INIT: Entering runlevel: 2 [info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.14' (ECDSA) to the list of known hosts. 2018/04/24 04:12:35 fuzzer started 2018/04/24 04:12:36 dialing manager at 10.128.0.26:33571 syzkaller login: [ 51.257397] can: request_module (can-proto-0) failed. [ 51.269071] can: request_module (can-proto-0) failed. 2018/04/24 04:12:43 kcov=true, comps=false 2018/04/24 04:12:46 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) sendto$inet(r0, &(0x7f0000001140), 0x0, 0x0, &(0x7f00000011c0)={0x2, 0x4e21, @multicast1=0xe0000001}, 0x10) 2018/04/24 04:12:46 executing program 1: r0 = socket(0xa, 0x2000000001, 0x0) ioctl$DRM_IOCTL_MODE_GETCRTC(0xffffffffffffffff, 0xc06864a1, &(0x7f0000fedf98)={&(0x7f000000d000)=[0x7, 0x6], 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "8cfbc89fefc282b0e9b6d1b29d5500b5ff74b06ccbd9dee8c886586975b5446e"}}) getsockopt(r0, 0x0, 0x53, &(0x7f000000d000)=""/8, &(0x7f0000fedffc)=0x28) ioctl$DRM_IOCTL_RM_CTX(0xffffffffffffffff, 0xc0086421, &(0x7f0000000200)) 2018/04/24 04:12:46 executing program 7: syz_emit_ethernet(0x2a, &(0x7f00003f3fd5)={@broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @empty=[0x0, 0x0, 0x14], [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x6, 0x0, 0x11, 0x0, @empty, @multicast1=0xe0000001}, @udp={0x0, 0x0, 0x8}}}}}, 0x0) 2018/04/24 04:12:46 executing program 2: mmap(&(0x7f0000000000/0xb000)=nil, 0xb000, 0x0, 0x4031, 0xffffffffffffffff, 0x0) remap_file_pages(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0) mlock(&(0x7f0000003000/0x2000)=nil, 0x2000) 2018/04/24 04:12:46 executing program 3: r0 = syz_open_dev$sndtimer(&(0x7f0000000200)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000000)={{0x1, 0x0, 0x0, 0x0, 0x20}}) 2018/04/24 04:12:46 executing program 4: sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000001140)={&(0x7f0000000080)={0x10}, 0xc, &(0x7f0000001100)={&(0x7f0000000000)=ANY=[]}, 0x1}, 0x0) r0 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00') sendmsg$IPVS_CMD_SET_INFO(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f00000000c0)={0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000140)={0x40, r0, 0x104, 0x70bd26, 0x25dfdbff, {0xe}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xffffffff}, @IPVS_CMD_ATTR_DEST={0x1c, 0x2, [@IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x4}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0xfff}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0xf0}]}]}, 0x40}, 0x1}, 0x804) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x0, @broadcast=0xffffffff}, @in={0x2, 0x0, @multicast1=0xe0000001}, @in={0x2, 0x0, @remote={0xac, 0x14, 0x14, 0xbb}}, @in6={0xa, 0x0, 0x0, @mcast1={0xff, 0x1, [], 0x1}}], 0x4c) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_buf(r1, 0x0, 0x60, &(0x7f0000000000), 0x0) close(0xffffffffffffffff) 2018/04/24 04:12:46 executing program 5: stat(&(0x7f00000007c0)='./file0\x00', &(0x7f0000000800)) pipe2(&(0x7f00000000c0)={0xffffffffffffffff}, 0x800) ioctl$sock_SIOCGPGRP(0xffffffffffffff9c, 0x8904, &(0x7f0000000100)=0x0) lstat(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$DRM_IOCTL_GET_CLIENT(r0, 0xc0286405, &(0x7f0000000200)={0x3, 0x9, r1, 0x7, r2, 0x6, 0x4, 0x3}) r3 = syz_open_dev$loop(&(0x7f0000acd000)='/dev/loop#\x00', 0x0, 0x4000000084002) ioctl$LOOP_GET_STATUS(r3, 0x4c03, &(0x7f0000000000)) 2018/04/24 04:12:46 executing program 6: mmap(&(0x7f0000000000/0xb000)=nil, 0xb000, 0x0, 0x4031, 0xffffffffffffffff, 0x0) remap_file_pages(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0) mlock(&(0x7f0000007000/0x1000)=nil, 0x1000) [ 55.905339] IPVS: ftp: loaded support on port[0] = 21 [ 56.032681] IPVS: ftp: loaded support on port[0] = 21 [ 56.077117] IPVS: ftp: loaded support on port[0] = 21 [ 56.150527] IPVS: ftp: loaded support on port[0] = 21 [ 56.222558] IPVS: ftp: loaded support on port[0] = 21 [ 56.307908] IPVS: ftp: loaded support on port[0] = 21 [ 56.453278] IPVS: ftp: loaded support on port[0] = 21 [ 56.618529] IPVS: ftp: loaded support on port[0] = 21 [ 57.625981] ip (4688) used greatest stack depth: 54408 bytes left [ 58.740730] ip (4778) used greatest stack depth: 54328 bytes left [ 58.752720] ip (4779) used greatest stack depth: 54200 bytes left [ 59.200435] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.206934] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.250191] device bridge_slave_0 entered promiscuous mode [ 59.361095] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.367584] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.425119] device bridge_slave_0 entered promiscuous mode [ 59.493342] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.499812] bridge0: port 2(bridge_slave_1) entered disabled state [ 59.527137] device bridge_slave_1 entered promiscuous mode [ 59.555294] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.561762] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.578269] device bridge_slave_0 entered promiscuous mode [ 59.596023] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.602533] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.624431] device bridge_slave_0 entered promiscuous mode [ 59.642678] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.649756] bridge0: port 2(bridge_slave_1) entered disabled state [ 59.673190] device bridge_slave_1 entered promiscuous mode [ 59.690345] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.696835] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.710203] ip (4843) used greatest stack depth: 53656 bytes left [ 59.725181] device bridge_slave_0 entered promiscuous mode [ 59.782701] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 59.790778] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.797272] bridge0: port 2(bridge_slave_1) entered disabled state [ 59.836478] device bridge_slave_1 entered promiscuous mode [ 59.859638] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.866180] bridge0: port 2(bridge_slave_1) entered disabled state [ 59.895150] device bridge_slave_1 entered promiscuous mode [ 59.912161] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.918662] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.932731] device bridge_slave_0 entered promiscuous mode [ 59.974121] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 59.983824] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 59.991749] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.998196] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.020929] device bridge_slave_0 entered promiscuous mode [ 60.042178] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 