[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   58.672685] sshd (6157) used greatest stack depth: 53184 bytes left
[....] Starting OpenBSD Secure Shell server: sshd[   58.851501] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   61.177262] random: sshd: uninitialized urandom read (32 bytes read)
[   61.515236] random: sshd: uninitialized urandom read (32 bytes read)
[   63.981768] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.0.110' (ECDSA) to the list of known hosts.
[   69.723971] random: sshd: uninitialized urandom read (32 bytes read)
2018/10/04 12:41:42 fuzzer started
[   74.467144] random: cc1: uninitialized urandom read (8 bytes read)
2018/10/04 12:41:48 dialing manager at 10.128.0.26:36867
2018/10/04 12:41:48 syscalls: 1
2018/10/04 12:41:48 code coverage: enabled
2018/10/04 12:41:48 comparison tracing: CONFIG_KCOV_ENABLE_COMPARISONS is not enabled
2018/10/04 12:41:48 setuid sandbox: enabled
2018/10/04 12:41:48 namespace sandbox: enabled
2018/10/04 12:41:48 Android sandbox: /sys/fs/selinux/policy does not exist
2018/10/04 12:41:48 fault injection: enabled
2018/10/04 12:41:48 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2018/10/04 12:41:48 net packed injection: enabled
2018/10/04 12:41:48 net device setup: enabled
[   79.699721] random: crng init done
12:43:46 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000180)={&(0x7f0000000140), 0xc, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="00000000000000000800100000000000a438e576de3f58aad0b1eb9268eca1605da8cb9d5d37fdebe7bc15a4efb26a10eff651eafbb893671a8110361487cf"], 0x1}}, 0x0)

[  196.490467] IPVS: ftp: loaded support on port[0] = 21
[  198.922496] bridge0: port 1(bridge_slave_0) entered blocking state
[  198.928984] bridge0: port 1(bridge_slave_0) entered disabled state
[  198.937759] device bridge_slave_0 entered promiscuous mode
[  199.103373] bridge0: port 2(bridge_slave_1) entered blocking state
[  199.109848] bridge0: port 2(bridge_slave_1) entered disabled state
[  199.118490] device bridge_slave_1 entered promiscuous mode
[  199.259981] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  199.401357] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
12:43:50 executing program 1:
r0 = syz_open_dev$sndseq(&(0x7f0000000000)='/dev/snd/seq\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000b0bf74)={0x0, 0x0, 0x0, 'queue0\x00'})
r1 = memfd_create(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0)
r2 = syz_open_dev$sndseq(&(0x7f0000d82000)='/dev/snd/seq\x00', 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r3, 0x40605346, &(0x7f000013e000))

[  199.839143] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  200.074434] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  200.275171] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  200.282679] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  200.523072] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  200.530111] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  200.649212] IPVS: ftp: loaded support on port[0] = 21
[  201.209201] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  201.217550] team0: Port device team_slave_0 added
[  201.416875] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  201.425044] team0: Port device team_slave_1 added
[  201.638592] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  201.645834] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  201.654970] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  201.920074] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  201.927245] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  201.936337] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  202.122936] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  202.130592] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  202.139938] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  202.377154] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  202.384959] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  202.394319] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  204.574415] bridge0: port 1(bridge_slave_0) entered blocking state
[  204.580888] bridge0: port 1(bridge_slave_0) entered disabled state
[  204.589556] device bridge_slave_0 entered promiscuous mode
[  204.626117] bridge0: port 2(bridge_slave_1) entered blocking state
[  204.632680] bridge0: port 2(bridge_slave_1) entered forwarding state
