[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[   33.357612] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   35.844184] random: sshd: uninitialized urandom read (32 bytes read)
[   36.146878] random: sshd: uninitialized urandom read (32 bytes read)
[   37.774824] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.0.51' (ECDSA) to the list of known hosts.
[   43.418594] random: sshd: uninitialized urandom read (32 bytes read)
2018/07/07 23:20:48 fuzzer started
[   44.530081] random: cc1: uninitialized urandom read (8 bytes read)
2018/07/07 23:20:50 dialing manager at 10.128.0.26:33485
2018/07/07 23:20:53 syscalls: 1550
2018/07/07 23:20:53 code coverage: enabled
2018/07/07 23:20:53 comparison tracing: ioctl(KCOV_TRACE_CMP) failed: errno 524
2018/07/07 23:20:53 setuid sandbox: enabled
2018/07/07 23:20:53 namespace sandbox: enabled
2018/07/07 23:20:53 fault injection: enabled
2018/07/07 23:20:53 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2018/07/07 23:20:53 net packed injection: enabled
[   49.783319] random: crng init done
23:22:11 executing program 0:

23:22:11 executing program 1:

23:22:11 executing program 7:

23:22:11 executing program 4:
r0 = perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fadvise64(r0, 0x0, 0x4, 0x3)
lseek(0xffffffffffffffff, 0x0, 0x0)
syz_emit_ethernet(0x1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ffffffffffff0180c206000086dd6006f526000811000000000800000000000000f4ac0000000000ff02000000000000000000000000000100004e20000890782d2e145ed4854cf84855"], &(0x7f0000775000))

23:22:11 executing program 5:
r0 = socket$unix(0x1, 0x5, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1f, &(0x7f0000000100)=""/102, &(0x7f0000000180)=0xeb4c345012db5fc4)

23:22:11 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x0, 0x0)
readv(r0, &(0x7f0000001500)=[{&(0x7f0000000500)=""/4096, 0x1000}], 0x1)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x2)
dup3(r1, r0, 0x0)
write(r0, &(0x7f0000c34fff), 0x1000002c1)

23:22:11 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$seccomp(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f00000000c0)=[{0x6}]})

23:22:11 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x2, &(0x7f0000000000)=[{}, {0x400}]}, 0x10)

