INIT: Entering runlevel: 2 [info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.61' (ECDSA) to the list of known hosts. 2018/04/12 23:16:17 fuzzer started 2018/04/12 23:16:17 dialing manager at 10.128.0.26:44405 2018/04/12 23:16:24 kcov=true, comps=false 2018/04/12 23:16:28 executing program 0: socketpair$unix(0x1, 0x8000000003, 0x0, &(0x7f0000d12000)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x8) sendmmsg$unix(r1, &(0x7f00000bd000), 0x80, 0x0) recvmmsg(r0, &(0x7f000030efc4)=[{{&(0x7f0000413ffa)=@hci, 0x6, &(0x7f0000b60000), 0x0, &(0x7f00004f9000)}}], 0x1, 0x0, 0x0) 2018/04/12 23:16:28 executing program 2: mmap(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x0, 0x1b071, 0xffffffffffffffff, 0x0) mremap(&(0x7f000000a000/0x3000)=nil, 0x3000, 0x1000, 0x0, &(0x7f0000002000/0x1000)=nil) remap_file_pages(&(0x7f000000b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0) 2018/04/12 23:16:28 executing program 7: r0 = socket$inet6(0xa, 0x2, 0x0) sendmmsg(r0, &(0x7f0000001d80)=[{{&(0x7f0000000000)=@in6={0xa, 0x4e21, 0x0, @loopback={0x0, 0x1}}, 0x80, &(0x7f0000000040), 0x0, &(0x7f0000000080)}}, {{&(0x7f0000000a80)=@in={0x2, 0x4e22, @rand_addr}, 0x80, &(0x7f0000001bc0), 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="1000000001000000250000000e6e1ae21e00a9176a954772bca0531af2296cb8a39ca6bc29ccaaf95763df57762870d88671b9bdcef23bda973157822b758ad14e92774969f668161535773ba712"], 0x4e}}], 0x2, 0x0) 2018/04/12 23:16:28 executing program 1: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000240)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000019fe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r1 = memfd_create(&(0x7f0000006fd0)='/dev/urandom\x00', 0x0) pwritev(r1, &(0x7f0000000000)=[{&(0x7f0000012000)="ca", 0x1}], 0x1, 0x0) pwrite64(r1, &(0x7f00000000c0), 0x0, 0x0) write$binfmt_elf64(r1, &(0x7f0000000280)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x38}, [{}]}, 0x78) close(r0) 2018/04/12 23:16:28 executing program 4: inotify_init() mkdir(&(0x7f0000042ff6)='./control\x00', 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu\x00', 0x200002, 0x0) fchdir(r0) mkdir(&(0x7f0000000080)='./file0\x00', 0x0) 2018/04/12 23:16:28 executing program 5: r0 = socket$inet(0x10, 0x3, 0x6) sendmsg(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d4c1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/04/12 23:16:28 executing program 6: r0 = syz_open_dev$evdev(&(0x7f0000000380)='/dev/input/event#\x00', 0x2, 0x28001) write$evdev(r0, &(0x7f00000000c0)=[{{0x0, 0x2710}, 0x1, 0x2000000000004d}, {{0x0, 0x7530}}], 0x30) 2018/04/12 23:16:28 executing program 3: bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1807000000000000000000000280000085000000070000001d070000000000009500000000000000"], &(0x7f00000001c0)="71790100000000000000058902d79a79aacaea513c94b404732be983f041ee82674eda800c148744355f7c45381c4a48c3fee3a9b0a3c845f6a590e71d560bab7e000000", 0x1, 0xce, &(0x7f00000000c0)=""/206, 0x41100, 0x200000000001}, 0x48) syzkaller login: [ 48.959692] ip (3764) used greatest stack depth: 54672 bytes left [ 49.214641] ip (3788) used greatest stack depth: 54312 bytes left [ 50.502368] ip (3905) used greatest stack depth: 53656 bytes left [ 52.433795] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 52.520542] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 52.529421] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 52.608720] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 52.725225] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 52.814768] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 52.886291] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 52.937298] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 61.758628] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 61.864575] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 61.912083] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 62.000604] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 62.111300] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 62.169793] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 62.234292] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 62.325515] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 62.574430] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 62.580861] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 62.595995] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 62.694792] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 62.701304] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 62.713555] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 62.737432] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 62.743719] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 62.765633] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 62.829928] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 62.836456] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 62.845128] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 62.891433] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 62.911502] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 62.925751] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 62.983317] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 62.989696] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 63.003662] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 63.106462] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 63.112874] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 63.125651] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 63.253957] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 63.260264] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 63.279614] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 64.429178] mmap: syz-executor2 (5058) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.txt. 2018/04/12 23:16:46 executing program 2: syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f801", 0x17}], 0x10, &(0x7f0000000240)=ANY=[]) r0 = open(&(0x7f00000005c0)='./file0/file0\x00', 0x3fffa, 0x0) writev(r0, &(0x7f0000002680)=[{&(0x7f0000001600), 0xf0ff7f}], 0x1) 2018/04/12 23:16:46 executing program 7: r0 = socket$inet6(0xa, 0x80003, 0xfc) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x4}, 0x1c) [ 64.776481] netlink: 60 bytes leftover after parsing attributes in process `syz-executor5'. 2018/04/12 23:16:46 executing program 2: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000466000)={0x26, 'hash\x00', 0x0, 0x0, 'sha1-generic\x00'}, 0x58) r1 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f00000001c0)='~', 0x1}], 0x1, &(0x7f00000002c0)=[@assoc={0x10, 0x117, 0x4, 0x6}, @iv={0x38, 0x117, 0x2, 0x28, "b69ae9433ca697c70ff54c24d0fc01a37b7d746ade0d68c3e7ce3da20070eb744798ff23a5c2c2a6"}, @iv={0x2c, 0x117, 0x2, 0x1c, "8818796f5ce7e6635ea3168b8f1d2fbed4977f7b9a918d021936aee1"}, @assoc={0x10, 0x117, 0x4, 0x5}, @assoc={0x10, 0x117, 0x4, 0x75}], 0x94, 0x40}, 0x4) 2018/04/12 23:16:46 executing program 7: syz_mount_image$ext4(&(0x7f00000000c0)="3b512d1c00", &(0x7f0000000080)='/\x00', 0x0, 0x350, &(0x7f00000004c0), 0x28020, &(0x7f0000000100)={[{@nouser_xattr='nouser_xattr', 0x2c}]}) 2018/04/12 23:16:46 executing program 5: r0 = socket$inet(0x10, 0x8000000000003, 0x0) sendmsg(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d4c1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/04/12 23:16:47 executing program 6: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = inotify_init1(0x0) ppoll(&(0x7f0000000040)=[{}, {r0}], 0x2, &(0x7f0000000080), &(0x7f00000000c0)={0x1ff}, 0x8) 2018/04/12 23:16:47 executing program 3: syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f801", 0x17}], 0x10, &(0x7f0000000240)=ANY=[]) r0 = open(&(0x7f00000005c0)='./file0/file0\x00', 0x3fffa, 0x0) writev(r0, &(0x7f0000002680)=[{&(0x7f0000001600)}], 0x1) [ 65.134427] netlink: 'syz-executor5': attribute type 29 has an invalid length. [ 65.142179] netlink: 8 bytes leftover after parsing attributes in process `syz-executor5'. 2018/04/12 23:16:47 executing program 2: perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000939f01)='net/anycast6\x00') r1 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f00000019c0)={@dev={0xfe, 0x80}}, 0x14) preadv(r0, &(0x7f00006c6000)=[{&(0x7f0000ed9000)=""/202, 0xca}], 0x1, 0x0) [ 65.246311] netlink: 'syz-executor5': attribute type 29 has an invalid length. [ 65.253927] netlink: 8 bytes leftover after parsing attributes in process `syz-executor5'. 2018/04/12 23:16:47 executing program 0: r0 = open(&(0x7f00000001c0)='./file0\x00', 0x8000000000403ff, 0x0) syz_mount_image$vfat(&(0x7f0000000600)='vfat\x00', &(0x7f0000000740)='./file0\x00', 0x0, 0x0, &(0x7f0000000640), 0x1800, &(0x7f00000001c0)=ANY=[]) r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x2, 0x40000000000000) write$tun(0xffffffffffffffff, &(0x7f0000000380)={@void, @void, @eth={@empty, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [], {@llc_tr={0x11, {@snap={0x0, 0x0, "d2a3", "d5e1ea"}}}}}}, 0x17) syz_mount_image$bfs(&(0x7f0000000040)='bfs\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000840)=[{&(0x7f0000000180), 0x0, 0x70a0e5a1}], 0x0, 0x0) ioctl$EVIOCGKEY(0xffffffffffffffff, 0x80404518, &(0x7f0000000200)=""/162) getsockopt$IP_VS_SO_GET_SERVICES(r0, 0x0, 0x482, &(0x7f0000000880)=""/4096, &(0x7f0000000000)=0x1000) fallocate(r1, 0x11, 0x0, 0x100000001) 2018/04/12 23:16:47 executing program 1: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000240)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000019fe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r1 = memfd_create(&(0x7f0000006fd0)='/dev/urandom\x00', 0x0) pwritev(r1, &(0x7f0000000000)=[{&(0x7f0000012000)="ca", 0x1}], 0x1, 0x0) pwrite64(r1, &(0x7f00000000c0), 0x0, 0x0) write$binfmt_elf64(r1, &(0x7f0000000280)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x38}, [{}]}, 0x78) close(r0) 2018/04/12 23:16:47 executing program 3: r0 = socket$inet(0x10, 0x3, 0xc) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, &(0x7f00000002c0)={0x0, 0x1f, "397f459f42a4b600679f2533bfbb0b82baa710362e744fd827dd8276164391"}, &(0x7f0000000300)=0x27) setsockopt$inet_sctp_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000340)={r1, 0x1, 0x8, 0xff}, 0x10) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg(r2, &(0x7f0000f18000)={0x0, 0x0, &(0x7f000076dff0)=[{&(0x7f0000000040)="200000000104f500000000000000060020200af80900010001e8006007080000", 0x20}], 0x1}, 0x0) sendmsg(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffdbb, &(0x7f000076dff0)}, 0x0) r3 = dup2(r0, r0) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DEST(r3, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40001}, 0xc, &(0x7f0000000200)={&(0x7f0000000140)={0x90, r4, 0x0, 0x70bd25, 0x25dfdbfd, {0x5}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xffffffff}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xfffffffffffffffc}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x4}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x9}, @IPVS_CMD_ATTR_SERVICE={0x54, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0xb92}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'dh\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e21}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e22}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x2, 0x13}}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x23}, @IPVS_SVC_ATTR_SCHED_NAME={0xc, 0x6, 'none\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3}]}, 0x90}, 0x1, 0x0, 0x0, 0x80}, 0x20000011) ioctl$SNDRV_TIMER_IOCTL_SELECT(r3, 0x40345410, &(0x7f0000000080)={{0xffffffffffffffff, 0x2, 0x5, 0x0, 0xffffffff}}) ioctl$sock_bt_hidp_HIDPCONNDEL(r3, 0x400448c9, &(0x7f0000000280)={{0x59d6, 0x9, 0x80000001, 0xa7, 0x100000000, 0xff}, 0x1}) 2018/04/12 23:16:47 executing program 6: unshare(0x400) r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vhost-net\x00', 0x2, 0x0) poll(&(0x7f0000000080)=[{r0}], 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_all\x00', 0x0, 0x0) dup3(r1, r1, 0x80000) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in={0x2, 0x4e20, @multicast2=0xe0000002}], 0x10) 2018/04/12 23:16:47 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000058ff7)='/dev/sg#\x00', 0x0, 0x40002) ioctl(r0, 0x5387, &(0x7f000005affe)) setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT(r0, 0x28, 0x6, &(0x7f0000000000)={0x0, 0x7530}, 0x10) 2018/04/12 23:16:47 executing program 5: memfd_create(&(0x7f0000000000)='ppp0self+wlan0md5sum\x00', 0x2) mq_unlink(&(0x7f0000000180)="76626f786e6574312e7573657293706f7369785f61636c5f616363657373656d303a656d306574683000") mlockall(0x1) socketpair(0x1e, 0x1, 0x0, &(0x7f0000000140)={0x0, 0x0}) recvmsg$kcm(r0, &(0x7f0000000200)={&(0x7f00000000c0)=@pppoe={0x0, 0x0, {0x0, @broadcast}}, 0x80, &(0x7f0000000680)=[{&(0x7f0000000580)=""/214, 0xd6}], 0x1, &(0x7f0000000700)=""/205, 0xcd}, 0x2002) sendmsg(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100), 0x28a, &(0x7f0000000000)}, 0x0) 2018/04/12 23:16:47 executing program 7: unshare(0x8000400) r0 = getpid() ptrace(0x8, r0) link(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='./file0\x00') r1 = accept(0xffffffffffffffff, &(0x7f0000000000)=@in6={0x0, 0x0, 0x0, @mcast1}, &(0x7f0000000080)=0x80) setsockopt$IP_VS_SO_SET_ZERO(r1, 0x0, 0x48f, &(0x7f00000000c0)={0x33, @dev={0xac, 0x14, 0x14, 0x1a}, 0x4e22, 0x3, 'none\x00', 0x0, 0x1, 0xa}, 0x2c) prctl$setptracer(0x59616d61, r0) prctl$setptracer(0x59616d61, r0) fcntl$setown(r1, 0x8, r0) 2018/04/12 23:16:47 executing program 2: socketpair$inet6_sctp(0xa, 0x1, 0x84, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000003740)={{{@in=@multicast2, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @rand_addr}}, 0x0, @in=@local}}, &(0x7f0000003840)=0xe8) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000003880)={'bridge0\x00', r1}) socket$kcm(0x29, 0x5, 0x0) r2 = socket(0x10, 0x2000000000802, 0x0) sendmsg$nl_route(r2, &(0x7f0000000280)={&(0x7f0000000080)={0x10}, 0xc, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB="48000000150001002bbd7000000000000a0000ff", @ANYRES32=0x0, @ANYBLOB="14000100bcb00000000000000000ffff0000000008000800000000001400020000000000000000000000000000000000"], 0x48}, 0x1}, 0x0) 2018/04/12 23:16:47 executing program 4: r0 = memfd_create(&(0x7f0000002901)='dev ', 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) mbind(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, &(0x7f0000228ff8)=0x4000000000000f7, 0x891, 0x0) get_mempolicy(&(0x7f000000c000), &(0x7f0000fd5000), 0x7ffd, &(0x7f0000000000/0x2000)=nil, 0x3) epoll_pwait(r0, &(0x7f0000000040)=[{}, {}], 0x2, 0xfffffffffffffff9, &(0x7f0000000080)={0x7f}, 0x8) setsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f00000000c0)=0xdd, 0x4) syz_open_dev$vcsa(&(0x7f0000000100)='/dev/vcsa#\x00', 0x101, 0x109680) 2018/04/12 23:16:47 executing program 6: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000005a40)={0x26, 'hash\x00', 0x0, 0x0, 'crc32c-intel\x00'}, 0x58) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg$alg(r1, &(0x7f0000005880)=[{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000100)="563c202f1e491a15", 0x8}, {&(0x7f0000000340)="ba", 0x1}], 0x2, 0x0, 0xd3}], 0x1, 0x0) 2018/04/12 23:16:47 executing program 7: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000b5dfa8)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-avx2\x00'}, 0x72) r1 = accept$alg(r0, 0x0, 0x0) r2 = open(&(0x7f00004b8ff8)='./file0\x00', 0x28042, 0x0) fallocate(r2, 0x0, 0x0, 0x73e0) sendfile(r1, r2, &(0x7f0000000000)=0x1, 0x5ab8) getsockopt$inet_opts(r2, 0x0, 0xd, &(0x7f0000000040)=""/241, &(0x7f0000000140)=0xf1) 2018/04/12 23:16:47 executing program 2: r0 = socket$inet6(0xa, 0x0, 0x8010000000000084) bind$inet6(r0, &(0x7f000070ffe3)={0xa, 0x4e20}, 0x1c) getsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0, 0xffff}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000000100)=ANY=[@ANYRES32=r1, @ANYBLOB="01005e00f08752fc58f06b470194043e3870deaac6702ff5373af1eeff986021a17ad53e10f6a5ddfdffb230a9ffd9b86fd5849460a17f4a2ce1e2dc13cc000000000000007cfb636a530c493ffd09899dd7d2f0daa32310c1ce88ded3fc205e80f6"], 0x66) sendto$inet6(r0, &(0x7f000023effe)="7f", 0x1, 0x0, &(0x7f000010e000)={0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}, 0x1c) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f0000000080)={0x0, 0x54b0, 0x30}, &(0x7f00000000c0)=0x18) r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/autofs\x00', 0x40240, 0x0) ioctl$sock_inet_SIOCGARP(r2, 0x8954, &(0x7f00000001c0)={{0x2, 0x4e21}, {0x306, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}, 0x42, {0x2, 0x4e23, @multicast1=0xe0000001}, 'dummy0\x00'}) 2018/04/12 23:16:48 executing program 0: r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/net/pfkey\x00', 0x400220000, 0x0) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000680)=ANY=[@ANYPTR64=&(0x7f0000000200)=ANY=[@ANYRES16=r0, @ANYRES16=r0, @ANYRES64=r0, @ANYRES32=r0, @ANYPTR=&(0x7f00000001c0)=ANY=[@ANYRES64=r0, @ANYRES32=r0, @ANYPTR]], @ANYBLOB="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"], &(0x7f0000000000)=0x2) writev(r0, &(0x7f0000000400)=[{&(0x7f0000000440)="c0aec37c0eae9309bfdd5773a14cda0b3266cd51cad3f4bcf481a5b26570d41d4e848232fd210278948d3a173fc2746aaa4f0f7ce51e29c49e1415f2c35b8d8e27152efbf336bef58d0f17c6743f23638884e2884372370cb055703dac27db6e45de4d920f4f5fd43ca3d0cdab9eba7b7c91e67ac569e2f87304737f3dda71a77de63b5f6645ac37736b51c6000639101c1bd3d094183fb373b41cdb57ad3518a7f6c54c2aedf0c013a9c64c2810446bccb1ee93c79fd8c7dec505c8908c23c54690efa140f8a91aeb367cb749b528f21aaab2436aa6be21a0d7d8c722e7c35eb3b9f5", 0xc4}, {&(0x7f00000002c0)="d6629556fdc83edd0966a3e8c7a72861f2e1963f8677ba8d5b9825d3e1c226d3aa6764166c846b7bd9756aa8d783ce63c47b3deb73cc45d0832416b6f79c8b25157f907ef4a1072170bd269039be5df6541529160e5caf855e7a13168c7af87f76deaeb3e4c49854f1fcc51c23c1f2bd5a7095f4f2509e7ce522afb43a53c7e75264f606f78cb4c3961967ce8e72f2a4e1fd7bc8e38d1cb83b31db33aab5f28ad5d608e339d7a496e22250801b6be5dc258aed5e8005d3f875e05ba347aadeb6f0d2be630c7c77f50c0729f7b01f6543a4cbe4a602c30a38", 0xffffff1f}], 0x2) getitimer(0x2, &(0x7f00000000c0)) getsockopt$inet_sctp_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000140)={0x0, 0x9, 0x3, [0xe27, 0x6, 0x1f]}, &(0x7f0000000180)=0xe) syncfs(r0) select(0x40, &(0x7f0000056000), &(0x7f0000000fc0)={0x80200}, &(0x7f0000031fc0), &(0x7f000004c000)={0x77359400}) fcntl$setstatus(r0, 0x4, 0x42400) 2018/04/12 23:16:48 executing program 3: r0 = syz_open_dev$sndseq(&(0x7f0000000100)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r0, 0xc0605345, &(0x7f0000000080)={0x8000000000, 0x1, {0xffffffffffffffff, 0x2, 0x0, 0x2, 0x2}}) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuset.memory_pressure\x00', 0x0, 0x0) ioctl$sock_bt_bnep_BNEPGETCONNINFO(r1, 0x800442d3, &(0x7f0000000040)={0xfffffffffffff800, 0x81, 0x3, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xd}}) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r1, 0xc0605345, &(0x7f0000000140)={0x1, 0x2, {0x0, 0x1, 0x5, 0x1, 0x5e}}) 2018/04/12 23:16:48 executing program 6: r0 = socket$inet(0xa, 0x802, 0x2400000) r1 = dup(r0) getsockopt$netrom_NETROM_N2(r1, 0x103, 0x3, &(0x7f0000000040)=0x800, &(0x7f0000000080)=0x4) bind$netlink(r0, &(0x7f00000011c0)={0x10}, 0xc) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f00000003c0)=ANY=[@ANYBLOB="726177000000000000000000000000000000000000000000000000000000000009000000030000002253f7ab2d1492daffffffffffffffff00000000ffffffff38020000ffffffffffffffff38020000ffffffff03000000131e1c4afe0f1abebdf87833e271fe11312ce475743ff96e51a5", @ANYPTR=&(0x7f0000000000)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00'], @ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f00038010000000000000000000000000000000000000000000000002800727066696c74657200000000000000000000000000000000000000000000040000000000000030006164647274797065000000000000000000000000000000000000000000005100420801000000010000000000000048004354000000000000000000000000000000000000000000000000000000000000001000000000000000007070747000000000000000000000000000000000ef020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000098000001000000000000000000000000000000000000000000000000680043540000000000000000000000000000000000000000000000000000000110000002040000009d0b00000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000a60000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007000980000000000000000000000000000000000000000002800000000000000000000000000000000000000000000000000000000000000feffffff00000000"], 0x330) setsockopt$inet_sctp6_SCTP_NODELAY(r1, 0x84, 0x3, &(0x7f00000000c0)=0x3, 0x4) ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r1, 