INIT: Entering runlevel: 2
[[36minfo[39;49m] Using makefile-style concurrent boot in runlevel 2.
[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.10.25' (ECDSA) to the list of known hosts.
2018/04/17 07:06:20 fuzzer started
2018/04/17 07:06:20 dialing manager at 10.128.0.26:43021
2018/04/17 07:06:27 kcov=true, comps=false
2018/04/17 07:06:30 executing program 0:

2018/04/17 07:06:30 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_netfilter(r0, &(0x7f00009f5000)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f0000000000)={&(0x7f0000690000)={0x14, 0x3, 0x6, 0x1}, 0x14}, 0x1}, 0x0)

2018/04/17 07:06:30 executing program 7:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_netfilter(r0, &(0x7f0000000000)={&(0x7f0000d55000)={0x10}, 0xc, &(0x7f00008b7ff0)={&(0x7f00000001c0)={0x14, 0x7, 0x40001, 0x800000101}, 0x14}, 0x1}, 0x0)

2018/04/17 07:06:30 executing program 4:

2018/04/17 07:06:30 executing program 2:

2018/04/17 07:06:30 executing program 3:

2018/04/17 07:06:30 executing program 5:

2018/04/17 07:06:30 executing program 6:

syzkaller login: [   44.504787] ip (3758) used greatest stack depth: 54816 bytes left
[   44.735803] ip (3779) used greatest stack depth: 54408 bytes left
[   45.936008] ip (3897) used greatest stack depth: 53656 bytes left
[   46.232391] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.238974] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.283972] device bridge_slave_0 entered promiscuous mode
[   46.334305] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.340786] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.368663] device bridge_slave_0 entered promiscuous mode
[   46.433712] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.440186] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.477193] device bridge_slave_0 entered promiscuous mode
[   46.498845] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.505323] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.539945] device bridge_slave_1 entered promiscuous mode
[   46.546589] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.553119] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.575945] device bridge_slave_0 entered promiscuous mode
[   46.586616] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.593119] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.606759] device bridge_slave_0 entered promiscuous mode
[   46.619252] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.625715] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.652097] device bridge_slave_0 entered promiscuous mode
[   46.662747] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.669220] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.692994] device bridge_slave_0 entered promiscuous mode
[   46.707769] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.714239] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.734112] device bridge_slave_1 entered promiscuous mode
[   46.749727] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.756331] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.789476] device bridge_slave_1 entered promiscuous mode
[   46.798707] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   46.809281] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.815747] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.839605] device bridge_slave_1 entered promiscuous mode
[   46.849954] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.856421] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.873372] device bridge_slave_1 entered promiscuous mode
[   46.887994] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.894543] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.915512] device bridge_slave_0 entered promiscuous mode
[   46.933815] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.940315] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.964069] device bridge_slave_1 entered promiscuous mode
[   46.972873] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.979395] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.995966] device bridge_slave_1 entered promiscuous mode
[   47.005810] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   47.015527] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   47.027891] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   47.039988] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   47.047360] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   47.057433] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.063927] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.092990] device bridge_slave_1 entered promiscuous mode
[   47.124590] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   47.204735] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   47.219875] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   47.227940] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   47.237760] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   47.247388] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   47.313824] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   47.343362] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   47.410257] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   47.540743] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   48.053164] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   48.173712] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   48.223723] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   48.276299] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   48.307212] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   48.335339] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   48.346595] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   48.364761] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   48.424427] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   48.433070] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   48.505068] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   48.513986] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   48.566306] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   48.575904] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   48.592924] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   48.728250] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   49.377275] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   49.390583] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   49.428781] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   49.446184] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   49.549611] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   49.562324] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   49.577927] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   49.612559] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   49.654356] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   49.666927] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   49.675278] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   49.688493] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   49.772691] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   49.792743] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   49.813381] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   49.820557] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   49.839896] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   49.869935] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   49.879075] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   49.909480] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   49.931944] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   49.943325] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   49.952556] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   49.959924] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   