INIT: Entering runlevel: 2 [info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.2' (ECDSA) to the list of known hosts. 2018/04/20 20:45:46 fuzzer started 2018/04/20 20:45:47 dialing manager at 10.128.0.26:40315 2018/04/20 20:45:53 kcov=true, comps=false 2018/04/20 20:45:56 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_int(r0, 0x0, 0x6, &(0x7f0000000040), &(0x7f0000000080)=0x4) 2018/04/20 20:45:56 executing program 1: perf_event_open(&(0x7f0000b5a000)={0x4000000002, 0x70, 0x1e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x0, 0x0) read(r0, &(0x7f00000001c0)=""/4096, 0x1000) 2018/04/20 20:45:56 executing program 7: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ustat(0x4, &(0x7f0000000140)) 2018/04/20 20:45:56 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f00000001c0)={@remote={0xfe, 0x80, [], 0xbb}}, 0x14) close(r0) 2018/04/20 20:45:56 executing program 2: setsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000001000)={0x10000, 0x4, 0x100, 0x400}, 0x10) r0 = socket(0x11, 0x4000000000080003, 0x0) setsockopt(r0, 0x107, 0x5, &(0x7f0000001000), 0xc9) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f000061bffc), 0x33) 2018/04/20 20:45:56 executing program 3: syz_emit_ethernet(0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd609d83d300440000fe800000000000000000a6d0ff02692a6a97551b1596d7ce0000000000aafe0900000000000000000000000000aa0420880b0000000000000800000086dd080088be00000000100000000100000000000000080022eb000000002000000002000600000000000000000008006558000000001ef26ed8b01d1f94185676abf1685cbc6eb57fa034a4616c99228b35b9bf3019293414f737ba5df0de8444bc28a238886c583bcdff27da16cfb5d512a9a2852bfcedc54627ba9f2151282a19e718035e600f2b46efef66c8d486b5fa104fede2"], &(0x7f0000000000)) 2018/04/20 20:45:56 executing program 5: msgctl$IPC_SET(0x0, 0x1, &(0x7f0000f00f88)) msgsnd(0x0, &(0x7f0000000300)={0x4}, 0x8, 0x800) 2018/04/20 20:45:56 executing program 6: r0 = socket$inet_tcp(0x2, 0x1, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x4011, r0, 0x0) syzkaller login: [ 43.622716] ip (3762) used greatest stack depth: 54848 bytes left [ 43.631878] ip (3760) used greatest stack depth: 54816 bytes left [ 44.146666] ip (3810) used greatest stack depth: 54312 bytes left [ 44.859732] ip (3885) used greatest stack depth: 54200 bytes left [ 45.236885] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.243386] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.289673] device bridge_slave_0 entered promiscuous mode [ 45.349682] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.356210] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.376536] device bridge_slave_0 entered promiscuous mode [ 45.435153] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.441677] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.485930] device bridge_slave_0 entered promiscuous mode [ 45.509821] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.516312] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.543264] device bridge_slave_1 entered promiscuous mode [ 45.564206] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.570716] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.596090] device bridge_slave_0 entered promiscuous mode [ 45.611245] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.617741] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.627579] device bridge_slave_0 entered promiscuous mode [ 45.634543] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.641109] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.664011] device bridge_slave_1 entered promiscuous mode [ 45.670387] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.676906] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.703617] device bridge_slave_0 entered promiscuous mode [ 45.713492] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.720099] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.747008] device bridge_slave_0 entered promiscuous mode [ 45.760702] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 45.770455] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 45.802211] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.808720] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.836928] device bridge_slave_0 entered promiscuous mode [ 45.858464] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.864939] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.880341] device bridge_slave_1 entered promiscuous mode [ 45.888148] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.894598] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.911473] device bridge_slave_1 entered promiscuous mode [ 45.920521] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 45.931832] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.938282] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.958715] device bridge_slave_1 entered promiscuous mode [ 