

Debian GNU/Linux 9 syzkaller ttyS0

syzkaller login: [   32.075630] audit: type=1400 audit(1589282616.862:8): avc:  denied  { execmem } for  pid=6248 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[   32.100796] IPVS: ftp: loaded support on port[0] = 21
[   32.522549] can: request_module (can-proto-0) failed.
[   33.517986] can: request_module (can-proto-0) failed.
[   33.526205] can: request_module (can-proto-0) failed.
[   33.552557] audit: type=1400 audit(1589282618.343:9): avc:  denied  { create } for  pid=6227 comm="syz-fuzzer" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dccp_socket permissive=1
Warning: Permanently added '10.128.10.56' (ECDSA) to the list of known hosts.
2020/05/12 11:23:45 parsed 1 programs
2020/05/12 11:23:46 executed programs: 0
[   41.471234] audit: type=1400 audit(1589282626.254:10): avc:  denied  { execmem } for  pid=6373 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[   41.534560] IPVS: ftp: loaded support on port[0] = 21
[   41.551527] IPVS: ftp: loaded support on port[0] = 21
[   41.621707] IPVS: ftp: loaded support on port[0] = 21
[   41.623325] IPVS: ftp: loaded support on port[0] = 21
[   41.651950] IPVS: ftp: loaded support on port[0] = 21
[   41.684692] IPVS: ftp: loaded support on port[0] = 21
[   41.770872] chnl_net:caif_netlink_parms(): no params data found
[   41.919341] bridge0: port 1(bridge_slave_0) entered blocking state
[   41.926749] bridge0: port 1(bridge_slave_0) entered disabled state
[   41.934757] device bridge_slave_0 entered promiscuous mode
[   41.949077] bridge0: port 2(bridge_slave_1) entered blocking state
[   41.955533] bridge0: port 2(bridge_slave_1) entered disabled state
[   41.965170] device bridge_slave_1 entered promiscuous mode
[   41.972434] chnl_net:caif_netlink_parms(): no params data found
[   42.024826] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   42.048528] bridge0: port 1(bridge_slave_0) entered blocking state
[   42.057824] bridge0: port 1(bridge_slave_0) entered disabled state
[   42.066052] device bridge_slave_0 entered promiscuous mode
[   42.074647] bridge0: port 2(bridge_slave_1) entered blocking state
[   42.081829] bridge0: port 2(bridge_slave_1) entered disabled state
[   42.088617] device bridge_slave_1 entered promiscuous mode
[   42.103743] chnl_net:caif_netlink_parms(): no params data found
[   42.112088] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   42.123579] chnl_net:caif_netlink_parms(): no params data found
[   42.181445] chnl_net:caif_netlink_parms(): no params data found
[   42.195842] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   42.207511] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   42.219801] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   42.227457] team0: Port device team_slave_0 added
[   42.259340] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   42.267380] team0: Port device team_slave_1 added
[   42.278342] chnl_net:caif_netlink_parms(): no params data found
[   42.302509] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   42.314236] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   42.337104] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   42.346653] team0: Port device team_slave_0 added
[   42.376954] bridge0: port 1(bridge_slave_0) entered blocking state
[   42.384384] bridge0: port 1(bridge_slave_0) entered disabled state
[   42.391880] device bridge_slave_0 entered promiscuous mode
[   42.399149] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   42.408115] team0: Port device team_slave_1 added
[   42.417622] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   42.425351] bridge0: port 1(bridge_slave_0) entered blocking state
[   42.432345] bridge0: port 1(bridge_slave_0) entered disabled state
[   42.439144] device bridge_slave_0 entered promiscuous mode
[   42.446289] bridge0: port 1(bridge_slave_0) entered blocking state
[   42.452942] bridge0: port 1(bridge_slave_0) entered disabled state
[   42.460226] device bridge_slave_0 entered promiscuous mode
[   42.470588] bridge0: port 2(bridge_slave_1) entered blocking state
[   42.476923] bridge0: port 2(bridge_slave_1) entered disabled state
[   42.483931] device bridge_slave_1 entered promiscuous mode
[   42.494725] bridge0: port 2(bridge_slave_1) entered blocking state
[   42.501393] bridge0: port 2(bridge_slave_1) entered disabled state
[   42.508176] device bridge_slave_1 entered promiscuous mode
[   42.541632] device hsr_slave_0 entered promiscuous mode
[   42.592167] device hsr_slave_1 entered promiscuous mode
[   42.649971] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   42.657141] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[   42.664256] bridge0: port 2(bridge_slave_1) entered blocking state
[   42.673229] bridge0: port 2(bridge_slave_1) entered disabled state
[   42.680514] device bridge_slave_1 entered promiscuous mode
[   42.698493] bridge0: port 1(bridge_slave_0) entered blocking state
[   42.706326] bridge0: port 1(bridge_slave_0) entered disabled state
[   42.713831] device bridge_slave_0 entered promiscuous mode
[   42.723854] bridge0: port 2(bridge_slave_1) entered blocking state
[   42.730526] bridge0: port 2(bridge_slave_1) entered disabled state
[   42.737477] device bridge_slave_1 entered promiscuous mode
[   42.745326] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[   42.822726] device hsr_slave_0 entered promiscuous mode
[   42.859969] device hsr_slave_1 entered promiscuous mode
[   42.905368] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   42.914867] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   42.931931] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[   42.939702] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   42.948289] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   42.961212] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   42.970233] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   42.978063] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[   42.989795] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   43.014557] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   43.035346] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   43.042597] team0: Port device team_slave_0 added
[   43.048539] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   43.056021] team0: Port device team_slave_0 added
[   43.062492] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   43.069998] team0: Port device team_slave_1 added
[   43.075107] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   43.083953] team0: Port device team_slave_0 added
[   43.093754] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   43.104853] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   43.112233] team0: Port device team_slave_1 added
[   43.117373] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   43.125699] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   43.133859] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   43.141119] team0: Port device team_slave_1 added
[   43.146320] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   43.154906] team0: Port device team_slave_0 added
[   43.161297] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   43.168437] team0: Port device team_slave_1 added
[   43.174779] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   43.186713] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   43.196294] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   43.204073] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   43.211460] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   43.218598] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   43.282154] device hsr_slave_0 entered promiscuous mode
[   43.330113] device hsr_slave_1 entered promiscuous mode
[   43.403425] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[   43.414744] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   43.436988] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[   43.482314] device hsr_slave_0 entered promiscuous mode
[   43.519796] device hsr_slave_1 entered promiscuous mode
[   43.570138] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[   43.577164] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[   43.631152] device hsr_slave_0 entered promiscuous mode
[   43.669801] device hsr_slave_1 entered promiscuous mode
[   43.771121] device hsr_slave_0 entered promiscuous mode
[   43.809848] device hsr_slave_1 entered promiscuous mode
[   43.854315] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[   43.861837] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[   43.877141] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[   43.893147] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[   43.904240] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   43.917449] 8021q: adding VLAN 0 to HW filter on device bond0
[   43.930049] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   43.936995] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   43.954728] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   43.963980] 8021q: adding VLAN 0 to HW filter on device bond0
[   43.974187] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   43.983013] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   43.995048] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   44.004935] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   44.013105] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   44.031256] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[   44.037349] 8021q: adding VLAN 0 to HW filter on device team0
[   44.046985] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   44.060579] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   44.067960] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   44.077676] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[   44.084061] 8021q: adding VLAN 0 to HW filter on device team0
[   44.093680] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   44.115390] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   44.122464] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   44.130957] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   44.138482] bridge0: port 1(bridge_slave_0) entered blocking state
[   44.145070] bridge0: port 1(bridge_slave_0) entered forwarding state
[   44.152018] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   44.161169] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   44.168784] bridge0: port 1(bridge_slave_0) entered blocking state
[   44.175169] bridge0: port 1(bridge_slave_0) entered forwarding state
[   44.182795] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   44.190260] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   44.199052] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   44.210879] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   44.217948] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   44.226995] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   44.234735] bridge0: port 2(bridge_slave_1) entered blocking state
[   44.241131] bridge0: port 2(bridge_slave_1) entered forwarding state
[   44.248051] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   44.255911] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   44.263625] bridge0: port 2(bridge_slave_1) entered blocking state
[   44.270017] bridge0: port 2(bridge_slave_1) entered forwarding state
[   44.278329] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   44.287646] 8021q: adding VLAN 0 to HW filter on device bond0
[   44.302953] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   44.310472] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   44.318107] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   44.328671] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   44.337631] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   44.346892] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   44.356008] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   44.363796] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   44.372218] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   44.379039] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   44.385997] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   44.396219] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   44.406045] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[   44.413068] 8021q: adding VLAN 0 to HW filter on device team0
