[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 25.547472] audit: type=1800 audit(1568293224.676:25): pid=6459 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 25.572226] audit: type=1800 audit(1568293224.680:26): pid=6459 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 25.592938] audit: type=1800 audit(1568293224.682:27): pid=6459 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 40.821404] IPVS: ftp: loaded support on port[0] = 21 Warning: Permanently added '10.128.10.21' (ECDSA) to the list of known hosts. 2019/09/12 13:00:59 parsed 1 programs 2019/09/12 13:00:59 executed programs: 0 [ 60.031436] IPv6: ADDRCONF(NETDEV_CHANGE): nr0: link becomes ready [ 60.047034] IPv6: ADDRCONF(NETDEV_CHANGE): nr5: link becomes ready [ 60.054237] IPv6: ADDRCONF(NETDEV_CHANGE): nr4: link becomes ready [ 60.061297] IPv6: ADDRCONF(NETDEV_CHANGE): nr1: link becomes ready [ 60.068323] IPv6: ADDRCONF(NETDEV_CHANGE): nr3: link becomes ready [ 60.075381] IPv6: ADDRCONF(NETDEV_CHANGE): nr2: link becomes ready [ 60.085628] IPVS: ftp: loaded support on port[0] = 21 [ 60.109642] IPVS: ftp: loaded support on port[0] = 21 [ 60.155884] chnl_net:caif_netlink_parms(): no params data found [ 60.157544] IPVS: ftp: loaded support on port[0] = 21 [ 60.220989] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.228699] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.235746] device bridge_slave_0 entered promiscuous mode [ 60.258980] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.265324] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.272193] device bridge_slave_1 entered promiscuous mode [ 60.282172] IPVS: ftp: loaded support on port[0] = 21 [ 60.290378] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 60.304817] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 60.322402] chnl_net:caif_netlink_parms(): no params data found [ 60.335658] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 60.342870] team0: Port device team_slave_0 added [ 60.362082] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 60.369449] team0: Port device team_slave_1 added [ 60.400293] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 60.409152] chnl_net:caif_netlink_parms(): no params data found [ 60.426045] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 60.451486] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.454381] IPVS: ftp: loaded support on port[0] = 21 [ 60.464134] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.471013] device bridge_slave_0 entered promiscuous mode [ 60.477408] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.483807] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.491162] device bridge_slave_1 entered promiscuous mode [ 60.511058] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 60.528858] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 60.535758] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 60.544880] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 60.589737] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 60.597021] team0: Port device team_slave_0 added [ 60.604611] IPVS: ftp: loaded support on port[0] = 21 [ 60.634211] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.641116] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.648453] device bridge_slave_0 entered promiscuous mode [ 60.654887] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.661427] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.668422] device bridge_slave_1 entered promiscuous mode [ 60.674618] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 60.682174] team0: Port device team_slave_1 added [ 60.687724] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 60.697058] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 60.740155] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 60.751049] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 60.764545] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 60.772066] chnl_net:caif_netlink_parms(): no params data found [ 60.795237] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.801662] bridge0: port 2(bridge_slave_1) entered forwarding state [ 60.808793] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.815127] bridge0: port 1(bridge_slave_0) entered forwarding state [ 60.830117] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 60.836904] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 60.844383] team0: Port device team_slave_0 added [ 60.851850] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 60.859692] team0: Port device team_slave_1 added [ 60.865339] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 60.875032] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 