Warning: Permanently added '10.128.15.226' (ECDSA) to the list of known hosts.
2018/12/30 11:21:08 fuzzer started
[ 107.640458] as (11201) used greatest stack depth: 53720 bytes left
2018/12/30 11:21:13 dialing manager at 10.128.0.26:41469
2018/12/30 11:21:13 syscalls: 1
2018/12/30 11:21:13 code coverage: enabled
2018/12/30 11:21:13 comparison tracing: CONFIG_KCOV_ENABLE_COMPARISONS is not enabled
2018/12/30 11:21:13 setuid sandbox: enabled
2018/12/30 11:21:13 namespace sandbox: enabled
2018/12/30 11:21:13 Android sandbox: /sys/fs/selinux/policy does not exist
2018/12/30 11:21:13 fault injection: enabled
2018/12/30 11:21:13 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2018/12/30 11:21:13 net packet injection: enabled
2018/12/30 11:21:13 net device setup: enabled
11:21:16 executing program 0:
personality(0x6400008)
uname(&(0x7f0000000440)=""/176)
[ 112.716206] IPVS: ftp: loaded support on port[0] = 21
[ 112.873954] chnl_net:caif_netlink_parms(): no params data found
[ 112.947094] bridge0: port 1(bridge_slave_0) entered blocking state
[ 112.953690] bridge0: port 1(bridge_slave_0) entered disabled state
[ 112.962068] device bridge_slave_0 entered promiscuous mode
[ 112.970941] bridge0: port 2(bridge_slave_1) entered blocking state
[ 112.977552] bridge0: port 2(bridge_slave_1) entered disabled state
[ 112.985866] device bridge_slave_1 entered promiscuous mode
[ 113.018782] bond0: Enslaving bond_slave_0 as an active interface with an up link
[ 113.030027] bond0: Enslaving bond_slave_1 as an active interface with an up link
[ 113.060714] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[ 113.069474] team0: Port device team_slave_0 added
[ 113.076267] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[ 113.084937] team0: Port device team_slave_1 added
[ 113.090998] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[ 113.099666] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[ 113.276944] device hsr_slave_0 entered promiscuous mode
[ 113.443125] device hsr_slave_1 entered promiscuous mode
[ 113.704177] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[ 113.711869] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[ 113.742648] bridge0: port 2(bridge_slave_1) entered blocking state
[ 113.749191] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 113.756447] bridge0: port 1(bridge_slave_0) entered blocking state
[ 113.763040] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 113.854806] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready
[ 113.860934] 8021q: adding VLAN 0 to HW filter on device bond0
[ 113.869787] bridge0: port 1(bridge_slave_0) entered disabled state
[ 113.881490] bridge0: port 2(bridge_slave_1) entered disabled state
[ 113.893437] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 113.911285] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[ 113.924329] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[ 113.931678] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 113.939517] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 113.956236] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[ 113.962982] 8021q: adding VLAN 0 to HW filter on device team0
[ 113.976453] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[ 113.984615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 113.994671] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 114.003007] bridge0: port 1(bridge_slave_0) entered blocking state
