[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 32.066871] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 35.888807] random: sshd: uninitialized urandom read (32 bytes read) [ 36.393877] random: sshd: uninitialized urandom read (32 bytes read) [ 37.759930] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.10.32' (ECDSA) to the list of known hosts. [ 43.348252] random: sshd: uninitialized urandom read (32 bytes read) 2018/07/03 19:43:12 fuzzer started [ 44.863494] random: cc1: uninitialized urandom read (8 bytes read) 2018/07/03 19:43:15 dialing manager at 10.128.0.26:34161 2018/07/03 19:43:20 syscalls: 1541 2018/07/03 19:43:20 code coverage: enabled 2018/07/03 19:43:20 comparison tracing: ioctl(KCOV_TRACE_CMP) failed: errno 524 2018/07/03 19:43:20 setuid sandbox: enabled 2018/07/03 19:43:20 namespace sandbox: enabled 2018/07/03 19:43:20 fault injection: enabled 2018/07/03 19:43:20 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2018/07/03 19:43:20 net packed injection: enabled [ 52.646146] random: crng init done 19:44:45 executing program 0: r0 = socket(0x10, 0x2, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000040)='smaps\x00') sendfile(r0, r1, &(0x7f0000000000), 0x7ffffffe) 19:44:45 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x0, 0x0) 19:44:45 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000340)='net/dev\x00') preadv(r0, &(0x7f0000001580)=[{&(0x7f0000000380)=""/4096, 0x1000}], 0x1, 0x0) 19:44:45 executing program 2: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0xa, 0x5, 0x84) pipe(&(0x7f0000000080)={0xffffffffffffffff}) dup3(r1, r0, 0x0) 19:44:45 executing program 4: perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7ffffffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = signalfd4(0xffffffffffffffff, &(0x7f0000006000)={0x7fffffff}, 0x8, 0x0) readv(r0, &(0x7f0000000040)=[{&(0x7f0000000300)=""/128, 0x80}], 0x1) timer_create(0x0, &(0x7f000004c000)={0x0, 0x16}, &(0x7f000004cffc)) fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, &(0x7f0000000380)) timer_settime(0x0, 0x0, &(0x7f000004a000)={{0x0, 0x989680}, {0x0, 0x7}}, &(0x7f000004afe0)) 19:44:45 executing program 3: r0 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f00000000c0)=@req3={0x46, 0x0, 0x3, 0xffff}, 0x1c) r1 = epoll_create(0x231a) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) writev(r0, &(0x7f0000001500)=[{&(0x7f0000000500)="b5", 0x1}], 0x1) 19:44:45 executing program 5: ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000001000)={0x0, 0x0, 0x0, "9ec77a8c5ae95ec8672c93340f643a664f13eeab65c0322901dc6bd36cde2c51f01b7f0b014f9f91eeb7c37c7240f476c8d753d000aa8faf8fb574dbcfa6dc4d"}) r0 = inotify_init1(0x0) fcntl$setown(r0, 0x8, 0xffffffffffffffff) fcntl$getownex(r0, 0x10, &(0x7f0000000080)={0x0, 0x0}) ptrace$setopts(0x4206, r1, 0x0, 0x0) ptrace(0x4207, r1) syz_open_dev$tun(&(0x7f0000000180)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000000)={"795b6d3000929a9e7e00800400", 0x40000000004013}) ptrace$setregset(0x4209, r1, 0x20000004, &(0x7f0000000100)={&(0x7f0000000040), 0xfffffffffffffdfb}) 19:44:45 executing program 6: r0 = socket(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000440)={&(0x7f00000002c0)={0x10}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)=ANY=[@ANYBLOB="300000001900010000000000000000000a000008000000000000000014000500fe800000e300000000000000000000aa"], 0x1}, 0x1}, 0x0) [ 137.616226] IPVS: ftp: loaded support on port[0] = 21 [ 137.625517] IPVS: ftp: loaded support on port[0] = 21 [ 137.707361] IPVS: ftp: loaded support on port[0] = 21 [ 137.749919] IPVS: ftp: loaded support on port[0] = 21 [ 137.756937] IPVS: ftp: loaded support on port[0] = 21 [ 137.789234] IPVS: ftp: loaded support on port[0] = 21 [ 137.791561] IPVS: ftp: loaded support on port[0] = 21 [ 137.823021] IPVS: ftp: loaded support on port[0] = 21 [ 139.597066] ip (4678) used greatest stack depth: 54112 bytes left [ 141.404662] bridge0: port 1(bridge_slave_0) entered blocking state [ 141.411145] bridge0: port 1(bridge_slave_0) entered disabled state [ 141.438131] device bridge_slave_0 entered promiscuous mode [ 141.502737] bridge0: port 1(bridge_slave_0) entered blocking state [ 141.509288] bridge0: port 1(bridge_slave_0) entered disabled state [ 141.543432] device bridge_slave_0 entered promiscuous mode [ 141.562852] bridge0: port 1(bridge_slave_0) entered blocking state [ 141.569327] bridge0: port 1(bridge_slave_0) entered disabled state [ 141.597555] device bridge_slave_0 entered promiscuous mode [ 141.641600] bridge0: port 2(bridge_slave_1) entered blocking state [ 141.648100] bridge0: port 2(bridge_slave_1) entered disabled state [ 141.681544] device bridge_slave_1 entered promiscuous mode [ 141.738172] bridge0: port 1(bridge_slave_0) entered blocking state [ 141.744656] bridge0: port 1(bridge_slave_0) entered disabled state [ 141.784333] device bridge_slave_0 entered promiscuous mode [ 141.799572] bridge0: port 2(bridge_slave_1) entered