[ 47.784508] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 47.794269] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 47.803555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 47.813439] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 47.823842] IPv6: ADDRCONF(NETDEV_UP): batadv_slave_1: link is not ready
[ 47.830852] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 47.853486] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 47.864375] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 48.083615] audit: type=1400 audit(1587680613.585:11): avc: denied { create } for pid=7885 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dccp_socket permissive=1
[ 461.652713] syz-executor.4 (6590) used greatest stack depth: 23176 bytes left
[ 462.862019] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 462.868969] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 462.876801] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 462.883772] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 462.892606] device bridge_slave_1 left promiscuous mode
[ 462.898325] bridge0: port 2(bridge_slave_1) entered disabled state
[ 462.952666] device bridge_slave_0 left promiscuous mode
[ 462.958118] bridge0: port 1(bridge_slave_0) entered disabled state
[ 463.014742] device veth1_macvtap left promiscuous mode
[ 463.020600] device veth0_macvtap left promiscuous mode
[ 463.025933] device veth1_vlan left promiscuous mode
[ 463.031557] device veth0_vlan left promiscuous mode
[ 467.494160] device hsr_slave_1 left promiscuous mode
[ 467.543269] device hsr_slave_0 left promiscuous mode
[ 467.587312] team0 (unregistering): Port device team_slave_1 removed
[ 467.597194] team0 (unregistering): Port device team_slave_0 removed
[ 467.607749] bond0 (unregistering): Releasing backup interface bond_slave_1
[ 467.634055] bond0 (unregistering): Releasing backup interface bond_slave_0
[ 467.700289] bond0 (unregistering): Released all slaves
Warning: Permanently added '10.128.0.40' (ECDSA) to the list of known hosts.
[ 468.056301] IPVS: ftp: loaded support on port[0] = 21
[ 468.178838] chnl_net:caif_netlink_parms(): no params data found
[ 468.259087] bridge0: port 1(bridge_slave_0) entered blocking state
[ 468.265519] bridge0: port 1(bridge_slave_0) entered disabled state
[ 468.279832] device bridge_slave_0 entered promiscuous mode
[ 468.286951] bridge0: port 2(bridge_slave_1) entered blocking state
[ 468.299871] bridge0: port 2(bridge_slave_1) entered disabled state
[ 468.307039] device bridge_slave_1 entered promiscuous mode
[ 468.335794] bond0: Enslaving bond_slave_0 as an active interface with an up link
[ 468.347329] bond0: Enslaving bond_slave_1 as an active interface with an up link
[ 468.375124] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[ 468.386572] team0: Port device team_slave_0 added
[ 468.395498] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[ 468.411278] team0: Port device team_slave_1 added
[ 468.434445] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 468.444043] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 468.476089] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 468.493210] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 468.500234] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 468.538443] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 468.555224] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[ 468.563248] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[ 468.630092] device hsr_slave_0 entered promiscuous mode
[ 468.668394] device hsr_slave_1 entered promiscuous mode
[ 468.708788] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[ 468.715889] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[ 468.813836] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[ 468.844176] 8021q: adding VLAN 0 to HW filter on device bond0
[ 468.853476] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[ 468.864254] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[ 468.872355] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 468.880553] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 468.889962] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[ 468.896038] 8021q: adding VLAN 0 to HW filter on device team0
[ 468.907005] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[ 468.914878] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 468.923027] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 468.931164] bridge0: port 1(bridge_slave_0) entered blocking state
[ 468.937520] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 468.945320] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 468.954936] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[ 468.966285] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 468.975055] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 468.983754] bridge0: port 2(bridge_slave_1) entered blocking state
