syzkaller login: [   33.970060] kauditd_printk_skb: 9 callbacks suppressed
[   33.970066] audit: type=1400 audit(1584095492.264:35): avc:  denied  { map } for  pid=6935 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1
[   40.299876] audit: type=1400 audit(1584095498.594:36): avc:  denied  { map } for  pid=6946 comm="syz-fuzzer" path="/root/syz-fuzzer" dev="sda1" ino=16480 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1
[   41.025196] IPVS: ftp: loaded support on port[0] = 21
[   41.394569] can: request_module (can-proto-0) failed.
[   42.453406] can: request_module (can-proto-0) failed.
[   42.462032] can: request_module (can-proto-0) failed.
[   42.607986] audit: type=1400 audit(1584095500.904:37): avc:  denied  { create } for  pid=6946 comm="syz-fuzzer" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_crypto_socket permissive=1
[   42.631860] audit: type=1400 audit(1584095500.904:38): avc:  denied  { create } for  pid=6946 comm="syz-fuzzer" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
[   42.655591] audit: type=1400 audit(1584095500.904:39): avc:  denied  { create } for  pid=6946 comm="syz-fuzzer" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1
Warning: Permanently added '10.128.1.21' (ECDSA) to the list of known hosts.
2020/03/13 10:31:47 parsed 1 programs
2020/03/13 10:31:48 executed programs: 0
[   49.872823] IPVS: ftp: loaded support on port[0] = 21
[   49.884903] IPVS: ftp: loaded support on port[0] = 21
[   49.897722] IPVS: ftp: loaded support on port[0] = 21
[   49.909203] IPVS: ftp: loaded support on port[0] = 21
[   49.931419] IPVS: ftp: loaded support on port[0] = 21
[   49.939211] IPVS: ftp: loaded support on port[0] = 21
[   50.024444] chnl_net:caif_netlink_parms(): no params data found
[   50.101483] bridge0: port 1(bridge_slave_0) entered blocking state
[   50.108691] bridge0: port 1(bridge_slave_0) entered disabled state
[   50.115531] device bridge_slave_0 entered promiscuous mode
[   50.124318] bridge0: port 2(bridge_slave_1) entered blocking state
[   50.130779] bridge0: port 2(bridge_slave_1) entered disabled state
[   50.137857] device bridge_slave_1 entered promiscuous mode
[   50.154538] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   50.163647] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   50.197347] chnl_net:caif_netlink_parms(): no params data found
[   50.226617] chnl_net:caif_netlink_parms(): no params data found
[   50.238527] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   50.245841] team0: Port device team_slave_0 added
[   50.253254] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   50.260447] team0: Port device team_slave_1 added
[   50.307714] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   50.315264] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   50.328433] chnl_net:caif_netlink_parms(): no params data found
[   50.365860] bridge0: port 1(bridge_slave_0) entered blocking state
[   50.372571] bridge0: port 1(bridge_slave_0) entered disabled state
[   50.379970] device bridge_slave_0 entered promiscuous mode
[   50.388453] bridge0: port 2(bridge_slave_1) entered blocking state
[   50.394799] bridge0: port 2(bridge_slave_1) entered disabled state
[   50.402783] device bridge_slave_1 entered promiscuous mode
[   50.409146] chnl_net:caif_netlink_parms(): no params data found
[   50.458150] device hsr_slave_0 entered promiscuous mode
[   50.506176] device hsr_slave_1 entered promiscuous mode
[   50.546428] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[   50.574741] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[   50.597294] bridge0: port 1(bridge_slave_0) entered blocking state
[   50.603663] bridge0: port 1(bridge_slave_0) entered disabled state
[   50.611111] device bridge_slave_0 entered promiscuous mode
[   50.620793] bridge0: port 1(bridge_slave_0) entered blocking state
[   50.627237] bridge0: port 1(bridge_slave_0) entered disabled state
[   50.634036] device bridge_slave_0 entered promiscuous mode
[   50.641185] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   50.658167] bridge0: port 2(bridge_slave_1) entered blocking state
[   50.664623] bridge0: port 2(bridge_slave_1) entered disabled state
[   50.671620] device bridge_slave_1 entered promiscuous mode
[   50.689267] bridge0: port 2(bridge_slave_1) entered blocking state
[   50.695610] bridge0: port 2(bridge_slave_1) entered disabled state
[   50.702516] device bridge_slave_1 entered promiscuous mode
[   50.708991] chnl_net:caif_netlink_parms(): no params data found
[   50.717565] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   50.738244] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   50.750165] bridge0: port 1(bridge_slave_0) entered blocking state
[   50.756633] bridge0: port 1(bridge_slave_0) entered disabled state
[   50.763439] device bridge_slave_0 entered promiscuous mode
[   50.773518] bridge0: port 2(bridge_slave_1) entered blocking state
[   50.780092] bridge0: port 2(bridge_slave_1) entered disabled state
[   50.787323] device bridge_slave_1 entered promiscuous mode
[   50.805061] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   50.818176] bridge0: port 2(bridge_slave_1) entered blocking state
[   50.824613] bridge0: port 2(bridge_slave_1) entered forwarding state
[   50.831525] bridge0: port 1(bridge_slave_0) entered blocking state
[   50.837882] bridge0: port 1(bridge_slave_0) entered forwarding state
[   50.860873] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   50.869386] team0: Port device team_slave_0 added
[   50.878961] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   50.886443] team0: Port device team_slave_0 added
[   50.892282] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   50.901824] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   50.914007] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   50.922784] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   50.930049] team0: Port device team_slave_1 added
[   50.935805] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   50.943157] team0: Port device team_slave_1 added
[   50.948835] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   50.957194] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   50.968916] bridge0: port 1(bridge_slave_0) entered blocking state
[   50.975397] bridge0: port 1(bridge_slave_0) entered disabled state
[   50.982492] device bridge_slave_0 entered promiscuous mode
[   50.989539] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   50.998202] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   51.005753] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   51.021168] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.027756] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.034950] device bridge_slave_1 entered promiscuous mode
[   51.054729] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   51.070437] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   51.077824] team0: Port device team_slave_0 added
[   51.128335] device hsr_slave_0 entered promiscuous mode
[   51.166353] device hsr_slave_1 entered promiscuous mode
[   51.207163] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   51.214963] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[   51.224888] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   51.232101] team0: Port device team_slave_0 added
[   51.238021] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   51.245173] team0: Port device team_slave_1 added
[   51.251739] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   51.259072] team0: Port device team_slave_1 added
[   51.264799] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.272289] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.285371] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[   51.328405] device hsr_slave_0 entered promiscuous mode
[   51.366194] device hsr_slave_1 entered promiscuous mode
[   51.426571] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[   51.433514] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[   51.441742] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   51.448982] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   51.458627] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   51.469172] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   51.490631] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   51.501965] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   51.509419] team0: Port device team_slave_0 added
[   51.567443] device hsr_slave_0 entered promiscuous mode
[   51.606312] device hsr_slave_1 entered promiscuous mode
[   51.650945] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[   51.658453] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[   51.665306] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   51.672864] team0: Port device team_slave_1 added
[   51.728589] device hsr_slave_0 entered promiscuous mode
[   51.766305] device hsr_slave_1 entered promiscuous mode
[   51.806591] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[   51.815474] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[   51.823729] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   51.833562] 8021q: adding VLAN 0 to HW filter on device bond0
[   51.848676] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   51.860768] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   51.876401] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   51.884979] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   51.896553] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   51.907999] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   51.948739] device hsr_slave_0 entered promiscuous mode
[   51.986298] device hsr_slave_1 entered promiscuous mode
[   52.037006] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   52.045223] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   52.054969] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[   52.061097] 8021q: adding VLAN 0 to HW filter on device team0
[   52.081301] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[   52.089692] 8021q: adding VLAN 0 to HW filter on device bond0
[   52.101773] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   52.109587] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   52.117498] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[   52.131830] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   52.139212] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   52.147828] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   52.155414] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.161817] bridge0: port 1(bridge_slave_0) entered forwarding state
[   52.168913] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   52.175776] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   52.185344] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   52.195756] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   52.209726] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   52.224063] 8021q: adding VLAN 0 to HW filter on device bond0
[   52.231458] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   52.239319] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   52.247387] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.253795] bridge0: port 2(bridge_slave_1) entered forwarding state
[   52.260572] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   52.268362] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   52.283294] 8021q: adding VLAN 0 to HW filter on device bond0
[   52.291921] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[   52.299664] 8021q: adding VLAN 0 to HW filter on device team0
[   52.307955] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   52.319154] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   52.327435] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   52.335112] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   52.342932] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   52.350888] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   52.358528] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.364854] bridge0: port 1(bridge_slave_0) entered forwarding state
[   52.371887] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   52.378961] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   52.387252] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   52.394703] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   52.402471] 8021q: adding VLAN 0 to HW filter on device bond0
[   52.410850] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   52.421623] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   52.431619] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready
[   52.440521] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready
[   52.448628] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   52.456745] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   52.464494] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   52.476411] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   52.483873] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   52.491684] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   52.499180] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   52.506704] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   52.514313] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   52.521893] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.528240] bridge0: port 2(bridge_slave_1) entered forwarding state
