[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 31.852850] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 36.157297] random: sshd: uninitialized urandom read (32 bytes read) [ 36.530473] random: sshd: uninitialized urandom read (32 bytes read) [ 37.936355] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.10.56' (ECDSA) to the list of known hosts. [ 43.493660] random: sshd: uninitialized urandom read (32 bytes read) 2018/05/12 00:17:45 fuzzer started 2018/05/12 00:17:46 dialing manager at 10.128.0.26:45945 [ 65.562475] can: request_module (can-proto-0) failed. [ 65.573415] can: request_module (can-proto-0) failed. 2018/05/12 00:18:09 kcov=true, comps=false 2018/05/12 00:18:13 executing program 0: 2018/05/12 00:18:13 executing program 4: 2018/05/12 00:18:13 executing program 5: 2018/05/12 00:18:13 executing program 6: 2018/05/12 00:18:13 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000100), 0x4) sendmsg$key(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)={0x2, 0x9, 0x0, 0x0, 0x22, 0x0, 0x0, 0x0, [@sadb_x_policy={0x8, 0x12, 0x3, 0x4, 0x0, 0x6e6bb8, 0x100000000, {0x6, 0x33, 0x80, 0x165f, 0x0, 0x0, 0x0, @in6=@local={0xfe, 0x80, [], 0xaa}, @in6=@loopback={0x0, 0x1}}}, @sadb_x_sa2={0x2, 0x13, 0x7f, 0x0, 0x0, 0x70bd26, 0x34ff}, @sadb_x_sec_ctx={0x16, 0x18, 0x6, 0x100, 0xa7, "f6255148618746c578d0b78e9339585b7a386382e8f1ff1ca4ce4fdc294abb21a8ef566636173b90c006140093b973af308f5b72d8d25c4209bd63d707d0fba590baf9bdafa6abb355cee96d549369c148d43567b06255f27b63312aa366df895f262e5e29d615bd05e917edf0a2f92227ed2af6dac05051029afe57b94f8e6cb326b218ad2c3e45b6fd6a0ecbfa2e87c423c7f05dd53528f280a11f603983ffb4c65266b5800e"}]}, 0x110}, 0x1}, 0x8000) sendmsg$key(r0, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001000)=ANY=[@ANYBLOB="020a00000200000000000005000000e5"], 0x10}, 0x1}, 0x0) sendmsg$key(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x2, 0x12, 0x0, 0x0, 0x2}, 0x10}, 0x1}, 0x0) 2018/05/12 00:18:13 executing program 7: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000080)="c6295e46ca6c09b612ec6f") perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000013, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f000031f000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) eventfd2(0x0, 0xffffffffffffffff) 2018/05/12 00:18:13 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000080)="c6295e4eca6c09b612ec6f") socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$sock_int(r1, 0x1, 0xe, &(0x7f00002a5ffc), &(0x7f0000ecf000)=0x4) 2018/05/12 00:18:13 executing program 3: r0 = socket$unix(0x1, 0x2, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl(r3, 0x8912, &(0x7f0000000000)="c6295e46ca6c09b612ec6f") bind$unix(r0, &(0x7f000000f000)=@abs={0x1, 0x0, 0x1}, 0x8) bind$unix(r2, &(0x7f0000000140)=@abs={0x1}, 0x6e) r4 = syz_open_procfs(0x0, &(0x7f0000a92ff7)='net/unix\x00') sendfile(r1, r4, &(0x7f0000000000)=0x100, 0xff) [ 72.809414] IPVS: ftp: loaded support on port[0] = 21 [ 72.815644] IPVS: ftp: loaded support on port[0] = 21 [ 72.907021] IPVS: ftp: loaded support on port[0] = 21 [ 72.952622] IPVS: ftp: loaded support on port[0] = 21 [ 72.954852] IPVS: ftp: loaded support on port[0] = 21 [ 72.964083] IPVS: ftp: loaded support on port[0] = 21 [ 72.992792] IPVS: ftp: loaded support on port[0] = 21 [ 73.009297] IPVS: ftp: loaded support on port[0] = 21 [ 75.244840] ip (4742) used greatest stack depth: 54088 bytes left [ 76.226424] ip (4826) used greatest stack depth: 53784 bytes left [ 76.266135] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.272628] bridge0: port 1(bridge_slave_0) entered disabled state [ 76.305164] device bridge_slave_0 entered promiscuous mode [ 76.335942] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.342503] bridge0: port 1(bridge_slave_0) entered disabled state [ 76.352521] device bridge_slave_0 entered promiscuous mode [ 76.415105] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.421562] bridge0: port 1(bridge_slave_0) entered disabled state [ 76.458212] device bridge_slave_0 entered promiscuous mode [ 76.492984] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.499479] bridge0: port 2(bridge_slave_1) entered disabled state [ 76.532303] device bridge_slave_1 entered promiscuous mode [ 76.543821] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.550301] bridge0: port 1(bridge_slave_0) entered disabled state [ 76.563160] device bridge_slave_0 entered promiscuous mode [ 76.574612] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.581132] bridge0: port 2(bridge_slave_1) entered disabled state [ 76.598810] device bridge_slave_1 entered promiscuous mode [ 76.615637] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.622104] bridge0: port 1(bridge_slave_0) entered disabled state [ 76.649992] device bridge_slave_0 entered promiscuous mode [ 76.668572] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.675114] bridge0: port 2(bridge_slave_1) entered disabled state [ 76.694359] device bridge_slave_1 entered promiscuous mode [ 76.704843] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.711308] bridge0: port 1(bridge_slave_0) entered disabled state [ 76.721816] device bridge_slave_0 entered promiscuous mode [ 76.754091] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 76.761417] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.767904] bridge0: port 1(bridge_slave_0) entered disabled state [ 76.797398] device bridge_slave_0 entered promiscuous mode [ 76.817542] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.824024] bridge0: port 2(bridge_slave_1) entered disabled state [ 76.853545] device bridge_slave_1 entered promiscuous mode [ 76.867897] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.874388] bridge0: port 2(bridge_slave_1) entered disabled state [ 76.891400] device bridge_slave_1 entered promiscuous mode [ 76.905462] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 76.918830] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 76.934187] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 76.955315] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.961798] bridge0: port 1(bridge_slave_0) entered disabled state [ 76.992751] device bridge_slave_0 entered promiscuous mode [ 77.005606] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.012134] bridge0: port 2(bridge_slave_1) entered disabled state [ 77.032366] device bridge_slave_1 entered promiscuous mode [ 77.048459] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 77.065854] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.072318] bridge0: port 2(bridge_slave_1) entered disabled state [ 77.087252] device bridge_slave_1 entered promiscuous mode [ 77.106635] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 77.114840] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 77.122487] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 77.199273] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.205762] bridge0: port 2(bridge_slave_1) entered disabled state [ 77.244517] device bridge_slave_1 entered promiscuous mode [ 77.259428] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 77.271140] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 77.312885] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 77.326426] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 77.468600] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 77.524178] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 77.549764] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 77.562312] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 77.713345] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 77.733919] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 77.807494] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 77.823629] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 77.920345] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 77.990483] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 78.009377] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 78.031793] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 78.043454] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 78.064411] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 78.132645] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 78.172277] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 78.217352] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 78.233236] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 78.283708] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 78.290683] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 78.333455] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 78.360359] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 78.422085] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 78.429115] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 78.447231] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 78.454197] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 78.506089] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 78.513119] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 78.529501] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 78.539361] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 78.556503] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 78.567251] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 78.609116] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 