audit: type=1400 audit(1574180307.046:44): avc:  denied  { write } for  pid=18693 comm="syz-executor.5" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
audit: type=1400 audit(1574180307.146:45): avc:  denied  { read } for  pid=18763 comm="syz-executor.5" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
------------[ cut here ]------------
kernel BUG at net/core/skbuff.c:2257!
invalid opcode: 0000 [#1] PREEMPT SMP KASAN
Modules linked in:
CPU: 0 PID: 18762 Comm: syz-executor.1 Not tainted 4.9.202+ #0
task: 000000001e6a3d7d task.stack: 00000000cfcd7b70
RIP: 0010:[<ffffffff822d8e5d>]  [<00000000340e57e7>] skb_copy_and_csum_bits+0x6bd/0x7e0 net/core/skbuff.c:2257
RSP: 0018:ffff8801db607230  EFLAGS: 00010206
RAX: ffff8801cbe3df00 RBX: 0000000000000000 RCX: 1ffff1002cc60329
RDX: 0000000000000100 RSI: ffffffff822d8e5d RDI: ffff880166301948
RBP: ffff8801db6072c0 R08: 0000000000000000 R09: 0000000000000000
R10: 000000000000003c R11: ffff88018863595f R12: 000000002d797994
R13: 0000000000000000 R14: ffff880166301940 R15: 000000000000003c
FS:  00007f81c0c70700(0000) GS:ffff8801db600000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00000000205609bf CR3: 00000001d6f1f000 CR4: 00000000001606b0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Stack:
 ffff8801a4a4d848 ffffffff82534c55 ffffffff812684a7 ffff8801886356e8
 0000003c812691cf ffffffff8281fbbd ffffffff810f2719 ffffffff8281e6fe
 ffff8801a4a4d844 ffffffff815c50ef 000001e82d797994 ffff8801a4a4d780
Call Trace:
 <IRQ> 
 [<000000007d9f5ddd>] icmp_glue_bits+0x7f/0x1d0 net/ipv4/icmp.c:344
 [<000000001400e1bb>] __ip_append_data.isra.0+0x1de1/0x2940 net/ipv4/ip_output.c:1082
 [<0000000036724181>] ip_append_data.part.0+0xf5/0x160 net/ipv4/ip_output.c:1232
 [<00000000fcc637ba>] ip_append_data+0x69/0x90 net/ipv4/ip_output.c:1221
 [<000000002e6e14f3>] icmp_push_reply+0x199/0x510 net/ipv4/icmp.c:362
 [<000000004e0b17e8>] __icmp_send+0xad9/0x1420 net/ipv4/icmp.c:728
 [<00000000da4e2a91>] icmp_send include/net/icmp.h:47 [inline]
 [<00000000da4e2a91>] ip_fragment net/ipv4/ip_output.c:551 [inline]
 [<00000000da4e2a91>] ip_fragment.constprop.0+0x1b9/0x210 net/ipv4/ip_output.c:538
 [<0000000032dab8f1>] ip_finish_output+0x7cb/0xce0 net/ipv4/ip_output.c:311
 [<00000000d4ff835c>] NF_HOOK_COND include/linux/netfilter.h:246 [inline]
 [<00000000d4ff835c>] ip_output+0x1ec/0x5b0 net/ipv4/ip_output.c:401
 [<00000000f93fbdc6>] dst_output include/net/dst.h:507 [inline]
 [<00000000f93fbdc6>] ip_local_out+0x9c/0x180 net/ipv4/ip_output.c:124
 [<000000006bc931f0>] ip_queue_xmit+0x8a5/0x1890 net/ipv4/ip_output.c:500
 [<0000000049a1bec7>] __tcp_transmit_skb+0x1943/0x2f20 net/ipv4/tcp_output.c:1041
 [<0000000007437e3f>] tcp_transmit_skb net/ipv4/tcp_output.c:1057 [inline]
