check_preemption_disabled: 14 callbacks suppressed
BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor3/21614
caller is __this_cpu_preempt_check+0x13/0x20 /syzkaller/managers/android-44-kasan-gce/kernel/lib/smp_processor_id.c:62
CPU: 0 PID: 21614 Comm: syz-executor3 Not tainted 4.4.105-g8a53962 #3
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 0000000000000000 3ec6d3808b3be90d ffff8800b883f640 ffffffff81cc9b0f
 0000000000000000 ffffffff839fd4a0 ffff8800b883f680 ffffffff81d28d18
 ffffffff83ced1a0 1ffff10017107ed7 ffff8800b88cb200 ffff8800b88ca000
Call Trace:
 [<ffffffff81cc9b0f>] __dump_stack /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:15 [inline]
 [<ffffffff81cc9b0f>] dump_stack+0x8e/0xcf /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:51
 [<ffffffff81d28d18>] check_preemption_disabled+0x1b8/0x1f0 /syzkaller/managers/android-44-kasan-gce/kernel/lib/smp_processor_id.c:46
 [<ffffffff81d28d83>] __this_cpu_preempt_check+0x13/0x20 /syzkaller/managers/android-44-kasan-gce/kernel/lib/smp_processor_id.c:62
 [<ffffffff830dc140>] tcp_try_coalesce+0x200/0x4b0 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp_input.c:4278
 [<ffffffff830e5c2e>] tcp_queue_rcv+0xfe/0x720 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp_input.c:4485
 [<ffffffff830ffe91>] tcp_send_rcvq+0x391/0x4a0 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp_input.c:4531
 [<ffffffff830d208c>] tcp_sendmsg+0x1d1c/0x36a0 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp.c:1134
 [<ffffffff8319020c>] inet_sendmsg+0x26c/0x430 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/af_inet.c:755
 [<ffffffff82d93fc5>] sock_sendmsg_nosec /syzkaller/managers/android-44-kasan-gce/kernel/net/socket.c:625 [inline]
 [<ffffffff82d93fc5>] sock_sendmsg+0xb5/0xf0 /syzkaller/managers/android-44-kasan-gce/kernel/net/socket.c:635
 [<ffffffff82d941ea>] sock_write_iter+0x1ea/0x3d0 /syzkaller/managers/android-44-kasan-gce/kernel/net/socket.c:834
 [<ffffffff814f7d87>] do_iter_readv_writev+0xf7/0x1d0 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:664
 [<ffffffff814f93de>] do_readv_writev+0x27e/0x660 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:808
 [<ffffffff814f98bd>] vfs_writev+0x5d/0xa0 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:847
 [<ffffffff814fbf53>] SYSC_writev /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:880 [inline]
 [<ffffffff814fbf53>] SyS_writev+0xd3/0x260 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:872
 [<ffffffff8374aaf6>] entry_SYSCALL_64_fastpath+0x16/0x76
nla_parse: 10 callbacks suppressed
netlink: 1 bytes leftover after parsing attributes in process `syz-executor4'.
netlink: 1 bytes leftover after parsing attributes in process `syz-executor4'.
netlink: 1 bytes leftover after parsing attributes in process `syz-executor4'.
netlink: 1 bytes leftover after parsing attributes in process `syz-executor4'.
PF_BRIDGE: RTM_SETLINK with unknown ifindex
netlink: 6 bytes leftover after parsing attributes in process `syz-executor6'.
netlink: 6 bytes leftover after parsing attributes in process `syz-executor6'.
PF_BRIDGE: RTM_SETLINK with unknown ifindex
netlink: 6 bytes leftover after parsing attributes in process `syz-executor4'.
netlink: 6 bytes leftover after parsing attributes in process `syz-executor4'.
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 0 PID: 22354 Comm: syz-executor6 Not tainted 4.4.105-g8a53962 #3
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 0000000000000000 9aa88ba791766f73 ffff8801d5a27a20 ffffffff81cc9b0f
 1ffff1003ab44f4f 0000000000000030 ffff8801d5a27bc0 ffffffff815db6db
 ffff8800b7adb460 ffff8800b7adb460 ffff8800b7adb460 ffff8801d5a27b98
Call Trace:
 [<ffffffff81cc9b0f>] __dump_stack /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:15 [inline]
 [<ffffffff81cc9b0f>] dump_stack+0x8e/0xcf /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:51
 [<ffffffff815db6db>] handle_userfault+0x75b/0x1570 /syzkaller/managers/android-44-kasan-gce/kernel/fs/userfaultfd.c:316
 [<ffffffff81481ec1>] do_anonymous_page /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:2731 [inline]
 [<ffffffff81481ec1>] handle_pte_fault /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:3295 [inline]
 [<ffffffff81481ec1>] __handle_mm_fault /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:3426 [inline]
 [<ffffffff81481ec1>] handle_mm_fault+0x2731/0x39b0 /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:3455
 [<ffffffff810d7b90>] __do_page_fault+0x2d0/0x910 /syzkaller/managers/android-44-kasan-gce/kernel/arch/x86/mm/fault.c:1245
 [<ffffffff810d81f2>] do_page_fault+0x22/0x30 /syzkaller/managers/android-44-kasan-gce/kernel/arch/x86/mm/fault.c:1308
 [<ffffffff8374cbd8>] page_fault+0x28/0x30 /syzkaller/managers/android-44-kasan-gce/kernel/arch/x86/entry/entry_64.S:985
 [<ffffffff8374aaf6>] entry_SYSCALL_64_fastpath+0x16/0x76
device gre0 entered promiscuous mode
IPv6: ADDRCONF(NETDEV_UP): gre0: link is not ready
BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor6/23012
caller is __this_cpu_preempt_check+0x13/0x20 /syzkaller/managers/android-44-kasan-gce/kernel/lib/smp_processor_id.c:62
CPU: 1 PID: 23012 Comm: syz-executor6 Not tainted 4.4.105-g8a53962 #3
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 0000000000000000 808248af0568b8e7 ffff8801d73c7640 ffffffff81cc9b0f
 0000000000000001 ffffffff839fd4a0 ffff8801d73c7680 ffffffff81d28d18
 ffffffff83ced1a0 1ffff1003ae78ed7 ffff8800b88ca900 ffff8800b88ca6c0
Call Trace:
 [<ffffffff81cc9b0f>] __dump_stack /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:15 [inline]
 [<ffffffff81cc9b0f>] dump_stack+0x8e/0xcf /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:51
 [<ffffffff81d28d18>] check_preemption_disabled+0x1b8/0x1f0 /syzkaller/managers/android-44-kasan-gce/kernel/lib/smp_processor_id.c:46
 [<ffffffff81d28d83>] __this_cpu_preempt_check+0x13/0x20 /syzkaller/managers/android-44-kasan-gce/kernel/lib/smp_processor_id.c:62
 [<ffffffff830dc140>] tcp_try_coalesce+0x200/0x4b0 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp_input.c:4278
 [<ffffffff830e5c2e>] tcp_queue_rcv+0xfe/0x720 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp_input.c:4485
 [<ffffffff830ffe91>] tcp_send_rcvq+0x391/0x4a0 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp_input.c:4531
 [<ffffffff830d208c>] tcp_sendmsg+0x1d1c/0x36a0 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp.c:1134
 [<ffffffff8319020c>] inet_sendmsg+0x26c/0x430 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/af_inet.c:755
 [<ffffffff82d93fc5>] sock_sendmsg_nosec /syzkaller/managers/android-44-kasan-gce/kernel/net/socket.c:625 [inline]
 [<ffffffff82d93fc5>] sock_sendmsg+0xb5/0xf0 /syzkaller/managers/android-44-kasan-gce/kernel/net/socket.c:635
 [<ffffffff82d941ea>] sock_write_iter+0x1ea/0x3d0 /syzkaller/managers/android-44-kasan-gce/kernel/net/socket.c:834
 [<ffffffff814f7d87>] do_iter_readv_writev+0xf7/0x1d0 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:664
 [<ffffffff814f93de>] do_readv_writev+0x27e/0x660 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:808
 [<ffffffff814f98bd>] vfs_writev+0x5d/0xa0 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:847
 [<ffffffff814fbf53>] SYSC_writev /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:880 [inline]
 [<ffffffff814fbf53>] SyS_writev+0xd3/0x260 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:872
 [<ffffffff8374aaf6>] entry_SYSCALL_64_fastpath+0x16/0x76
BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor6/23012
caller is __this_cpu_preempt_check+0x13/0x20 /syzkaller/managers/android-44-kasan-gce/kernel/lib/smp_processor_id.c:62
CPU: 1 PID: 23012 Comm: syz-executor6 Not tainted 4.4.105-g8a53962 #3
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 0000000000000000 808248af0568b8e7 ffff8801d73c7640 ffffffff81cc9b0f
 0000000000000001 ffffffff839fd4a0 ffff8801d73c7680 ffffffff81d28d18
 ffffffff83ced1a0 1ffff1003ae78ed7 ffff8800b88cb680 ffff8800b88cafc0
Call Trace:
 [<ffffffff81cc9b0f>] __dump_stack /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:15 [inline]
 [<ffffffff81cc9b0f>] dump_stack+0x8e/0xcf /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:51
 [<ffffffff81d28d18>] check_preemption_disabled+0x1b8/0x1f0 /syzkaller/managers/android-44-kasan-gce/kernel/lib/smp_processor_id.c:46
 [<ffffffff81d28d83>] __this_cpu_preempt_check+0x13/0x20 /syzkaller/managers/android-44-kasan-gce/kernel/lib/smp_processor_id.c:62
 [<ffffffff830dc140>] tcp_try_coalesce+0x200/0x4b0 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp_input.c:4278
 [<ffffffff830e5c2e>] tcp_queue_rcv+0xfe/0x720 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp_input.c:4485
 [<ffffffff830ffe91>] tcp_send_rcvq+0x391/0x4a0 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp_input.c:4531
 [<ffffffff830d208c>] tcp_sendmsg+0x1d1c/0x36a0 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp.c:1134
 [<ffffffff8319020c>] inet_sendmsg+0x26c/0x430 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/af_inet.c:755
 [<ffffffff82d93fc5>] sock_sendmsg_nosec /syzkaller/managers/android-44-kasan-gce/kernel/net/socket.c:625 [inline]
 [<ffffffff82d93fc5>] sock_sendmsg+0xb5/0xf0 /syzkaller/managers/android-44-kasan-gce/kernel/net/socket.c:635
 [<ffffffff82d941ea>] sock_write_iter+0x1ea/0x3d0 /syzkaller/managers/android-44-kasan-gce/kernel/net/socket.c:834
 [<ffffffff814f7d87>] do_iter_readv_writev+0xf7/0x1d0 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:664
 [<ffffffff814f93de>] do_readv_writev+0x27e/0x660 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:808
 [<ffffffff814f98bd>] vfs_writev+0x5d/0xa0 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:847
 [<ffffffff814fbf53>] SYSC_writev /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:880 [inline]
 [<ffffffff814fbf53>] SyS_writev+0xd3/0x260 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:872
