[�[36minfo�[39;49m] Using makefile-style concurrent boot in runlevel 2.
[ 24.420684] audit: type=1800 audit(1544463735.542:21): pid=5796 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="bootlogs" dev="sda1" ino=2419 res=0
[ 24.447686] audit: type=1800 audit(1544463735.542:22): pid=5796 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="motd" dev="sda1" ino=2447 res=0
[....] Starting enhanced syslogd: rsyslogd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[....] Starting periodic command scheduler: cron�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[....] Starting OpenBSD Secure Shell server: sshd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
Debian GNU/Linux 7 syzkaller ttyS0
Warning: Permanently added '10.128.0.48' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [ 36.879370] Started in network mode
[ 36.883106] Own node identity 00000000000000000000000000000001, cluster identity 4711
[ 36.891699] New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00aa
[ 36.898981] ==================================================================
[ 36.906406] BUG: KASAN: use-after-free in kfree_skb+0xb7/0x580
[ 36.912355] Read of size 4 at addr ffff8881c39211a4 by task syz-executor108/5949
[ 36.919861]
[ 36.921472] CPU: 1 PID: 5949 Comm: syz-executor108 Not tainted 4.20.0-rc6+ #223
[ 36.928892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 36.938220] Call Trace:
[ 36.940785] dump_stack+0x244/0x39d
[ 36.944390] ? dump_stack_print_info.cold.1+0x20/0x20
[ 36.949555] ? printk+0xa7/0xcf
[ 36.952810] ? kmsg_dump_rewind_nolock+0xe4/0xe4
[ 36.957545] print_address_description.cold.7+0x9/0x1ff
[ 36.962892] kasan_report.cold.8+0x242/0x309
[ 36.967276] ? kfree_skb+0xb7/0x580
[ 36.970885] check_memory_region+0x13e/0x1b0
[ 36.975284] kasan_check_read+0x11/0x20
[ 36.979233] kfree_skb+0xb7/0x580
[ 36.982665] ? __kfree_skb+0x20/0x20
[ 36.986379] ? skb_tstamp_tx+0x50/0x50
[ 36.990249] tipc_udp_send_msg+0x5a6/0x670
[ 36.994463] ? tipc_udp_xmit.isra.14+0xef0/0xef0
[ 36.999213] ? bearer_get+0x2f8/0x4e0
[ 37.002993] ? __tipc_nl_add_media+0xca0/0xca0
[ 37.007581] ? kasan_check_read+0x11/0x20
[ 37.011721] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[ 37.017103] ? rcu_softirq_qs+0x20/0x20
[ 37.021068] ? tipc_disc_remove_dest+0x120/0x120
[ 37.025802] ? tipc_enable_bearer+0x90d/0xf10
[ 37.030278] ? rcu_read_lock_sched_held+0x14f/0x180
[ 37.035277] tipc_bearer_xmit_skb+0x171/0x350
[ 37.039756] tipc_enable_bearer+0xc5e/0xf10
[ 37.044058] ? mutex_trylock+0x2b0/0x2b0
[ 37.048248] ? tipc_bearer_xmit_skb+0x350/0x350
[ 37.052899] ? nla_memcmp+0x90/0x90
[ 37.056508] ? lock_release+0xa00/0xa00
[ 37.060463] ? perf_trace_sched_process_exec+0x860/0x860
[ 37.065981] ? mark_held_locks+0x130/0x130
[ 37.070195] ? check_preemption_disabled+0x48/0x280
[ 37.075203] __tipc_nl_bearer_enable+0x37c/0x4a0
[ 37.079937] ? __tipc_nl_bearer_enable+0x37c/0x4a0
[ 37.084850] ? tipc_nl_bearer_disable+0x30/0x30
[ 37.089505] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 37.095023] ? __nla_parse+0x12c/0x3e0
[ 37.098896] tipc_nl_bearer_enable+0x22/0x30
[ 37.103285] genl_family_rcv_msg+0x8a7/0x11a0
[ 37.107768] ? genl_unregister_family+0x8a0/0x8a0
[ 37.112592] ? lock_downgrade+0x900/0x900
[ 37.116718] ? check_preemption_disabled+0x48/0x280
[ 37.121714] ? rcu_read_unlock_special+0x1c0/0x1c0
[ 37.126631] ? kasan_check_read+0x11/0x20
[ 37.130845] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[ 37.136104] ? rcu_softirq_qs+0x20/0x20
[ 37.140069] genl_rcv_msg+0xc6/0x168
[ 37.143758] netlink_rcv_skb+0x172/0x440
[ 37.147796] ? genl_family_rcv_msg+0x11a0/0x11a0
[ 37.152527] ? netlink_ack+0xb80/0xb80
[ 37.156389] ? down_read+0x8d/0x120
[ 37.159998] genl_rcv+0x28/0x40
[ 37.163254] netlink_unicast+0x5a5/0x760
[ 37.167294] ? netlink_attachskb+0x9a0/0x9a0
[ 37.171782] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 37.177306] ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 37.182313] netlink_sendmsg+0xa18/0xfc0
[ 37.186358] ? netlink_unicast+0x760/0x760
[ 37.190571] ? aa_sock_msg_perm.isra.14+0xba/0x160
[ 37.195487] ? apparmor_socket_sendmsg+0x29/0x30
[ 37.200221] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 37.205738] ? security_socket_sendmsg+0x94/0xc0
[ 37.210472] ? netlink_unicast+0x760/0x760
[ 37.214689] sock_sendmsg+0xd5/0x120
[ 37.218384] ___sys_sendmsg+0x7fd/0x930
