SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=16163 comm=syz-executor2
==================================================================
BUG: KASAN: use-after-free in __read_once_size include/linux/compiler.h:243 [inline] at addr ffff8801d62b7430
BUG: KASAN: use-after-free in atomic_read arch/x86/include/asm/atomic.h:26 [inline] at addr ffff8801d62b7430
BUG: KASAN: use-after-free in static_key_count include/linux/jump_label.h:174 [inline] at addr ffff8801d62b7430
BUG: KASAN: use-after-free in static_key_false include/linux/jump_label.h:184 [inline] at addr ffff8801d62b7430
BUG: KASAN: use-after-free in perf_sw_event include/linux/perf_event.h:1039 [inline] at addr ffff8801d62b7430
BUG: KASAN: use-after-free in __do_page_fault+0xc80/0xd70 arch/x86/mm/fault.c:1438 at addr ffff8801d62b7430
Read of size 8 by task syz-executor4/16152
CPU: 1 PID: 16152 Comm: syz-executor4 Not tainted 4.9.64-gfbb7468 #94
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 ffff8801ce717d88 ffffffff81d90429 ffff8801da155140 ffff8801d62b73e0
 ffff8801d62b7498 ffffed003ac56e86 ffff8801d62b7430 ffff8801ce717db0
 ffffffff8153a3ac ffffed003ac56e86 ffff8801da155140 0000000000000000
Call Trace:
 [<ffffffff81d90429>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d90429>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff8153a3ac>] kasan_object_err+0x1c/0x70 mm/kasan/report.c:160
 [<ffffffff8153a66c>] print_address_description mm/kasan/report.c:198 [inline]
 [<ffffffff8153a66c>] kasan_report_error mm/kasan/report.c:287 [inline]
 [<ffffffff8153a66c>] kasan_report.part.1+0x21c/0x500 mm/kasan/report.c:309
 [<ffffffff8153aa09>] kasan_report mm/kasan/report.c:330 [inline]
 [<ffffffff8153aa09>] __asan_report_load8_noabort+0x29/0x30 mm/kasan/report.c:330
 [<ffffffff810ddb10>] __read_once_size include/linux/compiler.h:243 [inline]
 [<ffffffff810ddb10>] atomic_read arch/x86/include/asm/atomic.h:26 [inline]
 [<ffffffff810ddb10>] static_key_count include/linux/jump_label.h:174 [inline]
 [<ffffffff810ddb10>] static_key_false include/linux/jump_label.h:184 [inline]
 [<ffffffff810ddb10>] perf_sw_event include/linux/perf_event.h:1039 [inline]
 [<ffffffff810ddb10>] __do_page_fault+0xc80/0xd70 arch/x86/mm/fault.c:1438
 [<ffffffff810ddc27>] do_page_fault+0x27/0x30 arch/x86/mm/fault.c:1460
 [<ffffffff838aa958>] page_fault+0x28/0x30 arch/x86/entry/entry_64.S:1012
Object at ffff8801d62b73e0, in cache vm_area_struct size: 184
Allocated:
PID = 16152
 save_stack_trace+0x16/0x20 arch/x86/kernel/stacktrace.c:57
 save_stack+0x43/0xd0 mm/kasan/kasan.c:495
 set_track mm/kasan/kasan.c:507 [inline]
 kasan_kmalloc+0xad/0xe0 mm/kasan/kasan.c:598
 kasan_slab_alloc+0x12/0x20 mm/kasan/kasan.c:537
 slab_post_alloc_hook mm/slab.h:417 [inline]
 slab_alloc_node mm/slub.c:2715 [inline]
 slab_alloc mm/slub.c:2723 [inline]
 kmem_cache_alloc+0xba/0x290 mm/slub.c:2728
 kmem_cache_zalloc include/linux/slab.h:626 [inline]
 mmap_region+0x587/0xfd0 mm/mmap.c:1662
 do_mmap+0x57b/0xbe0 mm/mmap.c:1473
 do_mmap_pgoff include/linux/mm.h:2018 [inline]
 vm_mmap_pgoff+0x16b/0x1b0 mm/util.c:305
 SYSC_mmap_pgoff mm/mmap.c:1523 [inline]
 SyS_mmap_pgoff+0xd0/0x560 mm/mmap.c:1481
 SYSC_mmap arch/x86/kernel/sys_x86_64.c:95 [inline]
 SyS_mmap+0x16/0x20 arch/x86/kernel/sys_x86_64.c:86
 entry_SYSCALL_64_fastpath+0x23/0xc6
Freed:
PID = 16165
 save_stack_trace+0x16/0x20 arch/x86/kernel/stacktrace.c:57
 save_stack+0x43/0xd0 mm/kasan/kasan.c:495
 set_track mm/kasan/kasan.c:507 [inline]
 kasan_slab_free+0x73/0xc0 mm/kasan/kasan.c:571
 slab_free_hook mm/slub.c:1355 [inline]
 slab_free_freelist_hook mm/slub.c:1377 [inline]
 slab_free mm/slub.c:2958 [inline]
