Warning: Permanently added '10.128.0.250' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [   98.371194][ T9546] ==================================================================
[   98.379733][ T9546] BUG: KASAN: slab-out-of-bounds in bitmap_ipmac_list+0x635/0x1080
[   98.387616][ T9546] Read of size 8 at addr ffff8880a1405100 by task syz-executor169/9546
[   98.395837][ T9546] 
[   98.398219][ T9546] CPU: 0 PID: 9546 Comm: syz-executor169 Not tainted 5.5.0-rc6-syzkaller #0
[   98.406917][ T9546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   98.417004][ T9546] Call Trace:
[   98.420294][ T9546]  dump_stack+0x197/0x210
[   98.424622][ T9546]  ? bitmap_ipmac_list+0x635/0x1080
[   98.429823][ T9546]  print_address_description.constprop.0.cold+0xd4/0x30b
[   98.436838][ T9546]  ? bitmap_ipmac_list+0x635/0x1080
[   98.442025][ T9546]  ? bitmap_ipmac_list+0x635/0x1080
[   98.447228][ T9546]  __kasan_report.cold+0x1b/0x41
[   98.452163][ T9546]  ? bitmap_ipmac_list+0x635/0x1080
[   98.457412][ T9546]  kasan_report+0x12/0x20
[   98.461743][ T9546]  check_memory_region+0x134/0x1a0
[   98.466928][ T9546]  __kasan_check_read+0x11/0x20
[   98.471829][ T9546]  bitmap_ipmac_list+0x635/0x1080
[   98.479553][ T9546]  ? bitmap_ipmac_head+0x8a0/0x8a0
[   98.484664][ T9546]  ? nla_put+0x110/0x150
[   98.488905][ T9546]  ip_set_dump_start+0x96c/0x1ca0
[   98.493974][ T9546]  ? ip_set_rename+0x720/0x720
[   98.498729][ T9546]  ? __kmalloc_reserve.isra.0+0xf0/0xf0
[   98.504269][ T9546]  ? perf_trace_lock_acquire+0x4a0/0x530
[   98.509901][ T9546]  ? __kasan_check_write+0x14/0x20
[   98.515052][ T9546]  netlink_dump+0x558/0xfb0
[   98.519587][ T9546]  ? __netlink_sendskb+0xc0/0xc0
[   98.524566][ T9546]  __netlink_dump_start+0x66a/0x930
[   98.529768][ T9546]  ip_set_dump+0x15a/0x1d0
[   98.534220][ T9546]  ? call_ad+0x5a0/0x5a0
[   98.538649][ T9546]  ? ip_set_rename+0x720/0x720
[   98.543497][ T9546]  ? __ip_set_put_netlink.isra.0+0x90/0x90
[   98.549414][ T9546]  ? call_ad+0x5a0/0x5a0
[   98.553761][ T9546]  nfnetlink_rcv_msg+0xcf2/0xfb0
[   98.558703][ T9546]  ? nfnetlink_bind+0x2c0/0x2c0
[   98.563568][ T9546]  ? __kasan_check_read+0x11/0x20
[   98.568633][ T9546]  ? __lock_acquire+0x8a0/0x4a00
[   98.573728][ T9546]  ? save_stack+0x5c/0x90
[   98.578055][ T9546]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   98.584289][ T9546]  ? apparmor_capable+0x497/0x900
[   98.589319][ T9546]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   98.595550][ T9546]  ? __kasan_check_read+0x11/0x20
[   98.600569][ T9546]  ? apparmor_cred_prepare+0x7b0/0x7b0
[   98.606079][ T9546]  netlink_rcv_skb+0x177/0x450
[   98.610853][ T9546]  ? nfnetlink_bind+0x2c0/0x2c0
[   98.615758][ T9546]  ? netlink_ack+0xb50/0xb50
[   98.620368][ T9546]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   98.626592][ T9546]  ? ns_capable_common+0x93/0x100
[   98.631728][ T9546]  ? ns_capable+0x20/0x30
[   98.636094][ T9546]  ? __netlink_ns_capable+0x104/0x140
[   98.641462][ T9546]  nfnetlink_rcv+0x1ba/0x460
[   98.646041][ T9546]  ? nfnetlink_rcv_batch+0x17a0/0x17a0
[   98.651505][ T9546]  ? netlink_deliver_tap+0x24a/0xbe0
