[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 57.488670][ T26] audit: type=1800 audit(1570392783.073:25): pid=8542 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 57.536140][ T26] audit: type=1800 audit(1570392783.073:26): pid=8542 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 57.596126][ T26] audit: type=1800 audit(1570392783.073:27): pid=8542 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.190' (ECDSA) to the list of known hosts. syzkaller login: [ 76.135646][ T8696] IPVS: ftp: loaded support on port[0] = 21 [ 76.191318][ T8696] chnl_net:caif_netlink_parms(): no params data found [ 76.219214][ T8696] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.226829][ T8696] bridge0: port 1(bridge_slave_0) entered disabled state [ 76.234690][ T8696] device bridge_slave_0 entered promiscuous mode [ 76.242889][ T8696] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.250070][ T8696] bridge0: port 2(bridge_slave_1) entered disabled state [ 76.258158][ T8696] device bridge_slave_1 entered promiscuous mode [ 76.274570][ T8696] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 76.286854][ T8696] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 76.304512][ T8696] team0: Port device team_slave_0 added [ 76.312826][ T8696] team0: Port device team_slave_1 added [ 76.368683][ T8696] device hsr_slave_0 entered promiscuous mode [ 76.416739][ T8696] device hsr_slave_1 entered promiscuous mode [ 76.494276][ T8696] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.501743][ T8696] bridge0: port 2(bridge_slave_1) entered forwarding state [ 76.509676][ T8696] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.516782][ T8696] bridge0: port 1(bridge_slave_0) entered forwarding state [ 76.550091][ T8696] 8021q: adding VLAN 0 to HW filter on device bond0 [ 76.562657][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 76.574067][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 76.582598][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 76.590820][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 76.602924][ T8696] 8021q: adding VLAN 0 to HW filter on device team0 [ 76.614326][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 76.623049][ T22] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.630219][ T22] bridge0: port 1(bridge_slave_0) entered forwarding state [ 76.647449][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 76.655758][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.663018][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 76.671652][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 76.681802][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 76.691919][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 76.707511][ T8696] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 76.718599][ T8696] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 76.731110][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 76.739930][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 76.748321][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready executing program [ 76.765714][ T8696] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 76.846585][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 