0xc0a85322, &(0x7f0000000100)) 2018/04/12 23:16:48 executing program 4: r0 = socket$inet_dccp(0x2, 0x6, 0x0) preadv(r0, &(0x7f0000001700)=[{&(0x7f0000000000)=""/21, 0x15}, {&(0x7f0000000080)=""/22, 0x16}, {&(0x7f0000000100)=""/148, 0x94}, {&(0x7f00000001c0)=""/204, 0xcc}, {&(0x7f00000002c0)=""/4096, 0x1000}, {&(0x7f00000012c0)=""/225, 0xe1}, {&(0x7f00000013c0)=""/145, 0x91}, {&(0x7f0000001480)=""/104, 0x68}, {&(0x7f0000001500)=""/215, 0xd7}, {&(0x7f0000001600)=""/220, 0xdc}], 0xa, 0x0) getsockopt$inet_int(r0, 0x10d, 0x4000000f3, &(0x7f0000000040), &(0x7f00000000c0)=0xfffffffffffffe39) r1 = openat(0xffffffffffffffff, &(0x7f00000017c0)='./file0\x00', 0x2400, 0x10a) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000001800)={0x1}) 2018/04/12 23:16:48 executing program 2: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000b5dfa8)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-avx2\x00'}, 0x72) r1 = accept$alg(r0, 0x0, 0x0) r2 = open(&(0x7f00004b8ff8)='./file0\x00', 0x28042, 0x0) fallocate(r2, 0x0, 0x0, 0x73e0) sendfile(r1, r2, &(0x7f0000000000)=0x1, 0x5ab8) getsockopt$inet_opts(r2, 0x0, 0xd, &(0x7f0000000040)=""/241, &(0x7f0000000140)=0xf1) 2018/04/12 23:16:48 executing program 7: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000b5dfa8)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-avx2\x00'}, 0x72) r1 = accept$alg(r0, 0x0, 0x0) r2 = open(&(0x7f00004b8ff8)='./file0\x00', 0x28042, 0x0) fallocate(r2, 0x0, 0x0, 0x73e0) sendfile(r1, r2, &(0x7f0000000000)=0x1, 0x5ab8) getsockopt$inet_opts(r2, 0x0, 0xd, &(0x7f0000000040)=""/241, &(0x7f0000000140)=0xf1) 2018/04/12 23:16:48 executing program 5: r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x0, 0x0) setsockopt$sock_int(r0, 0x1, 0x22, &(0x7f0000000000)=0x4, 0x4) unshare(0x8000400) ppoll(&(0x7f0000000180)=[{r0}], 0x1, &(0x7f00000001c0), &(0x7f0000000200), 0x8) 2018/04/12 23:16:48 executing program 1: madvise(&(0x7f0000005000/0x1000)=nil, 0x1000, 0x200000000000) munlockall() r0 = semget(0x1, 0x1, 0x406) semctl$SEM_STAT(r0, 0x1, 0x12, &(0x7f0000000280)=""/244) socketpair$inet_smc(0x2b, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) pipe(&(0x7f0000000240)={0xffffffffffffffff}) flock(r1, 0x4) readv(r1, &(0x7f0000000040)=[{&(0x7f00000000c0)=""/155, 0x9b}], 0x1) ioctl$sock_inet_SIOCGIFBRDADDR(r2, 0x8919, &(0x7f0000000380)={'dummy0\x00', {0x2, 0x4e20, @rand_addr=0x2eff}}) socket$packet(0x11, 0x2, 0x300) setsockopt$IP_VS_SO_SET_TIMEOUT(r1, 0x0, 0x48a, &(0x7f0000000000)={0x0, 0x9, 0xfffffffffffffff7}, 0xc) r3 = syz_open_dev$vcsn(&(0x7f0000000180)='/dev/vcs#\x00', 0x9, 0x12001) accept$packet(r3, 0x0, &(0x7f0000000200)) r4 = inotify_add_watch(r2, &(0x7f0000000400)='./file0\x00', 0x800) inotify_rm_watch(r3, r4) getsockopt$IP6T_SO_GET_REVISION_MATCH(r3, 0x29, 0x44, &(0x7f00000001c0)={'ipvs\x00'}, &(0x7f00000003c0)=0x1e) 2018/04/12 23:16:48 executing program 2: seccomp(0x800000000001, 0x0, &(0x7f0000000ff0)={0x0, &(0x7f00000f7ff0)=[{0x1d}, {0x6}]}) 2018/04/12 23:16:48 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10) connect$inet(r0, &(0x7f0000ccb000)={0x2, 0x4e20}, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18}, [], {0x95}}, &(0x7f00002bf000)='syzkaller\x00', 0x4, 0xb7, &(0x7f00006ab000)=""/183}, 0x48) r2 = socket$kcm(0x29, 0x1000000000000005, 0x0) sendmmsg(r2, &(0x7f0000002dc0)=[{{&(0x7f0000002680)=@can={0x1d}, 0x80, &(0x7f0000002800)=[{&(0x7f00000026c0)="b0", 0x1}], 0x1, &(0x7f0000002840)}}], 0x1, 0x0) ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f000031aff8)={r0, r1}) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000480)='/dev/vcs\x00', 0x2000, 0x0) connect$ax25(r3, &(0x7f00000004c0)={0x3, {"4dcca899aa719f"}, 0x9}, 0x10) 2018/04/12 23:16:48 executing program 6: r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000380)='/dev/hwrng\x00', 0x200004, 0x0) mq_timedsend(r0, &(0x7f0000000700), 0x0, 0x0, 0x0) setsockopt$sock_void(r0, 0x1, 0x1b, 0x0, 0x0) 2018/04/12 23:16:48 executing program 4: mkdir(&(0x7f0000000200)='./file0\x00', 0x0) bpf$OBJ_GET_PROG(0x7, &(0x7f0000000340)={&(0x7f00000001c0)='./file0\x00'}, 0x10) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x0, 0x0, 0xcd}, 0xfd52) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x1, 0x5, &(0x7f0000346fc8)=@framed={{0x18}, [@alu={0x8000000201a7f19, 0x0, 0x7, 0x0, 0x1}], {0x95}}, &(0x7f0000f6bffb)='GPL\x00', 0x0, 0x299, &(0x7f00001a7f05)=""/251}, 0x18) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000100)={0xffffffffffffffff, &(0x7f00000000c0)="b82283392dc50ff1fb635a5849d2f5916ae2fdc24e95e12aa8e9ccf7563e72be9c866f"}, 0x10) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={r0, &(0x7f0000000000)="520899e9c9621e88896b0820bc907939769226b91985a7fdfc0ae100f7b7fad366c1413f82008782e8646d29a3f510be93590d573efacd996f1d16fe9364b3b27aebea9f066238a8cfff2c1462c73fb60bbc03afef8d2195597f741d8d492e483a9530f9aaa6824e6adbef"}, 0x10) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000140)={r1, 0x50, &(0x7f00000000c0)}, 0x10) mount(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='fusectl\x00', 0x0, 0x0) 2018/04/12 23:16:48 executing program 5: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x0, 0x31, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) modify_ldt$write(0x1, &(0x7f0000000040)={0xffffffffffff252c, 0x20001800, 0xffffffff, 0x0, 0x100000000, 0x7fff, 0x80, 0x1, 0x3, 0x8001}, 0x10) setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000000000)=0x2, 0x4) mmap(&(0x7f0000000000/0xfd4000)=nil, 0xfd4000, 0x0, 0x40000000000031, 0xffffffffffffffff, 0x0) 2018/04/12 23:16:48 executing program 3: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000058000)={0x9, {{0xa, 0x1000000000000000, 0x0, @mcast1={0xff, 0x1, [], 0x1}}}}, 0x88) setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000000340)={0x100000001, {{0xa, 0x0, 0x0, @mcast2={0xff, 0x2, [], 0x1}}}}, 0x88) setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000000400)=ANY=[@ANYBLOB="010000000000261b03c8000000000000ff0100000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080ed6de52ceed01a00"], 0x90) 2018/04/12 23:16:48 executing program 1: madvise(&(0x7f0000005000/0x1000)=nil, 0x1000, 0x200000000000) munlockall() r0 = semget(0x1, 0x1, 0x406) semctl$SEM_STAT(r0, 0x1, 0x12, &(0x7f0000000280)=""/244) socketpair$inet_smc(0x2b, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) pipe(&(0x7f0000000240)={0xffffffffffffffff}) flock(r1, 0x4) readv(r1, &(0x7f0000000040)=[{&(0x7f00000000c0)=""/155, 0x9b}], 0x1) ioctl$sock_inet_SIOCGIFBRDADDR(r2, 0x8919, &(0x7f0000000380)={'dummy0\x00', {0x2, 0x4e20, @rand_addr=0x2eff}}) socket$packet(0x11, 0x2, 0x300) setsockopt$IP_VS_SO_SET_TIMEOUT(r1, 0x0, 0x48a, &(0x7f0000000000)={0x0, 0x9, 0xfffffffffffffff7}, 0xc) r3 = syz_open_dev$vcsn(&(0x7f0000000180)='/dev/vcs#\x00', 0x9, 0x12001) accept$packet(r3, 0x0, &(0x7f0000000200)) r4 = inotify_add_watch(r2, &(0x7f0000000400)='./file0\x00', 0x800) inotify_rm_watch(r3, r4) getsockopt$IP6T_SO_GET_REVISION_MATCH(r3, 0x29, 0x44, &(0x7f00000001c0)={'ipvs\x00'}, &(0x7f00000003c0)=0x1e) 2018/04/12 23:16:48 executing program 7: r0 = accept4(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x80, 0x80800) ioctl$sock_inet_tcp_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000180)) r1 = socket(0x20000000000000a, 0x2, 0x0) setsockopt$inet6_int(r1, 0x29, 0x46, &(0x7f0000532ffc), 0x4) getsockopt$inet6_int(r1, 0x29, 0x46, &(0x7f0000dbb000), &(0x7f0000329000)=0x4) 2018/04/12 23:16:48 executing program 6: r0 = socket$inet(0x2, 0x2, 0x0) r1 = socket$inet(0x2, 0x2, 0x0) r2 = dup3(r1, r0, 0x80000) setsockopt$inet6_MCAST_MSFILTER(r2, 0x29, 0x30, &(0x7f0000001a80)=ANY=[@ANYBLOB="06000000000000000a004e2109000000fe8000000000000000000000000000aa090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000a004e24340200000000000000000000000000000000000101000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a004e2304000000ff0100000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"], 0x190) r3 = dup2(r0, r1) setsockopt$inet_mreqsrc(r3, 0x0, 0x27, &(0x7f0000f69ff4)={@multicast2=0xe0000002, @loopback=0x7f000001, @loopback=0x7f000001}, 0xc) getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f0000000340)={{{@in6=@ipv4={[], [], @broadcast}, @in6=@loopback}}, {{@in=@multicast2}}}, &(0x7f0000000440)=0xe8) getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f00000004c0)={{{@in6=@loopback, @in6=@ipv4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}, 0x0, @in=@dev}}, &(0x7f00000005c0)=0xe8) setsockopt$inet_mreqn(r3, 0x0, 0x24, &(0x7f0000000600)={@multicast2=0xe0000002, @multicast2=0xe0000002, r4}, 0xfffffffffffffec9) setsockopt$inet_mreqsrc(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast2=0xe0000002, @loopback=0x7f000001, @loopback=0x7f000001}, 0xc) 2018/04/12 23:16:48 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000000)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller0\x00', 0x3}) ioctl$sock_inet_SIOCSARP(r0, 0x8955, &(0x7f0000000240)={{0x2, 0x0, @rand_addr}, {}, 0x8, {0x2, 0x0, @multicast2=0xe0000002}, 'syzkaller0\x00'}) ioctl$sock_inet_SIOCSARP(r0, 0x8955, &(0x7f0000000000)={{0x2, 0x0, @dev={0xac, 0x14, 0x14}}, {0x0, @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}}, 0x8, {0x2, 0x0, @dev={0xac, 0x14, 0x14}}, 'syzkaller0\x00'}) close(r1) getsockopt$IP_VS_SO_GET_SERVICES(r0, 0x0, 0x482, &(0x7f0000002840)=""/85, &(0x7f0000002980)=0xb) recvmsg$kcm(0xffffffffffffffff, &(0x7f0000002700)={&(0x7f0000000080)=@pppol2tpin6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f0000002640)=[{&(0x7f00000002c0)=""/4096, 0x1000}, {&(0x7f0000000100)=""/34, 0x22}, {&(0x7f0000000140)=""/116, 0x74}, {&(0x7f00000001c0)=""/27, 0x1b}, {&(0x7f00000012c0)=""/221, 0xdd}, {&(0x7f00000013c0)=""/248, 0xf8}, {&(0x7f00000014c0)=""/1, 0x1}, {&(0x7f0000001500)=""/28, 0x1c}, {&(0x7f0000001540)=""/4096, 0x1000}, {&(0x7f0000002540)=""/214, 0xd6}], 0xa, 0x0, 0x0, 0x7ff}, 0x10041) sendmsg$key(r2, &(0x7f0000002800)={0x0, 0x0, &(0x7f00000027c0)={&(0x7f00000029c0)=ANY=[@ANYBLOB="021600030b0000002cbd7000fedbdf25010016004e2200000800120002000500b86b6e00000001000600ff0004010000e20800000000000000001424d17fe386cd6f69eb9f300000000000000000000000000001ff000000000000000000000000"], 0x58}, 0x1}, 0x4000000) 2018/04/12 23:16:48 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f00002e9000)='task\x00') connect(r0, &(0x7f0000000080)=@alg={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_ctr_aes192\x00'}, 0x80) getdents64(r0, &(0x7f0000ceffd4)=""/44, 0x2c) mmap(&(0x7f0000000000/0xd15000)=nil, 0xd15000, 0x0, 0x32, 0xffffffffffffffff, 0x0) getdents(r0, &(0x7f0000000040)=""/36, 0x24) 2018/04/12 23:16:49 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$IP6T_SO_GET_INFO(r0, 0x29, 0x18, &(0x7f0000000040)={'nat\x00'}, &(0x7f0000000100)=0x54) fchdir(r0) r1 = fcntl$getown(r0, 0x9) rt_sigqueueinfo(r1, 0x5, &(0x7f0000000000)={0x15, 0x6, 0x401, 0x6}) 2018/04/12 23:16:49 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000200)={@multicast1=0xe0000001, @dev={0xac, 0x14, 0x14, 0xe}, @multicast2=0xe0000002}, 0xc) setsockopt$inet_group_source_req(r0, 0x0, 0x2f, &(0x7f0000000000)={0x1, {{0x2, 0x0, @multicast1=0xe0000001}}, {{0x2, 0x0, @multicast2=0xe0000002}}}, 0x108) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000140)='/dev/qat_adf_ctl\x00', 0x40000, 0x0) ioctl$DRM_IOCTL_INFO_BUFS(r1, 0xc0106418, &(0x7f0000000180)={0x0, 0x3eb0, 0xd, 0x9, 0x4, 0x9}) getsockopt$bt_BT_SECURITY(r1, 0x112, 0x4, &(0x7f00000001c0), 0x2) 2018/04/12 23:16:49 executing program 7: r0 = socket$inet6(0xa, 0x2, 0x0) getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffff9c, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000080)={r1, @in={{0x2, 0x4e23, @broadcast=0xffffffff}}, 0xce7, 0x0, 0x8, 0x6, 0x45}, &(0x7f0000000140)=0x98) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e23, 0x1, @dev={0xfe, 0x80, [], 0x10}, 0x7}, 0x1c) setsockopt$inet6_int(r0, 0x29, 0x46, &(0x7f0000f72ffc)=0x621c, 0x4) sendto$inet6(r0, &(0x7f000032d000), 0x0, 0x1, &(0x7f0000f5afe4)={0xa, 0x4e20}, 0x1c) 2018/04/12 23:16:49 executing program 4: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000000)=[@in={0x2, 0x0, @dev={0xac, 0x14, 0x14}}], 0xb) sendmmsg$inet_sctp(r0, &(0x7f000093eee8)=[{&(0x7f00001f6000)=@in={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff, 0xaa}}, 0x10, &(0x7f0000000380), 0x0, &(0x7f00000c3000)=[@sndinfo={0x20, 0x84, 0x2, {0x0, 0x4}}], 0x30}, {&(0x7f0000957ff0)=@in={0x2, 0x0, @multicast2=0xe0000002}, 0x10, &(0x7f000093e000), 0x0, &(0x7f000093ef10)=[@sndinfo={0x20, 0x84, 0x2}], 0x30}], 0x2, 0x0) 2018/04/12 23:16:49 executing program 0: r0 = open(&(0x7f0000000fc0)='./file0\x00', 0x0, 0x0) futex(&(0x7f000000cffc)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, &(0x7f0000048000), 0x0) futex(&(0x7f000000cffc)=0x1, 0x800000000006, 0x0, &(0x7f00003b6ff0)={0x77359400}, &(0x7f0000048000), 0x0) futex(&(0x7f000000cffc), 0x0, 0x0, &(0x7f0000fd8000), &(0x7f0000e7fffc), 0x0) r1 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000080)={{{@in6=@remote, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in6=@ipv4={[], [], @rand_addr}}}, &(0x7f0000000000)=0xe8) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000180)={0x0, 0x0, 0x0}, &(0x7f00000001c0)=0xc) setsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000200)={r1, r2, r3}, 0xc) tkill(r1, 0x1000000000016) [ 67.181189] QAT: Invalid ioctl 2018/04/12 23:16:49 executing program 6: socketpair(0x4, 0x3, 0x5f8, &(0x7f0000000000)={0xffffffffffffffff}) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f0000000140)={0x81, 0x4, 0x0, 0x3ff, 0x8, 0x499, 0x40, 0x1, 0x0}, &(0x7f0000000180)=0xf) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f00000001c0)=ANY=[@ANYRES32=r1, @ANYBLOB="d50000001a4e1dfbc97e7061a5c78ac03339e25e0e67e3fc439e3e78bb19bc635264cdd1c4a68dea152d2be61b65acdff80fccd20711250cc1f96101720f49bc5b447525d4203f2c729e0a1a93633e1450839b8c8dfd7d53d048814d8583e5db55ffa5e33f55fbd53839448b2eabdb997951e561c055716b6771224d190f7316b95f457ede641037e9f136c013756f45cbc51b12f12be5195f41a5cd1bac49cd6b6114755b37a8e9a0fef27e356d55f6d9ad4f99dd22739d37e318f3b5bdd782a54ee3be04aaa159031ae3bb471f80d97920044c3da9fa369d"], &(0x7f00000002c0)=0xdd) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu\x00', 0x200002, 0x0) r3 = openat$cgroup_ro(r2, &(0x7f0000000080)='cpuset.memory_pressure\x00', 0x0, 0x0) preadv(r3, &(0x7f00000000c0)=[{&(0x7f0000000340)=""/239, 0xef}], 0x1, 0x0) fallocate(r3, 0x3, 0xfffffffffffffff9, 0xfffffffffffffffa) read$eventfd(r3, &(0x7f0000000100), 0x8) 2018/04/12 23:16:49 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f00002e9000)='task\x00') connect(r0, &(0x7f0000000080)=@alg={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_ctr_aes192\x00'}, 0x80) getdents64(r0, &(0x7f0000ceffd4)=""/44, 0x2c) mmap(&(0x7f0000000000/0xd15000)=nil, 0xd15000, 0x0, 0x32, 0xffffffffffffffff, 0x0) getdents(r0, &(0x7f0000000040)=""/36, 0x24) [ 67.242709] QAT: Invalid ioctl 2018/04/12 23:16:49 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) write$binfmt_script(r0, &(0x7f0000000040)={'#! ', './file0', [{0x20, '/dev/ptmx\x00'}, {0x20, '/dev/ptmx\x00'}, {0x20}, {0x20, '/dev/ptmx\x00'}, {0x20, '/dev/ptmx\x00'}, {0x20, 'cgroup,ppp0bdev'}, {0x20}, {0x20, '/dev/ptmx\x00'}, {0x20, '/dev/ptmx\x00'}], 0xa, "3748c6102bbcf239d26e68e354c3f6257faad72e310cc58b8176dcea6ad3debeee2706c0df1d69cf1b3a7e"}, 0x8a) readv(r0, &(0x7f0000001480)=[{&(0x7f0000000480)=""/4096, 0x1000}], 0x1) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) readv(r0, &(0x7f0000001980)=[{&(0x7f00000001c0)=""/57, 0x39}], 0x1) r1 = syz_open_pts(r0, 0x2) dup3(r1, r0, 0x0) write(r0, &(0x7f0000c34fff), 0xffffff0b) 2018/04/12 23:16:49 executing program 7: r0 = memfd_create(&(0x7f0000000100)="a3", 0xffffffffffffffff) pwrite64(r0, &(0x7f00000a9000)="da1ed4c6dded1b78", 0x8, 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x2000005, 0x11, r0, 0x0) symlink(&(0x7f0000001000)='./file0\x00', &(0x7f000009c000)='./file0\x00') creat(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='hfs\x00', 0x81081, &(0x7f00000000c0)) umount2(&(0x7f00000001c0)='./file0\x00', 0x0) 2018/04/12 23:16:49 executing program 2: r0 = socket$inet(0x2, 0x802, 0x9) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x2f, &(0x7f0000000080)=@nat={"6e6174000000000002000000e000", 0x19, 0x3, 0x90, [0x20001680, 0x0, 0x0, 0x20001fd0, 0x20002000], 0x0, &(0x7f0000000000), &(0x7f0000001680)=[{}, {0x0, '\x00', 0x1}, {0x0, '\x00', 0x1}]}, 0x108) r1 = gettid() sched_rr_get_interval(r1, &(0x7f0000000040)) 2018/04/12 23:16:50 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) write$binfmt_script(r0, &(0x7f0000000040)={'#! ', './file0', [{0x20, '/dev/ptmx\x00'}, {0x20, '/dev/ptmx\x00'}, {0x20}, {0x20, '/dev/ptmx\x00'}, {0x20, '/dev/ptmx\x00'}, {0x20, 'cgroup,ppp0bdev'}, {0x20}, {0x20, '/dev/ptmx\x00'}, {0x20, '/dev/ptmx\x00'}], 0xa, "3748c6102bbcf239d26e68e354c3f6257faad72e310cc58b8176dcea6ad3debeee2706c0df1d69cf1b3a7e"}, 0x8a) readv(r0, &(0x7f0000001480)=[{&(0x7f0000000480)=""/4096, 0x1000}], 0x1) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) readv(r0, &(0x7f0000001980)=[{&(0x7f00000001c0)=""/57, 0x39}], 0x1) r1 = syz_open_pts(r0, 0x2) dup3(r1, r0, 0x0) write(r0, &(0x7f0000c34fff), 0xffffff0b) 2018/04/12 23:16:50 executing program 4: r0 = userfaultfd(0x0) mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x0, 0x44031, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x40000, 0x30) getsockopt$inet_mreqn(0xffffffffffffff9c, 0x0, 0x24, &(0x7f0000000640)={@remote, @loopback, 0x0}, &(0x7f0000000680)=0xc) setsockopt$inet6_mreq(r1, 0x29, 0x0, &(0x7f00000006c0)={@mcast2={0xff, 0x2, [], 0x1}, r2}, 0x14) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000ffafe8)={0xaa}) rt_sigreturn() syz_emit_ethernet(0x3e, &(0x7f0000000080)={@broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @remote={0xac, 0x14, 0x14, 0xbb}, @dev={0xac, 0x14, 0x14}}, @icmp=@parameter_prob={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local={0xac, 0x14, 0x14, 0xaa}, @dev={0xac, 0x14, 0x14}}}}}}}, &(0x7f0000000200)) r3 = creat(&(0x7f0000000000)='./file0\x00', 0x1) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r3, 0x29, 0xd2, &(0x7f00000000c0)={{0xa, 0x4e22, 0x1, @dev={0xfe, 0x80, [], 0x15}}, {0xa, 0x4e20, 0x5, @empty, 0xfffffffffffffff9}, 0x3, [0x20, 0x4, 0x5, 0x100000001, 0x89, 0x4, 0x800]}, 0x5c) ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa01, &(0x7f0000f70ff0)={&(0x7f00008a2000/0x1000)=nil, 0x1000}) 2018/04/12 23:16:50 executing program 3: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x3fffff, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'ansi_cprng\x00'}, 0x58) fcntl$lock(r0, 0x7, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x2}) 2018/04/12 23:16:50 executing program 6: r0 = socket$inet6(0xa, 0x2100000000000002, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in6=@mcast1={0xff, 0x1, [], 0x1}, @in6=@mcast1={0xff, 0x1, [], 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, {0x0, 0x0, 0x0, 0x91}, 0x0, 0x0, 0x1}, {{@in6=@ipv4={[], [0xff, 0xff], @dev={0xac, 0x14, 0x14}}, 0x0, 0x3c}, 0x0, @in, 0x0, 0x4}}, 0xe8) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback={0x0, 0x1}}, 0x1c) 2018/04/12 23:16:50 executing program 7: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000100)='cpuset.mem_exclusive\x00', 0x2, 0x0) rt_sigpending(&(0x7f0000000000), 0x8) sendfile(r1, r1, &(0x7f0000000080), 0x3) 2018/04/12 23:16:50 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) write$binfmt_script(r0, &(0x7f0000000040)={'#! ', './file0', [{0x20, '/dev/ptmx\x00'}, {0x20, '/dev/ptmx\x00'}, {0x20}, {0x20, '/dev/ptmx\x00'}, {0x20, '/dev/ptmx\x00'}, {0x20, 'cgroup,ppp0bdev'}, {0x20}, {0x20, '/dev/ptmx\x00'}, {0x20, '/dev/ptmx\x00'}], 0xa, "3748c6102bbcf239d26e68e354c3f6257faad72e310cc58b8176dcea6ad3debeee2706c0df1d69cf1b3a7e"}, 0x8a) readv(r0, &(0x7f0000001480)=[{&(0x7f0000000480)=""/4096, 0x1000}], 0x1) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) readv(r0, &(0x7f0000001980)=[{&(0x7f00000001c0)=""/57, 0x39}], 0x1) r1 = syz_open_pts(r0, 0x2) dup3(r1, r0, 0x0) write(r0, &(0x7f0000c34fff), 0xffffff0b) 2018/04/12 23:16:50 executing program 2: pipe2(&(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}, 0x84000) mmap(&(0x7f0000011000/0x2000)=nil, 0x2000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r2 = userfaultfd(0x0) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000bc8000)={0xaa}) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {0x400}, {}, @time=@time={0x77359400}}], 0xfffffffffffffe7f) read(r0, &(0x7f0000000000)=""/126, 0x7e) ioctl$FIONREAD(r0, 0x541b, &(0x7f0000000100)) dup2(r0, r2) 2018/04/12 23:16:50 executing program 0: r0 = open(&(0x7f0000000fc0)='./file0\x00', 0x0, 