[ 41.326706] random: cc1: uninitialized urandom read (8 bytes read) [ 41.940878] IPVS: ftp: loaded support on port[0] = 21 [ 43.179866] can: request_module (can-proto-0) failed. [ 43.189069] can: request_module (can-proto-0) failed. [ 43.342316] audit: type=1400 audit(1578896462.698:37): avc: denied { create } for pid=6719 comm="syz-fuzzer" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_crypto_socket permissive=1 [ 43.365952] audit: type=1400 audit(1578896462.698:38): avc: denied { create } for pid=6719 comm="syz-fuzzer" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 43.389586] audit: type=1400 audit(1578896462.698:39): avc: denied { create } for pid=6719 comm="syz-fuzzer" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 [ 43.655154] random: sshd: uninitialized urandom read (32 bytes read) [ 44.417295] random: sshd: uninitialized urandom read (32 bytes read) [ 44.602607] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.0.130' (ECDSA) to the list of known hosts. 2020/01/13 06:21:10 parsed 1 programs 2020/01/13 06:21:10 executed programs: 0 [ 51.302872] audit: type=1400 audit(1578896470.658:40): avc: denied { map } for pid=6792 comm="syz-execprog" path="/root/syzkaller-shm007220068" dev="sda1" ino=16500 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:file_t:s0 tclass=file permissive=1 [ 51.580866] IPVS: ftp: loaded support on port[0] = 21 [ 52.374299] chnl_net:caif_netlink_parms(): no params data found [ 52.381694] IPVS: ftp: loaded support on port[0] = 21 [ 52.424876] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.431593] bridge0: port 1(bridge_slave_0) entered disabled state [ 52.438412] device bridge_slave_0 entered promiscuous mode [ 52.446931] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.453348] bridge0: port 2(bridge_slave_1) entered disabled state [ 52.460435] device bridge_slave_1 entered promiscuous mode [ 52.478777] IPVS: ftp: loaded support on port[0] = 21 [ 52.484666] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 52.493698] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 52.516640] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 52.523933] team0: Port device team_slave_0 added [ 52.529472] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 52.536643] team0: Port device team_slave_1 added [ 52.542060] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 52.549334] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 52.632273] device hsr_slave_0 entered promiscuous mode [ 52.670329] device hsr_slave_1 entered promiscuous mode [ 52.712679] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 52.737249] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 52.769380] chnl_net:caif_netlink_parms(): no params data found [ 52.798812] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.805270] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.812054] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.818396] bridge0: port 1(bridge_slave_0) entered forwarding state [ 52.827310] IPVS: ftp: loaded support on port[0] = 21 [ 52.888044] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.895913] bridge0: port 1(bridge_slave_0) entered disabled state [ 52.903979] device bridge_slave_0 entered promiscuous mode [ 52.915312] chnl_net:caif_netlink_parms(): no params data found [ 52.923720] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.930651] bridge0: port 2(bridge_slave_1) entered disabled state [ 52.937494] device bridge_slave_1 entered promiscuous mode [ 52.955574] IPVS: ftp: loaded support on port[0] = 21 [ 52.986610] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 53.003926] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 53.010126] 8021q: adding VLAN 0 to HW filter on device bond0 [ 53.018016] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 53.025554] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 53.056125] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.062781] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.069640] device bridge_slave_0 entered promiscuous mode [ 53.076297] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.082703] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.089630] device bridge_slave_1 entered promiscuous mode [ 53.112890] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 53.130495] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 53.138457] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 53.145761] team0: Port device team_slave_0 added [ 53.159794] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 53.167838] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.185109] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.197318] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 53.204381] team0: Port device team_slave_1 added [ 53.209700] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 53.218938] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 53.248845] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 53.256305] team0: Port device team_slave_0 added [ 53.264120] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 53.271399] team0: Port device team_slave_1 added [ 53.332854] device hsr_slave_0 entered promiscuous mode [ 53.370999] device hsr_slave_1 entered promiscuous mode [ 53.440537] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 53.447673] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 53.455415] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 