[ 37.222340] ? copy_msghdr_from_user+0x580/0x580
[ 37.227451] ? blkcg_maybe_throttle_current+0xa38/0x1080
[ 37.232882] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 37.238407] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 37.243927] ? __fget_light+0x2e9/0x430
[ 37.247883] ? fget_raw+0x20/0x20
[ 37.251323] ? task_work_run+0x1af/0x2a0
[ 37.255380] ? _raw_spin_unlock_irq+0x27/0x80
[ 37.259857] ? _raw_spin_unlock_irq+0x27/0x80
[ 37.264337] ? lockdep_hardirqs_on+0x3bb/0x5b0
[ 37.268900] ? trace_hardirqs_on+0xbd/0x310
[ 37.273204] ? kasan_check_read+0x11/0x20
[ 37.277334] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 37.283085] ? sockfd_lookup_light+0xc5/0x160
[ 37.287566] __sys_sendmsg+0x11d/0x280
[ 37.291568] ? __ia32_sys_shutdown+0x80/0x80
[ 37.295968] ? do_syscall_64+0x6be/0x820
[ 37.300016] ? trace_hardirqs_on+0x310/0x310
[ 37.304411] ? do_syscall_64+0x9a/0x820
[ 37.308375] ? do_syscall_64+0x9a/0x820
[ 37.312340] ? trace_hardirqs_off_caller+0x310/0x310
[ 37.317427] __x64_sys_sendmsg+0x78/0xb0
[ 37.321470] do_syscall_64+0x1b9/0x820
[ 37.325340] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[ 37.330690] ? syscall_return_slowpath+0x5e0/0x5e0
[ 37.335596] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 37.340418] ? trace_hardirqs_on_caller+0x310/0x310
[ 37.345422] ? prepare_exit_to_usermode+0x291/0x3b0
[ 37.350418] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 37.355250] entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 37.360420] RIP: 0033:0x4446f9
[ 37.363602] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 1b d8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 37.382488] RSP: 002b:00007ffea6239fd8 EFLAGS: 00000213 ORIG_RAX: 000000000000002e
[ 37.390175] RAX: ffffffffffffffda RBX: 00000000004002e0 RCX: 00000000004446f9
[ 37.397423] RDX: 0000000000000000 RSI: 0000000020000700 RDI: 0000000000000003
[ 37.404672] RBP: 00000000006cf018 R08: 0000000000000000 R09: 00000000004002e0
[ 37.411918] R10: 0000000000000000 R11: 0000000000000213 R12: 00000000004023a0
[ 37.419168] R13: 0000000000402430 R14: 0000000000000000 R15: 0000000000000000
[ 37.426420]
[ 37.428029] Allocated by task 5949:
[ 37.431724] save_stack+0x43/0xd0
[ 37.435158] kasan_kmalloc+0xc7/0xe0
[ 37.438852] kasan_slab_alloc+0x12/0x20
[ 37.442804] kmem_cache_alloc_node+0x144/0x730
[ 37.447365] __alloc_skb+0x119/0x770
[ 37.451072] __pskb_copy_fclone+0x16b/0xeb0
[ 37.455374] tipc_udp_send_msg+0x44e/0x670
[ 37.459585] tipc_bearer_xmit_skb+0x171/0x350
[ 37.464180] tipc_enable_bearer+0xc5e/0xf10
[ 37.468692] __tipc_nl_bearer_enable+0x37c/0x4a0
[ 37.473427] tipc_nl_bearer_enable+0x22/0x30
[ 37.477821] genl_family_rcv_msg+0x8a7/0x11a0
[ 37.482300] genl_rcv_msg+0xc6/0x168
[ 37.485998] netlink_rcv_skb+0x172/0x440
[ 37.490153] genl_rcv+0x28/0x40
[ 37.493416] netlink_unicast+0x5a5/0x760
[ 37.497455] netlink_sendmsg+0xa18/0xfc0
[ 37.501494] sock_sendmsg+0xd5/0x120
[ 37.505185] ___sys_sendmsg+0x7fd/0x930
[ 37.509134] __sys_sendmsg+0x11d/0x280
[ 37.513003] __x64_sys_sendmsg+0x78/0xb0
[ 37.517044] do_syscall_64+0x1b9/0x820
[ 37.520916] entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 37.526089]
[ 37.527696] Freed by task 5949:
[ 37.530960] save_stack+0x43/0xd0
[ 37.534394] __kasan_slab_free+0x102/0x150
[ 37.538610] kasan_slab_free+0xe/0x10
[ 37.542392] kmem_cache_free+0x83/0x290
[ 37.546348] kfree_skbmem+0x154/0x230
[ 37.550128] kfree_skb+0x1c3/0x580
[ 37.553649] tipc_udp_xmit.isra.14+0x420/0xef0
[ 37.558212] tipc_udp_send_msg+0x398/0x670
[ 37.562567] tipc_bearer_xmit_skb+0x171/0x350
[ 37.567044] tipc_enable_bearer+0xc5e/0xf10
[ 37.571343] __tipc_nl_bearer_enable+0x37c/0x4a0
[ 37.576092] tipc_nl_bearer_enable+0x22/0x30
[ 37.580498] genl_family_rcv_msg+0x8a7/0x11a0
[ 37.585115] genl_rcv_msg+0xc6/0x168
[ 37.588810] netlink_rcv_skb+0x172/0x440
[ 37.592953] genl_rcv+0x28/0x40
[ 37.596213] netlink_unicast+0x5a5/0x760
[ 37.600254] netlink_sendmsg+0xa18/0xfc0
[ 37.604300] sock_sendmsg+0xd5/0x120
[ 37.607992] ___sys_sendmsg+0x7fd/0x930
[ 37.611947] __sys_sendmsg+0x11d/0x280
[ 37.615812] __x64_sys_sendmsg+0x78/0xb0
[ 37.619855] do_syscall_64+0x1b9/0x820
[ 37.623796] entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 37.628971]
[ 37.630583] The buggy address belongs to the object at ffff8881c39210c0
[ 37.630583] which belongs to the cache skbuff_head_cache of size 232
