[ 22.469207] audit: type=1800 audit(1578963905.450:27): pid=5862 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 34.545852] IPVS: ftp: loaded support on port[0] = 21 [ 34.860755] tipc: TX() has been purged, node left! [ 64.489971] can: request_module (can-proto-0) failed. [ 64.499443] can: request_module (can-proto-0) failed. Warning: Permanently added '10.128.1.26' (ECDSA) to the list of known hosts. 2020/01/14 01:05:56 parsed 1 programs 2020/01/14 01:05:57 executed programs: 0 [ 74.152897] IPVS: ftp: loaded support on port[0] = 21 [ 74.163903] IPVS: ftp: loaded support on port[0] = 21 [ 74.178467] IPVS: ftp: loaded support on port[0] = 21 [ 74.185477] IPVS: ftp: loaded support on port[0] = 21 [ 74.185816] IPVS: ftp: loaded support on port[0] = 21 [ 74.201578] IPVS: ftp: loaded support on port[0] = 21 [ 75.086995] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.102934] bridge0: port 1(bridge_slave_0) entered disabled state [ 75.110566] device bridge_slave_0 entered promiscuous mode [ 75.143454] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.156186] bridge0: port 1(bridge_slave_0) entered disabled state [ 75.168405] device bridge_slave_0 entered promiscuous mode [ 75.177694] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.184668] bridge0: port 2(bridge_slave_1) entered disabled state [ 75.191678] device bridge_slave_1 entered promiscuous mode [ 75.199761] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.206512] bridge0: port 1(bridge_slave_0) entered disabled state [ 75.213595] device bridge_slave_0 entered promiscuous mode [ 75.226450] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.233789] bridge0: port 1(bridge_slave_0) entered disabled state [ 75.241472] device bridge_slave_0 entered promiscuous mode [ 75.259802] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.269154] bridge0: port 2(bridge_slave_1) entered disabled state [ 75.276584] device bridge_slave_1 entered promiscuous mode [ 75.285253] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.292695] bridge0: port 1(bridge_slave_0) entered disabled state [ 75.299827] device bridge_slave_0 entered promiscuous mode [ 75.309271] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.315798] bridge0: port 2(bridge_slave_1) entered disabled state [ 75.322856] device bridge_slave_1 entered promiscuous mode [ 75.331828] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.338182] bridge0: port 2(bridge_slave_1) entered disabled state [ 75.350157] device bridge_slave_1 entered promiscuous mode [ 75.359505] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.367440] bridge0: port 1(bridge_slave_0) entered disabled state [ 75.374933] device bridge_slave_0 entered promiscuous mode [ 75.383704] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.393701] bridge0: port 2(bridge_slave_1) entered disabled state [ 75.401776] device bridge_slave_1 entered promiscuous mode [ 75.426312] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.435012] bridge0: port 2(bridge_slave_1) entered disabled state [ 75.450796] device bridge_slave_1 entered promiscuous mode [ 75.510849] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 75.600236] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 75.626786] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 75.644130] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 75.661936] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 75.692574] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 75.711642] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 75.730479] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 75.742543] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 75.754861] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 