[   44.424832] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   44.433104] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   44.441769] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   44.454102] 8021q: adding VLAN 0 to HW filter on device bond0
[   44.462281] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   44.471697] 8021q: adding VLAN 0 to HW filter on device bond0
[   44.481024] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   44.488875] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   44.497599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   44.506595] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   44.514747] bridge0: port 1(bridge_slave_0) entered blocking state
[   44.521143] bridge0: port 1(bridge_slave_0) entered forwarding state
[   44.527926] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   44.536080] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   44.544918] 8021q: adding VLAN 0 to HW filter on device bond0
[   44.553515] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   44.563041] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[   44.569104] 8021q: adding VLAN 0 to HW filter on device team0
[   44.575923] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   44.583944] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   44.593502] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   44.600974] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   44.607970] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   44.615267] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   44.622221] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   44.629004] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   44.637053] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   44.644764] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   44.652794] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   44.660561] bridge0: port 2(bridge_slave_1) entered blocking state
[   44.666905] bridge0: port 2(bridge_slave_1) entered forwarding state
[   44.674927] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   44.683162] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   44.692508] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready
[   44.700753] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   44.710148] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   44.716599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   44.724823] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   44.733029] bridge0: port 1(bridge_slave_0) entered blocking state
[   44.739408] bridge0: port 1(bridge_slave_0) entered forwarding state
[   44.746332] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   44.753890] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   44.761358] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   44.768912] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   44.776480] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   44.783506] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   44.792121] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   44.799449] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   44.806486] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   44.814821] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   44.822675] bridge0: port 2(bridge_slave_1) entered blocking state
[   44.829007] bridge0: port 2(bridge_slave_1) entered forwarding state
[   44.837626] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   44.845191] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready
[   44.855039] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   44.864301] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   44.871642] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   44.878482] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   44.886838] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   44.895948] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   44.903648] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   44.911856] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   44.921970] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready
[   44.930428] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[   44.936478] 8021q: adding VLAN 0 to HW filter on device team0
[   44.945420] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[   44.952793] 8021q: adding VLAN 0 to HW filter on device team0
[   44.961586] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   44.969230] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   44.976787] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   44.985093] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   44.993188] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   45.000890] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.007214] bridge0: port 1(bridge_slave_0) entered forwarding state
[   45.014909] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[   45.021219] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   45.030158] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   45.038667] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   45.047322] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   45.054986] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   45.063089] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   45.071075] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   45.078697] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   45.087370] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.093769] bridge0: port 1(bridge_slave_0) entered forwarding state
[   45.101058] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   45.109552] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready
[   45.116308] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   45.123453] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   45.131716] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   45.141294] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   45.152097] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   45.161764] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   45.170361] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   45.178062] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   45.186191] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.192621] bridge0: port 2(bridge_slave_1) entered forwarding state
[   45.199725] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   45.207351] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   45.215032] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   45.222764] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   45.231562] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   45.241262] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   45.250931] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[   45.256947] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   45.265260] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   45.275889] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready
[   45.283835] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   45.293182] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   45.300204] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   45.307758] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   45.315631] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   45.323323] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.329704] bridge0: port 2(bridge_slave_1) entered forwarding state
[   45.336495] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   45.344613] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   45.352312] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   45.360093] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   45.368311] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   45.376704] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready
[   45.383909] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   45.395395] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready
[   45.407200] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready
[   45.415401] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   45.423473] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   45.431965] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   45.439945] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   45.447372] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   45.455452] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   45.463461] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   45.472366] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[   45.480533] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   45.489381] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[   45.496274] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   45.507149] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready
[   45.514534] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   45.521792] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   45.528451] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   45.536570] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   45.544629] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   45.551751] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   45.558387] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   45.566547] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   45.574346] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   45.582174] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   45.595333] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   45.603611] 8021q: adding VLAN 0 to HW filter on device batadv0
[   45.615928] 8021q: adding VLAN 0 to HW filter on device batadv0
[   45.623833] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   45.631639] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[   45.637647] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   45.645928] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   45.654099] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   45.662037] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   45.669807] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   45.677225] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   45.686098] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   45.699989] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready
[   45.708622] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready
[   45.717458] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready
[   45.730826] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   45.738543] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   45.751854] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   45.760508] audit: type=1400 audit(1589282630.545:11): avc:  denied  { create } for  pid=7272 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dccp_socket permissive=1
[   45.789990] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   45.802466] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   45.806905] audit: type=1400 audit(1589282630.575:12): avc:  denied  { name_bind } for  pid=7272 comm="syz-executor.3" src=20003 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:port_t:s0 tclass=dccp_socket permissive=1
[   45.810517] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   45.843696] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   45.844247] FAULT_INJECTION: forcing a failure.
[   45.844247] name failslab, interval 1, probability 0, space 0, times 1
[   45.852199] FAULT_INJECTION: forcing a failure.
