[   58.768955] 8021q: adding VLAN 0 to HW filter on device bond0
[   58.838115] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   58.845503] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   58.877729] 8021q: adding VLAN 0 to HW filter on device team0
[   58.998895] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   59.359675] tipc: TX() has been purged, node left!
[   60.653290] device bridge_slave_1 left promiscuous mode
[   60.658989] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.676676] device bridge_slave_0 left promiscuous mode
[   60.682138] bridge0: port 1(bridge_slave_0) entered disabled state
[   61.726479] team0 (unregistering): Port device team_slave_1 removed
[   61.736458] team0 (unregistering): Port device team_slave_0 removed
[   61.746376] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   61.760658] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   61.794770] bond0 (unregistering): Released all slaves
Warning: Permanently added '10.128.10.32' (ECDSA) to the list of known hosts.
2020/02/12 13:23:24 parsed 1 programs
2020/02/12 13:23:24 executed programs: 0
[   66.251151] IPVS: ftp: loaded support on port[0] = 21
[   66.277813] IPVS: ftp: loaded support on port[0] = 21
[   66.291051] IPVS: ftp: loaded support on port[0] = 21
[   66.291743] IPVS: ftp: loaded support on port[0] = 21
[   66.303175] IPVS: ftp: loaded support on port[0] = 21
[   66.307735] IPVS: ftp: loaded support on port[0] = 21
[   66.749319] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.755764] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.765216] device bridge_slave_0 entered promiscuous mode
[   66.817248] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.823659] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.838197] device bridge_slave_1 entered promiscuous mode
[   66.891015] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.897434] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.908176] device bridge_slave_0 entered promiscuous mode
[   66.919694] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.926075] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.935135] device bridge_slave_0 entered promiscuous mode
[   66.946323] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.952699] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.960862] device bridge_slave_0 entered promiscuous mode
[   66.970746] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.977226] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.984709] device bridge_slave_0 entered promiscuous mode
[   66.993291] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.999693] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.007269] device bridge_slave_1 entered promiscuous mode
[   67.015743] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.022222] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.030492] device bridge_slave_1 entered promiscuous mode
[   67.039403] bridge0: port 1(bridge_slave_0) entered blocking state
[   67.045799] bridge0: port 1(bridge_slave_0) entered disabled state
[   67.053719] device bridge_slave_0 entered promiscuous mode
[   67.063075] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.069493] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.076559] device bridge_slave_1 entered promiscuous mode
[   67.084508] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.090891] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.104535] device bridge_slave_1 entered promiscuous mode
[   67.112690] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.119156] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.136449] device bridge_slave_1 entered promiscuous mode
[   67.253911] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   67.298364] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   67.309694] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   67.324246] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   67.336136] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   67.352527] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   67.364147] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   67.377914] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   67.402640] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   67.416221] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   67.435732] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   67.455763] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   67.537395] team0: Port device team_slave_0 added
[   67.551181] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   67.563754] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   67.598066] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   67.621439] team0: Port device team_slave_1 added
[   67.638392] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   67.652994] team0: Port device team_slave_0 added
[   67.679214] team0: Port device team_slave_0 added
[   67.696303] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   67.709897] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   67.728407] team0: Port device team_slave_1 added
[   67.743182] team0: Port device team_slave_0 added
[   67.752016] team0: Port device team_slave_1 added
[   67.759958] team0: Port device team_slave_0 added
[   67.778454] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   67.792843] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   67.804569] team0: Port device team_slave_1 added
[   67.815575] team0: Port device team_slave_1 added
[   67.824787] team0: Port device team_slave_0 added