blocking state [ 141.806198] bridge0: port 2(bridge_slave_1) entered disabled state [ 141.836468] device bridge_slave_1 entered promiscuous mode [ 141.872762] bridge0: port 2(bridge_slave_1) entered blocking state [ 141.879303] bridge0: port 2(bridge_slave_1) entered disabled state [ 141.906201] device bridge_slave_1 entered promiscuous mode [ 141.916617] bridge0: port 1(bridge_slave_0) entered blocking state [ 141.923124] bridge0: port 1(bridge_slave_0) entered disabled state [ 141.957289] device bridge_slave_0 entered promiscuous mode [ 141.965809] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 141.981923] bridge0: port 2(bridge_slave_1) entered blocking state [ 141.988388] bridge0: port 2(bridge_slave_1) entered disabled state [ 142.009533] device bridge_slave_1 entered promiscuous mode [ 142.019436] bridge0: port 1(bridge_slave_0) entered blocking state [ 142.025887] bridge0: port 1(bridge_slave_0) entered disabled state [ 142.045410] device bridge_slave_0 entered promiscuous mode [ 142.068743] bridge0: port 1(bridge_slave_0) entered blocking state [ 142.075195] bridge0: port 1(bridge_slave_0) entered disabled state [ 142.100384] device bridge_slave_0 entered promiscuous mode [ 142.120305] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 142.127642] bridge0: port 1(bridge_slave_0) entered blocking state [ 142.134164] bridge0: port 1(bridge_slave_0) entered disabled state [ 142.159071] device bridge_slave_0 entered promiscuous mode [ 142.196162] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 142.208460] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 142.222715] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 142.236198] bridge0: port 2(bridge_slave_1) entered blocking state [ 142.242665] bridge0: port 2(bridge_slave_1) entered disabled state [ 142.278512] device bridge_slave_1 entered promiscuous mode [ 142.301562] bridge0: port 2(bridge_slave_1) entered blocking state [ 142.308006] bridge0: port 2(bridge_slave_1) entered disabled state [ 142.332460] device bridge_slave_1 entered promiscuous mode [ 142.361091] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 142.374559] bridge0: port 2(bridge_slave_1) entered blocking state [ 142.381094] bridge0: port 2(bridge_slave_1) entered disabled state [ 142.411829] device bridge_slave_1 entered promiscuous mode [ 142.434512] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 142.456750] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 142.470702] bridge0: port 2(bridge_slave_1) entered blocking state [ 142.477161] bridge0: port 2(bridge_slave_1) entered disabled state [ 142.528495] device bridge_slave_1 entered promiscuous mode [ 142.558189] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 142.567132] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 142.636478] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 142.788217] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 142.828702] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 142.838573] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 142.883328] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 142.895175] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 143.033191] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 143.089983] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 143.149906] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 143.161445] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 143.203475] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 143.346943] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 143.435386] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 143.471618] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 143.564851] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 143.596850] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 143.614436] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 143.621434] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 143.632931] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 143.654208] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 143.661191] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 143.683017] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 143.693354] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 143.717594] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 143.728472] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 143.741345] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 143.830354] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 143.843991] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 143.877813] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 143.885309] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 143.962604] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 143.985890] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 143.992901] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 144.011363] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 