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 47.142651] ? trace_hardirqs_on_caller+0x310/0x310
[ 47.147645] ? trace_hardirqs_on_caller+0x310/0x310
[ 47.152648] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 47.157465] apic_timer_interrupt+0xf/0x20
[ 47.161684]
[ 47.163901] RIP: 0010:native_safe_halt+0x6/0x10
[ 47.168549] Code: e9 2c ff ff ff 48 89 c7 48 89 45 d8 e8 a3 84 c9 f9 48 8b 45 d8 e9 ca fe ff ff 48 89 df e8 92 84 c9 f9 eb 82 55 48 89 e5 fb f4 <5d> c3 0f 1f 84 00 00 00 00 00 55 48 89 e5 f4 5d c3 90 90 90 90 90
[ 47.187425] RSP: 0018:ffffffff89607c20 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff13
[ 47.195113] RAX: dffffc0000000000 RBX: 1ffffffff12c0f88 RCX: 0000000000000000
[ 47.202359] RDX: 1ffffffff12e4969 RSI: 0000000000000001 RDI: ffffffff89724b48
[ 47.209609] RBP: ffffffff89607c20 R08: ffffffff8967aec0 R09: 0000000000000000
[ 47.216856] R10: 0000000000000000 R11: 0000000000000000 R12: ffffffff89607ce0
[ 47.224099] R13: ffffffff8a3a3260 R14: 0000000000000000 R15: 0000000000000000
[ 47.231353] default_idle+0xbf/0x490
[ 47.235047] ? rcu_dynticks_eqs_enter+0x4f/0x80
[ 47.239691] ? __sched_text_end+0x1/0x1
[ 47.243640] ? rcu_idle_enter+0x39a/0x530
[ 47.247760] ? rcu_eqs_special_set+0x1c0/0x1c0
[ 47.252312] ? tsc_verify_tsc_adjust+0x137/0x460
[ 47.257040] ? __bpf_trace_preemptirq_template+0x30/0x30
[ 47.262469] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 47.267984] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 47.273509] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 47.279043] arch_cpu_idle+0x10/0x20
[ 47.282733] default_idle_call+0x6d/0x90
[ 47.286763] do_idle+0x3db/0x5b0
[ 47.290102] ? __bpf_trace_preemptirq_template+0x30/0x30
[ 47.295527] ? arch_cpu_idle_exit+0x70/0x70
[ 47.299830] ? check_preemption_disabled+0x48/0x280
[ 47.304827] cpu_startup_entry+0x18/0x20
[ 47.308862] rest_init+0x243/0x372
[ 47.312385] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 47.317900] arch_call_rest_init+0xe/0x1b
[ 47.322034] start_kernel+0x873/0x8ae
[ 47.325816] ? mem_encrypt_init+0xb/0xb
[ 47.329769] ? early_idt_handler_common+0x3b/0x60
[ 47.334585] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 47.340100] ? x86_family+0x3e/0x50
[ 47.343702] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 47.349214] x86_64_start_reservations+0x29/0x2b
[ 47.353941] x86_64_start_kernel+0x76/0x79
[ 47.358150] secondary_startup_64+0xa4/0xb0
[ 47.363389] Kernel Offset: disabled
[ 47.367005] Rebooting in 86400 seconds..