[   98.656784][ T9546]  ? __kasan_check_write+0x14/0x20
[   98.661885][ T9546]  netlink_unicast+0x58c/0x7d0
[   98.666714][ T9546]  ? netlink_attachskb+0x870/0x870
[   98.672036][ T9546]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[   98.677909][ T9546]  ? __check_object_size+0x3d/0x437
[   98.683112][ T9546]  netlink_sendmsg+0x91c/0xea0
[   98.687869][ T9546]  ? netlink_unicast+0x7d0/0x7d0
[   98.692889][ T9546]  ? aa_sock_msg_perm.isra.0+0xba/0x170
[   98.698423][ T9546]  ? apparmor_socket_sendmsg+0x2a/0x30
[   98.703865][ T9546]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   98.710114][ T9546]  ? security_socket_sendmsg+0x8d/0xc0
[   98.715560][ T9546]  ? netlink_unicast+0x7d0/0x7d0
[   98.720506][ T9546]  sock_sendmsg+0xd7/0x130
[   98.724918][ T9546]  ____sys_sendmsg+0x753/0x880
[   98.729672][ T9546]  ? kernel_sendmsg+0x50/0x50
[   98.734360][ T9546]  ? lockdep_init_map+0x1be/0x6d0
[   98.739389][ T9546]  ___sys_sendmsg+0x100/0x170
[   98.744071][ T9546]  ? sendmsg_copy_msghdr+0x70/0x70
[   98.749192][ T9546]  ? __kasan_check_read+0x11/0x20
[   98.754214][ T9546]  ? __lock_acquire+0x8a0/0x4a00
[   98.759154][ T9546]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   98.765395][ T9546]  ? __this_cpu_preempt_check+0x35/0x190
[   98.771083][ T9546]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   98.777445][ T9546]  ? percpu_counter_add_batch+0x13c/0x190
[   98.783257][ T9546]  ? __fd_install+0x1bc/0x640
[   98.787929][ T9546]  ? find_held_lock+0x35/0x130
[   98.792689][ T9546]  ? __fd_install+0x1bc/0x640
[   98.797456][ T9546]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   98.803756][ T9546]  ? __fget_light+0x1a9/0x230
[   98.808427][ T9546]  ? __fdget+0x1b/0x20
[   98.812494][ T9546]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   98.818735][ T9546]  __sys_sendmsg+0x105/0x1d0
[   98.823329][ T9546]  ? __sys_sendmsg_sock+0xc0/0xc0
[   98.828402][ T9546]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   98.833883][ T9546]  ? do_syscall_64+0x26/0x790
[   98.838682][ T9546]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   98.844738][ T9546]  ? do_syscall_64+0x26/0x790
[   98.849455][ T9546]  __x64_sys_sendmsg+0x78/0xb0
[   98.854226][ T9546]  do_syscall_64+0xfa/0x790
[   98.858728][ T9546]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   98.864628][ T9546] RIP: 0033:0x4402c9
[   98.868517][ T9546] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   98.888125][ T9546] RSP: 002b:00007ffc6bb185c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   98.896531][ T9546] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 00000000004402c9
[   98.904542][ T9546] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000004
[   98.912505][ T9546] RBP: 00000000006ca018 R08: 00000000004002c8 R09: 00000000004002c8
[   98.920511][ T9546] R10: 00000000004002c8 R11: 0000000000000246 R12: 0000000000401b50
[   98.928583][ T9546] R13: 0000000000401be0 R14: 0000000000000000 R15: 0000000000000000
[   98.936612][ T9546] 
[   98.938936][ T9546] Allocated by task 9546:
[   98.943396][ T9546]  save_stack+0x23/0x90