78.616142] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 78.667835] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 78.674788] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 78.704163] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 78.711293] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 78.783721] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 78.790697] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 78.810775] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 78.817729] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 78.919376] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 78.953481] team0: Port device team_slave_0 added [ 78.982485] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 78.991251] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 79.013497] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 79.027523] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 79.125868] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 79.132860] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 79.171399] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 79.200712] team0: Port device team_slave_1 added [ 79.221792] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 79.242179] team0: Port device team_slave_0 added [ 79.287215] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 79.307300] team0: Port device team_slave_0 added [ 79.324431] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 79.344014] team0: Port device team_slave_0 added [ 79.372198] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 79.399016] team0: Port device team_slave_0 added [ 79.459124] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 79.493785] team0: Port device team_slave_1 added [ 79.511904] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 79.519592] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 79.531266] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 79.561693] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 79.575351] team0: Port device team_slave_1 added [ 79.599576] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 79.619985] team0: Port device team_slave_1 added [ 79.652583] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 79.673429] team0: Port device team_slave_1 added [ 79.688564] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 79.704568] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 79.722097] team0: Port device team_slave_0 added [ 79.736350] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 79.761075] team0: Port device team_slave_0 added [ 79.777285] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 79.796940] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 79.832998] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 79.840701] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 79.853679] team0: Port device team_slave_0 added [ 79.859504] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 79.867577] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 79.890407] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 79.909640] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 79.926477] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 79.950181] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 79.962885] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 79.972281] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 79.983813] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 79.992181] team0: Port device team_slave_1 added [ 80.013587] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 80.036879] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 80.053545] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 80.068354] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 80.083754] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 80.096270] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 80.110762] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 80.118543] team0: Port device team_slave_1 added [ 80.124718] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 80.132076] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 80.140855] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 80.167544] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 80.175889] team0: Port device team_slave_1 added [ 80.184481] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 80.202504] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 80.209709] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 80.218699] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 80.229428] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 