[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 21.459344] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 23.228254] random: sshd: uninitialized urandom read (32 bytes read) [ 23.614472] random: sshd: uninitialized urandom read (32 bytes read) [ 24.681798] random: sshd: uninitialized urandom read (32 bytes read) [ 24.864710] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.0.45' (ECDSA) to the list of known hosts. [ 30.332939] random: sshd: uninitialized urandom read (32 bytes read) [ 30.449087] IPVS: ftp: loaded support on port[0] = 21 [ 30.456790] IPVS: ftp: loaded support on port[0] = 21 [ 30.457541] IPVS: ftp: loaded support on port[0] = 21 [ 30.465684] IPVS: ftp: loaded support on port[0] = 21 [ 30.468701] IPVS: ftp: loaded support on port[0] = 21 [ 30.474866] IPVS: ftp: loaded support on port[0] = 21 [ 30.478620] IPVS: ftp: loaded support on port[0] = 21 [ 30.490345] IPVS: ftp: loaded support on port[0] = 21 [ 31.447739] bridge0: port 1(bridge_slave_0) entered blocking state [ 31.454338] bridge0: port 1(bridge_slave_0) entered disabled state [ 31.462660] device bridge_slave_0 entered promiscuous mode [ 31.474289] bridge0: port 1(bridge_slave_0) entered blocking state [ 31.480737] bridge0: port 1(bridge_slave_0) entered disabled state [ 31.489466] device bridge_slave_0 entered promiscuous mode [ 31.524850] bridge0: port 1(bridge_slave_0) entered blocking state [ 31.531295] bridge0: port 1(bridge_slave_0) entered disabled state [ 31.558241] device bridge_slave_0 entered promiscuous mode [ 31.566382] bridge0: port 1(bridge_slave_0) entered blocking state [ 31.572793] bridge0: port 1(bridge_slave_0) entered disabled state [ 31.581092] device bridge_slave_0 entered promiscuous mode [ 31.589425] bridge0: port 1(bridge_slave_0) entered blocking state [ 31.595897] bridge0: port 1(bridge_slave_0) entered disabled state [ 31.603608] device bridge_slave_0 entered promiscuous mode [ 31.613559] bridge0: port 2(bridge_slave_1) entered blocking state [ 31.620013] bridge0: port 2(bridge_slave_1) entered disabled state [ 31.628180] device bridge_slave_1 entered promiscuous mode [ 31.650276] bridge0: port 2(bridge_slave_1) entered blocking state [ 31.656733] bridge0: port 2(bridge_slave_1) entered disabled state [ 31.664686] device bridge_slave_1 entered promiscuous mode [ 31.674372] bridge0: port 2(bridge_slave_1) entered blocking state [ 31.680934] bridge0: port 2(bridge_slave_1) entered disabled state [ 31.688663] device bridge_slave_1 entered promiscuous mode [ 31.695700] bridge0: port 2(bridge_slave_1) entered blocking state [ 31.702111] bridge0: port 2(bridge_slave_1) entered disabled state [ 31.711186] device bridge_slave_1 entered promiscuous mode [ 31.717983] bridge0: port 1(bridge_slave_0) entered blocking state [ 31.724414] bridge0: port 1(bridge_slave_0) entered disabled state [ 31.734465] device bridge_slave_0 entered promiscuous mode [ 31.743711] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 31.751078] bridge0: port 1(bridge_slave_0) entered blocking state [ 31.757494] bridge0: port 1(bridge_slave_0) entered disabled state [ 31.776157] device bridge_slave_0 entered promiscuous mode [ 31.784940] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 31.793670] bridge0: port 2(bridge_slave_1) entered blocking state [ 31.800081] bridge0: port 2(bridge_slave_1) entered disabled state [ 31.809064] device bridge_slave_1 entered promiscuous mode [ 31.818314] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 31.827278] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 31.834614] bridge0: port 1(bridge_slave_0) entered blocking state [ 31.841097] bridge0: port 1(bridge_slave_0) entered disabled state [ 31.856120] device bridge_slave_0 entered promiscuous mode [ 31.869979] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 31.878512] bridge0: port 2(bridge_slave_1) entered blocking state [ 31.884924] bridge0: port 2(bridge_slave_1) entered disabled state [ 31.893099] device bridge_slave_1 entered promiscuous mode [ 31.904901] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 31.912334] bridge0: port 2(bridge_slave_1) entered blocking state [ 31.918763] bridge0: port 2(bridge_slave_1) entered disabled state [ 31.931061] device bridge_slave_1 entered promiscuous mode [ 31.950230] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 31.959770] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 31.973420] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 31.982909] bridge0: port 2(bridge_slave_1) entered blocking state [ 31.989502] bridge0: port 2(bridge_slave_1) entered disabled state [ 32.001181] device bridge_slave_1 entered promiscuous mode [ 32.025448] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 32.046115] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 32.075394] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 32.094471] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 32.102698] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 32.169087] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 32.178696] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 32.193993] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 32.232919] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 32.265178] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 32.278164] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 32.291475] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 32.330019] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 32.343119] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 32.355984] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 32.365463] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 32.411958] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 32.426715] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 32.440746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 32.457018] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 32.479512] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 32.502952] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 32.524721] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 32.595736] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 32.649950] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 32.803545] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 32.821745] team0: Port device team_slave_0 added [ 32.834298] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 32.843337] team0: Port device team_slave_0 added [ 32.859625] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 32.869521] team0: Port device team_slave_0 added [ 32.877525] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 32.888360] team0: Port device team_slave_0 added [ 