45.974501] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.981000] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.007131] device bridge_slave_1 entered promiscuous mode [ 46.013962] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.020640] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.041953] device bridge_slave_1 entered promiscuous mode [ 46.051413] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 46.061659] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.068127] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.097525] device bridge_slave_1 entered promiscuous mode [ 46.111828] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 46.129212] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 46.138861] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 46.166708] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 46.262522] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 46.314964] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 46.349686] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 46.366783] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 46.375420] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 46.385884] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 46.480412] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 46.493756] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 46.877474] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 47.013316] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 47.093185] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 47.217442] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 47.305847] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 47.349750] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 47.357789] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 47.370998] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 47.476239] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 47.492520] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 47.550692] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 47.563121] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 47.571409] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 47.586007] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 47.698309] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 47.707097] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 48.140342] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 48.182017] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 48.391479] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 48.400283] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 48.528126] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 48.540186] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 48.553594] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 48.588452] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 48.595686] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 48.610179] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 48.639862] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 48.654346] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 48.663455] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 48.679301] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 48.718279] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 48.729238] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 48.751421] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 48.762467] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 48.781728] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 48.792429] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 48.817859] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 48.854760] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 48.865347] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 48.926902] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 48.934137] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 48.945886] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 48.971234] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 48.982071] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 48.993435] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 49.004122] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 49.012979] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 49.033561] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 49.048216] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 49.061726] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 49.100693] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 49.108829] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 49.119410] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 49.152014] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 49.186666] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 