[ 37.643738] The buggy address is located 228 bytes inside of
[ 37.643738] 232-byte region [ffff8881c39210c0, ffff8881c39211a8)
[ 37.655595] The buggy address belongs to the page:
[ 37.660510] page:ffffea00070e4840 count:1 mapcount:0 mapping:ffff8881d9bee600 index:0x0
[ 37.668631] flags: 0x2fffc0000000200(slab)
[ 37.672847] raw: 02fffc0000000200 ffffea0006cf8988 ffff8881d9bf1348 ffff8881d9bee600
[ 37.680710] raw: 0000000000000000 ffff8881c39210c0 000000010000000c 0000000000000000
[ 37.688569] page dumped because: kasan: bad access detected
[ 37.694255]
[ 37.695866] Memory state around the buggy address:
[ 37.700775] ffff8881c3921080: fc fc fc fc fc fc fc fc fb fb fb fb fb fb fb fb
[ 37.708119] ffff8881c3921100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 37.715456] >ffff8881c3921180: fb fb fb fb fb fc fc fc fc fc fc fc fc fc fc fc
[ 37.722928] ^
[ 37.727322] ffff8881c3921200: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 37.734661] ffff8881c3921280: 00 00 00 00 00 00 00 00 00 00 00 00 00 fc fc fc
[ 37.742001] ==================================================================
[ 37.749455] Disabling lock debugging due to kernel taint
[ 37.755057] ==================================================================
[ 37.762419] BUG: KASAN: double-free or invalid-free in skb_free_head+0x99/0xc0
[ 37.769759]
[ 37.771380] CPU: 1 PID: 5949 Comm: syz-executor108 Tainted: G B 4.20.0-rc6+ #223
[ 37.780194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 37.789526] Call Trace:
[ 37.792086]
[ 37.794222] dump_stack+0x244/0x39d
[ 37.797833] ? dump_stack_print_info.cold.1+0x20/0x20
[ 37.803005] ? printk+0xa7/0xcf
[ 37.806266] ? kmsg_dump_rewind_nolock+0xe4/0xe4
[ 37.811000] ? debug_check_no_obj_freed+0x305/0x58d
[ 37.815997] print_address_description.cold.7+0x9/0x1ff
[ 37.821350] ? skb_free_head+0x99/0xc0
[ 37.825217] kasan_report_invalid_free+0x64/0xa0
[ 37.829953] ? skb_free_head+0x99/0xc0
[ 37.833820] __kasan_slab_free+0x13a/0x150
[ 37.838033] ? skb_free_head+0x99/0xc0
[ 37.841897] kasan_slab_free+0xe/0x10
[ 37.845686] kfree+0xcf/0x230
[ 37.848774] skb_free_head+0x99/0xc0
[ 37.852469] skb_release_data+0x70c/0x9a0
[ 37.856593] ? __copy_skb_header+0x350/0x6b0
[ 37.860982] ? skb_tx_error+0x410/0x410
[ 37.864939] ? tipc_udp_xmit.isra.14+0x425/0xef0
[ 37.869675] ? kasan_end_report+0x32/0x4f
[ 37.873800] ? kasan_report.cold.8+0x76/0x309
[ 37.878284] skb_release_all+0x4a/0x60
[ 37.882170] kfree_skb+0x1bb/0x580
[ 37.885688] ? tipc_udp_send_msg+0x5a6/0x670
[ 37.890081] ? __kfree_skb+0x20/0x20
[ 37.893775] ? skb_tstamp_tx+0x50/0x50
[ 37.897648] tipc_udp_send_msg+0x5a6/0x670
[ 37.901873] ? tipc_udp_xmit.isra.14+0xef0/0xef0
[ 37.906614] ? bearer_get+0x2f8/0x4e0
[ 37.910394] ? __tipc_nl_add_media+0xca0/0xca0
[ 37.914954] ? skb_clone+0x21a/0x500
[ 37.918648] ? _raw_spin_unlock_bh+0x30/0x40
[ 37.923036] ? trace_hardirqs_off_caller+0x310/0x310
[ 37.928121] ? do_raw_spin_trylock+0x270/0x270
[ 37.932683] tipc_bearer_xmit_skb+0x171/0x350
[ 37.937160] tipc_disc_timeout+0xb2b/0xfc0
[ 37.941376] ? tipc_disc_msg_xmit.isra.19+0x180/0x180
[ 37.946548] ? lock_acquire+0x1ed/0x520
[ 37.950499] ? call_timer_fn+0x1db/0x920
[ 37.954542] ? lock_downgrade+0x900/0x900
[ 37.958680] ? kasan_check_read+0x11/0x20
[ 37.962809] ? lock_release+0xa00/0xa00
[ 37.966766] ? __lock_is_held+0xb5/0x140
[ 37.970821] call_timer_fn+0x272/0x920
[ 37.974690] ? tipc_disc_msg_xmit.isra.19+0x180/0x180
[ 37.979858] ? process_timeout+0x40/0x40
[ 37.983900] ? trace_hardirqs_off+0xb8/0x310
[ 37.988292] ? kasan_check_read+0x11/0x20
[ 37.992417] ? do_raw_spin_unlock+0xa7/0x330
[ 37.996806] ? trace_hardirqs_on+0x310/0x310
[ 38.001194] ? __run_timers+0x7da/0xc70
[ 38.005145] ? lock_downgrade+0x900/0x900
[ 38.009275] ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[ 38.014361] ? trace_hardirqs_on+0xbd/0x310
[ 38.018665] ? kasan_check_read+0x11/0x20
[ 38.022790] ? __run_timers+0x7da/0xc70
[ 38.026747] ? trace_hardirqs_off_caller+0x310/0x310
[ 38.031833] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 38.037350] ? tipc_disc_msg_xmit.isra.19+0x180/0x180
[ 38.042524] __run_timers+0x7e5/0xc70
[ 38.046305] ? timer_fixup_init+0x70/0x70
[ 38.050429] ? kasan_check_read+0x11/0x20
[ 38.054558] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[ 38.059945] ? rcu_softirq_qs+0x20/0x20
