INIT: Entering runlevel: 2 [info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.38' (ECDSA) to the list of known hosts. 2018/04/06 23:30:29 fuzzer started 2018/04/06 23:30:29 dialing manager at 10.128.0.26:38639 2018/04/06 23:30:35 kcov=true, comps=false 2018/04/06 23:30:38 executing program 0: capset(&(0x7f0000000200)={0x20071026}, &(0x7f0000001fe8)) mq_open(&(0x7f0000000000)='-$\x00', 0x0, 0x0, &(0x7f0000664fc0)) 2018/04/06 23:30:38 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000ed4000)=0x7b, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='highspeed\x00', 0xd3ad464c7ef770c9) sendto$inet(r0, &(0x7f0000617fc9), 0x84, 0x20000000, &(0x7f0000deaff0)={0x2, 0x4e23, @loopback=0x7f000001}, 0x10) sendmsg(r0, &(0x7f000009cfe4)={&(0x7f000009ffa8)=@alg={0x26, 'aead\x00', 0x0, 0x0, 'pcrypt(pcrypt(rfc4106(gcm(aes))))\x00'}, 0x80, &(0x7f0000398000)=[{&(0x7f0000697000)="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", 0x22c}], 0x1}, 0x0) 2018/04/06 23:30:38 executing program 7: r0 = socket$inet6(0xa, 0x1, 0x8010000400000084) setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000000)={0x0, 0x0, 0x0, 0xffffffffffff8001}, 0xb) sendto$inet6(r0, &(0x7f00009f1000)='G', 0x1, 0x0, &(0x7f0000108fe4)={0xa, 0x0, 0x0, @loopback={0x0, 0x1}}, 0x1c) recvmmsg(r0, &(0x7f0000001800)=[{{&(0x7f0000001340)=@un=@abs, 0x80, &(0x7f0000001780)}}], 0x1, 0x2000, &(0x7f0000001900)) 2018/04/06 23:30:38 executing program 2: mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0xfffffffffffffffc, 0x4d031, 0xffffffffffffffff, 0x0) 2018/04/06 23:30:38 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x4) write(r0, &(0x7f0000000040)="290000001400070002ffffffea08e0eb2b0010e2dfa4478be2060000c539050fc544858d3600000000", 0x29) 2018/04/06 23:30:38 executing program 4: r0 = creat(&(0x7f000009aff8)='./file0\x00', 0x0) fgetxattr(r0, &(0x7f0000000000)=@known='system.posix_acl_default\x00', &(0x7f00000000c0)=""/112, 0x70) 2018/04/06 23:30:38 executing program 5: syz_mount_image$vfat(&(0x7f0000000140)='vfat\x00', &(0x7f00000001c0)='./file0//ile0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000240)={[{@check_strict='check=strict', 0x2c}]}) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000240)=ANY=[]) creat(&(0x7f00000000c0)='./file0//ile0/file0/file1\x00', 0x0) lstat(&(0x7f0000000200)='./file0//ile0\x00', &(0x7f0000000700)) 2018/04/06 23:30:38 executing program 6: syz_mount_image$xfs(&(0x7f0000004b40)='xfs\x00', &(0x7f0000004b80)='./file0\x00', 0x0, 0x0, &(0x7f0000004cc0), 0x0, &(0x7f0000004d40)={'nouuid,', {[{@logbsize={'logbsize', 0x3d, [0x31]}, 0x2c}]}}) syzkaller login: [ 41.534895] ip (3750) used greatest stack depth: 54672 bytes left [ 42.978555] ip (3882) used greatest stack depth: 54560 bytes left [ 43.207270] ip (3903) used greatest stack depth: 54200 bytes left [ 43.488764] ip (3926) used greatest stack depth: 53656 bytes left [ 45.169299] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 45.229924] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 45.411205] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 45.426129] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 45.472091] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 45.538298] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 