INIT: Entering runlevel: 2 [info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.10.1' (ECDSA) to the list of known hosts. 2018/04/07 02:17:04 fuzzer started 2018/04/07 02:17:05 dialing manager at 10.128.0.26:38639 2018/04/07 02:17:11 kcov=true, comps=false 2018/04/07 02:17:13 executing program 0: 2018/04/07 02:17:13 executing program 1: 2018/04/07 02:17:13 executing program 7: 2018/04/07 02:17:13 executing program 4: r0 = socket(0x2000000000000010, 0x803, 0x0) write(r0, &(0x7f0000000000)="240000001a0025f0806bd104feff001c020b49ff6e10b500000700eb0800030001000000", 0x24) 2018/04/07 02:17:13 executing program 2: perf_event_open(&(0x7f0000b5a000)={0x4000000002, 0x78, 0x1e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={&(0x7f0000001580)={0x10}, 0xc, &(0x7f00000015c0)={&(0x7f0000000140)={0x14, 0x22, 0x105, 0x0, 0x0, {0x1}}, 0x14}, 0x1}, 0x0) 2018/04/07 02:17:13 executing program 3: clock_gettime(0x0, &(0x7f0000000180)) rt_sigtimedwait(&(0x7f0000000100), &(0x7f0000000140), &(0x7f00000001c0), 0x8) r0 = syz_open_procfs(0x0, &(0x7f0000009ffb)='comm\x00') exit(0x0) perf_event_open(&(0x7f0000940000)={0x2, 0x78, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pread64(r0, &(0x7f0000000000)=""/193, 0xc1, 0x0) 2018/04/07 02:17:13 executing program 5: timer_create(0x3, &(0x7f0000009000)={0x4, 0x0, 0x1, @thr={&(0x7f0000055f2a), &(0x7f0000037f08)}}, &(0x7f000000affc)) timer_settime(0x0, 0x0, &(0x7f0000000180)={{}, {0x77359400}}, &(0x7f0000000140)) timer_gettime(0x0, &(0x7f0000000000)) 2018/04/07 02:17:13 executing program 6: r0 = socket(0x400020000000010, 0x2, 0x0) getsockopt$netlink(r0, 0x10e, 0xa, &(0x7f0000000040)=""/247, &(0x7f0000000140)=0xf7) syzkaller login: [ 43.085290] ip (3766) used greatest stack depth: 54672 bytes left [ 43.604481] ip (3812) used greatest stack depth: 54312 bytes left [ 44.592965] ip (3910) used greatest stack depth: 54200 bytes left [ 45.177906] ip (3963) used greatest stack depth: 54160 bytes left [ 46.633207] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 46.690647] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 46.738803] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 46.760926] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 46.783876] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 46.882845] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 46.926831] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 47.079875] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 55.409750] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 55.437134] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 55.445917] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 55.468716] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 55.535892] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 55.550770] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 55.584362] ip (4875) used greatest stack depth: 53976 bytes left [ 55.642120] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 55.851278] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 56.187951] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 56.194237] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 56.202269] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 56.225601] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 56.234971] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 56.241174] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 56.255516] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 56.269865] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 