60.056744] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.063199] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.097143] device bridge_slave_1 entered promiscuous mode [ 60.134242] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 60.151386] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.157879] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.189974] device bridge_slave_1 entered promiscuous mode [ 60.208339] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 60.222646] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 60.229740] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.236194] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.284226] device bridge_slave_1 entered promiscuous mode [ 60.337064] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 60.351232] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 60.359395] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.365859] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.400260] device bridge_slave_0 entered promiscuous mode [ 60.450581] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 60.482097] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 60.557820] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 60.593236] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.599743] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.636495] device bridge_slave_1 entered promiscuous mode [ 60.661147] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 60.716944] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 60.740927] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 60.845236] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 60.903420] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 60.914426] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 60.988013] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 61.005711] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 61.067520] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 61.116776] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 61.140742] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 61.219510] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 61.263000] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 61.271281] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 61.278302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 61.341406] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 61.348440] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 61.367620] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 61.379500] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 61.400661] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 61.409326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 61.439360] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 61.450499] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 61.466860] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 61.474306] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 61.514378] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 61.630736] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 61.637777] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 61.652151] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 61.669263] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 61.676426] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 61.693361] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 61.702151] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 61.744985] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 61.790944] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 61.798803] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 61.820735] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 61.852185] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 61.859577] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 61.984490] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 61.991499] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 62.045653] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 62.052725] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 62.078785] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 62.130224] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 62.156164] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 62.179730] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 62.208222] team0: Port device team_slave_0 added [ 62.252508] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 62.259734] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 62.283437] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 62.314104] team0: Port device team_slave_0 added [ 62.337934] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 62.344875] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 62.377686] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 62.396003] team0: Port device team_slave_0 added [ 62.433449] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 62.462619] team0: Port device team_slave_0 added [ 62.478483] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 62.494498] team0: Port device team_slave_1 added [ 62.516091] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 62.535948] team0: Port device team_slave_1 added [ 62.566286] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 62.574778] team0: Port device team_slave_1 added [ 62.634627] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 62.641618] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 62.665529] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 62.678725] team0: Port device team_slave_1 added [ 62.704843] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 62.713012] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 62.733928] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 62.777950] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 62.784930] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 62.797778] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 62.827853] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 62.837646] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 62.862680] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 62.885714] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 62.898310] team0: Port device team_slave_0 added [ 62.913481] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 62.948217] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 62.972372] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 62.991584] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 