[   45.852199] name failslab, interval 1, probability 0, space 0, times 1
[   45.868157] audit: type=1400 audit(1589282630.575:13): avc:  denied  { node_bind } for  pid=7272 comm="syz-executor.3" src=20003 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:node_t:s0 tclass=dccp_socket permissive=1
[   45.875649] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   45.896031] CPU: 0 PID: 7283 Comm: syz-executor.3 Not tainted 4.19.122-syzkaller #0
[   45.910756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   45.920093] Call Trace:
[   45.922666]  dump_stack+0x123/0x177
[   45.925359] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready
[   45.926282]  should_fail.cold.4+0x5/0x13
[   45.936981]  ? fault_create_debugfs_attr+0x1a0/0x1a0
[   45.940954] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready
[   45.942112]  __should_failslab+0xba/0xf0
[   45.942121]  should_failslab+0x9/0x14
[   45.942126]  kmem_cache_alloc_trace+0x4b/0x740
[   45.942141]  dccp_ackvec_parsed_add+0x51/0x220
[   45.953679] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   45.956616]  ccid2_hc_tx_parse_options+0x5b/0x80
[   45.956627]  dccp_parse_options+0x532/0xf20
[   45.956640]  dccp_rcv_established+0x23/0x70
[   45.956647]  dccp_v4_do_rcv+0xfa/0x160
[   45.956655]  __release_sock+0x107/0x360
[   45.956666]  release_sock+0x4f/0x180
[   45.956673]  dccp_sendmsg+0x4f6/0xe20
[   45.970149] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   45.975471]  ? import_iovec+0x9f/0x440
[   45.975483]  ? dccp_getsockopt+0xd0/0xd0
[   45.975497]  ? copy_msghdr_from_user+0x20b/0x3e0
[   45.975507]  inet_sendmsg+0x108/0x440
[   45.992159] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[   45.992695]  ? security_socket_sendmsg+0x4a/0x90
[   45.992704]  ? ipip_gro_receive+0xf0/0xf0
[   45.992712]  sock_sendmsg+0xb5/0xf0
[   45.992719]  ___sys_sendmsg+0x28e/0x950
[   45.992727]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   46.008383] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready
[   46.013752]  ? copy_msghdr_from_user+0x3e0/0x3e0
[   46.013762]  ? mark_held_locks+0x130/0x130
[   46.013770]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   46.013779]  ? retint_kernel+0x2d/0x2d
[   46.013788]  ? find_held_lock+0x36/0x1d0
[   46.013799]  ? __might_fault+0xf1/0x1b0
[   46.013813]  __sys_sendmmsg+0x160/0x370
[   46.013821]  ? __ia32_sys_sendmsg+0xb0/0xb0
[   46.013834]  ? kasan_check_write+0x14/0x20
[   46.013840]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[   46.013852]  ? __sb_end_write+0xa4/0xd0
[   46.013860]  ? kasan_check_write+0x14/0x20
[   46.013864]  ? fput+0x18/0x120
[   46.013870]  ? ksys_write+0x1ce/0x260
[   46.026830] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[   46.030298]  ? do_sys_open+0x16e/0x350
[   46.030308]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   46.030315]  ? do_syscall_64+0x21/0x4e0
[   46.030321]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   46.030331]  __x64_sys_sendmmsg+0x98/0x100
[   46.030337]  do_syscall_64+0xd0/0x4e0
[   46.030344]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   46.030349] RIP: 0033:0x45a219
[   46.030354] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   46.030357] RSP: 002b:00007fb47c724c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   46.030363] RAX: ffffffffffffffda RBX: 00007fb47c724c90 RCX: 000000000045a219
[   46.030366] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[   46.030368] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000
[   46.030371] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb47c7256d4
[   46.030374] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[   46.175013] CPU: 0 PID: 7279 Comm: syz-executor.2 Not tainted 4.19.122-syzkaller #0
[   46.183086] dccp_parse_options: DCCP(000000000991a8a7): Option 38 (len=1) error=5
[   46.189443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   46.189447] Call Trace:
[   46.189460]  dump_stack+0x123/0x177
[   46.189470]  should_fail.cold.4+0x5/0x13
[   46.189479]  ? fault_create_debugfs_attr+0x1a0/0x1a0
[   46.189492]  __should_failslab+0xba/0xf0
[   46.189499]  should_failslab+0x9/0x14
[   46.189503]  kmem_cache_alloc_trace+0x4b/0x740
[   46.189516]  dccp_ackvec_parsed_add+0x51/0x220
[   46.189523]  ccid2_hc_tx_parse_options+0x5b/0x80
[   46.189530]  dccp_parse_options+0x532/0xf20
[   46.198288] audit: type=1400 audit(1589282630.575:14): avc:  denied  { name_connect } for  pid=7272 comm="syz-executor.3" dest=20003 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:port_t:s0 tclass=dccp_socket permissive=1
[   46.204078]  dccp_rcv_established+0x23/0x70
[   46.204086]  dccp_v4_do_rcv+0xfa/0x160
[   46.204095]  __release_sock+0x107/0x360
[   46.204104]  release_sock+0x4f/0x180
[   46.204110]  dccp_sendmsg+0x4f6/0xe20
[   46.204116]  ? import_iovec+0x9f/0x440
[   46.204124]  ? dccp_getsockopt+0xd0/0xd0
[   46.204134]  ? copy_msghdr_from_user+0x20b/0x3e0
[   46.204144]  inet_sendmsg+0x108/0x440
[   46.204149]  ? security_socket_sendmsg+0x4a/0x90
[   46.204155]  ? ipip_gro_receive+0xf0/0xf0
[   46.204160]  sock_sendmsg+0xb5/0xf0
[   46.204166]  ___sys_sendmsg+0x28e/0x950
[   46.204174]  ? find_held_lock+0x36/0x1d0
[   46.370038]  ? copy_msghdr_from_user+0x3e0/0x3e0
[   46.374885]  ? mark_held_locks+0x130/0x130
[   46.379106]  ? lock_downgrade+0x860/0x860
[   46.383245]  ? kasan_check_read+0x11/0x20
[   46.387380]  ? find_held_lock+0x36/0x1d0
[   46.391458]  ? __might_fault+0xf1/0x1b0
[   46.395420]  __sys_sendmmsg+0x160/0x370
[   46.399374]  ? __ia32_sys_sendmsg+0xb0/0xb0
[   46.403676]  ? kasan_check_write+0x14/0x20
[   46.407904]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[   46.412727]  ? __sb_end_write+0xa4/0xd0
[   46.416678]  ? kasan_check_write+0x14/0x20
[   46.420891]  ? fput+0x18/0x120
[   46.424057]  ? ksys_write+0x1ce/0x260
[   46.427832]  ? do_sys_open+0x16e/0x350
[   46.431722]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   46.436499]  ? do_syscall_64+0x21/0x4e0
[   46.440455]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   46.445908]  __x64_sys_sendmmsg+0x98/0x100
[   46.450128]  do_syscall_64+0xd0/0x4e0
[   46.453912]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   46.459192] RIP: 0033:0x45a219
[   46.462395] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   46.481360] RSP: 002b:00007f26f46b5c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   46.489048] RAX: ffffffffffffffda RBX: 00007f26f46b5c90 RCX: 000000000045a219
2020/05/12 11:23:51 executed programs: 6
[   46.496313] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[   46.503565] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[   46.510828] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f26f46b66d4
[   46.518075] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[   46.545500] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready
[   46.545574] dccp_parse_options: DCCP(00000000d7833be8): Option 38 (len=1) error=5
[   46.561788] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[   46.575310] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   46.583431] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   46.596429] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   46.605189] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   46.619559] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   46.627159] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   46.635182] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   46.646173] 8021q: adding VLAN 0 to HW filter on device batadv0
[   46.657240] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   46.688461] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[   46.704773] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready
[   46.712647] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   46.720504] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   46.731485] FAULT_INJECTION: forcing a failure.