56.284628] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 56.305934] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 56.315476] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 56.321679] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 56.336185] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 56.368544] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 56.382611] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 56.397127] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 56.407688] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 56.426485] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 56.455840] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 56.464198] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 56.490090] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 56.813568] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 56.819837] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 56.830343] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready 2018/04/07 02:17:30 executing program 7: r0 = socket$inet_sctp(0x2, 0x1, 0x84) connect$inet(r0, &(0x7f000005eff0)={0x2, 0x4e20, @remote={0xac, 0x14, 0xffffffffffffffff, 0xbb}}, 0x10) listen(r0, 0x2) r1 = accept(r0, &(0x7f0000f06000)=ANY=[], &(0x7f00008f4000)) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000340), &(0x7f0000000380)=0x8) 2018/04/07 02:17:31 executing program 0: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000a00)='./cgroup.net\x00', 0x200002, 0x0) fchdir(r0) r1 = open(&(0x7f0000000040)='..', 0x0, 0x0) getdents(r1, &(0x7f0000000140)=""/161, 0x90) getdents(r1, &(0x7f0000000200)=""/100, 0x64) 2018/04/07 02:17:31 executing program 1: r0 = socket$inet6(0xa, 0x5, 0x0) sendto$inet6(r0, &(0x7f0000ff7000)="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", 0x76d, 0x0, &(0x7f0000ff7fe4)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xffffffffffffffff}, 0x2}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x40000000000007, &(0x7f0000fecffc), 0x4) poll(&(0x7f0000000000)=[{r0}], 0x1, 0x0) 2018/04/07 02:17:31 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x4) writev(r0, &(0x7f000051c000)=[{&(0x7f0000000140)="480000001400190d76a81014aed182f30284470080ffe00600000000000000a2bc5603ca0016087f89000000200000000101ff0000000309ff5bffff08c7e5ed5e00000000000000", 0x48}], 0x1) 2018/04/07 02:17:31 executing program 6: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000001fe8)={0xaa}) r1 = epoll_create1(0x0) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000019fe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) close(r1) r2 = memfd_create(&(0x7f0000a98000)='y#\x00W', 0x0) r3 = getpgrp(0x0) sched_setaffinity(r3, 0x8, &(0x7f0000c35000)=0x1) pwritev(r2, &(0x7f0000000000)=[{&(0x7f0000012000)="ca", 0x1}], 0x1, 0x0) write(r1, &(0x7f000014d000), 0x0) fsetxattr(r2, &(0x7f0000000040)=@known='system.posix_acl_access\x00', &(0x7f0000000080)='%\x00', 0x2, 0x0) close(r0) 2018/04/07 02:17:31 executing program 4: syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200077000f801", 0x17}], 0x0, &(0x7f0000000240)=ANY=[]) r0 = open(&(0x7f00000004c0)='./file0/file0\x00', 0x3fffa, 0x0) fstatfs(r0, &(0x7f0000000dc0)=""/4096) write$binfmt_elf32(r0, &(0x7f0000000500)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x20}, [{}]}, 0x58) write$binfmt_aout(r0, &(0x7f0000000580)={{}, "", [[], [], [], [], [], [], []]}, 0x720) 2018/04/07 02:17:31 executing program 7: renameat(0xffffffffffffffff, &(0x7f0000001240)='./file0\x00', 