60.914991] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.921548] bridge0: port 2(bridge_slave_1) entered forwarding state [ 60.928187] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.934620] bridge0: port 1(bridge_slave_0) entered forwarding state [ 60.985758] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 61.010157] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.016543] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.023988] device bridge_slave_0 entered promiscuous mode [ 61.032177] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.039140] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.045826] device bridge_slave_1 entered promiscuous mode [ 61.056957] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 61.088763] chnl_net:caif_netlink_parms(): no params data found [ 61.103841] chnl_net:caif_netlink_parms(): no params data found [ 61.113226] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 61.123750] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 61.151915] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 61.159217] team0: Port device team_slave_0 added [ 61.170044] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.176378] bridge0: port 2(bridge_slave_1) entered forwarding state [ 61.182977] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.189777] bridge0: port 1(bridge_slave_0) entered forwarding state [ 61.213892] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 61.227350] team0: Port device team_slave_1 added [ 61.233275] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 61.243494] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.250853] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.260838] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.267370] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.275033] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.282004] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.299284] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.305794] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.313474] device bridge_slave_0 entered promiscuous mode [ 61.321529] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.327931] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.336521] device bridge_slave_1 entered promiscuous mode [ 61.343267] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 61.367750] 8021q: adding VLAN 0 to HW filter on device bond0 [ 61.399774] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 61.416022] 8021q: adding VLAN 0 to HW filter on device bond0 [ 61.424468] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 61.431787] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.438230] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.445291] device bridge_slave_0 entered promiscuous mode [ 61.451993] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 61.459895] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 61.479766] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.486297] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.495590] device bridge_slave_1 entered promiscuous mode [ 61.501806] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 61.511574] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 61.519120] team0: Port device team_slave_0 added [ 61.524613] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 61.531641] team0: Port device team_slave_1 added [ 61.541113] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 61.548647] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 61.556678] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 61.583384] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 61.595749] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 61.605209] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 61.616768] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 61.624504] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 61.630911] 8021q: adding VLAN 0 to HW filter on device team0 [ 61.642637] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 61.651386] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 61.666820] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 61.674675] 8021q: adding VLAN 0 to HW filter on device team0 [ 61.690404] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 61.699925] team0: Port device team_slave_0 added [ 61.705523] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 61.724513] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 61.731775] team0: Port device team_slave_1 added [ 61.738408] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 