144.018319] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 144.050499] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 144.069892] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 144.077908] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 144.099838] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 144.106836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 144.289428] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 144.310659] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 144.352738] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 144.361601] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 144.406404] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 144.421496] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 144.476370] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 144.498009] team0: Port device team_slave_0 added [ 144.532342] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 144.539391] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 144.578347] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 144.606653] team0: Port device team_slave_0 added [ 144.649756] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 144.656771] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 144.742219] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 144.766927] team0: Port device team_slave_1 added [ 144.791824] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 144.810985] team0: Port device team_slave_0 added [ 144.816802] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 144.837595] team0: Port device team_slave_0 added [ 144.902810] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 144.917930] team0: Port device team_slave_1 added [ 144.963681] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 144.991573] team0: Port device team_slave_1 added [ 145.015226] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 145.027955] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 145.058548] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 145.082524] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 145.107781] team0: Port device team_slave_1 added [ 145.139748] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 145.154484] team0: Port device team_slave_0 added [ 145.184384] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 145.200904] team0: Port device team_slave_0 added [ 145.212387] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 145.231728] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 145.249987] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 145.285289] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 145.293071] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 145.300448] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 145.346758] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 145.383210] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 145.401918] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 145.423464] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 145.438542] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 145.446890] team0: Port device team_slave_0 added [ 145.464665] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 145.482467] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 145.501195] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 145.509008] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 145.525671] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 145.542530] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 145.554080] team0: Port device team_slave_1 added [ 145.564834] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 145.576384] team0: Port device team_slave_0 added [ 145.581947] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 145.590319] team0: Port device team_slave_1 added [ 145.597944] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 145.605748] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 145.620420] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 145.645418] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 145.665975] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 145.674134] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 145.698498] team0: Port device team_slave_1 added [ 145.722143] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 145.731514] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 145.747129] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 145.780615] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 145.806978] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 145.826814] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 145.844168] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 145.867528] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 145.880962] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 145.896571] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 