[   98.947682][ T9546]  __kasan_kmalloc.constprop.0+0xcf/0xe0
[   98.953341][ T9546]  kasan_kmalloc+0x9/0x10
[   98.957670][ T9546]  __kmalloc+0x163/0x770
[   98.961944][ T9546]  ip_set_alloc+0x38/0x5e
[   98.966383][ T9546]  bitmap_ipmac_create+0x4e8/0xa00
[   98.971480][ T9546]  ip_set_create+0x6f1/0x1500
[   98.976138][ T9546]  nfnetlink_rcv_msg+0xcf2/0xfb0
[   98.981063][ T9546]  netlink_rcv_skb+0x177/0x450
[   98.985825][ T9546]  nfnetlink_rcv+0x1ba/0x460
[   98.990449][ T9546]  netlink_unicast+0x58c/0x7d0
[   98.995216][ T9546]  netlink_sendmsg+0x91c/0xea0
[   99.000218][ T9546]  sock_sendmsg+0xd7/0x130
[   99.004619][ T9546]  ____sys_sendmsg+0x753/0x880
[   99.009381][ T9546]  ___sys_sendmsg+0x100/0x170
[   99.014055][ T9546]  __sys_sendmsg+0x105/0x1d0
[   99.018655][ T9546]  __x64_sys_sendmsg+0x78/0xb0
[   99.023419][ T9546]  do_syscall_64+0xfa/0x790
[   99.027917][ T9546]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   99.033815][ T9546] 
[   99.036137][ T9546] Freed by task 9276:
[   99.040901][ T9546]  save_stack+0x23/0x90
[   99.045163][ T9546]  __kasan_slab_free+0x102/0x150
[   99.050428][ T9546]  kasan_slab_free+0xe/0x10
[   99.054927][ T9546]  kfree+0x10a/0x2c0
[   99.058846][ T9546]  single_release+0x95/0xc0
[   99.063621][ T9546]  __fput+0x2ff/0x890
[   99.067648][ T9546]  ____fput+0x16/0x20
[   99.071782][ T9546]  task_work_run+0x145/0x1c0
[   99.076388][ T9546]  exit_to_usermode_loop+0x316/0x380
[   99.081669][ T9546]  do_syscall_64+0x676/0x790
[   99.086531][ T9546]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   99.092631][ T9546] 
[   99.095143][ T9546] The buggy address belongs to the object at ffff8880a1405100
[   99.095143][ T9546]  which belongs to the cache kmalloc-32 of size 32
[   99.109210][ T9546] The buggy address is located 0 bytes inside of
[   99.109210][ T9546]  32-byte region [ffff8880a1405100, ffff8880a1405120)
[   99.122302][ T9546] The buggy address belongs to the page:
[   99.127943][ T9546] page:ffffea0002850140 refcount:1 mapcount:0 mapping:ffff8880aa4001c0 index:0xffff8880a1405fc1
[   99.138355][ T9546] raw: 00fffe0000000200 ffffea00028db888 ffffea0002807288 ffff8880aa4001c0
[   99.147196][ T9546] raw: ffff8880a1405fc1 ffff8880a1405000 000000010000003f 0000000000000000
[   99.155978][ T9546] page dumped because: kasan: bad access detected
[   99.162386][ T9546] 
[   99.164837][ T9546] Memory state around the buggy address:
[   99.170583][ T9546]  ffff8880a1405000: fb fb fb fb fc fc fc fc fb fb fb fb fc fc fc fc
[   99.178688][ T9546]  ffff8880a1405080: fb fb fb fb fc fc fc fc fb fb fb fb fc fc fc fc
[   99.186836][ T9546] >ffff8880a1405100: 04 fc fc fc fc fc fc fc fb fb fb fb fc fc fc fc
[   99.194890][ T9546]                    ^
[   99.198985][ T9546]  ffff8880a1405180: fb fb fb fb fc fc fc fc fb fb fb fb fc fc fc fc
[   99.207041][ T9546]  ffff8880a1405200: fb fb fb fb fc fc fc fc fb fb fb fb fc fc fc fc
[   99.215091][ T9546] ==================================================================
[   99.223534][ T9546] Disabling lock debugging due to kernel taint
[   99.230594][ T9546] Kernel panic - not syncing: panic_on_warn set ...
