Warning: Permanently added '10.128.0.177' (ECDSA) to the list of known hosts.
[   33.303671] IPVS: ftp: loaded support on port[0] = 21
[   33.389027] chnl_net:caif_netlink_parms(): no params data found
[   33.476177] bridge0: port 1(bridge_slave_0) entered blocking state
[   33.482960] bridge0: port 1(bridge_slave_0) entered disabled state
[   33.491209] device bridge_slave_0 entered promiscuous mode
[   33.499432] bridge0: port 2(bridge_slave_1) entered blocking state
[   33.505849] bridge0: port 2(bridge_slave_1) entered disabled state
[   33.513512] device bridge_slave_1 entered promiscuous mode
[   33.530207] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   33.539098] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   33.557579] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   33.564986] team0: Port device team_slave_0 added
[   33.571309] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   33.579167] team0: Port device team_slave_1 added
[   33.594476] batman_adv: batadv0: Adding interface: batadv_slave_0
[   33.601658] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   33.627709] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   33.639464] batman_adv: batadv0: Adding interface: batadv_slave_1
[   33.645806] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   33.671237] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   33.682064] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   33.690128] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   33.708906] device hsr_slave_0 entered promiscuous mode
[   33.714922] device hsr_slave_1 entered promiscuous mode
[   33.722452] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[   33.733126] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[   33.796706] bridge0: port 2(bridge_slave_1) entered blocking state
[   33.803666] bridge0: port 2(bridge_slave_1) entered forwarding state
[   33.810764] bridge0: port 1(bridge_slave_0) entered blocking state
[   33.817370] bridge0: port 1(bridge_slave_0) entered forwarding state
[   33.851736] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready
[   33.859377] 8021q: adding VLAN 0 to HW filter on device bond0
[   33.870169] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   33.880022] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   33.889424] bridge0: port 1(bridge_slave_0) entered disabled state
[   33.897107] bridge0: port 2(bridge_slave_1) entered disabled state
[   33.908042] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[   33.914585] 8021q: adding VLAN 0 to HW filter on device team0
[   33.923975] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   33.932322] bridge0: port 1(bridge_slave_0) entered blocking state
[   33.939620] bridge0: port 1(bridge_slave_0) entered forwarding state
[   33.957871] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   33.965768] bridge0: port 2(bridge_slave_1) entered blocking state
[   33.975544] bridge0: port 2(bridge_slave_1) entered forwarding state
[   33.985396] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   33.994202] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   34.005536] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   34.013075] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   34.023781] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   34.034019] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[   34.041089] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   34.055345] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready
[   34.063722] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   34.071448] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   34.083098] 8021q: adding VLAN 0 to HW filter on device batadv0
[   34.141022] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready
[   34.151510] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   34.188084] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready
[   34.195263] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready
[   34.203537] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready
[   34.214192] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   34.222620] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   34.230561] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   34.240781] device veth0_vlan entered promiscuous mode
[   34.250545] device veth1_vlan entered promiscuous mode
[   34.257634] IPv6: ADDRCONF(NETDEV_UP): macvlan0: link is not ready
[   34.266458] IPv6: ADDRCONF(NETDEV_UP): macvlan1: link is not ready
[   34.279273] IPv6: ADDRCONF(NETDEV_UP): veth0_macvtap: link is not ready
[   34.289870] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   34.297945] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   34.305432] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   34.314653] device veth0_macvtap entered promiscuous mode
[   34.321652] IPv6: ADDRCONF(NETDEV_UP): macvtap0: link is not ready
[   34.330480] device veth1_macvtap entered promiscuous mode
[   34.339744] IPv6: ADDRCONF(NETDEV_UP): veth0_to_batadv: link is not ready
[   34.350402] IPv6: ADDRCONF(NETDEV_UP): veth1_to_batadv: link is not ready
[   34.361909] batman_adv: batadv0: Interface activated: batadv_slave_0
[   34.369513] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   34.377848] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   34.386285] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   34.397715] IPv6: ADDRCONF(NETDEV_UP): batadv_slave_1: link is not ready
[   34.405297] batman_adv: batadv0: Interface activated: batadv_slave_1
[   34.412651] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   34.420699] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
[   34.523038] netlink: 4 bytes leftover after parsing attributes in process `syz-executor385'.
[   34.532907] netlink: 4 bytes leftover after parsing attributes in process `syz-executor385'.
