INIT: Entering runlevel: 2 [info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.17' (ECDSA) to the list of known hosts. 2018/04/06 23:09:27 fuzzer started 2018/04/06 23:09:28 dialing manager at 10.128.0.26:38639 2018/04/06 23:09:34 kcov=true, comps=false 2018/04/06 23:09:36 executing program 0: r0 = socket$inet6(0xa, 0x2100000000000002, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000001c0)={{{@in6=@ipv4={[], [0xff, 0xff], @rand_addr}, @in=@broadcast=0xffffffff, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x800000000000001}, {{@in6=@loopback={0x0, 0x1}, 0x0, 0x2b}, 0x0, @in, 0x0, 0x4, 0x0, 0x401}}, 0xe8) sendto$inet6(r0, &(0x7f0000000040), 0x0, 0x0, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80}, 0x8}, 0x1c) 2018/04/06 23:09:36 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip6_flowlabel\x00') r1 = eventfd2(0x0, 0x80801) sendfile(r1, r0, &(0x7f0000000080)=0x11, 0x10ed5b) 2018/04/06 23:09:36 executing program 7: perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000cb3ff8)='./file0\x00', 0x0) chroot(&(0x7f000009a000)='./file0\x00') mount(&(0x7f00005b9ff8)='./file0\x00', &(0x7f0000edaff8)='./file0\x00', &(0x7f0000d9fffa)='msdos\x00', 0x1002, 0x0) chdir(&(0x7f0000cd2ff8)='./file0\x00') umount2(&(0x7f0000000140)='..', 0x2) 2018/04/06 23:09:36 executing program 4: bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={0xffffffffffffffff, &(0x7f00000000c0)="b82283392dc50ff1fb635a5849d2f5916ae2fdc24e95e12aa8daccf7393e72be9cc66f"}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x0, 0x0, 0x1000000000000004, 0x1c}, 0x2c) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x1, 0x5, &(0x7f0000346fc8)=@framed={{0x18}, [@alu={0x8000000201a7f19, 0x0, 0x7, 0x0, 0x1}], {0x95}}, &(0x7f0000f6bffb)='GPL\x00', 0x0, 0x299, &(0x7f00001a7f05)=""/251}, 0x18) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000140)={r0, 0x50, &(0x7f00000000c0)}, 0x10) socketpair$inet_icmp_raw(0x705000, 0x3, 0x12, &(0x7f0000000180)) 2018/04/06 23:09:36 executing program 2: bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={0xffffffffffffffff, &(0x7f00000000c0)="b82283392dc50ff1fb635a5849d2f5916ae2fdc24e95e12aa8daccf7393e72be9cc66f"}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x0, 0x0, 0x1000000000000004, 0x1c}, 0x2c) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x1, 0x5, &(0x7f0000346fc8)=@framed={{0x18}, [@alu={0x8000000201a7f19, 0x0, 0x7, 0x0, 0x1}], {0x95}}, &(0x7f0000f6bffb)='GPL\x00', 0x0, 0x299, &(0x7f00001a7f05)=""/251}, 0x18) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000140)={r0, 0x50, &(0x7f00000000c0)}, 0x10) socketpair$inet_icmp_raw(0x705000, 0x3, 0x13, &(0x7f0000000180)) 2018/04/06 23:09:36 executing program 3: bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={0xffffffffffffffff, &(0x7f00000000c0)="b82283392dc50ff1fb635a5849d2f5916ae2fdc24e95e12aa8daccf7393e72be9cc66f"}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x0, 0x0, 0x1000000000000004, 0x1c}, 0x2c) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x1, 0x5, &(0x7f0000346fc8)=@framed={{0x18}, [@alu={0x8000000201a7f19, 0x0, 0x7, 0x0, 0x1}], {0x95}}, &(0x7f0000f6bffb)='GPL\x00', 0x0, 0x299, &(0x7f00001a7f05)=""/251}, 0x18) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000140)={r0, 0x50, &(0x7f00000000c0)}, 0x10) socketpair$inet_icmp_raw(0x705000, 0x3, 0xc, &(0x7f0000000180)) 2018/04/06 23:09:36 executing program 5: bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={0xffffffffffffffff, &(0x7f00000000c0)="b82283392dc50ff1fb635a5849d2f5916ae2fdc24e95e12aa8daccf7393e72be9cc66f"}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x0, 0x0, 0x1000000000000004, 0x1c}, 0x2c) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x1, 0x5, &(0x7f0000346fc8)=@framed={{0x18}, [@alu={0x8000000201a7f19, 0x0, 0x7, 0x0, 0x1}], {0x95}}, &(0x7f0000f6bffb)='GPL\x00', 0x0, 