[ 114.009591] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 114.024146] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[ 114.037326] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[ 114.049593] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[ 114.058001] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 114.066723] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 114.075223] bridge0: port 2(bridge_slave_1) entered blocking state
[ 114.081717] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 114.089479] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 114.098687] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 114.114619] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[ 114.127544] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[ 114.140479] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready
[ 114.153470] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready
[ 114.163903] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 114.173030] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 114.181691] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 114.190614] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 114.199442] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 114.207942] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 114.216483] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 114.225009] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 114.235650] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[ 114.241716] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 114.249976] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 114.299485] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready
[ 114.319818] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 114.352218] ==================================================================
[ 114.359635] BUG: KMSAN: uninit-value in send_hsr_supervision_frame+0x1056/0x1510
[ 114.367160] CPU: 1 PID: 11204 Comm: syz-fuzzer Not tainted 4.20.0-rc7+ #16
[ 114.374154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 114.383495] Call Trace:
[ 114.386067]
[ 114.388208] dump_stack+0x173/0x1d0
[ 114.391839] kmsan_report+0x12e/0x2a0
[ 114.395645] __msan_warning+0x82/0xf0
[ 114.399451] send_hsr_supervision_frame+0x1056/0x1510
[ 114.404676] hsr_announce+0x14c/0x3a0
[ 114.408479] call_timer_fn+0x285/0x600
[ 114.412355] ? hsr_dev_finalize+0xb90/0xb90
[ 114.416672] __run_timers+0xdb4/0x11d0
[ 114.420566] ? hsr_dev_finalize+0xb90/0xb90
[ 114.424922] ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 114.430363] ? irqtime_account_irq+0xcf/0x2e0
[ 114.434868] ? timers_dead_cpu+0xa50/0xa50
[ 114.439110] run_timer_softirq+0x2e/0x50
[ 114.443165] __do_softirq+0x53f/0x93a
[ 114.446988] irq_exit+0x214/0x250
[ 114.450435] exiting_irq+0xe/0x10
[ 114.453880] smp_apic_timer_interrupt+0x48/0x70
[ 114.458538] apic_timer_interrupt+0x2e/0x40
[ 114.462877]
[ 114.465109] RIP: 0010:sha256_generic_block_fn+0x5057/0xab60
[ 114.470806] Code: 21 d8 09 d0 41 89 fd 41 f7 d5 44 89 fa 44 21 ea 41 21 ce 41 09 d6 89 ca 44 21 fa 09 d0 41 09 d6 89 fe 09 de 44 89 f2 44 21 ca <41> 21 f1 45 21 e6 45 09 ce 41 09 d6 44 21 e6 48 89 bc 24 b0 00 00
[ 114.489701] RSP: 0018:ffff88807293ed40 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
[ 114.497399] RAX: 0000000000000000 RBX: 0000000073eee6b6 RCX: 0000000000000000
[ 114.504655] RDX: 0000000000000000 RSI: 00000000f7fff7bf RDI: 0000000097d7739f