[ 38.063899] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 38.069417] ? check_preemption_disabled+0x48/0x280
[ 38.074419] ? rcu_irq_exit+0x1a2/0x390
[ 38.078370] ? ret_from_intr+0xb/0x1e
[ 38.082150] ? retint_kernel+0x2d/0x2d
[ 38.086027] ? trace_hardirqs_on_caller+0xc0/0x310
[ 38.090934] ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 38.095666] ? __bpf_trace_preemptirq_template+0x30/0x30
[ 38.101094] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 38.106609] ? check_preemption_disabled+0x48/0x280
[ 38.111608] ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 38.116347] ? retint_kernel+0x2d/0x2d
[ 38.120216] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 38.125739] ? check_preemption_disabled+0x48/0x280
[ 38.130751] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 38.136288] run_timer_softirq+0x52/0xb0
[ 38.140330] ? __this_cpu_preempt_check+0x1c/0x20
[ 38.145152] __do_softirq+0x308/0xb7e
[ 38.148941] ? ktime_get_raw_ts64+0x4d0/0x4d0
[ 38.153417] ? lock_downgrade+0x900/0x900
[ 38.157544] ? __irqentry_text_end+0x1f9658/0x1f9658
[ 38.162636] ? pvclock_read_flags+0x160/0x160
[ 38.167112] ? lapic_next_event+0x5a/0x90
[ 38.171243] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 38.176913] ? clockevents_program_event+0x140/0x370
[ 38.181999] ? kvm_clock_read+0x18/0x30
[ 38.185951] ? kvm_sched_clock_read+0x9/0x20
[ 38.190448] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 38.195977] ? check_preemption_disabled+0x48/0x280
[ 38.200976] irq_exit+0x17f/0x1c0
[ 38.204412] smp_apic_timer_interrupt+0x1cb/0x760
[ 38.209237] ? smp_reschedule_interrupt+0x109/0x650
[ 38.214261] ? smp_call_function_single_interrupt+0x650/0x650
[ 38.220130] ? interrupt_entry+0xb5/0xc0
[ 38.224168] ? trace_hardirqs_off_caller+0xbb/0x310
[ 38.229160] ? trace_hardirqs_off_caller+0xbb/0x310
[ 38.234152] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 38.238969] ? trace_hardirqs_on_caller+0x310/0x310
[ 38.244188] ? trace_hardirqs_on_caller+0x310/0x310
[ 38.249182] ? task_prio+0x50/0x50
[ 38.252697] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 38.258237] ? check_preemption_disabled+0x48/0x280
[ 38.263247] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 38.268073] apic_timer_interrupt+0xf/0x20
[ 38.272281]
[ 38.274497] RIP: 0010:_raw_spin_unlock_irqrestore+0xaf/0xd0
[ 38.280188] Code: f0 00 52 89 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 28 48 83 3d 18 ef 76 01 00 74 15 48 89 df 57 9d <0f> 1f 44 00 00 eb ad e8 1c 6b 25 f9 eb bb 0f 0b 0f 0b e8 9a d7 e7
[ 38.299071] RSP: 0018:ffff8881b2ac6de8 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13
[ 38.306762] RAX: dffffc0000000000 RBX: 0000000000000286 RCX: ffffffff8185acea
[ 38.314010] RDX: 1ffffffff12a401e RSI: ffffffff8185ad04 RDI: 0000000000000286
[ 38.321256] RBP: ffff8881b2ac6df8 R08: ffff8881b2b1a680 R09: fffffbfff12c7248
[ 38.328502] R10: fffffbfff12c7248 R11: ffffffff89639243 R12: ffffffff89639240
[ 38.335745] R13: 0000000000000000 R14: ffff8881c39211a4 R15: ffff8881c39211a4
[ 38.342998] ? trace_hardirqs_on+0x9a/0x310
[ 38.347298] ? trace_hardirqs_on+0xb4/0x310
[ 38.351599] kasan_end_report+0x32/0x4f
[ 38.355550] kasan_report.cold.8+0x76/0x309
[ 38.359846] ? kfree_skb+0xb7/0x580
[ 38.363455] check_memory_region+0x13e/0x1b0
[ 38.367838] kasan_check_read+0x11/0x20
[ 38.371788] kfree_skb+0xb7/0x580
[ 38.375221] ? __kfree_skb+0x20/0x20
[ 38.378911] ? skb_tstamp_tx+0x50/0x50
[ 38.382780] tipc_udp_send_msg+0x5a6/0x670
[ 38.386994] ? tipc_udp_xmit.isra.14+0xef0/0xef0
[ 38.391727] ? bearer_get+0x2f8/0x4e0
[ 38.395507] ? __tipc_nl_add_media+0xca0/0xca0
[ 38.400066] ? kasan_check_read+0x11/0x20
[ 38.404192] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[ 38.409452] ? rcu_softirq_qs+0x20/0x20
[ 38.413405] ? tipc_disc_remove_dest+0x120/0x120
[ 38.418137] ? tipc_enable_bearer+0x90d/0xf10
[ 38.422612] ? rcu_read_lock_sched_held+0x14f/0x180
[ 38.427606] tipc_bearer_xmit_skb+0x171/0x350
[ 38.432081] tipc_enable_bearer+0xc5e/0xf10
[ 38.436386] ? mutex_trylock+0x2b0/0x2b0
[ 38.440430] ? tipc_bearer_xmit_skb+0x350/0x350
[ 38.445096] ? nla_memcmp+0x90/0x90
[ 38.448704] ? lock_release+0xa00/0xa00
[ 38.452667] ? perf_trace_sched_process_exec+0x860/0x860
[ 38.458112] ? mark_held_locks+0x130/0x130
[ 38.462400] ? check_preemption_disabled+0x48/0x280
[ 38.467414] __tipc_nl_bearer_enable+0x37c/0x4a0