49.971704] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   50.006665] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   50.022782] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   50.035917] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   50.049804] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   50.057767] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   50.065586] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   50.093302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   50.119530] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   50.135572] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   50.151602] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   50.159380] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   50.169503] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   50.187738] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   50.204894] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   50.213239] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   50.221559] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   50.232170] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   50.247997] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   50.263866] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   50.280940] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   50.295746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   50.312544] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   50.320721] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   50.327817] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   50.337352] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   50.356929] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   50.370965] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   50.382482] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   50.392976] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   50.404503] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   50.436477] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   50.470505] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   50.493683] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   50.508670] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   50.527986] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   50.561772] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   50.583590] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   50.593540] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   50.612958] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   52.631253] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.637741] bridge0: port 2(bridge_slave_1) entered forwarding state
[   52.644634] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.651124] bridge0: port 1(bridge_slave_0) entered forwarding state
[   52.660407] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   52.668245] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.674714] bridge0: port 2(bridge_slave_1) entered forwarding state
[   52.681567] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.688155] bridge0: port 1(bridge_slave_0) entered forwarding state
[   52.697196] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   52.712622] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   52.728680] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   52.743943] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.750444] bridge0: port 2(bridge_slave_1) entered forwarding state
[   52.757507] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.763977] bridge0: port 1(bridge_slave_0) entered forwarding state
[   52.787448] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   52.797140] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.803627] bridge0: port 2(bridge_slave_1) entered forwarding state
[   52.810499] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.816960] bridge0: port 1(bridge_slave_0) entered forwarding state
[   52.825523] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   52.832064] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.838520] bridge0: port 2(bridge_slave_1) entered forwarding state
[   52.845409] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.851887] bridge0: port 1(bridge_slave_0) entered forwarding state
[   52.860329] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   52.881104] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.887574] bridge0: port 2(bridge_slave_1) entered forwarding state
[   52.894451] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.900912] bridge0: port 1(bridge_slave_0) entered forwarding state
[   52.919234] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   52.939250] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.945747] bridge0: port 2(bridge_slave_1) entered forwarding state
[   52.952652] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.959151] bridge0: port 1(bridge_slave_0) entered forwarding state
[   53.029541] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   53.080805] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.087293] bridge0: port 2(bridge_slave_1) entered forwarding state
[   53.094215] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.100685] bridge0: port 1(bridge_slave_0) entered forwarding state
[   53.159934] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   53.728156] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   53.739672] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   53.769687] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   53.784684] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   53.792121] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   53.799714] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   61.936667] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   62.096238] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   62.223900] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   62.256615] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   62.263768] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   62.394310] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   62.464246] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   62.666105] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   62.672372] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   62.686451] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   62.734092] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   62.939453] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   62.946766] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   62.955665] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   62.990224] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   62.996455] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   63.021307] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   63.048494] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   63.064557] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   63.086554] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   63.173345] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   63.179589] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   63.193105] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   63.272997] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   63.279308] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   63.290988] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   63.349938] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   63.356238] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   63.367322] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   63.429939] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   63.436261] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   63.450661] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
2018/04/17 07:06:56 executing program 6:

2018/04/17 07:06:56 executing program 2:
r0 = gettid()
r1 = syz_open_procfs(r0, &(0x7f0000001240)='sessionid\x00')
exit(0x0)
pread64(r1, &(0x7f00000001c0)=""/4096, 0xffffffffffffff3b, 0x0)

2018/04/17 07:06:56 executing program 3:
pipe(&(0x7f00000000c0)={<r0=>0x0, <r1=>0x0})
vmsplice(r1, &(0x7f00003adfc0)=[{&(0x7f0000f84fa7)="01", 0x1}], 0x1, 0x0)
close(r1)
close(r0)

2018/04/17 07:06:57 executing program 0:
r0 = open(&(0x7f000000fffa)='./bus\x00', 0x0, 0x0)
mremap(&(0x7f0000005000/0x4000)=nil, 0x4000, 0xc000, 0x3, &(0x7f0000ff1000/0xc000)=nil)
rt_sigpending(&(0x7f0000000480), 0x8)
madvise(&(0x7f0000ff5000/0x3000)=nil, 0x3000, 0xa)
mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0)
madvise(&(0x7f0000ff2000/0xe000)=nil, 0xe000, 0x400000000008)
perf_event_open$cgroup(&(0x7f00000004c0)={0x3, 0x70, 0x9, 0x1, 0x9, 0x3e, 0x0, 0x1, 0x2000, 0x1, 0x5, 0xdb0, 0x7fff, 0x3, 0x1, 0x3, 0x9, 0x8, 0x6, 0x6, 0x9, 0x1, 0x2, 0x6, 0xa4f, 0x2, 0x40, 0x3cabf392, 0x2, 0x800, 0x200, 0x5, 0x5, 0xeb, 0x6, 0xff, 0x8, 0x6, 0x0, 0x1, 0x1, @perf_config_ext={0x8000, 0x4}, 0x10000, 0x94cf, 0x20, 0x7, 0x1ff, 0xffffffffffff59f0, 0x1}, r0, 0xd, r0, 0x2)
r1 = semget(0x0, 0x7, 0x8)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f00000000c0)={{{@in=@rand_addr, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in=@multicast1}, 0x0, @in6=@loopback}}, &(0x7f00000001c0)=0xe8)
getresgid(&(0x7f0000000200), &(0x7f0000000240)=<r3=>0x0, &(0x7f0000000280))
getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in6=@ipv4={[], [], @rand_addr}, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@loopback}}}, &(0x7f00000003c0)=0xe8)
r5 = getegid()
semctl$IPC_SET(r1, 0x0, 0x1, &(0x7f0000000400)={{0xfffffffffffffbff, r2, r3, r4, r5, 0x28, 0xffffffffffffffc0}, 0x3ff, 0x2, 0xfa})
getsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000000), &(0x7f0000000040)=0xb)
ioctl$sock_netrom_TIOCOUTQ(r0, 0x5411, &(0x7f0000000080))

2018/04/17 07:06:57 executing program 6:
mkdir(&(0x7f000082f000)='./control\x00', 0x0)

2018/04/17 07:06:57 executing program 4:
syz_mount_image$ext4(&(0x7f0000000000)='ext3~', &(0x7f0000000140)='/\x00', 0x0, 0x0, &(0x7f0000000300), 0x28020, &(0x7f0000000480)={[{@stripe={'stripe', 0x3d, [0x37]}, 0x2c}]})

2018/04/17 07:06:57 executing program 1:
r0 = epoll_create1(0x0)
pipe(&(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r1)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f00004f6ff4))
ioctl$LOOP_SET_FD(r1, 0x4c00, r0)
epoll_pwait(r0, &(0x7f0000000000)=[{}], 0x1, 0x0, &(0x7f0000000040), 0x8)
accept$packet(r0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, &(0x7f0000000100)=0x14)

2018/04/17 07:06:57 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x3}, 0x4)
sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x8000, &(0x7f0000000100)={0x2, 0x4e24, @remote={0xac, 0x14, 0x14, 0xbb}}, 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
sendto$inet(r2, &(0x7f0000762fff), 0xfdc7, 0x0, &(0x7f000057bff0)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
sendto$inet(r0, &(0x7f0000762fff), 0xfdc7, 0x0, &(0x7f000057bff0)={0x2, 0x0, @multicast1=0xe0000001}, 0x10)

2018/04/17 07:06:57 executing program 5:
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080))
prctl$setname(0xf, &(0x7f0000000000)='\x00')
setpriority(0x2, 0x0, 0xff)

2018/04/17 07:06:57 executing program 2:
pipe2(&(0x7f0000000080), 0x80000)
r0 = socket$nl_crypto(0x10, 0x3, 0x15)
r1 = dup(r0)
setsockopt$inet_tcp_buf(r1, 0x6, 0x0, &(0x7f0000003f42)="e9b1102fd162d2883afda6ca384faf121d74cc184624fce45026608dab3c7b831ea74850369babebbb881b4705fb9d5b6904ab9ea2bf03d896bd297cb7b37702c0a3363c7b53618766bfaea1eff261f0b2e23ea64dae4b74e1384260720bb174676f336b965c9cb4b46b75ae551d1a742a5e977acd7cce7ec8f0b0695c6d6012d40ea9373a4dcd9710956cc6e7ed45055df929909a53679bad", 0x99)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000006ffc)=0x6, 0x4)
sendto$inet6(r2, &(0x7f0000003fd9), 0xfdc2, 0x0, &(0x7f0000005fe4)={0xa, 0x0, 0x100000002, @mcast2={0xff, 0x2, [], 0x1}}, 0x16)

