[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 44.744093] IPVS: ftp: loaded support on port[0] = 21 [ 45.107151] tipc: TX() has been purged, node left! [ 45.304980] can: request_module (can-proto-0) failed. [ 48.090140] can: request_module (can-proto-0) failed. Warning: Permanently added '10.128.0.60' (ECDSA) to the list of known hosts. 2020/01/27 22:30:32 parsed 1 programs 2020/01/27 22:30:33 executed programs: 0 [ 56.510323] IPVS: ftp: loaded support on port[0] = 21 [ 56.524777] IPVS: ftp: loaded support on port[0] = 21 [ 56.524808] IPVS: ftp: loaded support on port[0] = 21 [ 56.549183] IPVS: ftp: loaded support on port[0] = 21 [ 56.551346] IPVS: ftp: loaded support on port[0] = 21 [ 56.607593] IPVS: ftp: loaded support on port[0] = 21 [ 56.726457] chnl_net:caif_netlink_parms(): no params data found [ 56.788232] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.795196] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.803044] device bridge_slave_0 entered promiscuous mode [ 56.827100] chnl_net:caif_netlink_parms(): no params data found [ 56.858207] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.864631] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.871773] device bridge_slave_1 entered promiscuous mode [ 56.893830] chnl_net:caif_netlink_parms(): no params data found [ 56.950740] chnl_net:caif_netlink_parms(): no params data found [ 56.985142] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.001192] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.008358] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.015291] device bridge_slave_0 entered promiscuous mode [ 57.044117] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.053137] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.059850] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.066739] device bridge_slave_1 entered promiscuous mode [ 57.081576] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.087999] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.095183] device bridge_slave_0 entered promiscuous mode [ 57.120090] chnl_net:caif_netlink_parms(): no params data found [ 57.131589] chnl_net:caif_netlink_parms(): no params data found [ 57.141209] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.147844] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.154774] device bridge_slave_1 entered promiscuous mode [ 57.183803] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.193768] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.211296] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.220005] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.226496] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.234714] device bridge_slave_0 entered promiscuous mode [ 57.244427] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.250868] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.258419] device bridge_slave_1 entered promiscuous mode [ 57.266340] team0: Port device team_slave_0 added [ 57.279862] team0: Port device team_slave_1 added [ 57.286075] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.319482] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.325965] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.333078] device bridge_slave_0 entered promiscuous mode [ 57.354579] team0: Port device team_slave_0 added [ 57.371669] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.379724] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.386650] device bridge_slave_1 entered promiscuous mode [ 57.399071] team0: Port device team_slave_0 added [ 57.405147] team0: Port device team_slave_1 added [ 57.412779] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.426172] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.434578] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.442166] device bridge_slave_0 entered promiscuous mode [ 57.454732] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.461427] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.468654] device bridge_slave_1 entered promiscuous mode [ 57.482324] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.496768] team0: Port device team_slave_1 added [ 57.526132] team0: Port device team_slave_0 added [ 57.532561] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.579954] device hsr_slave_0 entered promiscuous mode [ 57.618211] device hsr_slave_1 entered promiscuous mode [ 57.659085] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.672596] team0: Port device team_slave_1 added [ 57.679350] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.691944] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.750614] device hsr_slave_0 entered promiscuous mode [ 57.817259] device hsr_slave_1 entered promiscuous mode [ 57.867166] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 57.874227] Cannot create hsr debugfs directory [ 57.969874] device hsr_slave_0 entered promiscuous mode [ 58.010361] device hsr_slave_1 entered promiscuous mode [ 58.047123] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 58.054100] Cannot create hsr debugfs directory [ 58.061355] team0: Port device team_slave_0 added [ 58.131166] device hsr_slave_0 entered promiscuous mode [ 58.197588] device hsr_slave_1 entered promiscuous mode [ 58.267151] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 58.274041] Cannot create hsr debugfs directory [ 58.285532] team0: Port device team_slave_0 added [ 58.292956] team0: Port device team_slave_1 added [ 58.305007] team0: Port device team_slave_1 added [ 58.378769] device hsr_slave_0 entered promiscuous mode [ 58.447436] device hsr_slave_1 entered promiscuous mode [ 58.507105] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 58.513985] Cannot create hsr debugfs directory [ 58.609883] device hsr_slave_0 entered promiscuous mode [ 58.647369] device hsr_slave_1 entered promiscuous mode [ 58.717076] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 58.723932] Cannot create hsr debugfs directory [ 58.813191] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.859626] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.876771] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.901446] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 58.909208] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 58.923011] 8021q: adding VLAN 0 to HW filter on device team0 [ 58.938178] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.946028] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 58.953252] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 58.961887] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 58.969197] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 58.986520] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 