
syzkaller login: [   38.278688] kauditd_printk_skb: 10 callbacks suppressed
[   38.278694] audit: type=1400 audit(1578908353.465:36): avc:  denied  { map } for  pid=7041 comm="syz-fuzzer" path="/root/syz-fuzzer" dev="sda1" ino=16480 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1
[   39.167846] IPVS: ftp: loaded support on port[0] = 21
[   39.582935] can: request_module (can-proto-0) failed.
[   40.722528] can: request_module (can-proto-0) failed.
[   40.731543] can: request_module (can-proto-0) failed.
[   40.875191] audit: type=1400 audit(1578908356.065:37): avc:  denied  { create } for  pid=7041 comm="syz-fuzzer" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_crypto_socket permissive=1
[   40.898982] audit: type=1400 audit(1578908356.065:38): avc:  denied  { create } for  pid=7041 comm="syz-fuzzer" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
[   40.922912] audit: type=1400 audit(1578908356.065:39): avc:  denied  { create } for  pid=7041 comm="syz-fuzzer" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1
Warning: Permanently added '10.128.0.234' (ECDSA) to the list of known hosts.
2020/01/13 09:39:22 parsed 1 programs
2020/01/13 09:39:23 executed programs: 0
[   48.258872] IPVS: ftp: loaded support on port[0] = 21
[   48.266990] IPVS: ftp: loaded support on port[0] = 21
[   48.320565] IPVS: ftp: loaded support on port[0] = 21
[   48.323441] IPVS: ftp: loaded support on port[0] = 21
[   48.329762] IPVS: ftp: loaded support on port[0] = 21
[   48.359633] IPVS: ftp: loaded support on port[0] = 21
[   48.494583] chnl_net:caif_netlink_parms(): no params data found
[   48.561890] chnl_net:caif_netlink_parms(): no params data found
[   48.577367] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.584207] bridge0: port 1(bridge_slave_0) entered disabled state
[   48.591157] device bridge_slave_0 entered promiscuous mode
[   48.600076] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.606511] bridge0: port 2(bridge_slave_1) entered disabled state
[   48.613705] device bridge_slave_1 entered promiscuous mode
[   48.630819] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   48.641955] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   48.654609] chnl_net:caif_netlink_parms(): no params data found
[   48.706983] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   48.714763] team0: Port device team_slave_0 added
[   48.722573] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   48.730531] team0: Port device team_slave_1 added
[   48.756260] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   48.779943] chnl_net:caif_netlink_parms(): no params data found
[   48.795372] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.801727] bridge0: port 1(bridge_slave_0) entered disabled state
[   48.808725] device bridge_slave_0 entered promiscuous mode
[   48.815239] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   48.822218] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.828613] bridge0: port 2(bridge_slave_1) entered disabled state
[   48.835508] device bridge_slave_1 entered promiscuous mode
[   48.859894] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.866557] bridge0: port 1(bridge_slave_0) entered disabled state
[   48.873959] device bridge_slave_0 entered promiscuous mode
[   48.893846] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   48.901464] chnl_net:caif_netlink_parms(): no params data found
[   48.919178] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.926163] bridge0: port 2(bridge_slave_1) entered disabled state
[   48.933040] device bridge_slave_1 entered promiscuous mode
[   48.940003] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   48.965365] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   48.972497] team0: Port device team_slave_0 added
[   48.979464] chnl_net:caif_netlink_parms(): no params data found
[   49.045527] device hsr_slave_0 entered promiscuous mode
[   49.085555] device hsr_slave_1 entered promiscuous mode
[   49.134991] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   49.142176] team0: Port device team_slave_1 added
[   49.150099] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   49.160713] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[   49.171030] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[   49.184533] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   49.197447] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   49.205346] bridge0: port 1(bridge_slave_0) entered blocking state
[   49.211713] bridge0: port 1(bridge_slave_0) entered disabled state
[   49.218971] device bridge_slave_0 entered promiscuous mode
[   49.239055] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   49.247122] bridge0: port 1(bridge_slave_0) entered blocking state
[   49.253708] bridge0: port 1(bridge_slave_0) entered disabled state
[   49.260560] device bridge_slave_0 entered promiscuous mode
[   49.267026] bridge0: port 2(bridge_slave_1) entered blocking state
[   49.273897] bridge0: port 2(bridge_slave_1) entered disabled state
[   49.280754] device bridge_slave_1 entered promiscuous mode
[   49.299930] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   49.365607] device hsr_slave_0 entered promiscuous mode
[   49.405699] device hsr_slave_1 entered promiscuous mode
[   49.473496] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[   49.480205] bridge0: port 2(bridge_slave_1) entered blocking state
[   49.486853] bridge0: port 2(bridge_slave_1) entered disabled state
[   49.493892] device bridge_slave_1 entered promiscuous mode
[   49.504627] bridge0: port 1(bridge_slave_0) entered blocking state
[   49.516017] bridge0: port 1(bridge_slave_0) entered disabled state
[   49.526876] device bridge_slave_0 entered promiscuous mode
[   49.534187] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   49.541828] bridge0: port 2(bridge_slave_1) entered blocking state
[   49.548641] bridge0: port 2(bridge_slave_1) entered disabled state
[   49.555805] device bridge_slave_1 entered promiscuous mode
[   49.569604] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[   49.587106] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   49.598594] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   49.605765] team0: Port device team_slave_0 added
[   49.619440] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   49.628343] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   49.639397] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   49.657300] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   49.664742] team0: Port device team_slave_1 added
[   49.677714] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   49.688220] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   49.695779] team0: Port device team_slave_0 added
[   49.704796] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   49.712217] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   49.719925] team0: Port device team_slave_0 added
[   49.726284] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   49.734978] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   49.742254] team0: Port device team_slave_0 added
[   49.747778] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   49.755216] team0: Port device team_slave_1 added
[   49.760353] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   49.767871] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   49.775210] team0: Port device team_slave_1 added
[   49.780546] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   49.791287] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   49.799505] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   49.806796] team0: Port device team_slave_1 added
[   49.811928] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   49.838977] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   49.846298] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   49.870417] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   49.905612] device hsr_slave_0 entered promiscuous mode
[   49.943337] device hsr_slave_1 entered promiscuous mode
[   49.983522] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[   49.990386] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[   50.000417] 8021q: adding VLAN 0 to HW filter on device bond0
[   50.055462] device hsr_slave_0 entered promiscuous mode
[   50.093264] device hsr_slave_1 entered promiscuous mode
[   50.137099] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[   50.194535] device hsr_slave_0 entered promiscuous mode
[   50.233340] device hsr_slave_1 entered promiscuous mode
[   50.303657] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[   50.310689] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[   50.364550] device hsr_slave_0 entered promiscuous mode
[   50.403335] device hsr_slave_1 entered promiscuous mode
[   50.443599] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[   50.450516] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[   50.458170] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   50.474364] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   50.480710] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[   50.498263] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   50.507737] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   50.517852] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   50.528293] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   50.538034] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[   50.545123] 8021q: adding VLAN 0 to HW filter on device team0
[   50.556580] 8021q: adding VLAN 0 to HW filter on device bond0
[   50.570895] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   50.578413] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   50.599137] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   50.607297] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   50.617990] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   50.626283] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   50.634607] bridge0: port 1(bridge_slave_0) entered blocking state