80.266661] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 80.300121] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 80.316744] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 80.328427] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 80.339158] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 80.346338] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 80.354604] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 80.368788] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 80.389352] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 80.399358] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 80.408850] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 80.435495] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 80.451193] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 80.469670] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 80.477313] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 80.486622] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 80.499526] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 80.507681] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 80.514613] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 80.527830] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 80.546442] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 80.555421] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 80.575772] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 80.593404] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 80.606985] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 80.616089] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 80.628249] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 80.638125] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 80.651842] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 80.687752] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 80.717946] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 80.747342] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 80.771595] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 80.781571] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 80.789741] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 80.797556] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 80.805738] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 80.815853] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 80.826827] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 80.834989] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 80.860718] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 80.869999] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 80.880364] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 80.892932] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 80.902284] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 80.932162] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 80.975083] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 81.009888] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 81.034733] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 81.052410] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 81.066630] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 81.075014] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 81.083429] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 81.093451] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 81.102521] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 81.133809] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 81.142873] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 81.168358] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 81.177587] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 81.204952] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 81.232171] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 81.259731] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 81.267428] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 81.275826] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 81.318702] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 81.326188] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 81.354531] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 83.013545] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.020099] bridge0: port 2(bridge_slave_1) entered forwarding state [ 83.026956] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.033390] bridge0: port 1(bridge_slave_0) entered forwarding state [ 83.048548] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 83.064838] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 