Warning: Permanently added '10.128.10.26' (ECDSA) to the list of known hosts. 2018/11/12 23:31:41 fuzzer started 2018/11/12 23:31:46 dialing manager at 10.128.0.26:46323 [ 83.250338] ld (6727) used greatest stack depth: 52992 bytes left 2018/11/12 23:31:46 syscalls: 1 2018/11/12 23:31:46 code coverage: enabled 2018/11/12 23:31:46 comparison tracing: CONFIG_KCOV_ENABLE_COMPARISONS is not enabled 2018/11/12 23:31:46 setuid sandbox: enabled 2018/11/12 23:31:46 namespace sandbox: enabled 2018/11/12 23:31:46 Android sandbox: /sys/fs/selinux/policy does not exist 2018/11/12 23:31:46 fault injection: enabled 2018/11/12 23:31:46 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2018/11/12 23:31:46 net packed injection: enabled 2018/11/12 23:31:46 net device setup: enabled 23:34:14 executing program 0: seccomp(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x6, 0x0, 0x0, 0xfffffffffffffffe}]}) getdents(0xffffffffffffffff, &(0x7f00000001c0)=""/166, 0xa6) [ 232.659307] IPVS: ftp: loaded support on port[0] = 21 [ 235.135704] bridge0: port 1(bridge_slave_0) entered blocking state [ 235.142290] bridge0: port 1(bridge_slave_0) entered disabled state [ 235.151121] device bridge_slave_0 entered promiscuous mode [ 235.329451] bridge0: port 2(bridge_slave_1) entered blocking state [ 235.336030] bridge0: port 2(bridge_slave_1) entered disabled state [ 235.344878] device bridge_slave_1 entered promiscuous mode [ 235.577345] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 235.746963] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 236.180760] bond0: Enslaving bond_slave_0 as an active interface with an up link 23:34:19 executing program 1: bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000180)={0xffffffffffffffff, &(0x7f0000000040), &(0x7f0000000080)}, 0x20) r0 = socket$nl_route(0x10, 0x3, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x0, 0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="0000000000000000000000e6"], &(0x7f0000000240)="73797a6b616c6c657200d0600ccd46b0699b4c1aae29c82600777ad18bea4c3727c0a49743ca9ef55adc607d69c151111f8ed1c4b040639eca77bdd9ce7f8c2bd5fdea3e5a11527f5d845af42c3f62b556240a5da7c8960e4602c6222c31c6307010a45738be66bf584514db9bf27b2a9a656ed552a1eadf10fc29c400a3bf8f04e29fa6a755218c6b2e3979c554b4a5f20e5a4846e1ebca30dd010c052d420359717d4dea92f8b6ec854e3490e255"}, 0x48) ioctl$sock_ifreq(r0, 0x89f9, &(0x7f0000000180)={'sit0\x00', @ifru_flags}) [ 236.328740] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 236.510955] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 236.518165] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 236.734385] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 236.741458] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 237.144303] IPVS: ftp: loaded support on port[0] = 21 [ 237.549844] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 237.558172] team0: Port device team_slave_0 added [ 237.794887] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 237.803043] team0: Port device team_slave_1 added [ 237.975666] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 237.982988] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 237.992143] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 238.229392] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 238.236584] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 238.245714] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 238.519268] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 238.527132] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 238.536747] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 238.695756] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 238.703588] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 238.712927] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 240.943104] bridge0: port 1(bridge_slave_0) entered blocking state [ 240.949587] bridge0: port 1(bridge_slave_0) entered disabled state [ 240.958200] device bridge_slave_0 entered promiscuous mode [ 241.200698] bridge0: port 2(bridge_slave_1) entered blocking state [ 241.207320] bridge0: port 2(bridge_slave_1) entered forwarding state [ 241.214487] bridge0: port 1(bridge_slave_0) entered blocking state [ 241.220979] bridge0: port 1(bridge_slave_0) entered forwarding state [ 241.230032] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 241.250414] bridge0: port 2(bridge_slave_1) entered blocking state [ 241.257084] bridge0: port 2(bridge_slave_1) entered disabled state [ 241.265954] device bridge_slave_1 entered promiscuous mode [ 241.485915] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 241.766589] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 241.932334] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready 23:34:25 executing program 2: seccomp(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x6, 0x0, 0x0, 0xfffffffffffffffe}]}) fanotify_mark(0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00') [ 242.648693] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 242.942811] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 243.253841] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 243.260915] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 243.269289] IPVS: ftp: loaded support on port[0] = 21 [ 243.560524] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 243.567780] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 244.494051] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 244.502431] team0: Port device team_slave_0 added [ 244.809393] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 244.817543] team0: Port device team_slave_1 added [ 245.032104] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 245.043516] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 245.052410] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 245.263857] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 245.270946] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 245.280002] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 245.504027] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 245.511681] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 245.520866] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 245.876693] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 245.884506] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 245.893794] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 247.831741] bridge0: port 1(bridge_slave_0) entered blocking state [ 247.838441] bridge0: port 1(bridge_slave_0) entered disabled state [ 247.847102] device bridge_slave_0 entered promiscuous mode [ 248.147119] bridge0: port 2(bridge_slave_1) entered blocking state [ 248.153780] bridge0: port 2(bridge_slave_1) entered disabled state [ 248.162502] device bridge_slave_1 entered promiscuous mode [ 248.451114] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 248.692747] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 249.303289] bridge0: port 2(bridge_slave_1) entered blocking state [ 249.309780] bridge0: port 2(bridge_slave_1) entered forwarding state [ 249.316895] bridge0: port 1(bridge_slave_0) entered blocking state [ 249.323461] bridge0: port 1(bridge_slave_0) entered forwarding state [ 249.332488] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 249.665892] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 249.870869] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 250.169946] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 250.177138] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 250.203637] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 250.473551] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 250.480620] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready 23:34:34 executing program 3: seccomp(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x6, 0x0, 0x0, 0xfffffffffffffffe}]}) ioprio_get$pid(0x1, 0x0) [ 251.342546] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 251.350706] team0: Port device team_slave_0 added [ 251.736855] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 251.745113] team0: Port device team_slave_1 added [ 252.102408] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 252.109510] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 252.118551] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 252.466333] IPVS: ftp: loaded support on port[0] = 21 [ 252.469975] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 252.478765] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 252.488296] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 252.869601] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 252.877497] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 252.886697] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 253.233806] 8021q: adding VLAN 0 to HW filter on device bond0 [ 253.266912] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 253.274695] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 253.283825] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 254.577978] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 255.921514] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 255.928112] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 255.936448] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 257.200226] 8021q: adding VLAN 0 to HW filter on device team0 [ 257.212353] bridge0: port 2(bridge_slave_1) entered blocking state [ 257.218845] bridge0: port 2(bridge_slave_1) entered forwarding state [ 257.225931] bridge0: port 1(bridge_slave_0) entered blocking state [ 257.232555] bridge0: port 1(bridge_slave_0) entered forwarding state [ 257.241337] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 258.030724] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 258.520713] bridge0: port 1(bridge_slave_0) entered blocking state [ 258.527297] bridge0: port 1(bridge_slave_0) entered disabled state [ 258.536019] device bridge_slave_0 entered promiscuous mode [ 258.908167] bridge0: port 2(bridge_slave_1) entered blocking state [ 258.914849] bridge0: port 2(bridge_slave_1) entered disabled state [ 258.923527] device bridge_slave_1 entered promiscuous mode [ 259.250846] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 259.574710] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 260.637578] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 261.074988] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 261.385776] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 261.392932] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 