[  127.450216] IPVS: ftp: loaded support on port[0] = 21
[  127.458712] IPVS: ftp: loaded support on port[0] = 21
[  127.482261] IPVS: ftp: loaded support on port[0] = 21
[  127.530611] IPVS: ftp: loaded support on port[0] = 21
[  127.569299] IPVS: ftp: loaded support on port[0] = 21
[  127.577551] IPVS: ftp: loaded support on port[0] = 21
[  127.619202] IPVS: ftp: loaded support on port[0] = 21
[  127.620299] IPVS: ftp: loaded support on port[0] = 21
[  129.871225] ip (4704) used greatest stack depth: 54424 bytes left
[  130.424130] ip (4739) used greatest stack depth: 54344 bytes left
[  131.002279] ip (4779) used greatest stack depth: 54328 bytes left
[  131.726107] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.732586] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.776431] device bridge_slave_0 entered promiscuous mode
[  131.842008] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.848540] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.877626] device bridge_slave_0 entered promiscuous mode
[  131.893904] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.900403] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.922303] device bridge_slave_0 entered promiscuous mode
[  131.972965] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.979447] bridge0: port 1(bridge_slave_0) entered disabled state
[  132.009116] device bridge_slave_0 entered promiscuous mode
[  132.053898] bridge0: port 2(bridge_slave_1) entered blocking state
[  132.060415] bridge0: port 2(bridge_slave_1) entered disabled state
[  132.083724] device bridge_slave_1 entered promiscuous mode
[  132.109295] bridge0: port 1(bridge_slave_0) entered blocking state
[  132.115783] bridge0: port 1(bridge_slave_0) entered disabled state
[  132.148328] device bridge_slave_0 entered promiscuous mode
[  132.163401] bridge0: port 1(bridge_slave_0) entered blocking state
[  132.169880] bridge0: port 1(bridge_slave_0) entered disabled state
[  132.183194] device bridge_slave_0 entered promiscuous mode
[  132.196549] bridge0: port 2(bridge_slave_1) entered blocking state
[  132.203077] bridge0: port 2(bridge_slave_1) entered disabled state
[  132.240895] device bridge_slave_1 entered promiscuous mode
[  132.268237] bridge0: port 2(bridge_slave_1) entered blocking state
[  132.274744] bridge0: port 2(bridge_slave_1) entered disabled state
[  132.294480] device bridge_slave_1 entered promiscuous mode
[  132.309121] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  132.317174] bridge0: port 2(bridge_slave_1) entered blocking state
[  132.323643] bridge0: port 2(bridge_slave_1) entered disabled state
[  132.350495] device bridge_slave_1 entered promiscuous mode
[  132.375301] bridge0: port 1(bridge_slave_0) entered blocking state
[  132.381794] bridge0: port 1(bridge_slave_0) entered disabled state
[  132.405190] device bridge_slave_0 entered promiscuous mode
[  132.427831] bridge0: port 2(bridge_slave_1) entered blocking state
[  132.434341] bridge0: port 2(bridge_slave_1) entered disabled state
[  132.449442] device bridge_slave_1 entered promiscuous mode
[  132.457629] bridge0: port 2(bridge_slave_1) entered blocking state
[  132.464131] bridge0: port 2(bridge_slave_1) entered disabled state
[  132.484234] device bridge_slave_1 entered promiscuous mode
[  132.509821] bridge0: port 1(bridge_slave_0) entered blocking state
[  132.516316] bridge0: port 1(bridge_slave_0) entered disabled state
[  132.544354] device bridge_slave_0 entered promiscuous mode
[  132.567657] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  132.585291] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  132.592790] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  132.603964] bridge0: port 2(bridge_slave_1) entered blocking state
[  132.610439] bridge0: port 2(bridge_slave_1) entered disabled state
[  132.656268] device bridge_slave_1 entered promiscuous mode
[  132.679663] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  132.702861] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  132.721133] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  132.793784] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  132.806449] bridge0: port 2(bridge_slave_1) entered blocking state
[  132.812963] bridge0: port 2(bridge_slave_1) entered disabled state
[  132.859195] device bridge_slave_1 entered promiscuous mode
[  132.882970] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  132.919626] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  132.935112] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  132.950515] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  132.966848] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  133.151067] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  133.291936] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  133.450118] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  133.492369] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  133.605363] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  133.624008] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  133.683914] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  133.720810] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  133.757472] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  133.778404] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  133.865270] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  133.896304] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  133.987780] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  134.029905] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  134.054979] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  134.086673] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  134.094485] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  134.134194] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  134.143856] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  134.151151] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  134.195460] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  134.221770] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  134.230916] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  134.290716] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  134.297782] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  134.324933] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  134.332122] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  134.346880] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  134.353983] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  134.416817] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  134.423881] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  134.445381] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  134.462917] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  134.471006] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  134.487007] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  134.508914] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  134.518587] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  134.554368] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  134.561498] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  134.611107] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  134.618199] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  134.728231] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  134.735339] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  134.786406] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  134.793444] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  134.819176] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  134.826246] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  134.972266] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  134.979300] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  135.067408] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  135.074451] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  135.225056] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  135.248884] team0: Port device team_slave_0 added
