[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 64.250415] audit: type=1800 audit(1543229739.291:25): pid=6613 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 64.269675] audit: type=1800 audit(1543229739.291:26): pid=6613 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 64.289128] audit: type=1800 audit(1543229739.321:27): pid=6613 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.65' (ECDSA) to the list of known hosts. 2018/11/26 10:56:57 parsed 1 programs 2018/11/26 10:57:15 executed programs: 0 syzkaller login: [ 160.763634] IPVS: ftp: loaded support on port[0] = 21 [ 160.775300] IPVS: ftp: loaded support on port[0] = 21 [ 160.809054] IPVS: ftp: loaded support on port[0] = 21 [ 160.835903] IPVS: ftp: loaded support on port[0] = 21 [ 160.865947] IPVS: ftp: loaded support on port[0] = 21 [ 160.866818] IPVS: ftp: loaded support on port[0] = 21 [ 164.080950] bridge0: port 1(bridge_slave_0) entered blocking state [ 164.087748] bridge0: port 1(bridge_slave_0) entered disabled state [ 164.096558] device bridge_slave_0 entered promiscuous mode [ 164.188050] bridge0: port 1(bridge_slave_0) entered blocking state [ 164.194922] bridge0: port 1(bridge_slave_0) entered disabled state [ 164.203608] device bridge_slave_0 entered promiscuous mode [ 164.231792] bridge0: port 1(bridge_slave_0) entered blocking state [ 164.238253] bridge0: port 1(bridge_slave_0) entered disabled state [ 164.246988] device bridge_slave_0 entered promiscuous mode [ 164.256042] bridge0: port 1(bridge_slave_0) entered blocking state [ 164.262711] bridge0: port 1(bridge_slave_0) entered disabled state [ 164.271170] device bridge_slave_0 entered promiscuous mode [ 164.293878] bridge0: port 2(bridge_slave_1) entered blocking state [ 164.300330] bridge0: port 2(bridge_slave_1) entered disabled state [ 164.309171] device bridge_slave_1 entered promiscuous mode [ 164.318439] bridge0: port 1(bridge_slave_0) entered blocking state [ 164.324987] bridge0: port 1(bridge_slave_0) entered disabled state [ 164.333719] device bridge_slave_0 entered promiscuous mode [ 164.363751] bridge0: port 1(bridge_slave_0) entered blocking state [ 164.370235] bridge0: port 1(bridge_slave_0) entered disabled state [ 164.379063] device bridge_slave_0 entered promiscuous mode [ 164.456178] bridge0: port 2(bridge_slave_1) entered blocking state [ 164.462955] bridge0: port 2(bridge_slave_1) entered disabled state [ 164.471527] device bridge_slave_1 entered promiscuous mode [ 164.481460] bridge0: port 2(bridge_slave_1) entered blocking state [ 164.488189] bridge0: port 2(bridge_slave_1) entered disabled state [ 164.496801] device bridge_slave_1 entered promiscuous mode [ 164.508729] bridge0: port 2(bridge_slave_1) entered blocking state [ 164.515386] bridge0: port 2(bridge_slave_1) entered disabled state [ 164.523958] device bridge_slave_1 entered promiscuous mode [ 164.547332] bridge0: port 2(bridge_slave_1) entered blocking state [ 164.554027] bridge0: port 2(bridge_slave_1) entered disabled state [ 164.562850] device bridge_slave_1 entered promiscuous mode [ 164.576886] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 164.597705] bridge0: port 2(bridge_slave_1) entered blocking state [ 164.604464] bridge0: port 2(bridge_slave_1) entered disabled state [ 164.613097] device bridge_slave_1 entered promiscuous mode [ 164.649066] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 164.696950] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 164.742976] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 164.782312] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 164.796900] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 164.814412] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 164.842071] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 164.874033] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 164.899392] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 164.984688] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 165.012254] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 165.387788] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 165.422237] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 165.467505] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 165.492214] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 165.573722] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 165.593119] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 165.617140] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 165.642850] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 165.664181] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 165.695557] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 