[ 468.990171] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 469.006845] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[ 469.014163] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 469.028877] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[ 469.035940] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 469.048554] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[ 469.057015] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[ 469.064888] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 469.072970] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 469.081022] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 469.089490] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 469.097120] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 469.106640] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready
[ 469.114621] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 469.122545] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 469.133373] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready
[ 469.140824] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 469.149952] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 469.159731] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[ 469.165796] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 469.180197] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready
[ 469.187196] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[ 469.193625] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 469.200766] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 469.212699] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 469.224966] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready
[ 469.234456] IPv6: ADDRCONF(NETDEV_UP): veth1_virt_wifi: link is not ready
[ 469.242004] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 469.251490] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 469.277075] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready
[ 469.284505] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready
[ 469.291907] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready
[ 470.238043] IPv6: ADDRCONF(NETDEV_UP): veth1_vlan: link is not ready
[ 470.246045] device veth0_vlan entered promiscuous mode
[ 470.252545] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 470.260651] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 470.271449] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 470.278848] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 470.666984] device veth1_vlan entered promiscuous mode
[ 471.063727] IPv6: ADDRCONF(NETDEV_UP): veth0_macvtap: link is not ready
[ 471.073664] IPv6: ADDRCONF(NETDEV_UP): veth1_macvtap: link is not ready
[ 471.081371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 471.089895] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 471.100361] device veth0_macvtap entered promiscuous mode
[ 471.106377] IPv6: ADDRCONF(NETDEV_UP): macvtap0: link is not ready
[ 471.485641] device veth1_macvtap entered promiscuous mode
[ 471.491877] IPv6: ADDRCONF(NETDEV_UP): macsec0: link is not ready
[ 471.499594] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 471.506774] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 471.520224] IPv6: ADDRCONF(NETDEV_UP): veth0_to_batadv: link is not ready
[ 471.532592] IPv6: ADDRCONF(NETDEV_UP): veth1_to_batadv: link is not ready
[ 471.541577] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 471.552655] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 471.562330] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 471.572199] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 471.581382] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 471.591197] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 471.600472] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 471.610247] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 471.619395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 471.629821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 471.639844] IPv6: ADDRCONF(NETDEV_UP): batadv_slave_0: link is not ready
[ 471.646789] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 471.657094] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 471.664841] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 471.674263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 471.684151] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 471.693366] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 471.703170] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 471.712480] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 471.722264] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 471.731453] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 471.741226] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 471.750389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 471.760179] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 471.770158] IPv6: ADDRCONF(NETDEV_UP): batadv_slave_1: link is not ready
