9pnet: p9_fd_create_tcp (4529): problem connecting socket to 127.0.0.1
kasan: CONFIG_KASAN_INLINE enabled
9pnet: p9_fd_create_tcp (4535): problem connecting socket to 127.0.0.1
kasan: GPF could be caused by NULL-ptr deref or user memory access
9pnet: p9_fd_create_tcp (4531): problem connecting socket to 127.0.0.1
general protection fault: 0000 [#1] SMP KASAN
9pnet_virtio: no channels available for device (null)
CPU: 0 PID: 4518 Comm: syz-executor886 Not tainted 4.18.0-rc4+ #140
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
kasan: CONFIG_KASAN_INLINE enabled
RIP: 0010:vsscanf+0x3c1/0x2af0 lib/vsprintf.c:2966
Code: 
kasan: GPF could be caused by NULL-ptr deref or user memory access
f9 44 89 ee bf 6e 00 00 00 e8 5b 82 eb f9 41 80 fd 6e 0f 84 ce 02 00 00 e8 7c 81 eb f9 4c 89 f0 4c 89 f2 48 c1 e8 03 83 e2 07 <42> 0f b6 04 38 38 d0 7f 08 84 c0 0f 85 e8 1c 00 00 45 0f b6 26 31 
RSP: 0018:ffff8801ba7bf0e0 EFLAGS: 00010246
RAX: 0000000000000000 RBX: ffffffff888364c1 RCX: ffffffff87908a15
RDX: 0000000000000000 RSI: ffffffff87908a24 RDI: 0000000000000001
RBP: ffff8801ba7bf2b0 R08: ffff8801af6cc1c0 R09: ffff8801ba7bf4a4
R10: 0000000000000000 R11: 0000000000000000 R12: ffffffff888364c1
R13: 0000000000000064 R14: 0000000000000000 R15: dffffc0000000000
FS:  00007fb396b37700(0000) GS:ffff8801dae00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fb396af4e78 CR3: 00000001af024000 CR4: 00000000001406f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 sscanf+0xab/0xe0 lib/vsprintf.c:3172
 valid_ipaddr4 net/9p/trans_fd.c:903 [inline]
 p9_fd_create_tcp+0x113/0x8a0 net/9p/trans_fd.c:943
 p9_client_create+0x915/0x16c9 net/9p/client.c:1062
 v9fs_session_init+0x21a/0x1a80 fs/9p/v9fs.c:400
 v9fs_mount+0x7c/0x900 fs/9p/vfs_super.c:135
 mount_fs+0xae/0x328 fs/super.c:1277
 vfs_kern_mount.part.34+0xdc/0x4e0 fs/namespace.c:1037
 vfs_kern_mount fs/namespace.c:1027 [inline]
 do_new_mount fs/namespace.c:2518 [inline]
 do_mount+0x581/0x30e0 fs/namespace.c:2848
 ksys_mount+0x12d/0x140 fs/namespace.c:3064
 __do_sys_mount fs/namespace.c:3078 [inline]
 __se_sys_mount fs/namespace.c:3075 [inline]
 __x64_sys_mount+0xbe/0x150 fs/namespace.c:3075
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x445a99
Code: e8 bc e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b 0e fc ff c3 66 2e 0f 1f 84 00 00 00 00 
RSP: 002b:00007fb396b36da8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
RAX: ffffffffffffffda RBX: 00000000006dac24 RCX: 0000000000445a99
RDX: 0000000020000340 RSI: 00000000200000c0 RDI: 0000000000000000
RBP: 00000000006dac20 R08: 0000000020000180 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0030656c69662f2e
R13: 63743d736e617274 R14: 2e302e302e373231 R15: 0000000000000001
Modules linked in:
Dumping ftrace buffer:
   (ftrace buffer empty)
general protection fault: 0000 [#2] SMP KASAN
---[ end trace 339be624a7bff85d ]---
CPU: 1 PID: 4539 Comm: syz-executor886 Tainted: G      D           4.18.0-rc4+ #140
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:vsscanf+0x3c1/0x2af0 lib/vsprintf.c:2966
RIP: 0010:vsscanf+0x3c1/0x2af0 lib/vsprintf.c:2966
Code: f9 44 89 ee bf 
Code: 
6e 00 00 00 e8 5b 
f9 
82 eb f9 41 80 fd 
44 
6e 0f 84 ce 02 00 00 e8 
89 
7c 81 eb f9 4c 89 
ee 
f0 4c 89 f2 48 c1 
bf 
e8 03 83 e2 07 <42> 
6e 