0x299, &(0x7f00001a7f05)=""/251}, 0x18) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000140)={r0, 0x50, &(0x7f00000000c0)}, 0x10) socketpair$inet_icmp_raw(0x6f2000, 0x3, 0xe, &(0x7f0000000180)) 2018/04/06 23:09:36 executing program 6: bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={0xffffffffffffffff, &(0x7f00000000c0)="b82283392dc50ff1fb635a5849d2f5916ae2fdc24e95e12aa8daccf7393e72be9cc66f"}, 0x10) perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x0, 0x0, 0x1000000000000004, 0x1c}, 0x2c) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x1, 0x5, &(0x7f0000346fc8)=@framed={{0x18}, [@alu={0x8000000201a7f19, 0x0, 0x7, 0x0, 0x1}], {0x95}}, &(0x7f0000f6bffb)='GPL\x00', 0x0, 0x299, &(0x7f00001a7f05)=""/251}, 0x18) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000140)={r0, 0x50, &(0x7f00000000c0)}, 0x10) socketpair$inet_icmp_raw(0x705000, 0x3, 0x1, &(0x7f0000000180)) syzkaller login: [ 41.208197] ip (3755) used greatest stack depth: 54672 bytes left [ 41.592511] ip (3789) used greatest stack depth: 54408 bytes left [ 42.842195] ip (3912) used greatest stack depth: 54296 bytes left [ 43.206751] ip (3944) used greatest stack depth: 54256 bytes left [ 44.641200] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 44.943983] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 44.952628] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 44.980880] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 44.994581] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 45.004222] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 45.044247] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 45.086567] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 53.485579] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 53.494787] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 53.508448] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 53.660720] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 53.795932] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 53.843781] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 53.932446] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 53.956340] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 54.237016] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 54.243347] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 54.251924] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 54.274589] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 54.287873] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 54.326966] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 54.351813] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 54.360580] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 54.378779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 54.412742] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 54.424611] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 54.456621] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 54.591184] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 54.597434] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 54.611717] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 54.657852] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 54.664219] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 54.691726] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 54.728152] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 54.734368] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 54.744695] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 54.782080] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 54.788302] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 54.799541] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready 2018/04/06 23:09:53 executing program 7: bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={0xffffffffffffffff, &(0x7f00000000c0)="b82283392dc50ff1fb635a5849d2f5916ae2fdc24e95e12aa8daccf7393e72be9cc66f"}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x0, 0x0, 0x1000000000000004, 0x1c}, 0x2c) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x1, 0x5, &(0x7f0000346fc8)=@framed={{0x18}, [@alu={0x8000000201a7f19, 0x0, 0x7, 0x0, 0x1}], {0x95}}, &(0x7f0000f6bffb)='GPL\x00', 0x0, 0x299, &(0x7f00001a7f05)=""/251}, 0x18) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000140)={r0, 0x50, &(0x7f00000000c0)}, 0x10) socketpair$inet_icmp_raw(0x706000, 0x3, 0x1, &(0x7f0000000180)) 2018/04/06 23:09:53 executing program 6: 2018/04/06 23:09:53 executing program 4: 2018/04/06 23:09:53 executing program 5: 2018/04/06 23:09:53 executing program 6: 2018/04/06 23:09:53 executing program 4: 2018/04/06 23:09:53 executing program 7: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f0000f36000)={&(0x7f0000333f88)=ANY=[@ANYBLOB="020300090c000000000000000000000002001300020000000000000000000000030006000000000002004e20e0000001000000000000000002000100000000000000000200000000030005000000000002004e20e00000110000000000000000"], 0x60}, 0x1}, 0x0) 2018/04/06 23:09:53 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000b9bff0)={0x2, 0x4e21, @multicast1=0xe0000001}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f0000fa0fff), 0xffffffffffffffbb, 0x20020003, &(0x7f0000385ff0)={0x2, 0x4e21, @loopback=0x7f000001}, 0x10) 2018/04/06 23:09:54 executing program 0: 2018/04/06 23:09:54 executing program 1: mprotect(&(0x7f0000002000/0x4000)=nil, 0x4000, 0x4) mprotect(&(0x7f0000002000/0x1000)=nil, 0x1000, 0x0) 2018/04/06 23:09:54 executing program 4: 2018/04/06 23:09:54 executing program 6: 2018/04/06 23:09:54 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000b9bff0)={0x2, 0x4e21, @multicast1=0xe0000001}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='bbr\x00', 0x4) sendto$inet(r0, &(0x7f0000fa0fff), 0xffffffffffffffbb, 0x20020003, &(0x7f0000385ff0)={0x2, 0x4e21, @loopback=0x7f000001}, 0x10) 2018/04/06 23:09:54 executing program 7: 2018/04/06 23:09:54 executing program 2: 2018/04/06 23:09:54 executing program 3: 2018/04/06 23:09:54 executing program 6: 2018/04/06 23:09:54 executing program 7: 2018/04/06 23:09:54 executing program 1: 2018/04/06 23:09:54 executing program 4: 2018/04/06 23:09:54 executing program 0: bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={0xffffffffffffffff, &(0x7f00000000c0)="b82283392dc50ff1fb635a5849d2f5916ae2fdc24e95e12aa8daccf7393e72be9cc66f"}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x0, 0x0, 0x1000000000000004, 0x1c}, 0x2c) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x1, 0x5, &(0x7f0000346fc8)=@framed={{0x18}, [@alu={0x8000000201a7f19, 0x0, 0x7, 0x0, 0x1}], {0x95}}, &(0x7f0000f6bffb)='GPL\x00', 0x0, 0x299, &(0x7f00001a7f05)=""/251}, 0x18) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000140)={r0, 0x50, &(0x7f00000000c0)}, 0x10) socketpair$inet_icmp_raw(0x705000, 0x3, 0x8, &(0x7f0000000180)) 2018/04/06 23:09:54 executing program 2: 2018/04/06 23:09:54 executing program 3: 2018/04/06 23:09:54 executing program 7: 2018/04/06 23:09:54 executing program 5: 2018/04/06 23:09:54 executing program 6: 2018/04/06 23:09:54 executing program 1: bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={0xffffffffffffffff, &(0x7f00000000c0)="b82283392dc50ff1fb635a5849d2f5916ae2fdc24e95e12aa8daccf7393e72be9cc66f"}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x0, 0x0, 0x1000000000000004, 0x1c}, 0x2c) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x1, 0x5, &(0x7f0000346fc8)=@framed={{0x18}, [@alu={0x8000000201a7f19, 0x0, 0x7, 0x0, 0x1}], {0x95}}, &(0x7f0000f6bffb)='GPL\x00', 0x0, 0x299, &(0x7f00001a7f05)=""/251}, 0x18) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000140)={r0, 0x50, &(0x7f00000000c0)}, 0x10) socketpair$inet_icmp_raw(0x705000, 0x3, 