[ 114.511909] RBP: ffff88807293f078 R08: 0000000000000000 R09: 0000000000000000
[ 114.519190] R10: 00000000fe2000a6 R11: 0000000000000000 R12: 00000000f23dca54
[ 114.526452] R13: 0000000068288c60 R14: 0000000000000000 R15: 0000000000000000
[ 114.533827] crypto_sha256_update+0x35f/0x3b0
[ 114.538333] ? sha1_base_init+0x180/0x180
[ 114.542475] crypto_shash_update+0x484/0x4f0
[ 114.546896] ? integrity_kernel_read+0x221/0x280
[ 114.551656] ima_calc_file_hash+0x25ca/0x2ca0
[ 114.556152] ? ext4_xattr_ibody_get+0x1a0/0x1290
[ 114.560923] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 114.566303] ? ext4_xattr_get+0xcd0/0xff0
[ 114.570474] ? __msan_poison_alloca+0x1f0/0x2a0
[ 114.575146] ima_collect_measurement+0x48d/0x980
[ 114.579964] process_measurement+0x1b37/0x2740
[ 114.584572] ? __msan_metadata_ptr_for_load_1+0x10/0x20
[ 114.589926] ? refcount_dec_and_test_checked+0x1e8/0x2c0
[ 114.595379] ? apparmor_task_getsecid+0x172/0x190
[ 114.600229] ? apparmor_task_alloc+0x300/0x300
[ 114.604828] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 114.610194] ? security_task_getsecid+0x17f/0x190
[ 114.615047] ima_file_check+0x131/0x170
[ 114.619026] path_openat+0x4af5/0x6b90
[ 114.622942] ? expand_files+0x5d/0xcf0
[ 114.626836] ? do_sys_open+0x640/0x960
[ 114.630718] do_filp_open+0x2b8/0x710
[ 114.634547] do_sys_open+0x640/0x960
[ 114.638270] __se_sys_openat+0xcb/0xe0
[ 114.642154] __x64_sys_openat+0x56/0x70
[ 114.646126] do_syscall_64+0xbc/0xf0
[ 114.649861] entry_SYSCALL_64_after_hwframe+0x63/0xe7
[ 114.655046] RIP: 0033:0x47fcba
[ 114.658243] Code: e8 2b 41 fb ff 48 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 4c 8b 54 24 28 4c 8b 44 24 30 4c 8b 4c 24 38 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 40 ff ff ff ff 48 c7 44 24 48
[ 114.677133] RSP: 002b:000000c4201517e8 EFLAGS: 00000212 ORIG_RAX: 0000000000000101
[ 114.684830] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000047fcba
[ 114.692088] RDX: 0000000000080002 RSI: 000000c420084dc0 RDI: ffffffffffffff9c
[ 114.699362] RBP: 000000c420151868 R08: 0000000000000000 R09: 0000000000000000
[ 114.706782] R10: 00000000000001a4 R11: 0000000000000212 R12: 0000000000000000
[ 114.714044] R13: 00000000000000f1 R14: 0000000000000011 R15: 0000000000000001
[ 114.721325]
[ 114.722939] Uninit was created at:
[ 114.726479] kmsan_save_stack_with_flags+0x7a/0x130
[ 114.731482] kmsan_internal_alloc_meta_for_pages+0x113/0x580
[ 114.737281] kmsan_alloc_page+0x7e/0x100
[ 114.741339] __alloc_pages_nodemask+0x1587/0x5f20
[ 114.746197] page_frag_alloc+0x3c1/0x980
[ 114.750284] __netdev_alloc_skb+0x1f1/0xa50
[ 114.754604] send_hsr_supervision_frame+0x168/0x1510
[ 114.759689] hsr_announce+0x14c/0x3a0
[ 114.763498] call_timer_fn+0x285/0x600
[ 114.767392] __run_timers+0xdb4/0x11d0
[ 114.771267] run_timer_softirq+0x2e/0x50
[ 114.775325] __do_softirq+0x53f/0x93a
[ 114.779107] ==================================================================
[ 114.786556] Disabling lock debugging due to kernel taint
[ 114.791992] Kernel panic - not syncing: panic_on_warn set ...
[ 114.797866] CPU: 1 PID: 11204 Comm: syz-fuzzer Tainted: G B 4.20.0-rc7+ #16
[ 114.806266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 114.815604] Call Trace:
[ 114.818189]
[ 114.820369] dump_stack+0x173/0x1d0
[ 114.824018] panic+0x3ce/0x961
[ 114.827234] kmsan_report+0x293/0x2a0
[ 114.831047] __msan_warning+0x82/0xf0
[ 114.834863] send_hsr_supervision_frame+0x1056/0x1510
[ 114.840065] hsr_announce+0x14c/0x3a0
