INIT: Entering runlevel: 2
[[36minfo[39;49m] Using makefile-style concurrent boot in runlevel 2.
[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.58' (ECDSA) to the list of known hosts.
2018/04/16 15:34:15 fuzzer started
2018/04/16 15:34:16 dialing manager at 10.128.0.26:41213
2018/04/16 15:34:22 kcov=true, comps=false
2018/04/16 15:34:26 executing program 0:
clone(0x0, &(0x7f0000659ffe), &(0x7f00003c6ffc), &(0x7f0000a4a000), &(0x7f00000001c0))
mmap(&(0x7f0000000000/0x53000)=nil, 0x53000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
wait4(0x0, &(0x7f0000000100), 0x40000002, 0x0)

2018/04/16 15:34:26 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f000000d000)={0xa, 0x4e20}, 0x1c)
connect$inet6(r0, &(0x7f000000cfe4)={0xa, 0x4e20}, 0x1c)
sendmsg(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000ff0), 0x0, &(0x7f0000000000)}, 0xc100)
recvmsg(r0, &(0x7f0000000400)={&(0x7f0000000000)=@nfc, 0x80, &(0x7f0000000580)=[{&(0x7f0000000480)=""/143, 0x8f}], 0x1, &(0x7f0000000100)=""/128, 0x80}, 0x0)
sendmsg(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000001000)="8e86a4b9500a1139a0d93a78de7ed00ae239537b41a4eacfcfd438dfbe84ef20bd7e66cfb9bde86f5b1d1bae840e6c373fd2d58909d8ac8f1aca1b6e95b92948d4525d", 0x43}], 0x1, &(0x7f0000002000)}, 0x8000)
syz_emit_ethernet(0x56, &(0x7f00000001c0)={@random="13b9d84bb6c7", @empty, [], {@canfd={0xd, {{}, 0x0, 0x0, 0x0, 0x0, "e36099aa1e3ad15fe68608a81adc85573dcdffd0e138f12cd25d0f32f694b4eb5fa7093865fcbfb5583306dfd58e88d1c96456702d23024b8ad5b31e364f6259"}}}}, &(0x7f0000000240))
sendmsg(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000002ff0)=[{&(0x7f0000000040)="bce5", 0x2}], 0x1, &(0x7f000000ae80)}, 0x0)

2018/04/16 15:34:26 executing program 7:
capset(&(0x7f00000fc000)={0x19980330}, &(0x7f000047efe8))
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/pfkey\x00', 0x1c0, 0x0)

2018/04/16 15:34:26 executing program 4:

2018/04/16 15:34:26 executing program 2:

2018/04/16 15:34:26 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @dev={[0xaa, 0xaa, 0xaa, 0xaa]}, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, @rand_addr, @multicast1=0xe0000001}, @igmp}}}}, &(0x7f00003b5000))

2018/04/16 15:34:26 executing program 5:
ptrace$setopts(0x4206, 0x0, 0x0, 0x0)

2018/04/16 15:34:26 executing program 6:
syz_emit_ethernet(0x66, &(0x7f0000101000)={@random="cd390b081bf2", @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [], {@ipv6={0x86dd, {0x0, 0x6, "02290f", 0x7, 0x3a, 0x0, @ipv4={[], [0xff, 0xff], @rand_addr}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "9433df", 0x0, 0x0, 0x0, @loopback={0x0, 0x1}, @dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb]}}}}}}}}, 0x0)

