INIT: Entering runlevel: 2 [info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.63' (ECDSA) to the list of known hosts. 2018/04/16 23:49:17 parsed 1 programs 2018/04/16 23:49:17 executed programs: 0 syzkaller login: [ 33.876247] ip (3712) used greatest stack depth: 54672 bytes left [ 33.913127] ip (3717) used greatest stack depth: 54408 bytes left [ 34.584321] ip (3836) used greatest stack depth: 54200 bytes left [ 34.699012] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.705565] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.712975] device bridge_slave_0 entered promiscuous mode [ 34.806467] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.813371] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.837396] device bridge_slave_1 entered promiscuous mode [ 34.882385] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.888960] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.897787] ip (3882) used greatest stack depth: 53992 bytes left [ 34.909797] device bridge_slave_0 entered promiscuous mode [ 34.958564] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.965125] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.989123] device bridge_slave_0 entered promiscuous mode [ 35.000877] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 35.008718] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.015184] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.033386] device bridge_slave_0 entered promiscuous mode [ 35.051865] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.058366] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.067095] device bridge_slave_1 entered promiscuous mode [ 35.084111] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 35.093352] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.099874] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.111174] device bridge_slave_0 entered promiscuous mode [ 35.128769] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.135308] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.145614] device bridge_slave_1 entered promiscuous mode [ 35.158396] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 35.165888] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.172421] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.182250] device bridge_slave_0 entered promiscuous mode [ 35.190639] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.197127] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.216503] device bridge_slave_0 entered promiscuous mode [ 35.229544] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.236104] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.243520] device bridge_slave_1 entered promiscuous mode [ 35.260761] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 35.270677] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 35.280305] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.286780] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.303091] device bridge_slave_0 entered promiscuous mode [ 35.318918] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.325434] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.337675] device bridge_slave_1 entered promiscuous mode [ 35.346444] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.352940] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.361249] device bridge_slave_1 entered promiscuous mode [ 35.371283] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 35.404586] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 35.411732] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.418240] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.442013] device bridge_slave_1 entered promiscuous mode [ 35.452516] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.459024] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.474714] device bridge_slave_1 entered promiscuous mode [ 35.483572] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 35.493173] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 35.511404] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 35.528591] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 35.570093] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 35.585890] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 35.605186] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 35.649125] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 35.677539] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 35.703349] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 35.799429] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 35.810131] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 35.927380] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 36.007091] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 36.027964] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 36.066426] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 36.102921] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 36.160927] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 36.181881] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 36.189831] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 36.241673] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 36.249188] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 36.310962] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 36.336199] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 36.345904] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 36.370568] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 36.409331] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 36.469293] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 36.565664] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 36.579435] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 36.586684] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 36.601752] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 36.648419] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 36.692408] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 36.699615] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 36.713779] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 36.737169] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 36.752530] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 36.771475] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 36.779118] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 36.787133] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 36.798711] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 36.837635] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 36.851508] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 36.863472] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 36.873349] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 36.884707] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 36.912339] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 36.929406] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 36.938107] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 36.945780] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 36.953617] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 36.967371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 36.997383] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 37.011422] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 37.020914] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 37.057826] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 37.067375] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 37.081717] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 37.104746] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 37.122863] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 37.130789] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 37.137971] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 37.159915] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 37.182791] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 37.199238] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 37.207427] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 37.215540] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 