[   67.838947] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   67.848787] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   67.866474] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   67.875000] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   67.882984] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   67.900269] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   67.917517] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   67.928088] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   67.941244] team0: Port device team_slave_1 added
[   67.954019] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   67.973166] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   67.984929] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   67.992778] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   68.000672] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   68.008118] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   68.015862] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   68.035192] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   68.051015] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   68.064656] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   68.072552] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   68.080101] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   68.087860] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   68.095526] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   68.103210] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   68.113888] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   68.122390] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   68.136739] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   68.153064] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   68.165637] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   68.182214] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   68.202151] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   68.220353] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   68.228153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   68.270863] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   68.281448] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   68.538684] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.545241] bridge0: port 2(bridge_slave_1) entered forwarding state
[   68.551911] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.558297] bridge0: port 1(bridge_slave_0) entered forwarding state
[   68.606826] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.613235] bridge0: port 2(bridge_slave_1) entered forwarding state
[   68.619893] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.626258] bridge0: port 1(bridge_slave_0) entered forwarding state
[   68.679333] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.685744] bridge0: port 2(bridge_slave_1) entered forwarding state
[   68.692416] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.698801] bridge0: port 1(bridge_slave_0) entered forwarding state
[   68.715827] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.722234] bridge0: port 2(bridge_slave_1) entered forwarding state
[   68.728886] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.735825] bridge0: port 1(bridge_slave_0) entered forwarding state
[   68.793817] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.800235] bridge0: port 2(bridge_slave_1) entered forwarding state
[   68.806873] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.813289] bridge0: port 1(bridge_slave_0) entered forwarding state
[   68.867777] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.874185] bridge0: port 2(bridge_slave_1) entered forwarding state
[   68.880844] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.887246] bridge0: port 1(bridge_slave_0) entered forwarding state
[   69.575051] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   69.582836] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   69.598839] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   69.608904] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   69.616009] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   69.623393] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   70.392298] 8021q: adding VLAN 0 to HW filter on device bond0
[   70.412352] 8021q: adding VLAN 0 to HW filter on device bond0
[   70.431077] 8021q: adding VLAN 0 to HW filter on device bond0
[   70.585476] 8021q: adding VLAN 0 to HW filter on device bond0
[   70.609461] 8021q: adding VLAN 0 to HW filter on device bond0
[   70.627676] 8021q: adding VLAN 0 to HW filter on device bond0
[   70.706183] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   70.714337] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   70.735259] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   70.761125] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   70.814722] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   70.827101] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   70.885852] 8021q: adding VLAN 0 to HW filter on device team0
[   70.908927] 8021q: adding VLAN 0 to HW filter on device team0
[   70.953441] 8021q: adding VLAN 0 to HW filter on device team0
[   70.983531] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   70.993951] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   71.021299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   71.029288] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   71.061172] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   71.068251] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   71.191641] 8021q: adding VLAN 0 to HW filter on device team0
[   71.205793] 8021q: adding VLAN 0 to HW filter on device team0
[   71.219651] 8021q: adding VLAN 0 to HW filter on device team0
2020/02/12 13:23:30 executed programs: 6
[   73.578660] ==================================================================