61.745875] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.752260] bridge0: port 1(bridge_slave_0) entered forwarding state [ 61.759742] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 61.767274] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.773904] bridge0: port 2(bridge_slave_1) entered forwarding state [ 61.781070] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 61.788679] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.795003] bridge0: port 1(bridge_slave_0) entered forwarding state [ 61.801898] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 61.810076] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.816409] bridge0: port 2(bridge_slave_1) entered forwarding state [ 61.829142] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 61.840265] 8021q: adding VLAN 0 to HW filter on device bond0 [ 61.847476] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 61.855100] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 61.867629] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 61.875092] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 61.883436] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 61.893033] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 61.907770] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 61.915989] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 61.947071] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 61.954012] 8021q: adding VLAN 0 to HW filter on device team0 [ 61.962524] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 61.971340] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 61.979304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 61.999025] 8021q: adding VLAN 0 to HW filter on device bond0 [ 62.007323] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 62.014565] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 62.023638] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 62.031289] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.037651] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.053430] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 62.064768] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 62.071753] 8021q: adding VLAN 0 to HW filter on device team0 [ 62.088430] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 62.095602] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 62.104201] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.110778] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.118306] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 62.129239] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 62.150772] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 62.162226] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 62.170191] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.176513] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.183660] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 62.192042] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 62.199689] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.206026] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.212959] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 62.220350] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 62.232715] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 62.248160] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 62.259588] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 62.267123] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 62.281163] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 62.289482] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 62.305422] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 62.313062] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 62.323931] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 62.342692] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 62.382332] 8021q: adding VLAN 0 to HW filter on device bond0 [ 62.418089] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 62.444850] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 62.452440] 8021q: adding VLAN 0 to HW filter on device team0 [ 62.465291] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 62.487691] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 62.509647] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 62.514434] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. [ 62.541706] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 62.557947] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 62.566586] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.572969] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.592043] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 