 kmem_cache_free+0xb2/0x2e0 mm/slub.c:2980
 remove_vma+0x11d/0x160 mm/mmap.c:175
 remove_vma_list mm/mmap.c:2482 [inline]
 do_munmap+0x7ff/0xeb0 mm/mmap.c:2705
 mmap_region+0x14d/0xfd0 mm/mmap.c:1635
 do_mmap+0x57b/0xbe0 mm/mmap.c:1473
 do_mmap_pgoff include/linux/mm.h:2018 [inline]
 vm_mmap_pgoff+0x16b/0x1b0 mm/util.c:305
 SYSC_mmap_pgoff mm/mmap.c:1523 [inline]
 SyS_mmap_pgoff+0xd0/0x560 mm/mmap.c:1481
 SYSC_mmap arch/x86/kernel/sys_x86_64.c:95 [inline]
 SyS_mmap+0x16/0x20 arch/x86/kernel/sys_x86_64.c:86
 entry_SYSCALL_64_fastpath+0x23/0xc6
Memory state around the buggy address:
 ffff8801d62b7300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
 ffff8801d62b7380: fb fb fb fb fc fc fc fc fc fc fc fc fb fb fb fb
>ffff8801d62b7400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
                                     ^
 ffff8801d62b7480: fb fb fb fc fc fc fc fc fc fc fc fb fb fb fb fb
 ffff8801d62b7500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
==================================================================
==================================================================
BUG: KASAN: use-after-free in __read_once_size include/linux/compiler.h:243 [inline] at addr ffff8801c6e41ce8
BUG: KASAN: use-after-free in atomic_read arch/x86/include/asm/atomic.h:26 [inline] at addr ffff8801c6e41ce8
BUG: KASAN: use-after-free in static_key_count include/linux/jump_label.h:174 [inline] at addr ffff8801c6e41ce8
BUG: KASAN: use-after-free in static_key_false include/linux/jump_label.h:184 [inline] at addr ffff8801c6e41ce8
BUG: KASAN: use-after-free in perf_sw_event include/linux/perf_event.h:1039 [inline] at addr ffff8801c6e41ce8
BUG: KASAN: use-after-free in __do_page_fault+0xc80/0xd70 arch/x86/mm/fault.c:1438 at addr ffff8801c6e41ce8
Read of size 8 by task syz-executor4/16152
CPU: 1 PID: 16152 Comm: syz-executor4 Tainted: G    B           4.9.64-gfbb7468 #94
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 ffff8801ce717d88 ffffffff81d90429 ffff8801da155140 ffff8801c6e41c98
 ffff8801c6e41d50 ffffed0038dc839d ffff8801c6e41ce8 ffff8801ce717db0
 ffffffff8153a3ac ffffed0038dc839d ffff8801da155140 0000000000000000
Call Trace:
 [<ffffffff81d90429>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d90429>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff8153a3ac>] kasan_object_err+0x1c/0x70 mm/kasan/report.c:160
 [<ffffffff8153a66c>] print_address_description mm/kasan/report.c:198 [inline]
 [<ffffffff8153a66c>] kasan_report_error mm/kasan/report.c:287 [inline]
 [<ffffffff8153a66c>] kasan_report.part.1+0x21c/0x500 mm/kasan/report.c:309
 [<ffffffff8153aa09>] kasan_report mm/kasan/report.c:330 [inline]
 [<ffffffff8153aa09>] __asan_report_load8_noabort+0x29/0x30 mm/kasan/report.c:330
 [<ffffffff810ddb10>] __read_once_size include/linux/compiler.h:243 [inline]
 [<ffffffff810ddb10>] atomic_read arch/x86/include/asm/atomic.h:26 [inline]
 [<ffffffff810ddb10>] static_key_count include/linux/jump_label.h:174 [inline]
 [<ffffffff810ddb10>] static_key_false include/linux/jump_label.h:184 [inline]
 [<ffffffff810ddb10>] perf_sw_event include/linux/perf_event.h:1039 [inline]
 [<ffffffff810ddb10>] __do_page_fault+0xc80/0xd70 arch/x86/mm/fault.c:1438
 [<ffffffff810ddc27>] do_page_fault+0x27/0x30 arch/x86/mm/fault.c:1460
 [<ffffffff838aa958>] page_fault+0x28/0x30 arch/x86/entry/entry_64.S:1012
Object at ffff8801c6e41c98, in cache vm_area_struct size: 184
Allocated:
PID = 16165
 save_stack_trace+0x16/0x20 arch/x86/kernel/stacktrace.c:57
 save_stack+0x43/0xd0 mm/kasan/kasan.c:495
 set_track mm/kasan/kasan.c:507 [inline]
 kasan_kmalloc+0xad/0xe0 mm/kasan/kasan.c:598
