[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 16.767893] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 18.625798] random: sshd: uninitialized urandom read (32 bytes read) [ 19.036611] random: sshd: uninitialized urandom read (32 bytes read) [ 19.848927] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.15.201' (ECDSA) to the list of known hosts. [ 25.257353] random: sshd: uninitialized urandom read (32 bytes read) 2018/08/01 09:01:35 fuzzer started [ 26.913584] random: cc1: uninitialized urandom read (8 bytes read) 2018/08/01 09:01:38 dialing manager at 10.128.0.26:46293 2018/08/01 09:01:39 syscalls: 1808 2018/08/01 09:01:39 code coverage: enabled 2018/08/01 09:01:39 comparison tracing: enabled 2018/08/01 09:01:39 setuid sandbox: enabled 2018/08/01 09:01:39 namespace sandbox: enabled 2018/08/01 09:01:39 fault injection: enabled 2018/08/01 09:01:39 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2018/08/01 09:01:39 net packed injection: enabled 2018/08/01 09:01:39 net device setup: enabled [ 30.476113] random: crng init done 09:02:03 executing program 0: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc80700145f8f764070") r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x3, 0x0, 0x9, 0xc, 0x0, 0x0, 0x0, [@sadb_x_sa2={0x2, 0x13, 0x2}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x60}}, 0x0) 09:02:03 executing program 1: perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x200000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x10, 0x2, 0xc) write(r0, &(0x7f0000000000)="1f0000000104ff00fd4354c007110000f305010008000100010423dcffdf00", 0x1f) write(r0, &(0x7f0000000040)="1f0000000104fffff13b54c007110009f30501000b00024000000000010000", 0x1f) 09:02:03 executing program 7: r0 = socket$inet6(0xa, 0x2, 0x0) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x4}, 0x1c) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000000)=0x3c, 0x4) sendmmsg(r0, &(0x7f0000000880), 0x40000000000034e, 0x0) 09:02:03 executing program 2: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$sg(&(0x7f00000000c0)='/dev/sg#\x00', 0x0, 0x0) readv(r1, &(0x7f0000000000)=[{&(0x7f0000000440)=""/128, 0x80}], 0x1) r2 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) dup2(r0, r1) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r2, 0x1000000000016) 09:02:03 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc80700145f8f764070") clock_nanosleep(0x2, 0x0, &(0x7f0000000140)={0x77359400}, &(0x7f0000000100)) r1 = gettid() clock_nanosleep(0x2, 0x1, &(0x7f00000000c0)={0x77359400}, &(0x7f0000000180)) timer_create(0x0, &(0x7f0000000080)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) clock_nanosleep(0x2, 0xb8ef9e4c5c28237b, &(0x7f0000000000)={0x77359400}, &(0x7f0000000040)) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) tkill(r1, 0x1000000000014) 09:02:03 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="0a5cc80700315f85714070") socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_elf64(r1, &(0x7f0000000180)=ANY=[@ANYRES64], 0xfffffed7) shutdown(r2, 0x0) 09:02:03 executing program 5: timer_create(0x9, &(0x7f0000000180)={0x0, 0x12, 0x0, @thr={&(0x7f0000000040), &(0x7f0000000080)}}, &(0x7f0000000000)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) timer_delete(0x0) 09:02:03 executing program 6: syz_mount_image$f2fs(&(0x7f0000000180)='f2fs\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000000)="1020f5f20100070009000000030000000c0000000900000001000000020000000000000000300000000000000e00000016000000020000000200000002000000020000000e000000000400000004000000080000000c00000010000000140000030000000100000002", 0x69, 0x1400}], 0x0, &(0x7f0000000100)={[{@background_gc_off='background_gc=off'}]}) [ 53.549142] IPVS: ftp: loaded support on port[0] = 21 [ 53.554119] IPVS: ftp: loaded support on port[0] = 21 [ 53.564381] IPVS: ftp: loaded support on port[0] = 21 [ 53.579775] IPVS: ftp: loaded support on port[0] = 21 [ 53.597676] IPVS: ftp: loaded support on port[0] = 21 [ 53.605092] IPVS: ftp: loaded support on port[0] = 21 [ 53.636921] IPVS: ftp: loaded support on port[0] = 21 [ 53.644726] IPVS: ftp: loaded support on port[0] = 21 [ 55.272024] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.278476] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.296069] device bridge_slave_0 entered promiscuous mode [ 55.326423] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.332833] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.352820] device bridge_slave_0 entered promiscuous mode [ 55.359999] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.366382] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.375133] device bridge_slave_0 entered promiscuous mode [ 55.381937] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.388678] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.404808] device bridge_slave_0 entered promiscuous mode [ 55.415887] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.422319] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.434099] device bridge_slave_0 entered promiscuous mode [ 55.448083] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.454490] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.466147] device bridge_slave_0 entered promiscuous mode [ 55.476212] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.482614] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.492831] device bridge_slave_1 entered promiscuous mode [ 55.500382] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.506762] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.526074] device bridge_slave_0 entered promiscuous mode [ 55.534337] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.540733] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.548125] device