0x0) futex(&(0x7f000000cffc)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, &(0x7f0000048000), 0x0) futex(&(0x7f000000cffc)=0x1, 0x800000000006, 0x0, &(0x7f00003b6ff0)={0x77359400}, &(0x7f0000048000), 0x0) futex(&(0x7f000000cffc), 0x0, 0x0, &(0x7f0000fd8000), &(0x7f0000e7fffc), 0x0) r1 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000080)={{{@in6=@remote, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in6=@ipv4={[], [], @rand_addr}}}, &(0x7f0000000000)=0xe8) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000180)={0x0, 0x0, 0x0}, &(0x7f00000001c0)=0xc) setsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000200)={r1, r2, r3}, 0xc) tkill(r1, 0x1000000000016) 2018/04/12 23:16:50 executing program 6: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$sock_int(r1, 0x1, 0x10, &(0x7f00002cb000)=0xd9e0, 0x4) sendto(r0, &(0x7f0000000000), 0x0, 0x0, 0x0, 0x0) readv(r1, &(0x7f0000ba1000)=[{&(0x7f0000ba1f26)=""/2, 0x2}], 0x1) 2018/04/12 23:16:50 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') r1 = socket$kcm(0x29, 0x2, 0x0) sendmsg$kcm(r1, &(0x7f0000000380)={&(0x7f0000000080)=@ethernet={0x0, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}}, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000240)='h', 0x1}], 0x1, &(0x7f0000000300)}, 0x0) unlinkat(r0, &(0x7f0000000000)='./file0\x00', 0x200) sendfile(r1, r0, &(0x7f0000000040), 0x5) 2018/04/12 23:16:50 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x100000000106, 0x0) ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000040)=0x4000000058) read(r0, &(0x7f0000000100)=""/1, 0xfe64) ioctl$TCSETA(r0, 0x5402, &(0x7f0000a26fec)) 2018/04/12 23:16:50 executing program 7: r0 = getpgid(0xffffffffffffffff) capset(&(0x7f00000001c0)={0x399f1336, r0}, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb}) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_PR_STREAM_STATUS(r1, 0x84, 0x74, &(0x7f0000000500)=""/4096, &(0x7f0000001500)=0x1000) r2 = open(&(0x7f0000000080)='./file0\x00', 0x100, 0x40) getpeername$netlink(r2, &(0x7f00000000c0), &(0x7f0000000100)=0xc) r3 = add_key(&(0x7f0000000240)='rxrpc_s\x00', &(0x7f0000000280)={0x73, 0x79, 0x7a, 0x2}, &(0x7f00000002c0)="2a3ab6b02856980bd70691facb545915fc9983eb5a51caba2c034002fa5a2c5ef60190f9995bfcf701e6b9539c35e5ceb94d188e7485e6fdc8464c9facbeaf0ecd1561edc1e925ec1b7da38ad2eb5abff7f554834689dcb37e799f0c476f4dcec4539998c1143a447ee9447828aabe84e2454d120588154bbcf2abd2c3a1b1256a32c5e6a973c5abcc947aa3271cf66ed326cd9889ec8a25e06eeae085d04ae657775589a26bc77f35ec066bd87d69b24356ecd17758aa9cfbcd4978a6eac1ae359ddb43bcb868639b4ce32f018b1667e4278c846b3750a3708a6089cada776136785ee37ae05f72eae5507a576e8d8511fc", 0xf2, 0xfffffffffffffffc) r4 = add_key$keyring(&(0x7f00000003c0)='keyring\x00', &(0x7f0000000400)={0x73, 0x79, 0x7a, 0x0}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$negate(0xd, r3, 0x0, r4) getsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r2, 0x84, 0x12, &(0x7f0000000000), &(0x7f0000000200)=0x4) capset(&(0x7f0000000140)={0x200f1526, r0}, &(0x7f0000000180)={0x93, 0x3, 0x0, 0x4, 0x1, 0x4}) 2018/04/12 23:16:50 executing program 7: r0 = getpgid(0xffffffffffffffff) capset(&(0x7f00000001c0)={0x399f1336, r0}, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb}) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_PR_STREAM_STATUS(r1, 0x84, 0x74, &(0x7f0000000500)=""/4096, &(0x7f0000001500)=0x1000) r2 = open(&(0x7f0000000080)='./file0\x00', 0x100, 0x40) getpeername$netlink(r2, &(0x7f00000000c0), &(0x7f0000000100)=0xc) r3 = add_key(&(0x7f0000000240)='rxrpc_s\x00', &(0x7f0000000280)={0x73, 0x79, 0x7a, 0x2}, &(0x7f00000002c0)="2a3ab6b02856980bd70691facb545915fc9983eb5a51caba2c034002fa5a2c5ef60190f9995bfcf701e6b9539c35e5ceb94d188e7485e6fdc8464c9facbeaf0ecd1561edc1e925ec1b7da38ad2eb5abff7f554834689dcb37e799f0c476f4dcec4539998c1143a447ee9447828aabe84e2454d120588154bbcf2abd2c3a1b1256a32c5e6a973c5abcc947aa3271cf66ed326cd9889ec8a25e06eeae085d04ae657775589a26bc77f35ec066bd87d69b24356ecd17758aa9cfbcd4978a6eac1ae359ddb43bcb868639b4ce32f018b1667e4278c846b3750a3708a6089cada776136785ee37ae05f72eae5507a576e8d8511fc", 0xf2, 0xfffffffffffffffc) r4 = add_key$keyring(&(0x7f00000003c0)='keyring\x00', &(0x7f0000000400)={0x73, 0x79, 0x7a, 0x0}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$negate(0xd, r3, 0x0, r4) getsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r2, 0x84, 0x12, &(0x7f0000000000), &(0x7f0000000200)=0x4) capset(&(0x7f0000000140)={0x200f1526, r0}, &(0x7f0000000180)={0x93, 0x3, 0x0, 0x4, 0x1, 0x4}) 2018/04/12 23:16:50 executing program 3: unshare(0x60000000) getsockopt$inet_sctp_SCTP_GET_ASSOC_NUMBER(0xffffffffffffffff, 0x84, 0x1c, &(0x7f00000001c0), &(0x7f0000000240)=0x4) r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0) ioctl$DRM_IOCTL_SET_VERSION(r0, 0xc0106407, &(0x7f0000000040)={0x3, 0x6, 0x5, 0xffff}) r1 = socket$inet_sctp(0x2, 0x5, 0x84) ioctl$sock_inet_SIOCDELRT(r1, 0x890c, &(0x7f00000003c0)={0x0, {0x2}, {0x2, 0x0, @multicast1=0xe0000001}, {0x2, 0x0, @broadcast=0xffffffff}}) 2018/04/12 23:16:50 executing program 6: r0 = epoll_create1(0x0) r1 = timerfd_create(0x0, 0x0) r2 = semget(0x2, 0x1, 0x201) semctl$GETZCNT(r2, 0x3, 0xf, &(0x7f0000000000)=""/130) r3 = dup2(r1, r1) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000e4eff4)={0x10}) dup(r3) 2018/04/12 23:16:50 executing program 7: r0 = socket$rds(0x15, 0x5, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000000), 0x3d6) openat$selinux_status(0xffffffffffffff9c, &(0x7f00000004c0)='/selinux/status\x00', 0x0, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000500)=0x9, 0x4) setsockopt$RDS_FREE_MR(r0, 0x114, 0x3, &(0x7f0000000040)={{0x0, 0x7fff}}, 0x10) r1 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000140)='/selinux/avc/cache_threshold\x00', 0x2, 0x0) ioctl$sock_ifreq(r0, 0x8922, &(0x7f0000000100)={'lo\x00', @ifru_ivalue=0xfffffffffffffffb}) setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000180)={0x0, 0x7}, 0x8) [ 68.754288] lo: Invalid MTU -5 requested, hw min 0 [ 68.768734] lo: Invalid MTU -5 requested, hw min 0 2018/04/12 23:16:51 executing program 0: r0 = open(&(0x7f0000000fc0)='./file0\x00', 0x0, 0x0) futex(&(0x7f000000cffc)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, &(0x7f0000048000), 0x0) futex(&(0x7f000000cffc)=0x1, 0x800000000006, 0x0, &(0x7f00003b6ff0)={0x77359400}, &(0x7f0000048000), 0x0) futex(&(0x7f000000cffc), 0x0, 0x0, &(0x7f0000fd8000), &(0x7f0000e7fffc), 0x0) r1 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000080)={{{@in6=@remote, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in6=@ipv4={[], [], @rand_addr}}}, &(0x7f0000000000)=0xe8) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000180)={0x0, 0x0, 0x0}, &(0x7f00000001c0)=0xc) setsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000200)={r1, r2, r3}, 0xc) tkill(r1, 0x1000000000016) 2018/04/12 23:16:51 executing program 1: r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000001700)='/dev/sequencer\x00', 0x200000, 0x0) unshare(0x40600) setsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000001000)={0x10000, 0x4, 0x100, 0x400}, 0x10) r1 = socket(0x11, 0x4000000000080002, 0x0) setsockopt(r1, 0x107, 0xd, &(0x7f0000001000), 0x717) sendmmsg$inet_sctp(r1, &(0x7f0000871fc8)=[{&(0x7f000086c000)=@in6={0xa, 0x0, 0x2}, 0x1c, &(0x7f0000d1e000), 0x0, &(0x7f0000000140), 0x1f9}], 0x492492492492510, 0x0) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000200)={r0, &(0x7f0000000140)}, 0x10) 2018/04/12 23:16:51 executing program 5: r0 = socket$inet_sctp(0x2, 0x5, 0x84) r1 = dup3(0xffffffffffffffff, r0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000d6cff0)=[@in={0x2, 0x4e20, @loopback=0x7f000001}], 0x10) sendto$inet(0xffffffffffffffff, &(0x7f0000fa3fff)='\t', 0x1, 0x0, &(0x7f00006f7000)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff, 0xbb}}, 0x10) sendto$inet(r1, &(0x7f0000000000)="ae", 0x1, 0x0, &(0x7f0000000040)={0x2, 0x0, @dev={0xac, 0x14, 0x14}}, 0x10) sendto$inet(r0, &(0x7f00003cef9f)='7', 0x1, 0x0, &(0x7f0000618000)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000080)=ANY=[@ANYBLOB="00d4e2973fdb79d50000a9ba2614"], &(0x7f0000a8a000)=0x4) 2018/04/12 23:16:51 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f00000001c0)="00da8796b04323d835a2efbe635b9f9c87014941e02c51dbccdc14b7905f1e2d094c80f429371c3353b912a413e8765f842e057add2df87b693722ad540cf343dff9f84a96a3512132ce7f49365bf111473a401827cdfe4a96d91605792c9143816b40d26ff0d47b878c87331ded61a0251d63f705522baa936ec64d2b3ac7b6ee19bd19f7dc08a1e5c9c2e2d36d1bd70a81d03e") fadvise64(r0, 0x8000035, 0x9, 0x3) unlinkat(r0, &(0x7f0000000040)='./file0\x00', 0x0) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000000)={0x0, 0x35, "2df061ebfbb09c4a95093dfdb0f2ca2ddc7f12ca90c3bcea240610655cba6b059f18aa70d003ec061c0e6a9ae2a2e1dd80516f3fe3"}, &(0x7f0000000080)=0x3d) setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x5, 0x20, 0x8004, 0x2, 0x1f, 0x20, 0x1, 0x400, r1}, 0x20) 2018/04/12 23:16:51 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000ad7000)={0x1, &(0x7f0000acbff8)=[{0x6, 0x0, 0x0, 0x6}]}, 0x10) setsockopt$inet6_int(r0, 0x29, 0x42, &(0x7f000098dffc)=0x6, 0x4) bind$inet6(r0, &(0x7f0000807fe4)={0xa, 0x4e22}, 0x1c) r1 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x340, 0x8) getsockopt$inet_sctp_SCTP_RECVNXTINFO(r1, 0x84, 0x21, &(0x7f00000000c0), &(0x7f0000000100)=0x4) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e21, 0x5, @empty, 0xa0000000}, 0x1c) ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000180)={'\x00', &(0x7f0000000140)=@ethtool_stats={0x1d, 0x2, [0x1, 0x8]}}) sendto$inet6(r0, &(0x7f0000976000), 0x0, 0x200408d4, &(0x7f000072e000)={0xa, 0x4e22, 0x0, @loopback={0x0, 0x1}}, 0x1c) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='lo\x00', 0x10) sendto$inet6(r0, &(0x7f0000ad6fad)='\x00', 0x1, 0x3fffffd, &(0x7f0000254000)={0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}, 0x1c) close(r0) 2018/04/12 23:16:51 executing program 3: r0 = epoll_create(0x3) r1 = syz_open_dev$sg(&(0x7f0000659000)='/dev/sg#\x00', 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000bf8000)={0x4}) epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f0000000000)) epoll_wait(r1, &(0x7f00000000c0)=[{}], 0x1, 0x0) 2018/04/12 23:16:51 executing program 6: mmap(&(0x7f0000000000/0xc1f000)=nil, 0xc1f000, 0x2, 0x71, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00000, 0x3, &(0x7f0000000000)=0x5, 0x401c, 0x0) shmget(0x2, 0x4000, 0x7c001081, &(0x7f0000814000/0x4000)=nil) lsetxattr(&(0x7f00000026c0)='./file0\x00', &(0x7f0000002700)=@known='security.capability\x00', &(0x7f0000002740)='\x00', 0x1, 0x1) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$inet6(0xa, 0x0, 0x8000, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000240)={0xffffffffffffffff}) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000000280)={0x0, 0x0}, &(0x7f00000002c0)=0xc) r4 = getuid() getsockopt$inet6_opts(r2, 0x29, 0x3b, &(0x7f0000002640)=""/11, &(0x7f0000002680)=0xb) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000300)={0x0, 0x0}) sendmsg$nl_generic(r0, &(0x7f0000002600)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8080045}, 0xc, &(0x7f00000025c0)={&(0x7f0000002780)=ANY=[@ANYBLOB="682200003b00000727bd7000fbdbdf25090000000400560008002700", @ANYRES32=r1, @ANYBLOB="dc0096008f3785aacfc43b807d106e3e670a4b8113f24f1414cde1e49b4d0764fdc65f57cecb6ffbffee89d42650524b260888ade1443841447a3f2617120e60e73a7957fc503d6b73a4b5011a3c2cc89f8bccbc9fd70411378db78d51c86cc36c56099f03c049debc2b79293155099b7bc67ec533fa1d4e629748373da534286dff6c295879657ff3f1f13d3bcaa74b5251bd9f39851815f8addfa7e1dfe6f5e242cf548a7ee55603d5977dc32f095a4569b5870c006400ffffffff0000000008003a00", @ANYRES32=r2, @ANYBLOB="0c000f00960500000000000008006000", @ANYRES32=r3, @ANYBLOB="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", @ANYRES32=r4, @ANYBLOB="08001900", @ANYRES32=r5, @ANYBLOB="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"], 0x2268}, 0x1, 0x0, 0x0, 0x40084}, 0x4040) get_mempolicy(&(0x7f000029a000), &(0x7f00003e8000), 0x401, &(0x7f0000ffb000/0x4000)=nil, 0x2) r6 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2200, 0x0) open_by_handle_at(r6, &(0x7f0000000080)={0xf2, 0x5, "e4ca25bb26c0d2ee8c3d5f57fb9517d060baecd718b3e4e894131a999c526f3fa25b68d81ca17886d22c1ced01ce8faa29fc51a9fe76fbe8389c1278ee93b9775808f4ed3c3b4460ce42ed8214d98fd82bb0af3fe8fede4a08c072fdff1409769a232850b578be5ce89329b00b7c4d30f037cc9e7a80f334194569f6f59fd81813604a41190cc4730a5087b00307788eb58ef29cabd87cf8437a2845572ba25a632de02f9eeee97a0d1b666db076e8ba71eae41d3463194915a3c4986664a9d2c293a97298bb9925540a626227a287a7b794bc4e338e6ed8c4b7a71615fbe5d6d19d093e73385ef30022"}, 0x45c400) 2018/04/12 23:16:51 executing program 7: r0 = memfd_create(&(0x7f0000041000)="01800d05", 0x0) r1 = syz_open_dev$sndseq(&(0x7f000092e000)='/dev/snd/seq\x00', 0x0, 0x2000a) getsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4) r2 = dup2(r1, r0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000a6af74)={0x0, 0x0, 0x0, 'queue1\x00'}) write$sndseq(r0, &(0x7f0000000080)=[{0x9, 0x100000001, 0x0, 0x0, @tick=0x5da36b38, {}, {}, @result}], 0x30) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000b5efb0)={0x1a, @tick=0xffffffff}) 2018/04/12 23:16:51 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f000042ffa8)={0x26, 'hash\x00', 0x0, 0x0, 'poly1305\x00'}, 0x58) r1 = accept$alg(r0, 0x0, 0x0) r2 = open(&(0x7f00004b8ff8)='./file0\x00', 0x28042, 0x0) fallocate(r2, 0x0, 0x0, 0x73e0) sendfile(r1, r2, &(0x7f00007ed000), 0x2b) 2018/04/12 23:16:52 executing program 0: r0 = open(&(0x7f0000000fc0)='./file0\x00', 0x0, 0x0) futex(&(0x7f000000cffc)=0x1, 0x800000000006, 0x0, &(0x7f0000000040)={0x77359400}, &(0x7f0000048000), 0x0) futex(&(0x7f000000cffc)=0x1, 0x800000000006, 0x0, &(0x7f00003b6ff0)={0x77359400}, &(0x7f0000048000), 0x0) futex(&(0x7f000000cffc), 0x0, 0x0, &(0x7f0000fd8000), &(0x7f0000e7fffc), 0x0) r1 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000080)={{{@in6=@remote, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in6=@ipv4={[], [], @rand_addr}}}, &(0x7f0000000000)=0xe8) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000180)={0x0, 0x0, 0x0}, &(0x7f00000001c0)=0xc) setsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000200)={r1, r2, r3}, 0xc) tkill(r1, 0x1000000000016) 2018/04/12 23:16:52 executing program 1: r0 = socket$inet6(0xa, 0x80002, 0x88) setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000feb000)=0xa90d, 0x4) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'lrw-serpent-avx\x00'}, 0x58) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000100)={{{@in6=@remote, @in=@rand_addr}}, {{@in6=@mcast1}, 0x0, @in=@loopback}}, &(0x7f0000000280)=0xe8) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000ff8000), 0x0) r2 = accept$alg(r1, 0x0, 0x0) recvmsg(r2, &(0x7f0000000200)={&(0x7f0000f7ffa8)=@alg, 0x80, &(0x7f0000000240)=[{&(0x7f0000f80f9a)=""/102, 0x66}], 0x1, &(0x7f0000fb3fa9)=""/87, 0x57}, 0x0) recvfrom$inet6(r0, &(0x7f0000fbef6d)=""/185, 0xb9, 0x1000022, 0x0, 0x0) bind$inet6(r0, &(0x7f00008a8000)={0xa, 0x4e23}, 0x1c) r3 = socket$inet6(0xa, 0x3, 0x0) r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x2, 0x0) ioctl$sock_ipx_SIOCIPXCFGDATA(r4, 0x89e2, &(0x7f0000000080)) sendto$inet6(r3, &(0x7f0000000340)="8a2572c36b896b880d66715d8c37dac86dac032de45b60b0f8c5b47aa88d9ab3d01e0234ecf1f637d54c350f6490203caba84cd7ed4134d417d010b4ac4ff85a54d09a8dc5ae6dfd9573d4826cdee13952a8baabb5a2ab37a3ea64ffc742df56d6ce610eed240cfcb2a97fe77a12", 0x141, 0x0, &(0x7f00000002c0)={0xa, 0x4e24, 0x0, @loopback={0x0, 0x1}}, 0x1c) sendmsg$inet_sctp(r3, &(0x7f0000a29000)={&(0x7f00005dafe4)=@in6={0xa, 0x4e23, 0x0, @mcast2={0xff, 0x2, [], 0x1}}, 0x1c, &(0x7f0000fc8000)}, 0x8000) sendto$inet6(r3, &(0x7f0000b0cf6e), 0xffed, 0x0, &(0x7f000001b000)={0xa}, 0x1c) 2018/04/12 23:16:52 executing program 7: r0 = syz_open_dev$tun(&(0x7f0000000000)='/dev/net/tun\x00', 0x0, 0x8000) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000280)={'eql\x00', 0x1d}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x7) socketpair$inet_sctp(0x2, 0x800000000000000b, 0x84, &(0x7f0000000380)={0xffffffffffffffff}) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, &(0x7f0000000080)={0x0, @in6={{0xa, 0x4e22, 0x2, @empty, 0xff}}, 0xd56, 0x100010000, 0xffffffffffffffff, 0x400, 0x26}, &(0x7f0000000140)=0x98) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000180)={r2, @in={{0x2, 0x4e22, @local={0xac, 0x14, 0x14, 0xaa}}}, 0x8000, 0xf6, 0x4, 0x3, 0x20}, &(0x7f0000000240)=0x98) close(r0) 2018/04/12 23:16:52 executing program 3: r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$sock_int(r0, 0x1, 0x28, &(0x7f0000000040)=0xfff, 0x4) bind$inet(r0, &(0x7f0000eed000)={0x2, 0x4e21}, 0x10) syz_emit_ethernet(0x423, &(0x7f0000000080)=ANY=[@ANYBLOB="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"], 0x0) syz_emit_ethernet(0x2a, &(0x7f0000de6fd6)={@broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @empty=[0x0, 0x0, 0x14], [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @rand_addr, @multicast1=0xe0000001}, @udp={0x0, 0x4e21, 0x8}}}}}, 0x0) 2018/04/12 23:16:52 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) bind$netlink(r0, &(0x7f00000002c0)={0x10, 0x0, 0x0, 0x100000}, 0xc) getsockname(r0, &(0x7f0000000000)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @loopback}}}, &(0x7f00000000c0)=0x3a) mmap(&(0x7f0000e00000/0x200000)=nil, 0x200000, 0x2, 0x11, r1, 0x0) r2 = userfaultfd(0x0) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000000)={0xaa}) read(r2, &(0x7f0000000440)=""/4096, 0x1000) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000001480)={{&(0x7f0000ffc000/0x4000)=nil, 0x4000}, 0x1}) sigaltstack(&(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000400)) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000080)={0xffffffffffffff9c}) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffff9c, 0x84, 0x1b, &(0x7f00000000c0), &(0x7f0000000140)=0x8) ioctl$UFFDIO_ZEROPAGE(r2, 0xc020aa04, &(0x7f0000000240)={&(0x7f0000ffc000/0x2000)=nil, 0x2000}) 2018/04/12 23:16:52 executing program 6: mkdir(&(0x7f000082f000)='./control\x00', 0x0) syz_mount_image$msdos(&(0x7f0000000000)='msdos\x00', &(0x7f0000000040)='./control\x00', 0x40, 0x8, &(0x7f00000014c0)=[{&(0x7f0000000080)="aebda7bfad305e63f959ddd89095786e18509a61de55ec7571a6658c4da0b35b8a463ca243f7e96d6792c29fdb2940631a30833daf3c5420f7bfda1fe87fbf58ffa89d9b37c0a59aa92d90a22587a9f5b85cc870a57aa4ebfbaf8427f8f7eeea8304f400465745ed767cba76a3e0a7425de8afb1d00331d22115d1f259f215bdb91fc00f9e6177388ddaf9fa7f8c42154d366f8c4ad9741719f4b345f234", 0x9e, 0x3}, {&(0x7f0000000140)="b9c7d2f3986e3ebb67ee263ebcb931c8fab9b8aebde4366cd8ab5a5122726392ef013edbb17b807e6a37b15a1cb2c92748de2e065eb1e821635a0f7d6458396e662f1512f7785e0e5126ee385bc850125e40316a3a659da5dd8b8b841930eada2e904ed77dd5ba", 0x67, 0x9}, {&(0x7f00000001c0)="3215a4b2e8045cb0c854bab16397cdcc0742e3cf6e6a372f4dc8d4c1aea1c61b17ce310d1ad6fa9fed9e41997225e63f119e6976cd995f0437218d", 0x3b, 0x8}, {&(0x7f0000000200)="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", 0xfe, 0xad}, {&(0x7f0000000300)="9c2fe4fcae623521392bbd3bc5b0fc6304832bff6dd8d35dafd5e9b35bfdeb4e824fb97fbdcfd492b3a3c3af0738c0a6eb65837f43742aa492a661edc60353163f16b0042fdfb3ed0d728a", 0x4b, 0xffffffffffffff82}, {&(0x7f0000000380)="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", 0x1000, 0x3}, {&(0x7f0000001380)="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", 0xfe, 0x80000001}, {&(0x7f0000001480)="92ad9e386819cf302efac25af663675efc0289ccef208c291ebd8e110aa77e80f8bc034678f16f9670a2", 0x2a, 0x1000}], 0x200000, &(0x7f00000016c0)=ANY=[@ANYBLOB="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"]) creat(&(0x7f00003e9000)='./control/file0\x00', 0x0) r0 = open(&(0x7f00002e5000)='./control\x00', 0x0, 0x0) lseek(r0, 0x8, 0x1) setsockopt$inet6_tcp_int(r0, 0x6, 0x3, &(0x7f0000001580)=0x200, 0x4) 2018/04/12 23:16:52 executing program 4: mmap(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x0, 0x8972, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) munmap(&(0x7f00003dc000/0x3000)=nil, 0x3000) r0 = dup2(0xffffffffffffff9c, 0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffff9c, 0x84, 0x1b, &(0x7f0000000000)={0x0, 0x5d, "8be5062086778cc8694d6ae4303a615ac6cf2697b7870a01e7217ec5afc7e520c17f2ec4f5ea97bfc582e12829c836a330bd50d8a96c54c055e183915218764558ad956dc07bf763bcfd3ede31de484d78458281ad5e5ea2276b918f37"}, &(0x7f0000000080)=0x65) setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000000c0)={r1, 0x7, 0x9cd1760ceb4367c9}, 0xc) move_pages(0x0, 0x1, &(0x7f0000e2afe0)=[&(0x7f00003f2000/0x3000)=nil], &(0x7f00003dc000), &(0x7f00004e55fe), 0x0) 2018/04/12 23:16:52 executing program 5: r0 = gettid() gettid() r1 = syz_open_procfs(r0, &(0x7f0000009ffb)='comm\x00') exit(0x0) write$tun(r1, &(0x7f0000000000)={@pi, @void, @ipv6={0x0, 0x6, "dacfdc", 0x8, 0x0, 0x0, @loopback={0x0, 0x1}, @ipv4={[], [0xff, 0xff], @loopback=0x7f000001}, {[], @icmpv6=@echo_request={0x80}}}}, 0x34) 2018/04/12 23:16:52 executing program 6: unshare(0x4000000000800) pipe(&(0x7f0000000040)={0x0, 0x0}) fcntl$getflags(r0, 0x401) 2018/04/12 23:16:52 executing program 4: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000340)='/dev/sequencer2\x00', 0x0, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffff9c, 0x84, 0xd, &(0x7f0000000080)=@assoc_value={0x0, 0x9}, &(0x7f00000000c0)=0x8) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000100)={r2, 0x6}, &(0x7f0000000140)=0x8) r4 = socket$alg(0x26, 0x5, 0x0) bind$alg(r4, &(0x7f0000000400)={0x26, 'hash\x00', 0x0, 0x0, 'sha512\x00'}, 0x58) r5 = accept4$alg(r4, 0x0, 0x0, 0x0) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000380)={r3}, &(0x7f00000003c0)=0x8) ioctl$sock_FIOGETOWN(r4, 0x8903, &(0x7f0000000000)=0x0) getpgid(r6) getpgrp(0x0) ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f00000001c0)) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000000200)={0x0}, &(0x7f0000000240)=0xc) socket$nl_generic(0x10, 0x3, 0x10) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r1, 0x54a3) r8 = getpgrp(r7) prctl$setptracer(0x59616d61, r8) ioctl$sock_inet_SIOCRTMSG(r1, 0x890d, &(0x7f00000002c0)={0x4, {0x2, 0x4e20, @multicast2=0xe0000002}, {0x2, 0x4e24}, {0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x13}}, 0x80, 0xdd, 0xd31c, 0x7f, 0x1, &(0x7f0000000280)='irlan0\x00', 0xb5e, 0x6, 0x3f}) socketpair$inet_tcp(0x2, 0x1, 0x0, &(0x7f0000000180)) sendto(r5, &(0x7f00005c8f58), 0xfffffffffffffeee, 0x0, &(0x7f0000351ff0)=@ipx={0x4, 0x0, 0x0, "a074edebb7e1"}, 0x10) 2018/04/12 23:16:52 executing program 3: futex(&(0x7f000000cffc)=0x4, 0x9, 0x4, &(0x7f0000000000)={0x77359400}, &(0x7f0000048000), 0x7) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x0) futex(&(0x7f000000cffc), 0xa, 0x0, &(0x7f00000000c0)={0xfffffffffffffffc, 0x100000000000000}, &(0x7f0000000080), 0x2) 2018/04/12 23:16:52 executing program 7: perf_event_open(&(0x7f000001d000)={0x200000002, 0x70, 0x0, 0x108000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2018/04/12 23:16:52 executing program 6: r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x7a, 0x0) ioctl$EVIOCSKEYCODE_V2(r0, 0x40284504, &(0x7f0000000040)={0x0, 0x2, 0x0, 0x2, "020003fe040000000000031703ffffe78be5e600000000000000030809a7e633"}) getsockname$netlink(r0, &(0x7f0000000080), &(0x7f00000000c0)=0xc) 2018/04/12 23:16:52 executing program 7: mmap(&(0x7f0000000000/0xd15000)=nil, 0xd15000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc\x00', 0x200000, 0x0) getsockopt$inet_buf(r0, 0x0, 0x2c, &(0x7f0000000040), &(0x7f00000000c0)) getsockopt$bt_BT_SECURITY(r0, 0x112, 0x4, &(0x7f0000000040), 0x2) ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0) r1 = socket$inet_dccp(0x2, 0x6, 0x0) setsockopt(r1, 0x800000010d, 0x2, &(0x7f0000000080)='\bc6\x00', 0x4) 2018/04/12 23:16:52 executing program 6: syz_open_dev$sndseq(&(0x7f0000000000)='/dev/snd/seq\x00', 0x0, 0x200) r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r0, 0x404c534a, &(0x7f0000000100)={0xac8d}) r1 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x800, 0x8000) setsockopt$IP_VS_SO_SET_FLUSH(r1, 0x0, 0x485, 0x0, 0x0) ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffff9c, 0xc0086420, &(0x7f00000000c0)={0x0}) ioctl$DRM_IOCTL_SWITCH_CTX(r1, 0x40086424, &(0x7f0000000180)={r2, 0x3}) socket$nl_crypto(0x10, 0x3, 0x15) 2018/04/12 23:16:52 executing program 7: r0 = socket$inet(0x2, 0x4000000805, 0x0) getsockopt$IPT_SO_GET_ENTRIES(r0, 0x0, 0x41, &(0x7f0000000080)={'raw\x00', 0x7b, "54eceaa721cd08f5b3d4858f2b586c041677991310b2736bb242f1de62760079df1d7ccb329ca02127dfa77b0a933baf0228108da1a251a9953f72c4e01817d40b2d4670adb100ec59f938a123eee52878c46506ff16de456180b8825723d7b5324ee72137831417114d2126ccb807995aabb13d64fdac4fa495ae"}, &(0x7f0000000140)=0x9f) r1 = socket$inet_sctp(0x2, 0x5, 0x84) r2 = dup3(r0, r1, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000d6cff0)=[@in={0x2, 0x4e20, @loopback=0x7f000001}], 0x10) sendto$inet(r2, &(0x7f0000fa3fff)='\t', 0x1, 0x0, &(0x7f00006f7000)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff, 0xbb}}, 0x10) sendto$inet(r1, &(0x7f00003cef9f)='7', 0x1, 0x0, &(0x7f0000618000)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000025e000)={0x2, [0x0, 0x0]}, &(0x7f0000a8a000)=0xc) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000000)={r3}, &(0x7f0000000040)=0x8) [ 71.336566] WARNING: CPU: 1 PID: 5514 at mm/userfaultfd.c:463 mfill_zeropage+0x69b/0x16e0 [ 71.345046] Kernel panic - not syncing: panic_on_warn set ... [ 71.345046] [ 71.352561] CPU: 1 PID: 5514 Comm: syz-executor2 Not tainted 4.16.0+ #83 [ 71.359447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 71.368842] Call Trace: [ 71.371490] dump_stack+0x185/0x1d0 [ 71.375159] panic+0x39d/0x940 [ 71.378397] ================================================================== [ 71.385778] BUG: KMSAN: uninit-value in kernel_text_address+0x248/0x3a0 [ 71.392543] CPU: 1 PID: 5514 Comm: syz-executor2 Not tainted 4.16.0+ #83 [ 71.399388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 71.408752] Call Trace: [ 71.411362] dump_stack+0x14a/0x1d0 [ 71.415012] ? kernel_text_address+0x248/0x3a0 [ 71.419614] kmsan_report+0x142/0x240 [ 71.423439] __msan_warning_32+0x6c/0xb0 [ 71.427519] kernel_text_address+0x248/0x3a0 [ 71.431939] __kernel_text_address+0x34/0xe0 [ 71.436359] show_trace_log_lvl+0x954/0x1030 [ 71.440794] ? __warn+0x40f/0x580 [ 71.444279] show_stack+0xfc/0x150 [ 71.447826] ? print_worker_info+0x1b0/0x660 [ 71.452240] dump_stack+0x185/0x1d0 [ 71.455868] panic+0x39d/0x940 [ 71.459083] ? disable_trace_on_warning+0x18/0xd0 [ 71.464370] __warn+0x40f/0x580 [ 71.467673] ? mfill_zeropage+0x69b/0x16e0 [ 71.471921] report_bug+0x72a/0x880 [ 71.475570] ? mfill_zeropage+0x69b/0x16e0 [ 71.479825] do_error_trap+0x1aa/0x600 [ 71.483720] ? rcu_all_qs+0x32/0x1f0 [ 71.487444] ? kmsan_set_origin_inline+0x6b/0x120 [ 71.492303] do_invalid_op+0x46/0x50 [ 71.496026] invalid_op+0x1b/0x40 [ 71.499495] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 71.504333] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 71.509715] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 71.516987] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 71.524257] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 71.531555] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 71.538835] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 71.546304] ? mfill_zeropage+0x69b/0x16e0 [ 71.550568] ? mfill_zeropage+0x69b/0x16e0 [ 71.554829] ? kmsan_poison_shadow+0x80/0xc0 [ 71.559254] userfaultfd_ioctl+0x2949/0x6350 [ 71.565335] ? stack_segment+0x40/0x50 [ 71.569251] ? do_page_fault+0xd3/0x260 [ 71.573331] ? kmsan_set_origin_inline+0x6b/0x120 [ 71.578205] ? __msan_poison_alloca+0x15c/0x1d0 [ 71.582893] ? userfaultfd_poll+0x320/0x320 [ 71.587232] do_vfs_ioctl+0xaf0/0x2440 [ 71.591146] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 71.596560] ? __fget_light+0x6b9/0x710 [ 71.600551] ? prepare_exit_to_usermode+0x149/0x3a0 [ 71.605698] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 71.611259] SYSC_ioctl+0x1d2/0x260 [ 71.614905] SyS_ioctl+0x54/0x80 [ 71.618283] do_syscall_64+0x309/0x430 [ 71.622208] ? ioctl_file_clone+0x4f0/0x4f0 [ 71.626546] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 71.631738] RIP: 0033:0x455279 [ 71.634928] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 71.642651] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 71.650025] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 71.657317] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 71.664599] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 71.671872] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 71.679145] [ 71.680766] Local variable description: ----oldbit.i.i.i@update_curr [ 71.687249] Variable was created at: [ 71.690968] update_curr+0x48/0x1060 [ 71.694679] dequeue_task_fair+0xf9/0x2ea0 [ 71.698926] ================================================================== [ 71.706286] Disabling lock debugging due to kernel taint [ 71.711740] ================================================================== [ 71.719208] BUG: KMSAN: uninit-value in show_trace_log_lvl+0xd4d/0x1030 [ 71.725952] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 71.734180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 71.743656] Call Trace: [ 71.746345] dump_stack+0x14a/0x1d0 [ 71.749994] ? show_trace_log_lvl+0xd4d/0x1030 [ 71.754679] kmsan_report+0x142/0x240 [ 71.758672] __msan_warning_32+0x6c/0xb0 [ 71.762748] show_trace_log_lvl+0xd4d/0x1030 [ 71.767172] ? __warn+0x40f/0x580 [ 71.770649] show_stack+0xfc/0x150 [ 71.774201] ? print_worker_info+0x1b0/0x660 [ 71.778627] dump_stack+0x185/0x1d0 [ 71.782391] panic+0x39d/0x940 [ 71.785621] ? disable_trace_on_warning+0x18/0xd0 [ 71.790485] __warn+0x40f/0x580 [ 71.793789] ? mfill_zeropage+0x69b/0x16e0 [ 71.798043] report_bug+0x72a/0x880 [ 71.801784] ? mfill_zeropage+0x69b/0x16e0 [ 71.806048] do_error_trap+0x1aa/0x600 [ 71.809972] ? rcu_all_qs+0x32/0x1f0 [ 71.813712] ? kmsan_set_origin_inline+0x6b/0x120 [ 71.818638] do_invalid_op+0x46/0x50 [ 71.822364] invalid_op+0x1b/0x40 [ 71.825925] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 71.830895] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 71.836534] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 71.843971] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 71.851232] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 71.858494] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 71.866464] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 71.873756] ? mfill_zeropage+0x69b/0x16e0 [ 71.877998] ? mfill_zeropage+0x69b/0x16e0 [ 71.882550] ? kmsan_poison_shadow+0x80/0xc0 [ 71.886962] userfaultfd_ioctl+0x2949/0x6350 [ 71.891368] ? stack_segment+0x40/0x50 [ 71.895252] ? do_page_fault+0xd3/0x260 [ 71.899220] ? kmsan_set_origin_inline+0x6b/0x120 [ 71.904091] ? __msan_poison_alloca+0x15c/0x1d0 [ 71.908788] ? userfaultfd_poll+0x320/0x320 [ 71.913132] do_vfs_ioctl+0xaf0/0x2440 [ 71.917091] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 71.922484] ? __fget_light+0x6b9/0x710 [ 71.926472] ? prepare_exit_to_usermode+0x149/0x3a0 [ 71.931497] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 71.936877] SYSC_ioctl+0x1d2/0x260 [ 71.940503] SyS_ioctl+0x54/0x80 [ 71.943873] do_syscall_64+0x309/0x430 [ 71.947750] ? ioctl_file_clone+0x4f0/0x4f0 [ 71.952091] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 71.957299] RIP: 0033:0x455279 [ 71.960497] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 71.968209] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 71.975628] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 71.982913] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 71.990191] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 71.997727] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 72.005103] [ 72.006739] Local variable description: ----oldbit.i.i.i@update_curr [ 72.013231] Variable was created at: [ 72.016955] update_curr+0x48/0x1060 [ 72.020681] dequeue_task_fair+0xf9/0x2ea0 [ 72.024913] ================================================================== [ 72.032926] ? disable_trace_on_warning+0x18/0xd0 [ 72.037955] __warn+0x40f/0x580 [ 72.041304] ? mfill_zeropage+0x69b/0x16e0 [ 72.045615] report_bug+0x72a/0x880 [ 72.049251] ================================================================== [ 72.056957] BUG: KMSAN: uninit-value in update_stack_state+0x4ec/0xa40 [ 72.063621] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 72.071738] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 72.081512] Call Trace: [ 72.084094] dump_stack+0x14a/0x1d0 [ 72.087714] ? update_stack_state+0x4ec/0xa40 [ 72.092205] kmsan_report+0x142/0x240 [ 72.096004] __msan_warning_32+0x6c/0xb0 [ 72.100087] update_stack_state+0x4ec/0xa40 [ 72.104518] unwind_next_frame+0x618/0xe50 [ 72.108773] show_trace_log_lvl+0xb49/0x1030 [ 72.113195] ? report_bug+0x72a/0x880 [ 72.116990] ? report_bug+0x72a/0x880 [ 72.120956] show_stack+0xfc/0x150 [ 72.124498] ? print_worker_info+0x1b0/0x660 [ 72.128910] dump_stack+0x185/0x1d0 [ 72.132547] panic+0x39d/0x940 [ 72.135752] ? disable_trace_on_warning+0x18/0xd0 [ 72.140587] __warn+0x40f/0x580 [ 72.143856] ? mfill_zeropage+0x69b/0x16e0 [ 72.148110] report_bug+0x72a/0x880 [ 72.151742] ? mfill_zeropage+0x69b/0x16e0 [ 72.155959] do_error_trap+0x1aa/0x600 [ 72.159861] ? rcu_all_qs+0x32/0x1f0 [ 72.163576] ? kmsan_set_origin_inline+0x6b/0x120 [ 72.168434] do_invalid_op+0x46/0x50 [ 72.172150] invalid_op+0x1b/0x40 [ 72.175602] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 72.180426] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 72.185787] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 72.193051] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 72.200335] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 72.207614] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 72.214878] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 72.222159] ? mfill_zeropage+0x69b/0x16e0 [ 72.226387] ? mfill_zeropage+0x69b/0x16e0 [ 72.230630] ? kmsan_poison_shadow+0x80/0xc0 [ 72.235051] userfaultfd_ioctl+0x2949/0x6350 [ 72.239463] ? stack_segment+0x40/0x50 [ 72.243348] ? do_page_fault+0xd3/0x260 [ 72.247689] ? kmsan_set_origin_inline+0x6b/0x120 [ 72.252545] ? __msan_poison_alloca+0x15c/0x1d0 [ 72.257202] ? userfaultfd_poll+0x320/0x320 [ 72.261536] do_vfs_ioctl+0xaf0/0x2440 [ 72.265452] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 72.270818] ? __fget_light+0x6b9/0x710 [ 72.274809] ? prepare_exit_to_usermode+0x149/0x3a0 [ 72.279824] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 72.285203] SYSC_ioctl+0x1d2/0x260 [ 72.288823] SyS_ioctl+0x54/0x80 [ 72.292184] do_syscall_64+0x309/0x430 [ 72.296156] ? ioctl_file_clone+0x4f0/0x4f0 [ 72.300473] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 72.305673] RIP: 0033:0x455279 [ 72.308857] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 72.316732] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 72.323993] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 72.331263] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 72.339102] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 72.346387] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 72.353655] [ 72.355268] Local variable description: ----oldbit.i.i.i@pick_next_task_fair [ 72.362433] Variable was created at: [ 72.366141] pick_next_task_fair+0x63/0x1f70 [ 72.370537] pick_next_task+0x1b4/0x410 [ 72.374488] ================================================================== [ 72.381847] ================================================================== [ 72.389211] BUG: KMSAN: uninit-value in update_stack_state+0x565/0xa40 [ 72.395862] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 72.403976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 72.413593] Call Trace: [ 72.416180] dump_stack+0x14a/0x1d0 [ 72.419887] ? update_stack_state+0x565/0xa40 [ 72.424371] kmsan_report+0x142/0x240 [ 72.428167] __msan_warning_32+0x6c/0xb0 [ 72.432216] update_stack_state+0x565/0xa40 [ 72.438557] unwind_next_frame+0x618/0xe50 [ 72.442970] show_trace_log_lvl+0xb49/0x1030 [ 72.447392] ? report_bug+0x72a/0x880 [ 72.451205] ? report_bug+0x72a/0x880 [ 72.455118] show_stack+0xfc/0x150 [ 72.458765] ? print_worker_info+0x1b0/0x660 [ 72.463179] dump_stack+0x185/0x1d0 [ 72.466820] panic+0x39d/0x940 [ 72.470110] ? disable_trace_on_warning+0x18/0xd0 [ 72.474963] __warn+0x40f/0x580 [ 72.478244] ? mfill_zeropage+0x69b/0x16e0 [ 72.482468] report_bug+0x72a/0x880 [ 72.486101] ? mfill_zeropage+0x69b/0x16e0 [ 72.490321] do_error_trap+0x1aa/0x600 [ 72.494191] ? rcu_all_qs+0x32/0x1f0 [ 72.497894] ? kmsan_set_origin_inline+0x6b/0x120 [ 72.502744] do_invalid_op+0x46/0x50 [ 72.506457] invalid_op+0x1b/0x40 [ 72.509903] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 72.514724] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 72.520077] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 72.527332] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 72.534591] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 72.541861] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 72.549131] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 72.556415] ? mfill_zeropage+0x69b/0x16e0 [ 72.560668] ? mfill_zeropage+0x69b/0x16e0 [ 72.564918] ? kmsan_poison_shadow+0x80/0xc0 [ 72.569329] userfaultfd_ioctl+0x2949/0x6350 [ 72.573746] ? stack_segment+0x40/0x50 [ 72.577808] ? do_page_fault+0xd3/0x260 [ 72.581793] ? kmsan_set_origin_inline+0x6b/0x120 [ 72.586735] ? __msan_poison_alloca+0x15c/0x1d0 [ 72.591403] ? userfaultfd_poll+0x320/0x320 [ 72.595761] do_vfs_ioctl+0xaf0/0x2440 [ 72.599690] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 72.605078] ? __fget_light+0x6b9/0x710 [ 72.609067] ? prepare_exit_to_usermode+0x149/0x3a0 [ 72.614080] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 72.619440] SYSC_ioctl+0x1d2/0x260 [ 72.623079] SyS_ioctl+0x54/0x80 [ 72.626453] do_syscall_64+0x309/0x430 [ 72.630345] ? ioctl_file_clone+0x4f0/0x4f0 [ 72.634658] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 72.639836] RIP: 0033:0x455279 [ 72.643005] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 72.650712] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 72.657961] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 72.665219] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 72.672490] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 72.679769] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 72.687042] [ 72.688678] Local variable description: ----oldbit.i.i.i@pick_next_task_fair [ 72.695937] Variable was created at: [ 72.699639] pick_next_task_fair+0x63/0x1f70 [ 72.704046] pick_next_task+0x1b4/0x410 [ 72.708108] ================================================================== [ 72.715469] ================================================================== [ 72.722833] BUG: KMSAN: uninit-value in update_stack_state+0x6f1/0xa40 [ 72.729580] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 72.737729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 72.747075] Call Trace: [ 72.749653] dump_stack+0x14a/0x1d0 [ 72.753277] ? update_stack_state+0x6f1/0xa40 [ 72.757768] kmsan_report+0x142/0x240 [ 72.761564] __msan_warning_32+0x6c/0xb0 [ 72.765635] update_stack_state+0x6f1/0xa40 [ 72.769958] unwind_next_frame+0x618/0xe50 [ 72.774202] show_trace_log_lvl+0xb49/0x1030 [ 72.778607] ? report_bug+0x72a/0x880 [ 72.782404] ? report_bug+0x72a/0x880 [ 72.786214] show_stack+0xfc/0x150 [ 72.789764] ? print_worker_info+0x1b0/0x660 [ 72.794206] dump_stack+0x185/0x1d0 [ 72.797841] panic+0x39d/0x940 [ 72.801066] ? disable_trace_on_warning+0x18/0xd0 [ 72.805926] __warn+0x40f/0x580 [ 72.809199] ? mfill_zeropage+0x69b/0x16e0 [ 72.813428] report_bug+0x72a/0x880 [ 72.817061] ? mfill_zeropage+0x69b/0x16e0 [ 72.821298] do_error_trap+0x1aa/0x600 [ 72.825197] ? rcu_all_qs+0x32/0x1f0 [ 72.828926] ? kmsan_set_origin_inline+0x6b/0x120 [ 72.833796] do_invalid_op+0x46/0x50 [ 72.837536] invalid_op+0x1b/0x40 [ 72.841000] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 72.845838] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 72.851191] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 72.858440] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 72.865791] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 72.873073] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 72.880350] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 72.887635] ? mfill_zeropage+0x69b/0x16e0 [ 72.891884] ? mfill_zeropage+0x69b/0x16e0 [ 72.896227] ? kmsan_poison_shadow+0x80/0xc0 [ 72.901658] userfaultfd_ioctl+0x2949/0x6350 [ 72.906089] ? stack_segment+0x40/0x50 [ 72.909971] ? do_page_fault+0xd3/0x260 [ 72.913941] ? kmsan_set_origin_inline+0x6b/0x120 [ 72.918787] ? __msan_poison_alloca+0x15c/0x1d0 [ 72.923460] ? userfaultfd_poll+0x320/0x320 [ 72.927790] do_vfs_ioctl+0xaf0/0x2440 [ 72.931685] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 72.937079] ? __fget_light+0x6b9/0x710 [ 72.941069] ? prepare_exit_to_usermode+0x149/0x3a0 [ 72.946105] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 72.951570] SYSC_ioctl+0x1d2/0x260 [ 72.955208] SyS_ioctl+0x54/0x80 [ 72.958578] do_syscall_64+0x309/0x430 [ 72.962484] ? ioctl_file_clone+0x4f0/0x4f0 [ 72.966821] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 72.972022] RIP: 0033:0x455279 [ 72.975225] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 