[  204.639622] bridge0: port 1(bridge_slave_0) entered blocking state
[  204.646200] bridge0: port 1(bridge_slave_0) entered forwarding state
[  204.655186] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  204.827359] bridge0: port 2(bridge_slave_1) entered blocking state
[  204.833980] bridge0: port 2(bridge_slave_1) entered disabled state
[  204.842565] device bridge_slave_1 entered promiscuous mode
[  205.025500] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  205.216391] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  205.542944] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  205.932374] bond0: Enslaving bond_slave_0 as an active interface with an up link
12:43:57 executing program 2:
r0 = socket$inet(0x2, 0x8008000000003, 0x33)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='ip_vti0\x00', 0xffe5)
sendto$inet(r0, &(0x7f0000000340)="4b54491d6e45db7c", 0x8, 0x0, &(0x7f0000000300)={0x2, 0x0, @loopback}, 0x10)

[  206.238096] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  206.534720] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  206.543604] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  206.875491] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  206.882728] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  206.899924] IPVS: ftp: loaded support on port[0] = 21
[  207.653085] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  207.661101] team0: Port device team_slave_0 added
[  207.956622] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  207.964764] team0: Port device team_slave_1 added
[  208.283766] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  208.290913] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  208.300184] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  208.576694] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  208.583907] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  208.593147] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  208.863846] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  208.871537] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  208.880892] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  209.130410] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  209.138175] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  209.147493] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  211.544775] bridge0: port 1(bridge_slave_0) entered blocking state
[  211.551261] bridge0: port 1(bridge_slave_0) entered disabled state
[  211.560026] device bridge_slave_0 entered promiscuous mode
[  211.869993] bridge0: port 2(bridge_slave_1) entered blocking state
[  211.876617] bridge0: port 2(bridge_slave_1) entered disabled state
[  211.885294] device bridge_slave_1 entered promiscuous mode
[  212.189870] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  212.447504] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  212.636405] bridge0: port 2(bridge_slave_1) entered blocking state
[  212.643018] bridge0: port 2(bridge_slave_1) entered forwarding state
[  212.649973] bridge0: port 1(bridge_slave_0) entered blocking state
[  212.656619] bridge0: port 1(bridge_slave_0) entered forwarding state
[  212.666614] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  213.264717] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  213.382972] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  213.577491] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  213.886501] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  213.893728] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  214.208179] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  214.215659] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
12:44:05 executing program 3:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140)='/dev/rtc\x00', 0x0, 0x0)
ioctl$sock_inet_tcp_SIOCATMARK(r0, 0x7003, &(0x7f00000000c0))
ioctl(r0, 0x0, &(0x7f00000006c0))
syz_extract_tcp_res(&(0x7f0000000040), 0x0, 0x0)
socket$inet(0x2, 0x0, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000deb000)={0x2, 0x0, @multicast1}, 0x10)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb), &(0x7f0000cab000)=0xc)
socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000011ff0)={0x2, 0x4e20, @multicast2}, 0x10)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000340), 0x211)
