[....] Starting enhanced syslogd: rsyslogd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[ 102.719935][ T32] audit: type=1800 audit(1583569693.771:25): pid=10765 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[ 102.753700][ T32] audit: type=1800 audit(1583569693.801:26): pid=10765 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[ 102.774017][ T32] audit: type=1800 audit(1583569693.801:27): pid=10765 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[....] Starting OpenBSD Secure Shell server: sshd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
Debian GNU/Linux 7 syzkaller ttyS0
Warning: Permanently added '10.128.1.52' (ECDSA) to the list of known hosts.
syzkaller login: [ 116.397994][T10916] IPVS: ftp: loaded support on port[0] = 21
[ 116.484757][T10916] chnl_net:caif_netlink_parms(): no params data found
[ 116.560053][T10916] bridge0: port 1(bridge_slave_0) entered blocking state
[ 116.567229][T10916] bridge0: port 1(bridge_slave_0) entered disabled state
[ 116.575874][T10916] device bridge_slave_0 entered promiscuous mode
[ 116.585003][T10916] bridge0: port 2(bridge_slave_1) entered blocking state
[ 116.592104][T10916] bridge0: port 2(bridge_slave_1) entered disabled state
[ 116.600724][T10916] device bridge_slave_1 entered promiscuous mode
[ 116.626613][T10916] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 116.638167][T10916] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 116.676399][T10916] team0: Port device team_slave_0 added
[ 116.686701][T10916] team0: Port device team_slave_1 added
[ 116.710099][T10916] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 116.717534][T10916] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 116.743623][T10916] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 116.755582][T10916] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 116.762560][T10916] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 116.788540][T10916] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 116.856783][T10916] device hsr_slave_0 entered promiscuous mode
[ 116.893838][T10916] device hsr_slave_1 entered promiscuous mode
[ 117.038817][T10916] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 117.097664][T10916] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 117.157768][T10916] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 117.217757][T10916] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 117.299468][T10916] bridge0: port 2(bridge_slave_1) entered blocking state
[ 117.306870][T10916] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 117.314983][T10916] bridge0: port 1(bridge_slave_0) entered blocking state
[ 117.322121][T10916] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 117.384098][T10916] 8021q: adding VLAN 0 to HW filter on device bond0
[ 117.400070][ T30] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 117.411352][ T30] bridge0: port 1(bridge_slave_0) entered disabled state
[ 117.420468][ T30] bridge0: port 2(bridge_slave_1) entered disabled state
[ 117.430190][ T30] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 117.448081][T10916] 8021q: adding VLAN 0 to HW filter on device team0
[ 117.462525][ T3914] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 117.471575][ T3914] bridge0: port 1(bridge_slave_0) entered blocking state
[ 117.478815][ T3914] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 117.494116][T10922] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 117.503887][T10922] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 117.512575][T10922] bridge0: port 2(bridge_slave_1) entered blocking state
[ 117.519794][T10922] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 117.534214][ T3914] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 117.555825][ T3914] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 117.566651][ T3914] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 117.576768][ T3914] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 117.587582][ T3914] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 117.597125][ T3914] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 117.616917][T10916] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 117.627441][T10916] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 117.640426][ T3914] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 117.649444][ T3914] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 117.658630][ T3914] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 117.668049][ T3914] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 117.677255][ T3914] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 117.687414][ T3914] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 117.713146][ T2749] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 117.720815][ T2749] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 117.738181][T10916] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 117.761077][ T3914] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 117.770820][ T3914] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 117.799034][ T2749] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 117.808013][ T2749] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 117.819520][ T2749] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 117.828135][ T2749] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 117.838320][T10916] device veth0_vlan entered promiscuous mode