58.996663] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 59.011976] 8021q: adding VLAN 0 to HW filter on device bond0 [ 59.020173] 8021q: adding VLAN 0 to HW filter on device team0 [ 59.034902] 8021q: adding VLAN 0 to HW filter on device team0 [ 59.042184] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 59.056483] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 59.064586] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.071134] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.079454] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 59.087690] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 59.095282] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.101750] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.109159] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 59.117113] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 59.124804] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 59.132997] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 59.140879] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 59.149034] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 59.156592] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 59.164475] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 59.172656] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 59.180536] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 59.188250] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 59.195151] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 59.203412] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 59.211051] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 59.218379] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 59.231400] 8021q: adding VLAN 0 to HW filter on device team0 [ 59.250347] 8021q: adding VLAN 0 to HW filter on device bond0 [ 59.267367] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 59.274479] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 59.284289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 59.292410] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 59.300979] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.307417] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.314236] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 59.322163] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 59.330117] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.336613] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.343650] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 59.354550] 8021q: adding VLAN 0 to HW filter on device team0 [ 59.367115] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 59.374972] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 59.385846] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.392337] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.399657] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 59.407566] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 59.415162] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.421556] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.428316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 59.439725] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 59.449180] 8021q: adding VLAN 0 to HW filter on device team0 [ 59.483974] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 59.493619] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 59.501054] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 59.511845] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 59.520033] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 59.527978] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 59.535811] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 59.543475] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 59.551529] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 59.559659] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 59.567273] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 59.574708] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 59.582477] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 59.590027] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 59.597963] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 59.605596] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.612000] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.618883] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 59.626734] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 59.634691] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.641104] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.648151] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 59.655868] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 59.664064] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 59.671773] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.678250] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.684977] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 59.693207] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 59.701094] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 59.708837] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.715228] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.722278] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 59.735937] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 59.765624] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 59.775458] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 59.793610] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 59.801177] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 59.808513] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 59.815587] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 59.823618] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 59.832319] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.838790] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.846197] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 59.854521] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 59.862474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 59.870665] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 59.878780] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 59.886483] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 59.894489] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 59.902669] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 59.910870] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 59.918568] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 59.926328] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 