[   34.585754] netlink: 4 bytes leftover after parsing attributes in process `syz-executor385'.
[   34.595205] netlink: 4 bytes leftover after parsing attributes in process `syz-executor385'.
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
[   34.666234] netlink: 4 bytes leftover after parsing attributes in process `syz-executor385'.
[   34.676065] netlink: 4 bytes leftover after parsing attributes in process `syz-executor385'.
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
[   34.735243] netlink: 4 bytes leftover after parsing attributes in process `syz-executor385'.
[   34.745206] netlink: 4 bytes leftover after parsing attributes in process `syz-executor385'.
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
[   34.804966] netlink: 4 bytes leftover after parsing attributes in process `syz-executor385'.
[   34.814365] netlink: 4 bytes leftover after parsing attributes in process `syz-executor385'.
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
[   35.327942] Bluetooth: hci0 command 0x0409 tx timeout
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
[   37.405369] Bluetooth: hci0 command 0x041b tx timeout
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
executing program
[   38.746566] ==================================================================
[   38.754895] BUG: KASAN: use-after-free in refcount_dec_not_one+0x9a/0xc0
[   38.761954] Read of size 4 at addr ffff8880aa2c7118 by task syz-executor385/8765
[   38.770698] 
[   38.772327] CPU: 1 PID: 8765 Comm: syz-executor385 Not tainted 4.14.232-syzkaller #0
[   38.781053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   38.791194] Call Trace:
[   38.793950]  dump_stack+0x1b2/0x281
[   38.797716]  print_address_description.cold+0x54/0x1d3
[   38.802999]  kasan_report_error.cold+0x8a/0x191
[   38.810492]  ? refcount_dec_not_one+0x9a/0xc0
[   38.815069]  __asan_report_load4_noabort+0x68/0x70
[   38.820079]  ? refcount_dec_not_one+0x9a/0xc0
[   38.824685]  refcount_dec_not_one+0x9a/0xc0
[   38.829146]  refcount_dec_and_mutex_lock+0x1a/0x60
[   38.834076]  nbd_genl_connect+0xf94/0x1400
[   38.838355]  ? nbd_xmit_timeout+0x500/0x500
[   38.842764]  ? validate_nla+0x192/0x5e0
[   38.847032]  genl_family_rcv_msg+0x572/0xb20
[   38.851563]  ? genl_rcv+0x40/0x40
[   38.855097]  ? __ww_mutex_wakeup_for_backoff+0x210/0x210
[   38.860733]  ? trace_hardirqs_on+0x10/0x10
[   38.865297]  ? sock_sendmsg+0xb5/0x100
[   38.869386]  genl_rcv_msg+0xaf/0x140
[   38.874613]  netlink_rcv_skb+0x125/0x390
[   38.878904]  ? genl_family_rcv_msg+0xb20/0xb20
[   38.883735]  ? netlink_ack+0x9a0/0x9a0
[   38.887625]  ? lock_acquire+0x170/0x3f0
[   38.891601]  genl_rcv+0x24/0x40
[   38.896988]  netlink_unicast+0x437/0x610
[   38.901064]  ? netlink_sendskb+0xd0/0xd0
[   38.905407]  ? __check_object_size+0x179/0x230
[   38.910207]  netlink_sendmsg+0x62e/0xb80
[   38.914288]  ? nlmsg_notify+0x170/0x170
[   38.918321]  ? kernel_recvmsg+0x210/0x210
[   38.922522]  ? security_socket_sendmsg+0x83/0xb0
[   38.927283]  ? nlmsg_notify+0x170/0x170
[   38.931337]  sock_sendmsg+0xb5/0x100
[   38.935062]  ___sys_sendmsg+0x6c8/0x800
[   38.939058]  ? copy_msghdr_from_user+0x3b0/0x3b0
[   38.943976]  ? netlink_dump+0xad0/0xad0
[   38.948070]  ? nlmsg_notify+0x170/0x170
[   38.952311]  ? security_socket_recvmsg+0x8b/0xc0
[   38.957118]  ? SyS_recvfrom+0x27f/0x340
[   38.961230]  ? SyS_send+0x40/0x40
[   38.965102]  ? vm_insert_page+0x7c0/0x7c0
[   38.969330]  ? __fdget+0x167/0x1f0
[   38.972922]  ? sockfd_lookup_light+0xb2/0x160
[   38.977537]  __sys_sendmsg+0xa3/0x120
[   38.981343]  ? SyS_shutdown+0x160/0x160
[   38.985493]  ? up_read+0x17/0x30
[   38.989049]  ? __do_page_fault+0x159/0xad0