[   50.641249] bridge0: port 1(bridge_slave_0) entered forwarding state
[   50.648579] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   50.656608] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   50.664256] bridge0: port 2(bridge_slave_1) entered blocking state
[   50.670584] bridge0: port 2(bridge_slave_1) entered forwarding state
[   50.678522] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   50.693560] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   50.701600] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   50.711518] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   50.724408] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[   50.730493] 8021q: adding VLAN 0 to HW filter on device team0
[   50.739241] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   50.746981] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   50.753976] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   50.763906] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   50.773804] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   50.784001] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   50.793365] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready
[   50.800106] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   50.807888] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   50.815861] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   50.823665] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   50.831255] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   50.839023] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   50.846697] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   50.856710] 8021q: adding VLAN 0 to HW filter on device bond0
[   50.874080] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   50.882724] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready
[   50.889859] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   50.897338] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   50.905352] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   50.912850] bridge0: port 1(bridge_slave_0) entered blocking state
[   50.919223] bridge0: port 1(bridge_slave_0) entered forwarding state
[   50.926719] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   50.934262] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   50.941753] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   50.951398] 8021q: adding VLAN 0 to HW filter on device bond0
[   50.958707] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   50.968012] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[   50.976852] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   50.989730] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   50.997869] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   51.005826] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.012160] bridge0: port 2(bridge_slave_1) entered forwarding state
[   51.021221] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   51.029521] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   51.039593] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   51.047746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   51.056017] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   51.062870] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   51.072811] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   51.084870] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   51.094755] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[   51.100839] 8021q: adding VLAN 0 to HW filter on device team0
[   51.111441] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   51.122127] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   51.130601] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready
[   51.140927] 8021q: adding VLAN 0 to HW filter on device bond0
[   51.149298] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   51.157814] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   51.166694] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[   51.172775] 8021q: adding VLAN 0 to HW filter on device team0
[   51.179522] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   51.187807] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   51.195688] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   51.203481] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   51.210986] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.217361] bridge0: port 1(bridge_slave_0) entered forwarding state
[   51.224405] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   51.235732] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   51.243040] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   51.249929] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   51.258009] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   51.267790] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   51.275764] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   51.284405] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   51.291711] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[   51.298591] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   51.309047] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   51.316587] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   51.324689] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   51.332197] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.338575] bridge0: port 2(bridge_slave_1) entered forwarding state
[   51.345540] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   51.353469] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   51.361001] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.367371] bridge0: port 1(bridge_slave_0) entered forwarding state
[   51.374225] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   51.380879] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   51.388200] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   51.397222] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready
[   51.405989] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   51.415759] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready
[   51.427597] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   51.435320] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   51.442797] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   51.450874] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   51.460433] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   51.470340] 8021q: adding VLAN 0 to HW filter on device bond0
[   51.478251] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   51.488608] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[   51.497868] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   51.505911] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   51.514418] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   51.524515] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   51.533588] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   51.540669] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   51.548894] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   51.556818] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.563195] bridge0: port 2(bridge_slave_1) entered forwarding state
[   51.570083] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   51.577277] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   51.584457] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   51.592036] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   51.599709] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   51.607588] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   51.616661] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[   51.622741] 8021q: adding VLAN 0 to HW filter on device team0
[   51.630903] 8021q: adding VLAN 0 to HW filter on device batadv0
[   51.640622] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   51.648450] audit: type=1400 audit(1578908366.835:40): avc:  denied  { associate } for  pid=7136 comm="syz-executor.0" name="syz0" scontext=unconfined_u:object_r:unlabeled_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=filesystem permissive=1
[   51.677067] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready
[   51.690098] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   51.697912] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   51.706487] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   51.714607] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   51.722180] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   51.730172] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   51.737085] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   51.746157] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   51.758425] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   51.767681] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[   51.782670] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready
[   51.792118] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[   51.798378] audit: type=1400 audit(1578908366.975:41): avc:  denied  { name_bind } for  pid=7157 comm="syz-executor.0" src=20003 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:port_t:s0 tclass=dccp_socket permissive=1
[   51.812758] 8021q: adding VLAN 0 to HW filter on device team0
[   51.821636] audit: type=1400 audit(1578908366.975:42): avc:  denied  { node_bind } for  pid=7157 comm="syz-executor.0" src=20003 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:node_t:s0 tclass=dccp_socket permissive=1
[   51.838617] FAULT_INJECTION: forcing a failure.
[   51.838617] name failslab, interval 1, probability 0, space 0, times 1
[   51.850222] audit: type=1400 audit(1578908366.975:43): avc:  denied  { name_connect } for  pid=7157 comm="syz-executor.0" dest=20003 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:port_t:s0 tclass=dccp_socket permissive=1
