[<ffffffff838b2c2e>] entry_SYSCALL_64_fastpath+0x29/0xe8
CPU: 1 PID: 5915 Comm: syz-executor0 Not tainted 4.9.77-ge12a9c4 #18
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
BUG: using __this_cpu_read() in preemptible [00000000] code: syz-executor3/5943
caller is __this_cpu_preempt_check+0x1c/0x20 lib/smp_processor_id.c:62
 ffff8801d133f880 ffffffff81d941c9 1ffff1003a267f13 ffff8801c8371800
 ffffffff83ab8e20 0000000000000001 0000000000400000 ffff8801d133f990
 ffffffff81451af2 024000c200000003 0000000041b58ab3 ffffffff84195265
Call Trace:
 [<ffffffff81d941c9>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d941c9>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff81451af2>] warn_alloc+0x212/0x240 mm/page_alloc.c:3056
 [<ffffffff814ff775>] __vmalloc_node_range+0x3f5/0x5f0 mm/vmalloc.c:1722
 [<ffffffff814ffa3b>] __vmalloc_node mm/vmalloc.c:1744 [inline]
 [<ffffffff814ffa3b>] __vmalloc_node_flags mm/vmalloc.c:1758 [inline]
 [<ffffffff814ffa3b>] vmalloc+0x5b/0x70 mm/vmalloc.c:1773
 [<ffffffff83140ef1>] xt_alloc_entry_offsets+0x41/0x60 net/netfilter/x_tables.c:722
 [<ffffffff8351f1fa>] translate_table+0x21a/0x1e80 net/ipv6/netfilter/ip6_tables.c:730
 [<ffffffff810002b8>] ? 0xffffffff810002b8
 [<ffffffff835230de>] do_replace net/ipv6/netfilter/ip6_tables.c:1182 [inline]
 [<ffffffff835230de>] do_ip6t_set_ctl+0x2be/0x470 net/ipv6/netfilter/ip6_tables.c:1708
 [<ffffffff830a1a67>] nf_sockopt net/netfilter/nf_sockopt.c:105 [inline]
 [<ffffffff830a1a67>] nf_setsockopt+0x67/0xc0 net/netfilter/nf_sockopt.c:114
 [<ffffffff8347a955>] ipv6_setsockopt+0x115/0x150 net/ipv6/ipv6_sockglue.c:912
 [<ffffffff832314b2>] tcp_setsockopt+0x82/0xd0 net/ipv4/tcp.c:2737
 [<ffffffff82ede275>] sock_common_setsockopt+0x95/0xd0 net/core/sock.c:2706
 [<ffffffff82edb230>] SYSC_setsockopt net/socket.c:1772 [inline]
 [<ffffffff82edb230>] SyS_setsockopt+0x160/0x250 net/socket.c:1751
 [<ffffffff838b2c2e>] entry_SYSCALL_64_fastpath+0x29/0xe8
CPU: 0 PID: 5943 Comm: syz-executor3 Not tainted 4.9.77-ge12a9c4 #18
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 ffff8801c9d376d8 ffffffff81d941c9 0000000000000000 ffffffff83c18800
 ffffffff83f45400 ffff8801c1e20000 0000000000000003 ffff8801c9d37718
 ffffffff81dfb794 ffff8801c9d37730 ffffffff83f45400 dffffc0000000000
Call Trace:
 [<ffffffff81d941c9>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d941c9>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff81dfb794>] check_preemption_disabled+0x1d4/0x200 lib/smp_processor_id.c:46
 [<ffffffff81dfb7fc>] __this_cpu_preempt_check+0x1c/0x20 lib/smp_processor_id.c:62
 [<ffffffff833fc778>] ipcomp_alloc_tfms net/xfrm/xfrm_ipcomp.c:286 [inline]
 [<ffffffff833fc778>] ipcomp_init_state+0x188/0x930 net/xfrm/xfrm_ipcomp.c:363
 [<ffffffff83368b90>] ipcomp4_init_state+0xb0/0x7d0 net/ipv4/ipcomp.c:137
 [<ffffffff833dae67>] __xfrm_init_state+0x3e7/0xb30 net/xfrm/xfrm_state.c:2096
 [<ffffffff833db5ca>] xfrm_init_state+0x1a/0x20 net/xfrm/xfrm_state.c:2122
 [<ffffffff83575329>] pfkey_msg2xfrm_state net/key/af_key.c:1281 [inline]