49.209991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 49.231593] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 49.245963] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 49.260841] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 49.277953] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 49.300583] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 49.314830] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 49.329737] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 49.338579] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 49.347521] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 49.354943] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 49.369590] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 49.401083] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 49.425829] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 49.449697] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 49.457813] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 49.490500] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 49.497694] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 49.511264] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 49.533570] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 49.545734] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 49.565114] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 49.578687] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 49.606591] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 49.642400] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 51.365796] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.372284] bridge0: port 2(bridge_slave_1) entered forwarding state [ 51.379158] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.385754] bridge0: port 1(bridge_slave_0) entered forwarding state [ 51.409516] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 51.416512] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 51.439385] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.445881] bridge0: port 2(bridge_slave_1) entered forwarding state [ 51.452696] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.459147] bridge0: port 1(bridge_slave_0) entered forwarding state [ 51.486987] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 51.521378] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.527825] bridge0: port 2(bridge_slave_1) entered forwarding state [ 51.534679] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.541144] bridge0: port 1(bridge_slave_0) entered forwarding state [ 51.628979] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 51.691822] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.698285] bridge0: port 2(bridge_slave_1) entered forwarding state [ 51.705180] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.711633] bridge0: port 1(bridge_slave_0) entered forwarding state [ 51.769124] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 51.775691] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.782153] bridge0: port 2(bridge_slave_1) entered forwarding state [ 51.788935] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.795345] bridge0: port 1(bridge_slave_0) entered forwarding state [ 51.807656] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 51.829444] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.835923] bridge0: port 2(bridge_slave_1) entered forwarding state [ 51.842749] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.849212] bridge0: port 1(bridge_slave_0) entered forwarding state [ 51.920486] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 51.927690] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.934157] bridge0: port 2(bridge_slave_1) entered forwarding state [ 51.940990] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.947438] bridge0: port 1(bridge_slave_0) entered forwarding state [ 51.960340] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 51.979095] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.985573] bridge0: port 2(bridge_slave_1) entered forwarding state [ 51.992426] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.998862] bridge0: port 1(bridge_slave_0) entered forwarding state [ 52.058699] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 52.448211] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 52.463338] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 52.493849] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 52.523330] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 52.548288] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 52.567675] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 52.575944] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 60.554085] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 60.999924] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 