 kasan_slab_alloc+0x12/0x20 mm/kasan/kasan.c:537
 slab_post_alloc_hook mm/slab.h:417 [inline]
 slab_alloc_node mm/slub.c:2715 [inline]
 slab_alloc mm/slub.c:2723 [inline]
 kmem_cache_alloc+0xba/0x290 mm/slub.c:2728
 kmem_cache_zalloc include/linux/slab.h:626 [inline]
 mmap_region+0x587/0xfd0 mm/mmap.c:1662
 do_mmap+0x57b/0xbe0 mm/mmap.c:1473
 do_mmap_pgoff include/linux/mm.h:2018 [inline]
 vm_mmap_pgoff+0x16b/0x1b0 mm/util.c:305
 SYSC_mmap_pgoff mm/mmap.c:1523 [inline]
 SyS_mmap_pgoff+0xd0/0x560 mm/mmap.c:1481
 SYSC_mmap arch/x86/kernel/sys_x86_64.c:95 [inline]
 SyS_mmap+0x16/0x20 arch/x86/kernel/sys_x86_64.c:86
 entry_SYSCALL_64_fastpath+0x23/0xc6
Freed:
PID = 16165
 save_stack_trace+0x16/0x20 arch/x86/kernel/stacktrace.c:57
 save_stack+0x43/0xd0 mm/kasan/kasan.c:495
 set_track mm/kasan/kasan.c:507 [inline]
 kasan_slab_free+0x73/0xc0 mm/kasan/kasan.c:571
 slab_free_hook mm/slub.c:1355 [inline]
 slab_free_freelist_hook mm/slub.c:1377 [inline]
 slab_free mm/slub.c:2958 [inline]
 kmem_cache_free+0xb2/0x2e0 mm/slub.c:2980
 remove_vma+0x11d/0x160 mm/mmap.c:175
 remove_vma_list mm/mmap.c:2482 [inline]
 do_munmap+0x7ff/0xeb0 mm/mmap.c:2705
 mmap_region+0x14d/0xfd0 mm/mmap.c:1635
 do_mmap+0x57b/0xbe0 mm/mmap.c:1473
 do_mmap_pgoff include/linux/mm.h:2018 [inline]
 vm_mmap_pgoff+0x16b/0x1b0 mm/util.c:305
 SYSC_mmap_pgoff mm/mmap.c:1523 [inline]
 SyS_mmap_pgoff+0xd0/0x560 mm/mmap.c:1481
 SYSC_mmap arch/x86/kernel/sys_x86_64.c:95 [inline]
 SyS_mmap+0x16/0x20 arch/x86/kernel/sys_x86_64.c:86
 entry_SYSCALL_64_fastpath+0x23/0xc6
Memory state around the buggy address:
 ffff8801c6e41b80: fc fc fc fc fb fb fb fb fb fb fb fb fb fb fb fb
 ffff8801c6e41c00: fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc fc
>ffff8801c6e41c80: fc fc fc fb fb fb fb fb fb fb fb fb fb fb fb fb
                                                          ^
 ffff8801c6e41d00: fb fb fb fb fb fb fb fb fb fb fc fc fc fc fc fc
 ffff8801c6e41d80: fc fc fb fb fb fb fb fb fb fb fb fb fb fb fb fb
==================================================================
device lo entered promiscuous mode
qtaguid: iface_stat: create(lo): no inet dev
qtaguid: iface_stat: create6(lo): no inet dev
IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
qtaguid: iface_stat: create6(lo): no inet dev
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=241 sclass=netlink_route_socket pig=16333 comm=syz-executor5
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 0 PID: 16446 Comm: syz-executor2 Tainted: G    B           4.9.64-gfbb7468 #94
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 ffff8801a8f3f8d0 ffffffff81d90429 ffff8801a8f3fbb0 0000000000000000
 ffff8801cff55490 ffff8801a8f3faa0 ffff8801cff55380 ffff8801a8f3fac8
 ffffffff8165e3c7 ffff8801a8f3f918 ffff8801a8f3fa20 00000001d8ce2067
Call Trace:
 [<ffffffff81d90429>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d90429>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff8165e3c7>] handle_userfault+0xa37/0x1300 fs/userfaultfd.c:323
 [<ffffffff814cd6c1>] do_anonymous_page mm/memory.c:2747 [inline]
 [<ffffffff814cd6c1>] handle_pte_fault mm/memory.c:3488 [inline]
 [<ffffffff814cd6c1>] __handle_mm_fault mm/memory.c:3577 [inline]
 [<ffffffff814cd6c1>] handle_mm_fault+0x1fd1/0x2530 mm/memory.c:3614
 [<ffffffff810dd447>] __do_page_fault+0x5b7/0xd70 arch/x86/mm/fault.c:1396
 [<ffffffff810ddc27>] do_page_fault+0x27/0x30 arch/x86/mm/fault.c:1460
 [<ffffffff838aa958>] page_fault+0x28/0x30 arch/x86/entry/entry_64.S:1012
 [<ffffffff838a9785>] entry_SYSCALL_64_fastpath+0x23/0xc6
TCP: request_sock_TCP: Possible SYN flooding on port 20005. Sending cookies.  Check SNMP counters.
