INIT: Entering runlevel: 2 [info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.13' (ECDSA) to the list of known hosts. 2018/04/13 19:43:24 fuzzer started 2018/04/13 19:43:25 dialing manager at 10.128.0.26:33379 2018/04/13 19:43:32 kcov=true, comps=false 2018/04/13 19:43:35 executing program 0: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000000)='cgroup.max.depth\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000080)={[0x0]}, 0x1) 2018/04/13 19:43:35 executing program 1: perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = open(&(0x7f000000cff8)='./file0\x00', 0x80040, 0x0) fcntl$setlease(r0, 0x400, 0x0) link(&(0x7f00006b6000)='./file0\x00', &(0x7f000015e000)='./control\x00') 2018/04/13 19:43:35 executing program 7: r0 = bpf$MAP_CREATE(0x0, &(0x7f00008a7fe4)={0x5, 0x1, 0x6, 0x28}, 0x1b) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00002ff000)={r0, 0x181, &(0x7f00007dc000)}, 0x2da) 2018/04/13 19:43:35 executing program 2: r0 = socket(0x1f, 0x2000000000000005, 0x2) bind$bt_rfcomm(r0, &(0x7f0000000000)={0x1f}, 0xa) listen(r0, 0x0) connect$bt_rfcomm(r0, &(0x7f00000004c0)={0x1f}, 0xa) 2018/04/13 19:43:35 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x0, 0x0) ioctl$EVIOCGNAME(r0, 0x80104592, &(0x7f00000002c0)=""/86) 2018/04/13 19:43:35 executing program 4: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) symlink(&(0x7f000000bffa)='./file0\x00', &(0x7f000000affa)='./bus\x00') r0 = open(&(0x7f000000cff8)='./file0\x00', 0x80040, 0x0) fcntl$setlease(r0, 0x400, 0x0) rename(&(0x7f0000000080)='./bus\x00', &(0x7f00000000c0)='./file0\x00') 2018/04/13 19:43:35 executing program 5: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) sendmmsg$inet_sctp(r0, &(0x7f000093eee8)=[{&(0x7f00001f6000)=@in={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff, 0xaa}}, 0x10, &(0x7f0000000040), 0x0, &(0x7f0000000400)=[@sndinfo={0x20, 0x84, 0x2, {0x0, 0x200}}], 0x30}, {&(0x7f0000000000)=@in={0x2, 0x0, @multicast2=0xe0000002}, 0x10, &(0x7f000093e000), 0x0, &(0x7f000093ef10)=[@sndinfo={0x20, 0x84, 0x2}], 0x30}], 0x2, 0x0) 2018/04/13 19:43:35 executing program 6: r0 = socket(0xa, 0x1, 0x0) setsockopt$inet6_opts(r0, 0x29, 0x39, &(0x7f0000000000)=@srh={0x0, 0x0, 0x2}, 0x8) syzkaller login: [ 44.350562] ip (3756) used greatest stack depth: 54672 bytes left [ 44.773485] ip (3794) used greatest stack depth: 54312 bytes left [ 44.951141] ip (3810) used greatest stack depth: 54072 bytes left [ 46.052563] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.059138] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.108013] device bridge_slave_0 entered promiscuous mode [ 46.159143] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.165642] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.213652] device bridge_slave_0 entered promiscuous mode [ 46.240881] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.247355] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.285972] device bridge_slave_0 entered promiscuous mode [ 46.310235] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.316743] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.333392] device bridge_slave_0 entered promiscuous mode [ 46.350077] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.356582] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.391347] device bridge_slave_1 entered promiscuous mode [ 46.408394] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.414904] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.433185] device bridge_slave_0 entered promiscuous mode [ 46.455117] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.461583] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.471903] device bridge_slave_1 entered promiscuous mode [ 46.485551] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.492121] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.516001] device bridge_slave_1 entered promiscuous mode [ 46.532514] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.538995] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.569960] device bridge_slave_1 entered promiscuous mode [ 46.577102] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.583581] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.606799] device bridge_slave_0 entered promiscuous mode [ 46.637756] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 46.647379] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 46.654729] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.661437] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.701548] device bridge_slave_1 entered promiscuous mode [ 46.728718] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 