[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   30.572464] kauditd_printk_skb: 7 callbacks suppressed
[   30.572475] audit: type=1800 audit(1544476972.224:29): pid=5923 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
[   30.597107] audit: type=1800 audit(1544476972.234:30): pid=5923 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   35.397117] sshd (6063) used greatest stack depth: 15744 bytes left
Warning: Permanently added '10.128.10.58' (ECDSA) to the list of known hosts.
executing program
[   42.105464] Started in network mode
[   42.109353] Own node identity 00000000000000000000000000000001, cluster identity 4711
[   42.118055] New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00aa
[   42.125104] ==================================================================
[   42.132519] BUG: KASAN: use-after-free in kfree_skb+0xb7/0x580
[   42.138491] Read of size 4 at addr ffff8881bd6134a4 by task syz-executor071/6079
[   42.146172] 
[   42.147786] CPU: 1 PID: 6079 Comm: syz-executor071 Not tainted 4.20.0-rc6+ #149
[   42.155209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   42.164548] Call Trace:
[   42.167124]  dump_stack+0x244/0x39d
[   42.170751]  ? dump_stack_print_info.cold.1+0x20/0x20
[   42.175925]  ? printk+0xa7/0xcf
[   42.179328]  ? kmsg_dump_rewind_nolock+0xe4/0xe4
[   42.184078]  print_address_description.cold.7+0x9/0x1ff
[   42.189504]  kasan_report.cold.8+0x242/0x309
[   42.193902]  ? kfree_skb+0xb7/0x580
[   42.197517]  check_memory_region+0x13e/0x1b0
[   42.201924]  kasan_check_read+0x11/0x20
[   42.205989]  kfree_skb+0xb7/0x580
[   42.209428]  ? __kfree_skb+0x20/0x20
[   42.213135]  ? skb_tstamp_tx+0x50/0x50
[   42.217131]  tipc_udp_send_msg+0x5a6/0x670
[   42.221465]  ? tipc_udp_xmit.isra.14+0xef0/0xef0
[   42.226307]  ? bearer_get+0x2f8/0x4e0
[   42.230101]  ? __tipc_nl_add_media+0xca0/0xca0
[   42.234669]  ? kasan_check_read+0x11/0x20
[   42.238800]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[   42.244060]  ? rcu_softirq_qs+0x20/0x20
[   42.248019]  ? tipc_disc_remove_dest+0x120/0x120
[   42.252759]  ? tipc_enable_bearer+0x90d/0xf10
[   42.257271]  ? rcu_read_lock_sched_held+0x14f/0x180
[   42.262306]  tipc_bearer_xmit_skb+0x171/0x350
[   42.266792]  tipc_enable_bearer+0xc5e/0xf10
[   42.271098]  ? mutex_trylock+0x2b0/0x2b0
[   42.275185]  ? tipc_bearer_xmit_skb+0x350/0x350
[   42.279845]  ? nla_memcmp+0x90/0x90
[   42.283542]  ? lock_release+0xa00/0xa00
[   42.287547]  ? perf_trace_sched_process_exec+0x860/0x860
[   42.293142]  ? mark_held_locks+0x130/0x130
[   42.297371]  ? check_preemption_disabled+0x48/0x280
[   42.302405]  __tipc_nl_bearer_enable+0x37c/0x4a0
[   42.307273]  ? __tipc_nl_bearer_enable+0x37c/0x4a0
[   42.312309]  ? tipc_nl_bearer_disable+0x30/0x30
[   42.316980]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   42.322567]  ? __nla_parse+0x12c/0x3e0
[   42.326454]  tipc_nl_bearer_enable+0x22/0x30
[   42.330992]  genl_family_rcv_msg+0x8a7/0x11a0
[   42.335480]  ? genl_unregister_family+0x8a0/0x8a0
[   42.340319]  ? lock_downgrade+0x900/0x900
[   42.344453]  ? check_preemption_disabled+0x48/0x280
[   42.349455]  ? rcu_read_unlock_special+0x1c0/0x1c0
[   42.354370]  ? kasan_check_read+0x11/0x20
[   42.358550]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[   42.363835]  ? rcu_softirq_qs+0x20/0x20
[   42.367806]  genl_rcv_msg+0xc6/0x168
[   42.371508]  netlink_rcv_skb+0x172/0x440
[   42.375719]  ? genl_family_rcv_msg+0x11a0/0x11a0
[   42.380466]  ? netlink_ack+0xb80/0xb80
[   42.384345]  ? down_read+0x8d/0x120
[   42.387968]  genl_rcv+0x28/0x40
[   42.391236]  netlink_unicast+0x5a5/0x760
[   42.395283]  ? netlink_attachskb+0x9a0/0x9a0
[   42.399811]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   42.405338]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[   42.410341]  netlink_sendmsg+0xa18/0xfc0
[   42.414393]  ? netlink_unicast+0x760/0x760
[   42.418625]  ? smack_socket_sendmsg+0xb0/0x190
[   42.423205]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   42.428794]  ? security_socket_sendmsg+0x94/0xc0
[   42.433541]  ? netlink_unicast+0x760/0x760
[   42.437761]  sock_sendmsg+0xd5/0x120
[   42.441467]  ___sys_sendmsg+0x7fd/0x930
[   42.445438]  ? copy_msghdr_from_user+0x580/0x580
[   42.450177]  ? mnt_get_count+0x150/0x150
[   42.454223]  ? dentry_kill+0xce/0x680
[   42.458092]  ? blkcg_maybe_throttle_current+0xa38/0x1080
[   42.463674]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   42.469212]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   42.474732]  ? __fget_light+0x2e9/0x430