[  135.294593] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  135.310322] team0: Port device team_slave_0 added
[  135.354809] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  135.383655] team0: Port device team_slave_0 added
[  135.438885] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  135.465702] team0: Port device team_slave_0 added
[  135.486578] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  135.519227] team0: Port device team_slave_0 added
[  135.602872] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  135.620715] team0: Port device team_slave_1 added
[  135.631718] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  135.648504] team0: Port device team_slave_0 added
[  135.678199] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  135.704848] team0: Port device team_slave_1 added
[  135.728657] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  135.744286] team0: Port device team_slave_1 added
[  135.761123] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  135.780950] team0: Port device team_slave_1 added
[  135.812544] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  135.852219] team0: Port device team_slave_1 added
[  135.870088] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  135.892006] team0: Port device team_slave_1 added
[  135.905526] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  135.933256] team0: Port device team_slave_0 added
[  135.961465] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  135.977342] team0: Port device team_slave_0 added
[  135.985052] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  135.992961] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  136.002620] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  136.011212] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  136.018907] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  136.037619] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  136.090309] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  136.127994] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  136.165422] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  136.196187] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  136.207145] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  136.225429] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  136.258536] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  136.267139] team0: Port device team_slave_1 added
[  136.285185] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  136.293689] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  136.301574] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  136.310716] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  136.324661] team0: Port device team_slave_1 added
[  136.334754] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  136.354295] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  136.390130] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  136.420467] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  136.444126] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  136.459361] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  136.474054] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  136.481778] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  136.493704] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  136.507011] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  136.521870] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  136.550869] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  136.572146] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  136.588552] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  136.605277] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  136.623100] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  136.636918] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  136.657926] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  136.668703] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  136.678619] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  136.687908] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  136.695632] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  136.711417] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  136.739717] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  136.760123] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  136.780916] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  136.805319] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  136.828791] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  136.837801] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  136.847092] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  136.866813] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  136.876734] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  136.886839] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  136.901209] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  136.911893] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  136.937810] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  136.955283] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  136.972797] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  136.983537] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  136.995222] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  137.008220] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  137.026183] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  137.035926] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  137.051217] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  137.059426] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  137.066972] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  137.093585] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  137.131910] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  137.162282] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  137.195877] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  137.219794] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  137.235735] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  137.248581] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  137.257404] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  137.267165] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  137.275368] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  137.283843] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  137.297160] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  137.304553] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  137.313942] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  137.344419] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  137.369557] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  137.379699] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  137.389948] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  137.421197] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  137.454149] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  137.479198] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  137.487560] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  137.496827] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  137.526797] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  137.554489] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  137.571411] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  137.596714] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  137.623788] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  137.642829] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  137.678256] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  137.685707] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  137.708316] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  137.750401] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  137.763742] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  137.796359] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  140.284486] bridge0: port 2(bridge_slave_1) entered blocking state