[ 117.852691][T10916] device veth1_vlan entered promiscuous mode
[ 117.881021][ T3914] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 117.890605][ T3914] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 117.899532][ T3914] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 117.908555][ T3914] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 117.922281][T10916] device veth0_macvtap entered promiscuous mode
[ 117.934545][T10916] device veth1_macvtap entered promiscuous mode
[ 117.957702][T10916] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 117.965342][ T2749] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 117.974456][ T2749] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 117.984300][ T2749] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 117.993626][ T2749] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 118.010172][T10916] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 118.017940][ T3914] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 118.028474][ T3914] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
executing program
[ 118.243704][ C1] =====================================================
[ 118.250698][ C1] BUG: KMSAN: use-after-free in find_match+0x317/0x1480
[ 118.257625][ C1] CPU: 1 PID: 2749 Comm: kworker/1:2 Not tainted 5.6.0-rc2-syzkaller #0
[ 118.265973][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 118.276139][ C1] Workqueue: ipv6_addrconf addrconf_dad_work
[ 118.282098][ C1] Call Trace:
[ 118.285361][ C1]
[ 118.288212][ C1] dump_stack+0x1c9/0x220
[ 118.292529][ C1] kmsan_report+0xf7/0x1e0
[ 118.296936][ C1] __msan_warning+0x58/0xa0
[ 118.301424][ C1] find_match+0x317/0x1480
[ 118.305829][ C1] ? __msan_metadata_ptr_for_store_4+0x13/0x20
[ 118.311971][ C1] ? kmsan_get_metadata+0x11d/0x180
[ 118.317169][ C1] __find_rr_leaf+0x3f9/0x1160
[ 118.321936][ C1] ? kmsan_get_metadata+0x4f/0x180
[ 118.327066][ C1] fib6_table_lookup+0x586/0x1420
[ 118.332121][ C1] ip6_pol_route+0x203/0x2960
[ 118.336825][ C1] ip6_pol_route_input+0x123/0x140
[ 118.341943][ C1] fib6_rule_lookup+0x38f/0xa10
[ 118.346786][ C1] ? ip6_route_input_lookup+0x1f0/0x1f0
[ 118.352330][ C1] ? kmsan_get_metadata+0x11d/0x180
[ 118.357521][ C1] ip6_route_input+0xb9d/0xcf0
[ 118.362282][ C1] ? kmsan_get_metadata+0x11d/0x180
[ 118.367485][ C1] ip6_rcv_finish_core+0x1f9/0x470
[ 118.372612][ C1] ipv6_rcv+0x628/0x710
[ 118.376768][ C1] ? local_bh_enable+0x40/0x40
[ 118.381541][ C1] process_backlog+0xa41/0x1410
[ 118.386394][ C1] ? kmsan_get_metadata+0x4f/0x180
[ 118.391500][ C1] ? kmsan_get_metadata+0x11d/0x180
[ 118.396703][ C1] ? rps_trigger_softirq+0x2e0/0x2e0
[ 118.401979][ C1] net_rx_action+0x786/0x1aa0
[ 118.406667][ C1] ? net_tx_action+0xc30/0xc30
[ 118.411428][ C1] __do_softirq+0x311/0x83d
[ 118.415934][ C1] do_softirq_own_stack+0x49/0x80
[ 118.420939][ C1]
[ 118.423869][ C1] __local_bh_enable_ip+0x184/0x1d0
[ 118.429060][ C1] local_bh_enable+0x36/0x40
[ 118.433653][ C1] ip6_finish_output2+0x2113/0x2640
[ 118.438867][ C1] ? kmsan_get_metadata+0x11d/0x180
[ 118.444053][ C1] __ip6_finish_output+0x824/0x8e0
[ 118.449171][ C1] ip6_finish_output+0x166/0x410
[ 118.454103][ C1] ip6_output+0x60a/0x770
[ 118.458429][ C1] ? ip6_output+0x770/0x770
[ 118.462915][ C1] ? ac6_seq_show+0x200/0x200
[ 118.467577][ C1] ndisc_send_skb+0x1047/0x15a0
[ 118.472434][ C1] ? ndisc_error_report+0x1a0/0x1a0
[ 118.477622][ C1] ndisc_send_ns+0xe38/0xe80
[ 118.482198][ C1] ? __queue_delayed_work+0x27f/0x450
[ 118.487558][ C1] ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[ 118.493363][ C1] addrconf_dad_work+0xc0b/0x2aa0
[ 118.498376][ C1] ? kmsan_get_metadata+0x11d/0x180
[ 118.503571][ C1] ? ipv6_get_saddr_eval+0x1350/0x1350
[ 118.509013][ C1] process_one_work+0x1555/0x1f40
[ 118.514044][ C1] worker_thread+0xef6/0x2450
[ 118.518710][ C1] ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[ 118.524506][ C1] ? kmsan_get_metadata+0x11d/0x180
[ 118.529704][ C1] kthread+0x4b5/0x4f0
[ 118.533755][ C1] ? process_one_work+0x1f40/0x1f40
[ 118.538945][ C1] ? kthread_blkcg+0xf0/0xf0
[ 118.543519][ C1] ret_from_fork+0x35/0x40
[ 118.547933][ C1]
[ 118.550244][ C1] Uninit was created at:
[ 118.554477][ C1] kmsan_internal_poison_shadow+0x66/0xd0
[ 118.560186][ C1] kmsan_slab_free+0x6e/0xb0
[ 118.564808][ C1] kfree+0x565/0x30a0
[ 118.568789][ C1] netdev_name_node_alt_destroy+0x587/0x690
[ 118.574781][ C1] rtnl_linkprop+0x939/0xc00
[ 118.579370][ C1] rtnl_dellinkprop+0x9d/0xb0
[ 118.584045][ C1] rtnetlink_rcv_msg+0x1153/0x1570
[ 118.589138][ C1] netlink_rcv_skb+0x451/0x650
[ 118.593887][ C1] rtnetlink_rcv+0x50/0x60
[ 118.598288][ C1] netlink_unicast+0xf9e/0x1100
[ 118.603122][ C1] netlink_sendmsg+0x1246/0x14d0
[ 118.608044][ C1] ____sys_sendmsg+0x12b6/0x1350
[ 118.612964][ C1] __sys_sendmsg+0x451/0x5f0
[ 118.617545][ C1] __se_sys_sendmsg+0x97/0xb0
[ 118.622206][ C1] __x64_sys_sendmsg+0x4a/0x70
[ 118.626968][ C1] do_syscall_64+0xb8/0x160
[ 118.631472][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 118.637341][ C1] =====================================================
[ 118.644254][ C1] Disabling lock debugging due to kernel taint
[ 118.650389][ C1] Kernel panic - not syncing: panic_on_warn set ...