0xffffffffffffffff, &(0x7f00000013c0)='./file0\x00') clone(0x200, &(0x7f0000fbf000), &(0x7f0000744000), &(0x7f0000f8b000), &(0x7f00000d5000)) mknod(&(0x7f0000000080)='./file0\x00', 0x1040, 0x0) execve(&(0x7f0000f8aff8)='./file0\x00', &(0x7f00000affc0), &(0x7f0000000080)) r0 = syz_open_procfs(0x0, &(0x7f00000e0000)='stack\x00') readv(r0, &(0x7f000066dff0)=[{&(0x7f0000001500)=""/178, 0xb2}], 0x100000000000001a) readv(r0, &(0x7f00000012c0), 0x0) open$dir(&(0x7f00003e8ff8)='./file0\x00', 0x26102, 0x0) 2018/04/07 02:17:31 executing program 5: perf_event_open(&(0x7f0000348f88)={0x2, 0x78, 0x3e2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) prctl$seccomp(0x16, 0x1, &(0x7f0000000140)={0x0, &(0x7f0000000100)}) 2018/04/07 02:17:31 executing program 3: r0 = inotify_init1(0x0) fcntl$setown(r0, 0x8, 0xffffffffffffffff) fcntl$getownex(r0, 0x10, &(0x7f00000002c0)={0x0, 0x0}) ptrace$setopts(0x4206, r1, 0x0, 0x0) ptrace(0x4207, r1) wait4(r1, &(0x7f0000000000), 0x40000009, &(0x7f0000000040)) [ 58.594912] audit: type=1326 audit(1523067451.593:3): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=5101 comm="syz-executor5" exe="/root/syz-executor5" sig=9 arch=c000003e syscall=202 compat=0 ip=0x455259 code=0x0 2018/04/07 02:17:31 executing program 4: perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$hfs(&(0x7f00000000c0)='hfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000680)=[{&(0x7f0000000980), 0xfffffffffffffd1d}], 0x0, &(0x7f0000001980)) 2018/04/07 02:17:31 executing program 0: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000000)={'ip6gre0\x00', {0x2, 0x0, @multicast2=0xe0000002}}) 2018/04/07 02:17:31 executing program 5: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) perf_event_open(&(0x7f000001d000)={0x2, 0x78, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$nl_netfilter(r0, &(0x7f00009f5000)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f0000000000)={&(0x7f0000690000)={0x14, 0x0, 0x6, 0x1}, 0x14}, 0x1}, 0x0) [ 59.416661] ================================================================== [ 59.424067] BUG: KMSAN: uninit-value in kernel_text_address+0x248/0x3a0 [ 59.430807] CPU: 1 PID: 5145 Comm: syz-executor7 Not tainted 4.16.0+ #81 [ 59.437615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 59.446942] Call Trace: [ 59.449505] dump_stack+0x185/0x1d0 [ 59.453113] ? kernel_text_address+0x248/0x3a0 [ 59.457668] kmsan_report+0x142/0x240 [ 59.461444] __msan_warning_32+0x6c/0xb0 [ 59.465479] kernel_text_address+0x248/0x3a0 [ 59.469858] ? __schedule+0x674/0x730 [ 59.473631] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 59.478964] ? __schedule+0x674/0x730 [ 59.482739] __kernel_text_address+0x34/0xe0 [ 59.487120] ? __schedule+0x674/0x730 [ 59.490898] unwind_get_return_address+0x8c/0x130 [ 59.495719] __save_stack_trace+0x45c/0xa80 [ 59.500019] ? __schedule+0x674/0x730 [ 59.503805] ? __msan_poison_alloca+0x15c/0x1d0 [ 59.508449] ? save_stack_trace_tsk+0x58/0x2f0 [ 59.513015] save_stack_trace_tsk+0x258/0x2f0 [ 59.517500] proc_pid_stack+0x26a/0x470 [ 59.521451] proc_single_show+0x1af/0x300 [ 59.525574] ? proc_pid_wchan+0x250/0x250 [ 59.529697] ? proc_single_open+0x90/0x90 [ 59.533819] seq_read+0xc7d/0x2260 [ 59.537340] do_iter_read+0x880/0xd70 [ 59.541120] ? seq_open+0x360/0x360 [ 59.544723] do_readv+0x295/0x5f0 [ 59.548154] ? syscall_return_slowpath+0xe9/0x700 [ 59.552972] SYSC_readv+0x9b/0xb0 [ 59.556406] SyS_readv+0x56/0x80 [ 59.559748] do_syscall_64+0x309/0x430 [ 59.563610] ? vfs_readv+0x260/0x260 [ 59.567301] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 59.572461] RIP: 0033:0x455259 [ 59.575622] RSP: 