[ 471.777219] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 471.787923] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 471.795751] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
*** stack smashing detected ***: ./syz-executor095519402 terminated
tun: can't open /dev/net/tun: please enable CONFIG_TUN=y
otherwise fuzzing or reproducing might not work as intended
[ 471.877678] audit: type=1400 audit(1587681037.407:12): avc: denied { create } for pid=30134 comm="syz-executor095" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dccp_socket permissive=1
[ 472.856469] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 472.866493] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 472.877095] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 472.888042] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 472.897151] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 472.906951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 472.916317] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 472.926082] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 472.935443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 472.945204] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 473.056681] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 473.066840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 473.076169] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 473.086141] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 473.095339] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 473.105097] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 473.114285] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 473.124164] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 473.133318] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 473.143090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 473.313858] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 473.320849] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 473.330148] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 473.336854] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 473.345513] device bridge_slave_1 left promiscuous mode
[ 473.351416] bridge0: port 2(bridge_slave_1) entered disabled state
[ 473.389101] device bridge_slave_0 left promiscuous mode
[ 473.394574] bridge0: port 1(bridge_slave_0) entered disabled state
[ 473.430334] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 473.437099] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 473.445102] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 473.452282] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 473.460995] device bridge_slave_1 left promiscuous mode
[ 473.466406] bridge0: port 2(bridge_slave_1) entered disabled state
[ 473.507987] device bridge_slave_0 left promiscuous mode
[ 473.513496] bridge0: port 1(bridge_slave_0) entered disabled state
[ 473.570283] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 473.577004] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 473.585059] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 473.592224] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 473.600972] device bridge_slave_1 left promiscuous mode
[ 473.606395] bridge0: port 2(bridge_slave_1) entered disabled state
[ 473.638308] device bridge_slave_0 left promiscuous mode
[ 473.643788] bridge0: port 1(bridge_slave_0) entered disabled state
[ 473.689838] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 473.696654] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 473.704796] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 473.712004] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 473.720836] device bridge_slave_1 left promiscuous mode
[ 473.726285] bridge0: port 2(bridge_slave_1) entered disabled state
[ 473.778212] device bridge_slave_0 left promiscuous mode
[ 473.783717] bridge0: port 1(bridge_slave_0) entered disabled state
[ 473.840091] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 473.846811] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 473.855104] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 473.862343] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 473.870520] device bridge_slave_1 left promiscuous mode
[ 473.875945] bridge0: port 2(bridge_slave_1) entered disabled state