[   73.586199] BUG: KASAN: use-after-free in __list_del_entry_valid+0xf1/0xf3
[   73.593197] Read of size 8 at addr ffff8881c3d191e0 by task syz-executor1/6676
[   73.600538] 
[   73.602156] CPU: 0 PID: 6676 Comm: syz-executor1 Not tainted 5.6.0-rc1-syzkaller #0
[   73.609933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   73.619270] Call Trace:
[   73.621852]  dump_stack+0x12f/0x187
[   73.625472]  ? __list_del_entry_valid+0xf1/0xf3
[   73.630132]  print_address_description.constprop.8+0x3b/0x60
[   73.635926]  ? __list_del_entry_valid+0xf1/0xf3
[   73.640580]  ? __list_del_entry_valid+0xf1/0xf3
[   73.645241]  __kasan_report.cold.11+0x1b/0x32
[   73.649720]  ? __list_del_entry_valid+0xf1/0xf3
[   73.654445]  kasan_report+0x12/0x20
[   73.658080]  __asan_report_load8_noabort+0x14/0x20
[   73.663173]  __list_del_entry_valid+0xf1/0xf3
[   73.667783]  cma_cancel_operation+0x2f7/0x9c0
[   73.672274]  rdma_destroy_id+0xc2/0xbb0
[   73.676231]  ? complete+0x62/0x80
[   73.679688]  ucma_close+0x101/0x2d0
[   73.683315]  __fput+0x25a/0x780
[   73.686584]  ? _raw_spin_unlock_irq+0x22/0x70
[   73.691086]  ____fput+0x9/0x10
[   73.694268]  task_work_run+0x10e/0x190
[   73.698142]  do_exit+0x9ed/0x2e30
[   73.701598]  ? mm_update_next_owner+0x710/0x710
[   73.706262]  ? get_signal+0x2c4/0x1d00
[   73.710399]  ? lock_downgrade+0x900/0x900
[   73.714539]  ? _raw_spin_unlock_irq+0x22/0x70
[   73.719028]  ? get_signal+0x2c4/0x1d00
[   73.722918]  do_group_exit+0xf4/0x2e0
[   73.726714]  get_signal+0x368/0x1d00
[   73.730418]  ? _raw_spin_unlock_irq+0x22/0x70
[   73.734912]  ? finish_task_switch+0x12a/0x630
[   73.739399]  ? lockdep_hardirqs_on+0x42d/0x5d0
[   73.743976]  do_signal+0x87/0x16c0
[   73.747506]  ? finish_task_switch+0x12a/0x630
[   73.751983]  ? finish_task_switch+0xf3/0x630
[   73.756382]  ? setup_sigcontext+0x7d0/0x7d0
[   73.760694]  ? __x64_sys_futex+0x1cb/0x390
[   73.764914]  ? rcu_read_lock_any_held.part.8+0x50/0x50
[   73.770181]  ? __sched_text_start+0x8/0x8
[   73.774322]  ? exit_to_usermode_loop+0x3a/0x210
[   73.778984]  ? do_syscall_64+0x50b/0x600
[   73.783033]  ? lockdep_hardirqs_on+0x42d/0x5d0
[   73.787603]  ? exit_to_usermode_loop+0x3a/0x210
[   73.792409]  ? trace_hardirqs_on+0x28/0x180
[   73.796722]  exit_to_usermode_loop+0x114/0x210
[   73.801296]  do_syscall_64+0x50b/0x600
[   73.805256]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   73.810541] RIP: 0033:0x455b59
[   73.813722] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   73.832632] RSP: 002b:00007fa9be818ce8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[   73.840327] RAX: fffffffffffffe00 RBX: 000000000072bf78 RCX: 0000000000455b59
[   73.847585] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000072bf78
[   73.854845] RBP: 000000000072bf78 R08: 0000000000000000 R09: 000000000072bf50
[   73.862115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   73.869381] R13: 00007ffe0e193def R14: 00007fa9be8199c0 R15: 0000000000000001
[   73.876653] 
[   73.878270] Allocated by task 6660:
[   73.881883]  save_stack+0x21/0x90
[   73.885323]  __kasan_kmalloc.constprop.7+0xc1/0xd0
[   73.890337]  kasan_kmalloc+0x9/0x10
[   73.893945]  kmem_cache_alloc_trace+0x15b/0x760
[   73.898607]  __rdma_create_id+0x5d/0x6e0
[   73.902658]  ucma_create_id+0x199/0x550
[   73.906648]  ucma_write+0x206/0x2e0
[   73.910263]  __vfs_write+0x61/0x110
[   73.913919]  vfs_write+0x191/0x4c0
[   73.917448]  ksys_write+0x197/0x220
[   73.921922]  __x64_sys_write+0x6e/0xb0
[   73.925788]  do_syscall_64+0xd0/0x600
[   73.929589]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   73.934760] 
[   73.936371] Freed by task 6660:
[   73.939633]  save_stack+0x21/0x90
[   73.943063]  __kasan_slab_free+0x11a/0x170
[   73.947276]  kasan_slab_free+0xe/0x10
[   73.951054]  kfree+0xfa/0x290
[   73.954138]  rdma_destroy_id+0x643/0xbb0
[   73.958175]  ucma_close+0x101/0x2d0
[   73.961776]  __fput+0x25a/0x780
[   73.965034]  ____fput+0x9/0x10
[   73.968205]  task_work_run+0x10e/0x190
[   73.972069]  do_exit+0x9ed/0x2e30
[   73.975501]  do_group_exit+0xf4/0x2e0
[   73.979278]  get_signal+0x368/0x1d00
[   73.982978]  do_signal+0x87/0x16c0
[   73.986495]  exit_to_usermode_loop+0x114/0x210
[   73.991067]  do_syscall_64+0x50b/0x600
[   73.994960]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   74.000132] 
[   74.001744] The buggy address belongs to the object at ffff8881c3d19000
[   74.001744]  which belongs to the cache kmalloc-2k of size 2048
[   74.014392] The buggy address is located 480 bytes inside of
[   74.014392]  2048-byte region [ffff8881c3d19000, ffff8881c3d19800)
[   74.026348] The buggy address belongs to the page:
[   74.031260] page:ffffea00070f4640 refcount:1 mapcount:0 mapping:ffff8881da000e00 index:0x0
[   74.039642] flags: 0x2fffc0000000200(slab)
[   74.043857] raw: 02fffc0000000200 ffffea00070f7988 ffffea0007064048 ffff8881da000e00
[   74.051832] raw: 0000000000000000 ffff8881c3d19000 0000000100000001 0000000000000000
[   74.059781] page dumped because: kasan: bad access detected
[   74.065470] 
[   74.067075] Memory state around the buggy address:
[   74.071985]  ffff8881c3d19080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   74.079332]  ffff8881c3d19100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   74.086683] >ffff8881c3d19180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   74.094019]                                                        ^
[   74.100493]  ffff8881c3d19200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   74.107831]  ffff8881c3d19280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   74.115169] ==================================================================
[   74.122513] Disabling lock debugging due to kernel taint
[   74.129658] Kernel panic - not syncing: panic_on_warn set ...
