INIT: Entering runlevel: 2
[[36minfo[39;49m] Using makefile-style concurrent boot in runlevel 2.
[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.10.56' (ECDSA) to the list of known hosts.
syzkaller login: [   44.269797] IPVS: ftp: loaded support on port[0] = 21
net.ipv6.conf.syz_tun.accept_dad = 0
net.ipv6.conf.syz_tun.router_solicitations = 0
[   44.562451] bridge0: port 1(bridge_slave_0) entered blocking state
[   44.568869] bridge0: port 1(bridge_slave_0) entered disabled state
[   44.576329] device bridge_slave_0 entered promiscuous mode
[   44.597933] bridge0: port 2(bridge_slave_1) entered blocking state
[   44.604340] bridge0: port 2(bridge_slave_1) entered disabled state
[   44.611727] device bridge_slave_1 entered promiscuous mode
[   44.633229] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   44.655174] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   44.716730] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   44.741629] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   44.836910] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   44.844404] team0: Port device team_slave_0 added
[   44.865650] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   44.872973] team0: Port device team_slave_1 added
[   44.894547] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   44.919479] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   44.940333] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   44.949800] ip (4578) used greatest stack depth: 54240 bytes left
[   44.967888] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
RTNETLINK answers: Operation not supported
RTNETLINK answers: No buffer space available
RTNETLINK answers: Operation not supported
[   45.163858] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.170295] bridge0: port 2(bridge_slave_1) entered forwarding state
[   45.177167] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.183586] bridge0: port 1(bridge_slave_0) entered forwarding state
RTNETLINK answers: Operation not supported
RTNETLINK answers: Operation not supported
RTNETLINK answers: Operation not supported
RTNETLINK answers: Invalid argument
RTNETLINK answers: Invalid argument
RTNETLINK answers: Invalid argument
[   45.879244] 8021q: adding VLAN 0 to HW filter on device bond0
[   45.948367] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   46.018474] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   46.024702] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   46.032309] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   46.097663] 8021q: adding VLAN 0 to HW filter on device team0
executing program
[   46.480428] ==================================================================
[   46.488174] BUG: KMSAN: uninit-value in gre_rcv+0x1241/0x1980
[   46.494053] CPU: 0 PID: 4508 Comm: syz-executor457 Not tainted 4.16.0+ #87
[   46.501068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   46.510494] Call Trace:
[   46.513059]  <IRQ>
[   46.515208]  dump_stack+0x185/0x1d0
[   46.518810]  ? gre_rcv+0x1241/0x1980
[   46.522502]  kmsan_report+0x142/0x240
[   46.526280]  __msan_warning_32+0x6c/0xb0
[   46.530320]  gre_rcv+0x1241/0x1980
[   46.534025]  ? raw_local_deliver+0x63/0x1660
[   46.538421]  ? ip_local_deliver_finish+0x27b/0xec0