2018/04/17 07:06:57 executing program 7:
r0 = accept$ipx(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040)=0x10)
accept4$nfc_llcp(0xffffffffffffffff, &(0x7f0000000080), &(0x7f0000000100)=0x60, 0x80800)
r1 = fcntl$dupfd(r0, 0x408, 0xffffffffffffff9c)
ioctl$TCSBRK(r1, 0x5409, 0x6)
r2 = syz_open_procfs(0x0, &(0x7f0000864ff6)='ns/pid\x00')
write$binfmt_script(r1, &(0x7f0000000140)={'#! ', './file0', [{0x20, 'ns/pid\x00'}, {0x20}, {0x20, 'proc'}, {0x20, '(md5sum'}, {0x20, 'ns/pid\x00'}, {0x20, 'ns/pid\x00'}, {0x20, 'em0@]'}, {0x20, 'ns/pid\x00'}], 0xa, "916368365b9c3c1bdd0be6b40c60ea6b1447ed73b80889b3cb3d9ed4c42ceff323be3cf10b9a0f0ddca630a60b470a023b251072a53359b2f6829a73579c166ec6151413aeff44b6e592689606e0e7b3b87b94cde7b6e59d10c405fe98ceaa5ead29a0946acab42a256858bfce8b18572ae22e4fccd3619a18b26251e9"}, 0xbc)
ioctl$VT_RELDISP(r2, 0xb701)

2018/04/17 07:06:58 executing program 6:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000f5ffe0)={@loopback={0x0, 0x1}, 0x400, 0x0, 0xff, 0x1}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000180)={@loopback={0x0, 0x1}, 0x0, 0x0, 0x3, 0x1}, 0x20)
getsockopt$inet_sctp6_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000000)={@mcast2={0xff, 0x2, [], 0x1}, 0x400, 0x1, 0x0, 0x0, 0x0, 0x7}, 0x20)
pipe2(&(0x7f0000000340)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x84000)
syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x10001, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000100)={0x1f, 0x4, {0x20000000000000, 0x7, 0x0, 0x3ff, 0xa8, 0x1}, 0x100000001, 0x389b}, 0xe)