45.696584] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 45.735935] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 54.315626] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 54.375165] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 54.477567] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 54.490803] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 54.546247] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 54.686749] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 54.817156] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 54.897180] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 55.065669] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 55.071979] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 55.081986] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 55.123227] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 55.129576] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 55.146654] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 55.310499] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 55.316841] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 55.329740] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 55.352213] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 55.366913] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 55.378418] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 55.415220] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 55.424486] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 55.454893] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 55.526216] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 55.532520] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 55.548765] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 55.636729] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 55.643137] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 55.653589] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 55.752862] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 55.761333] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 55.777125] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready 2018/04/06 23:30:55 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000683ff4)={@multicast2=0xe0000002, @loopback=0x7f000001}, 0xc) setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x30, &(0x7f0000000540)=ANY=[@ANYBLOB="010000000000000002000000e0000002000000000000000000000000000000000000000000000011f2a6720000000000000000004ef8148f3f4fe68c0000000000000000000000faffffff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007cdbb7953b000000000000000000000000000000000100000002000000ffffffff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e207430fae366885730000000000000000000000000000000090ad1f71e7dc72ea0d915d00000000000002000000000000000000006ade627fa0160c7bcfbad429b7175f9b3741b10d7743f49b8723eab14a067f72152945bde6b74741878df60a17bbba122ba2b9a3c85185a7f2ec4ee5c4e227a1857ca0b371308268d2961373ad41741f529a431f59d0aaac6f54411ea80af8c7ec63ddcec41a6148b9afa985ba3b6de336ad1a208cccca4eb256ee2804639a460df6bd37c4d5d18f99e7dd7571ae53d9bcd9d09eac192c23cd234685a0dcc65e0a9a179f674a9eb2f21797c16e330e126dd5e246c93228900d88570924504ec3655b8ace5693d9780100000000000000ea4978220eeb97c088531645733640cf9a2db1c9286fdf06f5"], 