[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 39.131965] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 43.256290] random: sshd: uninitialized urandom read (32 bytes read) [ 43.657273] random: sshd: uninitialized urandom read (32 bytes read) [ 44.793009] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.0.7' (ECDSA) to the list of known hosts. [ 50.498054] random: sshd: uninitialized urandom read (32 bytes read) 2018/09/01 05:36:07 fuzzer started [ 51.954792] random: cc1: uninitialized urandom read (8 bytes read) 2018/09/01 05:36:10 dialing manager at 10.128.0.26:34105 2018/09/01 05:36:12 syscalls: 1 2018/09/01 05:36:12 code coverage: enabled 2018/09/01 05:36:12 comparison tracing: CONFIG_KCOV_ENABLE_COMPARISONS is not enabled 2018/09/01 05:36:12 setuid sandbox: enabled 2018/09/01 05:36:12 namespace sandbox: enabled 2018/09/01 05:36:12 fault injection: enabled 2018/09/01 05:36:12 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2018/09/01 05:36:12 net packed injection: enabled 2018/09/01 05:36:12 net device setup: enabled [ 57.868196] random: crng init done 05:38:32 executing program 0: perf_event_open(&(0x7f0000000140)={0x1, 0x70, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = accept4$packet(0xffffffffffffffff, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000003c0)=0x14, 0x80000) ioctl$sock_SIOCBRDELBR(r0, 0x89a1, &(0x7f0000000400)='veth1_to_bond\x00') r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) r3 = fcntl$getown(r1, 0x9) perf_event_open(&(0x7f0000000300)={0x3, 0x70, 0x8001, 0xffffffff, 0x5, 0xffffffff, 0x0, 0xfffffffffffff001, 0x8204, 0x0, 0x5, 0x0, 0x0, 0x7fffffff, 0x3dc8, 0x2, 0x4, 0x1, 0x9, 0x7, 0x2, 0x0, 0x4, 0x4, 0x3, 0x0, 0x9, 0xffffffff, 0x7, 0x7, 0x8, 0xe7, 0x1, 0x8, 0x80, 0x4, 0x7, 0x20, 0x0, 0x40, 0x0, @perf_bp={&(0x7f00000002c0), 0x6}, 0x0, 0x3, 0x1, 0x7, 0x0, 0x7fffffff, 0xffffffffffffff67}, r3, 0xe, r2, 0x1) write$cgroup_type(r2, &(0x7f00000009c0)='threaded\x00', 0xfffffc47) r4 = getegid() r5 = getgid() stat(&(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)) setresgid(r4, r5, r5) openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000240)='cgroup.subtree_control\x00', 0x2, 0x0) write$P9_RLOPEN(r2, &(0x7f0000000280)={0x18, 0xd, 0x2, {{0x8, 0x4, 0x3}, 0x9}}, 0x18) 05:38:32 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) futex(&(0x7f000000cffc), 0x1, 0x0, &(0x7f0000000100)={0x77359400, 0x4}, &(0x7f0000000000), 0x0) futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, &(0x7f0000d8d000)={0x77359400}, &(0x7f0000048000), 0x0) futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000a00)={0x0, 0x989680}, &(0x7f0000048000), 0x0) exit(0x0) 05:38:32 executing program 7: r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r0, &(0x7f00004c0000)={0xa, 0x3, 0x0, @ipv4}, 0x1c) listen(r0, 0x43) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r1, &(0x7f0000847fff)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x3, 0x0, @loopback}, 0x1c) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000b20000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7}]}, 0x10) write$binfmt_elf32(r1, &(0x7f0000000200)=ANY=[], 0x0) sendmmsg(r1, &(0x7f0000000040)=[{{0x0, 0x0, &(0x7f00007ed000)=[{&(0x7f0000000140)='u', 0x1}], 0x1, &(0x7f00000002c0)}}], 0x1, 0x0) shutdown(r1, 0x1) 05:38:32 executing program 4: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x40, 0x0) accept4$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x0, 0x0, @remote}, &(0x7f0000000600)=0x197, 0x800) bind$alg(r1, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'tgr128\x00'}, 0x58) r3 = accept4$alg(r1, 0x0, 0x0, 0x0) r4 = creat(&(0x7f0000000080)='./file1\x00', 0x0) fallocate(r4, 0x0, 0x0, 0x7fff) fallocate(r4, 0xa800, 0x0, 0x0) lseek(0xffffffffffffffff, 0x0, 0x0) accept4(r3, &(0x7f0000000100)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @ipv4={[], [], @rand_addr}}}}, &(0x7f0000000180)=0x80, 0x80000) sendto(r3, &(0x7f00005c8f58), 0xfffffffffffffeee, 0x0, &(0x7f0000351ff0)=@ipx={0x4, 0x0, 0x0, "a074edebb7e1"}, 0x10) ioctl$TIOCLINUX4(r2, 0x541c, &(0x7f00000000c0)) dup3(r3, r0, 0x80000) 05:38:32 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x22, &(0x7f0000000000)=0x1, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000100)=0x1, 0x16e) connect$inet(r0, &(0x7f0000d9dff0)={0x2, 0x0, @remote}, 0x10) socket$inet6(0xa, 0x803, 0x0) sendmmsg(r0, &(0x7f000000a3c0)=[{{&(0x7f0000002a40)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, 0x80, &(0x7f0000002d00)=[{&(0x7f0000002c80)='v', 0x1}], 0x1, &(0x7f0000002d40)}}], 0x1, 0x4c0d0) 05:38:32 executing program 6: clone(0x0, &(0x7f00000002c0), &(0x7f0000000300), &(0x7f0000000340), &(0x7f0000000380)) timerfd_create(0x0, 0x0) 05:38:32 executing program 2: r0 = socket$inet(0x2, 0x200000001, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000080)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)={@multicast1, @local, 0x0, 0x1, [@local]}, 0x14) r1 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r1, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10) sendto$inet(r1, &(0x7f00000000c0), 0x0, 0x0, &(0x7f0000000140)={0x2, 0x4e23, @multicast1}, 0x10) 05:38:32 executing program 3: prctl$seccomp(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0xffffffffffff7fff}]}) setfsuid(0x0) [ 196.466738] IPVS: ftp: loaded support on port[0] = 21 [ 196.478164] IPVS: ftp: loaded support on port[0] = 21 [ 196.488770] IPVS: ftp: loaded support on port[0] = 21 [ 196.523417] IPVS: ftp: loaded support on port[0] = 21 [ 196.527449] IPVS: ftp: loaded support on port[0] = 21 [ 196.554098] IPVS: ftp: loaded support on port[0] = 21 [ 196.582825] IPVS: ftp: loaded support on port[0] = 21 [ 196.587032] IPVS: ftp: loaded support on port[0] = 21 [ 199.295602] ip (4866) used greatest stack depth: 53896 bytes left [ 199.881402] ip (4898) used greatest stack depth: 53880 bytes left [ 200.730812] ip (4943) used greatest stack depth: 53784 bytes left [ 201.017602] ip (4961) used greatest stack depth: 53496 bytes left [ 201.805686] bridge0: port 1(bridge_slave_0) entered blocking state [ 201.812188] bridge0: port 1(bridge_slave_0) entered disabled state [ 201.841407] device bridge_slave_0 entered promiscuous mode [ 201.963816] bridge0: port 1(bridge_slave_0) entered blocking state [ 201.970383] bridge0: port 1(bridge_slave_0) entered disabled state [ 202.026984] device bridge_slave_0 entered promiscuous mode [ 202.064002] bridge0: port 1(bridge_slave_0) entered blocking state [ 202.070623] bridge0: port 1(bridge_slave_0) entered