 [<ffffffff83575329>] pfkey_add+0x1fb9/0x3470 net/key/af_key.c:1498
 [<ffffffff8356cdce>] pfkey_process+0x61e/0x730 net/key/af_key.c:2826
 [<ffffffff8356e679>] pfkey_sendmsg+0x3a9/0x760 net/key/af_key.c:3670
 [<ffffffff82ed7baa>] sock_sendmsg_nosec net/socket.c:635 [inline]
 [<ffffffff82ed7baa>] sock_sendmsg+0xca/0x110 net/socket.c:645
 [<ffffffff82ed97a1>] ___sys_sendmsg+0x6d1/0x7e0 net/socket.c:1969
 [<ffffffff82edb7d6>] __sys_sendmsg+0xd6/0x190 net/socket.c:2003
 [<ffffffff82edb8bd>] SYSC_sendmsg net/socket.c:2014 [inline]
 [<ffffffff82edb8bd>] SyS_sendmsg+0x2d/0x50 net/socket.c:2010
 [<ffffffff838b2c2e>] entry_SYSCALL_64_fastpath+0x29/0xe8
Mem-Info:
active_anon:51504 inactive_anon:42 isolated_anon:0
 active_file:3495 inactive_file:7895 isolated_file:0
 unevictable:0 dirty:37 writeback:0 unstable:0
 slab_reclaimable:5103 slab_unreclaimable:59961
 mapped:23760 shmem:51 pagetables:667 bounce:0
 free:1479239 free_pcp:371 free_cma:0
Node 0 active_anon:205980kB inactive_anon:168kB active_file:13980kB inactive_file:31592kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:95000kB dirty:176kB writeback:0kB shmem:204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 81920kB writeback_tmp:0kB unstable:0kB pages_scanned:0 all_unreclaimable? no
DMA free:15908kB min:160kB low:200kB high:240kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB slab_reclaimable:0kB slab_unreclaimable:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
lowmem_reserve[]: 0 2908 6410 6410
DMA32 free:2980124kB min:30596kB low:38244kB high:45892kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2980760kB mlocked:0kB slab_reclaimable:0kB slab_unreclaimable:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:636kB local_pcp:0kB free_cma:0kB
lowmem_reserve[]: 0 0 3501 3501
Normal free:2925132kB min:36824kB low:46028kB high:55232kB active_anon:203700kB inactive_anon:176kB active_file:13980kB inactive_file:31592kB unevictable:0kB writepending:180kB present:4718592kB managed:3585212kB mlocked:0kB slab_reclaimable:20420kB slab_unreclaimable:240224kB kernel_stack:5536kB pagetables:2472kB bounce:0kB free_pcp:1228kB local_pcp:524kB free_cma:0kB
lowmem_reserve[]: 0 0 0 0
DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB [   37.224769] binder: 5957:5962 ERROR: BC_REGISTER_LOOPER called without request
(M) 3*4096kB (M) = 15908kB
DMA32: 3*4kB (M) 4*8kB (M) 5*16kB (M) 1*32kB (M) 4*64kB (M) 3*128kB (M) 2*256kB (M) 4*512kB (M) 1*1024kB (M) 1*2048kB (M) 726*4096kB (M) = 2980124kB
Normal: 702*4kB (UME) [   37.260508] binder: 5957:5962 got transaction with invalid fd, -1
binder: 5957:5962 transaction failed 29201/-9, size 24-8 line 3232
binder: send failed reply for transaction 22 to 5957:5968
binder: undelivered TRANSACTION_ERROR: 29190
binder: undelivered TRANSACTION_COMPLETE
binder: undelivered TRANSACTION_ERROR: 29201
binder: 5957:5962 ERROR: BC_REGISTER_LOOPER called without request
binder: 5957:5968 got reply transaction with no transaction stack