[   46.731485] name failslab, interval 1, probability 0, space 0, times 0
[   46.747315] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready
[   46.756558] 8021q: adding VLAN 0 to HW filter on device batadv0
[   46.763295] CPU: 0 PID: 7300 Comm: syz-executor.5 Not tainted 4.19.122-syzkaller #0
[   46.766000] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[   46.771090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   46.771094] Call Trace:
[   46.771107]  dump_stack+0x123/0x177
[   46.771119]  should_fail.cold.4+0x5/0x13
[   46.771127]  ? fault_create_debugfs_attr+0x1a0/0x1a0
[   46.771142]  __should_failslab+0xba/0xf0
[   46.771149]  should_failslab+0x9/0x14
[   46.771154]  kmem_cache_alloc_trace+0x4b/0x740
[   46.771165]  dccp_ackvec_parsed_add+0x51/0x220
[   46.771173]  ccid2_hc_tx_parse_options+0x5b/0x80
[   46.771181]  dccp_parse_options+0x532/0xf20
[   46.771196]  dccp_rcv_established+0x23/0x70
[   46.771202]  dccp_v4_do_rcv+0xfa/0x160
[   46.771210]  __release_sock+0x107/0x360
[   46.771221]  release_sock+0x4f/0x180
[   46.771227]  dccp_sendmsg+0x4f6/0xe20
[   46.771232]  ? import_iovec+0x9f/0x440
[   46.771240]  ? dccp_getsockopt+0xd0/0xd0
[   46.771252]  ? copy_msghdr_from_user+0x20b/0x3e0
[   46.771263]  inet_sendmsg+0x108/0x440
[   46.771269]  ? security_socket_sendmsg+0x4a/0x90
[   46.771275]  ? ipip_gro_receive+0xf0/0xf0
[   46.797343] 8021q: adding VLAN 0 to HW filter on device batadv0
[   46.802044]  sock_sendmsg+0xb5/0xf0
[   46.802052]  ___sys_sendmsg+0x28e/0x950
[   46.802060]  ? find_held_lock+0x36/0x1d0
[   46.802068]  ? copy_msghdr_from_user+0x3e0/0x3e0
[   46.802075]  ? mark_held_locks+0x130/0x130
[   46.802085]  ? lock_downgrade+0x860/0x860
[   46.802094]  ? kasan_check_read+0x11/0x20
[   46.802104]  ? find_held_lock+0x36/0x1d0
[   46.802114]  ? __might_fault+0xf1/0x1b0
[   46.802130]  __sys_sendmmsg+0x160/0x370
[   46.802138]  ? __ia32_sys_sendmsg+0xb0/0xb0
[   46.802148]  ? kasan_check_write+0x14/0x20
[   46.802154]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[   46.802168]  ? __sb_end_write+0xa4/0xd0
[   46.802174]  ? kasan_check_write+0x14/0x20
[   46.802179]  ? fput+0x18/0x120
[   46.802184]  ? ksys_write+0x1ce/0x260
[   46.802187]  ? do_sys_open+0x16e/0x350
[   46.802195]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   46.802201]  ? do_syscall_64+0x21/0x4e0
[   46.802206]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   46.802215]  __x64_sys_sendmmsg+0x98/0x100
[   46.802221]  do_syscall_64+0xd0/0x4e0
[   46.802228]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   46.802234] RIP: 0033:0x45a219
[   46.802240] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   46.802243] RSP: 002b:00007f44bb6e4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   46.802250] RAX: ffffffffffffffda RBX: 00007f44bb6e4c90 RCX: 000000000045a219
[   46.802253] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[   46.802256] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[   46.802259] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f44bb6e56d4
[   46.802261] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[   46.828686] dccp_parse_options: DCCP(00000000e8fadfe2): Option 38 (len=1) error=5
[   47.060103] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[   47.072399] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   47.085722] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   47.093809] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   47.103916] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   47.130597] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.173193] FAULT_INJECTION: forcing a failure.
[   47.173193] name failslab, interval 1, probability 0, space 0, times 0
[   47.192951] FAULT_INJECTION: forcing a failure.
[   47.192951] name failslab, interval 1, probability 0, space 0, times 0
[   47.205289] CPU: 1 PID: 7309 Comm: syz-executor.1 Not tainted 4.19.122-syzkaller #0
[   47.213103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   47.222457] Call Trace:
[   47.225048]  dump_stack+0x123/0x177
[   47.228683]  should_fail.cold.4+0x5/0x13
[   47.232747]  ? fault_create_debugfs_attr+0x1a0/0x1a0
[   47.237873]  __should_failslab+0xba/0xf0
[   47.241931]  should_failslab+0x9/0x14
[   47.242112] FAULT_INJECTION: forcing a failure.
[   47.242112] name failslab, interval 1, probability 0, space 0, times 0
[   47.245718]  kmem_cache_alloc_trace+0x4b/0x740
[   47.261450]  dccp_ackvec_parsed_add+0x51/0x220
[   47.266204]  ccid2_hc_tx_parse_options+0x5b/0x80
[   47.270957]  dccp_parse_options+0x532/0xf20
[   47.275280]  dccp_rcv_established+0x23/0x70
[   47.279635]  dccp_v4_do_rcv+0xfa/0x160
[   47.283517]  __release_sock+0x107/0x360
[   47.287483]  release_sock+0x4f/0x180
[   47.291174]  dccp_sendmsg+0x4f6/0xe20
[   47.294955]  ? import_iovec+0x9f/0x440
[   47.298823]  ? dccp_getsockopt+0xd0/0xd0
[   47.302862]  ? copy_msghdr_from_user+0x20b/0x3e0
[   47.307609]  inet_sendmsg+0x108/0x440
[   47.311388]  ? security_socket_sendmsg+0x4a/0x90
[   47.316124]  ? ipip_gro_receive+0xf0/0xf0
[   47.320252]  sock_sendmsg+0xb5/0xf0
[   47.323856]  ___sys_sendmsg+0x28e/0x950
[   47.327809]  ? find_held_lock+0x36/0x1d0
[   47.331851]  ? copy_msghdr_from_user+0x3e0/0x3e0
[   47.336582]  ? mark_held_locks+0x130/0x130
[   47.340794]  ? lock_downgrade+0x860/0x860
[   47.345284]  ? kasan_check_read+0x11/0x20
[   47.349423]  ? find_held_lock+0x36/0x1d0
[   47.353466]  ? __might_fault+0xf1/0x1b0
[   47.357425]  __sys_sendmmsg+0x160/0x370
[   47.361501]  ? __ia32_sys_sendmsg+0xb0/0xb0
[   47.365814]  ? kasan_check_write+0x14/0x20
[   47.370033]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[   47.374881]  ? __sb_end_write+0xa4/0xd0
[   47.378834]  ? kasan_check_write+0x14/0x20
[   47.383045]  ? fput+0x18/0x120
[   47.386213]  ? ksys_write+0x1ce/0x260
[   47.389987]  ? do_sys_open+0x16e/0x350
[   47.393865]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   47.398596]  ? do_syscall_64+0x21/0x4e0
[   47.402544]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   47.407888]  __x64_sys_sendmmsg+0x98/0x100
[   47.412113]  do_syscall_64+0xd0/0x4e0
[   47.415904]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   47.421069] RIP: 0033:0x45a219