[   74.135595] CPU: 0 PID: 6676 Comm: syz-executor1 Tainted: G    B             5.6.0-rc1-syzkaller #0
[   74.144762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   74.154103] Call Trace:
[   74.156678]  dump_stack+0x12f/0x187
[   74.160294]  ? __list_del_entry_valid+0xb0/0xf3
[   74.165146]  panic+0x22a/0x4f5
[   74.168333]  ? add_taint.cold.7+0x11/0x11
[   74.172475]  ? do_raw_spin_unlock+0x54/0x260
[   74.176879]  ? do_raw_spin_unlock+0x54/0x260
[   74.181282]  ? __list_del_entry_valid+0xf1/0xf3
[   74.185945]  ? __list_del_entry_valid+0xf1/0xf3
[   74.190621]  end_report+0x47/0x4f
[   74.194059]  __kasan_report.cold.11+0xe/0x32
[   74.198495]  ? __list_del_entry_valid+0xf1/0xf3
[   74.203142]  kasan_report+0x12/0x20
[   74.206797]  __asan_report_load8_noabort+0x14/0x20
[   74.211708]  __list_del_entry_valid+0xf1/0xf3
[   74.216181]  cma_cancel_operation+0x2f7/0x9c0
[   74.220662]  rdma_destroy_id+0xc2/0xbb0
[   74.224620]  ? complete+0x62/0x80
[   74.228067]  ucma_close+0x101/0x2d0
[   74.231729]  __fput+0x25a/0x780
[   74.235079]  ? _raw_spin_unlock_irq+0x22/0x70
[   74.239555]  ____fput+0x9/0x10
[   74.242731]  task_work_run+0x10e/0x190
[   74.246608]  do_exit+0x9ed/0x2e30
[   74.250047]  ? mm_update_next_owner+0x710/0x710
[   74.254708]  ? get_signal+0x2c4/0x1d00
[   74.258592]  ? lock_downgrade+0x900/0x900
[   74.262727]  ? _raw_spin_unlock_irq+0x22/0x70
[   74.267200]  ? get_signal+0x2c4/0x1d00
[   74.271121]  do_group_exit+0xf4/0x2e0
[   74.274971]  get_signal+0x368/0x1d00
[   74.278685]  ? _raw_spin_unlock_irq+0x22/0x70
[   74.283164]  ? finish_task_switch+0x12a/0x630
[   74.287652]  ? lockdep_hardirqs_on+0x42d/0x5d0
[   74.292228]  do_signal+0x87/0x16c0
[   74.295756]  ? finish_task_switch+0x12a/0x630
[   74.300247]  ? finish_task_switch+0xf3/0x630
[   74.304654]  ? setup_sigcontext+0x7d0/0x7d0
[   74.308964]  ? __x64_sys_futex+0x1cb/0x390
[   74.313290]  ? rcu_read_lock_any_held.part.8+0x50/0x50
[   74.318550]  ? __sched_text_start+0x8/0x8
[   74.322680]  ? exit_to_usermode_loop+0x3a/0x210
[   74.327325]  ? do_syscall_64+0x50b/0x600
[   74.331368]  ? lockdep_hardirqs_on+0x42d/0x5d0
[   74.335957]  ? exit_to_usermode_loop+0x3a/0x210
[   74.340612]  ? trace_hardirqs_on+0x28/0x180
[   74.344921]  exit_to_usermode_loop+0x114/0x210
[   74.349501]  do_syscall_64+0x50b/0x600
[   74.353371]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   74.358534] RIP: 0033:0x455b59
[   74.361707] Code: Bad RIP value.
[   74.365047] RSP: 002b:00007fa9be818ce8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[   74.372731] RAX: fffffffffffffe00 RBX: 000000000072bf78 RCX: 0000000000455b59
[   74.379976] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000072bf78
[   74.387222] RBP: 000000000072bf78 R08: 0000000000000000 R09: 000000000072bf50
[   74.394591] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   74.401849] R13: 00007ffe0e193def R14: 00007fa9be8199c0 R15: 0000000000000001
[   74.409729] Kernel Offset: disabled
[   74.413339] Rebooting in 86400 seconds..