145.914288] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 145.922905] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 145.939430] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 145.960594] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 145.968620] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 145.986636] team0: Port device team_slave_1 added [ 145.994052] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 146.001875] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 146.009709] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 146.020198] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 146.029379] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 146.048761] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 146.060447] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 146.086108] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 146.119905] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 146.153019] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 146.166725] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 146.178792] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 146.187663] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 146.196778] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 146.212471] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 146.232178] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 146.256093] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 146.265345] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 146.274529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 146.283890] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 146.303282] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 146.316972] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 146.324496] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 146.334898] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 146.344291] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 146.357399] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 146.385672] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 146.412713] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 146.436796] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 146.456299] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 146.471175] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 146.493262] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 146.533220] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 146.540924] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 146.560649] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 146.578798] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 146.589151] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 146.605225] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 146.638510] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 146.645509] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 146.659266] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 146.687591] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 146.703356] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 146.734157] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 146.779772] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 146.787360] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 146.807974] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 146.874884] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 146.890127] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 146.911966] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 146.953721] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 146.961178] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 146.974082] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 147.001887] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 147.012210] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 147.043739] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 147.222221] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 147.229900] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 147.244145] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 148.888724] bridge0: port 2(bridge_slave_1) entered blocking state [ 148.895198] bridge0: port 2(bridge_slave_1) entered forwarding state [ 148.901973] bridge0: port 1(bridge_slave_0) entered blocking state [ 148.908404] bridge0: port 1(bridge_slave_0) entered forwarding state [ 148.961189] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 148.973890] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 149.041236] bridge0: port 2(bridge_slave_1) entered blocking state [ 149.047699] bridge0: port 2(bridge_slave_1) entered forwarding state [ 149.054501] bridge0: port 1(bridge_slave_0) entered blocking state [ 149.060944] bridge0: port 1(bridge_slave_0) entered forwarding state [ 149.144173] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 