76.852591][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 76.878901][ T8705] netlink: 'syz-executor428': attribute type 2 has an invalid length. [ 76.966174][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 76.971983][ C1] protocol 88fb is buggy, dev hsr_slave_1 executing program [ 77.031005][ T8706] netlink: 'syz-executor428': attribute type 2 has an invalid length. [ 77.096155][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 77.102025][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 77.116920][ T8706] netlink: 'syz-executor428': attribute type 2 has an invalid length. [ 77.125781][ T8706] ================================================================== [ 77.134101][ T8706] BUG: KASAN: slab-out-of-bounds in tcf_exts_destroy+0xb3/0xd0 [ 77.141828][ T8706] Read of size 8 at addr ffff8880a9816290 by task syz-executor428/8706 [ 77.150162][ T8706] [ 77.152479][ T8706] CPU: 0 PID: 8706 Comm: syz-executor428 Not tainted 5.4.0-rc1+ #0 [ 77.160349][ T8706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 77.170485][ T8706] Call Trace: [ 77.173777][ T8706] dump_stack+0x172/0x1f0 [ 77.178095][ T8706] ? tcf_exts_destroy+0xb3/0xd0 [ 77.183017][ T8706] print_address_description.constprop.0.cold+0xd4/0x30b [ 77.190028][ T8706] ? tcf_exts_destroy+0xb3/0xd0 [ 77.194859][ T8706] ? tcf_exts_destroy+0xb3/0xd0 [ 77.199700][ T8706] __kasan_report.cold+0x1b/0x41 [ 77.204776][ T8706] ? tcf_exts_destroy+0xb3/0xd0 [ 77.209927][ T8706] kasan_report+0x12/0x20 [ 77.214349][ T8706] __asan_report_load8_noabort+0x14/0x20 [ 77.219981][ T8706] tcf_exts_destroy+0xb3/0xd0 [ 77.224650][ T8706] tcindex_free_perfect_hash.isra.0+0xb3/0x150 [ 77.230835][ T8706] tcindex_set_parms+0x1107/0x1e50 [ 77.235956][ T8706] ? tcindex_alloc_perfect_hash+0x320/0x320 [ 77.243099][ T8706] ? __nla_validate_parse+0x4cc/0x1ee0 [ 77.248585][ T8706] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 77.254554][ T8706] ? nla_memcpy+0xb0/0xb0 [ 77.258876][ T8706] ? find_held_lock+0x35/0x130 [ 77.263642][ T8706] ? tc_new_tfilter+0x73d/0x1c70 [ 77.268567][ T8706] tcindex_change+0x230/0x320 [ 77.273223][ T8706] ? tcindex_change+0x230/0x320 [ 77.278057][ T8706] ? tcindex_set_parms+0x1e50/0x1e50 [ 77.283378][ T8706] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 77.289624][ T8706] ? tcindex_lookup+0x9d/0x3c0 [ 77.294547][ T8706] ? tcindex_set_parms+0x1e50/0x1e50 [ 77.299831][ T8706] tc_new_tfilter+0xa4b/0x1c70 [ 77.304602][ T8706] ? tc_del_tfilter+0x1530/0x1530 [ 77.309612][ T8706] ? __kasan_check_read+0x11/0x20 [ 77.315141][ T8706] ? __lock_acquire+0x8a0/0x4a00 [ 77.320066][ T8706] ? rtnetlink_rcv_msg+0x7f2/0xb00 [ 77.325156][ T8706] ? find_held_lock+0x35/0x130 [ 77.333035][ T8706] ? rtnetlink_rcv_msg+0x7f2/0xb00 [ 77.338305][ T8706] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 77.344549][ T8706] ? tc_del_tfilter+0x1530/0x1530 [ 77.349591][ T8706] ? __kasan_check_read+0x11/0x20 [ 77.354632][ T8706] ? tc_del_tfilter+0x1530/0x1530 [ 77.359644][ T8706] rtnetlink_rcv_msg+0x838/0xb00 [ 77.364583][ T8706] ? rtnl_bridge_getlink+0x910/0x910 [ 77.370516][ T8706] ? netlink_deliver_tap+0x22d/0xbf0 [ 77.375806][ T8706] ? find_held_lock+0x35/0x130 [ 77.380573][ T8706] netlink_rcv_skb+0x177/0x450 [ 77.385330][ T8706] ? rtnl_bridge_getlink+0x910/0x910 [ 77.390614][ T8706] ? netlink_ack+0xb50/0xb50 [ 77.395186][ T8706] ? __kasan_check_read+0x11/0x20 [ 77.400282][ T8706] ? netlink_deliver_tap+0x254/0xbf0 [ 77.405559][ T8706] rtnetlink_rcv+0x1d/0x30 [ 77.410055][ T8706] netlink_unicast+0x531/0x710 [ 77.414835][ T8706] ? netlink_attachskb+0x7c0/0x7c0 [ 77.419938][ T8706] ? _copy_from_iter_full+0x25d/0x8c0 [ 77.425292][ T8706] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 77.431001][ T8706] ? __check_object_size+0x3d/0x437 [ 77.436178][ T8706] netlink_sendmsg+0x8a5/0xd60 [ 77.440936][ T8706] ? netlink_unicast+0x710/0x710 [ 77.445853][ T8706] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 77.451761][ T8706] ? apparmor_socket_sendmsg+0x2a/0x30 [ 77.457220][ T8706] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 77.463550][ T8706] ? security_socket_sendmsg+0x8d/0xc0 [ 77.469000][ T8706] ? netlink_unicast+0x710/0x710 [ 77.474015][ T8706] sock_sendmsg+0xd7/0x130 [ 77.478415][ T8706] ___sys_sendmsg+0x3e2/0x920 [ 77.483072][ T8706] ? copy_msghdr_from_user+0x440/0x440 [ 77.488636][ T8706] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 77.494941][ T8706] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 77.501200][ T8706] ? debug_smp_processor_id+0x3c/0x214 [ 77.506658][ T8706] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 77.512889][ T8706] ? refcount_inc_not_zero_checked+0x144/0x200 [ 77.519036][ T8706] ? refcount_dec_and_mutex_lock+0x90/0x90 [ 77.526098][ T8706] ? __kasan_check_read+0x11/0x20 [ 77.531286][ T8706] ? mark_lock+0xc2/0x1220 [ 77.535913][ T8706] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 77.542253][ T8706] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 77.548768][ T8706] ? __fget_light+0x1a9/0x230 [ 77.553629][ T8706] ? __fdget+0x1b/0x20 [ 77.557695][ T8706] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 77.564015][ T8706] ? sockfd_lookup_light+0xcb/0x180 [ 77.569209][ T8706] __sys_sendmmsg+0x2db/0x4d0 [ 77.573871][ T8706] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 77.578898][ T8706] ? lock_downgrade+0x920/0x920 [ 77.583827][ T8706] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 77.590066][ T8706] ? __fd_install+0x200/0x640 [ 77.594836][ T8706] ? fd_install+0x4d/0x60 [ 77.599174][ T8706] ? move_addr_to_kernel+0x80/0x80 [ 77.604356][ T8706] ? trace_hardirqs_on_thunk+0x1a/0x20 [ 77.609796][ T8706] ? do_fast_syscall_32+0xd1/0xdb3 [ 77.614898][ T8706] ? entry_SYSENTER_compat+0x70/0x7f [ 77.620960][ T8706] ? do_fast_syscall_32+0xd1/0xdb3 [ 77.626155][ T8706] __ia32_compat_sys_sendmmsg+0x9f/0x100 [ 77.631785][ T8706] do_fast_syscall_32+0x27b/0xdb3 [ 77.636811][ T8706] entry_SYSENTER_compat+0x70/0x7f [ 77.641996][ T8706] RIP: 0023:0xf7f58a29 [ 77.646055][ T8706] Code: b8 80 96 98 00 eb cc 8b 04 24 c3 8b 1c 24 c3 8b 34 24 c3 8b 3c 24 c3 90 90 90 90 90 90 90 90 90 90 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 77.665966][ T8706] RSP: 002b:00000000fff2eacc EFLAGS: 00000292 ORIG_RAX: 0000000000000159 [ 77.674381][ T8706] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000020000140 [ 77.682337][ T8706] RDX: 0000000000000332 RSI: 0000000000000000 RDI: 00000000ffffffff [ 77.690301][ T8706] RBP: 0000000020000140 R08: 0000000000000000 R09: 