[ 473.907964] device bridge_slave_0 left promiscuous mode
[ 473.913516] bridge0: port 1(bridge_slave_0) entered disabled state
[ 473.974281] device veth1_macvtap left promiscuous mode
[ 473.979797] device veth0_macvtap left promiscuous mode
[ 473.985091] device veth1_vlan left promiscuous mode
[ 473.990274] device veth0_vlan left promiscuous mode
[ 473.995606] device veth1_macvtap left promiscuous mode
[ 474.001745] device veth0_macvtap left promiscuous mode
[ 474.007073] device veth1_vlan left promiscuous mode
[ 474.012191] device veth0_vlan left promiscuous mode
[ 474.017727] device veth1_macvtap left promiscuous mode
[ 474.023020] device veth0_macvtap left promiscuous mode
[ 474.028875] device veth1_vlan left promiscuous mode
[ 474.033937] device veth0_vlan left promiscuous mode
[ 474.039805] device veth1_macvtap left promiscuous mode
[ 474.045115] device veth0_macvtap left promiscuous mode
[ 474.050570] device veth1_vlan left promiscuous mode
[ 474.055751] device veth0_vlan left promiscuous mode
[ 474.061571] device veth1_macvtap left promiscuous mode
[ 474.066952] device veth0_macvtap left promiscuous mode
[ 474.072382] device veth1_vlan left promiscuous mode
[ 474.077724] device veth0_vlan left promiscuous mode
[ 476.110402] device hsr_slave_1 left promiscuous mode
[ 476.169450] device hsr_slave_0 left promiscuous mode
[ 476.233078] team0 (unregistering): Port device team_slave_1 removed
[ 476.242529] team0 (unregistering): Port device team_slave_0 removed
[ 476.251776] bond0 (unregistering): Releasing backup interface bond_slave_1
[ 476.292246] bond0 (unregistering): Releasing backup interface bond_slave_0
[ 476.366532] bond0 (unregistering): Released all slaves
[ 476.471415] device hsr_slave_1 left promiscuous mode
[ 476.510098] device hsr_slave_0 left promiscuous mode
[ 476.554540] team0 (unregistering): Port device team_slave_1 removed
[ 476.563413] team0 (unregistering): Port device team_slave_0 removed
[ 476.572890] bond0 (unregistering): Releasing backup interface bond_slave_1
[ 476.620253] bond0 (unregistering): Releasing backup interface bond_slave_0
[ 476.685695] bond0 (unregistering): Released all slaves
[ 476.799664] device hsr_slave_1 left promiscuous mode
[ 476.850803] device hsr_slave_0 left promiscuous mode
[ 476.894741] team0 (unregistering): Port device team_slave_1 removed
[ 476.903574] team0 (unregistering): Port device team_slave_0 removed
[ 476.913548] bond0 (unregistering): Releasing backup interface bond_slave_1
[ 476.959812] bond0 (unregistering): Releasing backup interface bond_slave_0
[ 477.026676] bond0 (unregistering): Released all slaves
[ 477.134425] device hsr_slave_1 left promiscuous mode
[ 477.170744] device hsr_slave_0 left promiscuous mode
[ 477.213540] team0 (unregistering): Port device team_slave_1 removed
[ 477.224321] team0 (unregistering): Port device team_slave_0 removed
[ 477.233445] bond0 (unregistering): Releasing backup interface bond_slave_1
[ 477.281309] bond0 (unregistering): Releasing backup interface bond_slave_0
[ 477.337687] bond0 (unregistering): Released all slaves
[ 477.442391] device hsr_slave_1 left promiscuous mode
[ 477.499069] device hsr_slave_0 left promiscuous mode
[ 477.583222] team0 (unregistering): Port device team_slave_1 removed
[ 477.592828] team0 (unregistering): Port device team_slave_0 removed
[ 477.601577] bond0 (unregistering): Releasing backup interface bond_slave_1
[ 477.639896] bond0 (unregistering): Releasing backup interface bond_slave_0
[ 477.707567] bond0 (unregistering): Released all slaves
[ 478.747695] NOHZ: local_softirq_pending 08
[ 480.827071] ==================================================================
[ 480.834929] BUG: KASAN: use-after-free in sctp_do_8_2_transport_strike.isra.19+0x79a/0x800
[ 480.843354] Read of size 4 at addr ffff8880838e2ed4 by task swapper/0/0
[ 480.850080]
[ 480.851693] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 4.19.118-syzkaller #0
[ 480.858764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 480.868092] Call Trace:
[ 480.870664]
[ 480.872830] dump_stack+0x123/0x177
[ 480.876489] print_address_description.cold.8+0x9/0x1ff
[ 480.881829] kasan_report.cold.9+0x242/0x309
[ 480.886228] ? sctp_do_8_2_transport_strike.isra.19+0x79a/0x800
[ 480.892262] __asan_report_load4_noabort+0x14/0x20
[ 480.897169] sctp_do_8_2_transport_strike.isra.19+0x79a/0x800
[ 480.903024] ? sctp_sf_t2_timer_expire+0x455/0x5b0
[ 480.907941] sctp_do_sm+0x328e/0x5020
[ 480.911759] ? sctp_do_8_2_transport_strike.isra.19+0x800/0x800
[ 480.917880] ? mark_held_locks+0x130/0x130
[ 480.922153] ? mark_held_locks+0x130/0x130
[ 480.926364] ? __lock_acquire+0x792/0x4980
[ 480.930633] ? __lock_acquire+0x792/0x4980
[ 480.934928] sctp_generate_timeout_event+0x185/0x300