0x3, &(0x7f0000000180)) 2018/04/06 23:09:54 executing program 4: 2018/04/06 23:09:54 executing program 3: 2018/04/06 23:09:54 executing program 2: 2018/04/06 23:09:54 executing program 7: 2018/04/06 23:09:54 executing program 5: 2018/04/06 23:09:54 executing program 0: 2018/04/06 23:09:54 executing program 4: 2018/04/06 23:09:54 executing program 6: 2018/04/06 23:09:54 executing program 1: 2018/04/06 23:09:54 executing program 7: 2018/04/06 23:09:54 executing program 2: 2018/04/06 23:09:54 executing program 3: 2018/04/06 23:09:55 executing program 5: 2018/04/06 23:09:55 executing program 6: 2018/04/06 23:09:55 executing program 0: 2018/04/06 23:09:55 executing program 1: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup.cpu\x00', 0x200002, 0x0) 2018/04/06 23:09:55 executing program 4: perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000000)={0x73, 0x79, 0x7a}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$restrict_keyring(0x1d, r0, 0x0, 0x0) 2018/04/06 23:09:55 executing program 3: 2018/04/06 23:09:55 executing program 2: 2018/04/06 23:09:55 executing program 7: 2018/04/06 23:09:55 executing program 6: perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x10, 0x1000040000000003, 0x0) write(r0, &(0x7f0000db4000)="26000000130047f10701c1b00e000000000000000100000009ef18ffff00f132050014006e35", 0x26) 2018/04/06 23:09:55 executing program 0: 2018/04/06 23:09:55 executing program 5: 2018/04/06 23:09:55 executing program 3: 2018/04/06 23:09:55 executing program 1: bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={0xffffffffffffffff, &(0x7f00000000c0)="b82283392dc50ff1fb635a5849d2f5916ae2fdc24e95e12aa8daccf7393e72be9cc66f"}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x0, 0x0, 0x4, 0x130}, 0x2c) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x1, 0x5, &(0x7f0000346fc8)=@framed={{0x18}, [@alu={0x8000000201a7f19, 0x0, 0x7, 0x0, 0x1}], {0x95}}, &(0x7f0000f6bffb)='GPL\x00', 0x0, 0xffffffffffffff11, &(0x7f00001a7f05)=""/251}, 0x18) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000140)={r0, 0x50, &(0x7f00000000c0)}, 0x10) socketpair$inet_icmp_raw(0x7ffffffff003, 0x930000, 0x1, &(0x7f00000001c0)) 2018/04/06 23:09:55 executing program 4: socketpair(0x0, 0x0, 0x0, &(0x7f0000000140)) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={0xffffffffffffffff, &(0x7f00000000c0)="b82283392dc50ff1fb635a5849d2f5916ae2fdc24e95e12aa8daccf7393e72be9cc66f"}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x0, 0x0, 0x1000000000000004, 0x400000a4}, 0x2c) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x1, 0x5, &(0x7f0000346fc8)=@framed={{0x18}, [@alu={0x8000000201a7f19, 0x0, 0x7, 0x0, 0x1}], {0x95}}, &(0x7f0000f6bffb)='GPL\x00', 0x0, 0x299, &(0x7f00001a7f05)=""/251}, 0x18) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={r0, 0x50, &(0x7f00000000c0)}, 0x10) socketpair$inet_icmp_raw(0x705000, 0x730000, 0x730008, &(0x7f00000001c0)) 2018/04/06 23:09:55 executing program 7: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000000000)=ANY=[@ANYBLOB="020300020e000000e503821e199129ee04000800d3000000000000000000001c00000000000000000000000000000000030006000000000002000000000004000000000000e1000002000100000000000006090000000000030005000000000002000000e00000010001000000000000"], 0x70}, 0x1}, 0x0) 2018/04/06 23:09:55 executing program 2: r0 = socket$inet_dccp(0x2, 0x6, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000180)={"776c616e300000020084000000000899", &(0x7f0000000000)=@ethtool_ringparam={0x11}}) 2018/04/06 23:09:55 executing program 5: r0 = memfd_create(&(0x7f0000000000)="2b63708773657400", 0x0) write(r0, &(0x7f0000baefec), 0xffffff88) r1 = memfd_create(&(0x7f0000000280)='\x00', 0x0) sendfile(r1, r0, &(0x7f0000000040), 0x3f) fadvise64(r0, 0x0, 0x10000000, 0x4) 2018/04/06 23:09:55 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000001900090300000000000000000ae5ffffff02000000000000"], 