59.934006] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 59.941181] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 59.959734] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 59.969662] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 59.977406] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 59.985255] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 59.993362] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 60.001403] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 60.041230] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 60.050259] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 60.058112] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 60.066269] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 60.074393] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.080847] bridge0: port 2(bridge_slave_1) entered forwarding state [ 60.088081] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 60.096249] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 60.104079] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 60.112140] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 60.119958] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 60.128431] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 60.136256] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 60.144178] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 60.151904] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 60.159667] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 60.167640] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 60.175689] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 60.193484] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 60.205698] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 60.223459] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 60.235444] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 60.263890] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 60.289136] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 60.299673] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 60.308241] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 60.316183] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 60.326299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 60.339556] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 60.347868] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 60.355508] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 60.367299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 60.374896] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 60.383155] tipc: Started in network mode [ 60.387819] tipc: Own node identity 7f000001, cluster identity 4711 [ 60.395560] check_preemption_disabled: 8 callbacks suppressed [ 60.395571] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.2/7584 [ 60.410645] caller is dst_cache_get+0x33/0xa0 [ 60.415168] CPU: 1 PID: 7584 Comm: syz-executor.2 Not tainted 5.5.0-rc7-syzkaller #0 [ 60.423056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 60.432408] Call Trace: [ 60.434985] dump_stack+0x12d/0x187 [ 60.438621] debug_smp_processor_id.cold.1+0x84/0x9e [ 60.443738] dst_cache_get+0x33/0xa0 [ 60.447443] ? tipc_crypto_xmit+0x1e2/0x2b00 [ 60.451848] tipc_udp_xmit.isra.15+0xab/0xcd0 [ 60.456359] ? tipc_udp_addr2str+0x150/0x150 [ 60.460759] ? tipc_crypto_timeout+0xfb0/0xfb0 [ 60.465355] ? rcu_read_lock_held+0x9c/0xb0 [ 60.469658] ? rcu_read_lock_held_common+0x120/0x120 [ 60.474758] tipc_udp_send_msg+0x31e/0x3d0 [ 60.478996] tipc_bearer_xmit_skb+0x1a5/0x370 [ 60.483486] ? tipc_bearer_mtu+0x350/0x350 [ 60.487707] ? tipc_disc_create+0x5d7/0x8c0 [ 60.492018] tipc_enable_bearer+0x859/0xbb0 [ 60.496408] ? __mutex_lock+0xc43/0x1410 [ 60.500511] ? tipc_bearer_xmit_skb+0x370/0x370 [ 60.505235] ? __nla_validate_parse+0xa1/0x1d80 [ 60.509908] ? rtnl_lock+0x12/0x20 [ 60.513436] __tipc_nl_bearer_enable+0x265/0x390 [ 60.518230] ? __tipc_nl_bearer_enable+0x187/0x390 [ 60.523163] ? __tipc_nl_bearer_enable+0x265/0x390 [ 60.528081] ? tipc_nl_bearer_disable+0x30/0x30 [ 60.532751] ? __local_bh_enable_ip+0x160/0x260 [ 60.537471] tipc_nl_bearer_enable+0x1d/0x30 [ 60.541885] genl_rcv_msg+0x5e1/0x10f0 [ 60.545762] ? __kasan_check_read+0x11/0x20 [ 60.550072] ? genl_family_rcv_msg_attrs_parse+0x340/0x340 [ 60.555701] netlink_rcv_skb+0x13f/0x380 [ 60.559758] ? genl_family_rcv_msg_attrs_parse+0x340/0x340 [ 60.565483] ? netlink_ack+0x980/0x980 [ 60.569375] ? netlink_deliver_tap+0x178/0xad0 [ 60.573946] genl_rcv+0x23/0x40 [ 60.577259] netlink_unicast+0x479/0x6c0 [ 60.581325] ? netlink_attachskb+0x740/0x740 [ 60.585779] ? _copy_from_iter_full+0x18a/0x780 [ 60.590595] ? __kasan_check_read+0x11/0x20 [ 60.594934] ? __check_object_size+0x203/0x2ea [ 60.599647] netlink_sendmsg+0x7ab/0xd50 [ 60.603697] ? netlink_unicast+0x6c0/0x6c0 [ 60.607990] ? apparmor_socket_sendmsg+0x1b/0x20 [ 60.612768] ? netlink_unicast+0x6c0/0x6c0 [ 60.617044] sock_sendmsg+0xe6/0x110 [ 60.620751] ____sys_sendmsg+0x603/0x980 [ 60.624818] ? copy_msghdr_from_user+0x209/0x420 [ 60.629609] ? kernel_sendmsg+0x30/0x30 [ 60.633587] ___sys_sendmsg+0xe4/0x160 [ 60.637461] ? sendmsg_copy_msghdr+0x30/0x30 [ 60.641922] ? __kasan_check_read+0x11/0x20 [ 60.646480] ? __fget+0x2ac/0x410 [ 60.649934] ? ksys_dup3+0x2e0/0x2e0 [ 60.653636] ? __might_fault+0xf1/0x1b0 [ 60.657607] ? __fget_light+0x179/0x1f0 [ 60.661634] ? lock_acquire+0x194/0x410 [ 60.665616] ? __fdget+0xe/0x10 [ 60.668904] __sys_sendmsg+0xd9/0x180 [ 60.672750] ? __sys_sendmsg_sock+0xa0/0xa0 [ 60.677056] ? __kasan_check_read+0x11/0x20 [ 60.681365] ? _copy_to_user+0xcb/0xf0 [ 60.685380] ? put_timespec64+0xa9/0x100 [ 60.689441] ? nsecs_to_jiffies+0x20/0x20 [ 60.693588] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 60.698962] __x64_sys_sendmsg+0x73/0xb0 [ 60.703021] do_syscall_64+0xd0/0x600 [ 60.706818] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 60.711996] RIP: 0033:0x457f89 [ 60.715180] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 60.734071] RSP: 002b:00007f7409e58c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 60.741898] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457f89 [ 60.749154] RDX: 0000000000000004 RSI: 0000000020000000 RDI: 000000000000000e [ 60.756417] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 60.763683] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f7409e596d4 [ 60.770993] R13: 00000000004c52ba R14: 00000000004d9038 R15: 00000000ffffffff [ 60.780539] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.2/7584 [ 60.789326] caller is dst_cache_set_ip4+0x97/0x2e0 [ 60.794271] CPU: 1 PID: 7584 Comm: syz-executor.2 