[   52.537433] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   52.548153] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   52.555817] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   52.564338] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[   52.571042] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   52.579804] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   52.587248] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   52.594227] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   52.601412] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   52.608276] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   52.621877] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[   52.628744] 8021q: adding VLAN 0 to HW filter on device team0
[   52.636678] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   52.644888] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   52.652752] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   52.660993] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[   52.667862] 8021q: adding VLAN 0 to HW filter on device team0
[   52.676930] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   52.684631] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   52.692323] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   52.700802] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   52.710168] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   52.721546] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   52.730445] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   52.737890] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   52.744647] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   52.752443] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   52.760001] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.766391] bridge0: port 1(bridge_slave_0) entered forwarding state
[   52.773445] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   52.782145] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready
[   52.790722] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   52.803863] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   52.811818] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   52.819723] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   52.830087] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   52.837895] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.844219] bridge0: port 2(bridge_slave_1) entered forwarding state
[   52.851345] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   52.859231] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   52.866954] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   52.874605] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   52.882186] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.888546] bridge0: port 1(bridge_slave_0) entered forwarding state
[   52.896234] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[   52.902497] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   52.909692] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   52.916423] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   52.926799] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   52.935543] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready
[   52.943883] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[   52.951275] 8021q: adding VLAN 0 to HW filter on device team0
[   52.960357] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   52.968392] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   52.976225] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   52.984637] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   52.996627] 8021q: adding VLAN 0 to HW filter on device batadv0
[   53.004055] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   53.015043] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   53.022492] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   53.030405] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   53.038234] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.044721] bridge0: port 2(bridge_slave_1) entered forwarding state
[   53.051969] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   53.059968] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   53.068924] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready
[   53.077131] 8021q: adding VLAN 0 to HW filter on device bond0
[   53.084884] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   53.094907] audit: type=1400 audit(1584095511.384:40): avc:  denied  { associate } for  pid=7041 comm="syz-executor.0" name="syz0" scontext=unconfined_u:object_r:unlabeled_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=filesystem permissive=1
[   53.098864] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   53.132752] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   53.142297] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   53.154356] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   53.162413] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   53.169916] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   53.177599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   53.185185] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   53.192927] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   53.200771] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   53.208581] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.214950] bridge0: port 1(bridge_slave_0) entered forwarding state
[   53.221925] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   53.230582] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   53.238449] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   53.245328] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   53.252441] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   53.262396] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[   53.268931] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   53.278535] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   53.287139] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   53.303308] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   53.314143] audit: type=1400 audit(1584095511.614:41): avc:  denied  { name_bind } for  pid=7062 comm="syz-executor.0" src=20003 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:port_t:s0 tclass=dccp_socket permissive=1
[   53.319066] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready
[   53.344058] audit: type=1400 audit(1584095511.614:42): avc:  denied  { node_bind } for  pid=7062 comm="syz-executor.0" src=20003 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:node_t:s0 tclass=dccp_socket permissive=1
[   53.350527] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready
[   53.374253] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   53.387211] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   53.387582] audit: type=1400 audit(1584095511.674:43): avc:  denied  { name_connect } for  pid=7062 comm="syz-executor.0" dest=20003 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:port_t:s0 tclass=dccp_socket permissive=1
[   53.394757] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.423814] bridge0: port 2(bridge_slave_1) entered forwarding state
[   53.433670] FAULT_INJECTION: forcing a failure.
[   53.433670] name failslab, interval 1, probability 0, space 0, times 1
[   53.445249] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   53.445389] CPU: 1 PID: 7067 Comm: syz-executor.0 Not tainted 4.19.109-syzkaller #0
[   53.453026] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   53.460230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   53.460233] Call Trace:
[   53.460245]  dump_stack+0x123/0x177
[   53.460258]  should_fail.cold.4+0x5/0x13
[   53.460266]  ? fault_create_debugfs_attr+0x1a0/0x1a0
[   53.460280]  __should_failslab+0xba/0xf0
[   53.467808] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   53.476731]  should_failslab+0x9/0x14
[   53.476737]  kmem_cache_alloc_trace+0x4b/0x740
[   53.476752]  dccp_ackvec_parsed_add+0x51/0x220
[   53.479838] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   53.482951]  ccid2_hc_tx_parse_options+0x5b/0x80
[   53.482959]  dccp_parse_options+0x532/0xf20
[   53.482974]  dccp_rcv_established+0x23/0x70
[   53.489126] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   53.492121]  dccp_v4_do_rcv+0xfa/0x160
[   53.501728] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   53.503258]  __release_sock+0x107/0x360
[   53.509618] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   53.511617]  release_sock+0x4f/0x180
[   53.511629]  dccp_sendmsg+0x4f6/0xe20
[   53.518464] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   53.523194]  ? sock_has_perm+0x1e2/0x2e0
[   53.523209]  ? dccp_getsockopt+0xd0/0xd0
[   53.530256] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   53.532262]  ? copy_msghdr_from_user+0x20b/0x3e0
[   53.532273]  inet_sendmsg+0x108/0x440
[   53.538872] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready
[   53.542620]  ? security_socket_sendmsg+0x4a/0x90
[   53.542628]  ? ipip_gro_receive+0xf0/0xf0
[   53.542635]  sock_sendmsg+0xb5/0xf0
[   53.548916] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready
[   53.553362]  ___sys_sendmsg+0x28e/0x950
[   53.553369]  ? find_held_lock+0x36/0x1d0
[   53.553377]  ? copy_msghdr_from_user+0x3e0/0x3e0
[   53.558815] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   53.564076]  ? mark_held_locks+0x130/0x130
[   53.564082]  ? lock_downgrade+0x860/0x860
[   53.564090]  ? kasan_check_read+0x11/0x20
[   53.564102]  ? find_held_lock+0x36/0x1d0
[   53.564112]  ? __might_fault+0xf1/0x1b0
[   53.564130]  __sys_sendmmsg+0x160/0x370
[   53.564140]  ? __ia32_sys_sendmsg+0xb0/0xb0
[   53.567974] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   53.571719]  ? kasan_check_write+0x14/0x20
[   53.571726]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[   53.571740]  ? __sb_end_write+0xa4/0xd0
[   53.579156] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[   53.582528]  ? kasan_check_write+0x14/0x20
[   53.582535]  ? fput+0x18/0x120
[   53.582541]  ? ksys_write+0x1ce/0x260
[   53.582546]  ? do_sys_open+0x16e/0x350
[   53.592489] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready
[   53.593329]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   53.593335]  ? do_syscall_64+0x21/0x4e0
[   53.593345]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   53.599288] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[   53.601868]  __x64_sys_sendmmsg+0x98/0x100
[   53.601877]  do_syscall_64+0xd0/0x4e0
[   53.601887]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   53.614153] 8021q: adding VLAN 0 to HW filter on device batadv0
[   53.617405] RIP: 0033:0x45a219
[   53.617411] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   53.617414] RSP: 002b:00007f8a6bf08c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   53.617419] RAX: ffffffffffffffda RBX: 00007f8a6bf08c90 RCX: 000000000045a219
[   53.617422] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[   53.617425] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000
[   53.617428] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8a6bf096d4
[   53.617431] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[   53.842979] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   53.846005] dccp_parse_options: DCCP(00000000f8388505): Option 38 (len=1) error=5
[   53.852222] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready
[   53.866815] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   53.873725] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   53.886831] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   53.894590] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   53.904297] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   53.912348] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   53.920351] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   53.928367] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   53.935938] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   53.943477] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   53.951411] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   53.959060] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   53.966719] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   53.973451] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   53.980201] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   53.988519] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   53.996111] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   54.003622] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   54.011527] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   54.018529] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   54.026232] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[   54.040067] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[   54.047384] 8021q: adding VLAN 0 to HW filter on device team0
[   54.054763] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   54.061955] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   54.083854] 8021q: adding VLAN 0 to HW filter on device batadv0
[   54.093056] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready
[   54.101813] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   54.122124] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   54.129742] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   54.138356] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   54.145852] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   54.154418] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   54.163497] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.164540] FAULT_INJECTION: forcing a failure.