[ 118.650392][ C0] =====================================================
[ 118.650417][ C0] BUG: KMSAN: use-after-free in find_match+0x317/0x1480
[ 118.656980][ C1] CPU: 1 PID: 2749 Comm: kworker/1:2 Tainted: G B 5.6.0-rc2-syzkaller #0
[ 118.680489][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 118.690537][ C1] Workqueue: ipv6_addrconf addrconf_dad_work
[ 118.696497][ C1] Call Trace:
[ 118.699768][ C1]
[ 118.702606][ C1] dump_stack+0x1c9/0x220
[ 118.706936][ C1] panic+0x3d5/0xc3e
[ 118.710855][ C1] kmsan_report+0x1df/0x1e0
[ 118.715350][ C1] __msan_warning+0x58/0xa0
[ 118.719845][ C1] find_match+0x317/0x1480
[ 118.724259][ C1] ? __msan_metadata_ptr_for_store_4+0x13/0x20
[ 118.730399][ C1] ? kmsan_get_metadata+0x11d/0x180
[ 118.735597][ C1] __find_rr_leaf+0x3f9/0x1160
[ 118.740369][ C1] ? kmsan_get_metadata+0x4f/0x180
[ 118.745478][ C1] fib6_table_lookup+0x586/0x1420
[ 118.750545][ C1] ip6_pol_route+0x203/0x2960
[ 118.755240][ C1] ip6_pol_route_input+0x123/0x140
[ 118.760353][ C1] fib6_rule_lookup+0x38f/0xa10
[ 118.765277][ C1] ? ip6_route_input_lookup+0x1f0/0x1f0
[ 118.770832][ C1] ? kmsan_get_metadata+0x11d/0x180
[ 118.776022][ C1] ip6_route_input+0xb9d/0xcf0
[ 118.780789][ C1] ? kmsan_get_metadata+0x11d/0x180
[ 118.785985][ C1] ip6_rcv_finish_core+0x1f9/0x470
[ 118.791087][ C1] ipv6_rcv+0x628/0x710
[ 118.795235][ C1] ? local_bh_enable+0x40/0x40
[ 118.799992][ C1] process_backlog+0xa41/0x1410
[ 118.804837][ C1] ? kmsan_get_metadata+0x4f/0x180
[ 118.809941][ C1] ? kmsan_get_metadata+0x11d/0x180
[ 118.815129][ C1] ? rps_trigger_softirq+0x2e0/0x2e0
[ 118.820397][ C1] net_rx_action+0x786/0x1aa0
[ 118.825081][ C1] ? net_tx_action+0xc30/0xc30
[ 118.829832][ C1] __do_softirq+0x311/0x83d
[ 118.834334][ C1] do_softirq_own_stack+0x49/0x80
[ 118.839336][ C1]
[ 118.842262][ C1] __local_bh_enable_ip+0x184/0x1d0
[ 118.847454][ C1] local_bh_enable+0x36/0x40
[ 118.852172][ C1] ip6_finish_output2+0x2113/0x2640
[ 118.857389][ C1] ? kmsan_get_metadata+0x11d/0x180
[ 118.862585][ C1] __ip6_finish_output+0x824/0x8e0
[ 118.867702][ C1] ip6_finish_output+0x166/0x410
[ 118.872641][ C1] ip6_output+0x60a/0x770
[ 118.876973][ C1] ? ip6_output+0x770/0x770
[ 118.881471][ C1] ? ac6_seq_show+0x200/0x200
[ 118.886146][ C1] ndisc_send_skb+0x1047/0x15a0
[ 118.891014][ C1] ? ndisc_error_report+0x1a0/0x1a0
[ 118.896205][ C1] ndisc_send_ns+0xe38/0xe80
[ 118.900781][ C1] ? __queue_delayed_work+0x27f/0x450
[ 118.906145][ C1] ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[ 118.911950][ C1] addrconf_dad_work+0xc0b/0x2aa0
[ 118.916968][ C1] ? kmsan_get_metadata+0x11d/0x180
[ 118.922169][ C1] ? ipv6_get_saddr_eval+0x1350/0x1350
[ 118.927610][ C1] process_one_work+0x1555/0x1f40
[ 118.932643][ C1] worker_thread+0xef6/0x2450
[ 118.937313][ C1] ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[ 118.943103][ C1] ? kmsan_get_metadata+0x11d/0x180
[ 118.948317][ C1] kthread+0x4b5/0x4f0
[ 118.952375][ C1] ? process_one_work+0x1f40/0x1f40
[ 118.957590][ C1] ? kthread_blkcg+0xf0/0xf0
[ 118.962188][ C1] ret_from_fork+0x35/0x40
[ 118.966636][ C0] CPU: 0 PID: 9 Comm: ksoftirqd/0 Tainted: G B 5.6.0-rc2-syzkaller #0