binder: 5957:5968 transaction failed 29201/-71, size 24-8 line 2920
binder: release 5957:5962 transaction 25 out, still active
binder: undelivered TRANSACTION_COMPLETE
binder: undelivered TRANSACTION_ERROR: 29201
binder: send failed reply for transaction 25, target dead
265*8kB (UM) 145*16kB (UME) 24*32kB (UME) 10*64kB (UM) 5*128kB (M) 5*256kB (UME) 4*512kB (UME) 4*1024kB (ME) 7*2048kB (UME) 703*4096kB (M) = 2910544kB
Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
11449 total pagecache pages
0 pages in swap cache
Swap cache stats: add 0, delete 0, find 0/0
Free swap  = 0kB
Total swap = 0kB
1965979 pages RAM
0 pages HighMem/MovableOnly
320509 pages reserved
syz-executor0: vmalloc: allocation failure: 17178820608 bytes, mode:0x24000c2(GFP_KERNEL|__GFP_HIGHMEM)
CPU: 0 PID: 5924 Comm: syz-executor0 Not tainted 4.9.77-ge12a9c4 #18
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 ffff8801c8007880 ffffffff81d941c9 1ffff10039000f13 ffff8801c92f0000
 ffffffff83ab8e20 0000000000000001 0000000000400000 ffff8801c8007990
 ffffffff81451af2 024000c200000003 0000000041b58ab3 ffffffff84195265
Call Trace:
 [<ffffffff81d941c9>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d941c9>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff81451af2>] warn_alloc+0x212/0x240 mm/page_alloc.c:3056
 [<ffffffff814ff775>] __vmalloc_node_range+0x3f5/0x5f0 mm/vmalloc.c:1722
 [<ffffffff814ffa3b>] __vmalloc_node mm/vmalloc.c:1744 [inline]
 [<ffffffff814ffa3b>] __vmalloc_node_flags mm/vmalloc.c:1758 [inline]
 [<ffffffff814ffa3b>] vmalloc+0x5b/0x70 mm/vmalloc.c:1773
 [<ffffffff83140ef1>] xt_alloc_entry_offsets+0x41/0x60 net/netfilter/x_tables.c:722
 [<ffffffff8351f1fa>] translate_table+0x21a/0x1e80 net/ipv6/netfilter/ip6_tables.c:730
 [<ffffffff810002b8>] ? 0xffffffff810002b8
 [<ffffffff835230de>] do_replace net/ipv6/netfilter/ip6_tables.c:1182 [inline]
 [<ffffffff835230de>] do_ip6t_set_ctl+0x2be/0x470 net/ipv6/netfilter/ip6_tables.c:1708
 [<ffffffff830a1a67>] nf_sockopt net/netfilter/nf_sockopt.c:105 [inline]
 [<ffffffff830a1a67>] nf_setsockopt+0x67/0xc0 net/netfilter/nf_sockopt.c:114
 [<ffffffff8347a955>] ipv6_setsockopt+0x115/0x150 net/ipv6/ipv6_sockglue.c:912
 [<ffffffff832314b2>] tcp_setsockopt+0x82/0xd0 net/ipv4/tcp.c:2737
 [<ffffffff82ede275>] sock_common_setsockopt+0x95/0xd0 net/core/sock.c:2706
 [<ffffffff82edb230>] SYSC_setsockopt net/socket.c:1772 [inline]
 [<ffffffff82edb230>] SyS_setsockopt+0x160/0x250 net/socket.c:1751
 [<ffffffff838b2c2e>] entry_SYSCALL_64_fastpath+0x29/0xe8
Mem-Info:
active_anon:50927 inactive_anon:44 isolated_anon:0
 active_file:3495 inactive_file:7907 isolated_file:0
 unevictable:0 dirty:57 writeback:0 unstable:0
 slab_reclaimable:5109 slab_unreclaimable:60086
 mapped:23684 shmem:51 pagetables:616 bounce:0
 free:1480311 free_pcp:461 free_cma:0
Node 0 active_anon:203708kB inactive_anon:176kB active_file:13980kB inactive_file:31628kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:94736kB dirty:228kB writeback:0kB shmem:204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 77824kB writeback_tmp:0kB unstable:0kB pages_scanned:0 all_unreclaimable? no
