Warning: Permanently added '10.128.0.12' (ECDSA) to the list of known hosts.
2019/09/28 01:20:52 fuzzer started
2019/09/28 01:20:57 dialing manager at 10.128.0.26:37065
2019/09/28 01:20:57 syscalls: 2385
2019/09/28 01:20:57 code coverage: enabled
2019/09/28 01:20:57 comparison tracing: CONFIG_KCOV_ENABLE_COMPARISONS is not enabled
2019/09/28 01:20:57 extra coverage: enabled
2019/09/28 01:20:57 setuid sandbox: enabled
2019/09/28 01:20:57 namespace sandbox: enabled
2019/09/28 01:20:57 Android sandbox: /sys/fs/selinux/policy does not exist
2019/09/28 01:20:57 fault injection: enabled
2019/09/28 01:20:57 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2019/09/28 01:20:57 net packet injection: enabled
2019/09/28 01:20:57 net device setup: enabled
syzkaller login: [  135.302935][T11469] ==================================================================
[  135.311080][T11469] BUG: KMSAN: uninit-value in kmem_cache_free+0x3df/0x2b70
[  135.318282][T11469] CPU: 1 PID: 11469 Comm: syz-fuzzer Not tainted 5.3.0-rc7+ #0
[  135.325821][T11469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  135.335870][T11469] Call Trace:
[  135.339170][T11469]  dump_stack+0x191/0x1f0
[  135.343508][T11469]  kmsan_report+0x162/0x2d0
[  135.348021][T11469]  __msan_warning+0x75/0xe0
[  135.352531][T11469]  kmem_cache_free+0x3df/0x2b70
[  135.357381][T11469]  ? kmsan_set_origin+0x6a/0xf0
[  135.362231][T11469]  ? kfree_skb+0x473/0x4c0
[  135.366677][T11469]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  135.372775][T11469]  kfree_skb+0x473/0x4c0
[  135.377002][T11469]  ? packet_rcv_spkt+0x719/0x840
[  135.381918][T11469]  packet_rcv_spkt+0x719/0x840
[  135.386667][T11469]  ? packet_rcv+0x2190/0x2190
[  135.391357][T11469]  dev_queue_xmit_nit+0x1125/0x1200
[  135.396556][T11469]  dev_hard_start_xmit+0x21e/0xab0
[  135.401653][T11469]  ? kmsan_get_shadow_origin_ptr+0x6e/0x4c0
[  135.407528][T11469]  sch_direct_xmit+0x56c/0x18c0
[  135.412359][T11469]  ? kmsan_set_origin+0x6a/0xf0
[  135.417199][T11469]  __dev_queue_xmit+0x1e53/0x4270
[  135.422245][T11469]  dev_queue_xmit+0x4b/0x60
[  135.426743][T11469]  ip_finish_output2+0x20c6/0x25d0
[  135.431841][T11469]  ? __msan_metadata_ptr_for_load_2+0x10/0x20
[  135.437886][T11469]  ? nf_ct_deliver_cached_events+0x4d5/0x6e0
[  135.443855][T11469]  __ip_finish_output+0xaf8/0xda0
[  135.448869][T11469]  ip_finish_output+0x2db/0x420
[  135.453708][T11469]  ip_output+0x541/0x610
[  135.457931][T11469]  ? ip_mc_finish_output+0x6d0/0x6d0
[  135.463210][T11469]  ? ip_finish_output+0x420/0x420
[  135.468213][T11469]  __ip_queue_xmit+0x1caf/0x21f0
[  135.473149][T11469]  ip_queue_xmit+0xcc/0xf0