[   42.478896]  ? fget_raw+0x20/0x20
[   42.482345]  ? task_work_run+0x1af/0x2a0
[   42.486515]  ? _raw_spin_unlock_irq+0x27/0x80
[   42.490994]  ? _raw_spin_unlock_irq+0x27/0x80
[   42.495491]  ? lockdep_hardirqs_on+0x3bb/0x5b0
[   42.500068]  ? trace_hardirqs_on+0xbd/0x310
[   42.504608]  ? kasan_check_read+0x11/0x20
[   42.508748]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   42.514270]  ? sockfd_lookup_light+0xc5/0x160
[   42.518756]  __sys_sendmsg+0x11d/0x280
[   42.522635]  ? __ia32_sys_shutdown+0x80/0x80
[   42.527033]  ? do_syscall_64+0x6be/0x820
[   42.531086]  ? trace_hardirqs_on+0x310/0x310
[   42.535491]  ? do_syscall_64+0x9a/0x820
[   42.539453]  ? do_syscall_64+0x9a/0x820
[   42.543414]  ? trace_hardirqs_off_caller+0x310/0x310
[   42.548504]  __x64_sys_sendmsg+0x78/0xb0
[   42.553096]  do_syscall_64+0x1b9/0x820
[   42.556987]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[   42.562343]  ? syscall_return_slowpath+0x5e0/0x5e0
[   42.567258]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   42.572091]  ? trace_hardirqs_on_caller+0x310/0x310
[   42.577192]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[   42.582202]  ? prepare_exit_to_usermode+0x291/0x3b0
[   42.587207]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   42.592035]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   42.597208] RIP: 0033:0x4446f9
[   42.600384] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 1b d8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   42.619294] RSP: 002b:00007ffe7f8ac798 EFLAGS: 00000213 ORIG_RAX: 000000000000002e
[   42.626990] RAX: ffffffffffffffda RBX: 00000000004002e0 RCX: 00000000004446f9
[   42.634261] RDX: 0000000000000000 RSI: 0000000020000700 RDI: 0000000000000003
[   42.641525] RBP: 00000000006cf018 R08: 0000000000000000 R09: 00000000004002e0
[   42.648784] R10: 0000000000000000 R11: 0000000000000213 R12: 00000000004023a0
[   42.656039] R13: 0000000000402430 R14: 0000000000000000 R15: 0000000000000000
[   42.663307] 
[   42.664960] Allocated by task 6079:
[   42.668579]  save_stack+0x43/0xd0
[   42.672177]  kasan_kmalloc+0xc7/0xe0
[   42.675881]  kasan_slab_alloc+0x12/0x20
[   42.679999]  kmem_cache_alloc_node+0x144/0x730
[   42.684569]  __alloc_skb+0x119/0x770
[   42.688264]  __pskb_copy_fclone+0x16b/0xeb0
[   42.692613]  tipc_udp_send_msg+0x44e/0x670
[   42.696832]  tipc_bearer_xmit_skb+0x171/0x350
[   42.701329]  tipc_enable_bearer+0xc5e/0xf10
[   42.705634]  __tipc_nl_bearer_enable+0x37c/0x4a0
[   42.710370]  tipc_nl_bearer_enable+0x22/0x30
[   42.714896]  genl_family_rcv_msg+0x8a7/0x11a0
[   42.719452]  genl_rcv_msg+0xc6/0x168
[   42.723152]  netlink_rcv_skb+0x172/0x440
[   42.727194]  genl_rcv+0x28/0x40
[   42.730460]  netlink_unicast+0x5a5/0x760
[   42.734508]  netlink_sendmsg+0xa18/0xfc0
[   42.738554]  sock_sendmsg+0xd5/0x120
[   42.742265]  ___sys_sendmsg+0x7fd/0x930
[   42.746224]  __sys_sendmsg+0x11d/0x280
[   42.750089]  __x64_sys_sendmsg+0x78/0xb0
[   42.754246]  do_syscall_64+0x1b9/0x820
[   42.758116]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   42.763471] 
[   42.765085] Freed by task 6079:
[   42.768350]  save_stack+0x43/0xd0
[   42.771786]  __kasan_slab_free+0x102/0x150
[   42.776025]  kasan_slab_free+0xe/0x10
[   42.779817]  kmem_cache_free+0x83/0x290
[   42.783782]  kfree_skbmem+0x154/0x230
[   42.787584]  kfree_skb+0x1c3/0x580
[   42.791106]  tipc_udp_xmit.isra.14+0x420/0xef0
[   42.795688]  tipc_udp_send_msg+0x398/0x670
[   42.799911]  tipc_bearer_xmit_skb+0x171/0x350
[   42.804391]  tipc_enable_bearer+0xc5e/0xf10
[   42.808823]  __tipc_nl_bearer_enable+0x37c/0x4a0
[   42.813567]  tipc_nl_bearer_enable+0x22/0x30
[   42.817968]  genl_family_rcv_msg+0x8a7/0x11a0
[   42.822451]  genl_rcv_msg+0xc6/0x168
[   42.826248]  netlink_rcv_skb+0x172/0x440
[   42.830297]  genl_rcv+0x28/0x40
[   42.833603]  netlink_unicast+0x5a5/0x760
[   42.837701]  netlink_sendmsg+0xa18/0xfc0
[   42.841744]  sock_sendmsg+0xd5/0x120
[   42.845476]  ___sys_sendmsg+0x7fd/0x930
[   42.849472]  __sys_sendmsg+0x11d/0x280
[   42.853374]  __x64_sys_sendmsg+0x78/0xb0
[   42.857425]  do_syscall_64+0x1b9/0x820
[   42.861305]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   42.866471] 
[   42.868082] The buggy address belongs to the object at ffff8881bd6133c0
[   42.868082]  which belongs to the cache skbuff_head_cache of size 232
[   42.881346] The buggy address is located 228 bytes inside of
[   42.881346]  232-byte region [ffff8881bd6133c0, ffff8881bd6134a8)
[   42.893202] The buggy address belongs to the page:
[   42.898118] page:ffffea0006f584c0 count:1 mapcount:0 mapping:ffff8881d9bdcc00 index:0x0