0f b6 04 38 38 d0 
00 
7f 08 84 c0 0f 85 e8 
00 
1c 00 00 45 0f b6 
00 
26 31 
RSP: 0018:ffff8801bb4b70e0 EFLAGS: 00010246
e8 
RAX: 0000000000000000 RBX: ffffffff888364c1 RCX: ffffffff87908a15
RDX: 0000000000000000 RSI: ffffffff87908a24 RDI: 0000000000000001
RBP: ffff8801bb4b72b0 R08: ffff8801af5ca6c0 R09: ffff8801bb4b74a4
5b 
R10: 00000000853704de R11: ffff8801daf236b3 R12: ffffffff888364c1
R13: 0000000000000064 R14: 0000000000000000 R15: dffffc0000000000
FS:  00007fb396af5700(0000) GS:ffff8801daf00000(0000) knlGS:0000000000000000
82 
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fb396af4e78 CR3: 00000001af091000 CR4: 00000000001406e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
eb 
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
f9 
41 
80 
fd 
 sscanf+0xab/0xe0 lib/vsprintf.c:3172
6e 
0f 
84 
ce 
 valid_ipaddr4 net/9p/trans_fd.c:903 [inline]
 p9_fd_create_tcp+0x113/0x8a0 net/9p/trans_fd.c:943
02 
00 
00 
e8 
7c 
 p9_client_create+0x915/0x16c9 net/9p/client.c:1062
81 
eb 
f9 
4c 
89 
f0 
4c 
 v9fs_session_init+0x21a/0x1a80 fs/9p/v9fs.c:400
89 
f2 
48 
c1 
e8 
 v9fs_mount+0x7c/0x900 fs/9p/vfs_super.c:135
 mount_fs+0xae/0x328 fs/super.c:1277
03 
 vfs_kern_mount.part.34+0xdc/0x4e0 fs/namespace.c:1037
83 
e2 
 vfs_kern_mount fs/namespace.c:1027 [inline]
 do_new_mount fs/namespace.c:2518 [inline]
 do_mount+0x581/0x30e0 fs/namespace.c:2848
07 
<42> 
0f 
b6 
04 
 ksys_mount+0x12d/0x140 fs/namespace.c:3064
 __do_sys_mount fs/namespace.c:3078 [inline]
 __se_sys_mount fs/namespace.c:3075 [inline]
 __x64_sys_mount+0xbe/0x150 fs/namespace.c:3075
38 
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
38 
d0 
7f 
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
08 
RIP: 0033:0x445a99
Code: e8 
84 
bc e7 ff ff 48 83 c4 
c0 
18 c3 0f 1f 80 00 
0f 
00 00 00 48 89 f8 48 
85 
89 f7 48 89 d6 48 89 
e8 
ca 4d 89 c2 4d 89 
1c 
c8 4c 8b 4c 24 08 
00 
0f 05 <48> 3d 01 f0 ff 
00 
ff 0f 83 2b 0e fc ff c3 66 2e 
45 
0f 1f 84 00 00 00 
0f 
00 
RSP: 002b:00007fb396af4da8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
RAX: ffffffffffffffda RBX: 00000000006dac54 RCX: 0000000000445a99
b6 
RDX: 0000000020000340 RSI: 00000000200000c0 RDI: 0000000000000000
RBP: 00000000006dac50 R08: 0000000020000180 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0030656c69662f2e
26 
R13: 63743d736e617274 R14: 2e302e302e373231 R15: 0000000000000001
Modules linked in:
31 
Dumping ftrace buffer:
   (ftrace buffer empty)
---[ end trace 339be624a7bff85e ]---
RIP: 0010:vsscanf+0x3c1/0x2af0 lib/vsprintf.c:2966
RSP: 0018:ffff8801ba7bf0e0 EFLAGS: 00010246
Code: f9 
44 89 
RAX: 0000000000000000 RBX: ffffffff888364c1 RCX: ffffffff87908a15
ee bf 
RDX: 0000000000000000 RSI: ffffffff87908a24 RDI: 0000000000000001
6e 00 
RBP: ffff8801ba7bf2b0 R08: ffff8801af6cc1c0 R09: ffff8801ba7bf4a4
00 00 
R10: 0000000000000000 R11: 0000000000000000 R12: ffffffff888364c1
e8 5b 
R13: 0000000000000064 R14: 0000000000000000 R15: dffffc0000000000
82 eb 
FS:  00007fb396b37700(0000) GS:ffff8801dae00000(0000) knlGS:0000000000000000
f9 41 
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fb396af4e78 CR3: 00000001af024000 CR4: 00000000001406f0
80 fd 
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
6e 0f 84 
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
ce 02