program: r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0xfffffffb}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) socket$nl_route(0x10, 0x3, 0x0) (async) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x1c, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x0, {}, [@NHA_BLACKHOLE={0x4}]}, 0x1c}}, 0x0) sendmsg$nl_route(r1, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=@ipv6_newrule={0x2c, 0x18, 0x409, 0x0, 0x0, {}, [@FIB_RULE_POLICY=@FRA_GOTO={0x8, 0x1e, 0x1}, @FIB_RULE_POLICY=@FRA_SPORT_RANGE={0x8, 0x17, {0x4e21, 0x4e24}}]}, 0x2c}}, 0x0) (async) sendmsg$nl_route(r1, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=@ipv6_newrule={0x2c, 0x18, 0x409, 0x0, 0x0, {}, [@FIB_RULE_POLICY=@FRA_GOTO={0x8, 0x1e, 0x1}, @FIB_RULE_POLICY=@FRA_SPORT_RANGE={0x8, 0x17, {0x4e21, 0x4e24}}]}, 0x2c}}, 0x0) r3 = socket$inet6(0xa, 0x3, 0x4) setsockopt$inet6_MCAST_MSFILTER(r3, 0x29, 0x30, &(0x7f0000000800)={0x1, {{0xa, 0x0, 0x0, @mcast2}}, 0x0, 0x4000}, 0x90) (async) setsockopt$inet6_MCAST_MSFILTER(r3, 0x29, 0x30, &(0x7f0000000800)={0x1, {{0xa, 0x0, 0x0, @mcast2}}, 0x0, 0x4000}, 0x90) r4 = socket$nl_route(0x10, 0x3, 0x0) socket$igmp(0x2, 0x3, 0x2) (async) r5 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_ADD_VIF(r5, 0x0, 0xca, &(0x7f0000000000)={0x0, 0x1, 0x2, 0x0, @vifc_lcl_ifindex, @local}, 0x10) r6 = socket(0x10, 0x803, 0x0) sendto(r6, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) (async) sendto(r6, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) add_key(&(0x7f0000000040)='rxrpc\x00', 0x0, &(0x7f0000000180)="0000000000000002ff69000000000001000000c000000006000200861fa72e5b01504104bfeacdd5a9007d167c71e3b8a93aa64d957a684161c833020a6da8881fb79e07000000000000002c76ecc7a56843a85f7df51293f0eb84ef8f0f07342db3b0e5a5647b7bed1fbf069ca713670adf7d9fb6d2600fd9c1981fe9f095cfe9d2fe1e1e34f6096bf02543747b2c792890f07c0da0fa25e6101062e6c9176a70e41698814a213711764f88495994cfd8a57c1e13f6b5298e7ab3a2bfb58dde34d58536633c27882e51ced17d67999b00094461", 0xd4, 0xffffffffffffffff) (async) add_key(&(0x7f0000000040)='rxrpc\x00', 0x0, &(0x7f0000000180)="0000000000000002ff69000000000001000000c000000006000200861fa72e5b01504104bfeacdd5a9007d167c71e3b8a93aa64d957a684161c833020a6da8881fb79e07000000000000002c76ecc7a56843a85f7df51293f0eb84ef8f0f07342db3b0e5a5647b7bed1fbf069ca713670adf7d9fb6d2600fd9c1981fe9f095cfe9d2fe1e1e34f6096bf02543747b2c792890f07c0da0fa25e6101062e6c9176a70e41698814a213711764f88495994cfd8a57c1e13f6b5298e7ab3a2bfb58dde34d58536633c27882e51ced17d67999b00094461", 0xd4, 0xffffffffffffffff) r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) r8 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0) inotify_add_watch(0xffffffffffffffff, &(0x7f0000000340)='./file0\x00', 0x1) r9 = dup3(r8, r7, 0x0) ioctl$BINDER_WRITE_READ(r9, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0}) recvmmsg(r6, &(0x7f0000002040)=[{{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000a00)=""/178, 