0x1) setsockopt$inet_group_source_req(r0, 0x0, 0x2c, &(0x7f00000001c0)={0x1, {{0x2, 0x0, @multicast2=0xe0000002}}, {{0x2, 0x0, @broadcast=0xffffffff}}}, 0x108) 2018/04/06 23:30:55 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000ed4000)=0x7b, 0x4) bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000d26000)={0x1, &(0x7f0000818000)=[{0x6, 0x0, 0x0, 0x100}]}, 0x10) sendto$inet(r0, &(0x7f0000fd0000), 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x4e23, @loopback=0x7f000001}, 0x10) sendto$inet(r0, &(0x7f0000002080)="a84d37e02541311605dfd2b618dd5a6c4a98e1e462517e6fc76c28a56eb41280956dc030a85cf7f208373b0c88e00df15b93341b7fb6512ec7a27c6a205fb0e1b03eea319fdef8ba7fdfcc911e0bfc195b73ab840218b55a53db87760aa2806817a125a0798b5d9ba204957bda9ed9b1e2800844227d2e8c48f9fced005befd3763ccbe9cfe5c2c42b2c5355270bfd68dfe1b7a7a8c1ecd9074c5b7529dc589f3df77c32638cb75909b5b5987266a25a4707786b70406444f220da3f045ed3eb453f40e9c292491d30430ec8adf8b7ad48b8017af70fff2920a38e5e4edb345f99de13eb24d6d2846df284f7ef5b32cc4dd25d560289942e5f3c9140cc8894d74f470e2ea60fa44f96e6b9e3def85d62a4f133be4e581d96b12d8122a81a7e130ceab6555fa113e7b4d3857a09f4e6420485b2d8af63a9a1bbf0c80dd9360af0397b12dee3459c0c2d9d465f4925406ba6ddef7ec457860276d68e406241d53b28b96bb81763f33d85a7f38fae5e1d831a7ddf90f9c61dded1dfade871891b20c44340dd22c1136ee8349f820c384ebeca8d5ee2c9dc7598ad6f50202764f55788595b5d69e18c5479456e0efb49ef51f425c94b9613c1dfdf7fa518c800b1f0b4fbd1ca99f8f49b8efd175721853ebb34e485e41be77ca07d34560ef671e2854dd6df59701d94ccf4d36b25f28cf25d1b20dff76bb3cdf2af18f817d7fe9de58e01b4c24af03926b4da5e761fd163a078305e3fbb5604d21ece77ed0ec0c650034fcb230cfe3485a48e5c82f06d25ef3d4145a76f8e6562b7f4f7c788aac524dca7d02acee29b7bd2bc6a75a199e9fe10f54f8b0c76bb6dfe8926d8502fd4e8b9ddbe14c0f56e8be1488da71ebdad1fd40a9ece0a96d3baaaad4c6244c1dfb3f1dbae88ecf1b825150deb35c87f7a76b4f95ebf9474f0db11649fbfe2bc19fffcb4bffdc1c196f57779016f2c237d51cb33dd5d751e3ce03001bc78b07bb207f219c543d6f4af64e474fa7fb7a1b29470bd40f347c7853c948bea17b31058b4f800cd55cadeaca7ccd1897e1af4d9c266047d881a5df79b184f4894024b2c305597534284220dd7a764b16b7d7959e5ec066c2503af342c478f1963d4f2bda8e0b91921d1057434152c9724e6c56d0e0804c9c3320c27542933ecaa5d24ccbece512d697e4113d2553cebe722bb7712f739fdd2b36210fab764fc37fe357039451e23f59ab0c65153b76d05d0ad9278daec9c0d6dde8c20b8636b35c19cd0b90a8b5ffd6f1d7d878e302756572a04e438a3b35deb96937416de1ac56cd370b4f2c6d7420530811e7857c4e8e52228bfddeb33835547c40dcc06ba63b0015fa60b37ebf5c1695cc18724916ad7cefecd85d2aabf09f3d28143915c6c08d2c277d7b09a62b55b366e71330ef65001ce224256e29732407759171df2b0e2104c621cc161e76aa6b270e1865e43def29c21551ee3e9564602ec564c7d796c2f690de0bdd1061ef74ac3295ee63be912aef18c669e35084ea5f2686c3b8e95c94bbae5e85d3ae1c7d81c279459df375082e8dfad48981d4b33c2eb4d53c2e5bfa00514abfc48c3ec89c5d516da1c0961d6e969a45edf4c9e82e520cba47bc597fe95c8a50fa90ca16331ae15e65ba3e78c0efa4f32ce8cd580357b86f7b0011c4ee08b08cd813f861165308053bb5e55d180a94151e4b8c09d7fa89f2f1417b90be19d9b00f479c3d3a6555aadd8205d2134b0a905f58c9423066fd486d52cb681efa8335b96b0c119e88f2fc625ec8349777036702ed7a63647d210f3f0b36a00cbd70154a459c835efd3188c1ed460611795fa1fd706a786e2729dff0ebe90f98f3a1b62b9de06aae66051cc