sendto$inet(0xffffffffffffffff, &(0x7f0000a88f88), 0x332, 0x0, &(0x7f0000e68000)={0x2, 0x4e23}, 0x10)

[  215.200640] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  215.209261] team0: Port device team_slave_0 added
[  215.525116] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  215.533341] team0: Port device team_slave_1 added
[  215.865290] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  215.872745] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  215.881451] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  215.924420] IPVS: ftp: loaded support on port[0] = 21
[  216.341786] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  216.348841] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  216.357827] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  216.474712] 8021q: adding VLAN 0 to HW filter on device bond0
[  216.648366] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  216.656115] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  216.665540] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  217.003096] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  217.010710] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  217.019938] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  217.966184] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  219.457960] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  219.464509] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  219.472739] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  220.740737] 8021q: adding VLAN 0 to HW filter on device team0
[  221.066016] bridge0: port 2(bridge_slave_1) entered blocking state
[  221.072598] bridge0: port 2(bridge_slave_1) entered forwarding state
[  221.079594] bridge0: port 1(bridge_slave_0) entered blocking state
[  221.086223] bridge0: port 1(bridge_slave_0) entered forwarding state
[  221.095551] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  221.482182] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  221.868590] bridge0: port 1(bridge_slave_0) entered blocking state
[  221.875282] bridge0: port 1(bridge_slave_0) entered disabled state
[  221.883847] device bridge_slave_0 entered promiscuous mode
[  222.255437] bridge0: port 2(bridge_slave_1) entered blocking state
[  222.262060] bridge0: port 2(bridge_slave_1) entered disabled state
[  222.270605] device bridge_slave_1 entered promiscuous mode
[  222.689973] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  222.999881] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  223.949906] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  224.291588] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  224.695458] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  224.702791] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  225.066207] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  225.073491] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
12:44:16 executing program 4:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x1, 0x1e, 0x9, 0x8}, 0x2c)
bpf$BPF_GET_MAP_INFO(0x4, &(0x7f0000000040)={r0, 0x28}, 0x10)

[  226.163946] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  226.172231] team0: Port device team_slave_0 added
[  226.598755] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  226.607126] team0: Port device team_slave_1 added
[  227.137474] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  227.144721] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  227.153707] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  227.159461] IPVS: ftp: loaded support on port[0] = 21
[  227.513156] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  227.520292] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  227.529464] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  227.555877] 8021q: adding VLAN 0 to HW filter on device bond0
[  227.966413] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  227.974140] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  227.983150] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  228.378642] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  228.387364] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  228.396554] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  229.200368] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