[   38.993378]  SyS_sendmsg+0x27/0x40
[   38.997102]  ? __sys_sendmsg+0x120/0x120
[   39.001169]  do_syscall_64+0x1d5/0x640
[   39.005059]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[   39.010547] RIP: 0033:0x4532b9
[   39.013731] RSP: 002b:00007ffc77471e38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   39.021650] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000004532b9
[   39.028922] RDX: 0000000010008010 RSI: 00000000200004c0 RDI: 0000000000000005
[   39.036379] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   39.043719] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc77471e78
[   39.051004] R13: 00007ffc77471e90 R14: 00007ffc77471ed0 R15: 0000000000000052
[   39.058687] 
[   39.060363] Allocated by task 8760:
[   39.063996]  kasan_kmalloc+0xeb/0x160
[   39.067843]  kmem_cache_alloc_trace+0x131/0x3d0
[   39.072691]  nbd_dev_add+0x7c/0x800
[   39.076455]  nbd_genl_connect+0x3a4/0x1400
[   39.080683]  genl_family_rcv_msg+0x572/0xb20
[   39.085085]  genl_rcv_msg+0xaf/0x140
[   39.088813]  netlink_rcv_skb+0x125/0x390
[   39.093004]  genl_rcv+0x24/0x40
[   39.096282]  netlink_unicast+0x437/0x610
[   39.100603]  netlink_sendmsg+0x62e/0xb80
[   39.104661]  sock_sendmsg+0xb5/0x100
[   39.108511]  ___sys_sendmsg+0x6c8/0x800
[   39.112679]  __sys_sendmsg+0xa3/0x120
[   39.116608]  SyS_sendmsg+0x27/0x40
[   39.120146]  do_syscall_64+0x1d5/0x640
[   39.124132]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[   39.129408] 
[   39.131028] Freed by task 8765:
[   39.134302]  kasan_slab_free+0xc3/0x1a0
[   39.138267]  kfree+0xc9/0x250
[   39.141459]  nbd_put.part.0+0x100/0x140
[   39.145650]  nbd_config_put+0x62a/0x810
[   39.149622]  nbd_genl_connect+0xf6c/0x1400
[   39.154002]  genl_family_rcv_msg+0x572/0xb20
[   39.158601]  genl_rcv_msg+0xaf/0x140
[   39.162447]  netlink_rcv_skb+0x125/0x390
[   39.166812]  genl_rcv+0x24/0x40
[   39.170084]  netlink_unicast+0x437/0x610
[   39.174147]  netlink_sendmsg+0x62e/0xb80
[   39.178210]  sock_sendmsg+0xb5/0x100
[   39.181916]  ___sys_sendmsg+0x6c8/0x800
[   39.186034]  __sys_sendmsg+0xa3/0x120
[   39.189829]  SyS_sendmsg+0x27/0x40
[   39.193388]  do_syscall_64+0x1d5/0x640
[   39.197315]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[   39.202813] 
[   39.204469] The buggy address belongs to the object at ffff8880aa2c7040
[   39.204469]  which belongs to the cache kmalloc-512 of size 512
[   39.217245] The buggy address is located 216 bytes inside of
[   39.217245]  512-byte region [ffff8880aa2c7040, ffff8880aa2c7240)
[   39.229295] The buggy address belongs to the page:
[   39.234394] page:ffffea0002a8b1c0 count:1 mapcount:0 mapping:ffff8880aa2c7040 index:0x0
[   39.242839] flags: 0xfff00000000100(slab)
[   39.246991] raw: 00fff00000000100 ffff8880aa2c7040 0000000000000000 0000000100000006
[   39.255078] raw: ffffea0002943b60 ffffea0002a90920 ffff88813fe80940 0000000000000000
[   39.262955] page dumped because: kasan: bad access detected
[   39.268716] 
[   39.270449] Memory state around the buggy address:
[   39.275372]  ffff8880aa2c7000: fc fc fc fc fc fc fc fc fb fb fb fb fb fb fb fb
[   39.283695]  ffff8880aa2c7080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   39.291757] >ffff8880aa2c7100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   39.299245]                             ^
[   39.303386]  ffff8880aa2c7180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   39.310996]  ffff8880aa2c7200: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[   39.318772] ==================================================================
[   39.326215] Disabling lock debugging due to kernel taint
[   39.333482] Kernel panic - not syncing: panic_on_warn set ...