disabled state [ 202.125698] device bridge_slave_0 entered promiscuous mode [ 202.157565] bridge0: port 1(bridge_slave_0) entered blocking state [ 202.164334] bridge0: port 1(bridge_slave_0) entered disabled state [ 202.185198] device bridge_slave_0 entered promiscuous mode [ 202.203037] bridge0: port 1(bridge_slave_0) entered blocking state [ 202.209637] bridge0: port 1(bridge_slave_0) entered disabled state [ 202.235702] device bridge_slave_0 entered promiscuous mode [ 202.250143] bridge0: port 2(bridge_slave_1) entered blocking state [ 202.256626] bridge0: port 2(bridge_slave_1) entered disabled state [ 202.270891] device bridge_slave_1 entered promiscuous mode [ 202.278859] bridge0: port 1(bridge_slave_0) entered blocking state [ 202.285330] bridge0: port 1(bridge_slave_0) entered disabled state [ 202.299636] device bridge_slave_0 entered promiscuous mode [ 202.324255] bridge0: port 1(bridge_slave_0) entered blocking state [ 202.330776] bridge0: port 1(bridge_slave_0) entered disabled state [ 202.357458] device bridge_slave_0 entered promiscuous mode [ 202.379880] bridge0: port 1(bridge_slave_0) entered blocking state [ 202.386457] bridge0: port 1(bridge_slave_0) entered disabled state [ 202.402572] device bridge_slave_0 entered promiscuous mode [ 202.430419] bridge0: port 2(bridge_slave_1) entered blocking state [ 202.436955] bridge0: port 2(bridge_slave_1) entered disabled state [ 202.461082] device bridge_slave_1 entered promiscuous mode [ 202.480016] bridge0: port 2(bridge_slave_1) entered blocking state [ 202.486453] bridge0: port 2(bridge_slave_1) entered disabled state [ 202.502193] device bridge_slave_1 entered promiscuous mode [ 202.525724] bridge0: port 2(bridge_slave_1) entered blocking state [ 202.532238] bridge0: port 2(bridge_slave_1) entered disabled state [ 202.561823] device bridge_slave_1 entered promiscuous mode [ 202.580132] bridge0: port 2(bridge_slave_1) entered blocking state [ 202.586688] bridge0: port 2(bridge_slave_1) entered disabled state [ 202.619256] device bridge_slave_1 entered promiscuous mode [ 202.627392] bridge0: port 2(bridge_slave_1) entered blocking state [ 202.633805] bridge0: port 2(bridge_slave_1) entered disabled state [ 202.663685] device bridge_slave_1 entered promiscuous mode [ 202.677992] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 202.706185] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 202.715645] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 202.724394] bridge0: port 2(bridge_slave_1) entered blocking state [ 202.730827] bridge0: port 2(bridge_slave_1) entered disabled state [ 202.797711] device bridge_slave_1 entered promiscuous mode [ 202.815672] bridge0: port 2(bridge_slave_1) entered blocking state [ 202.822115] bridge0: port 2(bridge_slave_1) entered disabled state [ 202.865923] device bridge_slave_1 entered promiscuous mode [ 202.892672] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 202.902596] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 202.922119] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 203.021172] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 203.030795] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 203.078948] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 203.095750] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 203.139344] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 203.169888] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 203.220396] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 203.264084] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 203.394177] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 203.476287] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 203.958337] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 203.974485] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 204.006146] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 204.087684] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 204.203002] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 204.224211] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 204.276223] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 204.305123] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 204.334165] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 204.345912] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 204.396141] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 204.419101] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 204.498215] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 204.551972] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 204.559128] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 204.624047] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 204.642012] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 204.649031] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 204.668434] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 204.685912] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 204.692963] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 204.779214] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 204.786309] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 204.808106] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 204.819672] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 204.826775] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 204.902939] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 204.910066] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 204.932603] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 204.939698] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 204.967082] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 204.974212] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 205.025087] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 205.037500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 205.054050] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 205.061127] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 205.128414] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 205.135913] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 205.154872] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 205.164975] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 205.184641] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 205.191792] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 205.262166] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 