[  135.477548][T11469]  ? tcp_v4_inbound_md5_hash+0xd10/0xd10
[  135.483175][T11469]  __tcp_transmit_skb+0x409e/0x5c60
[  135.488369][T11469]  __tcp_send_ack+0x701/0x840
[  135.493038][T11469]  tcp_send_ack+0x68/0x90
[  135.497344][T11469]  tcp_cleanup_rbuf+0x764/0x800
[  135.502190][T11469]  tcp_recvmsg+0x334d/0x4ff0
[  135.506805][T11469]  ? kmsan_get_shadow_origin_ptr+0x6e/0x4c0
[  135.512678][T11469]  ? tcp_mmap+0x150/0x150
[  135.517161][T11469]  ? tcp_mmap+0x150/0x150
[  135.521470][T11469]  inet_recvmsg+0x237/0x7d0
[  135.525958][T11469]  ? kmsan_get_shadow_origin_ptr+0x6e/0x4c0
[  135.531833][T11469]  ? inet_sendpage+0x2c0/0x2c0
[  135.536659][T11469]  ? inet_sendpage+0x2c0/0x2c0
[  135.541399][T11469]  sock_read_iter+0x5be/0x660
[  135.546079][T11469]  ? kernel_sock_ip_overhead+0x340/0x340
[  135.551689][T11469]  __vfs_read+0xa67/0xc90
[  135.556010][T11469]  vfs_read+0x359/0x6f0
[  135.560147][T11469]  ksys_read+0x265/0x430
[  135.564391][T11469]  __se_sys_read+0x92/0xb0
[  135.568790][T11469]  __x64_sys_read+0x4a/0x70
[  135.573288][T11469]  do_syscall_64+0xbc/0xf0
[  135.577712][T11469]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  135.583602][T11469] RIP: 0033:0x47fd44
[  135.587737][T11469] Code: ff ff cc cc cc cc e8 9b 40 fb ff 48 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 45 31 d2 45 31 c0 45 31 c9 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30
[  135.607413][T11469] RSP: 002b:000000c4202bc710 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  135.615892][T11469] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000047fd44
[  135.623843][T11469] RDX: 0000000000001000 RSI: 000000c420040000 RDI: 0000000000000003
[  135.631794][T11469] RBP: 000000c4202bc760 R08: 0000000000000000 R09: 0000000000000000
[  135.639752][T11469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000008
[  135.647726][T11469] R13: 0000000000000008 R14: 0000000000000002 R15: ffffffffffffffff
[  135.655684][T11469] 
[  135.657993][T11469] Uninit was stored to memory at:
[  135.663018][T11469]  kmsan_internal_chain_origin+0xcc/0x150
[  135.668713][T11469]  __msan_chain_origin+0x6b/0xe0
[  135.673626][T11469]  ___slab_alloc+0x1dbc/0x1fb0
[  135.678363][T11469]  kmem_cache_alloc+0xade/0xd10
[  135.683192][T11469]  skb_clone+0x326/0x5d0
[  135.687411][T11469]  dev_queue_xmit_nit+0x539/0x1200
[  135.692495][T11469]  dev_hard_start_xmit+0x21e/0xab0
[  135.697598][T11469]  sch_direct_xmit+0x56c/0x18c0
[  135.702424][T11469]  __dev_queue_xmit+0x1e53/0x4270
[  135.707424][T11469]  dev_queue_xmit+0x4b/0x60
[  135.711916][T11469]  ip_finish_output2+0x20c6/0x25d0