0x1}, 0x1}, 0x0) 2018/04/06 23:09:55 executing program 3: r0 = gettid() r1 = socket$inet(0x2, 0x1, 0x0) connect$inet(r1, &(0x7f00000dcff0)={0x2, 0x0, @loopback=0x7f000001}, 0x10) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) writev(r1, &(0x7f0000000380)=[{&(0x7f0000000300)="86", 0x1}], 0x1) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0xffffffffffffffff, 0x32, 0xffffffffffffffff, 0x0) tkill(r0, 0x1000000000016) 2018/04/06 23:09:55 executing program 2: nanosleep(&(0x7f0000000180)={0x77359400}, &(0x7f00000001c0)) nanosleep(&(0x7f0000000100)={0x0, 0x1c9c380}, &(0x7f00005bfff0)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f00008a6000/0x2000)=nil, 0x4000) shmat(0x0, &(0x7f00009e2000/0x3000)=nil, 0x0) 2018/04/06 23:09:55 executing program 6: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'lrw-serpent-avx\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000dc1000)="71e67a15cdf0311cfc093a52a7d86bd1", 0x10) r1 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440), 0x0, &(0x7f0000000000)=[@op={0x10, 0x117, 0x3, 0x1}], 0x10}, 0x0) recvmsg(r1, &(0x7f000005efe4)={0x0, 0x0, &(0x7f0000304fe0)=[{&(0x7f00001a6000)=""/167, 0xa7}], 0x1, &(0x7f000084bfe8)=""/24, 0x18}, 0x0) 2018/04/06 23:09:55 executing program 1: r0 = memfd_create(&(0x7f0000000040)='/dev/ppp\x00', 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000c0afff)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$evdev(r0, &(0x7f0000000100), 0x0) 2018/04/06 23:09:55 executing program 3: r0 = socket(0x10, 0x200000000002, 0xc) write(r0, &(0x7f0000000040)="1f0000000007fd07f9eb5d9a6c6e5800ff8777ff09000100f8d50000da2e36", 0x1f) 2018/04/06 23:09:55 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000400)={'bridge0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=@bridge_newneigh={0x28, 0x1c, 0x401, 0x0, 0x0, {0x2, 0x0, 0x0, r1}, [@NDA_DST_MAC={0xc, 0x1, @link_local={0x1, 0x80, 0xc2}}]}, 0x28}, 0x1}, 0x0) 2018/04/06 23:09:56 executing program 0: r0 = socket(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1={0xff, 0x1, [], 0x1}, 0x100000002}, 0x1c) sendto$inet(r0, &(0x7f0000509f92), 0xff77, 0x8000, &(0x7f000055fff0)={0x2, 0x4e23, @loopback=0x7f000001}, 0x10) sendmsg$inet_sctp(r0, &(0x7f000050dfc8)={&(0x7f0000000840)=@in6={0xa, 0x0, 0x0, @mcast1={0xff, 0x1, [], 0x1}}, 0x1c, &(0x7f00000005c0), 0x0, &(0x7f0000576000)}, 0x0) 2018/04/06 23:09:56 executing program 7: syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000240)=ANY=[]) open(&(0x7f0000000140)='./file0/file0\x00', 0x40003ffd, 0x0) 2018/04/06 23:09:56 executing program 1: socketpair$inet(0x1e, 0x1, 0x0, &(0x7f00001b6ff8)={0x0, 0x0}) sendmsg$key(r1, &(0x7f0000d4c000)={0x0, 0x0, &(0x7f000089c000)={&(0x7f0000e6ce08)={0x2, 0x0, 0x0, 0x0, 0x2}, 0xffffffa3}, 0x1}, 0x0) recvmsg(r0, &(0x7f00002ed000)={&(0x7f0000559fec)=@ll={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, 0x14, &(0x7f0000686fa0)=[{&(0x7f0000ae3000)=""/22, 0xffffff08}], 0x1, &(0x7f0000f1b000)=""/4096, 0xffffffffffffff73}, 0x121) 2018/04/06 23:09:56 executing program 3: r0 = socket(0x10, 0x802, 0x0) sendmsg$nl_route(r0, &(0x7f00001a1000)={&(0x7f00004d2ff4)={0x10}, 0xc, &(0x7f00006b3000)={&(0x7f0000514fac)=@ipv6_delroute={0x30, 0x19, 0x111, 0x0, 0x0, {0xa}, [@RTA_GATEWAY={0x14, 0x5, @loopback={0x0, 0x1}}]}, 0x30}, 0x1}, 0x0) 2018/04/06 23:09:56 executing program 6: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'lrw-serpent-avx\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000dc1000)="71e67a15cdf0311cfc093a52a7d86bd1", 0x10) r1 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440), 0x0, &(0x7f0000000000)=[@op={0x10, 0x117, 0x3, 0x1}], 0x10}, 0x0) recvmsg(r1, &(0x7f000005efe4)={0x0, 0x0, &(0x7f0000304fe0)=[{&(0x7f00001a6000)=""/167, 0xa7}], 0x1, &(0x7f000084bfe8)=""/24, 0x18}, 0x0) 2018/04/06 23:09:56 