[   69.969956] ==================================================================
[   69.977374] BUG: KMSAN: uninit-value in csum_partial+0x78e/0x850
[   69.983529] CPU: 1 PID: 5780 Comm: syz-executor3 Not tainted 4.16.0+ #84
[   69.990366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   69.999719] Call Trace:
[   70.002298]  <IRQ>
[   70.004452]  dump_stack+0x185/0x1d0
[   70.008083]  ? csum_partial+0x78e/0x850
[   70.012063]  kmsan_report+0x142/0x240
[   70.015874]  __msan_warning_32+0x6c/0xb0
[   70.019943]  csum_partial+0x78e/0x850
[   70.023755]  csum_partial_ext+0x89/0xa0
[   70.027734]  __skb_checksum+0x6d4/0x1010
[   70.031804]  ? skb_checksum+0x120/0x120
[   70.035788]  skb_checksum+0xec/0x120
[   70.039501]  ? skb_checksum+0x120/0x120
[   70.043476]  ? csum_partial_ext+0xa0/0xa0
[   70.047632]  __skb_checksum_complete+0x90/0x400
[   70.052308]  __udp4_lib_rcv+0x3156/0x4740
[   70.056470]  udp_rcv+0x5c/0x70
[   70.059668]  ? udp_v4_early_demux+0x1cd0/0x1cd0
[   70.064342]  ip_local_deliver_finish+0x6ed/0xd40
[   70.069111]  ip_local_deliver+0x43c/0x4e0
[   70.073263]  ? ip_local_deliver+0x4e0/0x4e0
[   70.077589]  ? ip_call_ra_chain+0x7b0/0x7b0
[   70.081916]  ip_rcv_finish+0x1253/0x16d0
[   70.085991]  ip_rcv+0x119d/0x16f0
[   70.089452]  ? ip_rcv+0x16f0/0x16f0
[   70.093091]  __netif_receive_skb_core+0x47cf/0x4a80
[   70.098104]  ? try_to_wake_up+0x1ab2/0x20a0
[   70.102438]  ? ip_local_deliver_finish+0xd40/0xd40
[   70.107377]  ? intel_dp_destroy_mst_connector+0x122/0x300
[   70.112930]  process_backlog+0x62d/0xe20
[   70.117004]  ? rps_trigger_softirq+0x2f0/0x2f0
[   70.121586]  net_rx_action+0x7c1/0x1a70
[   70.125569]  ? net_tx_action+0xab0/0xab0
[   70.129633]  __do_softirq+0x56d/0x93d
[   70.133440]  do_softirq_own_stack+0x2a/0x40
[   70.137756]  </IRQ>
[   70.140000]  __local_bh_enable_ip+0x114/0x140
[   70.144502]  local_bh_enable+0x36/0x40
[   70.148394]  ip_finish_output2+0x124e/0x1380
[   70.153664]  ip_finish_output+0xcb0/0xff0
[   70.157823]  ip_output+0x502/0x5c0
[   70.161363]  ? ip_mc_finish_output+0x3b0/0x3b0
[   70.165948]  ? ip_finish_output+0xff0/0xff0
[   70.170271]  ip_send_skb+0x5f3/0x820
[   70.173986]  ? __ip_local_out+0x5b0/0x5b0
[   70.178144]  udp_send_skb+0xe97/0x1320
[   70.182046]  udp_sendmsg+0xa24/0x3180
[   70.185852]  ? ip_copy_metadata+0xac0/0xac0
[   70.190178]  ? do_futex+0x284a/0x6ad0
[   70.193983]  ? kmsan_set_origin_inline+0x6b/0x120
[   70.198830]  ? __msan_poison_alloca+0x15c/0x1d0
[   70.203513]  ? udp_send_skb+0x1320/0x1320
[   70.207659]  inet_sendmsg+0x48d/0x740
[   70.211463]  ? security_socket_sendmsg+0x9e/0x210
[   70.216303]  ? inet_getname+0x500/0x500
[   70.220268]  SYSC_sendto+0x6c3/0x7e0
[   70.223983]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[   70.229431]  ? prepare_exit_to_usermode+0x149/0x3a0
[   70.234454]  SyS_sendto+0x8a/0xb0
[   70.237908]  do_syscall_64+0x309/0x430
[   70.241799]  ? SYSC_getpeername+0x560/0x560
[   70.246116]  entry_SYSCALL_64_after_hwframe+0x3d/0xa2
[   70.251303] RIP: 0033:0x455329
[   70.254491] RSP: 002b:00007f0b38deec68 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   70.262204] RAX: ffffffffffffffda RBX: 00007f0b38def6d4 RCX: 0000000000455329
[   70.269473] RDX: 000000000000fdc7 RSI: 0000000020762fff RDI: 0000000000000013
[   70.276739] RBP: 000000000072bea0 R08: 000000002057bff0 R09: 0000000000000010
[   70.283990] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[   70.291247] R13: 00000000000004f7 R14: 00000000006fa7c8 R15: 0000000000000000
[   70.298503] 
[   70.300110] Uninit was created at:
[   70.303636]  kmsan_alloc_meta_for_pages+0x161/0x3a0
[   70.308644]  kmsan_alloc_page+0x82/0xe0
[   70.312607]  __alloc_pages_nodemask+0xf5b/0x5dc0
[   70.317352]  alloc_pages_current+0x6b5/0x970
[   70.321746]  skb_page_frag_refill+0x3ba/0x5e0
[   70.326224]  sk_page_frag_refill+0xa4/0x340
[   70.330527]  __ip_append_data+0x107e/0x3d10
[   70.334831]  ip_append_data+0x2fb/0x440
[   70.338794]  udp_sendmsg+0x746/0x3180