61.015316] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 61.053344] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 61.110675] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 61.145091] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 61.275581] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 61.372708] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 61.389834] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 61.396186] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 61.407846] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 61.833398] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 61.841099] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 61.851236] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 61.876357] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 61.882937] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 61.897622] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 61.916900] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 61.926508] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 61.940183] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 61.947502] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 61.961923] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 62.008671] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 62.043639] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 62.071749] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 62.101405] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 62.114938] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 62.121921] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 62.129326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 62.163851] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 62.182842] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 62.190186] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready 2018/04/20 20:46:22 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$inet(0x2, 0xa, 0x7) r2 = socket$inet6(0xa, 0x5, 0x7be) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f00000001c0)={0x0, @in={{0x2, 0x4e21, @multicast2=0xe0000002}}, [0x2, 0x0, 0x1, 0x7, 0xfffffffffffffce6, 0x6, 0x9127, 0x9, 0x97b, 0x7, 0x100, 0x9, 0x1f, 0x3, 0x20]}, &(0x7f00000002c0)=0x100) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000300)={r3, 0x9}, &(0x7f0000000340)=0x8) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f00000000c0)={0x0, 0x7fff}, &(0x7f0000000100)=0x8) r5 = dup(r1) ioctl$DRM_IOCTL_AGP_INFO(r5, 0x80386433, &(0x7f0000000380)=""/165) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000000140)={r4, 0xa0}, &(0x7f0000000180)=0x8) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000080)=0x100000001, 0x4) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x2}, 0x1c) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}}, 0x1a) [ 67.458675] syz-executor4 uses obsolete (PF_INET,SOCK_PACKET) 2018/04/20 20:46:22 executing program 0: pipe2(&(0x7f0000989000)={0xffffffffffffffff}, 0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000bc8000)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = creat(&(0x7f000009aff8)='./file0\x00', 0x0) write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x38b) unlink(&(0x7f0000000040)='./file0\x00') link(&(0x7f0000f3bff8)='./file0\x00', &(0x7f00006b3ff0)='./control/file0\x00') utimes(&(0x7f0000967000)='./file0\x00', &(0x7f00005ee000)={{0x0, 0x2710}}) dup2(r0, r1) 2018/04/20 20:46:22 executing program 4: 2018/04/20 20:46:22 executing program 6: 2018/04/20 20:46:22 executing program 2: 2018/04/20 20:46:22 executing program 1: 2018/04/20 20:46:22 executing program 7: 2018/04/20 20:46:22 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup.cpu\x00', 0x200002, 0x0) openat$cgroup_int(r0, &(0x7f0000000040)='cpuset.cpus\x00', 0x2, 0x0) 2018/04/20 20:46:22 executing program 5: 2018/04/20 20:46:23 executing program 7: 2018/04/20 20:46:23 executing program 6: 2018/04/20 20:46:23 executing program 5: pipe2(&(0x7f0000989000)={0xffffffffffffffff}, 0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000bc8000)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = creat(&(0x7f000009aff8)='./file0\x00', 0x0) write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x38b) unlink(&(0x7f0000000040)='./file0\x00') link(&(0x7f0000f3bff8)='./file0\x00', &(0x7f00006b3ff0)='./control/file0\x00') utimes(&(0x7f0000967000)='./file0\x00', &(0x7f00005ee000)={{0x0, 0x2710}}) dup2(r0, r1) 2018/04/20 20:46:23 executing program 4: 2018/04/20 20:46:23 executing program 1: 2018/04/20 20:46:23 executing program 2: 2018/04/20 20:46:23 executing program 3: 2018/04/20 20:46:23 executing program 6: 2018/04/20 20:46:23 executing program 0: pipe2(&(0x7f0000989000)={0xffffffffffffffff}, 0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000bc8000)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = creat(&(0x7f000009aff8)='./file0\x00', 