[ 38.472151] ? __tipc_nl_bearer_enable+0x37c/0x4a0
[ 38.477063] ? tipc_nl_bearer_disable+0x30/0x30
[ 38.481717] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 38.487230] ? __nla_parse+0x12c/0x3e0
[ 38.491110] tipc_nl_bearer_enable+0x22/0x30
[ 38.495512] genl_family_rcv_msg+0x8a7/0x11a0
[ 38.500007] ? genl_unregister_family+0x8a0/0x8a0
[ 38.504831] ? lock_downgrade+0x900/0x900
[ 38.508959] ? check_preemption_disabled+0x48/0x280
[ 38.513957] ? rcu_read_unlock_special+0x1c0/0x1c0
[ 38.518884] ? kasan_check_read+0x11/0x20
[ 38.523013] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[ 38.528387] ? rcu_softirq_qs+0x20/0x20
[ 38.532353] genl_rcv_msg+0xc6/0x168
[ 38.536049] netlink_rcv_skb+0x172/0x440
[ 38.540097] ? genl_family_rcv_msg+0x11a0/0x11a0
[ 38.544836] ? netlink_ack+0xb80/0xb80
[ 38.548701] ? down_read+0x8d/0x120
[ 38.552307] genl_rcv+0x28/0x40
[ 38.555561] netlink_unicast+0x5a5/0x760
[ 38.559600] ? netlink_attachskb+0x9a0/0x9a0
[ 38.563990] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 38.569503] ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 38.574497] netlink_sendmsg+0xa18/0xfc0
[ 38.578538] ? netlink_unicast+0x760/0x760
[ 38.582748] ? aa_sock_msg_perm.isra.14+0xba/0x160
[ 38.587677] ? apparmor_socket_sendmsg+0x29/0x30
[ 38.592421] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 38.597937] ? security_socket_sendmsg+0x94/0xc0
[ 38.602668] ? netlink_unicast+0x760/0x760
[ 38.606880] sock_sendmsg+0xd5/0x120
[ 38.610571] ___sys_sendmsg+0x7fd/0x930
[ 38.614526] ? copy_msghdr_from_user+0x580/0x580
[ 38.619275] ? blkcg_maybe_throttle_current+0xa38/0x1080
[ 38.624705] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 38.630222] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 38.635735] ? __fget_light+0x2e9/0x430
[ 38.639687] ? fget_raw+0x20/0x20
[ 38.643139] ? task_work_run+0x1af/0x2a0
[ 38.647179] ? _raw_spin_unlock_irq+0x27/0x80
[ 38.651656] ? _raw_spin_unlock_irq+0x27/0x80
[ 38.656132] ? lockdep_hardirqs_on+0x3bb/0x5b0
[ 38.660701] ? trace_hardirqs_on+0xbd/0x310
[ 38.664999] ? kasan_check_read+0x11/0x20
[ 38.669123] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 38.674646] ? sockfd_lookup_light+0xc5/0x160
[ 38.679253] __sys_sendmsg+0x11d/0x280
[ 38.683122] ? __ia32_sys_shutdown+0x80/0x80
[ 38.687510] ? do_syscall_64+0x6be/0x820
[ 38.691548] ? trace_hardirqs_on+0x310/0x310
[ 38.695931] ? do_syscall_64+0x9a/0x820
[ 38.699880] ? do_syscall_64+0x9a/0x820
[ 38.703853] ? trace_hardirqs_off_caller+0x310/0x310
[ 38.708940] __x64_sys_sendmsg+0x78/0xb0
[ 38.712990] do_syscall_64+0x1b9/0x820
[ 38.716868] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[ 38.722222] ? syscall_return_slowpath+0x5e0/0x5e0
[ 38.727126] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 38.731944] ? trace_hardirqs_on_caller+0x310/0x310
[ 38.736938] ? prepare_exit_to_usermode+0x291/0x3b0
[ 38.741940] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 38.746766] entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 38.752070] RIP: 0033:0x4446f9
[ 38.755326] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 1b d8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 38.774210] RSP: 002b:00007ffea6239fd8 EFLAGS: 00000213 ORIG_RAX: 000000000000002e
[ 38.781900] RAX: ffffffffffffffda RBX: 00000000004002e0 RCX: 00000000004446f9
[ 38.789149] RDX: 0000000000000000 RSI: 0000000020000700 RDI: 0000000000000003
[ 38.796396] RBP: 00000000006cf018 R08: 0000000000000000 R09: 00000000004002e0
[ 38.803642] R10: 0000000000000000 R11: 0000000000000213 R12: 00000000004023a0
[ 38.810887] R13: 0000000000402430 R14: 0000000000000000 R15: 0000000000000000
[ 38.818146]
[ 38.819751] Allocated by task 5949:
[ 38.823363] save_stack+0x43/0xd0
[ 38.826795] kasan_kmalloc+0xc7/0xe0
[ 38.830485] __kmalloc_node_track_caller+0x50/0x70
[ 38.835398] __kmalloc_reserve.isra.40+0x41/0xe0
[ 38.840129] __alloc_skb+0x155/0x770
[ 38.843834] __pskb_copy_fclone+0x16b/0xeb0
[ 38.848134] tipc_udp_send_msg+0x44e/0x670
[ 38.852349] tipc_bearer_xmit_skb+0x171/0x350
[ 38.856827] tipc_disc_timeout+0xb2b/0xfc0
[ 38.861038] call_timer_fn+0x272/0x920
[ 38.864902] __run_timers+0x7e5/0xc70
[ 38.868682] run_timer_softirq+0x52/0xb0
[ 38.872730] __do_softirq+0x308/0xb7e
[ 38.876504]
[ 38.878115] Freed by task 5949:
[ 38.881375] save_stack+0x43/0xd0
[ 38.884808] __kasan_slab_free+0x102/0x150