12:44:21 executing program 0:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7ffffffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x34003}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)={0x14, 0x28, 0x829, 0x0, 0x0, {0xf}}, 0x14}}, 0x0)

12:44:21 executing program 0:
r0 = socket(0x1e, 0x4, 0xffff)
r1 = socket(0x1e, 0x805, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f00000000c0)=@req3={0x80000000}, 0x1c)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4400, 0x8)
ioctl$VHOST_GET_FEATURES(r2, 0x8008af00, &(0x7f0000000080))
r3 = socket(0x1e, 0x805, 0x0)
open(&(0x7f00000002c0)='./file0\x00', 0x40, 0x0)
ioctl$EVIOCGREP(r2, 0x80084503, &(0x7f0000000300)=""/96)
ioctl$SNDRV_TIMER_IOCTL_PAUSE(r2, 0x54a3)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000100)=@req={0x10000}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000040)=@req3={0x80000000}, 0x94)
setxattr$trusted_overlay_redirect(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='trusted.overlay.redirect\x00', &(0x7f0000000200)='./file0\x00', 0x8, 0x1)
getsockopt$IP6T_SO_GET_REVISION_MATCH(r0, 0x29, 0x44, &(0x7f0000000240)={'HL\x00'}, &(0x7f0000000280)=0x1e)
pipe(&(0x7f0000000140)={<r4=>0xffffffffffffffff})
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r4, 0x84, 0x73, &(0x7f0000000380)={<r5=>0x0, 0xa7, 0x30, 0x5, 0x1baa}, &(0x7f00000003c0)=0x18)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r3, 0x84, 0x1b, &(0x7f0000000400)=ANY=[@ANYRES32=r5, @ANYBLOB="7b0000006f0ebdb1837c50c5e79c11ed56bd236672c9d4fed373fd754192a52ec5430efed83c23ff10fb043acc16e39818664e08f8f20264b67a4451d1807dd6ca76b31615946fe91a958d82b922afef9ce703cdc13472ec7c54ec5e3cc9a85e8ccb4c6c1c5929bb0f9feb59501357cf9e4cae4866c0d2da9793c23e829d63"], &(0x7f00000004c0)=0x83)

[  230.949804] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  230.956606] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  230.964629] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
12:44:22 executing program 0:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000000)=0x1, 0x4)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f0000000140)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x2d2)
r1 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f00000013c0)={{{@in, @in6=@ipv4={[], [], @rand_addr}}}, {{@in6=@local}, 0x0, @in6}}, 0xe8)
sendmmsg(r1, &(0x7f00000002c0), 0x4cc, 0x0)
r2 = memfd_create(&(0x7f0000000040)='-user\x00', 0x5)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00')
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2012}, 0xc, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="90000020", @ANYRES16=r3, @ANYBLOB="080026bd7000fddbdf250e0000000800060001800000240001000c00070008000000100000000c0006006e6f6e650000000008000800030000002c000300080007004e220000080007004e2000000800080008000000080007004e200000080005000000000208000500000000000c000100080001000a00000008000500050000000800050000000000"], 0x90}, 0x1, 0x0, 0x0, 0x20000041}, 0x40000)
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)

12:44:23 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x4}, 0xc, &(0x7f0000000040)={&(0x7f0000000600)=@newlink={0x40, 0x10, 0x3eb80125379cfe6d, 0x0, 0x0, {}, [@IFLA_NUM_RX_QUEUES={0x8, 0x20, 0x7000000}, @IFLA_LINKINFO={0x18, 0x12, @ip6gretap={{0x10, 0x1, 'ip6gretap\x00'}, {0x4}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x5}, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000280)='/dev/input/mouse#\x00', 0x7fff, 0x400)
getsockopt$inet_sctp_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000200)={0x3, [0x20, 0x1000000000000000, 0x2]}, &(0x7f00000001c0)=0xa)
setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000180)={0x0, 0x101}, 0x8)
fsetxattr$security_selinux(r1, &(0x7f0000000140)='security.selinux\x00', &(0x7f0000000240)='system_u:object_r:hostname_exec_t:s0\x00', 0xa, 0x3)

[  232.463655] syz-executor0: vmalloc: allocation failure: 22548578304 bytes, mode:0x6084c0(GFP_KERNEL|__GFP_RETRY_MAYFAIL|__GFP_ZERO), nodemask=(null)
[  232.477433] syz-executor0 cpuset=syz0 mems_allowed=0
[  232.482905] CPU: 0 PID: 7005 Comm: syz-executor0 Not tainted 4.19.0-rc4+ #63
[  232.490152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  232.499564] Call Trace:
[  232.502247]  dump_stack+0x306/0x460
[  232.505963]  warn_alloc+0x4c1/0x6f0
[  232.509668]  ? kmsan_set_origin_inline+0x6b/0x120
[  232.514666]  __vmalloc_node_range+0x203/0x1140
[  232.519356]  __vmalloc_node_flags_caller+0x12b/0x140
[  232.524519]  ? alloc_netdev_mqs+0x114d/0x1660