[   99.237189][ T9546] CPU: 0 PID: 9546 Comm: syz-executor169 Tainted: G    B             5.5.0-rc6-syzkaller #0
[   99.247341][ T9546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   99.257427][ T9546] Call Trace:
[   99.260710][ T9546]  dump_stack+0x197/0x210
[   99.265446][ T9546]  panic+0x2e3/0x75c
[   99.269334][ T9546]  ? add_taint.cold+0x16/0x16
[   99.274002][ T9546]  ? bitmap_ipmac_list+0x635/0x1080
[   99.279210][ T9546]  ? preempt_schedule+0x4b/0x60
[   99.284259][ T9546]  ? ___preempt_schedule+0x16/0x18
[   99.289366][ T9546]  ? trace_hardirqs_on+0x5e/0x240
[   99.294394][ T9546]  ? bitmap_ipmac_list+0x635/0x1080
[   99.299585][ T9546]  end_report+0x47/0x4f
[   99.307551][ T9546]  ? bitmap_ipmac_list+0x635/0x1080
[   99.312738][ T9546]  __kasan_report.cold+0xe/0x41
[   99.317584][ T9546]  ? bitmap_ipmac_list+0x635/0x1080
[   99.322784][ T9546]  kasan_report+0x12/0x20
[   99.327104][ T9546]  check_memory_region+0x134/0x1a0
[   99.332198][ T9546]  __kasan_check_read+0x11/0x20
[   99.337129][ T9546]  bitmap_ipmac_list+0x635/0x1080
[   99.342143][ T9546]  ? bitmap_ipmac_head+0x8a0/0x8a0
[   99.347393][ T9546]  ? nla_put+0x110/0x150
[   99.351706][ T9546]  ip_set_dump_start+0x96c/0x1ca0
[   99.356722][ T9546]  ? ip_set_rename+0x720/0x720
[   99.361477][ T9546]  ? __kmalloc_reserve.isra.0+0xf0/0xf0
[   99.367012][ T9546]  ? perf_trace_lock_acquire+0x4a0/0x530
[   99.372731][ T9546]  ? __kasan_check_write+0x14/0x20
[   99.378177][ T9546]  netlink_dump+0x558/0xfb0
[   99.382674][ T9546]  ? __netlink_sendskb+0xc0/0xc0
[   99.387704][ T9546]  __netlink_dump_start+0x66a/0x930
[   99.392938][ T9546]  ip_set_dump+0x15a/0x1d0
[   99.397726][ T9546]  ? call_ad+0x5a0/0x5a0
[   99.402141][ T9546]  ? ip_set_rename+0x720/0x720
[   99.406934][ T9546]  ? __ip_set_put_netlink.isra.0+0x90/0x90
[   99.412728][ T9546]  ? call_ad+0x5a0/0x5a0
[   99.416966][ T9546]  nfnetlink_rcv_msg+0xcf2/0xfb0
[   99.421914][ T9546]  ? nfnetlink_bind+0x2c0/0x2c0
[   99.426764][ T9546]  ? __kasan_check_read+0x11/0x20
[   99.431788][ T9546]  ? __lock_acquire+0x8a0/0x4a00
[   99.436707][ T9546]  ? save_stack+0x5c/0x90
[   99.441030][ T9546]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   99.447439][ T9546]  ? apparmor_capable+0x497/0x900
[   99.452455][ T9546]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   99.458747][ T9546]  ? __kasan_check_read+0x11/0x20
[   99.463932][ T9546]  ? apparmor_cred_prepare+0x7b0/0x7b0
[   99.469462][ T9546]  netlink_rcv_skb+0x177/0x450
[   99.474285][ T9546]  ? nfnetlink_bind+0x2c0/0x2c0
[   99.479134][ T9546]  ? netlink_ack+0xb50/0xb50
[   99.483743][ T9546]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   99.489982][ T9546]  ? ns_capable_common+0x93/0x100
[   99.495004][ T9546]  ? ns_capable+0x20/0x30
[   99.499378][ T9546]  ? __netlink_ns_capable+0x104/0x140
[   99.504754][ T9546]  nfnetlink_rcv+0x1ba/0x460
[   99.509343][ T9546]  ? nfnetlink_rcv_batch+0x17a0/0x17a0
[   99.514889][ T9546]  ? netlink_deliver_tap+0x24a/0xbe0
[   99.520168][ T9546]  ? __kasan_check_write+0x14/0x20