[   39.333482] 
[   39.340876] CPU: 1 PID: 8765 Comm: syz-executor385 Tainted: G    B           4.14.232-syzkaller #0
[   39.350196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   39.359853] Call Trace:
[   39.362456]  dump_stack+0x1b2/0x281
[   39.366094]  panic+0x1f9/0x42d
[   39.369448]  ? add_taint.cold+0x16/0x16
[   39.373432]  ? ___preempt_schedule+0x16/0x18
[   39.377995]  kasan_end_report+0x43/0x49
[   39.382104]  kasan_report_error.cold+0xa7/0x191
[   39.386814]  ? refcount_dec_not_one+0x9a/0xc0
[   39.391550]  __asan_report_load4_noabort+0x68/0x70
[   39.396617]  ? refcount_dec_not_one+0x9a/0xc0
[   39.401106]  refcount_dec_not_one+0x9a/0xc0
[   39.405420]  refcount_dec_and_mutex_lock+0x1a/0x60
[   39.410349]  nbd_genl_connect+0xf94/0x1400
[   39.414582]  ? nbd_xmit_timeout+0x500/0x500
[   39.418898]  ? validate_nla+0x192/0x5e0
[   39.423191]  genl_family_rcv_msg+0x572/0xb20
[   39.427767]  ? genl_rcv+0x40/0x40
[   39.431214]  ? __ww_mutex_wakeup_for_backoff+0x210/0x210
[   39.436840]  ? trace_hardirqs_on+0x10/0x10
[   39.441198]  ? sock_sendmsg+0xb5/0x100
[   39.445081]  genl_rcv_msg+0xaf/0x140
[   39.449141]  netlink_rcv_skb+0x125/0x390
[   39.453531]  ? genl_family_rcv_msg+0xb20/0xb20
[   39.458239]  ? netlink_ack+0x9a0/0x9a0
[   39.462512]  ? lock_acquire+0x170/0x3f0
[   39.466488]  genl_rcv+0x24/0x40
[   39.469760]  netlink_unicast+0x437/0x610
[   39.473811]  ? netlink_sendskb+0xd0/0xd0
[   39.477980]  ? __check_object_size+0x179/0x230
[   39.482558]  netlink_sendmsg+0x62e/0xb80
[   39.486730]  ? nlmsg_notify+0x170/0x170
[   39.490694]  ? kernel_recvmsg+0x210/0x210
[   39.494833]  ? security_socket_sendmsg+0x83/0xb0
[   39.499588]  ? nlmsg_notify+0x170/0x170
[   39.503753]  sock_sendmsg+0xb5/0x100
[   39.507770]  ___sys_sendmsg+0x6c8/0x800
[   39.511900]  ? copy_msghdr_from_user+0x3b0/0x3b0
[   39.516972]  ? netlink_dump+0xad0/0xad0
[   39.520949]  ? nlmsg_notify+0x170/0x170
[   39.525240]  ? security_socket_recvmsg+0x8b/0xc0
[   39.532328]  ? SyS_recvfrom+0x27f/0x340
[   39.538541]  ? SyS_send+0x40/0x40
[   39.541997]  ? vm_insert_page+0x7c0/0x7c0
[   39.546509]  ? __fdget+0x167/0x1f0
[   39.550252]  ? sockfd_lookup_light+0xb2/0x160
[   39.554968]  __sys_sendmsg+0xa3/0x120
[   39.559310]  ? SyS_shutdown+0x160/0x160
[   39.563608]  ? up_read+0x17/0x30
[   39.567046]  ? __do_page_fault+0x159/0xad0
[   39.571793]  SyS_sendmsg+0x27/0x40
[   39.575504]  ? __sys_sendmsg+0x120/0x120
[   39.579768]  do_syscall_64+0x1d5/0x640
[   39.583666]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[   39.588910] RIP: 0033:0x4532b9
[   39.592095] RSP: 002b:00007ffc77471e38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   39.599885] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000004532b9
[   39.607337] RDX: 0000000010008010 RSI: 00000000200004c0 RDI: 0000000000000005
[   39.614741] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   39.622073] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc77471e78
[   39.629340] R13: 00007ffc77471e90 R14: 00007ffc77471ed0 R15: 0000000000000052
[   39.637399] Kernel Offset: disabled
[   39.641081] Rebooting in 86400 seconds..