46.738764] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.745250] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.775123] device bridge_slave_0 entered promiscuous mode [ 46.788159] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 46.800393] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 46.808087] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.814534] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.855121] device bridge_slave_0 entered promiscuous mode [ 46.877959] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 46.894430] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.900967] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.932131] device bridge_slave_1 entered promiscuous mode [ 46.949177] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 46.958946] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 46.969716] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.976235] bridge0: port 2(bridge_slave_1) entered disabled state [ 47.028982] device bridge_slave_1 entered promiscuous mode [ 47.050775] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 47.078664] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 47.115287] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.121884] bridge0: port 2(bridge_slave_1) entered disabled state [ 47.160392] device bridge_slave_1 entered promiscuous mode [ 47.189612] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 47.256570] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 47.362699] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 47.417008] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 47.499813] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 47.572135] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 47.827633] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 47.881546] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 47.923718] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 48.012243] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 48.048615] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 48.064313] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 48.073523] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 48.139880] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 48.257691] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 48.304785] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 48.343072] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 48.493986] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 48.558628] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 48.619934] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 48.745131] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 48.859186] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 49.089842] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 49.105151] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 49.158416] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 49.228756] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 49.298578] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 49.313640] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 49.327957] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 49.380997] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 49.449740] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 49.525973] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 49.534144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 49.548123] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 49.570211] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 49.582202] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 49.594815] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 49.622865] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 49.654807] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 49.670520] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 49.677708] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 49.695831] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 49.726922] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 49.736906] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 49.744074] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 49.778761] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 49.810984] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 49.833750] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 49.847837] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 49.863324] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 49.871798] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 