341b1ec3dacb21b119cea334df4f13769a4b41c7a6f15abb6813b4f672c4f2ea56836f8cb1bf63717797d863f16c70295b2a6480d78032f0cdbb2a22db279cb9d13c3ea58c0c80d1fff8f819d054ef79ae0fc60ab6a282c630e4c1d39811b7ef8a4132a6079a916842b533f58c649bc0438070a65a5f27b8b0109fa7d571666d1a6b782f451a89db81e45081c8c92db851f1cf8e179fcd37ec947f11f13615a500c2aa32e5ce3aa86dd205e38c09c18f6e75f1172bbf0fa67513091cb136972add00309ab9935c91462c43352fc6a9f532f85c373b3e4878765f58c4af9e97f8d813dc2addb60a84a9ec1dd602f58d7c3d2034066c4f81f0e04062680e060308d6dcbd5e7f62e5da6badb188ee77bdbed507de959a8a658466750411a5125e0ac69b1a6309fcd4f2eda88b0e0d90b6a2cd66cfd1a873214adb1e4a494478cab4084dc685d6f6631c4613bd167828a5162501a54c864ade87eff643bb422e3b2a62c1bdb8971d40b7cf7e8ab33c054d4685548ced8ceff7cc49098e4f1d21bd7af79402588508a7c0d5fb44629223c52952da0c7e43f116d19e6e6d1556dea449c1b3c7b8f7bbfeac838b176431bcdb906a97c03ffa8bdde3b40e363692a1f01c335601ff117af2de324a933f97382e482cfa4f1126c261ded0cd3ea966b01a655488c9dde07d902c3136fdd76c4fcdab10921ebdc779b7fefd6dc0c32b5ca2669c9a4168b71555777c746469d8e28dd8348c5ead06b3bd7b8b2dc699171e3ee2aa58505606d1fb945b0cab4be4b5054fbe319ce53a0a51794bb6de7ae1261dd5772dc7e767a292f85082a52dbbe177d873994756c0f1581dfa4dbea477caf4da3143c47f17a7fbf855922a220b56a5d575a48864aaf2d9a9cb8474fc772ef0a3caf5e03eacef606f64226c7fbc8e4a19a55c15dad9b7f8757b001e1f8a2fdc9665917f998bc4c315c996873d6a4558535988bd7e5b7a812e91455fb076e9ac66d19d3ec7d98cf32099e804c39a2e61349da3fc5c5e3933a2eed2f2", 0x806, 0x20000000, &(0x7f0000000000)={0x2, 0x0, @broadcast=0xffffffff}, 0x10) [ 56.553627] capability: warning: `syz-executor0' uses deprecated v2 capabilities in a way that may be insecure 2018/04/06 23:30:55 executing program 4: r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x0, 0x0, 0x4, 0x69}, 0x2c) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x1, 0x5, &(0x7f0000346fc8)=@framed={{0x18}, [@alu={0x8000000201a7f19, 0x0, 0x7, 0x0, 0x1}], {0x95}}, &(0x7f0000f6bffb)='GPL\x00', 0x0, 0x299, &(0x7f00001a7f05)=""/251}, 0x18) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={0xffffffffffffffff, &(0x7f00000000c0)="b82283392dc50ff1fb630000000000000006fdc24e95e12aa7748f9f393e72be9cc66f"}, 0x10) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000140)={r1, 0x50, &(0x7f00000000c0)}, 0x10) socketpair$inet_icmp_raw(0x2, 0x3, 0x1, &(0x7f0000000180)) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000080)) 2018/04/06 23:30:56 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000ca9ff5)='/dev/loop#\x00', 0x0, 0x101902) r1 = memfd_create(&(0x7f0000000140)="000000008c00000000000000000000", 0x0) pwritev(r1, &(0x7f0000f50f90)=[{&(0x7f0000000100)="aa", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, 0xffffffffffffffff) sendfile(r0, r1, &(0x7f00000ddff8), 0x102000001) 2018/04/06 23:30:56 executing program 7: r0 = socket$inet6(0xa, 0x1, 0x8010000400000084) setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000000)={0x0, 0x0, 0x0, 0xffffffffffff8001}, 0xb) sendto$inet6(r0, &(0x7f00009f1000)='G', 0x1, 0x0, &(0x7f0000108fe4)={0xa, 0x0, 0x0, @loopback={0x0, 0x1}}, 0x1c) recvmmsg(r0, &(0x7f0000001800)=[{{&(0x7f0000001340)=@un=@abs, 0x80, &(0x7f0000001780)}}], 0x1, 0x2000, &(0x7f0000001900)) 2018/04/06 23:30:56 executing program 2: getpid() bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x0, 0x0, 0x4, 0xdf}, 0xfffffede) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x1, 0x5, &(0x7f0000346fc8)=@framed={{0x18}, [@alu={0x8000000201a7f19, 0x0, 0x7, 0x0, 0x1}], {0x95}}, &(0x7f0000f6bffb)='GPL\x00', 0x0, 0x299, &(0x7f00001a7f05)=""/251}, 0x18) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={0xffffffffffffffff, &(0x7f00000000c0)="b82283392dc50ff1fb635a5849d2f5916ae2fdc24e95e12aa8daccf7393e72be9cc66f"}, 0x10) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000140)={r0, 0x50, &(0x7f00000000c0)}, 0x10) socketpair$inet_icmp_raw(0x2, 0x705000, 0x730000, &(0x7f00000000c0)) 2018/04/06 23:30:56 executing program 1: getpid() perf_event_open(&(0x7f0000000300)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000002c0)}}, 0x0, 0x3, 0xffffffffffffffff, 0xb) bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x0, 0x0, 0x4, 0xdf}, 0xfffffede) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x1, 0x5, &(0x7f0000346fc8)=@framed={{0x18}, [@alu={0x8000000201a7f19, 0x0, 0x7, 0x0, 0x1}], {0x95}}, &(0x7f0000f6bffb)='GPL\x00', 0x0, 0x299, &(0x7f00001a7f05)=""/251}, 0x18) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={0xffffffffffffffff, &(0x7f00000000c0)="b82283392dc50ff1fb635a5849d2f5916ae2fdc24e95e12aa8daccf7393e72be9cc66f"}, 0x10) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000140)={r0, 0x50, &(0x7f00000000c0)}, 0x10) socketpair$inet_icmp_raw(0x2, 0x705000, 0x730000, &(0x7f00000000c0)) 2018/04/06 23:30:56 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x4) write(r0, &(0x7f0000000040)="290000001400070002ffffffea08e0eb2b0010e2dfa4478be2060000c539050fc544858d3600000000", 0x29) 2018/04/06 23:30:56 executing program 5: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000beeff0)={&(0x7f0000000080)=ANY=[@ANYBLOB="38010000100013070000000000000000e00000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000", @ANYRES32=0x0, @ANYBLOB="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"], 0x3}, 0x1}, 0x0) 2018/04/06 23:30:56 executing program 6: syz_mount_image$minix(&(0x7f0000000080)='minix\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000040)="09ea04400000000000000500050000000000f900200000005a4d", 0x1a, 0x400}], 0x0, 0x0) 2018/04/06 23:30:56 executing program 4: perf_event_open(&(0x7f0000220000)={0x2, 0x78, 0x3e3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000001000)={{0x100000001}}) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, &(0x7f000001cfb0)={0x0, 0xfffffffffffffffd}) ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, &(0x7f0000000000)={{0x2, 0x0, @broadcast=0xffffffff}, {0x0, @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}}, 0x0, {0x2, 0x0, @broadcast=0xffffffff}, "00080700000400a0b22c582bf3aed17d"}) 2018/04/06 23:30:56 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x4) write(r0, &(0x7f0000000040)="290000001400070002ffffffea08e0eb2b0010e2dfa4478be2060000c539050fc544858d3600000000", 0x29) 2018/04/06 23:30:56 executing program 7: r0 = syz_open_dev$loop(&(0x7f0000ca9ff5)='/dev/loop#\x00', 0x0, 0x101902) mlock2(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0) r1 = memfd_create(&(0x7f0000000140)="000000008c00000000000000000000", 0x3) pwritev(r1, &(0x7f0000f50f90)=[{&(0x7f0000000100)="aa", 