[  140.290972] bridge0: port 2(bridge_slave_1) entered forwarding state
[  140.297863] bridge0: port 1(bridge_slave_0) entered blocking state
[  140.304317] bridge0: port 1(bridge_slave_0) entered forwarding state
[  140.361745] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  140.369135] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  140.384607] bridge0: port 2(bridge_slave_1) entered blocking state
[  140.391109] bridge0: port 2(bridge_slave_1) entered forwarding state
[  140.397911] bridge0: port 1(bridge_slave_0) entered blocking state
[  140.404406] bridge0: port 1(bridge_slave_0) entered forwarding state
[  140.422220] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  140.459446] bridge0: port 2(bridge_slave_1) entered blocking state
[  140.465915] bridge0: port 2(bridge_slave_1) entered forwarding state
[  140.472732] bridge0: port 1(bridge_slave_0) entered blocking state
[  140.479157] bridge0: port 1(bridge_slave_0) entered forwarding state
[  140.529922] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  140.536927] bridge0: port 2(bridge_slave_1) entered blocking state
[  140.543435] bridge0: port 2(bridge_slave_1) entered forwarding state
[  140.550288] bridge0: port 1(bridge_slave_0) entered blocking state
[  140.556704] bridge0: port 1(bridge_slave_0) entered forwarding state
[  140.566991] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  140.576637] bridge0: port 2(bridge_slave_1) entered blocking state
[  140.583097] bridge0: port 2(bridge_slave_1) entered forwarding state
[  140.589906] bridge0: port 1(bridge_slave_0) entered blocking state
[  140.596374] bridge0: port 1(bridge_slave_0) entered forwarding state
[  140.637687] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  140.644522] bridge0: port 2(bridge_slave_1) entered blocking state
[  140.650983] bridge0: port 2(bridge_slave_1) entered forwarding state
[  140.657801] bridge0: port 1(bridge_slave_0) entered blocking state
[  140.664304] bridge0: port 1(bridge_slave_0) entered forwarding state
[  140.673292] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  140.680391] bridge0: port 2(bridge_slave_1) entered blocking state
[  140.686846] bridge0: port 2(bridge_slave_1) entered forwarding state
[  140.693656] bridge0: port 1(bridge_slave_0) entered blocking state
[  140.700128] bridge0: port 1(bridge_slave_0) entered forwarding state
[  140.708708] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  140.754274] bridge0: port 2(bridge_slave_1) entered blocking state
[  140.760759] bridge0: port 2(bridge_slave_1) entered forwarding state
[  140.767630] bridge0: port 1(bridge_slave_0) entered blocking state
[  140.774101] bridge0: port 1(bridge_slave_0) entered forwarding state
[  140.880906] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  141.407797] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  141.423012] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  141.453395] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  141.469672] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  141.497489] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  141.512960] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  141.523488] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  151.181543] 8021q: adding VLAN 0 to HW filter on device bond0
[  151.310375] 8021q: adding VLAN 0 to HW filter on device bond0
[  151.463650] 8021q: adding VLAN 0 to HW filter on device bond0
[  151.502897] 8021q: adding VLAN 0 to HW filter on device bond0
[  151.545283] 8021q: adding VLAN 0 to HW filter on device bond0
[  151.587698] 8021q: adding VLAN 0 to HW filter on device bond0
[  151.616195] 8021q: adding VLAN 0 to HW filter on device bond0
[  151.835892] 8021q: adding VLAN 0 to HW filter on device bond0
[  152.167430] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  152.341451] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  152.473489] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  152.488375] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  152.542732] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  152.611257] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  152.661631] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  152.851846] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  153.257716] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  153.264132] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  153.274935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  153.381393] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  153.387733] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  153.403763] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  153.443412] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  153.449761] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  153.465885] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  153.497415] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  153.508217] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  153.529222] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  153.609500] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  153.615832] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  153.627268] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  153.772657] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  153.779107] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  153.789341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  153.842986] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  153.849337] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  153.859373] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  153.896782] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  153.903180] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  153.923840] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  154.409511] 8021q: adding VLAN 0 to HW filter on device team0
[  154.455845] 8021q: adding VLAN 0 to HW filter on device team0
[  154.485481] 8021q: adding VLAN 0 to HW filter on device team0
[  154.520468] 8021q: adding VLAN 0 to HW filter on device team0
[  154.715188] 8021q: adding VLAN 0 to HW filter on device team0
[  154.747845] 8021q: adding VLAN 0 to HW filter on device team0
[  154.848129] 8021q: adding VLAN 0 to HW filter on device team0
[  155.073644] 8021q: adding VLAN 0 to HW filter on device team0
23:22:45 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)={0xb, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff9c}, 0x2c)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0xb, 0x7f, 0x7, 0x5, 0x1}, 0x2c)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000000)={r0, &(0x7f0000000180), &(0x7f0000000080)=""/140}, 0x18)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={r0, &(0x7f0000000000), &(0x7f0000000080)}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000180)={r0, &(0x7f00000003c0), &(0x7f0000000200)=""/208}, 0x18)