165.746166] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 165.762991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 165.803908] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 165.816005] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 165.824337] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 165.838900] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 165.916321] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 165.924792] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 165.939875] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 165.947410] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 166.003302] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 166.010358] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 166.096236] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 166.103542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 166.311869] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 166.318968] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 166.521288] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 166.529818] team0: Port device team_slave_0 added [ 166.589204] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 166.597531] team0: Port device team_slave_0 added [ 166.671194] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 166.679641] team0: Port device team_slave_0 added [ 166.764472] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 166.772985] team0: Port device team_slave_0 added [ 166.799195] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 166.807629] team0: Port device team_slave_1 added [ 166.814681] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 166.823434] team0: Port device team_slave_0 added [ 166.840126] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 166.848626] team0: Port device team_slave_1 added [ 166.896253] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 166.904807] team0: Port device team_slave_1 added [ 166.945152] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 166.953653] team0: Port device team_slave_1 added [ 166.976857] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 166.985172] team0: Port device team_slave_0 added [ 166.996333] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 167.013962] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 167.023313] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 167.056626] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 167.090540] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 167.099030] team0: Port device team_slave_1 added [ 167.123451] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 167.133258] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 167.179090] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 167.188206] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 167.226953] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 167.235577] team0: Port device team_slave_1 added [ 167.254207] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 167.267691] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 167.276942] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 167.332189] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 167.341019] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 167.350317] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 167.364894] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 167.376764] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 167.384001] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 167.393349] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 167.401842] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 167.410844] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 167.430820] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 167.458930] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 167.499681] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 167.509471] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 167.518227] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 167.527201] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 167.537313] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 167.576905] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 167.599896] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 167.622304] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 167.631235] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 167.641809] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 167.650996] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 167.660331] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 167.669579] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 