[  135.717003][T11469]  __ip_finish_output+0xaf8/0xda0
[  135.722006][T11469]  ip_finish_output+0x2db/0x420
[  135.726846][T11469]  ip_output+0x541/0x610
[  135.731078][T11469]  __ip_queue_xmit+0x1caf/0x21f0
[  135.736004][T11469]  ip_queue_xmit+0xcc/0xf0
[  135.740447][T11469]  __tcp_transmit_skb+0x409e/0x5c60
[  135.745626][T11469]  __tcp_send_ack+0x701/0x840
[  135.750286][T11469]  tcp_send_ack+0x68/0x90
[  135.754604][T11469]  tcp_cleanup_rbuf+0x764/0x800
[  135.759429][T11469]  tcp_recvmsg+0x334d/0x4ff0
[  135.764005][T11469]  inet_recvmsg+0x237/0x7d0
[  135.768493][T11469]  sock_read_iter+0x5be/0x660
[  135.773146][T11469]  __vfs_read+0xa67/0xc90
[  135.777449][T11469]  vfs_read+0x359/0x6f0
[  135.781577][T11469]  ksys_read+0x265/0x430
[  135.785882][T11469]  __se_sys_read+0x92/0xb0
[  135.790274][T11469]  __x64_sys_read+0x4a/0x70
[  135.794753][T11469]  do_syscall_64+0xbc/0xf0
[  135.799150][T11469]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  135.805013][T11469] 
[  135.807318][T11469] Uninit was created at:
[  135.811536][T11469]  kmsan_internal_poison_shadow+0x58/0xb0
[  135.817229][T11469]  kmsan_slab_free+0x8d/0x100
[  135.821882][T11469]  kmem_cache_free_bulk+0x3ad9/0x3f50
[  135.827239][T11469]  __kfree_skb_flush+0xb0/0x100
[  135.832080][T11469]  net_rx_action+0x1908/0x1950
[  135.836839][T11469]  __do_softirq+0x4a1/0x83a
[  135.841315][T11469]  irq_exit+0x230/0x280
[  135.845476][T11469]  do_IRQ+0x20d/0x3a0
[  135.849433][T11469]  ret_from_intr+0x0/0x33
[  135.853736][T11469]  kmsan_get_shadow_origin_ptr+0x124/0x4c0
[  135.859515][T11469]  __msan_metadata_ptr_for_load_1+0x10/0x20
[  135.865385][T11469]  tcp_options_write+0x2bd/0xf20
[  135.870300][T11469]  __tcp_transmit_skb+0x11fa/0x5c60
[  135.875473][T11469]  __tcp_send_ack+0x701/0x840
[  135.880123][T11469]  tcp_send_ack+0x68/0x90
[  135.884426][T11469]  tcp_cleanup_rbuf+0x764/0x800
[  135.889265][T11469]  tcp_recvmsg+0x334d/0x4ff0
[  135.893841][T11469]  inet_recvmsg+0x237/0x7d0
[  135.898423][T11469]  sock_read_iter+0x5be/0x660
[  135.903084][T11469]  __vfs_read+0xa67/0xc90
[  135.907392][T11469]  vfs_read+0x359/0x6f0
[  135.911529][T11469]  ksys_read+0x265/0x430
[  135.915748][T11469]  __se_sys_read+0x92/0xb0
[  135.920144][T11469]  __x64_sys_read+0x4a/0x70
[  135.924640][T11469]  do_syscall_64+0xbc/0xf0
[  135.929038][T11469]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  135.934916][T11469] ==================================================================
[  135.942982][T11469] Disabling lock debugging due to kernel taint
[  135.949113][T11469] Kernel panic - not syncing: panic_on_warn set ...
