INIT: Entering runlevel: 2
[[36minfo[39;49m] Using makefile-style concurrent boot in runlevel 2.
[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.14' (ECDSA) to the list of known hosts.
2018/04/07 01:15:19 fuzzer started
2018/04/07 01:15:19 dialing manager at 10.128.0.26:38639
2018/04/07 01:15:25 kcov=true, comps=false
2018/04/07 01:15:28 executing program 0:
perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa}, 0x1c)
sendmmsg(r0, &(0x7f0000007e00)=[{{0x0, 0x0, &(0x7f0000000380), 0x0, &(0x7f00000003c0)}}, {{&(0x7f00000004c0)=@in6={0xa, 0x4e22, 0x0, @mcast2={0xff, 0x2, [], 0x1}}, 0x80, &(0x7f0000000680), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000290000000b0000003b00af16000010ac"], 0x18}}], 0x2, 0x0)

2018/04/07 01:15:28 executing program 2:
syz_mount_image$iso9660(&(0x7f00000003c0)='iso9660\x00', &(0x7f00000014c0)='//file0\x00', 0x0, 0x1, &(0x7f0000003c80)=[{&(0x7f0000001900)="d6bd68eb90e49d33f7f436d23b686e4ff4e6cc86362771eb8130ac27021da434d4dab003e8e22280a5494244d397908e5123c6972a631e6ac94a7028a04ec03d9eb700daf7d31edd8da706d5bc8ca343b58fb11111a64a4e5f5b94230b42b2d12141e0329e5c54fd0c97b75820eed77785b64e619f2dd2c9ecec8d8e7ef8faefddc8cb376c21fa649c71509f8d396410004f54ebf0bb924b22fd4fbd7038fb4f2823aef1fcbda2701783907d2231b94199b8e983251d11be40fa9e4ba76d9db33bf62a47a7a405769d4fc771b549e65de9a4ae9fdc7a503df6862147c5aad374c1a7c820ff1501cdf274a5dd9709ac7de26b2c5b10553adc87289d15bbc83c29cc9a9a3f2d3342f0ce685376513d8cabb3668684b86f3f81a5c55c7430b4ae479e7869983b6402fa3a14a3c936be061694255a4e3bf73cafaaeff2f47bc6a060fa2db81bfac6609abd25e6d539c25fda60300f976f8df05a717f2df57a159ba8851e6badb807f63b8e4edea63d2811ee3f503a8100fe9c9e4cf5d85c1c131754f183be0dcb197371636828f10a254753415a0b31c3c8528c2c5c744b64676a97808e5d24d3a59521b684876053373e8201999504ec1827604812c27c63e830e79689328182ff53804349b653bd58fd0f8a19a884d41464861b31acd08639ed090c33aaf21392a6a2cd17f7fdae144385b2e255fbb07f6474b871d58fcf44e664ebe27fd60ed84ab3bb0d8aa30e181faf444abc4cebde7d8f2b372b95a248519148c6c44f3d0248111540645113aab55dd7cf2a0744bf9bf68ff24dc310b372b4517bcbfa113ce9f84ad5ceab6a1d3ff1831628833d92e04447ad5f4151f7da3598c91ba07c0dc1e84ea752695de965908f52a4a2d52af3776c3a76e1c3e25ce5c9f0532363227f42e78e39acf3ada16877b71ae971ea843cbbd390c83fca63e60b41340205e2a5df34333230d708ab202731a06fca1df4f57d4ba792a205085fc4e2cb3460411533f7006ae26b3b60b59ee4ebd2af54c93f6cd1d8354bb848dbd7565015a5ce7900f76bd1390aeb49ee59611e9aada5ddc89f1dd56736aa636ba961d452b952ef7bf748eff7c088857f1cd566a5f41f968aad5a583211accc5ba66e9263f1f1551bdff3a8e1de89a63a36f766a0c98d3f3f98378829fbe71f76059ff0291c458d8e6b35d0e5ccbd31541f7ed6dc4f4c187121e8eb8974a6470b8c1d5655b68082aead9b24b07edea28e9b1e4ed40fbc8e67adab1b821d0c300408f9ebe006d7252d8c1004ac9fcaf9f10b233f8f1a9fd12a32da83b572940d9b9530d315afd1854262a2a8c98b9ea5c4161ad9a490f53c165f6228ad4673b1313e92df5977c15982445cf1e5bab3f448b0ff63cc33fddf6129d05c87f6828f51385df1b7ec23c62ca895c2e25b930c8935e28713ddf85ba55d6cb635a07582c97db785f14043c7944c267d289f742c65043e65c06ae0b2388ebac553dff06f1b094e56e8a447a0dad464ad168a0fbb56744ef366785678704d8bc32f1acb92b36de0e97933702f0d579034373d3e6cd1595b9ba1a881