75.787356] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 75.813174] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 75.824783] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 75.836309] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 75.859344] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 75.878359] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 75.925315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 75.939677] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 75.969439] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 75.992045] team0: Port device team_slave_0 added [ 75.999068] team0: Port device team_slave_0 added [ 76.018572] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 76.054305] team0: Port device team_slave_1 added [ 76.062302] team0: Port device team_slave_1 added [ 76.069780] team0: Port device team_slave_0 added [ 76.107376] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 76.122509] team0: Port device team_slave_0 added [ 76.140641] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 76.155634] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 76.165533] team0: Port device team_slave_0 added [ 76.188156] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 76.205922] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 76.214533] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 76.224179] team0: Port device team_slave_1 added [ 76.235454] team0: Port device team_slave_1 added [ 76.250782] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 76.258576] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 76.271404] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 76.279195] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 76.288855] team0: Port device team_slave_1 added [ 76.298087] team0: Port device team_slave_0 added [ 76.313984] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 76.330469] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 76.338206] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 76.357540] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 76.370792] team0: Port device team_slave_1 added [ 76.380152] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 76.388485] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 76.417742] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 76.434552] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 76.448186] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 76.458619] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 76.467102] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 76.478588] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 76.488155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 76.515405] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 76.534192] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 76.547477] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 76.555427] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 76.563212] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 76.576631] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 76.590546] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 76.598476] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 76.608241] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 76.635799] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 76.656982] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 76.675811] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 76.688712] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 76.967072] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.973623] bridge0: port 2(bridge_slave_1) entered forwarding state [ 76.980791] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.987170] bridge0: port 1(bridge_slave_0) entered forwarding state [ 77.003130] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.009534] bridge0: port 2(bridge_slave_1) entered forwarding state [ 77.016201] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.022580] bridge0: port 1(bridge_slave_0) entered forwarding state [ 77.154565] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.161019] bridge0: port 2(bridge_slave_1) entered forwarding state [ 77.167750] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.174272] bridge0: port 1(bridge_slave_0) entered forwarding state [ 77.218901] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.225318] bridge0: port 2(bridge_slave_1) entered forwarding state [ 77.231979] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.239307] bridge0: port 1(bridge_slave_0) entered forwarding state [ 77.261413] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.268070] bridge0: port 2(bridge_slave_1) entered forwarding state [ 77.274734] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.281157] bridge0: port 1(bridge_slave_0) entered forwarding state [ 77.309450] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.316396] bridge0: port 2(bridge_slave_1) entered forwarding state [ 77.323555] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.329891] bridge0: port 1(bridge_slave_0) entered forwarding state [ 77.804879] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 77.818670] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 77.832591] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 77.839855] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 77.847860] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 77.855001] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 79.055897] 8021q: adding VLAN 0 to HW filter on device bond0 [ 79.063711] 8021q: adding VLAN 0 to HW filter on device bond0 [ 79.148492] 8021q: adding VLAN 0 to HW filter on device bond0 [ 79.275474] 8021q: adding VLAN 0 to HW filter on device bond0 [ 79.303778] 8021q: adding VLAN 0 to HW filter on device bond0 [ 79.418024] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 79.428676] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 79.444151] 8021q: adding VLAN 0 to HW filter on device bond0 [ 79.468508] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 79.476671] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 79.514630] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 79.522321] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 79.613592] 8021q: adding VLAN 0 to HW filter on device team0 [ 79.676722] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 79.686445] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 79.700674] 8021q: adding VLAN 0 to HW filter on device team0 [ 79.709455] 8021q: adding VLAN 0 to HW filter on device team0 [ 79.719633] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 79.732870] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 79.817553] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 79.825896] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 79.922952] 8021q: adding VLAN 0 to HW filter on device team0 [ 79.935611] 8021q: adding VLAN 0 to HW filter on device team0 [ 80.034536] 8021q: adding VLAN 0 to HW filter on device team0 [ 80.738299] tipc: Started in network mode [ 80.747840] tipc: Own node identity ac14142, cluster identity 4711 [ 80.762076] tipc: New replicast peer: 0.0.0.0 [ 80.767280] check_preemption_disabled: 3 callbacks suppressed [ 80.767288] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor0/7595 [ 80.782377] caller is dst_cache_get+0x33/0xa0 [ 80.786935] CPU: 1 PID: 7595 Comm: syz-executor0 Not tainted 5.5.0-rc6-syzkaller #0 [ 