[   51.865777] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   51.888693] CPU: 1 PID: 7159 Comm: syz-executor.0 Not tainted 4.19.95-syzkaller #0
[   51.892494] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   51.899302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   51.899305] Call Trace:
[   51.899319]  dump_stack+0x123/0x177
[   51.899331]  should_fail.cold.4+0x5/0x13
[   51.899338]  ? fault_create_debugfs_attr+0x1a0/0x1a0
[   51.899350]  __should_failslab+0xba/0xf0
[   51.899356]  should_failslab+0x9/0x14
[   51.899361]  kmem_cache_alloc_trace+0x4b/0x740
[   51.899377]  dccp_ackvec_parsed_add+0x51/0x220
[   51.899384]  ccid2_hc_tx_parse_options+0x5b/0x80
[   51.899390]  dccp_parse_options+0x532/0xf20
[   51.899402]  dccp_rcv_established+0x23/0x70
[   51.899408]  dccp_v4_do_rcv+0xfa/0x160
[   51.899417]  __release_sock+0x107/0x360
[   51.899427]  release_sock+0x4f/0x180
[   51.899434]  dccp_sendmsg+0x4f6/0xe20
[   51.899440]  ? sock_has_perm+0x1e2/0x2e0
[   51.899449]  ? dccp_getsockopt+0xd0/0xd0
[   51.899460]  ? copy_msghdr_from_user+0x20b/0x3e0
[   51.899472]  inet_sendmsg+0x108/0x440
[   51.899478]  ? security_socket_sendmsg+0x4a/0x90
[   51.899483]  ? ipip_gro_receive+0xf0/0xf0
[   51.899488]  sock_sendmsg+0xb5/0xf0
[   51.899497]  ___sys_sendmsg+0x28e/0x950
[   51.907603] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.916122]  ? find_held_lock+0x36/0x1d0
[   51.916132]  ? copy_msghdr_from_user+0x3e0/0x3e0
[   51.916139]  ? mark_held_locks+0x130/0x130
[   51.916144]  ? lock_downgrade+0x860/0x860
[   51.916153]  ? kasan_check_read+0x11/0x20
[   51.916162]  ? find_held_lock+0x36/0x1d0
[   51.916172]  ? __might_fault+0xf1/0x1b0
[   51.916186]  __sys_sendmmsg+0x160/0x370
[   51.916193]  ? __ia32_sys_sendmsg+0xb0/0xb0
[   51.918781] bridge0: port 1(bridge_slave_0) entered forwarding state
[   51.922389]  ? kasan_check_write+0x14/0x20
[   51.927244] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   51.931519]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[   51.931535]  ? __sb_end_write+0xa4/0xd0
[   51.931543]  ? kasan_check_write+0x14/0x20
[   51.931548]  ? fput+0x18/0x120
[   51.936162] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   51.939409]  ? ksys_write+0x1ce/0x260
[   51.939413]  ? do_sys_open+0x16e/0x350
[   51.939422]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   51.939428]  ? do_syscall_64+0x21/0x4e0
[   51.939434]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   51.939443]  __x64_sys_sendmmsg+0x98/0x100
[   51.944523] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.948577]  do_syscall_64+0xd0/0x4e0
[   51.948587]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   51.948593] RIP: 0033:0x45a219
[   51.948600] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   51.953423] bridge0: port 2(bridge_slave_1) entered forwarding state
[   51.957671] RSP: 002b:00007f9362db7c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   51.962305] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   51.965838] RAX: ffffffffffffffda RBX: 00007f9362db7c90 RCX: 000000000045a219
[   51.965841] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[   51.965844] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[   51.965847] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9362db86d4
[   51.965850] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[   51.967852] dccp_parse_options: DCCP(000000005b35d979): Option 38 (len=1) error=5
[   51.973379] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   51.999478] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   52.011638] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   52.249690] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   52.259867] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   52.269796] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready
[   52.277099] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   52.286665] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   52.294487] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   52.302067] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   52.310467] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   52.318275] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   52.325867] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   52.336151] 8021q: adding VLAN 0 to HW filter on device batadv0
[   52.344160] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   52.352426] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   52.364071] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[   52.370085] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   52.379974] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   52.390492] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   52.399791] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   52.408062] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   52.418773] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   52.426542] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.432872] bridge0: port 1(bridge_slave_0) entered forwarding state
[   52.439761] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   52.447456] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   52.455021] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   52.464043] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   52.471092] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   52.478212] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   52.486094] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   52.493759] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.500088] bridge0: port 2(bridge_slave_1) entered forwarding state
[   52.509859] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready
[   52.522877] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[   52.537783] 8021q: adding VLAN 0 to HW filter on device batadv0
[   52.546177] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   52.564536] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready
[   52.571378] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   52.585450] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   52.592425] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   52.606400] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   52.614266] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   52.622930] FAULT_INJECTION: forcing a failure.
[   52.622930] name failslab, interval 1, probability 0, space 0, times 0
[   52.623327] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   52.635164] CPU: 1 PID: 7170 Comm: syz-executor.2 Not tainted 4.19.95-syzkaller #0
[   52.648714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   52.658090] Call Trace:
[   52.661650]  dump_stack+0x123/0x177
[   52.665289]  should_fail.cold.4+0x5/0x13
[   52.669494]  ? fault_create_debugfs_attr+0x1a0/0x1a0
[   52.674609]  __should_failslab+0xba/0xf0
[   52.674920] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   52.678679]  should_failslab+0x9/0x14
[   52.689270]  kmem_cache_alloc_trace+0x4b/0x740
[   52.693958]  dccp_ackvec_parsed_add+0x51/0x220
[   52.694947] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   52.698553]  ccid2_hc_tx_parse_options+0x5b/0x80
[   52.710158]  dccp_parse_options+0x532/0xf20
[   52.712437] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   52.714507]  dccp_rcv_established+0x23/0x70
[   52.714515]  dccp_v4_do_rcv+0xfa/0x160
[   52.714523]  __release_sock+0x107/0x360
[   52.714533]  release_sock+0x4f/0x180
[   52.714539]  dccp_sendmsg+0x4f6/0xe20
[   52.714546]  ? sock_has_perm+0x1e2/0x2e0
[   52.714556]  ? dccp_getsockopt+0xd0/0xd0
[   52.729118] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready
[   52.729800]  ? copy_msghdr_from_user+0x20b/0x3e0
[   52.736197] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready
[   52.737465]  inet_sendmsg+0x108/0x440
[   52.742724] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   52.745294]  ? security_socket_sendmsg+0x4a/0x90
[   52.745303]  ? ipip_gro_receive+0xf0/0xf0
[   52.745310]  sock_sendmsg+0xb5/0xf0
[   52.745316]  ___sys_sendmsg+0x28e/0x950
[   52.745322]  ? find_held_lock+0x36/0x1d0
[   52.745328]  ? copy_msghdr_from_user+0x3e0/0x3e0
[   52.745334]  ? mark_held_locks+0x130/0x130
[   52.745339]  ? lock_downgrade+0x860/0x860
[   52.745347]  ? kasan_check_read+0x11/0x20
[   52.745358]  ? find_held_lock+0x36/0x1d0
[   52.745368]  ? __might_fault+0xf1/0x1b0
[   52.745384]  __sys_sendmmsg+0x160/0x370
[   52.745392]  ? __ia32_sys_sendmsg+0xb0/0xb0
[   52.745400]  ? kasan_check_write+0x14/0x20
[   52.745407]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[   52.745421]  ? __sb_end_write+0xa4/0xd0
[   52.745435]  ? kasan_check_write+0x14/0x20
[   52.752995] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   52.756210]  ? fput+0x18/0x120
[   52.761958] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[   52.767594]  ? ksys_write+0x1ce/0x260
[   52.767598]  ? do_sys_open+0x16e/0x350
[   52.767605]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   52.767610]  ? do_syscall_64+0x21/0x4e0
[   52.767617]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   52.767627]  __x64_sys_sendmmsg+0x98/0x100
[   52.767633]  do_syscall_64+0xd0/0x4e0
[   52.767640]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   52.767646] RIP: 0033:0x45a219
[   52.767653] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   52.767656] RSP: 002b:00007f933b634c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   52.767662] RAX: ffffffffffffffda RBX: 00007f933b634c90 RCX: 000000000045a219
[   52.767665] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[   52.767668] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[   52.767671] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f933b6356d4
[   52.767674] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[   52.786474] dccp_parse_options: DCCP(000000006253c6d9): Option 38 (len=1) error=5
[   52.851185] FAULT_INJECTION: forcing a failure.