261.728721] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 261.736019] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 262.726088] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 262.734496] team0: Port device team_slave_0 added 23:34:46 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000100)='pagemap\x00') pread64(r0, &(0x7f0000e3e000)=""/8, 0x8, 0x1000000) [ 263.100313] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 263.108498] team0: Port device team_slave_1 added [ 263.460565] 8021q: adding VLAN 0 to HW filter on device bond0 [ 263.493956] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 263.501045] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 263.510056] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 263.922550] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 263.929640] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 263.938663] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 264.362230] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 264.369971] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 264.379105] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 264.579890] IPVS: ftp: loaded support on port[0] = 21 [ 264.844195] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 264.851821] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 264.861077] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 264.982081] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 266.218367] kauditd_printk_skb: 3 callbacks suppressed [ 266.218414] audit: type=1326 audit(1542065689.268:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=7419 comm="syz-executor0" exe="/root/syz-executor0" sig=31 arch=c000003e syscall=228 compat=0 ip=0x45a3ca code=0xffff0000 [ 266.628822] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 266.635380] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 266.643443] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 266.947749] audit: type=1326 audit(1542065689.998:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=7419 comm="syz-executor0" exe="/root/syz-executor0" sig=31 arch=c000003e syscall=228 compat=0 ip=0x45a3ca code=0xffff0000 23:34:50 executing program 0: seccomp(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x6, 0x0, 0x0, 0xfffffffffffffffe}]}) creat(&(0x7f00000002c0)='./file0\x00', 0x0) stat(&(0x7f0000000400)='./file0\x00', &(0x7f0000000440)) [ 267.346394] audit: type=1326 audit(1542065690.398:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=7447 comm="syz-executor0" exe="/root/syz-executor0" sig=31 arch=c000003e syscall=228 compat=0 ip=0x45a3ca code=0xffff0000 [ 268.127117] audit: type=1326 audit(1542065691.178:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=7447 comm="syz-executor0" exe="/root/syz-executor0" sig=31 arch=c000003e syscall=228 compat=0 ip=0x45a3ca code=0xffff0000 [ 268.363247] 8021q: adding VLAN 0 to HW filter on device team0 23:34:51 executing program 0: r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dlm-control\x00', 0x0, 0x0) ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r0, 0x8008ae9d, &(0x7f0000000140)=""/233) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r1, 0x20000000008912, &(0x7f00000000c0)="0a5c2d0240316285717070") r2 = dup2(r1, r1) ioctl$BLKPBSZGET(r2, 0x127b, &(0x7f0000000080)) r3 = socket$inet(0x10, 0x10000000003, 0xc) sendmsg(r3, &(0x7f0000011fc8)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000100a07121dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0) [ 268.882501] netlink: 20 bytes leftover after parsing attributes in process `syz-executor0'. 23:34:52 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000008000)={0x8, {{0x2, 0x0, @multicast2}}}, 0x90) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f00000000c0)={0x6, {{0x2, 0x0, @multicast1}}}, 0x88) 23:34:52 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000008000)={0x8, {{0x2, 0x0, @multicast2}}}, 0x90) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f00000000c0)={0x6, {{0x2, 0x0, @multicast1}}}, 0x88) [ 269.666335] bridge0: port 2(bridge_slave_1) entered blocking state [ 269.672920] bridge0: port 2(bridge_slave_1) entered forwarding state [ 269.679882] bridge0: port 1(bridge_slave_0) entered blocking state [ 269.686505] bridge0: port 1(bridge_slave_0) entered forwarding state [ 269.695049] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready 23:34:53 executing program 0: r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$ALG_SET_AEAD_AUTHSIZE(r0, 0x117, 0x5, 0x0, 0x0) r2 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x1, 0x44000) ioctl$VIDIOC_ENUMAUDOUT(r2, 0xc0345642, &(0x7f0000000040)={0x1, "2c860ce1c06f242920632ce888e5bf0a266f763dbce2015297f0126a08affaa8", 0x3, 0x1}) ioctl(r1, 0x20000000008912, &(0x7f00000001c0)="0a5c2d0240316285717070") sendto$inet6(r0, &(0x7f0000bc2000)="81", 0x1, 0x40, &(0x7f0000606fe4)={0xa, 0x0, 0x0, @remote, 0x1}, 0x1c) sendmmsg(r0, &(0x7f0000e8e000)=[{{&(0x7f00008b6000)=@in6={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xffffffffffffffff}, 0x1}, 0x80, &(0x7f0000231ff0)=[{&(0x7f0000f89000)='t', 0x1}], 0x1, &(0x7f0000dffeb8)}}], 0x1, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000080)={{{@in6, @in=@loopback}}, {{@in=@local}, 0x0, @in6=@mcast2}}, &(0x7f0000000180)=0xe8) setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f00006a7ffc), 0x4) [ 270.234032] not chained 10000 origins [ 270.237915] CPU: 1 PID: 7519 Comm: ip Not tainted 4.20.0-rc2+ #84 [ 270.244164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 270.253539] Call Trace: [ 270.256179] dump_stack+0x32d/0x480 [ 270.259860] kmsan_internal_chain_origin+0x222/0x240 [ 270.265027] ? save_stack_trace+0xc6/0x110 [ 270.269295] ? __irqentry_text_end+0x1fa056/0x1fa056 [ 270.274436] ? kmsan_internal_chain_origin+0x1e3/0x240 [ 270.279768] ? kmsan_internal_chain_origin+0x136/0x240 [ 270.285075] ? __msan_chain_origin+0x6d/0xb0 [ 270.289518] ? save_stack_trace+0xfa/0x110 [ 270.293776] ? kmsan_internal_chain_origin+0x136/0x240 [ 270.299078] ? kmsan_memcpy_origins+0x13d/0x190 [ 270.303782] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 270.309254] ? in_task_stack+0x12c/0x210 [ 270.313358] __msan_chain_origin+0x6d/0xb0 [ 270.317624] ? br_port_fill_attrs+0x42b/0x1ea0 [ 270.322242] __save_stack_trace+0x8be/0xc60 [ 270.326591] ? get_page_from_freelist+0x1617/0x1c90 [ 270.331665] ? br_port_fill_attrs+0x42b/0x1ea0 [ 270.336280] save_stack_trace+0xc6/0x110 [ 270.340372] kmsan_internal_chain_origin+0x136/0x240 [ 270.345523] ? kmsan_internal_chain_origin+0x136/0x240 [ 270.350826] ? kmsan_memcpy_origins+0x13d/0x190 [ 270.355516] ? __msan_memcpy+0x6f/0x80 [ 270.359427] ? nla_put+0x20a/0x2d0 [ 270.362989] ? br_port_fill_attrs+0x366/0x1ea0 [ 270.367592] ? br_port_fill_slave_info+0xff/0x120 [ 270.372460] ? rtnl_fill_ifinfo+0x5b6e/0x6d80 [ 270.376975] ? rtnl_dump_ifinfo+0x18b5/0x2140 [ 270.381495] ? netlink_dump+0xc79/0x1c90 [ 270.385578] ? netlink_recvmsg+0xec2/0x19d0 [ 270.389927] ? sock_recvmsg+0x1d1/0x230 [ 270.393923] ? ___sys_recvmsg+0x444/0xae0 [ 270.398088] ? __se_sys_recvmsg+0x2fa/0x450 [ 270.402432] ? __x64_sys_recvmsg+0x4a/0x70 [ 270.406691] ? do_syscall_64+0xcf/0x110 [ 270.410702] ? entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 270.416100] ? __msan_poison_alloca+0x1e0/0x270 [ 270.420834] ? kmsan_set_origin+0x7f/0x100 [ 270.425098] ? kmsan_internal_unpoison_shadow+0x83/0xd0 [ 270.430515] kmsan_memcpy_origins+0x13d/0x190 [ 270.435050] __msan_memcpy+0x6f/0x80 [ 270.438793] nla_put+0x20a/0x2d0 [ 270.442200] br_port_fill_attrs+0x42b/0x1ea0 [ 270.446656] br_port_fill_slave_info+0xff/0x120 [ 270.451358] ? br_port_get_slave_size+0x30/0x30 [ 270.456050] rtnl_fill_ifinfo+0x5b6e/0x6d80 [ 270.460448] rtnl_dump_ifinfo+0x18b5/0x2140 [ 270.464913] ? kmsan_internal_unpoison_shadow+0x83/0xd0 [ 270.470322] ? rtnl_getlink+0xec0/0xec0 [ 270.474322] netlink_dump+0xc79/0x1c90 [ 270.478276] netlink_recvmsg+0xec2/0x19d0 [ 270.482488] sock_recvmsg+0x1d1/0x230 [ 270.486714] ? netlink_sendmsg+0x1440/0x1440 [ 270.491166] ___sys_recvmsg+0x444/0xae0 [ 270.495201] ? __msan_poison_alloca+0x1e0/0x270 [ 270.499916] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 270.505301] ? __fdget+0x23c/0x440 [ 270.508879] __se_sys_recvmsg+0x2fa/0x450 [ 270.513076] __x64_sys_recvmsg+0x4a/0x70 [ 270.517167] do_syscall_64+0xcf/0x110 [ 270.520997] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 270.526210] RIP: 0033:0x7f9edebcf210 [ 270.529948] Code: 31 d2 48 29 c2 64 89 11 48 83 c8 ff eb ea 90 90 90 90 90 90 90 90 90 90 90 90 83 3d e5 d3 2a 00 00 75 10 b8 2f 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 6e bb 00 00 48 89 04 24 [ 270.548865] RSP: 002b:00007ffd287f8f18 EFLAGS: 00000246 ORIG_RAX: 000000000000002f [ 270.556599] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9edebcf210 [ 270.563888] RDX: 0000000000000000 RSI: 00007ffd287f8f60 RDI: 0000000000000003 [ 270.571181] RBP: 0000000000001c24 R08: 00007f9edee78ec8 R09: 00007f9edec15c00 [ 270.578472] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006395c0 [ 270.585759] R13: 00007ffd287fcff0 R14: 0000000000001c24 R15: 00007ffd287fabc4 [ 270.593068] Uninit was stored to memory at: [ 270.597423] kmsan_internal_chain_origin+0x136/0x240 [ 270.602552] __msan_chain_origin+0x6d/0xb0 [ 270.606808] __save_stack_trace+0x8be/0xc60 [ 270.611169] save_stack_trace+0xc6/0x110 [ 270.615259] kmsan_internal_chain_origin+0x136/0x240 [ 270.620383] kmsan_memcpy_origins+0x13d/0x190 [ 270.624899] __msan_memcpy+0x6f/0x80 [ 270.628638] nla_put+0x20a/0x2d0 [ 270.632030] br_port_fill_attrs+0x366/0x1ea0 [ 270.636461] br_port_fill_slave_info+0xff/0x120 [ 270.641162] rtnl_fill_ifinfo+0x5b6e/0x6d80 [ 270.645509] rtnl_dump_ifinfo+0x18b5/0x2140 [ 270.649852] netlink_dump+0xc79/0x1c90 [ 270.653761] netlink_recvmsg+0xec2/0x19d0 [ 270.657933] sock_recvmsg+0x1d1/0x230 [ 270.661751] ___sys_recvmsg+0x444/0xae0 [ 270.665743] __se_sys_recvmsg+0x2fa/0x450 [ 270.669907] __x64_sys_recvmsg+0x4a/0x70 [ 270.673987] do_syscall_64+0xcf/0x110 [ 270.677811] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 270.683010] [ 270.684644] Uninit was stored to memory at: [ 270.689004] kmsan_internal_chain_origin+0x136/0x240 [ 270.694138] __msan_chain_origin+0x6d/0xb0 [ 270.698393] __save_stack_trace+0x8be/0xc60 [ 270.702736] save_stack_trace+0xc6/0x110 [ 270.706826] kmsan_internal_chain_origin+0x136/0x240 [ 270.711953] kmsan_memcpy_origins+0x13d/0x190 [ 270.716471] __msan_memcpy+0x6f/0x80 [ 270.720208] nla_put+0x20a/0x2d0 [ 270.723591] br_port_fill_attrs+0x366/0x1ea0 [ 270.728018] br_port_fill_slave_info+0xff/0x120 [ 270.732708] rtnl_fill_ifinfo+0x5b6e/0x6d80 [ 270.737048] rtnl_dump_ifinfo+0x18b5/0x2140 [ 270.741386] netlink_dump+0xc79/0x1c90 [ 270.745297] netlink_recvmsg+0xec2/0x19d0 [ 270.749467] sock_recvmsg+0x1d1/0x230 [ 270.753290] ___sys_recvmsg+0x444/0xae0 [ 270.757284] __se_sys_recvmsg+0x2fa/0x450 [ 270.761450] __x64_sys_recvmsg+0x4a/0x70 [ 270.765529] do_syscall_64+0xcf/0x110 [ 270.769527] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 270.774724] [ 270.776360] Uninit was stored to memory at: [ 270.780706] kmsan_internal_chain_origin+0x136/0x240 [ 270.785838] __msan_chain_origin+0x6d/0xb0 [ 270.790093] __save_stack_trace+0x8be/0xc60 [ 270.794445] save_stack_trace+0xc6/0x110 [ 270.798529] kmsan_internal_chain_origin+0x136/0x240 [ 270.803660] kmsan_memcpy_origins+0x13d/0x190 [ 270.808180] __msan_memcpy+0x6f/0x80 [ 270.811918] nla_put+0x20a/0x2d0 [ 270.815304] br_port_fill_attrs+0x366/0x1ea0 [ 270.819730] br_port_fill_slave_info+0xff/0x120 [ 270.824425] rtnl_fill_ifinfo+0x5b6e/0x6d80 [ 270.828769] rtnl_dump_ifinfo+0x18b5/0x2140 [ 270.833111] netlink_dump+0xc79/0x1c90 [ 270.837024] netlink_recvmsg+0xec2/0x19d0 [ 270.841205] sock_recvmsg+0x1d1/0x230 [ 270.845031] ___sys_recvmsg+0x444/0xae0 [ 270.849023] __se_sys_recvmsg+0x2fa/0x450 [ 270.853196] __x64_sys_recvmsg+0x4a/0x70 [ 270.857280] do_syscall_64+0xcf/0x110 [ 270.861103] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 270.866306] [ 270.867945] Uninit was stored to memory at: [ 270.872289] kmsan_internal_chain_origin+0x136/0x240 [ 270.877414] __msan_chain_origin+0x6d/0xb0 [ 270.881675] __save_stack_trace+0x8be/0xc60 [ 270.886017] save_stack_trace+0xc6/0x110 [ 270.890104] kmsan_internal_chain_origin+0x136/0x240 [ 270.895238] kmsan_memcpy_origins+0x13d/0x190 [ 270.899753] __msan_memcpy+0x6f/0x80 [ 270.903493] nla_put+0x20a/0x2d0 [ 270.906881] br_port_fill_attrs+0x366/0x1ea0 [ 270.911307] br_port_fill_slave_info+0xff/0x120 [ 270.915997] rtnl_fill_ifinfo+0x5b6e/0x6d80 [ 270.920337] rtnl_dump_ifinfo+0x18b5/0x2140 [ 270.924685] netlink_dump+0xc79/0x1c90 [ 270.928590] netlink_recvmsg+0xec2/0x19d0 [ 270.932764] sock_recvmsg+0x1d1/0x230 [ 270.936583] ___sys_recvmsg+0x444/0xae0 [ 270.940579] __se_sys_recvmsg+0x2fa/0x450 [ 270.944744] __x64_sys_recvmsg+0x4a/0x70 [ 270.948826] do_syscall_64+0xcf/0x110 [ 270.952649] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 270.957849] [ 270.959488] Uninit was stored to memory at: [ 270.963832] kmsan_internal_chain_origin+0x136/0x240 [ 270.968958] __msan_chain_origin+0x6d/0xb0 [ 270.973223] __save_stack_trace+0x8be/0xc60 [ 270.977567] save_stack_trace+0xc6/0x110 [ 270.981650] kmsan_internal_chain_origin+0x136/0x240 [ 270.986778] kmsan_memcpy_origins+0x13d/0x190 [ 270.991295] __msan_memcpy+0x6f/0x80 [ 270.995058] nla_put+0x20a/0x2d0 [ 270.998443] br_port_fill_attrs+0x366/0x1ea0 [ 271.002875] br_port_fill_slave_info+0xff/0x120 [ 271.007562] rtnl_fill_ifinfo+0x5b6e/0x6d80 [ 271.011900] rtnl_dump_ifinfo+0x18b5/0x2140 [ 271.016247] netlink_dump+0xc79/0x1c90 [ 271.020159] netlink_recvmsg+0xec2/0x19d0 [ 271.024334] sock_recvmsg+0x1d1/0x230 [ 271.028160] ___sys_recvmsg+0x444/0xae0 [ 271.032162] __se_sys_recvmsg+0x2fa/0x450 [ 271.036328] __x64_sys_recvmsg+0x4a/0x70 [ 271.040409] do_syscall_64+0xcf/0x110 [ 271.044239] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 271.049432] [ 271.051072] Uninit was stored to memory at: [ 271.055415] kmsan_internal_chain_origin+0x136/0x240 [ 271.060538] __msan_chain_origin+0x6d/0xb0 [ 271.064810] __save_stack_trace+0x8be/0xc60 [ 271.069162] save_stack_trace+0xc6/0x110 [ 271.073246] kmsan_internal_chain_origin+0x136/0x240 [ 271.078378] kmsan_memcpy_origins+0x13d/0x190 [ 271.082900] __msan_memcpy+0x6f/0x80 [ 271.086637] nla_put+0x20a/0x2d0 [ 271.090031] br_port_fill_attrs+0x366/0x1ea0 [ 271.094459] br_port_fill_slave_info+0xff/0x120 [ 271.099160] rtnl_fill_ifinfo+0x5b6e/0x6d80 [ 271.103512] rtnl_dump_ifinfo+0x18b5/0x2140 [ 271.107857] netlink_dump+0xc79/0x1c90 [ 271.111761] netlink_recvmsg+0xec2/0x19d0 [ 271.115930] sock_recvmsg+0x1d1/0x230 [ 271.119749] ___sys_recvmsg+0x444/0xae0 [ 271.123746] __se_sys_recvmsg+0x2fa/0x450 [ 271.127912] __x64_sys_recvmsg+0x4a/0x70 [ 271.131995] do_syscall_64+0xcf/0x110 [ 271.135823] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 271.141019] [ 271.142665] Uninit was stored to memory at: [ 271.147013] kmsan_internal_chain_origin+0x136/0x240 [ 271.152153] __msan_chain_origin+0x6d/0xb0 [ 271.156436] __save_stack_trace+0x8be/0xc60 [ 271.160781] save_stack_trace+0xc6/0x110 [ 271.164871] kmsan_internal_chain_origin+0x136/0x240 [ 271.169996] kmsan_memcpy_origins+0x13d/0x190 [ 271.174515] __msan_memcpy+0x6f/0x80 [ 271.178286] nla_put+0x20a/0x2d0 [ 271.181683] br_port_fill_attrs+0x366/0x1ea0 [ 271.186111] br_port_fill_slave_info+0xff/0x120 [ 271.190810] rtnl_fill_ifinfo+0x5b6e/0x6d80 [ 271.195157] rtnl_dump_ifinfo+0x18b5/0x2140 [ 271.199504] netlink_dump+0xc79/0x1c90 [ 271.203413] netlink_recvmsg+0xec2/0x19d0 [ 271.208102] sock_recvmsg+0x1d1/0x230 [ 271.211932] ___sys_recvmsg+0x444/0xae0 [ 271.215926] __se_sys_recvmsg+0x2fa/0x450 [ 271.220092] __x64_sys_recvmsg+0x4a/0x70 [ 271.224185] do_syscall_64+0xcf/0x110 [ 271.228012] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 271.233207] [ 271.234849] Local variable description: ----v.addr.i.i108@update_curr [ 271.241431] Variable was created at: [ 271.245173] update_curr+0x62/0x2100 [ 271.248902] pick_next_task_fair+0x29c/0x3060 [ 271.262567] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 272.134991] bridge0: port 1(bridge_slave_0) entered blocking state [ 272.141485] bridge0: port 1(bridge_slave_0) entered disabled state [ 272.150319] device bridge_slave_0 entered promiscuous mode [ 272.386353] bridge0: port 2(bridge_slave_1) entered blocking state [ 272.393164] bridge0: port 2(bridge_slave_1) entered disabled state [ 272.401703] device bridge_slave_1 entered promiscuous mode 23:34:55 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000180)={&(0x7f00000000c0), 0xc, &(0x7f0000000080)={&(0x7f0000000140)={0x14, 0x11, 0x105}, 0xfd56}}, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x0, 0x10) r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_GET_FEATURES(r2, 0x8008af00, &(0x7f0000000080)) ioctl$DRM_IOCTL_ADD_CTX(r1, 0xc0086420, &(0x7f0000000040)) 23:34:55 executing program 0: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhost-net\x00', 0x2, 0x0) ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000080)=0x200000000) write$vnet(r0, &(0x7f00000018c0)={0x1, {&(0x7f0000001640)=""/211, 0xffffff2c, &(0x7f0000001800)=""/130, 0x1, 0x2}}, 0xffffffce) ioctl$int_in(r0, 0x40000000af01, &(0x7f0000000300)) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000001740)=""/163, &(0x7f00000019c0)=""/246, &(0x7f0000000640)=""/4096}) r1 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x0, 0x0) close(r1) setsockopt$inet_mreq(r1, 0x0, 0x20, &(0x7f0000000000)={@local, @broadcast}, 0x8) clone(0x0, &(0x7f0000000280), &(0x7f0000000200), &(0x7f0000000500), &(0x7f0000000440)) socket$packet(0x11, 0x3, 0x300) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000007c0)=ANY=[]) ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f0000f1dff8)={0x0, r1}) [ 272.838514] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready 23:34:56 executing program 0: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhost-net\x00', 0x2, 0x0) ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000080)=0x200000000) write$vnet(r0, &(0x7f00000018c0)={0x1, {&(0x7f0000001640)=""/211, 0xffffff2c, &(0x7f0000001800)=""/130, 0x1, 0x2}}, 0xffffffce) ioctl$int_in(r0, 0x40000000af01, &(0x7f0000000300)) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000001740)=""/163, &(0x7f00000019c0)=""/246, &(0x7f0000000640)=""/4096}) r1 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x0, 0x0) close(r1) setsockopt$inet_mreq(r1, 0x0, 0x20, &(0x7f0000000000)={@local, @broadcast}, 0x8) clone(0x0, &(0x7f0000000280), &(0x7f0000000200), &(0x7f0000000500), &(0x7f0000000440)) socket$packet(0x11, 0x3, 0x300) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000007c0)=ANY=[]) ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f0000f1dff8)={0x0, r1}) [ 273.256832] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 274.538831] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 274.865903] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 275.190364] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 275.197609] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 275.465975] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 275.473185] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 276.107236] 8021q: adding VLAN 0 to HW filter on device bond0 [ 276.360559] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 276.368780] team0: Port device team_slave_0 added [ 276.648229] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 276.656423] team0: Port device team_slave_1 added [ 276.891518] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 276.899318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 276.908388] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 277.112109] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 277.119231] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 277.128132] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 277.280657] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 277.498273] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 277.506122] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 277.515426] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready 23:35:00 executing program 1: [ 277.800626] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 277.808498] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 277.817762] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 278.252275] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 278.259264] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 278.267175] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 278.983198] 8021q: adding VLAN 0 to HW filter on device team0 [ 280.325097] bridge0: port 2(bridge_slave_1) entered blocking state [ 280.331600] bridge0: port 2(bridge_slave_1) entered forwarding state [ 280.338690] bridge0: port 1(bridge_slave_0) entered blocking state [ 280.345270] bridge0: port 1(bridge_slave_0) entered forwarding state [ 280.353830] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 280.360405] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 281.897475] 