53.461827] 8021q: adding VLAN 0 to HW filter on device team0 [ 53.475517] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 53.483542] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 53.490902] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 53.508601] chnl_net:caif_netlink_parms(): no params data found [ 53.524394] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 53.533108] IPVS: ftp: loaded support on port[0] = 21 [ 53.572523] device hsr_slave_0 entered promiscuous mode [ 53.630361] device hsr_slave_1 entered promiscuous mode [ 53.674223] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 53.684582] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 53.692775] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 53.700738] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.707084] bridge0: port 1(bridge_slave_0) entered forwarding state [ 53.719276] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 53.730090] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 53.745219] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 53.752998] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 53.760792] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.767125] bridge0: port 2(bridge_slave_1) entered forwarding state [ 53.775312] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 53.784302] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 53.809068] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.815676] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.822889] device bridge_slave_0 entered promiscuous mode [ 53.829960] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.836578] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.843600] device bridge_slave_1 entered promiscuous mode [ 53.849557] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 53.862956] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 53.905830] 8021q: adding VLAN 0 to HW filter on device bond0 [ 53.918992] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 53.934440] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 53.956146] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 53.971339] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 53.986514] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 54.015229] chnl_net:caif_netlink_parms(): no params data found [ 54.023358] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 54.031790] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 54.039473] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 54.046687] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 54.054239] team0: Port device team_slave_0 added [ 54.060475] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 54.081426] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 54.088699] team0: Port device team_slave_1 added [ 54.094623] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 54.104781] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 54.124975] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 54.142807] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 54.150601] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 54.157979] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 54.164936] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 54.173469] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 54.183429] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 54.189509] 8021q: adding VLAN 0 to HW filter on device team0 [ 54.202410] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 54.209395] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.216724] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.223785] device bridge_slave_0 entered promiscuous mode [ 54.230562] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 54.238047] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 54.247611] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 54.260118] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 54.279371] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.285922] bridge0: port 2(bridge_slave_1) entered disabled state [ 54.293428] device bridge_slave_1 entered promiscuous mode [ 54.305328] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 54.313007] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 54.320583] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 54.328198] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 54.335806] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.342146] bridge0: port 1(bridge_slave_0) entered forwarding state [ 54.349004] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 54.359449] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 54.365690] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 54.431981] device hsr_slave_0 entered promiscuous mode [ 54.470372] device hsr_slave_1 entered promiscuous mode [ 54.510691] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 54.522865] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 54.533741] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 54.542401] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 54.550841] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 54.558361] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.564745] bridge0: port 2(bridge_slave_1) entered forwarding state [ 54.573248] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 54.582408] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 