[   42.906369] flags: 0x2fffc0000000200(slab)
[   42.910589] raw: 02fffc0000000200 ffffea0006f8a888 ffffea0006f8b188 ffff8881d9bdcc00
[   42.918454] raw: 0000000000000000 ffff8881bd613000 000000010000000c 0000000000000000
[   42.926314] page dumped because: kasan: bad access detected
[   42.932005] 
[   42.933628] Memory state around the buggy address:
[   42.938553]  ffff8881bd613380: fc fc fc fc fc fc fc fc fb fb fb fb fb fb fb fb
[   42.945894]  ffff8881bd613400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   42.953231] >ffff8881bd613480: fb fb fb fb fb fc fc fc fc fc fc fc fc fc fc fc
[   42.960676]                                ^
[   42.965069]  ffff8881bd613500: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   42.972418]  ffff8881bd613580: 00 00 00 00 00 00 00 00 00 00 00 00 00 fc fc fc
[   42.980043] ==================================================================
[   42.987381] Disabling lock debugging due to kernel taint
[   42.992980] ==================================================================
[   43.000360] BUG: KASAN: double-free or invalid-free in skb_free_head+0x99/0xc0
[   43.007698] 
[   43.009315] CPU: 1 PID: 6079 Comm: syz-executor071 Tainted: G    B             4.20.0-rc6+ #149
[   43.018128] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   43.027468] Call Trace:
[   43.030031]  <IRQ>
[   43.032167]  dump_stack+0x244/0x39d
[   43.035780]  ? dump_stack_print_info.cold.1+0x20/0x20
[   43.040951]  ? printk+0xa7/0xcf
[   43.044236]  ? kmsg_dump_rewind_nolock+0xe4/0xe4
[   43.049066]  ? debug_check_no_obj_freed+0x305/0x58d
[   43.054241]  print_address_description.cold.7+0x9/0x1ff
[   43.059613]  ? skb_free_head+0x99/0xc0
[   43.063487]  kasan_report_invalid_free+0x64/0xa0
[   43.068229]  ? skb_free_head+0x99/0xc0
[   43.072205]  __kasan_slab_free+0x13a/0x150
[   43.076428]  ? skb_free_head+0x99/0xc0
[   43.080308]  kasan_slab_free+0xe/0x10
[   43.084195]  kfree+0xcf/0x230
[   43.087282]  skb_free_head+0x99/0xc0
[   43.090982]  skb_release_data+0x70c/0x9a0
[   43.095238]  ? __copy_skb_header+0x350/0x6b0
[   43.099745]  ? skb_tx_error+0x410/0x410
[   43.103718]  ? tipc_udp_xmit.isra.14+0x425/0xef0
[   43.108603]  ? kasan_end_report+0x32/0x4f
[   43.112740]  ? kasan_report.cold.8+0x76/0x309
[   43.117222]  skb_release_all+0x4a/0x60
[   43.121103]  kfree_skb+0x1bb/0x580
[   43.124627]  ? tipc_udp_send_msg+0x5a6/0x670
[   43.129017]  ? __kfree_skb+0x20/0x20
[   43.132736]  ? skb_tstamp_tx+0x50/0x50
[   43.136629]  tipc_udp_send_msg+0x5a6/0x670
[   43.140970]  ? tipc_udp_xmit.isra.14+0xef0/0xef0
[   43.145711]  ? bearer_get+0x2f8/0x4e0
[   43.149492]  ? __tipc_nl_add_media+0xca0/0xca0
[   43.154057]  ? skb_clone+0x21a/0x500
[   43.157750]  ? _raw_spin_unlock_bh+0x30/0x40
[   43.162138]  ? trace_hardirqs_off_caller+0x310/0x310
[   43.167221]  ? do_raw_spin_trylock+0x270/0x270
[   43.172003]  tipc_bearer_xmit_skb+0x171/0x350
[   43.176484]  tipc_disc_timeout+0xb2b/0xfc0
[   43.180703]  ? tipc_disc_msg_xmit.isra.19+0x180/0x180
[   43.185876]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   43.191398]  ? check_preemption_disabled+0x48/0x280
[   43.196414]  ? lock_acquire+0x1ed/0x520
[   43.200407]  ? call_timer_fn+0x1db/0x920
[   43.204471]  ? trace_hardirqs_off+0xb8/0x310
[   43.209078]  ? lock_release+0xa00/0xa00
[   43.213043]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   43.218566]  call_timer_fn+0x272/0x920
[   43.222435]  ? tipc_disc_msg_xmit.isra.19+0x180/0x180
[   43.227615]  ? process_timeout+0x40/0x40
[   43.231690]  ? trace_hardirqs_off+0xb8/0x310
[   43.236206]  ? kasan_check_read+0x11/0x20
[   43.240338]  ? do_raw_spin_unlock+0xa7/0x330
[   43.244727]  ? trace_hardirqs_on+0x310/0x310
[   43.249115]  ? __run_timers+0x7da/0xc70
[   43.253178]  ? lock_downgrade+0x900/0x900
[   43.257314]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[   43.262398]  ? trace_hardirqs_on+0xbd/0x310
[   43.266799]  ? kasan_check_read+0x11/0x20
[   43.270937]  ? __run_timers+0x7da/0xc70
[   43.274999]  ? trace_hardirqs_off_caller+0x310/0x310
[   43.280095]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   43.285732]  ? tipc_disc_msg_xmit.isra.19+0x180/0x180
[   43.290901]  __run_timers+0x7e5/0xc70
[   43.294691]  ? timer_fixup_init+0x70/0x70
[   43.298819]  ? kasan_check_read+0x11/0x20
[   43.302964]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[   43.308224]  ? rcu_softirq_qs+0x20/0x20
[   43.312188]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   43.317818]  ? check_preemption_disabled+0x48/0x280