0xb2}], 0x1}, 0x2}, {{0x0, 0x0, 0x0}, 0x9}], 0x2, 0x40000022, 0x0) recvmmsg(r6, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x9a}, {&(0x7f00000001c0)=""/17, 0x11}], 0x8, &(0x7f0000000540)=""/191, 0xbf}}], 0x1, 0x2120, &(0x7f0000003700)={0x77359400}) socket(0x200000000000011, 0x2, 0x0) (async) r10 = socket(0x200000000000011, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=@newlink={0x28, 0x10, 0x1, 0x0, 0xffffffff, {0x0, 0x0, 0x74, r11, 0x0, 0x11203}, [@IFLA_NUM_TX_QUEUES={0x8}]}, 0x28}}, 0x44) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=@getlink={0x28, 0x12, 0x1, 0x70bd25, 0x0, {0x7}, [@IFLA_TARGET_NETNSID={0x8, 0x2e, 0x2}]}, 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x0) (async) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=@getlink={0x28, 0x12, 0x1, 0x70bd25, 0x0, {0x7}, [@IFLA_TARGET_NETNSID={0x8, 0x2e, 0x2}]}, 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x0) [ 91.582724][ T5304] Bluetooth: hci0: command tx timeout [ 91.806481][ T5327] ================================================================== [ 91.810104][ T5327] BUG: KASAN: slab-out-of-bounds in fib6_add_rt2node+0x349c/0x3500 [ 91.813713][ T5327] Read of size 1 at addr ffff88803fc8f2de by task syz.0.0/5327 [ 91.816839][ T5327] [ 91.817899][ T5327] CPU: 0 UID: 0 PID: 5327 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 91.817914][ T5327] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 91.817920][ T5327] Call Trace: [ 91.817928][ T5327] [ 91.817933][ T5327] dump_stack_lvl+0xe8/0x150 [ 91.817951][ T5327] print_report+0xba/0x230 [ 91.817964][ T5327] ? fib6_add_rt2node+0x349c/0x3500 [ 91.817976][ T5327] kasan_report+0x117/0x150 [ 91.817985][ T5327] ? stack_trace_save+0xa9/0x100 [ 91.817996][ T5327] ? fib6_add_rt2node+0x349c/0x3500 [ 91.818005][ T5327] fib6_add_rt2node+0x349c/0x3500 [ 91.818013][ T5327] ? __lock_acquire+0x6b5/0x2cf0 [ 91.818024][ T5327] ? __pfx_fib6_add_rt2node+0x10/0x10 [ 91.818032][ T5327] ? do_raw_spin_lock+0x12b/0x2f0 [ 91.818040][ T5327] ? fib6_add+0x84b/0x18c0 [ 91.818050][ T5327] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 91.818064][ T5327] fib6_add+0x910/0x18c0 [ 91.818078][ T5327] ? do_raw_spin_lock+0x12b/0x2f0 [ 91.818090][ T5327] ? __pfx_fib6_add+0x10/0x10 [ 91.818103][ T5327] ? ip6_route_add+0xc9/0x1b0 [ 91.818119][ T5327] ip6_route_add+0xde/0x1b0 [ 91.818133][ T5327] inet6_rtm_newroute+0x268/0x19e0 [ 91.818147][ T5327] ? kasan_quarantine_put+0xbb/0x1f0 [ 91.818158][ T5327] ? lockdep_hardirqs_on+0x7a/0x110 [ 91.818173][ T5327] ? __pfx_inet6_rtm_newroute+0x10/0x10 [ 91.818180][ T5327] ? kmem_cache_free+0x195/0x610 [ 91.818188][ T5327] ? nlmon_xmit+0xb0/0x100 [ 91.818233][ T5327] ? __lock_acquire+0x6b5/0x2cf0 [ 91.818243][ T5327] ? __local_bh_enable_ip+0xd0/0x130 [ 91.818255][ T5327] ? lockdep_hardirqs_on+0x7a/0x110 [ 91.818274][ T5327] ? __pfx_inet6_rtm_newroute+0x10/0x10 [ 91.818286][ T5327] rtnetlink_rcv_msg+0x7d5/0xbe0 [ 91.818301][ T5327] ? rtnetlink_rcv_msg+0x1b9/0xbe0 [ 91.818313][ T5327] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 91.818325][ T5327] ? ref_tracker_free+0x693/0x840 [ 91.818334][ T5327] ? __copy_skb_header+0xa3/0x4a0 [ 91.818345][ T5327] ? __pfx_ref_tracker_free+0x10/0x10 [ 91.818356][ T5327] ? __skb_clone+0x63/0x7a0 [ 91.818366][ T5327] netlink_rcv_skb+0x232/0x4b0 [ 91.818379][ T5327] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 91.818392][ T5327] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 91.818404][ T5327] ? netlink_deliver_tap+0x2e/0x1b0 [ 91.818419][ T5327] netlink_unicast+0x80f/0x9b0 [ 91.818432][ T5327] ? __pfx_netlink_unicast+0x10/0x10 [ 91.818442][ T5327] ? __alloc_skb+0x193/0x390 [ 91.818454][ T5327] ? netlink_sendmsg+0x650/0xb40 [ 91.818465][ T5327] ? skb_put+0x11b/0x210 [ 91.818479][ T5327] netlink_sendmsg+0x813/0xb40 [ 91.818493][ T5327] ? __pfx_netlink_sendmsg+0x10/0x10 [ 91.818506][ T5327] ? aa_sock_msg_perm+0xf1/0x1b0 [ 91.818520][ T5327] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 91.818528][ T5327] ? __pfx_netlink_sendmsg+0x10/0x10 [ 91.818536][ T5327] ____sys_sendmsg+0xa68/0xad0 [ 91.818550][ T5327] ? __might_fault+0xaf/0x130 [ 91.818560][ T5327] ? __pfx_____sys_sendmsg+0x10/0x10 [ 91.818575][ T5327] ? import_iovec+0x73/0xa0 [ 91.818592][ T5327] ___sys_sendmsg+0x2a5/0x360 [ 91.818606][ T5327] ? __lock_acquire+0x6b5/0x2cf0 [ 91.818617][ T5327] ? __pfx____sys_sendmsg+0x10/0x10 [ 91.818632][ T5327] ? futex_wait+0x29a/0x380 [ 91.818650][ T5327] ? __fget_files+0x2a/0x420 [ 91.818664][ T5327] ? __fget_files+0x3a0/0x420 [ 91.818680][ T5327] __x64_sys_sendmsg+0x1bd/0x2a0 [ 91.818695][ T5327] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 91.818707][ T5327] ? rcu_is_watching+0x15/0xb0 [ 91.818720][ T5327] do_syscall_64+0x14d/0xf80 [ 91.818734][ T5327] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 91.818745][ T5327] ? trace_irq_disable+0x37/0x100 [ 91.818757][ T5327] ? clear_bhb_loop+0x40/0x90 [ 91.818768][ T5327] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 91.818777][ T5327] RIP: 0033:0x7f876819bf79 [ 91.818788][ T5327] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 91.818804][ T5327] RSP: 002b:00007f87645f5028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 91.818818][ T5327] RAX: ffffffffffffffda RBX: 00007f8768415fa0 RCX: 00007f876819bf79 [ 91.818825][ T5327] RDX: 0000000000000000 RSI: 0000200000004380 RDI: 0000000000000004 [ 91.818832][ T5327] RBP: 00007f87682327e0 R08: 0000000000000000 R09: 0000000000000000 [ 91.818838][ T5327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 91.818844][ T5327] R13: 00007f8768416038 R14: 00007f8768415fa0 R15: 00007ffd0a19aff8 [ 91.818857][ T5327] [ 91.818860][ T5327] [ 92.006380][ T5327] Allocated by task 5328: [ 92.008273][ T5327] kasan_save_track+0x3e/0x80 [ 92.010428][ T5327] __kasan_kmalloc+0x93/0xb0 [ 92.012564][ T5327] __kmalloc_noprof+0x40c/0x7e0 [ 92.014724][ T5327] fib6_info_alloc+0x30/0xf0 [ 92.016720][ T5327] ip6_route_info_create+0x142/0x860 [ 92.019010][ T5327] ip6_route_add+0x49/0x1b0 [ 92.021053][ T5327] inet6_rtm_newroute+0x268/0x19e0 [ 92.023243][ T5327] rtnetlink_rcv_msg+0x7d5/0xbe0 [ 92.025420][ T5327] netlink_rcv_skb+0x232/0x4b0 [ 92.027559][ T5327] netlink_unicast+0x80f/0x9b0 [ 92.029630][ T5327] netlink_sendmsg+0x813/0xb40 [ 92.031815][ T5327] ____sys_sendmsg+0xa68/0xad0 [ 92.033885][ T5327] ___sys_sendmsg+0x2a5/0x360 [ 92.035910][ T5327] __x64_sys_sendmsg+0x1bd/0x2a0 [ 92.037938][ T5327] do_syscall_64+0x14d/0xf80 [ 92.039934][ T5327] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 92.042458][ T5327] [ 92.043527][ T5327] The buggy address belongs to the object at ffff88803fc8f200 [ 92.043527][ T5327] which belongs to the cache kmalloc-256 of size 256 [ 92.049334][ T5327] The buggy address is located 22 bytes to the right of [ 92.049334][ T5327] allocated 200-byte region [ffff88803fc8f200, ffff88803fc8f2c8) [ 92.055469][ T5327] [ 92.056577][ T5327] The buggy address belongs to the physical page: [ 92.059310][ T5327] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3fc8f [ 92.063050][ T5327] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff) [ 92.066053][ T5327] page_type: f5(slab) [ 92.067815][ T5327] raw: 04fff00000000000 ffff88801a841b40 ffffea0001107a00 dead000000000006 [ 92.071381][ T5327] raw: 0000000000000000 0000000080080008 00000000f5000000 0000000000000000 [ 92.075103][ T5327] page dumped because: kasan: bad access detected [ 92.077802][ T5327] page_owner tracks the page as allocated [ 92.080321][ T5327] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 1, tgid 1 (swapper/0), ts 24735529661, free_ts 24735517529 [ 92.087964][ T5327] post_alloc_hook+0x228/0x280 [ 92.089981][ T5327] get_page_from_freelist+0x24dc/0x2580 [ 92.092363][ T5327] __alloc_frozen_pages_noprof+0x18d/0x380 [ 92.094822][ T5327] alloc_pages_mpol+0x232/0x4a0 [ 92.096833][ T5327] allocate_slab+0x86/0x3a0 [ 92.098671][ T5327] ___slab_alloc+0xd90/0x1790 [ 92.100726][ T5327] __slab_alloc+0x65/0x100 [ 92.102618][ T5327] __kmalloc_node_noprof+0x5bc/0x7f0 [ 92.104832][ T5327] __vmalloc_node_range_noprof+0x5d5/0x1730 [ 92.107395][ T5327] vzalloc_noprof+0xb2/0xe0 [ 92.109407][ T5327] tpg_alloc+0x69/0x870 [ 92.111263][ T5327] vivid_probe+0x1bc9/0x72b0 [ 92.113345][ T5327] platform_probe+0xf9/0x190 [ 92.115307][ T5327] really_probe+0x267/0xaf0 [ 92.117300][ T5327] __driver_probe_device+0x18c/0x320 [ 92.119559][ T5327] driver_probe_device+0x4f/0x240 [ 92.121761][ T5327] page last free pid 1 tgid 1 stack trace: [ 92.124266][ T5327] __free_frozen_pages+0xbf8/0xd70 [ 92.126421][ T5327] __kasan_populate_vmalloc+0x1b2/0x1d0 [ 92.128827][ T5327] alloc_vmap_area+0xdbc/0x14a0 [ 92.130931][ T5327] __get_vm_area_node+0x1f8/0x300 [ 92.133124][ T5327] __vmalloc_node_range_noprof+0x372/0x1730 [ 92.135571][ T5327] vzalloc_noprof+0xb2/0xe0 [ 92.137552][ T5327] tpg_alloc+0x69/0x870 [ 92.139334][ T5327] vivid_probe+0x1bc9/0x72b0 [ 92.141440][ T5327] platform_probe+0xf9/0x190 [ 92.143384][ T5327] really_probe+0x267/0xaf0 [ 92.145579][ T5327] __driver_probe_device+0x18c/0x320 [ 92.147857][ T5327] driver_probe_device+0x4f/0x240 [ 92.149980][ T5327] __driver_attach+0x349/0x640 [ 92.152043][ T5327] bus_for_each_dev+0x23b/0x2c0 [ 92.154111][ T5327] bus_add_driver+0x345/0x670 [ 92.156197][ T5327] driver_register+0x23a/0x320 [ 92.158304][ T5327] [ 92.159344][ T5327] Memory state around the buggy address: [ 92.161795][ T5327] ffff88803fc8f180: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 92.165204][ T5327] ffff88803fc8f200: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 92.168480][ T5327] >ffff88803fc8f280: 00 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc [ 92.172068][ T5327] ^ [ 92.174971][ T5327] ffff88803fc8f300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 92.178428][ T5327] ffff88803fc8f380: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 92.181908][ T5327] ================================================================== [ 92.185506][ T5327] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 92.188653][ T5327] CPU: 0 UID: 0 PID: 5327 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 92.192617][ T5327] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 92.197037][ T5327] Call Trace: [ 92.198521][ T5327] [ 92.199807][ T5327] vpanic+0x1e0/0x670 [ 92.201628][ T5327] panic+0xc5/0xd0 [ 92.203308][ T5327] ? __pfx_panic+0x10/0x10 [ 92.205265][ T5327] ? fib6_add_rt2node+0x349c/0x3500 [ 92.207463][ T5327] ? fib6_add_rt2node+0x349c/0x3500 [ 92.209608][ T5327] check_panic_on_warn+0x89/0xb0 [ 92.211743][ T5327] ? fib6_add_rt2node+0x349c/0x3500 [ 92.214030][ T5327] end_report+0x6f/0x140 [ 92.215927][ T5327] kasan_report+0x128/0x150 [ 92.217958][ T5327] ? stack_trace_save+0xa9/0x100 [ 92.220308][ T5327] ? fib6_add_rt2node+0x349c/0x3500 [ 92.222704][ T5327] fib6_add_rt2node+0x349c/0x3500 [ 92.224730][ T5327] ? __lock_acquire+0x6b5/0x2cf0 [ 92.226649][ T5327] ? __pfx_fib6_add_rt2node+0x10/0x10 [ 92.228817][ T5327] ? do_raw_spin_lock+0x12b/0x2f0 [ 92.230792][ T5327] ? fib6_add+0x84b/0x18c0 [ 92.232562][ T5327] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 92.234672][ T5327] fib6_add+0x910/0x18c0 [ 92.236483][ T5327] ? do_raw_spin_lock+0x12b/0x2f0 [ 92.238776][ T5327] ? __pfx_fib6_add+0x10/0x10 [ 92.240915][ T5327] ? ip6_route_add+0xc9/0x1b0 [ 92.243030][ T5327] ip6_route_add+0xde/0x1b0 [ 92.245014][ T5327] inet6_rtm_newroute+0x268/0x19e0 [ 92.247430][ T5327] ? kasan_quarantine_put+0xbb/0x1f0 [ 92.249732][ T5327] ? lockdep_hardirqs_on+0x7a/0x110 [ 92.252020][ T5327] ? __pfx_inet6_rtm_newroute+0x10/0x10 [ 92.254360][ T5327] ? kmem_cache_free+0x195/0x610 [ 92.256530][ T5327] ? nlmon_xmit+0xb0/0x100 [ 92.258474][ T5327] ? __lock_acquire+0x6b5/0x2cf0 [ 92.260759][ T5327] ? __local_bh_enable_ip+0xd0/0x130 [ 92.263015][ T5327] ? lockdep_hardirqs_on+0x7a/0x110 [ 92.265345][ T5327] ? __pfx_inet6_rtm_newroute+0x10/0x10 [ 92.267733][ T5327] rtnetlink_rcv_msg+0x7d5/0xbe0 [ 92.269860][ T5327] ? rtnetlink_rcv_msg+0x1b9/0xbe0 [ 92.272165][ T5327] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 92.274476][ T5327] ? ref_tracker_free+0x693/0x840 [ 92.276705][ T5327] ? __copy_skb_header+0xa3/0x4a0 [ 92.278879][ T5327] ? __pfx_ref_tracker_free+0x10/0x10 [ 92.281271][ T5327] ? __skb_clone+0x63/0x7a0 [ 92.283340][ T5327] netlink_rcv_skb+0x232/0x4b0 [ 92.285532][ T5327] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 92.287987][ T5327] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 92.290278][ T5327] ? netlink_deliver_tap+0x2e/0x1b0 [ 92.292525][ T5327] netlink_unicast+0x80f/0x9b0 [ 92.294552][ T5327] ? __pfx_netlink_unicast+0x10/0x10 [ 92.296745][ T5327] ? __alloc_skb+0x193/0x390 [ 92.298721][ T5327] ? netlink_sendmsg+0x650/0xb40 [ 92.300966][ T5327] ? skb_put+0x11b/0x210 [ 92.302818][ T5327] netlink_sendmsg+0x813/0xb40 [ 92.304890][ T5327] ? __pfx_netlink_sendmsg+0x10/0x10 [ 92.307069][ T5327] ? aa_sock_msg_perm+0xf1/0x1b0 [ 92.309182][ T5327] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 92.311469][ T5327] ? __pfx_netlink_sendmsg+0x10/0x10 [ 92.313776][ T5327] ____sys_sendmsg+0xa68/0xad0 [ 92.315816][ T5327] ? __might_fault+0xaf/0x130 [ 92.317828][ T5327] ? __pfx_____sys_sendmsg+0x10/0x10 [ 92.320238][ T5327] ? import_iovec+0x73/0xa0 [ 92.322270][ T5327] ___sys_sendmsg+0x2a5/0x360 [ 92.324347][ T5327] ? __lock_acquire+0x6b5/0x2cf0 [ 92.326499][ T5327] ? __pfx____sys_sendmsg+0x10/0x10 [ 92.328758][ T5327] ? futex_wait+0x29a/0x380 [ 92.330842][ T5327] ? __fget_files+0x2a/0x420 [ 92.332914][ T5327] ? __fget_files+0x3a0/0x420 [ 92.334933][ T5327] __x64_sys_sendmsg+0x1bd/0x2a0 [ 92.336907][ T5327] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 92.339309][ T5327] ? rcu_is_watching+0x15/0xb0 [ 92.341472][ T5327] do_syscall_64+0x14d/0xf80 [ 92.343603][ T5327] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 92.346249][ T5327] ? trace_irq_disable+0x37/0x100 [ 92.348545][ T5327] ? clear_bhb_loop+0x40/0x90 [ 92.350711][ T5327] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 92.353374][ T5327] RIP: 0033:0x7f876819bf79 [ 92.355389][ T5327] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 92.363845][ T5327] RSP: 002b:00007f87645f5028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 92.367575][ T5327] RAX: ffffffffffffffda RBX: 00007f8768415fa0 RCX: 00007f876819bf79 [ 92.371066][ T5327] RDX: 0000000000000000 RSI: 0000200000004380 RDI: 0000000000000004 [ 92.374600][ T5327] RBP: 00007f87682327e0 R08: 0000000000000000 R09: 0000000000000000 [ 92.378312][ T5327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 92.381930][ T5327] R13: 00007f8768416038 R14: 00007f8768415fa0 R15: 00007ffd0a19aff8 [ 92.385371][ T5327] [ 92.387305][ T5327] Kernel Offset: disabled [ 92.389100][ T5327] Rebooting in 86400 seconds..