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 0 PID: 16453 Comm: syz-executor2 Tainted: G    B           4.9.64-gfbb7468 #94
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 ffff8801ab2a78d0 ffffffff81d90429 ffff8801ab2a7bb0 0000000000000000
 ffff8801cff55910 ffff8801ab2a7aa0 ffff8801cff55800 ffff8801ab2a7ac8
 ffffffff8165e3c7 ffff8801ab2a7918 ffff8801ab2a7a20 00000001d94d7067
Call Trace:
 [<ffffffff81d90429>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d90429>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff8165e3c7>] handle_userfault+0xa37/0x1300 fs/userfaultfd.c:323
 [<ffffffff814cd6c1>] do_anonymous_page mm/memory.c:2747 [inline]
 [<ffffffff814cd6c1>] handle_pte_fault mm/memory.c:3488 [inline]
 [<ffffffff814cd6c1>] __handle_mm_fault mm/memory.c:3577 [inline]
 [<ffffffff814cd6c1>] handle_mm_fault+0x1fd1/0x2530 mm/memory.c:3614
 [<ffffffff810dd447>] __do_page_fault+0x5b7/0xd70 arch/x86/mm/fault.c:1396
 [<ffffffff810ddc27>] do_page_fault+0x27/0x30 arch/x86/mm/fault.c:1460
 [<ffffffff838aa958>] page_fault+0x28/0x30 arch/x86/entry/entry_64.S:1012
 [<ffffffff838a9785>] entry_SYSCALL_64_fastpath+0x23/0xc6
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 0 PID: 16446 Comm: syz-executor2 Tainted: G    B           4.9.64-gfbb7468 #94
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 ffff8801a8f3f980 ffffffff81d90429 ffff8801a8f3fc60 0000000000000000
 ffff8801cff55910 ffff8801a8f3fb50 ffff8801cff55800 ffff8801a8f3fb78
 ffffffff8165e3c7 0000000041b58ab3 ffff8801a8f3fad0 00000001d94d7067
Call Trace:
 [<ffffffff81d90429>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d90429>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff8165e3c7>] handle_userfault+0xa37/0x1300 fs/userfaultfd.c:323
 [<ffffffff814cd6c1>] do_anonymous_page mm/memory.c:2747 [inline]
 [<ffffffff814cd6c1>] handle_pte_fault mm/memory.c:3488 [inline]
 [<ffffffff814cd6c1>] __handle_mm_fault mm/memory.c:3577 [inline]
 [<ffffffff814cd6c1>] handle_mm_fault+0x1fd1/0x2530 mm/memory.c:3614
 [<ffffffff810dd447>] __do_page_fault+0x5b7/0xd70 arch/x86/mm/fault.c:1396
 [<ffffffff810ddc27>] do_page_fault+0x27/0x30 arch/x86/mm/fault.c:1460
 [<ffffffff838aa958>] page_fault+0x28/0x30 arch/x86/entry/entry_64.S:1012
 [<ffffffff838a9785>] entry_SYSCALL_64_fastpath+0x23/0xc6
device gre0 entered promiscuous mode
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 0 PID: 16529 Comm: syz-executor0 Tainted: G    B           4.9.64-gfbb7468 #94
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 ffff8801abf1f8e0 ffffffff81d90429 ffff8801abf1fbc0 0000000000000000
 ffff8801cff55d90 ffff8801abf1fab0 ffff8801cff55c80 ffff8801abf1fad8
 ffffffff8165e3c7 ffff8801ab894800 ffff8801abf1fa30 00000001cdbd8067
Call Trace:
 [<ffffffff81d90429>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d90429>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff8165e3c7>] handle_userfault+0xa37/0x1300 fs/userfaultfd.c:323
 [<ffffffff814cd6c1>] do_anonymous_page mm/memory.c:2747 [inline]
 [<ffffffff814cd6c1>] handle_pte_fault mm/memory.c:3488 [inline]
 [<ffffffff814cd6c1>] __handle_mm_fault mm/memory.c:3577 [inline]