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000400)={'bridge0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=@bridge_newneigh={0x28, 0x1c, 0x401, 0x0, 0x0, {0x2, 0x0, 0x0, r1}, [@NDA_DST_MAC={0xc, 0x1, @link_local={0x1, 0x80, 0xc2}}]}, 0x28}, 0x1}, 0x0) 2018/04/06 23:09:56 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x0, &(0x7f0000000580), 0x0, &(0x7f00000005c0)={[{@subvolid={'subvolid', 0x3d, 'GPLeth1systemppp0)ppp0*md5sumself\x00'}, 0x2c}]}) 2018/04/06 23:09:56 executing program 5: r0 = memfd_create(&(0x7f0000000000)="2b63708773657400", 0x0) write(r0, &(0x7f0000baefec), 0xffffff88) r1 = memfd_create(&(0x7f0000000280)='\x00', 0x0) sendfile(r1, r0, &(0x7f0000000040), 0x3f) fadvise64(r0, 0x0, 0x10000000, 0x4) 2018/04/06 23:09:57 executing program 7: r0 = socket$inet6(0xa, 0x1, 0x8010000400000084) bind$inet6(r0, &(0x7f00001c1000)={0xa, 0x4e20}, 0x1c) setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000dacff8)=@assoc_value={0x0, 0x200}, 0x8) sendto$inet6(r0, &(0x7f00009f1000)='G', 0x1, 0x0, &(0x7f0000108fe4)={0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}, 0x1c) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x20}, 0xc) writev(r0, &(0x7f0000000140)=[{&(0x7f0000000b40)="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", 0x200}], 0x1) writev(r0, &(0x7f00000002c0)=[{&(0x7f0000000280)='&', 0x1}], 0x1) 2018/04/06 23:09:57 executing program 0: r0 = socket$inet(0x2, 0x4000000805, 0x0) perf_event_open(&(0x7f0000723f88)={0x2, 0x70, 0xc35, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f00000000c0)=@nat={'nat\x00', 0x1b, 0x5, 0x3c0, 0x0, 0x208, 0xffffffff, 0x308, 0x0, 0x418, 0x418, 0xffffffff, 0x418, 0x418, 0x5, &(0x7f0000000040), {[{{@uncond, 0x0, 0x98, 0xd0}, @DNAT0={0x38, 'DNAT\x00', 0x0, {0x1, {0x0, @broadcast=0xffffffff, @loopback=0x7f000001, @icmp_id}}}}, {{@ip={@dev={0xac, 0x14, 0x14}, @remote={0xac, 0x14, 0x14, 0xbb}, 0x0, 0x0, 'bpq0\x00', 'ifb0\x00'}, 0x0, 0x98, 0xd8}, @common=@inet=@TCPOPTSTRIP={0x40, 'TCPOPTSTRIP\x00'}}, {{@uncond, 0x0, 0x98, 0xc0}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1}}, {{@ip={@dev={0xac, 0x14, 0x14}, @broadcast=0xffffffff, 0x0, 0x0, 'erspan0\x00', 'syz_tun\x00'}, 0x0, 0x98, 0xc0}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x0, 0xfffffffffffffffe}}}}, 0x420) 2018/04/06 23:09:57 executing program 4: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x40000000000032, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000140)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f000078dff8)='./file0\x00', 0x0) mlock2(&(0x7f0000012000/0x1000)=nil, 0x1000, 0x0) clone(0x0, &(0x7f0000aed000), &(0x7f00006c3ffc), &(0x7f000049cffc), &(0x7f0000c12000)) dup2(r1, r0) 2018/04/06 23:09:57 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000001140)={&(0x7f00000012c0)=ANY=[@ANYBLOB="1400000013001103000000000000fe0005000000"], 0x1}, 0x1}, 0x0) 2018/04/06 23:09:57 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23}, 0x1c) listen(r0, 0x5eb855) r1 = socket$inet_dccp(0x2, 0x6, 0x0) connect$inet(r1, &(0x7f0000772000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x16}}, 0x10) r2 = accept4(r0, &(0x7f0000975000)=@can, &(0x7f0000752ffc)=0x10, 0x0) sendmsg$nl_netfilter(r2, &(0x7f0000b76fc8)={&(0x7f0000715000)={0x10}, 0xc, &(0x7f000066f000)={&(0x7f00000004c0)=ANY=[]}, 0x1}, 0x0) accept4(r0, &(0x7f0000000140)=@pppol2tp={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @multicast2}}}, &(0x7f0000000080)=0x80, 0x0) write(r1, &(0x7f0000f8aff1), 0xff8f) sendmmsg$alg(r2, &(0x7f0000006680)=[{0x0, 0x0, &(0x7f0000006640)}], 0x1, 0x0) 2018/04/06 23:09:57 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0) madvise(&(0x7f00003a6000/0x1000)=nil, 0x1000, 0x80000000008) [ 59.390088] ================================================================== [ 59.397511] BUG: KMSAN: uninit-value in iptable_mangle_hook+0x5e5/0x720 [ 59.404266] CPU: 0 PID: 5300 Comm: syz-executor3 