DMA free:15908kB min:160kB low:200kB high:240kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB slab_reclaimable:0kB slab_unreclaimable:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
lowmem_reserve[]: 0 2908 6410 6410
DMA32 free:2980124kB min:30596kB low:38244kB high:45892kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2980760kB mlocked:0kB slab_reclaimable:0kB slab_unreclaimable:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:636kB local_pcp:636kB free_cma:0kB
lowmem_reserve[]: 0 0 3501 3501
Normal free:2925212kB min:36824kB low:46028kB high:55232kB active_anon:203708kB inactive_anon:176kB active_file:13980kB inactive_file:31628kB unevictable:0kB writepending:240kB present:4718592kB managed:3585212kB mlocked:0kB slab_reclaimable:20436kB slab_unreclaimable:240344kB kernel_stack:5440kB pagetables:2464kB bounce:0kB free_pcp:1196kB local_pcp:584kB free_cma:0kB
lowmem_reserve[]: 0 0 0 0
DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
DMA32: 3*4kB (M) 4*8kB (M) 5*16kB (M) 1*32kB (M) 4*64kB (M) 3*128kB (M) 2*256kB (M) 4*512kB (M) 1*1024kB (M) 1*2048kB (M) 726*4096kB (M) = 2980124kB
Normal: 733*4kB (UME) 267*8kB (UM) 145*16kB (UME) 28*32kB (UME) 9*64kB (M) 6*128kB (UM) 5*256kB (UME) 4*512kB (UME) 4*1024kB (ME) 4*2048kB (UME) 708*4096kB (M) = 2925212kB
Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
11458 total pagecache pages
0 pages in swap cache
Swap cache stats: add 0, delete 0, find 0/0
Free swap  = 0kB
Total swap = 0kB
1965979 pages RAM
0 pages HighMem/MovableOnly
320509 pages reserved
device eql entered promiscuous mode
IPv4: Oversized IP packet from 127.0.0.1
netlink: 4668 bytes leftover after parsing attributes in process `syz-executor0'.
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 0 PID: 6228 Comm: syz-executor7 Not tainted 4.9.77-ge12a9c4 #18
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 ffff8801ae63f8a0 ffffffff81d941c9 ffff8801ae63fb80 0000000000000000
 ffff8801cef35610 ffff8801ae63fa70 ffff8801cef35500 ffff8801ae63fa98
 ffffffff81661c5a 0000000000002e68 ffff8801c655d0f0 ffff8801c655d0a0
Call Trace:
 [<ffffffff81d941c9>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d941c9>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff81661c5a>] handle_userfault+0xa3a/0x1310 fs/userfaultfd.c:323
 [<ffffffff814d08b1>] do_anonymous_page mm/memory.c:2747 [inline]
 [<ffffffff814d08b1>] handle_pte_fault mm/memory.c:3488 [inline]
 [<ffffffff814d08b1>] __handle_mm_fault mm/memory.c:3577 [inline]
 [<ffffffff814d08b1>] handle_mm_fault+0x1fd1/0x2530 mm/memory.c:3614
 [<ffffffff810de632>] __do_page_fault+0x5c2/0xd40 arch/x86/mm/fault.c:1406
 [<ffffffff810dedd7>] do_page_fault+0x27/0x30 arch/x86/mm/fault.c:1469
 [<ffffffff838b3f48>] page_fault+0x28/0x30 arch/x86/entry/entry_64.S:1044
 [<ffffffff838b2c2e>] entry_SYSCALL_64_fastpath+0x29/0xe8
netlink: 4668 bytes leftover after parsing attributes in process `syz-executor0'.