 [<ffffffff8374aaf6>] entry_SYSCALL_64_fastpath+0x16/0x76
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=16009 sclass=netlink_route_socket
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=16009 sclass=netlink_route_socket
BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor1/23585
caller is __this_cpu_preempt_check+0x13/0x20 /syzkaller/managers/android-44-kasan-gce/kernel/lib/smp_processor_id.c:62
CPU: 1 PID: 23585 Comm: syz-executor1 Not tainted 4.4.105-g8a53962 #3
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 0000000000000000 0c331b825242ce10 ffff8801d23f7640 ffffffff81cc9b0f
 0000000000000001 ffffffff839fd4a0 ffff8801d23f7680 ffffffff81d28d18
 ffffffff83ced1a0 1ffff1003a47eed7 ffff8801d0ea46c0 ffff8801d0ea4480
Call Trace:
 [<ffffffff81cc9b0f>] __dump_stack /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:15 [inline]
 [<ffffffff81cc9b0f>] dump_stack+0x8e/0xcf /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:51
 [<ffffffff81d28d18>] check_preemption_disabled+0x1b8/0x1f0 /syzkaller/managers/android-44-kasan-gce/kernel/lib/smp_processor_id.c:46
 [<ffffffff81d28d83>] __this_cpu_preempt_check+0x13/0x20 /syzkaller/managers/android-44-kasan-gce/kernel/lib/smp_processor_id.c:62
 [<ffffffff830dc140>] tcp_try_coalesce+0x200/0x4b0 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp_input.c:4278
PF_BRIDGE: RTM_SETLINK with unknown ifindex
 [<ffffffff830e5c2e>] tcp_queue_rcv+0xfe/0x720 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp_input.c:4485
 [<ffffffff830ffe91>] tcp_send_rcvq+0x391/0x4a0 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp_input.c:4531
PF_BRIDGE: RTM_SETLINK with unknown ifindex
 [<ffffffff830d208c>] tcp_sendmsg+0x1d1c/0x36a0 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp.c:1134
 [<ffffffff8319020c>] inet_sendmsg+0x26c/0x430 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/af_inet.c:755
 [<ffffffff82d93fc5>] sock_sendmsg_nosec /syzkaller/managers/android-44-kasan-gce/kernel/net/socket.c:625 [inline]
 [<ffffffff82d93fc5>] sock_sendmsg+0xb5/0xf0 /syzkaller/managers/android-44-kasan-gce/kernel/net/socket.c:635
 [<ffffffff82d941ea>] sock_write_iter+0x1ea/0x3d0 /syzkaller/managers/android-44-kasan-gce/kernel/net/socket.c:834
 [<ffffffff814f7d87>] do_iter_readv_writev+0xf7/0x1d0 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:664
 [<ffffffff814f93de>] do_readv_writev+0x27e/0x660 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:808
 [<ffffffff814f98bd>] vfs_writev+0x5d/0xa0 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:847
 [<ffffffff814fbf53>] SYSC_writev /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:880 [inline]
 [<ffffffff814fbf53>] SyS_writev+0xd3/0x260 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:872
 [<ffffffff8374aaf6>] entry_SYSCALL_64_fastpath+0x16/0x76
BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor1/23585
caller is __this_cpu_preempt_check+0x13/0x20 /syzkaller/managers/android-44-kasan-gce/kernel/lib/smp_processor_id.c:62
CPU: 0 PID: 23585 Comm: syz-executor1 Not tainted 4.4.105-g8a53962 #3
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 0000000000000000 0c331b825242ce10 ffff8801d23f7640 ffffffff81cc9b0f
 0000000000000000 ffffffff839fd4a0 ffff8801d23f7680 ffffffff81d28d18
 ffffffff83ced1a0 1ffff1003a47eed7 ffff8801d0ea46c0 ffff8801d0ea5200
Call Trace:
 [<ffffffff81cc9b0f>] __dump_stack /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:15 [inline]
 [<ffffffff81cc9b0f>] dump_stack+0x8e/0xcf /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:51
 [<ffffffff81d28d18>] check_preemption_disabled+0x1b8/0x1f0 /syzkaller/managers/android-44-kasan-gce/kernel/lib/smp_processor_id.c:46
 [<ffffffff81d28d83>] __this_cpu_preempt_check+0x13/0x20 /syzkaller/managers/android-44-kasan-gce/kernel/lib/smp_processor_id.c:62
 [<ffffffff830dc140>] tcp_try_coalesce+0x200/0x4b0 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp_input.c:4278
 [<ffffffff830e5c2e>] tcp_queue_rcv+0xfe/0x720 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp_input.c:4485
 [<ffffffff830ffe91>] tcp_send_rcvq+0x391/0x4a0 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp_input.c:4531
 [<ffffffff830d208c>] tcp_sendmsg+0x1d1c/0x36a0 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp.c:1134
 [<ffffffff8319020c>] inet_sendmsg+0x26c/0x430 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/af_inet.c:755
 [<ffffffff82d93fc5>] sock_sendmsg_nosec /syzkaller/managers/android-44-kasan-gce/kernel/net/socket.c:625 [inline]
 [<ffffffff82d93fc5>] sock_sendmsg+0xb5/0xf0 /syzkaller/managers/android-44-kasan-gce/kernel/net/socket.c:635
 [<ffffffff82d941ea>] sock_write_iter+0x1ea/0x3d0 /syzkaller/managers/android-44-kasan-gce/kernel/net/socket.c:834
 [<ffffffff814f7d87>] do_iter_readv_writev+0xf7/0x1d0 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:664
 [<ffffffff814f93de>] do_readv_writev+0x27e/0x660 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:808