[ 480.940047] sctp_generate_t2_shutdown_event+0x15/0x20
[ 480.945367] call_timer_fn+0x14c/0x510
[ 480.949244] ? sctp_generate_t4_rto_event+0x20/0x20
[ 480.954236] ? process_timeout+0x40/0x40
[ 480.958274] ? _raw_spin_unlock_irq+0x27/0x80
[ 480.962800] ? trace_hardirqs_on+0x28/0x190
[ 480.967124] ? sctp_generate_t4_rto_event+0x20/0x20
[ 480.972184] run_timer_softirq+0xb63/0x1180
[ 480.976495] ? add_timer+0x930/0x930
[ 480.980284] ? kvm_clock_read+0x18/0x30
[ 480.984240] ? kvm_sched_clock_read+0x9/0x20
[ 480.988633] __do_softirq+0x260/0x92d
[ 480.992493] ? sched_clock_cpu+0x1b/0x1b0
[ 480.996682] irq_exit+0x17f/0x1c0
[ 481.000111] smp_apic_timer_interrupt+0x13e/0x540
[ 481.004956] apic_timer_interrupt+0xf/0x20
[ 481.009165]
[ 481.011405] RIP: 0010:native_safe_halt+0x12/0x20
[ 481.016135] Code: 11 ff ff ff 4c 89 e7 e8 4c ef bc fa eb 97 90 90 90 90 90 90 90 90 90 90 55 48 89 e5 e9 07 00 00 00 0f 00 2d 70 1e 53 00 fb f4 <5d> c3 66 90 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 e9 07 00 00
[ 481.035029] RSP: 0018:ffffffff88407c88 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13
[ 481.042709] RAX: dffffc0000000000 RBX: ffffffff88479e00 RCX: 0000000000000000
[ 481.049975] RDX: 1ffffffff10a4034 RSI: 0000000000000001 RDI: ffffffff885201a0
[ 481.057225] RBP: ffffffff88407c88 R08: ffffed1015d44733 R09: 0000000000000000
[ 481.064467] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 481.071736] R13: ffffffff88520190 R14: ffffffff892276d8 R15: 0000000000000000
[ 481.078992] default_idle+0x51/0x310
[ 481.082702] arch_cpu_idle+0xa/0x10
[ 481.086314] default_idle_call+0x6d/0x90
[ 481.090369] do_idle+0x41e/0x560
[ 481.093732] ? arch_cpu_idle_exit+0x70/0x70
[ 481.098028] cpu_startup_entry+0xc8/0xe0
[ 481.102060] ? cpu_in_idle+0x20/0x20
[ 481.105751] rest_init+0x193/0x199
[ 481.109310] start_kernel+0x6a9/0x6e2
[ 481.113099] ? mem_encrypt_init+0x1/0x1
[ 481.117053] x86_64_start_reservations+0x29/0x2b
[ 481.121797] x86_64_start_kernel+0x76/0x79
[ 481.126032] secondary_startup_64+0xa4/0xb0
[ 481.130344]
[ 481.131946] Allocated by task 30134:
[ 481.135641] save_stack+0x43/0xd0
[ 481.139067] kasan_kmalloc+0xc7/0xe0
[ 481.142774] kmem_cache_alloc_trace+0x152/0x740
[ 481.147452] sctp_transport_new+0x53/0x6a0
[ 481.151674] sctp_assoc_add_peer+0x1c1/0xe40
[ 481.156076] sctp_assoc_update+0x93a/0xd40
[ 481.160283] sctp_do_sm+0x2220/0x5020
[ 481.164073] sctp_assoc_bh_rcv+0x27b/0x5c0
[ 481.168279] sctp_inq_push+0x1a5/0x230
[ 481.172190] sctp_backlog_rcv+0x1ac/0x1280
[ 481.176434] __release_sock+0x107/0x360
[ 481.180396] release_sock+0x4f/0x180
[ 481.184085] sctp_wait_for_connect+0x22c/0x4c0
[ 481.188654] __sctp_connect+0x83d/0x9e0
[ 481.192600] __sctp_setsockopt_connectx+0xec/0x140
[ 481.197500] sctp_setsockopt+0x1e88/0x4390
[ 481.201707] sock_common_setsockopt+0x73/0xf0
[ 481.206239] __sys_setsockopt+0x13e/0x210
[ 481.210364] __x64_sys_setsockopt+0xb9/0x150
[ 481.214782] do_syscall_64+0xd0/0x4e0
[ 481.218557] entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 481.223720]
[ 481.225339] Freed by task 0:
[ 481.228351] save_stack+0x43/0xd0
[ 481.231778] __kasan_slab_free+0x102/0x150
[ 481.235999] kasan_slab_free+0xe/0x10
[ 481.239770] kfree+0xcf/0x220
[ 481.242850] sctp_transport_destroy_rcu+0x44/0x50
[ 481.247702] rcu_process_callbacks+0xbcd/0x19a0
[ 481.252371] __do_softirq+0x260/0x92d
[ 481.256147]
[ 481.257750] The buggy address belongs to the object at ffff8880838e2d80
[ 481.257750] which belongs to the cache kmalloc-1024 of size 1024
[ 481.270562] The buggy address is located 340 bytes inside of
[ 481.270562] 1024-byte region [ffff8880838e2d80, ffff8880838e3180)
[ 481.282510] The buggy address belongs to the page:
[ 481.287411] page:ffffea00020e3880 count:1 mapcount:0 mapping:ffff88812c29cac0 index:0x0 compound_mapcount: 0
[ 481.297364] flags: 0xfffe0000008100(slab|head)
[ 481.301933] raw: 00fffe0000008100 ffffea0002415808 ffffea00028ecd08 ffff88812c29cac0
[ 481.309810] raw: 0000000000000000 ffff8880838e2000 0000000100000007 0000000000000000
[ 481.317677] page dumped because: kasan: bad access detected
[ 481.323372]
[ 481.324971] Memory state around the buggy address:
[ 481.329872] ffff8880838e2d80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 481.337203] ffff8880838e2e00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 481.344535] >ffff8880838e2e80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 481.351865] ^
[ 481.357807] ffff8880838e2f00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 481.365139] ffff8880838e2f80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 481.372468] ==================================================================
[ 481.379902] Disabling lock debugging due to kernel taint
[ 481.385385] Kernel panic - not syncing: panic_on_warn set ...