syzkaller login: [   45.071511] ip (3763) used greatest stack depth: 54688 bytes left
[   45.375777] ip (3790) used greatest stack depth: 54672 bytes left
[   45.668012] ip (3816) used greatest stack depth: 54312 bytes left
[   46.420863] ip (3890) used greatest stack depth: 54200 bytes left
[   46.944906] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.951563] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.999276] device bridge_slave_0 entered promiscuous mode
[   47.057426] ip (3934) used greatest stack depth: 53960 bytes left
[   47.132001] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.138616] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.168384] device bridge_slave_0 entered promiscuous mode
[   47.192425] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.199011] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.213476] device bridge_slave_0 entered promiscuous mode
[   47.243447] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.250803] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.279516] device bridge_slave_0 entered promiscuous mode
[   47.296694] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.303349] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.327069] device bridge_slave_1 entered promiscuous mode
[   47.337190] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.343750] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.352953] device bridge_slave_0 entered promiscuous mode
[   47.373251] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.379833] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.409548] device bridge_slave_0 entered promiscuous mode
[   47.438420] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.444982] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.456593] device bridge_slave_1 entered promiscuous mode
[   47.464646] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.471209] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.491409] device bridge_slave_1 entered promiscuous mode
[   47.504919] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.511567] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.534764] device bridge_slave_0 entered promiscuous mode
[   47.555555] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   47.564647] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.571198] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.603659] device bridge_slave_1 entered promiscuous mode
[   47.620952] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.627539] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.654240] device bridge_slave_1 entered promiscuous mode
[   47.672500] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.679104] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.703661] device bridge_slave_0 entered promiscuous mode
[   47.729290] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   47.736797] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.743369] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.767707] device bridge_slave_1 entered promiscuous mode
[   47.778340] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   47.787297] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.793862] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.817412] device bridge_slave_1 entered promiscuous mode
[   47.833632] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   47.841492] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   47.853913] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   47.906497] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.913162] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.944200] device bridge_slave_1 entered promiscuous mode
[   47.967008] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   47.996128] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   48.040918] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   48.056116] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   48.070112] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   48.081922] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   48.174019] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   48.237249] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   48.278274] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   48.396865] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   48.824460] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   49.067987] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   49.091207] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   49.148648] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   49.164702] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   49.202878] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   49.317481] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   49.346533] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   49.363235] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   49.378260] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   49.404120] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   49.419622] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   49.539580] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   49.566613] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   49.606708] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   49.731138] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   50.179421] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   50.413116] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   50.422695] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   50.434369] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   50.466346] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   50.498327] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   50.650537] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   50.660717] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   50.678259] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   50.694427] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   50.708330] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   50.728415] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   50.735815] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   50.756654] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   50.803387] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   50.828997] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   50.870605] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   50.883159] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   50.900760] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   50.926924] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   50.939315] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   50.962840] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   50.999320] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   51.007899] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   51.024674] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   51.033728] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   51.042463] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   51.054439] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   51.090686] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   51.115609] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   51.135179] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   51.147912] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   51.157873] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   51.170109] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   51.177477] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   51.189886] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   51.219705] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   51.242280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   51.260721] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   51.275647] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   51.296419] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   51.307403] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   51.332234] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   51.347898] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   51.355891] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   51.366897] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   51.379796] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   51.389181] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   51.402853] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   51.426643] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   51.438374] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   51.445833] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   51.454071] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   51.461390] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   51.491910] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   51.542828] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   51.585887] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   51.604700] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   51.622906] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   51.638388] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   51.646463] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   51.718301] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   51.725516] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   51.740812] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   53.710294] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.716844] bridge0: port 2(bridge_slave_1) entered forwarding state
[   53.723804] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.730317] bridge0: port 1(bridge_slave_0) entered forwarding state
[   53.744132] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   53.759855] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   53.776558] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.783148] bridge0: port 2(bridge_slave_1) entered forwarding state
[   53.790015] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.796507] bridge0: port 1(bridge_slave_0) entered forwarding state
[   53.805262] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   53.817670] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.824173] bridge0: port 2(bridge_slave_1) entered forwarding state
[   53.831125] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.837634] bridge0: port 1(bridge_slave_0) entered forwarding state
[   53.893405] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   53.912224] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.918783] bridge0: port 2(bridge_slave_1) entered forwarding state
[   53.925715] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.932240] bridge0: port 1(bridge_slave_0) entered forwarding state
[   53.990171] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   54.011219] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.017752] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.024644] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.031161] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.049649] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   54.060094] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.066582] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.073427] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.079933] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.145857] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   54.158707] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.165237] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.172181] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.178684] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.241594] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   54.262307] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.268839] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.277645] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.284221] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.332607] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   54.816500] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   54.831925] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   54.867718] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   54.900724] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   54.919821] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   54.934765] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   54.943334] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   63.756341] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   63.799861] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   63.844851] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   63.936357] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   64.080103] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   64.221476] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   64.313505] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   64.365688] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   64.603165] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   64.609495] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   64.621831] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   64.732637] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   64.742491] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   64.748921] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   64.759625] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   64.793836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   64.823620] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   64.865971] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   64.873550] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   64.887798] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   64.948452] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   64.955023] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   64.972875] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   65.117855] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   65.124248] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   65.135327] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   65.356452] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   65.362855] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   65.374749] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   65.403375] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   65.416237] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   65.433981] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
2018/04/16 15:34:54 executing program 6:
r0 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
r1 = open(&(0x7f00009e1000)='./file0\x00', 0x8040, 0x0)
rt_sigprocmask(0x0, &(0x7f0000032ff8), 0x0, 0x8)
truncate(&(0x7f000037eff8)='./file0\x00', 0x0)
rt_sigsuspend(&(0x7f00009b2000), 0x8)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000))
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x2, 0x7, 0x0, 0x7, 0x2}, 0x10}, 0x1}, 0x0)
sendmsg$key(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x2, 0x7, 0x0, 0x7, 0x2}, 0x10}, 0x1}, 0x0)
ioctl$sock_FIOSETOWN(r1, 0x8901, &(0x7f0000000040)=r0)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(0xffffffffffffffff, 0x40042409, 0x1)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000080)={0x0, @in6={{0xa, 0x4e22, 0x0, @mcast2={0xff, 0x2, [], 0x1}, 0x5}}, 0x3f, 0x7, 0x0, 0x8, 0xb8}, &(0x7f0000000140)=0x98)
open(&(0x7f00000002c0)='./file0\x00', 0x2000, 0x0)
tkill(r0, 0x1000000000016)