 [<ffffffff814f98bd>] vfs_writev+0x5d/0xa0 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:847
 [<ffffffff814fbf53>] SYSC_writev /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:880 [inline]
 [<ffffffff814fbf53>] SyS_writev+0xd3/0x260 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:872
 [<ffffffff8374aaf6>] entry_SYSCALL_64_fastpath+0x16/0x76
device gre0 entered promiscuous mode
device gre0 entered promiscuous mode
IPv6: ADDRCONF(NETDEV_UP): gre0: link is not ready
BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor4/23746
caller is __this_cpu_preempt_check+0x13/0x20 /syzkaller/managers/android-44-kasan-gce/kernel/lib/smp_processor_id.c:62
CPU: 1 PID: 23746 Comm: syz-executor4 Not tainted 4.4.105-g8a53962 #3
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
FAULT_FLAG_ALLOW_RETRY missing 30
FAULT_FLAG_ALLOW_RETRY missing 30
 0000000000000000 499e9703cabd6a33 ffff8800b9517640 ffffffff81cc9b0f
 0000000000000001 ffffffff839fd4a0 ffff8800b9517680 ffffffff81d28d18
 ffffffff83ced1a0 1ffff100172a2ed7 ffff8800b42da240 ffff8800b42dbd40
Call Trace:
 [<ffffffff81cc9b0f>] __dump_stack /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:15 [inline]
 [<ffffffff81cc9b0f>] dump_stack+0x8e/0xcf /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:51
 [<ffffffff81d28d18>] check_preemption_disabled+0x1b8/0x1f0 /syzkaller/managers/android-44-kasan-gce/kernel/lib/smp_processor_id.c:46
 [<ffffffff81d28d83>] __this_cpu_preempt_check+0x13/0x20 /syzkaller/managers/android-44-kasan-gce/kernel/lib/smp_processor_id.c:62
 [<ffffffff830dc140>] tcp_try_coalesce+0x200/0x4b0 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp_input.c:4278
 [<ffffffff830e5c2e>] tcp_queue_rcv+0xfe/0x720 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp_input.c:4485
 [<ffffffff830ffe91>] tcp_send_rcvq+0x391/0x4a0 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp_input.c:4531
 [<ffffffff830d208c>] tcp_sendmsg+0x1d1c/0x36a0 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp.c:1134
 [<ffffffff8319020c>] inet_sendmsg+0x26c/0x430 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/af_inet.c:755
 [<ffffffff82d93fc5>] sock_sendmsg_nosec /syzkaller/managers/android-44-kasan-gce/kernel/net/socket.c:625 [inline]
 [<ffffffff82d93fc5>] sock_sendmsg+0xb5/0xf0 /syzkaller/managers/android-44-kasan-gce/kernel/net/socket.c:635
 [<ffffffff82d941ea>] sock_write_iter+0x1ea/0x3d0 /syzkaller/managers/android-44-kasan-gce/kernel/net/socket.c:834
 [<ffffffff814f7d87>] do_iter_readv_writev+0xf7/0x1d0 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:664
 [<ffffffff814f93de>] do_readv_writev+0x27e/0x660 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:808
 [<ffffffff814f98bd>] vfs_writev+0x5d/0xa0 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:847
 [<ffffffff814fbf53>] SYSC_writev /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:880 [inline]
 [<ffffffff814fbf53>] SyS_writev+0xd3/0x260 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:872
 [<ffffffff8374aaf6>] entry_SYSCALL_64_fastpath+0x16/0x76
CPU: 0 PID: 23723 Comm: syz-executor1 Not tainted 4.4.105-g8a53962 #3
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 0000000000000000 0b71a8c14e4d6760 ffff8800b7abf550 ffffffff81cc9b0f
 1ffff10016f57eb5 0000000000000030 ffff8800b7abf6f0 ffffffff815db6db
 ffff8800b91d17a0 ffff8800b91d17a0 ffff8800b91d17a0 ffff8800b7abf6c8
Call Trace:
 [<ffffffff81cc9b0f>] __dump_stack /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:15 [inline]
 [<ffffffff81cc9b0f>] dump_stack+0x8e/0xcf /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:51
 [<ffffffff815db6db>] handle_userfault+0x75b/0x1570 /syzkaller/managers/android-44-kasan-gce/kernel/fs/userfaultfd.c:316
binder: 23764:23772 ioctl c0306201 2000d000 returned -14
binder: 23764:23772 ioctl 5405 2000bfec returned -22
binder: release 23764:23772 transaction 5 in, still active
binder: send failed reply for transaction 5 to 23764:23777
binder: 23764:23772 got reply transaction with no transaction stack
binder: 23764:23772 transaction failed 29201/-71, size 24-8 line 2924
binder: undelivered TRANSACTION_ERROR: 29201
binder: BINDER_SET_CONTEXT_MGR already set
binder: 23764:23772 ioctl 40046207 0 returned -16
binder: undelivered TRANSACTION_COMPLETE
binder: undelivered TRANSACTION_ERROR: 29189
 [<ffffffff81481ec1>] do_anonymous_page /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:2731 [inline]
 [<ffffffff81481ec1>] handle_pte_fault /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:3295 [inline]
 [<ffffffff81481ec1>] __handle_mm_fault /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:3426 [inline]
 [<ffffffff81481ec1>] handle_mm_fault+0x2731/0x39b0 /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:3455
 [<ffffffff810d7b90>] __do_page_fault+0x2d0/0x910 /syzkaller/managers/android-44-kasan-gce/kernel/arch/x86/mm/fault.c:1245
 [<ffffffff810d81f2>] do_page_fault+0x22/0x30 /syzkaller/managers/android-44-kasan-gce/kernel/arch/x86/mm/fault.c:1308