0x1}], 0x1, 0x81003) setsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000400)={{{@in=@rand_addr, @in6=@ipv4={[], [0xff, 0xff], @remote={0xac, 0x14, 0x14, 0xbb}}, 0x0, 0x2, 0x4e21, 0x8048, 0x2, 0x80}, {0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xfffffffe000}, {0x0, 0x5da, 0x7fff}, 0x20, 0x6e6bbf, 0x1}, {{@in6=@mcast2={0xff, 0x2, [], 0x1}}, 0xa, @in6=@mcast2={0xff, 0x2, [], 0x1}, 0x34ff, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1}}, 0xe8) truncate(&(0x7f0000000040)='./file0\x00', 0x8) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) sendfile(r0, r1, &(0x7f00000ddff8), 0x102000001) 2018/04/06 23:30:56 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000ca9ff5)='/dev/loop#\x00', 0x0, 0x101902) ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, "6df1733d7a8a242fd899e0633f5fcea8fb5a550ed80ebba4d909c7a124d8ac39add13dc93a80f22ff9fd35a844f3e8b5ade4e5935137af6fe251190634435dca", "6aaba7a936009867bd21673a08478220febadc5ca0c0caf1f4833b9ff18a89a285f049691fdaee090426b5018b54096bdaacf1e7a2fb27febc2e8d7b46599493", "ecd2881042e088581e6e599a5591e6c882e32e7ea6697b93d32112b2bc83d72a"}) 2018/04/06 23:30:56 executing program 4: r0 = socket(0x10, 0x3, 0x0) r1 = dup(r0) write(r1, &(0x7f00000000c0)="2400000058001f00ff07f4f9002304000a04f51108000100020100000800028001000000", 0x24) 2018/04/06 23:30:56 executing program 0: perf_event_open(&(0x7f0000723f88)={0x2, 0x70, 0xc35, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000000)={@dev={0xfe, 0x80}, 0x400, 0x0, 0xff}, 0x20) [ 57.491565] ================================================================== [ 57.499009] BUG: KMSAN: uninit-value in copy_page_to_iter+0x754/0x1b70 [ 57.505688] CPU: 1 PID: 5131 Comm: blkid Not tainted 4.16.0+ #81 [ 57.511837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 57.521231] Call Trace: [ 57.523831] dump_stack+0x185/0x1d0 [ 57.527473] ? kmsan_internal_check_memory+0x145/0x1d0 [ 57.532757] kmsan_report+0x142/0x240 [ 57.536570] kmsan_internal_check_memory+0x164/0x1d0 [ 57.541683] kmsan_copy_to_user+0x69/0x160 [ 57.545932] copy_page_to_iter+0x754/0x1b70 [ 57.550276] generic_file_read_iter+0x2ee8/0x43f0 [ 57.555148] blkdev_read_iter+0x20d/0x280 [ 57.559307] ? blkdev_write_iter+0x5f0/0x5f0 [ 57.563729] __vfs_read+0x6fb/0x8e0 [ 57.567368] vfs_read+0x36c/0x6c0 [ 57.570831] SYSC_read+0x172/0x360 [ 57.574382] SyS_read+0x55/0x80 [ 57.577668] do_syscall_64+0x309/0x430 [ 57.581566] ? vfs_write+0x8d0/0x8d0 [ 57.585296] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 57.590487] RIP: 0033:0x7f0b0437c310 [ 57.594193] RSP: 002b:00007ffe30d650f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 57.601901] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f0b0437c310 [ 57.609177] RDX: 0000000000000400 RSI: 0000000000ed3c58 RDI: 0000000000000003 [ 57.616455] RBP: 0000000000ed3c30 R08: 0000000000000028 R09: 0000000001680000 [ 57.623733] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000ed3030 [ 57.631015] R13: 0000000000000400 R14: 0000000000ed3080 R15: 0000000000ed3c48 [ 57.638295] [ 57.639916] Uninit was stored to memory at: [ 57.644247] kmsan_internal_chain_origin+0x12b/0x210 [ 57.649352] kmsan_memcpy_origins+0x11d/0x170 [ 57.653837] __msan_memcpy+0x19f/0x1f0 [ 