[   70.880908] capability: warning: `syz-executor7' uses 32-bit capabilities (legacy support in use)
2018/04/16 15:34:55 executing program 2:

2018/04/16 15:34:55 executing program 7:

[   71.947604] ==================================================================
[   71.955055] BUG: KMSAN: uninit-value in csum_partial_copy_to_user+0x450/0x500
[   71.962326] CPU: 1 PID: 5751 Comm: syz-executor1 Not tainted 4.16.0+ #84
[   71.969155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   71.978620] Call Trace:
[   71.981223]  dump_stack+0x185/0x1d0
[   71.984864]  ? csum_partial_copy_to_user+0x450/0x500
[   71.990712]  kmsan_report+0x142/0x240
[   71.994513]  __msan_warning_32+0x6c/0xb0
[   71.998574]  csum_partial_copy_to_user+0x450/0x500
[   72.003555]  csum_and_copy_to_iter+0x3dc/0x2140
[   72.008235]  ? kmsan_set_origin_inline+0x6b/0x120
[   72.013087]  ? __msan_poison_alloca+0x15c/0x1d0
[   72.017784]  skb_copy_and_csum_datagram+0x6d2/0x1080
[   72.022915]  skb_copy_and_csum_datagram_msg+0x557/0x960
[   72.028297]  udpv6_recvmsg+0xc65/0x29e0
[   72.032276]  ? udp6_lib_lookup_skb+0x240/0x240
[   72.036846]  inet_recvmsg+0x4c2/0x5f0
[   72.040659]  sock_recvmsg+0x1d0/0x230
[   72.044470]  ? inet_sendpage+0x8c0/0x8c0
[   72.048527]  ___sys_recvmsg+0x3fb/0x810
[   72.052521]  ? __fget_light+0x56/0x710
[   72.056411]  ? __fdget+0x4e/0x60
[   72.059778]  ? __msan_metadata_ptr_for_load_1+0x10/0x20
[   72.065123]  ? __fget_light+0x6b9/0x710
[   72.069110]  SYSC_recvmsg+0x298/0x3c0
[   72.072907]  SyS_recvmsg+0x54/0x80
[   72.076447]  do_syscall_64+0x309/0x430
[   72.080336]  ? ___sys_recvmsg+0x810/0x810
[   72.084491]  entry_SYSCALL_64_after_hwframe+0x3d/0xa2
[   72.089690] RIP: 0033:0x455319
[   72.092871] RSP: 002b:00007f5c39acdc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[   72.100575] RAX: ffffffffffffffda RBX: 00007f5c39ace6d4 RCX: 0000000000455319
[   72.107832] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000013
[   72.115096] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[   72.122372] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[   72.129670] R13: 0000000000000496 R14: 00000000006f9eb0 R15: 0000000000000000
[   72.136946] 
[   72.138561] Uninit was created at:
[   72.142093]  kmsan_alloc_meta_for_pages+0x161/0x3a0
[   72.147097]  kmsan_alloc_page+0x82/0xe0
[   72.151067]  __alloc_pages_nodemask+0xf5b/0x5dc0
[   72.155827]  alloc_pages_current+0x6b5/0x970
[   72.160246]  skb_page_frag_refill+0x3ba/0x5e0
[   72.164729]  sk_page_frag_refill+0xa4/0x340
[   72.169042]  __ip6_append_data+0x1a20/0x4bb0