bridge_slave_1 entered promiscuous mode [ 55.555262] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.561650] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.574277] device bridge_slave_1 entered promiscuous mode [ 55.582161] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.588618] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.596044] device bridge_slave_0 entered promiscuous mode [ 55.609962] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.616435] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.631878] device bridge_slave_1 entered promiscuous mode [ 55.640335] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 55.654523] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 55.666358] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.672773] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.681322] device bridge_slave_1 entered promiscuous mode [ 55.689163] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.695548] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.703033] device bridge_slave_1 entered promiscuous mode [ 55.710728] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 55.719741] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.726096] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.744975] device bridge_slave_1 entered promiscuous mode [ 55.753819] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 55.761947] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 55.769116] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.775468] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.783052] device bridge_slave_1 entered promiscuous mode [ 55.800730] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 55.809912] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 55.817099] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 55.824459] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 55.856824] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 55.877407] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 55.887866] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 55.911011] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 55.929385] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 55.986906] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 56.016598] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 56.109543] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 56.141582] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 56.154064] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 56.175932] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 56.243942] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 56.261940] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 56.270476] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 56.280913] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 56.299313] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 56.308954] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 56.323562] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 56.367805] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 56.426478] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 56.452357] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 56.462577] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 56.478831] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 56.721072] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 56.734303] team0: Port device team_slave_0 added [ 56.817340] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 56.836795] team0: Port device team_slave_0 added [ 56.849236] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 56.860795] team0: Port device team_slave_0 added [ 56.871409] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 56.889820] team0: Port device team_slave_1 added [ 56.899689] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 56.908461] team0: Port device team_slave_0 added [ 56.938905] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 56.952369] team0: Port device team_slave_0 added [ 56.969095] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 56.985788] team0: Port device team_slave_1 added [ 56.992983] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 57.003389] team0: Port device team_slave_1 added [ 57.013543] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 57.022274] team0: Port device team_slave_0 added [ 57.035947] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 57.045072] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 57.060765] team0: Port device team_slave_1 added [ 57.073910] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 57.083385] team0: Port device team_slave_1 added [ 57.088851] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 57.100886] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 57.117835] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 57.125033] team0: Port device team_slave_0 added [ 57.132637] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 57.140181] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 57.149083] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 57.157744] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 57.164589] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 57.186840] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 57.208366] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 57.221645] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 57.229082] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 57.236844] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 57.244317] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 57.251831] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 