49.879236] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 49.896571] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 49.922936] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 49.948556] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 49.958359] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 49.968015] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 49.975233] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 49.983548] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 49.996851] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 50.006417] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 50.027772] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 50.042803] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 50.051763] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 50.062423] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 50.070180] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 50.086750] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 50.236429] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 50.243737] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 50.253112] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 50.269621] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 50.290385] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 50.304973] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 50.327839] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 50.478431] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 50.485661] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 50.497502] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 50.517504] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 50.526310] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 50.537636] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 50.562547] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 50.586668] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 50.620786] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 50.729309] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 50.736516] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 50.748884] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 51.535020] ip (4313) used greatest stack depth: 53976 bytes left [ 52.181798] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.188308] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.195250] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.201735] bridge0: port 1(bridge_slave_0) entered forwarding state [ 52.259840] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 52.266443] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 52.296097] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.302590] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.309498] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.315960] bridge0: port 1(bridge_slave_0) entered forwarding state [ 52.352408] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 52.378823] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.385343] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.392237] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.398719] bridge0: port 1(bridge_slave_0) entered forwarding state [ 52.477086] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 52.567660] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.574158] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.581091] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.587552] bridge0: port 1(bridge_slave_0) entered forwarding state [ 52.637627] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 52.660261] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.666746] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.673594] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.680095] bridge0: port 1(bridge_slave_0) entered forwarding state [ 52.748015] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 52.816937] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.823457] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.830374] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.836861] bridge0: port 1(bridge_slave_0) entered forwarding state [ 52.905753] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 52.925192] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.931704] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.938556] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.945074] bridge0: port 1(bridge_slave_0) entered forwarding state [ 52.966395] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 