[ 114.843868] call_timer_fn+0x285/0x600
[ 114.847745] ? hsr_dev_finalize+0xb90/0xb90
[ 114.852066] __run_timers+0xdb4/0x11d0
[ 114.855943] ? hsr_dev_finalize+0xb90/0xb90
[ 114.860266] ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 114.865725] ? irqtime_account_irq+0xcf/0x2e0
[ 114.870228] ? timers_dead_cpu+0xa50/0xa50
[ 114.874457] run_timer_softirq+0x2e/0x50
[ 114.878528] __do_softirq+0x53f/0x93a
[ 114.882345] irq_exit+0x214/0x250
[ 114.885796] exiting_irq+0xe/0x10
[ 114.889242] smp_apic_timer_interrupt+0x48/0x70
[ 114.893902] apic_timer_interrupt+0x2e/0x40
[ 114.898211]
[ 114.900441] RIP: 0010:sha256_generic_block_fn+0x5057/0xab60
[ 114.906154] Code: 21 d8 09 d0 41 89 fd 41 f7 d5 44 89 fa 44 21 ea 41 21 ce 41 09 d6 89 ca 44 21 fa 09 d0 41 09 d6 89 fe 09 de 44 89 f2 44 21 ca <41> 21 f1 45 21 e6 45 09 ce 41 09 d6 44 21 e6 48 89 bc 24 b0 00 00
[ 114.925073] RSP: 0018:ffff88807293ed40 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
[ 114.932825] RAX: 0000000000000000 RBX: 0000000073eee6b6 RCX: 0000000000000000
[ 114.940106] RDX: 0000000000000000 RSI: 00000000f7fff7bf RDI: 0000000097d7739f
[ 114.947364] RBP: ffff88807293f078 R08: 0000000000000000 R09: 0000000000000000
[ 114.954627] R10: 00000000fe2000a6 R11: 0000000000000000 R12: 00000000f23dca54
[ 114.961987] R13: 0000000068288c60 R14: 0000000000000000 R15: 0000000000000000
[ 114.969358] crypto_sha256_update+0x35f/0x3b0
[ 114.973861] ? sha1_base_init+0x180/0x180
[ 114.978000] crypto_shash_update+0x484/0x4f0
[ 114.982419] ? integrity_kernel_read+0x221/0x280
[ 114.987178] ima_calc_file_hash+0x25ca/0x2ca0
[ 114.991677] ? ext4_xattr_ibody_get+0x1a0/0x1290
[ 114.996443] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 115.001844] ? ext4_xattr_get+0xcd0/0xff0
[ 115.006020] ? __msan_poison_alloca+0x1f0/0x2a0
[ 115.010694] ima_collect_measurement+0x48d/0x980
[ 115.015471] process_measurement+0x1b37/0x2740
[ 115.020110] ? __msan_metadata_ptr_for_load_1+0x10/0x20
[ 115.025469] ? refcount_dec_and_test_checked+0x1e8/0x2c0
[ 115.030920] ? apparmor_task_getsecid+0x172/0x190
[ 115.035754] ? apparmor_task_alloc+0x300/0x300
[ 115.040332] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 115.045706] ? security_task_getsecid+0x17f/0x190
[ 115.050564] ima_file_check+0x131/0x170
[ 115.054542] path_openat+0x4af5/0x6b90
[ 115.058454] ? expand_files+0x5d/0xcf0
[ 115.062354] ? do_sys_open+0x640/0x960
[ 115.066240] do_filp_open+0x2b8/0x710
[ 115.070066] do_sys_open+0x640/0x960
[ 115.073789] __se_sys_openat+0xcb/0xe0
[ 115.077678] __x64_sys_openat+0x56/0x70
[ 115.081647] do_syscall_64+0xbc/0xf0
[ 115.085360] entry_SYSCALL_64_after_hwframe+0x63/0xe7
[ 115.090558] RIP: 0033:0x47fcba
[ 115.093742] Code: e8 2b 41 fb ff 48 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 4c 8b 54 24 28 4c 8b 44 24 30 4c 8b 4c 24 38 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 40 ff ff ff ff 48 c7 44 24 48
[ 115.112631] RSP: 002b:000000c4201517e8 EFLAGS: 00000212 ORIG_RAX: 0000000000000101
[ 115.120328] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000047fcba
[ 115.127585] RDX: 0000000000080002 RSI: 000000c420084dc0 RDI: ffffffffffffff9c
[ 115.134843] RBP: 000000c420151868 R08: 0000000000000000 R09: 0000000000000000
[ 115.142102] R10: 00000000000001a4 R11: 0000000000000212 R12: 0000000000000000
[ 115.149386] R13: 00000000000000f1 R14: 0000000000000011 R15: 0000000000000001
[ 115.157645] Kernel Offset: disabled
[ 115.161280] Rebooting in 86400 seconds..