[   47.424238] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   47.443117] RSP: 002b:00007fdab9d10c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   47.450802] RAX: ffffffffffffffda RBX: 00007fdab9d10c90 RCX: 000000000045a219
[   47.458051] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[   47.465309] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[   47.472561] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fdab9d116d4
[   47.479822] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[   47.487093] CPU: 0 PID: 7321 Comm: syz-executor.0 Not tainted 4.19.122-syzkaller #0
[   47.494886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   47.504243] Call Trace:
[   47.506827]  dump_stack+0x123/0x177
[   47.510463]  should_fail.cold.4+0x5/0x13
[   47.514527]  ? fault_create_debugfs_attr+0x1a0/0x1a0
[   47.519643]  __should_failslab+0xba/0xf0
[   47.523700]  should_failslab+0x9/0x14
[   47.527490]  kmem_cache_alloc_trace+0x4b/0x740
[   47.532061]  dccp_ackvec_parsed_add+0x51/0x220
[   47.536631]  ccid2_hc_tx_parse_options+0x5b/0x80
[   47.541374]  dccp_parse_options+0x532/0xf20
[   47.545711]  dccp_rcv_established+0x23/0x70
[   47.550022]  dccp_v4_do_rcv+0xfa/0x160
[   47.553908]  __release_sock+0x107/0x360
[   47.557864]  release_sock+0x4f/0x180
[   47.561579]  dccp_sendmsg+0x4f6/0xe20
[   47.565445]  ? import_iovec+0x9f/0x440
[   47.569664]  ? dccp_getsockopt+0xd0/0xd0
[   47.573709]  ? copy_msghdr_from_user+0x20b/0x3e0
[   47.578449]  inet_sendmsg+0x108/0x440
[   47.582236]  ? security_socket_sendmsg+0x4a/0x90
[   47.586996]  ? ipip_gro_receive+0xf0/0xf0
[   47.591123]  sock_sendmsg+0xb5/0xf0
[   47.594737]  ___sys_sendmsg+0x28e/0x950
[   47.598694]  ? find_held_lock+0x36/0x1d0
[   47.602733]  ? copy_msghdr_from_user+0x3e0/0x3e0
[   47.607472]  ? mark_held_locks+0x130/0x130
[   47.611686]  ? lock_downgrade+0x860/0x860
[   47.615829]  ? kasan_check_read+0x11/0x20
[   47.619967]  ? find_held_lock+0x36/0x1d0
[   47.624032]  ? __might_fault+0xf1/0x1b0
[   47.628014]  __sys_sendmmsg+0x160/0x370
[   47.631989]  ? __ia32_sys_sendmsg+0xb0/0xb0
[   47.636313]  ? kasan_check_write+0x14/0x20
[   47.640536]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[   47.645376]  ? __sb_end_write+0xa4/0xd0
[   47.649353]  ? kasan_check_write+0x14/0x20
[   47.653583]  ? fput+0x18/0x120
[   47.656760]  ? ksys_write+0x1ce/0x260
[   47.660550]  ? do_sys_open+0x16e/0x350
[   47.664434]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   47.669182]  ? do_syscall_64+0x21/0x4e0
[   47.673148]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   47.678508]  __x64_sys_sendmmsg+0x98/0x100
[   47.682734]  do_syscall_64+0xd0/0x4e0
[   47.686528]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   47.691709] RIP: 0033:0x45a219
[   47.694894] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   47.713792] RSP: 002b:00007f71ab6acc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   47.721493] RAX: ffffffffffffffda RBX: 00007f71ab6acc90 RCX: 000000000045a219
[   47.728778] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[   47.736032] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[   47.743288] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f71ab6ad6d4
[   47.750550] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[   47.757815] CPU: 1 PID: 7312 Comm: syz-executor.4 Not tainted 4.19.122-syzkaller #0
[   47.765610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   47.775047] Call Trace:
[   47.777635]  dump_stack+0x123/0x177
[   47.781260]  should_fail.cold.4+0x5/0x13
[   47.785310]  ? fault_create_debugfs_attr+0x1a0/0x1a0
[   47.790412]  __should_failslab+0xba/0xf0
[   47.794466]  should_failslab+0x9/0x14
[   47.797018] dccp_parse_options: DCCP(000000006d6cd12a): Option 38 (len=1) error=5
[   47.798255]  kmem_cache_alloc_trace+0x4b/0x740
[   47.798270]  dccp_ackvec_parsed_add+0x51/0x220
[   47.798278]  ccid2_hc_tx_parse_options+0x5b/0x80
[   47.798288]  dccp_parse_options+0x532/0xf20
[   47.806492] dccp_parse_options: DCCP(00000000d32df723): Option 38 (len=1) error=5
[   47.810458]  dccp_rcv_established+0x23/0x70
[   47.810466]  dccp_v4_do_rcv+0xfa/0x160
[   47.810475]  __release_sock+0x107/0x360
[   47.810484]  release_sock+0x4f/0x180
[   47.810489]  dccp_sendmsg+0x4f6/0xe20
[   47.810495]  ? import_iovec+0x9f/0x440
[   47.810503]  ? dccp_getsockopt+0xd0/0xd0
[   47.810514]  ? copy_msghdr_from_user+0x20b/0x3e0
[   47.810524]  inet_sendmsg+0x108/0x440
[   47.867852]  ? security_socket_sendmsg+0x4a/0x90
[   47.872587]  ? ipip_gro_receive+0xf0/0xf0
[   47.876712]  sock_sendmsg+0xb5/0xf0
[   47.880359]  ___sys_sendmsg+0x28e/0x950
[   47.884308]  ? find_held_lock+0x36/0x1d0
[   47.888344]  ? copy_msghdr_from_user+0x3e0/0x3e0
[   47.893085]  ? mark_held_locks+0x130/0x130
[   47.897312]  ? lock_downgrade+0x860/0x860
[   47.901458]  ? kasan_check_read+0x11/0x20
[   47.905611]  ? find_held_lock+0x36/0x1d0
[   47.909680]  ? __might_fault+0xf1/0x1b0
[   47.913671]  __sys_sendmmsg+0x160/0x370
[   47.917647]  ? __ia32_sys_sendmsg+0xb0/0xb0
[   47.921966]  ? kasan_check_write+0x14/0x20
[   47.926234]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[   47.931058]  ? __sb_end_write+0xa4/0xd0
[   47.935009]  ? kasan_check_write+0x14/0x20
[   47.939218]  ? fput+0x18/0x120
[   47.942389]  ? ksys_write+0x1ce/0x260
[   47.946163]  ? do_sys_open+0x16e/0x350
[   47.950025]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   47.954760]  ? do_syscall_64+0x21/0x4e0
[   47.958719]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   47.964062]  __x64_sys_sendmmsg+0x98/0x100
[   47.968277]  do_syscall_64+0xd0/0x4e0
[   47.972069]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   47.977232] RIP: 0033:0x45a219
[   47.980409] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   47.999345] RSP: 002b:00007f015293cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   48.007080] RAX: ffffffffffffffda RBX: 00007f015293cc90 RCX: 000000000045a219
[   48.014326] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[   48.021579] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[   48.028835] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f015293d6d4
[   48.036101] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[   48.062157] dccp_parse_options: DCCP(00000000db014ebc): Option 38 (len=1) error=5
[   48.116249] FAULT_INJECTION: forcing a failure.
