audit: type=1400 audit(1574675643.398:10038): avc: denied { bind } for pid=11925 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 kasan: CONFIG_KASAN_INLINE enabled kasan: GPF could be caused by NULL-ptr deref or user memory access general protection fault: 0000 [#1] PREEMPT SMP KASAN NOPTI Modules linked in: CPU: 0 PID: 1849 Comm: kworker/u4:3 Not tainted 4.14.155-syzkaller #0 Workqueue: netns cleanup_net task: 00000000d1c7e0a5 task.stack: 000000002b7ef172 RIP: 0010:addrconf_rt_table+0x11f/0x290 net/ipv6/addrconf.c:2293 RSP: 0018:ffff88819d20f708 EFLAGS: 00010206 RAX: dffffc0000000000 RBX: ffff8881c98e1100 RCX: 1ffff1103b2316e4 RDX: 000000000000004d RSI: 0000000000000005 RDI: 0000000000000268 RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000004 R10: fffffbfff4786135 R11: ffffffffa3c309ab R12: 00000000000000fe R13: ffff8881da03d300 R14: 00000000000001b8 R15: ffff88819a5e9d80 FS: 0000000000000000(0000) GS:ffff8881dba00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000001b30123000 CR3: 0000000106426001 CR4: 00000000001606b0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: addrconf_get_prefix_route+0x30/0x2d0 net/ipv6/addrconf.c:2347 __ipv6_ifa_notify+0x6cb/0x940 net/ipv6/addrconf.c:5605 addrconf_ifdown+0xa18/0x13b0 net/ipv6/addrconf.c:3722 addrconf_notify+0x159/0x1b80 net/ipv6/addrconf.c:3526 notifier_call_chain+0x10c/0x1a0 kernel/notifier.c:93 call_netdevice_notifiers net/core/dev.c:1687 [inline] rollback_registered_many+0x6ac/0xab0 net/core/dev.c:7213 unregister_netdevice_many.part.0+0x16/0x1d0 net/core/dev.c:8267 unregister_netdevice_many net/core/dev.c:8266 [inline] default_device_exit_batch+0x2f2/0x3b0 net/core/dev.c:8728 ops_exit_list.isra.0+0xfd/0x150 net/core/net_namespace.c:145 cleanup_net+0x3ce/0x870 net/core/net_namespace.c:484 process_one_work+0x7f1/0x1580 kernel/workqueue.c:2134 worker_thread+0xdd/0xdf0 kernel/workqueue.c:2271 kthread+0x31f/0x430 kernel/kthread.c:232 ret_from_fork+0x3a/0x50 arch/x86/entry/entry_64.S:404 Code: b1 a2 be 01 00 00 00 48 c7 c7 20 52 8d a3 e8 89 92 ae fe 48 8d bd 68 02 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 04 02 84 c0 74 08 3c 03 0f 8e 34 01 00 00 44 8b ad 68 02 RIP: addrconf_rt_table+0x11f/0x290 net/ipv6/addrconf.c:2293 RSP: ffff88819d20f708 ---[ end trace 48663546d6a88b04 ]---