205.269202] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 205.387441] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 205.394947] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 205.505821] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 205.512927] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 205.966635] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 205.992297] team0: Port device team_slave_0 added [ 206.009769] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 206.031591] team0: Port device team_slave_0 added [ 206.054233] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 206.070718] team0: Port device team_slave_0 added [ 206.139271] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 206.175990] team0: Port device team_slave_0 added [ 206.192827] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 206.212792] team0: Port device team_slave_0 added [ 206.238756] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 206.267968] team0: Port device team_slave_0 added [ 206.319488] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 206.350908] team0: Port device team_slave_1 added [ 206.373950] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 206.383489] team0: Port device team_slave_1 added [ 206.393256] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 206.422314] team0: Port device team_slave_1 added [ 206.444032] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 206.468120] team0: Port device team_slave_1 added [ 206.500276] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 206.509935] team0: Port device team_slave_0 added [ 206.516464] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 206.532077] team0: Port device team_slave_0 added [ 206.558789] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 206.582718] team0: Port device team_slave_1 added [ 206.607045] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 206.624964] team0: Port device team_slave_1 added [ 206.638118] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 206.645160] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 206.662024] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 206.725167] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 206.732230] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 206.744951] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 206.781814] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 206.798421] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 206.823055] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 206.859779] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 206.886319] team0: Port device team_slave_1 added [ 206.893292] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 206.906443] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 206.929901] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 206.956302] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 206.969970] team0: Port device team_slave_1 added [ 206.987051] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 207.006672] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 207.022252] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 207.058747] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 207.066955] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 207.073958] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 207.083930] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 207.119401] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 207.137407] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 207.157884] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 207.176445] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 207.183417] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 207.207876] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 207.239349] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 207.263922] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 207.289031] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 207.297876] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 207.309452] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 207.348804] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 207.359353] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 207.370799] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 207.406880] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 207.417808] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 207.426618] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 207.435936] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 207.443435] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 207.492203] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 207.516753] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 207.537945] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 207.563084] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 207.576001] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 207.596641] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 207.611458] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 207.628396] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 207.639005] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 207.647764] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 207.678219] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 207.697859] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 207.706106] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 207.718180] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 207.746701] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 207.765615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 207.778829] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 207.787723] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 207.796611] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 207.805188] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 207.813727] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 207.861914] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 207.893780] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 207.923075] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 207.947789] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 207.976065] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 207.986106] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 207.995882] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 208.017322] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 