32.926301] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 32.946705] team0: Port device team_slave_0 added [ 32.953171] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 32.961254] team0: Port device team_slave_1 added [ 32.969257] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 32.980484] team0: Port device team_slave_1 added [ 32.992294] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 33.000969] team0: Port device team_slave_0 added [ 33.016456] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 33.026537] team0: Port device team_slave_0 added [ 33.032405] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 33.043957] team0: Port device team_slave_1 added [ 33.050700] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 33.062394] team0: Port device team_slave_1 added [ 33.073432] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 33.085152] team0: Port device team_slave_1 added [ 33.093360] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 33.102366] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 33.126082] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 33.137339] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 33.147989] team0: Port device team_slave_1 added [ 33.158223] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 33.168923] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 33.176632] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 33.184678] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 33.192593] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 33.200475] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 33.209270] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 33.216941] team0: Port device team_slave_1 added [ 33.224166] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 33.232945] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 33.241977] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 33.255941] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 33.267942] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 33.276750] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 33.292428] team0: Port device team_slave_0 added [ 33.302375] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 33.311625] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 33.324941] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 33.332947] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 33.340829] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 33.348592] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 33.356538] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 33.364656] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 33.372412] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 33.380436] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 33.389409] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 33.398142] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 33.406710] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 33.417205] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 33.424393] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 33.432940] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 33.442928] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 33.453139] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 33.461404] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 33.471868] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 33.482917] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 33.494153] team0: Port device team_slave_1 added [ 33.503811] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 33.516141] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 33.524813] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 33.533754] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 33.541679] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 33.549761] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 33.557520] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 33.565594] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 33.576376] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 33.584184] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 33.595908] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 33.605167] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 33.614739] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 33.632492] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 33.644736] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 33.652547] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 33.660505] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 33.668471] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 33.676427] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 33.684453] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 33.692311] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 33.700126] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 33.709478] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 33.719346] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 33.729454] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 33.739126] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 33.750233] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 33.759568] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 33.768909] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 33.776423] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 33.784874] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 33.804538] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 33.817850] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 33.825620] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 33.833657] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 33.841457] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 33.849463] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 33.857356] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 33.865245] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 33.872974] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 33.880930] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 33.891252] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 33.898776] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 33.906095] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 33.915059] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 33.936219] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 33.944339] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 33.961356] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 33.987535] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 34.008794] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 