72.982926] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 72.990207] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 72.997484] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 73.004762] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 73.012037] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 73.019318] [ 73.020933] Local variable description: ----oldbit.i.i.i@pick_next_task_fair [ 73.028123] Variable was created at: [ 73.031849] pick_next_task_fair+0x63/0x1f70 [ 73.036352] pick_next_task+0x1b4/0x410 [ 73.040323] ================================================================== [ 73.047709] ================================================================== [ 73.055105] BUG: KMSAN: uninit-value in update_stack_state+0x91f/0xa40 [ 73.061767] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 73.069917] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 73.079271] Call Trace: [ 73.081872] dump_stack+0x14a/0x1d0 [ 73.085514] ? update_stack_state+0x91f/0xa40 [ 73.090032] kmsan_report+0x142/0x240 [ 73.093854] __msan_warning_32+0x6c/0xb0 [ 73.097929] update_stack_state+0x91f/0xa40 [ 73.102276] unwind_next_frame+0x618/0xe50 [ 73.106529] show_trace_log_lvl+0xb49/0x1030 [ 73.110940] ? report_bug+0x72a/0x880 [ 73.114752] ? report_bug+0x72a/0x880 [ 73.118568] show_stack+0xfc/0x150 [ 73.122117] ? print_worker_info+0x1b0/0x660 [ 73.126532] dump_stack+0x185/0x1d0 [ 73.130168] panic+0x39d/0x940 [ 73.133372] ? disable_trace_on_warning+0x18/0xd0 [ 73.138214] __warn+0x40f/0x580 [ 73.141494] ? mfill_zeropage+0x69b/0x16e0 [ 73.145738] report_bug+0x72a/0x880 [ 73.149364] ? mfill_zeropage+0x69b/0x16e0 [ 73.153608] do_error_trap+0x1aa/0x600 [ 73.157502] ? rcu_all_qs+0x32/0x1f0 [ 73.161213] ? kmsan_set_origin_inline+0x6b/0x120 [ 73.166048] do_invalid_op+0x46/0x50 [ 73.169773] invalid_op+0x1b/0x40 [ 73.173218] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 73.178070] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 73.183434] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 73.190700] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 73.197965] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 73.205243] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 73.212508] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 73.219777] ? mfill_zeropage+0x69b/0x16e0 [ 73.223996] ? mfill_zeropage+0x69b/0x16e0 [ 73.228228] ? kmsan_poison_shadow+0x80/0xc0 [ 73.232625] userfaultfd_ioctl+0x2949/0x6350 [ 73.237048] ? stack_segment+0x40/0x50 [ 73.240958] ? do_page_fault+0xd3/0x260 [ 73.244944] ? kmsan_set_origin_inline+0x6b/0x120 [ 73.249788] ? __msan_poison_alloca+0x15c/0x1d0 [ 73.254458] ? userfaultfd_poll+0x320/0x320 [ 73.258784] do_vfs_ioctl+0xaf0/0x2440 [ 73.262684] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 73.268063] ? __fget_light+0x6b9/0x710 [ 73.272043] ? prepare_exit_to_usermode+0x149/0x3a0 [ 73.277068] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 73.282440] SYSC_ioctl+0x1d2/0x260 [ 73.286071] SyS_ioctl+0x54/0x80 [ 73.289428] do_syscall_64+0x309/0x430 [ 73.293303] ? ioctl_file_clone+0x4f0/0x4f0 [ 73.297633] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 73.302821] RIP: 0033:0x455279 [ 73.305995] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 73.313698] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 73.320962] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 73.328232] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 73.335501] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 73.342767] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 73.350039] [ 73.351661] Local variable description: ----oldbit.i.i.i@pick_next_task_fair [ 73.358826] Variable was created at: [ 73.362533] pick_next_task_fair+0x63/0x1f70 [ 73.366927] pick_next_task+0x1b4/0x410 [ 73.370879] ================================================================== [ 73.378270] ? mfill_zeropage+0x69b/0x16e0 [ 73.382496] ================================================================== [ 73.389884] BUG: KMSAN: uninit-value in kernel_text_address+0x248/0x3a0 [ 73.396629] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 73.404762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 73.414103] Call Trace: [ 73.416688] dump_stack+0x14a/0x1d0 [ 73.420302] ? kernel_text_address+0x248/0x3a0 [ 73.424866] kmsan_report+0x142/0x240 [ 73.428650] __msan_warning_32+0x6c/0xb0 [ 73.432712] kernel_text_address+0x248/0x3a0 [ 73.437140] __kernel_text_address+0x34/0xe0 [ 73.441546] show_trace_log_lvl+0x954/0x1030 [ 73.445943] ? do_error_trap+0x1aa/0x600 [ 73.449991] show_stack+0xfc/0x150 [ 73.453539] ? print_worker_info+0x1b0/0x660 [ 73.457968] dump_stack+0x185/0x1d0 [ 73.461580] panic+0x39d/0x940 [ 73.464763] ? disable_trace_on_warning+0x18/0xd0 [ 73.469604] __warn+0x40f/0x580 [ 73.472882] ? mfill_zeropage+0x69b/0x16e0 [ 73.477142] report_bug+0x72a/0x880 [ 73.480784] ? mfill_zeropage+0x69b/0x16e0 [ 73.485034] do_error_trap+0x1aa/0x600 [ 73.488960] ? rcu_all_qs+0x32/0x1f0 [ 73.492673] ? kmsan_set_origin_inline+0x6b/0x120 [ 73.497510] do_invalid_op+0x46/0x50 [ 73.501211] invalid_op+0x1b/0x40 [ 73.504651] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 73.509486] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 73.514852] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 73.522122] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 73.529380] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 73.536650] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 73.544080] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 73.551537] ? mfill_zeropage+0x69b/0x16e0 [ 73.555767] ? mfill_zeropage+0x69b/0x16e0 [ 73.560010] ? kmsan_poison_shadow+0x80/0xc0 [ 73.564416] userfaultfd_ioctl+0x2949/0x6350 [ 73.568835] ? stack_segment+0x40/0x50 [ 73.572721] ? do_page_fault+0xd3/0x260 [ 73.576690] ? kmsan_set_origin_inline+0x6b/0x120 [ 73.581530] ? __msan_poison_alloca+0x15c/0x1d0 [ 73.586294] ? userfaultfd_poll+0x320/0x320 [ 73.590616] do_vfs_ioctl+0xaf0/0x2440 [ 73.594501] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 73.599863] ? __fget_light+0x6b9/0x710 [ 73.603832] ? prepare_exit_to_usermode+0x149/0x3a0 [ 73.608845] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 73.614211] SYSC_ioctl+0x1d2/0x260 [ 73.617832] SyS_ioctl+0x54/0x80 [ 73.621182] do_syscall_64+0x309/0x430 [ 73.625062] ? ioctl_file_clone+0x4f0/0x4f0 [ 73.629376] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 73.634560] RIP: 0033:0x455279 [ 73.637733] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 73.645427] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 73.652711] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 73.659980] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 73.667245] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 73.674518] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 73.681797] [ 73.683417] Local variable description: ----ldt.i.i.i@switch_mm_irqs_off [ 73.690247] Variable was created at: [ 73.693959] switch_mm_irqs_off+0xe6/0x15d0 [ 73.698258] __schedule+0x5a3/0x730 [ 73.701866] ================================================================== [ 73.709218] ================================================================== [ 73.716589] BUG: KMSAN: uninit-value in show_trace_log_lvl+0xd4d/0x1030 [ 73.723418] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 73.731573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 73.741094] Call Trace: [ 73.743675] dump_stack+0x14a/0x1d0 [ 73.747293] ? show_trace_log_lvl+0xd4d/0x1030 [ 73.751861] kmsan_report+0x142/0x240 [ 73.755652] __msan_warning_32+0x6c/0xb0 [ 73.759699] show_trace_log_lvl+0xd4d/0x1030 [ 73.764108] ? do_error_trap+0x1aa/0x600 [ 73.768168] show_stack+0xfc/0x150 [ 73.771691] ? print_worker_info+0x1b0/0x660 [ 73.776097] dump_stack+0x185/0x1d0 [ 73.779709] panic+0x39d/0x940 [ 73.782911] ? disable_trace_on_warning+0x18/0xd0 [ 73.787753] __warn+0x40f/0x580 [ 73.791030] ? mfill_zeropage+0x69b/0x16e0 [ 73.795261] report_bug+0x72a/0x880 [ 73.798895] ? mfill_zeropage+0x69b/0x16e0 [ 73.803118] do_error_trap+0x1aa/0x600 [ 73.806989] ? rcu_all_qs+0x32/0x1f0 [ 73.810733] ? kmsan_set_origin_inline+0x6b/0x120 [ 73.815576] do_invalid_op+0x46/0x50 [ 73.819298] invalid_op+0x1b/0x40 [ 73.822760] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 73.827611] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 73.832972] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 73.840238] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 73.847493] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 73.854758] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 73.862034] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 73.869316] ? mfill_zeropage+0x69b/0x16e0 [ 73.873541] ? mfill_zeropage+0x69b/0x16e0 [ 73.877801] ? kmsan_poison_shadow+0x80/0xc0 [ 73.882205] userfaultfd_ioctl+0x2949/0x6350 [ 73.886616] ? stack_segment+0x40/0x50 [ 73.890492] ? do_page_fault+0xd3/0x260 [ 73.894455] ? kmsan_set_origin_inline+0x6b/0x120 [ 73.899283] ? __msan_poison_alloca+0x15c/0x1d0 [ 73.903961] ? userfaultfd_poll+0x320/0x320 [ 73.908266] do_vfs_ioctl+0xaf0/0x2440 [ 73.912142] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 73.917503] ? __fget_light+0x6b9/0x710 [ 73.921471] ? prepare_exit_to_usermode+0x149/0x3a0 [ 73.926493] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 73.931861] SYSC_ioctl+0x1d2/0x260 [ 73.935480] SyS_ioctl+0x54/0x80 [ 73.938853] do_syscall_64+0x309/0x430 [ 73.942764] ? ioctl_file_clone+0x4f0/0x4f0 [ 73.947087] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 73.952263] RIP: 0033:0x455279 [ 73.955434] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 73.963148] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 73.970438] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 73.977698] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 73.985769] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 73.993061] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 74.000352] [ 74.001985] Local variable description: ----ldt.i.i.i@switch_mm_irqs_off [ 74.008839] Variable was created at: [ 74.012573] switch_mm_irqs_off+0xe6/0x15d0 [ 74.016903] __schedule+0x5a3/0x730 [ 74.020507] ================================================================== [ 74.027870] ================================================================== [ 74.035270] BUG: KMSAN: uninit-value in kernel_text_address+0x248/0x3a0 [ 74.042041] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 74.050208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 74.059673] Call Trace: [ 74.062256] dump_stack+0x14a/0x1d0 [ 74.065869] ? kernel_text_address+0x248/0x3a0 [ 74.070434] kmsan_report+0x142/0x240 [ 74.074243] __msan_warning_32+0x6c/0xb0 [ 74.078317] kernel_text_address+0x248/0x3a0 [ 74.082725] __kernel_text_address+0x34/0xe0 [ 74.087159] show_trace_log_lvl+0x954/0x1030 [ 74.091566] ? do_error_trap+0x1aa/0x600 [ 74.095634] show_stack+0xfc/0x150 [ 74.099165] ? print_worker_info+0x1b0/0x660 [ 74.103685] dump_stack+0x185/0x1d0 [ 74.107331] panic+0x39d/0x940 [ 74.110527] ? disable_trace_on_warning+0x18/0xd0 [ 74.115376] __warn+0x40f/0x580 [ 74.118650] ? mfill_zeropage+0x69b/0x16e0 [ 74.122898] report_bug+0x72a/0x880 [ 74.126525] ? mfill_zeropage+0x69b/0x16e0 [ 74.130783] do_error_trap+0x1aa/0x600 [ 74.134870] ? rcu_all_qs+0x32/0x1f0 [ 74.138632] ? kmsan_set_origin_inline+0x6b/0x120 [ 74.143506] do_invalid_op+0x46/0x50 [ 74.147237] invalid_op+0x1b/0x40 [ 74.150702] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 74.155539] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 74.160898] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 74.168167] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 74.175447] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 74.182716] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 74.189977] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 74.197265] ? mfill_zeropage+0x69b/0x16e0 [ 74.201521] ? mfill_zeropage+0x69b/0x16e0 [ 74.205788] ? kmsan_poison_shadow+0x80/0xc0 [ 74.210218] userfaultfd_ioctl+0x2949/0x6350 [ 74.214635] ? stack_segment+0x40/0x50 [ 74.218535] ? do_page_fault+0xd3/0x260 [ 74.222525] ? kmsan_set_origin_inline+0x6b/0x120 [ 74.227368] ? __msan_poison_alloca+0x15c/0x1d0 [ 74.232049] ? userfaultfd_poll+0x320/0x320 [ 74.236381] do_vfs_ioctl+0xaf0/0x2440 [ 74.240278] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 74.245641] ? __fget_light+0x6b9/0x710 [ 74.249613] ? prepare_exit_to_usermode+0x149/0x3a0 [ 74.254635] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 74.260001] SYSC_ioctl+0x1d2/0x260 [ 74.263628] SyS_ioctl+0x54/0x80 [ 74.267002] do_syscall_64+0x309/0x430 [ 74.270909] ? ioctl_file_clone+0x4f0/0x4f0 [ 74.275239] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 74.280416] RIP: 0033:0x455279 [ 74.283587] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 74.291297] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 74.298569] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 74.305834] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 74.313094] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 74.320382] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 74.327664] [ 74.329280] Local variable description: ----c.i.i.i.i.i.i.i.i.i@gup_pgd_range [ 74.336532] Variable was created at: [ 74.340241] gup_pgd_range+0x110/0x2e80 [ 74.344214] get_user_pages_fast+0x26e/0x760 [ 74.348617] ================================================================== [ 74.355983] ================================================================== [ 74.363357] BUG: KMSAN: uninit-value in show_trace_log_lvl+0xd4d/0x1030 [ 74.370128] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 74.378263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 74.387613] Call Trace: [ 74.390214] dump_stack+0x14a/0x1d0 [ 74.393864] ? show_trace_log_lvl+0xd4d/0x1030 [ 74.398441] kmsan_report+0x142/0x240 [ 74.402238] __msan_warning_32+0x6c/0xb0 [ 74.406295] show_trace_log_lvl+0xd4d/0x1030 [ 74.410694] ? do_error_trap+0x1aa/0x600 [ 74.414760] show_stack+0xfc/0x150 [ 74.418294] ? print_worker_info+0x1b0/0x660 [ 74.422710] dump_stack+0x185/0x1d0 [ 74.426345] panic+0x39d/0x940 [ 74.429547] ? disable_trace_on_warning+0x18/0xd0 [ 74.434392] __warn+0x40f/0x580 [ 74.437688] ? mfill_zeropage+0x69b/0x16e0 [ 74.441947] report_bug+0x72a/0x880 [ 74.445604] ? mfill_zeropage+0x69b/0x16e0 [ 74.449842] do_error_trap+0x1aa/0x600 [ 74.453724] ? rcu_all_qs+0x32/0x1f0 [ 74.457442] ? kmsan_set_origin_inline+0x6b/0x120 [ 74.462300] do_invalid_op+0x46/0x50 [ 74.466014] invalid_op+0x1b/0x40 [ 74.469490] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 74.474313] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 74.479665] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 74.486939] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 74.494209] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 74.501477] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 74.508747] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 74.516042] ? mfill_zeropage+0x69b/0x16e0 [ 74.520314] ? mfill_zeropage+0x69b/0x16e0 [ 74.524560] ? kmsan_poison_shadow+0x80/0xc0 [ 74.528991] userfaultfd_ioctl+0x2949/0x6350 [ 74.533413] ? stack_segment+0x40/0x50 [ 74.537306] ? do_page_fault+0xd3/0x260 [ 74.541268] ? kmsan_set_origin_inline+0x6b/0x120 [ 74.546102] ? __msan_poison_alloca+0x15c/0x1d0 [ 74.550771] ? userfaultfd_poll+0x320/0x320 [ 74.555099] do_vfs_ioctl+0xaf0/0x2440 [ 74.559011] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 74.564383] ? __fget_light+0x6b9/0x710 [ 74.568361] ? prepare_exit_to_usermode+0x149/0x3a0 [ 74.573391] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 74.578763] SYSC_ioctl+0x1d2/0x260 [ 74.582404] SyS_ioctl+0x54/0x80 [ 74.585767] do_syscall_64+0x309/0x430 [ 74.589666] ? ioctl_file_clone+0x4f0/0x4f0 [ 74.594007] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 74.599209] RIP: 0033:0x455279 [ 74.602400] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 74.610220] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 74.617491] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 74.624755] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 74.632026] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 74.639306] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 74.646571] [ 74.648185] Local variable description: ----c.i.i.i.i.i.i.i.i.i@gup_pgd_range [ 74.655437] Variable was created at: [ 74.659135] gup_pgd_range+0x110/0x2e80 [ 74.663103] get_user_pages_fast+0x26e/0x760 [ 74.667497] ================================================================== [ 74.674856] ================================================================== [ 74.682223] BUG: KMSAN: uninit-value in kernel_text_address+0x248/0x3a0 [ 74.688980] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 74.697111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 74.706474] Call Trace: [ 74.709092] dump_stack+0x14a/0x1d0 [ 74.712722] ? kernel_text_address+0x248/0x3a0 [ 74.717308] kmsan_report+0x142/0x240 [ 74.721116] __msan_warning_32+0x6c/0xb0 [ 74.725167] kernel_text_address+0x248/0x3a0 [ 74.729592] __kernel_text_address+0x34/0xe0 [ 74.734002] show_trace_log_lvl+0x954/0x1030 [ 74.738431] ? do_error_trap+0x1aa/0x600 [ 74.742501] show_stack+0xfc/0x150 [ 74.746041] ? print_worker_info+0x1b0/0x660 [ 74.750457] dump_stack+0x185/0x1d0 [ 74.754091] panic+0x39d/0x940 [ 74.757282] ? disable_trace_on_warning+0x18/0xd0 [ 74.762114] __warn+0x40f/0x580 [ 74.765379] ? mfill_zeropage+0x69b/0x16e0 [ 74.769620] report_bug+0x72a/0x880 [ 74.773257] ? mfill_zeropage+0x69b/0x16e0 [ 74.777503] do_error_trap+0x1aa/0x600 [ 74.781388] ? rcu_all_qs+0x32/0x1f0 [ 74.785095] ? kmsan_set_origin_inline+0x6b/0x120 [ 74.789949] do_invalid_op+0x46/0x50 [ 74.793673] invalid_op+0x1b/0x40 [ 74.797152] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 74.801987] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 74.807352] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 74.814628] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 74.821900] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 74.829248] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 74.836534] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 74.843944] ? mfill_zeropage+0x69b/0x16e0 [ 74.848185] ? mfill_zeropage+0x69b/0x16e0 [ 74.852426] ? kmsan_poison_shadow+0x80/0xc0 [ 74.856841] userfaultfd_ioctl+0x2949/0x6350 [ 74.861261] ? stack_segment+0x40/0x50 [ 74.865150] ? do_page_fault+0xd3/0x260 [ 74.869130] ? kmsan_set_origin_inline+0x6b/0x120 [ 74.873985] ? __msan_poison_alloca+0x15c/0x1d0 [ 74.878661] ? userfaultfd_poll+0x320/0x320 [ 74.883000] do_vfs_ioctl+0xaf0/0x2440 [ 74.886905] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 74.892269] ? __fget_light+0x6b9/0x710 [ 74.896243] ? prepare_exit_to_usermode+0x149/0x3a0 [ 74.901263] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 74.907552] SYSC_ioctl+0x1d2/0x260 [ 74.911201] SyS_ioctl+0x54/0x80 [ 74.914565] do_syscall_64+0x309/0x430 [ 74.918446] ? ioctl_file_clone+0x4f0/0x4f0 [ 74.922782] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 74.927965] RIP: 0033:0x455279 [ 74.931156] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 74.938872] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 74.946144] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 74.953408] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 74.960675] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 74.967943] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 74.975210] [ 74.976825] Local variable description: ----reclaim_state.i.i.i@__alloc_pages_nodemask [ 74.984869] Variable was created at: [ 74.988608] __alloc_pages_nodemask+0x160/0x5dc0 [ 74.993384] alloc_pages_vma+0xcc8/0x1800 [ 74.997529] ================================================================== [ 75.004891] ================================================================== [ 75.012268] BUG: KMSAN: uninit-value in show_trace_log_lvl+0xd4d/0x1030 [ 75.019031] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 75.027202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 75.036653] Call Trace: [ 75.039240] dump_stack+0x14a/0x1d0 [ 75.042859] ? show_trace_log_lvl+0xd4d/0x1030 [ 75.047432] kmsan_report+0x142/0x240 [ 75.051246] __msan_warning_32+0x6c/0xb0 [ 75.055326] show_trace_log_lvl+0xd4d/0x1030 [ 75.059753] ? do_error_trap+0x1aa/0x600 [ 75.063862] show_stack+0xfc/0x150 [ 75.067416] ? print_worker_info+0x1b0/0x660 [ 75.071841] dump_stack+0x185/0x1d0 [ 75.075491] panic+0x39d/0x940 [ 75.078682] ? disable_trace_on_warning+0x18/0xd0 [ 75.083510] __warn+0x40f/0x580 [ 75.086775] ? mfill_zeropage+0x69b/0x16e0 [ 75.091016] report_bug+0x72a/0x880 [ 75.094661] ? mfill_zeropage+0x69b/0x16e0 [ 75.098890] do_error_trap+0x1aa/0x600 [ 75.102784] ? rcu_all_qs+0x32/0x1f0 [ 75.106525] ? kmsan_set_origin_inline+0x6b/0x120 [ 75.111384] do_invalid_op+0x46/0x50 [ 75.115119] invalid_op+0x1b/0x40 [ 75.118594] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 75.123443] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 75.128826] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 75.136109] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 75.143384] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 75.150656] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 75.157925] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 75.165206] ? mfill_zeropage+0x69b/0x16e0 [ 75.169449] ? mfill_zeropage+0x69b/0x16e0 [ 75.173715] ? kmsan_poison_shadow+0x80/0xc0 [ 75.178138] userfaultfd_ioctl+0x2949/0x6350 [ 75.182539] ? stack_segment+0x40/0x50 [ 75.186435] ? do_page_fault+0xd3/0x260 [ 75.190420] ? kmsan_set_origin_inline+0x6b/0x120 [ 75.195265] ? __msan_poison_alloca+0x15c/0x1d0 [ 75.199936] ? userfaultfd_poll+0x320/0x320 [ 75.204259] do_vfs_ioctl+0xaf0/0x2440 [ 75.208152] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 75.213528] ? __fget_light+0x6b9/0x710 [ 75.217509] ? prepare_exit_to_usermode+0x149/0x3a0 [ 75.222527] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 75.227894] SYSC_ioctl+0x1d2/0x260 [ 75.231525] SyS_ioctl+0x54/0x80 [ 75.234887] do_syscall_64+0x309/0x430 [ 75.238759] ? ioctl_file_clone+0x4f0/0x4f0 [ 75.243101] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 75.248312] RIP: 0033:0x455279 [ 75.251503] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 75.259208] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 75.266475] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 75.273755] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 75.281032] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 75.288320] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 75.295604] [ 75.297240] Local variable description: ----reclaim_state.i.i.i@__alloc_pages_nodemask [ 75.305296] Variable was created at: [ 75.309026] __alloc_pages_nodemask+0x160/0x5dc0 [ 75.313823] alloc_pages_vma+0xcc8/0x1800 [ 75.317962] ================================================================== [ 75.325323] ================================================================== [ 75.332703] BUG: KMSAN: uninit-value in kernel_text_address+0x248/0x3a0 [ 75.339492] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 75.347631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 75.356980] Call Trace: [ 75.359579] dump_stack+0x14a/0x1d0 [ 75.363215] ? kernel_text_address+0x248/0x3a0 [ 75.367786] kmsan_report+0x142/0x240 [ 75.371572] __msan_warning_32+0x6c/0xb0 [ 75.375616] kernel_text_address+0x248/0x3a0 [ 75.380025] __kernel_text_address+0x34/0xe0 [ 75.384426] show_trace_log_lvl+0x954/0x1030 [ 75.388828] ? do_error_trap+0x1aa/0x600 [ 75.392889] show_stack+0xfc/0x150 [ 75.396426] ? print_worker_info+0x1b0/0x660 [ 75.400825] dump_stack+0x185/0x1d0 [ 75.404434] panic+0x39d/0x940 [ 75.407627] ? disable_trace_on_warning+0x18/0xd0 [ 75.412452] __warn+0x40f/0x580 [ 75.415717] ? mfill_zeropage+0x69b/0x16e0 [ 75.419936] report_bug+0x72a/0x880 [ 75.423558] ? mfill_zeropage+0x69b/0x16e0 [ 75.427797] do_error_trap+0x1aa/0x600 [ 75.431666] ? rcu_all_qs+0x32/0x1f0 [ 75.435459] ? kmsan_set_origin_inline+0x6b/0x120 [ 75.440293] do_invalid_op+0x46/0x50 [ 75.444005] invalid_op+0x1b/0x40 [ 75.447453] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 75.452281] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 75.457629] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 75.464884] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 75.472143] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 75.479417] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 75.486688] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 75.493967] ? mfill_zeropage+0x69b/0x16e0 [ 75.498214] ? mfill_zeropage+0x69b/0x16e0 [ 75.502463] ? kmsan_poison_shadow+0x80/0xc0 [ 75.506874] userfaultfd_ioctl+0x2949/0x6350 [ 75.511297] ? stack_segment+0x40/0x50 [ 75.515209] ? do_page_fault+0xd3/0x260 [ 75.519197] ? kmsan_set_origin_inline+0x6b/0x120 [ 75.524089] ? __msan_poison_alloca+0x15c/0x1d0 [ 75.528764] ? userfaultfd_poll+0x320/0x320 [ 75.533105] do_vfs_ioctl+0xaf0/0x2440 [ 75.536993] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 75.542364] ? __fget_light+0x6b9/0x710 [ 75.546336] ? prepare_exit_to_usermode+0x149/0x3a0 [ 75.551369] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 75.556738] SYSC_ioctl+0x1d2/0x260 [ 75.560361] SyS_ioctl+0x54/0x80 [ 75.563721] do_syscall_64+0x309/0x430 [ 75.567606] ? ioctl_file_clone+0x4f0/0x4f0 [ 75.571937] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 75.577137] RIP: 0033:0x455279 [ 75.580319] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 75.588045] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 75.595327] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 75.602629] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 75.609900] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 75.617171] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 75.624450] [ 75.626079] Local variable description: ----oc.i.i@__alloc_pages_nodemask [ 75.633002] Variable was created at: [ 75.636751] __alloc_pages_nodemask+0x10f/0x5dc0 [ 75.641509] alloc_pages_vma+0xcc8/0x1800 [ 75.645649] ================================================================== [ 75.653008] ================================================================== [ 75.660387] BUG: KMSAN: uninit-value in show_trace_log_lvl+0xd4d/0x1030 [ 75.667144] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 75.675302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 75.684668] Call Trace: [ 75.687287] dump_stack+0x14a/0x1d0 [ 75.690920] ? show_trace_log_lvl+0xd4d/0x1030 [ 75.695507] kmsan_report+0x142/0x240 [ 75.699326] __msan_warning_32+0x6c/0xb0 [ 75.703394] show_trace_log_lvl+0xd4d/0x1030 [ 75.707808] ? do_error_trap+0x1aa/0x600 [ 75.711888] show_stack+0xfc/0x150 [ 75.715433] ? print_worker_info+0x1b0/0x660 [ 75.719849] dump_stack+0x185/0x1d0 [ 75.723488] panic+0x39d/0x940 [ 75.726701] ? disable_trace_on_warning+0x18/0xd0 [ 75.731548] __warn+0x40f/0x580 [ 75.734909] ? mfill_zeropage+0x69b/0x16e0 [ 75.739148] report_bug+0x72a/0x880 [ 75.742786] ? mfill_zeropage+0x69b/0x16e0 [ 75.747080] do_error_trap+0x1aa/0x600 [ 75.750989] ? rcu_all_qs+0x32/0x1f0 [ 75.754727] ? kmsan_set_origin_inline+0x6b/0x120 [ 75.759568] do_invalid_op+0x46/0x50 [ 75.763267] invalid_op+0x1b/0x40 [ 75.766739] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 75.771580] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 75.776948] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 75.784218] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 75.791659] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 75.798932] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 75.806197] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 75.813477] ? mfill_zeropage+0x69b/0x16e0 [ 75.817722] ? mfill_zeropage+0x69b/0x16e0 [ 75.821975] ? kmsan_poison_shadow+0x80/0xc0 [ 75.826394] userfaultfd_ioctl+0x2949/0x6350 [ 75.830809] ? stack_segment+0x40/0x50 [ 75.834711] ? do_page_fault+0xd3/0x260 [ 75.838698] ? kmsan_set_origin_inline+0x6b/0x120 [ 75.843553] ? __msan_poison_alloca+0x15c/0x1d0 [ 75.848239] ? userfaultfd_poll+0x320/0x320 [ 75.852566] do_vfs_ioctl+0xaf0/0x2440 [ 75.856466] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 75.861826] ? __fget_light+0x6b9/0x710 [ 75.865822] ? prepare_exit_to_usermode+0x149/0x3a0 [ 75.870835] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 75.876201] SYSC_ioctl+0x1d2/0x260 [ 75.879837] SyS_ioctl+0x54/0x80 [ 75.883208] do_syscall_64+0x309/0x430 [ 75.887104] ? ioctl_file_clone+0x4f0/0x4f0 [ 75.891422] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 75.896604] RIP: 0033:0x455279 [ 75.899779] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 75.907473] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 75.914724] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 75.921988] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 75.929350] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 75.936623] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 75.943900] [ 75.945533] Local variable description: ----oc.i.i@__alloc_pages_nodemask [ 75.952448] Variable was created at: [ 75.956161] __alloc_pages_nodemask+0x10f/0x5dc0 [ 75.960909] alloc_pages_vma+0xcc8/0x1800 [ 75.965045] ================================================================== [ 75.972396] ================================================================== [ 75.979755] BUG: KMSAN: uninit-value in kernel_text_address+0x248/0x3a0 [ 75.986514] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 75.994658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 76.004046] Call Trace: [ 76.006684] dump_stack+0x14a/0x1d0 [ 76.010334] ? kernel_text_address+0x248/0x3a0 [ 76.014930] kmsan_report+0x142/0x240 [ 76.018727] __msan_warning_32+0x6c/0xb0 [ 76.022790] kernel_text_address+0x248/0x3a0 [ 76.027213] __kernel_text_address+0x34/0xe0 [ 76.031618] show_trace_log_lvl+0x954/0x1030 [ 76.036026] ? do_error_trap+0x1aa/0x600 [ 76.040097] show_stack+0xfc/0x150 [ 76.043630] ? print_worker_info+0x1b0/0x660 [ 76.048040] dump_stack+0x185/0x1d0 [ 76.051669] panic+0x39d/0x940 [ 76.054863] ? disable_trace_on_warning+0x18/0xd0 [ 76.059704] __warn+0x40f/0x580 [ 76.062972] ? mfill_zeropage+0x69b/0x16e0 [ 76.067204] report_bug+0x72a/0x880 [ 76.070855] ? mfill_zeropage+0x69b/0x16e0 [ 76.075111] do_error_trap+0x1aa/0x600 [ 76.079020] ? rcu_all_qs+0x32/0x1f0 [ 76.082755] ? kmsan_set_origin_inline+0x6b/0x120 [ 76.087622] do_invalid_op+0x46/0x50 [ 76.091344] invalid_op+0x1b/0x40 [ 76.094788] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 76.099624] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 76.104970] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 76.112226] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 76.119487] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 76.126744] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 76.134004] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 76.141278] ? mfill_zeropage+0x69b/0x16e0 [ 76.145517] ? mfill_zeropage+0x69b/0x16e0 [ 76.149764] ? kmsan_poison_shadow+0x80/0xc0 [ 76.154163] userfaultfd_ioctl+0x2949/0x6350 [ 76.158560] ? stack_segment+0x40/0x50 [ 76.162433] ? do_page_fault+0xd3/0x260 [ 76.166402] ? kmsan_set_origin_inline+0x6b/0x120 [ 76.171245] ? __msan_poison_alloca+0x15c/0x1d0 [ 76.176113] ? userfaultfd_poll+0x320/0x320 [ 76.180439] do_vfs_ioctl+0xaf0/0x2440 [ 76.184324] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 76.189690] ? __fget_light+0x6b9/0x710 [ 76.193663] ? prepare_exit_to_usermode+0x149/0x3a0 [ 76.198701] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 76.204091] SYSC_ioctl+0x1d2/0x260 [ 76.207712] SyS_ioctl+0x54/0x80 [ 76.211096] do_syscall_64+0x309/0x430 [ 76.214990] ? ioctl_file_clone+0x4f0/0x4f0 [ 76.219319] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 76.224498] RIP: 0033:0x455279 [ 76.227678] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 76.235421] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 76.242781] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 76.250048] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 76.257417] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 76.264687] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 76.271970] [ 76.273598] Local variable description: ----oc.i.i@__alloc_pages_nodemask [ 76.280621] Variable was created at: [ 76.284341] __alloc_pages_nodemask+0x10f/0x5dc0 [ 76.289110] alloc_pages_vma+0xcc8/0x1800 [ 76.293248] ================================================================== [ 76.300614] ================================================================== [ 76.307998] BUG: KMSAN: uninit-value in show_trace_log_lvl+0xd4d/0x1030 [ 76.314771] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 76.322917] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 76.332268] Call Trace: [ 76.334868] dump_stack+0x14a/0x1d0 [ 76.338510] ? show_trace_log_lvl+0xd4d/0x1030 [ 76.343105] kmsan_report+0x142/0x240 [ 76.346910] __msan_warning_32+0x6c/0xb0 [ 76.350968] show_trace_log_lvl+0xd4d/0x1030 [ 76.355366] ? do_error_trap+0x1aa/0x600 [ 76.359439] show_stack+0xfc/0x150 [ 76.362978] ? print_worker_info+0x1b0/0x660 [ 76.367390] dump_stack+0x185/0x1d0 [ 76.371030] panic+0x39d/0x940 [ 76.374246] ? disable_trace_on_warning+0x18/0xd0 [ 76.379101] __warn+0x40f/0x580 [ 76.382387] ? mfill_zeropage+0x69b/0x16e0 [ 76.386645] report_bug+0x72a/0x880 [ 76.390308] ? mfill_zeropage+0x69b/0x16e0 [ 76.394570] do_error_trap+0x1aa/0x600 [ 76.398452] ? rcu_all_qs+0x32/0x1f0 [ 76.402178] ? kmsan_set_origin_inline+0x6b/0x120 [ 76.407094] do_invalid_op+0x46/0x50 [ 76.410830] invalid_op+0x1b/0x40 [ 76.414297] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 76.420267] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 76.425642] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 76.432906] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 76.440174] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 76.447448] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 76.454713] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 76.462023] ? mfill_zeropage+0x69b/0x16e0 [ 76.466297] ? mfill_zeropage+0x69b/0x16e0 [ 76.470563] ? kmsan_poison_shadow+0x80/0xc0 [ 76.474993] userfaultfd_ioctl+0x2949/0x6350 [ 76.479418] ? stack_segment+0x40/0x50 [ 76.483337] ? do_page_fault+0xd3/0x260 [ 76.487329] ? kmsan_set_origin_inline+0x6b/0x120 [ 76.492188] ? __msan_poison_alloca+0x15c/0x1d0 [ 76.496885] ? userfaultfd_poll+0x320/0x320 [ 76.501222] do_vfs_ioctl+0xaf0/0x2440 [ 76.505127] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 76.510495] ? __fget_light+0x6b9/0x710 [ 76.514470] ? prepare_exit_to_usermode+0x149/0x3a0 [ 76.519492] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 76.524856] SYSC_ioctl+0x1d2/0x260 [ 76.528477] SyS_ioctl+0x54/0x80 [ 76.531837] do_syscall_64+0x309/0x430 [ 76.535711] ? ioctl_file_clone+0x4f0/0x4f0 [ 76.540039] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 76.545226] RIP: 0033:0x455279 [ 76.548415] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 76.556133] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 76.563408] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 76.570687] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 76.577949] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 76.585211] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 76.592475] [ 76.594096] Local variable description: ----oc.i.i@__alloc_pages_nodemask [ 76.601006] Variable was created at: [ 76.604720] __alloc_pages_nodemask+0x10f/0x5dc0 [ 76.609462] alloc_pages_vma+0xcc8/0x1800 [ 76.613590] ================================================================== [ 76.620932] ================================================================== [ 76.628284] BUG: KMSAN: uninit-value in kernel_text_address+0x248/0x3a0 [ 76.635041] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 76.643178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 76.652522] Call Trace: [ 76.655113] dump_stack+0x14a/0x1d0 [ 76.658734] ? kernel_text_address+0x248/0x3a0 [ 76.663317] kmsan_report+0x142/0x240 [ 76.667124] __msan_warning_32+0x6c/0xb0 [ 76.671205] kernel_text_address+0x248/0x3a0 [ 76.675627] __kernel_text_address+0x34/0xe0 [ 76.680035] show_trace_log_lvl+0x954/0x1030 [ 76.684441] ? do_error_trap+0x1aa/0x600 [ 76.688499] show_stack+0xfc/0x150 [ 76.692118] ? print_worker_info+0x1b0/0x660 [ 76.696534] dump_stack+0x185/0x1d0 [ 76.700162] panic+0x39d/0x940 [ 76.703350] ? disable_trace_on_warning+0x18/0xd0 [ 76.708178] __warn+0x40f/0x580 [ 76.711447] ? mfill_zeropage+0x69b/0x16e0 [ 76.715681] report_bug+0x72a/0x880 [ 76.719334] ? mfill_zeropage+0x69b/0x16e0 [ 76.723569] do_error_trap+0x1aa/0x600 [ 76.727448] ? rcu_all_qs+0x32/0x1f0 [ 76.731151] ? kmsan_set_origin_inline+0x6b/0x120 [ 76.735979] do_invalid_op+0x46/0x50 [ 76.739677] invalid_op+0x1b/0x40 [ 76.743112] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 76.747935] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 76.753291] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 76.760556] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 76.767824] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 76.775083] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 76.782338] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 76.789613] ? mfill_zeropage+0x69b/0x16e0 [ 76.793838] ? mfill_zeropage+0x69b/0x16e0 [ 76.798089] ? kmsan_poison_shadow+0x80/0xc0 [ 76.802519] userfaultfd_ioctl+0x2949/0x6350 [ 76.806942] ? stack_segment+0x40/0x50 [ 76.810843] ? do_page_fault+0xd3/0x260 [ 76.814835] ? kmsan_set_origin_inline+0x6b/0x120 [ 76.819676] ? __msan_poison_alloca+0x15c/0x1d0 [ 76.824345] ? userfaultfd_poll+0x320/0x320 [ 76.828656] do_vfs_ioctl+0xaf0/0x2440 [ 76.832533] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 76.837885] ? __fget_light+0x6b9/0x710 [ 76.841858] ? prepare_exit_to_usermode+0x149/0x3a0 [ 76.846869] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 76.852221] SYSC_ioctl+0x1d2/0x260 [ 76.855932] SyS_ioctl+0x54/0x80 [ 76.859285] do_syscall_64+0x309/0x430 [ 76.863160] ? ioctl_file_clone+0x4f0/0x4f0 [ 76.867474] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 76.872649] RIP: 0033:0x455279 [ 76.875821] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 76.883516] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 76.890775] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 76.898036] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 76.906355] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 76.913617] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 76.920877] [ 76.922503] Local variable description: ----oc.i.i@__alloc_pages_nodemask [ 76.929419] Variable was created at: [ 76.933136] __alloc_pages_nodemask+0x10f/0x5dc0 [ 76.937905] alloc_pages_vma+0xcc8/0x1800 [ 76.942046] ================================================================== [ 76.949403] ================================================================== [ 76.956781] BUG: KMSAN: uninit-value in show_trace_log_lvl+0xd4d/0x1030 [ 76.963524] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 76.971642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 76.980974] Call Trace: [ 76.983549] dump_stack+0x14a/0x1d0 [ 76.987173] ? show_trace_log_lvl+0xd4d/0x1030 [ 76.991744] kmsan_report+0x142/0x240 [ 76.995532] __msan_warning_32+0x6c/0xb0 [ 76.999579] show_trace_log_lvl+0xd4d/0x1030 [ 77.003967] ? do_error_trap+0x1aa/0x600 [ 77.008022] show_stack+0xfc/0x150 [ 77.011565] ? print_worker_info+0x1b0/0x660 [ 77.015966] dump_stack+0x185/0x1d0 [ 77.019595] panic+0x39d/0x940 [ 77.022781] ? disable_trace_on_warning+0x18/0xd0 [ 77.027619] __warn+0x40f/0x580 [ 77.030883] ? mfill_zeropage+0x69b/0x16e0 [ 77.035114] report_bug+0x72a/0x880 [ 77.038746] ? mfill_zeropage+0x69b/0x16e0 [ 77.042973] do_error_trap+0x1aa/0x600 [ 77.046874] ? rcu_all_qs+0x32/0x1f0 [ 77.050581] ? kmsan_set_origin_inline+0x6b/0x120 [ 77.055436] do_invalid_op+0x46/0x50 [ 77.059159] invalid_op+0x1b/0x40 [ 77.062608] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 77.067449] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 77.072893] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 77.080162] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 77.087436] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 77.094744] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 77.102188] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 77.109484] ? mfill_zeropage+0x69b/0x16e0 [ 77.113713] ? mfill_zeropage+0x69b/0x16e0 [ 77.117959] ? kmsan_poison_shadow+0x80/0xc0 [ 77.122367] userfaultfd_ioctl+0x2949/0x6350 [ 77.126780] ? stack_segment+0x40/0x50 [ 77.130669] ? do_page_fault+0xd3/0x260 [ 77.134652] ? kmsan_set_origin_inline+0x6b/0x120 [ 77.139495] ? __msan_poison_alloca+0x15c/0x1d0 [ 77.144262] ? userfaultfd_poll+0x320/0x320 [ 77.148587] do_vfs_ioctl+0xaf0/0x2440 [ 77.152476] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 77.157832] ? __fget_light+0x6b9/0x710 [ 77.161813] ? prepare_exit_to_usermode+0x149/0x3a0 [ 77.166817] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 77.172174] SYSC_ioctl+0x1d2/0x260 [ 77.175795] SyS_ioctl+0x54/0x80 [ 77.179172] do_syscall_64+0x309/0x430 [ 77.183063] ? ioctl_file_clone+0x4f0/0x4f0 [ 77.187373] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 