 [<ffffffff814cd6c1>] handle_mm_fault+0x1fd1/0x2530 mm/memory.c:3614
 [<ffffffff810dd447>] __do_page_fault+0x5b7/0xd70 arch/x86/mm/fault.c:1396
 [<ffffffff810ddc27>] do_page_fault+0x27/0x30 arch/x86/mm/fault.c:1460
 [<ffffffff838aa958>] page_fault+0x28/0x30 arch/x86/entry/entry_64.S:1012
 [<ffffffff81494fa8>] strndup_user+0x28/0xb0 mm/util.c:160
 [<ffffffff81bb65c3>] SYSC_add_key security/keys/keyctl.c:82 [inline]
 [<ffffffff81bb65c3>] SyS_add_key+0xd3/0x390 security/keys/keyctl.c:60
 [<ffffffff838a9785>] entry_SYSCALL_64_fastpath+0x23/0xc6
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 0 PID: 16515 Comm: syz-executor0 Tainted: G    B           4.9.64-gfbb7468 #94
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 ffff8801a4f9f960 ffffffff81d90429 ffff8801a4f9fc40 0000000000000000
 ffff8801cff55d90 ffff8801a4f9fb30 ffff8801cff55c80 ffff8801a4f9fb58
 ffffffff8165e3c7 dffffc0000000000 ffff8801a4f9fab0 00000001cdbd8067
Call Trace:
 [<ffffffff81d90429>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d90429>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff8165e3c7>] handle_userfault+0xa37/0x1300 fs/userfaultfd.c:323
 [<ffffffff814cd6c1>] do_anonymous_page mm/memory.c:2747 [inline]
 [<ffffffff814cd6c1>] handle_pte_fault mm/memory.c:3488 [inline]
 [<ffffffff814cd6c1>] __handle_mm_fault mm/memory.c:3577 [inline]
 [<ffffffff814cd6c1>] handle_mm_fault+0x1fd1/0x2530 mm/memory.c:3614
 [<ffffffff810dd447>] __do_page_fault+0x5b7/0xd70 arch/x86/mm/fault.c:1396
 [<ffffffff810ddc27>] do_page_fault+0x27/0x30 arch/x86/mm/fault.c:1460
 [<ffffffff838aa958>] page_fault+0x28/0x30 arch/x86/entry/entry_64.S:1012
 [<ffffffff838a9785>] entry_SYSCALL_64_fastpath+0x23/0xc6
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 0 PID: 16507 Comm: syz-executor0 Tainted: G    B           4.9.64-gfbb7468 #94
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 ffff8801ab48f830 ffffffff81d90429 ffff8801ab48fb10 0000000000000000
 ffff8801cff55d90 ffff8801ab48fa00 ffff8801cff55c80 ffff8801ab48fa28
 ffffffff8165e3c7 ffff8801aae96000 ffff8801ab48f980 00000001cdbd8067
Call Trace:
 [<ffffffff81d90429>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d90429>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff8165e3c7>] handle_userfault+0xa37/0x1300 fs/userfaultfd.c:323
 [<ffffffff814cd6c1>] do_anonymous_page mm/memory.c:2747 [inline]
 [<ffffffff814cd6c1>] handle_pte_fault mm/memory.c:3488 [inline]
 [<ffffffff814cd6c1>] __handle_mm_fault mm/memory.c:3577 [inline]
 [<ffffffff814cd6c1>] handle_mm_fault+0x1fd1/0x2530 mm/memory.c:3614
 [<ffffffff810dd447>] __do_page_fault+0x5b7/0xd70 arch/x86/mm/fault.c:1396
 [<ffffffff810ddc27>] do_page_fault+0x27/0x30 arch/x86/mm/fault.c:1460
 [<ffffffff838aa958>] page_fault+0x28/0x30 arch/x86/entry/entry_64.S:1012
 [<ffffffff82ecf7a8>] move_addr_to_kernel net/socket.c:1568 [inline]
 [<ffffffff82ecf7a8>] SYSC_connect+0x288/0x310 net/socket.c:1553
 [<ffffffff82ed1f34>] SyS_connect+0x24/0x30 net/socket.c:1543
 [<ffffffff838a9785>] entry_SYSCALL_64_fastpath+0x23/0xc6
nla_parse: 4 callbacks suppressed
netlink: 3 bytes leftover after parsing attributes in process `syz-executor5'.