8021q: adding VLAN 0 to HW filter on device bond0 [ 282.661456] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 283.563747] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 283.570131] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 283.578102] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 284.104634] audit: type=1326 audit(1542065707.158:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=7890 comm="syz-executor2" exe="/root/syz-executor2" sig=31 arch=c000003e syscall=228 compat=0 ip=0x45a3ca code=0xffff0000 [ 284.338091] 8021q: adding VLAN 0 to HW filter on device team0 [ 284.899186] audit: type=1326 audit(1542065707.948:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=7890 comm="syz-executor2" exe="/root/syz-executor2" sig=31 arch=c000003e syscall=228 compat=0 ip=0x45a3ca code=0xffff0000 23:35:08 executing program 2: [ 287.666350] 8021q: adding VLAN 0 to HW filter on device bond0 [ 287.945559] audit: type=1326 audit(1542065710.998:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=8005 comm="syz-executor3" exe="/root/syz-executor3" sig=31 arch=c000003e syscall=228 compat=0 ip=0x45a3ca code=0xffff0000 [ 288.082774] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 288.431406] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 288.437785] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 288.446249] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 288.738380] audit: type=1326 audit(1542065711.788:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=8005 comm="syz-executor3" exe="/root/syz-executor3" sig=31 arch=c000003e syscall=228 compat=0 ip=0x45a3ca code=0xffff0000 23:35:11 executing program 3: [ 288.834397] 8021q: adding VLAN 0 to HW filter on device team0 23:35:13 executing program 4: 23:35:13 executing program 0: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)={0x8, 0x1, 0x4000000000004, 0x1ff, 0x0, 0x1}, 0x2c) unshare(0x10000010) r1 = syz_open_dev$admmidi(&(0x7f0000000080)='/dev/admmidi#\x00', 0x7, 0x8000) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffff9c, 0x84, 0x9, &(0x7f0000000100)={0x0, @in={{0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0xe}}}, 0xfffffffffffffffa, 0x75b, 0x4, 0xfffffffffffffffb, 0x24}, &(0x7f00000001c0)=0x98) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000300)={r2, 0x101}, &(0x7f0000000340)=0x8) ioctl$KVM_PPC_GET_SMMU_INFO(r1, 0x8250aea6, &(0x7f0000000380)=""/156) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000000)={r0, &(0x7f0000000200)="5c9ea587c10232b7bef6a635aa514d0d5c154b6e7855d1049a3259b57c6522722ea32fb20b88ef8ecd9921401973f9de122e02691475563f90cb10271a804ac7939ff5dfb3bbfef5be8a23e04831b16b1cfaefaebaab185d80fcc156e7a032d1bd4586df593b77a64d9394d9318b8843fad4d80a642b4eaf5fd0d484379619cdf20207168263411a9138211e8d8861307ebf7e66ecd0a517349037f218c0ca6787273731b1387279d2e0ab3be47e5089bbd038b7f8d4fb2ac3c529046919d555a75d6552279f6411255b601134ebacb7aa7d30c433c5a707cacd9990093c6e759b13f5c6c2514cb1d8c951bde620f3d627d14f"}, 0x10) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff) 23:35:13 executing program 5: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x400000, 0x0) ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffff9c, 0xc0106426, &(0x7f0000000080)={0x6, &(0x7f0000000040)=[{}, {}, {}, {0x0}, {}, {}]}) ioctl$DRM_IOCTL_GET_SAREA_CTX(r0, 0xc010641d, &(0x7f0000000100)={r1, &(0x7f00000000c0)=""/3}) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000140)={0x2, 0x1, 0x800, 0xffffffffffff8000, 0x0}, &(0x7f0000000180)=0x10) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f00000001c0)={0x8, 0xa, 0x7, 0x8, r2}, &(0x7f0000000200)=0x10) getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000240), &(0x7f0000000280)=0x4) sendmsg$netlink(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)=[{&(0x7f00000002c0)={0x13c, 0x3b, 0x4, 0x70bd2b, 0x25dfdbfc, "", [@generic="9044fbd7f6de202b4cf9e27e4200cb2b4df599a018a0e7c819e90a67c5d1b3a7c161680878aa88e40d43f3cfa9b91b0a10ff06b9fe478ebdb3fb510acb3e9891c24b2975c9bfc0a9bd25cb78984eade452f971c419c49bbe916af0371ff74f05704250a6f8d4011a29a4e991a173a82fc9e02e64cb7a9391e27f63df2b7c0cd06b9f77174739b0629d19ba4bb7074538f4a660b4b6189f942c151cbb", @generic="353628731fed45032484733c522d27842355bb55684aeccba748ead76f968b57e316fa91a6982fd51794b605d29012b0bdc1381fb7ea3c7921b632d632423c6dc412c3ade60f95632bb81aa49715503485b1d703d16f89fa835b9f66b35e57e9c965f80bf6da3dcd286472e39b5f3d85b1ab20e3a16088d6ba2b4923be0b35d6ff38fb89f08ca4b86f42d250a09e1781"]}, 0x13c}], 0x1, 0x0, 0x0, 0x8000}, 0x40000) ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x541b, &(0x7f0000000480)) ioctl$SG_SET_TIMEOUT(r0, 0x2201, &(0x7f00000004c0)=0x4) ioctl$TUNSETVNETHDRSZ(r0, 0x400454d8, &(0x7f0000000500)=0xfe86) ioctl$BLKPBSZGET(r0, 0x127b, &(0x7f0000000540)) sendmsg$kcm(r0, &(0x7f0000001b00)={&(0x7f0000000580)=@sco={0x1f, {0x10001, 0x40, 0x400, 0x2, 0x20, 0x95}}, 0x80, &(0x7f0000000a00)=[{&(0x7f0000000600)="dc15bfba720ea2f050e48865c8dd832e71f5032662c91fd224b11f4a087f0f16e53c2d592deb18e82df7de241728ec8372d2a5696276a59387d9a0826f9e583355b7c524b17938a6d61377de9e8fb7aa57521e38d442a82a1733aa5cf43846e9806515208906503aee2e80754e97db742235f6ec6d57b631d5629a2b941785f6fa833f4e", 0x84}, {&(0x7f00000006c0)="7cf90f9d3f318839e3951894c86147a2988e9ef08b4abb461523100a91717fff3cb55d25aba06c88d56bd73c5cc9f8956a59d1fcd6784d39dc0c68516daac6d086d4b0b01ef338f6923a652241571a9698f89127ebec5412340077ca008e72f8038b739098977a954e0637da734c75b6a5249a83af86097b40920a238958f06838d15cb668677780de47273e348432ce4bae76b000fe168a68816a66c8402764de648ea1576affcf1587288dd45201ec3311d2e16fc58bd01b4d520109", 0xbd}, {&(0x7f0000000780)="3676063c7faeecaa299e", 0xa}, {&(0x7f00000007c0)="6bea299b43f0cdc396a5d4ef9efeb2d2eeece23c572c4f66a736c87b1fa9d8340ece0a75bf616ad3a3761cfecadd8b5f375a225e7ac0390ac2206e690df514e6e6a6f4d510b01470d04438f6a5ce384bb39ec0c44fc17423ce86280b27e7bdf1a007e32af5d002bdc1f1a10e8743db0dcb53f219c5f938af35d037034104734847e794f9ea47944b7e31bda83d5b48c4a2dff151c441b5e6f6222a126dfb00ba8d332b67455ec43136aefc386b29e642734c388fa3c316cc3b9904f323290703c50afa1483d96995e75e21a106b1897aabf1dd66911b20044607ca0b98", 0xdd}, {&(0x7f00000008c0)="d87a99ee6495604b3a1144a488f2fc5802141844c3f1af31d0fc0cdb381dacaae3b0fb6b9bd4a27667fb70873e5daea1eb0ddb7a80cb5595", 0x38}, {&(0x7f0000000900)="46e4a225149c0ebf06ee777757e6b74cadb84d02052027b7376c9d8581fb90fa8ed07047eed5dceda9371b42a9a81a54c320d219c65f1f4ccae8878fb2ff88ee9048c3060c8e5bc9d7f7fa1e695b1570a9703d0847f7f142d159754651549c66c3437e2f49658285c87c6024cdc7bbc631868052ea6605648d088787c5d3b81453c0d223aa0b457880f0b4cd00a23d374e22778c72398d70e0c56a09649dbf846810a885af3a09b692609f9a8f1a7575105c7496b1c99590cfc433f75dcddef05c0628f3e095418ad5f8b8060d59593bca8362e2", 0xd4}], 0x6, &(0x7f0000000a80)=[{0x1010, 0x10d, 0x0, "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"}, {0x18, 0x112, 0x20, "730f18eb33"}, {0x28, 0x18f, 0x0, "21fa88ff08d1dedda766b5c4a8339965456b3aabdb"}, {0x10, 0x117, 0x10000}], 0x1060, 0x80}, 0x4000080) writev(r0, &(0x7f0000001e80)=[{&(0x7f0000001b40)="c60555c8af00f85121b3883487755b49874fc60bda954a8983c6fd9ac74db34af0a939d3d666c76b70c9e36545df13b43e45d5b36e4c11c8134263da2fd06c320c9a60d6f0b20c776f4528084b0d8d2c675d877ce7831d30240797cc8d6c2d7881a5aca36ff58a218be10737c5fa971bbfc5d2ecfc17f59e64a22d2dcdd2f2d7353264d453e49e8412eb917ea3f1d0e4439ad5057aee665209a8d6006d9ddf77f3bbfef12fa418845e8e7f337567ec0a24c3", 0xb2}, {&(0x7f0000001c00)="811440f00e242336a87cebddc2853288e57fb4710f85e62377aaa2649e19f5c3563957a487a14490d092c12b6dea316f4738d581d78d337d53e3900df2cb4c6b78fc8b91eda9dc428fa31980eb8aaf6639", 0x51}, {&(0x7f0000001c80)="35f19b4e4e8695e4695cf8ee9ea902886cb560e40add1266e3065c03f15996ddaeaf2e94965f7a1329b50242f10e8b9127d60cdad997ff75e6810c7f90437b03afa74fb2b897fec8cae296f16e45225fe7039329562715c6aaf7b3308a07f177552e692dce5c97ec5247113db1715fe24f7b8fba9e6bb57c742e3ac957d4797f9b1102ab14dd6138286fb3a1e045f9141ffecd61c2c8350db408c21760f6325f459eeb5ca4bbe56913f780e2481970499ab7e6ff889003d4921b620d9b5f441e18208a1555e8f458864b3cf9d7", 0xcd}, {&(0x7f0000001d80)="bd70ff750e7e7fc1a71b4b2094acf77295d8dc9b2ecd71bd5186b492cdd8b553464b154da6aa757662fa6bb70ee769267afda89557eae304daafd57b76c3948bdc4dddce88362bb881969b6e5fd779b1882aca81de93dc1a37c2e30369a71d3e11471574ffd00b55c6bee960af03adbc132254ffe42a2e45edc6a48d16970880c524cdae296b5e031e929297e9bf66d5e71c8a08849faf648cb6d1497b148ab774eff5b6e0194c4026251d78051de229c5b5c16ece53a9fa51279d86da1fe7bce37541d21846eafc98ff5f66ad58b43e3c2749daeeee2f929530ef4535901b39f7122c578a1d3c8b15b766766d6aa55251d27ce196a34f", 0xf7}], 0x4) bpf$MAP_CREATE(0x0, &(0x7f0000001ec0)={0xb, 0x91e2, 0xfff, 0x0, 0x0, 0xffffffffffffff9c, 0x6}, 0x2c) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r0, 0xc0605345, &(0x7f0000001f00)={0x7ed2, 0x3, {0x0, 0x3, 0x40, 0x1, 0x5}}) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f0000001f80)={0x0, 0x0, 0x0, 0x0, 0x3, 0x6, 0x1d, 0x11, "68322a3b3f28f5cc44c568578fdefe201329615d3a949b66ef64e3a3fdaa1ad09d2dde1c2e643d7161721b34be4fc76017813040eb47d28a480094e69705936a", "a312f23867a2848c165a2c76f529670f8790ae09ffd2909a06cdc98f7c5ea62d", [0xa01, 0x9]}) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f0000002040)={0x0, 0x0, 0x0, 0x0, 0x80000000, 0x2, 0x1f, 0x1d, "f5cde08d1b4c4b20c4f8e1486f4f7db85ff84df1023b6965469670fc7f669170a0f8569cd6b87b01762159c4f630b946fa3f35f1ea346010d3243c26ff731b9b", "784a0d3e86615496d4e74b0f6df098d5b38939059b4ef1c7060e290922f1140f", [0xed]}) socket$bt_rfcomm(0x1f, 0x3, 0x3) getresuid(&(0x7f0000002100), &(0x7f0000002140), &(0x7f0000002180)) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) setsockopt$ALG_SET_AEAD_AUTHSIZE(r0, 0x117, 0x5, 0x0, 0x9) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000002200)=@security={'security\x00', 0xe, 0x4, 0x5b8, 0x270, 0x270, 0x0, 0x0, 0x0, 0x4e8, 0x4e8, 0x4e8, 0x4e8, 0x4e8, 0x4, &(0x7f00000021c0), {[{{@uncond, 0x0, 0x120, 0x180, 0x0, {}, [@common=@eui64={0x28, 'eui64\x00'}, @common=@srh={0x30, 'srh\x00', 0x0, {0x3c, 0x6cb8b7b3, 0x30ee, 0xffffffffffffffff, 0x2e, 0x0, 0x8}}]}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv4=@remote, [0xff000000, 0xffffffff, 0xffffffff, 0xffffffff], 0x4e20, 0x4e20, 0x4e24, 0x4e21, 0xb408, 0x7fffffff, 0x447, 0x10000, 0x401}}}, {{@uncond, 0x0, 0xc8, 0xf0}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00', 0x0, {0x401}}}, {{@uncond, 0x0, 0x218, 0x278, 0x0, {}, [@common=@srh={0x30, 'srh\x00', 0x0, {0xff, 0x4, 0x7, 0x0, 0x7, 0x1000, 0x80}}, @common=@unspec=@comment={0x120, 'comment\x00'}]}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv4=@broadcast, [0xffffffff, 