83.263566] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.270105] bridge0: port 2(bridge_slave_1) entered forwarding state [ 83.276960] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.283430] bridge0: port 1(bridge_slave_0) entered forwarding state [ 83.292481] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 83.303508] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.310118] bridge0: port 2(bridge_slave_1) entered forwarding state [ 83.316971] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.323450] bridge0: port 1(bridge_slave_0) entered forwarding state [ 83.332102] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 83.393482] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.399982] bridge0: port 2(bridge_slave_1) entered forwarding state [ 83.406865] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.413322] bridge0: port 1(bridge_slave_0) entered forwarding state [ 83.498818] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 83.511600] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.518122] bridge0: port 2(bridge_slave_1) entered forwarding state [ 83.524908] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.531341] bridge0: port 1(bridge_slave_0) entered forwarding state [ 83.539368] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 83.589552] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.596095] bridge0: port 2(bridge_slave_1) entered forwarding state [ 83.602946] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.609421] bridge0: port 1(bridge_slave_0) entered forwarding state [ 83.665228] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 83.744825] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.751315] bridge0: port 2(bridge_slave_1) entered forwarding state [ 83.758218] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.764672] bridge0: port 1(bridge_slave_0) entered forwarding state [ 83.804182] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 84.094591] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.101126] bridge0: port 2(bridge_slave_1) entered forwarding state [ 84.107971] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.114419] bridge0: port 1(bridge_slave_0) entered forwarding state [ 84.181291] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 84.191521] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 84.199778] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 84.209277] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 84.218225] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 84.227329] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 84.236126] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 84.244865] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 91.789845] 8021q: adding VLAN 0 to HW filter on device bond0 [ 91.911445] 8021q: adding VLAN 0 to HW filter on device bond0 [ 92.071647] 8021q: adding VLAN 0 to HW filter on device bond0 [ 92.329377] 8021q: adding VLAN 0 to HW filter on device bond0 [ 92.353267] 8021q: adding VLAN 0 to HW filter on device bond0 [ 92.445632] 8021q: adding VLAN 0 to HW filter on device bond0 [ 92.591404] 8021q: adding VLAN 0 to HW filter on device bond0 [ 92.626749] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 92.656683] 8021q: adding VLAN 0 to HW filter on device bond0 [ 92.687996] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 92.873992] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 93.147853] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 93.158869] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 93.225822] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 93.373646] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 93.430450] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 93.436763] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 93.449717] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 93.505818] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 93.577957] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 93.584275] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 93.595314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 93.656019] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 93.662722] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 93.677865] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 93.975689] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 93.982178] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 93.995749] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 94.061181] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 94.067482] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 