[   43.322822]  ? rcu_irq_exit+0x1a2/0x390
[   43.326848]  ? ret_from_intr+0xb/0x1e
[   43.330634]  ? retint_kernel+0x2d/0x2d
[   43.334507]  ? trace_hardirqs_on_caller+0xc0/0x310
[   43.339420]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   43.344371]  ? __bpf_trace_preemptirq_template+0x30/0x30
[   43.349827]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   43.355531]  ? check_preemption_disabled+0x48/0x280
[   43.360538]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   43.365377]  ? retint_kernel+0x2d/0x2d
[   43.369248]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   43.374770]  ? check_preemption_disabled+0x48/0x280
[   43.379841]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   43.385414]  run_timer_softirq+0x52/0xb0
[   43.389656]  ? __this_cpu_preempt_check+0x1c/0x20
[   43.394505]  __do_softirq+0x308/0xb7e
[   43.398295]  ? ktime_get_raw_ts64+0x4d0/0x4d0
[   43.402832]  ? lock_downgrade+0x900/0x900
[   43.406974]  ? __irqentry_text_end+0x1f9658/0x1f9658
[   43.412140]  ? pvclock_read_flags+0x160/0x160
[   43.416667]  ? lapic_next_event+0x5a/0x90
[   43.420804]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   43.426327]  ? clockevents_program_event+0x140/0x370
[   43.431533]  ? kvm_clock_read+0x18/0x30
[   43.435526]  ? kvm_sched_clock_read+0x9/0x20
[   43.439915]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   43.445543]  ? check_preemption_disabled+0x48/0x280
[   43.450546]  irq_exit+0x17f/0x1c0
[   43.454126]  smp_apic_timer_interrupt+0x1cb/0x760
[   43.459021]  ? smp_call_function_single_interrupt+0x650/0x650
[   43.464896]  ? interrupt_entry+0xb5/0xc0
[   43.468937]  ? trace_hardirqs_off_caller+0xbb/0x310
[   43.473934]  ? trace_hardirqs_off_caller+0xbb/0x310
[   43.478931]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   43.483755]  ? trace_hardirqs_on_caller+0x310/0x310
[   43.488750]  ? trace_hardirqs_on_caller+0x310/0x310
[   43.493746]  ? task_prio+0x50/0x50
[   43.497299]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   43.502827]  ? check_preemption_disabled+0x48/0x280
[   43.507831]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   43.512663]  apic_timer_interrupt+0xf/0x20
[   43.516879]  </IRQ>
[   43.519131] RIP: 0010:_raw_spin_unlock_irqrestore+0xaf/0xd0
[   43.524825] Code: f0 00 52 89 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 28 48 83 3d 18 ef 76 01 00 74 15 48 89 df 57 9d <0f> 1f 44 00 00 eb ad e8 1c 6b 25 f9 eb bb 0f 0b 0f 0b e8 9a d7 e7
[   43.543714] RSP: 0018:ffff8881d1dcede8 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13
[   43.551507] RAX: dffffc0000000000 RBX: 0000000000000286 RCX: ffffffff8185acea
[   43.558762] RDX: 1ffffffff12a401e RSI: ffffffff8185ad04 RDI: 0000000000000286
[   43.566022] RBP: ffff8881d1dcedf8 R08: ffff8881c2f70000 R09: fffffbfff12c7248
[   43.573270] R10: fffffbfff12c7248 R11: ffffffff89639243 R12: ffffffff89639240
[   43.580592] R13: 0000000000000000 R14: ffff8881bd6134a4 R15: ffff8881bd6134a4
[   43.587865]  ? trace_hardirqs_on+0x9a/0x310
[   43.592168]  ? trace_hardirqs_on+0xb4/0x310
[   43.596480]  kasan_end_report+0x32/0x4f
[   43.600523]  kasan_report.cold.8+0x76/0x309
[   43.604837]  ? kfree_skb+0xb7/0x580
[   43.608456]  check_memory_region+0x13e/0x1b0
[   43.612847]  kasan_check_read+0x11/0x20
[   43.616802]  kfree_skb+0xb7/0x580
[   43.620234]  ? __kfree_skb+0x20/0x20
[   43.623948]  ? skb_tstamp_tx+0x50/0x50
[   43.627912]  tipc_udp_send_msg+0x5a6/0x670
[   43.632320]  ? tipc_udp_xmit.isra.14+0xef0/0xef0
[   43.637061]  ? bearer_get+0x2f8/0x4e0
[   43.640844]  ? __tipc_nl_add_media+0xca0/0xca0
[   43.645519]  ? kasan_check_read+0x11/0x20
[   43.649664]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[   43.655023]  ? rcu_softirq_qs+0x20/0x20
[   43.659124]  ? tipc_disc_remove_dest+0x120/0x120
[   43.663866]  ? tipc_enable_bearer+0x90d/0xf10
[   43.668391]  ? rcu_read_lock_sched_held+0x14f/0x180
[   43.673398]  tipc_bearer_xmit_skb+0x171/0x350
[   43.677876]  tipc_enable_bearer+0xc5e/0xf10
[   43.682206]  ? mutex_trylock+0x2b0/0x2b0
[   43.686252]  ? tipc_bearer_xmit_skb+0x350/0x350
[   43.690912]  ? nla_memcmp+0x90/0x90
[   43.694643]  ? lock_release+0xa00/0xa00
[   43.698600]  ? perf_trace_sched_process_exec+0x860/0x860
[   43.704034]  ? mark_held_locks+0x130/0x130
[   43.708251]  ? check_preemption_disabled+0x48/0x280
[   43.713254]  __tipc_nl_bearer_enable+0x37c/0x4a0
[   43.718079]  ? __tipc_nl_bearer_enable+0x37c/0x4a0
[   43.722997]  ? tipc_nl_bearer_disable+0x30/0x30
[   43.727761]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   43.733283]  ? __nla_parse+0x12c/0x3e0