Not tainted 5.5.0-rc7-syzkaller #0 [ 60.802153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 60.811507] Call Trace: [ 60.814088] dump_stack+0x12d/0x187 [ 60.817763] debug_smp_processor_id.cold.1+0x84/0x9e [ 60.822909] dst_cache_set_ip4+0x97/0x2e0 [ 60.827066] ? dst_cache_get_ip6+0x1b0/0x1b0 [ 60.831480] ? xfrm_lookup_route+0x1f/0x110 [ 60.835804] tipc_udp_xmit.isra.15+0x7aa/0xcd0 [ 60.840386] ? tipc_udp_addr2str+0x150/0x150 [ 60.844797] ? tipc_crypto_timeout+0xfb0/0xfb0 [ 60.849392] ? rcu_read_lock_held+0x9c/0xb0 [ 60.853875] ? rcu_read_lock_held_common+0x120/0x120 [ 60.858978] tipc_udp_send_msg+0x31e/0x3d0 [ 60.863220] tipc_bearer_xmit_skb+0x1a5/0x370 [ 60.867715] ? tipc_bearer_mtu+0x350/0x350 [ 60.871934] ? tipc_disc_create+0x5d7/0x8c0 [ 60.876241] tipc_enable_bearer+0x859/0xbb0 [ 60.880559] ? __mutex_lock+0xc43/0x1410 [ 60.884685] ? tipc_bearer_xmit_skb+0x370/0x370 [ 60.889389] ? __nla_validate_parse+0xa1/0x1d80 [ 60.894063] ? rtnl_lock+0x12/0x20 [ 60.897618] __tipc_nl_bearer_enable+0x265/0x390 [ 60.902367] ? __tipc_nl_bearer_enable+0x187/0x390 [ 60.907285] ? __tipc_nl_bearer_enable+0x265/0x390 [ 60.912201] ? tipc_nl_bearer_disable+0x30/0x30 [ 60.916870] ? __local_bh_enable_ip+0x160/0x260 [ 60.921587] tipc_nl_bearer_enable+0x1d/0x30 [ 60.925983] genl_rcv_msg+0x5e1/0x10f0 [ 60.929865] ? __kasan_check_read+0x11/0x20 [ 60.934195] ? genl_family_rcv_msg_attrs_parse+0x340/0x340 [ 60.939954] netlink_rcv_skb+0x13f/0x380 [ 60.944030] ? genl_family_rcv_msg_attrs_parse+0x340/0x340 [ 60.949752] ? netlink_ack+0x980/0x980 [ 60.953642] ? netlink_deliver_tap+0x178/0xad0 [ 60.958225] genl_rcv+0x23/0x40 [ 60.961507] netlink_unicast+0x479/0x6c0 [ 60.965562] ? netlink_attachskb+0x740/0x740 [ 60.969974] ? _copy_from_iter_full+0x18a/0x780 [ 60.974636] ? __kasan_check_read+0x11/0x20 [ 60.979688] ? __check_object_size+0x203/0x2ea [ 60.984266] netlink_sendmsg+0x7ab/0xd50 [ 60.988358] ? netlink_unicast+0x6c0/0x6c0 [ 60.992641] ? apparmor_socket_sendmsg+0x1b/0x20 [ 60.997391] ? netlink_unicast+0x6c0/0x6c0 [ 61.001614] sock_sendmsg+0xe6/0x110 [ 61.005327] ____sys_sendmsg+0x603/0x980 [ 61.009399] ? copy_msghdr_from_user+0x209/0x420 [ 61.014150] ? kernel_sendmsg+0x30/0x30 [ 61.018163] ___sys_sendmsg+0xe4/0x160 [ 61.022102] ? sendmsg_copy_msghdr+0x30/0x30 [ 61.026561] ? __kasan_check_read+0x11/0x20 [ 61.030938] ? __fget+0x2ac/0x410 [ 61.034393] ? ksys_dup3+0x2e0/0x2e0 [ 61.038098] ? __might_fault+0xf1/0x1b0 [ 61.042066] ? __fget_light+0x179/0x1f0 [ 61.046030] ? lock_acquire+0x194/0x410 [ 61.050001] ? __fdget+0xe/0x10 [ 61.053277] __sys_sendmsg+0xd9/0x180 [ 61.057074] ? __sys_sendmsg_sock+0xa0/0xa0 [ 61.061447] ? __kasan_check_read+0x11/0x20 [ 61.065791] ? _copy_to_user+0xcb/0xf0 [ 61.069670] ? put_timespec64+0xa9/0x100 [ 61.073732] ? nsecs_to_jiffies+0x20/0x20 [ 61.077881] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 61.083268] __x64_sys_sendmsg+0x73/0xb0 [ 61.087338] do_syscall_64+0xd0/0x600 [ 61.091252] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 61.096439] RIP: 0033:0x457f89 [ 61.099624] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 61.118619] RSP: 002b:00007f7409e58c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 61.126380] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457f89 [ 61.133748] RDX: 0000000000000004 RSI: 0000000020000000 RDI: 000000000000000e [ 61.141015] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 61.148407] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f7409e596d4 [ 61.155670] R13: 00000000004c52ba R14: 00000000004d9038 R15: 00000000ffffffff [ 61.165073] tipc: Enabled bearer , priority 10 [ 61.182844] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 61.219342] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 61.232451] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 61.254585] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 61.406721] tipc: Enabling of bearer rejected, already enabled [ 61.437749] tipc: 32-bit node address hash set to 100007f [ 61.512853] tipc: Started in network mode [ 61.526459] tipc: Own node identity 7f000001, cluster identity 4711 [ 61.552943] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.1/7634 [ 61.561866] caller is dst_cache_get+0x33/0xa0 [ 61.566363] CPU: 1 PID: 7634 Comm: syz-executor.1 Not tainted 5.5.0-rc7-syzkaller #0 [ 61.574263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 61.584181] Call Trace: [ 61.586797] dump_stack+0x12d/0x187 [ 61.590441] debug_smp_processor_id.cold.1+0x84/0x9e [ 61.595551] dst_cache_get+0x33/0xa0 [ 61.599273] ? tipc_crypto_xmit+0x1e2/0x2b00 [ 61.603694] tipc_udp_xmit.isra.15+0xab/0xcd0 [ 61.608192] ? tipc_udp_addr2str+0x150/0x150 [ 61.612611] ? tipc_crypto_timeout+0xfb0/0xfb0 [ 61.617217] ? rcu_read_lock_held+0x9c/0xb0 [ 61.621549] ? rcu_read_lock_held_common+0x120/0x120 [ 61.626669] tipc_udp_send_msg+0x31e/0x3d0 [ 61.630931] tipc_bearer_xmit_skb+0x1a5/0x370 [ 61.635420] ? tipc_bearer_mtu+0x350/0x350 [ 61.639641] ? tipc_disc_create+0x5d7/0x8c0 [ 61.643948] tipc_enable_bearer+0x859/0xbb0 [ 61.648274] ? tipc_bearer_xmit_skb+0x370/0x370 [ 61.652937] ? __nla_validate_parse+0xa1/0x1d80 [ 61.657608] ? lock_acquire+0x194/0x410 [ 61.661573] ? rtnl_lock+0x12/0x20 [ 61.665108] ? rtnl_lock+0x12/0x20 [ 61.668640] __tipc_nl_bearer_enable+0x265/0x390 [ 61.673399] ? __tipc_nl_bearer_enable+0x187/0x390 [ 61.678313] ? __tipc_nl_bearer_enable+0x265/0x390 [ 61.683241] ? tipc_nl_bearer_disable+0x30/0x30 [ 61.687904] ? __local_bh_enable_ip+0x160/0x260 [ 61.692577] ? __dev_queue_xmit+0x125c/0x2ec0 [ 61.697067] ? lockdep_hardirqs_on+0x42d/0x5d0 [ 61.701657] tipc_nl_bearer_enable+0x1d/0x30 [ 61.706069] genl_rcv_msg+0x5e1/0x10f0 [ 61.709953] ? __kasan_check_read+0x11/0x20 [ 61.714379] ? genl_family_rcv_msg_attrs_parse+0x340/0x340 [ 61.720149] netlink_rcv_skb+0x13f/0x380 [ 61.724329] ? genl_family_rcv_msg_attrs_parse+0x340/0x340 [ 61.729954] ? netlink_ack+0x980/0x980 [ 61.733831] ? netlink_deliver_tap+0x178/0xad0 [ 61.738400] genl_rcv+0x23/0x40 [ 61.741676] netlink_unicast+0x479/0x6c0 [ 61.745738] ? netlink_attachskb+0x740/0x740 [ 61.750138] ? _copy_from_iter_full+0x18a/0x780 [ 61.754811] ? __kasan_check_read+0x11/0x20 [ 61.759123] ? __check_object_size+0x203/0x2ea [ 61.763695] netlink_sendmsg+0x7ab/0xd50 [ 61.767744] ? netlink_unicast+0x6c0/0x6c0 [ 61.771980] ? apparmor_socket_sendmsg+0x1b/0x20 [ 61.776761] ? netlink_unicast+0x6c0/0x6c0 [ 61.780988] sock_sendmsg+0xe6/0x110 [ 61.784705] ____sys_sendmsg+0x603/0x980 [ 61.788759] ? copy_msghdr_from_user+0x209/0x420 [ 61.793512] ? kernel_sendmsg+0x30/0x30 [ 61.797501] ___sys_sendmsg+0xe4/0x160 [ 61.801601] ? sendmsg_copy_msghdr+0x30/0x30 [ 61.806006] ? __kasan_check_read+0x11/0x20 [ 61.810322] ? __fget+0x2ac/0x410 [ 61.813780] ? ksys_dup3+0x2e0/0x2e0 [ 61.817499] ? __might_fault+0xf1/0x1b0 [ 61.821485] ? __fget_light+0x179/0x1f0 [ 61.825456] ? lock_acquire+0x194/0x410 [ 61.829430] ? __fdget+0xe/0x10 [ 61.832730] __sys_sendmsg+0xd9/0x180 [ 61.836545] ? __sys_sendmsg_sock+0xa0/0xa0 [ 61.840865] ? __kasan_check_read+0x11/0x20 [ 61.845180] ? _copy_to_user+0xcb/0xf0 [ 61.849071] ? put_timespec64+0xa9/0x100 [ 61.853135] ? nsecs_to_jiffies+0x20/0x20 [ 61.857283] ? __blkcg_punt_bio_submit+0x1c0/0x1c0 [ 61.862225] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 61.867608] __x64_sys_sendmsg+0x73/0xb0 [ 61.871681] do_syscall_64+0xd0/0x600 [ 61.875470] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 61.880670] RIP: 0033:0x457f89 [ 61.883860] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 61.902762] RSP: 002b:00007feabad36c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 61.910458] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457f89 [ 61.917734] RDX: 0000000000000004 RSI: 0000000020000000 RDI: 000000000000000f [ 61.925957] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 61.933225] R10: 0000000000000000 R11: 0000000000000246 R12: 00007feabad376d4 [ 61.940497] R13: 00000000004c52ba R14: 00000000004d9038 R15: 00000000ffffffff [ 62.002535] tipc: Enabled bearer , priority 10 2020/01/27 22:30:39 executed programs: 7 [ 62.177489] tipc: Started in network mode [ 62.193305] tipc: Own node identity 7f000001, cluster identity 4711 [ 62.247437] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.4/7651 [ 62.256195] caller is dst_cache_get+0x33/0xa0 [ 62.260771] CPU: 0 PID: 7651 Comm: syz-executor.4 Not tainted 5.5.0-rc7-syzkaller #0 [ 62.268649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 62.278011] Call Trace: [ 62.280697] dump_stack+0x12d/0x187 [ 62.284338] debug_smp_processor_id.cold.1+0x84/0x9e [ 62.289464] dst_cache_get+0x33/0xa0 [ 62.293194] ? tipc_crypto_xmit+0x1e2/0x2b00 [ 62.297611] tipc_udp_xmit.isra.15+0xab/0xcd0 [ 62.302114] ? tipc_udp_addr2str+0x150/0x150 [ 62.306521] ? tipc_crypto_timeout+0xfb0/0xfb0 [ 62.311133] ? rcu_read_lock_held+0x9c/0xb0 [ 62.315458] ? rcu_read_lock_held_common+0x120/0x120 [ 62.320576] tipc_udp_send_msg+0x31e/0x3d0 [ 62.324828] tipc_bearer_xmit_skb+0x1a5/0x370 [ 62.329331] ? tipc_bearer_mtu+0x350/0x350 [ 62.333565] ? tipc_disc_create+0x5d7/0x8c0 [ 62.337891] tipc_enable_bearer+0x859/0xbb0 [ 62.342340] ? tipc_bearer_xmit_skb+0x370/0x370 [ 62.347012] ? __nla_validate_parse+0xa1/0x1d80 [ 62.351683] ? lock_acquire+0x194/0x410 [ 62.355656] ? rtnl_lock+0x12/0x20 [ 62.359340] ? rtnl_lock+0x12/0x20 [ 62.362890] __tipc_nl_bearer_enable+0x265/0x390 [ 62.367645] ? __tipc_nl_bearer_enable+0x187/0x390 [ 62.372578] ? __tipc_nl_bearer_enable+0x265/0x390 [ 62.377619] ? tipc_nl_bearer_disable+0x30/0x30 [ 62.382323] ? __local_bh_enable_ip+0x160/0x260 [ 62.387105] ? __dev_queue_xmit+0x125c/0x2ec0 [ 62.391606] ? lockdep_hardirqs_on+0x42d/0x5d0 [ 62.396238] tipc_nl_bearer_enable+0x1d/0x30 [ 62.400653] genl_rcv_msg+0x5e1/0x10f0 [ 62.404547] ? __kasan_check_read+0x11/0x20 [ 62.408880] ? genl_family_rcv_msg_attrs_parse+0x340/0x340 [ 62.414637] netlink_rcv_skb+0x13f/0x380 [ 62.418722] ? genl_family_rcv_msg_attrs_parse+0x340/0x340 [ 62.424349] ? netlink_ack+0x980/0x980 [ 62.428239] ? netlink_deliver_tap+0x178/0xad0 [ 62.432973] genl_rcv+0x23/0x40 [ 62.436267] netlink_unicast+0x479/0x6c0 [ 62.440343] ? netlink_attachskb+0x740/0x740 [ 62.444753] ? _copy_from_iter_full+0x18a/0x780 [ 62.449425] ? __kasan_check_read+0x11/0x20 [ 62.453742] ? __check_object_size+0x203/0x2ea [ 62.458327] netlink_sendmsg+0x7ab/0xd50 [ 62.462410] ? netlink_unicast+0x6c0/0x6c0 [ 62.466656] ? apparmor_socket_sendmsg+0x1b/0x20 [ 62.471423] ? netlink_unicast+0x6c0/0x6c0 [ 62.475749] sock_sendmsg+0xe6/0x110 [ 62.479452] ____sys_sendmsg+0x603/0x980 [ 62.483494] ? copy_msghdr_from_user+0x209/0x420 [ 62.488254] ? kernel_sendmsg+0x30/0x30 [ 62.492227] ___sys_sendmsg+0xe4/0x160 [ 62.496113] ? sendmsg_copy_msghdr+0x30/0x30 [ 62.500511] ? __kasan_check_read+0x11/0x20 [ 62.504832] ? __fget+0x2ac/0x410 [ 62.508279] ? ksys_dup3+0x2e0/0x2e0 [ 62.511980] ? __might_fault+0xf1/0x1b0 [ 62.516059] ? __fget_light+0x179/0x1f0 [ 62.520025] ? lock_acquire+0x194/0x410 [ 62.523988] ? __fdget+0xe/0x10 [ 62.527383] __sys_sendmsg+0xd9/0x180 [ 62.531179] ? __sys_sendmsg_sock+0xa0/0xa0 [ 62.535500] ? __kasan_check_read+0x11/0x20 [ 62.539813] ? _copy_to_user+0xcb/0xf0 [ 62.543702] ? put_timespec64+0xa9/0x100 [ 62.547757] ? nsecs_to_jiffies+0x20/0x20 [ 62.551907] ? __blkcg_punt_bio_submit+0x1c0/0x1c0 [ 62.556831] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 62.562180] __x64_sys_sendmsg+0x73/0xb0 [ 62.566226] do_syscall_64+0xd0/0x600 [ 62.570009] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 62.575178] RIP: 0033:0x457f89 [ 62.578351] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 62.597251] RSP: 002b:00007f92e6d0dc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 62.604943] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457f89 [ 62.612206] RDX: 0000000000000004 RSI: 0000000020000000 RDI: 000000000000000f [ 62.619470] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 62.626737] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f92e6d0e6d4 [ 62.633992] R13: 00000000004c52ba R14: 00000000004d9038 R15: 00000000ffffffff [ 62.646974] tipc: 32-bit node address hash set to 100007f [ 62.772364] tipc: Enabled bearer , priority 10 [ 62.792280] tipc: Started in network mode [ 62.797754] tipc: Own node identity 7f000001, cluster identity 4711 [ 62.817144] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.5/7650 [ 62.825876] caller is dst_cache_get+0x33/0xa0 [ 62.830856] CPU: 0 PID: 7650 Comm: syz-executor.5 Not tainted 5.5.0-rc7-syzkaller #0 [ 62.838757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 62.848219] Call Trace: [ 62.850814] dump_stack+0x12d/0x187 [ 62.854453] debug_smp_processor_id.cold.1+0x84/0x9e [ 62.859565] dst_cache_get+0x33/0xa0 [ 62.863437] ? tipc_crypto_xmit+0x1e2/0x2b00 [ 62.867857] tipc_udp_xmit.isra.15+0xab/0xcd0 [ 62.872410] ? tipc_udp_addr2str+0x150/0x150 [ 62.876812] ? tipc_crypto_timeout+0xfb0/0xfb0 [ 62.881471] ? rcu_read_lock_held+0x9c/0xb0 [ 62.885782] ? rcu_read_lock_held_common+0x120/0x120 [ 62.891121] tipc_udp_send_msg+0x31e/0x3d0 [ 62.895379] tipc_bearer_xmit_skb+0x1a5/0x370 [ 62.899886] ? tipc_bearer_mtu+0x350/0x350 [ 62.904119] ? tipc_disc_create+0x5d7/0x8c0 [ 62.908463] tipc_enable_bearer+0x859/0xbb0 [ 62.912837] ? __mutex_lock+0xc43/0x1410 [ 62.916978] ? tipc_bearer_xmit_skb+0x370/0x370 [ 62.921664] ? __nla_validate_parse+0xa1/0x1d80 [ 62.926331] ? rtnl_lock+0x12/0x20 [ 62.929998] __tipc_nl_bearer_enable+0x265/0x390 [ 62.934756] ? __tipc_nl_bearer_enable+0x187/0x390 [ 62.939901] ? __tipc_nl_bearer_enable+0x265/0x390 [ 62.944850] ? tipc_nl_bearer_disable+0x30/0x30 [ 62.949523] ? __local_bh_enable_ip+0x160/0x260 [ 62.954222] tipc_nl_bearer_enable+0x1d/0x30 [ 62.958819] genl_rcv_msg+0x5e1/0x10f0 [ 62.962702] ? __kasan_check_read+0x11/0x20 [ 62.967034] ? genl_family_rcv_msg_attrs_parse+0x340/0x340 [ 62.972706] netlink_rcv_skb+0x13f/0x380 [ 62.976761] ? genl_family_rcv_msg_attrs_parse+0x340/0x340 [ 62.982393] ? netlink_ack+0x980/0x980 [ 62.986280] ? netlink_deliver_tap+0x178/0xad0 [ 62.990871] genl_rcv+0x23/0x40 [ 62.994146] netlink_unicast+0x479/0x6c0 [ 62.998198] ? netlink_attachskb+0x740/0x740 [ 63.002637] ? _copy_from_iter_full+0x18a/0x780 [ 63.007309] ? __kasan_check_read+0x11/0x20 [ 63.011715] ? __check_object_size+0x203/0x2ea [ 63.016311] netlink_sendmsg+0x7ab/0xd50 [ 63.020379] ? netlink_unicast+0x6c0/0x6c0 [ 63.024609] ? apparmor_socket_sendmsg+0x1b/0x20 [ 63.029371] ? netlink_unicast+0x6c0/0x6c0 [ 63.033611] sock_sendmsg+0xe6/0x110 [ 63.037334] ____sys_sendmsg+0x603/0x980 [ 63.041434] ? copy_msghdr_from_user+0x209/0x420 [ 63.046205] ? kernel_sendmsg+0x30/0x30 [ 63.050209] ___sys_sendmsg+0xe4/0x160 [ 63.054105] ? sendmsg_copy_msghdr+0x30/0x30 [ 63.058517] ? __kasan_check_read+0x11/0x20 [ 63.062889] ? __fget+0x2ac/0x410 [ 63.066346] ? ksys_dup3+0x2e0/0x2e0 [ 63.070064] ? __might_fault+0xf1/0x1b0 [ 63.074042] ? __fget_light+0x179/0x1f0 [ 63.078014] ? lock_acquire+0x194/0x410 [ 63.081989] ? __fdget+0xe/0x10 [ 63.085274] __sys_sendmsg+0xd9/0x180 [ 63.089087] ? __sys_sendmsg_sock+0xa0/0xa0 [ 63.093407] ? __kasan_check_read+0x11/0x20 [ 63.097734] ? _copy_to_user+0xcb/0xf0 [ 63.101644] ? put_timespec64+0xa9/0x100 [ 63.105811] ? nsecs_to_jiffies+0x20/0x20 [ 63.109968] ? __blkcg_punt_bio_submit+0x1c0/0x1c0 [ 63.115079] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 63.120458] __x64_sys_sendmsg+0x73/0xb0 [ 63.124563] do_syscall_64+0xd0/0x600 [ 63.128370] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 63.133569] RIP: 0033:0x457f89 [ 63.136763] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 63.155720] RSP: 002b:00007f4dc9aaec78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 63.163574] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457f89 [ 63.170845] RDX: 0000000000000004 RSI: 0000000020000000 RDI: 000000000000000f [ 63.178120] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 63.185381] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4dc9aaf6d4 [ 63.192651] R13: 00000000004c52ba R14: 00000000004d9038 R15: 00000000ffffffff [ 63.201589] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.5/7650 [ 63.210597] caller is dst_cache_set_ip4+0x97/0x2e0 [ 63.215549] CPU: 1 PID: 7650 Comm: syz-executor.5 Not tainted 5.5.0-rc7-syzkaller #0 [ 63.223420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 63.232851] Call Trace: [ 63.235471] dump_stack+0x12d/0x187 [ 63.239138] debug_smp_processor_id.cold.1+0x84/0x9e [ 63.244231] dst_cache_set_ip4+0x97/0x2e0 [ 63.248380] ? dst_cache_get_ip6+0x1b0/0x1b0 [ 63.252782] ? xfrm_lookup_route+0x1f/0x110 [ 63.257270] tipc_udp_xmit.isra.15+0x7aa/0xcd0 [ 63.261957] ? tipc_udp_addr2str+0x150/0x150 [ 63.266384] ? tipc_crypto_timeout+0xfb0/0xfb0 [ 63.270999] ? rcu_read_lock_held+0x9c/0xb0 [ 63.275322] ? rcu_read_lock_held_common+0x120/0x120 [ 63.280433] tipc_udp_send_msg+0x31e/0x3d0 [ 63.284664] tipc_bearer_xmit_skb+0x1a5/0x370 [ 63.289210] ? tipc_bearer_mtu+0x350/0x350 [ 63.293442] ? tipc_disc_create+0x5d7/0x8c0 [ 63.297876] tipc_enable_bearer+0x859/0xbb0 [ 63.302201] ? __mutex_lock+0xc43/0x1410 [ 63.306269] ? tipc_bearer_xmit_skb+0x370/0x370 [ 63.310940] ? __nla_validate_parse+0xa1/0x1d80 [ 63.315626] ? rtnl_lock+0x12/0x20 [ 63.319185] __tipc_nl_bearer_enable+0x265/0x390 [ 63.323981] ? __tipc_nl_bearer_enable+0x187/0x390 [ 63.329025] ? __tipc_nl_bearer_enable+0x265/0x390 [ 63.333962] ? tipc_nl_bearer_disable+0x30/0x30 [ 63.338633] ? __local_bh_enable_ip+0x160/0x260 [ 63.343311] tipc_nl_bearer_enable+0x1d/0x30 [ 63.347720] genl_rcv_msg+0x5e1/0x10f0 [ 63.351607] ? __kasan_check_read+0x11/0x20 [ 63.355924] ? genl_family_rcv_msg_attrs_parse+0x340/0x340 [ 63.361557] netlink_rcv_skb+0x13f/0x380 [ 63.365611] ? genl_family_rcv_msg_attrs_parse+0x340/0x340 [ 63.371286] ? netlink_ack+0x980/0x980 [ 63.375167] ? netlink_deliver_tap+0x178/0xad0 [ 63.379781] genl_rcv+0x23/0x40 [ 63.383058] netlink_unicast+0x479/0x6c0 [ 63.387110] ? netlink_attachskb+0x740/0x740 [ 63.391503] ? _copy_from_iter_full+0x18a/0x780 [ 63.396163] ? __kasan_check_read+0x11/0x20 [ 63.400486] ? __check_object_size+0x203/0x2ea [ 63.405183] netlink_sendmsg+0x7ab/0xd50 [ 63.409240] ? netlink_unicast+0x6c0/0x6c0 [ 63.413583] ? apparmor_socket_sendmsg+0x1b/0x20 [ 63.418337] ? netlink_unicast+0x6c0/0x6c0 [ 63.422620] sock_sendmsg+0xe6/0x110 [ 63.426334] ____sys_sendmsg+0x603/0x980 [ 63.430395] ? copy_msghdr_from_user+0x209/0x420 [ 63.435207] ? kernel_sendmsg+0x30/0x30 [ 63.439233] ___sys_sendmsg+0xe4/0x160 [ 63.443117] ? sendmsg_copy_msghdr+0x30/0x30 [ 63.447516] ? __kasan_check_read+0x11/0x20 [ 63.451827] ? __fget+0x2ac/0x410 [ 63.455291] ? ksys_dup3+0x2e0/0x2e0 [ 63.459011] ? __might_fault+0xf1/0x1b0 [ 63.462981] ? __fget_light+0x179/0x1f0 [ 63.466953] ? lock_acquire+0x194/0x410 [ 63.470919] ? __fdget+0xe/0x10 [ 63.474187] __sys_sendmsg+0xd9/0x180 [ 63.477978] ? __sys_sendmsg_sock+0xa0/0xa0 [ 63.482289] ? __kasan_check_read+0x11/0x20 [ 63.486652] ? _copy_to_user+0xcb/0xf0 [ 63.490552] ? put_timespec64+0xa9/0x100 [ 63.494603] ? nsecs_to_jiffies+0x20/0x20 [ 63.498913] ? __blkcg_punt_bio_submit+0x1c0/0x1c0 [ 63.503843] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 63.509206] __x64_sys_sendmsg+0x73/0xb0 [ 63.513271] do_syscall_64+0xd0/0x600 [ 63.517076] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 63.522306] RIP: 0033:0x457f89 [ 63.525607] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 63.544619] RSP: 002b:00007f4dc9aaec78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 63.552337] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457f89 [ 63.559613] RDX: 0000000000000004 RSI: 0000000020000000 RDI: 000000000000000f [ 63.566897] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 63.574164] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4dc9aaf6d4 [ 63.581532] R13: 00000000004c52ba R14: 00000000004d9038 R15: 00000000ffffffff [ 63.591527] tipc: Enabled bearer , priority 10 [ 63.600051] tipc: 32-bit node address hash set to 100007f [ 63.740282] tipc: Started in network mode [ 63.797533] tipc: Own node identity 7f000001, cluster identity 4711 [ 