[   54.164540] name failslab, interval 1, probability 0, space 0, times 0
[   54.169906] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.170406] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   54.186814] CPU: 0 PID: 7076 Comm: syz-executor.2 Not tainted 4.19.109-syzkaller #0
[   54.188863] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   54.195662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   54.203904] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.210726] Call Trace:
[   54.210739]  dump_stack+0x123/0x177
[   54.210750]  should_fail.cold.4+0x5/0x13
[   54.210758]  ? fault_create_debugfs_attr+0x1a0/0x1a0
[   54.210773]  __should_failslab+0xba/0xf0
[   54.220202] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.226565]  should_failslab+0x9/0x14
[   54.226572]  kmem_cache_alloc_trace+0x4b/0x740
[   54.226585]  dccp_ackvec_parsed_add+0x51/0x220
[   54.226591]  ccid2_hc_tx_parse_options+0x5b/0x80
[   54.226602]  dccp_parse_options+0x532/0xf20
[   54.230327] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[   54.232798]  dccp_rcv_established+0x23/0x70
[   54.237079] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   54.242093]  dccp_v4_do_rcv+0xfa/0x160
[   54.248730] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready
[   54.252636]  __release_sock+0x107/0x360
[   54.258395] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   54.261281]  release_sock+0x4f/0x180
[   54.266644] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[   54.270690]  dccp_sendmsg+0x4f6/0xe20
[   54.275072] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   54.280978]  ? sock_has_perm+0x1e2/0x2e0
[   54.280988]  ? dccp_getsockopt+0xd0/0xd0
[   54.280999]  ? copy_msghdr_from_user+0x20b/0x3e0
[   54.281008]  inet_sendmsg+0x108/0x440
[   54.281013]  ? security_socket_sendmsg+0x4a/0x90
[   54.281018]  ? ipip_gro_receive+0xf0/0xf0
[   54.281022]  sock_sendmsg+0xb5/0xf0
[   54.281028]  ___sys_sendmsg+0x28e/0x950
[   54.281033]  ? find_held_lock+0x36/0x1d0
[   54.281039]  ? copy_msghdr_from_user+0x3e0/0x3e0
[   54.281045]  ? mark_held_locks+0x130/0x130
[   54.281051]  ? lock_downgrade+0x860/0x860
[   54.281058]  ? kasan_check_read+0x11/0x20
[   54.281068]  ? find_held_lock+0x36/0x1d0
[   54.281079]  ? __might_fault+0xf1/0x1b0
[   54.281094]  __sys_sendmmsg+0x160/0x370
[   54.281102]  ? __ia32_sys_sendmsg+0xb0/0xb0
[   54.281112]  ? kasan_check_write+0x14/0x20
[   54.281118]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[   54.281130]  ? __sb_end_write+0xa4/0xd0
[   54.281135]  ? kasan_check_write+0x14/0x20
[   54.281139]  ? fput+0x18/0x120
[   54.281145]  ? ksys_write+0x1ce/0x260
[   54.281149]  ? do_sys_open+0x16e/0x350
[   54.281156]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   54.281161]  ? do_syscall_64+0x21/0x4e0
[   54.281167]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   54.281174]  __x64_sys_sendmmsg+0x98/0x100
[   54.281180]  do_syscall_64+0xd0/0x4e0
[   54.281187]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   54.281193] RIP: 0033:0x45a219
[   54.281199] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   54.281201] RSP: 002b:00007fc6f5791c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   54.281207] RAX: ffffffffffffffda RBX: 00007fc6f5791c90 RCX: 000000000045a219
[   54.281211] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[   54.281214] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[   54.281217] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc6f57926d4
[   54.281220] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[   54.408880] dccp_parse_options: DCCP(0000000090969d67): Option 38 (len=1) error=5
[   54.546784] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   54.553825] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   54.579658] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   54.602470] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready
[   54.614355] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready
[   54.630711] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   54.639627] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[   54.644082] FAULT_INJECTION: forcing a failure.
[   54.644082] name failslab, interval 1, probability 0, space 0, times 0
[   54.646167] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   54.661821] CPU: 0 PID: 7084 Comm: syz-executor.1 Not tainted 4.19.109-syzkaller #0
[   54.666894] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   54.672189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   54.672193] Call Trace:
[   54.672206]  dump_stack+0x123/0x177
[   54.672219]  should_fail.cold.4+0x5/0x13
[   54.672228]  ? fault_create_debugfs_attr+0x1a0/0x1a0
[   54.672242]  __should_failslab+0xba/0xf0
[   54.679779] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   54.688170]  should_failslab+0x9/0x14
[   54.688177]  kmem_cache_alloc_trace+0x4b/0x740
[   54.688192]  dccp_ackvec_parsed_add+0x51/0x220
[   54.688199]  ccid2_hc_tx_parse_options+0x5b/0x80
[   54.688206]  dccp_parse_options+0x532/0xf20
[   54.688218]  dccp_rcv_established+0x23/0x70
[   54.688224]  dccp_v4_do_rcv+0xfa/0x160
[   54.688232]  __release_sock+0x107/0x360
[   54.688241]  release_sock+0x4f/0x180
[   54.688247]  dccp_sendmsg+0x4f6/0xe20
[   54.688256]  ? sock_has_perm+0x1e2/0x2e0
[   54.697027] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[   54.698510]  ? dccp_getsockopt+0xd0/0xd0
[   54.698524]  ? copy_msghdr_from_user+0x20b/0x3e0
[   54.712824] 8021q: adding VLAN 0 to HW filter on device batadv0
[   54.714275]  inet_sendmsg+0x108/0x440
[   54.714283]  ? security_socket_sendmsg+0x4a/0x90
[   54.714288]  ? ipip_gro_receive+0xf0/0xf0
[   54.714296]  sock_sendmsg+0xb5/0xf0
[   54.797612]  ___sys_sendmsg+0x28e/0x950
[   54.798050] FAULT_INJECTION: forcing a failure.