0x0) write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x38b) unlink(&(0x7f0000000040)='./file0\x00') link(&(0x7f0000f3bff8)='./file0\x00', &(0x7f00006b3ff0)='./control/file0\x00') utimes(&(0x7f0000967000)='./file0\x00', &(0x7f00005ee000)={{0x0, 0x2710}}) dup2(r0, r1) 2018/04/20 20:46:23 executing program 7: 2018/04/20 20:46:23 executing program 7: pipe2(&(0x7f0000989000)={0xffffffffffffffff}, 0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000bc8000)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = creat(&(0x7f000009aff8)='./file0\x00', 0x0) write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x38b) unlink(&(0x7f0000000040)='./file0\x00') link(&(0x7f0000f3bff8)='./file0\x00', &(0x7f00006b3ff0)='./control/file0\x00') utimes(&(0x7f0000967000)='./file0\x00', &(0x7f00005ee000)={{0x0, 0x2710}}) dup2(r0, r1) 2018/04/20 20:46:23 executing program 3: r0 = socket(0x11, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000100)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={"6966623000faffffffffffffff00", 0x1000000000004002}) ioctl$TUNSETVNETLE(r1, 0x400454dc, &(0x7f00000002c0)=0x1) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'ifb0\x00', 0xa201}) read(r1, &(0x7f0000000600)=""/139, 0x8b) 2018/04/20 20:46:23 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f000072cff8)={0xffffffffffffffff}) ioctl$sock_ifreq(r0, 0x8990, &(0x7f0000000000)={'bond0\x00', @ifru_names='ip6gre0\x00'}) 2018/04/20 20:46:23 executing program 1: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f00000e3000)='/dev/vhost-net\x00', 0x2, 0x0) ioctl$VHOST_NET_SET_BACKEND(r0, 0xaf02, &(0x7f0000000080)) 2018/04/20 20:46:24 executing program 6: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x1e, 0x2, 0x0) bind(r0, &(0x7f00008a1f80)=@generic={0x42001e, "01030000000000b9000000004700000000a979f321b30c7bc8790405c7bad62e0a63a632ed4938d36d64fb8f8401a3ff59829a2b0afe7ce43a5b2470a0c5216669ca021f6f65dcf160e7e58f358c0002f0000158d19bcb31510000500000000000bdb9c8ea31000077aeb81c90001d6f7c980400000000f70dc136cb184a"}, 0x80) r1 = socket(0x1e, 0x5, 0x0) sendmsg(r1, &(0x7f0000316000)={&(0x7f0000000880)=@generic={0x10000000001e, "0100000000001e0000000001e526cc573cc60400003724c71e14dd6a739effea1b48006be61ffe06d79f78000000000000076c3f010039d8f986ff030000eaff0000af50d5fe32c419d67bcbc7e3ad316a199756ed0008341c28d456241f0027800ece70b076cf979ac40000bd767e2e00a1dfd300981a1565b3b16d7436"}, 0x80, &(0x7f0000000240), 0x0, &(0x7f0000000580)=ANY=[]}, 0x0) close(r0) 2018/04/20 20:46:24 executing program 4: 2018/04/20 20:46:24 executing program 3: 2018/04/20 20:46:24 executing program 1: 2018/04/20 20:46:24 executing program 4: clone(0x200, &(0x7f0000fbf000), &(0x7f0000744000), &(0x7f0000f8b000), &(0x7f00000d5000)) mknod(&(0x7f0000000080)='./file0\x00', 0x1040, 0x0) execve(&(0x7f0000f8aff8)='./file0\x00', &(0x7f00000affc0), &(0x7f0000000240)) r0 = syz_open_procfs(0x0, &(0x7f00000e0000)='stack\x00') readv(r0, &(0x7f000066dff0)=[{&(0x7f00008ad000)=""/178, 0xb2}], 0x1) r1 = getpid() process_vm_readv(r1, &(0x7f0000de4000)=[{&(0x7f00009e0000)=""/225, 0xe1}], 0x1, &(0x7f0000d65fb8)=[{&(0x7f000082efb5)=""/75, 0x4b}], 0x1, 0x0) open$dir(&(0x7f00003e8ff8)='./file0\x00', 0x26102, 0x0) 2018/04/20 20:46:24 executing program 2: 2018/04/20 20:46:24 executing program 6: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x1e, 0x2, 0x0) bind(r0, &(0x7f00008a1f80)=@generic={0x42001e, "01030000000000b9000000004700000000a979f321b30c7bc8790405c7bad62e0a63a632ed4938d36d64fb8f8401a3ff59829a2b0afe7ce43a5b2470a0c5216669ca021f6f65dcf160e7e58f358c0002f0000158d19bcb31510000500000000000bdb9c8ea31000077aeb81c90001d6f7c980400000000f70dc136cb184a"}, 0x80) r1 = socket(0x1e, 0x5, 0x0) sendmsg(r1, &(0x7f0000316000)={&(0x7f0000000880)=@generic={0x10000000001e, "0100000000001e0000000001e526cc573cc60400003724c71e14dd6a739effea1b48006be61ffe06d79f78000000000000076c3f010039d8f986ff030000eaff0000af50d5fe32c419d67bcbc7e3ad316a199756ed0008341c28d456241f0027800ece70b076cf979ac40000bd767e2e00a1dfd300981a1565b3b16d7436"}, 0x80, &(0x7f0000000240), 0x0, &(0x7f0000000580)=ANY=[]}, 0x0) close(r0) 2018/04/20 20:46:24 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x2003e3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000683ff4)={@multicast2=0xe0000002, @loopback=0x7f000001}, 0xc) setsockopt$inet_group_source_req(r0, 0x0, 0x2f, &(0x7f0000000000)={0x1, {{0x2, 0x0, @multicast2=0xe0000002}}, {{0x2}}}, 0x108) 2018/04/20 20:46:24 executing program 1: r0 = socket(0x20000000000018, 0x0, 0x0) io_setup(0x40, &(0x7f0000000000)=0x0) io_submit(r1, 0x1, &(0x7f0000000880)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000000080)='n', 0x1}]) 2018/04/20 20:46:24 executing program 5: pipe2(&(0x7f0000989000)={0xffffffffffffffff}, 0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000bc8000)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = creat(&(0x7f000009aff8)='./file0\x00', 