audit: type=1400 audit(1516704807.180:24): avc:  denied  { dyntransition } for  pid=6324 comm="syz-executor3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0 tclass=process permissive=1
audit: type=1400 audit(1516704807.400:25): avc:  denied  { bind } for  pid=6377 comm="syz-executor5" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 0 PID: 6441 Comm: syz-executor5 Not tainted 4.9.77-ge12a9c4 #18
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 ffff8801c65df8a0 ffffffff81d941c9 ffff8801c65dfb80 0000000000000000
 ffff8801cef35f10 ffff8801c65dfa70 ffff8801cef35e00 ffff8801c65dfa98
 ffffffff81661c5a 0000000000002e68 ffff8801cc39a0f0 ffff8801cc39a0a0
Call Trace:
 [<ffffffff81d941c9>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d941c9>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff81661c5a>] handle_userfault+0xa3a/0x1310 fs/userfaultfd.c:323
 [<ffffffff814d08b1>] do_anonymous_page mm/memory.c:2747 [inline]
 [<ffffffff814d08b1>] handle_pte_fault mm/memory.c:3488 [inline]
 [<ffffffff814d08b1>] __handle_mm_fault mm/memory.c:3577 [inline]
 [<ffffffff814d08b1>] handle_mm_fault+0x1fd1/0x2530 mm/memory.c:3614
 [<ffffffff810de632>] __do_page_fault+0x5c2/0xd40 arch/x86/mm/fault.c:1406
 [<ffffffff810dedd7>] do_page_fault+0x27/0x30 arch/x86/mm/fault.c:1469
 [<ffffffff838b3f48>] page_fault+0x28/0x30 arch/x86/entry/entry_64.S:1044
 [<ffffffff838b2c2e>] entry_SYSCALL_64_fastpath+0x29/0xe8
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 0 PID: 6451 Comm: syz-executor5 Not tainted 4.9.77-ge12a9c4 #18
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 ffff8801b43cf8a0 ffffffff81d941c9 ffff8801b43cfb80 0000000000000000
 ffff8801cd4c4110 ffff8801b43cfa70 ffff8801cd4c4000 ffff8801b43cfa98
 ffffffff81661c5a 0000000000002e68 ffff8801c08950f0 ffff8801c08950a0
Call Trace:
 [<ffffffff81d941c9>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d941c9>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff81661c5a>] handle_userfault+0xa3a/0x1310 fs/userfaultfd.c:323
 [<ffffffff814d08b1>] do_anonymous_page mm/memory.c:2747 [inline]
 [<ffffffff814d08b1>] handle_pte_fault mm/memory.c:3488 [inline]
 [<ffffffff814d08b1>] __handle_mm_fault mm/memory.c:3577 [inline]
 [<ffffffff814d08b1>] handle_mm_fault+0x1fd1/0x2530 mm/memory.c:3614
 [<ffffffff810de632>] __do_page_fault+0x5c2/0xd40 arch/x86/mm/fault.c:1406
 [<ffffffff810dedd7>] do_page_fault+0x27/0x30 arch/x86/mm/fault.c:1469
 [<ffffffff838b3f48>] page_fault+0x28/0x30 arch/x86/entry/entry_64.S:1044
 [<ffffffff838b2c2e>] entry_SYSCALL_64_fastpath+0x29/0xe8
Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
audit: type=1400 audit(1516704808.320:26): avc:  denied  { ioctl } for  pid=6582 comm="syz-executor3" path="socket:[13535]" dev="sockfs" ino=13535 ioctlcmd=0x8981 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1
binder: release 6687:6690 transaction 28 out, still active
binder: 6687:6690 transaction failed 29189/0, size 0-0 line 2944
binder: undelivered TRANSACTION_COMPLETE
binder: send failed reply for transaction 28, target dead
binder_alloc: binder_alloc_mmap_handler: 6687 20000000-20002000 already mapped failed -16
binder: BINDER_SET_CONTEXT_MGR already set
binder: 6687:6690 ioctl 40046207 0 returned -16
binder_alloc: 6687: binder_alloc_buf, no vma
binder: 6687:6708 transaction failed 29189/-3, size 0-0 line 3127
binder: 6687:6710 got reply transaction with no transaction stack
binder: 6687:6710 transaction failed 29201/-71, size 0-0 line 2920