52.982592] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.989163] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.996608] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.003132] bridge0: port 1(bridge_slave_0) entered forwarding state [ 53.042144] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 53.282133] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 53.297706] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 53.326821] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 53.352781] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 53.371713] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 53.395741] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 53.433642] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 61.878174] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 62.032606] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 62.091298] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 62.108081] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 62.133400] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 62.203118] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 62.398478] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 62.461339] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 62.699152] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 62.705450] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 62.713499] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 62.804191] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 62.810465] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 62.822267] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 62.884098] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 62.890357] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 62.906987] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 62.941835] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 62.953473] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 62.975689] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 63.001709] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 63.009799] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 63.022483] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 63.057848] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 63.067275] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 63.108718] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 63.235856] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 63.242151] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 63.256200] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 63.312984] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 63.319572] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 63.336301] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready 2018/04/13 19:44:02 executing program 0: mkdir(&(0x7f0000fb3000)='./file0\x00', 0x0) mount(&(0x7f0000000840)='./file0\x00', &(0x7f0000000880)='./file0\x00', &(0x7f00000008c0)='mqueue\x00', 0x0, &(0x7f0000e2ef53)) perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) umount2(&(0x7f0000000040)='./file0\x00', 0x4) umount2(&(0x7f0000a23000)='./file0\x00', 0xc) 2018/04/13 19:44:02 executing program 7: r0 = socket$inet(0x10, 0x2, 0x0) sendmsg(r0, &(0x7f000001c000)={0x0, 0x0, &(0x7f0000004000)=[{&(0x7f0000000080)="2f0000001d0003fdedf16cf1d500000100000001000000001f5f08c9080001000000737e0beeffff005867855e7fa5", 0x2f}], 0x1}, 0x0) 2018/04/13 19:44:02 executing program 1: r0 = socket$inet(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000134000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) 2018/04/13 19:44:02 executing program 3: clone(0x0, &(0x7f0000000000), &(0x7f0000744000), &(0x7f0000fef000), &(0x7f0000dacfc9)) 2018/04/13 19:44:02 executing program 5: r0 = socket$inet6(0xa, 0x2000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000687000)=0x5c802861, 0x4) setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000ad2ffc)=0x40, 0x4) bind$inet6(r0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}, 0x1c) sendto$inet6(r0, &(0x7f00007a8fff), 0x0, 0xfffffefffffffffe, &(0x7f0000f62fe4)={0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}, 0x1c) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getsockopt$inet6_buf(r0, 0x29, 0x6, &(0x7f0000501000)=""/95, &(0x7f0000f12000)=0x5f) 2018/04/13 19:44:02 executing program 2: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x80a, 0x0) ioctl$sock_inet_SIOCSARP(r0, 0x8955, &(0x7f0000000200)={{0x2, 0x4e20, @multicast1=0xe0000001}, {0x0, @random="eee436180db8"}, 0x0, {0x2}}) 2018/04/13 19:44:02 executing program 