0x0) write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x38b) unlink(&(0x7f0000000040)='./file0\x00') link(&(0x7f0000f3bff8)='./file0\x00', &(0x7f00006b3ff0)='./control/file0\x00') utimes(&(0x7f0000967000)='./file0\x00', &(0x7f00005ee000)={{0x0, 0x2710}}) dup2(r0, r1) 2018/04/20 20:46:24 executing program 7: r0 = socket(0x1f, 0x2000000000000005, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000000)={'ip6tnl0\x00', &(0x7f0000000080)=@ethtool_gstrings={0xa}}) 2018/04/20 20:46:24 executing program 0: r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_int(r0, 0x0, 0x400000000b, &(0x7f0000778ffc)=0x100000001, 0x3) setsockopt$sock_int(r0, 0x1, 0x29, &(0x7f0000000000)=0x19, 0x4) sendto$inet(r0, &(0x7f00008a8000), 0x0, 0x0, &(0x7f00008a8ff0)={0x2, 0x2, @loopback=0x7f000001}, 0x10) recvmsg(r0, &(0x7f000089e000)={0x0, 0x0, &(0x7f00006d3000), 0x0, &(0x7f000089f000)=""/4096, 0x1000}, 0x12004) 2018/04/20 20:46:25 executing program 3: r0 = socket$inet(0x10, 0x3, 0xc) sendmsg(r0, &(0x7f0000011fc8)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000002000)="24000000100007031dfffd946fa2830020200a0009000300001d85680c1ba3a20400ff7e280000001100ffffba16a0aa1c0009b356da5a80d18bec4c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0) setsockopt$inet_sctp_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f0000000000), 0x8) 2018/04/20 20:46:25 executing program 2: r0 = socket$inet(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000480)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10) setsockopt$sock_int(r0, 0x1, 0x1d, &(0x7f0000000040)=0x3, 0x4) connect$inet(r0, &(0x7f0000000100)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xb}}, 0x10) recvmsg(r0, &(0x7f0000000300)={&(0x7f0000000080)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @local}}}, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000000)=""/15, 0xf}], 0x1}, 0x0) sendmsg(r0, &(0x7f00000003c0)={&(0x7f00000002c0)=ANY=[], 0x0, &(0x7f0000000380)=[{&(0x7f0000000600)="d7", 0x1}], 0x1}, 0x0) 2018/04/20 20:46:25 executing program 7: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(&(0x7f0000000200)='./file0\x00', &(0x7f0000001380)='./file0\x00', &(0x7f0000000180)='proc\x00', 0x0, &(0x7f00000001c0)) mount(&(0x7f0000000300)='./file0\x00', &(0x7f0000000140)='./file0/bus\x00', &(0x7f00000002c0)="7270635f706970656673008c7c647f0399287d03b74f09f3ebb5030000009df9a59c06000000000000f90ef07834c1c4", 0x0, &(0x7f0000001280)) umount2(&(0x7f00000000c0)='./file0/bus\x00', 0x0) 2018/04/20 20:46:25 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) sendmmsg(r0, &(0x7f0000001d80)=[{{&(0x7f0000000000)=@in6={0xa, 0x1, 0x0, @loopback={0x0, 0x1}}, 0x1c, &(0x7f0000000080), 0x0, &(0x7f0000000080)}}, {{&(0x7f0000000a80)=@in={0x2, 0x0, @rand_addr}, 0x10, &(0x7f0000001bc0), 0x0, &(0x7f0000000040)}}], 0x2, 0x3) 2018/04/20 20:46:25 executing program 6: r0 = msgget$private(0x0, 0x0) msgrcv(r0, &(0x7f0000000100)={0x0, ""/221}, 0xe5, 0x0, 0x0) msgrcv(r0, &(0x7f0000cb8000)=ANY=[], 0x0, 0x0, 0x0) msgsnd(r0, &(0x7f0000000000)={0x1, "bbe1ebcb9610f37338f2bda9835e258a22f17d9557c604318f69c44aab907cd28a1353af1d739b900d96dd0fa19b180f3a311965ff4a63fac3fbf3faf9f6918d7cd4f014040061320ca63f99623eb75052352651b5a2fbfcb06e104dfa06bb2c417a8df6bac25ed8bae70718e791add34c8445b5881e3b27b3c25917ee3cb82638e3a6bebbb5e720a50fb1687d961ac489d7476aac88ef7a62214602df8e698c034f579db38c3c6e78834f6af9465ce6b296a8f75213217401905859e3310e751f9e8ae44e40de40dab78aff0d40e101ac3d5de80eadb6fc50c8788322c8"}, 0xe6, 0x0) 2018/04/20 20:46:25 executing program 1: r0 = socket(0x20000000000018, 0x0, 0x0) io_setup(0x40, &(0x7f0000000000)=0x0) io_submit(r1, 0x1, &(0x7f0000000880)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000000080)='n', 0x1}]) 2018/04/20 20:46:25 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_buf(r0, 0x6, 0x1c, &(0x7f0000144000)=""/4096, &(0x7f0000000000)=0x1000) 2018/04/20 20:46:25 executing program 0: r0 = socket$inet6(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xbb}, 0xc0000000080}, 0x1c) bind$inet6(r0, &(0x7f000044f000)={0xa, 0x4e20, 0x0, @ipv4={[], [0xff, 0xff]}}, 0x1c) listen(r0, 0x0) syz_emit_ethernet(0x230, &(0x7f0000007000)={@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, @random="cf2bb43c40b8", [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @local={0xac, 0x14, 0xffffffffffffffff, 0xaa}, @multicast1=0xe0000001}, @tcp={{0x0, 0x4e20, 0x42424242, 0x42424242, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 70.877104] ================================================================== [ 70.884512] BUG: KMSAN: uninit-value in kernel_text_address+0x248/0x3a0 [ 70.891248] CPU: 1 PID: 5902 Comm: syz-executor4 Not tainted 4.16.0+ #84 [ 70.898073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 70.907415] Call Trace: [ 70.909987] dump_stack+0x185/0x1d0 [ 