b945ff40c49f29b2211c379e55e4b49affd37eab8cf9a294568b5549694234340faee5d930c7f9d06feb55606e8bd657cea4a812fc2e2cd26907d432002f9fa2cdb520dad4155f117e4a6dd61d50cc04981cff0086edd3b18690b2beb310a88f16ccf0c2e3fac165d43d8e32ba56b151de8bbeb1cb8596ac034083e334b4846a39c6bdba3db5c81798bd390422c7eeb340c7f0627c503497eb0709534663a1706081ff395e02adbf7917ca69e58cf682d88fd8909d8e3d4b95aafb1d26500f353945dff4b91f2da7d4f147d073c5017f13aa38f89d318e40a60e00f421063d6e860cabac99f9ced2ea92adc5639835f1576fdc1fc5ce1a63baec148c7b961f1039cf2a2cf86ae1a1aa16322dad55f498fdb18eee378528af323df19e4349044a24ac2dd7de9da66eeffdfae7ac5b348950efa18eba0e509f0ba6e2bb013719159766db303bf7154c496fa7c55b1d752d3039eaf1bfa1d291669ec943b36d9ce475b904ea8afb941abd13ae09146a902b3ec467147362d964f3705bdd06c91240b88b37da34e891c6b10c3a6ec33b8ba998c5d6c267dd7fc108a4e078933d66c0dd72a27318eee441338137dd69f63526b2c223a802e9a152839031a40e7582329937f1003de401ef7cd33cda769d1168b77da1d1da73d321f085f0ab9ca7c3e1e13c7b958093b41d91df6bf2ab0e2a039b2fa26e8ff58cdb5c1f7535d840919197b5dc925465439d2d37a39a7ebbdae6a586f6a85497df0e06af5497ee1735a6d08b6b5341177698cb3b8c4886e890a424f911dbed69ac62c4634bee4e24b1acfa9e7b65bed5dae3527986cc3534a84923eef70f677936821da3ca4266039e2f723079af91e953f3ad9d3c1e2867079bb8f46590e42c8feba6135c174b499ea0d9249e98db6c32494f49d1c968dc21e0e4609d330861bbfbcd853e3b9e63de595fb99faad7c7effe0b757bfec86041ffdcdd722960eba06ad2e640ebee12854cf3a284", 0x719}], 0x0, &(0x7f0000000100)=ANY=[])
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x5, &(0x7f0000002000)=@framed={{0x18}, [@call={0x85, 0x0, 0x0, 0x7}], {0x95}}, &(0x7f000000a000)='syzkaller\x00', 0x1, 0xc3, &(0x7f0000011f3d)=""/195}, 0x48)

2018/04/07 01:15:28 executing program 1:
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sndseq(&(0x7f00000001c0)='/dev/snd/seq\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a45320, &(0x7f00000004c0)={{0x80}, "706f7274310000004000000000000000000000d600fffffff0000000000000000000eda4000000000000000700"})
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f0000000080)={{}, {0x200000000080}, 0x0, 0x5})

2018/04/07 01:15:28 executing program 7:
r0 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r0, &(0x7f00004c0000)={0xa, 0x4e23, 0x0, @ipv4={[], [0xff, 0xff]}}, 0x1c)
setsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000080)={0x0, 0x0, 0x8, 0x5}, 0x10)
listen(r0, 0x43)
r1 = socket$inet6_sctp(0xa, 0x4000000000000001, 0x84)
sendto$inet6(r1, &(0x7f000087dffe)='F', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback={0x0, 0x1}}, 0x1c)
r2 = accept4(r0, 0x0, &(0x7f0000000000), 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f00000000c0)={0x0, @in6={{0xa}}, 0x0, 0x0, 0x0, 0x0, 0x85}, 0x98)

2018/04/07 01:15:28 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000923000)='/dev/snd/seq\x00', 0x0, 0x2)
ppoll(&(0x7f0000000000)=[{r0}], 0x1, &(0x7f0000000040)={0x77359400}, &(0x7f0000000080), 0x8)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000068f50)={{0x80}, "706f72ff070000000000000000000000000b000000000000000000001f0000ffffff03000000ef000003ff02000000000012000000000000000000000600", 0xc7, 0x80003})