208.024325] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 208.036616] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 208.072481] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 208.096224] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 208.105643] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 208.117181] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 208.125174] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 208.174939] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 208.203082] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 208.234696] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 208.259815] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 208.291106] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 208.320739] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 208.336949] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 208.408647] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 208.423717] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 208.432006] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 208.439784] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 208.485944] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 208.511816] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 208.544159] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 208.586407] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 208.625900] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 208.739206] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 208.747056] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 208.765673] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 208.824942] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 208.832655] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 208.855636] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 210.828705] bridge0: port 2(bridge_slave_1) entered blocking state [ 210.835321] bridge0: port 2(bridge_slave_1) entered forwarding state [ 210.842201] bridge0: port 1(bridge_slave_0) entered blocking state [ 210.848655] bridge0: port 1(bridge_slave_0) entered forwarding state [ 210.911255] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 210.917896] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 210.953268] bridge0: port 2(bridge_slave_1) entered blocking state [ 210.959772] bridge0: port 2(bridge_slave_1) entered forwarding state [ 210.966711] bridge0: port 1(bridge_slave_0) entered blocking state [ 210.973216] bridge0: port 1(bridge_slave_0) entered forwarding state [ 210.986243] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 210.995090] bridge0: port 2(bridge_slave_1) entered blocking state [ 211.001666] bridge0: port 2(bridge_slave_1) entered forwarding state [ 211.008597] bridge0: port 1(bridge_slave_0) entered blocking state [ 211.015052] bridge0: port 1(bridge_slave_0) entered forwarding state [ 211.047409] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 211.089006] bridge0: port 2(bridge_slave_1) entered blocking state [ 211.095615] bridge0: port 2(bridge_slave_1) entered forwarding state [ 211.102581] bridge0: port 1(bridge_slave_0) entered blocking state [ 211.109505] bridge0: port 1(bridge_slave_0) entered forwarding state [ 211.188312] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 211.339366] bridge0: port 2(bridge_slave_1) entered blocking state [ 211.346026] bridge0: port 2(bridge_slave_1) entered forwarding state [ 211.353014] bridge0: port 1(bridge_slave_0) entered blocking state [ 211.359581] bridge0: port 1(bridge_slave_0) entered forwarding state [ 211.383139] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 211.680421] bridge0: port 2(bridge_slave_1) entered blocking state [ 211.687000] bridge0: port 2(bridge_slave_1) entered forwarding state [ 211.693973] bridge0: port 1(bridge_slave_0) entered blocking state [ 211.700506] bridge0: port 1(bridge_slave_0) entered forwarding state [ 211.736034] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 211.908755] bridge0: port 2(bridge_slave_1) entered blocking state [ 211.915274] bridge0: port 2(bridge_slave_1) entered forwarding state [ 211.922197] bridge0: port 1(bridge_slave_0) entered blocking state [ 211.928671] bridge0: port 1(bridge_slave_0) entered forwarding state [ 211.983703] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 211.990434] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 212.000271] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 212.009255] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 212.018955] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 212.028949] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 212.038465] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 212.049716] bridge0: port 2(bridge_slave_1) entered blocking state [ 212.056200] bridge0: port 2(bridge_slave_1) entered forwarding state [ 212.063133] bridge0: port 1(bridge_slave_0) entered blocking state [ 212.069632] bridge0: port 1(bridge_slave_0) entered forwarding state [ 212.079217] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 213.011904] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 218.072407] ip (5890) used greatest stack depth: 53464 bytes left [ 222.442937] 8021q: adding VLAN 0 to HW filter on device bond0 [ 222.593118] 8021q: adding VLAN 0 to HW filter on device bond0 [ 222.650719] 8021q: adding VLAN 0 to HW filter on device bond0 [ 222.756906] 8021q: adding VLAN 0 to HW filter on device bond0 [ 223.077796] 8021q: adding VLAN 0 to HW filter on device bond0 [ 223.116020] 8021q: adding VLAN 0 to HW filter on device bond0 [ 223.238071] 8021q: adding VLAN 0 to HW filter on device bond0 [ 223.467406] 8021q: adding VLAN 0 to HW filter on device bond0 [ 223.619425] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 223.732185] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 223.931077] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 223.977113] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 224.230335] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 224.369748] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 224.433925] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 224.605890] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 224.739444] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 224.745881] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 224.757706] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 224.928669] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 