[   48.116249] name failslab, interval 1, probability 0, space 0, times 0
[   48.134716] CPU: 0 PID: 7351 Comm: syz-executor.4 Not tainted 4.19.122-syzkaller #0
[   48.142536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   48.151887] Call Trace:
[   48.154473]  dump_stack+0x123/0x177
[   48.158100]  should_fail.cold.4+0x5/0x13
[   48.162159]  ? fault_create_debugfs_attr+0x1a0/0x1a0
[   48.167282]  __should_failslab+0xba/0xf0
[   48.171342]  should_failslab+0x9/0x14
[   48.175141]  kmem_cache_alloc_trace+0x4b/0x740
[   48.179727]  dccp_ackvec_parsed_add+0x51/0x220
[   48.184310]  ccid2_hc_tx_parse_options+0x5b/0x80
[   48.189065]  dccp_parse_options+0x532/0xf20
[   48.193390]  dccp_rcv_established+0x23/0x70
[   48.197713]  dccp_v4_do_rcv+0xfa/0x160
[   48.201611]  __release_sock+0x107/0x360
[   48.205609]  release_sock+0x4f/0x180
[   48.209328]  dccp_sendmsg+0x4f6/0xe20
[   48.213125]  ? import_iovec+0x9f/0x440
[   48.217012]  ? dccp_getsockopt+0xd0/0xd0
[   48.221079]  ? copy_msghdr_from_user+0x20b/0x3e0
[   48.225831]  inet_sendmsg+0x108/0x440
[   48.229625]  ? security_socket_sendmsg+0x4a/0x90
[   48.234372]  ? ipip_gro_receive+0xf0/0xf0
[   48.238503]  sock_sendmsg+0xb5/0xf0
[   48.242112]  ___sys_sendmsg+0x28e/0x950
[   48.246066]  ? find_held_lock+0x36/0x1d0
[   48.250107]  ? copy_msghdr_from_user+0x3e0/0x3e0
[   48.254842]  ? mark_held_locks+0x130/0x130
[   48.259057]  ? lock_downgrade+0x860/0x860
[   48.263204]  ? kasan_check_read+0x11/0x20
[   48.267338]  ? find_held_lock+0x36/0x1d0
[   48.272021]  ? __might_fault+0xf1/0x1b0
[   48.275983]  __sys_sendmmsg+0x160/0x370
[   48.279939]  ? __ia32_sys_sendmsg+0xb0/0xb0
[   48.284295]  ? kasan_check_write+0x14/0x20
[   48.288510]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[   48.293345]  ? __sb_end_write+0xa4/0xd0
[   48.297328]  ? kasan_check_write+0x14/0x20
[   48.301644]  ? fput+0x18/0x120
[   48.304865]  ? ksys_write+0x1ce/0x260
[   48.308667]  ? do_sys_open+0x16e/0x350
[   48.312547]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   48.317280]  ? do_syscall_64+0x21/0x4e0
[   48.321231]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   48.326586]  __x64_sys_sendmmsg+0x98/0x100
[   48.330833]  do_syscall_64+0xd0/0x4e0
[   48.334613]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   48.339783] RIP: 0033:0x45a219
[   48.342969] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   48.361851] RSP: 002b:00007f015293cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   48.369624] RAX: ffffffffffffffda RBX: 00007f015293cc90 RCX: 000000000045a219
[   48.376892] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[   48.384158] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[   48.391408] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f015293d6d4
[   48.398666] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[   48.419317] dccp_parse_options: DCCP(0000000069ec6585): Option 38 (len=1) error=5
2020/05/12 11:23:56 executed programs: 39
2020/05/12 11:24:01 executed programs: 76
2020/05/12 11:24:06 executed programs: 114
2020/05/12 11:24:11 executed programs: 153
2020/05/12 11:24:16 executed programs: 190
2020/05/12 11:24:22 executed programs: 228
2020/05/12 11:24:27 executed programs: 266
2020/05/12 11:24:32 executed programs: 303
2020/05/12 11:24:37 executed programs: 340
2020/05/12 11:24:42 executed programs: 378
2020/05/12 11:24:47 executed programs: 416
[  107.229339] FAULT_INJECTION: forcing a failure.
[  107.229339] name failslab, interval 1, probability 0, space 0, times 0
[  107.231228] FAULT_INJECTION: forcing a failure.
[  107.231228] name failslab, interval 1, probability 0, space 0, times 0
[  107.241194] CPU: 0 PID: 10208 Comm: syz-executor.2 Not tainted 4.19.122-syzkaller #0
[  107.260143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  107.269610] Call Trace:
[  107.272190]  dump_stack+0x123/0x177
[  107.275814]  should_fail.cold.4+0x5/0x13
[  107.279869]  ? fault_create_debugfs_attr+0x1a0/0x1a0
[  107.284968]  ? lock_downgrade+0x860/0x860
[  107.289111]  __should_failslab+0xba/0xf0
[  107.293162]  should_failslab+0x9/0x14
[  107.296952]  kmem_cache_alloc_trace+0x2d4/0x740
[  107.301612]  ? debug_object_activate+0x327/0x4e0
[  107.306346]  ? lock_downgrade+0x860/0x860
[  107.310491]  dccp_feat_entry_new+0x140/0x360
[  107.314880]  dccp_feat_push_confirm+0x26/0x280
[  107.319456]  dccp_feat_parse_options+0xf99/0x1a20
[  107.324280]  ? dccp_ackvec_parsed_add+0x51/0x220
[  107.329449]  ? dccp_feat_server_ccid_dependencies+0x1f0/0x1f0
[  107.335312]  ? dccp_ackvec_parsed_add+0x115/0x220
[  107.340155]  dccp_parse_options+0x840/0xf20
[  107.344474]  dccp_rcv_established+0x23/0x70
[  107.348783]  dccp_v4_do_rcv+0xfa/0x160
[  107.352668]  __release_sock+0x107/0x360
[  107.356635]  release_sock+0x4f/0x180
[  107.360350]  dccp_sendmsg+0x4f6/0xe20
[  107.364128]  ? import_iovec+0x9f/0x440
[  107.367997]  ? dccp_getsockopt+0xd0/0xd0
[  107.372161]  ? copy_msghdr_from_user+0x20b/0x3e0
[  107.376933]  inet_sendmsg+0x108/0x440
[  107.380715]  ? security_socket_sendmsg+0x4a/0x90
[  107.385451]  ? ipip_gro_receive+0xf0/0xf0
[  107.389578]  sock_sendmsg+0xb5/0xf0
[  107.393197]  ___sys_sendmsg+0x28e/0x950
[  107.397148]  ? find_held_lock+0x36/0x1d0
[  107.401187]  ? copy_msghdr_from_user+0x3e0/0x3e0
[  107.405918]  ? mark_held_locks+0x130/0x130
[  107.410128]  ? lock_downgrade+0x860/0x860
[  107.415133]  ? kasan_check_read+0x11/0x20
[  107.419267]  ? find_held_lock+0x36/0x1d0
[  107.423323]  ? __might_fault+0xf1/0x1b0
[  107.427288]  __sys_sendmmsg+0x160/0x370
[  107.431243]  ? __ia32_sys_sendmsg+0xb0/0xb0
[  107.435544]  ? kasan_check_write+0x14/0x20
[  107.439757]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[  107.444612]  ? __sb_end_write+0xa4/0xd0
[  107.448563]  ? kasan_check_write+0x14/0x20
[  107.452773]  ? fput+0x18/0x120
[  107.455945]  ? ksys_write+0x1ce/0x260
[  107.459720]  ? do_sys_open+0x16e/0x350
[  107.463588]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  107.468323]  ? do_syscall_64+0x21/0x4e0
[  107.472275]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  107.477631]  __x64_sys_sendmmsg+0x98/0x100
[  107.481857]  do_syscall_64+0xd0/0x4e0
[  107.485655]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  107.490823] RIP: 0033:0x45a219
[  107.493993] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  107.512878] RSP: 002b:00007f26f46b5c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  107.520577] RAX: ffffffffffffffda RBX: 00007f26f46b5c90 RCX: 000000000045a219