[   54.798050] name failslab, interval 1, probability 0, space 0, times 0
[   54.801578]  ? find_held_lock+0x36/0x1d0
[   54.801588]  ? copy_msghdr_from_user+0x3e0/0x3e0
[   54.801594]  ? mark_held_locks+0x130/0x130
[   54.801601]  ? lock_downgrade+0x860/0x860
[   54.829902]  ? kasan_check_read+0x11/0x20
[   54.834037]  ? find_held_lock+0x36/0x1d0
[   54.838097]  ? __might_fault+0xf1/0x1b0
[   54.842062]  __sys_sendmmsg+0x160/0x370
[   54.846023]  ? __ia32_sys_sendmsg+0xb0/0xb0
[   54.850334]  ? kasan_check_write+0x14/0x20
[   54.854559]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[   54.859391]  ? __sb_end_write+0xa4/0xd0
[   54.863354]  ? kasan_check_write+0x14/0x20
[   54.867580]  ? fput+0x18/0x120
[   54.870763]  ? ksys_write+0x1ce/0x260
[   54.874542]  ? do_sys_open+0x16e/0x350
[   54.878410]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   54.883148]  ? do_syscall_64+0x21/0x4e0
[   54.887105]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   54.892461]  __x64_sys_sendmmsg+0x98/0x100
[   54.896695]  do_syscall_64+0xd0/0x4e0
[   54.900493]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   54.905664] RIP: 0033:0x45a219
[   54.908843] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   54.927993] RSP: 002b:00007f26fcfc6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   54.935694] RAX: ffffffffffffffda RBX: 00007f26fcfc6c90 RCX: 000000000045a219
[   54.942960] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[   54.950231] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[   54.958557] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f26fcfc76d4
[   54.965835] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[   54.973106] CPU: 1 PID: 7103 Comm: syz-executor.4 Not tainted 4.19.109-syzkaller #0
2020/03/13 10:31:53 executed programs: 9
[   54.980908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   54.990263] Call Trace:
[   54.992943]  dump_stack+0x123/0x177
[   54.993809] dccp_parse_options: DCCP(000000008732ff1d): Option 38 (len=1) error=5
[   54.996564]  should_fail.cold.4+0x5/0x13
[   54.996573]  ? fault_create_debugfs_attr+0x1a0/0x1a0
[   54.996587]  __should_failslab+0xba/0xf0
[   54.996595]  should_failslab+0x9/0x14
[   54.996599]  kmem_cache_alloc_trace+0x4b/0x740
[   54.996613]  dccp_ackvec_parsed_add+0x51/0x220
[   55.024229] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   55.025760]  ccid2_hc_tx_parse_options+0x5b/0x80
[   55.033617] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   55.037087]  dccp_parse_options+0x532/0xf20
[   55.037102]  dccp_rcv_established+0x23/0x70
[   55.037113]  dccp_v4_do_rcv+0xfa/0x160
[   55.037121]  __release_sock+0x107/0x360
[   55.037131]  release_sock+0x4f/0x180
[   55.037137]  dccp_sendmsg+0x4f6/0xe20
[   55.044614] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   55.048625]  ? sock_has_perm+0x1e2/0x2e0
[   55.048637]  ? dccp_getsockopt+0xd0/0xd0
[   55.048653]  ? copy_msghdr_from_user+0x20b/0x3e0
[   55.048661]  inet_sendmsg+0x108/0x440
[   55.048667]  ? security_socket_sendmsg+0x4a/0x90
[   55.048672]  ? ipip_gro_receive+0xf0/0xf0
[   55.055561] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready
[   55.057304]  sock_sendmsg+0xb5/0xf0
[   55.057311]  ___sys_sendmsg+0x28e/0x950
[   55.057318]  ? find_held_lock+0x36/0x1d0
[   55.057325]  ? copy_msghdr_from_user+0x3e0/0x3e0
[   55.057332]  ? mark_held_locks+0x130/0x130
[   55.057338]  ? lock_downgrade+0x860/0x860
[   55.057346]  ? kasan_check_read+0x11/0x20
[   55.057356]  ? find_held_lock+0x36/0x1d0
[   55.063726] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready
[   55.065194]  ? __might_fault+0xf1/0x1b0
[   55.065211]  __sys_sendmmsg+0x160/0x370
[   55.072851] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   55.079438]  ? __ia32_sys_sendmsg+0xb0/0xb0
[   55.079451]  ? kasan_check_write+0x14/0x20
[   55.079458]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[   55.079471]  ? __sb_end_write+0xa4/0xd0
[   55.079477]  ? kasan_check_write+0x14/0x20
[   55.079483]  ? fput+0x18/0x120
[   55.087979] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   55.092431]  ? ksys_write+0x1ce/0x260
[   55.092436]  ? do_sys_open+0x16e/0x350
[   55.092445]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   55.092450]  ? do_syscall_64+0x21/0x4e0
[   55.092460]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   55.103147] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[   55.105243]  __x64_sys_sendmmsg+0x98/0x100
[   55.105255]  do_syscall_64+0xd0/0x4e0
[   55.105266]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   55.105273] RIP: 0033:0x45a219
[   55.118937] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready
[   55.119531] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   55.124941] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[   55.128338] RSP: 002b:00007f03a36ccc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   55.128344] RAX: ffffffffffffffda RBX: 00007f03a36ccc90 RCX: 000000000045a219
[   55.128348] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[   55.128351] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000
[   55.128354] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f03a36cd6d4
[   55.128357] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[   55.325121] dccp_parse_options: DCCP(00000000364de4ee): Option 38 (len=1) error=5
[   55.337613] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.353129] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   55.364975] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   55.374472] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   55.387387] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   55.395199] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   55.403641] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   55.411716] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   55.423418] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   55.431945] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   55.439756] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   55.447409] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   55.455141] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   55.461931] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   55.468964] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   55.476067] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   55.502146] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.612931] FAULT_INJECTION: forcing a failure.
[   55.612931] name failslab, interval 1, probability 0, space 0, times 0
[   55.626470] FAULT_INJECTION: forcing a failure.