54.597084] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 54.610211] 8021q: adding VLAN 0 to HW filter on device bond0 [ 54.657922] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 54.665234] team0: Port device team_slave_0 added [ 54.672256] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 54.679724] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 54.686964] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 54.697803] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 54.704938] team0: Port device team_slave_1 added [ 54.710476] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 54.717705] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 54.724689] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 54.731459] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 54.742212] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 54.752898] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 54.758987] 8021q: adding VLAN 0 to HW filter on device team0 [ 54.767478] chnl_net:caif_netlink_parms(): no params data found [ 54.781535] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 54.798359] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 54.806738] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 54.823486] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 54.833408] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 54.841110] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 54.848775] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 54.857490] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 54.865163] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.871536] bridge0: port 1(bridge_slave_0) entered forwarding state [ 54.878481] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 54.886566] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 54.894161] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.900522] bridge0: port 2(bridge_slave_1) entered forwarding state [ 54.907573] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 54.923109] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 54.931526] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 54.972158] device hsr_slave_0 entered promiscuous mode [ 55.010302] device hsr_slave_1 entered promiscuous mode [ 55.070281] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 55.077915] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 55.085590] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 55.093202] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 55.112980] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 55.122813] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 55.131765] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 55.138806] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 55.145714] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.152592] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.159446] device bridge_slave_0 entered promiscuous mode [ 55.166183] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 55.174368] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 55.182176] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 55.190661] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 55.197598] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 55.204586] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 55.213568] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 55.226429] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 55.234214] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.244906] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.252187] device bridge_slave_1 entered promiscuous mode [ 55.260168] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 55.268959] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 55.276241] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 55.283974] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 55.291990] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 55.300460] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 55.308199] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 55.317660] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 55.338662] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 55.356408] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 55.363169] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 55.364797] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. [ 55.373723] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 55.394419] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 55.394865] BUG: unable to handle kernel NULL pointer dereference at (null) [ 55.403123] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 55.409525] IP: (null) [ 55.418735] ================================================================== [ 55.419927] PGD a6251067 [ 55.427371] BUG: KASAN: use-after-free in padata_parallel_worker+0x37a/0x420 [ 55.427374] P4D a6251067 [ 55.430116] Write of size 8 at addr ffff88808815e758 by task kworker/1:3/6836 [ 55.437287] PUD 73e64067 [ 55.440037] [ 55.447313] PMD 0 [ 55.450088] CPU: 1 PID: 6836 Comm: kworker/1:3 Not tainted 4.14.164-syzkaller #0 [ 55.453834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 55.461350] Oops: 0010 [#1] PREEMPT SMP KASAN [ 55.470815] Workqueue: pencrypt padata_parallel_worker [ 55.475290] Modules linked in: [ 55.480568] Call Trace: [ 55.483763] CPU: 