INIT: Entering runlevel: 2
[[36minfo[39;49m] Using makefile-style concurrent boot in runlevel 2.
[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.10.57' (ECDSA) to the list of known hosts.
net.ipv6.conf.syz_tun.accept_dad = 0
syzkaller login: [   59.612444] IPVS: ftp: loaded support on port[0] = 21
net.ipv6.conf.syz_tun.router_solicitations = 0
[   59.885058] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.891473] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.898693] device bridge_slave_0 entered promiscuous mode
[   59.919795] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.926208] bridge0: port 2(bridge_slave_1) entered disabled state
[   59.933536] device bridge_slave_1 entered promiscuous mode
[   59.954205] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   59.974930] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   60.017316] ip (4566) used greatest stack depth: 54200 bytes left
[   60.031725] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   60.054624] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   60.140900] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   60.148585] team0: Port device team_slave_0 added
[   60.169326] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   60.176611] team0: Port device team_slave_1 added
[   60.197233] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   60.219917] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   60.242939] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   60.266543] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
RTNETLINK answers: Operation not supported
RTNETLINK answers: No buffer space available
RTNETLINK answers: Operation not supported
[   60.444852] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.451312] bridge0: port 2(bridge_slave_1) entered forwarding state
[   60.458101] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.464501] bridge0: port 1(bridge_slave_0) entered forwarding state
RTNETLINK answers: Operation not supported
RTNETLINK answers: Operation not supported
RTNETLINK answers: Operation not supported
RTNETLINK answers: Invalid argument
RTNETLINK answers: Invalid argument
RTNETLINK answers: Invalid argument
[   61.103611] 8021q: adding VLAN 0 to HW filter on device bond0
[   61.169151] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   61.233070] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   61.239294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   61.247239] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   61.306427] 8021q: adding VLAN 0 to HW filter on device team0
executing program
[   61.661327] ==================================================================
[   61.668721] BUG: KMSAN: uninit-value in ip_tunnel_xmit+0x5e9/0x37c0
[   61.675106] CPU: 0 PID: 4521 Comm: syz-executor004 Not tainted 4.16.0+ #87
[   61.682092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   61.691418] Call Trace:
[   61.693985]  dump_stack+0x185/0x1d0
[   61.697588]  ? ip_tunnel_xmit+0x5e9/0x37c0
[   61.701804]  kmsan_report+0x142/0x240
[   61.705582]  __msan_warning_32+0x6c/0xb0
[   61.709620]  ip_tunnel_xmit+0x5e9/0x37c0
[   61.713654]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[   61.718991]  ? skb_push+0x16b/0x260
[   61.722594]  ? __msan_metadata_ptr_for_store_2+0x13/0x20
[   61.728023]  ? gre_build_header+0x5ab/0xaa0
[   61.732321]  ipgre_xmit+0xdb7/0xe90
[   61.735923]  ? ipgre_close+0x230/0x230
[   61.739791]  dev_hard_start_xmit+0x5f1/0xc70
[   61.744306]  __dev_queue_xmit+0x27ee/0x3520
[   61.748621]  ? sock_alloc_send_pskb+0xfee/0x1190
[   61.753356]  dev_queue_xmit+0x4b/0x60
[   61.757132]  ? __netdev_pick_tx+0xb60/0xb60
[   61.761428]  packet_sendmsg+0x7c70/0x8a30
[   61.765555]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[   61.770982]  ? __save_stack_trace+0x90d/0xb00
[   61.775453]  ? __msan_poison_alloca+0x15c/0x1d0
[   61.780109]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[   61.785533]  ? import_iovec+0x3cd/0x610
[   61.789497]  ? copy_msghdr_from_user+0x72c/0x830
[   61.794229]  ? compat_packet_setsockopt+0x360/0x360
[   61.799219]  ___sys_sendmsg+0xec0/0x1310
[   61.803260]  ? __fdget+0x4e/0x60
[   61.806601]  ? __fget_light+0x1dc/0x710
[   61.810550]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[   61.815901]  ? __fget_light+0x1f5/0x710
[   61.819870]  __sys_sendmmsg+0x42d/0x800