002b:00007f9134a81c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 59.583301] RAX: ffffffffffffffda RBX: 00007f9134a826d4 RCX: 0000000000455259 [ 59.590545] RDX: 100000000000001a RSI: 000000002066dff0 RDI: 0000000000000013 [ 59.597787] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 59.605036] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 59.612284] R13: 000000000000048c R14: 00000000006f9dc0 R15: 0000000000000001 [ 59.619529] [ 59.621129] Uninit was stored to memory at: [ 59.625425] kmsan_internal_chain_origin+0x12b/0x210 [ 59.630502] __msan_chain_origin+0x69/0xc0 [ 59.634717] update_stack_state+0x959/0xa40 [ 59.639016] __unwind_start+0x335/0x630 [ 59.642971] __save_stack_trace+0x3e1/0xa80 [ 59.647268] save_stack_trace_tsk+0x258/0x2f0 [ 59.651739] proc_pid_stack+0x26a/0x470 [ 59.655685] proc_single_show+0x1af/0x300 [ 59.659807] seq_read+0xc7d/0x2260 [ 59.663322] do_iter_read+0x880/0xd70 [ 59.667096] do_readv+0x295/0x5f0 [ 59.670523] SYSC_readv+0x9b/0xb0 [ 59.673948] SyS_readv+0x56/0x80 [ 59.677285] do_syscall_64+0x309/0x430 [ 59.681149] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 59.686307] Local variable description: ----q.i@do_futex [ 59.691723] Variable was created at: [ 59.695412] do_futex+0x1d5/0x6ad0 [ 59.698924] SYSC_futex+0x3e1/0x810 [ 59.702518] ================================================================== [ 59.709844] Disabling lock debugging due to kernel taint [ 59.715262] Kernel panic - not syncing: panic_on_warn set ... [ 59.715262] [ 59.722595] CPU: 1 PID: 5145 Comm: syz-executor7 Tainted: G B 4.16.0+ #81 [ 59.730709] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 59.740040] Call Trace: [ 59.742607] dump_stack+0x185/0x1d0 [ 59.746209] panic+0x39d/0x940 [ 59.749388] ? kernel_text_address+0x248/0x3a0 [ 59.753944] kmsan_report+0x238/0x240 [ 59.757717] __msan_warning_32+0x6c/0xb0 [ 59.761751] kernel_text_address+0x248/0x3a0 [ 59.766136] ? __schedule+0x674/0x730 [ 59.769910] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 59.775243] ? __schedule+0x674/0x730 [ 59.779024] __kernel_text_address+0x34/0xe0 [ 59.783414] ? __schedule+0x674/0x730 [ 59.787199] unwind_get_return_address+0x8c/0x130 [ 59.792038] __save_stack_trace+0x45c/0xa80 [ 59.796335] ? __schedule+0x674/0x730 [ 59.800108] ? __msan_poison_alloca+0x15c/0x1d0 [ 59.804755] ? save_stack_trace_tsk+0x58/0x2f0 [ 59.809312] save_stack_trace_tsk+0x258/0x2f0 [ 59.813782] proc_pid_stack+0x26a/0x470 [ 59.817732] proc_single_show+0x1af/0x300 [ 59.821856] ? proc_pid_wchan+0x250/0x250 [ 59.825977] ? proc_single_open+0x90/0x90 [ 59.830102] seq_read+0xc7d/0x2260 [ 59.833621] do_iter_read+0x880/0xd70 [ 59.837401] ? seq_open+0x360/0x360 [ 59.841004] do_readv+0x295/0x5f0 [ 59.844442] ? syscall_return_slowpath+0xe9/0x700 [ 59.849259] SYSC_readv+0x9b/0xb0 [ 59.852688] SyS_readv+0x56/0x80 [ 59.856035] do_syscall_64+0x309/0x430 [ 59.859902] ? vfs_readv+0x260/0x260 [ 59.863592] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 59.868756] RIP: 0033:0x455259 [ 59.871916] RSP: 002b:00007f9134a81c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 59.879597] RAX: ffffffffffffffda RBX: 00007f9134a826d4 RCX: 0000000000455259 [ 59.886840] RDX: 100000000000001a RSI: 000000002066dff0 RDI: 0000000000000013 [ 59.894081] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 59.901322] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 59.908565] R13: 000000000000048c R14: 00000000006f9dc0 R15: 0000000000000001 [ 59.916225] Dumping ftrace buffer: [ 59.919740] (ftrace buffer empty) [ 59.923423] Kernel Offset: disabled [ 59.927021] Rebooting in 86400 seconds..