device gre0 entered promiscuous mode
IPVS: Creating netns size=2536 id=28
netlink: 3 bytes leftover after parsing attributes in process `syz-executor5'.
tc_dump_action: action bad kind
tc_dump_action: action bad kind
9pnet_virtio: no channels available for device H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
9pnet_virtio: no channels available for device H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
H
pktgen: kernel_thread() failed for cpu 0
pktgen: Cannot create thread for cpu 0 (-4)
pktgen: kernel_thread() failed for cpu 1
pktgen: Cannot create thread for cpu 1 (-4)
pktgen: Initialization failed for all threads
pktgen: kernel_thread() failed for cpu 0
pktgen: Cannot create thread for cpu 0 (-4)
pktgen: kernel_thread() failed for cpu 1
pktgen: Cannot create thread for cpu 1 (-4)
pktgen: Initialization failed for all threads
device lo entered promiscuous mode
device lo left promiscuous mode
netlink: 2 bytes leftover after parsing attributes in process `syz-executor3'.
IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
IPv6: NLM_F_CREATE should be set when creating new route
IPv6: NLM_F_CREATE should be set when creating new route
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
netlink: 2 bytes leftover after parsing attributes in process `syz-executor6'.
IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
IPv6: NLM_F_CREATE should be set when creating new route
IPv6: NLM_F_CREATE should be set when creating new route
netlink: 2 bytes leftover after parsing attributes in process `syz-executor3'.
IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
IPv6: NLM_F_CREATE should be set when creating new route
sock: process `syz-executor2' is using obsolete setsockopt SO_BSDCOMPAT
IPv6: NLM_F_CREATE should be set when creating new route
device lo entered promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo left promiscuous mode
netlink: 73 bytes leftover after parsing attributes in process `syz-executor2'.
netlink: 73 bytes leftover after parsing attributes in process `syz-executor2'.
IPVS: Creating netns size=2536 id=29
binder: 17065:17066 ioctl 5411 20000ffc returned -22
binder: 17065:17066 ioctl 5411 20000ffc returned -22
IPVS: Creating netns size=2536 id=30
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2 sclass=netlink_route_socket pig=17321 comm=syz-executor3
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=34605 sclass=netlink_route_socket pig=17321 comm=syz-executor3
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2 sclass=netlink_route_socket pig=17321 comm=syz-executor3
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=34605 sclass=netlink_route_socket pig=17321 comm=syz-executor3
keychord: invalid keycode count 0
keychord: invalid keycode count 0
device gre0 entered promiscuous mode
pktgen: kernel_thread() failed for cpu 0
pktgen: Cannot create thread for cpu 0 (-4)
pktgen: kernel_thread() failed for cpu 1
pktgen: Cannot create thread for cpu 1 (-4)
pktgen: Initialization failed for all threads
pktgen: kernel_thread() failed for cpu 0
pktgen: Cannot create thread for cpu 0 (-4)
pktgen: kernel_thread() failed for cpu 1
pktgen: Cannot create thread for cpu 1 (-4)
pktgen: Initialization failed for all threads
IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
?: renamed from tunl0
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 1 PID: 17524 Comm: syz-executor5 Tainted: G    B           4.9.64-gfbb7468 #94
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 ffff8801aa98f8b0 ffffffff81d90429 ffff8801aa98fb90 0000000000000000
 ffff8801a87b6110 ffff8801aa98fa80 ffff8801a87b6000 ffff8801aa98faa8
 ffffffff8165e3c7 ffffffff83897fe3 ffff8801aa98fa00 00000001aa70b067
Call Trace:
 [<ffffffff81d90429>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d90429>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff8165e3c7>] handle_userfault+0xa37/0x1300 fs/userfaultfd.c:323
 [<ffffffff814cd6c1>] do_anonymous_page mm/memory.c:2747 [inline]
 [<ffffffff814cd6c1>] handle_pte_fault mm/memory.c:3488 [inline]
 [<ffffffff814cd6c1>] __handle_mm_fault mm/memory.c:3577 [inline]
 [<ffffffff814cd6c1>] handle_mm_fault+0x1fd1/0x2530 mm/memory.c:3614