0xffffffff, 0xff000000], 0x4e21, 0x4e23, 0x4e21, 0x4e24, 0x1, 0x312, 0x2, 0xff, 0x9}}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x618) ioctl$KVM_SET_CPUID2(r0, 0x4008ae90, &(0x7f0000002840)={0x2, 0x0, [{0x80000001, 0xff, 0x1, 0x93, 0xffff, 0x2, 0x7}, {0x40000000, 0x5, 0x3, 0x80000001, 0x7, 0x400, 0x20}]}) semget(0x1, 0x4, 0x101) r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000028c0)='/dev/video36\x00', 0x2, 0x0) syz_emit_ethernet(0x3fe, &(0x7f0000002900)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xf}, @random="2956293885c3", [], {@ipv6={0x86dd, {0x8, 0x6, "fb328a", 0x3c8, 0x3b, 0x4, @remote, @mcast2, {[@hopopts={0xff, 0x1, [], [@jumbo={0xc2, 0x4, 0xebfe}, @pad1, @jumbo={0xc2, 0x4, 0x1000}]}, @srh={0x62, 0x12, 0x4, 0x9, 0x4, 0x8, 0x8, [@empty, @local, @mcast2, @mcast2, @mcast2, @loopback, @mcast1, @empty, @mcast2]}, @routing={0x4, 0x2, 0x2, 0x8, 0x0, [@remote]}, @routing={0x5c, 0xe, 0x3, 0x100000000, 0x0, [@empty, @dev={0xfe, 0x80, [], 0xd}, @dev={0xfe, 0x80, [], 0xb}, @remote, @mcast2, @loopback, @dev={0xfe, 0x80, [], 0x1a}]}, @routing={0x67, 0x8, 0x2, 0x7f, 0x0, [@dev={0xfe, 0x80, [], 0x1c}, @empty, @dev={0xfe, 0x80, [], 0x1b}, @mcast2]}], @gre={{0x0, 0x0, 0x1, 0x5, 0x0, 0x7fff, 0x0, 0x1, 0x880b, 0x88, 0x0, [], "6d28a0b8a46a9b987a2aa0768684ef77ccababc263a6e284b29988821e819b21166d8bf7418590c2356846512b33ac36e333125cd7a7ff4ab6afef8c3cefdce4bc508804509b8bceaf4c97533c8722b6f51051941e2e71de57ef1fe5f7ba54f472e71cc3ff0a1cb8b66b7b42fe41b5b0ed79d96357c9b9ca1e8d02dea1800d96764b6a978e754328"}, {0xe457, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x800, [], "0bb5457bacf9"}, {0x9, 0x0, 0x100, 0x4, 0x0, 0x0, 0x86dd, [0x5], "bb713bc913d024c7e1b24cd49cae495eb61c0ef0c9f38faf3b367b33209ef391d8b9f10fb3961e8cbefe7edf0d373db4c9ea32811af74a658645d9b54e5cecfb5da7cfd94254815fd5661facef60633821cd4c9c28ff871ce881f9760c6e6e983d23508da1cfcca865fa44307e54449a7491196f8fd527239a3ecf20ae5fcdd6a7a47b8172fc390b77cb85b92d8b5990822b205fdc1f4360e4c43cb11498e5ba1cc55b4be4b7cdec"}, {0x8, 0x88be, 0x2, {{0x6, 0x1, 0x2, 0x7, 0x80, 0x28a5, 0x4, 0x802}, 0x1, 0x1}}, {0x8, 0x22eb, 0x0, {{0x46b, 0x2, 0xffffffffabe1e318, 0x9, 0x7ff, 0x8, 0x1f, 0xce7}, 0x2, 0x7fffffff, 0x0, 0x80000001, 0xfb00000000000, 0x80000001, 0x81, 0x7cb, 0x6, 0x7}}, {0x8, 0x6558, 0x1, "ec0e06c6c17f7c4e48c9b2721d9e245c8b9a0c13bfc8e3c490ba6ae7814752202c719eec3d7546aa16b6c462bdb137ac50f2c707c713754b3ccdf7f7666d48c8ab1557c524a65ea8879fe096fc8c590aa2017b396f974d91dd88269455f6a8b089857ce11bb03160e4bc3be1d0d32f999705bf39ce5bd2c8c5c89879e5c6edfa0ca0a0192363075f68e83611ef668c7e06c170da65369864a3e301f32a404a0cf1e1ad15b8f2faf38bf2068eb192873e2bceb5e9a594ef5f1d3e4bdaf9ba935ea7ed2bcb"}}}}}}}, &(0x7f0000002d00)={0x1, 0x2, [0x216, 0xbb3, 0x891, 0x8f]}) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r3, 0x0) openat$uhid(0xffffffffffffff9c, &(0x7f0000002d40)='/dev/uhid\x00', 0x802, 0x0) getsockopt$inet_sctp6_SCTP_PR_STREAM_STATUS(r0, 0x84, 0x74, &(0x7f0000002d80)=""/8, &(0x7f0000002dc0)=0x8) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000002e00)=0x8000, 0x4) 23:35:13 executing program 2: 23:35:13 executing program 1: 23:35:13 executing program 3: 23:35:14 executing program 3: 23:35:14 executing program 0: 23:35:14 executing program 2: 23:35:14 executing program 4: 23:35:14 executing program 1: 23:35:14 executing program 3: 23:35:14 executing program 4: 23:35:14 executing program 0: [ 292.251000] IPVS: ftp: loaded support on port[0] = 21 [ 293.543991] bridge0: port 1(bridge_slave_0) entered blocking state [ 293.550396] bridge0: port 1(bridge_slave_0) entered disabled state [ 293.558720] device bridge_slave_0 entered promiscuous mode [ 293.636429] bridge0: port 2(bridge_slave_1) entered blocking state [ 293.642949] bridge0: port 2(bridge_slave_1) entered disabled state [ 293.650624] device bridge_slave_1 entered promiscuous mode [ 293.727987] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 293.804951] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 294.039013] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 294.122160] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 294.204178] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 294.211232] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 294.287718] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 294.294814] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 294.527486] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 294.535152] team0: Port device team_slave_0 added [ 294.612141] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 294.619775] team0: Port device team_slave_1 added [ 294.697333] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 294.776761] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 294.855685] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 294.863100] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 294.872233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 294.950393] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 294.957803] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 294.967452] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 295.835066] bridge0: port 2(bridge_slave_1) entered blocking state [ 295.841501] bridge0: port 2(bridge_slave_1) entered forwarding state [ 295.848495] bridge0: port 1(bridge_slave_0) entered blocking state [ 295.854965] bridge0: port 1(bridge_slave_0) entered forwarding state [ 295.863345] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 296.193334] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 299.015715] 8021q: adding VLAN 0 to HW filter on device bond0 [ 299.302571] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 299.588364] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 299.594732] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 299.602594] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 299.892758] 8021q: adding VLAN 0 to HW filter on device team0 23:35:24 executing program 5: 23:35:24 executing program 2: 23:35:24 executing program 1: 23:35:24 executing program 3: 23:35:24 executing program 4: 23:35:24 executing program 0: 23:35:25 executing program 0: 23:35:25 executing program 3: 23:35:25 executing program 5: 23:35:25 executing program 4: 23:35:25 executing program 1: r0 = socket(0x1e, 0x4, 0x0) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r1, 0x20000000008912, &(0x7f0000000080)="0a5c2d0240316285717070") close(r0) 23:35:25 executing program 2: bpf$MAP_CREATE(0x11000000000003fc, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff9c}, 0x2c) 23:35:25 executing program 0: r0 = socket(0x1e, 0x4, 0x0) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r1, 0x20000000008912, &(0x7f0000000080)="0a5c2d0240316285717070") r2 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000100)=@req={0x3fc}, 0x10) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000265000)=@req={0x3fc}, 0x10) writev(r0, &(0x7f0000000040)=[{&(0x7f0000000000), 0x1e6}], 0x1) close(r0) 23:35:25 executing program 3: setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x2a, &(0x7f0000000200)={0x0, {{0x2, 0x0, @multicast2}}}, 0x88) syz_emit_ethernet(0x32, &(0x7f0000000cc0)={@link_local, @empty=[0x0, 0x0, 0x14], [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x0, 0x0, @rand_addr, @multicast1}, @dccp={{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "d70502", 0x0, "f53475"}}}}}}, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000000040), 0x1, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000400)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000004c0)=0x2776b2db6683a841) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000040)=ANY=[@ANYBLOB], &(0x7f0000000380)=0x1) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x6}, &(0x7f0000000340)=0xc) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000280)={r1}, 0x8) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='pids.events\x00', 0x0, 0x0) getsockopt$IPT_SO_GET_INFO(r2, 0x0, 0x40, &(0x7f00000007c0)={'security\x00'}, &(0x7f0000000840)=0x54) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000200)=ANY=[], &(0x7f0000000140)) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f00000006c0)={'sit0\x00'}) clock_gettime(0x0, &(0x7f0000000200)) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f0000000880)={r1, @in6={{0xa, 0x4e22, 0x0, @mcast1}}}, &(0x7f0000000640)=0x27) bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000240), 0x4) sendmsg$nl_route(r0, &(0x7f0000000100)={&(0x7f00000000c0)={0x20000010, 0xc601}, 0xc, &(0x7f0000000000)={&(0x7f00000001c0)=@newlink={0x28, 0x10, 0xc362e63b3f31ba5f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0) 23:35:25 executing program 4: bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x6, 0x0, 0x0, 0x27, 0x0, 0xffffffffffffff9c}, 0x2c) 23:35:25 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000280)=0x7a, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, &(0x7f0000000e80), 0x0, 0x200007fd, &(0x7f0000001040)={0x2, 0x4e23, @loopback}, 0x10) recvmsg(r0, &(0x7f0000000240)={&(0x7f0000000040)=@nfc, 0x80, &(0x7f00000001c0)=[{&(0x7f0000003ac0)=""/4096, 0x1000}], 0x1, &(0x7f00000002c0)=""/20, 0x14}, 0x100) write$binfmt_elf64(r0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], 0x4b7) socket$inet_udplite(0x2, 0x2, 0x88) write$binfmt_elf64(r0, &(0x7f0000001080)=ANY=[@ANYBLOB="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"], 0xb49) 23:35:25 executing program 1: seccomp(0x1, 0x0, &(0x7f0000000100)={0x1, &(0x7f0000000180)=[{0x6, 0x0, 0x0, 0xfffffffffffffffe}]}) r0 = creat(&(0x7f0000000140)='./bus\x00', 0x0) pwrite64(r0, &(0x7f0000000000)='?', 0x1, 0x40000) lseek(r0, 0x0, 0x4) 23:35:25 executing program 2: socketpair$inet_icmp_raw(0x2, 0x3, 0x1, &(0x7f0000000280)) sched_yield() io_getevents(0x0, 0x0, 0x3, &(0x7f00000001c0)=[{}, {}, {}], &(0x7f0000000040)={0x77359400}) [ 302.929089] audit: type=1326 audit(1542065725.978:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=8410 comm="syz-executor1" exe="/root/syz-executor1" sig=31 arch=c000003e syscall=228 compat=0 ip=0x45a3ca code=0xffff0000 [ 303.008692] not chained 20000 origins [ 303.012545] CPU: 0 PID: 8405 Comm: syz-executor5 Not tainted 4.20.0-rc2+ #84 [ 303.019742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 303.029111] Call Trace: [ 303.031707] [ 303.033891] dump_stack+0x32d/0x480 [ 303.037568] kmsan_internal_chain_origin+0x222/0x240 [ 303.042715] ? kmsan_internal_chain_origin+0x136/0x240 [ 303.048019] ? __msan_chain_origin+0x6d/0xb0 [ 303.052455] ? __save_stack_trace+0x8be/0xc60 