4: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) symlink(&(0x7f000000bffa)='./file0\x00', &(0x7f000000affa)='./bus\x00') r0 = open(&(0x7f000000cff8)='./file0\x00', 0x80040, 0x0) fcntl$setlease(r0, 0x400, 0x0) rename(&(0x7f0000000080)='./bus\x00', &(0x7f00000000c0)='./file0\x00') 2018/04/13 19:44:02 executing program 6: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f000039c000)=0x400000000000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f00000b2000)=0xffffffffffffffff, 0x4) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000100)='vcan0\x00', 0x10) sendto$inet(r0, &(0x7f0000000180), 0x0, 0x800000020000000, &(0x7f0000303000)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000040)={0x0, 0x800000000000852b, 0xffff}, 0x14) writev(r0, &(0x7f0000818ff0)=[{&(0x7f0000000140)="0b9a95785f11e0e7b6f4de7afeabc7fc7700481d21aa090ef74dd23f6917aa54cc", 0x21}], 0x1) [ 69.151709] syz-executor2 uses obsolete (PF_INET,SOCK_PACKET) 2018/04/13 19:44:02 executing program 7: perf_event_open(&(0x7f000001d000)={0x200000002, 0x70, 0x5, 0x108000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000040)={'bond_slave_1\x00'}) 2018/04/13 19:44:02 executing program 1: perf_event_open(&(0x7f000001d000)={0x200000002, 0x70, 0x6, 0x108000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x8000000000000802, 0x0) sendmsg$inet_sctp(r0, &(0x7f0000a29000)={&(0x7f0000fc1fe4)=@in6={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x1, [], 0x1}}, 0x1c, &(0x7f0000000940)}, 0x8000) writev(r0, &(0x7f0000001300)=[{&(0x7f0000000300)="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", 0x5ad}], 0x1) 2018/04/13 19:44:02 executing program 6: 2018/04/13 19:44:02 executing program 4: 2018/04/13 19:44:02 executing program 5: mkdir(&(0x7f0000fb3000)='./file0\x00', 0x0) mount(&(0x7f0000000840)='./file0\x00', &(0x7f0000000880)='./file0\x00', &(0x7f00000008c0)='mqueue\x00', 0x0, &(0x7f0000e2ef53)) socketpair$inet6_udp(0xa, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) getsockopt$IP_VS_SO_GET_SERVICES(r0, 0x0, 0x482, &(0x7f0000000080)=""/32, &(0x7f00000000c0)=0x20) umount2(&(0x7f0000000040)='./file0\x00', 0x4) r1 = syz_open_procfs(0x0, &(0x7f0000000240)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439ed554fa07424adee901d2da75af1f0200f5ab26d7a071fb35331ce39c5a") pread64(r1, &(0x7f0000003c00)=""/4096, 0xffffff72, 0x0) umount2(&(0x7f0000a23000)='./file0\x00', 0xc) [ 69.377630] ================================================================== [ 69.385050] BUG: KMSAN: uninit-value in raw6_local_deliver+0x259/0x1ac0 [ 69.391826] CPU: 1 PID: 5787 Comm: syz-executor1 Not tainted 4.16.0+ #83 [ 69.398669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 69.408028] Call Trace: [ 69.410612] [ 69.412768] dump_stack+0x185/0x1d0 [ 69.416399] ? raw6_local_deliver+0x259/0x1ac0 [ 69.421074] kmsan_report+0x142/0x240 2018/04/13 19:44:02 executing program 0: perf_event_open(&(0x7f000001d000)={0x200000002, 0x70, 0x5, 0x108000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in6={{0xa, 0x0, 0x0, @mcast1={0xff, 0x1, [], 0x1}}}, 0x0, 0x3, 0x0, "2aa1edc920af50d95dc1cef8d69a1f2a900d54e8e40f529820d13e5ef44f0b173fd012475a6e0a2f93182bf678515d459abed2ab986b6a635cc0749d6a9628d81afbe7cc023281c0a94fa6ea48c31c03"}, 0xd8) [ 69.424881] __msan_warning_32+0x6c/0xb0 [ 69.428950] ? ip6_input_finish+0x55c/0x2110 [ 69.433366] raw6_local_deliver+0x259/0x1ac0 [ 69.437805] ip6_input_finish+0x55c/0x2110 [ 69.442053] ? ip6table_filter_hook+0xb5/0xe0 [ 69.446563] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 69.451945] ip6_mc_input+0x697/0x740 [ 69.455763] ? ip6_input+0x320/0x320 [ 69.459488] ? ip6_input_finish+0x2110/0x2110 [ 69.463988] ipv6_rcv+0x20ec/0x26d0 [ 69.467618] ? local_bh_enable+0x40/0x40 [ 69.471688] __netif_receive_skb_core+0x47cf/0x4a80 [ 69.476709] ? kmsan_set_origin_inline+0x6b/0x120 [ 69.481559] ? kmsan_internal_memset_shadow_inline+0xd0/0xd0 [ 69.487456] ? ip6_rcv_finish+0x4d0/0x4d0 [ 69.491619] process_backlog+0x62d/0xe20 [ 69.495689] ? rps_trigger_softirq+0x2f0/0x2f0 [ 69.500275] net_rx_action+0x7c1/0x1a70 [ 69.504268] ? net_tx_action+0xab0/0xab0 [ 69.508337] __do_softirq+0x56d/0x93d [ 69.512148] do_softirq_own_stack+0x2a/0x40 [ 69.516465] [ 69.518704] do_softirq+0xb6/0xf0 [ 69.522162] dev_loopback_xmit+0x8b0/0x900 2018/04/13 19:44:02 executing program 6: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet(0x2, 0x80003, 0x100000001) syz_emit_ethernet(0x2a, &(0x7f0000000140)={@broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x1, 0x0, @rand_addr, @multicast1=0xe0000001}, @icmp=@address_reply={0x6488}}}}}, &(0x7f0000000040)) 2018/04/13 19:44:02 executing program 3: syz_emit_ethernet(0x66, &(0x7f0000000000)={@random="cd390b081bf2", @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [], {@ipv6={0x86dd, {0x0, 0x6, "02290f", 0x30, 0x3a, 0x0, @ipv4={[], [0xff, 0xff], @rand_addr}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "9433df", 0x0, 0x4, 0x0, @loopback={0x4, 0x1}, @dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb]}}}}}}}}, 0x0) [ 69.526494] ip6_finish_output2+0x5e6/0x1f20 [ 69.530903] ? validate_xmit_skb+0x1320/0x1320 [ 69.535486] ? ip6_fragment+0x327b/0x5150 [ 69.539663] ip6_fragment+0x32e6/0x5150 [ 69.543636] ? ip6_make_skb+0x1100/0x1100 [ 69.547803] ip6_finish_output+0x96c/0xc00 [ 69.552050] ip6_output+0x597/0x6c0 [ 69.555675] ? ip6_output+0x6c0/0x6c0 [ 69.559478] ? ac6_seq_show+0x200/0x200 [ 69.563456] ip6_local_out+0x573/0x640 [ 69.567347] ? __ip6_local_out+0x4f0/0x4f0 [ 69.571590] ip6_send_skb+0xfa/0x380 [ 69.575310] udp_v6_send_skb+0x116a/0x1880 [ 69.579555] udpv6_sendmsg+0x15f4/0x45b0 [ 69.583629] ? __msan_poison_alloca+0x15c/0x1d0 [ 69.588303] ? _cond_resched+0x3c/0xd0 [ 69.592200] ? rcu_all_qs+0x32/0x1f0 [ 69.595921] ? _cond_resched+0x3c/0xd0 [ 69.599820] ? futex_wait_queue_me+0x4ba/0x710 [ 69.604414] ? ip_copy_metadata+0xac0/0xac0 [ 69.608759] ? udpv6_queue_rcv_skb+0x1c60/0x1c60 [ 69.613521] inet_sendmsg+0x48d/0x740 [ 69.617417] ? security_socket_sendmsg+0x9e/0x210 [ 69.622276] ? inet_getname+0x500/0x500 [ 69.626259] sock_write_iter+0x3b9/0x470 [ 69.630332] ? sock_read_iter+0x480/0x480 [ 69.634483] do_iter_readv_writev+0x7bb/0x970 [ 69.639000] ? sock_read_iter+0x480/0x480 [ 69.643331] do_iter_write+0x30d/0xd40 [ 69.647231] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 69.652689] do_writev+0x3c9/0x830 [ 69.656248] ? syscall_return_slowpath+0xe9/0x700 [ 69.661099] SYSC_writev+0x9b/0xb0 [ 69.664646] SyS_writev+0x56/0x80 [ 69.668103] do_syscall_64+0x309/0x430 [ 69.671999] ? SYSC_readv+0xb0/0xb0 [ 69.675635] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 69.680844] RIP: 0033:0x455319 [ 69.684036] RSP: 002b:00007fe0d867ac68 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 69.691750] RAX: ffffffffffffffda RBX: 00007fe0d867b6d4 RCX: 0000000000455319 [ 69.699104] RDX: 0000000000000001 RSI: 0000000020001300 RDI: 0000000000000014 [ 69.706394] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 69.713669] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 69.720949] R13: 00000000000006cd R14: 00000000006fd3d8 R15: 0000000000000000 2018/04/13 19:44:02 executing program 3: mkdir(&(0x7f0000000040)='./file0/', 0x0) perf_event_open(&(0x7f0000000040)={0x200000002, 0x70, 0x6, 0x108000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mount(&(0x7f0000000180)='./file0/', &(0x7f00000001c0)='./file0/', &(0x7f0000000200)='proc\x00', 0x0, 0x0) mount(&(0x7f00000005c0)='./file0/\x00', &(0x7f0000cbeff8)='./file0\x00', &(0x7f00005f7ffa)='ubifs\x00', 0x80000, &(0x7f0000000580)) mount(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='./file1\x00', &(0x7f0000000200)='anon_inodefs\x00', 0x0, &(0x7f0000000240)) 2018/04/13 19:44:02 executing program 6: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet(0x2, 0x80003, 0x100000001) syz_emit_ethernet(0x2a, &(0x7f0000000140)={@broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x1, 0x0, @rand_addr, @multicast1=0xe0000001}, @icmp=@address_reply={0x6488}}}}}, &(0x7f0000000040)) [ 69.728220] [ 69.729845] Uninit was stored to memory at: [ 69.734175] kmsan_internal_chain_origin+0x12b/0x210 [ 69.739279] kmsan_memcpy_origins+0x11d/0x170 [ 69.743777] kmsan_memmove_origins+0x9/0x10 [ 69.748194] __msan_memmove+0xda/0x130 [ 69.752088] ipv6_frag_rcv+0x5055/0x6970 [ 69.756157] ip6_input_finish+0xa62/0x2110 [ 69.760397] ip6_mc_input+0x697/0x740 [ 69.764202] ipv6_rcv+0x20ec/0x26d0 [ 69.767830] __netif_receive_skb_core+0x47cf/0x4a80 [ 69.772846] process_backlog+0x62d/0xe20 [ 69.776905] net_rx_action+0x7c1/0x1a70 [ 69.780883] __do_softirq+0x56d/0x93d [ 69.784673] Uninit was created at: [ 69.788216] kmsan_internal_poison_shadow+0xb8/0x1b0 [ 69.793322] kmsan_kmalloc+0x94/0x100 [ 69.797212] kmsan_slab_alloc+0x11/0x20 [ 69.801194] __kmalloc_node_track_caller+0xaed/0x11c0 [ 69.806390] __alloc_skb+0x2cf/0x9f0 [ 69.810110] alloc_skb_with_frags+0x1d4/0xb20 [ 69.814607] sock_alloc_send_pskb+0xb56/0x1190 [ 69.819218] sock_alloc_send_skb+0xca/0xe0 [ 69.823475] __ip6_append_data+0x3387/0x4bb0 [ 69.827886] ip6_append_data+0x40e/0x6b0 [ 69.831946] udpv6_sendmsg+0xfd5/0x45b0 [ 69.835920] inet_sendmsg+0x48d/0x740 [ 69.839722] ___sys_sendmsg+0xec0/0x1310 [ 69.843798] SYSC_sendmsg+0x2a3/0x3d0 [ 69.847599] SyS_sendmsg+0x54/0x80 [ 69.851134] do_syscall_64+0x309/0x430 [ 69.855022] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 69.860200] ================================================================== [ 69.867555] Disabling lock debugging due to kernel taint [ 69.873001] Kernel panic - not syncing: panic_on_warn set ... 