[   52.851185] name failslab, interval 1, probability 0, space 0, times 0
[   52.859898] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready
[   52.867958] CPU: 0 PID: 7174 Comm: syz-executor.1 Not tainted 4.19.95-syzkaller #0
[   52.873922] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   52.875999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   52.876004] Call Trace:
[   52.880486] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[   52.884628]  dump_stack+0x123/0x177
[   52.884640]  should_fail.cold.4+0x5/0x13
[   52.884648]  ? fault_create_debugfs_attr+0x1a0/0x1a0
[   52.884660]  __should_failslab+0xba/0xf0
[   52.884667]  should_failslab+0x9/0x14
[   52.888674] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   52.893967]  kmem_cache_alloc_trace+0x4b/0x740
[   52.893981]  dccp_ackvec_parsed_add+0x51/0x220
[   52.893988]  ccid2_hc_tx_parse_options+0x5b/0x80
[   52.893995]  dccp_parse_options+0x532/0xf20
[   52.904246] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready
[   52.909102]  dccp_rcv_established+0x23/0x70
[   52.913566] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[   52.931183]  dccp_v4_do_rcv+0xfa/0x160
[   52.931193]  __release_sock+0x107/0x360
[   52.931202]  release_sock+0x4f/0x180
[   52.931210]  dccp_sendmsg+0x4f6/0xe20
[   52.931218]  ? sock_has_perm+0x1e2/0x2e0
[   52.946193]  ? dccp_getsockopt+0xd0/0xd0
[   52.946205]  ? copy_msghdr_from_user+0x20b/0x3e0
[   52.946216]  inet_sendmsg+0x108/0x440
[   52.946224]  ? security_socket_sendmsg+0x4a/0x90
[   52.960749]  ? ipip_gro_receive+0xf0/0xf0
[   52.972194] 8021q: adding VLAN 0 to HW filter on device batadv0
[   52.975274]  sock_sendmsg+0xb5/0xf0
[   52.975280]  ___sys_sendmsg+0x28e/0x950
[   52.975287]  ? find_held_lock+0x36/0x1d0
[   52.975294]  ? copy_msghdr_from_user+0x3e0/0x3e0
[   52.975303]  ? mark_held_locks+0x130/0x130
[   52.994097]  ? lock_downgrade+0x860/0x860
[   52.994108]  ? kasan_check_read+0x11/0x20
[   52.994117]  ? find_held_lock+0x36/0x1d0
[   52.994127]  ? __might_fault+0xf1/0x1b0
[   52.994144]  __sys_sendmmsg+0x160/0x370
[   53.008497]  ? __ia32_sys_sendmsg+0xb0/0xb0
[   53.008508]  ? kasan_check_write+0x14/0x20
[   53.008514]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[   53.008528]  ? __sb_end_write+0xa4/0xd0
[   53.027471]  ? kasan_check_write+0x14/0x20
[   53.027476]  ? fput+0x18/0x120
[   53.027482]  ? ksys_write+0x1ce/0x260
[   53.027485]  ? do_sys_open+0x16e/0x350
[   53.027494]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   53.052819]  ? do_syscall_64+0x21/0x4e0
[   53.072167]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   53.072178]  __x64_sys_sendmmsg+0x98/0x100
[   53.072189]  do_syscall_64+0xd0/0x4e0
[   53.116081] FAULT_INJECTION: forcing a failure.
[   53.116081] name failslab, interval 1, probability 0, space 0, times 0
[   53.117306]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   53.117312] RIP: 0033:0x45a219
[   53.117318] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   53.278725] RSP: 002b:00007fbc64ed8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   53.286419] RAX: ffffffffffffffda RBX: 00007fbc64ed8c90 RCX: 000000000045a219
[   53.293677] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[   53.300953] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[   53.308217] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbc64ed96d4
[   53.315490] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[   53.322844] CPU: 1 PID: 7189 Comm: syz-executor.3 Not tainted 4.19.95-syzkaller #0
[   53.325321] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   53.330571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   53.330577] Call Trace:
[   53.349699]  dump_stack+0x123/0x177
[   53.350310] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   53.353338]  should_fail.cold.4+0x5/0x13
[   53.353347]  ? fault_create_debugfs_attr+0x1a0/0x1a0
[   53.353361]  __should_failslab+0xba/0xf0
[   53.353368]  should_failslab+0x9/0x14
[   53.353373]  kmem_cache_alloc_trace+0x4b/0x740
[   53.353386]  dccp_ackvec_parsed_add+0x51/0x220
[   53.353393]  ccid2_hc_tx_parse_options+0x5b/0x80
[   53.353400]  dccp_parse_options+0x532/0xf20
[   53.353418]  dccp_rcv_established+0x23/0x70
[   53.353423]  dccp_v4_do_rcv+0xfa/0x160
[   53.353433]  __release_sock+0x107/0x360
[   53.353442]  release_sock+0x4f/0x180
[   53.353449]  dccp_sendmsg+0x4f6/0xe20
2020/01/13 09:39:28 executed programs: 9
[   53.353456]  ? sock_has_perm+0x1e2/0x2e0
[   53.353464]  ? dccp_getsockopt+0xd0/0xd0
[   53.353473]  ? copy_msghdr_from_user+0x20b/0x3e0
[   53.353486]  inet_sendmsg+0x108/0x440
[   53.353491]  ? security_socket_sendmsg+0x4a/0x90
[   53.353496]  ? ipip_gro_receive+0xf0/0xf0
[   53.353500]  sock_sendmsg+0xb5/0xf0
[   53.353504]  ___sys_sendmsg+0x28e/0x950
[   53.353510]  ? find_held_lock+0x36/0x1d0
[   53.353516]  ? copy_msghdr_from_user+0x3e0/0x3e0
[   53.353522]  ? mark_held_locks+0x130/0x130
[   53.353526]  ? lock_downgrade+0x860/0x860
[   53.353532]  ? kasan_check_read+0x11/0x20
[   53.353541]  ? find_held_lock+0x36/0x1d0
[   53.353552]  ? __might_fault+0xf1/0x1b0
[   53.353568]  __sys_sendmmsg+0x160/0x370
[   53.353575]  ? __ia32_sys_sendmsg+0xb0/0xb0
[   53.353586]  ? kasan_check_write+0x14/0x20
[   53.353593]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[   53.353607]  ? __sb_end_write+0xa4/0xd0
[   53.353613]  ? kasan_check_write+0x14/0x20
[   53.353618]  ? fput+0x18/0x120
[   53.353624]  ? ksys_write+0x1ce/0x260
[   53.353627]  ? do_sys_open+0x16e/0x350
[   53.353635]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   53.353641]  ? do_syscall_64+0x21/0x4e0
[   53.353649]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   53.369007] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   53.369887]  __x64_sys_sendmmsg+0x98/0x100
[   53.369896]  do_syscall_64+0xd0/0x4e0
[   53.369906]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   53.376469] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   53.377736] RIP: 0033:0x45a219
[   53.377743] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   53.377746] RSP: 002b:00007f9931936c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   53.377753] RAX: ffffffffffffffda RBX: 00007f9931936c90 RCX: 000000000045a219
[   53.377756] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[   53.377759] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000
[   53.377762] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f99319376d4
[   53.377767] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[   53.382873] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   53.419471] dccp_parse_options: DCCP(00000000f12a6a68): Option 38 (len=1) error=5
[   53.421381] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   53.434724] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   53.446225] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   53.483396] dccp_parse_options: DCCP(00000000d23b98b5): Option 38 (len=1) error=5
[   53.489485] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   53.504812] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   53.505224] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   53.506220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   53.512920] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   53.650046] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   53.680959] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   53.709265] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   53.741849] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   53.757701] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   53.764891] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   53.771761] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   53.784804] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   53.796421] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready
[   53.807583] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready
[   53.816098] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   53.826423] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   53.837255] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[   53.848546] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   53.855620] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   53.864517] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready
[   53.872179] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   53.880242] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   53.893649] 8021q: adding VLAN 0 to HW filter on device batadv0
[   53.902380] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[   53.908691] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   53.939471] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready
[   53.952272] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[   53.960712] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   53.968468] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   53.980240] 8021q: adding VLAN 0 to HW filter on device batadv0
[   54.046702] FAULT_INJECTION: forcing a failure.