37.224831] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 37.237330] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 37.246523] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 37.259865] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 37.274801] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 37.287399] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 37.298949] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 37.306058] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 37.338853] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 37.372153] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 37.382095] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 37.389833] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 37.397805] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 37.405523] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 37.413541] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 37.430595] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 37.449128] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 37.469399] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 37.510346] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 37.522114] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 37.540753] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 38.116390] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.122916] bridge0: port 2(bridge_slave_1) entered forwarding state [ 38.129815] bridge0: port 1(bridge_slave_0) entered blocking state [ 38.136271] bridge0: port 1(bridge_slave_0) entered forwarding state [ 38.156142] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 38.306456] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.312967] bridge0: port 2(bridge_slave_1) entered forwarding state [ 38.319815] bridge0: port 1(bridge_slave_0) entered blocking state [ 38.326296] bridge0: port 1(bridge_slave_0) entered forwarding state [ 38.358794] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 38.456150] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 38.464487] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 38.493138] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.499624] bridge0: port 2(bridge_slave_1) entered forwarding state [ 38.506468] bridge0: port 1(bridge_slave_0) entered blocking state [ 38.512919] bridge0: port 1(bridge_slave_0) entered forwarding state [ 38.525479] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 38.535861] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.542299] bridge0: port 2(bridge_slave_1) entered forwarding state [ 38.549156] bridge0: port 1(bridge_slave_0) entered blocking state [ 38.555581] bridge0: port 1(bridge_slave_0) entered forwarding state [ 38.565644] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 38.581455] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.587945] bridge0: port 2(bridge_slave_1) entered forwarding state [ 38.594824] bridge0: port 1(bridge_slave_0) entered blocking state [ 38.601294] bridge0: port 1(bridge_slave_0) entered forwarding state [ 38.619405] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 38.630923] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.637369] bridge0: port 2(bridge_slave_1) entered forwarding state [ 38.644229] bridge0: port 1(bridge_slave_0) entered blocking state [ 38.650693] bridge0: port 1(bridge_slave_0) entered forwarding state [ 38.662851] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 38.754684] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.761193] bridge0: port 2(bridge_slave_1) entered forwarding state [ 38.768017] bridge0: port 1(bridge_slave_0) entered blocking state [ 38.774485] bridge0: port 1(bridge_slave_0) entered forwarding state [ 38.788641] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 38.911022] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.917570] bridge0: port 2(bridge_slave_1) entered forwarding state [ 38.924427] bridge0: port 1(bridge_slave_0) entered blocking state [ 38.930896] bridge0: port 1(bridge_slave_0) entered forwarding state [ 38.941908] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 39.520322] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 39.531680] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 39.548858] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 39.556078] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 39.563856] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 39.571575] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 40.862937] ================================================================== [ 40.870368] BUG: KMSAN: uninit-value in __list_add_valid+0x1a2/0x450 [ 40.876862] CPU: 0 PID: 3587 Comm: syz-executor5 Not tainted 4.16.0+ #84 [ 40.883740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 40.893089] Call Trace: [ 40.895672] dump_stack+0x185/0x1d0 [ 40.899284] ? __list_add_valid+0x1a2/0x450 [ 40.903588] kmsan_report+0x142/0x240 [ 40.907373] __msan_warning_32+0x6c/0xb0 [ 40.911419] __list_add_valid+0x1a2/0x450 [ 40.915557] enqueue_task_fair+0xe06/0x43a0 [ 40.919867] ? update_load_avg+0x2c20/0x2c20 [ 40.924260] wake_up_new_task+0xbe6/0x1700 [ 40.928483] _do_fork+0x765/0xf00 [ 40.931922] SYSC_clone+0xf6/0x110 [ 40.935448] SyS_clone+0x77/0xa0 [ 40.938799] do_syscall_64+0x309/0x430 [ 40.942669] ? sys_vfork+0x70/0x70 [ 40.946195] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 40.951366] RIP: 0033:0x41f149 [ 40.954537] RSP: 002b:0000000000a3fad0 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 40.962227] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000041f149 [ 40.969478] RDX: 0000000000a3fadc RSI: 0000000000000000 RDI: 0000000000100011 [ 40.977088] RBP: 0000000000a3fc80 R08: 0000000000a44a60 R09: 000000000000002a [ 40.984339] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000a3feb0 [ 40.991588] R13: 0000000000a3fe28 R14: 0000000000000000 R15: 0000000000000000 [ 40.998844] [ 41.000453] Uninit was stored to memory at: [ 41.004760] kmsan_internal_chain_origin+0x12b/0x210 [ 41.009847] __msan_chain_origin+0x69/0xc0 [ 41.014065] enqueue_task_fair+0x2962/0x43a0 [ 41.018455] try_to_wake_up+0x13cc/0x20a0 [ 41.022583] wake_up_process+0x34/0x40 [ 41.026454] swake_up+0xfb/0x3b0 [ 41.029805] rcu_report_qs_rnp+0x767/0x880 [ 41.034021] rcu_process_callbacks+0x7b0/0x2070 [ 41.038675] __do_softirq+0x56d/0x93d [ 41.042453] Local variable description: ----__wait111@rcu_gp_kthread [ 41.048921] Variable was created at: [ 41.052617] rcu_gp_kthread+0x9c/0x38d0 [ 41.056572] kthread+0x539/0x720 [ 41.059916] ================================================================== [ 41.067250] Disabling lock debugging due to kernel taint [ 41.072679] Kernel panic - not syncing: panic_on_warn set ... [ 41.072679] [ 41.080027] CPU: 0 PID: 3587 Comm: syz-executor5 Tainted: G B 4.16.0+ #84 [ 41.088146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 41.097483] Call Trace: [ 41.100053] dump_stack+0x185/0x1d0 [ 41.103661] panic+0x39d/0x940 [ 41.106853] ? __list_add_valid+0x1a2/0x450 [ 41.111155] kmsan_report+0x238/0x240 [ 41.114941] __msan_warning_32+0x6c/0xb0 [ 41.118984] __list_add_valid+0x1a2/0x450 [ 41.123118] enqueue_task_fair+0xe06/0x43a0 [ 41.127431] ? update_load_avg+0x2c20/0x2c20 [ 41.131819] wake_up_new_task+0xbe6/0x1700 [ 41.136045] _do_fork+0x765/0xf00 [ 41.139573] SYSC_clone+0xf6/0x110 [ 41.143096] SyS_clone+0x77/0xa0 [ 41.146451] do_syscall_64+0x309/0x430 [ 41.150320] ? sys_vfork+0x70/0x70 [ 41.153846] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 41.159015] RIP: 0033:0x41f149 [ 41.162186] RSP: 002b:0000000000a3fad0 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 41.169876] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000041f149 [ 41.177126] RDX: 0000000000a3fadc RSI: 0000000000000000 RDI: 0000000000100011 [ 41.184376] RBP: 0000000000a3fc80 R08: 0000000000a44a60 R09: 000000000000002a [ 41.191628] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000a3feb0 [ 41.198880] R13: 0000000000a3fe28 R14: 0000000000000000 R15: 0000000000000000 [ 42.325476] Shutting down cpus with NMI [ 42.341144] Dumping ftrace buffer: [ 42.344669] (ftrace buffer empty) [ 42.348357] Kernel Offset: disabled [ 42.351973] Rebooting in 86400 seconds..