[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 62.679580][ T27] kauditd_printk_skb: 7 callbacks suppressed [ 62.679589][ T27] audit: type=1800 audit(1565435520.419:29): pid=9606 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 [ 62.712584][ T27] audit: type=1800 audit(1565435520.419:30): pid=9606 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.205' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 78.190685][ T9757] Started in network mode [ 78.195201][ T9757] Own node identity ff030000000000000000000000000001, cluster identity 4711 [ 78.204413][ T9757] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor224/9757 [ 78.213965][ T9757] caller is dst_cache_get+0x3d/0xb0 [ 78.219196][ T9757] CPU: 0 PID: 9757 Comm: syz-executor224 Not tainted 5.3.0-rc3+ #104 [ 78.227357][ T9757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 78.237398][ T9757] Call Trace: [ 78.240686][ T9757] dump_stack+0x172/0x1f0 [ 78.245112][ T9757] debug_smp_processor_id.cold+0x87/0x9d [ 78.250961][ T9757] dst_cache_get+0x3d/0xb0 [ 78.255363][ T9757] tipc_udp_xmit.isra.0+0xc4/0xb80 [ 78.260459][ T9757] ? tipc_udp_addr2str+0x170/0x170 [ 78.265567][ T9757] ? lock_downgrade+0x920/0x920 [ 78.270425][ T9757] ? memcpy+0x46/0x50 [ 78.274577][ T9757] ? __copy_skb_header+0x2e8/0x550 [ 78.279693][ T9757] ? bearer_get+0x16e/0x350 [ 78.284177][ T9757] ? __kasan_check_read+0x11/0x20 [ 78.289185][ T9757] ? mark_held_locks+0xf0/0xf0 [ 78.293930][ T9757] ? lock_downgrade+0x920/0x920 [ 78.298866][ T9757] tipc_udp_send_msg+0x3ea/0x490 [ 78.303876][ T9757] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 78.310121][ T9757] tipc_bearer_xmit_skb+0x17e/0x370 [ 78.315452][ T9757] tipc_enable_bearer+0xacf/0xd30 [ 78.320557][ T9757] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 78.326453][ T9757] ? tipc_bearer_xmit_skb+0x370/0x370 [ 78.332327][ T9757] ? nla_memcpy+0xb0/0xb0 [ 78.336660][ T9757] __tipc_nl_bearer_enable+0x2de/0x3a0 [ 78.342338][ T9757] ? __tipc_nl_bearer_enable+0x2de/0x3a0 [ 78.348046][ T9757] ? tipc_nl_bearer_disable+0x40/0x40 [ 78.353417][ T9757] ? nla_memcpy+0xb0/0xb0 [ 78.357739][ T9757] ? lock_acquire+0x190/0x410 [ 78.362418][ T9757] tipc_nl_bearer_enable+0x23/0x40 [ 78.367613][ T9757] genl_family_rcv_msg+0x74b/0xf90 [ 78.372724][ T9757] ? genl_unregister_family+0x7b0/0x7b0 [ 78.378366][ T9757] ? __alloc_skb+0x10b/0x5e0 [ 78.382954][ T9757] ? netlink_sendmsg+0x972/0xd60 [ 78.387875][ T9757] ? sock_sendmsg+0xd7/0x130 [ 78.392471][ T9757] ? ___sys_sendmsg+0x803/0x920 [ 78.397836][ T9757] ? __x64_sys_sendmsg+0x78/0xb0 [ 78.406114][ T9757] ? __netlink_lookup+0x3fa/0x7b0 [ 78.411128][ T9757] ? __kasan_check_read+0x11/0x20 [ 78.416405][ T9757] genl_rcv_msg+0xca/0x170 [ 78.420817][ T9757] netlink_rcv_skb+0x177/0x450 [ 78.425737][ T9757] ? genl_family_rcv_msg+0xf90/0xf90 [ 78.431031][ T9757] ? netlink_ack+0xb30/0xb30 [ 78.435670][ T9757] ? __kasan_check_write+0x14/0x20 [ 78.440775][ T9757] ? netlink_deliver_tap+0x254/0xbf0 [ 78.446043][ T9757] genl_rcv+0x29/0x40 [ 78.450005][ T9757] netlink_unicast+0x531/0x710 [ 78.454747][ T9757] ? netlink_attachskb+0x7c0/0x7c0 [ 78.459991][ T9757] ? _copy_from_iter_full+0x25d/0x8a0 [ 78.465355][ T9757] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 78.471059][ T9757] ? __check_object_size+0x3d/0x43c [ 78.476404][ T9757] netlink_sendmsg+0x8a5/0xd60 [ 78.481179][ T9757] ? netlink_unicast+0x710/0x710 [ 78.486227][ T9757] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 78.491926][ T9757] ? apparmor_socket_sendmsg+0x2a/0x30 [ 78.497371][ T9757] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 78.503592][ T9757] ? security_socket_sendmsg+0x8d/0xc0 [ 78.509202][ T9757] ? netlink_unicast+0x710/0x710 [ 78.514226][ T9757] sock_sendmsg+0xd7/0x130 [ 78.518633][ T9757] ___sys_sendmsg+0x803/0x920 [ 78.523408][ T9757] ? copy_msghdr_from_user+0x440/0x440 [ 78.528869][ T9757] ? __kasan_check_write+0x14/0x20 [ 78.533986][ T9757] ? lock_downgrade+0x920/0x920 [ 78.538945][ T9757] ? debug_object_active_state+0x105/0x350 [ 78.544747][ T9757] ? trace_hardirqs_on+0x67/0x240 [ 78.549877][ T9757] ? __kasan_check_read+0x11/0x20 [ 78.554912][ T9757] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 78.560708][ T9757] ? debug_object_active_state+0x28a/0x350 [ 78.566516][ T9757] ? debug_object_deactivate+0x320/0x320 [ 78.572132][ T9757] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 78.578363][ T9757] ? __fget_light+0x1a9/0x230 [ 78.583041][ T9757] ? __fdget+0x1b/0x20 [ 78.587162][ T9757] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 78.593404][ T9757] __sys_sendmsg+0x105/0x1d0 [ 78.597988][ T9757] ? __sys_sendmsg_sock+0xd0/0xd0 [ 78.603004][ T9757] ? task_work_run+0x63/0x1c0 [ 78.607686][ T9757] ? switch_fpu_return+0x1fa/0x4f0 [ 78.612786][ T9757] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 78.618978][ T9757] __x64_sys_sendmsg+0x78/0xb0 [ 78.623924][ T9757] do_syscall_64+0xfd/0x6a0 [ 78.628507][ T9757] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 78.634401][ T9757] RIP: 0033:0x444359 [ 78.638282][ T9757] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 1b d8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 78.658033][ T9757] RSP: 002b:00007ffc35d07488 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 78.666426][ T9757] RAX: ffffffffffffffda RBX: 00000000004002e0 RCX: 0000000000444359 [ 78.674380][ T9757] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 78.682347][ T9757] RBP: 00000000006ce018 R08: 0000000000000044 R09: 00000000004002e0 [ 78.690430][ T9757] R10: 00