63.842802] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.3/7676 [ 63.851692] caller is dst_cache_get+0x33/0xa0 [ 63.856191] CPU: 0 PID: 7676 Comm: syz-executor.3 Not tainted 5.5.0-rc7-syzkaller #0 [ 63.864073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 63.873429] Call Trace: [ 63.876090] dump_stack+0x12d/0x187 [ 63.879729] debug_smp_processor_id.cold.1+0x84/0x9e [ 63.884837] dst_cache_get+0x33/0xa0 [ 63.888547] ? tipc_crypto_xmit+0x1e2/0x2b00 [ 63.892956] tipc_udp_xmit.isra.15+0xab/0xcd0 [ 63.897450] ? tipc_udp_addr2str+0x150/0x150 [ 63.901859] ? tipc_crypto_timeout+0xfb0/0xfb0 [ 63.906446] ? rcu_read_lock_held+0x9c/0xb0 [ 63.910754] ? rcu_read_lock_held_common+0x120/0x120 [ 63.915865] tipc_udp_send_msg+0x31e/0x3d0 [ 63.920123] tipc_bearer_xmit_skb+0x1a5/0x370 [ 63.924609] ? tipc_bearer_mtu+0x350/0x350 [ 63.928849] ? tipc_disc_create+0x5d7/0x8c0 [ 63.933229] tipc_enable_bearer+0x859/0xbb0 [ 63.937536] ? __mutex_lock+0xc43/0x1410 [ 63.941588] ? tipc_bearer_xmit_skb+0x370/0x370 [ 63.946241] ? __nla_validate_parse+0xa1/0x1d80 [ 63.950926] ? rtnl_lock+0x12/0x20 [ 63.954460] __tipc_nl_bearer_enable+0x265/0x390 [ 63.959285] ? __tipc_nl_bearer_enable+0x187/0x390 [ 63.964216] ? __tipc_nl_bearer_enable+0x265/0x390 [ 63.969146] ? tipc_nl_bearer_disable+0x30/0x30 [ 63.973815] ? __kasan_check_read+0x11/0x20 [ 63.978154] tipc_nl_bearer_enable+0x1d/0x30 [ 63.982559] genl_rcv_msg+0x5e1/0x10f0 [ 63.986429] ? __kasan_check_read+0x11/0x20 [ 63.990734] ? genl_family_rcv_msg_attrs_parse+0x340/0x340 [ 63.996384] netlink_rcv_skb+0x13f/0x380 [ 64.000443] ? genl_family_rcv_msg_attrs_parse+0x340/0x340 [ 64.006053] ? netlink_ack+0x980/0x980 [ 64.009925] ? netlink_deliver_tap+0x178/0xad0 [ 64.014698] genl_rcv+0x23/0x40 [ 64.017979] netlink_unicast+0x479/0x6c0 [ 64.022047] ? netlink_attachskb+0x740/0x740 [ 64.026452] ? _copy_from_iter_full+0x18a/0x780 [ 64.031121] ? __kasan_check_read+0x11/0x20 [ 64.035431] ? __check_object_size+0x203/0x2ea [ 64.040019] netlink_sendmsg+0x7ab/0xd50 [ 64.044090] ? netlink_unicast+0x6c0/0x6c0 [ 64.048318] ? apparmor_socket_sendmsg+0x1b/0x20 [ 64.053082] ? netlink_unicast+0x6c0/0x6c0 [ 64.057318] sock_sendmsg+0xe6/0x110 [ 64.061037] ____sys_sendmsg+0x603/0x980 [ 64.065090] ? copy_msghdr_from_user+0x209/0x420 [ 64.069847] ? kernel_sendmsg+0x30/0x30 [ 64.073844] ___sys_sendmsg+0xe4/0x160 [ 64.077720] ? sendmsg_copy_msghdr+0x30/0x30 [ 64.082122] ? __kasan_check_read+0x11/0x20 [ 64.086541] ? __fget+0x2ac/0x410 [ 64.090018] ? ksys_dup3+0x2e0/0x2e0 [ 64.093726] ? __might_fault+0xf1/0x1b0 [ 64.097695] ? __fget_light+0x179/0x1f0 [ 64.101674] ? lock_acquire+0x194/0x410 [ 64.105638] ? __fdget+0xe/0x10 [ 64.108907] __sys_sendmsg+0xd9/0x180 [ 64.112706] ? __sys_sendmsg_sock+0xa0/0xa0 [ 64.117019] ? __kasan_check_read+0x11/0x20 [ 64.121448] ? _copy_to_user+0xcb/0xf0 [ 64.125348] ? put_timespec64+0xa9/0x100 [ 64.129399] ? nsecs_to_jiffies+0x20/0x20 [ 64.133656] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 64.139044] __x64_sys_sendmsg+0x73/0xb0 [ 64.143119] do_syscall_64+0xd0/0x600 [ 64.146929] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 64.152106] RIP: 0033:0x457f89 [ 64.155280] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 64.174176] RSP: 002b:00007f0df41d2c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 64.181872] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457f89 [ 64.189246] RDX: 0000000000000004 RSI: 0000000020000000 RDI: 000000000000000f [ 64.196517] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 64.203782] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f0df41d36d4 [ 64.211037] R13: 00000000004c52ba R14: 00000000004d9038 R15: 00000000ffffffff [ 64.227672] tipc: 32-bit node address hash set to 100007f [ 64.542030] tipc: Enabled bearer , priority 10 [ 64.811863] tipc: Enabling of bearer rejected, already enabled [ 64.894676] tipc: Started in network mode [ 64.909860] tipc: Own node identity 7f000001, cluster identity 4711 [ 64.927017] tipc: 32-bit node address hash set to 100007f [ 64.977327] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.0/7734 [ 64.986156] caller is dst_cache_get+0x33/0xa0 [ 64.991061] CPU: 0 PID: 7734 Comm: syz-executor.0 Not tainted 5.5.0-rc7-syzkaller #0 [ 64.998986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 65.008470] Call Trace: [ 65.011067] dump_stack+0x12d/0x187 [ 65.014714] debug_smp_processor_id.cold.1+0x84/0x9e [ 65.019821] dst_cache_get+0x33/0xa0 [ 65.023524] ? tipc_crypto_xmit+0x1e2/0x2b00 [ 65.027941] tipc_udp_xmit.isra.15+0xab/0xcd0 [ 65.032468] ? tipc_udp_addr2str+0x150/0x150 [ 65.036870] ? tipc_crypto_timeout+0xfb0/0xfb0 [ 65.041577] ? rcu_read_lock_held+0x9c/0xb0 [ 65.045996] ? rcu_read_lock_held_common+0x120/0x120 [ 65.051116] tipc_udp_send_msg+0x31e/0x3d0 [ 65.055376] tipc_bearer_xmit_skb+0x1a5/0x370 [ 65.059926] ? tipc_bearer_mtu+0x350/0x350 [ 65.064297] ? tipc_disc_create+0x5d7/0x8c0 [ 65.068648] tipc_enable_bearer+0x859/0xbb0 [ 65.072977] ? tipc_bearer_xmit_skb+0x370/0x370 [ 65.077647] ? __nla_validate_parse+0xa1/0x1d80 [ 65.082323] ? lock_acquire+0x194/0x410 [ 65.086297] ? rtnl_lock+0x12/0x20 [ 65.089858] ? rtnl_lock+0x12/0x20 [ 65.093407] __tipc_nl_bearer_enable+0x265/0x390 [ 65.098169] ? __tipc_nl_bearer_enable+0x187/0x390 [ 65.103104] ? __tipc_nl_bearer_enable+0x265/0x390 [ 65.108047] ? tipc_nl_bearer_disable+0x30/0x30 [ 65.112889] ? __local_bh_enable_ip+0x160/0x260 [ 65.117577] ? __dev_queue_xmit+0x125c/0x2ec0 [ 65.122079] ? lockdep_hardirqs_on+0x42d/0x5d0 [ 65.126894] tipc_nl_bearer_enable+0x1d/0x30 [ 65.131482] genl_rcv_msg+0x5e1/0x10f0 [ 65.135370] ? __kasan_check_read+0x11/0x20 [ 65.139708] ? genl_family_rcv_msg_attrs_parse+0x340/0x340 [ 65.145365] netlink_rcv_skb+0x13f/0x380 [ 65.149427] ? genl_family_rcv_msg_attrs_parse+0x340/0x340 [ 65.155057] ? netlink_ack+0x980/0x980 [ 65.158958] ? netlink_deliver_tap+0x178/0xad0 [ 65.163550] genl_rcv+0x23/0x40 [ 65.166827] netlink_unicast+0x479/0x6c0 [ 65.170903] ? netlink_attachskb+0x740/0x740 [ 65.175515] ? _copy_from_iter_full+0x18a/0x780 [ 65.180194] ? __kasan_check_read+0x11/0x20 [ 65.184515] ? __check_object_size+0x203/0x2ea [ 65.189107] netlink_sendmsg+0x7ab/0xd50 [ 65.193178] ? netlink_unicast+0x6c0/0x6c0 [ 65.197440] ? apparmor_socket_sendmsg+0x1b/0x20 [ 65.202218] ? netlink_unicast+0x6c0/0x6c0 [ 65.206455] sock_sendmsg+0xe6/0x110 [ 65.210181] ____sys_sendmsg+0x603/0x980 [ 65.214251] ? copy_msghdr_from_user+0x209/0x420 [ 65.219024] ? kernel_sendmsg+0x30/0x30 [ 65.223013] ___sys_sendmsg+0xe4/0x160 [ 65.226904] ? sendmsg_copy_msghdr+0x30/0x30 [ 65.231336] ? __kasan_check_read+0x11/0x20 [ 65.235672] ? __fget+0x2ac/0x410 [ 65.239146] ? ksys_dup3+0x2e0/0x2e0 [ 65.242862] ? __might_fault+0xf1/0x1b0 [ 65.246843] ? __fget_light+0x179/0x1f0 [ 65.250819] ? lock_acquire+0x194/0x410 [ 65.254809] ? __fdget+0xe/0x10 [ 65.258092] __sys_sendmsg+0xd9/0x180 [ 65.261904] ? __sys_sendmsg_sock+0xa0/0xa0 [ 65.266235] ? __kasan_check_read+0x11/0x20 [ 65.270558] ? _copy_to_user+0xcb/0xf0 [ 65.274452] ? put_timespec64+0xa9/0x100 [ 65.278516] ? nsecs_to_jiffies+0x20/0x20 [ 65.282668] ? __blkcg_punt_bio_submit+0x1c0/0x1c0 [ 65.287622] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 65.293000] __x64_sys_sendmsg+0x73/0xb0 [ 65.297061] do_syscall_64+0xd0/0x600 [ 65.300870] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 65.306179] RIP: 0033:0x457f89 [ 65.309376] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 65.328283] RSP: 002b:00007f9e5e501c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 65.335998] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457f89 [ 65.343390] RDX: 0000000000000004 RSI: 0000000020000000 RDI: 000000000000000f [ 65.350761] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 65.358033] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9e5e5026d4 [ 65.365305] R13: 00000000004c52ba R14: 00000000004d9038 R15: 00000000ffffffff [ 65.417823] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor.0/7734 [ 65.426732] caller is dst_cache_set_ip4+0x97/0x2e0 [ 65.431847] CPU: 0 PID: 7734 Comm: syz-executor.0 Not tainted 5.5.0-rc7-syzkaller #0 [ 65.439779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 65.449141] Call Trace: [ 65.451743] dump_stack+0x12d/0x187 [ 65.455371] debug_smp_processor_id.cold.1+0x84/0x9e [ 65.460483] dst_cache_set_ip4+0x97/0x2e0 [ 65.464896] ? dst_cache_get_ip6+0x1b0/0x1b0 [ 65.469323] ? xfrm_lookup_route+0x1f/0x110 [ 65.473685] tipc_udp_xmit.isra.15+0x7aa/0xcd0 [ 65.478263] ? tipc_udp_addr2str+0x150/0x150 [ 65.482656] ? tipc_crypto_timeout+0xfb0/0xfb0 [ 65.487243] ? rcu_read_lock_held+0x9c/0xb0 [ 65.491556] ? rcu_read_lock_held_common+0x120/0x120 [ 65.496773] tipc_udp_send_msg+0x31e/0x3d0 [ 65.501004] tipc_bearer_xmit_skb+0x1a5/0x370 [ 65.505488] ? tipc_bearer_mtu+0x350/0x350 [ 65.509826] ? tipc_disc_create+0x5d7/0x8c0 [ 65.514144] tipc_enable_bearer+0x859/0xbb0 [ 65.518465] ? tipc_bearer_xmit_skb+0x370/0x370 [ 65.523131] ? __nla_validate_parse+0xa1/0x1d80 [ 65.527793] ? lock_acquire+0x194/0x410 [ 65.531772] ? rtnl_lock+0x12/0x20 [ 65.535313] ? rtnl_lock+0x12/0x20 [ 65.538855] __tipc_nl_bearer_enable+0x265/0x390 [ 65.543631] ? __tipc_nl_bearer_enable+0x187/0x390 [ 65.548572] ? __tipc_nl_bearer_enable+0x265/0x390 [ 65.553521] ? tipc_nl_bearer_disable+0x30/0x30 [ 65.558183] ? __local_bh_enable_ip+0x160/0x260 [ 65.562840] ? __dev_queue_xmit+0x125c/0x2ec0 [ 65.567430] ? lockdep_hardirqs_on+0x42d/0x5d0 [ 65.572025] tipc_nl_bearer_enable+0x1d/0x30 [ 65.576452] genl_rcv_msg+0x5e1/0x10f0 [ 65.580334] ? __kasan_check_read+0x11/0x20 [ 65.584647] ? genl_family_rcv_msg_attrs_parse+0x340/0x340 [ 65.590306] netlink_rcv_skb+0x13f/0x380 [ 65.594363] ? genl_family_rcv_msg_attrs_parse+0x340/0x340 [ 65.600001] ? netlink_ack+0x980/0x980 [ 65.603884] ? netlink_deliver_tap+0x178/0xad0 [ 65.608567] genl_rcv+0x23/0x40 [ 65.611834] netlink_unicast+0x479/0x6c0 [ 65.615894] ? netlink_attachskb+0x740/0x740 [ 65.620313] ? _copy_from_iter_full+0x18a/0x780 [ 65.624986] ? __kasan_check_read+0x11/0x20 [ 65.629321] ? __check_object_size+0x203/0x2ea [ 65.633904] netlink_sendmsg+0x7ab/0xd50 [ 65.637966] ? netlink_unicast+0x6c0/0x6c0 [ 65.642189] ? apparmor_socket_sendmsg+0x1b/0x20 [ 65.646955] ? netlink_unicast+0x6c0/0x6c0 [ 65.651176] sock_sendmsg+0xe6/0x110 [ 65.654895] ____sys_sendmsg+0x603/0x980 [ 65.658953] ? copy_msghdr_from_user+0x209/0x420 [ 65.663713] ? kernel_sendmsg+0x30/0x30 [ 65.667686] ___sys_sendmsg+0xe4/0x160 [ 65.671564] ? sendmsg_copy_msghdr+0x30/0x30 [ 65.675996] ? __kasan_check_read+0x11/0x20 [ 65.680318] ? __fget+0x2ac/0x410 [ 65.683783] ? ksys_dup3+0x2e0/0x2e0 [ 65.687493] ? __might_fault+0xf1/0x1b0 [ 65.691463] ? __fget_light+0x179/0x1f0 [ 65.695452] ? lock_acquire+0x194/0x410 [ 65.699418] ? __fdget+0xe/0x10 [ 65.702708] __sys_sendmsg+0xd9/0x180 [ 65.706493] ? __sys_sendmsg_sock+0xa0/0xa0 [ 65.710798] ? __kasan_check_read+0x11/0x20 [ 65.715117] ? _copy_to_user+0xcb/0xf0 [ 65.719002] ? put_timespec64+0xa9/0x100 [ 65.723049] ? nsecs_to_jiffies+0x20/0x20 [ 65.727306] ? __blkcg_punt_bio_submit+0x1c0/0x1c0 [ 65.732256] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 65.737612] __x64_sys_sendmsg+0x73/0xb0 [ 65.741680] do_syscall_64+0xd0/0x600 [ 65.745482] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 65.750668] RIP: 0033:0x457f89 [ 65.753965] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 65.772885] RSP: 002b:00007f9e5e501c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 65.780691] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457f89 [ 65.787956] RDX: 0000000000000004 RSI: 0000000020000000 RDI: 000000000000000f [ 65.795210] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 65.802494] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9e5e5026d4 [ 65.809780] R13: 00000000004c52ba R14: 00000000004d9038 R15: 00000000ffffffff [ 65.822055] tipc: Enabled bearer , priority 10 [ 66.098062] tipc: Enabling of bearer rejected, already enabled [ 66.107566] tipc: 32-bit node address hash set to 100007f [ 66.194932] tipc: Enabling of bearer rejected, already enabled [ 66.676446] tipc: Enabling of bearer rejected, already enabled [ 66.729856] tipc: Enabling of bearer rejected, already enabled [ 66.801501] tipc: Enabling of bearer rejected, already enabled 2020/01/27 22:30:44 executed programs: 32 [ 67.360705] tipc: Enabling of bearer rejected, already enabled [ 67.421939] tipc: Enabling of bearer rejected, already enabled [ 67.501378] tipc: Enabling of bearer rejected, already enabled [ 67.545033] tipc: Enabling of bearer rejected, already enabled [ 68.011019] tipc: Enabling of bearer rejected, already enabled [ 68.108507] tipc: Enabling of bearer rejected, already enabled [ 68.602424] tipc: Enabling of bearer rejected, already enabled [ 68.648566] tipc: Enabling of bearer rejected, already enabled [ 68.695205] tipc: Enabling of bearer rejected, already enabled [ 68.771948] tipc: Enabling of bearer rejected, already enabled [ 68.804547] tipc: Enabling of bearer rejected, already enabled [ 69.312846] tipc: Enabling of bearer rejected, already enabled [ 69.389274] tipc: Enabling of bearer rejected, already enabled [ 69.447295] tipc: Enabling of bearer rejected, already enabled [ 69.993800] tipc: Enabling of bearer rejected, already enabled [ 70.037377] tipc: Enabling of bearer rejected, already enabled [ 70.068919] tipc: Enabling of bearer rejected, already enabled