224.935227] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 224.947597] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 225.101732] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 225.108208] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 225.122955] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 225.194427] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 225.200756] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 225.212359] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 225.526220] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 225.532937] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 225.545481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 225.636363] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 225.642726] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 225.661262] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 225.703060] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 225.712770] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 225.728703] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 225.952620] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 225.959226] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 225.968415] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 225.994437] 8021q: adding VLAN 0 to HW filter on device team0 [ 226.273883] 8021q: adding VLAN 0 to HW filter on device team0 [ 226.348476] 8021q: adding VLAN 0 to HW filter on device team0 [ 226.374228] 8021q: adding VLAN 0 to HW filter on device team0 [ 226.701653] 8021q: adding VLAN 0 to HW filter on device team0 [ 226.834328] 8021q: adding VLAN 0 to HW filter on device team0 [ 226.874832] 8021q: adding VLAN 0 to HW filter on device team0 [ 227.151629] 8021q: adding VLAN 0 to HW filter on device team0 05:39:09 executing program 2: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000deb000)={0x2, 0x3, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f00006dc000)=[{0x6, 0x0, 0x0, 0x9}]}, 0x10) sendto$inet(r0, &(0x7f00000001c0), 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10) sendto$inet(r0, &(0x7f00000002c0)="20d6dac772b6f65cc7c3fc9bf8d917fbd5bd28cd6ad9243ec3c3fc41fe4295b32b630b3e888a8d0eb1abd9d081c0c6655507c293ed17dcc8e25f2cb85d0e732ff34d9f574cdd31597a5e3a688fff4a8f31474711e4b8f7ab05068770f885c03286fadc1d0fd02098bd981aaf152f2da86443cc605a5cb9a634", 0x79, 0x1, &(0x7f0000000200)={0x2, 0x0, @dev}, 0x10) sendto$inet(r0, &(0x7f0000000bc0)="f5", 0x1, 0x0, &(0x7f0000000cc0), 0x10) getsockopt$IP6T_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000080)={'NETMAP\x00'}, &(0x7f00000000c0)=0x1e) sendto$inet(r0, &(0x7f0000000580)="89", 0x1, 0x0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10) 05:39:10 executing program 2: prctl$seccomp(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0xffffffffffff7fff}]}) execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f00000003c0), &(0x7f0000000440), 0x0) [ 233.122164] audit: type=1326 audit(1535780350.132:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=6816 comm="syz-executor2" exe="/root/syz-executor2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x457099 code=0xffff0000 05:39:10 executing program 5: prctl$seccomp(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0xffffffffffff7fff}]}) lookup_dcookie(0x0, &(0x7f0000000000)=""/18, 0x12) [ 233.325061] audit: type=1326 audit(1535780350.335:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=6833 comm="syz-executor5" exe="/root/syz-executor5" sig=31 arch=c000003e syscall=202 compat=0 ip=0x457099 code=0xffff0000 [ 233.350060] hrtimer: interrupt took 54575 ns 05:39:10 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000cecffc), 0x4) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={&(0x7f00000000c0), 0xc, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="000000000000000008001b0000000000d9a2810ee9ff25ba61462b6209c032695323d77bbf6f84f13650dc261145e921b2b89e8a52160b9049a8684452ee68c70453d14498b256b1832c38b9b774b38189c8637b65e4043c9ec0fb9ade03b8fde7d1fb9363cde0cccdd628b704e583a79952d0996c2aea8a8fb3129540b348cdbd72010deb358851fa56bf9c0541237a792db4c0e70a73c719162ae688632d97ed54d224991f117a1d099cb7ad74aa51a2085128334025"], 0x1}}, 0x0) [ 233.771265] audit: type=1326 audit(1535780350.781:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=6858 comm="syz-executor3" exe="/root/syz-executor3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x457099 code=0xffff0000 05:39:10 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000180)="6f6f6d5f73636f72655f61646a00605a119bf0a3beaad2f8ce9203080460d060c2a469f1da124d726b7bdc66e5148a62b24f849098b33689e5b143b21fc4158a0826112baa3b4b4ea2313be32159686267386711dac96f9da1765a1f324ce51f43459a9cc4b342bce7188228239f6b557821eec64bc3f9f7e816224f0a8650ea536502000000e6421474f0fdb79bcbbd15cf32c37f502923dbb3dfd0b81c9b501ca6faa5c3c1212865bed7870ab725331f0617a5fbed77741916137923656c8e999efe46e503a44fc609b0ee8271ab88e2cdb51e8901cf022908d46b7db610994f273d5d3199f9200e0f0b57c5bce80e8e0c") sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040), 0x0) pread64(r0, &(0x7f0000000080)=""/126, 0x7e, 0x0) [ 233.906319] audit: type=1326 audit(1535780350.916:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=6816 comm="syz-executor2" exe="/root/syz-executor2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x457099 code=0xffff0000 05:39:11 executing program 6: prctl$seccomp(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0xffffffffffff7fff}]}) msgget(0xffffffffffffffff, 0x0) 05:39:11 executing program 2: prctl$seccomp(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0xffffffffffff7fff}]}) execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f00000003c0), &(0x7f0000000440), 0x0) 05:39:11 executing program 7: prctl$seccomp(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0xffffffffffff7fff}]}) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={&(0x7f0000000040), &(0x7f0000000140)}}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) [ 234.103912] audit: type=1326 audit(1535780351.113:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=6833 comm="syz-executor5" exe="/root/syz-executor5" sig=31 arch=c000003e syscall=202 compat=0 ip=0x457099 code=0xffff0000 [ 234.167338] audit: type=1326 audit(1535780351.168:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=6873 comm="syz-executor6" exe="/root/syz-executor6" sig=31 arch=c000003e syscall=202 compat=0 ip=0x457099 code=0xffff0000 [ 234.245260] audit: type=1326 audit(1535780351.232:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=6880 