 [<ffffffff8374cbd8>] page_fault+0x28/0x30 /syzkaller/managers/android-44-kasan-gce/kernel/arch/x86/entry/entry_64.S:985
 [<ffffffff81538987>] SYSC_poll /syzkaller/managers/android-44-kasan-gce/kernel/fs/select.c:969 [inline]
 [<ffffffff81538987>] SyS_poll+0xf7/0x3b0 /syzkaller/managers/android-44-kasan-gce/kernel/fs/select.c:957
 [<ffffffff8374aaf6>] entry_SYSCALL_64_fastpath+0x16/0x76
CPU: 1 PID: 23736 Comm: syz-executor1 Not tainted 4.4.105-g8a53962 #3
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 0000000000000000 7aa683de5632bf59 ffff8801d5907a20 ffffffff81cc9b0f
 1ffff1003ab20f4f 0000000000000030 ffff8801d5907bc0 ffffffff815db6db
 ffff8800b91d17a0 ffff8800b91d17a0 ffff8800b91d17a0 ffff8801d5907b98
Call Trace:
 [<ffffffff81cc9b0f>] __dump_stack /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:15 [inline]
 [<ffffffff81cc9b0f>] dump_stack+0x8e/0xcf /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:51
 [<ffffffff815db6db>] handle_userfault+0x75b/0x1570 /syzkaller/managers/android-44-kasan-gce/kernel/fs/userfaultfd.c:316
 [<ffffffff81481ec1>] do_anonymous_page /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:2731 [inline]
 [<ffffffff81481ec1>] handle_pte_fault /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:3295 [inline]
 [<ffffffff81481ec1>] __handle_mm_fault /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:3426 [inline]
 [<ffffffff81481ec1>] handle_mm_fault+0x2731/0x39b0 /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:3455
 [<ffffffff810d7b90>] __do_page_fault+0x2d0/0x910 /syzkaller/managers/android-44-kasan-gce/kernel/arch/x86/mm/fault.c:1245
 [<ffffffff810d81f2>] do_page_fault+0x22/0x30 /syzkaller/managers/android-44-kasan-gce/kernel/arch/x86/mm/fault.c:1308
 [<ffffffff8374cbd8>] page_fault+0x28/0x30 /syzkaller/managers/android-44-kasan-gce/kernel/arch/x86/entry/entry_64.S:985
 [<ffffffff8374aaf6>] entry_SYSCALL_64_fastpath+0x16/0x76
device gre0 entered promiscuous mode
netlink: 1 bytes leftover after parsing attributes in process `syz-executor3'.
FAULT_FLAG_ALLOW_RETRY missing 30
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 1 PID: 23841 Comm: syz-executor0 Not tainted 4.4.105-g8a53962 #3
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 0000000000000000[  104.199216] netlink: 1 bytes leftover after parsing attributes in process `syz-executor3'.
 340fac58ed499ec8 ffff8801d58ff550 ffffffff81cc9b0f
 1ffff1003ab1feb5 0000000000000030 ffff8801d58ff6f0 ffffffff815db6db
 ffff8800b91d11e0 ffff8800b91d11e0 ffff8800b91d11e0 ffff8801d58ff6c8
Call Trace:
 [<ffffffff81cc9b0f>] __dump_stack /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:15 [inline]
 [<ffffffff81cc9b0f>] dump_stack+0x8e/0xcf /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:51
 [<ffffffff815db6db>] handle_userfault+0x75b/0x1570 /syzkaller/managers/android-44-kasan-gce/kernel/fs/userfaultfd.c:316
 [<ffffffff81481ec1>] do_anonymous_page /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:2731 [inline]
 [<ffffffff81481ec1>] handle_pte_fault /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:3295 [inline]
 [<ffffffff81481ec1>] __handle_mm_fault /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:3426 [inline]
 [<ffffffff81481ec1>] handle_mm_fault+0x2731/0x39b0 /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:3455
 [<ffffffff810d7b90>] __do_page_fault+0x2d0/0x910 /syzkaller/managers/android-44-kasan-gce/kernel/arch/x86/mm/fault.c:1245
 [<ffffffff810d81f2>] do_page_fault+0x22/0x30 /syzkaller/managers/android-44-kasan-gce/kernel/arch/x86/mm/fault.c:1308
 [<ffffffff8374cbd8>] page_fault+0x28/0x30 /syzkaller/managers/android-44-kasan-gce/kernel/arch/x86/entry/entry_64.S:985
 [<ffffffff81538987>] SYSC_poll /syzkaller/managers/android-44-kasan-gce/kernel/fs/select.c:969 [inline]
 [<ffffffff81538987>] SyS_poll+0xf7/0x3b0 /syzkaller/managers/android-44-kasan-gce/kernel/fs/select.c:957
 [<ffffffff8374aaf6>] entry_SYSCALL_64_fastpath+0x16/0x76
CPU: 0 PID: 23853 Comm: syz-executor0 Not tainted 4.4.105-g8a53962 #3
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 0000000000000000 16bea6dbbf35a7ca ffff8800b961fa20 ffffffff81cc9b0f
 1ffff100172c3f4f 0000000000000030 ffff8800b961fbc0 ffffffff815db6db
 ffff8800b91d11e0 ffff8800b91d11e0 ffff8800b91d11e0 ffff8800b961fb98
Call Trace:
 [<ffffffff81cc9b0f>] __dump_stack /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:15 [inline]
 [<ffffffff81cc9b0f>] dump_stack+0x8e/0xcf /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:51
 [<ffffffff815db6db>] handle_userfault+0x75b/0x1570 /syzkaller/managers/android-44-kasan-gce/kernel/fs/userfaultfd.c:316
 [<ffffffff81481ec1>] do_anonymous_page /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:2731 [inline]
 [<ffffffff81481ec1>] handle_pte_fault /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:3295 [inline]
 [<ffffffff81481ec1>] __handle_mm_fault /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:3426 [inline]