63.003393] team0: Port device team_slave_0 added [ 63.030621] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 63.040940] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 63.058173] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 63.082354] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 63.089804] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 63.096712] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 63.112542] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 63.143509] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 63.158182] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 63.207077] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 63.228284] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 63.240506] team0: Port device team_slave_1 added [ 63.253125] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 63.264912] team0: Port device team_slave_1 added [ 63.284176] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 63.302014] team0: Port device team_slave_0 added [ 63.328097] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 63.337486] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 63.348443] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 63.356266] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 63.377857] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 63.398936] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 63.428198] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 63.443768] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 63.463089] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 63.476499] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 63.491559] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 63.500646] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 63.518004] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 63.528015] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 63.543024] team0: Port device team_slave_0 added [ 63.554229] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 63.562161] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 63.581646] team0: Port device team_slave_1 added [ 63.595597] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 63.622704] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 63.638018] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 63.654903] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 63.663748] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 63.671476] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 63.681735] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 63.696220] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 63.703652] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 63.710607] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 63.721714] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 63.729917] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 63.739251] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 63.761938] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 63.770520] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 63.787765] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 63.824339] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 63.840511] team0: Port device team_slave_1 added [ 63.858447] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 63.865511] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 63.897417] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 63.942575] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 63.964202] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 63.972073] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 63.994389] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 64.019285] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 64.053959] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 64.081554] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 64.093309] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 64.102477] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 64.130267] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 64.141845] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 64.149256] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 64.161912] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 64.185446] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 64.216134] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 64.247954] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 64.265457] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 64.288345] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 64.333255] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 64.340864] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 64.355531] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 64.368601] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 64.391734] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 64.416583] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 64.449501] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 64.458107] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 64.484292] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 64.542766] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 64.563150] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 64.570553] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 64.592135] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 64.641906] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 64.669104] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 64.689464] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 64.698222] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 64.709900] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 64.730230] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 64.740237] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 64.757154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 66.151561] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.158094] bridge0: port 2(bridge_slave_1) entered forwarding state [ 66.164895] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.171330] bridge0: port 1(bridge_slave_0) entered forwarding state [ 66.210472] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 66.224365] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 66.267785] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.274267] bridge0: port 2(bridge_slave_1) entered forwarding state [ 66.281148] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.287590] bridge0: port 1(bridge_slave_0) entered forwarding state [ 66.352262] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 66.400881] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.407359] bridge0: port 2(bridge_slave_1) entered forwarding state [ 66.414257] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.420712] bridge0: port 1(bridge_slave_0) entered forwarding state [ 66.454769] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 66.468129] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.474568] bridge0: port 2(bridge_slave_1) entered forwarding state [ 66.481356] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.487769] bridge0: port 1(bridge_slave_0) entered forwarding state [ 66.499142] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 66.989580] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.996132] bridge0: port 2(bridge_slave_1) entered forwarding state [ 67.002988] bridge0: port 1(bridge_slave_0) entered blocking state [ 67.009427] bridge0: port 1(bridge_slave_0) entered forwarding state [ 67.057744] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 67.086599] bridge0: port 2(bridge_slave_1) entered blocking state [ 67.093135] bridge0: port 2(bridge_slave_1) entered forwarding state [ 67.099992] bridge0: port 1(bridge_slave_0) entered blocking state [ 67.106440] bridge0: port 1(bridge_slave_0) entered forwarding state [ 67.149146] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 67.170335] bridge0: port 2(bridge_slave_1) entered blocking state [ 67.176811] bridge0: port 2(bridge_slave_1) entered forwarding state [ 67.183677] bridge0: port 1(bridge_slave_0) entered blocking state [ 67.190121] bridge0: port 1(bridge_slave_0) entered forwarding state [ 67.243234] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 67.251553] bridge0: port 2(bridge_slave_1) entered blocking state [ 67.257996] bridge0: port 2(bridge_slave_1) entered forwarding state [ 67.264863] bridge0: port 1(bridge_slave_0) entered blocking state [ 67.271321] bridge0: port 1(bridge_slave_0) entered forwarding state [ 67.287910] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 67.299971] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 67.313567] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 67.323972] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 67.338219] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 67.346366] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 67.355292] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 67.363939] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 75.302749] 8021q: adding VLAN 0 to HW filter on device bond0 [ 75.470260] 8021q: adding VLAN 0 to HW filter on device bond0 [ 75.514694] 8021q: adding VLAN 0 to HW filter on device bond0 [ 75.557264] 8021q: adding VLAN 0 to HW filter on device bond0 [ 75.888504] 8021q: adding VLAN 0 to HW filter on device bond0 [ 76.018324] 8021q: adding VLAN 0 to HW filter on device bond0 [ 76.057897] 8021q: adding VLAN 0 to HW filter on device bond0 [ 76.109435] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 76.266001] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 76.286819] 8021q: adding VLAN 0 to HW filter on device bond0 [ 76.311398] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 76.341352] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 76.805453] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 76.860553] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 76.904670] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 76.989392] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 76.996115] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 77.006952] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 77.079840] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 77.086204] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 77.099688] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 77.144175] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 77.150464] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 77.163932] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 77.190564] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 77.198214] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 77.204391] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 77.257547] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 77.712196] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 77.721131] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 77.736917] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 77.776801] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 77.783128] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 77.795616] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 77.841853] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 77.848185] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 77.860086] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 77.910627] 8021q: adding VLAN 0 to HW filter on device team0 [ 77.949239] 8021q: adding VLAN 0 to HW filter on device team0 [ 77.976900] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 77.989191] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 77.997738] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 78.035158] 8021q: adding VLAN 0 to HW filter on device team0 [ 78.096579] 8021q: adding VLAN 0 to HW filter on device team0 [ 78.594225] 8021q: adding VLAN 0 to HW filter on device team0 [ 78.642207] 8021q: adding VLAN 0 to HW filter on device team0 [ 78.695911] 8021q: adding VLAN 0 to HW filter on device team0 [ 78.880571] 8021q: adding VLAN 0 to HW filter on device team0 [ 83.213675] syz-executor4: vmalloc: allocation failure: 12554621616 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null) [ 83.225623] syz-executor4 cpuset=syz4 mems_allowed=0 [ 83.230886] CPU: 0 PID: 6600 Comm: syz-executor4 Not tainted 4.16.0+ #87 [ 83.237751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 83.247134] Call Trace: [ 83.249766] dump_stack+0x185/0x1d0 [ 83.253434] warn_alloc+0x3fc/0x660 [ 83.257145] __vmalloc_node_range+0xa6f/0x1140 [ 83.261789] __vmalloc_node_flags_caller+0x102/0x120 [ 83.266951] ? xt_alloc_entry_offsets+0x62/0x70 [ 83.271657] ? xt_alloc_entry_offsets+0x62/0x70 [ 83.276387] kvmalloc_node+0x2a6/0x2e0 [ 83.280328] xt_alloc_entry_offsets+0x62/0x70 [ 83.284919] translate_table+0x1fc/0x3500 [ 83.289126] ? __kmalloc_node+0xdec/0x1190 [ 83.293449] ? kvmalloc_node+0x1a1/0x2e0 [ 83.297609] ? kmsan_internal_unpoison_shadow+0x83/0xe0 [ 83.303054] do_arpt_set_ctl+0x608/0xb40 [ 83.307243] ? arpt_unregister_table+0x570/0x570 [ 83.312071] nf_setsockopt+0x476/0x4d0 [ 83.316070] ip_setsockopt+0x24b/0x2b0 [ 83.320072] ? ipv4_pktinfo_prepare+0x650/0x650 [ 83.324830] tcp_setsockopt+0x1bb/0x1f0 [ 83.328913] ? tcp_disconnect+0x15e0/0x15e0 [ 83.333271] sock_common_setsockopt+0x136/0x170 [ 83.338046] ? sock_common_recvmsg+0x270/0x270 [ 83.342703] SYSC_setsockopt+0x4b8/0x570 [ 83.346869] SyS_setsockopt+0x76/0xa0 [ 83.350755] do_syscall_64+0x309/0x430 [ 83.354694] ? SYSC_recv+0xe0/0xe0 [ 83.358275] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 83.363494] RIP: 0033:0x455389 [ 83.366700] RSP: 002b:00007f9975c41c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 83.374449] RAX: ffffffffffffffda RBX: 00007f9975c426d4 RCX: 0000000000455389 [ 83.381746] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000013 [ 83.389051] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 83.396354] R10: 0000000020000000 R11: 0000000000000246 R12: 00000000ffffffff [ 83.403657] R13: 0000000000000572 R14: 00000000006fb350 R15: 0000000000000000 [ 83.411495] Mem-Info: [ 83.414056] active_anon:70804 inactive_anon:78 isolated_anon:0 [ 83.414056] active_file:3236 inactive_file:8657 isolated_file:0 [ 83.414056] unevictable:0 dirty:44 writeback:0 unstable:0 [ 83.414056] slab_reclaimable:3257 slab_unreclaimable:8167 [ 83.414056] mapped:73742 shmem:84 pagetables:914 bounce:0 [ 83.414056] free:1091228 free_pcp:323 free_cma:0 [ 83.447544] Node 0 active_anon:283100kB inactive_anon:312kB active_file:12944kB inactive_file:34628kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:294852kB dirty:176kB writeback:0kB shmem:336kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 108544kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 83.475735] Node 0 DMA free:15904kB min:144kB low:180kB high:216kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 83.502069] lowmem_reserve[]: 0 2820 7247 7247 [ 83.506799] Node 0 DMA32 free:2891552kB min:26240kB low:32800kB high:39360kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2892208kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:656kB local_pcp:656kB free_cma:0kB [ 83.534650] lowmem_reserve[]: 0 0 4426 4426 [ 83.539092] Node 0 Normal free:1457712kB min:41196kB low:51492kB high:61788kB active_anon:283216kB inactive_anon:312kB active_file:12944kB inactive_file:34628kB unevictable:0kB writepending:176kB present:4718592kB managed:4533200kB mlocked:0kB kernel_stack:9600kB pagetables:3484kB bounce:0kB free_pcp:304kB local_pcp:256kB free_cma:0kB [ 83.569080] lowmem_reserve[]: 0 0 0 0 [ 83.573082] Node 0 DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15904kB [ 83.586604] Node 0 DMA32: 2*4kB (M) 3*8kB (M) 2*16kB (M) 3*32kB (M) 2*64kB (M) 2*128kB (M) 3*256kB (M) 3*512kB (M) 3*1024kB (M) 1*2048kB (M) 704*4096kB (M) = 2891552kB [ 83.602058] Node 0 Normal: 1019*4kB (UME) 157*8kB (UME) 45*16kB (UME) 31*32kB (UME) 47*64kB (UME) 27*128kB (UME) 5*256kB (UME) 1*512kB (E) 20*1024kB (ME) 1*2048kB (M) 347*4096kB (UM) = 1459140kB [ 83.619804] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 83.628440] 11976 total pagecache pages [ 83.632456] 0 pages in swap cache [ 83.635993] Swap cache stats: add 0, delete 0, find 0/0 [ 83.641398] Free swap = 0kB [ 83.644459] Total swap = 0kB [ 83.647534] 1965969 pages RAM [ 83.650703] 0 pages HighMem/MovableOnly [ 83.654728] 105641 pages reserved [ 83.665043] syz-executor4: vmalloc: allocation failure: 12554621616 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null) [ 83.677087] syz-executor4 cpuset=syz4 mems_allowed=0 [ 83.682621] CPU: 0 PID: 6600 Comm: syz-executor4 Not tainted 4.16.0+ #87 [ 83.689499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 83.698872] Call Trace: [ 83.701493] dump_stack+0x185/0x1d0 [ 83.705175] warn_alloc+0x3fc/0x660 [ 83.708895] __vmalloc_node_range+0xa6f/0x1140 [ 83.713588] __vmalloc_node_flags_caller+0x102/0x120 [ 83.718751] ? xt_alloc_entry_offsets+0x62/0x70 [ 83.723463] ? xt_alloc_entry_offsets+0x62/0x70 [ 83.728215] kvmalloc_node+0x2a6/0x2e0 [ 83.732154] xt_alloc_entry_offsets+0x62/0x70 [ 83.736741] translate_table+0x1fc/0x3500 [ 83.740943] ? __kmalloc_node+0xdec/0x1190 [ 83.745221] ? _raw_spin_unlock_bh+0x57/0x70 [ 83.749714] ? kvmalloc_node+0x1a1/0x2e0 [ 83.753861] ? kmsan_internal_unpoison_shadow+0x83/0xe0 [ 83.759314] do_arpt_set_ctl+0x608/0xb40 [ 83.763487] ? arpt_unregister_table+0x570/0x570 [ 83.768834] nf_setsockopt+0x476/0x4d0 [ 83.772830] ip_setsockopt+0x24b/0x2b0 [ 83.776828] ? ipv4_pktinfo_prepare+0x650/0x650 [ 83.781585] tcp_setsockopt+0x1bb/0x1f0 [ 83.785665] ? tcp_disconnect+0x15e0/0x15e0 [ 83.785861] mmap: syz-executor6 (6623) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.txt. [ 83.790023] sock_common_setsockopt+0x136/0x170 [ 83.790118] ? sock_common_recvmsg+0x270/0x270 [ 83.790186] SYSC_setsockopt+0x4b8/0x570 [ 83.790278] SyS_setsockopt+0x76/0xa0 [ 83.790361] do_syscall_64+0x309/0x430 [ 83.823934] ? SYSC_recv+0xe0/0xe0 [ 83.827560] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 83.832805] RIP: 0033:0x455389 [ 83.836017] RSP: 002b:00007f9975c41c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 83.843769] RAX: ffffffffffffffda RBX: 00007f9975c426d4 RCX: 0000000000455389 [ 83.851069] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000014 [ 83.858366] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 83.865663] R10: 0000000020000000 R11: 0000000000000246 R12: 00000000ffffffff [ 83.872960] R13: 0000000000000572 R14: 00000000006fb350 R15: 0000000000000000 2018/04/24 04:13:14 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00003e0000)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) ioctl$TCSETSW(r0, 0x5402, &(0x7f0000590000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001}) r1 = syz_open_pts(r0, 0x0) readv(r1, &(0x7f00001aa000)=[{&(0x7f00006aaf01)=""/255, 0xff}], 0x1) ioctl$TCXONC(r0, 0x540a, 0x2) close(r0) 2018/04/24 04:13:14 executing program 3: r0 = syz_open_dev$loop(&(0x7f0000acd000)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_GET_STATUS64(r0, 0x4c05, &(0x7f00000000c0)) 2018/04/24 04:13:14 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) getsockopt$inet_int(r0, 0x0, 0xe, &(0x7f00000000c0), &(0x7f0000000140)=0x4) 2018/04/24 04:13:14 executing program 7: perf_event_open(&(0x7f0000bba000)={0x2, 0x78, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) setpriority(0x1, 0x0, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(0xffffffffffffffff, 0x2401, 0x101) 2018/04/24 04:13:14 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0x0, 0x0}) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={0xffffffffffffffff, &(0x7f00000000c0)="b82283392dc50ff1fb635a5849d2f5916ae2fdc24e95e12aa8daccf7393e72be9cc66f"}, 