[   43.737396]  tipc_nl_bearer_enable+0x22/0x30
[   43.742040]  genl_family_rcv_msg+0x8a7/0x11a0
[   43.746523]  ? genl_unregister_family+0x8a0/0x8a0
[   43.751350]  ? lock_downgrade+0x900/0x900
[   43.755590]  ? check_preemption_disabled+0x48/0x280
[   43.760588]  ? rcu_read_unlock_special+0x1c0/0x1c0
[   43.765515]  ? kasan_check_read+0x11/0x20
[   43.769646]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[   43.774909]  ? rcu_softirq_qs+0x20/0x20
[   43.778874]  genl_rcv_msg+0xc6/0x168
[   43.782576]  netlink_rcv_skb+0x172/0x440
[   43.786642]  ? genl_family_rcv_msg+0x11a0/0x11a0
[   43.791381]  ? netlink_ack+0xb80/0xb80
[   43.795269]  ? down_read+0x8d/0x120
[   43.798885]  genl_rcv+0x28/0x40
[   43.802143]  netlink_unicast+0x5a5/0x760
[   43.806320]  ? netlink_attachskb+0x9a0/0x9a0
[   43.810715]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   43.816236]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[   43.821235]  netlink_sendmsg+0xa18/0xfc0
[   43.825279]  ? netlink_unicast+0x760/0x760
[   43.829521]  ? smack_socket_sendmsg+0xb0/0x190
[   43.834272]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   43.839805]  ? security_socket_sendmsg+0x94/0xc0
[   43.844617]  ? netlink_unicast+0x760/0x760
[   43.848915]  sock_sendmsg+0xd5/0x120
[   43.852620]  ___sys_sendmsg+0x7fd/0x930
[   43.856585]  ? copy_msghdr_from_user+0x580/0x580
[   43.861436]  ? mnt_get_count+0x150/0x150
[   43.865647]  ? dentry_kill+0xce/0x680
[   43.869541]  ? blkcg_maybe_throttle_current+0xa38/0x1080
[   43.874976]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   43.880496]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   43.886019]  ? __fget_light+0x2e9/0x430
[   43.889986]  ? fget_raw+0x20/0x20
[   43.893425]  ? task_work_run+0x1af/0x2a0
[   43.897469]  ? _raw_spin_unlock_irq+0x27/0x80
[   43.901950]  ? _raw_spin_unlock_irq+0x27/0x80
[   43.906434]  ? lockdep_hardirqs_on+0x3bb/0x5b0
[   43.911018]  ? trace_hardirqs_on+0xbd/0x310
[   43.915326]  ? kasan_check_read+0x11/0x20
[   43.919458]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   43.924977]  ? sockfd_lookup_light+0xc5/0x160
[   43.929463]  __sys_sendmsg+0x11d/0x280
[   43.933335]  ? __ia32_sys_shutdown+0x80/0x80
[   43.937803]  ? do_syscall_64+0x6be/0x820
[   43.941866]  ? trace_hardirqs_on+0x310/0x310
[   43.946275]  ? do_syscall_64+0x9a/0x820
[   43.950244]  ? do_syscall_64+0x9a/0x820
[   43.954220]  ? trace_hardirqs_off_caller+0x310/0x310
[   43.959474]  __x64_sys_sendmsg+0x78/0xb0
[   43.963530]  do_syscall_64+0x1b9/0x820
[   43.967400]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[   43.972748]  ? syscall_return_slowpath+0x5e0/0x5e0
[   43.977827]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   43.982656]  ? trace_hardirqs_on_caller+0x310/0x310
[   43.987661]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[   43.992769]  ? prepare_exit_to_usermode+0x291/0x3b0
[   43.997857]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   44.002694]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   44.007919] RIP: 0033:0x4446f9
[   44.011153] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 1b d8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   44.030039] RSP: 002b:00007ffe7f8ac798 EFLAGS: 00000213 ORIG_RAX: 000000000000002e
[   44.037728] RAX: ffffffffffffffda RBX: 00000000004002e0 RCX: 00000000004446f9
[   44.044987] RDX: 0000000000000000 RSI: 0000000020000700 RDI: 0000000000000003
[   44.052348] RBP: 00000000006cf018 R08: 0000000000000000 R09: 00000000004002e0
[   44.059608] R10: 0000000000000000 R11: 0000000000000213 R12: 00000000004023a0
[   44.066864] R13: 0000000000402430 R14: 0000000000000000 R15: 0000000000000000
[   44.074121] 
[   44.075746] Allocated by task 6079:
[   44.079377]  save_stack+0x43/0xd0
[   44.082812]  kasan_kmalloc+0xc7/0xe0
[   44.086507]  __kmalloc_node_track_caller+0x50/0x70
[   44.091491]  __kmalloc_reserve.isra.40+0x41/0xe0
[   44.096235]  __alloc_skb+0x155/0x770
[   44.099929]  __pskb_copy_fclone+0x16b/0xeb0
[   44.104232]  tipc_udp_send_msg+0x44e/0x670
[   44.108644]  tipc_bearer_xmit_skb+0x171/0x350
[   44.113120]  tipc_disc_timeout+0xb2b/0xfc0
[   44.117350]  call_timer_fn+0x272/0x920
[   44.121362]  __run_timers+0x7e5/0xc70
[   44.125226]  run_timer_softirq+0x52/0xb0
[   44.129273]  __do_softirq+0x308/0xb7e
[   44.133051] 
[   44.134670] Freed by task 6079:
[   44.137945]  save_stack+0x43/0xd0
[   44.141482]  __kasan_slab_free+0x102/0x150
[   44.145704]  kasan_slab_free+0xe/0x10
[   44.149635]  kfree+0xcf/0x230
[   44.152744]  skb_free_head+0x99/0xc0