[  232.529067]  ? alloc_netdev_mqs+0x114d/0x1660
[  232.533633]  kvmalloc_node+0x3a1/0x3e0
[  232.537584]  alloc_netdev_mqs+0x114d/0x1660
[  232.541978]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  232.547501]  ? prepare_ip6gre_xmit_ipv6+0x8f0/0x8f0
[  232.552578]  rtnl_create_link+0x3e6/0xf50
[  232.556804]  rtnl_newlink+0x250d/0x39a0
[  232.560839]  ? rtnl_newlink+0x1751/0x39a0
[  232.565177]  ? kmsan_set_origin+0x83/0x140
[  232.569507]  ? kmsan_internal_unpoison_shadow+0x83/0xe0
[  232.574964]  ? __msan_get_context_state+0x9/0x30
[  232.579805]  ? INIT_BOOL+0x17/0x30
[  232.583452]  ? refcount_sub_and_test_checked+0x5ba/0x6c0
[  232.589032]  ? rtnl_setlink+0x6f0/0x6f0
[  232.593062]  rtnetlink_rcv_msg+0xa53/0x1590
[  232.597502]  ? __msan_poison_alloca+0x17a/0x210
[  232.602287]  ? kmsan_set_origin_inline+0x6b/0x120
[  232.607241]  ? kmsan_set_origin_inline+0x6b/0x120
[  232.612181]  ? kmsan_set_origin+0x83/0x140
[  232.616488]  netlink_rcv_skb+0x394/0x640
[  232.620611]  ? rtnetlink_bind+0x120/0x120
[  232.624837]  rtnetlink_rcv+0x50/0x60
[  232.628619]  netlink_unicast+0x166d/0x1720
[  232.632936]  ? rtnetlink_net_exit+0x90/0x90
[  232.637346]  netlink_sendmsg+0x1391/0x1420
[  232.641710]  ___sys_sendmsg+0xe47/0x1200
[  232.645849]  ? netlink_getsockopt+0x1560/0x1560
[  232.650622]  ? __fget+0x8f7/0x940
[  232.654213]  ? __fdget+0x318/0x430
[  232.657881]  __se_sys_sendmsg+0x307/0x460
[  232.662140]  __x64_sys_sendmsg+0x4a/0x70
[  232.666276]  do_syscall_64+0xbe/0x100
[  232.670141]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  232.675383] RIP: 0033:0x457579
[  232.678631] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  232.697577] RSP: 002b:00007f6a417c6c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  232.705366] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457579
[  232.712679] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[  232.719988] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  232.727302] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6a417c76d4
[  232.734617] R13: 00000000004c38b9 R14: 00000000004d5700 R15: 00000000ffffffff
[  232.742648] Mem-Info:
[  232.745251] active_anon:67018 inactive_anon:113 isolated_anon:0
[  232.745251]  active_file:7383 inactive_file:33582 isolated_file:0
[  232.745251]  unevictable:0 dirty:40 writeback:0 unstable:0
[  232.745251]  slab_reclaimable:3731 slab_unreclaimable:7505
[  232.745251]  mapped:46729 shmem:119 pagetables:725 bounce:0
[  232.745251]  free:1024287 free_pcp:561 free_cma:0
[  232.778944] Node 0 active_anon:268072kB inactive_anon:452kB active_file:29532kB inactive_file:134328kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:186916kB dirty:160kB writeback:0kB shmem:476kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 200704kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  232.807820] Node 0 DMA free:15904kB min:144kB low:180kB high:216kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  232.834184] lowmem_reserve[]: 0 2803 7229 7229
[  232.838903] Node 0 DMA32 free:2873792kB min:26148kB low:32684kB high:39220kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2875232kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:1440kB local_pcp:1440kB free_cma:0kB
[  232.866994] lowmem_reserve[]: 0 0 4425 4425
[  232.871433] Node 0 Normal free:1207200kB min:41284kB low:51604kB high:61924kB active_anon:268072kB inactive_anon:452kB active_file:29532kB inactive_file:134444kB unevictable:0kB writepending:160kB present:4718592kB managed:4532152kB mlocked:0kB kernel_stack:11520kB pagetables:2728kB bounce:0kB free_pcp:1264kB local_pcp:472kB free_cma:0kB
[  232.901737] lowmem_reserve[]: 0 0 0 0
[  232.905644] Node 0 DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15904kB
[  232.919337] Node 0 DMA32: 4*4kB (M) 2*8kB (M) 2*16kB (M) 4*32kB (M) 2*64kB (M) 3*128kB (M) 3*256kB (M) 2*512kB (M) 2*1024kB (M) 3*2048kB (M) 699*4096kB (M) = 2873792kB
[  232.934992] Node 0 Normal: 1*4kB (E) 2*8kB (UM) 2*16kB (ME) 7*32kB (UME) 4*64kB (UME) 4*128kB (UE) 4*256kB (UE) 1*512kB (U) 4*1024kB (UME) 2*2048kB (ME) 292*4096kB (M) = 1206804kB
[  232.951789] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  232.960828] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  232.969531] 41167 total pagecache pages
[  232.973625] 0 pages in swap cache
[  232.977123] Swap cache stats: add 0, delete 0, find 0/0