167.678424] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 167.687807] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 167.696728] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 167.706021] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 167.714887] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 167.724029] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 167.738601] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 167.757022] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 167.809103] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 167.844028] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 167.889478] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 167.922017] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 167.949570] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 167.957882] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 167.967075] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 167.975532] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 167.984719] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 167.993571] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 168.002727] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 168.011399] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 168.020846] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 168.029824] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 168.039068] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 168.048089] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 168.057325] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 168.066201] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 168.075350] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 168.107476] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 168.134094] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 168.433307] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 168.442944] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 168.452014] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 168.461212] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 169.795608] bridge0: port 2(bridge_slave_1) entered blocking state [ 169.802228] bridge0: port 2(bridge_slave_1) entered forwarding state [ 169.809209] bridge0: port 1(bridge_slave_0) entered blocking state [ 169.815819] bridge0: port 1(bridge_slave_0) entered forwarding state [ 169.824328] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 169.830918] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 170.060548] bridge0: port 2(bridge_slave_1) entered blocking state [ 170.067135] bridge0: port 2(bridge_slave_1) entered forwarding state [ 170.074180] bridge0: port 1(bridge_slave_0) entered blocking state [ 170.080659] bridge0: port 1(bridge_slave_0) entered forwarding state [ 170.089724] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 170.109871] bridge0: port 2(bridge_slave_1) entered blocking state [ 170.116430] bridge0: port 2(bridge_slave_1) entered forwarding state [ 170.123507] bridge0: port 1(bridge_slave_0) entered blocking state [ 170.129986] bridge0: port 1(bridge_slave_0) entered forwarding state [ 170.139584] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 170.293115] bridge0: port 2(bridge_slave_1) entered blocking state [ 170.299664] bridge0: port 2(bridge_slave_1) entered forwarding state [ 170.306760] bridge0: port 1(bridge_slave_0) entered blocking state [ 170.313308] bridge0: port 1(bridge_slave_0) entered forwarding state [ 170.321937] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 170.356709] bridge0: port 2(bridge_slave_1) entered blocking state [ 170.363300] bridge0: port 2(bridge_slave_1) entered forwarding state [ 170.370220] bridge0: port 1(bridge_slave_0) entered blocking state [ 170.376825] bridge0: port 1(bridge_slave_0) entered forwarding state [ 170.385705] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 170.426423] bridge0: port 2(bridge_slave_1) entered blocking state [ 170.433004] bridge0: port 2(bridge_slave_1) entered forwarding state [ 170.439917] bridge0: port 1(bridge_slave_0) entered blocking state [ 170.446580] bridge0: port 1(bridge_slave_0) entered forwarding state [ 170.455580] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 170.897832] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 170.906267] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 170.914900] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 170.923177] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 170.931295] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 177.732461] 8021q: adding VLAN 0 to HW filter on device bond0 [ 177.744742] 8021q: adding VLAN 0 