 [<0000000007437e3f>] __tcp_retransmit_skb+0x61a/0x1b30 net/ipv4/tcp_output.c:2781
 [<000000007beca14f>] tcp_retransmit_skb+0x29/0x2b0 net/ipv4/tcp_output.c:2800
 [<00000000720ddeb1>] tcp_retransmit_timer+0x948/0x2320 net/ipv4/tcp_timer.c:508
 [<00000000a1ef2530>] tcp_write_timer_handler+0x412/0x7a0 net/ipv4/tcp_timer.c:592
 [<000000006c2267b1>] tcp_write_timer+0xc5/0x190 net/ipv4/tcp_timer.c:610
 [<000000008769d5f1>] call_timer_fn+0x167/0x6d0 kernel/time/timer.c:1319
 [<0000000082c3d912>] expire_timers+0x25b/0x5c0 kernel/time/timer.c:1359
 [<00000000d2aa3c38>] __run_timers kernel/time/timer.c:1676 [inline]
 [<00000000d2aa3c38>] run_timer_softirq+0x1ff/0x620 kernel/time/timer.c:1689
 [<00000000c760f41e>] __do_softirq+0x22d/0x964 kernel/softirq.c:288
 [<00000000398bab05>] invoke_softirq kernel/softirq.c:368 [inline]
 [<00000000398bab05>] irq_exit+0x119/0x160 kernel/softirq.c:409
 [<000000002eaf571c>] exiting_irq arch/x86/include/asm/apic.h:669 [inline]
 [<000000002eaf571c>] smp_apic_timer_interrupt+0x7e/0xb0 arch/x86/kernel/apic/apic.c:1000
 [<000000005ea8d666>] apic_timer_interrupt+0xa5/0xb0 arch/x86/entry/entry_64.S:653
 <EOI> 
 [<0000000069833aa2>] spin_unlock_irqrestore include/linux/spinlock.h:362 [inline]
 [<0000000069833aa2>] __set_page_dirty+0xef/0x200 fs/buffer.c:640
 [<00000000157cf7e3>] mark_buffer_dirty+0x209/0x490 fs/buffer.c:1175
 [<000000000ac11771>] __block_commit_write.isra.0+0x139/0x200 fs/buffer.c:2062
 [<00000000991db0ca>] block_write_end+0x4d/0x100 fs/buffer.c:2140
 [<000000005663824a>] generic_write_end+0x93/0x260 fs/buffer.c:2154
 [<00000000f03d4b5f>] ext4_da_write_end+0x461/0xc20 fs/ext4/inode.c:3086
 [<00000000059dd99f>] generic_perform_write+0x2fa/0x500 mm/filemap.c:2951
 [<0000000033e3f594>] __generic_file_write_iter+0x340/0x530 mm/filemap.c:3065
 [<00000000605350ae>] ext4_file_write_iter+0x364/0xcd0 fs/ext4/file.c:165
 [<00000000ac691cbd>] new_sync_write fs/read_write.c:498 [inline]
 [<00000000ac691cbd>] __vfs_write+0x3c1/0x560 fs/read_write.c:511
 [<00000000e78a18a3>] vfs_write+0x185/0x520 fs/read_write.c:559
 [<00000000fa67a820>] SYSC_write fs/read_write.c:607 [inline]
 [<00000000fa67a820>] SyS_write+0x121/0x270 fs/read_write.c:599
 [<00000000d86e4420>] do_syscall_64+0x1ad/0x5c0 arch/x86/entry/common.c:288
 [<00000000de82f7b2>] entry_SYSCALL_64_after_swapgs+0x5d/0xdb
Code: ff ff e8 b7 97 04 ff be bf 08 00 00 48 c7 c7 e0 50 c7 82 e8 c6 59 e0 fe e9 5d fe ff ff 44 8b 7d d4 e9 d9 fd ff ff e8 93 97 04 ff <0f> 0b 4c 89 f7 e8 f9 57 22 ff e9 dc fa ff ff 48 89 55 b8 e8 2b 
RIP  [<00000000340e57e7>] skb_copy_and_csum_bits+0x6bd/0x7e0 net/core/skbuff.c:2257
 RSP <ffff8801db607230>
---[ end trace e00597672ae9ad94 ]---