0x10) socket$kcm(0xa, 0x1, 0x0) socket$kcm(0x2b, 0x1, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x0, 0x0, 0x4, 0x2a}, 0x2c) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x1, 0x5, &(0x7f0000346fc8)=@framed={{0x18}, [@alu={0x8000000201a7f19, 0x0, 0x7, 0x0, 0x1}], {0x95}}, &(0x7f0000f6bffb)='GPL\x00', 0x0, 0x299, &(0x7f00001a7f05)=""/251}, 0x18) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000140)={r0, 0x50, &(0x7f00000000c0)}, 0x10) socketpair$inet(0x16, 0x0, 0x0, &(0x7f0000000340)) 2018/04/24 04:13:14 executing program 6: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00003e0000)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x0) readv(r1, &(0x7f00001aa000)=[{&(0x7f00006aaf01)=""/255, 0xff}], 0x1) close(r0) 2018/04/24 04:13:14 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000880)={0xa, 0x4e22}, 0x1c) sendto$inet6(r0, &(0x7f00002a0b14), 0x0, 0x200408d4, &(0x7f000072e000)={0xa, 0x0, 0x0, @loopback={0x0, 0x1}}, 0x1c) 2018/04/24 04:13:14 executing program 4: sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000001140)={&(0x7f0000000080)={0x10}, 0xc, &(0x7f0000001100)={&(0x7f0000000000)=ANY=[]}, 0x1}, 0x0) r0 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00') sendmsg$IPVS_CMD_SET_INFO(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f00000000c0)={0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000140)={0x40, r0, 0x104, 0x70bd26, 0x25dfdbff, {0xe}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xffffffff}, @IPVS_CMD_ATTR_DEST={0x1c, 0x2, [@IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x4}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0xfff}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0xf0}]}]}, 0x40}, 0x1}, 0x804) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x0, @broadcast=0xffffffff}, @in={0x2, 0x0, @multicast1=0xe0000001}, @in={0x2, 0x0, @remote={0xac, 0x14, 0x14, 0xbb}}, @in6={0xa, 0x0, 0x0, @mcast1={0xff, 0x1, [], 0x1}}], 0x4c) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_buf(r1, 0x0, 0x60, &(0x7f0000000000), 0x0) close(0xffffffffffffffff) [ 84.099675] syz-executor4: vmalloc: allocation failure: 12554621616 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null) [ 84.111725] syz-executor4 cpuset=syz4 mems_allowed=0 [ 84.116990] CPU: 0 PID: 6652 Comm: syz-executor4 Not tainted 4.16.0+ #87 [ 84.123863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 84.133246] Call Trace: [ 84.135888] dump_stack+0x185/0x1d0 [ 84.139570] warn_alloc+0x3fc/0x660 [ 84.143298] __vmalloc_node_range+0xa6f/0x1140 [ 84.147984] __vmalloc_node_flags_caller+0x102/0x120 [ 84.153150] ? xt_alloc_entry_offsets+0x62/0x70 [ 84.157858] ? xt_alloc_entry_offsets+0x62/0x70 [ 84.162563] kvmalloc_node+0x2a6/0x2e0 [ 84.166478] xt_alloc_entry_offsets+0x62/0x70 [ 84.170986] translate_table+0x1fc/0x3500 [ 84.175170] ? __kmalloc_node+0xdec/0x1190 [ 84.179418] ? _raw_spin_unlock_bh+0x57/0x70 [ 84.183878] ? kvmalloc_node+0x1a1/0x2e0 [ 84.187982] ? kmsan_internal_unpoison_shadow+0x83/0xe0 [ 84.193389] do_arpt_set_ctl+0x608/0xb40 [ 84.197512] ? arpt_unregister_table+0x570/0x570 [ 84.202297] nf_setsockopt+0x476/0x4d0 [ 84.206266] ip_setsockopt+0x24b/0x2b0 [ 84.210222] ? ipv4_pktinfo_prepare+0x650/0x650 [ 84.214929] tcp_setsockopt+0x1bb/0x1f0 [ 84.218955] ? tcp_disconnect+0x15e0/0x15e0 [ 84.223294] sock_common_setsockopt+0x136/0x170 [ 84.228014] ? sock_common_recvmsg+0x270/0x270 [ 84.232647] SYSC_setsockopt+0x4b8/0x570 [ 84.236730] SyS_setsockopt+0x76/0xa0 [ 84.240539] do_syscall_64+0x309/0x430 [ 84.244435] ? SYSC_recv+0xe0/0xe0 2018/04/24 04:13:15 executing program 1: perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0x9) sendmmsg$unix(r1, &(0x7f00000bd000), 0x80, 0x0) 2018/04/24 04:13:15 executing program 3: perf_event_open(&(0x7f0000940000)={0x2, 0x78, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) unshare(0x60000000) [ 84.247983] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 84.253177] RIP: 0033:0x455389 [ 84.256362] RSP: 002b:00007f9975c41c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 84.264076] RAX: ffffffffffffffda RBX: 00007f9975c426d4 RCX: 0000000000455389 [ 84.271345] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000013 [ 84.278610] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 84.285875] R10: 0000000020000000 R11: 0000000000000246 R12: 00000000ffffffff [ 84.293141] R13: 0000000000000572 R14: 00000000006fb350 R15: 0000000000000000 2018/04/24 04:13:15 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000940)={0x1, 0xde}, 0x8) sendto$inet6(r0, &(0x7f00002a0b14), 0x0, 0x200408d4, &(0x7f000072e000)={0xa, 0x0, 0x0, @loopback={0x0, 0x1}}, 0x1c) close(r0) 2018/04/24 04:13:15 executing program 7: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000002280)='cpuset.mems\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB=':'], 0x1) 2018/04/24 04:13:15 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000001d40)={'lo\x00', 0xfff}) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f0000000140)={0x0, {0x2}, {0x2, 0x0, @loopback=0x7f000001}, {0x2}}) [ 84.403719] IPVS: ftp: loaded support on port[0] = 21 [ 84.500987] device lo entered promiscuous mode 2018/04/24 04:13:15 executing program 1: mprotect(&(0x7f0000004000/0x3000)=nil, 0x3000, 0x300000a) 2018/04/24 04:13:15 executing program 5: r0 = perf_event_open(&(0x7f000001d000)={0x200000002, 0x70, 0x5, 0x108000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000000), 0x1}, 0x0, 0x0, 0x4}, 0x0, 0x0, r0, 0x0) 2018/04/24 04:13:15 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs\x00') preadv(r0, &(0x7f0000000680)=[{&(0x7f00000005c0)=""/172, 0xac}], 0x1, 0x10400003) 2018/04/24 04:13:15 executing program 2: r0 = socket$packet(0x11, 0x1000000003, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f00004da000)={0x0, 0x0, 0xfffffffffffffffc}, 0x4) r1 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000d40)={0x1, &(0x7f0000000080)=[{0x40006, 0x0, 0x0, 0xa85}]}, 0x10) connect$inet(r1, &(0x7f0000000040)={0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) sendto$inet(r1, &(0x7f0000000180), 0x0, 0x2004c044, &(0x7f0000000000)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10) write$binfmt_script(r1, &(0x7f00000023c0)=ANY=[@ANYBLOB="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"], 0xa5c) 2018/04/24 04:13:15 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000001d40)={'lo\x00', 0xfff}) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f0000000140)={0x0, {0x2}, {0x2, 0x0, @loopback=0x7f000001}, {0x2}}) 2018/04/24 04:13:15 executing