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00004d1ff0)='/dev/sequencer2\x00', 0x1, 0x0)
close(r0)
close(r1)

2018/04/07 01:15:28 executing program 5:
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'syz_tun\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000200)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)=@ipv4_newaddr={0x20, 0x14, 0xf11e67670dd6e79b, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, r1}, [@IFA_LOCAL={0x8, 0x2, @loopback=0x7f000001}]}, 0x20}, 0x1}, 0x0)

2018/04/07 01:15:28 executing program 6:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup\x00', 0x200002, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='..', 0x0, 0x0)
getdents(r1, &(0x7f0000000240)=""/22, 0xe9)

2018/04/07 01:15:28 executing program 3:
perf_event_open(&(0x7f000001d000)={0x2, 0x78, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x5, 0x0)
select(0xb4, &(0x7f0000002000), &(0x7f0000000200), &(0x7f0000000fc0)={0x20007ffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f0000001000))
setsockopt$inet6_buf(r0, 0x29, 0x40, &(0x7f0000000f9b), 0x0)

syzkaller login: [   42.382124] ip (3752) used greatest stack depth: 54688 bytes left
[   42.603658] ip (3771) used greatest stack depth: 54672 bytes left
[   42.796258] ip (3787) used greatest stack depth: 54408 bytes left
[   43.105273] ip (3818) used greatest stack depth: 54312 bytes left
[   44.048157] ip (3912) used greatest stack depth: 53960 bytes left
[   46.027860] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   46.192710] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   46.202534] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   46.211791] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   46.220749] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   46.236105] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   46.341005] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   46.557914] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   54.932903] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   54.996772] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   55.009674] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   55.083760] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   55.111523] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   55.326321] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   55.334261] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   55.505487] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   55.639969] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   55.646224] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   55.661385] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   55.757295] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   55.763554] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   55.775481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   55.818737] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   55.825004] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   55.832540] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   55.875971] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   