[   54.046702] name failslab, interval 1, probability 0, space 0, times 0
[   54.049979] FAULT_INJECTION: forcing a failure.
[   54.049979] name failslab, interval 1, probability 0, space 0, times 0
[   54.058163] CPU: 1 PID: 7225 Comm: syz-executor.4 Not tainted 4.19.95-syzkaller #0
[   54.077040] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   54.086389] Call Trace:
[   54.088968]  dump_stack+0x123/0x177
[   54.092593]  should_fail.cold.4+0x5/0x13
[   54.096648]  ? fault_create_debugfs_attr+0x1a0/0x1a0
[   54.101752]  ? __lock_acquire+0x792/0x4980
[   54.105992]  __should_failslab+0xba/0xf0
[   54.110054]  should_failslab+0x9/0x14
[   54.113841]  kmem_cache_alloc+0x47/0x730
[   54.117906]  ? dccp_feat_clone_list+0x3c0/0x3c0
[   54.122563]  dccp_ackvec_update_records+0x25/0x3e0
[   54.127483]  dccp_insert_options+0x68e/0xb70
[   54.131874]  ? lockdep_hardirqs_on+0x421/0x5c0
[   54.136448]  dccp_transmit_skb+0x194/0x1250
[   54.140774]  ? skb_unlink+0xeb/0x160
[   54.144473]  ? trace_hardirqs_on+0x28/0x190
[   54.148776]  dccp_xmit_packet+0x1a6/0x580
[   54.152921]  dccp_write_xmit+0x125/0x180
[   54.157075]  dccp_sendmsg+0x64c/0xe20
[   54.160859]  ? sock_has_perm+0x1e2/0x2e0
[   54.164927]  ? dccp_getsockopt+0xd0/0xd0
[   54.168994]  ? copy_msghdr_from_user+0x20b/0x3e0
[   54.173741]  inet_sendmsg+0x108/0x440
[   54.177530]  ? security_socket_sendmsg+0x4a/0x90
[   54.182276]  ? ipip_gro_receive+0xf0/0xf0
[   54.186426]  sock_sendmsg+0xb5/0xf0
[   54.190035]  ___sys_sendmsg+0x28e/0x950
[   54.193995]  ? find_held_lock+0x36/0x1d0
[   54.198042]  ? copy_msghdr_from_user+0x3e0/0x3e0
[   54.202779]  ? mark_held_locks+0x130/0x130
[   54.207025]  ? lock_downgrade+0x860/0x860
[   54.211158]  ? kasan_check_read+0x11/0x20
[   54.215315]  ? find_held_lock+0x36/0x1d0
[   54.219377]  ? __might_fault+0xf1/0x1b0
[   54.223353]  __sys_sendmmsg+0x160/0x370
[   54.227319]  ? __ia32_sys_sendmsg+0xb0/0xb0
[   54.231645]  ? kasan_check_write+0x14/0x20
[   54.235868]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[   54.240707]  ? __sb_end_write+0xa4/0xd0
[   54.244669]  ? kasan_check_write+0x14/0x20
[   54.248885]  ? fput+0x18/0x120
[   54.252082]  ? ksys_write+0x1ce/0x260
[   54.255870]  ? do_sys_open+0x16e/0x350
[   54.259761]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   54.264550]  ? do_syscall_64+0x21/0x4e0
[   54.268615]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   54.273994]  __x64_sys_sendmmsg+0x98/0x100
[   54.278225]  do_syscall_64+0xd0/0x4e0
[   54.282016]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   54.287202] RIP: 0033:0x45a219
[   54.290380] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   54.309381] RSP: 002b:00007f1da2e53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   54.317091] RAX: ffffffffffffffda RBX: 00007f1da2e53c90 RCX: 000000000045a219
[   54.324359] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[   54.331618] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[   54.339322] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f1da2e546d4
[   54.346591] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[   54.357142] CPU: 0 PID: 7229 Comm: syz-executor.5 Not tainted 4.19.95-syzkaller #0
[   54.364873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   54.374224] Call Trace:
[   54.376813]  dump_stack+0x123/0x177
[   54.380510]  should_fail.cold.4+0x5/0x13
[   54.384567]  ? fault_create_debugfs_attr+0x1a0/0x1a0
[   54.384579]  __should_failslab+0xba/0xf0
[   54.384586]  should_failslab+0x9/0x14
[   54.384590]  kmem_cache_alloc_trace+0x4b/0x740
[   54.384604]  dccp_ackvec_parsed_add+0x51/0x220
[   54.384611]  ccid2_hc_tx_parse_options+0x5b/0x80
[   54.384617]  dccp_parse_options+0x532/0xf20
[   54.384629]  dccp_rcv_established+0x23/0x70
[   54.420099]  dccp_v4_do_rcv+0xfa/0x160
[   54.423989]  __release_sock+0x107/0x360
[   54.427970]  release_sock+0x4f/0x180
[   54.431687]  dccp_sendmsg+0x4f6/0xe20
[   54.435486]  ? sock_has_perm+0x1e2/0x2e0
[   54.439551]  ? dccp_getsockopt+0xd0/0xd0
[   54.443662]  ? copy_msghdr_from_user+0x20b/0x3e0
[   54.448402]  inet_sendmsg+0x108/0x440
[   54.452199]  ? security_socket_sendmsg+0x4a/0x90
[   54.456942]  ? ipip_gro_receive+0xf0/0xf0
[   54.461074]  sock_sendmsg+0xb5/0xf0
[   54.464696]  ___sys_sendmsg+0x28e/0x950
[   54.468671]  ? find_held_lock+0x36/0x1d0
[   54.472711]  ? copy_msghdr_from_user+0x3e0/0x3e0
[   54.477452]  ? mark_held_locks+0x130/0x130
[   54.481665]  ? lock_downgrade+0x860/0x860
[   54.485794]  ? kasan_check_read+0x11/0x20
[   54.489925]  ? find_held_lock+0x36/0x1d0
[   54.493983]  ? __might_fault+0xf1/0x1b0
[   54.497958]  __sys_sendmmsg+0x160/0x370
[   54.501925]  ? __ia32_sys_sendmsg+0xb0/0xb0
[   54.506234]  ? kasan_check_write+0x14/0x20
[   54.510450]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[   54.515274]  ? __sb_end_write+0xa4/0xd0
[   54.519228]  ? kasan_check_write+0x14/0x20
[   54.523449]  ? fput+0x18/0x120
[   54.526622]  ? ksys_write+0x1ce/0x260
[   54.530397]  ? do_sys_open+0x16e/0x350
[   54.534265]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   54.539025]  ? do_syscall_64+0x21/0x4e0
[   54.542992]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   54.548377]  __x64_sys_sendmmsg+0x98/0x100
[   54.552622]  do_syscall_64+0xd0/0x4e0
[   54.556419]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   54.561592] RIP: 0033:0x45a219
[   54.564801] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   54.583682] RSP: 002b:00007fcb8d0a7c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   54.591371] RAX: ffffffffffffffda RBX: 00007fcb8d0a7c90 RCX: 000000000045a219
[   54.598637] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[   54.605896] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[   54.613207] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcb8d0a86d4
[   54.620457] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[   54.635122] dccp_parse_options: DCCP(000000005b35d979): Option 38 (len=1) error=5
[   54.742262] FAULT_INJECTION: forcing a failure.