[   55.626470] name failslab, interval 1, probability 0, space 0, times 0
[   55.637939] CPU: 1 PID: 7130 Comm: syz-executor.5 Not tainted 4.19.109-syzkaller #0
[   55.645736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   55.655172] Call Trace:
[   55.657754]  dump_stack+0x123/0x177
[   55.661378]  should_fail.cold.4+0x5/0x13
[   55.665426]  ? fault_create_debugfs_attr+0x1a0/0x1a0
[   55.670542]  __should_failslab+0xba/0xf0
[   55.674606]  should_failslab+0x9/0x14
[   55.679119]  kmem_cache_alloc_trace+0x4b/0x740
[   55.683779]  dccp_ackvec_parsed_add+0x51/0x220
[   55.688349]  ccid2_hc_tx_parse_options+0x5b/0x80
[   55.693095]  dccp_parse_options+0x532/0xf20
[   55.697401]  dccp_rcv_established+0x23/0x70
[   55.701704]  dccp_v4_do_rcv+0xfa/0x160
[   55.705588]  __release_sock+0x107/0x360
[   55.709547]  release_sock+0x4f/0x180
[   55.713241]  dccp_sendmsg+0x4f6/0xe20
[   55.717024]  ? sock_has_perm+0x1e2/0x2e0
[   55.721066]  ? dccp_getsockopt+0xd0/0xd0
[   55.725119]  ? copy_msghdr_from_user+0x20b/0x3e0
[   55.729883]  inet_sendmsg+0x108/0x440
[   55.733684]  ? security_socket_sendmsg+0x4a/0x90
[   55.738421]  ? ipip_gro_receive+0xf0/0xf0
[   55.742551]  sock_sendmsg+0xb5/0xf0
[   55.746173]  ___sys_sendmsg+0x28e/0x950
[   55.750138]  ? find_held_lock+0x36/0x1d0
[   55.754198]  ? copy_msghdr_from_user+0x3e0/0x3e0
[   55.758939]  ? mark_held_locks+0x130/0x130
[   55.763156]  ? lock_downgrade+0x860/0x860
[   55.767301]  ? kasan_check_read+0x11/0x20
[   55.771433]  ? find_held_lock+0x36/0x1d0
[   55.775492]  ? __might_fault+0xf1/0x1b0
[   55.779476]  __sys_sendmmsg+0x160/0x370
[   55.783453]  ? __ia32_sys_sendmsg+0xb0/0xb0
[   55.787795]  ? kasan_check_write+0x14/0x20
[   55.792031]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[   55.796876]  ? __sb_end_write+0xa4/0xd0
[   55.800930]  ? kasan_check_write+0x14/0x20
[   55.805159]  ? fput+0x18/0x120
[   55.808337]  ? ksys_write+0x1ce/0x260
[   55.812209]  ? do_sys_open+0x16e/0x350
[   55.816087]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   55.820832]  ? do_syscall_64+0x21/0x4e0
[   55.824821]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   55.830198]  __x64_sys_sendmmsg+0x98/0x100
[   55.834422]  do_syscall_64+0xd0/0x4e0
[   55.838220]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   55.843403] RIP: 0033:0x45a219
[   55.846590] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   55.865485] RSP: 002b:00007fe909456c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   55.873195] RAX: ffffffffffffffda RBX: 00007fe909456c90 RCX: 000000000045a219
[   55.880707] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[   55.887960] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[   55.895224] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe9094576d4
[   55.902489] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[   55.909801] CPU: 0 PID: 7134 Comm: syz-executor.3 Not tainted 4.19.109-syzkaller #0
[   55.917608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   55.922798] dccp_parse_options: DCCP(00000000364de4ee): Option 38 (len=1) error=5
[   55.926953] Call Trace:
[   55.926965]  dump_stack+0x123/0x177
[   55.926977]  should_fail.cold.4+0x5/0x13
[   55.926985]  ? fault_create_debugfs_attr+0x1a0/0x1a0
[   55.926997]  __should_failslab+0xba/0xf0
[   55.927004]  should_failslab+0x9/0x14
[   55.927009]  kmem_cache_alloc_trace+0x4b/0x740
[   55.927021]  dccp_ackvec_parsed_add+0x51/0x220
[   55.927026]  ccid2_hc_tx_parse_options+0x5b/0x80
[   55.927033]  dccp_parse_options+0x532/0xf20
[   55.927047]  dccp_rcv_established+0x23/0x70
[   55.927054]  dccp_v4_do_rcv+0xfa/0x160
[   55.927061]  __release_sock+0x107/0x360
[   55.927070]  release_sock+0x4f/0x180
[   55.927077]  dccp_sendmsg+0x4f6/0xe20
[   55.927084]  ? sock_has_perm+0x1e2/0x2e0
[   55.927092]  ? dccp_getsockopt+0xd0/0xd0
[   55.927102]  ? copy_msghdr_from_user+0x20b/0x3e0
[   55.927110]  inet_sendmsg+0x108/0x440
[   55.927115]  ? security_socket_sendmsg+0x4a/0x90
[   55.927119]  ? ipip_gro_receive+0xf0/0xf0
[   55.927123]  sock_sendmsg+0xb5/0xf0
[   55.927129]  ___sys_sendmsg+0x28e/0x950
[   55.927135]  ? find_held_lock+0x36/0x1d0
[   55.927141]  ? copy_msghdr_from_user+0x3e0/0x3e0
[   55.927148]  ? mark_held_locks+0x130/0x130
[   55.927153]  ? lock_downgrade+0x860/0x860
[   55.927160]  ? kasan_check_read+0x11/0x20
[   55.927171]  ? find_held_lock+0x36/0x1d0
[   55.927182]  ? __might_fault+0xf1/0x1b0
[   55.927199]  __sys_sendmmsg+0x160/0x370
[   55.927208]  ? __ia32_sys_sendmsg+0xb0/0xb0
[   55.927219]  ? kasan_check_write+0x14/0x20
[   55.927224]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[   55.927236]  ? __sb_end_write+0xa4/0xd0
[   55.927242]  ? kasan_check_write+0x14/0x20
[   55.927247]  ? fput+0x18/0x120
[   55.927252]  ? ksys_write+0x1ce/0x260
[   55.927256]  ? do_sys_open+0x16e/0x350
[   55.927265]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   56.100112]  ? do_syscall_64+0x21/0x4e0
[   56.104082]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   56.109444]  __x64_sys_sendmmsg+0x98/0x100
[   56.113666]  do_syscall_64+0xd0/0x4e0
[   56.117569]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   56.122754] RIP: 0033:0x45a219
[   56.125929] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   56.145261] RSP: 002b:00007f05da62cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   56.152957] RAX: ffffffffffffffda RBX: 00007f05da62cc90 RCX: 000000000045a219
[   56.161000] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[   56.168266] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[   56.175522] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f05da62d6d4
[   56.182781] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[   56.229087] dccp_parse_options: DCCP(00000000e00a1eac): Option 38 (len=1) error=5
2020/03/13 10:31:58 executed programs: 44
2020/03/13 10:32:03 executed programs: 84
2020/03/13 10:32:09 executed programs: 122
2020/03/13 10:32:14 executed programs: 163
2020/03/13 10:32:19 executed programs: 200
2020/03/13 10:32:24 executed programs: 240
2020/03/13 10:32:30 executed programs: 278
2020/03/13 10:32:35 executed programs: 319
2020/03/13 10:32:40 executed programs: 356
2020/03/13 10:32:45 executed programs: 395
2020/03/13 10:32:51 executed programs: 434
[  117.366948] FAULT_INJECTION: forcing a failure.
[  117.366948] name failslab, interval 1, probability 0, space 0, times 0
[  117.377489] FAULT_INJECTION: forcing a failure.