[ 38.889022] kasan_slab_free+0xe/0x10
[ 38.892801] kfree+0xcf/0x230
[ 38.895884] skb_free_head+0x99/0xc0
[ 38.899576] skb_release_data+0x70c/0x9a0
[ 38.903710] skb_release_all+0x4a/0x60
[ 38.907592] kfree_skb+0x1bb/0x580
[ 38.911124] tipc_udp_xmit.isra.14+0x420/0xef0
[ 38.915686] tipc_udp_send_msg+0x398/0x670
[ 38.919899] tipc_bearer_xmit_skb+0x171/0x350
[ 38.924375] tipc_disc_timeout+0xb2b/0xfc0
[ 38.928597] call_timer_fn+0x272/0x920
[ 38.932463] __run_timers+0x7e5/0xc70
[ 38.936244] run_timer_softirq+0x52/0xb0
[ 38.940284] __do_softirq+0x308/0xb7e
[ 38.944061]
[ 38.945669] The buggy address belongs to the object at ffff8881ce774000
[ 38.945669] which belongs to the cache kmalloc-1k of size 1024
[ 38.958303] The buggy address is located 0 bytes inside of
[ 38.958303] 1024-byte region [ffff8881ce774000, ffff8881ce774400)
[ 38.970067] The buggy address belongs to the page:
[ 38.974976] page:ffffea000739dd00 count:1 mapcount:0 mapping:ffff8881da800ac0 index:0x0 compound_mapcount: 0
[ 38.984925] flags: 0x2fffc0000010200(slab|head)
[ 38.989580] raw: 02fffc0000010200 ffffea000739d988 ffffea0007380808 ffff8881da800ac0
[ 38.997438] raw: 0000000000000000 ffff8881ce774000 0000000100000007 0000000000000000
[ 39.005292] page dumped because: kasan: bad access detected
[ 39.010982]
[ 39.012658] Memory state around the buggy address:
[ 39.017572] ffff8881ce773f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 39.024998] ffff8881ce773f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 39.032333] >ffff8881ce774000: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 39.039668] ^
[ 39.043018] ffff8881ce774080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 39.050357] ffff8881ce774100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 39.057694] ==================================================================
[ 39.065035] Kernel panic - not syncing: panic_on_warn set ...
[ 39.070901] CPU: 1 PID: 5949 Comm: syz-executor108 Tainted: G B 4.20.0-rc6+ #223
[ 39.079714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 39.089050] Call Trace:
[ 39.091610]
[ 39.093749] dump_stack+0x244/0x39d
[ 39.097357] ? dump_stack_print_info.cold.1+0x20/0x20
[ 39.102531] ? skb_free_head+0x30/0xc0
[ 39.106406] panic+0x2ad/0x55c
[ 39.109587] ? add_taint.cold.5+0x16/0x16
[ 39.113715] ? print_shadow_for_address+0xb6/0x116
[ 39.118624] ? trace_hardirqs_off+0xaf/0x310
[ 39.123011] ? skb_free_head+0x99/0xc0
[ 39.126880] kasan_end_report+0x47/0x4f
[ 39.130963] kasan_report_invalid_free+0x81/0xa0
[ 39.135700] ? skb_free_head+0x99/0xc0
[ 39.139568] __kasan_slab_free+0x13a/0x150
[ 39.143784] ? skb_free_head+0x99/0xc0
[ 39.147653] kasan_slab_free+0xe/0x10
[ 39.151438] kfree+0xcf/0x230
[ 39.154526] skb_free_head+0x99/0xc0
[ 39.158221] skb_release_data+0x70c/0x9a0
[ 39.162345] ? __copy_skb_header+0x350/0x6b0
[ 39.166736] ? skb_tx_error+0x410/0x410
[ 39.170696] ? tipc_udp_xmit.isra.14+0x425/0xef0
[ 39.175428] ? kasan_end_report+0x32/0x4f
[ 39.179557] ? kasan_report.cold.8+0x76/0x309
[ 39.184033] skb_release_all+0x4a/0x60
[ 39.187901] kfree_skb+0x1bb/0x580
[ 39.191422] ? tipc_udp_send_msg+0x5a6/0x670
[ 39.195823] ? __kfree_skb+0x20/0x20
[ 39.199517] ? skb_tstamp_tx+0x50/0x50
[ 39.203388] tipc_udp_send_msg+0x5a6/0x670
[ 39.207610] ? tipc_udp_xmit.isra.14+0xef0/0xef0
[ 39.212379] ? bearer_get+0x2f8/0x4e0
[ 39.216164] ? __tipc_nl_add_media+0xca0/0xca0
[ 39.220726] ? skb_clone+0x21a/0x500
[ 39.224417] ? _raw_spin_unlock_bh+0x30/0x40
[ 39.228809] ? trace_hardirqs_off_caller+0x310/0x310
[ 39.233890] ? do_raw_spin_trylock+0x270/0x270
[ 39.238463] tipc_bearer_xmit_skb+0x171/0x350
[ 39.242937] tipc_disc_timeout+0xb2b/0xfc0
[ 39.247157] ? tipc_disc_msg_xmit.isra.19+0x180/0x180
[ 39.252328] ? lock_acquire+0x1ed/0x520
[ 39.256367] ? call_timer_fn+0x1db/0x920
[ 39.260408] ? lock_downgrade+0x900/0x900
[ 39.264536] ? kasan_check_read+0x11/0x20
[ 39.268669] ? lock_release+0xa00/0xa00
[ 39.272624] ? __lock_is_held+0xb5/0x140
[ 39.276676] call_timer_fn+0x272/0x920
[ 39.280547] ? tipc_disc_msg_xmit.isra.19+0x180/0x180
[ 39.285716] ? process_timeout+0x40/0x40
[ 39.289759] ? trace_hardirqs_off+0xb8/0x310
[ 39.294153] ? kasan_check_read+0x11/0x20
[ 39.298283] ? do_raw_spin_unlock+0xa7/0x330
[ 39.302687] ? trace_hardirqs_on+0x310/0x310
[ 39.307075] ? __run_timers+0x7da/0xc70