23:35:26 executing program 0: r0 = socket(0x1e, 0x4, 0x0) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r1, 0x20000000008912, &(0x7f0000000080)="0a5c2d0240316285717070") r2 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000100)=@req={0x3fc}, 0x10) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000265000)=@req={0x3fc}, 0x10) writev(r0, &(0x7f0000000040)=[{&(0x7f0000000000), 0x1e6}], 0x1) close(r0) [ 303.056982] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 303.062368] ? __module_address+0x6a/0x5f0 [ 303.066628] ? ip_rcv+0x6b6/0x740 [ 303.070104] ? process_backlog+0x82b/0x11e0 [ 303.074448] ? is_bpf_text_address+0x3e5/0x4d0 [ 303.079062] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 303.084447] ? is_bpf_text_address+0x49e/0x4d0 [ 303.089063] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 303.094449] ? __module_address+0x6a/0x5f0 [ 303.098719] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 303.104114] ? is_bpf_text_address+0x49e/0x4d0 23:35:26 executing program 4: seccomp(0x1, 0x0, &(0x7f0000000100)={0x1, &(0x7f0000000180)=[{0x6, 0x0, 0x0, 0xfffffffffffffffe}]}) r0 = openat$smack_thread_current(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/attr/current\x00', 0x2, 0x0) fadvise64(r0, 0x0, 0x0, 0x0) [ 303.108737] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 303.114248] __msan_chain_origin+0x6d/0xb0 [ 303.118514] ? tcp_v4_rcv+0x4a1b/0x6520 [ 303.122521] __save_stack_trace+0x8be/0xc60 [ 303.126902] ? tcp_v4_rcv+0x4a1b/0x6520 [ 303.130914] save_stack_trace+0xc6/0x110 [ 303.135015] kmsan_internal_chain_origin+0x136/0x240 [ 303.140146] ? ip_finish_output+0xd93/0x10f0 [ 303.144597] ? inet_recvmsg+0x5b8/0x6c0 [ 303.148600] ? kmsan_internal_chain_origin+0x136/0x240 [ 303.153903] ? kmsan_memcpy_origins+0x13d/0x190 [ 303.158597] ? __msan_memcpy+0x6f/0x80 [ 303.162511] ? pskb_expand_head+0x436/0x1d20 [ 303.166946] ? ___pskb_trim+0x3c9/0x1bf0 [ 303.171039] ? sk_filter_trim_cap+0x5ac/0xa60 [ 303.175562] ? tcp_v4_rcv+0x4a1b/0x6520 [ 303.179566] ? ip_local_deliver_finish+0x8d8/0xff0 [ 303.184517] ? ip_local_deliver+0x44b/0x510 [ 303.188860] ? ip_rcv+0x6b6/0x740 [ 303.192340] ? process_backlog+0x82b/0x11e0 [ 303.196684] ? net_rx_action+0x98f/0x1d50 [ 303.200857] ? __do_softirq+0x721/0xc7f [ 303.204862] ? do_softirq_own_stack+0x49/0x80 [ 303.209383] ? __local_bh_enable_ip+0x228/0x260 [ 303.214079] ? local_bh_enable+0x36/0x40 [ 303.218173] ? ip_finish_output2+0x1430/0x1560 [ 303.222783] ? ip_finish_output+0xd93/0x10f0 [ 303.227223] ? ip_output+0x55c/0x630 [ 303.230968] ? __ip_queue_xmit+0x1bb5/0x2170 [ 303.235403] ? ip_queue_xmit+0xcc/0xf0 [ 303.239318] ? __tcp_transmit_skb+0x425c/0x5e00 [ 303.244007] ? tcp_write_xmit+0x389a/0xacc0 [ 303.248354] ? __tcp_push_pending_frames+0x124/0x4e0 [ 303.253485] ? tcp_data_snd_check+0x1ec/0x1080 [ 303.258091] ? tcp_rcv_established+0x1bb2/0x2940 [ 303.262876] ? tcp_v4_do_rcv+0x686/0xd80 [ 303.266964] ? __release_sock+0x32d/0x750 [ 303.271150] ? sk_wait_data+0x2c3/0x920 [ 303.275148] ? tcp_recvmsg+0x1d10/0x4aa0 [ 303.279254] ? inet_recvmsg+0x5b8/0x6c0 [ 303.283270] ? sock_recvmsg+0x1d1/0x230 [ 303.287271] ? ___sys_recvmsg+0x444/0xae0 [ 303.291443] ? __se_sys_recvmsg+0x2fa/0x450 [ 303.295791] ? __x64_sys_recvmsg+0x4a/0x70 [ 303.300055] ? do_syscall_64+0xcf/0x110 [ 303.304070] ? entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 303.309474] ? __msan_get_context_state+0x9/0x20 [ 303.314270] ? INIT_INT+0xc/0x30 [ 303.317670] ? __kmalloc_node_track_caller+0x369/0x14e0 [ 303.323078] kmsan_memcpy_origins+0x13d/0x190 [ 303.327621] __msan_memcpy+0x6f/0x80 [ 303.331369] pskb_expand_head+0x436/0x1d20 [ 303.335668] ___pskb_trim+0x3c9/0x1bf0 [ 303.339601] ? pkcs7_validate_trust+0x451/0xe00 [ 303.344313] sk_filter_trim_cap+0x5ac/0xa60 [ 303.348679] tcp_v4_rcv+0x4a1b/0x6520 [ 303.352571] ? tcp_filter+0x260/0x260 [ 303.356857] ip_local_deliver_finish+0x8d8/0xff0 [ 303.361635] ? nf_hook_slow+0x36f/0x3d0 [ 303.365644] ip_local_deliver+0x44b/0x510 [ 303.369823] ? ip_local_deliver+0x510/0x510 [ 303.374163] ? ip_call_ra_chain+0x7a0/0x7a0 [ 303.378504] ip_rcv+0x6b6/0x740 [ 303.381810] ? ip_rcv_core+0x1370/0x1370 [ 303.385903] process_backlog+0x82b/0x11e0 [ 303.390071] ? __msan_poison_alloca+0x1e0/0x270 [ 303.394765] ? ip_local_deliver_finish+0xff0/0xff0 [ 303.399735] ? rps_trigger_softirq+0x2e0/0x2e0 [ 303.404339] net_rx_action+0x98f/0x1d50 [ 303.408373] ? net_tx_action+0xf20/0xf20 [ 303.412453] __do_softirq+0x721/0xc7f [ 303.416295] do_softirq_own_stack+0x49/0x80 [ 303.420623] [ 303.422879] __local_bh_enable_ip+0x228/0x260 [ 303.427402] local_bh_enable+0x36/0x40 [ 303.431305] ip_finish_output2+0x1430/0x1560 [ 303.435757] ip_finish_output+0xd93/0x10f0 [ 303.440036] ip_output+0x55c/0x630 [ 303.443616] ? ip_mc_finish_output+0x440/0x440 [ 303.448227] ? ip_finish_output+0x10f0/0x10f0 [ 303.452759] __ip_queue_xmit+0x1bb5/0x2170 [ 303.457056] ip_queue_xmit+0xcc/0xf0 [ 303.460790] ? dst_hold_safe+0x5d0/0x5d0 [ 303.464871] __tcp_transmit_skb+0x425c/0x5e00 [ 303.469436] tcp_write_xmit+0x389a/0xacc0 [ 303.473701] __tcp_push_pending_frames+0x124/0x4e0 [ 303.478657] tcp_data_snd_check+0x1ec/0x1080 [ 303.483103] tcp_rcv_established+0x1bb2/0x2940 [ 303.487867] ? __msan_get_context_state+0x9/0x20 [ 303.492661] tcp_v4_do_rcv+0x686/0xd80 [ 303.496581] ? inet_sk_rx_dst_set+0x200/0x200 [ 303.501094] __release_sock+0x32d/0x750 [ 303.505106] sk_wait_data+0x2c3/0x920 [ 303.508924] ? tcp_send_ack+0x68/0x90 [ 303.512752] ? tcp_cleanup_rbuf+0x57b/0x8e0 [ 303.517099] ? wait_woken+0x5b0/0x5b0 [ 303.520923] tcp_recvmsg+0x1d10/0x4aa0 [ 303.524901] ? tcp_mmap+0x150/0x150 [ 303.528544] inet_recvmsg+0x5b8/0x6c0 [ 303.532431] sock_recvmsg+0x1d1/0x230 [ 303.536264] ? inet_sendpage+0x990/0x990 [ 303.540349] ___sys_recvmsg+0x444/0xae0 [ 303.544385] ? __fdget+0x329/0x440 [ 303.547952] __se_sys_recvmsg+0x2fa/0x450 [ 303.552143] __x64_sys_recvmsg+0x4a/0x70 [ 303.556238] do_syscall_64+0xcf/0x110 [ 303.560062] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 303.565270] RIP: 0033:0x457569 [ 303.568481] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 303.587396] RSP: 002b:00007fb56040bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002f [ 303.595118] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 303.602396] RDX: 0000000000000100 RSI: 0000000020000240 RDI: 0000000000000003 [ 303.609678] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 303.616959] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb56040c6d4 [ 303.624249] R13: 00000000004c3549 R14: 00000000004d54c0 R15: 00000000ffffffff [ 303.631551] Uninit was stored to memory at: [ 303.635897] kmsan_internal_chain_origin+0x136/0x240 [ 303.641013] __msan_chain_origin+0x6d/0xb0 [ 303.645272] __save_stack_trace+0x8be/0xc60 [ 303.649608] save_stack_trace+0xc6/0x110 [ 303.653683] kmsan_internal_chain_origin+0x136/0x240 [ 303.658798] kmsan_memcpy_origins+0x13d/0x190 [ 303.663308] __msan_memcpy+0x6f/0x80 [ 303.667038] pskb_expand_head+0x436/0x1d20 [ 303.671284] ___pskb_trim+0x3c9/0x1bf0 [ 303.675189] sk_filter_trim_cap+0x5ac/0xa60 [ 303.679534] tcp_v4_rcv+0x4a1b/0x6520 [ 303.683349] ip_local_deliver_finish+0x8d8/0xff0 [ 303.688117] ip_local_deliver+0x44b/0x510 [ 303.692277] ip_rcv+0x6b6/0x740 [ 303.695568] process_backlog+0x82b/0x11e0 [ 303.699725] net_rx_action+0x98f/0x1d50 [ 303.703719] __do_softirq+0x721/0xc7f [ 303.707523] [ 303.709154] Uninit was stored to memory at: [ 303.713492] kmsan_internal_chain_origin+0x136/0x240 [ 303.718606] __msan_chain_origin+0x6d/0xb0 [ 303.722854] __save_stack_trace+0x8be/0xc60 [ 303.727187] save_stack_trace+0xc6/0x110 [ 303.731290] kmsan_internal_chain_origin+0x136/0x240 [ 303.736408] kmsan_memcpy_origins+0x13d/0x190 [ 303.740920] __msan_memcpy+0x6f/0x80 [ 303.744647] pskb_expand_head+0x436/0x1d20 [ 303.748899] ___pskb_trim+0x3c9/0x1bf0 [ 303.752799] sk_filter_trim_cap+0x5ac/0xa60 [ 303.757132] tcp_v4_rcv+0x4a1b/0x6520 [ 303.760941] ip_local_deliver_finish+0x8d8/0xff0 [ 303.765711] ip_local_deliver+0x44b/0x510 [ 303.769873] ip_rcv+0x6b6/0x740 [ 303.773174] process_backlog+0x82b/0x11e0 [ 303.777349] net_rx_action+0x98f/0x1d50 [ 303.781337] __do_softirq+0x721/0xc7f [ 303.785186] [ 303.786825] Uninit was stored to memory at: [ 303.791162] kmsan_internal_chain_origin+0x136/0x240 [ 303.796282] __msan_chain_origin+0x6d/0xb0 [ 303.800531] __save_stack_trace+0x8be/0xc60 [ 303.804870] save_stack_trace+0xc6/0x110 [ 303.808942] kmsan_internal_chain_origin+0x136/0x240 [ 303.814056] kmsan_memcpy_origins+0x13d/0x190 [ 303.818570] __msan_memcpy+0x6f/0x80 [ 303.822299] pskb_expand_head+0x436/0x1d20 [ 303.826545] ___pskb_trim+0x3c9/0x1bf0 [ 303.830449] sk_filter_trim_cap+0x5ac/0xa60 [ 303.834785] tcp_v4_rcv+0x4a1b/0x6520 [ 303.838600] ip_local_deliver_finish+0x8d8/0xff0 [ 303.843367] ip_local_deliver+0x44b/0x510 [ 303.847525] ip_rcv+0x6b6/0x740 [ 303.850815] process_backlog+0x82b/0x11e0 [ 303.854974] net_rx_action+0x98f/0x1d50 [ 303.858959] __do_softirq+0x721/0xc7f [ 303.862762] [ 303.864391] Uninit was stored to memory at: [ 303.868726] kmsan_internal_chain_origin+0x136/0x240 [ 303.873844] __msan_chain_origin+0x6d/0xb0 [ 303.878094] __save_stack_trace+0x8be/0xc60 [ 303.882426] save_stack_trace+0xc6/0x110 [ 303.886506] kmsan_internal_chain_origin+0x136/0x240 [ 303.891624] kmsan_memcpy_origins+0x13d/0x190 [ 303.896134] __msan_memcpy+0x6f/0x80 [ 303.899865] pskb_expand_head+0x436/0x1d20 [ 303.904119] ___pskb_trim+0x3c9/0x1bf0 [ 303.908021] sk_filter_trim_cap+0x5ac/0xa60 [ 303.912354] tcp_v4_rcv+0x4a1b/0x6520 [ 303.916169] ip_local_deliver_finish+0x8d8/0xff0 [ 303.920936] ip_local_deliver+0x44b/0x510 [ 303.925093] ip_rcv+0x6b6/0x740 [ 303.928564] process_backlog+0x82b/0x11e0 [ 303.932727] net_rx_action+0x98f/0x1d50 [ 303.936713] __do_softirq+0x721/0xc7f [ 303.940513] [ 303.942142] Uninit was stored to memory at: [ 303.946483] kmsan_internal_chain_origin+0x136/0x240 [ 303.951602] __msan_chain_origin+0x6d/0xb0 [ 303.955856] __save_stack_trace+0x8be/0xc60 [ 303.960191] save_stack_trace+0xc6/0x110 [ 303.964290] kmsan_internal_chain_origin+0x136/0x240 [ 303.969404] kmsan_memcpy_origins+0x13d/0x190 [ 303.973912] __msan_memcpy+0x6f/0x80 [ 303.977645] pskb_expand_head+0x436/0x1d20 [ 303.981898] ___pskb_trim+0x3c9/0x1bf0 [ 303.985805] sk_filter_trim_cap+0x5ac/0xa60 [ 303.990137] tcp_v4_rcv+0x4a1b/0x6520 [ 303.993949] ip_local_deliver_finish+0x8d8/0xff0 [ 303.998722] ip_local_deliver+0x44b/0x510 [ 304.002884] ip_rcv+0x6b6/0x740 [ 304.006178] process_backlog+0x82b/0x11e0 [ 304.010348] net_rx_action+0x98f/0x1d50 [ 304.014339] __do_softirq+0x721/0xc7f [ 