0 PID: 3 Comm: kworker/0:0 Not tainted 4.14.164-syzkaller #0 [ 55.486438] dump_stack+0xf7/0x13b [ 55.493704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 55.497265] ? padata_parallel_worker+0x37a/0x420 [ 55.506602] Workqueue: pencrypt padata_serial_worker [ 55.511512] print_address_description.cold.7+0x9/0x1c9 [ 55.511517] ? padata_parallel_worker+0x37a/0x420 [ 55.516623] task: ffff8880a9c6c0c0 task.stack: ffff8880a9c78000 [ 55.521978] kasan_report.cold.8+0x11a/0x2d3 [ 55.526814] RIP: 0010: (null) [ 55.532865] __asan_report_store8_noabort+0x17/0x20 [ 55.537259] RSP: 0018:ffff8880a9c7fc90 EFLAGS: 00010246 [ 55.541125] padata_parallel_worker+0x37a/0x420 [ 55.546127] RAX: dffffc0000000000 RBX: ffff8880a879e180 RCX: ffff8880a879e1d8 [ 55.546131] RDX: 1ffff110150f3c32 RSI: 0000000000000000 RDI: ffff8880a879e180 [ 55.551496] ? padata_sysfs_store+0xa0/0xa0 [ 55.556158] RBP: ffff8880a9c7fca8 R08: 1ffff1101538ffa0 R09: 0000000000000000 [ 55.563412] ? finish_task_switch+0x14d/0x650 [ 55.570659] R10: ffff8880a9c7f998 R11: ffff8880a9c6c0c0 R12: ffff8880a9c7fd38 [ 55.574961] process_one_work+0x79e/0x16c0 [ 55.582219] R13: ffff8882194eb21c R14: ffff8880a9c7fcf8 R15: dffffc0000000000 [ 55.582223] FS: 0000000000000000(0000) GS:ffff8880aee00000(0000) knlGS:0000000000000000 [ 55.586701] ? pwq_dec_nr_in_flight+0x2b0/0x2b0 [ 55.593947] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 55.598186] worker_thread+0xcc/0xee0 [ 55.605436] CR2: 0000000000000000 CR3: 0000000093744000 CR4: 00000000001406f0 [ 55.613650] kthread+0x338/0x400 [ 55.618307] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 55.624172] ? process_one_work+0x16c0/0x16c0 [ 55.627961] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 55.635921] ? kthread_create_on_node+0xa0/0xa0 [ 55.639263] Call Trace: [ 55.646519] ret_from_fork+0x24/0x30 [ 55.650992] pcrypt_aead_serial+0x79/0xb0 [ 55.658279] [ 55.662955] padata_serial_worker+0x258/0x440 [ 55.665528] Allocated by task 6846: [ 55.669571] ? padata_parallel_worker+0x420/0x420 [ 55.673694] save_stack_trace+0x16/0x20 [ 55.675308] process_one_work+0x79e/0x16c0 [ 55.679778] save_stack+0x43/0xd0 [ 55.683385] ? pwq_dec_nr_in_flight+0x2b0/0x2b0 [ 55.688231] kasan_kmalloc+0xc7/0xe0 [ 55.692208] worker_thread+0xcc/0xee0 [ 55.696429] __kmalloc+0x15b/0x7b0 [ 55.699863] kthread+0x338/0x400 [ 55.704511] tls_push_record+0xf6/0x14c0 [ 55.708200] ? process_one_work+0x16c0/0x16c0 [ 55.711988] tls_sw_push_pending_record+0xe/0x10 [ 55.715502] ? kthread_create_on_node+0xa0/0xa0 [ 55.718852] tls_push_pending_closed_record+0xc5/0x120 [ 55.722894] ret_from_fork+0x24/0x30 [ 55.728145] tls_sk_proto_close+0x56d/0x790 [ 55.732876] Code: [ 55.737523] inet_release+0xd9/0x1c0 [ 55.742784] Bad RIP value. [ 55.746466] inet6_release+0x46/0x60 [ 55.752902] __sock_release+0xc2/0x2a0 [ 55.756591] RIP: (null) RSP: ffff8880a9c7fc90 [ 55.759769] sock_close+0x10/0x20 [ 55.763459] CR2: 0000000000000000 [ 55.767323] __fput+0x232/0x750 [ 55.772677] ---[ end trace 5ecd986d7662870e ]--- [ 55.776126] ____fput+0x9/0x10 [ 55.779554] Kernel panic - not syncing: Fatal exception in interrupt [ 55.782812] task_work_run+0xe5/0x170 [ 55.800988] exit_to_usermode_loop+0x16a/0x1b0 [ 55.805565] do_syscall_64+0x416/0x5b0 [ 55.809463] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 55.814634] [ 55.816263] Freed by task 6846: [ 55.819532] save_stack_trace+0x16/0x20 [ 55.823501] save_stack+0x43/0xd0 [ 55.826951] kasan_slab_free+0x71/0xc0 [ 55.830820] kfree+0xcc/0x270 [ 55.833906] tls_push_record+0xd32/0x14c0 [ 55.838048] tls_sw_push_pending_record+0xe/0x10 [ 55.842802] tls_push_pending_closed_record+0xc5/0x120 [ 55.848063] tls_sk_proto_close+0x56d/0x790 [ 55.852380] inet_release+0xd9/0x1c0 [ 55.856085] inet6_release+0x46/0x60 [ 55.859796] __sock_release+0xc2/0x2a0 [ 55.863682] sock_close+0x10/0x20 [ 55.867137] __fput+0x232/0x750 [ 55.870395] ____fput+0x9/0x10 [ 55.873582] task_work_run+0xe5/0x170 [ 55.877370] exit_to_usermode_loop+0x16a/0x1b0 [ 55.881933] do_syscall_64+0x416/0x5b0 [ 55.885802] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 55.890970] [ 55.892678] The buggy address belongs to the object at ffff88808815e700 [ 55.892678] which belongs to the cache kmalloc-256 of size 256 [ 55.905313] The buggy address is located 88 bytes inside of [ 55.905313] 256-byte region [ffff88808815e700, ffff88808815e800) [ 55.917091] The buggy address belongs to the page: [ 55.922020] page:ffffea0002205780 count:1 mapcount:0 mapping:ffff88808815e0c0 index:0x0 [ 55.930142] flags: 0x1fffc0000000100(slab) [ 55.934371] raw: 01fffc0000000100 ffff88808815e0c0 0000000000000000 000000010000000c [ 55.942228] raw: ffffea0002a1e7a0 ffffea0002a24560 ffff8880aa8007c0 0000000000000000 [ 55.950084] page dumped because: kasan: bad access detected [ 55.955770] [ 55.957378] Memory state around the buggy address: [ 55.962299] ffff88808815e600: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 55.969637] ffff88808815e680: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc [ 55.976973] >ffff88808815e700: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 55.984319] ^ [ 55.990541] ffff88808815e780: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 55.997876] ffff88808815e800: fc fc fc fc fc fc fc fc 00 00 00 00 00 00 00 00 [ 56.005298] ================================================================== [ 56.014123] Kernel Offset: disabled [ 56.017793] Rebooting in 86400 seconds..