[ 118.976091][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 118.986135][ C0] Call Trace:
[ 118.989425][ C0] dump_stack+0x1c9/0x220
[ 118.993763][ C0] kmsan_report+0xf7/0x1e0
[ 118.998186][ C0] __msan_warning+0x58/0xa0
[ 119.002687][ C0] find_match+0x317/0x1480
[ 119.007641][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 119.013712][ C0] ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[ 119.019521][ C0] ? kmsan_get_metadata+0x11d/0x180
[ 119.024711][ C0] ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[ 119.030510][ C0] ? kmsan_get_metadata+0x11d/0x180
[ 119.035716][ C0] __find_rr_leaf+0x3f9/0x1160
[ 119.040500][ C0] ? kmsan_get_metadata+0x4f/0x180
[ 119.045621][ C0] fib6_table_lookup+0x586/0x1420
[ 119.050690][ C0] ip6_pol_route+0x203/0x2960
[ 119.055366][ C0] ? nf_ip6_checksum+0x501/0x610
[ 119.060311][ C0] ? kmsan_get_metadata+0x11d/0x180
[ 119.065524][ C0] ip6_pol_route_input+0x123/0x140
[ 119.070650][ C0] fib6_rule_lookup+0x38f/0xa10
[ 119.075499][ C0] ? ip6_route_input_lookup+0x1f0/0x1f0
[ 119.081054][ C0] ? kmsan_get_metadata+0x11d/0x180
[ 119.086253][ C0] ip6_route_input+0xb9d/0xcf0
[ 119.091025][ C0] ? kmsan_get_metadata+0x11d/0x180
[ 119.096231][ C0] ip6_rcv_finish_core+0x1f9/0x470
[ 119.101453][ C0] ipv6_rcv+0x628/0x710
[ 119.105619][ C0] ? local_bh_enable+0x40/0x40
[ 119.110391][ C0] process_backlog+0xa41/0x1410
[ 119.115240][ C0] ? __list_add_valid+0xb8/0x420
[ 119.120171][ C0] ? kmsan_get_metadata+0x4f/0x180
[ 119.125281][ C0] ? kmsan_get_metadata+0x11d/0x180
[ 119.130481][ C0] ? rps_trigger_softirq+0x2e0/0x2e0
[ 119.135758][ C0] net_rx_action+0x786/0x1aa0
[ 119.140445][ C0] ? net_tx_action+0xc30/0xc30
[ 119.145205][ C0] __do_softirq+0x311/0x83d
[ 119.149714][ C0] ? ksoftirqd_should_run+0x30/0x30
[ 119.154901][ C0] ? takeover_tasklets+0x8f0/0x8f0
[ 119.160002][ C0] run_ksoftirqd+0x25/0x40
[ 119.164408][ C0] smpboot_thread_fn+0x493/0x980
[ 119.169352][ C0] kthread+0x4b5/0x4f0
[ 119.173407][ C0] ? cpu_report_death+0x180/0x180
[ 119.178425][ C0] ? kthread_blkcg+0xf0/0xf0
[ 119.183002][ C0] ret_from_fork+0x35/0x40
[ 119.187414][ C0]
[ 119.189722][ C0] Uninit was created at:
[ 119.193953][ C0] kmsan_internal_poison_shadow+0x66/0xd0
[ 119.199655][ C0] kmsan_slab_free+0x6e/0xb0
[ 119.204228][ C0] kfree+0x565/0x30a0
[ 119.208196][ C0] netdev_name_node_alt_destroy+0x587/0x690
[ 119.214071][ C0] rtnl_linkprop+0x939/0xc00
[ 119.218642][ C0] rtnl_dellinkprop+0x9d/0xb0
[ 119.223306][ C0] rtnetlink_rcv_msg+0x1153/0x1570
[ 119.228402][ C0] netlink_rcv_skb+0x451/0x650
[ 119.233149][ C0] rtnetlink_rcv+0x50/0x60
[ 119.237548][ C0] netlink_unicast+0xf9e/0x1100
[ 119.242383][ C0] netlink_sendmsg+0x1246/0x14d0
[ 119.247302][ C0] ____sys_sendmsg+0x12b6/0x1350
[ 119.252240][ C0] __sys_sendmsg+0x451/0x5f0
[ 119.256824][ C0] __se_sys_sendmsg+0x97/0xb0
[ 119.261492][ C0] __x64_sys_sendmsg+0x4a/0x70
[ 119.266253][ C0] do_syscall_64+0xb8/0x160
[ 119.270854][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 119.276822][ C0] =====================================================
[ 120.181486][ C1] Shutting down cpus with NMI
[ 120.198838][ C1] ------------[ cut here ]------------
[ 120.204285][ C1] kernel BUG at mm/kmsan/kmsan.h:87!