 [<ffffffff810dd447>] __do_page_fault+0x5b7/0xd70 arch/x86/mm/fault.c:1396
 [<ffffffff810ddc27>] do_page_fault+0x27/0x30 arch/x86/mm/fault.c:1460
 [<ffffffff838aa958>] page_fault+0x28/0x30 arch/x86/entry/entry_64.S:1012
 [<ffffffff838a9785>] entry_SYSCALL_64_fastpath+0x23/0xc6
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 1 PID: 17524 Comm: syz-executor5 Tainted: G    B           4.9.64-gfbb7468 #94
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 ffff8801aa98f8b0 ffffffff81d90429 ffff8801aa98fb90 0000000000000000
 ffff8801a87b6290 ffff8801aa98fa80 ffff8801a87b6180 ffff8801aa98faa8
 ffffffff8165e3c7 ffffffff83897fe3 ffff8801aa98fa00 00000001ad5b4067
Call Trace:
 [<ffffffff81d90429>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d90429>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff8165e3c7>] handle_userfault+0xa37/0x1300 fs/userfaultfd.c:323
 [<ffffffff814cd6c1>] do_anonymous_page mm/memory.c:2747 [inline]
 [<ffffffff814cd6c1>] handle_pte_fault mm/memory.c:3488 [inline]
 [<ffffffff814cd6c1>] __handle_mm_fault mm/memory.c:3577 [inline]
 [<ffffffff814cd6c1>] handle_mm_fault+0x1fd1/0x2530 mm/memory.c:3614
 [<ffffffff810dd447>] __do_page_fault+0x5b7/0xd70 arch/x86/mm/fault.c:1396
 [<ffffffff810ddc27>] do_page_fault+0x27/0x30 arch/x86/mm/fault.c:1460
 [<ffffffff838aa958>] page_fault+0x28/0x30 arch/x86/entry/entry_64.S:1012
 [<ffffffff838a9785>] entry_SYSCALL_64_fastpath+0x23/0xc6
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=17588 comm=syz-executor7
device eql entered promiscuous mode
device lo entered promiscuous mode
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5 sclass=netlink_route_socket pig=17659 comm=syz-executor4
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=4 sclass=netlink_route_socket pig=17659 comm=syz-executor4
device lo left promiscuous mode
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5 sclass=netlink_route_socket pig=17670 comm=syz-executor4
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=4 sclass=netlink_route_socket pig=17659 comm=syz-executor4
device lo entered promiscuous mode
device lo left promiscuous mode
netlink: 3 bytes leftover after parsing attributes in process `syz-executor7'.
netlink: 3 bytes leftover after parsing attributes in process `syz-executor7'.
netlink: 2 bytes leftover after parsing attributes in process `syz-executor6'.
binder: 17784:17786 ioctl 5609 208daffa returned -22
binder: 17784:17786 ioctl 5609 208daffa returned -22
device gre0 entered promiscuous mode
SELinux: unrecognized netlink message: protocol=9 nlmsg_type=65535 sclass=netlink_audit_socket pig=17916 comm=syz-executor5
device lo entered promiscuous mode
device gre0 entered promiscuous mode
device lo left promiscuous mode
keychord: Insufficient bytes present for keycount 133
keychord: Insufficient bytes present for keycount 133
device lo entered promiscuous mode
device lo left promiscuous mode
sg_write: data in/out 9969/38 bytes for SCSI command 0x0-- guessing data in;
   program syz-executor2 not setting count and/or reply_len properly
nla_parse: 1 callbacks suppressed
netlink: 13 bytes leftover after parsing attributes in process `syz-executor3'.
tc_dump_action: action bad kind
tc_dump_action: action bad kind
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
IPVS: Creating netns size=2536 id=31
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 0 PID: 18298 Comm: syz-executor5 Tainted: G    B           4.9.64-gfbb7468 #94
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 ffff8801d89579c0 ffffffff81d90429 ffff8801d8957ca0 0000000000000000
 ffff8801ac439d90 ffff8801d8957b90 ffff8801ac439c80 ffff8801d8957bb8
 ffffffff8165e3c7 be651384500f4696 ffff8801d8957b10[  104.530354] netlink: 3 bytes leftover after parsing attributes in process `syz-executor1'.
netlink: 3 bytes leftover after parsing attributes in process `syz-executor1'.
netlink: 3 bytes leftover after parsing attributes in process `syz-executor1'.
netlink: 3 bytes leftover after parsing attributes in process `syz-executor1'.
netlink: 3 bytes leftover after parsing attributes in process `syz-executor1'.
netlink: 3 bytes leftover after parsing attributes in process `syz-executor1'.