149.152451] bridge0: port 2(bridge_slave_1) entered blocking state [ 149.158894] bridge0: port 2(bridge_slave_1) entered forwarding state [ 149.165673] bridge0: port 1(bridge_slave_0) entered blocking state [ 149.172118] bridge0: port 1(bridge_slave_0) entered forwarding state [ 149.215275] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 149.280254] bridge0: port 2(bridge_slave_1) entered blocking state [ 149.286722] bridge0: port 2(bridge_slave_1) entered forwarding state [ 149.293515] bridge0: port 1(bridge_slave_0) entered blocking state [ 149.299946] bridge0: port 1(bridge_slave_0) entered forwarding state [ 149.365139] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 149.683715] bridge0: port 2(bridge_slave_1) entered blocking state [ 149.690175] bridge0: port 2(bridge_slave_1) entered forwarding state [ 149.696941] bridge0: port 1(bridge_slave_0) entered blocking state [ 149.703371] bridge0: port 1(bridge_slave_0) entered forwarding state [ 149.742398] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 149.756955] bridge0: port 2(bridge_slave_1) entered blocking state [ 149.763428] bridge0: port 2(bridge_slave_1) entered forwarding state [ 149.770261] bridge0: port 1(bridge_slave_0) entered blocking state [ 149.776716] bridge0: port 1(bridge_slave_0) entered forwarding state [ 149.792389] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 149.816228] bridge0: port 2(bridge_slave_1) entered blocking state [ 149.824358] bridge0: port 2(bridge_slave_1) entered forwarding state [ 149.831211] bridge0: port 1(bridge_slave_0) entered blocking state [ 149.837644] bridge0: port 1(bridge_slave_0) entered forwarding state [ 149.846918] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 149.861514] bridge0: port 2(bridge_slave_1) entered blocking state [ 149.867981] bridge0: port 2(bridge_slave_1) entered forwarding state [ 149.874785] bridge0: port 1(bridge_slave_0) entered blocking state [ 149.881218] bridge0: port 1(bridge_slave_0) entered forwarding state [ 149.936891] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 149.986145] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 150.002739] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 150.035412] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 150.073874] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 150.100882] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 150.120390] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 150.135955] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 158.818183] 8021q: adding VLAN 0 to HW filter on device bond0 [ 159.219109] 8021q: adding VLAN 0 to HW filter on device bond0 [ 159.260141] 8021q: adding VLAN 0 to HW filter on device bond0 [ 159.350595] 8021q: adding VLAN 0 to HW filter on device bond0 [ 159.440595] 8021q: adding VLAN 0 to HW filter on device bond0 [ 159.586975] 8021q: adding VLAN 0 to HW filter on device bond0 [ 159.691590] 8021q: adding VLAN 0 to HW filter on device bond0 [ 159.720203] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 159.848511] 8021q: adding VLAN 0 to HW filter on device bond0 [ 160.084758] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 160.188152] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 160.238599] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 160.410868] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 160.569680] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 160.647209] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 160.660641] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 160.667264] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 160.683246] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 160.795328] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 160.959991] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 160.967725] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 160.980091] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 161.125236] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 161.131554] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 161.143905] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 161.245683] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 161.259788] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 161.274346] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 161.464446] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 161.470796] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 161.481820] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 161.550860] 8021q: adding VLAN 0 to HW filter on device team0 [ 161.583444] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 161.591393] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 161.601389] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 161.609393] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 161.644769] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 161.653263] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 