80.794983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 80.804323] Call Trace: [ 80.806907] dump_stack+0x12d/0x187 [ 80.810525] debug_smp_processor_id.cold.1+0x84/0x9e [ 80.815704] dst_cache_get+0x33/0xa0 [ 80.819577] tipc_udp_xmit.isra.15+0xab/0xcd0 [ 80.824060] ? __copy_skb_header+0x293/0x4e0 [ 80.828505] ? tipc_udp_addr2str+0x150/0x150 [ 80.832901] ? netdev_alloc_frag+0x160/0x160 [ 80.837501] ? skb_copy_header+0x16/0x2a0 [ 80.841640] ? __pskb_copy_fclone+0x4d5/0xc60 [ 80.846132] ? rcu_read_lock_held+0x9c/0xb0 [ 80.850436] ? rcu_read_lock_held_common+0x120/0x120 [ 80.855544] tipc_udp_send_msg+0x229/0x3d0 [ 80.859764] tipc_bearer_xmit_skb+0x1a5/0x370 [ 80.864240] ? tipc_bearer_mtu+0x350/0x350 [ 80.868464] ? tipc_disc_create+0x5d7/0x8c0 [ 80.873722] tipc_enable_bearer+0x7ef/0xb00 [ 80.878029] ? tipc_bearer_xmit_skb+0x370/0x370 [ 80.882680] ? __nla_validate_parse+0xa1/0x1d80 [ 80.887516] ? rtnl_lock+0x12/0x20 [ 80.891055] ? nla_memcpy+0xa0/0xa0 [ 80.894760] __tipc_nl_bearer_enable+0x265/0x390 [ 80.900390] ? __tipc_nl_bearer_enable+0x265/0x390 [ 80.905305] ? tipc_nl_bearer_disable+0x30/0x30 [ 80.909967] tipc_nl_bearer_enable+0x1d/0x30 [ 80.914355] genl_rcv_msg+0x5e1/0x10f0 [ 80.918224] ? __kasan_check_read+0x11/0x20 [ 80.922548] ? genl_family_rcv_msg_attrs_parse+0x340/0x340 [ 80.928198] netlink_rcv_skb+0x13f/0x380 [ 80.932283] ? genl_family_rcv_msg_attrs_parse+0x340/0x340 [ 80.937893] ? netlink_ack+0x980/0x980 [ 80.941766] ? netlink_deliver_tap+0x178/0xac0 [ 80.946331] ? __kasan_check_read+0x11/0x20 [ 80.950635] genl_rcv+0x23/0x40 [ 80.953900] netlink_unicast+0x463/0x6b0 [ 80.957947] ? netlink_attachskb+0x740/0x740 [ 80.962396] ? _copy_from_iter_full+0x18a/0x780 [ 80.967049] ? __kasan_check_read+0x11/0x20 [ 80.971413] ? __check_object_size+0x203/0x2ea [ 80.975985] netlink_sendmsg+0x7b0/0xcb0 [ 80.980051] ? netlink_unicast+0x6b0/0x6b0 [ 80.984273] ? netlink_unicast+0x6b0/0x6b0 [ 80.988504] sock_sendmsg+0xe6/0x110 [ 80.992219] ____sys_sendmsg+0x603/0x980 [ 80.996274] ? copy_msghdr_from_user+0x209/0x420 [ 81.001023] ? kernel_sendmsg+0x30/0x30 [ 81.004982] ___sys_sendmsg+0xe4/0x160 [ 81.008847] ? sendmsg_copy_msghdr+0x30/0x30 [ 81.013238] ? __kasan_check_read+0x11/0x20 [ 81.017555] ? __fget+0x2ac/0x410 [ 81.021003] ? ksys_dup3+0x2e0/0x2e0 [ 81.024706] ? __might_fault+0xf1/0x1b0 [ 81.028666] ? __fget_light+0x179/0x1f0 [ 81.032621] ? lock_acquire+0x194/0x410 [ 81.036574] ? __fdget+0xe/0x10 [ 81.039945] __sys_sendmsg+0xd9/0x180 [ 81.043734] ? __sys_sendmsg_sock+0xa0/0xa0 [ 81.048047] ? __kasan_check_read+0x11/0x20 [ 81.052345] ? _copy_to_user+0xcb/0xf0 [ 81.056225] ? put_timespec64+0xa9/0x100 [ 81.060266] ? nsecs_to_jiffies+0x20/0x20 [ 81.064404] ? __blkcg_punt_bio_submit+0x1c0/0x1c0 [ 81.069318] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 81.074662] __x64_sys_sendmsg+0x73/0xb0 [ 81.078705] do_syscall_64+0xd0/0x600 [ 81.082498] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 81.087666] RIP: 0033:0x4577c9 [ 81.090841] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 81.109741] RSP: 002b:00007f1553df1c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 81.117461] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000004577c9 [ 81.124722] RDX: 0000000000000080 RSI: 0000000020001e40 RDI: 0000000000000003 [ 81.131972] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 81.139222] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f1553df26d4 [ 81.146479] R13: 00000000004c42db R14: 00000000004d7220 R15: 00000000ffffffff [ 81.156804] BUG: using smp_processor_id() in preemptible [00000000] code: syz-executor0/7595 [ 81.165603] caller is dst_cache_set_ip4+0x97/0x2e0 [ 81.170589] CPU: 1 PID: 7595 Comm: syz-executor0 Not tainted 5.5.0-rc6-syzkaller #0 [ 