[   99.525276][ T9546]  netlink_unicast+0x58c/0x7d0
[   99.530024][ T9546]  ? netlink_attachskb+0x870/0x870
[   99.535131][ T9546]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[   99.541229][ T9546]  ? __check_object_size+0x3d/0x437
[   99.546436][ T9546]  netlink_sendmsg+0x91c/0xea0
[   99.551205][ T9546]  ? netlink_unicast+0x7d0/0x7d0
[   99.556211][ T9546]  ? aa_sock_msg_perm.isra.0+0xba/0x170
[   99.561754][ T9546]  ? apparmor_socket_sendmsg+0x2a/0x30
[   99.567229][ T9546]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   99.573463][ T9546]  ? security_socket_sendmsg+0x8d/0xc0
[   99.578902][ T9546]  ? netlink_unicast+0x7d0/0x7d0
[   99.583911][ T9546]  sock_sendmsg+0xd7/0x130
[   99.588445][ T9546]  ____sys_sendmsg+0x753/0x880
[   99.593262][ T9546]  ? kernel_sendmsg+0x50/0x50
[   99.597936][ T9546]  ? lockdep_init_map+0x1be/0x6d0
[   99.602983][ T9546]  ___sys_sendmsg+0x100/0x170
[   99.607641][ T9546]  ? sendmsg_copy_msghdr+0x70/0x70
[   99.612743][ T9546]  ? __kasan_check_read+0x11/0x20
[   99.618106][ T9546]  ? __lock_acquire+0x8a0/0x4a00
[   99.623714][ T9546]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   99.629982][ T9546]  ? __this_cpu_preempt_check+0x35/0x190
[   99.635742][ T9546]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   99.641973][ T9546]  ? percpu_counter_add_batch+0x13c/0x190
[   99.647703][ T9546]  ? __fd_install+0x1bc/0x640
[   99.652365][ T9546]  ? find_held_lock+0x35/0x130
[   99.657167][ T9546]  ? __fd_install+0x1bc/0x640
[   99.661856][ T9546]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   99.668193][ T9546]  ? __fget_light+0x1a9/0x230
[   99.672854][ T9546]  ? __fdget+0x1b/0x20
[   99.676922][ T9546]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   99.683168][ T9546]  __sys_sendmsg+0x105/0x1d0
[   99.687749][ T9546]  ? __sys_sendmsg_sock+0xc0/0xc0
[   99.692775][ T9546]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   99.698235][ T9546]  ? do_syscall_64+0x26/0x790
[   99.702916][ T9546]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   99.709081][ T9546]  ? do_syscall_64+0x26/0x790
[   99.713751][ T9546]  __x64_sys_sendmsg+0x78/0xb0
[   99.718510][ T9546]  do_syscall_64+0xfa/0x790
[   99.723023][ T9546]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   99.728989][ T9546] RIP: 0033:0x4402c9
[   99.732876][ T9546] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   99.752551][ T9546] RSP: 002b:00007ffc6bb185c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   99.761167][ T9546] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 00000000004402c9
[   99.769129][ T9546] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000004
[   99.777090][ T9546] RBP: 00000000006ca018 R08: 00000000004002c8 R09: 00000000004002c8
[   99.785140][ T9546] R10: 00000000004002c8 R11: 0000000000000246 R12: 0000000000401b50
[   99.793204][ T9546] R13: 0000000000401be0 R14: 0000000000000000 R15: 0000000000000000
[   99.802686][ T9546] Kernel Offset: disabled
[   99.807016][ T9546] Rebooting in 86400 seconds..