[ 120.209558][ C1] invalid opcode: 0000 [#1] SMP
[ 120.214403][ C1] CPU: 1 PID: 2749 Comm: kworker/1:2 Tainted: G B 5.6.0-rc2-syzkaller #0
[ 120.224089][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 120.234135][ C1] Workqueue: ipv6_addrconf addrconf_dad_work
[ 120.240116][ C1] RIP: 0010:kmsan_internal_check_memory+0x3c0/0x3d0
[ 120.246687][ C1] Code: 5b 41 5c 41 5d 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 06 4c 88 a4 31 c0 e8 e1 70 48 ff 0f 0b 0f 0b 0f 0b 0f 0b e8 02 8f 48 ff 0f 0b <0f> 0b 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 83 ff
[ 120.266285][ C1] RSP: 0018:ffffa79900cefff8 EFLAGS: 00010046
[ 120.272332][ C1] RAX: 0000000000000002 RBX: 0000000007b200fa RCX: 0000000007b200fa
[ 120.280283][ C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffffa79900cf00d4
[ 120.288238][ C1] RBP: ffffa79900cf00a0 R08: 0000000000000001 R09: ffff976b2fd28ed0
[ 120.296192][ C1] R10: 0000000000000000 R11: ffffffff9b616f70 R12: 0000000000000000
[ 120.304143][ C1] R13: 0000000000000001 R14: 0000000000000006 R15: 0000000000000001
[ 120.312096][ C1] FS: 0000000000000000(0000) GS:ffff976b2fd00000(0000) knlGS:0000000000000000
[ 120.321003][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 120.327564][ C1] CR2: 00000000004c8be8 CR3: 00000000a9c23000 CR4: 00000000001406e0
[ 120.335520][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 120.343472][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 120.351424][ C1] Call Trace:
[ 120.354688][ C1]
[ 120.357546][ C1] kmsan_check_memory+0xd/0x10
[ 120.362295][ C1] iowrite8+0x99/0x2e0
[ 120.366359][ C1] pvpanic_panic_notify+0x99/0xc0
[ 120.371367][ C1] ? pvpanic_mmio_remove+0x60/0x60
[ 120.376467][ C1] atomic_notifier_call_chain+0x12a/0x240
[ 120.382186][ C1] panic+0x468/0xc3e
[ 120.386113][ C1] kmsan_report+0x1df/0x1e0
[ 120.390608][ C1] __msan_warning+0x58/0xa0
[ 120.395102][ C1] find_match+0x317/0x1480
[ 120.399528][ C1] ? __msan_metadata_ptr_for_store_4+0x13/0x20
[ 120.405683][ C1] ? kmsan_get_metadata+0x11d/0x180
[ 120.410901][ C1] __find_rr_leaf+0x3f9/0x1160
[ 120.415677][ C1] ? kmsan_get_metadata+0x4f/0x180
[ 120.420782][ C1] fib6_table_lookup+0x586/0x1420
[ 120.425828][ C1] ip6_pol_route+0x203/0x2960
[ 120.430530][ C1] ip6_pol_route_input+0x123/0x140
[ 120.435642][ C1] fib6_rule_lookup+0x38f/0xa10
[ 120.440484][ C1] ? ip6_route_input_lookup+0x1f0/0x1f0
[ 120.446028][ C1] ? kmsan_get_metadata+0x11d/0x180
[ 120.451224][ C1] ip6_route_input+0xb9d/0xcf0
[ 120.456005][ C1] ? kmsan_get_metadata+0x11d/0x180
[ 120.461205][ C1] ip6_rcv_finish_core+0x1f9/0x470
[ 120.466313][ C1] ipv6_rcv+0x628/0x710
[ 120.470463][ C1] ? local_bh_enable+0x40/0x40
[ 120.475222][ C1] process_backlog+0xa41/0x1410
[ 120.480070][ C1] ? kmsan_get_metadata+0x4f/0x180
[ 120.485174][ C1] ? kmsan_get_metadata+0x11d/0x180
[ 120.490374][ C1] ? rps_trigger_softirq+0x2e0/0x2e0
[ 120.495644][ C1] net_rx_action+0x786/0x1aa0