81.178376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 81.187716] Call Trace: [ 81.190299] dump_stack+0x12d/0x187 [ 81.193922] debug_smp_processor_id.cold.1+0x84/0x9e [ 81.199018] dst_cache_set_ip4+0x97/0x2e0 [ 81.203162] ? dst_cache_get_ip6+0x1b0/0x1b0 [ 81.207555] ? xfrm_lookup_route+0x1f/0x110 [ 81.211921] tipc_udp_xmit.isra.15+0x7aa/0xcd0 [ 81.216486] ? __copy_skb_header+0x293/0x4e0 [ 81.220890] ? tipc_udp_addr2str+0x150/0x150 [ 81.225285] ? skb_copy_header+0x16/0x2a0 [ 81.229428] ? __pskb_copy_fclone+0x4d5/0xc60 [ 81.233914] ? rcu_read_lock_held+0x9c/0xb0 [ 81.238225] ? rcu_read_lock_held_common+0x120/0x120 [ 81.243459] tipc_udp_send_msg+0x229/0x3d0 [ 81.247680] tipc_bearer_xmit_skb+0x1a5/0x370 [ 81.252778] ? tipc_bearer_mtu+0x350/0x350 [ 81.256995] ? tipc_disc_create+0x5d7/0x8c0 [ 81.261300] tipc_enable_bearer+0x7ef/0xb00 [ 81.265619] ? tipc_bearer_xmit_skb+0x370/0x370 [ 81.270272] ? __nla_validate_parse+0xa1/0x1d80 [ 81.274929] ? rtnl_lock+0x12/0x20 [ 81.278475] ? nla_memcpy+0xa0/0xa0 [ 81.282087] __tipc_nl_bearer_enable+0x265/0x390 [ 81.286824] ? __tipc_nl_bearer_enable+0x265/0x390 [ 81.291734] ? tipc_nl_bearer_disable+0x30/0x30 [ 81.296408] tipc_nl_bearer_enable+0x1d/0x30 [ 81.300810] genl_rcv_msg+0x5e1/0x10f0 [ 81.304680] ? __kasan_check_read+0x11/0x20 [ 81.308983] ? genl_family_rcv_msg_attrs_parse+0x340/0x340 [ 81.314643] netlink_rcv_skb+0x13f/0x380 [ 81.318700] ? genl_family_rcv_msg_attrs_parse+0x340/0x340 [ 81.324306] ? netlink_ack+0x980/0x980 [ 81.328188] ? netlink_deliver_tap+0x178/0xac0 [ 81.332762] ? __kasan_check_read+0x11/0x20 [ 81.337067] genl_rcv+0x23/0x40 [ 81.340340] netlink_unicast+0x463/0x6b0 [ 81.344381] ? netlink_attachskb+0x740/0x740 [ 81.348781] ? _copy_from_iter_full+0x18a/0x780 [ 81.353436] ? __kasan_check_read+0x11/0x20 [ 81.357737] ? __check_object_size+0x203/0x2ea [ 81.362313] netlink_sendmsg+0x7b0/0xcb0 [ 81.366360] ? netlink_unicast+0x6b0/0x6b0 [ 81.370580] ? netlink_unicast+0x6b0/0x6b0 [ 81.374797] sock_sendmsg+0xe6/0x110 [ 81.378500] ____sys_sendmsg+0x603/0x980 [ 81.382545] ? copy_msghdr_from_user+0x209/0x420 [ 81.387292] ? kernel_sendmsg+0x30/0x30 [ 81.391445] ___sys_sendmsg+0xe4/0x160 [ 81.395320] ? sendmsg_copy_msghdr+0x30/0x30 [ 81.399711] ? __kasan_check_read+0x11/0x20 [ 81.404015] ? __fget+0x2ac/0x410 [ 81.407448] ? ksys_dup3+0x2e0/0x2e0 [ 81.411142] ? __might_fault+0xf1/0x1b0 [ 81.415094] ? __fget_light+0x179/0x1f0 [ 81.419064] ? lock_acquire+0x194/0x410 [ 81.423034] ? __fdget+0xe/0x10 [ 81.426297] __sys_sendmsg+0xd9/0x180 [ 81.430081] ? __sys_sendmsg_sock+0xa0/0xa0 [ 81.434389] ? __kasan_check_read+0x11/0x20 [ 81.438700] ? _copy_to_user+0xcb/0xf0 [ 81.442657] ? put_timespec64+0xa9/0x100 [ 81.446702] ? nsecs_to_jiffies+0x20/0x20 [ 81.450839] ? __blkcg_punt_bio_submit+0x1c0/0x1c0 [ 81.455765] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 81.461110] __x64_sys_sendmsg+0x73/0xb0 [ 81.465247] do_syscall_64+0xd0/0x600 [ 81.469050] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 81.474680] RIP: 0033:0x4577c9 [ 81.477854] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 81.497309] RSP: 002b:00007f1553df1c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 81.504998] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000004577c9 [ 81.512277] RDX: 0000000000000080 RSI: 0000000020001e40 RDI: 0000000000000003 [ 81.519535] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 81.526804] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f1553df26d4 2020/01/14 01:06:04 executed programs: 6 [ 81.536572] R13: 00000000004c42db R14: 00000000004d7220 R15: 00000000ffffffff [ 81.544428] ------------[ cut here ]------------ [ 81.549310] WARNING: CPU: 1 PID: 16 at include/net/dst.h:228 dst_cache_per_cpu_get.isra.3+0x208/0x410 [ 