Not tainted 4.16.0+ #81 [ 59.411100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 59.420449] Call Trace: [ 59.423041] dump_stack+0x185/0x1d0 [ 59.426669] ? iptable_mangle_hook+0x5e5/0x720 [ 59.431254] kmsan_report+0x142/0x240 [ 59.435060] __msan_warning_32+0x6c/0xb0 2018/04/06 23:09:57 executing program 6: r0 = userfaultfd(0x0) sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000d65000)={&(0x7f0000de2ff4)={0x10}, 0xc, &(0x7f0000403000)={&(0x7f0000d7efec)={0x14}, 0x14}, 0x1}, 0x0) r1 = dup(r0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000f6bfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000280)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1}) ioctl$UFFDIO_REGISTER(r0, 0xc028aa03, &(0x7f0000000240)={{&(0x7f00005e3000/0x800000)=nil, 0x800000}, 0x200000}) 2018/04/06 23:09:57 executing program 7: r0 = socket$inet6(0xa, 0x1, 0x8010000400000084) bind$inet6(r0, &(0x7f00001c1000)={0xa, 0x4e20}, 0x1c) setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000dacff8)=@assoc_value={0x0, 0x200}, 0x8) sendto$inet6(r0, &(0x7f00009f1000)='G', 0x1, 0x0, &(0x7f0000108fe4)={0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}, 0x1c) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x20}, 0xc) writev(r0, &(0x7f0000000140)=[{&(0x7f0000000b40)="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", 0x200}], 0x1) writev(r0, &(0x7f00000002c0)=[{&(0x7f0000000280)='&', 0x1}], 0x1) [ 59.439122] iptable_mangle_hook+0x5e5/0x720 [ 59.443534] ? iptable_mangle_net_exit+0x130/0x130 [ 59.448462] nf_hook_slow+0x158/0x3d0 [ 59.452685] ip_queue_xmit+0x1d21/0x21c0 [ 59.456750] ? __ip_local_out+0x5b0/0x5b0 [ 59.460902] ? skb_checksum+0xec/0x120 [ 59.464795] ? skb_checksum+0x120/0x120 [ 59.468769] ? csum_partial_ext+0xa0/0xa0 [ 59.472921] ? ip_output+0x5c0/0x5c0 [ 59.476642] dccp_transmit_skb+0x15eb/0x1900 [ 59.481063] dccp_xmit_packet+0x814/0x9e0 [ 59.485217] dccp_write_xmit+0x20f/0x480 [ 59.489285] dccp_sendmsg+0x12ca/0x12d0 [ 59.493273] ? compat_dccp_getsockopt+0x190/0x190 [ 59.498117] inet_sendmsg+0x48d/0x740 [ 59.501919] ? security_socket_sendmsg+0x9e/0x210 [ 59.506763] ? inet_getname+0x500/0x500 [ 59.510740] ___sys_sendmsg+0xec0/0x1310 [ 59.514809] ? __fdget+0x4e/0x60 [ 59.518178] ? __fget_light+0x56/0x710 [ 59.522067] ? __fdget+0x4e/0x60 [ 59.525435] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 59.530801] ? __fget_light+0x6b9/0x710 [ 59.534802] SYSC_sendmsg+0x2a3/0x3d0 [ 59.538629] SyS_sendmsg+0x54/0x80 [ 59.542170] do_syscall_64+0x309/0x430 [ 59.546069] ? ___sys_sendmsg+0x1310/0x1310 [ 59.550405] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 59.555588] RIP: 0033:0x455259 [ 59.558772] RSP: 002b:00007f1a4473dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 59.566482] RAX: ffffffffffffffda RBX: 00007f1a4473e6d4 RCX: 0000000000455259 [ 59.573745] RDX: 0000000000000000 RSI: 0000000020b76fc8 RDI: 0000000000000015 [ 59.581009] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 59.588275] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 59.595543] R13: 00000000000004f0 R14: 00000000006fa720 R15: 0000000000000000 [ 59.602805] [ 59.604417] Uninit was stored to memory at: [ 59.608742] kmsan_internal_chain_origin+0x12b/0x210 [ 59.613844] __msan_chain_origin+0x69/0xc0 [ 59.618077] ip_queue_xmit+0x1e35/0x21c0 [ 59.622138] dccp_transmit_skb+0x15eb/0x1900 [ 59.626545] dccp_xmit_packet+0x814/0x9e0 [ 59.630695] dccp_write_xmit+0x20f/0x480 [ 59.634757] dccp_sendmsg+0x12ca/0x12d0 [ 59.638729] inet_sendmsg+0x48d/0x740 [ 59.642534] ___sys_sendmsg+0xec0/0x1310 [ 59.646594] SYSC_sendmsg+0x2a3/0x3d0 [ 59.650390] SyS_sendmsg+0x54/0x80 [ 59.653929] do_syscall_64+0x309/0x430 [ 59.657820] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 59.662991] Uninit was stored to memory at: [ 59.667319] kmsan_internal_chain_origin+0x12b/0x210 [ 59.672420] __msan_chain_origin+0x69/0xc0 [ 