program 3: perf_event_open(&(0x7f0000940000)={0x2, 0x78, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) unshare(0x60000000) 2018/04/24 04:13:15 executing program 6: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00003e0000)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) ioctl$TCSETSW(r0, 0x5402, &(0x7f0000590000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001}) r1 = syz_open_pts(r0, 0x0) readv(r1, &(0x7f00001aa000)=[{&(0x7f00006aaf01)=""/255, 0xff}], 0x1) ioctl$TCXONC(r0, 0x540a, 0x2) close(r0) 2018/04/24 04:13:15 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00003e0000)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) ioctl$TCSETSW(r0, 0x5402, &(0x7f0000590000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001}) r1 = syz_open_pts(r0, 0x0) readv(r1, &(0x7f00001aa000)=[{&(0x7f00006aaf01)=""/255, 0xff}], 0x1) ioctl$TCXONC(r0, 0x540a, 0x2) close(r0) 2018/04/24 04:13:16 executing program 1: socket$packet(0x11, 0x3, 0x300) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c) socket$packet(0x11, 0x2, 0x300) listen(r1, 0x0) sendto$inet6(r0, &(0x7f0000eb9fff), 0xfffffd65, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c) 2018/04/24 04:13:16 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000001d40)={'lo\x00', 0xfff}) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f0000000140)={0x0, {0x2}, {0x2, 0x0, @loopback=0x7f000001}, {0x2}}) 2018/04/24 04:13:16 executing program 7: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup.cpu\x00', 0x200002, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000140)='./bus\x00', 0x0) r2 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x80003) sendfile(r1, r2, &(0x7f0000d83ff8), 0x8000fffffffe) r3 = open(&(0x7f0000000040)='./bus\x00', 0x141042, 0x0) mmap(&(0x7f0000007000/0x4000)=nil, 0x4000, 0x2, 0x11, r3, 0x0) madvise(&(0x7f0000009000/0x1000)=nil, 0x1000, 0x100000009) 2018/04/24 04:13:16 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00003e0000)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) ioctl$TCSETSW(r0, 0x5402, &(0x7f0000590000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001}) r1 = syz_open_pts(r0, 0x0) readv(r1, &(0x7f00001aa000)=[{&(0x7f00006aaf01)=""/255, 0xff}], 0x1) ioctl$TCXONC(r0, 0x540a, 0x2) ioctl$TCSETS(r1, 0x5402, &(0x7f0000000000)) close(r0) 2018/04/24 04:13:16 executing program 2: r0 = socket$packet(0x11, 0x1000000003, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f00004da000)={0x0, 0x0, 0xfffffffffffffffc}, 0x4) r1 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000d40)={0x1, &(0x7f0000000080)=[{0x40006, 0x0, 0x0, 0xa85}]}, 0x10) connect$inet(r1, &(0x7f0000000040)={0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) sendto$inet(r1, &(0x7f0000000180), 0x0, 0x2004c044, &(0x7f0000000000)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10) write$binfmt_script(r1, &(0x7f00000023c0)=ANY=[@ANYBLOB="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"], 0xa5c) [ 85.181702] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. 2018/04/24 04:13:16 executing program 7: r0 = socket$packet(0x11, 0x1000000003, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f00004da000)={0x0, 0x0, 0xfffffffffffffffc}, 0x4) r1 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000d40)={0x1, &(0x7f0000000080)=[{0x40006, 0x0, 0x0, 0xa85}]}, 0x10) connect$inet(r1, &(0x7f0000000040)={0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) sendto$inet(r1, &(0x7f0000000180), 0x0, 0x2004c044, &(0x7f0000000000)={0x2, 0x4e20, @multicast2=0xe0000002}, 0x10) write$binfmt_script(r1, &(0x7f00000023c0)=ANY=[@ANYBLOB="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"], 0xa5c) 2018/04/24 04:13:16 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000001d40)={'lo\x00', 0xfff}) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f0000000140)={0x0, {0x2}, {0x2, 0x0, @loopback=0x7f000001}, {0x2}}) [ 85.339438] ================================================================== [ 85.346856] BUG: KMSAN: uninit-value in inet_getpeer+0x1567/0x1e70 [ 85.353183] CPU: 1 PID: 6723 Comm: syz-executor7 Not tainted 4.16.0+ #87 [ 85.360022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 85.369371] Call Trace: [ 85.371969] dump_stack+0x185/0x1d0 [ 85.375600] ? inet_getpeer+0x1567/0x1e70 [ 85.379753] kmsan_report+0x142/0x240 [ 85.383563] __msan_warning_32+0x6c/0xb0 [ 85.387626] inet_getpeer+0x1567/0x1e70 [ 85.391618] ? __msan_poison_alloca+0x15c/0x1d0 [ 85.396294] ? kmsan_set_origin_inline+0x6b/0x120 [ 85.401146] ? __msan_poison_alloca+0x15c/0x1d0 [ 85.405820] ? inet_frag_find+0x7da/0x1610 [ 85.410065] ? ip4_frag_init+0x59/0x740 [ 85.414046] ip4_frag_init+0x4d1/0x740 [ 85.417939] ? ip4_hashfn+0x170/0x170 [ 85.421755] inet_frag_find+0x7da/0x1610 [ 85.425820] ? ipqhashfn+0x77/0x2f0 [ 85.429453] ip_defrag+0x4ba/0x6860 [ 85.433080] ? __copy_skb_header+0x784/0x830 2018/04/24 04:13:16 executing program 4: syz_emit_ethernet(0xfdef, &(0x7f0000000180)={@link_local={0x1, 0x80, 0xc2}, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, [], {@ipv6={0x86dd, {0x0, 0x6, 'v`Q', 0x30, 0x3a, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [0x0, 0xfffffffffffff000], 0x1}, {[], @icmpv6=@dest_unreach={0xffffff86, 0x0, 0x0, 0x0, [0x14], {0x0, 0x6, "c5961e", 0x0, 0x0, 0x0, @mcast1={0xff, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x3, 0x0, 0x0, 0x4], 0x1}, @mcast2={0xff, 0x2, [], 0x1}}}}}}}}, 0x0) [ 85.437495] ? kmsan_set_origin_inline+0x6b/0x120 [ 85.442342] ? __msan_poison_alloca+0x15c/0x1d0 [ 85.447016] ? ip_check_defrag+0x5f0/0xd90 [ 85.451258] ? kmsan_set_origin+0x9e/0x160 [ 85.455499] ip_check_defrag+0x76b/0xd90 [ 85.459575] packet_rcv_fanout+0x2a8/0x8d0 [ 85.463823] ? packet_direct_xmit+0xbf0/0xbf0 [ 85.468325] dev_queue_xmit_nit+0x8fb/0x11e0 [ 85.472749] dev_hard_start_xmit+0x27c/0xc70 [ 85.477172] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 85.482552] sch_direct_xmit+0x540/0x8f0 [ 85.486623] __qdisc_run+0x1785/0x3730 [ 85.490516] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 85.495894] __dev_queue_xmit+0x1d50/0x3520 [ 85.500226] dev_queue_xmit+0x4b/0x60 [ 85.504029] neigh_resolve_output+0xac6/0xb60 [ 85.508533] ? neigh_event_ns+0x360/0x360 [ 85.512689] ip_finish_output2+0x1344/0x1470 [ 85.517110] ip_do_fragment+0x3748/0x3f80 [ 85.521263] ? ip_fragment+0x3f0/0x3f0 [ 85.525170] ip_fragment+0x248/0x3f0 [ 85.528891] ip_finish_output+0xd1b/0xff0 [ 85.533045] ip_output+0x505/0x5d0 2018/04/24 04:13:16 executing program 4: r0 = syz_open_dev$loop(&(0x7f0000acd000)='/dev/loop#\x00', 0x0, 0x0) r1 = dup2(r0, r0) ioctl$LOOP_CLR_FD(r1, 0x4c01) [ 