[   44.156446]  skb_release_data+0x70c/0x9a0
[   44.160698]  skb_release_all+0x4a/0x60
[   44.164568]  kfree_skb+0x1bb/0x580
[   44.168192]  tipc_udp_xmit.isra.14+0x420/0xef0
[   44.172763]  tipc_udp_send_msg+0x398/0x670
[   44.177025]  tipc_bearer_xmit_skb+0x171/0x350
[   44.181508]  tipc_disc_timeout+0xb2b/0xfc0
[   44.185736]  call_timer_fn+0x272/0x920
[   44.189605]  __run_timers+0x7e5/0xc70
[   44.193392]  run_timer_softirq+0x52/0xb0
[   44.197447]  __do_softirq+0x308/0xb7e
[   44.201236] 
[   44.202847] The buggy address belongs to the object at ffff8881be4d3240
[   44.202847]  which belongs to the cache kmalloc-1k of size 1024
[   44.215486] The buggy address is located 0 bytes inside of
[   44.215486]  1024-byte region [ffff8881be4d3240, ffff8881be4d3640)
[   44.227358] The buggy address belongs to the page:
[   44.232375] page:ffffea0006f93480 count:1 mapcount:0 mapping:ffff8881da800ac0 index:0x0 compound_mapcount: 0
[   44.242330] flags: 0x2fffc0000010200(slab|head)
[   44.246984] raw: 02fffc0000010200 ffffea0006e97b88 ffffea0006e85988 ffff8881da800ac0
[   44.254865] raw: 0000000000000000 ffff8881be4d2040 0000000100000007 0000000000000000
[   44.262822] page dumped because: kasan: bad access detected
[   44.268515] 
[   44.270121] Memory state around the buggy address:
[   44.275028]  ffff8881be4d3100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   44.282411]  ffff8881be4d3180: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[   44.289762] >ffff8881be4d3200: fc fc fc fc fc fc fc fc fb fb fb fb fb fb fb fb
[   44.297098]                                            ^
[   44.302524]  ffff8881be4d3280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   44.309866]  ffff8881be4d3300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   44.317201] ==================================================================
[   44.324544] Kernel panic - not syncing: panic_on_warn set ...
[   44.330542] CPU: 1 PID: 6079 Comm: syz-executor071 Tainted: G    B             4.20.0-rc6+ #149
[   44.339362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   44.348697] Call Trace:
[   44.351256]  <IRQ>
[   44.353392]  dump_stack+0x244/0x39d
[   44.357007]  ? dump_stack_print_info.cold.1+0x20/0x20
[   44.362248]  ? skb_free_head+0x30/0xc0
[   44.366149]  panic+0x2ad/0x55c
[   44.369321]  ? add_taint.cold.5+0x16/0x16
[   44.373457]  ? print_shadow_for_address+0xb6/0x116
[   44.378381]  ? trace_hardirqs_off+0xaf/0x310
[   44.382786]  ? skb_free_head+0x99/0xc0
[   44.386663]  kasan_end_report+0x47/0x4f
[   44.390624]  kasan_report_invalid_free+0x81/0xa0
[   44.395363]  ? skb_free_head+0x99/0xc0
[   44.399457]  __kasan_slab_free+0x13a/0x150
[   44.403807]  ? skb_free_head+0x99/0xc0
[   44.407684]  kasan_slab_free+0xe/0x10
[   44.411467]  kfree+0xcf/0x230
[   44.414555]  skb_free_head+0x99/0xc0
[   44.418327]  skb_release_data+0x70c/0x9a0
[   44.422462]  ? __copy_skb_header+0x350/0x6b0
[   44.426922]  ? skb_tx_error+0x410/0x410
[   44.430890]  ? tipc_udp_xmit.isra.14+0x425/0xef0
[   44.435629]  ? kasan_end_report+0x32/0x4f
[   44.439762]  ? kasan_report.cold.8+0x76/0x309
[   44.444259]  skb_release_all+0x4a/0x60
[   44.448127]  kfree_skb+0x1bb/0x580
[   44.451894]  ? tipc_udp_send_msg+0x5a6/0x670
[   44.456308]  ? __kfree_skb+0x20/0x20
[   44.460009]  ? skb_tstamp_tx+0x50/0x50
[   44.463887]  tipc_udp_send_msg+0x5a6/0x670
[   44.468150]  ? tipc_udp_xmit.isra.14+0xef0/0xef0
[   44.472890]  ? bearer_get+0x2f8/0x4e0
[   44.476679]  ? __tipc_nl_add_media+0xca0/0xca0
[   44.481242]  ? skb_clone+0x21a/0x500
[   44.484937]  ? _raw_spin_unlock_bh+0x30/0x40
[   44.489333]  ? trace_hardirqs_off_caller+0x310/0x310
[   44.494426]  ? do_raw_spin_trylock+0x270/0x270
[   44.499012]  tipc_bearer_xmit_skb+0x171/0x350
[   44.503653]  tipc_disc_timeout+0xb2b/0xfc0
[   44.507906]  ? tipc_disc_msg_xmit.isra.19+0x180/0x180
[   44.513083]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   44.518623]  ? check_preemption_disabled+0x48/0x280
[   44.523639]  ? lock_acquire+0x1ed/0x520
[   44.527600]  ? call_timer_fn+0x1db/0x920
[   44.531641]  ? trace_hardirqs_off+0xb8/0x310
[   44.536076]  ? lock_release+0xa00/0xa00
[   44.540039]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   44.545562]  call_timer_fn+0x272/0x920
[   44.549436]  ? tipc_disc_msg_xmit.isra.19+0x180/0x180
[   44.554608]  ? process_timeout+0x40/0x40
[   44.558650]  ? trace_hardirqs_off+0xb8/0x310
[   44.563153]  ? kasan_check_read+0x11/0x20
[   44.567452]  ? do_raw_spin_unlock+0xa7/0x330
[   44.571911]  ? trace_hardirqs_on+0x310/0x310
[   44.576327]  ? __run_timers+0x7da/0xc70