34.024458] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 34.042678] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 34.052630] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 34.067448] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 34.094855] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 34.104863] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 34.118679] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 34.200611] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 34.207830] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 34.221455] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported [ 34.796019] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.802591] bridge0: port 2(bridge_slave_1) entered forwarding state [ 34.809498] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.815934] bridge0: port 1(bridge_slave_0) entered forwarding state [ 34.827813] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 34.836154] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.842556] bridge0: port 2(bridge_slave_1) entered forwarding state [ 34.849235] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.855654] bridge0: port 1(bridge_slave_0) entered forwarding state [ 34.863852] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 34.873978] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.880395] bridge0: port 2(bridge_slave_1) entered forwarding state [ 34.887470] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.893867] bridge0: port 1(bridge_slave_0) entered forwarding state [ 34.905142] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 34.914225] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.920623] bridge0: port 2(bridge_slave_1) entered forwarding state [ 34.927348] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.933747] bridge0: port 1(bridge_slave_0) entered forwarding state [ 34.941997] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 34.955830] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.962235] bridge0: port 2(bridge_slave_1) entered forwarding state [ 34.968918] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.975359] bridge0: port 1(bridge_slave_0) entered forwarding state [ 34.986543] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready RTNETLINK answers: No buffer space available RTNETLINK answers: No buffer space available [ 35.070951] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.077413] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.084134] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.090528] bridge0: port 1(bridge_slave_0) entered forwarding state RTNETLINK answers: No buffer space available RTNETLINK answers: No buffer space available [ 35.116836] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 35.128293] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 35.137607] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 35.146970] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 35.161998] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported [ 35.169627] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 35.177472] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 35.202513] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.208915] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.215638] bridge0: port 1(bridge_slave_0) entered blocking state RTNETLINK answers: Operation not supported RTNETLINK answers: No buffer space available RTNETLINK answers: Operation not supported [ 35.222064] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.233951] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready RTNETLINK answers: Operation not supported RTNETLINK answers: No buffer space available [ 35.289473] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.295901] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.302609] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.309042] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.321799] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready RTNETLINK answers: No buffer space available RTNETLINK answers: Operation not supported RTNETLINK answers: No buffer space available RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported [ 36.191449] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 36.201562] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Invalid argument RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument [ 38.165344] 8021q: adding VLAN 0 to HW filter on device bond0 [ 38.192878] 8021q: adding VLAN 0 to HW filter on device bond0 [ 38.215763] 8021q: adding VLAN 0 to HW filter on device bond0 [ 38.258402] 8021q: adding VLAN 0 to HW filter on device bond0 [ 38.309296] 8021q: adding VLAN 0 to HW filter on device bond0 [ 38.329884] 8021q: adding VLAN 0 to HW filter on device bond0 [ 38.419215] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 38.457748] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 38.481544] 8021q: adding VLAN 0 to HW filter on device bond0 [ 38.554464] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 38.564728] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 38.577306] 8021q: adding VLAN 0 to HW filter on device bond0 [ 38.589112] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 38.651132] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 38.735731] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 38.741935] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 38.749295] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 38.766229] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 38.784943] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 38.795610] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 38.847916] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 38.854134] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 38.863812] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 38.884166] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 38.891415] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 38.919684] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 38.925889] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 38.934715] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 38.956502] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 38.975214] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 38.986872] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 39.015820] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 39.022543] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 39.034975] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 39.108171] 8021q: adding VLAN 0 to HW filter on device team0 [ 39.155458] 8021q: adding VLAN 0 to HW filter on device team0 [ 