81.552693] tipc: Enabled bearer , priority 10 [ 81.558658] Kernel panic - not syncing: panic_on_warn set ... [ 81.558668] CPU: 1 PID: 16 Comm: ksoftirqd/1 Not tainted 5.5.0-rc6-syzkaller #0 [ 81.558672] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 81.558675] Call Trace: [ 81.558687] dump_stack+0x12d/0x187 [ 81.558697] ? dst_cache_per_cpu_get.isra.3+0x208/0x410 [ 81.558704] panic+0x22a/0x4f5 [ 81.558710] ? add_taint.cold.7+0x11/0x11 [ 81.558724] __warn.cold.10+0x25/0x28 [ 81.568528] tipc: Enabling of bearer rejected, already enabled [ 81.570053] ? __kmalloc_node_track_caller+0x4d/0x70 [ 81.570062] ? dst_cache_per_cpu_get.isra.3+0x208/0x410 [ 81.570070] report_bug+0x1b0/0x270 [ 81.570081] do_error_trap+0x11b/0x200 [ 81.570089] do_invalid_op+0x36/0x40 [ 81.570094] ? dst_cache_per_cpu_get.isra.3+0x208/0x410 [ 81.570101] invalid_op+0x23/0x30 [ 81.570106] RIP: 0010:dst_cache_per_cpu_get.isra.3+0x208/0x410 [ 81.570112] Code: 48 33 1c 25 28 00 00 00 0f 85 b2 01 00 00 48 83 ec 80 5b 41 5c 41 5d 41 5e 41 5f 5d c3 85 c0 41 89 44 24 c0 0f 85 ea fe ff ff <0f> 0b e9 2e ff ff ff 4d 8d 66 10 48 8b 95 58 ff ff ff 48 b8 00 00 [ 81.570115] RSP: 0018:ffff8881da367770 EFLAGS: 00010246 [ 81.570121] RAX: 0000000000000000 RBX: 1ffff1103b46cef2 RCX: ffffffff855d3b19 [ 81.570125] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8881cec2a240 [ 81.692310] RBP: ffff8881da367818 R08: ffffed1039d85449 R09: ffffed1039d85449 [ 81.699573] R10: ffffed1039d85448 R11: ffff8881cec2a243 R12: ffff8881da3677f0 [ 81.706908] R13: ffff8881cec2a240 R14: ffffe8ffffdb4f48 R15: ffff8881cec2a200 [ 81.716341] ? dst_cache_per_cpu_get.isra.3+0xa9/0x410 [ 81.721602] ? dst_cache_set_ip6+0x610/0x610 [ 81.725997] ? __kasan_kmalloc.constprop.9+0xc7/0xd0 [ 81.731091] dst_cache_get+0x69/0xa0 [ 81.734797] tipc_udp_xmit.isra.15+0xab/0xcd0 [ 81.739277] ? __copy_skb_header+0x293/0x4e0 [ 81.743664] ? tipc_udp_addr2str+0x150/0x150 [ 81.748051] ? netdev_alloc_frag+0x160/0x160 [ 81.752443] ? skb_copy_header+0x16/0x2a0 [ 81.756574] ? __pskb_copy_fclone+0x4d5/0xc60 [ 81.761052] ? rcu_read_lock_held+0x9c/0xb0 [ 81.765354] ? rcu_read_lock_held_common+0x120/0x120 [ 81.770710] tipc_udp_send_msg+0x229/0x3d0 [ 81.775746] tipc_bearer_xmit_skb+0x1a5/0x370 [ 81.780753] ? tipc_bearer_mtu+0x350/0x350 [ 81.786542] ? __skb_clone+0x595/0x800 [ 81.790415] ? tipc_disc_timeout+0x701/0xad0 [ 81.794822] ? __local_bh_enable_ip+0x160/0x260 [ 81.799477] tipc_disc_timeout+0x71f/0xad0 [ 81.803703] ? tipc_disc_msg_xmit.isra.22+0x180/0x180 [ 81.808891] ? rcu_read_lock_any_held.part.10+0x50/0x50 [ 81.814244] call_timer_fn+0x16c/0x580 [ 81.818126] ? tipc_disc_msg_xmit.isra.22+0x180/0x180 [ 81.823306] ? msleep_interruptible+0xf0/0xf0 [ 81.827784] ? _raw_spin_unlock_irq+0x22/0x80 [ 81.832264] ? trace_hardirqs_on+0x28/0x1b0 [ 81.836572] ? tipc_disc_msg_xmit.isra.22+0x180/0x180 [ 81.841761] run_timer_softirq+0xd5e/0x1340 [ 81.846097] ? add_timer+0x730/0x730 [ 81.849817] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 81.854648] ? rcu_read_lock_any_held.part.10+0x50/0x50 [ 81.860177] ? __do_softirq+0x1f9/0x9b4 [ 81.864134] ? trace_hardirqs_on+0x28/0x1b0 [ 81.868434] __do_softirq+0x268/0x9b4 [ 81.872223] ? takeover_tasklets+0x820/0x820 [ 81.876649] run_ksoftirqd+0x94/0x100 [ 81.880439] smpboot_thread_fn+0x56b/0x8c0 [ 81.884670] ? __smpboot_create_thread.part.1+0x2c0/0x2c0 [ 81.890209] ? __kasan_check_read+0x11/0x20 [ 81.894533] ? __kthread_parkme+0xc8/0x1a0 [ 81.898750] ? __kasan_check_read+0x11/0x20 [ 81.903054] kthread+0x334/0x3f0 [ 81.906401] ? __smpboot_create_thread.part.1+0x2c0/0x2c0 [ 81.911919] ? kthread_mod_delayed_work+0x190/0x190 [ 81.916936] ret_from_fork+0x3a/0x50 [ 81.922256] Kernel Offset: disabled [ 81.926586] Rebooting in 86400 seconds..