[  107.527825] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[  107.535070] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  107.542322] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f26f46b66d4
[  107.549574] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[  107.558495] CPU: 1 PID: 10206 Comm: syz-executor.3 Not tainted 4.19.122-syzkaller #0
[  107.566642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  107.570463] dccp_parse_options: DCCP(00000000e4647845): Option 32 (len=7) error=9
[  107.576005] Call Trace:
[  107.576017]  dump_stack+0x123/0x177
[  107.576030]  should_fail.cold.4+0x5/0x13
[  107.576039]  ? fault_create_debugfs_attr+0x1a0/0x1a0
[  107.576045]  ? lock_downgrade+0x860/0x860
[  107.576060]  __should_failslab+0xba/0xf0
[  107.576066]  should_failslab+0x9/0x14
[  107.576071]  kmem_cache_alloc_trace+0x2d4/0x740
[  107.576077]  ? debug_object_activate+0x327/0x4e0
[  107.576082]  ? lock_downgrade+0x860/0x860
[  107.576091]  dccp_feat_entry_new+0x140/0x360
[  107.576099]  dccp_feat_push_confirm+0x26/0x280
[  107.576108]  dccp_feat_parse_options+0xf99/0x1a20
[  107.584493] ==================================================================
[  107.586295]  ? dccp_ackvec_parsed_add+0x51/0x220
[  107.586316]  ? dccp_feat_server_ccid_dependencies+0x1f0/0x1f0
[  107.589992] BUG: KASAN: use-after-free in ccid2_hc_tx_packet_recv+0x1edd/0x21d3
[  107.594031]  ? dccp_ackvec_parsed_add+0x115/0x220
[  107.599366] Read of size 1 at addr ffff8880982e86a2 by task syz-executor.2/10208
[  107.603501]  dccp_parse_options+0x840/0xf20
[  107.607536] 
[  107.684560]  dccp_rcv_established+0x23/0x70
[  107.688861]  dccp_v4_do_rcv+0xfa/0x160
[  107.692731]  __release_sock+0x107/0x360
[  107.696701]  release_sock+0x4f/0x180
[  107.700394]  dccp_sendmsg+0x4f6/0xe20
[  107.704188]  ? import_iovec+0x9f/0x440
[  107.708054]  ? dccp_getsockopt+0xd0/0xd0
[  107.712111]  ? copy_msghdr_from_user+0x20b/0x3e0
[  107.716848]  inet_sendmsg+0x108/0x440
[  107.720627]  ? security_socket_sendmsg+0x4a/0x90
[  107.725360]  ? ipip_gro_receive+0xf0/0xf0
[  107.729484]  sock_sendmsg+0xb5/0xf0
[  107.733089]  ___sys_sendmsg+0x28e/0x950
[  107.737047]  ? find_held_lock+0x36/0x1d0
[  107.741110]  ? copy_msghdr_from_user+0x3e0/0x3e0
[  107.745843]  ? mark_held_locks+0x130/0x130
[  107.750073]  ? lock_downgrade+0x860/0x860
[  107.754225]  ? kasan_check_read+0x11/0x20
[  107.758371]  ? find_held_lock+0x36/0x1d0
[  107.762429]  ? __might_fault+0xf1/0x1b0
[  107.766390]  __sys_sendmmsg+0x160/0x370
[  107.770361]  ? __ia32_sys_sendmsg+0xb0/0xb0
[  107.774666]  ? kasan_check_write+0x14/0x20
[  107.778890]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[  107.783726]  ? __sb_end_write+0xa4/0xd0
[  107.787761]  ? kasan_check_write+0x14/0x20
[  107.791979]  ? fput+0x18/0x120
[  107.795157]  ? ksys_write+0x1ce/0x260
[  107.798935]  ? do_sys_open+0x16e/0x350
[  107.802893]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  107.807626]  ? do_syscall_64+0x21/0x4e0
[  107.811579]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  107.816923]  __x64_sys_sendmmsg+0x98/0x100
[  107.821149]  do_syscall_64+0xd0/0x4e0
[  107.824930]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  107.830114] RIP: 0033:0x45a219
[  107.833284] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  107.852163] RSP: 002b:00007fb47c745c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  107.859847] RAX: ffffffffffffffda RBX: 00007fb47c745c90 RCX: 000000000045a219
[  107.867201] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[  107.874453] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  107.881702] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb47c7466d4
[  107.888955] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[  107.896220] CPU: 0 PID: 10208 Comm: syz-executor.2 Not tainted 4.19.122-syzkaller #0
[  107.904453] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  107.913804] Call Trace:
[  107.916401]  dump_stack+0x123/0x177
[  107.920030]  print_address_description.cold.8+0x9/0x1ff
[  107.925410]  kasan_report.cold.9+0x242/0x309
[  107.929816]  ? ccid2_hc_tx_packet_recv+0x1edd/0x21d3
[  107.934918]  __asan_report_load1_noabort+0x14/0x20
[  107.939849]  ccid2_hc_tx_packet_recv+0x1edd/0x21d3
[  107.944782]  ? dccp_ackvec_clear_state+0x33e/0x7e0
[  107.949710]  ? rcu_read_lock_sched_held+0x108/0x120
[  107.954737]  dccp_deliver_input_to_ccids+0x19f/0x210
[  107.959842]  dccp_rcv_established+0x49/0x70
[  107.961120] dccp_parse_options: DCCP(00000000f3fefa29): Option 32 (len=7) error=9
[  107.964156]  dccp_v4_do_rcv+0xfa/0x160
[  107.964165]  __release_sock+0x107/0x360
2020/05/12 11:24:52 executed programs: 451
[  107.964176]  release_sock+0x4f/0x180
[  107.964182]  dccp_sendmsg+0x4f6/0xe20
[  107.964188]  ? import_iovec+0x9f/0x440
[  107.964195]  ? dccp_getsockopt+0xd0/0xd0
[  107.964206]  ? copy_msghdr_from_user+0x20b/0x3e0
[  107.964216]  inet_sendmsg+0x108/0x440
[  108.005616]  ? security_socket_sendmsg+0x4a/0x90
[  108.010376]  ? ipip_gro_receive+0xf0/0xf0
[  108.014522]  sock_sendmsg+0xb5/0xf0
[  108.018367]  ___sys_sendmsg+0x28e/0x950
[  108.022331]  ? find_held_lock+0x36/0x1d0
[  108.026513]  ? copy_msghdr_from_user+0x3e0/0x3e0
[  108.031252]  ? mark_held_locks+0x130/0x130
[  108.035463]  ? lock_downgrade+0x860/0x860
[  108.039588]  ? kasan_check_read+0x11/0x20
[  108.043715]  ? find_held_lock+0x36/0x1d0
[  108.047775]  ? __might_fault+0xf1/0x1b0
[  108.051735]  __sys_sendmmsg+0x160/0x370
[  108.055703]  ? __ia32_sys_sendmsg+0xb0/0xb0
[  108.060031]  ? kasan_check_write+0x14/0x20
[  108.064257]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[  108.069085]  ? __sb_end_write+0xa4/0xd0
[  108.073040]  ? kasan_check_write+0x14/0x20
[  108.077257]  ? fput+0x18/0x120
[  108.080438]  ? ksys_write+0x1ce/0x260
[  108.084233]  ? do_sys_open+0x16e/0x350
[  108.088114]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  108.092848]  ? do_syscall_64+0x21/0x4e0
[  108.096826]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  108.102176]  __x64_sys_sendmmsg+0x98/0x100
[  108.106397]  do_syscall_64+0xd0/0x4e0
[  108.110173]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  108.115347] RIP: 0033:0x45a219
[  108.118543] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  108.137531] RSP: 002b:00007f26f46b5c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  108.145218] RAX: ffffffffffffffda RBX: 00007f26f46b5c90 RCX: 000000000045a219
[  108.152491] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[  108.159801] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  108.167080] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f26f46b66d4