55.882896] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   55.905648] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   55.917513] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   55.950810] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   55.983976] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   56.142594] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   56.148832] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   56.160374] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   56.201727] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   56.207976] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   56.219477] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   56.317749] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   56.324108] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   56.335149] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   56.984026] syz-executor3: vmalloc: allocation failure: 17179867136 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[   56.996294] syz-executor3 cpuset=syz3 mems_allowed=0
[   57.001553] CPU: 0 PID: 5033 Comm: syz-executor3 Not tainted 4.16.0+ #81
[   57.008411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   57.017784] Call Trace:
[   57.020421]  dump_stack+0x185/0x1d0
[   57.024100]  warn_alloc+0x3fc/0x660
[   57.027739] ==================================================================
[   57.035106] BUG: KMSAN: uninit-value in kernel_text_address+0x248/0x3a0
[   57.042227] CPU: 0 PID: 5033 Comm: syz-executor3 Not tainted 4.16.0+ #81
[   57.049060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   57.058404] Call Trace:
[   57.060998]  dump_stack+0x14a/0x1d0
[   57.064631]  ? kernel_text_address+0x248/0x3a0
[   57.069211]  kmsan_report+0x142/0x240
[   57.073014]  __msan_warning_32+0x6c/0xb0
[   57.077077]  kernel_text_address+0x248/0x3a0
2018/04/07 01:15:45 executing program 1:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='mountstats\x00')
readv(r0, &(0x7f0000000000)=[{&(0x7f0000000080)=""/2560, 0xd5b}], 0x1)

[   57.081491]  __kernel_text_address+0x34/0xe0
[   57.085901]  show_trace_log_lvl+0x954/0x1030
[   57.090310]  ? __vmalloc_node_range+0xa6f/0x1140
[   57.095076]  show_stack+0xfc/0x150
[   57.098619]  ? print_worker_info+0x1b0/0x660
[   57.103029]  dump_stack+0x185/0x1d0
[   57.106664]  warn_alloc+0x3fc/0x660
[   57.110311]  ? __vmalloc_node_range+0x10b/0x1140
[   57.115072]  __vmalloc_node_range+0xa6f/0x1140
[   57.119664]  __vmalloc_node_flags_caller+0x102/0x120
[   57.124769]  ? xt_alloc_entry_offsets+0x62/0x70
[   57.129438]  ? xt_alloc_entry_offsets+0x62/0x70
[   57.134113]  kvmalloc_node+0x2a6/0x2e0
[   57.138004]  xt_alloc_entry_offsets+0x62/0x70
[   57.142506]  translate_table+0x216/0x3870
[   57.146658]  ? page_fault+0x25/0x50
[   57.150285]  ? do_page_fault+0xd3/0x260
[   57.154270]  ? page_fault+0x25/0x50
[   57.157906]  ? apic_timer_interrupt+0xa/0x20
[   57.162325]  do_ip6t_set_ctl+0x60c/0x930
[   57.166395]  ? cleanup_entry+0x5c0/0x5c0
[   57.170458]  nf_setsockopt+0x476/0x4d0