57.259423] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 57.266610] team0: Port device team_slave_1 added [ 57.272283] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 57.279292] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 57.287772] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 57.297875] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 57.306309] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 57.313183] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 57.321082] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 57.337211] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 57.351706] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 57.361040] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 57.368299] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 57.375758] team0: Port device team_slave_0 added [ 57.385409] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 57.392918] team0: Port device team_slave_1 added [ 57.399562] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 57.406718] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.423576] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 57.438597] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 57.450792] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 57.458502] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 57.465942] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 57.473961] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 57.483345] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 57.492770] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 57.500735] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.512172] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 57.528600] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.536803] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 57.546310] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 57.553496] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 57.560470] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 57.568684] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 57.581912] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 57.596794] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 57.607745] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 57.615311] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 57.623157] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 57.632278] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 57.640644] team0: Port device team_slave_1 added [ 57.647625] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 57.654909] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 57.665739] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 57.674527] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 57.685675] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 57.694174] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 57.721627] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.733438] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 57.741616] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.749405] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 57.757086] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 57.764807] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 57.778639] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 57.797024] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 57.811173] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 57.820662] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 57.829543] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 57.849772] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 57.857678] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 57.873947] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 57.887292] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 57.895778] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 57.902886] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 57.914682] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 57.928860] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.937819] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 57.947496] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 57.954545] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.962751] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 57.979126] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 57.989218] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 57.996518] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 58.013006] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 58.039191] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 58.057873] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 58.074087] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 58.083936] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 58.103072] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 58.131955] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 58.139200] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 58.148403] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 58.246175] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 58.253633] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 58.262034] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 58.896461] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.902870] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.909531] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.916507] bridge0: port 1(bridge_slave_0) entered forwarding state [ 58.937007] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 