[  117.377489] name failslab, interval 1, probability 0, space 0, times 0
[  117.389295] CPU: 1 PID: 9856 Comm: syz-executor.2 Not tainted 4.19.109-syzkaller #0
[  117.397517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  117.406869] Call Trace:
[  117.409460]  dump_stack+0x123/0x177
[  117.413079]  should_fail.cold.4+0x5/0x13
[  117.417129]  ? fault_create_debugfs_attr+0x1a0/0x1a0
[  117.422220]  ? lock_downgrade+0x860/0x860
[  117.426363]  __should_failslab+0xba/0xf0
[  117.430423]  should_failslab+0x9/0x14
[  117.434220]  kmem_cache_alloc_trace+0x2d4/0x740
[  117.438891]  ? debug_object_activate+0x327/0x4e0
[  117.443648]  ? lock_downgrade+0x860/0x860
[  117.447794]  dccp_feat_entry_new+0x140/0x360
[  117.452242]  dccp_feat_push_confirm+0x26/0x280
[  117.456836]  dccp_feat_parse_options+0xf99/0x1a20
[  117.461700]  ? dccp_ackvec_parsed_add+0x51/0x220
[  117.466458]  ? dccp_feat_server_ccid_dependencies+0x1f0/0x1f0
[  117.472338]  ? dccp_ackvec_parsed_add+0x115/0x220
[  117.477174]  dccp_parse_options+0x840/0xf20
[  117.481497]  dccp_rcv_established+0x23/0x70
[  117.485813]  dccp_v4_do_rcv+0xfa/0x160
[  117.489687]  __release_sock+0x107/0x360
[  117.493646]  release_sock+0x4f/0x180
[  117.497347]  dccp_sendmsg+0x4f6/0xe20
[  117.501136]  ? sock_has_perm+0x1e2/0x2e0
[  117.505180]  ? dccp_getsockopt+0xd0/0xd0
[  117.509229]  ? copy_msghdr_from_user+0x20b/0x3e0
[  117.513968]  inet_sendmsg+0x108/0x440
[  117.517755]  ? security_socket_sendmsg+0x4a/0x90
[  117.522507]  ? ipip_gro_receive+0xf0/0xf0
[  117.526640]  sock_sendmsg+0xb5/0xf0
[  117.530254]  ___sys_sendmsg+0x28e/0x950
[  117.534226]  ? find_held_lock+0x36/0x1d0
[  117.538359]  ? copy_msghdr_from_user+0x3e0/0x3e0
[  117.544071]  ? mark_held_locks+0x130/0x130
[  117.548287]  ? lock_downgrade+0x860/0x860
[  117.552437]  ? kasan_check_read+0x11/0x20
[  117.556579]  ? find_held_lock+0x36/0x1d0
[  117.560637]  ? __might_fault+0xf1/0x1b0
[  117.564606]  __sys_sendmmsg+0x160/0x370
[  117.568564]  ? __ia32_sys_sendmsg+0xb0/0xb0
[  117.572870]  ? kasan_check_write+0x14/0x20
[  117.577091]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[  117.590445]  ? __sb_end_write+0xa4/0xd0
[  117.594419]  ? kasan_check_write+0x14/0x20
[  117.598647]  ? fput+0x18/0x120
[  117.601836]  ? ksys_write+0x1ce/0x260
[  117.605634]  ? do_sys_open+0x16e/0x350
[  117.609518]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  117.614261]  ? do_syscall_64+0x21/0x4e0
[  117.618244]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  117.623616]  __x64_sys_sendmmsg+0x98/0x100
[  117.627849]  do_syscall_64+0xd0/0x4e0
[  117.631636]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  117.636811] RIP: 0033:0x45a219
[  117.640005] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  117.660116] RSP: 002b:00007fc6f5791c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  117.667830] RAX: ffffffffffffffda RBX: 00007fc6f5791c90 RCX: 000000000045a219
[  117.675088] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[  117.682342] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  117.689607] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc6f57926d4
[  117.696893] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[  117.704191] CPU: 0 PID: 9860 Comm: syz-executor.5 Not tainted 4.19.109-syzkaller #0
[  117.712130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  117.721482] Call Trace:
[  117.724072]  dump_stack+0x123/0x177
[  117.727703]  should_fail.cold.4+0x5/0x13
[  117.727995] dccp_parse_options: DCCP(00000000f8388505): Option 32 (len=7) error=9
[  117.731768]  ? fault_create_debugfs_attr+0x1a0/0x1a0
[  117.731781]  ? lock_downgrade+0x860/0x860
[  117.731794]  __should_failslab+0xba/0xf0
[  117.731802]  should_failslab+0x9/0x14
[  117.731806]  kmem_cache_alloc_trace+0x2d4/0x740
[  117.731816]  ? debug_object_activate+0x327/0x4e0
[  117.740127] ==================================================================
[  117.744613]  ? lock_downgrade+0x860/0x860
[  117.744624]  dccp_feat_entry_new+0x140/0x360
[  117.748869] BUG: KASAN: use-after-free in ccid2_hc_tx_packet_recv+0x1edd/0x21d3
[  117.748876] Read of size 1 at addr ffff8880889c3622 by task syz-executor.2/9856
[  117.752940]  dccp_feat_push_confirm+0x26/0x280
[  117.756824] 
[  117.803556]  dccp_feat_parse_options+0xf99/0x1a20
[  117.808384]  ? dccp_ackvec_parsed_add+0x51/0x220
[  117.813133]  ? dccp_feat_server_ccid_dependencies+0x1f0/0x1f0
[  117.819002]  ? dccp_ackvec_parsed_add+0x115/0x220
[  117.823827]  dccp_parse_options+0x840/0xf20
[  117.828147]  dccp_rcv_established+0x23/0x70
[  117.832446]  dccp_v4_do_rcv+0xfa/0x160
[  117.836323]  __release_sock+0x107/0x360
[  117.840283]  release_sock+0x4f/0x180
[  117.843976]  dccp_sendmsg+0x4f6/0xe20
[  117.847759]  ? sock_has_perm+0x1e2/0x2e0
[  117.851815]  ? dccp_getsockopt+0xd0/0xd0
[  117.855863]  ? copy_msghdr_from_user+0x20b/0x3e0
[  117.860599]  inet_sendmsg+0x108/0x440
[  117.864377]  ? security_socket_sendmsg+0x4a/0x90
[  117.869126]  ? ipip_gro_receive+0xf0/0xf0
[  117.873252]  sock_sendmsg+0xb5/0xf0
[  117.876875]  ___sys_sendmsg+0x28e/0x950
[  117.880848]  ? find_held_lock+0x36/0x1d0
[  117.884892]  ? copy_msghdr_from_user+0x3e0/0x3e0
[  117.889627]  ? mark_held_locks+0x130/0x130
[  117.894013]  ? lock_downgrade+0x860/0x860
[  117.898142]  ? kasan_check_read+0x11/0x20
[  117.902275]  ? find_held_lock+0x36/0x1d0
[  117.906319]  ? __might_fault+0xf1/0x1b0
[  117.910280]  __sys_sendmmsg+0x160/0x370
[  117.914249]  ? __ia32_sys_sendmsg+0xb0/0xb0
[  117.918559]  ? kasan_check_write+0x14/0x20
[  117.922773]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[  117.927613]  ? __sb_end_write+0xa4/0xd0
[  117.931569]  ? kasan_check_write+0x14/0x20
[  117.935780]  ? fput+0x18/0x120
[  117.938952]  ? ksys_write+0x1ce/0x260
[  117.942831]  ? do_sys_open+0x16e/0x350
[  117.946743]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  117.951499]  ? do_syscall_64+0x21/0x4e0
[  117.955470]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  117.960848]  __x64_sys_sendmmsg+0x98/0x100
[  117.965091]  do_syscall_64+0xd0/0x4e0
[  117.968879]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  117.975013] RIP: 0033:0x45a219
[  117.978192] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  117.997077] RSP: 002b:00007fe909456c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  118.004767] RAX: ffffffffffffffda RBX: 00007fe909456c90 RCX: 000000000045a219
[  118.012030] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[  118.019280] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  118.026529] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe9094576d4
[  118.033791] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[  118.041059] CPU: 1 PID: 9856 Comm: syz-executor.2 Not tainted 4.19.109-syzkaller #0
[  118.048863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  118.058222] Call Trace:
[  118.060809]  dump_stack+0x123/0x177
[  118.064443]  print_address_description.cold.8+0x9/0x1ff
[  118.069810]  kasan_report.cold.9+0x242/0x309
[  118.069818] dccp_parse_options: DCCP(00000000373ce899): Option 32 (len=7) error=9
[  118.074215]  ? ccid2_hc_tx_packet_recv+0x1edd/0x21d3
[  118.074232]  __asan_report_load1_noabort+0x14/0x20
[  118.074237]  ccid2_hc_tx_packet_recv+0x1edd/0x21d3
[  118.074246]  ? dccp_ackvec_clear_state+0x33e/0x7e0
[  118.074252]  ? rcu_read_lock_sched_held+0x108/0x120
[  118.074268]  dccp_deliver_input_to_ccids+0x19f/0x210
[  118.111807]  dccp_rcv_established+0x49/0x70
[  118.116131]  dccp_v4_do_rcv+0xfa/0x160
[  118.120025]  __release_sock+0x107/0x360
[  118.124010]  release_sock+0x4f/0x180
[  118.127726]  dccp_sendmsg+0x4f6/0xe20
[  118.131535]  ? sock_has_perm+0x1e2/0x2e0
[  118.134422] FAULT_INJECTION: forcing a failure.