[ 120.500340][ C1] ? net_tx_action+0xc30/0xc30
[ 120.505199][ C1] __do_softirq+0x311/0x83d
[ 120.509715][ C1] do_softirq_own_stack+0x49/0x80
[ 120.514726][ C1]
[ 120.517661][ C1] __local_bh_enable_ip+0x184/0x1d0
[ 120.522851][ C1] local_bh_enable+0x36/0x40
[ 120.527433][ C1] ip6_finish_output2+0x2113/0x2640
[ 120.532648][ C1] ? kmsan_get_metadata+0x11d/0x180
[ 120.537844][ C1] __ip6_finish_output+0x824/0x8e0
[ 120.542959][ C1] ip6_finish_output+0x166/0x410
[ 120.547893][ C1] ip6_output+0x60a/0x770
[ 120.552226][ C1] ? ip6_output+0x770/0x770
[ 120.556731][ C1] ? ac6_seq_show+0x200/0x200
[ 120.561394][ C1] ndisc_send_skb+0x1047/0x15a0
[ 120.566254][ C1] ? ndisc_error_report+0x1a0/0x1a0
[ 120.571456][ C1] ndisc_send_ns+0xe38/0xe80
[ 120.576049][ C1] ? __queue_delayed_work+0x27f/0x450
[ 120.581410][ C1] ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[ 120.587220][ C1] addrconf_dad_work+0xc0b/0x2aa0
[ 120.592232][ C1] ? kmsan_get_metadata+0x11d/0x180
[ 120.597438][ C1] ? ipv6_get_saddr_eval+0x1350/0x1350
[ 120.602876][ C1] process_one_work+0x1555/0x1f40
[ 120.607907][ C1] worker_thread+0xef6/0x2450
[ 120.612576][ C1] ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[ 120.618375][ C1] ? kmsan_get_metadata+0x11d/0x180
[ 120.623574][ C1] kthread+0x4b5/0x4f0
[ 120.627623][ C1] ? process_one_work+0x1f40/0x1f40
[ 120.632810][ C1] ? kthread_blkcg+0xf0/0xf0
[ 120.637387][ C1] ret_from_fork+0x35/0x40
[ 120.641793][ C1] Modules linked in:
[ 120.645677][ C1] ---[ end trace 3ad68806c1d278ae ]---
[ 120.651118][ C1] RIP: 0010:kmsan_internal_check_memory+0x3c0/0x3d0
[ 120.657688][ C1] Code: 5b 41 5c 41 5d 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 06 4c 88 a4 31 c0 e8 e1 70 48 ff 0f 0b 0f 0b 0f 0b 0f 0b e8 02 8f 48 ff 0f 0b <0f> 0b 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 83 ff
[ 120.677284][ C1] RSP: 0018:ffffa79900cefff8 EFLAGS: 00010046
[ 120.683334][ C1] RAX: 0000000000000002 RBX: 0000000007b200fa RCX: 0000000007b200fa
[ 120.691287][ C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffffa79900cf00d4
[ 120.699362][ C1] RBP: ffffa79900cf00a0 R08: 0000000000000001 R09: ffff976b2fd28ed0
[ 120.707322][ C1] R10: 0000000000000000 R11: ffffffff9b616f70 R12: 0000000000000000
[ 120.715290][ C1] R13: 0000000000000001 R14: 0000000000000006 R15: 0000000000000001
[ 120.723260][ C1] FS: 0000000000000000(0000) GS:ffff976b2fd00000(0000) knlGS:0000000000000000
[ 120.732176][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 120.738750][ C1] CR2: 00000000004c8be8 CR3: 00000000a9c23000 CR4: 00000000001406e0
[ 120.746715][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 120.754676][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 120.762635][ C1] Kernel panic - not syncing: Fatal exception in interrupt
[ 120.769872][ C1] ------------[ cut here ]------------
[ 120.775310][ C1] kernel BUG at mm/kmsan/kmsan.h:87!