[   44.580307]  ? lock_downgrade+0x900/0x900
[   44.584440]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[   44.589650]  ? trace_hardirqs_on+0xbd/0x310
[   44.593957]  ? kasan_check_read+0x11/0x20
[   44.598088]  ? __run_timers+0x7da/0xc70
[   44.602042]  ? trace_hardirqs_off_caller+0x310/0x310
[   44.607146]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   44.612671]  ? tipc_disc_msg_xmit.isra.19+0x180/0x180
[   44.617846]  __run_timers+0x7e5/0xc70
[   44.621639]  ? timer_fixup_init+0x70/0x70
[   44.625779]  ? kasan_check_read+0x11/0x20
[   44.629911]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[   44.635201]  ? rcu_softirq_qs+0x20/0x20
[   44.639175]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   44.644695]  ? check_preemption_disabled+0x48/0x280
[   44.649700]  ? rcu_irq_exit+0x1a2/0x390
[   44.653705]  ? ret_from_intr+0xb/0x1e
[   44.657492]  ? retint_kernel+0x2d/0x2d
[   44.661433]  ? trace_hardirqs_on_caller+0xc0/0x310
[   44.666367]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   44.671111]  ? __bpf_trace_preemptirq_template+0x30/0x30
[   44.676589]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   44.682400]  ? check_preemption_disabled+0x48/0x280
[   44.687411]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   44.692151]  ? retint_kernel+0x2d/0x2d
[   44.696113]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   44.701639]  ? check_preemption_disabled+0x48/0x280
[   44.706640]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   44.712193]  run_timer_softirq+0x52/0xb0
[   44.716241]  ? __this_cpu_preempt_check+0x1c/0x20
[   44.721087]  __do_softirq+0x308/0xb7e
[   44.724881]  ? ktime_get_raw_ts64+0x4d0/0x4d0
[   44.729359]  ? lock_downgrade+0x900/0x900
[   44.733513]  ? __irqentry_text_end+0x1f9658/0x1f9658
[   44.738631]  ? pvclock_read_flags+0x160/0x160
[   44.743113]  ? lapic_next_event+0x5a/0x90
[   44.747242]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   44.752839]  ? clockevents_program_event+0x140/0x370
[   44.758036]  ? kvm_clock_read+0x18/0x30
[   44.761999]  ? kvm_sched_clock_read+0x9/0x20
[   44.766394]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   44.771913]  ? check_preemption_disabled+0x48/0x280
[   44.776983]  irq_exit+0x17f/0x1c0
[   44.780427]  smp_apic_timer_interrupt+0x1cb/0x760
[   44.785268]  ? smp_call_function_single_interrupt+0x650/0x650
[   44.791244]  ? interrupt_entry+0xb5/0xc0
[   44.795304]  ? trace_hardirqs_off_caller+0xbb/0x310
[   44.800309]  ? trace_hardirqs_off_caller+0xbb/0x310
[   44.805313]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   44.810143]  ? trace_hardirqs_on_caller+0x310/0x310
[   44.815208]  ? trace_hardirqs_on_caller+0x310/0x310
[   44.820208]  ? task_prio+0x50/0x50
[   44.823747]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   44.829264]  ? check_preemption_disabled+0x48/0x280
[   44.834298]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   44.839127]  apic_timer_interrupt+0xf/0x20
[   44.843340]  </IRQ>
[   44.845646] RIP: 0010:_raw_spin_unlock_irqrestore+0xaf/0xd0
[   44.851412] Code: f0 00 52 89 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 28 48 83 3d 18 ef 76 01 00 74 15 48 89 df 57 9d <0f> 1f 44 00 00 eb ad e8 1c 6b 25 f9 eb bb 0f 0b 0f 0b e8 9a d7 e7
[   44.870309] RSP: 0018:ffff8881d1dcede8 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13
[   44.878035] RAX: dffffc0000000000 RBX: 0000000000000286 RCX: ffffffff8185acea
[   44.885390] RDX: 1ffffffff12a401e RSI: ffffffff8185ad04 RDI: 0000000000000286
[   44.892640] RBP: ffff8881d1dcedf8 R08: ffff8881c2f70000 R09: fffffbfff12c7248
[   44.899895] R10: fffffbfff12c7248 R11: ffffffff89639243 R12: ffffffff89639240
[   44.907253] R13: 0000000000000000 R14: ffff8881bd6134a4 R15: ffff8881bd6134a4
[   44.914513]  ? trace_hardirqs_on+0x9a/0x310
[   44.918922]  ? trace_hardirqs_on+0xb4/0x310
[   44.923361]  kasan_end_report+0x32/0x4f
[   44.927321]  kasan_report.cold.8+0x76/0x309
[   44.931623]  ? kfree_skb+0xb7/0x580
[   44.935346]  check_memory_region+0x13e/0x1b0
[   44.939849]  kasan_check_read+0x11/0x20
[   44.943809]  kfree_skb+0xb7/0x580
[   44.947245]  ? __kfree_skb+0x20/0x20
[   44.950939]  ? skb_tstamp_tx+0x50/0x50
[   44.954894]  tipc_udp_send_msg+0x5a6/0x670
[   44.959121]  ? tipc_udp_xmit.isra.14+0xef0/0xef0
[   44.963862]  ? bearer_get+0x2f8/0x4e0
[   44.967656]  ? __tipc_nl_add_media+0xca0/0xca0
[   44.972225]  ? kasan_check_read+0x11/0x20
[   44.976376]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[   44.981634]  ? rcu_softirq_qs+0x20/0x20
[   44.985593]  ? tipc_disc_remove_dest+0x120/0x120