to HW filter on device bond0 [ 177.817123] 8021q: adding VLAN 0 to HW filter on device bond0 [ 177.988190] 8021q: adding VLAN 0 to HW filter on device bond0 [ 177.999036] 8021q: adding VLAN 0 to HW filter on device bond0 [ 178.125472] 8021q: adding VLAN 0 to HW filter on device bond0 [ 178.442132] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 178.531223] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 178.566308] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 178.631446] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 178.671137] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 178.893890] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 179.183495] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 179.189873] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 179.198148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 179.232870] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 179.262287] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 179.268697] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 179.276806] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 179.284864] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 179.293324] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 179.378861] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 179.386825] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 179.395005] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 179.453688] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 179.461038] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 179.469279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 179.784804] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 179.792678] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 179.800918] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 179.964360] 8021q: adding VLAN 0 to HW filter on device team0 [ 179.976660] 8021q: adding VLAN 0 to HW filter on device team0 [ 180.039833] 8021q: adding VLAN 0 to HW filter on device team0 [ 180.170358] 8021q: adding VLAN 0 to HW filter on device team0 [ 180.238833] 8021q: adding VLAN 0 to HW filter on device team0 [ 180.498041] 8021q: adding VLAN 0 to HW filter on device team0 [ 184.333462] ================================================================== [ 184.340933] BUG: KMSAN: kernel-infoleak in _copy_to_user+0x19a/0x230 [ 184.347465] CPU: 0 PID: 8311 Comm: syz-executor2 Not tainted 4.20.0-rc3+ #95 [ 184.354682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 184.364070] Call Trace: [ 184.366687] dump_stack+0x32d/0x480 [ 184.370352] ? _copy_to_user+0x19a/0x230 [ 184.374444] ? oom_killer_disable+0x560/0x600 [ 184.378989] kmsan_report+0x12c/0x290 [ 184.382829] kmsan_internal_check_memory+0x32a/0xa50 [ 184.387964] ? __msan_get_context_state+0x9/0x20 [ 184.392813] kmsan_copy_to_user+0x78/0xd0 [ 184.397012] _copy_to_user+0x19a/0x230 [ 184.400945] sctp_getsockopt+0x15248/0x186f0 [ 184.405386] ? aa_label_sk_perm+0x6d6/0x960 [ 184.409790] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 184.415186] ? aa_sk_perm+0x7ab/0x9e0 [ 184.419051] ? aa_sock_opt_perm+0x132/0x2b0 [ 184.423419] ? sctp_setsockopt+0x13030/0x13030 [ 184.428043] sock_common_getsockopt+0x13f/0x180 [ 184.432758] ? sock_recv_errqueue+0x990/0x990 [ 184.437286] __sys_getsockopt+0x489/0x550 [ 184.441506] __se_sys_getsockopt+0xe1/0x100 [ 184.445876] __x64_sys_getsockopt+0x62/0x80 [ 184.450244] do_syscall_64+0xcf/0x110 [ 184.454076] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 184.459296] RIP: 0033:0x457569 [ 184.462527] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 184.481510] RSP: 002b:00007ff40a834c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 184.489259] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000457569 [ 184.496562] RDX: 000000000000006d RSI: 0000000000000084 RDI: 0000000000000003 [ 184.503862] RBP: 000000000072bfa0 R08: 0000000020000000 R09: 0000000000000000 [ 184.511158] R10: 00000000200002c0 R11: 0000000000000246 R12: 00007ff40a8356d4 [ 184.518452] R13: 00000000004c8010 R14: 00000000004ce498 R15: 00000000ffffffff [ 184.525796] [ 184.527438] Uninit was stored to memory at: [ 184.531799] kmsan_internal_chain_origin+0x13d/0x240 [ 184.536926] kmsan_memcpy_memmove_metadata+0x1a9/0xf70 [ 184.542224] kmsan_memcpy_metadata+0xb/0x10 [ 184.546626] __msan_memcpy+0x61/0x70 [ 184.550365] sctp_getsockopt+0x148ec/0x186f0 [ 184.554810] sock_common_getsockopt+0x13f/0x180 [ 184.559536] __sys_getsockopt+0x489/0x550 [ 184.563715] __se_sys_getsockopt+0xe1/0x100 [ 184.568066] __x64_sys_getsockopt+0x62/0x80 [ 184.572430] do_syscall_64+0xcf/0x110 [ 184.576255] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 184.581452] [ 