[   57.174354]  ipv6_setsockopt+0x1e2/0x340
[   57.178418]  ? ipv6_update_options+0x510/0x510
2018/04/07 01:15:45 executing program 2:
syz_mount_image$iso9660(&(0x7f00000003c0)='iso9660\x00', &(0x7f00000014c0)='//file0\x00', 0x0, 0x1, &(0x7f0000003c80)=[{&(0x7f0000001900)="d6bd68eb90e49d33f7f436d23b686e4ff4e6cc86362771eb8130ac27021da434d4dab003e8e22280a5494244d397908e5123c6972a631e6ac94a7028a04ec03d9eb700daf7d31edd8da706d5bc8ca343b58fb11111a64a4e5f5b94230b42b2d12141e0329e5c54fd0c97b75820eed77785b64e619f2dd2c9ecec8d8e7ef8faefddc8cb376c21fa649c71509f8d396410004f54ebf0bb924b22fd4fbd7038fb4f2823aef1fcbda2701783907d2231b94199b8e983251d11be40fa9e4ba76d9db33bf62a47a7a405769d4fc771b549e65de9a4ae9fdc7a503df6862147c5aad374c1a7c820ff1501cdf274a5dd9709ac7de26b2c5b10553adc87289d15bbc83c29cc9a9a3f2d3342f0ce685376513d8cabb3668684b86f3f81a5c55c7430b4ae479e7869983b6402fa3a14a3c936be061694255a4e3bf73cafaaeff2f47bc6a060fa2db81bfac6609abd25e6d539c25fda60300f976f8df05a717f2df57a159ba8851e6badb807f63b8e4edea63d2811ee3f503a8100fe9c9e4cf5d85c1c131754f183be0dcb197371636828f10a254753415a0b31c3c8528c2c5c744b64676a97808e5d24d3a59521b684876053373e8201999504ec1827604812c27c63e830e79689328182ff53804349b653bd58fd0f8a19a884d41464861b31acd08639ed090c33aaf21392a6a2cd17f7fdae144385b2e255fbb07f6474b871d58fcf44e664ebe27fd60ed84ab3bb0d8aa30e181faf444abc4cebde7d8f2b372b95a248519148c6c44f3d0248111540645113aab55dd7cf2a0744bf9bf68ff24dc310b372b4517bcbfa113ce9f84ad5ceab6a1d3ff1831628833d92e04447ad5f4151f7da3598c91ba07c0dc1e84ea752695de965908f52a4a2d52af3776c3a76e1c3e25ce5c9f0532363227f42e78e39acf3ada16877b71ae971ea843cbbd390c83fca63e60b41340205e2a5df34333230d708ab202731a06fca1df4f57d4ba792a205085fc4e2cb3460411533f7006ae26b3b60b59ee4ebd2af54c93f6cd1d8354bb848dbd7565015a5ce7900f76bd1390aeb49ee59611e9aada5ddc89f1dd56736aa636ba961d452b952ef7bf748eff7c088857f1cd566a5f41f968aad5a583211accc5ba66e9263f1f1551bdff3a8e1de89a63a36f766a0c98d3f3f98378829fbe71f76059ff0291c458d8e6b35d0e5ccbd31541f7ed6dc4f4c187121e8eb8974a6470b8c1d5655b68082aead9b24b07edea28e9b1e4ed40fbc8e67adab1b821d0c300408f9ebe006d7252d8c1004ac9fcaf9f10b233f8f1a9fd12a32da83b572940d9b9530d315afd1854262a2a8c98b9ea5c4161ad9a490f53c165f6228ad4673b1313e92df5977c15982445cf1e5bab3f448b0ff63cc33fddf6129d05c87f6828f51385df1b7ec23c62ca895c2e25b930c8935e28713ddf85ba55d6cb635a07582c97db785f14043c7944c267d289f742c65043e65c06ae0b2388ebac553dff06f1b094e56e8a447a0dad464ad168a0fbb56744ef366785678704d8bc32f1acb92b36de0e97933702f0d579034373d3e6cd1595b9ba1a881b945ff40c49f29b2211c379e55e4b49affd37eab8cf9a294568b5549694234340faee5d930c7f9d06feb55606e8bd657cea4a812fc2e2cd26907d432002f9fa2cdb520dad4155f117e4a6dd61d50cc04981cff0086edd3b18690b2beb310a88f16ccf0c2e3fac165d43d8e32ba56b151de8bbeb1cb8596ac034083e334b4846a39c6bdba3db5c81798bd390422c7eeb340c7f0627c503497eb0709534663a1706081ff395e02adbf7917ca69e58cf682d88fd8909d8e3d4b95aafb1d26500f353945dff4b91f2da7d4f147d073c5017f13aa38f89d318e40a60e00f421063d6e860cabac99f9ced2ea92adc5639835f1576fdc1fc5ce1a63baec148c7b961f1039cf2a2cf86ae1a1aa16322dad55f498fdb18eee378528af323df19e4349044a24ac2dd7de9da66eeffdfae7ac5b348950efa18eba0e509f0ba6e2bb013719159766db303bf7154c496fa7