161.937238] 8021q: adding VLAN 0 to HW filter on device team0 [ 161.959674] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 161.966205] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 161.995903] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 162.134589] 8021q: adding VLAN 0 to HW filter on device team0 [ 162.186120] 8021q: adding VLAN 0 to HW filter on device team0 [ 162.397563] 8021q: adding VLAN 0 to HW filter on device team0 [ 162.505562] 8021q: adding VLAN 0 to HW filter on device team0 [ 162.529437] 8021q: adding VLAN 0 to HW filter on device team0 [ 162.908434] 8021q: adding VLAN 0 to HW filter on device team0 19:45:16 executing program 7: r0 = socket$pppoe(0x18, 0x1, 0x0) ioctl$PPPIOCGCHAN(r0, 0x80047437, &(0x7f0000000200)) 19:45:16 executing program 7: bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x3, &(0x7f0000001fd8)=@framed={{0xffffffb4, 0x7a, 0x0, 0x0, 0x0, 0xffffff9f}, [], {0x1018}}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195}, 0x48) 19:45:16 executing program 1: r0 = socket$inet(0x2, 0x1, 0x0) r1 = dup(r0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) connect$inet(r0, &(0x7f0000000780)={0x2, 0x4e23}, 0x10) sendto$inet(r1, &(0x7f0000000200)="96", 0x1, 0x4001, &(0x7f0000000240)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000266ffc), 0x4) sendto$inet(r1, &(0x7f0000000080)="c5", 0x1, 0x0, &(0x7f0000000140)={0x2, 0x0, @broadcast=0xffffffff}, 0x10) recvmsg(r1, &(0x7f0000000180)={&(0x7f0000000280)=@ethernet={0x0, @remote}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000300)=""/116, 0x74}], 0x1, &(0x7f0000001400)=""/4096, 0x1000}, 0x0) 19:45:16 executing program 7: r0 = gettid() capget(&(0x7f0000000000)={0x20080522, r0}, &(0x7f0000000080)) 19:45:16 executing program 1: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x200000002, 0x70, 0x0, 0x108000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000c86f88)={0x2, 0x70, 0xfffffffffffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00001bf000/0x1000)=nil, 0x1000, 0x0, 0x4011, r1, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) 19:45:16 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00003cefe4)={&(0x7f0000000300)={0x10, 0x34000, 0x16fd000000000000}, 0xc, &(0x7f0000007ff0)={&(0x7f0000000180)={0x2b7, 0x2e, 0x6fd, 0x0, 0x0, {0x2003}, [@nested={0x25, 0x0, [@typed={0x8, 0x9, @ipv4}]}]}, 0xffce}, 0x1}, 0x0) 19:45:17 executing program 7: bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x0, 0x1, &(0x7f0000001fe8)=ANY=[@ANYBLOB="00000000000004000c"], &(0x7f0000003ff6)='syzkaller\x00', 0x0, 0xc3, &(0x7f0000009f3d)=""/195}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x3, &(0x7f0000001fd8)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0xffffff94}, [], {0x95}}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195}, 0x48) 19:45:17 executing program 0: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @multicast2=0xe0000002}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f00006dc000)=[{0x6, 0x0, 0x0, 0xa1}]}, 0x10) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000f59000), 0x4) sendto$inet(r0, &(0x7f0000000080), 0x6b, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x4e23, @loopback=0x7f000001}, 0x10) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000080)=0x500, 0x4) sendto$inet(r0, &(0x7f0000001a40)="8f2ccc937d750b5846cd6e78e722e83f5d38bff0b3c911b42cb6a9e8fac7f8bcf3e63c7c58e2caf900e497171bcda398b4284db5fb71e52f23318a534e1dfe5fe9a9b0ec10e93ba4d88c627638f89b4a91f0abba42c6c7cf759f96bf9f6eeccfdb54ef473184a312159b5eadf71cd225a3c905b1a444236edd442b447e70722bcc10", 0x82, 0x0, &(0x7f0000001b00)={0x2}, 0x10) sendto$inet(r0, &(0x7f00006fd000)="c3401c344654f3c7d9b41ba48c8e399aa4eedc3d6bd8ebd65c856a27d61154adc2b2a9763ae0201c0d32e11f38e9dd18c58f6bd779650fc30f93653bdaecf323c9f6502ceab47e58114347b289546465a5eb278de12b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d08d4154004997e317b79", 0x82, 0x81, &(0x7f0000000180)={0x2, 0x0, @rand_addr}, 0x10) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x2a, &(0x7f00000000c0)={0x0, {{0x2, 0x0, @multicast2=0xe0000002}}}, 0x88) sendto$inet(r0, &(0x7f0000000040)='L', 0x1, 0x0, &(0x7f0000000200)={0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) [ 168.164555] netlink: 663 bytes leftover after parsing attributes in process `syz-executor2'. 