 [<ffffffff81481ec1>] handle_mm_fault+0x2731/0x39b0 /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:3455
 [<ffffffff810d7b90>] __do_page_fault+0x2d0/0x910 /syzkaller/managers/android-44-kasan-gce/kernel/arch/x86/mm/fault.c:1245
 [<ffffffff810d81f2>] do_page_fault+0x22/0x30 /syzkaller/managers/android-44-kasan-gce/kernel/arch/x86/mm/fault.c:1308
 [<ffffffff8374cbd8>] page_fault+0x28/0x30 /syzkaller/managers/android-44-kasan-gce/kernel/arch/x86/entry/entry_64.S:985
 [<ffffffff8374aaf6>] entry_SYSCALL_64_fastpath+0x16/0x76
FAULT_FLAG_ALLOW_RETRY missing 30
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 1 PID: 23891 Comm: syz-executor0 Not tainted 4.4.105-g8a53962 #3
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 0000000000000000 c7999d4f5ee05e10 ffff8800b90f7a20 ffffffff81cc9b0f
 1ffff1001721ef4f 0000000000000030 ffff8800b90f7bc0 ffffffff815db6db
 ffff8800b91d11e0 ffff8800b91d11e0 ffff8800b91d11e0 ffff8800b90f7b98
Call Trace:
 [<ffffffff81cc9b0f>] __dump_stack /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:15 [inline]
 [<ffffffff81cc9b0f>] dump_stack+0x8e/0xcf /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:51
 [<ffffffff815db6db>] handle_userfault+0x75b/0x1570 /syzkaller/managers/android-44-kasan-gce/kernel/fs/userfaultfd.c:316
 [<ffffffff81481ec1>] do_anonymous_page /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:2731 [inline]
 [<ffffffff81481ec1>] handle_pte_fault /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:3295 [inline]
 [<ffffffff81481ec1>] __handle_mm_fault /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:3426 [inline]
 [<ffffffff81481ec1>] handle_mm_fault+0x2731/0x39b0 /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:3455
 [<ffffffff810d7b90>] __do_page_fault+0x2d0/0x910 /syzkaller/managers/android-44-kasan-gce/kernel/arch/x86/mm/fault.c:1245
 [<ffffffff810d81f2>] do_page_fault+0x22/0x30 /syzkaller/managers/android-44-kasan-gce/kernel/arch/x86/mm/fault.c:1308
 [<ffffffff8374cbd8>] page_fault+0x28/0x30 /syzkaller/managers/android-44-kasan-gce/kernel/arch/x86/entry/entry_64.S:985
 [<ffffffff8374aaf6>] entry_SYSCALL_64_fastpath+0x16/0x76
CPU: 1 PID: 23861 Comm: syz-executor0 Not tainted 4.4.105-g8a53962 #3
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 0000000000000000 97b665ca5c3d539b ffff8801d2c77550 ffffffff81cc9b0f
 1ffff1003a58eeb5 0000000000000030 ffff8801d2c776f0 ffffffff815db6db
 ffff8800b91d11e0 ffff8800b91d11e0 ffff8800b91d11e0 ffff8801d2c776c8
Call Trace:
 [<ffffffff81cc9b0f>] __dump_stack /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:15 [inline]
 [<ffffffff81cc9b0f>] dump_stack+0x8e/0xcf /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:51
 [<ffffffff815db6db>] handle_userfault+0x75b/0x1570 /syzkaller/managers/android-44-kasan-gce/kernel/fs/userfaultfd.c:316
 [<ffffffff81481ec1>] do_anonymous_page /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:2731 [inline]
 [<ffffffff81481ec1>] handle_pte_fault /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:3295 [inline]
 [<ffffffff81481ec1>] __handle_mm_fault /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:3426 [inline]
 [<ffffffff81481ec1>] handle_mm_fault+0x2731/0x39b0 /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:3455
 [<ffffffff810d7b90>] __do_page_fault+0x2d0/0x910 /syzkaller/managers/android-44-kasan-gce/kernel/arch/x86/mm/fault.c:1245
 [<ffffffff810d81f2>] do_page_fault+0x22/0x30 /syzkaller/managers/android-44-kasan-gce/kernel/arch/x86/mm/fault.c:1308
 [<ffffffff8374cbd8>] page_fault+0x28/0x30 /syzkaller/managers/android-44-kasan-gce/kernel/arch/x86/entry/entry_64.S:985
 [<ffffffff81538987>] SYSC_poll /syzkaller/managers/android-44-kasan-gce/kernel/fs/select.c:969 [inline]
 [<ffffffff81538987>] SyS_poll+0xf7/0x3b0 /syzkaller/managers/android-44-kasan-gce/kernel/fs/select.c:957
 [<ffffffff8374aaf6>] entry_SYSCALL_64_fastpath+0x16/0x76
binder: 23990:23992 got reply transaction with no transaction stack
binder: 23990:23992 transaction failed 29201/-71, size 0-8 line 2924
BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor6/24000
caller is __this_cpu_preempt_check+0x13/0x20 /syzkaller/managers/android-44-kasan-gce/kernel/lib/smp_processor_id.c:62
CPU: 0 PID: 24000 Comm: syz-executor6 Not tainted 4.4.105-g8a53962 #3
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 0000000000000000 b382b994e61b5177 ffff8800b5777640 ffffffff81cc9b0f
 0000000000000000 ffffffff839fd4a0 ffff8800b5777680 ffffffff81d28d18
 ffffffff83ced1a0 1ffff10016aeeed7 ffff8800b42da000 ffff8800b42db440
Call Trace:
 [<ffffffff81cc9b0f>] __dump_stack /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:15 [inline]
 [<ffffffff81cc9b0f>] dump_stack+0x8e/0xcf /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:51
 [<ffffffff81d28d18>] check_preemption_disabled+0x1b8/0x1f0 /syzkaller/managers/android-44-kasan-gce/kernel/lib/smp_processor_id.c:46
 [<ffffffff81d28d83>] __this_cpu_preempt_check+0x13/0x20 /syzkaller/managers/android-44-kasan-gce/kernel/lib/smp_processor_id.c:62