c55b1d752d3039eaf1bfa1d291669ec943b36d9ce475b904ea8afb941abd13ae09146a902b3ec467147362d964f3705bdd06c91240b88b37da34e891c6b10c3a6ec33b8ba998c5d6c267dd7fc108a4e078933d66c0dd72a27318eee441338137dd69f63526b2c223a802e9a152839031a40e7582329937f1003de401ef7cd33cda769d1168b77da1d1da73d321f085f0ab9ca7c3e1e13c7b958093b41d91df6bf2ab0e2a039b2fa26e8ff58cdb5c1f7535d840919197b5dc925465439d2d37a39a7ebbdae6a586f6a85497df0e06af5497ee1735a6d08b6b5341177698cb3b8c4886e890a424f911dbed69ac62c4634bee4e24b1acfa9e7b65bed5dae3527986cc3534a84923eef70f677936821da3ca4266039e2f723079af91e953f3ad9d3c1e2867079bb8f46590e42c8feba6135c174b499ea0d9249e98db6c32494f49d1c968dc21e0e4609d330861bbfbcd853e3b9e63de595fb99faad7c7effe0b757bfec86041ffdcdd722960eba06ad2e640ebee12854cf3a284", 0x719}], 0x0, &(0x7f0000000100)=ANY=[])
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x5, &(0x7f0000002000)=@framed={{0x18}, [@call={0x85, 0x0, 0x0, 0x7}], {0x95}}, &(0x7f000000a000)='syzkaller\x00', 0x1, 0xc3, &(0x7f0000011f3d)=""/195}, 0x48)

2018/04/07 01:15:45 executing program 1:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00009f2000)={0x26, 'skcipher\x00', 0x0, 0x0, 'pcbc(aes)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00004f7000)="649c47ad46390d006dc80000009d4d54", 0x10)
r1 = dup(r0)
r2 = accept4$alg(r1, 0x0, 0x0, 0x0)
io_setup(0x3, &(0x7f0000cadffc)=<r3=>0x0)
sendmmsg$alg(r2, &(0x7f0000001400)=[{0x0, 0x0, &(0x7f0000001380), 0x0, &(0x7f00000013c0)=[@op={0x10, 0x117, 0x3, 0x1}], 0x10}], 0x1, 0x0)
io_submit(r3, 0x1, &(0x7f000049bfe8)=[&(0x7f00004dbfc0)={0x0, 0x0, 0x0, 0x0, 0x0, r2, &(0x7f0000391000)="83", 0x1}])

[   57.183003]  sctp_setsockopt+0x68e/0x10820
[   57.187244]  ? kmsan_set_origin_inline+0x6b/0x120
[   57.192090]  ? __msan_poison_alloca+0x15c/0x1d0
[   57.196755]  ? __fdget+0x4e/0x60
[   57.200120]  ? __fget_light+0x56/0x710
[   57.204015]  ? sctp_shutdown+0x270/0x270
[   57.208078]  sock_common_setsockopt+0x136/0x170
[   57.212744]  ? sock_common_recvmsg+0x270/0x270
[   57.217328]  SYSC_setsockopt+0x4b8/0x570
[   57.221400]  SyS_setsockopt+0x76/0xa0
[   57.225202]  do_syscall_64+0x309/0x430
[   57.229095]  ? SYSC_recv+0xe0/0xe0
[   57.232643]  entry_SYSCALL_64_after_hwframe+0x3d/0xa2
[   57.237827] RIP: 0033:0x455259
[   57.241012] RSP: 002b:00007f8406be1c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   57.248720] RAX: ffffffffffffffda RBX: 00007f8406be26d4 RCX: 0000000000455259
[   57.255986] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000014
[   57.263254] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[   57.270522] R10: 0000000020000f9b R11: 0000000000000246 R12: 00000000ffffffff
[   57.277786] R13: 0000000000000551 R14: 00000000006fb038 R15: 0000000000000000
[   57.285050] 
[   57.286670] Local variable description: ----sample.i@event_sched_in
[   57.293063] Variable was created at:
[   57.296782]  event_sched_in+0xa8/0x2de0
[   57.300761]  group_sched_in+0x179/0xe20
[   57.304723] ==================================================================
[   57.312071] Disabling lock debugging due to kernel taint
[   57.317512] Kernel panic - not syncing: panic_on_warn set ...