[  232.982597] Free swap  = 0kB
[  232.985653] Total swap = 0kB
[  232.988714] 1965979 pages RAM
[  232.991940] 0 pages HighMem/MovableOnly
[  232.995958] 110157 pages reserved
[  232.999453] 0 pages cma reserved
[  233.018894] 8021q: adding VLAN 0 to HW filter on device team0
[  233.533509] bridge0: port 2(bridge_slave_1) entered blocking state
[  233.540016] bridge0: port 2(bridge_slave_1) entered forwarding state
[  233.547104] bridge0: port 1(bridge_slave_0) entered blocking state
[  233.553667] bridge0: port 1(bridge_slave_0) entered forwarding state
[  233.562389] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  233.884271] syz-executor0: vmalloc: allocation failure: 22548578304 bytes, mode:0x6084c0(GFP_KERNEL|__GFP_RETRY_MAYFAIL|__GFP_ZERO), nodemask=(null)
[  233.898029] syz-executor0 cpuset=syz0 mems_allowed=0
[  233.903912] CPU: 1 PID: 7005 Comm: syz-executor0 Not tainted 4.19.0-rc4+ #63
[  233.911144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  233.920546] Call Trace:
[  233.923215]  dump_stack+0x306/0x460
[  233.926917]  warn_alloc+0x4c1/0x6f0
[  233.930623]  ? kmsan_set_origin_inline+0x6b/0x120
[  233.935610]  __vmalloc_node_range+0x203/0x1140
[  233.940298]  __vmalloc_node_flags_caller+0x12b/0x140
[  233.945500]  ? alloc_netdev_mqs+0x114d/0x1660
[  233.950084]  ? alloc_netdev_mqs+0x114d/0x1660
[  233.954652]  kvmalloc_node+0x3a1/0x3e0
[  233.958609]  alloc_netdev_mqs+0x114d/0x1660
[  233.963025]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  233.968554]  ? prepare_ip6gre_xmit_ipv6+0x8f0/0x8f0
[  233.973630]  rtnl_create_link+0x3e6/0xf50
[  233.977870]  rtnl_newlink+0x250d/0x39a0
[  233.981922]  ? rtnl_newlink+0x1751/0x39a0
[  233.986181]  ? __kernel_text_address+0x250/0x350
[  233.991055]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  233.996609]  ? __save_stack_trace+0x9ec/0xc60
[  234.001200]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  234.006797]  ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  234.012311]  ? kmsan_set_origin+0x83/0x140
[  234.016642]  ? kmsan_internal_unpoison_shadow+0x83/0xe0
[  234.022106]  ? __msan_get_context_state+0x9/0x30
[  234.026956]  ? INIT_BOOL+0x17/0x30
[  234.030618]  ? refcount_sub_and_test_checked+0x5ba/0x6c0
[  234.036258]  ? rtnl_setlink+0x6f0/0x6f0
[  234.040289]  rtnetlink_rcv_msg+0xa53/0x1590
[  234.044737]  ? __msan_poison_alloca+0x17a/0x210
[  234.049507]  ? kmsan_set_origin_inline+0x6b/0x120
[  234.054493]  ? kmsan_set_origin_inline+0x6b/0x120
[  234.059433]  ? kmsan_set_origin+0x83/0x140
[  234.063751]  netlink_rcv_skb+0x394/0x640
[  234.067903]  ? rtnetlink_bind+0x120/0x120
[  234.072144]  rtnetlink_rcv+0x50/0x60
[  234.075938]  netlink_unicast+0x166d/0x1720
[  234.080279]  ? rtnetlink_net_exit+0x90/0x90
[  234.084697]  netlink_sendmsg+0x1391/0x1420
[  234.089087]  ___sys_sendmsg+0xe47/0x1200
[  234.093229]  ? netlink_getsockopt+0x1560/0x1560
[  234.098025]  ? __fget+0x8f7/0x940
[  234.101613]  ? __fdget+0x318/0x430
[  234.105269]  __se_sys_sendmsg+0x307/0x460
[  234.109550]  __x64_sys_sendmsg+0x4a/0x70
[  234.113684]  do_syscall_64+0xbe/0x100
[  234.117564]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  234.122820] RIP: 0033:0x457579
[  234.126090] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  234.145170] RSP: 002b:00007f6a417c6c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  234.152975] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457579
[  234.160324] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000004
[  234.167653] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  234.174995] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6a417c76d4
[  234.182325] R13: 00000000004c38b9 R14: 00000000004d5700 R15: 00000000ffffffff
[  234.191392] Mem-Info:
[  234.194065] active_anon:67065 inactive_anon:113 isolated_anon:0
[  234.194065]  active_file:7385 inactive_file:34289 isolated_file:0
[  234.194065]  unevictable:0 dirty:43 writeback:0 unstable:0
[  234.194065]  slab_reclaimable:3731 slab_unreclaimable:7602
[  234.194065]  mapped:46719 shmem:119 pagetables:732 bounce:0
[  234.194065]  free:1022830 free_pcp:631 free_cma:0
[  234.227728] Node 0 active_anon:268260kB inactive_anon:452kB active_file:29540kB inactive_file:137272kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:186876kB dirty:172kB writeback:0kB shmem:476kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 202752kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  234.256161] Node 0 DMA free:15904kB min:144kB low:180kB high:216kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  234.282604] lowmem_reserve[]: 0 2803 7229 7229