[   70.342587]  inet_sendmsg+0x48d/0x740
[   70.346371]  SYSC_sendto+0x6c3/0x7e0
[   70.350065]  SyS_sendto+0x8a/0xb0
[   70.353506]  do_syscall_64+0x309/0x430
[   70.357386]  entry_SYSCALL_64_after_hwframe+0x3d/0xa2
[   70.362553] ==================================================================
[   70.369895] Disabling lock debugging due to kernel taint
[   70.375334] Kernel panic - not syncing: panic_on_warn set ...
[   70.375334] 
[   70.382677] CPU: 1 PID: 5780 Comm: syz-executor3 Tainted: G    B            4.16.0+ #84
[   70.390795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   70.400132] Call Trace:
[   70.402699]  <IRQ>
[   70.404848]  dump_stack+0x185/0x1d0
[   70.408468]  panic+0x39d/0x940
[   70.411654]  ? csum_partial+0x78e/0x850
[   70.415608]  kmsan_report+0x238/0x240
[   70.419392]  __msan_warning_32+0x6c/0xb0
[   70.423439]  csum_partial+0x78e/0x850
[   70.427227]  csum_partial_ext+0x89/0xa0
[   70.431184]  __skb_checksum+0x6d4/0x1010
[   70.435233]  ? skb_checksum+0x120/0x120
[   70.439190]  skb_checksum+0xec/0x120
[   70.442892]  ? skb_checksum+0x120/0x120
[   70.446846]  ? csum_partial_ext+0xa0/0xa0
[   70.450985]  __skb_checksum_complete+0x90/0x400
[   70.455647]  __udp4_lib_rcv+0x3156/0x4740
[   70.459782]  udp_rcv+0x5c/0x70
[   70.462960]  ? udp_v4_early_demux+0x1cd0/0x1cd0
[   70.467609]  ip_local_deliver_finish+0x6ed/0xd40
[   70.472352]  ip_local_deliver+0x43c/0x4e0
[   70.476494]  ? ip_local_deliver+0x4e0/0x4e0
[   70.480805]  ? ip_call_ra_chain+0x7b0/0x7b0
[   70.485107]  ip_rcv_finish+0x1253/0x16d0
[   70.489156]  ip_rcv+0x119d/0x16f0
[   70.492602]  ? ip_rcv+0x16f0/0x16f0
[   70.496232]  __netif_receive_skb_core+0x47cf/0x4a80
[   70.501237]  ? try_to_wake_up+0x1ab2/0x20a0
[   70.505547]  ? ip_local_deliver_finish+0xd40/0xd40
[   70.510459]  ? intel_dp_destroy_mst_connector+0x122/0x300
[   70.515979]  process_backlog+0x62d/0xe20
[   70.520039]  ? rps_trigger_softirq+0x2f0/0x2f0
[   70.524610]  net_rx_action+0x7c1/0x1a70
[   70.528581]  ? net_tx_action+0xab0/0xab0
[   70.532633]  __do_softirq+0x56d/0x93d
[   70.536432]  do_softirq_own_stack+0x2a/0x40
[   70.540730]  </IRQ>
[   70.542963]  __local_bh_enable_ip+0x114/0x140
[   70.547461]  local_bh_enable+0x36/0x40
[   70.551338]  ip_finish_output2+0x124e/0x1380
[   70.555733]  ip_finish_output+0xcb0/0xff0
[   70.559865]  ip_output+0x502/0x5c0
[   70.563391]  ? ip_mc_finish_output+0x3b0/0x3b0
[   70.567959]  ? ip_finish_output+0xff0/0xff0
[   70.572265]  ip_send_skb+0x5f3/0x820
[   70.575965]  ? __ip_local_out+0x5b0/0x5b0
[   70.580100]  udp_send_skb+0xe97/0x1320
[   70.583976]  udp_sendmsg+0xa24/0x3180
[   70.587761]  ? ip_copy_metadata+0xac0/0xac0
[   70.592075]  ? do_futex+0x284a/0x6ad0
[   70.595860]  ? kmsan_set_origin_inline+0x6b/0x120
[   70.600686]  ? __msan_poison_alloca+0x15c/0x1d0
[   70.605352]  ? udp_send_skb+0x1320/0x1320
[   70.609493]  inet_sendmsg+0x48d/0x740
[   70.613277]  ? security_socket_sendmsg+0x9e/0x210
[   70.618108]  ? inet_getname+0x500/0x500
[   70.622075]  SYSC_sendto+0x6c3/0x7e0
[   70.625785]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[   70.631219]  ? prepare_exit_to_usermode+0x149/0x3a0
[   70.636225]  SyS_sendto+0x8a/0xb0
[   70.639663]  do_syscall_64+0x309/0x430
[   70.643538]  ? SYSC_getpeername+0x560/0x560
[   70.647846]  entry_SYSCALL_64_after_hwframe+0x3d/0xa2
[   70.653713] RIP: 0033:0x455329
[   70.656890] RSP: 002b:00007f0b38deec68 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   70.664578] RAX: ffffffffffffffda RBX: 00007f0b38def6d4 RCX: 0000000000455329
[   70.671826] RDX: 000000000000fdc7 RSI: 0000000020762fff RDI: 0000000000000013
[   70.679083] RBP: 000000000072bea0 R08: 000000002057bff0 R09: 0000000000000010
[   70.686334] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[   70.693587] R13: 00000000000004f7 R14: 00000000006fa7c8 R15: 0000000000000000
[   70.701406] Dumping ftrace buffer:
[   70.704924]    (ftrace buffer empty)
[   70.708615] Kernel Offset: disabled
[   70.712222] Rebooting in 86400 seconds..