[  135.955689][T11469] CPU: 1 PID: 11469 Comm: syz-fuzzer Tainted: G    B             5.3.0-rc7+ #0
[  135.964606][T11469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  135.974637][T11469] Call Trace:
[  135.977914][T11469]  dump_stack+0x191/0x1f0
[  135.982230][T11469]  panic+0x3c9/0xc1e
[  135.986119][T11469]  kmsan_report+0x2ca/0x2d0
[  135.990602][T11469]  __msan_warning+0x75/0xe0
[  135.995086][T11469]  kmem_cache_free+0x3df/0x2b70
[  135.999911][T11469]  ? kmsan_set_origin+0x6a/0xf0
[  136.004740][T11469]  ? kfree_skb+0x473/0x4c0
[  136.009174][T11469]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  136.015232][T11469]  kfree_skb+0x473/0x4c0
[  136.019454][T11469]  ? packet_rcv_spkt+0x719/0x840
[  136.024388][T11469]  packet_rcv_spkt+0x719/0x840
[  136.029137][T11469]  ? packet_rcv+0x2190/0x2190
[  136.033791][T11469]  dev_queue_xmit_nit+0x1125/0x1200
[  136.038979][T11469]  dev_hard_start_xmit+0x21e/0xab0
[  136.044093][T11469]  ? kmsan_get_shadow_origin_ptr+0x6e/0x4c0
[  136.049969][T11469]  sch_direct_xmit+0x56c/0x18c0
[  136.054794][T11469]  ? kmsan_set_origin+0x6a/0xf0
[  136.059630][T11469]  __dev_queue_xmit+0x1e53/0x4270
[  136.064648][T11469]  dev_queue_xmit+0x4b/0x60
[  136.069136][T11469]  ip_finish_output2+0x20c6/0x25d0
[  136.074227][T11469]  ? __msan_metadata_ptr_for_load_2+0x10/0x20
[  136.080270][T11469]  ? nf_ct_deliver_cached_events+0x4d5/0x6e0
[  136.086240][T11469]  __ip_finish_output+0xaf8/0xda0
[  136.091253][T11469]  ip_finish_output+0x2db/0x420
[  136.096100][T11469]  ip_output+0x541/0x610
[  136.100339][T11469]  ? ip_mc_finish_output+0x6d0/0x6d0
[  136.105602][T11469]  ? ip_finish_output+0x420/0x420
[  136.110602][T11469]  __ip_queue_xmit+0x1caf/0x21f0
[  136.115534][T11469]  ip_queue_xmit+0xcc/0xf0
[  136.119932][T11469]  ? tcp_v4_inbound_md5_hash+0xd10/0xd10
[  136.125541][T11469]  __tcp_transmit_skb+0x409e/0x5c60
[  136.130740][T11469]  __tcp_send_ack+0x701/0x840
[  136.135399][T11469]  tcp_send_ack+0x68/0x90
[  136.139780][T11469]  tcp_cleanup_rbuf+0x764/0x800
[  136.144641][T11469]  tcp_recvmsg+0x334d/0x4ff0
[  136.149247][T11469]  ? kmsan_get_shadow_origin_ptr+0x6e/0x4c0
[  136.155124][T11469]  ? tcp_mmap+0x150/0x150
[  136.159444][T11469]  ? tcp_mmap+0x150/0x150
[  136.163755][T11469]  inet_recvmsg+0x237/0x7d0
[  136.168257][T11469]  ? kmsan_get_shadow_origin_ptr+0x6e/0x4c0
[  136.174133][T11469]  ? inet_sendpage+0x2c0/0x2c0
[  136.178873][T11469]  ? inet_sendpage+0x2c0/0x2c0
[  136.183615][T11469]  sock_read_iter+0x5be/0x660
[  136.188278][T11469]  ? kernel_sock_ip_overhead+0x340/0x340
[  136.193887][T11469]  __vfs_read+0xa67/0xc90
[  136.198209][T11469]  vfs_read+0x359/0x6f0
[  136.202367][T11469]  ksys_read+0x265/0x430
[  136.206623][T11469]  __se_sys_read+0x92/0xb0
[  136.211027][T11469]  __x64_sys_read+0x4a/0x70
[  136.215509][T11469]  do_syscall_64+0xbc/0xf0
[  136.219905][T11469]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  136.225775][T11469] RIP: 0033:0x47fd44
[  136.229647][T11469] Code: ff ff cc cc cc cc e8 9b 40 fb ff 48 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 45 31 d2 45 31 c0 45 31 c9 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30
[  136.249229][T11469] RSP: 002b:000000c4202bc710 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  136.257614][T11469] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000047fd44
[  136.265562][T11469] RDX: 0000000000001000 RSI: 000000c420040000 RDI: 0000000000000003
[  136.273523][T11469] RBP: 000000c4202bc760 R08: 0000000000000000 R09: 0000000000000000
[  136.281570][T11469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000008
[  136.289535][T11469] R13: 0000000000000008 R14: 0000000000000002 R15: ffffffffffffffff
[  136.298921][T11469] Kernel Offset: disabled
[  136.303247][T11469] Rebooting in 86400 seconds..