304.018140] [ 304.019770] Uninit was stored to memory at: [ 304.024108] kmsan_internal_chain_origin+0x136/0x240 [ 304.029231] __msan_chain_origin+0x6d/0xb0 [ 304.033497] __save_stack_trace+0x8be/0xc60 [ 304.037833] save_stack_trace+0xc6/0x110 [ 304.041909] kmsan_internal_chain_origin+0x136/0x240 [ 304.047032] kmsan_memcpy_origins+0x13d/0x190 [ 304.051536] __msan_memcpy+0x6f/0x80 [ 304.055276] pskb_expand_head+0x436/0x1d20 [ 304.059526] ___pskb_trim+0x3c9/0x1bf0 [ 304.063432] sk_filter_trim_cap+0x5ac/0xa60 [ 304.067770] tcp_v4_rcv+0x4a1b/0x6520 [ 304.071583] ip_local_deliver_finish+0x8d8/0xff0 [ 304.076348] ip_local_deliver+0x44b/0x510 [ 304.080508] ip_rcv+0x6b6/0x740 [ 304.083802] process_backlog+0x82b/0x11e0 [ 304.087963] net_rx_action+0x98f/0x1d50 [ 304.091951] __do_softirq+0x721/0xc7f [ 304.095758] [ 304.097390] Uninit was stored to memory at: [ 304.101729] kmsan_internal_chain_origin+0x136/0x240 [ 304.106846] __msan_chain_origin+0x6d/0xb0 [ 304.111095] __save_stack_trace+0x8be/0xc60 [ 304.115428] save_stack_trace+0xc6/0x110 [ 304.119501] kmsan_internal_chain_origin+0x136/0x240 [ 304.124620] kmsan_memcpy_origins+0x13d/0x190 [ 304.129126] __msan_memcpy+0x6f/0x80 [ 304.132855] pskb_expand_head+0x436/0x1d20 [ 304.137112] ___pskb_trim+0x3c9/0x1bf0 [ 304.141013] sk_filter_trim_cap+0x5ac/0xa60 [ 304.145349] tcp_v4_rcv+0x4a1b/0x6520 [ 304.149163] ip_local_deliver_finish+0x8d8/0xff0 [ 304.153927] ip_local_deliver+0x44b/0x510 [ 304.158084] ip_rcv+0x6b6/0x740 [ 304.161375] process_backlog+0x82b/0x11e0 [ 304.165536] net_rx_action+0x98f/0x1d50 [ 304.169527] __do_softirq+0x721/0xc7f [ 304.173341] [ 304.174984] Local variable description: ----v.addr.i.i.i.i.i.i.i.i.i@validate_xmit_skb [ 304.183073] Variable was created at: [ 304.186805] validate_xmit_skb+0xb1/0x1780 [ 304.191048] validate_xmit_skb_list+0x17b/0x380 23:35:27 executing program 2: r0 = socket(0x1e, 0x4, 0x0) r1 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000100)=@req={0x3fc}, 0x10) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000265000)=@req={0x3fc}, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x34000}, 0xc, &(0x7f0000000080)={&(0x7f00000002c0)={0x2c, 0x29, 0x1, 0x0, 0x0, {0x1}, [@nested={0x18, 0x0, [@typed={0x5, 0x0, @ipv6=@ipv4={[0x0, 0x0, 0x0, 0x19, 0xfcffffff], [], @remote}}]}]}, 0x2c}}, 0x0) [ 304.608302] audit: type=1326 audit(1542065727.658:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=8419 comm="syz-executor4" exe="/root/syz-executor4" sig=31 arch=c000003e syscall=228 compat=0 ip=0x45a3ca code=0xffff0000 [ 304.646111] not chained 30000 origins [ 304.649953] CPU: 1 PID: 8429 Comm: syz-executor5 Not tainted 4.20.0-rc2+ #84 [ 304.657151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 304.666519] Call Trace: [ 304.669139] dump_stack+0x32d/0x480 [ 304.672815] kmsan_internal_chain_origin+0x222/0x240 [ 304.677975] ? save_stack_trace+0xc6/0x110 [ 304.682247] ? __irqentry_text_end+0x1fa056/0x1fa056 [ 304.687383] ? kmsan_internal_chain_origin+0x90/0x240 [ 304.692614] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 304.698001] ? is_bpf_text_address+0x49e/0x4d0 [ 304.702616] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 304.708094] ? in_task_stack+0x12c/0x210 [ 304.712194] __msan_chain_origin+0x6d/0xb0 [ 304.716467] ? do_syscall_64+0xcf/0x110 [ 304.720464] __save_stack_trace+0x8be/0xc60 [ 304.724843] ? do_syscall_64+0xcf/0x110 [ 304.728853] save_stack_trace+0xc6/0x110 [ 304.732956] kmsan_internal_chain_origin+0x136/0x240 [ 304.738085] ? __se_sys_write+0x17a/0x370 [ 304.742285] ? kmsan_internal_chain_origin+0x136/0x240 [ 304.747584] ? kmsan_memcpy_origins+0x13d/0x190 [ 304.752281] ? __msan_memcpy+0x6f/0x80 [ 304.756193] ? pskb_expand_head+0x436/0x1d20 [ 304.760632] ? tcp_fragment+0x378/0x21d0 [ 304.764714] ? tcp_sacktag_walk+0xe88/0x29d0 [ 304.769149] ? tcp_sacktag_write_queue+0x2805/0x4630 [ 304.774268] ? tcp_ack+0x2888/0xa010 [ 304.778002] ? tcp_rcv_established+0xf7e/0x2940 [ 304.782696] ? tcp_v4_do_rcv+0x686/0xd80 [ 304.786787] ? __release_sock+0x32d/0x750 [ 304.790955] ? release_sock+0x99/0x2a0 [ 304.794866] ? tcp_sendmsg+0xd6/0x100 [ 304.798692] ? inet_sendmsg+0x4e9/0x800 [ 304.802686] ? sock_write_iter+0x3f4/0x4f0 [ 304.806946] ? __vfs_write+0x888/0xb80 [ 304.810851] ? vfs_write+0x4a3/0x8f0 [ 304.814587] ? __se_sys_write+0x17a/0x370 [ 304.818767] ? __x64_sys_write+0x4a/0x70 [ 304.822852] ? do_syscall_64+0xcf/0x110 [ 304.826854] ? entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 304.832281] ? __msan_get_context_state+0x9/0x20 [ 304.837059] ? INIT_INT+0xc/0x30 [ 304.840447] ? __kmalloc_node_track_caller+0x369/0x14e0 [ 304.845853] kmsan_memcpy_origins+0x13d/0x190 [ 304.850389] __msan_memcpy+0x6f/0x80 [ 304.854142] pskb_expand_head+0x436/0x1d20 [ 304.858433] tcp_fragment+0x378/0x21d0 [ 304.862352] ? kmsan_set_origin+0x7f/0x100 [ 304.866650] tcp_sacktag_walk+0xe88/0x29d0 [ 304.870953] tcp_sacktag_write_queue+0x2805/0x4630 [ 304.875912] ? __update_load_avg_cfs_rq+0x105/0x10b0 [ 304.881099] tcp_ack+0x2888/0xa010 [ 304.884659] ? tcp_parse_options+0xbe/0x1cf0 [ 304.889089] ? tcp_validate_incoming+0x50b/0x29d0 [ 304.893979] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 304.899456] ? tcp_parse_options+0x1c55/0x1cf0 [ 304.904153] tcp_rcv_established+0xf7e/0x2940 [ 304.908687] ? __msan_get_context_state+0x9/0x20 [ 304.913490] tcp_v4_do_rcv+0x686/0xd80 [ 304.917417] ? inet_sk_rx_dst_set+0x200/0x200 [ 304.921950] __release_sock+0x32d/0x750 [ 304.925971] release_sock+0x99/0x2a0 [ 304.929718] tcp_sendmsg+0xd6/0x100 [ 304.933381] ? tcp_sendmsg_locked+0x6c30/0x6c30 [ 304.938073] inet_sendmsg+0x4e9/0x800 [ 304.941907] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 304.947299] ? security_socket_sendmsg+0x1bd/0x200 [ 304.952271] ? inet_getname+0x490/0x490 [ 304.956268] sock_write_iter+0x3f4/0x4f0 [ 304.960385] ? sock_read_iter+0x4e0/0x4e0 [ 304.964555] __vfs_write+0x888/0xb80 [ 304.968322] vfs_write+0x4a3/0x8f0 [ 304.971906] __se_sys_write+0x17a/0x370 [ 304.975925] __x64_sys_write+0x4a/0x70 [ 304.979836] do_syscall_64+0xcf/0x110 [ 304.983667] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 304.988870] RIP: 0033:0x457569 [ 304.992081] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 305.010999] RSP: 002b:00007fb560387c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 305.018723] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 305.026021] RDX: 00000000000004b7 RSI: 0000000020000a40 RDI: 0000000000000005 [ 305.033308] RBP: 000000000072c180 R08: 0000000000000000 R09: 0000000000000000 [ 305.040590] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb5603886d4 [ 305.047872] R13: 00000000004c5893 R14: 00000000004d95a0 R15: 00000000ffffffff [ 305.055178] Uninit was stored to memory at: [ 305.059529] kmsan_internal_chain_origin+0x136/0x240 [ 305.064648] __msan_chain_origin+0x6d/0xb0 [ 305.068901] __save_stack_trace+0x8be/0xc60 [ 305.073256] save_stack_trace+0xc6/0x110 [ 305.077348] kmsan_internal_chain_origin+0x136/0x240 [ 305.082472] kmsan_memcpy_origins+0x13d/0x190 [ 305.086983] __msan_memcpy+0x6f/0x80 [ 305.090717] pskb_expand_head+0x436/0x1d20 [ 305.094970] tcp_fragment+0x378/0x21d0 [ 305.098870] tcp_sacktag_walk+0xe88/0x29d0 [ 305.103124] tcp_sacktag_write_queue+0x2805/0x4630 [ 305.108070] tcp_ack+0x2888/0xa010 [ 305.111626] tcp_rcv_established+0xf7e/0x2940 [ 305.116137] tcp_v4_do_rcv+0x686/0xd80 [ 305.120038] __release_sock+0x32d/0x750 [ 305.124032] release_sock+0x99/0x2a0 [ 305.127765] tcp_sendmsg+0xd6/0x100 [ 305.131411] inet_sendmsg+0x4e9/0x800 [ 305.135235] sock_write_iter+0x3f4/0x4f0 [ 305.139323] __vfs_write+0x888/0xb80 [ 305.143055] vfs_write+0x4a3/0x8f0 [ 305.146611] __se_sys_write+0x17a/0x370 [ 305.150597] __x64_sys_write+0x4a/0x70 [ 305.154499] do_syscall_64+0xcf/0x110 [ 305.158339] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 305.163529] [ 305.165163] Uninit was stored to memory at: [ 305.169501] kmsan_internal_chain_origin+0x136/0x240 [ 305.174626] __msan_chain_origin+0x6d/0xb0 [ 305.178884] __save_stack_trace+0x8be/0xc60 [ 305.183231] save_stack_trace+0xc6/0x110 [ 305.187311] kmsan_internal_chain_origin+0x136/0x240 [ 305.192437] kmsan_memcpy_origins+0x13d/0x190 [ 305.196951] __msan_memcpy+0x6f/0x80 [ 305.200686] pskb_expand_head+0x436/0x1d20 [ 305.204938] tcp_fragment+0x378/0x21d0 [ 305.208839] tcp_sacktag_walk+0xe88/0x29d0 [ 305.213088] tcp_sacktag_write_queue+0x2805/0x4630 [ 305.218028] tcp_ack+0x2888/0xa010 [ 305.221581] tcp_rcv_established+0xf7e/0x2940 [ 305.226091] tcp_v4_do_rcv+0x686/0xd80 [ 305.229995] __release_sock+0x32d/0x750 [ 305.233985] release_sock+0x99/0x2a0 [ 305.237720] tcp_sendmsg+0xd6/0x100 [ 305.241379] inet_sendmsg+0x4e9/0x800 [ 305.245193] sock_write_iter+0x3f4/0x4f0 [ 305.249279] __vfs_write+0x888/0xb80 [ 305.253005] vfs_write+0x4a3/0x8f0 [ 305.256563] __se_sys_write+0x17a/0x370 [ 305.260556] __x64_sys_write+0x4a/0x70 [ 305.264463] do_syscall_64+0xcf/0x110 [ 305.268288] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 305.273480] [ 305.275113] Uninit was stored to memory at: [ 305.279457] kmsan_internal_chain_origin+0x136/0x240 [ 305.284580] __msan_chain_origin+0x6d/0xb0 [ 305.288830] __save_stack_trace+0x8be/0xc60 [ 305.293172] save_stack_trace+0xc6/0x110 [ 305.297257] kmsan_internal_chain_origin+0x136/0x240 [ 305.302380] kmsan_memcpy_origins+0x13d/0x190 [ 305.306890] __msan_memcpy+0x6f/0x80 [ 305.310627] pskb_expand_head+0x436/0x1d20 [ 305.314874] tcp_fragment+0x378/0x21d0 [ 305.318777] tcp_sacktag_walk+0xe88/0x29d0 [ 305.323026] tcp_sacktag_write_queue+0x2805/0x4630 [ 305.327969] tcp_ack+0x2888/0xa010 [ 305.331525] tcp_rcv_established+0xf7e/0x2940 [ 305.336035] tcp_v4_do_rcv+0x686/0xd80 [ 305.339942] __release_sock+0x32d/0x750 [ 305.343937] release_sock+0x99/0x2a0 [ 305.347666] tcp_sendmsg+0xd6/0x100 [ 305.351313] inet_sendmsg+0x4e9/0x800 [ 305.355320] sock_write_iter+0x3f4/0x4f0 [ 305.359401] __vfs_write+0x888/0xb80 [ 305.363127] vfs_write+0x4a3/0x8f0 [ 305.366679] __se_sys_write+0x17a/0x370 [ 305.370670] __x64_sys_write+0x4a/0x70 [ 305.374574] do_syscall_64+0xcf/0x110 [ 305.378394] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 305.383590] [ 305.385229] Uninit was stored to memory at: [ 305.389570] kmsan_internal_chain_origin+0x136/0x240 [ 305.394695] __msan_chain_origin+0x6d/0xb0 [ 305.398948] __save_stack_trace+0x8be/0xc60 [ 305.403291] save_stack_trace+0xc6/0x110 [ 305.407367] kmsan_internal_chain_origin+0x136/0x240 [ 305.412484] kmsan_memcpy_origins+0x13d/0x190 [ 305.416999] __msan_memcpy+0x6f/0x80 [ 305.420747] pskb_expand_head+0x436/0x1d20 [ 