[ 481.385385]
[ 481.392736] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G B 4.19.118-syzkaller #0
[ 481.401243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 481.410585] Call Trace:
[ 481.413149]
[ 481.415274] dump_stack+0x123/0x177
[ 481.418915] panic+0x1cd/0x375
[ 481.422079] ? __warn_printk+0xd6/0xd6
[ 481.425987] ? do_raw_spin_unlock+0x54/0x260
[ 481.430456] kasan_end_report+0x47/0x4f
[ 481.434403] kasan_report.cold.9+0x76/0x309
[ 481.438785] ? sctp_do_8_2_transport_strike.isra.19+0x79a/0x800
[ 481.444835] __asan_report_load4_noabort+0x14/0x20
[ 481.449736] sctp_do_8_2_transport_strike.isra.19+0x79a/0x800
[ 481.455593] ? sctp_sf_t2_timer_expire+0x455/0x5b0
[ 481.460512] sctp_do_sm+0x328e/0x5020
[ 481.464304] ? sctp_do_8_2_transport_strike.isra.19+0x800/0x800
[ 481.470351] ? mark_held_locks+0x130/0x130
[ 481.474558] ? mark_held_locks+0x130/0x130
[ 481.478763] ? __lock_acquire+0x792/0x4980
[ 481.482984] ? __lock_acquire+0x792/0x4980
[ 481.487196] sctp_generate_timeout_event+0x185/0x300
[ 481.492279] sctp_generate_t2_shutdown_event+0x15/0x20
[ 481.497527] call_timer_fn+0x14c/0x510
[ 481.501388] ? sctp_generate_t4_rto_event+0x20/0x20
[ 481.506376] ? process_timeout+0x40/0x40
[ 481.510426] ? _raw_spin_unlock_irq+0x27/0x80
[ 481.514893] ? trace_hardirqs_on+0x28/0x190
[ 481.519187] ? sctp_generate_t4_rto_event+0x20/0x20
[ 481.524174] run_timer_softirq+0xb63/0x1180
[ 481.528505] ? add_timer+0x930/0x930
[ 481.532189] ? kvm_clock_read+0x18/0x30
[ 481.536148] ? kvm_sched_clock_read+0x9/0x20
[ 481.540546] __do_softirq+0x260/0x92d
[ 481.544319] ? sched_clock_cpu+0x1b/0x1b0
[ 481.548440] irq_exit+0x17f/0x1c0
[ 481.551865] smp_apic_timer_interrupt+0x13e/0x540
[ 481.556699] apic_timer_interrupt+0xf/0x20
[ 481.560918]
[ 481.563145] RIP: 0010:native_safe_halt+0x12/0x20
[ 481.567888] Code: 11 ff ff ff 4c 89 e7 e8 4c ef bc fa eb 97 90 90 90 90 90 90 90 90 90 90 55 48 89 e5 e9 07 00 00 00 0f 00 2d 70 1e 53 00 fb f4 <5d> c3 66 90 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 e9 07 00 00
[ 481.586788] RSP: 0018:ffffffff88407c88 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13
[ 481.594483] RAX: dffffc0000000000 RBX: ffffffff88479e00 RCX: 0000000000000000
[ 481.601729] RDX: 1ffffffff10a4034 RSI: 0000000000000001 RDI: ffffffff885201a0
[ 481.608972] RBP: ffffffff88407c88 R08: ffffed1015d44733 R09: 0000000000000000
[ 481.616234] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 481.623476] R13: ffffffff88520190 R14: ffffffff892276d8 R15: 0000000000000000
[ 481.630733] default_idle+0x51/0x310
[ 481.634448] arch_cpu_idle+0xa/0x10
[ 481.638062] default_idle_call+0x6d/0x90
[ 481.642110] do_idle+0x41e/0x560
[ 481.645447] ? arch_cpu_idle_exit+0x70/0x70
[ 481.649756] cpu_startup_entry+0xc8/0xe0
[ 481.653790] ? cpu_in_idle+0x20/0x20
[ 481.657496] rest_init+0x193/0x199
[ 481.661012] start_kernel+0x6a9/0x6e2
[ 481.664799] ? mem_encrypt_init+0x1/0x1
[ 481.668776] x86_64_start_reservations+0x29/0x2b
[ 481.673505] x86_64_start_kernel+0x76/0x79
[ 481.677713] secondary_startup_64+0xa4/0xb0
[ 481.683383] Kernel Offset: disabled
[ 481.686997] Rebooting in 86400 seconds..