59.676657] inet_csk_clone_lock+0x503/0x580 [ 59.681068] dccp_create_openreq_child+0x7f/0x890 [ 59.685910] dccp_v4_request_recv_sock+0x22c/0xe90 [ 59.690841] dccp_v6_request_recv_sock+0x290/0x2000 [ 59.695859] dccp_check_req+0x7b9/0x8f0 [ 59.699835] dccp_v4_rcv+0x12e4/0x2630 [ 59.703723] ip_local_deliver_finish+0x6ed/0xd40 [ 59.708476] ip_local_deliver+0x43c/0x4e0 [ 59.712619] ip_rcv_finish+0x1253/0x16d0 [ 59.716677] ip_rcv+0x119d/0x16f0 [ 59.720134] __netif_receive_skb_core+0x47cf/0x4a80 [ 59.725150] process_backlog+0x62d/0xe20 [ 59.729212] net_rx_action+0x7c1/0x1a70 [ 59.733185] __do_softirq+0x56d/0x93d [ 59.736972] Uninit was created at: [ 59.740512] kmsan_internal_poison_shadow+0xb8/0x1b0 [ 59.745618] kmsan_kmalloc+0x94/0x100 [ 59.749417] kmem_cache_alloc+0xaab/0xb90 [ 59.753572] inet_reqsk_alloc+0xc4/0x7f0 [ 59.757633] dccp_v4_conn_request+0x5cc/0x1770 [ 59.762213] dccp_v6_conn_request+0x299/0x1880 [ 59.766798] dccp_rcv_state_process+0x2ea/0x2410 [ 59.771554] dccp_v4_do_rcv+0x229/0x340 [ 59.775529] dccp_v6_do_rcv+0x16d/0x1220 [ 59.779593] __sk_receive_skb+0x60e/0xf20 [ 59.783740] dccp_v4_rcv+0x24d4/0x2630 [ 59.787630] ip_local_deliver_finish+0x6ed/0xd40 [ 59.792382] ip_local_deliver+0x43c/0x4e0 [ 59.796534] ip_rcv_finish+0x1253/0x16d0 [ 59.800593] ip_rcv+0x119d/0x16f0 [ 59.804052] __netif_receive_skb_core+0x47cf/0x4a80 [ 59.809066] process_backlog+0x62d/0xe20 [ 59.813114] net_rx_action+0x7c1/0x1a70 [ 59.817075] __do_softirq+0x56d/0x93d [ 59.820855] ================================================================== [ 59.828190] Disabling lock debugging due to kernel taint [ 59.833628] Kernel panic - not syncing: panic_on_warn set ... [ 59.833628] [ 59.840974] CPU: 0 PID: 5300 Comm: syz-executor3 Tainted: G B 4.16.0+ #81 [ 59.849090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 59.858426] Call Trace: [ 59.861000] dump_stack+0x185/0x1d0 [ 59.864625] panic+0x39d/0x940 [ 59.867817] ? iptable_mangle_hook+0x5e5/0x720 [ 59.872378] kmsan_report+0x238/0x240 [ 59.876170] __msan_warning_32+0x6c/0xb0 [ 59.880220] iptable_mangle_hook+0x5e5/0x720 [ 59.884613] ? iptable_mangle_net_exit+0x130/0x130 [ 59.889528] nf_hook_slow+0x158/0x3d0 [ 59.893327] ip_queue_xmit+0x1d21/0x21c0 [ 59.897390] ? __ip_local_out+0x5b0/0x5b0 [ 59.901534] ? skb_checksum+0xec/0x120 [ 59.905418] ? skb_checksum+0x120/0x120 [ 59.909391] ? csum_partial_ext+0xa0/0xa0 [ 59.913531] ? ip_output+0x5c0/0x5c0 [ 59.917237] dccp_transmit_skb+0x15eb/0x1900 [ 59.921656] dccp_xmit_packet+0x814/0x9e0 [ 59.925809] dccp_write_xmit+0x20f/0x480 [ 59.929879] dccp_sendmsg+0x12ca/0x12d0 [ 59.933847] ? compat_dccp_getsockopt+0x190/0x190 [ 59.938670] inet_sendmsg+0x48d/0x740 [ 59.942463] ? security_socket_sendmsg+0x9e/0x210 [ 59.947300] ? inet_getname+0x500/0x500 [ 59.951256] ___sys_sendmsg+0xec0/0x1310 [ 59.955310] ? __fdget+0x4e/0x60 [ 59.958654] ? __fget_light+0x56/0x710 [ 59.962520] ? __fdget+0x4e/0x60 [ 59.965867] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 59.971209] ? __fget_light+0x6b9/0x710 [ 59.975177] SYSC_sendmsg+0x2a3/0x3d0 [ 59.978972] SyS_sendmsg+0x54/0x80 [ 59.982509] do_syscall_64+0x309/0x430 [ 59.986398] ? ___sys_sendmsg+0x1310/0x1310 [ 59.990722] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 59.995900] RIP: 0033:0x455259 [ 59.999082] RSP: 002b:00007f1a4473dc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 60.006782] RAX: ffffffffffffffda RBX: 00007f1a4473e6d4 RCX: 0000000000455259 [ 60.014045] RDX: 0000000000000000 RSI: 0000000020b76fc8 RDI: 0000000000000015 [ 60.021314] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 60.028576] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 60.035838] R13: 00000000000004f0 R14: 00000000006fa720 R15: 0000000000000000 [ 60.043652] Dumping ftrace buffer: [ 60.047174] (ftrace buffer empty) [ 60.050853] Kernel Offset: disabled [ 60.054453] Rebooting in 86400 seconds..