[   46.543331]  ? erspan_xmit+0x2ce0/0x2ce0
[   46.547371]  gre_rcv+0x2dc/0x3b0
[   46.550714]  ? gre_parse_header+0x14b0/0x14b0
[   46.555186]  ip_local_deliver_finish+0x874/0xec0
[   46.559924]  ip_local_deliver+0x43c/0x4e0
[   46.564059]  ? ip_local_deliver+0x4e0/0x4e0
[   46.568361]  ? ip_call_ra_chain+0x7b0/0x7b0
[   46.572657]  ip_rcv_finish+0xa36/0x1d00
[   46.576610]  ? __msan_metadata_ptr_for_load_2+0x10/0x20
[   46.581956]  ? nf_hook_slow+0x36f/0x3d0
[   46.585906]  ip_rcv+0x118f/0x16d0
[   46.589344]  ? ip_rcv+0x16d0/0x16d0
[   46.592956]  __netif_receive_skb_core+0x47df/0x4a90
[   46.597954]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[   46.603297]  ? kmsan_write_aligned_origin_inline+0x10/0x60
[   46.608901]  ? ip_local_deliver_finish+0xec0/0xec0
[   46.613808]  process_backlog+0x62d/0xe20
[   46.617852]  ? rps_trigger_softirq+0x2f0/0x2f0
[   46.622411]  net_rx_action+0x7c1/0x1a70
[   46.626371]  ? net_tx_action+0xab0/0xab0
[   46.630412]  __do_softirq+0x56d/0x93d
[   46.634194]  do_softirq_own_stack+0x2a/0x40
[   46.638507]  </IRQ>
[   46.640728]  __local_bh_enable_ip+0x114/0x140
[   46.645202]  local_bh_enable+0x36/0x40
[   46.649077]  ip_finish_output2+0x135a/0x1470
[   46.653473]  ip_finish_output+0xcb2/0xff0
[   46.657602]  ip_mc_output+0x1029/0x15e0
[   46.661551]  ? __ip_local_out+0x6d5/0x7e0
[   46.665679]  ? ip_build_and_send_pkt+0xec0/0xec0
[   46.670602]  ip_queue_xmit+0x1a1e/0x1d10
[   46.674651]  sctp_v4_xmit+0x188/0x210
[   46.678430]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[   46.683857]  ? sctp_addr_wq_timeout_handler+0x840/0x840
[   46.689205]  sctp_packet_transmit+0x3e1b/0x42c0
[   46.693857]  ? sctp_packet_release_owner+0x70/0x70
[   46.698765]  ? sctp_csum_update+0xa0/0xa0
[   46.702897]  sctp_outq_flush+0x11e6/0x6320
[   46.707114]  ? __mod_timer+0x360/0x2c40
[   46.711074]  ? validate_store+0xb0/0x980
[   46.715119]  sctp_outq_uncork+0xd2/0xf0
[   46.719077]  sctp_do_sm+0x860f/0x8c20
[   46.722857]  ? __msan_poison_alloca+0x15c/0x1d0
[   46.727503]  ? _raw_spin_unlock_bh+0x57/0x70
[   46.731897]  ? __local_bh_enable_ip+0x3b/0x140
[   46.736458]  ? _raw_spin_unlock_bh+0x57/0x70
[   46.740847]  ? __local_bh_enable_ip+0x3b/0x140
[   46.745405]  ? _raw_spin_unlock_bh+0x57/0x70
[   46.749796]  sctp_primitive_ASSOCIATE+0x172/0x1a0
[   46.754625]  __sctp_connect+0x1633/0x1ae0
[   46.758755]  sctp_connect+0x1b0/0x200
[   46.762533]  ? sctp_close+0xdb0/0xdb0
[   46.766310]  inet_dgram_connect+0x2e8/0x4d0
[   46.770611]  ? inet_bind+0xf50/0xf50
[   46.774302]  SYSC_connect+0x41a/0x510
[   46.778095]  ? SYSC_setsockopt+0x533/0x570
[   46.782314]  SyS_connect+0x54/0x80
[   46.785833]  do_syscall_64+0x309/0x430
[   46.789703]  ? SYSC_accept+0xb0/0xb0
[   46.793398]  entry_SYSCALL_64_after_hwframe+0x3d/0xa2
[   46.798562] RIP: 0033:0x441a29
[   46.801726] RSP: 002b:00007ffeada3d8b8 EFLAGS: 00000217 ORIG_RAX: 000000000000002a
[   46.809411] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000441a29
[   46.816657] RDX: 000000000000001c RSI: 0000000020000000 RDI: 0000000000000003
[   46.823902] RBP: 00000000006cd018 R08: 00007ffe0000474d R09: 00007ffe0000474d
[   46.831151] R10: 0000000000000010 R11: 0000000000000217 R12: 0000000000402720