 00000001d9144067Call Trace:
 [<ffffffff81d90429>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d90429>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff8165e3c7>] handle_userfault+0xa37/0x1300 fs/userfaultfd.c:323
 [<ffffffff814cd6c1>] do_anonymous_page mm/memory.c:2747 [inline]
 [<ffffffff814cd6c1>] handle_pte_fault mm/memory.c:3488 [inline]
 [<ffffffff814cd6c1>] __handle_mm_fault mm/memory.c:3577 [inline]
 [<ffffffff814cd6c1>] handle_mm_fault+0x1fd1/0x2530 mm/memory.c:3614
 [<ffffffff810dd447>] __do_page_fault+0x5b7/0xd70 arch/x86/mm/fault.c:1396
 [<ffffffff810ddc27>] do_page_fault+0x27/0x30 arch/x86/mm/fault.c:1460
 [<ffffffff838aa958>] page_fault+0x28/0x30 arch/x86/entry/entry_64.S:1012
 [<ffffffff81bba46b>] SYSC_keyctl security/keys/keyctl.c:1604 [inline]
 [<ffffffff81bba46b>] SyS_keyctl+0x1fb/0x230 security/keys/keyctl.c:1592
 [<ffffffff838a9785>] entry_SYSCALL_64_fastpath+0x23/0xc6
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 1 PID: 18307 Comm: syz-executor5 Tainted: G    B           4.9.64-gfbb7468 #94
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 ffff8801d68c79c0 ffffffff81d90429 ffff8801d68c7ca0 0000000000000000
 ffff8801a87b6a10 ffff8801d68c7b90 ffff8801a87b6900 ffff8801d68c7bb8
 ffffffff8165e3c7 c2b959e6e8838c2d ffff8801d68c7b10 00000001c7560067
Call Trace:
 [<ffffffff81d90429>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d90429>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff8165e3c7>] handle_userfault+0xa37/0x1300 fs/userfaultfd.c:323
 [<ffffffff814cd6c1>] do_anonymous_page mm/memory.c:2747 [inline]
 [<ffffffff814cd6c1>] handle_pte_fault mm/memory.c:3488 [inline]
 [<ffffffff814cd6c1>] __handle_mm_fault mm/memory.c:3577 [inline]
 [<ffffffff814cd6c1>] handle_mm_fault+0x1fd1/0x2530 mm/memory.c:3614
 [<ffffffff810dd447>] __do_page_fault+0x5b7/0xd70 arch/x86/mm/fault.c:1396
 [<ffffffff810ddc27>] do_page_fault+0x27/0x30 arch/x86/mm/fault.c:1460
 [<ffffffff838aa958>] page_fault+0x28/0x30 arch/x86/entry/entry_64.S:1012
 [<ffffffff81bba46b>] SYSC_keyctl security/keys/keyctl.c:1604 [inline]
 [<ffffffff81bba46b>] SyS_keyctl+0x1fb/0x230 security/keys/keyctl.c:1592
 [<ffffffff838a9785>] entry_SYSCALL_64_fastpath+0x23/0xc6
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 1 PID: 18289 Comm: syz-executor5 Tainted: G    B           4.9.64-gfbb7468 #94
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 ffff8801cf927990 ffffffff81d90429 ffff8801cf927c70 0000000000000000
 ffff8801a87b6a10 ffff8801cf927b60 ffff8801a87b6900 ffff8801cf927b88
 ffffffff8165e3c7 ffff8801d80c9800 0000000000000000 0000000000000000
Call Trace:
 [<ffffffff81d90429>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d90429>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff8165e3c7>] handle_userfault+0xa37/0x1300 fs/userfaultfd.c:323
 [<ffffffff814cd6c1>] do_anonymous_page mm/memory.c:2747 [inline]
 [<ffffffff814cd6c1>] handle_pte_fault mm/memory.c:3488 [inline]
 [<ffffffff814cd6c1>] __handle_mm_fault mm/memory.c:3577 [inline]
 [<ffffffff814cd6c1>] handle_mm_fault+0x1fd1/0x2530 mm/memory.c:3614
 [<ffffffff810dd447>] __do_page_fault+0x5b7/0xd70 arch/x86/mm/fault.c:1396
 [<ffffffff810ddc27>] do_page_fault+0x27/0x30 arch/x86/mm/fault.c:1460
 [<ffffffff838aa958>] page_fault+0x28/0x30 arch/x86/entry/entry_64.S:1012
 [<ffffffff838a9785>] entry_SYSCALL_64_fastpath+0x23/0xc6
Tx-ring is not supported.
Tx-ring is not supported.
netlink: 3 bytes leftover after parsing attributes in process `syz-executor6'.
netlink: 3 bytes leftover after parsing attributes in process `syz-executor6'.
device gre0 entered promiscuous mode
netlink: 8 bytes leftover after parsing attributes in process `syz-executor2'.