85.536590] ? ip_mc_finish_output+0x3b0/0x3b0 [ 85.541198] ? ip_finish_output+0xff0/0xff0 [ 85.545523] ip_send_skb+0x173/0x350 [ 85.549236] udp_send_skb+0xeb6/0x1310 [ 85.553131] udp_sendmsg+0x9ef/0x33f0 [ 85.556932] ? ip_copy_metadata+0xee0/0xee0 [ 85.561257] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 85.566627] ? futex_wait+0x937/0xc20 [ 85.570445] ? udp_send_skb+0x1310/0x1310 [ 85.574601] inet_sendmsg+0x48d/0x740 [ 85.578405] ? security_socket_sendmsg+0x9e/0x210 [ 85.583253] ? inet_getname+0x500/0x500 [ 85.587237] sock_write_iter+0x3b9/0x470 [ 85.591307] ? sock_read_iter+0x480/0x480 [ 85.595456] __vfs_write+0x7fb/0x9f0 [ 85.599183] vfs_write+0x463/0x8d0 [ 85.602731] SYSC_write+0x172/0x360 [ 85.606368] SyS_write+0x55/0x80 [ 85.609736] do_syscall_64+0x309/0x430 [ 85.613632] ? SYSC_read+0x360/0x360 [ 85.617351] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 85.622540] RIP: 0033:0x455389 [ 85.625724] RSP: 002b:00007f840adb3c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 85.633430] RAX: ffffffffffffffda RBX: 00007f840adb46d4 RCX: 0000000000455389 [ 85.640695] RDX: 0000000000000a5c RSI: 00000000200023c0 RDI: 0000000000000014 [ 85.648431] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 85.655696] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 85.662965] R13: 00000000000006c6 R14: 00000000006fd330 R15: 0000000000000000 [ 85.670233] [ 85.671848] Uninit was created at: [ 85.675392] kmsan_internal_poison_shadow+0xb8/0x1b0 [ 85.680494] kmsan_kmalloc+0x94/0x100 [ 85.684294] kmem_cache_alloc+0xaab/0xb90 2018/04/24 04:13:16 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) sendmmsg(r0, &(0x7f0000001280)=[{{0x0, 0x0, &(0x7f0000000780), 0x0, &(0x7f00000032c0), 0xa}}, {{&(0x7f0000000e40)=@nl=@unspec, 0x80, &(0x7f00000011c0), 0x0, &(0x7f0000006640)}}], 0x2, 0x0) [ 85.688441] inet_getpeer+0xed8/0x1e70 [ 85.692333] ip4_frag_init+0x4d1/0x740 [ 85.696215] inet_frag_find+0x7da/0x1610 [ 85.700273] ip_defrag+0x4ba/0x6860 [ 85.703902] ip_local_deliver+0x18f/0x4e0 [ 85.708052] ip_rcv_finish+0xa36/0x1d00 [ 85.712024] ip_rcv+0x118f/0x16d0 [ 85.715488] __netif_receive_skb_core+0x47df/0x4a90 [ 85.720510] netif_receive_skb_internal+0x49d/0x630 [ 85.725524] netif_receive_skb+0x230/0x240 [ 85.729765] tun_get_user+0x740f/0x7c60 [ 85.733743] tun_chr_write_iter+0x1d4/0x330 [ 85.738065] do_iter_readv_writev+0x84d/0xa00 [ 85.742564] do_iter_write+0x30d/0xd40 [ 85.746448] do_writev+0x3c9/0x830 [ 85.749988] SYSC_writev+0x9b/0xb0 [ 85.753528] SyS_writev+0x56/0x80 [ 85.756981] do_syscall_64+0x309/0x430 [ 85.760873] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 85.766052] ================================================================== [ 85.773401] Disabling lock debugging due to kernel taint [ 85.778843] Kernel panic - not syncing: panic_on_warn set ... [ 85.778843] [ 85.786206] CPU: 1 PID: 6723 Comm: syz-executor7 Tainted: G B 4.16.0+ #87 [ 85.794333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 85.803683] Call Trace: [ 85.806270] dump_stack+0x185/0x1d0 [ 85.809902] panic+0x39d/0x940 [ 85.813121] ? inet_getpeer+0x1567/0x1e70 [ 85.817269] kmsan_report+0x238/0x240 [ 85.821074] __msan_warning_32+0x6c/0xb0 [ 85.825140] inet_getpeer+0x1567/0x1e70 [ 85.829125] ? __msan_poison_alloca+0x15c/0x1d0 [ 85.833794] ? kmsan_set_origin_inline+0x6b/0x120 [ 85.838638] ? __msan_poison_alloca+0x15c/0x1d0 [ 85.843313] ? inet_frag_find+0x7da/0x1610 [ 85.847549] ? ip4_frag_init+0x59/0x740 [ 85.851526] ip4_frag_init+0x4d1/0x740 [ 85.855417] ? ip4_hashfn+0x170/0x170 [ 85.859215] inet_frag_find+0x7da/0x1610 [ 85.863275] ? ipqhashfn+0x77/0x2f0 [ 85.866909] ip_defrag+0x4ba/0x6860 [ 85.870539] ? __copy_skb_header+0x784/0x830 [ 85.874956] ? kmsan_set_origin_inline+0x6b/0x120 [ 85.879801] ? __msan_poison_alloca+0x15c/0x1d0 [ 85.884472] ? ip_check_defrag+0x5f0/0xd90 [ 85.888714] ? kmsan_set_origin+0x9e/0x160 [ 85.892955] ip_check_defrag+0x76b/0xd90 [ 85.897026] packet_rcv_fanout+0x2a8/0x8d0 [ 85.901267] ? packet_direct_xmit+0xbf0/0xbf0 [ 85.905766] dev_queue_xmit_nit+0x8fb/0x11e0 [ 85.910185] dev_hard_start_xmit+0x27c/0xc70 [ 85.914630] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 85.920009] sch_direct_xmit+0x540/0x8f0 [ 85.924075] __qdisc_run+0x1785/0x3730 [ 85.927966] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 85.933334] __dev_queue_xmit+0x1d50/0x3520 [ 85.937670] dev_queue_xmit+0x4b/0x60 2018/04/24 04:13:16 executing program 6: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00003e0000)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) ioctl$TCSETSW(r0, 0x5402, &(0x7f0000590000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001}) r1 = syz_open_pts(r0, 0x0) readv(r1, &(0x7f00001aa000)=[{&(0x7f00006aaf01)=""/255, 0xff}], 0x1) ioctl$TCXONC(r0, 0x540a, 0x2) close(r0) [ 85.941470] neigh_resolve_output+0xac6/0xb60 [ 85.945969] ? neigh_event_ns+0x360/0x360 [ 85.950116] ip_finish_output2+0x1344/0x1470 [ 85.954529] ip_do_fragment+0x3748/0x3f80 [ 85.958683] ? ip_fragment+0x3f0/0x3f0 [ 85.962583] ip_fragment+0x248/0x3f0 [ 85.966298] ip_finish_output+0xd1b/0xff0 [ 85.970459] ip_output+0x505/0x5d0 [ 85.974002] ? ip_mc_finish_output+0x3b0/0x3b0 [ 85.978590] ? ip_finish_output+0xff0/0xff0 [ 85.982912] ip_send_skb+0x173/0x350 [ 85.986631] udp_send_skb+0xeb6/0x1310 [ 85.990537] udp_sendmsg+0x9ef/0x33f0 [ 85.994345] ? ip_copy_metadata+0xee0/0xee0 [ 85.998677] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 86.004048] ? futex_wait+0x937/0xc20 [ 86.007859] ? udp_send_skb+0x1310/0x1310 [ 86.012005] inet_sendmsg+0x48d/0x740 [ 86.015809] ? security_socket_sendmsg+0x9e/0x210 [ 86.020654] ? inet_getname+0x500/0x500 [ 86.024631] sock_write_iter+0x3b9/0x470 [ 86.028702] ? sock_read_iter+0x480/0x480 [ 86.032855] __vfs_write+0x7fb/0x9f0 [ 86.036579] vfs_write+0x463/0x8d0 [ 86.040213] SYSC_write+0x172/0x360 [ 86.043846] SyS_write+0x55/0x80 [ 86.047299] do_syscall_64+0x309/0x430 [ 86.051187] ? SYSC_read+0x360/0x360 [ 86.054905] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 86.060090] RIP: 0033:0x455389 [ 86.063282] RSP: 002b:00007f840adb3c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 86.070987] RAX: ffffffffffffffda RBX: 00007f840adb46d4 RCX: 0000000000455389 [ 86.078255] RDX: 0000000000000a5c RSI: 00000000200023c0 RDI: 0000000000000014 [ 86.085519] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 86.092790] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 86.100055] R13: 00000000000006c6 R14: 00000000006fd330 R15: 0000000000000000 [ 86.107750] Dumping ftrace buffer: [ 86.111278] (ftrace buffer empty) [ 86.114963] Kernel Offset: disabled [ 86.118562] Rebooting in 86400 seconds..