[   46.838398] R13: 00000000004027b0 R14: 0000000000000000 R15: 0000000000000000
[   46.845647] 
[   46.847250] Uninit was stored to memory at:
[   46.851553]  kmsan_internal_chain_origin+0x12b/0x210
[   46.856633]  kmsan_memcpy_origins+0x11d/0x170
[   46.861114]  __msan_memcpy+0x109/0x160
[   46.864980]  pskb_expand_head+0x3a6/0x1a70
[   46.869539]  ip_tunnel_xmit+0x2dfe/0x37c0
[   46.873672]  erspan_xmit+0x1cc5/0x2ce0
[   46.877903]  dev_hard_start_xmit+0x5f1/0xc70
[   46.882294]  sch_direct_xmit+0x540/0x8f0
[   46.886332]  __qdisc_run+0x1785/0x3730
[   46.890194]  __dev_queue_xmit+0x1d50/0x3520
[   46.894493]  dev_queue_xmit+0x4b/0x60
[   46.898268]  neigh_resolve_output+0xac6/0xb60
[   46.902741]  ip_finish_output2+0x1344/0x1470
[   46.907124]  ip_finish_output+0xcb2/0xff0
[   46.911249]  ip_mc_output+0x1029/0x15e0
[   46.915199]  ip_queue_xmit+0x1a1e/0x1d10
[   46.919233]  sctp_v4_xmit+0x188/0x210
[   46.923011]  sctp_packet_transmit+0x3e1b/0x42c0
[   46.927666]  sctp_outq_flush+0x11e6/0x6320
[   46.931877]  sctp_outq_uncork+0xd2/0xf0
[   46.935829]  sctp_do_sm+0x860f/0x8c20
[   46.939612]  sctp_primitive_ASSOCIATE+0x172/0x1a0
[   46.944450]  __sctp_connect+0x1633/0x1ae0
[   46.948598]  sctp_connect+0x1b0/0x200
[   46.952385]  inet_dgram_connect+0x2e8/0x4d0
[   46.956691]  SYSC_connect+0x41a/0x510
[   46.960466]  SyS_connect+0x54/0x80
[   46.963981]  do_syscall_64+0x309/0x430
[   46.967846]  entry_SYSCALL_64_after_hwframe+0x3d/0xa2
[   46.973005] Uninit was created at:
[   46.976529]  kmsan_internal_poison_shadow+0xb8/0x1b0
[   46.981607]  kmsan_kmalloc+0x94/0x100
[   46.985381]  kmsan_slab_alloc+0x11/0x20
[   46.989332]  __kmalloc_node_track_caller+0xaed/0x11c0
[   46.994496]  __alloc_skb+0x2cf/0x9f0
[   46.998186]  sctp_packet_transmit+0x48a/0x42c0
[   47.002744]  sctp_outq_flush+0x11e6/0x6320
[   47.006968]  sctp_outq_uncork+0xd2/0xf0
[   47.010923]  sctp_do_sm+0x860f/0x8c20
[   47.014705]  sctp_primitive_ASSOCIATE+0x172/0x1a0
[   47.019522]  __sctp_connect+0x1633/0x1ae0
[   47.023657]  sctp_connect+0x1b0/0x200
[   47.027437]  inet_dgram_connect+0x2e8/0x4d0
[   47.031825]  SYSC_connect+0x41a/0x510
[   47.035610]  SyS_connect+0x54/0x80
[   47.039214]  do_syscall_64+0x309/0x430
[   47.043085]  entry_SYSCALL_64_after_hwframe+0x3d/0xa2
[   47.048246] ==================================================================
[   47.055575] Disabling lock debugging due to kernel taint
[   47.060998] Kernel panic - not syncing: panic_on_warn set ...
[   47.060998] 
[   47.068345] CPU: 0 PID: 4508 Comm: syz-executor457 Tainted: G    B            4.16.0+ #87
[   47.076633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   47.085973] Call Trace:
[   47.088532]  <IRQ>
[   47.090674]  dump_stack+0x185/0x1d0
[   47.094289]  panic+0x39d/0x940
[   47.097469]  ? gre_rcv+0x1241/0x1980
[   47.101158]  kmsan_report+0x238/0x240
[   47.104948]  __msan_warning_32+0x6c/0xb0
[   47.108987]  gre_rcv+0x1241/0x1980
[   47.112506]  ? raw_local_deliver+0x63/0x1660
[   47.116892]  ? ip_local_deliver_finish+0x27b/0xec0
[   47.121803]  ? erspan_xmit+0x2ce0/0x2ce0
[   47.125938]  gre_rcv+0x2dc/0x3b0
[   47.129280]  ? gre_parse_header+0x14b0/0x14b0
[   47.133752]  ip_local_deliver_finish+0x874/0xec0
[   47.138491]  ip_local_deliver+0x43c/0x4e0