[ 39.311032] ? lock_downgrade+0x900/0x900
[ 39.315164] ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[ 39.320243] ? trace_hardirqs_on+0xbd/0x310
[ 39.324543] ? kasan_check_read+0x11/0x20
[ 39.328769] ? __run_timers+0x7da/0xc70
[ 39.332735] ? trace_hardirqs_off_caller+0x310/0x310
[ 39.337819] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 39.343332] ? tipc_disc_msg_xmit.isra.19+0x180/0x180
[ 39.348498] __run_timers+0x7e5/0xc70
[ 39.352276] ? timer_fixup_init+0x70/0x70
[ 39.356405] ? kasan_check_read+0x11/0x20
[ 39.360531] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[ 39.365783] ? rcu_softirq_qs+0x20/0x20
[ 39.369731] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 39.375242] ? check_preemption_disabled+0x48/0x280
[ 39.380254] ? rcu_irq_exit+0x1a2/0x390
[ 39.384208] ? ret_from_intr+0xb/0x1e
[ 39.387985] ? retint_kernel+0x2d/0x2d
[ 39.391850] ? trace_hardirqs_on_caller+0xc0/0x310
[ 39.396754] ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 39.401487] ? __bpf_trace_preemptirq_template+0x30/0x30
[ 39.406913] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 39.412430] ? check_preemption_disabled+0x48/0x280
[ 39.417421] ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 39.422156] ? retint_kernel+0x2d/0x2d
[ 39.426021] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 39.431536] ? check_preemption_disabled+0x48/0x280
[ 39.436529] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 39.442043] run_timer_softirq+0x52/0xb0
[ 39.446080] ? __this_cpu_preempt_check+0x1c/0x20
[ 39.450899] __do_softirq+0x308/0xb7e
[ 39.454676] ? ktime_get_raw_ts64+0x4d0/0x4d0
[ 39.459151] ? lock_downgrade+0x900/0x900
[ 39.463384] ? __irqentry_text_end+0x1f9658/0x1f9658
[ 39.468472] ? pvclock_read_flags+0x160/0x160
[ 39.472945] ? lapic_next_event+0x5a/0x90
[ 39.477073] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 39.482587] ? clockevents_program_event+0x140/0x370
[ 39.487668] ? kvm_clock_read+0x18/0x30
[ 39.491621] ? kvm_sched_clock_read+0x9/0x20
[ 39.496011] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 39.501524] ? check_preemption_disabled+0x48/0x280
[ 39.506526] irq_exit+0x17f/0x1c0
[ 39.509955] smp_apic_timer_interrupt+0x1cb/0x760
[ 39.514772] ? smp_reschedule_interrupt+0x109/0x650
[ 39.519767] ? smp_call_function_single_interrupt+0x650/0x650
[ 39.525638] ? interrupt_entry+0xb5/0xc0
[ 39.529680] ? trace_hardirqs_off_caller+0xbb/0x310
[ 39.534667] ? trace_hardirqs_off_caller+0xbb/0x310
[ 39.539670] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 39.544503] ? trace_hardirqs_on_caller+0x310/0x310
[ 39.549492] ? trace_hardirqs_on_caller+0x310/0x310
[ 39.554483] ? task_prio+0x50/0x50
[ 39.558010] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 39.563534] ? check_preemption_disabled+0x48/0x280
[ 39.568527] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 39.573345] apic_timer_interrupt+0xf/0x20
[ 39.577551]
[ 39.579768] RIP: 0010:_raw_spin_unlock_irqrestore+0xaf/0xd0
[ 39.585458] Code: f0 00 52 89 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 28 48 83 3d 18 ef 76 01 00 74 15 48 89 df 57 9d <0f> 1f 44 00 00 eb ad e8 1c 6b 25 f9 eb bb 0f 0b 0f 0b e8 9a d7 e7
[ 39.604333] RSP: 0018:ffff8881b2ac6de8 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13
[ 39.612020] RAX: dffffc0000000000 RBX: 0000000000000286 RCX: ffffffff8185acea
[ 39.619264] RDX: 1ffffffff12a401e RSI: ffffffff8185ad04 RDI: 0000000000000286
[ 39.626505] RBP: ffff8881b2ac6df8 R08: ffff8881b2b1a680 R09: fffffbfff12c7248
[ 39.633750] R10: fffffbfff12c7248 R11: ffffffff89639243 R12: ffffffff89639240
[ 39.640993] R13: 0000000000000000 R14: ffff8881c39211a4 R15: ffff8881c39211a4
[ 39.648247] ? trace_hardirqs_on+0x9a/0x310
[ 39.652545] ? trace_hardirqs_on+0xb4/0x310
[ 39.656846] kasan_end_report+0x32/0x4f
[ 39.660798] kasan_report.cold.8+0x76/0x309
[ 39.665100] ? kfree_skb+0xb7/0x580
[ 39.668721] check_memory_region+0x13e/0x1b0
[ 39.673108] kasan_check_read+0x11/0x20
[ 39.677071] kfree_skb+0xb7/0x580
[ 39.680504] ? __kfree_skb+0x20/0x20
[ 39.684199] ? skb_tstamp_tx+0x50/0x50
[ 39.688083] tipc_udp_send_msg+0x5a6/0x670
[ 39.692299] ? tipc_udp_xmit.isra.14+0xef0/0xef0
[ 39.697031] ? bearer_get+0x2f8/0x4e0
[ 39.700810] ? __tipc_nl_add_media+0xca0/0xca0
[ 39.705373] ? kasan_check_read+0x11/0x20
[ 39.709503] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[ 39.714772] ? rcu_softirq_qs+0x20/0x20