comm="syz-executor2" exe="/root/syz-executor2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x457099 code=0xffff0000 [ 234.311784] audit: type=1326 audit(1535780351.320:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=6885 comm="syz-executor7" exe="/root/syz-executor7" sig=31 arch=c000003e syscall=202 compat=0 ip=0x457099 code=0xffff0000 05:39:11 executing program 0: prctl$seccomp(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0xffffffffffff7fff}]}) lgetxattr(&(0x7f0000000200)='./file0\x00', &(0x7f00000001c0)=ANY=[], &(0x7f0000000480)=""/219, 0xdb) [ 234.550346] audit: type=1326 audit(1535780351.560:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=6858 comm="syz-executor3" exe="/root/syz-executor3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x457099 code=0xffff0000 [ 234.592239] audit: type=1326 audit(1535780351.589:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=6891 comm="syz-executor0" exe="/root/syz-executor0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x457099 code=0xffff0000 05:39:12 executing program 1: prctl$seccomp(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0xffffffffffff7fff}]}) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) getsockname$inet(r0, &(0x7f0000000180)={0x2, 0x0, @rand_addr}, &(0x7f00000001c0)=0x10) 05:39:12 executing program 5: prctl$seccomp(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0xffffffffffff7fff}]}) ioprio_get$pid(0x1, 0x0) 05:39:12 executing program 4: prctl$seccomp(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0xffffffffffff7fff}]}) mq_unlink(&(0x7f0000000100)='/dev/input/mice\x00') 05:39:12 executing program 3: prctl$seccomp(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0xffffffffffff7fff}]}) getgid() setregid(0x0, 0x0) 05:39:12 executing program 6: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_buf(r0, 0x6, 0xe, &(0x7f00000001c0)="e1ee0984b96860965dbb4bc3c021a0a0d1af21b2b2c011620fd7cf21a71367655959215b13f14c7d6f54bb7d70b6ea26494eaf35b43f94c68f0d6db023cb961ddc6d67b05dd4b1ed224209ebc374a006c02379a109beb3a4f1f55931c28a3359ce1310e0bade05d8ebb886c378228cc460753666c67fc7a3d073fd73dbfb445fc5c70e2a5a6c6220ebe19308efbd9de6d74dd4be46", 0x95) 05:39:12 executing program 2: syz_emit_ethernet(0x32, &(0x7f0000000240)={@link_local, @dev, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @dev}, @dccp={{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "50c6f0", 0x0, "02b98c"}}}}}}, 0x0) 05:39:12 executing program 7: syz_emit_ethernet(0x1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaabb08060001080006040001aaaaaaaaaabbac1414bbffffffffffffac75ce44651414aa"], &(0x7f0000000000)) 05:39:12 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000440)={&(0x7f0000000000), 0xc, &(0x7f0000000200)={&(0x7f00000002c0)=@newlink={0x44, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x18, 0x12, @ip6gretap={{0x10, 0x1, 'ip6gretap\x00'}, {0x4}}}, @IFLA_ADDRESS={0xc, 0x1, @empty=[0x2]}]}, 0x44}}, 0x0) bind$unix(0xffffffffffffffff, &(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e) 05:39:12 executing program 6: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/vs/drop_entry\x00', 0x2, 0x0) socket$inet6(0xa, 0x1000000000002, 0x0) socket$nl_generic(0x10, 0x3, 0x10) getsockopt$inet_int(r0, 0x0, 0x32, &(0x7f0000000300), &(0x7f0000000340)=0x4) r1 = socket$inet6(0xa, 0x400000000001, 0x0) r2 = dup(r1) r3 = socket$netlink(0x10, 0x3, 0x0) mq_open(&(0x7f0000000180)='veth1_to_bridge\x00', 0x1, 0x0, &(0x7f00000001c0)={0x7, 0x40, 0x2, 0x5, 0x8, 0x400, 0x1, 0x4}) socket(0x0, 0x805, 0x7fff) socketpair$inet_icmp_raw(0x2, 0x3, 0x1, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$IP_VS_SO_SET_ADDDEST(r4, 0x0, 0x487, &(0x7f0000000100)={{0xb7, @remote, 0x4e21, 0x1, 'lc\x00', 0x12, 0x0, 0x1d}, {@multicast1, 0x4e24, 0x2000, 0x5, 0x6, 0x51}}, 0x44) writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000200)="390000001300090468fe000081000000c9ffff3f03000000450001070000003719001a000400020007e91ee400538a274d69a26cdf12f24006", 0x39}], 0x1) ioctl$EVIOCRMFF(r2, 0x40044581, &(0x7f0000000080)=0xf) getpeername(r4, &(0x7f00000004c0)=@vsock={0x28, 0x0, 0x0, @host}, &(0x7f0000000540)=0x80) setsockopt$inet6_tcp_int(r2, 0x6, 0x12, &(0x7f0000000000)=0x7f, 0x4) bind$inet6(r1, &(0x7f0000000240)={0xa, 0x4e20, 0x1, @loopback}, 0x1c) sendto$inet6(r1, &(0x7f0000000080), 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000200)='veth1_to_bridge\x00', 0x10) r5 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ftruncate(r5, 0x2007fff) sendfile(r2, r5, &(0x7f0000d83ff8), 0x8000fffffffe) 05:39:12 executing program 7: ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000000)) r0 = socket$inet6(0x10, 0x3, 0x0) sendmsg(r0, &(0x7f00000001c0)={&(0x7f0000000000)=@nl, 0x80, &(0x7f0000002000)=[{&(0x7f0000000380)="5500000018007f5300fe01b2a4a280930a06000000a8430891000000390008003500100000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060cec4fab91d400000000000000006de400000000", 0x55}], 0x1, &(0x7f0000000400)}, 0x0) [ 235.435767] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. 05:39:12 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x100000001) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0a5c2d0252926285717070") r1 = socket$netlink(0x10, 0x3, 0x40000000000010) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000240)="480000001500197f09004b01242cca140188ffffcf5d3474bc9240e10520613057fff7e07900e0fe5f0028213ee20600d4ff5bffff00c7e5ed5e00000000c8550000007700000000", 0x48}], 0x1) 05:39:12 executing program 2: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'sha3-224\x00'}, 0x58) r1 = accept4(r0, 0x0, &(0x7f00000000c0), 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00') socketpair$unix(0x1, 0x800000005, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) sendfile(r1, r2, &(0x7f00000002c0), 0x1000007ffff000) 05:39:12 executing program 7: prctl$seccomp(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0xffffffffffff7fff}]}) mbind(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4001, &(0x7f0000000000)=0x2e, 0x6, 0x0) [ 386.830221] watchdog: BUG: soft lockup - CPU#1 stuck for 123s! [syz-executor7:6941] [ 386.838118] Modules linked in: [ 386.841366] CPU: 1 PID: 6941 Comm: syz-executor7 Not tainted 4.19.0-rc1+ #40 [ 386.848571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 386.857981] RIP: 0010:msan_get_shadow_origin_ptr+0x187/0x2e0 [ 386.864291] Code: 8b 45 c8 48 89 45 b0 ff 75 b0 9d 48 8b 7d d0 48 8b 47 40 48 85 c0 0f 84 da 00 00 00 45 89 fd 41 81 e5 ff 0f 00 00 4b 8d 0c 2c <48> 83 c1 ff 48 81 f9 01 10 00 00 72 21 48 89 7d d0 31 d2 4c 89 ff [ 386.883900] RSP: 0018:ffff880131c2ee50 EFLAGS: 00000202 ORIG_RAX: ffffffffffffff13 [ 386.891646] RAX: ffffea0007236b40 RBX: ffffffff8a544000 RCX: 0000000000000f3c [ 386.898949] RDX: 00000000000004c0 RSI: 0000000000000000 RDI: ffffea00072a9140 [ 386.906222] RBP: ffff880131c2eea0 R08: 0000000000000000 R09: 0000000000000002 [ 386.913496] R10: 0000000000000000 R11: ffffffff81179950 R12: 0000000000000004 [ 386.920792] R13: 0000000000000f38 R14: ffffffff8a543000 R15: ffff880131c2ef38 [ 386.928114] FS: 00007eff12db9700(0000) GS:ffff88021fd00000(0000) knlGS:0000000000000000 [ 386.936403] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 386.942353] CR2: 00000000004d3b10 CR3: 000000012ee68000 CR4: 00000000001406e0 [ 386.949632] Call Trace: [ 386.952270] __msan_metadata_ptr_for_load_4+0x10/0x20 [ 386.957485] smp_call_function_single+0x373/0x4e0 [ 386.962349] ? flush_tlb_all+0x40/0x40 [ 386.966273] ? flush_tlb_all+0x40/0x40 [ 386.970195] smp_call_function_many+0x658/0xdb0 [ 386.974880] ? flush_tlb_all+0x40/0x40 [ 386.978801] ? should_fail+0x53/0xaa0 [ 386.982692] ? flush_tlb_all+0x40/0x40 [ 386.986620] on_each_cpu+0xd2/0x160 [ 386.990288] ? flush_tlb_all+0x40/0x40 [ 386.994219] flush_tlb_kernel_range+0x161/0x1e0 [ 386.998921] __purge_vmap_area_lazy+0x1f7/0x3b0 [ 387.003614] vm_unmap_aliases+0x626/0x6d0 [ 387.007785] change_page_attr_set_clr+0x593/0x1e50 [ 387.012775] ? vmalloc_to_page+0x57d/0x6b0 [ 387.017068] set_memory_ro+0xcc/0x100 [ 387.020888] bpf_int_jit_compile+0x7a2b/0x8580 [ 387.025498] ? proc_parse_options+0x2cc/0x620 [ 387.030063] ? vmalloc_to_page+0x57d/0x6b0 [ 387.034608] ? vmalloc_to_page_or_null+0x3b/0xa0 [ 387.039425] bpf_prog_select_runtime+0x953/0x9f0 [ 387.044210] bpf_prepare_filter+0x1988/0x1dd0 [ 387.048727] ? seccomp_log+0x3b0/0x3b0 [ 387.052676] bpf_prog_create_from_user+0x68e/0x850 [ 387.057615] ? seccomp_log+0x3b0/0x3b0 [ 387.061532] do_seccomp+0xad4/0x2100 [ 387.065255] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 387.070633] ? cap_task_prctl+0x62b/0x1260 [ 387.074907] prctl_set_seccomp+0xc0/0xf0 [ 387.078990] __se_sys_prctl+0x7b7/0x3d40 [ 387.083085] ? kmsan_set_origin_inline+0x6b/0x120 [ 387.088004] ? __msan_poison_alloca+0x173/0x1f0 [ 387.092735] ? prepare_exit_to_usermode+0x46/0x410 [ 387.097720] ? syscall_return_slowpath+0xdb/0x700 [ 387.102608] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 387.108106] ? prepare_exit_to_usermode+0x13f/0x410 [ 387.113184] ? syscall_return_slowpath+0xdb/0x700 [ 387.118084] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 387.123508] ? fput+0x257/0x2e0 [ 387.126854] ? __se_sys_ioctl+0x239/0x270 [ 387.131037] __x64_sys_prctl+0x62/0x80 [ 387.134942] do_syscall_64+0xb8/0x100 [ 387.138772] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 387.144429] RIP: 0033:0x457099 [ 387.147647] Code: fd b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 387.166556] RSP: 002b:00007eff12db8c78 EFLAGS: 00000246 ORIG_RAX: 000000000000009d [ 387.174300] RAX: ffffffffffffffda RBX: 00007eff12db96d4 RCX: 0000000000457099 [ 387.181606] RDX: 0000000020000140 RSI: 0000000000000002 RDI: 0000000000000016 [ 387.188901] RBP: 00000000009300a0 R08: 0000000000000000 R09: 0000000000000000 [ 387.196185] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 387.203465] R13: 00000000004d3b10 R14: 00000000004c865d R15: 0000000000000000 [ 387.210757] Sending NMI from CPU 1 to CPUs 0: [ 387.215318] ------------[ cut here ]------------ [ 387.220124] kernel BUG at mm/kmsan/kmsan_entry.c:81! [ 387.225270] invalid opcode: 0000 [#1] SMP PTI [ 387.229812] CPU: 0 PID: 6936 Comm: syz-executor2 Not tainted 4.19.0-rc1+ #40 [ 387.237019] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 387.246381] RIP: 0010:kmsan_nmi_enter+0x42/0x70 [ 387.251050] Code: 00 74 27 65 8b 04 25 40 92 03 00 83 c0 01 83 f8 08 7d 27 65 89 04 25 40 92 03 00 65 c6 04 25 d5 6f 0b 00 ff c3 0f 0b 90 eb fe <0f> 0b 66 90 66 2e 0f 1f 84 00 00 00 00 00 eb fe 0f 0b 66 90 66 2e [ 387.269955] RSP: 0018:fffffe000000eea8 EFLAGS: 00010046 [ 387.275322] RAX: 0000000000000200 RBX: 0000000000000001 RCX: 00000000c0000101 [ 387.282589] RDX: 00000000ffff8802 RSI: ffffffff8900136c RDI: ffffffff7fffffff [ 387.289856] RBP: fffffe000000eef9 R08: 0000000000000000 R09: 0000000000000000 [ 387.297125] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 387.304392] R13: 0000000000000000 R14: 0000000131634000 R15: 0000000000000000 [ 387.311663] FS: 00007f8dfc1b4700(0000) GS:ffff88021fc00000(0000) knlGS:0000000000000000 [ 387.319890] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 387.325766] CR2: 0000000000400200 CR3: 0000000131634000 CR4: 00000000001406f0 [ 387.333046] Call Trace: [ 387.335651] [ 387.337820] ? end_repeat_nmi+0x19/0x8e [ 387.341812] ? end_repeat_nmi+0x7/0x8e [ 387.345727] ? kmsan_get_origin_address+0x2ab/0x3e0 [ 387.350768] ? kmsan_get_origin_address+0x2ab/0x3e0 [ 387.355857] ? kmsan_get_origin_address+0x2ab/0x3e0 [ 387.360867] [ 387.363111] ? kmsan_memmove_origins+0xda/0x1d0 [ 387.367796] ? __msan_memmove+0xc3/0x130 [ 387.371865] ? widen_string+0x580/0x6c0 [ 387.375861] ? string+0x32a/0x340 [ 387.379340] ? vsnprintf+0x10aa/0x31a0 [ 387.383251] ? seq_printf+0x2cb/0x460 [ 387.387075] ? seq_puts+0x23c/0x2a0 [ 387.390713] ? ipv6_route_seq_show+0x431/0x520 [ 387.395329] ? seq_read+0x1404/0x1e80 [ 387.399141] ? ipv6_route_seq_stop+0x400/0x400 [ 387.403729] ? ipv6_route_seq_next+0x11d0/0x11d0 [ 387.408496] ? seq_open+0x390/0x390 [ 387.412125] ? proc_reg_read+0x296/0x3c0 [ 387.416199] ? do_iter_read+0xb87/0xe20 [ 387.420199] ? proc_reg_llseek+0x320/0x320 [ 387.424445] ? vfs_readv+0x1d9/0x250 [ 387.428179] ? default_file_splice_read+0xaa0/0x1120 [ 387.433339] ? __ia32_sys_tee+0x160/0x160 [ 387.437513] ? splice_direct_to_actor+0x4af/0xfb0 [ 387.442352] ? do_splice_direct+0x540/0x540 [ 387.446693] ? do_splice_direct+0x332/0x540 [ 387.451050] ? do_sendfile+0x1070/0x1d80 [ 387.455169] ? __se_sys_sendfile64+0x1c2/0x380 [ 387.459771] ? __x64_sys_sendfile64+0x56/0x70 [ 387.464272] ? do_syscall_64+0xb8/0x100 [ 387.468255] ? entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 387.473620] Modules linked in: [ 387.476831] Dumping ftrace buffer: [ 387.480376] (ftrace buffer empty) [ 387.484099] ---[ end trace 06a6dcba1d108db5 ]--- [ 387.488857] RIP: 0010:kmsan_nmi_enter+0x42/0x70 [ 387.493519] Code: 00 74 27 65 8b 04 25 40 92 03 00 83 c0 01 83 f8 08 7d 27 65 89 04 25 40 92 03 00 65 c6 04 25 d5 6f 0b 00 ff c3 0f 0b 90 eb fe <0f> 0b 66 90 66 2e 0f 1f 84 