184.583102] Uninit was stored to memory at: [ 184.587452] kmsan_internal_chain_origin+0x13d/0x240 [ 184.592595] kmsan_memcpy_memmove_metadata+0x1a9/0xf70 [ 184.597897] kmsan_memcpy_metadata+0xb/0x10 [ 184.602237] __msan_memcpy+0x61/0x70 [ 184.605990] sctp_getsockopt+0x147e0/0x186f0 [ 184.610425] sock_common_getsockopt+0x13f/0x180 [ 184.615125] __sys_getsockopt+0x489/0x550 [ 184.619299] __se_sys_getsockopt+0xe1/0x100 [ 184.623657] __x64_sys_getsockopt+0x62/0x80 [ 184.627999] do_syscall_64+0xcf/0x110 [ 184.631865] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 184.637071] [ 184.638727] Uninit was stored to memory at: [ 184.643083] kmsan_internal_chain_origin+0x13d/0x240 [ 184.648236] kmsan_memcpy_memmove_metadata+0x1a9/0xf70 [ 184.653556] kmsan_memcpy_metadata+0xb/0x10 [ 184.657922] __msan_memcpy+0x61/0x70 [ 184.661667] sctp_add_bind_addr+0xfb/0x590 [ 184.665969] sctp_copy_local_addr_list+0x4e8/0x660 [ 184.670920] sctp_copy_one_addr+0x200/0xc10 [ 184.675283] sctp_bind_addr_copy+0x243/0x910 [ 184.679710] sctp_assoc_set_bind_addr_from_ep+0x21b/0x280 [ 184.685246] __sctp_connect+0x1233/0x1c30 [ 184.689399] sctp_setsockopt+0x620a/0x13030 [ 184.693731] sock_common_setsockopt+0x13b/0x170 [ 184.698403] __sys_setsockopt+0x493/0x540 [ 184.702562] __se_sys_setsockopt+0xdd/0x100 [ 184.706875] __x64_sys_setsockopt+0x62/0x80 [ 184.711202] do_syscall_64+0xcf/0x110 [ 184.715014] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 184.720186] [ 184.721808] Uninit was created at: [ 184.725356] kmsan_internal_poison_shadow+0x6d/0x130 [ 184.730453] kmsan_kmalloc+0xa1/0x100 [ 184.734257] __kmalloc+0x14c/0x4d0 [ 184.737804] sctp_inet6addr_event+0x60e/0xbd0 [ 184.742310] atomic_notifier_call_chain+0x13d/0x240 [ 184.747342] inet6addr_notifier_call_chain+0x76/0x90 [ 184.752471] ipv6_add_addr+0x2597/0x2890 [ 184.756542] add_addr+0x1a8/0x520 [ 184.760015] addrconf_notify+0x49fa/0x6200 [ 184.764260] raw_notifier_call_chain+0x13d/0x240 [ 184.769011] __dev_notify_flags+0x3da/0x860 [ 184.773345] dev_change_flags+0x1ac/0x230 [ 184.777515] do_setlink+0x165f/0x5ea0 [ 184.781311] rtnl_newlink+0x2ad7/0x35a0 [ 184.785280] rtnetlink_rcv_msg+0x1148/0x1540 [ 184.789727] netlink_rcv_skb+0x394/0x640 [ 184.793796] rtnetlink_rcv+0x50/0x60 [ 184.797518] netlink_unicast+0x1699/0x1740 [ 184.801756] netlink_sendmsg+0x13c7/0x1440 [ 184.806020] ___sys_sendmsg+0xe3b/0x1240 [ 184.810091] __se_sys_sendmsg+0x305/0x460 [ 184.814233] __x64_sys_sendmsg+0x4a/0x70 [ 184.818289] do_syscall_64+0xcf/0x110 [ 184.822085] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 184.827261] [ 184.828879] Bytes 88-91 of 784 are uninitialized [ 184.833621] Memory access of size 784 starts at ffff888184d3dc00 [ 184.839754] Data copied to user address 00000000200002c8 [ 184.845188] ================================================================== [ 184.852544] Disabling lock debugging due to kernel taint [ 184.858001] Kernel panic - not syncing: panic_on_warn set ... [ 184.863913] CPU: 0 PID: 8311 Comm: syz-executor2 Tainted: G B 4.20.0-rc3+ #95 [ 184.872495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 184.881846] Call Trace: [ 184.884436] dump_stack+0x32d/0x480 [ 184.888075] panic+0x624/0xc08 [ 184.891330] kmsan_report+0x28a/0x290 [ 184.895266] kmsan_internal_check_memory+0x32a/0xa50 [ 184.900375] ? __msan_get_context_state+0x9/0x20 [ 184.905368] kmsan_copy_to_user+0x78/0xd0 [ 184.909528] _copy_to_user+0x19a/0x230 [ 184.913423] sctp_getsockopt+0x15248/0x186f0 [ 184.917850] ? aa_label_sk_perm+0x6d6/0x960 [ 184.922232] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 184.927614] ? aa_sk_perm+0x7ab/0x9e0 [ 184.931447] ? aa_sock_opt_perm+0x132/0x2b0 [ 184.935807] ? sctp_setsockopt+0x13030/0x13030 [ 184.940407] sock_common_getsockopt+0x13f/0x180 [ 184.945097] ? sock_recv_errqueue+0x990/0x990 [ 184.949590] __sys_getsockopt+0x489/0x550 [ 184.953750] __se_sys_getsockopt+0xe1/0x100 [ 184.958081] __x64_sys_getsockopt+0x62/0x80 [ 184.962414] do_syscall_64+0xcf/0x110 [ 184.966364] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 184.971575] RIP: 0033:0x457569 [ 184.974777] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 184.993708] RSP: 002b:00007ff40a834c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 185.001445] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000457569 [ 185.008761] RDX: 000000000000006d RSI: 0000000000000084 RDI: 0000000000000003 [ 185.016054] RBP: 000000000072bfa0 R08: 0000000020000000 R09: 0000000000000000 [ 185.023328] R10: 00000000200002c0 R11: 0000000000000246 R12: 00007ff40a8356d4 [ 185.030592] R13: 00000000004c8010 R14: 00000000004ce498 R15: 00000000ffffffff [ 185.039013] Kernel Offset: disabled [ 185.042654] Rebooting in 86400 seconds..