[   72.173443]  ip6_append_data+0x40e/0x6b0
[   72.177518]  udpv6_sendmsg+0xfd5/0x45b0
[   72.181495]  inet_sendmsg+0x48d/0x740
[   72.185284]  ___sys_sendmsg+0xec0/0x1310
[   72.189330]  SYSC_sendmsg+0x2a3/0x3d0
[   72.193122]  SyS_sendmsg+0x54/0x80
[   72.196658]  do_syscall_64+0x309/0x430
[   72.200542]  entry_SYSCALL_64_after_hwframe+0x3d/0xa2
[   72.205735] ==================================================================
[   72.213083] Disabling lock debugging due to kernel taint
[   72.218521] Kernel panic - not syncing: panic_on_warn set ...
[   72.218521] 
[   72.225917] CPU: 1 PID: 5751 Comm: syz-executor1 Tainted: G    B            4.16.0+ #84
[   72.234053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   72.243411] Call Trace:
[   72.245998]  dump_stack+0x185/0x1d0
[   72.249613]  panic+0x39d/0x940
[   72.252814]  ? csum_partial_copy_to_user+0x450/0x500
[   72.257907]  kmsan_report+0x238/0x240
[   72.261695]  __msan_warning_32+0x6c/0xb0
[   72.265757]  csum_partial_copy_to_user+0x450/0x500
[   72.270719]  csum_and_copy_to_iter+0x3dc/0x2140
[   72.275425]  ? kmsan_set_origin_inline+0x6b/0x120
[   72.280273]  ? __msan_poison_alloca+0x15c/0x1d0
[   72.284956]  skb_copy_and_csum_datagram+0x6d2/0x1080
[   72.290087]  skb_copy_and_csum_datagram_msg+0x557/0x960
[   72.295454]  udpv6_recvmsg+0xc65/0x29e0
[   72.299443]  ? udp6_lib_lookup_skb+0x240/0x240
[   72.304018]  inet_recvmsg+0x4c2/0x5f0
[   72.307822]  sock_recvmsg+0x1d0/0x230
[   72.311608]  ? inet_sendpage+0x8c0/0x8c0
[   72.315655]  ___sys_recvmsg+0x3fb/0x810
[   72.319619]  ? __fget_light+0x56/0x710
[   72.323489]  ? __fdget+0x4e/0x60
[   72.326840]  ? __msan_metadata_ptr_for_load_1+0x10/0x20
[   72.332187]  ? __fget_light+0x6b9/0x710
[   72.336169]  SYSC_recvmsg+0x298/0x3c0
[   72.339981]  SyS_recvmsg+0x54/0x80
[   72.343529]  do_syscall_64+0x309/0x430
[   72.347414]  ? ___sys_recvmsg+0x810/0x810
[   72.351567]  entry_SYSCALL_64_after_hwframe+0x3d/0xa2
[   72.356768] RIP: 0033:0x455319
[   72.359952] RSP: 002b:00007f5c39acdc68 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[   72.367657] RAX: ffffffffffffffda RBX: 00007f5c39ace6d4 RCX: 0000000000455319
[   72.374913] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000013
[   72.382171] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[   72.389434] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[   72.396691] R13: 0000000000000496 R14: 00000000006f9eb0 R15: 0000000000000000
[   72.404524] Dumping ftrace buffer:
[   72.408057]    (ftrace buffer empty)
[   72.411760] Kernel Offset: disabled
[   72.415375] Rebooting in 86400 seconds..