[ 120.780585][ C1] invalid opcode: 0000 [#2] SMP
[ 120.785423][ C1] CPU: 1 PID: 2749 Comm: kworker/1:2 Tainted: G B D 5.6.0-rc2-syzkaller #0
[ 120.795125][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 120.805185][ C1] Workqueue: ipv6_addrconf addrconf_dad_work
[ 120.811159][ C1] RIP: 0010:kmsan_internal_check_memory+0x3c0/0x3d0
[ 120.817732][ C1] Code: 5b 41 5c 41 5d 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 06 4c 88 a4 31 c0 e8 e1 70 48 ff 0f 0b 0f 0b 0f 0b 0f 0b e8 02 8f 48 ff 0f 0b <0f> 0b 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 83 ff
[ 120.837326][ C1] RSP: 0018:ffffa79900cef9e8 EFLAGS: 00010002
[ 120.843381][ C1] RAX: 0000000000000003 RBX: 0000000004d700cc RCX: 0000000004d700cc
[ 120.851336][ C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffffa79900cefac4
[ 120.859318][ C1] RBP: ffffa79900cefa90 R08: 0000000000000000 R09: ffff976b2fd28ed0
[ 120.867279][ C1] R10: 0000000000000000 R11: ffffffff9b616f70 R12: 0000000000000000
[ 120.875236][ C1] R13: 0000000000000001 R14: 0000000000000006 R15: 0000000000000001
[ 120.883196][ C1] FS: 0000000000000000(0000) GS:ffff976b2fd00000(0000) knlGS:0000000000000000
[ 120.892125][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 120.898700][ C1] CR2: 00000000004c8be8 CR3: 00000000a9c23000 CR4: 00000000001406e0
[ 120.906658][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 120.914610][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 120.922647][ C1] Call Trace:
[ 120.925916][ C1]
[ 120.928759][ C1] ? vprintk_func+0x636/0x820
[ 120.933438][ C1] kmsan_check_memory+0xd/0x10
[ 120.938187][ C1] iowrite8+0x99/0x2e0
[ 120.942293][ C1] pvpanic_panic_notify+0x99/0xc0
[ 120.947343][ C1] ? pvpanic_mmio_remove+0x60/0x60
[ 120.952458][ C1] atomic_notifier_call_chain+0x12a/0x240
[ 120.958178][ C1] panic+0x468/0xc3e
[ 120.962091][ C1] oops_end+0x2a5/0x2d0
[ 120.966239][ C1] die+0x317/0x370
[ 120.969959][ C1] do_trap+0x3c0/0x760
[ 120.974033][ C1] do_invalid_op+0x2d4/0x370
[ 120.978606][ C1] ? kmsan_internal_check_memory+0x3c0/0x3d0
[ 120.984570][ C1] ? kmsan_internal_check_memory+0x3c0/0x3d0
[ 120.990538][ C1] invalid_op+0x3d/0x50
[ 120.994680][ C1] RIP: 0010:kmsan_internal_check_memory+0x3c0/0x3d0
[ 121.001253][ C1] Code: 5b 41 5c 41 5d 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 06 4c 88 a4 31 c0 e8 e1 70 48 ff 0f 0b 0f 0b 0f 0b 0f 0b e8 02 8f 48 ff 0f 0b <0f> 0b 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 83 ff
[ 121.021035][ C1] RSP: 0018:ffffa79900cefff8 EFLAGS: 00010046
[ 121.027092][ C1] RAX: 0000000000000002 RBX: 0000000007b200fa RCX: 0000000007b200fa
[ 121.035079][ C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffffa79900cf00d4
[ 121.043051][ C1] RBP: ffffa79900cf00a0 R08: 0000000000000001 R09: ffff976b2fd28ed0
[ 121.051006][ C1] R10: 0000000000000000 R11: ffffffff9b616f70 R12: 0000000000000000
[ 121.058972][ C1] R13: 0000000000000001 R14: 0000000000000006 R15: 0000000000000001
[ 121.066967][ C1] ? pvpanic_mmio_remove+0x60/0x60
[ 121.072076][ C1] ? kmsan_internal_check_memory+0x324/0x3d0
[ 121.078056][ C1] kmsan_check_memory+0xd/0x10
[ 121.082814][ C1] iowrite8+0x99/0x2e0
[ 121.086889][ C1] pvpanic_panic_notify+0x99/0xc0
[ 121.091906][ C1] ? pvpanic_mmio_remove+0x60/0x60
[ 121.097017][ C1] atomic_notifier_call_chain+0x12a/0x240
[ 121.102733][ C1] panic+0x468/0xc3e
[ 121.106644][ C1] kmsan_report+0x1df/0x1e0
[ 121.111137][ C1] __msan_warning+0x58/0xa0
[ 121.115632][ C1] find_match+0x317/0x1480
[ 121.120054][ C1] ? __msan_metadata_ptr_for_store_4+0x13/0x20
[ 121.126203][ C1] ? kmsan_get_metadata+0x11d/0x180
[ 121.131409][ C1] __find_rr_leaf+0x3f9/0x1160
[ 121.136191][ C1] ? kmsan_get_metadata+0x4f/0x180