0000000000000000 [ 77.698341][ T8706] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 77.706399][ T8706] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 77.714458][ T8706] [ 77.716768][ T8706] Allocated by task 8706: [ 77.721644][ T8706] save_stack+0x23/0x90 [ 77.725786][ T8706] __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 77.731685][ T8706] kasan_kmalloc+0x9/0x10 [ 77.736048][ T8706] __kmalloc+0x163/0x770 [ 77.740295][ T8706] tcindex_alloc_perfect_hash+0x5a/0x320 [ 77.745926][ T8706] tcindex_set_parms+0x454/0x1e50 [ 77.752171][ T8706] tcindex_change+0x230/0x320 [ 77.756845][ T8706] tc_new_tfilter+0xa4b/0x1c70 [ 77.761589][ T8706] rtnetlink_rcv_msg+0x838/0xb00 [ 77.766525][ T8706] netlink_rcv_skb+0x177/0x450 [ 77.771276][ T8706] rtnetlink_rcv+0x1d/0x30 [ 77.775774][ T8706] netlink_unicast+0x531/0x710 [ 77.780531][ T8706] netlink_sendmsg+0x8a5/0xd60 [ 77.785364][ T8706] sock_sendmsg+0xd7/0x130 [ 77.789758][ T8706] ___sys_sendmsg+0x3e2/0x920 [ 77.794420][ T8706] __sys_sendmmsg+0x2db/0x4d0 [ 77.799141][ T8706] __ia32_compat_sys_sendmmsg+0x9f/0x100 [ 77.804791][ T8706] do_fast_syscall_32+0x27b/0xdb3 [ 77.813734][ T8706] entry_SYSENTER_compat+0x70/0x7f [ 77.818833][ T8706] [ 77.821148][ T8706] Freed by task 1: [ 77.824853][ T8706] save_stack+0x23/0x90 [ 77.828991][ T8706] __kasan_slab_free+0x102/0x150 [ 77.834056][ T8706] kasan_slab_free+0xe/0x10 [ 77.838555][ T8706] kfree+0x10a/0x2c0 [ 77.842439][ T8706] free_alien_cache.part.0+0x3f/0x80 [ 77.847715][ T8706] setup_kmem_cache_node+0xe6/0x410 [ 77.852894][ T8706] slab_prepare_cpu+0x95/0xd0 [ 77.857552][ T8706] cpuhp_invoke_callback+0x21a/0x1c60 [ 77.862898][ T8706] _cpu_up+0x289/0x550 [ 77.866946][ T8706] do_cpu_up+0x171/0x190 [ 77.871187][ T8706] cpu_up+0x1b/0x20 [ 77.875069][ T8706] smp_init+0x248/0x261 [ 77.879302][ T8706] kernel_init_freeable+0x339/0x5be [ 77.884522][ T8706] kernel_init+0x12/0x1c5 [ 77.888853][ T8706] ret_from_fork+0x24/0x30 [ 77.893253][ T8706] [ 77.895564][ T8706] The buggy address belongs to the object at ffff8880a9816200 [ 77.895564][ T8706] which belongs to the cache kmalloc-192 of size 192 [ 77.909676][ T8706] The buggy address is located 144 bytes inside of [ 77.909676][ T8706] 192-byte region [ffff8880a9816200, ffff8880a98162c0) [ 77.923192][ T8706] The buggy address belongs to the page: [ 77.928817][ T8706] page:ffffea0002a60580 refcount:1 mapcount:0 mapping:ffff8880aa400000 index:0x0 [ 77.937911][ T8706] flags: 0x1fffc0000000200(slab) [ 77.942846][ T8706] raw: 01fffc0000000200 ffffea0002537988 ffffea00028588c8 ffff8880aa400000 [ 77.951414][ T8706] raw: 0000000000000000 ffff8880a9816000 0000000100000010 0000000000000000 [ 77.959976][ T8706] page dumped because: kasan: bad access detected [ 77.966382][ T8706] [ 77.968689][ T8706] Memory state around the buggy address: [ 77.974295][ T8706] ffff8880a9816180: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc [ 77.982330][ T8706] ffff8880a9816200: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 77.990375][ T8706] >ffff8880a9816280: 00 fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 77.998410][ T8706] ^ [ 78.002979][ T8706] ffff8880a9816300: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 78.011028][ T8706] ffff8880a9816380: 00 fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 78.019061][ T8706] ================================================================== [ 78.027094][ T8706] Disabling lock debugging due to kernel taint [ 78.036118][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 78.036432][ T8706] Kernel panic - not syncing: panic_on_warn set ... [ 78.041901][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 78.048446][ T8706] CPU: 0 PID: 8706 Comm: syz-executor428 Tainted: G B 5.4.0-rc1+ #0 [ 78.048453][ T8706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 78.048457][ T8706] Call Trace: [ 78.048481][ T8706] dump_stack+0x172/0x1f0 [ 78.048503][ T8706] panic+0x2dc/0x755 [ 78.085362][ T8706] ? add_taint.cold+0x16/0x16 [ 78.090019][ T8706] ? tcf_exts_destroy+0xb3/0xd0 [ 78.094858][ T8706] ? preempt_schedule+0x4b/0x60 [ 78.099686][ T8706] ? ___preempt_schedule+0x16/0x20 [ 78.104771][ T8706] ? trace_hardirqs_on+0x5e/0x240 [ 78.109771][ T8706] ? tcf_exts_destroy+0xb3/0xd0 [ 78.114697][ T8706] end_report+0x47/0x4f [ 78.118847][ T8706] ? tcf_exts_destroy+0xb3/0xd0 [ 78.123680][ T8706] __kasan_report.cold+0xe/0x41 [ 78.128514][ T8706] ? tcf_exts_destroy+0xb3/0xd0 [ 78.133364][ T8706] kasan_report+0x12/0x20 [ 78.137680][ T8706] __asan_report_load8_noabort+0x14/0x20 [ 78.143383][ T8706] tcf_exts_destroy+0xb3/0xd0 [ 78.148040][ T8706] tcindex_free_perfect_hash.isra.0+0xb3/0x150 [ 78.154202][ T8706] tcindex_set_parms+0x1107/0x1e50 [ 78.159400][ T8706] ? tcindex_alloc_perfect_hash+0x320/0x320 [ 78.165292][ T8706] ? __nla_validate_parse+0x4cc/0x1ee0 [ 78.170730][ T8706] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 78.176611][ T8706] ? nla_memcpy+0xb0/0xb0 [ 78.180917][ T8706] ? find_held_lock+0x35/0x130 [ 78.185656][ T8706] ? tc_new_tfilter+0x73d/0x1c70 [ 78.190576][ T8706] tcindex_change+0x230/0x320 [ 78.195262][ T8706] ? tcindex_change+0x230/0x320 [ 78.200214][ T8706] ? tcindex_set_parms+0x1e50/0x1e50 [ 78.205529][ T8706] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 78.211801][ T8706] ? tcindex_lookup+0x9d/0x3c0 [ 78.216633][ T8706] ? tcindex_set_parms+0x1e50/0x1e50 [ 78.222022][ T8706] tc_new_tfilter+0xa4b/0x1c70 [ 78.226773][ T8706] ? tc_del_tfilter+0x1530/0x1530 [ 78.231869][ T8706] ? __kasan_check_read+0x11/0x20 [ 78.236963][ T8706] ? __lock_acquire+0x8a0/0x4a00 [ 78.241886][ T8706] ? rtnetlink_rcv_msg+0x7f2/0xb00 [ 78.246976][ T8706] ? find_held_lock+0x35/0x130 [ 78.251738][ T8706] ? rtnetlink_rcv_msg+0x7f2/0xb00 [ 78.256858][ T8706] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 78.263088][ T8706] ? tc_del_tfilter+0x1530/0x1530 [ 78.268103][ T8706] ? __kasan_check_read+0x11/0x20 [ 78.273582][ T8706] ? tc_del_tfilter+0x1530/0x1530 [ 78.278761][ T8706] rtnetlink_rcv_msg+0x838/0xb00 [ 78.283706][ T8706] ? rtnl_bridge_getlink+0x910/0x910 [ 78.289759][ T8706] ? netlink_deliver_tap+0x22d/0xbf0 [ 78.295023][ T8706] ? find_held_lock+0x35/0x130 [ 78.299827][ T8706] netlink_rcv_skb+0x177/0x450 [ 78.304603][ T8706] ? rtnl_bridge_getlink+0x910/0x910 [ 78.309881][ T8706] ? netlink_ack+0xb50/0xb50 [ 78.314454][ T8706] ? __kasan_check_read+0x11/0x20 [ 78.319466][ T8706] ? netlink_deliver_tap+0x254/0xbf0 [ 78.324739][ T8706] rtnetlink_rcv+0x1d/0x30 [ 78.329128][ T8706] netlink_unicast+0x531/0x710 [ 78.333880][ T8706] ? netlink_attachskb+0x7c0/0x7c0 [ 78.338969][ T8706] ? _copy_from_iter_full+0x25d/0x8c0 [ 78.344321][ T8706] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 78.350017][ T8706] ? __check_object_size+0x3d/0x437 [ 78.355290][ T8706] netlink_sendmsg+0x8a5/0xd60 [ 78.360029][ T8706] ? netlink_unicast+0x710/0x710 [ 78.364948][ T8706] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 78.370468][ T8706] ? apparmor_socket_sendmsg+0x2a/0x30 [ 78.375915][ T8706] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 78.382140][ T8706] ? security_socket_sendmsg+0x8d/0xc0 [ 78.387578][ T8706] ? netlink_unicast+0x710/0x710 [ 78.392500][ T8706] sock_sendmsg+0xd7/0x130 [ 78.397068][ T8706] ___sys_sendmsg+0x3e2/0x920 [ 78.401718][ T8706] ? copy_msghdr_from_user+0x440/0x440 [ 78.407164][ T8706] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 78.413380][ T8706] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 78.419598][ T8706] ? debug_smp_processor_id+0x3c/0x214 [ 78.425042][ T8706] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 78.431275][ T8706] ? refcount_inc_not_zero_checked+0x144/0x200 [ 78.437403][ T8706] ? refcount_dec_and_mutex_lock+0x90/0x90 [ 78.443186][ T8706] ? __kasan_check_read+0x11/0x20 [ 78.448186][ T8706] ? mark_lock+0xc2/0x1220 [ 78.452575][ T8706] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 78.458790][ T8706] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 78.465010][ T8706] ? __fget_light+0x1a9/0x230 [ 78.469663][ T8706] ? __fdget+0x1b/0x20 [ 78.473804][ T8706] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 78.480020][ T8706] ? sockfd_lookup_light+0xcb/0x180 [ 78.485198][ T8706] __sys_sendmmsg+0x2db/0x4d0 [ 78.489850][ T8706] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 78.494859][ T8706] ? lock_downgrade+0x920/0x920 [ 78.499688][ T8706] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 78.505903][ T8706] ? __fd_install+0x200/0x640 [ 78.510921][ T8706] ? fd_install+0x4d/0x60 [ 78.515228][ T8706] ? move_addr_to_kernel+0x80/0x80 [ 78.520355][ T8706] ? trace_hardirqs_on_thunk+0x1a/0x20 [ 78.526744][ T8706] ? do_fast_syscall_32+0xd1/0xdb3 [ 78.531831][ T8706] ? entry_SYSENTER_compat+0x70/0x7f [ 78.537093][ T8706] ? do_fast_syscall_32+0xd1/0xdb3 [ 78.542179][ T8706] __ia32_compat_sys_sendmmsg+0x9f/0x100 [ 78.547791][ T8706] do_fast_syscall_32+0x27b/0xdb3 [ 78.552793][ T8706] entry_SYSENTER_compat+0x70/0x7f [ 78.557887][ T8706] RIP: 0023:0xf7f58a29 [ 78.561947][ T8706] Code: b8 80 96 98 00 eb cc 8b 04 24 c3 8b 1c 24 c3 8b 34 24 c3 8b 3c 24 c3 90 90 90 90 90 90 90 90 90 90 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 78.582012][ T8706] RSP: 002b:00000000fff2eacc EFLAGS: 00000292 ORIG_RAX: 0000000000000159 [ 78.590671][ T8706] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000020000140 [ 78.598621][ T8706] RDX: 0000000000000332 RSI: 0000000000000000 RDI: 00000000ffffffff [ 78.606570][ T8706] RBP: 0000000020000140 R08: 0000000000000000 R09: 0000000000000000 [ 78.614517][ T8706] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 78.622464][ T8706] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 78.632118][ T8706] Kernel Offset: disabled [ 78.636449][ T8706] Rebooting in 86400 seconds..