2018/04/13 19:44:02 executing program 6: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x8000000004) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000300)={@in6={{0xa, 0x0, 0x0, @loopback={0x0, 0x1}}}, 0x0, 0x6, 0x0, "37b5e9ef253b4a17814c1b38c9b81a56a397da8bcdabdd0e9383bcf622da24ecb5f4ff8b353a40eb8032a5b64a6fe5073a334eeb3b30a354760cc0b9d14f3363180e01222db4b130ca85a373740d1e60"}, 0xd8) sendto$inet6(r1, &(0x7f00002a0b14), 0x0, 0x200408d4, &(0x7f000072e000)={0xa, 0x0, 0x0, @loopback={0x0, 0x1}}, 0x1c) writev(r0, &(0x7f0000e11ff0)=[{&(0x7f0000299f3e)="580000001400192340834b80040d8c560a067fffffff810000000000000058000b4824ca944f64009400050028925aa8000000000000008000f0fffeffff09000000fff5dd00000010000100000c0900fcff0000040e05a5", 0x58}], 0x1) [ 69.873001] [ 69.880373] CPU: 1 PID: 5787 Comm: syz-executor1 Tainted: G B 4.16.0+ #83 [ 69.888510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 69.897868] Call Trace: [ 69.900457] [ 69.902611] dump_stack+0x185/0x1d0 [ 69.906244] panic+0x39d/0x940 [ 69.909458] ? raw6_local_deliver+0x259/0x1ac0 [ 69.914047] kmsan_report+0x238/0x240 [ 69.917853] __msan_warning_32+0x6c/0xb0 [ 69.921917] ? ip6_input_finish+0x55c/0x2110 [ 69.926326] raw6_local_deliver+0x259/0x1ac0 [ 69.930751] ip6_input_finish+0x55c/0x2110 [ 69.934993] ? ip6table_filter_hook+0xb5/0xe0 [ 69.939495] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 69.944868] ip6_mc_input+0x697/0x740 [ 69.948675] ? ip6_input+0x320/0x320 [ 69.952390] ? ip6_input_finish+0x2110/0x2110 [ 69.956886] ipv6_rcv+0x20ec/0x26d0 [ 69.960516] ? local_bh_enable+0x40/0x40 [ 69.964592] __netif_receive_skb_core+0x47cf/0x4a80 [ 69.969612] ? kmsan_set_origin_inline+0x6b/0x120 [ 69.974458] ? kmsan_internal_memset_shadow_inline+0xd0/0xd0 2018/04/13 19:44:03 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x3c, &(0x7f00000000c0), 0x0) [ 69.980265] ? ip6_rcv_finish+0x4d0/0x4d0 [ 69.984422] process_backlog+0x62d/0xe20 [ 69.988490] ? rps_trigger_softirq+0x2f0/0x2f0 [ 69.993076] net_rx_action+0x7c1/0x1a70 [ 69.997058] ? net_tx_action+0xab0/0xab0 [ 70.001124] __do_softirq+0x56d/0x93d [ 70.004936] do_softirq_own_stack+0x2a/0x40 [ 70.009251] [ 70.011498] do_softirq+0xb6/0xf0 [ 70.014955] dev_loopback_xmit+0x8b0/0x900 [ 70.019201] ip6_finish_output2+0x5e6/0x1f20 [ 70.023617] ? validate_xmit_skb+0x1320/0x1320 [ 70.028208] ? ip6_fragment+0x327b/0x5150 [ 70.032370] ip6_fragment+0x32e6/0x5150 [ 70.036353] ? ip6_make_skb+0x1100/0x1100 [ 70.040527] ip6_finish_output+0x96c/0xc00 [ 70.044770] ip6_output+0x597/0x6c0 [ 70.048402] ? ip6_output+0x6c0/0x6c0 [ 70.052205] ? ac6_seq_show+0x200/0x200 [ 70.056188] ip6_local_out+0x573/0x640 [ 70.060173] ? __ip6_local_out+0x4f0/0x4f0 [ 70.064445] ip6_send_skb+0xfa/0x380 [ 70.068171] udp_v6_send_skb+0x116a/0x1880 [ 70.072414] udpv6_sendmsg+0x15f4/0x45b0 [ 70.076483] ? __msan_poison_alloca+0x15c/0x1d0 [ 70.081154] ? _cond_resched+0x3c/0xd0 [ 70.085050] ? rcu_all_qs+0x32/0x1f0 [ 70.088768] ? _cond_resched+0x3c/0xd0 [ 70.092657] ? futex_wait_queue_me+0x4ba/0x710 [ 70.097339] ? ip_copy_metadata+0xac0/0xac0 [ 70.101780] ? udpv6_queue_rcv_skb+0x1c60/0x1c60 [ 70.106541] inet_sendmsg+0x48d/0x740 [ 70.110349] ? security_socket_sendmsg+0x9e/0x210 [ 70.115204] ? inet_getname+0x500/0x500 [ 70.119186] sock_write_iter+0x3b9/0x470 [ 70.123258] ? sock_read_iter+0x480/0x480 [ 70.127407] do_iter_readv_writev+0x7bb/0x970 [ 70.131911] ? sock_read_iter+0x480/0x480 [ 70.136054] do_iter_write+0x30d/0xd40 [ 70.139928] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 70.145365] do_writev+0x3c9/0x830 [ 70.148895] ? syscall_return_slowpath+0xe9/0x700 [ 70.153722] SYSC_writev+0x9b/0xb0 [ 70.157337] SyS_writev+0x56/0x80 [ 70.160860] do_syscall_64+0x309/0x430 [ 70.164731] ? SYSC_readv+0xb0/0xb0 [ 70.168430] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 70.173615] RIP: 0033:0x455319 [ 70.176784] RSP: 002b:00007fe0d867ac68 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 70.184476] RAX: ffffffffffffffda RBX: 00007fe0d867b6d4 RCX: 0000000000455319 [ 70.191727] RDX: 0000000000000001 RSI: 0000000020001300 RDI: 0000000000000014 [ 70.198976] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 70.206227] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 70.213481] R13: 00000000000006cd R14: 00000000006fd3d8 R15: 0000000000000000 [ 70.221153] Dumping ftrace buffer: [ 70.224679] (ftrace buffer empty) [ 70.228363] Kernel Offset: disabled [ 70.231967] Rebooting in 86400 seconds..