[   54.742262] name failslab, interval 1, probability 0, space 0, times 0
[   54.754051] CPU: 1 PID: 7244 Comm: syz-executor.4 Not tainted 4.19.95-syzkaller #0
[   54.761772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   54.771123] Call Trace:
[   54.773709]  dump_stack+0x123/0x177
[   54.777347]  should_fail.cold.4+0x5/0x13
[   54.781413]  ? fault_create_debugfs_attr+0x1a0/0x1a0
[   54.786527]  __should_failslab+0xba/0xf0
[   54.790611]  should_failslab+0x9/0x14
[   54.794408]  kmem_cache_alloc_trace+0x4b/0x740
[   54.799001]  dccp_ackvec_parsed_add+0x51/0x220
[   54.803633]  ccid2_hc_tx_parse_options+0x5b/0x80
[   54.808376]  dccp_parse_options+0x532/0xf20
[   54.812688]  dccp_rcv_established+0x23/0x70
[   54.816996]  dccp_v4_do_rcv+0xfa/0x160
[   54.820886]  __release_sock+0x107/0x360
[   54.824866]  release_sock+0x4f/0x180
[   54.828580]  dccp_sendmsg+0x4f6/0xe20
[   54.832381]  ? sock_has_perm+0x1e2/0x2e0
[   54.836446]  ? dccp_getsockopt+0xd0/0xd0
[   54.840514]  ? copy_msghdr_from_user+0x20b/0x3e0
[   54.845268]  inet_sendmsg+0x108/0x440
[   54.849051]  ? security_socket_sendmsg+0x4a/0x90
[   54.853799]  ? ipip_gro_receive+0xf0/0xf0
[   54.857940]  sock_sendmsg+0xb5/0xf0
[   54.861576]  ___sys_sendmsg+0x28e/0x950
[   54.865542]  ? find_held_lock+0x36/0x1d0
[   54.869600]  ? copy_msghdr_from_user+0x3e0/0x3e0
[   54.874344]  ? mark_held_locks+0x130/0x130
[   54.878575]  ? lock_downgrade+0x860/0x860
[   54.882719]  ? kasan_check_read+0x11/0x20
[   54.886863]  ? find_held_lock+0x36/0x1d0
[   54.890970]  ? __might_fault+0xf1/0x1b0
[   54.894951]  __sys_sendmmsg+0x160/0x370
[   54.898923]  ? __ia32_sys_sendmsg+0xb0/0xb0
[   54.903232]  ? kasan_check_write+0x14/0x20
[   54.907446]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[   54.912306]  ? __sb_end_write+0xa4/0xd0
[   54.916268]  ? kasan_check_write+0x14/0x20
[   54.920499]  ? fput+0x18/0x120
[   54.923686]  ? ksys_write+0x1ce/0x260
[   54.928428]  ? do_sys_open+0x16e/0x350
[   54.932322]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   54.937065]  ? do_syscall_64+0x21/0x4e0
[   54.941116]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   54.946472]  __x64_sys_sendmmsg+0x98/0x100
[   54.950705]  do_syscall_64+0xd0/0x4e0
[   54.954585]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   54.959764] RIP: 0033:0x45a219
[   54.962934] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   54.981840] RSP: 002b:00007f1da2e53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   54.989542] RAX: ffffffffffffffda RBX: 00007f1da2e53c90 RCX: 000000000045a219
[   54.996800] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[   55.004065] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[   55.011326] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f1da2e546d4
[   55.018589] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[   55.029255] dccp_parse_options: DCCP(00000000d23b98b5): Option 38 (len=1) error=5
2020/01/13 09:39:33 executed programs: 44
2020/01/13 09:39:38 executed programs: 81
2020/01/13 09:39:43 executed programs: 120
2020/01/13 09:39:48 executed programs: 157
2020/01/13 09:39:54 executed programs: 194
2020/01/13 09:39:59 executed programs: 231
2020/01/13 09:40:04 executed programs: 270
2020/01/13 09:40:09 executed programs: 307
2020/01/13 09:40:14 executed programs: 344
2020/01/13 09:40:19 executed programs: 381
2020/01/13 09:40:24 executed programs: 421
[  112.607750] FAULT_INJECTION: forcing a failure.