[ 39.718726] ? tipc_disc_remove_dest+0x120/0x120
[ 39.723457] ? tipc_enable_bearer+0x90d/0xf10
[ 39.727934] ? rcu_read_lock_sched_held+0x14f/0x180
[ 39.732930] tipc_bearer_xmit_skb+0x171/0x350
[ 39.737406] tipc_enable_bearer+0xc5e/0xf10
[ 39.741711] ? mutex_trylock+0x2b0/0x2b0
[ 39.745874] ? tipc_bearer_xmit_skb+0x350/0x350
[ 39.750525] ? nla_memcmp+0x90/0x90
[ 39.754138] ? lock_release+0xa00/0xa00
[ 39.758095] ? perf_trace_sched_process_exec+0x860/0x860
[ 39.763532] ? mark_held_locks+0x130/0x130
[ 39.767745] ? check_preemption_disabled+0x48/0x280
[ 39.772746] __tipc_nl_bearer_enable+0x37c/0x4a0
[ 39.777482] ? __tipc_nl_bearer_enable+0x37c/0x4a0
[ 39.782402] ? tipc_nl_bearer_disable+0x30/0x30
[ 39.787058] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 39.792573] ? __nla_parse+0x12c/0x3e0
[ 39.796444] tipc_nl_bearer_enable+0x22/0x30
[ 39.800835] genl_family_rcv_msg+0x8a7/0x11a0
[ 39.805312] ? genl_unregister_family+0x8a0/0x8a0
[ 39.810130] ? lock_downgrade+0x900/0x900
[ 39.814263] ? check_preemption_disabled+0x48/0x280
[ 39.819262] ? rcu_read_unlock_special+0x1c0/0x1c0
[ 39.824169] ? kasan_check_read+0x11/0x20
[ 39.828412] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[ 39.833672] ? rcu_softirq_qs+0x20/0x20
[ 39.837634] genl_rcv_msg+0xc6/0x168
[ 39.841324] netlink_rcv_skb+0x172/0x440
[ 39.845365] ? genl_family_rcv_msg+0x11a0/0x11a0
[ 39.850105] ? netlink_ack+0xb80/0xb80
[ 39.853974] ? down_read+0x8d/0x120
[ 39.857599] genl_rcv+0x28/0x40
[ 39.860855] netlink_unicast+0x5a5/0x760
[ 39.864897] ? netlink_attachskb+0x9a0/0x9a0
[ 39.869284] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 39.874797] ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 39.879791] netlink_sendmsg+0xa18/0xfc0
[ 39.883830] ? netlink_unicast+0x760/0x760
[ 39.888042] ? aa_sock_msg_perm.isra.14+0xba/0x160
[ 39.892951] ? apparmor_socket_sendmsg+0x29/0x30
[ 39.897706] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 39.903224] ? security_socket_sendmsg+0x94/0xc0
[ 39.907964] ? netlink_unicast+0x760/0x760
[ 39.912177] sock_sendmsg+0xd5/0x120
[ 39.916099] ___sys_sendmsg+0x7fd/0x930
[ 39.920061] ? copy_msghdr_from_user+0x580/0x580
[ 39.924801] ? blkcg_maybe_throttle_current+0xa38/0x1080
[ 39.930233] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 39.935751] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 39.941268] ? __fget_light+0x2e9/0x430
[ 39.945230] ? fget_raw+0x20/0x20
[ 39.948663] ? task_work_run+0x1af/0x2a0
[ 39.952706] ? _raw_spin_unlock_irq+0x27/0x80
[ 39.957177] ? _raw_spin_unlock_irq+0x27/0x80
[ 39.961663] ? lockdep_hardirqs_on+0x3bb/0x5b0
[ 39.966223] ? trace_hardirqs_on+0xbd/0x310
[ 39.970521] ? kasan_check_read+0x11/0x20
[ 39.974648] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 39.980162] ? sockfd_lookup_light+0xc5/0x160
[ 39.984652] __sys_sendmsg+0x11d/0x280
[ 39.988520] ? __ia32_sys_shutdown+0x80/0x80
[ 39.992906] ? do_syscall_64+0x6be/0x820
[ 39.996960] ? trace_hardirqs_on+0x310/0x310
[ 40.001345] ? do_syscall_64+0x9a/0x820
[ 40.005294] ? do_syscall_64+0x9a/0x820
[ 40.009348] ? trace_hardirqs_off_caller+0x310/0x310
[ 40.014431] __x64_sys_sendmsg+0x78/0xb0
[ 40.018471] do_syscall_64+0x1b9/0x820
[ 40.022333] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[ 40.027674] ? syscall_return_slowpath+0x5e0/0x5e0
[ 40.032581] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 40.037402] ? trace_hardirqs_on_caller+0x310/0x310
[ 40.042397] ? prepare_exit_to_usermode+0x291/0x3b0
[ 40.047395] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 40.052217] entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 40.057383] RIP: 0033:0x4446f9
[ 40.060551] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 1b d8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 40.079440] RSP: 002b:00007ffea6239fd8 EFLAGS: 00000213 ORIG_RAX: 000000000000002e
[ 40.087126] RAX: ffffffffffffffda RBX: 00000000004002e0 RCX: 00000000004446f9
[ 40.094375] RDX: 0000000000000000 RSI: 0000000020000700 RDI: 0000000000000003
[ 40.101620] RBP: 00000000006cf018 R08: 0000000000000000 R09: 00000000004002e0
[ 40.108868] R10: 0000000000000000 R11: 0000000000000213 R12: 00000000004023a0
[ 40.116115] R13: 0000000000402430 R14: 0000000000000000 R15: 0000000000000000
[ 40.124462] Kernel Offset: disabled
[ 40.128088] Rebooting in 86400 seconds..