binder: undelivered TRANSACTION_ERROR: 29189
binder: undelivered TRANSACTION_ERROR: 29190
PF_BRIDGE: RTM_NEWNEIGH with unknown ifindex
PF_BRIDGE: RTM_NEWNEIGH with unknown ifindex
binder: undelivered TRANSACTION_ERROR: 29201
audit: type=1400 audit(1516704808.920:27): avc:  denied  { setuid } for  pid=6804 comm="syz-executor1" capability=7  scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
audit: type=1400 audit(1516704809.640:28): avc:  denied  { getopt } for  pid=6997 comm="syz-executor7" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
SELinux: unrecognized netlink message: protocol=4 nlmsg_type=17 sclass=netlink_tcpdiag_socket pig=7063 comm=syz-executor3
SELinux: unrecognized netlink message: protocol=4 nlmsg_type=17 sclass=netlink_tcpdiag_socket pig=7075 comm=syz-executor3
binder: BINDER_SET_CONTEXT_MGR already set
binder: 7066:7067 ioctl 40046207 0 returned -16
binder_alloc: 7066: binder_alloc_buf, no vma
binder: 7066:7067 transaction failed 29189/-3, size 0-0 line 3127
binder: 7066:7072 BC_FREE_BUFFER u0000000020000000 no match
binder: undelivered TRANSACTION_ERROR: 29189
binder: undelivered TRANSACTION_COMPLETE
binder: 7168:7170 ioctl 8933 2056f000 returned -22
binder: 7168:7179 ioctl 8933 2056f000 returned -22
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 1 PID: 7315 Comm: syz-executor6 Not tainted 4.9.77-ge12a9c4 #18
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 ffff8801d8ac78b0 ffffffff81d941c9 ffff8801d8ac7b90 0000000000000000
 ffff8801c367e290 ffff8801d8ac7a80 ffff8801c367e180 ffff8801d8ac7aa8
 ffffffff81661c5a 0000000000002e68 ffff8801d9adb8f0 ffff8801d9adb8a0
Call Trace:
 [<ffffffff81d941c9>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d941c9>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff81661c5a>] handle_userfault+0xa3a/0x1310 fs/userfaultfd.c:323
 [<ffffffff814d08b1>] do_anonymous_page mm/memory.c:2747 [inline]
 [<ffffffff814d08b1>] handle_pte_fault mm/memory.c:3488 [inline]
 [<ffffffff814d08b1>] __handle_mm_fault mm/memory.c:3577 [inline]
 [<ffffffff814d08b1>] handle_mm_fault+0x1fd1/0x2530 mm/memory.c:3614
 [<ffffffff810de632>] __do_page_fault+0x5c2/0xd40 arch/x86/mm/fault.c:1406
 [<ffffffff810dedd7>] do_page_fault+0x27/0x30 arch/x86/mm/fault.c:1469
 [<ffffffff838b3f48>] page_fault+0x28/0x30 arch/x86/entry/entry_64.S:1044
 [<ffffffff813768c2>] seccomp_prepare_filter kernel/seccomp.c:373 [inline]
 [<ffffffff813768c2>] seccomp_prepare_user_filter kernel/seccomp.c:408 [inline]
 [<ffffffff813768c2>] seccomp_set_mode_filter kernel/seccomp.c:750 [inline]
 [<ffffffff813768c2>] do_seccomp+0x632/0x1860 kernel/seccomp.c:800
 [<ffffffff81377f34>] SYSC_seccomp kernel/seccomp.c:809 [inline]
 [<ffffffff81377f34>] SyS_seccomp+0x24/0x30 kernel/seccomp.c:806
 [<ffffffff838b2c2e>] entry_SYSCALL_64_fastpath+0x29/0xe8
binder: 7454:7459 got transaction with invalid offsets ptr
binder: 7454:7459 transaction failed 29201/-14, size 0-4096 line 3155
binder: BINDER_SET_CONTEXT_MGR already set
binder: 7454:7483 ioctl 40046207 0 returned -16
binder_alloc: 7454: binder_alloc_buf, no vma
binder: 7454:7459 transaction failed 29189/-3, size 0-4096 line 3127
binder: undelivered TRANSACTION_ERROR: 29189
binder: undelivered TRANSACTION_ERROR: 29201
updating oom_score_adj for 7650 (syz-executor4) from 0 to 0 because it shares mm with 7640 (syz-executor4). Report if this is unexpected.
netlink: 40 bytes leftover after parsing attributes in process `syz-executor5'.