39.193358] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 39.204132] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 39.214843] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 39.232350] 8021q: adding VLAN 0 to HW filter on device team0 [ 39.247143] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 39.258050] 8021q: adding VLAN 0 to HW filter on device team0 [ 39.278816] 8021q: adding VLAN 0 to HW filter on device team0 [ 39.286443] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 39.295958] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 39.432345] 8021q: adding VLAN 0 to HW filter on device team0 [ 39.539633] 8021q: adding VLAN 0 to HW filter on device team0 [ 39.568349] 8021q: adding VLAN 0 to HW filter on device team0 executing program executing program executing program executing program executing program [ 40.968402] FAULT_INJECTION: forcing a failure. [ 40.968402] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 40.969010] FAULT_INJECTION: forcing a failure. [ 40.969010] name failslab, interval 1, probability 0, space 0, times 1 [ 40.980450] CPU: 1 PID: 6328 Comm: syz-executor087 Not tainted 4.18.0-rc7+ #37 [ 40.998932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 41.008285] Call Trace: [ 41.010894] dump_stack+0x1c9/0x2b4 [ 41.014532] ? dump_stack_print_info.cold.2+0x52/0x52 [ 41.019739] should_fail.cold.4+0xa/0x1a [ 41.023815] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 41.028927] ? lock_downgrade+0x8f0/0x8f0 [ 41.033083] ? down_read+0xb5/0x1d0 [ 41.036720] ? get_user_pages_unlocked+0xfd/0x5d0 [ 41.041574] ? __down_interruptible+0x700/0x700 [ 41.046252] ? print_usage_bug+0xc0/0xc0 [ 41.050337] ? up_read+0x1a/0x110 [ 41.053802] ? get_user_pages_unlocked+0x3b1/0x5d0 [ 41.058744] ? get_user_pages_longterm+0x650/0x650 [ 41.063678] ? get_user_pages_fast+0x22b/0x450 [ 41.068279] __alloc_pages_nodemask+0x36e/0xdb0 [ 41.072960] ? __alloc_pages_slowpath+0x2d90/0x2d90 [ 41.077983] ? do_raw_spin_unlock+0xa7/0x2f0 [ 41.082405] ? iov_iter_get_pages+0x337/0x1210 [ 41.086990] ? kasan_check_write+0x14/0x20 [ 41.091227] ? do_raw_spin_lock+0xc1/0x200 [ 41.095476] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 41.101015] ? tcp_leave_memory_pressure+0x47/0xf0 [ 41.105950] ? tcp_push+0x8c0/0x8c0 [ 41.109581] ? __sk_mem_raise_allocated+0x88a/0x1600 [ 41.114693] ? sk_busy_loop_end+0x1c0/0x1c0 [ 41.119022] ? __kasan_slab_free+0x11a/0x170 [ 41.123434] ? kasan_slab_free+0xe/0x10 [ 41.127420] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 41.132967] alloc_pages_current+0x10c/0x210 [ 41.137390] skb_page_frag_refill+0x45f/0x6a0 [ 41.141892] ? sock_kfree_s+0x60/0x60 [ 41.145697] ? kasan_check_write+0x14/0x20 [ 41.149941] ? do_raw_spin_lock+0xc1/0x200 [ 41.154202] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 41.159751] ? zerocopy_from_iter.constprop.12+0x48e/0x640 [ 41.165403] sk_page_frag_refill+0x55/0x1f0 [ 41.169737] sk_alloc_sg+0x1e7/0xa00 [ 41.173472] ? sk_page_frag_refill+0x1f0/0x1f0 [ 41.178057] ? free_sg+0x530/0x530 [ 41.181613] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 41.187158] ? iov_iter_revert+0x234/0xaa0 [ 41.191406] tls_sw_sendmsg+0x67e/0x12c0 [ 41.195475] ? lock_release+0xa30/0xa30 [ 41.199476] ? tls_sw_push_pending_record+0x30/0x30 [ 41.204499] ? lock_downgrade+0x8f0/0x8f0 [ 41.208651] ? __sanitizer_cov_trace_cmp2+0x7/0x20 [ 41.213588] ? lock_release+0xa30/0xa30 [ 41.217577] ? __check_object_size+0x9d/0x5f2 [ 41.222083] inet_sendmsg+0x1a1/0x690 [ 41.225896] ? ipip_gro_receive+0x100/0x100 [ 41.230226] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 41.235773] ? security_socket_sendmsg+0x94/0xc0 [ 41.240530] ? ipip_gro_receive+0x100/0x100 [ 41.244863] sock_sendmsg+0xd5/0x120 [ 41.248613] __sys_sendto+0x3d7/0x670 [ 41.252428] ? __ia32_sys_getpeername+0xb0/0xb0 [ 41.257113] ? lock_downgrade+0x8f0/0x8f0 [ 41.261290] ? __lock_is_held+0xb5/0x140 [ 41.265382] ? __sb_end_write+0xac/0xe0 [ 41.269375] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 41.274918] ? ksys_write+0x1ae/0x260 [ 41.278725] ? __ia32_sys_read+0xb0/0xb0 [ 41.282795] ? syscall_slow_exit_work+0x500/0x500 [ 41.287649] __x64_sys_sendto+0xe1/0x1a0 [ 41.291719] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 41.296745] do_syscall_64+0x1b9/0x820 [ 41.300639] ? syscall_return_slowpath+0x5e0/0x5e0 [ 41.305579] ? syscall_return_slowpath+0x31d/0x5e0 [ 41.310522] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 41.315898] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 41.320752] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 41.325946] RIP: 0033:0x4418c9 [ 41.329131] Code: e8 4c e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 41.348539] RSP: 002b:00007ffd5a6c7928 EFLAGS: 00000212 ORIG_RAX: 000000000000002c [ 41.356253] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004418c9 [ 41.363522] RDX: 00000000fffffdef RSI: 00000000200005c0 RDI: 0000000000000003 [ 41.370794] RBP: 00007ffd5a6c7950 R08: 0000000020000000 R09: 000000000000001c [ 41.378066] R10: 0000000000000040 R11: 0000000000000212 R12: 0000000000000005 [ 41.385349] R13: ffffffffffffffff R14: 0000000000000000 R15: 0000000000000000 [ 41.392644] CPU: 0 PID: 6315 Comm: syz-executor087 Not tainted 4.18.0-rc7+ #37 [ 41.400015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 41.409376] Call Trace: [ 41.411974] dump_stack+0x1c9/0x2b4 [ 41.415628] ? dump_stack_print_info.cold.2+0x52/0x52 [ 41.420836] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 41.424382] FAULT_INJECTION: forcing a failure. [ 41.424382] name failslab, interval 1, probability 0, space 0, times 1 [ 41.426382] ? __do_page_fault+0x449/0xe50 [ 41.426410] should_fail.cold.4+0xa/0x1a [ 41.426436] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 41.450988] ? graph_lock+0x170/0x170 [ 41.454796] ? graph_lock+0x170/0x170 [ 41.458604] ? graph_lock+0x170/0x170 [ 41.462409] ? vmalloc_sync_all+0x30/0x30 [ 41.466559] ? sk_busy_loop_end+0x1c0/0x1c0 [ 41.470889] ? __kasan_slab_free+0x11a/0x170 [ 41.475309] ? find_held_lock+0x36/0x1c0 [ 41.479397] ? __lock_is_held+0xb5/0x140 [ 41.483479] ? check_same_owner+0x340/0x340 [ 41.487808] ? check_same_owner+0x340/0x340 [ 41.492140] ? rcu_note_context_switch+0x730/0x730 [ 41.497077] __should_failslab+0x124/0x180 [ 41.501336] should_failslab+0x9/0x14 [ 41.505148] __kmalloc+0x2c8/0x760 [ 41.508697] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 41.513718] ? _copy_from_iter+0x39d/0x1090 [ 41.518041] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 41.523067] ? tls_push_record+0x10d/0x1400 [ 41.527398] ? __check_object_size+0x9d/0x5f2 [ 41.531901] tls_push_record+0x10d/0x1400 [ 41.536057] ? _copy_from_iter_nocache+0x1050/0x1050 [ 41.541175] tls_sw_sendmsg+0x9e2/0x12c0 [ 41.545243] ? lock_release+0xa30/0xa30 [ 41.549240] ? tls_sw_push_pending_record+0x30/0x30 [ 41.554264] ? lock_downgrade+0x8f0/0x8f0 [ 41.558414] ? __sanitizer_cov_trace_cmp2+0x7/0x20 [ 41.563365] ? lock_release+0xa30/0xa30 [ 41.567355] ? __check_object_size+0x9d/0x5f2 [ 41.571864] inet_sendmsg+0x1a1/0x690 [ 41.575673] ? ipip_gro_receive+0x100/0x100 [ 41.580002] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 41.585545] ? security_socket_sendmsg+0x94/0xc0 [ 41.590301] ? ipip_gro_receive+0x100/0x100 [ 41.594640] sock_sendmsg+0xd5/0x120 [ 41.598366] __sys_sendto+0x3d7/0x670 [ 41.602176] ? __ia32_sys_getpeername+0xb0/0xb0 [ 41.606858] ? lock_downgrade+0x8f0/0x8f0 [ 41.611018] ? __lock_is_held+0xb5/0x140 [ 41.615103] ? __sb_end_write+0xac/0xe0 [ 41.619091] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 41.624630] ? ksys_write+0x1ae/0x260 [ 41.628439] ? __ia32_sys_read+0xb0/0xb0 [ 41.632511] ? syscall_slow_exit_work+0x500/0x500 [ 41.637370] __x64_sys_sendto+0xe1/0x1a0 [ 41.641437] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 41.646461] do_syscall_64+0x1b9/0x820 [ 41.650357] ? syscall_slow_exit_work+0x500/0x500 [ 41.655209] ? syscall_return_slowpath+0x5e0/0x5e0 [ 41.660147] ? syscall_return_slowpath+0x31d/0x5e0 [ 41.665088] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 41.670466] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 41.675328] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 41.680520] RIP: 0033:0x4418c9 [ 41.683706] Code: e8 4c e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 41.703103] RSP: 002b:00007ffd5a6c7928 EFLAGS: 00000212 ORIG_RAX: 000000000000002c [ 41.710816] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004418c9 [ 41.718084] RDX: 00000000fffffdef RSI: 00000000200005c0 RDI: 0000000000000003 [ 41.725358] RBP: 00007ffd5a6c7950 R08: 0000000020000000 R09: 000000000000001c [ 41.732630] R10: 0000000000000040 R11: 0000000000000212 R12: 0000000000000005 [ 41.739903] R13: ffffffffffffffff R14: 0000000000000000 R15: 0000000000000000 [ 41.747195] CPU: 1 PID: 6320 Comm: syz-executor087 Not tainted 4.18.0-rc7+ #37 [ 41.754569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 41.757798] FAULT_INJECTION: forcing a failure. [ 41.757798] name failslab, interval 1, probability 0, space 0, times 0 [ 41.763922] Call Trace: [ 41.763945] dump_stack+0x1c9/0x2b4 [ 41.763975] ? dump_stack_print_info.cold.2+0x52/0x52 [ 41.786524] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 41.792077] ? __do_page_fault+0x449/0xe50 [ 41.796346] should_fail.cold.4+0xa/0x1a [ 41.800424] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 41.805545] ? graph_lock+0x170/0x170 [ 41.809360] ? graph_lock+0x170/0x170 [ 41.813165] ? graph_lock+0x170/0x170 [ 41.816970] ? vmalloc_sync_all+0x30/0x30 [ 41.821125] ? sk_busy_loop_end+0x1c0/0x1c0 [ 41.825457] ? __kasan_slab_free+0x11a/0x170 [ 41.829875] ? find_held_lock+0x36/0x1c0 [ 41.833950] ? __lock_is_held+0xb5/0x140 [ 41.838029] ? check_same_owner+0x340/0x340 [ 41.842362] ? check_same_owner+0x340/0x340 [ 41.846698] ? rcu_note_context_switch+0x730/0x730 [ 41.851642] __should_failslab+0x124/0x180 [ 41.855889] should_failslab+0x9/0x14 [ 41.859693] __kmalloc+0x2c8/0x760 [ 41.863240] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 41.868276] ? _copy_from_iter+0x39d/0x1090 [ 41.872609] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 41.877632] ? tls_push_record+0x10d/0x1400 [ 41.881963] ? __check_object_size+0x9d/0x5f2 [ 41.886467] tls_push_record+0x10d/0x1400 [ 41.890627] ? _copy_from_iter_nocache+0x1050/0x1050 [ 41.895744] tls_sw_sendmsg+0x9e2/0x12c0 [ 41.899813] ? lock_release+0xa30/0xa30 [ 41.903824] ? tls_sw_push_pending_record+0x30/0x30 [ 41.908845] ? lock_downgrade+0x8f0/0x8f0 [ 41.912996] ? __sanitizer_cov_trace_cmp2+0x7/0x20 [ 41.917933] ? lock_release+0xa30/0xa30 [ 41.921917] ? __check_object_size+0x9d/0x5f2 [ 41.926427] inet_sendmsg+0x1a1/0x690 [ 41.930232] ? ipip_gro_receive+0x100/0x100 [ 41.934567] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 41.940119] ? security_socket_sendmsg+0x94/0xc0 [ 41.944877] ? ipip_gro_receive+0x100/0x100 [ 41.949207] sock_sendmsg+0xd5/0x120 [ 41.952936] __sys_sendto+0x3d7/0x670 [ 41.956746] ? __ia32_sys_getpeername+0xb0/0xb0 [ 41.961423] ? lock_downgrade+0x8f0/0x8f0 [ 41.965581] ? __lock_is_held+0xb5/0x140 [ 41.969670] ? __sb_end_write+0xac/0xe0 [ 41.973665] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 41.979204] ? ksys_write+0x1ae/0x260 [ 41.983015] ? __ia32_sys_read+0xb0/0xb0 [ 41.987089] ? syscall_slow_exit_work+0x500/0x500 [ 41.991951] __x64_sys_sendto+0xe1/0x1a0 [ 41.996026] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 42.001054] do_syscall_64+0x1b9/0x820 [ 42.004951] ? syscall_return_slowpath+0x5e0/0x5e0 [ 42.009890] ? syscall_return_slowpath+0x31d/0x5e0 [ 42.014833] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 42.020209] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 42.025065] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 42.030263] RIP: 0033:0x4418c9 [ 42.033450] Code: e8 4c e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 42.052856] RSP: 002b:00007ffd5a6c7928 EFLAGS: 00000212 ORIG_RAX: 000000000000002c [ 42.060568] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004418c9 [ 42.067846] RDX: 00000000fffffdef RSI: 00000000200005c0 RDI: 0000000000000003 [ 42.075122] RBP: 00007ffd5a6c7950 R08: 0000000020000000 R09: 000000000000001c [ 42.082390] R10: 0000000000000040 R11: 0000000000000212 R12: 0000000000000005 [ 42.089663] R13: ffffffffffffffff R14: 0000000000000000 R15: 0000000000000000 [ 42.096954] CPU: 0 PID: 6325 Comm: syz-executor087 Not tainted 4.18.0-rc7+ #37 [ 42.102297] FAULT_INJECTION: forcing a failure. [ 42.102297] name failslab, interval 1, probability 0, space 0, times 0 [ 42.104331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 42.104337] Call Trace: [ 42.104360] dump_stack+0x1c9/0x2b4 [ 42.104381] ? dump_stack_print_info.cold.2+0x52/0x52 [ 42.104401] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 42.104417] ? __do_page_fault+0x449/0xe50 [ 42.104446] should_fail.cold.4+0xa/0x1a [ 42.150121] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 42.155237] ? graph_lock+0x170/0x170 [ 42.159048] ? graph_lock+0x170/0x170 [ 42.162857] ? graph_lock+0x170/0x170 [ 42.166660] ? vmalloc_sync_all+0x30/0x30 [ 42.170815] ? sk_busy_loop_end+0x1c0/0x1c0 [ 42.175141] ? __kasan_slab_free+0x11a/0x170 [ 42.179558] ? find_held_lock+0x36/0x1c0 [ 42.183633] ? __lock_is_held+0xb5/0x140 [ 42.187713] ? check_same_owner+0x340/0x340 [ 42.192036] ? check_same_owner+0x340/0x340 [ 42.196366] ? rcu_note_context_switch+0x730/0x730 [ 42.201305] __should_failslab+0x124/0x180 [ 42.205561] should_failslab+0x9/0x14 [ 42.209373] __kmalloc+0x2c8/0x760 [ 