94.083199] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 94.118445] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 94.124761] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 94.136861] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 94.231538] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 94.237863] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 94.255640] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 94.361433] 8021q: adding VLAN 0 to HW filter on device team0 [ 94.399911] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 94.406222] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 94.428142] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 94.546838] 8021q: adding VLAN 0 to HW filter on device team0 [ 94.579166] 8021q: adding VLAN 0 to HW filter on device team0 [ 94.870544] 8021q: adding VLAN 0 to HW filter on device team0 [ 94.924413] 8021q: adding VLAN 0 to HW filter on device team0 [ 94.990064] 8021q: adding VLAN 0 to HW filter on device team0 [ 95.143709] 8021q: adding VLAN 0 to HW filter on device team0 [ 95.201681] 8021q: adding VLAN 0 to HW filter on device team0 2018/05/12 00:18:41 executing program 4: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) sendmmsg(r0, &(0x7f0000001200)=[{{&(0x7f0000000440)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa}}}, 0x80, &(0x7f00000006c0), 0x0, &(0x7f0000000700)=[{0x10, 0x84, 0x10001}], 0x10}}], 0x1, 0x0) [ 99.950327] sock: process `syz-executor2' is using obsolete getsockopt SO_BSDCOMPAT 2018/05/12 00:18:42 executing program 0: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="c6295e4eca6c09b612ec6f") r1 = socket$inet6(0xa, 0x2100000000000002, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x2}, 0x7a) sendmsg(r1, &(0x7f0000007000)={0x0, 0x0, &(0x7f0000000000), 0x0, &(0x7f0000000040)}, 0x0) 2018/05/12 00:18:42 executing program 7: 2018/05/12 00:18:42 executing program 4: 2018/05/12 00:18:42 executing program 5: 2018/05/12 00:18:42 executing program 6: 2018/05/12 00:18:42 executing program 1: r0 = socket(0x200002000000001, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="c6295e4eca6c09b612ec6f") r1 = perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f0000000240)="262d088725849605cec7d5ac2c7aeafc6ae26ce51ba8827197af86ea7eff26e87ed2b4a4a0a716ca146882702649b935156707e7f82c01cffb29467abd39ff08e98252ce78ec7bb2ee283c21c89d5c8d66ac1666155e66a89eb6cc19ac4312cc01895cd624a3b4eeac49a4355346aa7487ed81f2844fb786030441a79bc8da42ba7aa4bf1d2cf4081793e775819a0b3e124c4e0552b758d21baf7f255ceeeb68fc7ade4a75382c270335016c0a26c7dda6dcefa5") 2018/05/12 00:18:42 executing program 3: r0 = socket$unix(0x1, 0x2, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl(r3, 0x8912, &(0x7f0000000000)="c6295e46ca6c09b612ec6f") bind$unix(r0, &(0x7f000000f000)=@abs={0x1, 0x0, 0x1}, 0x8) bind$unix(r2, &(0x7f0000000140)=@abs={0x1}, 0x6e) r4 = syz_open_procfs(0x0, &(0x7f0000a92ff7)='net/unix\x00') sendfile(r1, r4, &(0x7f0000000000)=0x100, 0xff) 2018/05/12 00:18:42 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000000)="c6295e46ca6c09b612ec6f") r1 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10) setsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000001000)={0x10000, 0x4, 0x100, 0x400}, 0x6) r2 = socket(0x11, 0x4000000000080003, 0x0) bind$packet(r2, &(0x7f0000000480)={0x11, 0x3, 0x0, 0x1, 0x0, 0x6, @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}}, 0x14) setsockopt(r2, 0x107, 0x5, &(0x7f0000001000), 0xc5) sendto$inet(r1, &(0x7f0000000100), 0x0, 0x0, &(0x7f0000000200)={0x2, 0x204e21, @multicast2=0xe0000002}, 0x47) sendto$inet(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x0, &(0x7f0000000b40)={0x2, 0x0, @multicast1=0xe0000001}, 0x10) poll(&(0x7f0000000080)=[{r2}], 0x1, 0x1) [ 100.180565] ================================================================== [ 100.187993] BUG: KMSAN: uninit-value in is_valid_bugaddr+0x17f/0x1a0 [ 100.194500] CPU: 1 PID: 6643 Comm: syz-executor1 Not tainted 4.17.0-rc3+ #88 [ 100.201685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 100.211040] Call Trace: [ 100.213641] dump_stack+0x185/0x1d0 [ 100.217277] ? is_valid_bugaddr+0x17f/0x1a0 [ 100.221604] kmsan_report+0x142/0x240 [ 100.225408] __msan_warning_32+0x6c/0xb0 [ 100.229473] ? kmsan_copy_to_user+0x141/0x160 [ 100.233968] ? kmsan_copy_to_user+0x141/0x160 [ 100.238467] is_valid_bugaddr+0x17f/0x1a0 [ 100.242616] ? report_bug+0x4b/0x880 [ 100.246336] ? kmsan_copy_to_user+0x141/0x160 [ 100.250835] report_bug+0x6f/0x880 [ 100.254380] ? __msan_poison_alloca+0x15c/0x1d0 [ 100.259055] ? do_invalid_op+0x46/0x50 [ 100.262946] ? kmsan_copy_to_user+0x141/0x160 [ 100.267443] ? do_error_trap+0xac/0x600 [ 100.271420] ? do_invalid_op+0x46/0x50 [ 100.275317] ? kmsan_copy_to_user+0x141/0x160 [ 100.279819] do_error_trap+0x1aa/0x600 [ 100.283711] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 100.289168] ? futex_wait_queue_me+0x681/0x710 [ 100.293767] do_invalid_op+0x46/0x50 [ 100.297488] invalid_op+0x14/0x20 [ 100.300948] RIP: 0010:kmsan_copy_to_user+0x141/0x160 [ 100.306044] RSP: 0018:ffff880140c0fa20 EFLAGS: 00010206 [ 100.311403] RAX: ffff880141ff1d40 RBX: ffff880140c0fa78 RCX: 0000000000000028 [ 100.318668] RDX: 00007ffffffff000 RSI: ffff880140c0fa78 RDI: 8d5c9dc8216fec12 [ 100.325936] RBP: ffff880140c0fa68 R08: 0000000001080020 R09: ffff880140c1fa78 [ 100.333202] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000028 [ 100.340472] R13: 8d5c9dc8216fec12 R14: 0000000000000000 R15: 0000000000000000 [ 100.347789] inet_gifconf+0x345/0x500 [ 100.351602] ? inet_netconf_fill_devconf+0xc30/0xc30 [ 100.356714] dev_ifconf+0x2b3/0x500 [ 100.360352] sock_do_ioctl+0x39b/0x6b0 [ 100.364249] sock_ioctl+0x400/0xca0 [ 100.367880] ? __x64_sys_ioctl+0x280/0x320 [ 100.372121] ? sock_poll+0x370/0x370 [ 100.375837] do_vfs_ioctl+0xaf0/0x2440 [ 100.379726] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 100.385091] ? __fget_light+0x6b9/0x710 [ 100.389078] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 100.394452] __x64_sys_ioctl+0x280/0x320 [ 100.398521] do_syscall_64+0x154/0x220 [ 100.402418] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 100.407601] RIP: 0033:0x455979 [ 100.410784] RSP: 002b:00007f0aab4e3c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 100.418496] RAX: ffffffffffffffda RBX: 00007f0aab4e46d4 RCX: 0000000000455979 [ 100.425774] RDX: 0000000020000280 RSI: 0000000000008912 RDI: 0000000000000014 [ 100.433042] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 100.440312] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 100.447580] R13: 000000000000018f R14: 00000000006f6608 R15: 0000000000000000 [ 100.454847] [ 100.456467] Local variable description: ----flags.i.i.i@rcu_all_qs [ 100.462779] Variable was created at: [ 100.466496] rcu_all_qs+0x32/0x1f0 [ 100.470043] _cond_resched+0x3c/0xd0 [ 100.473749] ================================================================== [ 100.481104] Disabling lock debugging due to kernel taint [ 100.486552] Kernel panic - not syncing: panic_on_warn set ... [ 100.486552] [ 100.493926] CPU: 1 PID: 6643 Comm: syz-executor1 Tainted: G B 4.17.0-rc3+ #88 [ 100.502492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 100.511840] Call Trace: [ 100.514435] dump_stack+0x185/0x1d0 [ 100.514927] Not allocated shadow for addr ffff8801d3a1c000 (page ffffea000af5ca80) [ 100.518063] panic+0x39d/0x940 [ 100.525773] ------------[ cut here ]------------ [ 100.528949] ? is_valid_bugaddr+0x17f/0x1a0 [ 100.533657] kernel BUG at mm/kmsan/kmsan.c:1326! [ 100.537961] kmsan_report+0x238/0x240 [ 100.542687] invalid opcode: 0000 [#1] SMP PTI [ 100.546465] __msan_warning_32+0x6c/0xb0 [ 100.550927] Dumping ftrace buffer: [ 100.554976] ? kmsan_copy_to_user+0x141/0x160 [ 100.558479] (ftrace buffer empty) [ 100.562957] ? kmsan_copy_to_user+0x141/0x160 [ 100.566633] Modules linked in: [ 100.571109] is_valid_bugaddr+0x17f/0x1a0 [ 100.571124] ? report_bug+0x4b/0x880 [ 100.574293] CPU: 0 PID: 4511 Comm: sshd Tainted: G B 4.17.0-rc3+ #88 [ 100.578416] ? kmsan_copy_to_user+0x141/0x160 [ 100.582097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 100.589867] report_bug+0x6f/0x880 [ 100.594343] RIP: 0010:kmsan_get_shadow_address+0x1ce/0x1f0 [ 100.603669] ? __msan_poison_alloca+0x15c/0x1d0 [ 100.607179] RSP: 0018:ffff880199dbe700 EFLAGS: 00010002 [ 100.612787] ? do_invalid_op+0x46/0x50 [ 100.622768] ? kmsan_copy_to_user+0x141/0x160 [ 100.626616] RAX: 0000000000000046 RBX: 0000000000000740 RCX: 0000000000000000 [ 100.631087] ? do_error_trap+0xac/0x600 [ 100.638327] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffff88021fc36eec [ 100.642280] ? do_invalid_op+0x46/0x50 [ 100.649521] RBP: ffff880199dbe718 R08: 0000000000000000 R09: 0000000000000001 [ 100.653389] ? kmsan_copy_to_user+0x141/0x160 [ 100.660631] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8801d3a1c000 [ 100.665105] do_error_trap+0x1aa/0x600 [ 100.672346] R13: 00000000000008b6 R14: 0000000000000001 R15: 00000000000008b6 [ 100.676213] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 100.683459] FS: 00007f3356fc87c0(0000) GS:ffff88021fc00000(0000) knlGS:0000000000000000 [ 100.688898] ? futex_wait_queue_me+0x681/0x710 [ 100.697098] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 100.701670] do_invalid_op+0x46/0x50 [ 100.707527] CR2: 00005652bb79d000 CR3: 00000001a5474000 CR4: 00000000001406f0 [ 100.711220] invalid_op+0x14/0x20 [ 100.718462] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 100.721899] RIP: 0010:kmsan_copy_to_user+0x141/0x160 [ 100.729138] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 100.734217] RSP: 0018:ffff880140c0fa20 EFLAGS: 00010206 [ 100.741456] Call Trace: [ 100.741468] RAX: ffff880141ff1d40 RBX: ffff880140c0fa78 RCX: 0000000000000028 [ 100.746813] kmsan_internal_unpoison_shadow+0x5c/0xe0 [ 100.749376] RDX: 00007ffffffff000 RSI: ffff880140c0fa78 RDI: 8d5c9dc8216fec12 [ 100.756628] kmsan_unpoison_shadow+0x66/0xb0 [ 100.761788] RBP: ffff880140c0fa68 R08: 0000000001080020 R09: ffff880140c1fa78 [ 100.769042] virtqueue_get_buf_ctx+0x742/0xa20 [ 100.773416] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000028 [ 100.780669] virtqueue_get_buf+0x72/0x90 [ 100.785218] R13: 8d5c9dc8216fec12 R14: 0000000000000000 R15: 0000000000000000 [ 100.792471] start_xmit+0x293/0x29a0 [ 100.796509] inet_gifconf+0x345/0x500 [ 100.803756] ? packet_rcv+0x21a0/0x21a0 [ 100.807445] ? inet_netconf_fill_devconf+0xc30/0xc30 [ 100.811223] ? virtnet_close+0x2c0/0x2c0 [ 100.815173] dev_ifconf+0x2b3/0x500 [ 100.820293] dev_hard_start_xmit+0x5f1/0xc70 [ 100.824329] sock_do_ioctl+0x39b/0x6b0 [ 100.827940] sch_direct_xmit+0x540/0x8f0 [ 100.832321] sock_ioctl+0x400/0xca0 [ 100.836185] __qdisc_run+0x1785/0x3730 [ 100.840221] ? __x64_sys_ioctl+0x280/0x320 [ 100.843823] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 100.847680] ? sock_poll+0x370/0x370 [ 100.851892] __dev_queue_xmit+0x1d50/0x3520 [ 100.857227] do_vfs_ioctl+0xaf0/0x2440 [ 100.860922] dev_queue_xmit+0x4b/0x60 [ 100.865214] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 100.869072] ip_finish_output2+0x12a1/0x1470 [ 100.872860] ? __fget_light+0x6b9/0x710 [ 100.878201] ip_finish_output+0xcb2/0xff0 [ 100.882581] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 100.886533] ip_output+0x505/0x5d0 [ 100.890652] __x64_sys_ioctl+0x280/0x320 [ 100.895990] ? ip_mc_finish_output+0x3b0/0x3b0 [ 100.899505] do_syscall_64+0x154/0x220 [ 100.903541] ? ip_finish_output+0xff0/0xff0 [ 100.908100] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 100.911961] ip_queue_xmit+0x1a1e/0x1d10 [ 100.916250] RIP: 0033:0x455979 [ 100.921418] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 100.925446] RSP: 002b:00007f0aab4e3c68 EFLAGS: 00000246 [ 100.928617] ? __skb_clone+0x6ec/0x990 [ 100.934033] ORIG_RAX: 0000000000000010 [ 100.939378] ? kmsan_set_origin+0x9e/0x160 [ 100.943233] RAX: ffffffffffffffda RBX: 00007f0aab4e46d4 RCX: 0000000000455979 [ 100.947186] ? ip_output+0x5d0/0x5d0 [ 100.951392] RDX: 0000000020000280 RSI: 0000000000008912 RDI: 0000000000000014 [ 100.958642] tcp_transmit_skb+0x3d81/0x53d0 [ 100.962321] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 100.969584] tcp_write_xmit+0x2d71/0xb290 [ 100.973865] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 100.981139] __tcp_push_pending_frames+0x124/0x3f0 [ 100.985233] R13: 000000000000018f R14: 00000000006f6608 R15: 0000000000000000 [ 100.992483] tcp_push+0x8b6/0x9c0 [ 101.008061] tcp_sendmsg_locked+0x4e74/0x65a0 [ 101.012557] tcp_sendmsg+0xb2/0x100 [ 101.016165] ? tcp_sendmsg_locked+0x65a0/0x65a0 [ 101.020814] inet_sendmsg+0x48d/0x740 [ 101.024600] ? security_socket_sendmsg+0x91/0x1f0 [ 101.029423] ? inet_getname+0x4a0/0x4a0 [ 101.033376] sock_write_iter+0x3b9/0x470 [ 101.037422] ? sock_read_iter+0x480/0x480 [ 101.041552] __vfs_write+0x7fb/0x9f0 [ 101.045252] vfs_write+0x463/0x8d0 [ 101.048783] __x64_sys_write+0x1bf/0x3e0 [ 101.052826] do_syscall_64+0x154/0x220 [ 101.056698] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 101.061864] RIP: 0033:0x7f3355363370 [ 101.065553] RSP: 002b:00007ffdc4386508 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 101.073240] RAX: ffffffffffffffda RBX: 0000000000004028 RCX: 00007f3355363370 [ 101.080494] RDX: 0000000000004028 RSI: 00005652bb799200 RDI: 0000000000000003 [ 101.087743] RBP: 00005652bb799200 R08: 0000000000000001 R09: 0000000000000000 [ 101.094995] R10: 0000000000000008 R11: 0000000000000246 R12: 00007ffdc438656c [ 101.102252] R13: 00005652baac3fb4 R14: 0000000000000028 R15: 00005652baac5ca0 [ 101.109504] Code: 75 29 48 c7 c7 84 fe 9f 8a 31 c0 e8 4d 2a 83 ff 80 3c 25 f8 73 53 8b 00 75 11 48 c7 c7 b4 fe 9f 8a 31 c0 4c 89 fe e8 32 2a 83 ff <0f> 0b eb fe 48 3d ff ff ff 1f 0f 87 a2 fe ff ff 48 8b 1c 25 10 [ 101.128641] RIP: kmsan_get_shadow_address+0x1ce/0x1f0 RSP: ffff880199dbe700 [ 101.135719] ---[ end trace e4d5e882f850e95e ]--- [ 102.122267] Shutting down cpus with NMI [ 102.137901] Dumping ftrace buffer: [ 102.141426] (ftrace buffer empty) [ 102.145112] Kernel Offset: disabled [ 102.148721] Rebooting in 86400 seconds..