[   44.990331]  ? tipc_enable_bearer+0x90d/0xf10
[   44.995258]  ? rcu_read_lock_sched_held+0x14f/0x180
[   45.000253]  tipc_bearer_xmit_skb+0x171/0x350
[   45.004748]  tipc_enable_bearer+0xc5e/0xf10
[   45.009051]  ? mutex_trylock+0x2b0/0x2b0
[   45.013095]  ? tipc_bearer_xmit_skb+0x350/0x350
[   45.017764]  ? nla_memcmp+0x90/0x90
[   45.021375]  ? lock_release+0xa00/0xa00
[   45.025331]  ? perf_trace_sched_process_exec+0x860/0x860
[   45.030763]  ? mark_held_locks+0x130/0x130
[   45.034978]  ? check_preemption_disabled+0x48/0x280
[   45.039986]  __tipc_nl_bearer_enable+0x37c/0x4a0
[   45.044727]  ? __tipc_nl_bearer_enable+0x37c/0x4a0
[   45.049639]  ? tipc_nl_bearer_disable+0x30/0x30
[   45.054301]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   45.059827]  ? __nla_parse+0x12c/0x3e0
[   45.063749]  tipc_nl_bearer_enable+0x22/0x30
[   45.068141]  genl_family_rcv_msg+0x8a7/0x11a0
[   45.072621]  ? genl_unregister_family+0x8a0/0x8a0
[   45.077461]  ? lock_downgrade+0x900/0x900
[   45.081593]  ? check_preemption_disabled+0x48/0x280
[   45.086641]  ? rcu_read_unlock_special+0x1c0/0x1c0
[   45.091554]  ? kasan_check_read+0x11/0x20
[   45.095709]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[   45.100989]  ? rcu_softirq_qs+0x20/0x20
[   45.105059]  genl_rcv_msg+0xc6/0x168
[   45.108777]  netlink_rcv_skb+0x172/0x440
[   45.112828]  ? genl_family_rcv_msg+0x11a0/0x11a0
[   45.117566]  ? netlink_ack+0xb80/0xb80
[   45.121437]  ? down_read+0x8d/0x120
[   45.125051]  genl_rcv+0x28/0x40
[   45.128314]  netlink_unicast+0x5a5/0x760
[   45.132359]  ? netlink_attachskb+0x9a0/0x9a0
[   45.136752]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   45.142283]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[   45.147307]  netlink_sendmsg+0xa18/0xfc0
[   45.151371]  ? netlink_unicast+0x760/0x760
[   45.155610]  ? smack_socket_sendmsg+0xb0/0x190
[   45.160205]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   45.165726]  ? security_socket_sendmsg+0x94/0xc0
[   45.170463]  ? netlink_unicast+0x760/0x760
[   45.174697]  sock_sendmsg+0xd5/0x120
[   45.178410]  ___sys_sendmsg+0x7fd/0x930
[   45.182366]  ? copy_msghdr_from_user+0x580/0x580
[   45.187107]  ? mnt_get_count+0x150/0x150
[   45.191153]  ? dentry_kill+0xce/0x680
[   45.194940]  ? blkcg_maybe_throttle_current+0xa38/0x1080
[   45.200402]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   45.205939]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   45.211477]  ? __fget_light+0x2e9/0x430
[   45.215435]  ? fget_raw+0x20/0x20
[   45.218872]  ? task_work_run+0x1af/0x2a0
[   45.222918]  ? _raw_spin_unlock_irq+0x27/0x80
[   45.227396]  ? _raw_spin_unlock_irq+0x27/0x80
[   45.231872]  ? lockdep_hardirqs_on+0x3bb/0x5b0
[   45.236444]  ? trace_hardirqs_on+0xbd/0x310
[   45.240763]  ? kasan_check_read+0x11/0x20
[   45.244895]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   45.250413]  ? sockfd_lookup_light+0xc5/0x160
[   45.254893]  __sys_sendmsg+0x11d/0x280
[   45.258762]  ? __ia32_sys_shutdown+0x80/0x80
[   45.263156]  ? do_syscall_64+0x6be/0x820
[   45.267199]  ? trace_hardirqs_on+0x310/0x310
[   45.271591]  ? do_syscall_64+0x9a/0x820
[   45.275549]  ? do_syscall_64+0x9a/0x820
[   45.279509]  ? trace_hardirqs_off_caller+0x310/0x310
[   45.284597]  __x64_sys_sendmsg+0x78/0xb0
[   45.288638]  do_syscall_64+0x1b9/0x820
[   45.292505]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[   45.297850]  ? syscall_return_slowpath+0x5e0/0x5e0
[   45.302782]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   45.307614]  ? trace_hardirqs_on_caller+0x310/0x310
[   45.312610]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[   45.317608]  ? prepare_exit_to_usermode+0x291/0x3b0
[   45.322607]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   45.327435]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   45.332645] RIP: 0033:0x4446f9
[   45.335859] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 1b d8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   45.354771] RSP: 002b:00007ffe7f8ac798 EFLAGS: 00000213 ORIG_RAX: 000000000000002e
[   45.362491] RAX: ffffffffffffffda RBX: 00000000004002e0 RCX: 00000000004446f9
[   45.369744] RDX: 0000000000000000 RSI: 0000000020000700 RDI: 0000000000000003
[   45.377011] RBP: 00000000006cf018 R08: 0000000000000000 R09: 00000000004002e0
[   45.384276] R10: 0000000000000000 R11: 0000000000000213 R12: 00000000004023a0
[   45.391537] R13: 0000000000402430 R14: 0000000000000000 R15: 0000000000000000
[   45.399795] Kernel Offset: disabled
[   45.403430] Rebooting in 86400 seconds..