57.657720] iov_iter_copy_from_user_atomic+0xb04/0x17d0 [ 57.663176] generic_perform_write+0x4c6/0x990 [ 57.667760] __generic_file_write_iter+0x43b/0x990 [ 57.672694] blkdev_write_iter+0x3a8/0x5f0 [ 57.676935] do_iter_readv_writev+0x7bb/0x970 [ 57.681432] do_iter_write+0x30d/0xd40 [ 57.685324] vfs_iter_write+0x118/0x180 [ 57.689306] iter_file_splice_write+0xbc3/0x1710 [ 57.694069] direct_splice_actor+0x19b/0x200 [ 57.698486] splice_direct_to_actor+0x764/0x1040 [ 57.703247] do_splice_direct+0x335/0x540 [ 57.707391] do_sendfile+0x1067/0x1e40 [ 57.711284] SYSC_sendfile64+0x1b3/0x300 [ 57.715344] SyS_sendfile64+0x64/0x90 [ 57.719146] do_syscall_64+0x309/0x430 [ 57.723040] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 57.728221] Uninit was created at: [ 57.731759] kmsan_alloc_meta_for_pages+0x161/0x3a0 [ 57.736766] kmsan_alloc_page+0x82/0xe0 [ 57.740748] __alloc_pages_nodemask+0xf5b/0x5dc0 [ 57.745512] alloc_pages_vma+0xcc8/0x1800 [ 57.749669] shmem_alloc_and_acct_page+0x6d5/0x1000 [ 57.754689] shmem_getpage_gfp+0x35db/0x5770 [ 57.759100] shmem_file_read_iter+0x508/0x1180 [ 57.763687] generic_file_splice_read+0x4e8/0x830 [ 57.768533] splice_direct_to_actor+0x4c6/0x1040 [ 57.773293] do_splice_direct+0x335/0x540 [ 57.777433] do_sendfile+0x1067/0x1e40 [ 57.781323] SYSC_sendfile64+0x1b3/0x300 [ 57.785377] SyS_sendfile64+0x64/0x90 [ 57.789166] do_syscall_64+0x309/0x430 [ 57.793050] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 57.798222] [ 57.799835] Bytes 0-1023 of 1024 are uninitialized [ 57.804748] ================================================================== [ 57.812092] Disabling lock debugging due to kernel taint [ 57.817532] Kernel panic - not syncing: panic_on_warn set ... [ 57.817532] [ 57.824894] CPU: 1 PID: 5131 Comm: blkid Tainted: G B 4.16.0+ #81 [ 57.832330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 57.841674] Call Trace: [ 57.844259] dump_stack+0x185/0x1d0 [ 57.847879] panic+0x39d/0x940 [ 57.851086] ? kmsan_internal_check_memory+0x145/0x1d0 [ 57.856352] kmsan_report+0x238/0x240 [ 57.860149] kmsan_internal_check_memory+0x164/0x1d0 [ 57.865245] kmsan_copy_to_user+0x69/0x160 [ 57.869482] copy_page_to_iter+0x754/0x1b70 [ 57.873821] generic_file_read_iter+0x2ee8/0x43f0 [ 57.878692] blkdev_read_iter+0x20d/0x280 [ 57.882839] ? blkdev_write_iter+0x5f0/0x5f0 [ 57.887238] __vfs_read+0x6fb/0x8e0 [ 57.890872] vfs_read+0x36c/0x6c0 [ 57.894329] SYSC_read+0x172/0x360 [ 57.897866] SyS_read+0x55/0x80 [ 57.901138] do_syscall_64+0x309/0x430 [ 57.905019] ? vfs_write+0x8d0/0x8d0 [ 57.908729] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 57.913914] RIP: 0033:0x7f0b0437c310 [ 57.917614] RSP: 002b:00007ffe30d650f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 57.925323] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f0b0437c310 [ 57.932595] RDX: 0000000000000400 RSI: 0000000000ed3c58 RDI: 0000000000000003 [ 57.939872] RBP: 0000000000ed3c30 R08: 0000000000000028 R09: 0000000001680000 [ 57.947150] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000ed3030 [ 57.954428] R13: 0000000000000400 R14: 0000000000ed3080 R15: 0000000000ed3c48 [ 57.961760] Dumping ftrace buffer: [ 57.965282] (ftrace buffer empty) [ 57.968965] Kernel Offset: disabled [ 57.972565] Rebooting in 86400 seconds..