[  118.134422] name failslab, interval 1, probability 0, space 0, times 0
[  118.135598]  ? dccp_getsockopt+0xd0/0xd0
[  118.150855]  ? copy_msghdr_from_user+0x20b/0x3e0
[  118.155609]  inet_sendmsg+0x108/0x440
[  118.159402]  ? security_socket_sendmsg+0x4a/0x90
[  118.164141]  ? ipip_gro_receive+0xf0/0xf0
[  118.168278]  sock_sendmsg+0xb5/0xf0
[  118.171903]  ___sys_sendmsg+0x28e/0x950
[  118.175870]  ? find_held_lock+0x36/0x1d0
[  118.179931]  ? copy_msghdr_from_user+0x3e0/0x3e0
[  118.184777]  ? mark_held_locks+0x130/0x130
[  118.189005]  ? lock_downgrade+0x860/0x860
[  118.193151]  ? kasan_check_read+0x11/0x20
[  118.197301]  ? find_held_lock+0x36/0x1d0
[  118.201364]  ? __might_fault+0xf1/0x1b0
[  118.205338]  __sys_sendmmsg+0x160/0x370
[  118.209999]  ? __ia32_sys_sendmsg+0xb0/0xb0
[  118.214320]  ? kasan_check_write+0x14/0x20
[  118.218550]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[  118.223389]  ? __sb_end_write+0xa4/0xd0
[  118.227362]  ? kasan_check_write+0x14/0x20
[  118.231614]  ? fput+0x18/0x120
[  118.234797]  ? ksys_write+0x1ce/0x260
[  118.238590]  ? do_sys_open+0x16e/0x350
[  118.242488]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  118.248195]  ? do_syscall_64+0x21/0x4e0
[  118.252165]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  118.257525]  __x64_sys_sendmmsg+0x98/0x100
[  118.261759]  do_syscall_64+0xd0/0x4e0
[  118.265568]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  118.270748] RIP: 0033:0x45a219
[  118.273925] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  118.292813] RSP: 002b:00007fc6f5791c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  118.300938] RAX: ffffffffffffffda RBX: 00007fc6f5791c90 RCX: 000000000045a219
[  118.308199] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[  118.315582] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  118.322848] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc6f57926d4
[  118.330111] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[  118.337387] 
[  118.337392] CPU: 0 PID: 9875 Comm: syz-executor.3 Not tainted 4.19.109-syzkaller #0
[  118.337397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  118.339006] Allocated by task 9856:
[  118.346787] Call Trace:
[  118.356140]  save_stack+0x43/0xd0
[  118.359758]  dump_stack+0x123/0x177
[  118.362336]  kasan_kmalloc+0xc7/0xe0
[  118.362342]  __kmalloc_node_track_caller+0x50/0x70
[  118.365794]  should_fail.cold.4+0x5/0x13
[  118.369404]  __kmalloc_reserve.isra.39+0x2c/0xc0
[  118.369410]  __alloc_skb+0xd7/0x580
[  118.373110]  ? fault_create_debugfs_attr+0x1a0/0x1a0
[  118.378013]  dccp_send_ack+0xb3/0x340
[  118.378018]  ccid2_hc_rx_packet_recv+0xf9/0x170
[  118.382060]  ? lock_downgrade+0x860/0x860
[  118.386791]  dccp_deliver_input_to_ccids+0xc5/0x210
[  118.386796]  dccp_rcv_established+0x49/0x70
[  118.390411]  __should_failslab+0xba/0xf0
[  118.395486]  dccp_v4_do_rcv+0xfa/0x160
[  118.395491]  __sk_receive_skb+0x2a2/0x9a0
[  118.399272]  should_failslab+0x9/0x14
[  118.403916]  dccp_v4_rcv+0xbcd/0x1bbd
[  118.403922]  ip_local_deliver_finish+0x235/0x9f0
[  118.408055]  kmem_cache_alloc_trace+0x2d4/0x740
[  118.413045]  ip_local_deliver+0x2f7/0x440
[  118.413049]  ip_rcv_finish+0x166/0x270
[  118.417349]  ? debug_object_activate+0x327/0x4e0
[  118.421387]  ip_rcv+0xcb/0x2e0
[  118.425253]  ? lock_downgrade+0x860/0x860
[  118.429376]  __netif_receive_skb_one_core+0xe9/0x170
[  118.429380]  __netif_receive_skb+0x1f/0x1b0
[  118.433168]  dccp_feat_entry_new+0x140/0x360
[  118.436935]  process_backlog+0x1ca/0x6d0
[  118.436939]  net_rx_action+0x470/0xe20
[  118.441674]  dccp_feat_push_confirm+0x26/0x280
[  118.446315]  __do_softirq+0x260/0x92d
[  118.450441]  dccp_feat_parse_options+0xf99/0x1a20
[  118.454300] 
[  118.459467]  ? dccp_ackvec_parsed_add+0x51/0x220
[  118.462752] Freed by task 9856:
[  118.462762]  save_stack+0x43/0xd0
[  118.466900]  ? dccp_feat_server_ccid_dependencies+0x1f0/0x1f0
[  118.471977]  __kasan_slab_free+0x102/0x150
[  118.476288]  ? dccp_ackvec_parsed_add+0x115/0x220
[  118.480696]  kasan_slab_free+0xe/0x10
[  118.484740]  dccp_parse_options+0x840/0xf20
[  118.488603]  kfree+0xcf/0x220
[  118.493172]  dccp_rcv_established+0x23/0x70
[  118.496942]  skb_free_head+0x74/0x90
[  118.496947]  skb_release_data+0x481/0x6c0
[  118.501768]  dccp_v4_do_rcv+0xfa/0x160
[  118.503376]  skb_release_all+0x3d/0x50
[  118.508111]  __release_sock+0x107/0x360
[  118.511368]  kfree_skb+0x97/0x270
[  118.514825]  release_sock+0x4f/0x180
[  118.520684]  dccp_v4_do_rcv+0x111/0x160
[  118.524896]  dccp_sendmsg+0x4f6/0xe20
[  118.529714]  __release_sock+0x107/0x360
[  118.529718]  release_sock+0x4f/0x180
[  118.533499]  ? sock_has_perm+0x1e2/0x2e0
[  118.537807]  dccp_sendmsg+0x4f6/0xe20
[  118.537812]  inet_sendmsg+0x108/0x440
[  118.540898]  ? dccp_getsockopt+0xd0/0xd0
[  118.545196]  sock_sendmsg+0xb5/0xf0
[  118.545200]  ___sys_sendmsg+0x28e/0x950
[  118.548984]  ? copy_msghdr_from_user+0x20b/0x3e0
[  118.553106]  __sys_sendmmsg+0x160/0x370
[  118.553110]  __x64_sys_sendmmsg+0x98/0x100
[  118.556991]  inet_sendmsg+0x108/0x440
[  118.560852]  do_syscall_64+0xd0/0x4e0
[  118.560859]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  118.564821]  ? security_socket_sendmsg+0x4a/0x90
[  118.568246] 
[  118.568252] The buggy address belongs to the object at ffff8880889c3180
[  118.568252]  which belongs to the cache kmalloc-2048 of size 2048
[  118.571943]  ? ipip_gro_receive+0xf0/0xf0
[  118.575903] The buggy address is located 1186 bytes inside of
[  118.575903]  2048-byte region [ffff8880889c3180, ffff8880889c3980)
[  118.575906] The buggy address belongs to the page:
[  118.579685]  sock_sendmsg+0xb5/0xf0
[  118.583636] page:ffffea0002227080 count:1 mapcount:0 mapping:ffff88812c35ec40 index:0x0 compound_mapcount: 0
[  118.587351]  ___sys_sendmsg+0x28e/0x950
[  118.591384] flags: 0x1fffc0000008100(slab|head)
[  118.591390] raw: 01fffc0000008100 ffffea0002607608 ffffea00025b3088 ffff88812c35ec40