[ 121.141298][ C1] fib6_table_lookup+0x586/0x1420
[ 121.146360][ C1] ip6_pol_route+0x203/0x2960
[ 121.151059][ C1] ip6_pol_route_input+0x123/0x140
[ 121.156178][ C1] fib6_rule_lookup+0x38f/0xa10
[ 121.161025][ C1] ? ip6_route_input_lookup+0x1f0/0x1f0
[ 121.166585][ C1] ? kmsan_get_metadata+0x11d/0x180
[ 121.171788][ C1] ip6_route_input+0xb9d/0xcf0
[ 121.176555][ C1] ? kmsan_get_metadata+0x11d/0x180
[ 121.181752][ C1] ip6_rcv_finish_core+0x1f9/0x470
[ 121.186852][ C1] ipv6_rcv+0x628/0x710
[ 121.191026][ C1] ? local_bh_enable+0x40/0x40
[ 121.195905][ C1] process_backlog+0xa41/0x1410
[ 121.200756][ C1] ? kmsan_get_metadata+0x4f/0x180
[ 121.205979][ C1] ? kmsan_get_metadata+0x11d/0x180
[ 121.211174][ C1] ? rps_trigger_softirq+0x2e0/0x2e0
[ 121.216474][ C1] net_rx_action+0x786/0x1aa0
[ 121.221164][ C1] ? net_tx_action+0xc30/0xc30
[ 121.225922][ C1] __do_softirq+0x311/0x83d
[ 121.230561][ C1] do_softirq_own_stack+0x49/0x80
[ 121.235565][ C1]
[ 121.238507][ C1] __local_bh_enable_ip+0x184/0x1d0
[ 121.243699][ C1] local_bh_enable+0x36/0x40
[ 121.248278][ C1] ip6_finish_output2+0x2113/0x2640
[ 121.253497][ C1] ? kmsan_get_metadata+0x11d/0x180
[ 121.258699][ C1] __ip6_finish_output+0x824/0x8e0
[ 121.263816][ C1] ip6_finish_output+0x166/0x410
[ 121.268749][ C1] ip6_output+0x60a/0x770
[ 121.273081][ C1] ? ip6_output+0x770/0x770
[ 121.277572][ C1] ? ac6_seq_show+0x200/0x200
[ 121.282238][ C1] ndisc_send_skb+0x1047/0x15a0
[ 121.287120][ C1] ? ndisc_error_report+0x1a0/0x1a0
[ 121.292313][ C1] ndisc_send_ns+0xe38/0xe80
[ 121.296900][ C1] ? __queue_delayed_work+0x27f/0x450
[ 121.302264][ C1] ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[ 121.308072][ C1] addrconf_dad_work+0xc0b/0x2aa0
[ 121.313082][ C1] ? kmsan_get_metadata+0x11d/0x180
[ 121.318279][ C1] ? ipv6_get_saddr_eval+0x1350/0x1350
[ 121.323720][ C1] process_one_work+0x1555/0x1f40
[ 121.328751][ C1] worker_thread+0xef6/0x2450
[ 121.333418][ C1] ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[ 121.339211][ C1] ? kmsan_get_metadata+0x11d/0x180
[ 121.344414][ C1] kthread+0x4b5/0x4f0
[ 121.348470][ C1] ? process_one_work+0x1f40/0x1f40
[ 121.353662][ C1] ? kthread_blkcg+0xf0/0xf0
[ 121.358242][ C1] ret_from_fork+0x35/0x40
[ 121.362652][ C1] Modules linked in:
[ 121.366538][ C1] ---[ end trace 3ad68806c1d278af ]---
[ 121.371984][ C1] RIP: 0010:kmsan_internal_check_memory+0x3c0/0x3d0
[ 121.378558][ C1] Code: 5b 41 5c 41 5d 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 06 4c 88 a4 31 c0 e8 e1 70 48 ff 0f 0b 0f 0b 0f 0b 0f 0b e8 02 8f 48 ff 0f 0b <0f> 0b 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 83 ff
[ 121.398147][ C1] RSP: 0018:ffffa79900cefff8 EFLAGS: 00010046
[ 121.404194][ C1] RAX: 0000000000000002 RBX: 0000000007b200fa RCX: 0000000007b200fa
[ 121.412149][ C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffffa79900cf00d4
[ 121.420115][ C1] RBP: ffffa79900cf00a0 R08: 0000000000000001 R09: ffff976b2fd28ed0
[ 121.428072][ C1] R10: 0000000000000000 R11: ffffffff9b616f70 R12: 0000000000000000
[ 121.436027][ C1] R13: 0000000000000001 R14: 0000000000000006 R15: 0000000000000001
[ 121.443984][ C1] FS: 0000000000000000(0000) GS:ffff976b2fd00000(0000) knlGS:0000000000000000
[ 121.452894][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 121.459461][ C1] CR2: 00000000004c8be8 CR3: 00000000a9c23000 CR4: 00000000001406e0
[ 121.467424][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 121.475380][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 121.483343][ C1] Kernel panic - not syncing: Fatal exception in interrupt
[ 121.491291][ C1] Kernel Offset: 0x15400000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff)
[ 121.502908][ C1] Rebooting in 86400 seconds..