 [<ffffffff830dc140>] tcp_try_coalesce+0x200/0x4b0 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp_input.c:4278
 [<ffffffff830e5c2e>] tcp_queue_rcv+0xfe/0x720 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp_input.c:4485
 [<ffffffff830ffe91>] tcp_send_rcvq+0x391/0x4a0 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp_input.c:4531
 [<ffffffff830d208c>] tcp_sendmsg+0x1d1c/0x36a0 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp.c:1134
 [<ffffffff8319020c>] inet_sendmsg+0x26c/0x430 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/af_inet.c:755
 [<ffffffff82d93fc5>] sock_sendmsg_nosec /syzkaller/managers/android-44-kasan-gce/kernel/net/socket.c:625 [inline]
 [<ffffffff82d93fc5>] sock_sendmsg+0xb5/0xf0 /syzkaller/managers/android-44-kasan-gce/kernel/net/socket.c:635
 [<ffffffff82d941ea>] sock_write_iter+0x1ea/0x3d0 /syzkaller/managers/android-44-kasan-gce/kernel/net/socket.c:834
 [<ffffffff814f7d87>] do_iter_readv_writev+0xf7/0x1d0 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:664
 [<ffffffff814f93de>] do_readv_writev+0x27e/0x660 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:808
 [<ffffffff814f98bd>] vfs_writev+0x5d/0xa0 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:847
 [<ffffffff814fbf53>] SYSC_writev /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:880 [inline]
 [<ffffffff814fbf53>] SyS_writev+0xd3/0x260 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:872
 [<ffffffff8374aaf6>] entry_SYSCALL_64_fastpath+0x16/0x76
binder: 23990:23992 ioctl c018620b 2000bfe8 returned -14
binder: release 23990:23992 transaction 9 in, still active
binder: send failed reply for transaction 9 to 23990:24001
BUG: using __this_cpu_add() in preemptible [00000000] code: syz-executor6/24000
caller is __this_cpu_preempt_check+0x13/0x20 /syzkaller/managers/android-44-kasan-gce/kernel/lib/smp_processor_id.c:62
CPU: 0 PID: 24000 Comm: syz-executor6 Not tainted 4.4.105-g8a53962 #3
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 0000000000000000 b382b994e61b5177 ffff8800b5777640 ffffffff81cc9b0f
 0000000000000000 ffffffff839fd4a0 ffff8800b5777680 ffffffff81d28d18
 ffffffff83ced1a0 1ffff10016aeeed7 ffff8800b42da000 ffff8800b42db200
Call Trace:
 [<ffffffff81cc9b0f>] __dump_stack /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:15 [inline]
 [<ffffffff81cc9b0f>] dump_stack+0x8e/0xcf /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:51
 [<ffffffff81d28d18>] check_preemption_disabled+0x1b8/0x1f0 /syzkaller/managers/android-44-kasan-gce/kernel/lib/smp_processor_id.c:46
 [<ffffffff81d28d83>] __this_cpu_preempt_check+0x13/0x20 /syzkaller/managers/android-44-kasan-gce/kernel/lib/smp_processor_id.c:62
 [<ffffffff830dc140>] tcp_try_coalesce+0x200/0x4b0 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp_input.c:4278
 [<ffffffff830e5c2e>] tcp_queue_rcv+0xfe/0x720 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp_input.c:4485
 [<ffffffff830ffe91>] tcp_send_rcvq+0x391/0x4a0 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp_input.c:4531
 [<ffffffff830d208c>] tcp_sendmsg+0x1d1c/0x36a0 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/tcp.c:1134
 [<ffffffff8319020c>] inet_sendmsg+0x26c/0x430 /syzkaller/managers/android-44-kasan-gce/kernel/net/ipv4/af_inet.c:755
 [<ffffffff82d93fc5>] sock_sendmsg_nosec /syzkaller/managers/android-44-kasan-gce/kernel/net/socket.c:625 [inline]
 [<ffffffff82d93fc5>] sock_sendmsg+0xb5/0xf0 /syzkaller/managers/android-44-kasan-gce/kernel/net/socket.c:635
 [<ffffffff82d941ea>] sock_write_iter+0x1ea/0x3d0 /syzkaller/managers/android-44-kasan-gce/kernel/net/socket.c:834
 [<ffffffff814f7d87>] do_iter_readv_writev+0xf7/0x1d0 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:664
 [<ffffffff814f93de>] do_readv_writev+0x27e/0x660 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:808
 [<ffffffff814f98bd>] vfs_writev+0x5d/0xa0 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:847
 [<ffffffff814fbf53>] SYSC_writev /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:880 [inline]
 [<ffffffff814fbf53>] SyS_writev+0xd3/0x260 /syzkaller/managers/android-44-kasan-gce/kernel/fs/read_write.c:872
 [<ffffffff8374aaf6>] entry_SYSCALL_64_fastpath+0x16/0x76
binder: 23990:24001 got reply transaction with no transaction stack
binder: 23990:24001 transaction failed 29201/-71, size 24-16 line 2924
binder: undelivered TRANSACTION_COMPLETE
binder: undelivered TRANSACTION_ERROR: 29189
binder: undelivered TRANSACTION_ERROR: 29201
binder: 23990:24025 got reply transaction with no transaction stack
binder: 23990:24025 transaction failed 29201/-71, size 0-8 line 2924
binder: BINDER_SET_CONTEXT_MGR already set
binder: 23990:24001 ioctl 40046207 0 returned -16
binder_alloc: 23990: binder_alloc_buf, no vma
binder: 23990:24001 transaction failed 29189/-3, size 0-0 line 3131
netlink: 6 bytes leftover after parsing attributes in process `syz-executor5'.