[  118.595170]  ? find_held_lock+0x36/0x1d0
[  118.598957] raw: 0000000000000000 ffff8880889c2080 0000000100000003 0000000000000000
[  118.602997]  ? copy_msghdr_from_user+0x3e0/0x3e0
[  118.606596] page dumped because: kasan: bad access detected
[  118.606598] 
[  118.610554]  ? mark_held_locks+0x130/0x130
[  118.615372] Memory state around the buggy address:
[  118.619324]  ? lock_downgrade+0x860/0x860
[  118.623554]  ffff8880889c3500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  118.627365]  ? kasan_check_read+0x11/0x20
[  118.631136]  ffff8880889c3580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  118.636311]  ? find_held_lock+0x36/0x1d0
[  118.641038] >ffff8880889c3600: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  118.642781]  ? __might_fault+0xf1/0x1b0
[  118.655579]                                ^
[  118.655583]  ffff8880889c3680: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  118.659723]  __sys_sendmmsg+0x160/0x370
[  118.671738]  ffff8880889c3700: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  118.676653]  ? __ia32_sys_sendmsg+0xb0/0xb0
[  118.680250] ==================================================================
[  118.680253] Disabling lock debugging due to kernel taint
[  118.690201]  ? kasan_check_write+0x14/0x20
[  118.699349] Kernel panic - not syncing: panic_on_warn set ...
[  118.699349] 
[  118.706668]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[  118.835211]  ? __sb_end_write+0xa4/0xd0
[  118.839168]  ? kasan_check_write+0x14/0x20
[  118.843380]  ? fput+0x18/0x120
[  118.846550]  ? ksys_write+0x1ce/0x260
[  118.850335]  ? do_sys_open+0x16e/0x350
[  118.854201]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  118.858930]  ? do_syscall_64+0x21/0x4e0
[  118.862881]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  118.868222]  __x64_sys_sendmmsg+0x98/0x100
[  118.872435]  do_syscall_64+0xd0/0x4e0
[  118.876211]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  118.881377] RIP: 0033:0x45a219
[  118.884719] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  118.903620] RSP: 002b:00007f05da62cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  118.911305] RAX: ffffffffffffffda RBX: 00007f05da62cc90 RCX: 000000000045a219
[  118.918550] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[  118.925799] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  118.933049] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f05da62d6d4
[  118.940300] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[  118.947583] CPU: 1 PID: 9856 Comm: syz-executor.2 Tainted: G    B             4.19.109-syzkaller #0
[  118.956785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  118.966137] Call Trace:
[  118.968725]  dump_stack+0x123/0x177
[  118.972355]  panic+0x1cd/0x375
[  118.975541]  ? __warn_printk+0xd6/0xd6
[  118.979427]  ? ___preempt_schedule+0x16/0x18
[  118.983835]  kasan_end_report+0x47/0x4f
[  118.987806]  kasan_report.cold.9+0x76/0x309
[  118.990676] FAULT_INJECTION: forcing a failure.
[  118.990676] name failslab, interval 1, probability 0, space 0, times 0
[  118.992118]  ? ccid2_hc_tx_packet_recv+0x1edd/0x21d3
[  118.992129]  __asan_report_load1_noabort+0x14/0x20
[  119.013302]  ccid2_hc_tx_packet_recv+0x1edd/0x21d3
[  119.018227]  ? dccp_ackvec_clear_state+0x33e/0x7e0
[  119.023242]  ? rcu_read_lock_sched_held+0x108/0x120
[  119.028274]  dccp_deliver_input_to_ccids+0x19f/0x210
[  119.033371]  dccp_rcv_established+0x49/0x70
[  119.037679]  dccp_v4_do_rcv+0xfa/0x160
[  119.041566]  __release_sock+0x107/0x360
[  119.045545]  release_sock+0x4f/0x180
[  119.049248]  dccp_sendmsg+0x4f6/0xe20
[  119.053033]  ? sock_has_perm+0x1e2/0x2e0
[  119.057081]  ? dccp_getsockopt+0xd0/0xd0
[  119.061136]  ? copy_msghdr_from_user+0x20b/0x3e0
[  119.065877]  inet_sendmsg+0x108/0x440
[  119.069660]  ? security_socket_sendmsg+0x4a/0x90
[  119.074395]  ? ipip_gro_receive+0xf0/0xf0
[  119.078529]  sock_sendmsg+0xb5/0xf0
[  119.082158]  ___sys_sendmsg+0x28e/0x950
[  119.086135]  ? find_held_lock+0x36/0x1d0
[  119.090191]  ? copy_msghdr_from_user+0x3e0/0x3e0
[  119.094941]  ? mark_held_locks+0x130/0x130
[  119.099167]  ? lock_downgrade+0x860/0x860
[  119.103302]  ? kasan_check_read+0x11/0x20
[  119.107443]  ? find_held_lock+0x36/0x1d0
[  119.111502]  ? __might_fault+0xf1/0x1b0
[  119.115473]  __sys_sendmmsg+0x160/0x370
[  119.119433]  ? __ia32_sys_sendmsg+0xb0/0xb0
[  119.123747]  ? kasan_check_write+0x14/0x20
[  119.127977]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[  119.128322] FAULT_INJECTION: forcing a failure.
[  119.128322] name failslab, interval 1, probability 0, space 0, times 0
[  119.132818]  ? __sb_end_write+0xa4/0xd0
[  119.132824]  ? kasan_check_write+0x14/0x20
[  119.132827]  ? fput+0x18/0x120
[  119.132831]  ? ksys_write+0x1ce/0x260
[  119.132838]  ? do_sys_open+0x16e/0x350
[  119.163046]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  119.167787]  ? do_syscall_64+0x21/0x4e0
[  119.171758]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  119.177105]  __x64_sys_sendmmsg+0x98/0x100
[  119.181336]  do_syscall_64+0xd0/0x4e0
[  119.185119]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  119.190289] RIP: 0033:0x45a219
[  119.193462] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  119.194517] FAULT_INJECTION: forcing a failure.
[  119.194517] name failslab, interval 1, probability 0, space 0, times 0
[  119.212357] RSP: 002b:00007fc6f5791c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  119.212362] RAX: ffffffffffffffda RBX: 00007fc6f5791c90 RCX: 000000000045a219
[  119.212365] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[  119.212367] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  119.212369] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc6f57926d4
[  119.212371] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[  119.213933] Kernel Offset: disabled
[  119.272830] Rebooting in 86400 seconds..