77.192548] RIP: 0033:0x455279 [ 77.195720] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 77.203422] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 77.210679] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 77.217942] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 77.225326] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 77.232770] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 77.240048] [ 77.241717] Local variable description: ----oc.i.i@__alloc_pages_nodemask [ 77.248627] Variable was created at: [ 77.252337] __alloc_pages_nodemask+0x10f/0x5dc0 [ 77.257094] alloc_pages_vma+0xcc8/0x1800 [ 77.261259] ================================================================== [ 77.268611] ================================================================== [ 77.275977] BUG: KMSAN: uninit-value in kernel_text_address+0x248/0x3a0 [ 77.282732] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 77.290872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 77.300214] Call Trace: [ 77.302797] dump_stack+0x14a/0x1d0 [ 77.306423] ? kernel_text_address+0x248/0x3a0 [ 77.311017] kmsan_report+0x142/0x240 [ 77.314817] __msan_warning_32+0x6c/0xb0 [ 77.318865] kernel_text_address+0x248/0x3a0 [ 77.323258] __kernel_text_address+0x34/0xe0 [ 77.327661] show_trace_log_lvl+0x954/0x1030 [ 77.332064] ? do_error_trap+0x1aa/0x600 [ 77.336111] show_stack+0xfc/0x150 [ 77.339628] ? print_worker_info+0x1b0/0x660 [ 77.344023] dump_stack+0x185/0x1d0 [ 77.347657] panic+0x39d/0x940 [ 77.350854] ? disable_trace_on_warning+0x18/0xd0 [ 77.355685] __warn+0x40f/0x580 [ 77.358955] ? mfill_zeropage+0x69b/0x16e0 [ 77.363177] report_bug+0x72a/0x880 [ 77.366792] ? mfill_zeropage+0x69b/0x16e0 [ 77.371022] do_error_trap+0x1aa/0x600 [ 77.374990] ? rcu_all_qs+0x32/0x1f0 [ 77.378689] ? kmsan_set_origin_inline+0x6b/0x120 [ 77.383517] do_invalid_op+0x46/0x50 [ 77.387211] invalid_op+0x1b/0x40 [ 77.390643] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 77.395569] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 77.400927] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 77.408186] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 77.415530] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 77.422783] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 77.430049] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 77.437335] ? mfill_zeropage+0x69b/0x16e0 [ 77.441564] ? mfill_zeropage+0x69b/0x16e0 [ 77.445787] ? kmsan_poison_shadow+0x80/0xc0 [ 77.450197] userfaultfd_ioctl+0x2949/0x6350 [ 77.454605] ? stack_segment+0x40/0x50 [ 77.458489] ? do_page_fault+0xd3/0x260 [ 77.462457] ? kmsan_set_origin_inline+0x6b/0x120 [ 77.467281] ? __msan_poison_alloca+0x15c/0x1d0 [ 77.471938] ? userfaultfd_poll+0x320/0x320 [ 77.476247] do_vfs_ioctl+0xaf0/0x2440 [ 77.480122] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 77.485478] ? __fget_light+0x6b9/0x710 [ 77.489457] ? prepare_exit_to_usermode+0x149/0x3a0 [ 77.494474] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 77.499858] SYSC_ioctl+0x1d2/0x260 [ 77.503501] SyS_ioctl+0x54/0x80 [ 77.506874] do_syscall_64+0x309/0x430 [ 77.510790] ? ioctl_file_clone+0x4f0/0x4f0 [ 77.515203] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 77.520464] RIP: 0033:0x455279 [ 77.523637] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 77.531684] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 77.538937] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 77.546194] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 77.553538] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 77.560805] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 77.568063] [ 77.569673] Local variable description: ----oc.i.i@__alloc_pages_nodemask [ 77.576584] Variable was created at: [ 77.580292] __alloc_pages_nodemask+0x10f/0x5dc0 [ 77.585042] alloc_pages_vma+0xcc8/0x1800 [ 77.589177] ================================================================== [ 77.596515] ================================================================== [ 77.603862] BUG: KMSAN: uninit-value in show_trace_log_lvl+0xd4d/0x1030 [ 77.610603] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 77.618725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 77.628069] Call Trace: [ 77.630648] dump_stack+0x14a/0x1d0 [ 77.634257] ? show_trace_log_lvl+0xd4d/0x1030 [ 77.638840] kmsan_report+0x142/0x240 [ 77.642623] __msan_warning_32+0x6c/0xb0 [ 77.646669] show_trace_log_lvl+0xd4d/0x1030 [ 77.651067] ? do_error_trap+0x1aa/0x600 [ 77.655112] show_stack+0xfc/0x150 [ 77.658632] ? print_worker_info+0x1b0/0x660 [ 77.663036] dump_stack+0x185/0x1d0 [ 77.666662] panic+0x39d/0x940 [ 77.669937] ? disable_trace_on_warning+0x18/0xd0 [ 77.674765] __warn+0x40f/0x580 [ 77.678049] ? mfill_zeropage+0x69b/0x16e0 [ 77.682321] report_bug+0x72a/0x880 [ 77.685946] ? mfill_zeropage+0x69b/0x16e0 [ 77.690174] do_error_trap+0x1aa/0x600 [ 77.694044] ? rcu_all_qs+0x32/0x1f0 [ 77.697761] ? kmsan_set_origin_inline+0x6b/0x120 [ 77.702591] do_invalid_op+0x46/0x50 [ 77.706291] invalid_op+0x1b/0x40 [ 77.709723] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 77.714546] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 77.719890] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 77.727502] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 77.734760] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 77.742041] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 77.749303] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 77.756581] ? mfill_zeropage+0x69b/0x16e0 [ 77.760822] ? mfill_zeropage+0x69b/0x16e0 [ 77.765094] ? kmsan_poison_shadow+0x80/0xc0 [ 77.769589] userfaultfd_ioctl+0x2949/0x6350 [ 77.773985] ? stack_segment+0x40/0x50 [ 77.777863] ? do_page_fault+0xd3/0x260 [ 77.781828] ? kmsan_set_origin_inline+0x6b/0x120 [ 77.786666] ? __msan_poison_alloca+0x15c/0x1d0 [ 77.791414] ? userfaultfd_poll+0x320/0x320 [ 77.795732] do_vfs_ioctl+0xaf0/0x2440 [ 77.799608] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 77.804963] ? __fget_light+0x6b9/0x710 [ 77.808923] ? prepare_exit_to_usermode+0x149/0x3a0 [ 77.813923] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 77.819272] SYSC_ioctl+0x1d2/0x260 [ 77.822889] SyS_ioctl+0x54/0x80 [ 77.826251] do_syscall_64+0x309/0x430 [ 77.830123] ? ioctl_file_clone+0x4f0/0x4f0 [ 77.834434] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 77.839708] RIP: 0033:0x455279 [ 77.842883] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 77.850577] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 77.857827] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 77.865088] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 77.872338] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 77.879592] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 77.886842] [ 77.888467] Local variable description: ----oc.i.i@__alloc_pages_nodemask [ 77.895371] Variable was created at: [ 77.899078] __alloc_pages_nodemask+0x10f/0x5dc0 [ 77.903818] alloc_pages_vma+0xcc8/0x1800 [ 77.907944] ================================================================== [ 77.915290] ================================================================== [ 77.922647] BUG: KMSAN: uninit-value in kernel_text_address+0x248/0x3a0 [ 77.929388] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 77.937517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 77.946859] Call Trace: [ 77.949522] dump_stack+0x14a/0x1d0 [ 77.953132] ? kernel_text_address+0x248/0x3a0 [ 77.957692] kmsan_report+0x142/0x240 [ 77.961480] __msan_warning_32+0x6c/0xb0 [ 77.965563] kernel_text_address+0x248/0x3a0 [ 77.969969] __kernel_text_address+0x34/0xe0 [ 77.974363] show_trace_log_lvl+0x954/0x1030 [ 77.978758] ? do_error_trap+0x1aa/0x600 [ 77.982830] show_stack+0xfc/0x150 [ 77.986363] ? print_worker_info+0x1b0/0x660 [ 77.990771] dump_stack+0x185/0x1d0 [ 77.994386] panic+0x39d/0x940 [ 77.997579] ? disable_trace_on_warning+0x18/0xd0 [ 78.002410] __warn+0x40f/0x580 [ 78.005680] ? mfill_zeropage+0x69b/0x16e0 [ 78.009902] report_bug+0x72a/0x880 [ 78.013514] ? mfill_zeropage+0x69b/0x16e0 [ 78.017736] do_error_trap+0x1aa/0x600 [ 78.021605] ? rcu_all_qs+0x32/0x1f0 [ 78.025309] ? kmsan_set_origin_inline+0x6b/0x120 [ 78.030155] do_invalid_op+0x46/0x50 [ 78.033873] invalid_op+0x1b/0x40 [ 78.037314] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 78.042139] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 78.047491] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 78.054748] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 78.062010] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 78.069279] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 78.076538] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 78.083816] ? mfill_zeropage+0x69b/0x16e0 [ 78.088043] ? mfill_zeropage+0x69b/0x16e0 [ 78.092289] ? kmsan_poison_shadow+0x80/0xc0 [ 78.096702] userfaultfd_ioctl+0x2949/0x6350 [ 78.101124] ? stack_segment+0x40/0x50 [ 78.105003] ? do_page_fault+0xd3/0x260 [ 78.108969] ? kmsan_set_origin_inline+0x6b/0x120 [ 78.113816] ? __msan_poison_alloca+0x15c/0x1d0 [ 78.118486] ? userfaultfd_poll+0x320/0x320 [ 78.122789] do_vfs_ioctl+0xaf0/0x2440 [ 78.126656] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 78.132013] ? __fget_light+0x6b9/0x710 [ 78.135990] ? prepare_exit_to_usermode+0x149/0x3a0 [ 78.140998] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 78.146359] SYSC_ioctl+0x1d2/0x260 [ 78.149967] SyS_ioctl+0x54/0x80 [ 78.153312] do_syscall_64+0x309/0x430 [ 78.157183] ? ioctl_file_clone+0x4f0/0x4f0 [ 78.161506] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 78.166688] RIP: 0033:0x455279 [ 78.169870] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 78.177563] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 78.184823] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 78.192084] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 78.199339] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 78.206851] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 78.214108] [ 78.215714] Local variable description: ----oc.i.i@__alloc_pages_nodemask [ 78.222612] Variable was created at: [ 78.226326] __alloc_pages_nodemask+0x10f/0x5dc0 [ 78.231082] alloc_pages_vma+0xcc8/0x1800 [ 78.235212] ================================================================== [ 78.242549] ================================================================== [ 78.249911] BUG: KMSAN: uninit-value in show_trace_log_lvl+0xd4d/0x1030 [ 78.256673] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 78.264804] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 78.274165] Call Trace: [ 78.276775] dump_stack+0x14a/0x1d0 [ 78.280410] ? show_trace_log_lvl+0xd4d/0x1030 [ 78.285006] kmsan_report+0x142/0x240 [ 78.288819] __msan_warning_32+0x6c/0xb0 [ 78.292868] show_trace_log_lvl+0xd4d/0x1030 [ 78.297284] ? do_error_trap+0x1aa/0x600 [ 78.301335] show_stack+0xfc/0x150 [ 78.304864] ? print_worker_info+0x1b0/0x660 [ 78.309262] dump_stack+0x185/0x1d0 [ 78.312878] panic+0x39d/0x940 [ 78.316066] ? disable_trace_on_warning+0x18/0xd0 [ 78.320887] __warn+0x40f/0x580 [ 78.324150] ? mfill_zeropage+0x69b/0x16e0 [ 78.328452] report_bug+0x72a/0x880 [ 78.332074] ? mfill_zeropage+0x69b/0x16e0 [ 78.336299] do_error_trap+0x1aa/0x600 [ 78.340178] ? rcu_all_qs+0x32/0x1f0 [ 78.343883] ? kmsan_set_origin_inline+0x6b/0x120 [ 78.348733] do_invalid_op+0x46/0x50 [ 78.352524] invalid_op+0x1b/0x40 [ 78.355972] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 78.360796] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 78.366173] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 78.373614] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 78.380863] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 78.388110] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 78.395405] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 78.402693] ? mfill_zeropage+0x69b/0x16e0 [ 78.406920] ? mfill_zeropage+0x69b/0x16e0 [ 78.411159] ? kmsan_poison_shadow+0x80/0xc0 [ 78.415572] userfaultfd_ioctl+0x2949/0x6350 [ 78.419966] ? stack_segment+0x40/0x50 [ 78.423842] ? do_page_fault+0xd3/0x260 [ 78.427807] ? kmsan_set_origin_inline+0x6b/0x120 [ 78.432631] ? __msan_poison_alloca+0x15c/0x1d0 [ 78.437300] ? userfaultfd_poll+0x320/0x320 [ 78.441825] do_vfs_ioctl+0xaf0/0x2440 [ 78.445705] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 78.451082] ? __fget_light+0x6b9/0x710 [ 78.455075] ? prepare_exit_to_usermode+0x149/0x3a0 [ 78.460096] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 78.465451] SYSC_ioctl+0x1d2/0x260 [ 78.469075] SyS_ioctl+0x54/0x80 [ 78.472428] do_syscall_64+0x309/0x430 [ 78.476513] ? ioctl_file_clone+0x4f0/0x4f0 [ 78.480827] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 78.485999] RIP: 0033:0x455279 [ 78.489267] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 78.496965] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 78.504240] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 78.511507] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 78.518770] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 78.526039] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 78.533366] [ 78.534992] Local variable description: ----oc.i.i@__alloc_pages_nodemask [ 78.541920] Variable was created at: [ 78.545662] __alloc_pages_nodemask+0x10f/0x5dc0 [ 78.550427] alloc_pages_vma+0xcc8/0x1800 [ 78.554567] ================================================================== [ 78.561920] ================================================================== [ 78.569282] BUG: KMSAN: uninit-value in kernel_text_address+0x248/0x3a0 [ 78.576119] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 78.584236] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 78.593571] Call Trace: [ 78.596157] dump_stack+0x14a/0x1d0 [ 78.599774] ? kernel_text_address+0x248/0x3a0 [ 78.604339] kmsan_report+0x142/0x240 [ 78.608121] __msan_warning_32+0x6c/0xb0 [ 78.612164] kernel_text_address+0x248/0x3a0 [ 78.616557] ? do_error_trap+0x1aa/0x600 [ 78.620606] ? do_error_trap+0x1aa/0x600 [ 78.624661] __kernel_text_address+0x34/0xe0 [ 78.629230] ? do_error_trap+0x1aa/0x600 [ 78.633276] show_trace_log_lvl+0x954/0x1030 [ 78.637676] ? do_error_trap+0x1aa/0x600 [ 78.641747] ? do_error_trap+0x1aa/0x600 [ 78.645830] show_stack+0xfc/0x150 [ 78.649364] ? print_worker_info+0x1b0/0x660 [ 78.653768] dump_stack+0x185/0x1d0 [ 78.657407] panic+0x39d/0x940 [ 78.660604] ? disable_trace_on_warning+0x18/0xd0 [ 78.665430] __warn+0x40f/0x580 [ 78.668689] ? mfill_zeropage+0x69b/0x16e0 [ 78.672904] report_bug+0x72a/0x880 [ 78.676510] ? mfill_zeropage+0x69b/0x16e0 [ 78.680729] do_error_trap+0x1aa/0x600 [ 78.684592] ? rcu_all_qs+0x32/0x1f0 [ 78.688287] ? kmsan_set_origin_inline+0x6b/0x120 [ 78.693124] do_invalid_op+0x46/0x50 [ 78.697187] invalid_op+0x1b/0x40 [ 78.700633] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 78.705466] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 78.710816] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 78.718097] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 78.725369] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 78.732630] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 78.739887] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 78.747174] ? mfill_zeropage+0x69b/0x16e0 [ 78.751406] ? mfill_zeropage+0x69b/0x16e0 [ 78.755629] ? kmsan_poison_shadow+0x80/0xc0 [ 78.760125] userfaultfd_ioctl+0x2949/0x6350 [ 78.764524] ? stack_segment+0x40/0x50 [ 78.768405] ? do_page_fault+0xd3/0x260 [ 78.772358] ? kmsan_set_origin_inline+0x6b/0x120 [ 78.777189] ? __msan_poison_alloca+0x15c/0x1d0 [ 78.781853] ? userfaultfd_poll+0x320/0x320 [ 78.786177] do_vfs_ioctl+0xaf0/0x2440 [ 78.790062] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 78.795407] ? __fget_light+0x6b9/0x710 [ 78.799363] ? prepare_exit_to_usermode+0x149/0x3a0 [ 78.804385] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 78.809741] SYSC_ioctl+0x1d2/0x260 [ 78.813353] SyS_ioctl+0x54/0x80 [ 78.816701] do_syscall_64+0x309/0x430 [ 78.820573] ? ioctl_file_clone+0x4f0/0x4f0 [ 78.824903] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 78.830103] RIP: 0033:0x455279 [ 78.833278] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 78.841086] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 78.848351] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 78.855622] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 78.862889] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 78.870166] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 78.877416] [ 78.879023] Local variable description: ----rf@__schedule [ 78.884538] Variable was created at: [ 78.888247] __schedule+0x39/0x730 [ 78.891777] schedule+0x1cc/0x2f0 [ 78.895211] ================================================================== [ 78.903612] do_error_trap+0x1aa/0x600 [ 78.907496] ================================================================== [ 78.914854] BUG: KMSAN: uninit-value in show_trace_log_lvl+0xda4/0x1030 [ 78.921618] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 78.929761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 78.939295] Call Trace: [ 78.941888] dump_stack+0x14a/0x1d0 [ 78.945532] ? show_trace_log_lvl+0xda4/0x1030 [ 78.950227] kmsan_report+0x142/0x240 [ 78.954078] __msan_warning_32+0x6c/0xb0 [ 78.958155] show_trace_log_lvl+0xda4/0x1030 [ 78.962563] ? do_error_trap+0x1aa/0x600 [ 78.966610] ? do_error_trap+0x1aa/0x600 [ 78.970662] show_stack+0xfc/0x150 [ 78.974196] ? print_worker_info+0x1b0/0x660 [ 78.978590] dump_stack+0x185/0x1d0 [ 78.982204] panic+0x39d/0x940 [ 78.985392] ? disable_trace_on_warning+0x18/0xd0 [ 78.990215] __warn+0x40f/0x580 [ 78.993498] ? mfill_zeropage+0x69b/0x16e0 [ 78.997735] report_bug+0x72a/0x880 [ 79.001366] ? mfill_zeropage+0x69b/0x16e0 [ 79.005603] do_error_trap+0x1aa/0x600 [ 79.009492] ? rcu_all_qs+0x32/0x1f0 [ 79.013210] ? kmsan_set_origin_inline+0x6b/0x120 [ 79.018066] do_invalid_op+0x46/0x50 [ 79.021763] invalid_op+0x1b/0x40 [ 79.025197] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 79.030017] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 79.036771] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 79.044037] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 79.051335] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 79.058630] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 79.065902] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 79.073166] ? mfill_zeropage+0x69b/0x16e0 [ 79.077397] ? mfill_zeropage+0x69b/0x16e0 [ 79.081627] ? kmsan_poison_shadow+0x80/0xc0 [ 79.086135] userfaultfd_ioctl+0x2949/0x6350 [ 79.090533] ? stack_segment+0x40/0x50 [ 79.094404] ? do_page_fault+0xd3/0x260 [ 79.098356] ? kmsan_set_origin_inline+0x6b/0x120 [ 79.103189] ? __msan_poison_alloca+0x15c/0x1d0 [ 79.107842] ? userfaultfd_poll+0x320/0x320 [ 79.112148] do_vfs_ioctl+0xaf0/0x2440 [ 79.116037] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 79.121389] ? __fget_light+0x6b9/0x710 [ 79.125346] ? prepare_exit_to_usermode+0x149/0x3a0 [ 79.130432] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 79.135791] SYSC_ioctl+0x1d2/0x260 [ 79.139408] SyS_ioctl+0x54/0x80 [ 79.142754] do_syscall_64+0x309/0x430 [ 79.146626] ? ioctl_file_clone+0x4f0/0x4f0 [ 79.150935] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 79.156290] RIP: 0033:0x455279 [ 79.159457] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 79.167150] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 79.174405] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 79.181655] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 79.188998] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 79.196261] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 79.203511] [ 79.205114] Uninit was stored to memory at: [ 79.209425] kmsan_internal_chain_origin+0x12b/0x210 [ 79.214533] __msan_chain_origin+0x69/0xc0 [ 79.218763] update_stack_state+0x9e2/0xa40 [ 79.223074] unwind_next_frame+0x618/0xe50 [ 79.227309] show_trace_log_lvl+0xb49/0x1030 [ 79.231712] show_stack+0xfc/0x150 [ 79.235244] dump_stack+0x185/0x1d0 [ 79.238869] panic+0x39d/0x940 [ 79.242044] __warn+0x40f/0x580 [ 79.245316] report_bug+0x72a/0x880 [ 79.248932] do_error_trap+0x1aa/0x600 [ 79.252904] do_invalid_op+0x46/0x50 [ 79.256619] invalid_op+0x1b/0x40 [ 79.260077] mfill_zeropage+0x69b/0x16e0 [ 79.264149] userfaultfd_ioctl+0x2949/0x6350 [ 79.268547] do_vfs_ioctl+0xaf0/0x2440 [ 79.272419] SYSC_ioctl+0x1d2/0x260 [ 79.276038] SyS_ioctl+0x54/0x80 [ 79.279414] do_syscall_64+0x309/0x430 [ 79.283321] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 79.288512] Local variable description: ----oldbit.i.i.i@pick_next_task_fair [ 79.295700] Variable was created at: [ 