58.951222] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.957724] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.964368] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.970759] bridge0: port 1(bridge_slave_0) entered forwarding state [ 58.979606] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 59.008693] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.015294] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.022040] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.028530] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.065006] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 59.087307] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.093715] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.100418] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.106979] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.143445] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 59.153651] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.160055] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.166712] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.173087] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.180480] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 59.196607] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.202994] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.209614] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.215989] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.230040] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 59.244081] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.250584] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.257343] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.263713] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.294321] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 59.506219] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.512765] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.519399] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.525774] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.540828] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 59.857929] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 59.876634] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 59.897570] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 59.904926] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 59.912601] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 59.919842] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 59.927155] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 59.934467] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 62.969788] 8021q: adding VLAN 0 to HW filter on device bond0 [ 63.115460] 8021q: adding VLAN 0 to HW filter on device bond0 [ 63.194602] 8021q: adding VLAN 0 to HW filter on device bond0 [ 63.225844] 8021q: adding VLAN 0 to HW filter on device bond0 [ 63.252164] 8021q: adding VLAN 0 to HW filter on device bond0 [ 63.277341] 8021q: adding VLAN 0 to HW filter on device bond0 [ 63.292886] 8021q: adding VLAN 0 to HW filter on device bond0 [ 63.365559] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 63.498432] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 63.506936] 8021q: adding VLAN 0 to HW filter on device bond0 [ 63.561617] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 63.572416] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 63.625909] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 63.643174] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 63.700733] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 63.749849] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 63.756393] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 63.769648] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 63.881358] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 63.887551] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 63.900901] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 63.915866] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 63.926733] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 63.932906] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 63.942001] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 64.007878] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 64.014279] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 64.024621] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 64.054641] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 64.069128] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 64.076356] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 64.088700] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 64.111026] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 64.133001] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 64.151969] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 64.163017] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 64.177967] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 64.205391] 8021q: adding VLAN 0 to HW filter on device team0 [ 64.314082] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 64.320406] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 64.330885] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 64.348670] 8021q: adding VLAN 0 to HW filter on device team0 [ 64.361057] 8021q: adding VLAN 0 to HW filter on device team0 [ 64.458542] 8021q: adding VLAN 0 to HW filter on device team0 [ 64.484475] 8021q: adding VLAN 0 to HW filter on device team0 [ 64.507376] 8021q: adding VLAN 0 to HW filter on device team0 [ 64.584133] 8021q: adding VLAN 0 to HW filter on device team0 [ 64.712336] 8021q: adding VLAN 0 to HW filter on device team0 09:02:16 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="0a5cc80700315f85714070") socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_elf64(r1, &(0x7f0000000180)=ANY=[@ANYRES64], 0xfffffed7) shutdown(r2, 0x0) [ 66.566858] netlink: 3 bytes leftover after parsing attributes in process `syz-executor1'. [ 66.605326] netlink: 3 bytes leftover after parsing attributes in process `syz-executor1'. 