00 00 00 00 00 eb fe 0f 0b 66 90 66 2e [ 387.512455] RSP: 0018:fffffe000000eea8 EFLAGS: 00010046 [ 387.517808] RAX: 0000000000000200 RBX: 0000000000000001 RCX: 00000000c0000101 [ 387.525085] RDX: 00000000ffff8802 RSI: ffffffff8900136c RDI: ffffffff7fffffff [ 387.532344] RBP: fffffe000000eef9 R08: 0000000000000000 R09: 0000000000000000 [ 387.539634] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 387.546897] R13: 0000000000000000 R14: 0000000131634000 R15: 0000000000000000 [ 387.554162] FS: 00007f8dfc1b4700(0000) GS:ffff88021fc00000(0000) knlGS:0000000000000000 [ 387.562387] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 387.568273] CR2: 0000000000400200 CR3: 0000000131634000 CR4: 00000000001406f0 [ 387.575539] Kernel panic - not syncing: Fatal exception in interrupt [ 389.088019] Shutting down cpus with NMI [ 389.092135] ------------[ cut here ]------------ [ 389.096920] kernel BUG at mm/kmsan/kmsan_entry.c:81! [ 389.102059] invalid opcode: 0000 [#2] SMP PTI [ 389.106595] CPU: 1 PID: 6941 Comm: syz-executor7 Tainted: G D 4.19.0-rc1+ #40 [ 389.107626] Dumping ftrace buffer: [ 389.115187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 389.118720] (ftrace buffer empty) [ 389.128105] RIP: 0010:kmsan_nmi_enter+0x42/0x70 [ 389.131773] Kernel Offset: disabled [ [ 3 83989.1.14400111717] ] ReRbeobootoitinng gi inn 8 68640400 0s esecocnodndss... . 92 03 00 83 c0 01 83 f8 08 7d 27 65 89 04 25 40 92 03 00 65 c6 04 25 d5 6f 0b 00 ff c3 0f 0b 90 eb fe <0f> 0b 66 90 66 2e 0f 1f 84 00 00 00 00 00 eb fe 0f 0b 66 90 66 2e [ 389.163139] RSP: 0018:fffffe0000049ea8 EFLAGS: 00010046 [ 389.168539] RAX: 0000000000010000 RBX: 0000000000000001 RCX: 00000000c0000101 [ 389.175854] RDX: 00000000ffff8802 RSI: ffffffff8900136c RDI: 00000000002318b2 [ 389.183140] RBP: fffffe0000049ef9 R08: 0000000000000000 R09: 0000000000000000 [ 389.190422] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 389.197724] R13: 0000000000000000 R14: 000000012ee68000 R15: 0000000000000000 [ 389.205009] FS: 00007eff12db9700(0000) GS:ffff88021fd00000(0000) knlGS:0000000000000000 [ 389.213256] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 389.219152] CR2: 00000000004d3b10 CR3: 000000012ee68000 CR4: 00000000001406e0 [ 389.226442] Call Trace: [ 389.229080] [ 389.231257] ? end_repeat_nmi+0x19/0x8e [ 389.235266] ? end_repeat_nmi+0x7/0x8e [ 389.239185] ? delay_loop+0x50/0x50 [ 389.242862] ? delay_tsc+0xaa/0xe0 [ 389.246431] ? delay_tsc+0xaa/0xe0 [ 389.250000] ? delay_tsc+0xaa/0xe0 [ 389.253542] [ 389.255790] [ 389.257990] ? delay_loop+0x50/0x50 [ 389.261632] ? __const_udelay+0xb2/0xe0 [ 389.265686] ? nmi_trigger_cpumask_backtrace+0x2c9/0x460 [ 389.271160] ? arch_trigger_cpumask_backtrace+0x40/0x40 [ 389.276590] ? arch_trigger_cpumask_backtrace+0x2c/0x40 [ 389.282036] ? watchdog_timer_fn+0x737/0x810 [ 389.286486] ? proc_watchdog_cpumask+0x200/0x200 [ 389.291265] ? __hrtimer_run_queues+0xbfc/0x15b0 [ 389.296140] ? hrtimer_interrupt+0x458/0x13d0 [ 389.300705] ? __msan_poison_alloca+0x173/0x1f0 [ 389.305398] ? __msan_poison_alloca+0x173/0x1f0 [ 389.310091] ? hrtimer_init+0x5b0/0x5b0 [ 389.314100] ? local_apic_timer_interrupt+0x6b/0x250 [ 389.319230] ? smp_apic_timer_interrupt+0x5a/0x90 [ 389.324088] ? apic_timer_interrupt+0xf/0x20 [ 389.328503] [ 389.330806] ? native_apic_mem_read+0x60/0x60 [ 389.335383] ? msan_get_shadow_origin_ptr+0x187/0x2e0 [ 389.340622] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 389.346007] ? smp_call_function_single+0x373/0x4e0 [ 389.351048] ? flush_tlb_all+0x40/0x40 [ 389.354952] ? flush_tlb_all+0x40/0x40 [ 389.358864] ? smp_call_function_many+0x658/0xdb0 [ 389.363737] ? flush_tlb_all+0x40/0x40 [ 389.367647] ? should_fail+0x53/0xaa0 [ 389.371482] ? flush_tlb_all+0x40/0x40 [ 389.375429] ? on_each_cpu+0xd2/0x160 [ 389.379334] ? flush_tlb_all+0x40/0x40 [ 389.383270] ? flush_tlb_kernel_range+0x161/0x1e0 [ 389.388178] ? __purge_vmap_area_lazy+0x1f7/0x3b0 [ 389.393062] ? vm_unmap_aliases+0x626/0x6d0 [ 389.397440] ? change_page_attr_set_clr+0x593/0x1e50 [ 389.402646] ? vmalloc_to_page+0x57d/0x6b0 [ 389.406987] ? set_memory_ro+0xcc/0x100 [ 389.411017] ? bpf_int_jit_compile+0x7a2b/0x8580 [ 389.415838] ? proc_parse_options+0x2cc/0x620 [ 389.420433] ? vmalloc_to_page+0x57d/0x6b0 [ 389.424735] ? vmalloc_to_page_or_null+0x3b/0xa0 [ 389.429564] ? bpf_prog_select_runtime+0x953/0x9f0 [ 389.434525] ? bpf_prepare_filter+0x1988/0x1dd0 [ 389.439214] ? seccomp_log+0x3b0/0x3b0 [ 389.443136] ? bpf_prog_create_from_user+0x68e/0x850 [ 389.448257] ? seccomp_log+0x3b0/0x3b0 [ 389.452184] ? do_seccomp+0xad4/0x2100 [ 389.456090] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 389.461472] ? cap_task_prctl+0x62b/0x1260 [ 389.465737] ? prctl_set_seccomp+0xc0/0xf0 [ 389.469996] ? __se_sys_prctl+0x7b7/0x3d40 [ 389.474295] ? kmsan_set_origin_inline+0x6b/0x120 [ 389.479184] ? __msan_poison_alloca+0x173/0x1f0 [ 389.483907] ? prepare_exit_to_usermode+0x46/0x410 [ 389.488883] ? syscall_return_slowpath+0xdb/0x700 [ 389.493799] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 389.499410] ? prepare_exit_to_usermode+0x13f/0x410 [ 389.504529] ? syscall_return_slowpath+0xdb/0x700 [ 389.509469] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 389.514892] ? fput+0x257/0x2e0 [ 389.518263] ? __se_sys_ioctl+0x239/0x270 [ 389.522443] ? __x64_sys_prctl+0x62/0x80 [ 389.526533] ? do_syscall_64+0xb8/0x100 [ 389.530582] ? entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 389.535952] Modules linked in: [ 389.539185] Dumping ftrace buffer: [ 389.542725] (ftrace buffer empty) [ 389.546454] ---[ end trace 06a6dcba1d108db6 ]--- [ 389.551234] RIP: 0010:kmsan_nmi_enter+0x42/0x70 [ 389.555927] Code: 00 74 27 65 8b 04 25 40 92 03 00 83 c0 01 83 f8 08 7d 27 65 89 04 25 40 92 03 00 65 c6 04 25 d5 6f 0b 00 ff c3 0f 0b 90 eb fe <0f> 0b 66 90 66 2e 0f 1f 84 00 00 00 00 00 eb fe 0f 0b 66 90 66 2e [ 389.574845] RSP: 0018:fffffe000000eea8 EFLAGS: 00010046 [ 389.580228] RAX: 0000000000000200 RBX: 0000000000000001 RCX: 00000000c0000101 [ 389.587518] RDX: 00000000ffff8802 RSI: ffffffff8900136c RDI: ffffffff7fffffff [ 389.594815] RBP: fffffe000000eef9 R08: 0000000000000000 R09: 0000000000000000 [ 389.602098] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 389.609377] R13: 0000000000000000 R14: 0000000131634000 R15: 0000000000000000 [ 389.616666] FS: 00007eff12db9700(0000) GS:ffff88021fd00000(0000) knlGS:0000000000000000 [ 389.624926] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 389.630830] CR2: 00000000004d3b10 CR3: 000000012ee68000 CR4: 00000000001406e0