[   57.317512] 
[   57.324886] CPU: 0 PID: 5033 Comm: syz-executor3 Tainted: G    B            4.16.0+ #81
[   57.333014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   57.342362] Call Trace:
[   57.344959]  dump_stack+0x14a/0x1d0
[   57.348594]  panic+0x39d/0x940
[   57.351813]  ? kernel_text_address+0x248/0x3a0
[   57.356392]  kmsan_report+0x238/0x240
[   57.360200]  __msan_warning_32+0x6c/0xb0
[   57.364271]  kernel_text_address+0x248/0x3a0
[   57.368692]  __kernel_text_address+0x34/0xe0
[   57.373104]  show_trace_log_lvl+0x954/0x1030
[   57.377522]  ? __vmalloc_node_range+0xa6f/0x1140
[   57.382289]  show_stack+0xfc/0x150
[   57.385833]  ? print_worker_info+0x1b0/0x660
[   57.390245]  dump_stack+0x185/0x1d0
[   57.393879]  warn_alloc+0x3fc/0x660
[   57.397524]  ? __vmalloc_node_range+0x10b/0x1140
[   57.402273]  __vmalloc_node_range+0xa6f/0x1140
[   57.406864]  __vmalloc_node_flags_caller+0x102/0x120
[   57.411967]  ? xt_alloc_entry_offsets+0x62/0x70
[   57.416636]  ? xt_alloc_entry_offsets+0x62/0x70
[   57.421307]  kvmalloc_node+0x2a6/0x2e0
[   57.425197]  xt_alloc_entry_offsets+0x62/0x70
[   57.429692]  translate_table+0x216/0x3870
[   57.433846]  ? page_fault+0x25/0x50
[   57.437481]  ? do_page_fault+0xd3/0x260
[   57.441453]  ? page_fault+0x25/0x50
[   57.445082]  ? apic_timer_interrupt+0xa/0x20
[   57.449510]  do_ip6t_set_ctl+0x60c/0x930
[   57.453581]  ? cleanup_entry+0x5c0/0x5c0
[   57.457640]  nf_setsockopt+0x476/0x4d0
[   57.461532]  ipv6_setsockopt+0x1e2/0x340
[   57.465599]  ? ipv6_update_options+0x510/0x510
[   57.470181]  sctp_setsockopt+0x68e/0x10820
[   57.474413]  ? kmsan_set_origin_inline+0x6b/0x120
[   57.479254]  ? __msan_poison_alloca+0x15c/0x1d0
2018/04/07 01:15:45 executing program 6:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendto$inet(r0, &(0x7f0000a34fff)='H', 0x1, 0x0, &(0x7f0000030ff0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff, 0xaa}}, 0x10)
sendto$inet(r0, &(0x7f000026cfff)="c6", 0x1, 0x0, &(0x7f0000033ff0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff, 0xbb}}, 0x10)
shutdown(r0, 0x1)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000000)={0x0, 0x2000000001}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f00000000c0), 0x8)

[   57.483921]  ? __fdget+0x4e/0x60
[   57.487288]  ? __fget_light+0x56/0x710
[   57.491176]  ? sctp_shutdown+0x270/0x270
[   57.495242]  sock_common_setsockopt+0x136/0x170
[   57.499911]  ? sock_common_recvmsg+0x270/0x270
[   57.504494]  SYSC_setsockopt+0x4b8/0x570
[   57.508560]  SyS_setsockopt+0x76/0xa0
[   57.512362]  do_syscall_64+0x309/0x430
[   57.516252]  ? SYSC_recv+0xe0/0xe0
[   57.519831]  entry_SYSCALL_64_after_hwframe+0x3d/0xa2
[   57.525039] RIP: 0033:0x455259
[   57.528220] RSP: 002b:00007f8406be1c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   57.535922] RAX: ffffffffffffffda RBX: 00007f8406be26d4 RCX: 0000000000455259
[   57.543187] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000014
[   57.550458] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[   57.557725] R10: 0000000020000f9b R11: 0000000000000246 R12: 00000000ffffffff
[   57.564987] R13: 0000000000000551 R14: 00000000006fb038 R15: 0000000000000000
[   57.572666] Dumping ftrace buffer:
[   57.576184]    (ftrace buffer empty)
[   57.579879] Kernel Offset: disabled
[   57.583480] Rebooting in 86400 seconds..