09:02:17 executing program 1: perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x200000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x10, 0x2, 0xc) write(r0, &(0x7f0000000000)="1f0000000104ff00fd4354c007110000f305010008000100010423dcffdf00", 0x1f) write(r0, &(0x7f0000000040)="1f0000000104fffff13b54c007110009f30501000b00024000000000010000", 0x1f) [ 66.681687] F2FS-fs (loop6): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 66.688833] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock 09:02:17 executing program 0: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc80700145f8f764070") r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x3, 0x0, 0x9, 0xc, 0x0, 0x0, 0x0, [@sadb_x_sa2={0x2, 0x13, 0x2}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x60}}, 0x0) 09:02:17 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="0a5cc80700315f85714070") socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_elf64(r1, &(0x7f0000000180)=ANY=[@ANYRES64], 0xfffffed7) shutdown(r2, 0x0) [ 66.723682] netlink: 3 bytes leftover after parsing attributes in process `syz-executor1'. [ 66.753772] attempt to access beyond end of device [ 66.758820] loop6: rw=12288, want=8200, limit=20 [ 66.803627] kasan: CONFIG_KASAN_INLINE enabled [ 66.808400] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 66.815800] general protection fault: 0000 [#1] SMP KASAN [ 66.821355] CPU: 0 PID: 6405 Comm: syz-executor6 Not tainted 4.18.0-rc7-next-20180801+ #29 [ 66.829766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 66.839151] RIP: 0010:validate_checkpoint+0x66d/0xec0 [ 66.844387] Code: e8 58 05 7f fe 4c 8d 6b 80 4d 8d 74 24 08 48 b8 00 00 00 00 00 fc ff df 4c 89 ea 48 c1 ea 03 c6 04 02 00 4c 89 f2 48 c1 ea 03 <80> 3c 02 00 0f 85 f4 06 00 00 4c 89 ea 4d 8b 7c 24 08 48 b8 00 00 [ 66.863303] RSP: 0018:ffff88019cd8ebe8 EFLAGS: 00010246 [ 66.868774] RAX: dffffc0000000000 RBX: ffff88019cd8ef30 RCX: ffffc90007859000 [ 66.876060] RDX: 0000000000000000 RSI: ffffffff82fd9658 RDI: 0000000000000005 [ 66.883342] RBP: ffff88019cd8ef58 R08: ffff8801b13a62c0 R09: fffff94000ec073e [ 66.890620] R10: fffff94000ec073e R11: ffffea00076039f7 R12: fffffffffffffffb 09:02:17 executing program 1: perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x200000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x10, 0x2, 0xc) write(r0, &(0x7f0000000000)="1f0000000104ff00fd4354c007110000f305010008000100010423dcffdf00", 0x1f) write(r0, &(0x7f0000000040)="1f0000000104fffff13b54c007110009f30501000b00024000000000010000", 0x1f) 09:02:17 executing program 0: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc80700145f8f764070") r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x3, 0x0, 0x9, 0xc, 0x0, 0x0, 0x0, [@sadb_x_sa2={0x2, 0x13, 0x2}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x60}}, 0x0) [ 66.897901] R13: ffff88019cd8eeb0 R14: 0000000000000003 R15: ffff8801ac075b40 [ 66.905206] FS: 00007ffbe4aad700(0000) GS:ffff8801db000000(0000) knlGS:0000000000000000 [ 66.913447] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 66.919366] CR2: 00007f4eb9851de0 CR3: 00000001ca6f5000 CR4: 00000000001406f0 [ 66.926652] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 66.933933] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 66.941214] Call Trace: [ 66.943825] ? get_checkpoint_version+0x620/0x620 [ 66.948686] ? save_stack+0xa9/0xd0 [ 66.952330] ? save_stack+0x43/0xd0 [ 66.955976] ? kasan_kmalloc+0xc4/0xe0 [ 66.959875] ? __kmalloc+0x14e/0x760 [ 66.963589] ? f2fs_get_valid_checkpoint+0x390/0x1ec0 [ 66.968801] ? f2fs_fill_super+0x2d42/0x8110 [ 66.973213] ? mount_bdev+0x314/0x3e0 [ 66.977014] ? f2fs_mount+0x3c/0x50 [ 66.980636] ? vfs_get_tree+0x1cb/0x5c0 [ 66.984603] ? do_mount+0x6f2/0x1e20 [ 66.988307] ? ksys_mount+0x12d/0x140 [ 66.992100] ? __x64_sys_mount+0xbe/0x150 [ 66.996243] ? do_syscall_64+0x1b9/0x820 [ 67.000299] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 67.005662] ? lock_acquire+0x1e4/0x540 [ 67.009639] ? cache_grow_end.part.37+0x95/0x170 [ 67.014397] ? lock_downgrade+0x8f0/0x8f0 [ 67.018538] ? kasan_check_read+0x11/0x20 [ 67.022688] ? do_raw_spin_unlock+0xa7/0x2f0 [ 67.027093] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 67.031679] ? kasan_check_write+0x14/0x20 [ 67.035905] ? do_raw_spin_lock+0xc1/0x200 [ 67.040141] ? kasan_unpoison_shadow+0x35/0x50 [ 67.044711] ? kasan_kmalloc+0xc4/0xe0 [ 67.048602] ? __kmalloc+0x315/0x760 [ 67.052313] ? f2fs_get_valid_checkpoint+0x390/0x1ec0 [ 67.057500] f2fs_get_valid_checkpoint+0x436/0x1ec0 [ 67.062510] ? _raw_spin_unlock+0x22/0x30 [ 67.066648] ? f2fs_recover_orphan_inodes+0x1180/0x1180 [ 67.072006] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 67.077535] ? f2fs_iget+0x4f5/0x4fa0 [ 67.081328] ? perf_trace_lock+0x920/0x920 [ 67.085556] ? lock_downgrade+0x8f0/0x8f0 [ 67.089711] ? kasan_check_read+0x11/0x20 [ 67.094115] ? f2fs_inode_chksum_set+0xf0/0xf0 [ 67.098686] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 67.103274] ? perf_trace_lock+0x920/0x920 [ 67.107501] ? __debug_object_init+0x581/0x12e0 [ 67.112174] ? lock_acquire+0x1e4/0x540 [ 67.116139] ? debug_object_activate+0x41a/0x690 [ 67.120891] ? lock_downgrade+0x8f0/0x8f0 [ 67.125047] ? do_raw_spin_unlock+0xa7/0x2f0 [ 67.129453] ? lock_acquire+0x1e4/0x540 [ 67.133447] ? __percpu_counter_init+0x2ad/0x370 [ 67.138198] ? lock_downgrade+0x8f0/0x8f0 [ 67.142342] ? kasan_check_read+0x11/0x20 [ 67.146483] ? do_raw_spin_unlock+0xa7/0x2f0 [ 67.150884] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 67.155459] ? kasan_check_write+0x14/0x20 [ 67.159693] ? do_raw_spin_lock+0xc1/0x200 [ 67.163931] ? trace_hardirqs_on+0xd/0x10 [ 67.168078] ? __percpu_counter_init+0x2b2/0x370 [ 67.172841] ? percpu_counter_cpu_dead+0x1c0/0x1c0 [ 67.177762] ? __init_waitqueue_head+0x9e/0x150 [ 67.182433] ? init_wait_entry+0x1c0/0x1c0 [ 67.186665] f2fs_fill_super+0x2d42/0x8110 [ 67.190974] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 67.196001] ? f2fs_commit_super+0x400/0x400 [ 67.200404] ? prealloc_shrinker+0x231/0x4a0 [ 67.204816] ? __init_waitqueue_head+0x9e/0x150 [ 67.209478] ? check_same_owner+0x340/0x340 [ 67.213793] ? __lockdep_init_map+0x105/0x590 [ 67.218292] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 67.223393] ? widen_string+0xe0/0x2e0 [ 67.227272] ? format_decode+0xaf0/0xaf0 [ 67.231330] ? string+0x225/0x2d0 [ 67.234783] ? widen_string+0x2e0/0x2e0 [ 67.238750] ? register_shrinker_prepared+0x15b/0x1c0 [ 67.243935] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 67.249480] ? bdev_name.isra.8+0x1a1/0x1f0 [ 67.253796] ? pointer+0x157/0x990 [ 67.257328] ? netdev_bits+0xb0/0xb0 [ 67.261029] ? format_decode+0x1b1/0xaf0 [ 67.265084] ? set_precision+0xe0/0xe0 [ 67.268962] ? do_raw_spin_unlock+0xa7/0x2f0 [ 67.273366] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 67.278894] ? vsnprintf+0x20d/0x1b60 [ 67.282698] ? vsprintf+0x40/0x40 [ 67.286141] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 67.291148] ? set_blocksize+0x2c1/0x340 [ 67.295204] mount_bdev+0x314/0x3e0 [ 67.298817] ? mount_bdev+0x314/0x3e0 [ 67.302608] ? f2fs_commit_super+0x400/0x400 [ 67.307009] f2fs_mount+0x3c/0x50 [ 67.310452] ? kill_f2fs_super+0x330/0x330 [ 67.314676] legacy_get_tree+0x131/0x460 [ 67.318732] vfs_get_tree+0x1cb/0x5c0 [ 67.322521] ? vfs_set_fs_source+0x12c/0x180 [ 67.326923] do_mount+0x6f2/0x1e20 [ 67.330465] ? copy_mount_string+0x40/0x40 [ 67.334693] ? retint_kernel+0x10/0x10 [ 67.338576] ? copy_mount_options+0x1a1/0x380 [ 67.343063] ? copy_mount_options+0x1b2/0x380 [ 67.347548] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 67.353089] ? copy_mount_options+0x285/0x380 [ 67.357577] ksys_mount+0x12d/0x140 [ 67.361199] __x64_sys_mount+0xbe/0x150 [ 67.365176] do_syscall_64+0x1b9/0x820 [ 67.369054] ? finish_task_switch+0x1d3/0x870 [ 67.373539] ? syscall_return_slowpath+0x5e0/0x5e0 [ 67.378469] ? syscall_return_slowpath+0x31d/0x5e0 [ 67.383388] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 67.388394] ? __switch_to_asm+0x34/0x70 [ 67.392446] ? __switch_to_asm+0x34/0x70 [ 67.396497] ? __switch_to_asm+0x40/0x70 [ 67.400545] ? __switch_to_asm+0x34/0x70 [ 67.404593] ? __switch_to_asm+0x40/0x70 [ 67.408644] ? __switch_to_asm+0x34/0x70 [ 67.412691] ? __switch_to_asm+0x40/0x70 [ 67.416756] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 67.421604] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 67.426782] RIP: 0033:0x45943a [ 67.429968] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 bd 8a fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 9a 8a fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 67.448955] RSP: 002b:00007ffbe4aaca88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 67.456664] RAX: ffffffffffffffda RBX: 00007ffbe4aacb30 RCX: 000000000045943a [ 67.463921] RDX: 00007ffbe4aacad0 RSI: 00000000200000c0 RDI: 00007ffbe4aacaf0 [ 67.471185] RBP: 00000000200000c0 R08: 00007ffbe4aacb30 R09: 00007ffbe4aacad0 [ 67.478540] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000013 [ 67.485884] R13: 0000000000000000 R14: 00000000004c8ea0 R15: 0000000000000000 [ 67.493153] Modules linked in: [ 67.496339] Dumping ftrace buffer: [ 67.499862] (ftrace buffer empty) [ 67.504607] ---[ end trace 9e095253b54b6fe3 ]--- [ 67.509511] RIP: 0010:validate_checkpoint+0x66d/0xec0 [ 67.514748] Code: e8 58 05 7f fe 4c 8d 6b 80 4d 8d 74 24 08 48 b8 00 00 00 00 00 fc ff df 4c 89 ea 48 c1 ea 03 c6 04 02 00 4c 89 f2 48 c1 ea 03 <80> 3c 02 00 0f 85 f4 06 00 00 4c 89 ea 4d 8b 7c 24 08 48 b8 00 00 [ 67.533675] RSP: 0018:ffff88019cd8ebe8 EFLAGS: 00010246 [ 67.537107] netlink: 3 bytes leftover after parsing attributes in process `syz-executor1'. [ 67.539082] RAX: dffffc0000000000 RBX: ffff88019cd8ef30 RCX: ffffc90007859000 [ 67.539091] RDX: 0000000000000000 RSI: ffffffff82fd9658 RDI: 0000000000000005 [ 67.539101] RBP: ffff88019cd8ef58 R08: ffff8801b13a62c0 R09: fffff94000ec073e [ 67.539110] R10: fffff94000ec073e R11: ffffea00076039f7 R12: fffffffffffffffb [ 67.539118] R13: ffff88019cd8eeb0 R14: 0000000000000003 R15: ffff8801ac075b40 [ 67.539130] FS: 00007ffbe4aad700(0000) GS:ffff8801db000000(0000) knlGS:0000000000000000 [ 67.539137] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 67.539151] CR2: 00007f4eb9851de0 CR3: 00000001ca6f5000 CR4: 00000000001406f0 09:02:17 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="0a5cc80700315f85714070") socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_elf64(r1, &(0x7f0000000180)=ANY=[@ANYRES64], 0xfffffed7) shutdown(r2, 0x0) 09:02:17 executing program 7: r0 = socket$inet6(0xa, 0x2, 0x0) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x4}, 0x1c) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000000)=0x3c, 0x4) sendmmsg(r0, &(0x7f0000000880), 0x40000000000034e, 0x0) [ 67.605713] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 67.613045] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 67.620428] Kernel panic - not syncing: Fatal exception [ 67.626465] Dumping ftrace buffer: [ 67.629995] (ftrace buffer empty) [ 67.633788] Kernel Offset: disabled [ 67.637406] Rebooting in 86400 seconds..