BUG: using __this_cpu_read() in preemptible [00000000] code: syz-executor6/7821
caller is __this_cpu_preempt_check+0x1c/0x20 lib/smp_processor_id.c:62
CPU: 1 PID: 7821 Comm: syz-executor6 Not tainted 4.9.77-ge12a9c4 #18
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 ffff8801b27b7490 ffffffff81d941c9 0000000000000001 ffffffff83c18800
 ffffffff83f45400 ffff8801ca558000 0000000000000003 ffff8801b27b74d0
 ffffffff81dfb794 ffff8801b27b74e8 ffffffff83f45400 dffffc0000000000
Call Trace:
 [<ffffffff81d941c9>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d941c9>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff81dfb794>] check_preemption_disabled+0x1d4/0x200 lib/smp_processor_id.c:46
 [<ffffffff81dfb7fc>] __this_cpu_preempt_check+0x1c/0x20 lib/smp_processor_id.c:62
 [<ffffffff833fc778>] ipcomp_alloc_tfms net/xfrm/xfrm_ipcomp.c:286 [inline]
 [<ffffffff833fc778>] ipcomp_init_state+0x188/0x930 net/xfrm/xfrm_ipcomp.c:363
 [<ffffffff83368b90>] ipcomp4_init_state+0xb0/0x7d0 net/ipv4/ipcomp.c:137
 [<ffffffff833dae67>] __xfrm_init_state+0x3e7/0xb30 net/xfrm/xfrm_state.c:2096
 [<ffffffff833f9fc6>] xfrm_state_construct net/xfrm/xfrm_user.c:590 [inline]
 [<ffffffff833f9fc6>] xfrm_add_sa+0x1916/0x2e40 net/xfrm/xfrm_user.c:639
 [<ffffffff833ea613>] xfrm_user_rcv_msg+0x413/0x6a0 net/xfrm/xfrm_user.c:2525
 [<ffffffff8309513e>] netlink_rcv_skb+0x13e/0x370 net/netlink/af_netlink.c:2351
 [<ffffffff833e6b0f>] xfrm_netlink_rcv+0x6f/0x90 net/xfrm/xfrm_user.c:2533
 [<ffffffff83093cc1>] netlink_unicast_kernel net/netlink/af_netlink.c:1275 [inline]
 [<ffffffff83093cc1>] netlink_unicast+0x511/0x750 net/netlink/af_netlink.c:1301
 [<ffffffff830947e8>] netlink_sendmsg+0x8e8/0xc50 net/netlink/af_netlink.c:1847
 [<ffffffff82ed7baa>] sock_sendmsg_nosec net/socket.c:635 [inline]
 [<ffffffff82ed7baa>] sock_sendmsg+0xca/0x110 net/socket.c:645
 [<ffffffff82ed97a1>] ___sys_sendmsg+0x6d1/0x7e0 net/socket.c:1969
 [<ffffffff82edb7d6>] __sys_sendmsg+0xd6/0x190 net/socket.c:2003
 [<ffffffff82edb8bd>] SYSC_sendmsg net/socket.c:2014 [inline]
 [<ffffffff82edb8bd>] SyS_sendmsg+0x2d/0x50 net/socket.c:2010
 [<ffffffff838b2c2e>] entry_SYSCALL_64_fastpath+0x29/0xe8
BUG: using __this_cpu_read() in preemptible [00000000] code: syz-executor6/7821
caller is __this_cpu_preempt_check+0x1c/0x20 lib/smp_processor_id.c:62
CPU: 1 PID: 7821 Comm: syz-executor6 Not tainted 4.9.77-ge12a9c4 #18
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 ffff8801b27b7490 ffffffff81d941c9 0000000000000001 ffffffff83c18800
 ffffffff83f45400 ffff8801ca558000 0000000000000003 ffff8801b27b74d0
 ffffffff81dfb794 ffff8801b27b74e8 ffffffff83f45400 dffffc0000000000
Call Trace:
 [<ffffffff81d941c9>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d941c9>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff81dfb794>] check_preemption_disabled+0x1d4/0x200 lib/smp_processor_id.c:46
 [<ffffffff81dfb7fc>] __this_cpu_preempt_check+0x1c/0x20 lib/smp_processor_id.c:62
 [<ffffffff833fc778>] ipcomp_alloc_tfms net/xfrm/xfrm_ipcomp.c:286 [inline]
 [<ffffffff833fc778>] ipcomp_init_state+0x188/0x930 net/xfrm/xfrm_ipcomp.c:363
 [<ffffffff83368b90>] ipcomp4_init_state+0xb0/0x7d0 net/ipv4/ipcomp.c:137
 [<ffffffff833dae67>] __xfrm_init_state+0x3e7/0xb30 net/xfrm/xfrm_state.c:2096