[  108.174477] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[  108.181791] 
[  108.183416] Allocated by task 10208:
[  108.187125]  save_stack+0x43/0xd0
[  108.190581]  kasan_kmalloc+0xc7/0xe0
[  108.194277]  __kmalloc_node_track_caller+0x50/0x70
[  108.199308]  __kmalloc_reserve.isra.39+0x2c/0xc0
[  108.204047]  __alloc_skb+0xd7/0x580
[  108.207763]  dccp_send_ack+0xb3/0x340
[  108.211596]  ccid2_hc_rx_packet_recv+0xf9/0x170
[  108.216261]  dccp_deliver_input_to_ccids+0xc5/0x210
[  108.221263]  dccp_rcv_established+0x49/0x70
[  108.225559]  dccp_v4_do_rcv+0xfa/0x160
[  108.229429]  __sk_receive_skb+0x2a2/0x9a0
[  108.233563]  dccp_v4_rcv+0xbcd/0x1bbd
[  108.237358]  ip_local_deliver_finish+0x235/0x9f0
[  108.242108]  ip_local_deliver+0x2f7/0x440
[  108.246233]  ip_rcv_finish+0x166/0x270
[  108.250095]  ip_rcv+0xcb/0x2e0
[  108.253264]  __netif_receive_skb_one_core+0xe9/0x170
[  108.258342]  __netif_receive_skb+0x1f/0x1b0
[  108.262643]  process_backlog+0x1ca/0x6d0
[  108.266690]  net_rx_action+0x470/0xe20
[  108.270551]  __do_softirq+0x260/0x92d
[  108.274323] 
[  108.275928] Freed by task 10208:
[  108.279380]  save_stack+0x43/0xd0
[  108.282836]  __kasan_slab_free+0x102/0x150
[  108.287059]  kasan_slab_free+0xe/0x10
[  108.290838]  kfree+0xcf/0x220
[  108.293936]  skb_free_head+0x74/0x90
[  108.297639]  skb_release_data+0x481/0x6c0
[  108.301849]  skb_release_all+0x3d/0x50
[  108.305716]  kfree_skb+0x97/0x270
[  108.309151]  dccp_v4_do_rcv+0x111/0x160
[  108.313290]  __release_sock+0x107/0x360
[  108.317238]  release_sock+0x4f/0x180
[  108.320928]  dccp_sendmsg+0x4f6/0xe20
[  108.324705]  inet_sendmsg+0x108/0x440
[  108.328477]  sock_sendmsg+0xb5/0xf0
[  108.332078]  ___sys_sendmsg+0x28e/0x950
[  108.336033]  __sys_sendmmsg+0x160/0x370
[  108.340445]  __x64_sys_sendmmsg+0x98/0x100
[  108.344656]  do_syscall_64+0xd0/0x4e0
[  108.348460]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  108.353626] 
[  108.355234] The buggy address belongs to the object at ffff8880982e8200
[  108.355234]  which belongs to the cache kmalloc-2048 of size 2048
[  108.368061] The buggy address is located 1186 bytes inside of
[  108.368061]  2048-byte region [ffff8880982e8200, ffff8880982e8a00)
[  108.380528] The buggy address belongs to the page:
[  108.385442] page:ffffea000260ba00 count:1 mapcount:0 mapping:ffff88812c35ec40 index:0xffff8880982e8a80 compound_mapcount: 0
[  108.396748] flags: 0x1fffc0000008100(slab|head)
[  108.401689] raw: 01fffc0000008100 ffffea00025d2f88 ffffea00025da688 ffff88812c35ec40
[  108.409643] raw: ffff8880982e8a80 ffff8880982e8200 0000000100000002 0000000000000000
[  108.417660] page dumped because: kasan: bad access detected
[  108.423358] 
[  108.424964] Memory state around the buggy address:
[  108.429868]  ffff8880982e8580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  108.437401]  ffff8880982e8600: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  108.444918] >ffff8880982e8680: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  108.452254]                                ^
[  108.456646]  ffff8880982e8700: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  108.463992]  ffff8880982e8780: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  108.471322] ==================================================================
[  108.478655] Disabling lock debugging due to kernel taint
[  108.494840] Kernel panic - not syncing: panic_on_warn set ...
[  108.494840] 
[  108.502241] CPU: 0 PID: 10208 Comm: syz-executor.2 Tainted: G    B             4.19.122-syzkaller #0
[  108.511552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  108.520910] Call Trace:
[  108.523490]  dump_stack+0x123/0x177
[  108.527110]  panic+0x1cd/0x375
[  108.530292]  ? __warn_printk+0xd6/0xd6
[  108.534177]  ? ___preempt_schedule+0x16/0x18
[  108.538581]  kasan_end_report+0x47/0x4f
[  108.542544]  kasan_report.cold.9+0x76/0x309
[  108.546851]  ? ccid2_hc_tx_packet_recv+0x1edd/0x21d3
[  108.551948]  __asan_report_load1_noabort+0x14/0x20
[  108.556893]  ccid2_hc_tx_packet_recv+0x1edd/0x21d3
[  108.561816]  ? dccp_ackvec_clear_state+0x33e/0x7e0
[  108.566738]  ? rcu_read_lock_sched_held+0x108/0x120
[  108.571750]  dccp_deliver_input_to_ccids+0x19f/0x210
[  108.576848]  dccp_rcv_established+0x49/0x70
[  108.581177]  dccp_v4_do_rcv+0xfa/0x160
[  108.585039]  __release_sock+0x107/0x360
[  108.588986]  release_sock+0x4f/0x180
[  108.592672]  dccp_sendmsg+0x4f6/0xe20
[  108.596450]  ? import_iovec+0x9f/0x440
[  108.600418]  ? dccp_getsockopt+0xd0/0xd0
[  108.605860]  ? copy_msghdr_from_user+0x20b/0x3e0
[  108.610603]  inet_sendmsg+0x108/0x440
[  108.614404]  ? security_socket_sendmsg+0x4a/0x90
[  108.619179]  ? ipip_gro_receive+0xf0/0xf0
[  108.623321]  sock_sendmsg+0xb5/0xf0
[  108.626944]  ___sys_sendmsg+0x28e/0x950
[  108.631102]  ? find_held_lock+0x36/0x1d0
[  108.635144]  ? copy_msghdr_from_user+0x3e0/0x3e0
[  108.639887]  ? mark_held_locks+0x130/0x130
[  108.644112]  ? lock_downgrade+0x860/0x860
[  108.648257]  ? kasan_check_read+0x11/0x20
[  108.652392]  ? find_held_lock+0x36/0x1d0
[  108.656436]  ? __might_fault+0xf1/0x1b0
[  108.660386]  __sys_sendmmsg+0x160/0x370
[  108.664336]  ? __ia32_sys_sendmsg+0xb0/0xb0
[  108.673191]  ? kasan_check_write+0x14/0x20
[  108.677407]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[  108.682225]  ? __sb_end_write+0xa4/0xd0
[  108.686261]  ? kasan_check_write+0x14/0x20
[  108.690469]  ? fput+0x18/0x120
[  108.693635]  ? ksys_write+0x1ce/0x260
[  108.697431]  ? do_sys_open+0x16e/0x350
[  108.701304]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  108.706040]  ? do_syscall_64+0x21/0x4e0
[  108.710041]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  108.715436]  __x64_sys_sendmmsg+0x98/0x100
[  108.719794]  do_syscall_64+0xd0/0x4e0
[  108.723724]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  108.728907] RIP: 0033:0x45a219
[  108.732074] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  108.750972] RSP: 002b:00007f26f46b5c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  108.758656] RAX: ffffffffffffffda RBX: 00007f26f46b5c90 RCX: 000000000045a219
[  108.765905] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[  108.773165] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  108.780412] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f26f46b66d4
[  108.787684] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[  108.796453] Kernel Offset: disabled
[  108.800084] Rebooting in 86400 seconds..