[   47.142616]  ? ip_local_deliver+0x4e0/0x4e0
[   47.146915]  ? ip_call_ra_chain+0x7b0/0x7b0
[   47.151215]  ip_rcv_finish+0xa36/0x1d00
[   47.155170]  ? __msan_metadata_ptr_for_load_2+0x10/0x20
[   47.160514]  ? nf_hook_slow+0x36f/0x3d0
[   47.164468]  ip_rcv+0x118f/0x16d0
[   47.167905]  ? ip_rcv+0x16d0/0x16d0
[   47.171516]  __netif_receive_skb_core+0x47df/0x4a90
[   47.176510]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[   47.181851]  ? kmsan_write_aligned_origin_inline+0x10/0x60
[   47.187456]  ? ip_local_deliver_finish+0xec0/0xec0
[   47.192365]  process_backlog+0x62d/0xe20
[   47.196409]  ? rps_trigger_softirq+0x2f0/0x2f0
[   47.200970]  net_rx_action+0x7c1/0x1a70
[   47.204926]  ? net_tx_action+0xab0/0xab0
[   47.208971]  __do_softirq+0x56d/0x93d
[   47.212774]  do_softirq_own_stack+0x2a/0x40
[   47.217077]  </IRQ>
[   47.219305]  __local_bh_enable_ip+0x114/0x140
[   47.223787]  local_bh_enable+0x36/0x40
[   47.227659]  ip_finish_output2+0x135a/0x1470
[   47.232064]  ip_finish_output+0xcb2/0xff0
[   47.236196]  ip_mc_output+0x1029/0x15e0
[   47.240149]  ? __ip_local_out+0x6d5/0x7e0
[   47.244279]  ? ip_build_and_send_pkt+0xec0/0xec0
[   47.249019]  ip_queue_xmit+0x1a1e/0x1d10
[   47.253088]  sctp_v4_xmit+0x188/0x210
[   47.256876]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[   47.262304]  ? sctp_addr_wq_timeout_handler+0x840/0x840
[   47.267653]  sctp_packet_transmit+0x3e1b/0x42c0
[   47.272303]  ? sctp_packet_release_owner+0x70/0x70
[   47.277211]  ? sctp_csum_update+0xa0/0xa0
[   47.281345]  sctp_outq_flush+0x11e6/0x6320
[   47.285558]  ? __mod_timer+0x360/0x2c40
[   47.289513]  ? validate_store+0xb0/0x980
[   47.293555]  sctp_outq_uncork+0xd2/0xf0
[   47.297516]  sctp_do_sm+0x860f/0x8c20
[   47.301298]  ? __msan_poison_alloca+0x15c/0x1d0
[   47.305952]  ? _raw_spin_unlock_bh+0x57/0x70
[   47.310343]  ? __local_bh_enable_ip+0x3b/0x140
[   47.314902]  ? _raw_spin_unlock_bh+0x57/0x70
[   47.319291]  ? __local_bh_enable_ip+0x3b/0x140
[   47.323850]  ? _raw_spin_unlock_bh+0x57/0x70
[   47.328249]  sctp_primitive_ASSOCIATE+0x172/0x1a0
[   47.333085]  __sctp_connect+0x1633/0x1ae0
[   47.337224]  sctp_connect+0x1b0/0x200
[   47.341004]  ? sctp_close+0xdb0/0xdb0
[   47.344793]  inet_dgram_connect+0x2e8/0x4d0
[   47.349105]  ? inet_bind+0xf50/0xf50
[   47.352804]  SYSC_connect+0x41a/0x510
[   47.356581]  ? SYSC_setsockopt+0x533/0x570
[   47.360793]  SyS_connect+0x54/0x80
[   47.364312]  do_syscall_64+0x309/0x430
[   47.368176]  ? SYSC_accept+0xb0/0xb0
[   47.371869]  entry_SYSCALL_64_after_hwframe+0x3d/0xa2
[   47.377041] RIP: 0033:0x441a29
[   47.380215] RSP: 002b:00007ffeada3d8b8 EFLAGS: 00000217 ORIG_RAX: 000000000000002a
[   47.387898] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000441a29
[   47.395151] RDX: 000000000000001c RSI: 0000000020000000 RDI: 0000000000000003
[   47.402398] RBP: 00000000006cd018 R08: 00007ffe0000474d R09: 00007ffe0000474d
[   47.409648] R10: 0000000000000010 R11: 0000000000000217 R12: 0000000000402720
[   47.416893] R13: 00000000004027b0 R14: 0000000000000000 R15: 0000000000000000
[   47.424682] Dumping ftrace buffer:
[   47.428205]    (ftrace buffer empty)
[   47.431886] Kernel Offset: disabled
[   47.435486] Rebooting in 86400 seconds..