[  112.607750] name failslab, interval 1, probability 0, space 0, times 0
[  112.619093] CPU: 0 PID: 9819 Comm: syz-executor.0 Not tainted 4.19.95-syzkaller #0
[  112.626819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  112.636172] Call Trace:
[  112.638753]  dump_stack+0x123/0x177
[  112.642463]  should_fail.cold.4+0x5/0x13
[  112.646538]  ? fault_create_debugfs_attr+0x1a0/0x1a0
[  112.651633]  ? lock_downgrade+0x860/0x860
[  112.655803]  __should_failslab+0xba/0xf0
[  112.659866]  should_failslab+0x9/0x14
[  112.663753]  kmem_cache_alloc_trace+0x2d4/0x740
[  112.668426]  ? debug_object_activate+0x327/0x4e0
[  112.673184]  ? lock_downgrade+0x860/0x860
[  112.677328]  dccp_feat_entry_new+0x140/0x360
[  112.681741]  dccp_feat_push_confirm+0x26/0x280
[  112.686324]  dccp_feat_parse_options+0xf99/0x1a20
[  112.691164]  ? dccp_ackvec_parsed_add+0x51/0x220
[  112.695919]  ? dccp_feat_server_ccid_dependencies+0x1f0/0x1f0
[  112.701849]  ? dccp_ackvec_parsed_add+0x115/0x220
[  112.706684]  dccp_parse_options+0x840/0xf20
[  112.711074]  dccp_rcv_established+0x23/0x70
[  112.715496]  dccp_v4_do_rcv+0xfa/0x160
[  112.719380]  __release_sock+0x107/0x360
[  112.723353]  release_sock+0x4f/0x180
[  112.727060]  dccp_sendmsg+0x4f6/0xe20
[  112.730850]  ? sock_has_perm+0x1e2/0x2e0
[  112.734902]  ? dccp_getsockopt+0xd0/0xd0
[  112.738950]  ? copy_msghdr_from_user+0x20b/0x3e0
[  112.743695]  inet_sendmsg+0x108/0x440
[  112.747488]  ? security_socket_sendmsg+0x4a/0x90
[  112.752237]  ? ipip_gro_receive+0xf0/0xf0
[  112.756376]  sock_sendmsg+0xb5/0xf0
[  112.759998]  ___sys_sendmsg+0x28e/0x950
[  112.764404]  ? find_held_lock+0x36/0x1d0
[  112.768453]  ? copy_msghdr_from_user+0x3e0/0x3e0
[  112.773194]  ? mark_held_locks+0x130/0x130
[  112.777422]  ? lock_downgrade+0x860/0x860
[  112.781557]  ? kasan_check_read+0x11/0x20
[  112.785741]  ? find_held_lock+0x36/0x1d0
[  112.789792]  ? __might_fault+0xf1/0x1b0
[  112.793773]  __sys_sendmmsg+0x160/0x370
[  112.797741]  ? __ia32_sys_sendmsg+0xb0/0xb0
[  112.802058]  ? kasan_check_write+0x14/0x20
[  112.806303]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[  112.811154]  ? __sb_end_write+0xa4/0xd0
[  112.815129]  ? kasan_check_write+0x14/0x20
[  112.819361]  ? fput+0x18/0x120
[  112.822543]  ? ksys_write+0x1ce/0x260
[  112.826324]  ? do_sys_open+0x16e/0x350
[  112.826334]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  112.826340]  ? do_syscall_64+0x21/0x4e0
[  112.826347]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  112.834967]  __x64_sys_sendmmsg+0x98/0x100
[  112.834974]  do_syscall_64+0xd0/0x4e0
[  112.834981]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  112.834986] RIP: 0033:0x45a219
[  112.834993] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  112.834995] RSP: 002b:00007f9362db7c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  112.835001] RAX: ffffffffffffffda RBX: 00007f9362db7c90 RCX: 000000000045a219
[  112.835004] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[  112.835007] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  112.835009] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9362db86d4
[  112.835012] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[  112.838084] dccp_parse_options: DCCP(000000005b35d979): Option 32 (len=7) error=9
[  112.932413] ==================================================================
[  112.939916] BUG: KASAN: use-after-free in ccid2_hc_tx_packet_recv+0x1edd/0x21d3
[  112.947404] Read of size 1 at addr ffff888083b1a722 by task syz-executor.0/9819
[  112.954836] 
[  112.956451] CPU: 1 PID: 9819 Comm: syz-executor.0 Not tainted 4.19.95-syzkaller #0
[  112.964144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  112.973536] Call Trace:
[  112.976109]  dump_stack+0x123/0x177
[  112.979723]  print_address_description.cold.8+0x9/0x1ff
[  112.985068]  kasan_report.cold.9+0x242/0x309
[  112.989508]  ? ccid2_hc_tx_packet_recv+0x1edd/0x21d3
[  112.994589]  __asan_report_load1_noabort+0x14/0x20
[  112.999503]  ccid2_hc_tx_packet_recv+0x1edd/0x21d3
[  113.004774]  ? dccp_ackvec_clear_state+0x33e/0x7e0
[  113.009714]  ? rcu_read_lock_sched_held+0x108/0x120
[  113.014729]  dccp_deliver_input_to_ccids+0x19f/0x210
[  113.019819]  dccp_rcv_established+0x49/0x70
[  113.024119]  dccp_v4_do_rcv+0xfa/0x160
[  113.028002]  __release_sock+0x107/0x360
[  113.031978]  release_sock+0x4f/0x180
[  113.035675]  dccp_sendmsg+0x4f6/0xe20
[  113.039477]  ? sock_has_perm+0x1e2/0x2e0
[  113.043521]  ? dccp_getsockopt+0xd0/0xd0
[  113.047572]  ? copy_msghdr_from_user+0x20b/0x3e0
[  113.052337]  inet_sendmsg+0x108/0x440
[  113.056143]  ? security_socket_sendmsg+0x4a/0x90
[  113.060888]  ? ipip_gro_receive+0xf0/0xf0
[  113.065030]  sock_sendmsg+0xb5/0xf0
[  113.068641]  ___sys_sendmsg+0x28e/0x950
[  113.072598]  ? find_held_lock+0x36/0x1d0
[  113.076645]  ? copy_msghdr_from_user+0x3e0/0x3e0
[  113.081412]  ? mark_held_locks+0x130/0x130
[  113.085639]  ? lock_downgrade+0x860/0x860
[  113.089770]  ? kasan_check_read+0x11/0x20
[  113.093909]  ? find_held_lock+0x36/0x1d0
[  113.097950]  ? __might_fault+0xf1/0x1b0
[  113.101910]  __sys_sendmmsg+0x160/0x370
[  113.105863]  ? __ia32_sys_sendmsg+0xb0/0xb0
[  113.110181]  ? kasan_check_write+0x14/0x20
[  113.114402]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[  113.119236]  ? __sb_end_write+0xa4/0xd0
[  113.123197]  ? kasan_check_write+0x14/0x20
[  113.127421]  ? fput+0x18/0x120
[  113.130605]  ? ksys_write+0x1ce/0x260
[  113.134381]  ? do_sys_open+0x16e/0x350
[  113.138248]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  113.143003]  ? do_syscall_64+0x21/0x4e0
[  113.146963]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  113.152314]  __x64_sys_sendmmsg+0x98/0x100
[  113.156543]  do_syscall_64+0xd0/0x4e0
[  113.160333]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  113.165515] RIP: 0033:0x45a219
[  113.168709] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  113.187602] RSP: 002b:00007f9362db7c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  113.195292] RAX: ffffffffffffffda RBX: 00007f9362db7c90 RCX: 000000000045a219
[  113.202545] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[  113.209807] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  113.217083] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9362db86d4
[  113.224342] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[  113.231597] 