binder: undelivered TRANSACTION_ERROR: 29189
binder: 24049:24051 got reply transaction with no transaction stack
binder: 24049:24051 transaction failed 29201/-71, size 0-8 line 2924
binder: 23990:23992 got reply transaction with no transaction stack
binder: 23990:23992 transaction failed 29201/-71, size 24-16 line 2924
netlink: 6 bytes leftover after parsing attributes in process `syz-executor5'.
binder: undelivered TRANSACTION_ERROR: 29201
binder: 24049:24051 ioctl c018620b 2000bfe8 returned -14
binder: release 24049:24051 transaction 17 out, still active
binder: release 24049:24051 transaction 16 in, still active
binder: undelivered TRANSACTION_COMPLETE
binder: 24049:24062 got reply transaction with bad transaction stack, transaction 16 has target 0:0
binder: 24049:24062 transaction failed 29201/-71, size 24-16 line 2939
binder: release 24049:24062 transaction 16 out, still active
binder: undelivered TRANSACTION_COMPLETE
binder: send failed reply for transaction 17, target dead
binder: send failed reply for transaction 16, target dead
binder: undelivered TRANSACTION_ERROR: 29201
binder: 24049:24096 got reply transaction with no transaction stack
binder: 24049:24096 transaction failed 29201/-71, size 0-8 line 2924
binder: BINDER_SET_CONTEXT_MGR already set
binder: 24049:24062 ioctl 40046207 0 returned -16
binder: 24049:24112 unknown command 0
binder: 24049:24112 ioctl c0306201 20007000 returned -22
binder_alloc: 24049: binder_alloc_buf, no vma
binder: 24049:24112 transaction failed 29189/-3, size 0-0 line 3131
netlink: 1 bytes leftover after parsing attributes in process `syz-executor7'.
netlink: 1 bytes leftover after parsing attributes in process `syz-executor5'.
binder: undelivered TRANSACTION_ERROR: 29189
netlink: 1 bytes leftover after parsing attributes in process `syz-executor5'.
netlink: 1 bytes leftover after parsing attributes in process `syz-executor7'.
netlink: 1 bytes leftover after parsing attributes in process `syz-executor5'.
netlink: 1 bytes leftover after parsing attributes in process `syz-executor5'.
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 0 PID: 24219 Comm: syz-executor2 Not tainted 4.4.105-g8a53962 #3
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 0000000000000000 5bfe926f62f4df28 ffff8800b7997a20 ffffffff81cc9b0f
 1ffff10016f32f4f 0000000000000030 ffff8800b7997bc0 ffffffff815db6db
 ffff8800b7ad91e0 ffff8800b7ad91e0 ffff8800b7ad91e0 ffff8800b7997b98
Call Trace:
 [<ffffffff81cc9b0f>] __dump_stack /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:15 [inline]
 [<ffffffff81cc9b0f>] dump_stack+0x8e/0xcf /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:51
 [<ffffffff815db6db>] handle_userfault+0x75b/0x1570 /syzkaller/managers/android-44-kasan-gce/kernel/fs/userfaultfd.c:316
 [<ffffffff81481ec1>] do_anonymous_page /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:2731 [inline]
 [<ffffffff81481ec1>] handle_pte_fault /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:3295 [inline]
 [<ffffffff81481ec1>] __handle_mm_fault /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:3426 [inline]
 [<ffffffff81481ec1>] handle_mm_fault+0x2731/0x39b0 /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:3455
 [<ffffffff810d7b90>] __do_page_fault+0x2d0/0x910 /syzkaller/managers/android-44-kasan-gce/kernel/arch/x86/mm/fault.c:1245
 [<ffffffff810d81f2>] do_page_fault+0x22/0x30 /syzkaller/managers/android-44-kasan-gce/kernel/arch/x86/mm/fault.c:1308
 [<ffffffff8374cbd8>] page_fault+0x28/0x30 /syzkaller/managers/android-44-kasan-gce/kernel/arch/x86/entry/entry_64.S:985
 [<ffffffff8374aaf6>] entry_SYSCALL_64_fastpath+0x16/0x76
device gre0 entered promiscuous mode
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 1 PID: 24294 Comm: syz-executor7 Not tainted 4.4.105-g8a53962 #3
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 0000000000000000 14a7f7e96d0e6b48 ffff8800b787fa20 ffffffff81cc9b0f
 1ffff10016f0ff4f 0000000000000030 ffff8800b787fbc0 ffffffff815db6db
 ffff8800b7ade820 ffff8800b7ade820 ffff8800b7ade820 ffff8800b787fb98
Call Trace:
 [<ffffffff81cc9b0f>] __dump_stack /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:15 [inline]
 [<ffffffff81cc9b0f>] dump_stack+0x8e/0xcf /syzkaller/managers/android-44-kasan-gce/kernel/lib/dump_stack.c:51
 [<ffffffff815db6db>] handle_userfault+0x75b/0x1570 /syzkaller/managers/android-44-kasan-gce/kernel/fs/userfaultfd.c:316
 [<ffffffff81481ec1>] do_anonymous_page /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:2731 [inline]
 [<ffffffff81481ec1>] handle_pte_fault /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:3295 [inline]
 [<ffffffff81481ec1>] __handle_mm_fault /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:3426 [inline]
 [<ffffffff81481ec1>] handle_mm_fault+0x2731/0x39b0 /syzkaller/managers/android-44-kasan-gce/kernel/mm/memory.c:3455