70.913608] ? kernel_text_address+0x248/0x3a0 [ 70.918192] kmsan_report+0x142/0x240 [ 70.921984] __msan_warning_32+0x6c/0xb0 [ 70.926040] kernel_text_address+0x248/0x3a0 [ 70.930436] ? __schedule+0x674/0x730 [ 70.934229] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 70.939584] ? __schedule+0x674/0x730 [ 70.943376] __kernel_text_address+0x34/0xe0 [ 70.947768] ? __schedule+0x674/0x730 [ 70.951552] unwind_get_return_address+0x8c/0x130 [ 70.956378] __save_stack_trace+0x45c/0xa80 [ 70.960677] ? __schedule+0x674/0x730 [ 70.964467] ? __msan_poison_alloca+0x15c/0x1d0 [ 70.969133] ? save_stack_trace_tsk+0x58/0x2f0 [ 70.973706] save_stack_trace_tsk+0x258/0x2f0 [ 70.978194] proc_pid_stack+0x26a/0x470 [ 70.982176] proc_single_show+0x1af/0x300 [ 70.986319] ? proc_pid_wchan+0x250/0x250 [ 70.990453] ? proc_single_open+0x90/0x90 [ 70.994584] seq_read+0xc7d/0x2260 [ 70.998118] do_iter_read+0x880/0xd70 [ 71.001907] ? seq_open+0x360/0x360 [ 71.005517] do_readv+0x295/0x5f0 [ 71.008958] ? syscall_return_slowpath+0xe9/0x700 [ 71.013787] SYSC_readv+0x9b/0xb0 [ 71.017226] SyS_readv+0x56/0x80 [ 71.020574] do_syscall_64+0x309/0x430 [ 71.024449] ? vfs_readv+0x260/0x260 [ 71.028151] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 71.033324] RIP: 0033:0x455379 [ 71.036497] RSP: 002b:00007f3614abfc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 71.044192] RAX: ffffffffffffffda RBX: 00007f3614ac06d4 RCX: 0000000000455379 [ 71.051443] RDX: 0000000000000001 RSI: 000000002066dff0 RDI: 0000000000000013 [ 71.058695] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 71.065957] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 71.073223] R13: 0000000000000495 R14: 00000000006f9e98 R15: 0000000000000001 [ 71.080475] [ 71.082081] Uninit was stored to memory at: [ 71.086387] kmsan_internal_chain_origin+0x12b/0x210 [ 71.091470] __msan_chain_origin+0x69/0xc0 [ 71.095687] update_stack_state+0x959/0xa40 [ 71.099990] __unwind_start+0x335/0x630 [ 71.103949] __save_stack_trace+0x3e1/0xa80 [ 71.108254] save_stack_trace_tsk+0x258/0x2f0 [ 71.112734] proc_pid_stack+0x26a/0x470 [ 71.116692] proc_single_show+0x1af/0x300 [ 71.120825] seq_read+0xc7d/0x2260 [ 71.124349] do_iter_read+0x880/0xd70 [ 71.128127] do_readv+0x295/0x5f0 [ 71.131565] SYSC_readv+0x9b/0xb0 [ 71.135000] SyS_readv+0x56/0x80 [ 71.138352] do_syscall_64+0x309/0x430 [ 71.142226] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 71.147392] Local variable description: ----q.i@do_futex [ 71.152817] Variable was created at: [ 71.156527] do_futex+0x1d5/0x6ad0 [ 71.160052] SYSC_futex+0x3e1/0x810 [ 71.163655] ================================================================== [ 71.170988] Disabling lock debugging due to kernel taint [ 71.176416] Kernel panic - not syncing: panic_on_warn set ... [ 71.176416] [ 71.183768] CPU: 1 PID: 5902 Comm: syz-executor4 Tainted: G B 4.16.0+ #84 [ 71.191886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 71.201217] Call Trace: [ 71.203793] dump_stack+0x185/0x1d0 [ 71.207403] panic+0x39d/0x940 [ 71.210597] ? kernel_text_address+0x248/0x3a0 [ 71.215161] kmsan_report+0x238/0x240 [ 71.218947] __msan_warning_32+0x6c/0xb0 [ 71.222994] kernel_text_address+0x248/0x3a0 [ 71.227387] ? __schedule+0x674/0x730 [ 71.231171] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 71.236514] ? __schedule+0x674/0x730 [ 71.240297] __kernel_text_address+0x34/0xe0 [ 71.244685] ? __schedule+0x674/0x730 [ 71.248471] unwind_get_return_address+0x8c/0x130 [ 71.253301] __save_stack_trace+0x45c/0xa80 [ 71.257604] ? __schedule+0x674/0x730 [ 71.261385] ? __msan_poison_alloca+0x15c/0x1d0 [ 71.266046] ? save_stack_trace_tsk+0x58/0x2f0 [ 71.270619] save_stack_trace_tsk+0x258/0x2f0 [ 71.275100] proc_pid_stack+0x26a/0x470 [ 71.279059] proc_single_show+0x1af/0x300 [ 71.283191] ? proc_pid_wchan+0x250/0x250 [ 71.287320] ? proc_single_open+0x90/0x90 [ 71.291450] seq_read+0xc7d/0x2260 [ 71.294985] do_iter_read+0x880/0xd70 [ 71.298776] ? seq_open+0x360/0x360 [ 71.302386] do_readv+0x295/0x5f0 [ 71.305827] ? syscall_return_slowpath+0xe9/0x700 [ 71.310658] SYSC_readv+0x9b/0xb0 [ 71.314096] SyS_readv+0x56/0x80 [ 71.317443] do_syscall_64+0x309/0x430 [ 71.321314] ? vfs_readv+0x260/0x260 [ 71.325015] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 71.330193] RIP: 0033:0x455379 [ 71.333365] RSP: 002b:00007f3614abfc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 71.341055] RAX: ffffffffffffffda RBX: 00007f3614ac06d4 RCX: 0000000000455379 [ 71.348305] RDX: 0000000000000001 RSI: 000000002066dff0 RDI: 0000000000000013 [ 71.355555] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 71.362807] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 71.370059] R13: 0000000000000495 R14: 00000000006f9e98 R15: 0000000000000001 [ 71.377760] Dumping ftrace buffer: [ 71.381283] (ftrace buffer empty) [ 71.384968] Kernel Offset: disabled [ 71.388569] Rebooting in 86400 seconds..