62.601160] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.607581] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.615716] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 62.635919] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 62.647443] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 62.668322] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 62.676451] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 62.684382] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 62.699513] 8021q: adding VLAN 0 to HW filter on device bond0 [ 62.707284] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 62.742824] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 62.761891] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 62.788158] 8021q: adding VLAN 0 to HW filter on device team0 [ 62.792170] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. [ 62.793464] ================================================================== [ 62.793480] BUG: KASAN: use-after-free in padata_parallel_worker+0x69b/0x6f0 [ 62.793484] Write of size 8 at addr ffff8801107c7298 by task kworker/0:3/6725 [ 62.793486] [ 62.793492] CPU: 0 PID: 6725 Comm: kworker/0:3 Not tainted 4.12.0-rc5+ #0 [ 62.793494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 62.793500] Workqueue: pencrypt padata_parallel_worker [ 62.793504] Call Trace: [ 62.793513] dump_stack+0x145/0x1f1 [ 62.793519] ? arch_local_irq_restore+0x44/0x44 [ 62.793524] ? printk+0x8f/0xab [ 62.793528] ? load_image_and_restore+0xf6/0xf6 [ 62.793532] ? lock_release+0xa70/0xa70 [ 62.793538] ? padata_parallel_worker+0x69b/0x6f0 [ 62.793544] print_address_description+0xd4/0x230 [ 62.793548] ? padata_parallel_worker+0x69b/0x6f0 [ 62.793553] kasan_report+0x24d/0x340 [ 62.793559] __asan_report_store8_noabort+0x17/0x20 [ 62.793563] padata_parallel_worker+0x69b/0x6f0 [ 62.793570] ? padata_free+0x20/0x20 [ 62.793578] ? lock_acquire+0x1e7/0x5b0 [ 62.793580] ? lock_acquire+0x1e7/0x5b0 [ 62.793584] ? process_one_work+0x9aa/0x1c70 [ 62.793597] ? __lock_is_held+0xb6/0x140 [ 62.793602] ? rcu_dynticks_momentary_idle+0x70/0x70 [ 62.793612] process_one_work+0xa62/0x1c70 [ 62.793623] ? pwq_dec_nr_in_flight+0x4c0/0x4c0 [ 62.793631] ? _raw_spin_unlock_irq+0x60/0x80 [ 62.793636] ? finish_task_switch+0x1fe/0x7e0 [ 62.793639] ? finish_task_switch+0x1d5/0x7e0 [ 62.793646] ? preempt_notifier_dec+0x20/0x20 [ 62.793657] ? __schedule+0x8ae/0x1d40 [ 62.793665] ? __sched_text_start+0x8/0x8 [ 62.793671] ? cpuacct_charge+0x269/0x420 [ 62.793683] ? lock_acquire+0x1e7/0x5b0 [ 62.793686] ? lock_acquire+0x1e7/0x5b0 [ 62.793689] ? worker_thread+0x45a/0x1900 [ 62.793693] ? lock_downgrade+0x990/0x990 [ 62.793698] ? lock_release+0xa70/0xa70 [ 62.793705] ? do_raw_spin_trylock+0x190/0x190 [ 62.793716] worker_thread+0x215/0x1900 [ 62.793725] ? find_held_lock+0x35/0x1d0 [ 62.793734] ? process_one_work+0x1c70/0x1c70 [ 62.793739] ? dequeue_entity+0x277/0x1500 [ 62.793745] ? lock_release+0xa70/0xa70 [ 62.793749] ? compat_start_thread+0x80/0x80 [ 62.793754] ? do_raw_spin_trylock+0x190/0x190 [ 62.793759] ? _raw_spin_unlock_irq+0x27/0x80 [ 62.793764] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 62.793769] ? _raw_spin_unlock_irq+0x60/0x80 [ 62.793774] ? finish_task_switch+0x1fe/0x7e0 [ 62.793777] ? finish_task_switch+0x1d5/0x7e0 [ 62.793783] ? preempt_notifier_dec+0x20/0x20 [ 62.793792] ? __schedule+0x8ae/0x1d40 [ 62.793800] ? __sched_text_start+0x8/0x8 [ 62.793807] ? __sched_text_start+0x8/0x8 [ 62.793811] ? find_held_lock+0x35/0x1d0 [ 62.793819] ? complete+0x62/0x80 [ 62.793828] ? __schedule+0x1d40/0x1d40 [ 62.793831] ? preempt_schedule+0x4e/0x60 [ 62.793834] ? preempt_schedule_common+0x4f/0xd0 [ 62.793840] ? preempt_schedule+0x4e/0x60 [ 62.793845] ? ___preempt_schedule+0x16/0x18 [ 62.793853] ? _raw_spin_unlock_irqrestore+0xbf/0xe0 [ 62.793860] kthread+0x345/0x410 [ 62.793869] ? process_one_work+0x1c70/0x1c70 [ 62.793872] ? kthread_create_on_node+0xc0/0xc0 [ 62.793878] ret_from_fork+0x2a/0x40 [ 62.793889] [ 62.793892] Allocated by task 6851: [ 62.793897] save_stack_trace+0x16/0x20 [ 62.793900] save_stack+0x43/0xd0 [ 62.793903] kasan_kmalloc+0xad/0xe0 [ 62.793909] __kmalloc+0x156/0x790 [ 62.793914] tls_push_record+0x6b7/0x12d0 [ 62.793916] tls_sw_sendmsg+0xb45/0x12d0 [ 62.793922] inet_sendmsg+0x10e/0x5d0 [ 62.793926] sock_sendmsg+0xb5/0xf0 [ 62.793929] SYSC_sendto+0x30e/0x5e0 [ 62.793932] SyS_sendto+0x9/0x10 [ 62.793936] entry_SYSCALL_64_fastpath+0x23/0xc2 [ 62.793937] [ 62.793939] Freed by task 6851: [ 62.793942] save_stack_trace+0x16/0x20 [ 62.793944] save_stack+0x43/0xd0 [ 62.793947] kasan_slab_free+0x71/0xc0 [ 