[   61.823835]  ? kmsan_set_origin_inline+0x6b/0x120
[   61.828662]  SYSC_sendmmsg+0xc4/0x110
[   61.832454]  SyS_sendmmsg+0x63/0x90
[   61.836061]  do_syscall_64+0x309/0x430
[   61.839927]  ? __sys_sendmmsg+0x800/0x800
[   61.844056]  entry_SYSCALL_64_after_hwframe+0x3d/0xa2
[   61.849219] RIP: 0033:0x441b69
[   61.852381] RSP: 002b:00007ffd2e3004b8 EFLAGS: 00000213 ORIG_RAX: 0000000000000133
[   61.860063] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000441b69
[   61.867308] RDX: 0000000000000002 RSI: 0000000020003e80 RDI: 0000000000000003
[   61.874556] RBP: 00000000006cd018 R08: 00007ffd0000f094 R09: 00007ffd0000f094
[   61.881803] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000000402860
[   61.889045] R13: 00000000004028f0 R14: 0000000000000000 R15: 0000000000000000
[   61.896291] 
[   61.897891] Uninit was created at:
[   61.901415]  kmsan_internal_poison_shadow+0xb8/0x1b0
[   61.906491]  kmsan_kmalloc+0x94/0x100
[   61.910263]  kmsan_slab_alloc+0x11/0x20
[   61.914220]  __kmalloc_node_track_caller+0xaed/0x11c0
[   61.919400]  __alloc_skb+0x2cf/0x9f0
[   61.923106]  alloc_skb_with_frags+0x1d4/0xb20
[   61.927582]  sock_alloc_send_pskb+0xb56/0x1190
[   61.932142]  packet_sendmsg+0x6454/0x8a30
[   61.936270]  ___sys_sendmsg+0xec0/0x1310
[   61.940312]  __sys_sendmmsg+0x42d/0x800
[   61.944280]  SYSC_sendmmsg+0xc4/0x110
[   61.948061]  SyS_sendmmsg+0x63/0x90
[   61.951667]  do_syscall_64+0x309/0x430
[   61.955531]  entry_SYSCALL_64_after_hwframe+0x3d/0xa2
[   61.960698] ==================================================================
[   61.968043] Disabling lock debugging due to kernel taint
[   61.973475] Kernel panic - not syncing: panic_on_warn set ...
[   61.973475] 
[   61.980839] CPU: 0 PID: 4521 Comm: syz-executor004 Tainted: G    B            4.16.0+ #87
[   61.989138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   61.998468] Call Trace:
[   62.001046]  dump_stack+0x185/0x1d0
[   62.004662]  panic+0x39d/0x940
[   62.007841]  ? ip_tunnel_xmit+0x5e9/0x37c0
[   62.012057]  kmsan_report+0x238/0x240
[   62.015836]  __msan_warning_32+0x6c/0xb0
[   62.019873]  ip_tunnel_xmit+0x5e9/0x37c0
[   62.023914]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[   62.029261]  ? skb_push+0x16b/0x260
[   62.032866]  ? __msan_metadata_ptr_for_store_2+0x13/0x20
[   62.038293]  ? gre_build_header+0x5ab/0xaa0
[   62.042593]  ipgre_xmit+0xdb7/0xe90
[   62.046210]  ? ipgre_close+0x230/0x230
[   62.050083]  dev_hard_start_xmit+0x5f1/0xc70
[   62.054473]  __dev_queue_xmit+0x27ee/0x3520
[   62.058769]  ? sock_alloc_send_pskb+0xfee/0x1190
[   62.063507]  dev_queue_xmit+0x4b/0x60
[   62.067283]  ? __netdev_pick_tx+0xb60/0xb60
[   62.071583]  packet_sendmsg+0x7c70/0x8a30
[   62.075720]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[   62.081153]  ? __save_stack_trace+0x90d/0xb00
[   62.085630]  ? __msan_poison_alloca+0x15c/0x1d0
[   62.090289]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[   62.095723]  ? import_iovec+0x3cd/0x610
[   62.099677]  ? copy_msghdr_from_user+0x72c/0x830
[   62.104412]  ? compat_packet_setsockopt+0x360/0x360
[   62.109406]  ___sys_sendmsg+0xec0/0x1310
[   62.113450]  ? __fdget+0x4e/0x60
[   62.116795]  ? __fget_light+0x1dc/0x710
[   62.120754]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[   62.126099]  ? __fget_light+0x1f5/0x710
[   62.130074]  __sys_sendmmsg+0x42d/0x800
[   62.134042]  ? kmsan_set_origin_inline+0x6b/0x120
[   62.138879]  SYSC_sendmmsg+0xc4/0x110
[   62.142657]  SyS_sendmmsg+0x63/0x90
[   62.146261]  do_syscall_64+0x309/0x430
[   62.150135]  ? __sys_sendmmsg+0x800/0x800
[   62.154262]  entry_SYSCALL_64_after_hwframe+0x3d/0xa2
[   62.159426] RIP: 0033:0x441b69
[   62.162591] RSP: 002b:00007ffd2e3004b8 EFLAGS: 00000213 ORIG_RAX: 0000000000000133
[   62.170273] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000441b69
[   62.177519] RDX: 0000000000000002 RSI: 0000000020003e80 RDI: 0000000000000003
[   62.184766] RBP: 00000000006cd018 R08: 00007ffd0000f094 R09: 00007ffd0000f094
[   62.192015] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000000402860
[   62.199279] R13: 00000000004028f0 R14: 0000000000000000 R15: 0000000000000000
[   62.206971] Dumping ftrace buffer:
[   62.210489]    (ftrace buffer empty)
[   62.214172] Kernel Offset: disabled
[   62.217771] Rebooting in 86400 seconds..