[  113.233202] Allocated by task 9819:
[  113.236808]  save_stack+0x43/0xd0
[  113.240240]  kasan_kmalloc+0xc7/0xe0
[  113.243941]  __kmalloc_node_track_caller+0x50/0x70
[  113.248878]  __kmalloc_reserve.isra.39+0x2c/0xc0
[  113.253617]  __alloc_skb+0xd7/0x580
[  113.257229]  dccp_send_ack+0xb3/0x340
[  113.261024]  ccid2_hc_rx_packet_recv+0xf9/0x170
[  113.265696]  dccp_deliver_input_to_ccids+0xc5/0x210
[  113.270718]  dccp_rcv_established+0x49/0x70
[  113.275138]  dccp_v4_do_rcv+0xfa/0x160
[  113.275150]  __sk_receive_skb+0x2a2/0x9a0
[  113.275154]  dccp_v4_rcv+0xbcd/0x1bbd
[  113.275160]  ip_local_deliver_finish+0x235/0x9f0
[  113.275166]  ip_local_deliver+0x2f7/0x440
[  113.283180]  ip_rcv_finish+0x166/0x270
[  113.283185]  ip_rcv+0xcb/0x2e0
[  113.283191]  __netif_receive_skb_one_core+0xe9/0x170
[  113.283195]  __netif_receive_skb+0x1f/0x1b0
[  113.283198]  process_backlog+0x1ca/0x6d0
[  113.283202]  net_rx_action+0x470/0xe20
[  113.283206]  __do_softirq+0x260/0x92d
[  113.283209] 
[  113.283212] Freed by task 9819:
[  113.283219]  save_stack+0x43/0xd0
[  113.283222]  __kasan_slab_free+0x102/0x150
[  113.283226]  kasan_slab_free+0xe/0x10
[  113.283231]  kfree+0xcf/0x220
[  113.344204]  skb_free_head+0x74/0x90
[  113.347904]  skb_release_data+0x481/0x6c0
[  113.352040]  skb_release_all+0x3d/0x50
[  113.355916]  kfree_skb+0x97/0x270
[  113.359354]  dccp_v4_do_rcv+0x111/0x160
[  113.363398]  __release_sock+0x107/0x360
[  113.367376]  release_sock+0x4f/0x180
[  113.371079]  dccp_sendmsg+0x4f6/0xe20
[  113.374862]  inet_sendmsg+0x108/0x440
[  113.378654]  sock_sendmsg+0xb5/0xf0
[  113.383128]  ___sys_sendmsg+0x28e/0x950
[  113.387095]  __sys_sendmmsg+0x160/0x370
[  113.391062]  __x64_sys_sendmmsg+0x98/0x100
[  113.395285]  do_syscall_64+0xd0/0x4e0
[  113.395292]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  113.395295] 
[  113.395300] The buggy address belongs to the object at ffff888083b1a280
[  113.395300]  which belongs to the cache kmalloc-2048 of size 2048
[  113.395304] The buggy address is located 1186 bytes inside of
[  113.395304]  2048-byte region [ffff888083b1a280, ffff888083b1aa80)
[  113.395306] The buggy address belongs to the page:
[  113.395310] page:ffffea00020ec680 count:1 mapcount:0 mapping:ffff88812c35ec40 index:0x0 compound_mapcount: 0
[  113.404276] flags: 0x1fffc0000008100(slab|head)
[  113.404283] raw: 01fffc0000008100 ffffea0001d8f108 ffffea00023bcd88 ffff88812c35ec40
[  113.458102] raw: 0000000000000000 ffff888083b1a280 0000000100000003 0000000000000000
[  113.465973] page dumped because: kasan: bad access detected
[  113.471689] 
[  113.473312] Memory state around the buggy address:
[  113.478239]  ffff888083b1a600: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  113.485590]  ffff888083b1a680: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  113.492948] >ffff888083b1a700: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  113.500302]                                ^
[  113.504688]  ffff888083b1a780: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  113.512026]  ffff888083b1a800: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  113.519364] ==================================================================
[  113.526701] Disabling lock debugging due to kernel taint
[  113.554818] Kernel panic - not syncing: panic_on_warn set ...
[  113.554818] 
[  113.562240] CPU: 1 PID: 9819 Comm: syz-executor.0 Tainted: G    B             4.19.95-syzkaller #0
[  113.571326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  113.580662] Call Trace:
[  113.583245]  dump_stack+0x123/0x177
[  113.586858]  panic+0x1cd/0x375
[  113.590031]  ? __warn_printk+0xd6/0xd6
[  113.593895]  ? ___preempt_schedule+0x16/0x18
[  113.598315]  kasan_end_report+0x47/0x4f
[  113.602366]  kasan_report.cold.9+0x76/0x309
[  113.606681]  ? ccid2_hc_tx_packet_recv+0x1edd/0x21d3
[  113.611769]  __asan_report_load1_noabort+0x14/0x20
[  113.616697]  ccid2_hc_tx_packet_recv+0x1edd/0x21d3
[  113.621620]  ? dccp_ackvec_clear_state+0x33e/0x7e0
[  113.626528]  ? rcu_read_lock_sched_held+0x108/0x120
[  113.631524]  dccp_deliver_input_to_ccids+0x19f/0x210
[  113.636605]  dccp_rcv_established+0x49/0x70
[  113.640904]  dccp_v4_do_rcv+0xfa/0x160
[  113.644770]  __release_sock+0x107/0x360
[  113.648760]  release_sock+0x4f/0x180
[  113.652449]  dccp_sendmsg+0x4f6/0xe20
[  113.656226]  ? sock_has_perm+0x1e2/0x2e0
[  113.660277]  ? dccp_getsockopt+0xd0/0xd0
[  113.664319]  ? copy_msghdr_from_user+0x20b/0x3e0
[  113.669061]  inet_sendmsg+0x108/0x440
[  113.672840]  ? security_socket_sendmsg+0x4a/0x90
[  113.677575]  ? ipip_gro_receive+0xf0/0xf0
[  113.681699]  sock_sendmsg+0xb5/0xf0
[  113.685321]  ___sys_sendmsg+0x28e/0x950
[  113.689274]  ? find_held_lock+0x36/0x1d0
[  113.693317]  ? copy_msghdr_from_user+0x3e0/0x3e0
[  113.698063]  ? mark_held_locks+0x130/0x130
[  113.702286]  ? lock_downgrade+0x860/0x860
[  113.706426]  ? kasan_check_read+0x11/0x20
[  113.710560]  ? find_held_lock+0x36/0x1d0
[  113.714597]  ? __might_fault+0xf1/0x1b0
[  113.718548]  __sys_sendmmsg+0x160/0x370
[  113.722497]  ? __ia32_sys_sendmsg+0xb0/0xb0
[  113.726794]  ? kasan_check_write+0x14/0x20
[  113.731640]  ? __mutex_unlock_slowpath+0xe8/0x6a0
[  113.736491]  ? __sb_end_write+0xa4/0xd0
[  113.740456]  ? kasan_check_write+0x14/0x20
[  113.744774]  ? fput+0x18/0x120
[  113.748399]  ? ksys_write+0x1ce/0x260
[  113.752263]  ? do_sys_open+0x16e/0x350
[  113.756206]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  113.761586]  ? do_syscall_64+0x21/0x4e0
[  113.765542]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  113.770887]  __x64_sys_sendmmsg+0x98/0x100
[  113.775099]  do_syscall_64+0xd0/0x4e0
[  113.778882]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  113.784051] RIP: 0033:0x45a219
[  113.787242] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  113.806152] RSP: 002b:00007f9362db7c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  113.813837] RAX: ffffffffffffffda RBX: 00007f9362db7c90 RCX: 000000000045a219
[  113.821090] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[  113.828453] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  113.835700] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9362db86d4
[  113.842958] R13: 00000000004c7fba R14: 00000000004de3e8 R15: 0000000000000006
[  113.908666] Kernel Offset: disabled
[  113.912345] Rebooting in 86400 seconds..