305.425001] tcp_fragment+0x378/0x21d0 [ 305.428905] tcp_sacktag_walk+0xe88/0x29d0 [ 305.433156] tcp_sacktag_write_queue+0x2805/0x4630 [ 305.438103] tcp_ack+0x2888/0xa010 [ 305.441646] tcp_rcv_established+0xf7e/0x2940 [ 305.446156] tcp_v4_do_rcv+0x686/0xd80 [ 305.450092] __release_sock+0x32d/0x750 [ 305.454086] release_sock+0x99/0x2a0 [ 305.457825] tcp_sendmsg+0xd6/0x100 [ 305.461474] inet_sendmsg+0x4e9/0x800 [ 305.465296] sock_write_iter+0x3f4/0x4f0 [ 305.469375] __vfs_write+0x888/0xb80 [ 305.473108] vfs_write+0x4a3/0x8f0 [ 305.476672] __se_sys_write+0x17a/0x370 [ 305.480671] __x64_sys_write+0x4a/0x70 [ 305.484578] do_syscall_64+0xcf/0x110 [ 305.488920] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 305.494118] [ 305.495762] Uninit was stored to memory at: [ 305.500112] kmsan_internal_chain_origin+0x136/0x240 [ 305.505250] __msan_chain_origin+0x6d/0xb0 [ 305.509514] __save_stack_trace+0x8be/0xc60 [ 305.513861] save_stack_trace+0xc6/0x110 [ 305.517950] kmsan_internal_chain_origin+0x136/0x240 [ 305.523078] kmsan_memcpy_origins+0x13d/0x190 [ 305.527593] __msan_memcpy+0x6f/0x80 [ 305.531330] pskb_expand_head+0x436/0x1d20 [ 305.535587] tcp_fragment+0x378/0x21d0 [ 305.539492] tcp_sacktag_walk+0xe88/0x29d0 [ 305.543760] tcp_sacktag_write_queue+0x2805/0x4630 [ 305.548710] tcp_ack+0x2888/0xa010 [ 305.552272] tcp_rcv_established+0xf7e/0x2940 [ 305.556790] tcp_v4_do_rcv+0x686/0xd80 [ 305.560702] __release_sock+0x32d/0x750 [ 305.564706] release_sock+0x99/0x2a0 [ 305.568447] tcp_sendmsg+0xd6/0x100 [ 305.572097] inet_sendmsg+0x4e9/0x800 [ 305.575922] sock_write_iter+0x3f4/0x4f0 [ 305.580003] __vfs_write+0x888/0xb80 [ 305.583731] vfs_write+0x4a3/0x8f0 [ 305.587297] __se_sys_write+0x17a/0x370 [ 305.591292] __x64_sys_write+0x4a/0x70 [ 305.595199] do_syscall_64+0xcf/0x110 [ 305.599036] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 305.604241] [ 305.605877] Uninit was stored to memory at: [ 305.610230] kmsan_internal_chain_origin+0x136/0x240 [ 305.615352] __msan_chain_origin+0x6d/0xb0 [ 305.619611] __save_stack_trace+0x8be/0xc60 [ 305.623957] save_stack_trace+0xc6/0x110 [ 305.628050] kmsan_internal_chain_origin+0x136/0x240 [ 305.633175] kmsan_memcpy_origins+0x13d/0x190 [ 305.637703] __msan_memcpy+0x6f/0x80 [ 305.641444] pskb_expand_head+0x436/0x1d20 [ 305.645700] tcp_fragment+0x378/0x21d0 [ 305.649616] tcp_sacktag_walk+0xe88/0x29d0 [ 305.653867] tcp_sacktag_write_queue+0x2805/0x4630 [ 305.658817] tcp_ack+0x2888/0xa010 [ 305.662376] tcp_rcv_established+0xf7e/0x2940 [ 305.666893] tcp_v4_do_rcv+0x686/0xd80 [ 305.670801] __release_sock+0x32d/0x750 [ 305.674798] release_sock+0x99/0x2a0 [ 305.678537] tcp_sendmsg+0xd6/0x100 [ 305.682190] inet_sendmsg+0x4e9/0x800 [ 305.686023] sock_write_iter+0x3f4/0x4f0 [ 305.690106] __vfs_write+0x888/0xb80 [ 305.693833] vfs_write+0x4a3/0x8f0 [ 305.697392] __se_sys_write+0x17a/0x370 [ 305.701388] __x64_sys_write+0x4a/0x70 [ 305.705296] do_syscall_64+0xcf/0x110 [ 305.709122] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 305.714321] [ 305.715959] Uninit was stored to memory at: [ 305.720307] kmsan_internal_chain_origin+0x136/0x240 [ 305.725432] __msan_chain_origin+0x6d/0xb0 [ 305.729686] __save_stack_trace+0x8be/0xc60 [ 305.734030] save_stack_trace+0xc6/0x110 [ 305.738109] kmsan_internal_chain_origin+0x136/0x240 [ 305.743243] kmsan_memcpy_origins+0x13d/0x190 [ 305.747764] __msan_memcpy+0x6f/0x80 [ 305.751499] pskb_expand_head+0x436/0x1d20 [ 305.755759] tcp_fragment+0x378/0x21d0 [ 305.759668] tcp_sacktag_walk+0xe88/0x29d0 [ 305.763923] tcp_sacktag_write_queue+0x2805/0x4630 [ 305.768880] tcp_ack+0x2888/0xa010 [ 305.772439] tcp_rcv_established+0xf7e/0x2940 [ 305.776952] tcp_v4_do_rcv+0x686/0xd80 [ 305.780860] __release_sock+0x32d/0x750 [ 305.784856] release_sock+0x99/0x2a0 [ 305.788594] tcp_sendmsg+0xd6/0x100 [ 305.792253] inet_sendmsg+0x4e9/0x800 [ 305.796071] sock_write_iter+0x3f4/0x4f0 [ 305.800153] __vfs_write+0x888/0xb80 [ 305.803918] vfs_write+0x4a3/0x8f0 [ 305.807485] __se_sys_write+0x17a/0x370 23:35:28 executing program 2: r0 = socket(0x1e, 0x4, 0x0) r1 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000100)=@req={0x3fc}, 0x10) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000265000)=@req={0x3fc}, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x34000}, 0xc, &(0x7f0000000080)={&(0x7f00000002c0)={0x2c, 0x29, 0x1, 0x0, 0x0, {0x1}, [@nested={0x18, 0x0, [@typed={0x5, 0x0, @ipv6=@ipv4={[0x0, 0x0, 0x0, 0x19, 0xfcffffff], [], @remote}}]}]}, 0x2c}}, 0x0) [ 305.811483] __x64_sys_write+0x4a/0x70 [ 305.815399] do_syscall_64+0xcf/0x110 [ 305.819242] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 305.824437] [ 305.826079] Local variable description: ----_tcph@tcp_packet [ 305.831881] Variable was created at: [ 305.835616] tcp_packet+0xe1/0x73c0 [ 305.839267] nf_conntrack_in+0x9f0/0x1edd 23:35:28 executing program 4: mmap(&(0x7f00002d8000/0x1000)=nil, 0x1000, 0x0, 0x31, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x31, 0xffffffffffffffff, 0x0) 23:35:29 executing program 1: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) write$cgroup_subtree(r0, &(0x7f0000000240)={[{0x0, 'pids'}]}, 0x6) write(r0, &(0x7f00000001c0)='I', 0x1) [ 306.091251] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 306.098161] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 306.151198] ================================================================== [ 306.158645] BUG: KMSAN: uninit-value in tipc_nl_compat_name_table_dump+0x4a8/0xba0 [ 306.166393] CPU: 0 PID: 8447 Comm: syz-executor2 Not tainted 4.20.0-rc2+ #84 [ 306.173592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 306.182960] Call Trace: [ 306.185577] dump_stack+0x32d/0x480 [ 306.189255] ? tipc_nl_compat_name_table_dump+0x4a8/0xba0 [ 306.194842] kmsan_report+0x19f/0x300 [ 306.198680] __msan_warning+0x76/0xc0 [ 306.202521] tipc_nl_compat_name_table_dump+0x4a8/0xba0 [ 306.207939] ? tipc_nlmsg_parse+0x206/0x230 [ 306.212308] ? tipc_nl_compat_name_table_dump_header+0x1f0/0x1f0 [ 306.218492] __tipc_nl_compat_dumpit+0x59e/0xdb0 [ 306.223352] tipc_nl_compat_dumpit+0x63a/0x820 [ 306.227993] tipc_nl_compat_recv+0x1410/0x2770 [ 306.232616] ? __msan_get_context_state+0x9/0x20 [ 306.237424] ? tipc_nl_compat_link_reset_stats+0x360/0x360 [ 306.243074] ? tipc_nametbl_stop+0xfe0/0xfe0 23:35:29 executing program 5: [ 306.247534] ? tipc_nl_compat_name_table_dump_header+0x1f0/0x1f0 [ 306.253731] ? tipc_netlink_compat_stop+0x40/0x40 [ 306.258609] genl_rcv_msg+0x189e/0x1aa0 [ 306.262657] ? kmsan_set_origin+0x7f/0x100 [ 306.267114] netlink_rcv_skb+0x394/0x640 [ 306.271229] ? genl_unbind+0x390/0x390 [ 306.275175] genl_rcv+0x63/0x80 [ 306.278505] netlink_unicast+0x1699/0x1740 [ 306.282804] ? genl_pernet_exit+0x90/0x90 [ 306.287000] netlink_sendmsg+0x13c7/0x1440 [ 306.291333] ___sys_sendmsg+0xe3b/0x1240 [ 306.295425] ? netlink_getsockopt+0x1910/0x1910 [ 306.300180] ? __fdget+0x329/0x440 [ 306.303790] __se_sys_sendmsg+0x305/0x460 [ 306.307999] __x64_sys_sendmsg+0x4a/0x70 [ 306.312087] do_syscall_64+0xcf/0x110 [ 306.315929] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 306.321134] RIP: 0033:0x457569 [ 306.324350] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 306.343280] RSP: 002b:00007fe742170c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 306.351020] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 306.358308] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000005 [ 306.365601] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 306.372894] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe7421716d4 [ 306.380186] R13: 00000000004c3b79 R14: 00000000004d5d90 R15: 00000000ffffffff [ 306.387514] [ 306.389151] Uninit was created at: [ 306.392721] kmsan_internal_poison_shadow+0xc8/0x1c0 [ 306.397852] kmsan_kmalloc+0x98/0xf0 [ 306.401591] kmsan_slab_alloc+0xe/0x10 [ 306.405506] __kmalloc_node_track_caller+0xf62/0x14e0 [ 306.410721] __alloc_skb+0x42b/0xeb0 [ 306.414462] netlink_sendmsg+0xc9e/0x1440 [ 306.418637] ___sys_sendmsg+0xe3b/0x1240 [ 306.422725] __se_sys_sendmsg+0x305/0x460 [ 306.426896] __x64_sys_sendmsg+0x4a/0x70 [ 306.430983] do_syscall_64+0xcf/0x110 [ 306.434835] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 306.440039] ================================================================== [ 306.447414] Disabling lock debugging due to kernel taint [ 306.452879] Kernel panic - not syncing: panic_on_warn set ... [ 306.458791] CPU: 0 PID: 8447 Comm: syz-executor2 Tainted: G B 4.20.0-rc2+ #84 [ 306.467381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 306.476753] Call Trace: [ 306.479369] dump_stack+0x32d/0x480 [ 306.483041] panic+0x624/0xc08 [ 306.486330] kmsan_report+0x300/0x300 [ 306.490170] __msan_warning+0x76/0xc0 [ 306.494013] tipc_nl_compat_name_table_dump+0x4a8/0xba0 [ 306.499420] ? tipc_nlmsg_parse+0x206/0x230 [ 306.503782] ? tipc_nl_compat_name_table_dump_header+0x1f0/0x1f0 [ 306.509955] __tipc_nl_compat_dumpit+0x59e/0xdb0 [ 306.514788] tipc_nl_compat_dumpit+0x63a/0x820 [ 306.519419] tipc_nl_compat_recv+0x1410/0x2770 [ 306.524039] ? __msan_get_context_state+0x9/0x20 [ 306.528842] ? tipc_nl_compat_link_reset_stats+0x360/0x360 [ 306.534489] ? tipc_nametbl_stop+0xfe0/0xfe0 [ 306.538922] ? tipc_nl_compat_name_table_dump_header+0x1f0/0x1f0 [ 306.545108] ? tipc_netlink_compat_stop+0x40/0x40 [ 306.549985] genl_rcv_msg+0x189e/0x1aa0 [ 306.554029] ? kmsan_set_origin+0x7f/0x100 [ 306.558308] netlink_rcv_skb+0x394/0x640 [ 306.562404] ? genl_unbind+0x390/0x390 [ 306.566339] genl_rcv+0x63/0x80 [ 306.569646] netlink_unicast+0x1699/0x1740 [ 306.573932] ? genl_pernet_exit+0x90/0x90 [ 306.578122] netlink_sendmsg+0x13c7/0x1440 [ 306.582422] ___sys_sendmsg+0xe3b/0x1240 [ 306.586520] ? netlink_getsockopt+0x1910/0x1910 [ 306.591282] ? __fdget+0x329/0x440 [ 306.594862] __se_sys_sendmsg+0x305/0x460 [ 306.599066] __x64_sys_sendmsg+0x4a/0x70 [ 306.603164] do_syscall_64+0xcf/0x110 [ 306.607000] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 306.612209] RIP: 0033:0x457569 [ 306.615453] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 306.634376] RSP: 002b:00007fe742170c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 306.642111] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 306.649399] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000005 [ 306.656684] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 306.663969] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe7421716d4 [ 306.671270] R13: 00000000004c3b79 R14: 00000000004d5d90 R15: 00000000ffffffff [ 306.679528] Kernel Offset: disabled [ 306.683167] Rebooting in 86400 seconds..