42.212923] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 42.217943] ? _copy_from_iter+0x39d/0x1090 [ 42.222267] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 42.227290] ? tls_push_record+0x10d/0x1400 [ 42.231637] ? __check_object_size+0x9d/0x5f2 [ 42.236143] tls_push_record+0x10d/0x1400 [ 42.240341] ? _copy_from_iter_nocache+0x1050/0x1050 [ 42.245481] tls_sw_sendmsg+0x9e2/0x12c0 [ 42.249553] ? lock_release+0xa30/0xa30 [ 42.253553] ? tls_sw_push_pending_record+0x30/0x30 [ 42.258579] ? lock_downgrade+0x8f0/0x8f0 [ 42.262742] ? __sanitizer_cov_trace_cmp2+0x7/0x20 [ 42.267678] ? lock_release+0xa30/0xa30 [ 42.271665] ? __check_object_size+0x9d/0x5f2 [ 42.276170] inet_sendmsg+0x1a1/0x690 [ 42.279976] ? ipip_gro_receive+0x100/0x100 [ 42.284309] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 42.289865] ? security_socket_sendmsg+0x94/0xc0 [ 42.294629] ? ipip_gro_receive+0x100/0x100 [ 42.298963] sock_sendmsg+0xd5/0x120 [ 42.302685] __sys_sendto+0x3d7/0x670 [ 42.306496] ? __ia32_sys_getpeername+0xb0/0xb0 [ 42.311176] ? lock_downgrade+0x8f0/0x8f0 [ 42.315349] ? __lock_is_held+0xb5/0x140 [ 42.319433] ? __sb_end_write+0xac/0xe0 [ 42.323426] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 42.328969] ? ksys_write+0x1ae/0x260 [ 42.332779] ? __ia32_sys_read+0xb0/0xb0 [ 42.336849] ? syscall_slow_exit_work+0x500/0x500 [ 42.341704] __x64_sys_sendto+0xe1/0x1a0 [ 42.345772] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 42.350795] do_syscall_64+0x1b9/0x820 [ 42.354694] ? syscall_return_slowpath+0x5e0/0x5e0 [ 42.359632] ? syscall_return_slowpath+0x31d/0x5e0 [ 42.364576] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 42.369953] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 42.374805] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 42.379995] RIP: 0033:0x4418c9 [ 42.383178] Code: e8 4c e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 42.402590] RSP: 002b:00007ffd5a6c7928 EFLAGS: 00000212 ORIG_RAX: 000000000000002c [ 42.410308] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004418c9 [ 42.417589] RDX: 00000000fffffdef RSI: 00000000200005c0 RDI: 0000000000000003 [ 42.424863] RBP: 00007ffd5a6c7950 R08: 0000000020000000 R09: 000000000000001c [ 42.432131] R10: 0000000000000040 R11: 0000000000000212 R12: 0000000000000005 [ 42.439399] R13: ffffffffffffffff R14: 0000000000000000 R15: 0000000000000000 [ 42.446718] CPU: 1 PID: 6327 Comm: syz-executor087 Not tainted 4.18.0-rc7+ #37 [ 42.454091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 42.463463] Call Trace: [ 42.466064] dump_stack+0x1c9/0x2b4 [ 42.469743] ? dump_stack_print_info.cold.2+0x52/0x52 executing program [ 42.474949] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 42.480498] ? __do_page_fault+0x449/0xe50 [ 42.484757] should_fail.cold.4+0xa/0x1a [ 42.488838] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 42.493958] ? graph_lock+0x170/0x170 [ 42.497777] ? graph_lock+0x170/0x170 [ 42.501582] ? graph_lock+0x170/0x170 [ 42.505389] ? vmalloc_sync_all+0x30/0x30 [ 42.509540] ? sk_busy_loop_end+0x1c0/0x1c0 [ 42.513867] ? __kasan_slab_free+0x11a/0x170 [ 42.518281] ? find_held_lock+0x36/0x1c0 [ 42.522357] ? __lock_is_held+0xb5/0x140 [ 42.526434] ? check_same_owner+0x340/0x340 [ 42.530758] ? check_same_owner+0x340/0x340 [ 42.535086] ? rcu_note_context_switch+0x730/0x730 [ 42.540035] __should_failslab+0x124/0x180 [ 42.544281] should_failslab+0x9/0x14 [ 42.548083] __kmalloc+0x2c8/0x760 [ 42.551643] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 42.556662] ? _copy_from_iter+0x39d/0x1090 [ 42.560983] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 42.566000] ? tls_push_record+0x10d/0x1400 [ 42.570337] ? __check_object_size+0x9d/0x5f2 [ 42.574840] tls_push_record+0x10d/0x1400 [ 42.578994] ? _copy_from_iter_nocache+0x1050/0x1050 [ 42.584116] tls_sw_sendmsg+0x9e2/0x12c0 [ 42.588180] ? lock_release+0xa30/0xa30 [ 42.592177] ? tls_sw_push_pending_record+0x30/0x30 [ 42.597208] ? lock_downgrade+0x8f0/0x8f0 [ 42.601360] ? __sanitizer_cov_trace_cmp2+0x7/0x20 [ 42.606294] ? lock_release+0xa30/0xa30 [ 42.610288] ? __check_object_size+0x9d/0x5f2 [ 42.614798] inet_sendmsg+0x1a1/0x690 [ 42.618601] ? ipip_gro_receive+0x100/0x100 [ 42.622929] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 42.628468] ? security_socket_sendmsg+0x94/0xc0 [ 42.633222] ? ipip_gro_receive+0x100/0x100 [ 42.637550] sock_sendmsg+0xd5/0x120 [ 42.641267] __sys_sendto+0x3d7/0x670 [ 42.645073] ? __ia32_sys_getpeername+0xb0/0xb0 [ 42.649750] ? lock_downgrade+0x8f0/0x8f0 [ 42.653906] ? __lock_is_held+0xb5/0x140 [ 42.657985] ? __sb_end_write+0xac/0xe0 [ 42.661973] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 42.667509] ? ksys_write+0x1ae/0x260 [ 42.671312] ? __ia32_sys_read+0xb0/0xb0 [ 42.675387] ? syscall_slow_exit_work+0x500/0x500 [ 42.680236] __x64_sys_sendto+0xe1/0x1a0 [ 42.684332] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 42.689362] do_syscall_64+0x1b9/0x820 [ 42.693257] ? syscall_return_slowpath+0x5e0/0x5e0 [ 42.698190] ? syscall_return_slowpath+0x31d/0x5e0 [ 42.703130] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 42.708506] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 42.713360] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 42.718547] RIP: 0033:0x4418c9 [ 42.721732] Code: e8 4c e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 42.741119] RSP: 002b:00007ffd5a6c7928 EFLAGS: 00000212 ORIG_RAX: 000000000000002c [ 42.748827] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004418c9 [ 42.756103] RDX: 00000000fffffdef RSI: 00000000200005c0 RDI: 0000000000000003 [ 42.763370] RBP: 00007ffd5a6c7950 R08: 0000000020000000 R09: 000000000000001c [ 42.770637] R10: 0000000000000040 R11: 0000000000000212 R12: 0000000000000005 [ 42.777905] R13: ffffffffffffffff R14: 0000000000000000 R15: 0000000000000000 [ 42.808139] FAULT_INJECTION: forcing a failure. [ 42.808139] name failslab, interval 1, probability 0, space 0, times 0 [ 42.819472] CPU: 0 PID: 6338 Comm: syz-executor087 Not tainted 4.18.0-rc7+ #37 [ 42.826839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 42.836196] Call Trace: [ 42.838791] dump_stack+0x1c9/0x2b4 [ 42.842431] ? dump_stack_print_info.cold.2+0x52/0x52 [ 42.847638] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 42.853179] ? __do_page_fault+0x449/0xe50 [ 42.857429] should_fail.cold.4+0xa/0x1a [ 42.861507] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 42.866624] ? graph_lock+0x170/0x170 [ 42.870428] ? graph_lock+0x170/0x170 [ 42.874231] ? graph_lock+0x170/0x170 [ 42.878035] ? vmalloc_sync_all+0x30/0x30 [ 42.882188] ? sk_busy_loop_end+0x1c0/0x1c0 [ 42.886518] ? __kasan_slab_free+0x11a/0x170 [ 42.890938] ? find_held_lock+0x36/0x1c0 [ 42.895008] ? __lock_is_held+0xb5/0x140 [ 42.899087] ? check_same_owner+0x340/0x340 [ 42.903414] ? check_same_owner+0x340/0x340 [ 42.907737] ? rcu_note_context_switch+0x730/0x730 [ 42.912675] __should_failslab+0x124/0x180 [ 42.916921] should_failslab+0x9/0x14 [ 42.920726] __kmalloc+0x2c8/0x760 [ 42.924277] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 42.929299] ? _copy_from_iter+0x39d/0x1090 [ 42.933632] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 42.938649] ? tls_push_record+0x10d/0x1400 [ 42.942974] ? __check_object_size+0x9d/0x5f2 [ 42.947474] tls_push_record+0x10d/0x1400 [ 42.951637] ? _copy_from_iter_nocache+0x1050/0x1050 [ 42.956753] tls_sw_sendmsg+0x9e2/0x12c0 [ 42.960821] ? lock_release+0xa30/0xa30 [ 42.964818] ? tls_sw_push_pending_record+0x30/0x30 [ 42.969838] ? lock_downgrade+0x8f0/0x8f0 [ 42.973989] ? __sanitizer_cov_trace_cmp2+0x7/0x20 [ 42.978924] ? lock_release+0xa30/0xa30 [ 42.982907] ? __check_object_size+0x9d/0x5f2 [ 42.987411] inet_sendmsg+0x1a1/0x690 [ 42.991218] ? ipip_gro_receive+0x100/0x100 [ 42.995832] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 43.001373] ? security_socket_sendmsg+0x94/0xc0 [ 43.006128] ? ipip_gro_receive+0x100/0x100 [ 43.010455] sock_sendmsg+0xd5/0x120 [ 43.014179] __sys_sendto+0x3d7/0x670 [ 43.017986] ? __ia32_sys_getpeername+0xb0/0xb0 [ 43.022664] ? lock_downgrade+0x8f0/0x8f0 [ 43.026823] ? __lock_is_held+0xb5/0x140 [ 43.030904] ? __sb_end_write+0xac/0xe0 [ 43.034893] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 43.040431] ? ksys_write+0x1ae/0x260 [ 43.044237] ? __ia32_sys_read+0xb0/0xb0 [ 43.048309] ? syscall_slow_exit_work+0x500/0x500 [ 43.053172] __x64_sys_sendto+0xe1/0x1a0 [ 43.057237] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 43.062260] do_syscall_64+0x1b9/0x820 [ 43.066147] ? syscall_slow_exit_work+0x500/0x500 [ 43.070994] ? syscall_return_slowpath+0x5e0/0x5e0 [ 43.075932] ? syscall_return_slowpath+0x31d/0x5e0 [ 43.080869] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 43.086238] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 43.091091] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 43.096282] RIP: 0033:0x4418c9 [ 43.099463] Code: e8 4c e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 43.118838] RSP: 002b:00007ffd5a6c7928 EFLAGS: 00000212 ORIG_RAX: 000000000000002c executing program [ 43.126548] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004418c9 [ 43.133815] RDX: 00000000fffffdef RSI: 00000000200005c0 RDI: 0000000000000003 [ 43.141079] RBP: 00007ffd5a6c7950 R08: 0000000020000000 R09: 000000000000001c [ 43.148352] R10: 0000000000000040 R11: 0000000000000212 R12: 0000000000000005 [ 43.155623] R13: ffffffffffffffff R14: 0000000000000000 R15: 0000000000000000 [ 43.198044] page:ffffea000714e200 count:0 mapcount:-128 mapping:0000000000000000 index:0x0 [ 43.199122] ================================================================== [ 43.206756] flags: 0x2fffc0000000000() [ 43.214120] BUG: KASAN: use-after-free in __schedule+0x1a18/0x1ec0 [ 43.214137] Read of size 8 at addr ffff8801af280000 by task ip/6349 [ 43.218044] raw: 02fffc0000000000 ffffea0006cfa208 ffff88021fffac18 0000000000000000 [ 43.224311] [ 43.224338] CPU: 1 PID: 6349 Comm: ip Not tainted 4.18.0-rc7+ #37 [ 43.224346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 43.224357] Call Trace: [ 43.230787] raw: 0000000000000000 0000000000000003 00000000ffffff7f 0000000000000000 [ 43.238647] dump_stack+0x1c9/0x2b4 [ 43.238674] ? dump_stack_print_info.cold.2+0x52/0x52 [ 43.240307] page dumped because: VM_BUG_ON_PAGE(page_ref_count(page) == 0) [ 43.246511] ? printk+0xa7/0xcf [ 43.246528] ? kmsg_dump_rewind_nolock+0xe4/0xe4 [ 43.246549] ? __schedule+0x1a18/0x1ec0 [ 43.256190] ------------[ cut here ]------------ [ 43.258474] print_address_description+0x6c/0x20b [ 43.266339] kernel BUG at include/linux/mm.h:515! [ 43.266388] invalid opcode: 0000 [#1] SMP KASAN [ 43.269975] ? __schedule+0x1a18/0x1ec0 [ 43.275150] CPU: 0 PID: 6338 Comm: syz-executor087 Not tainted 4.18.0-rc7+ #37 [ 43.282147] kasan_report.cold.7+0x242/0x2fe [ 43.285405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 43.290153] __asan_report_load8_noabort+0x14/0x20 [ 43.294121] RIP: 0010:skb_release_data+0x6bd/0x880 [ 43.298862] __schedule+0x1a18/0x1ec0 [ 43.303679] Code: [ 43.308516] ? __sched_text_start+0x8/0x8 [ 43.313158] e8 [ 43.317130] ? __fget_light+0x2f7/0x440 [ 43.324462] 58 [ 43.328866] ? fget_raw+0x20/0x20 [ 43.338200] 09 [ 43.343133] ? find_held_lock+0x36/0x1c0 [ 43.348035] 73 [ 43.351831] ? lock_downgrade+0x8f0/0x8f0 [ 43.353955] fc [ 43.358110] ? handle_mm_fault+0x8c4/0xc80 [ 43.359967] 48 [ 43.363937] schedule+0xfb/0x450 [ 43.365800] 8b [ 43.369251] ? sockfd_lookup_light+0xc5/0x160 [ 43.371112] bd [ 43.375167] ? __schedule+0x1ec0/0x1ec0 [ 43.377033] 10 [ 43.381181] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 43.383044] ff [ 43.387274] ? __sys_recvmsg+0x1b7/0x290 [ 43.389137] ff [ 43.392496] ? __ia32_sys_sendmmsg+0x100/0x100 [ 43.394364] ff [ 43.398858] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 43.400719] e8 [ 43.404694] ? __do_page_fault+0x449/0xe50 [ 43.406556] 4c [ 43.412093] ? exit_to_usermode_loop+0x8c/0x370 [ 43.413955] e6 [ 43.418012] exit_to_usermode_loop+0x22f/0x370 [ 43.419874] fe [ 43.424453] ? syscall_slow_exit_work+0x500/0x500 [ 43.426315] ff [ 43.431862] do_syscall_64+0x6be/0x820 [ 43.433730] e9 [ 43.437961] ? syscall_slow_exit_work+0x500/0x500 [ 43.439829] 16 [ 43.444492] ? syscall_return_slowpath+0x5e0/0x5e0 [ 43.446357] fb [ 43.450936] ? syscall_return_slowpath+0x31d/0x5e0 [ 43.452800] ff [ 43.457636] ? retint_user+0x18/0x18 [ 43.459502] ff [ 43.463386] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 43.465248] e8 [ 43.470087] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 43.471956] 42 [ 43.476881] RIP: 0033:0x7fab7daf0210 [ 43.478761] 09 [ 43.483675] Code: [ 43.485555] 73 [ 43.489255] 31 [ 43.491135] fc [ 43.495965] d2 [ 43.497842] 48 [ 43.503016] 48 [ 43.504890] c7 [ 43.508589] 29 [ 43.510467] c6 [ 43.512607] c2 [ 43.514482] 00 [ 43.516360] 64 [ 43.518236] b9 [ 43.520117] 89 [ 43.521989] 6f [ 43.523864] 11 [ 43.525740] 87 [ 43.527620] 48 [ 43.529495] 4c [ 43.531370] 83 [ 43.533244] 89 [ 43.535121] c8 [ 43.536998] ef [ 43.538876] ff [ 43.540750] e8 [ 43.542627] eb [ 43.544501] 33 [ 43.546378] ea [ 43.548253] c0 [ 43.550132] 90 [ 43.552010] a0 [ 43.553888] 90 [ 43.555768] fc [ 43.557646] 90 [ 43.559535] <0f> [ 43.561408] 90 [ 43.563282] 0b [ 43.565155] 90 [ 43.567031] e8 [ 43.568907] 90 [ 43.570781] 2c [ 43.572657] 90 [ 43.574530] 09 [ 43.576403] 90 [ 43.578450] 73 [ 43.580333] 90 [ 43.582207] fc [ 43.584084] 90 [ 43.585960] 4c [ 43.587836] 90 [ 43.589711] 8d [ 43.591585] 90 [ 43.593468] 6b [ 43.595350] 83 [ 43.597226] ff [ 43.599102] 3d [ 43.600976] e9 [ 43.602855] e5 [ 43.604744] b0 [ 43.606616] d3 [ 43.608489] fc [ 43.610367] 2a [ 43.612239] ff [ 43.614116] 00 [ 43.615989] ff [ 43.617868] 00 [ 43.619744] e8 [ 43.621618] 75 [ 43.623495] 1e [ 43.625372] 10 [ 43.627249] 09 [ 43.629127] b8 [ 43.630999] 73 [ 43.632875] 2f [ 43.634750] fc [ 43.636624] 00 [ 43.638501] 4c [ 43.640377] 00 [ 43.644134] 00 [ 43.646009] RSP: 0018:ffff8801ae95f578 EFLAGS: 00010246 [ 43.647882] 0f [ 43.651633] 05 [ 43.653510] RAX: 0000000000000000 RBX: ffffea000714e234 RCX: 0000000000000000 [ 43.655379] <48> [ 43.657261] RDX: 0000000000000000 RSI: ffffffff81a9e055 RDI: ffffed0035d2bea0 [ 43.659130] 3d [ 43.661012] RBP: ffff8801ae95f698 R08: ffff8801c6f66978 R09: 0000000000000006 [ 43.666352] 01 f0 [ 43.668241] R10: ffff8801c6f66140 R11: 0000000000000000 R12: dffffc0000000000 [ 43.670116] ff [ 43.677378] R13: ffffea000714e200 R14: ffff8801cfdc4c20 R15: 0000000000000003 [ 43.679417] ff 73 [ 43.686694] FS: 0000000000ae1880(0000) GS:ffff8801db000000(0000) knlGS:0000000000000000 [ 43.688563] 31 [ 43.695825] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 43.697959] c3 [ 43.705225] CR2: 00007f07e03dea8c CR3: 00000001d752e000 CR4: 00000000001406f0 [ 43.707102] 48 [ 43.714356] Call Trace: [ 43.716491] 83 [ 43.724722] ? skb_tx_error+0x2f0/0x2f0 [ 43.726580] ec [ 43.732472] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 43.734342] 08 [ 43.741616] ? tcp_chrono_stop+0x25f/0x590 [ 43.743477] e8 [ 43.746058] ? tcp_chrono_start+0x1e0/0x1e0 [ 43.747925] 6e [ 43.751908] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 43.753763] bb [ 43.758778] skb_release_all+0x4a/0x60 [ 43.760640] 00 [ 43.764869] __kfree_skb+0x15/0x20 [ 43.766740] 00 [ 43.771058] tcp_write_queue_purge+0x2c1/0x8b0 [ 43.772924] 48 [ 43.778457] ? detach_if_pending+0x6f0/0x6f0 [ 43.780328] 89 [ 43.784214] ? tcp_close+0x12d0/0x12d0 [ 43.786082] 04 [ 43.789635] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 43.791498] 24 [ 43.796072] tcp_disconnect+0x49e/0x1550 [ 43.802346] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 43.804216] RSP: 002b:00007fff8b328a78 EFLAGS: 00000246 [ 43.808092] ? tcp_write_queue_purge+0x8b0/0x8b0 [ 43.808128] ? sk_alloc_sg+0xa00/0xa00 [ 43.809998] ORIG_RAX: 000000000000002f [ 43.815530] ? __local_bh_enable_ip+0x161/0x230 [ 43.817400] RAX: 0000000000001b94 RBX: 00000000006395c0 RCX: 00007fab7daf0210 [ 43.821457] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 43.826972] RDX: 0000000000000000 RSI: 00007fff8b328ac0 RDI: 0000000000000003 [ 43.832338] ? lock_sock_nested+0x9f/0x120 [ 43.837076] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 43.840954] ? trace_hardirqs_on+0xd/0x10 [ 43.844907] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006395c0 [ 43.849563] tcp_close+0x1026/0x12d0 [ 43.856818] R13: 0000000000000000 R14: 00007fff8b32cb98 R15: 00007fff8b32d3a0 [ 43.861823] ? release_sock+0x1ec/0x2c0 [ 43.869078] [ 43.873305] ? tcp_check_oom+0x530/0x530 [ 43.880563] The buggy address belongs to the page: [ 43.884706] ? tls_sk_proto_close+0x712/0xae0 [ 43.891964] page:ffffea0006bca000 count:0 mapcount:0 mapping:0000000000000000 index:0x0 [ 43.895668] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 43.906881] ? trace_hardirqs_on+0xd/0x10 [ 43.908493] flags: 0x2fffc0000000000() [ 43.912549] tls_sk_proto_close+0x6fc/0xae0 [ 43.917463] raw: 02fffc0000000000 ffffea000743c288 ffff8801db030118 0000000000000000 [ 43.921945] ? lock_acquire+0x1e4/0x540 [ 43.930069] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 43.935075] ? tcp_check_oom+0x530/0x530 [ 43.939204] page dumped because: kasan: bad access detected [ 43.943091] ? do_lock_file_wait.part.32+0x260/0x260 [ 43.947387] [ 43.955265] ? tls_write_space+0x360/0x360 [ 43.959214] Memory state around the buggy address: [ 43.967089] ? rcu_note_context_switch+0x730/0x730 [ 43.971134] ffff8801af27ff00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 43.976852] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 43.981932] ffff8801af27ff80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 43.983556] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 43.987769] >ffff8801af280000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 43.992693] ? ipv6_sock_ac_close+0x356/0x490 [ 43.997597] ^ [ 44.004953] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 44.010468] ffff8801af280080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 44.017817] ? ipv6_sock_mc_close+0x162/0x1d0 [ 44.023339] ffff8801af280100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 44.030698] ? ip_mc_drop_socket+0x20f/0x270 [ 44.035173] ================================================================== [ 44.038530] ? down_write+0x8f/0x130 [ 44.045494] Kernel panic - not syncing: panic_on_warn set ... [ 44.045494] [ 44.051400] inet_release+0x104/0x1f0 [ 44.089791] inet6_release+0x50/0x70 [ 44.093505] __sock_release+0xd7/0x260 [ 44.097391] ? __sock_release+0x260/0x260 [ 44.101531] sock_close+0x19/0x20 [ 44.104983] __fput+0x355/0x8b0 [ 44.108258] ? fput+0x1a0/0x1a0 [ 44.111533] ? _raw_spin_unlock_irq+0x27/0x70 [ 44.116023] ____fput+0x15/0x20 [ 44.119299] task_work_run+0x1ec/0x2a0 [ 44.123189] ? task_work_cancel+0x250/0x250 [ 44.127509] ? exit_to_usermode_loop+0x8c/0x370 [ 44.132174] exit_to_usermode_loop+0x313/0x370 [ 44.136752] ? syscall_slow_exit_work+0x500/0x500 [ 44.141601] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 44.147135] do_syscall_64+0x6be/0x820 [ 44.151015] ? syscall_slow_exit_work+0x500/0x500 [ 44.155848] ? syscall_return_slowpath+0x5e0/0x5e0 [ 44.160777] ? syscall_return_slowpath+0x31d/0x5e0 [ 44.165701] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 44.171059] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 44.175902] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 44.181083] RIP: 0033:0x401850 [ 44.184262] Code: 01 f0 ff ff 0f 83 d0 0a 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 3d dd 2f 2d 00 00 75 14 b8 03 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 a4 0a 00 00 c3 48 83 ec 08 e8 5a 01 00 00 [ 44.203518] RSP: 002b:00007ffd5a6c7938 EFLAGS: 00000246 ORIG_RAX: 0000000000000003 [ 44.211221] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000401850 [ 44.218481] RDX: 00000000fffffdef RSI: 00000000200005c0 RDI: 0000000000000003 [ 44.225743] RBP: 00007ffd5a6c7950 R08: 0000000020000000 R09: 000000000000001c [ 44.233003] R10: 0000000000000040 R11: 0000000000000246 R12: 0000000000000005 [ 44.240262] R13: ffffffffffffffff R14: 0000000000000000 R15: 0000000000000000 [ 44.247529] Modules linked in: [ 44.250716] Dumping ftrace buffer: [ 44.254244] (ftrace buffer empty) [ 44.258225] Dumping ftrace buffer: [ 44.261755] (ftrace buffer empty) [ 44.265445] Kernel Offset: disabled [ 44.269051] Rebooting in 86400 seconds..