79.299433] pick_next_task_fair+0x63/0x1f70 [ 79.303862] pick_next_task+0x1b4/0x410 [ 79.307834] ================================================================== [ 79.315191] ================================================================== [ 79.322556] BUG: KMSAN: uninit-value in unwind_next_frame+0xb2c/0xe50 [ 79.329121] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 79.337678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 79.347029] Call Trace: [ 79.349634] dump_stack+0x14a/0x1d0 [ 79.353250] ? unwind_next_frame+0xb2c/0xe50 [ 79.357648] kmsan_report+0x142/0x240 [ 79.361439] __msan_warning_32+0x6c/0xb0 [ 79.365492] unwind_next_frame+0xb2c/0xe50 [ 79.369722] show_trace_log_lvl+0xb49/0x1030 [ 79.374117] ? do_error_trap+0x1aa/0x600 [ 79.378164] ? do_error_trap+0x1aa/0x600 [ 79.382209] show_stack+0xfc/0x150 [ 79.385732] ? print_worker_info+0x1b0/0x660 [ 79.390136] dump_stack+0x185/0x1d0 [ 79.393764] panic+0x39d/0x940 [ 79.396956] ? disable_trace_on_warning+0x18/0xd0 [ 79.401883] __warn+0x40f/0x580 [ 79.405174] ? mfill_zeropage+0x69b/0x16e0 [ 79.409413] report_bug+0x72a/0x880 [ 79.413046] ? mfill_zeropage+0x69b/0x16e0 [ 79.417297] do_error_trap+0x1aa/0x600 [ 79.421190] ? rcu_all_qs+0x32/0x1f0 [ 79.424902] ? kmsan_set_origin_inline+0x6b/0x120 [ 79.429735] do_invalid_op+0x46/0x50 [ 79.433444] invalid_op+0x1b/0x40 [ 79.436896] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 79.441715] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 79.447078] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 79.454331] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 79.461596] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 79.468859] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 79.476126] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 79.483401] ? mfill_zeropage+0x69b/0x16e0 [ 79.487634] ? mfill_zeropage+0x69b/0x16e0 [ 79.491873] ? kmsan_poison_shadow+0x80/0xc0 [ 79.496282] userfaultfd_ioctl+0x2949/0x6350 [ 79.500686] ? stack_segment+0x40/0x50 [ 79.504570] ? do_page_fault+0xd3/0x260 [ 79.508528] ? kmsan_set_origin_inline+0x6b/0x120 [ 79.513366] ? __msan_poison_alloca+0x15c/0x1d0 [ 79.518032] ? userfaultfd_poll+0x320/0x320 [ 79.522361] do_vfs_ioctl+0xaf0/0x2440 [ 79.526237] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 79.531596] ? __fget_light+0x6b9/0x710 [ 79.535573] ? prepare_exit_to_usermode+0x149/0x3a0 [ 79.540603] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 79.545982] SYSC_ioctl+0x1d2/0x260 [ 79.549606] SyS_ioctl+0x54/0x80 [ 79.552957] do_syscall_64+0x309/0x430 [ 79.556833] ? ioctl_file_clone+0x4f0/0x4f0 [ 79.561149] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 79.566410] RIP: 0033:0x455279 [ 79.569592] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 79.577288] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 79.584557] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 79.591823] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 79.599097] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 79.606351] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 79.613617] [ 79.615226] Uninit was stored to memory at: [ 79.619544] kmsan_internal_chain_origin+0x12b/0x210 [ 79.624625] __msan_chain_origin+0x69/0xc0 [ 79.628854] update_stack_state+0x9e2/0xa40 [ 79.633185] unwind_next_frame+0x618/0xe50 [ 79.637555] show_trace_log_lvl+0xb49/0x1030 [ 79.641963] show_stack+0xfc/0x150 [ 79.645590] dump_stack+0x185/0x1d0 [ 79.649226] panic+0x39d/0x940 [ 79.652418] __warn+0x40f/0x580 [ 79.655786] report_bug+0x72a/0x880 [ 79.659398] do_error_trap+0x1aa/0x600 [ 79.663263] do_invalid_op+0x46/0x50 [ 79.666955] invalid_op+0x1b/0x40 [ 79.670569] mfill_zeropage+0x69b/0x16e0 [ 79.675573] userfaultfd_ioctl+0x2949/0x6350 [ 79.679965] do_vfs_ioctl+0xaf0/0x2440 [ 79.683831] SYSC_ioctl+0x1d2/0x260 [ 79.687439] SyS_ioctl+0x54/0x80 [ 79.690785] do_syscall_64+0x309/0x430 [ 79.694656] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 79.699823] Local variable description: ----oldbit.i.i.i@pick_next_task_fair [ 79.707092] Variable was created at: [ 79.710793] pick_next_task_fair+0x63/0x1f70 [ 79.715181] pick_next_task+0x1b4/0x410 [ 79.719129] ================================================================== [ 79.726478] ================================================================== [ 79.733939] BUG: KMSAN: uninit-value in update_stack_state+0x6f1/0xa40 [ 79.740596] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 79.748738] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 79.758091] Call Trace: [ 79.760689] dump_stack+0x14a/0x1d0 [ 79.764313] ? update_stack_state+0x6f1/0xa40 [ 79.768792] kmsan_report+0x142/0x240 [ 79.772587] __msan_warning_32+0x6c/0xb0 [ 79.776633] update_stack_state+0x6f1/0xa40 [ 79.780934] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 79.786377] unwind_next_frame+0x618/0xe50 [ 79.790597] show_trace_log_lvl+0xb49/0x1030 [ 79.794986] ? do_error_trap+0x1aa/0x600 [ 79.799038] ? do_error_trap+0x1aa/0x600 [ 79.803084] show_stack+0xfc/0x150 [ 79.806611] ? print_worker_info+0x1b0/0x660 [ 79.811174] dump_stack+0x185/0x1d0 [ 79.814780] panic+0x39d/0x940 [ 79.818318] ? disable_trace_on_warning+0x18/0xd0 [ 79.823149] __warn+0x40f/0x580 [ 79.826418] ? mfill_zeropage+0x69b/0x16e0 [ 79.830648] report_bug+0x72a/0x880 [ 79.834262] ? mfill_zeropage+0x69b/0x16e0 [ 79.838496] do_error_trap+0x1aa/0x600 [ 79.842380] ? rcu_all_qs+0x32/0x1f0 [ 79.846085] ? kmsan_set_origin_inline+0x6b/0x120 [ 79.850923] do_invalid_op+0x46/0x50 [ 79.854628] invalid_op+0x1b/0x40 [ 79.858092] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 79.862924] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 79.868291] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 79.875556] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 79.882832] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 79.890113] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 79.897375] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 79.904650] ? mfill_zeropage+0x69b/0x16e0 [ 79.908897] ? mfill_zeropage+0x69b/0x16e0 [ 79.913144] ? kmsan_poison_shadow+0x80/0xc0 [ 79.917560] userfaultfd_ioctl+0x2949/0x6350 [ 79.921962] ? stack_segment+0x40/0x50 [ 79.925834] ? do_page_fault+0xd3/0x260 [ 79.929793] ? kmsan_set_origin_inline+0x6b/0x120 [ 79.934619] ? __msan_poison_alloca+0x15c/0x1d0 [ 79.939283] ? userfaultfd_poll+0x320/0x320 [ 79.943595] do_vfs_ioctl+0xaf0/0x2440 [ 79.947476] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 79.952832] ? __fget_light+0x6b9/0x710 [ 79.956790] ? prepare_exit_to_usermode+0x149/0x3a0 [ 79.961789] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 79.967141] SYSC_ioctl+0x1d2/0x260 [ 79.970749] SyS_ioctl+0x54/0x80 [ 79.974096] do_syscall_64+0x309/0x430 [ 79.977964] ? ioctl_file_clone+0x4f0/0x4f0 [ 79.982270] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 79.987444] RIP: 0033:0x455279 [ 79.990613] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 79.998306] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 80.005567] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 80.012834] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 80.020106] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 80.027378] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 80.034639] [ 80.036257] Uninit was stored to memory at: [ 80.040587] kmsan_internal_chain_origin+0x12b/0x210 [ 80.045670] __msan_chain_origin+0x69/0xc0 [ 80.049907] update_stack_state+0x9e2/0xa40 [ 80.054235] unwind_next_frame+0x618/0xe50 [ 80.058474] show_trace_log_lvl+0xb49/0x1030 [ 80.062888] show_stack+0xfc/0x150 [ 80.066426] dump_stack+0x185/0x1d0 [ 80.070041] panic+0x39d/0x940 [ 80.073226] __warn+0x40f/0x580 [ 80.076488] report_bug+0x72a/0x880 [ 80.080098] do_error_trap+0x1aa/0x600 [ 80.083977] do_invalid_op+0x46/0x50 [ 80.087685] invalid_op+0x1b/0x40 [ 80.091135] mfill_zeropage+0x69b/0x16e0 [ 80.095186] userfaultfd_ioctl+0x2949/0x6350 [ 80.099580] do_vfs_ioctl+0xaf0/0x2440 [ 80.103457] SYSC_ioctl+0x1d2/0x260 [ 80.107076] SyS_ioctl+0x54/0x80 [ 80.110436] do_syscall_64+0x309/0x430 [ 80.114428] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 80.119607] Local variable description: ----oldbit.i.i.i@pick_next_task_fair [ 80.126778] Variable was created at: [ 80.130487] pick_next_task_fair+0x63/0x1f70 [ 80.134875] pick_next_task+0x1b4/0x410 [ 80.138824] ================================================================== [ 80.146182] ================================================================== [ 80.153537] BUG: KMSAN: uninit-value in kernel_text_address+0x248/0x3a0 [ 80.160281] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 80.168417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 80.177766] Call Trace: [ 80.180362] dump_stack+0x14a/0x1d0 [ 80.183981] ? kernel_text_address+0x248/0x3a0 [ 80.188562] kmsan_report+0x142/0x240 [ 80.192352] __msan_warning_32+0x6c/0xb0 [ 80.196420] kernel_text_address+0x248/0x3a0 [ 80.200822] __kernel_text_address+0x34/0xe0 [ 80.205213] show_trace_log_lvl+0x954/0x1030 [ 80.209604] ? do_invalid_op+0x46/0x50 [ 80.213478] show_stack+0xfc/0x150 [ 80.217006] ? print_worker_info+0x1b0/0x660 [ 80.221407] dump_stack+0x185/0x1d0 [ 80.225033] panic+0x39d/0x940 [ 80.228227] ? disable_trace_on_warning+0x18/0xd0 [ 80.233059] __warn+0x40f/0x580 [ 80.236339] ? mfill_zeropage+0x69b/0x16e0 [ 80.240599] report_bug+0x72a/0x880 [ 80.244230] ? mfill_zeropage+0x69b/0x16e0 [ 80.248462] do_error_trap+0x1aa/0x600 [ 80.252343] ? rcu_all_qs+0x32/0x1f0 [ 80.256058] ? kmsan_set_origin_inline+0x6b/0x120 [ 80.260911] do_invalid_op+0x46/0x50 [ 80.264641] invalid_op+0x1b/0x40 [ 80.268091] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 80.272917] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 80.278278] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 80.285636] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 80.292911] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 80.300180] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 80.307452] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 80.314722] ? mfill_zeropage+0x69b/0x16e0 [ 80.318958] ? mfill_zeropage+0x69b/0x16e0 [ 80.323192] ? kmsan_poison_shadow+0x80/0xc0 [ 80.327606] userfaultfd_ioctl+0x2949/0x6350 [ 80.332021] ? stack_segment+0x40/0x50 [ 80.335938] ? do_page_fault+0xd3/0x260 [ 80.339904] ? kmsan_set_origin_inline+0x6b/0x120 [ 80.344747] ? __msan_poison_alloca+0x15c/0x1d0 [ 80.349426] ? userfaultfd_poll+0x320/0x320 [ 80.353757] do_vfs_ioctl+0xaf0/0x2440 [ 80.357641] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 80.363089] ? __fget_light+0x6b9/0x710 [ 80.367065] ? prepare_exit_to_usermode+0x149/0x3a0 [ 80.372073] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 80.377447] SYSC_ioctl+0x1d2/0x260 [ 80.381066] SyS_ioctl+0x54/0x80 [ 80.384426] do_syscall_64+0x309/0x430 [ 80.388298] ? ioctl_file_clone+0x4f0/0x4f0 [ 80.392600] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 80.397770] RIP: 0033:0x455279 [ 80.400965] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 80.408663] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 80.415922] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 80.423193] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 80.430466] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 80.437729] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 80.444992] [ 80.446612] Local variable description: ----info@do_error_trap [ 80.452555] Variable was created at: [ 80.456257] do_error_trap+0xac/0x600 [ 80.460075] do_invalid_op+0x46/0x50 [ 80.463769] ================================================================== [ 80.471206] ================================================================== [ 80.478560] BUG: KMSAN: uninit-value in show_trace_log_lvl+0xd4d/0x1030 [ 80.485312] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 80.493552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 80.502899] Call Trace: [ 80.505486] dump_stack+0x14a/0x1d0 [ 80.509119] ? show_trace_log_lvl+0xd4d/0x1030 [ 80.513712] kmsan_report+0x142/0x240 [ 80.517508] __msan_warning_32+0x6c/0xb0 [ 80.521561] show_trace_log_lvl+0xd4d/0x1030 [ 80.525990] ? do_invalid_op+0x46/0x50 [ 80.529874] show_stack+0xfc/0x150 [ 80.533398] ? print_worker_info+0x1b0/0x660 [ 80.537884] dump_stack+0x185/0x1d0 [ 80.541507] panic+0x39d/0x940 [ 80.544712] ? disable_trace_on_warning+0x18/0xd0 [ 80.549551] __warn+0x40f/0x580 [ 80.552817] ? mfill_zeropage+0x69b/0x16e0 [ 80.557307] report_bug+0x72a/0x880 [ 80.560923] ? mfill_zeropage+0x69b/0x16e0 [ 80.565159] do_error_trap+0x1aa/0x600 [ 80.569038] ? rcu_all_qs+0x32/0x1f0 [ 80.572743] ? kmsan_set_origin_inline+0x6b/0x120 [ 80.577663] do_invalid_op+0x46/0x50 [ 80.581360] invalid_op+0x1b/0x40 [ 80.584792] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 80.589709] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 80.595061] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 80.602311] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 80.609566] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 80.616824] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 80.624089] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 80.631367] ? mfill_zeropage+0x69b/0x16e0 [ 80.635601] ? mfill_zeropage+0x69b/0x16e0 [ 80.639838] ? kmsan_poison_shadow+0x80/0xc0 [ 80.644240] userfaultfd_ioctl+0x2949/0x6350 [ 80.648660] ? stack_segment+0x40/0x50 [ 80.652537] ? do_page_fault+0xd3/0x260 [ 80.656508] ? kmsan_set_origin_inline+0x6b/0x120 [ 80.661338] ? __msan_poison_alloca+0x15c/0x1d0 [ 80.666005] ? userfaultfd_poll+0x320/0x320 [ 80.670320] do_vfs_ioctl+0xaf0/0x2440 [ 80.674207] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 80.679563] ? __fget_light+0x6b9/0x710 [ 80.683547] ? prepare_exit_to_usermode+0x149/0x3a0 [ 80.688560] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 80.693921] SYSC_ioctl+0x1d2/0x260 [ 80.697540] SyS_ioctl+0x54/0x80 [ 80.700891] do_syscall_64+0x309/0x430 [ 80.704773] ? ioctl_file_clone+0x4f0/0x4f0 [ 80.709083] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 80.714254] RIP: 0033:0x455279 [ 80.717426] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 80.725124] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 80.732397] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 80.739666] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 80.746924] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 80.754451] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 80.761726] [ 80.763344] Local variable description: ----info@do_error_trap [ 80.769288] Variable was created at: [ 80.772993] do_error_trap+0xac/0x600 [ 80.776963] do_invalid_op+0x46/0x50 [ 80.780649] ================================================================== [ 80.787999] ================================================================== [ 80.795377] BUG: KMSAN: uninit-value in kernel_text_address+0x248/0x3a0 [ 80.802123] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 80.810260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 80.819619] Call Trace: [ 80.822220] dump_stack+0x14a/0x1d0 [ 80.825851] ? kernel_text_address+0x248/0x3a0 [ 80.830420] kmsan_report+0x142/0x240 [ 80.834206] __msan_warning_32+0x6c/0xb0 [ 80.838266] kernel_text_address+0x248/0x3a0 [ 80.842685] __kernel_text_address+0x34/0xe0 [ 80.847089] show_trace_log_lvl+0x954/0x1030 [ 80.851478] ? do_invalid_op+0x46/0x50 [ 80.855357] show_stack+0xfc/0x150 [ 80.858877] ? print_worker_info+0x1b0/0x660 [ 80.863266] dump_stack+0x185/0x1d0 [ 80.866878] panic+0x39d/0x940 [ 80.870068] ? disable_trace_on_warning+0x18/0xd0 [ 80.874897] __warn+0x40f/0x580 [ 80.878160] ? mfill_zeropage+0x69b/0x16e0 [ 80.882381] report_bug+0x72a/0x880 [ 80.885996] ? mfill_zeropage+0x69b/0x16e0 [ 80.890224] do_error_trap+0x1aa/0x600 [ 80.894093] ? rcu_all_qs+0x32/0x1f0 [ 80.898685] ? kmsan_set_origin_inline+0x6b/0x120 [ 80.903525] do_invalid_op+0x46/0x50 [ 80.907226] invalid_op+0x1b/0x40 [ 80.910679] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 80.915505] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 80.920856] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 80.928138] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 80.935400] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 80.942652] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 80.949913] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 80.957280] ? mfill_zeropage+0x69b/0x16e0 [ 80.961514] ? mfill_zeropage+0x69b/0x16e0 [ 80.965744] ? kmsan_poison_shadow+0x80/0xc0 [ 80.970138] userfaultfd_ioctl+0x2949/0x6350 [ 80.974531] ? stack_segment+0x40/0x50 [ 80.978400] ? do_page_fault+0xd3/0x260 [ 80.982368] ? kmsan_set_origin_inline+0x6b/0x120 [ 80.987196] ? __msan_poison_alloca+0x15c/0x1d0 [ 80.991853] ? userfaultfd_poll+0x320/0x320 [ 80.996154] do_vfs_ioctl+0xaf0/0x2440 [ 81.000029] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 81.005392] ? __fget_light+0x6b9/0x710 [ 81.009357] ? prepare_exit_to_usermode+0x149/0x3a0 [ 81.014465] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 81.019849] SYSC_ioctl+0x1d2/0x260 [ 81.023462] SyS_ioctl+0x54/0x80 [ 81.026813] do_syscall_64+0x309/0x430 [ 81.030682] ? ioctl_file_clone+0x4f0/0x4f0 [ 81.034991] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 81.040256] RIP: 0033:0x455279 [ 81.043424] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 81.051108] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 81.058363] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014 [ 81.065620] RBP: 000000000072bf58 R08: 0000000000000000 R09: 0000000000000000 [ 81.072880] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 81.080233] R13: 000000000000033d R14: 00000000006f7e58 R15: 0000000000000001 [ 81.087484] [ 81.089092] Local variable description: ----info@do_error_trap [ 81.095038] Variable was created at: [ 81.098740] do_error_trap+0xac/0x600 [ 81.102526] do_invalid_op+0x46/0x50 [ 81.106213] ================================================================== [ 81.113644] ================================================================== [ 81.120990] BUG: KMSAN: uninit-value in show_trace_log_lvl+0xd4d/0x1030 [ 81.127811] CPU: 1 PID: 5514 Comm: syz-executor2 Tainted: G B 4.16.0+ #83 [ 81.135928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 81.145260] Call Trace: [ 81.147842] dump_stack+0x14a/0x1d0 [ 81.151450] ? show_trace_log_lvl+0xd4d/0x1030 [ 81.156024] kmsan_report+0x142/0x240 [ 81.159828] __msan_warning_32+0x6c/0xb0 [ 81.163873] show_trace_log_lvl+0xd4d/0x1030 [ 81.168275] ? do_invalid_op+0x46/0x50 [ 81.172164] show_stack+0xfc/0x150 [ 81.175682] ? print_worker_info+0x1b0/0x660 [ 81.180076] dump_stack+0x185/0x1d0 [ 81.183681] panic+0x39d/0x940 [ 81.186861] ? disable_trace_on_warning+0x18/0xd0 [ 81.192039] __warn+0x40f/0x580 [ 81.195567] ? mfill_zeropage+0x69b/0x16e0 [ 81.199877] report_bug+0x72a/0x880 [ 81.203508] ? mfill_zeropage+0x69b/0x16e0 [ 81.207736] do_error_trap+0x1aa/0x600 [ 81.211606] ? rcu_all_qs+0x32/0x1f0 [ 81.215301] ? kmsan_set_origin_inline+0x6b/0x120 [ 81.220133] do_invalid_op+0x46/0x50 [ 81.223828] invalid_op+0x1b/0x40 [ 81.227262] RIP: 0010:mfill_zeropage+0x69b/0x16e0 [ 81.232081] RSP: 0018:ffff88016515f9a8 EFLAGS: 00010287 [ 81.237424] RAX: ffffffff81cf322b RBX: 0000000000000000 RCX: 0000000000040000 [ 81.244673] RDX: ffffc9000256a000 RSI: 0000000000000016 RDI: 0000000000000017 [ 81.251931] RBP: ffff88016515faf0 R08: 0000000001080020 R09: 0000000000000002 [ 81.259208] R10: 00007fffdf003000 R11: 0000000000000000 R12: ffff880167990918 [ 81.266482] R13: 0000000000000000 R14: 00000000000002fa R15: ffff880166b6c800 [ 81.273757] ? mfill_zeropage+0x69b/0x16e0 [ 81.277996] ? mfill_zeropage+0x69b/0x16e0 [ 81.282256] ? kmsan_poison_shadow+0x80/0xc0 [ 81.286669] userfaultfd_ioctl+0x2949/0x6350 [ 81.291087] ? stack_segment+0x40/0x50 [ 81.294961] ? do_page_fault+0xd3/0x260 [ 81.298919] ? kmsan_set_origin_inline+0x6b/0x120 [ 81.303759] ? __msan_poison_alloca+0x15c/0x1d0 [ 81.308438] ? userfaultfd_poll+0x320/0x320 [ 81.312751] do_vfs_ioctl+0xaf0/0x2440 [ 81.316626] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 81.321986] ? __fget_light+0x6b9/0x710 [ 81.325959] ? prepare_exit_to_usermode+0x149/0x3a0 [ 81.330984] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 81.336340] SYSC_ioctl+0x1d2/0x260 [ 81.339954] SyS_ioctl+0x54/0x80 [ 81.343314] do_syscall_64+0x309/0x430 [ 81.347198] ? ioctl_file_clone+0x4f0/0x4f0 [ 81.351511] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 81.356695] RIP: 0033:0x455279 [ 81.359868] RSP: 002b:00007f6af5423c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 81.367570] RAX: ffffffffffffffda RBX: 00007f6af54246d4 RCX: 0000000000455279 [ 81.374829] RDX: 0000000020000240 RSI: 00000000c020aa04 RDI: 0000000000000014