23:22:45 executing program 4:
r0 = perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fadvise64(r0, 0x0, 0x4, 0x3)
lseek(0xffffffffffffffff, 0x0, 0x0)
syz_emit_ethernet(0x1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ffffffffffff0180c206000086dd6006f526000811000000000800000000000000f4ac0000000000ff02000000000000000000000000000100004e20000890782d2e145ed4854cf84855"], &(0x7f0000775000))

23:22:45 executing program 0:

23:22:45 executing program 5:

23:22:46 executing program 4:

23:22:46 executing program 0:

23:22:46 executing program 7:

23:22:46 executing program 5:

23:22:46 executing program 3:

23:22:46 executing program 1:

23:22:46 executing program 4:

23:22:46 executing program 0:

23:22:46 executing program 7:

[  161.464837] audit: type=1326 audit(1531005766.463:3): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=6632 comm="syz-executor2" exe="/root/syz-executor2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x455ba9 code=0x0
[  161.529595] ==================================================================
[  161.537037] BUG: KMSAN: kernel-infoleak in copy_from_read_buf+0x311/0x890
[  161.544008] CPU: 1 PID: 6592 Comm: syz-executor6 Not tainted 4.17.0+ #22
[  161.550861] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  161.560231] Call Trace:
[  161.562850]  dump_stack+0x185/0x1d0
[  161.566509]  kmsan_report+0x188/0x2a0
[  161.570347]  kmsan_internal_check_memory+0x17e/0x1f0
[  161.575486]  kmsan_copy_to_user+0x73/0xb0
[  161.579660]  copy_from_read_buf+0x311/0x890
[  161.584011]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  161.589441]  n_tty_read+0x178f/0x2f70
[  161.593278]  ? wait_woken+0x2e0/0x2e0
[  161.597116]  ? rcu_all_qs+0x32/0x1f0
[  161.600861]  ? _cond_resched+0x3c/0xd0
[  161.604790]  ? ldsem_down_read+0x95/0xad0
[  161.608975]  ? do_futex+0xcac/0x6c20
[  161.612727]  ? n_tty_flush_buffer+0x430/0x430
[  161.617265]  tty_read+0x26e/0x6c0
[  161.620749]  do_iter_read+0x884/0xd80
[  161.624582]  ? release_one_tty+0x5f0/0x5f0
[  161.628870]  do_readv+0x295/0x5f0
[  161.632366]  __x64_sys_readv+0xe1/0x120
[  161.636363]  ? vfs_readv+0x260/0x260
[  161.640125]  do_syscall_64+0x15b/0x230
[  161.644039]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  161.649236] RIP: 0033:0x455ba9
[  161.652453] RSP: 002b:00007fa94d8c1c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  161.660359] RAX: ffffffffffffffda RBX: 00007fa94d8c26d4 RCX: 0000000000455ba9
[  161.667634] RDX: 0000000000000001 RSI: 0000000020001500 RDI: 0000000000000013
[  161.674896] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  161.682153] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  161.689412] R13: 00000000004c09f5 R14: 00000000004d09c0 R15: 0000000000000000
[  161.696676] 
[  161.698290] Uninit was created at:
[  161.701835]  kmsan_internal_alloc_meta_for_pages+0x146/0x700
[  161.707624]  kmsan_alloc_page+0x75/0xd0
[  161.711587]  __alloc_pages_nodemask+0xf7b/0x5cc0
[  161.716335]  alloc_pages_current+0x6b1/0x970
[  161.720735]  __vmalloc_node_range+0x8bf/0x1170
[  161.725309]  vmalloc+0xd8/0xf0
[  161.728492]  n_tty_open+0x4a/0x490
[  161.732040]  tty_ldisc_setup+0x17f/0x670
[  161.736094]  tty_init_dev+0xb82/0x1020
[  161.739969]  ptmx_open+0x2bb/0x7c0
[  161.743503]  chrdev_open+0xc25/0xd90
[  161.747206]  do_dentry_open+0xccc/0x1440
[  161.751272]  vfs_open+0x1b6/0x2f0
[  161.754717]  path_openat+0x4771/0x6640
[  161.758596]  do_filp_open+0x261/0x640
[  161.762384]  do_sys_open+0x624/0x960
[  161.766088]  __x64_sys_openat+0x129/0x170
[  161.770226]  do_syscall_64+0x15b/0x230
[  161.774110]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  161.779283] 
[  161.780897] Byte 4094 of 4095 is uninitialized
[  161.785465] Memory access starts at ffffc90011a9905e
[  161.790550] ==================================================================
[  161.797894] Disabling lock debugging due to kernel taint
[  161.803331] Kernel panic - not syncing: panic_on_warn set ...
[  161.803331] 
[  161.810689] CPU: 1 PID: 6592 Comm: syz-executor6 Tainted: G    B             4.17.0+ #22
[  161.818914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  161.828260] Call Trace:
[  161.830844]  dump_stack+0x185/0x1d0
[  161.834465]  panic+0x3d0/0x9b0
[  161.837665]  kmsan_report+0x29e/0x2a0
[  161.841465]  kmsan_internal_check_memory+0x17e/0x1f0
[  161.846566]  kmsan_copy_to_user+0x73/0xb0
[  161.850707]  copy_from_read_buf+0x311/0x890
[  161.855029]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  161.860394]  n_tty_read+0x178f/0x2f70
[  161.864187]  ? wait_woken+0x2e0/0x2e0
[  161.867985]  ? rcu_all_qs+0x32/0x1f0
[  161.871699]  ? _cond_resched+0x3c/0xd0
[  161.875575]  ? ldsem_down_read+0x95/0xad0
[  161.879716]  ? do_futex+0xcac/0x6c20
[  161.883427]  ? n_tty_flush_buffer+0x430/0x430
[  161.887911]  tty_read+0x26e/0x6c0
[  161.891364]  do_iter_read+0x884/0xd80
[  161.895165]  ? release_one_tty+0x5f0/0x5f0
[  161.899394]  do_readv+0x295/0x5f0
[  161.902862]  __x64_sys_readv+0xe1/0x120
[  161.906832]  ? vfs_readv+0x260/0x260
[  161.910536]  do_syscall_64+0x15b/0x230
[  161.914423]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  161.919602] RIP: 0033:0x455ba9
[  161.922778] RSP: 002b:00007fa94d8c1c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  161.930491] RAX: ffffffffffffffda RBX: 00007fa94d8c26d4 RCX: 0000000000455ba9
[  161.937753] RDX: 0000000000000001 RSI: 0000000020001500 RDI: 0000000000000013
[  161.945015] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  161.952286] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  161.959553] R13: 00000000004c09f5 R14: 00000000004d09c0 R15: 0000000000000000
[  161.967440] Dumping ftrace buffer:
[  161.970961]    (ftrace buffer empty)
[  161.974659] Kernel Offset: disabled
[  161.978274] Rebooting in 86400 seconds..