62.793950] kfree+0xcc/0x270 [ 62.793953] tls_push_record+0x9ad/0x12d0 [ 62.793955] tls_sw_sendmsg+0xb45/0x12d0 [ 62.793959] inet_sendmsg+0x10e/0x5d0 [ 62.793961] sock_sendmsg+0xb5/0xf0 [ 62.793964] SYSC_sendto+0x30e/0x5e0 [ 62.793967] SyS_sendto+0x9/0x10 [ 62.793970] entry_SYSCALL_64_fastpath+0x23/0xc2 [ 62.793971] [ 62.793974] The buggy address belongs to the object at ffff8801107c7240 [ 62.793974] which belongs to the cache kmalloc-1024 of size 1024 [ 62.793977] The buggy address is located 88 bytes inside of [ 62.793977] 1024-byte region [ffff8801107c7240, ffff8801107c7640) [ 62.793979] The buggy address belongs to the page: [ 62.793983] page:ffffea000441f180 count:1 mapcount:0 mapping:ffff8801107c6040 index:0x0 compound_mapcount: 0 [ 62.793989] flags: 0x2fffc0000008100(slab|head) [ 62.793995] raw: 02fffc0000008100 ffff8801107c6040 0000000000000000 0000000100000007 [ 62.793998] raw: ffffea0004509920 ffff88012bc01848 ffff88012bc00ac0 0000000000000000 [ 62.794000] page dumped because: kasan: bad access detected [ 62.794002] [ 62.794003] Memory state around the buggy address: [ 62.794006] ffff8801107c7180: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc [ 62.794009] ffff8801107c7200: fc fc fc fc fc fc fc fc fb fb fb fb fb fb fb fb [ 62.794011] >ffff8801107c7280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 62.794013] ^ [ 62.794016] ffff8801107c7300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 62.794018] ffff8801107c7380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 62.794020] ================================================================== [ 62.794022] Disabling lock debugging due to kernel taint [ 62.794024] Kernel panic - not syncing: panic_on_warn set ... [ 62.794024] [ 62.794027] CPU: 0 PID: 6725 Comm: kworker/0:3 Tainted: G B 4.12.0-rc5+ #0 [ 62.794029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 62.794032] Workqueue: pencrypt padata_parallel_worker [ 62.794034] Call Trace: [ 62.794038] dump_stack+0x145/0x1f1 [ 62.794042] ? arch_local_irq_restore+0x44/0x44 [ 62.794046] ? lock_downgrade+0x990/0x990 [ 62.794050] ? padata_parallel_worker+0x680/0x6f0 [ 62.794053] panic+0x1b6/0x358 [ 62.794057] ? percpu_up_read_preempt_enable.constprop.37+0xb9/0xb9 [ 62.794064] ? padata_parallel_worker+0x69b/0x6f0 [ 62.794067] kasan_end_report+0x50/0x50 [ 62.794070] kasan_report+0x136/0x340 [ 62.794074] __asan_report_store8_noabort+0x17/0x20 [ 62.794077] padata_parallel_worker+0x69b/0x6f0 [ 62.794082] ? padata_free+0x20/0x20 [ 62.794086] ? lock_acquire+0x1e7/0x5b0 [ 62.794088] ? lock_acquire+0x1e7/0x5b0 [ 62.794091] ? process_one_work+0x9aa/0x1c70 [ 62.794098] ? __lock_is_held+0xb6/0x140 [ 62.794101] ? rcu_dynticks_momentary_idle+0x70/0x70 [ 62.794107] process_one_work+0xa62/0x1c70 [ 62.794113] ? pwq_dec_nr_in_flight+0x4c0/0x4c0 [ 62.794117] ? _raw_spin_unlock_irq+0x60/0x80 [ 62.794120] ? finish_task_switch+0x1fe/0x7e0 [ 62.794122] ? finish_task_switch+0x1d5/0x7e0 [ 62.794127] ? preempt_notifier_dec+0x20/0x20 [ 62.794133] ? __schedule+0x8ae/0x1d40 [ 62.794138] ? __sched_text_start+0x8/0x8 [ 62.794142] ? cpuacct_charge+0x269/0x420 [ 62.794148] ? lock_acquire+0x1e7/0x5b0 [ 62.794150] ? lock_acquire+0x1e7/0x5b0 [ 62.794153] ? worker_thread+0x45a/0x1900 [ 62.794155] ? lock_downgrade+0x990/0x990 [ 62.794158] ? lock_release+0xa70/0xa70 [ 62.794162] ? do_raw_spin_trylock+0x190/0x190 [ 62.794168] worker_thread+0x215/0x1900 [ 62.794174] ? find_held_lock+0x35/0x1d0 [ 62.794180] ? process_one_work+0x1c70/0x1c70 [ 62.794184] ? dequeue_entity+0x277/0x1500 [ 62.794187] ? lock_release+0xa70/0xa70 [ 62.794190] ? compat_start_thread+0x80/0x80 [ 62.794193] ? do_raw_spin_trylock+0x190/0x190 [ 62.794197] ? _raw_spin_unlock_irq+0x27/0x80 [ 62.794200] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 62.794204] ? _raw_spin_unlock_irq+0x60/0x80 [ 62.794207] ? finish_task_switch+0x1fe/0x7e0 [ 62.794209] ? finish_task_switch+0x1d5/0x7e0 [ 62.794213] ? preempt_notifier_dec+0x20/0x20 [ 62.794218] ? __schedule+0x8ae/0x1d40 [ 62.794222] ? __sched_text_start+0x8/0x8 [ 62.794225] ? __sched_text_start+0x8/0x8 [ 62.794229] ? find_held_lock+0x35/0x1d0 [ 62.794234] ? complete+0x62/0x80 [ 62.794239] ? __schedule+0x1d40/0x1d40 [ 62.794241] ? preempt_schedule+0x4e/0x60 [ 62.794243] ? preempt_schedule_common+0x4f/0xd0 [ 62.794247] ? preempt_schedule+0x4e/0x60 [ 62.794250] ? ___preempt_schedule+0x16/0x18 [ 62.794255] ? _raw_spin_unlock_irqrestore+0xbf/0xe0 [ 62.794259] kthread+0x345/0x410 [ 62.794261] ? process_one_work+0x1c70/0x1c70 [ 62.794264] ? kthread_create_on_node+0xc0/0xc0 [ 62.794268] ret_from_fork+0x2a/0x40 [ 62.795614] Kernel Offset: disabled [ 63.640713] Rebooting in 86400 seconds..