19:45:17 executing program 3: r0 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f00000000c0)=@req3={0x46, 0x0, 0x3, 0xffff}, 0x1c) r1 = epoll_create(0x231a) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) writev(r0, &(0x7f0000001500)=[{&(0x7f0000000500)="b5", 0x1}], 0x1) 19:45:17 executing program 6: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f000000b000)={&(0x7f000000f000)={0x10}, 0xc, &(0x7f00005a6ff0)={&(0x7f0000000140)=ANY=[@ANYBLOB="cc0000001b0009010000000000000000ffffffff0000000000000000000000007f0000010000000000000000000000000000f5000000000000000000000000001c95147bc9d56060262bb60e1f307ed03fb62011aafd9136eb8056d492680e8f0c0c8fd3bd2142b19785b06da5c9e4df7ecfbc4e2f1f33729122a1213e61c0066c0060bfaef9636e0b67e6556e46347120d6651d1e73669818f4a793b08a8ed7fa95d22415174a765059e7ac59aba0475a88ca534dba3535750294c8cd44ec2721599c095a6f4d309b18bd18601324d30732d3afb17b027c6c", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\f\x00\b\x00\b\x00\b\x00\x00\x00\x00\x00'], 0x3}, 0x1}, 0x0) 19:45:17 executing program 7: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x5, 0x0) bind$inet6(r0, &(0x7f0000ef8cfd)={0xa, 0x4e23}, 0x1c) listen(r0, 0xffffffffffffffe0) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r1, 0x84, 0x6b, &(0x7f0000000040)=[@in6={0xa, 0x4e23, 0x0, @loopback={0x0, 0xac14140b}}], 0x1c) 19:45:17 executing program 2: bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x0, 0x1, &(0x7f0000001fe8)=ANY=[@ANYBLOB="00000000000004000c"], &(0x7f0000003ff6)='syzkaller\x00', 0x0, 0xc3, &(0x7f0000009f3d)=""/195}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x5, &(0x7f0000001fd8)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x3c}, [@ldst={0x7}], {0x95}}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0x437, &(0x7f000000cf3d)=""/195}, 0x48) [ 168.612241] ================================================================== [ 168.619669] BUG: KMSAN: uninit-value in copy_siginfo_to_user+0x9cd/0x12c0 [ 168.626601] CPU: 1 PID: 6649 Comm: syz-executor5 Not tainted 4.17.0+ #17 [ 168.633445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 168.642805] Call Trace: [ 168.645404] dump_stack+0x185/0x1d0 [ 168.649044] kmsan_report+0x188/0x2a0 [ 168.652851] __msan_warning_32+0x70/0xc0 [ 168.656925] copy_siginfo_to_user+0x9cd/0x12c0 [ 168.661519] ? kmsan_internal_unpoison_shadow+0x83/0xe0 [ 168.666898] ptrace_request+0x1ec5/0x2270 [ 168.671060] ? wait_task_inactive+0x3a7/0x9c0 [ 168.675566] ? _raw_spin_lock_irqsave+0x45/0xf0 [ 168.680243] ? wait_task_inactive+0x3a7/0x9c0 [ 168.684757] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 168.690220] ? wait_task_inactive+0x80e/0x9c0 [ 168.694740] arch_ptrace+0xbcc/0x12c0 [ 168.698548] ? ptrace_check_attach+0x182/0x5e0 [ 168.703141] __se_sys_ptrace+0x309/0x850 [ 168.707223] __x64_sys_ptrace+0x11e/0x170 [ 168.711389] ? ptrace_regset+0x840/0x840 [ 168.715456] do_syscall_64+0x15b/0x230 [ 168.719362] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 168.724550] RIP: 0033:0x455ab9 [ 168.727736] RSP: 002b:00007fb9460b1c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000065 [ 168.735448] RAX: ffffffffffffffda RBX: 00007fb9460b26d4 RCX: 0000000000455ab9 [ 168.742719] RDX: 0000000020000004 RSI: 0000000000000001 RDI: 0000000000004209 [ 168.749987] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 168.757268] R10: 0000000020000100 R11: 0000000000000246 R12: 00000000ffffffff [ 168.764544] R13: 00000000004c0973 R14: 00000000004d06b0 R15: 0000000000000000 [ 168.771997] [ 168.773620] Local variable description: ----kiov@ptrace_request [ 168.779667] Variable was created at: [ 168.783402] ptrace_request+0x194/0x2270 [ 168.787478] arch_ptrace+0xbcc/0x12c0 [ 168.791270] ================================================================== [ 168.798630] Disabling lock debugging due to kernel taint [ 168.804072] Kernel panic - not syncing: panic_on_warn set ... [ 168.804072] [ 168.811427] CPU: 1 PID: 6649 Comm: syz-executor5 Tainted: G B 4.17.0+ #17 [ 168.819637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 168.828969] Call Trace: [ 168.831553] dump_stack+0x185/0x1d0 [ 168.835175] panic+0x3d0/0x990 [ 168.838362] kmsan_report+0x29e/0x2a0 [ 168.842157] __msan_warning_32+0x70/0xc0 [ 168.846209] copy_siginfo_to_user+0x9cd/0x12c0 [ 168.850774] ? kmsan_internal_unpoison_shadow+0x83/0xe0 [ 168.856127] ptrace_request+0x1ec5/0x2270 [ 168.860279] ? wait_task_inactive+0x3a7/0x9c0 [ 168.864780] ? _raw_spin_lock_irqsave+0x45/0xf0 [ 168.869442] ? wait_task_inactive+0x3a7/0x9c0 [ 168.873934] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 168.879382] ? wait_task_inactive+0x80e/0x9c0 [ 168.883885] arch_ptrace+0xbcc/0x12c0 [ 168.887672] ? ptrace_check_attach+0x182/0x5e0 [ 168.892246] __se_sys_ptrace+0x309/0x850 [ 168.896303] __x64_sys_ptrace+0x11e/0x170 [ 168.900449] ? ptrace_regset+0x840/0x840 [ 168.904506] do_syscall_64+0x15b/0x230 [ 168.908377] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 168.913544] RIP: 0033:0x455ab9 [ 168.916710] RSP: 002b:00007fb9460b1c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000065 [ 168.924398] RAX: ffffffffffffffda RBX: 00007fb9460b26d4 RCX: 0000000000455ab9 [ 168.931648] RDX: 0000000020000004 RSI: 0000000000000001 RDI: 0000000000004209 [ 168.938900] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 168.946152] R10: 0000000020000100 R11: 0000000000000246 R12: 00000000ffffffff [ 168.953413] R13: 00000000004c0973 R14: 00000000004d06b0 R15: 0000000000000000 [ 168.961332] Dumping ftrace buffer: [ 168.964905] (ftrace buffer empty) [ 168.968597] Kernel Offset: disabled [ 168.972200] Rebooting in 86400 seconds..