[  234.287357] Node 0 DMA32 free:2873792kB min:26148kB low:32684kB high:39220kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2875232kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:1440kB local_pcp:0kB free_cma:0kB
[  234.315446] lowmem_reserve[]: 0 0 4425 4425
[  234.319931] Node 0 Normal free:1200616kB min:41284kB low:51604kB high:61924kB active_anon:268260kB inactive_anon:452kB active_file:29540kB inactive_file:137388kB unevictable:0kB writepending:56kB present:4718592kB managed:4532152kB mlocked:0kB kernel_stack:11584kB pagetables:2928kB bounce:0kB free_pcp:1272kB local_pcp:984kB free_cma:0kB
[  234.350406] lowmem_reserve[]: 0 0 0 0
[  234.354489] Node 0 DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15904kB
[  234.368317] Node 0 DMA32: 4*4kB (M) 2*8kB (M) 2*16kB (M) 4*32kB (M) 2*64kB (M) 3*128kB (M) 3*256kB (M) 2*512kB (M) 2*1024kB (M) 3*2048kB (M) 699*4096kB (M) = 2873792kB
[  234.384094] Node 0 Normal: 1*4kB (U) 0*8kB 3*16kB (UE) 7*32kB (UE) 2*64kB (ME) 4*128kB (ME) 3*256kB (E) 1*512kB (U) 2*1024kB (E) 2*2048kB (UE) 291*4096kB (M) = 1200276kB
[  234.400151] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  234.409202] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  234.418025] 41894 total pagecache pages
[  234.422207] 0 pages in swap cache
[  234.425712] Swap cache stats: add 0, delete 0, find 0/0
[  234.431117] Free swap  = 0kB
[  234.434347] Total swap = 0kB
[  234.437412] 1965979 pages RAM
[  234.440550] 0 pages HighMem/MovableOnly
[  234.444736] 110157 pages reserved
[  234.448241] 0 pages cma reserved
[  234.583011] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  234.849852] bridge0: port 1(bridge_slave_0) entered blocking state
[  234.856494] bridge0: port 1(bridge_slave_0) entered disabled state
[  234.865058] device bridge_slave_0 entered promiscuous mode
[  235.246792] bridge0: port 2(bridge_slave_1) entered blocking state
[  235.253496] bridge0: port 2(bridge_slave_1) entered disabled state
[  235.261935] device bridge_slave_1 entered promiscuous mode
[  235.689174] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
12:44:26 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x4}, 0xc, &(0x7f0000000040)={&(0x7f0000000600)=@newlink={0x40, 0x10, 0x3eb80125379cfe6d, 0x0, 0x0, {}, [@IFLA_NUM_RX_QUEUES={0x8, 0x20, 0x7000000}, @IFLA_LINKINFO={0x18, 0x12, @ip6gretap={{0x10, 0x1, 'ip6gretap\x00'}, {0x4}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x5}, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000280)='/dev/input/mouse#\x00', 0x7fff, 0x400)
getsockopt$inet_sctp_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000200)={0x3, [0x20, 0x1000000000000000, 0x2]}, &(0x7f00000001c0)=0xa)
setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000180)={0x0, 0x101}, 0x8)
fsetxattr$security_selinux(r1, &(0x7f0000000140)='security.selinux\x00', &(0x7f0000000240)='system_u:object_r:hostname_exec_t:s0\x00', 0xa, 0x3)

[  236.040293] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  236.085521] syz-executor0: vmalloc: allocation failure: 22548578304 bytes, mode:0x6084c0(GFP_KERNEL|__GFP_RETRY_MAYFAIL|__GFP_ZERO), nodemask=(null)
[  236.099238] syz-executor0 cpuset=syz0 mems_allowed=0
[  236.104633] CPU: 1 PID: 7071 Comm: syz-executor0 Not tainted 4.19.0-rc4+ #63
[  236.111866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  236.121267] Call Trace:
[  236.123938]  dump_stack+0x306/0x460
[  236.127650]  warn_alloc+0x4c1/0x6f0
[  236.131357]  ? kmsan_set_origin_inline+0x6b/0x120
[  236.136352]  __vmalloc_node_range+0x203/0x1140
[  236.141053]  __vmalloc_node_flags_caller+0x12b/0x140
[  236.146221]  ? alloc_netdev_mqs+0x114d/0x1660
[  236.150784]  ? alloc_netdev_mqs+0x114d/0x1660
[  236.155348]  kvmalloc_node+0x3a1/0x3e0
[  236.159293]  alloc_netdev_mqs+0x114d/0x1660
[  236.163692]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  236.169230]  ? prepare_ip6gre_xmit_ipv6+0x8f0/0x8f0
[  236.174298]  rtnl_create_link+0x3e6/0xf50
[  236.178533]  rtnl_newlink+0x250d/0x39a0
[  236.182579]  ? rtnl_newlink+0x1751/0x39a0
[  236.186946]  ? kmsan_set_origin+0x83/0x140
[  236.191269]  ? kmsan_internal_unpoison_shadow+0x83/0xe0
[  236.196750]  ? __msan_get_context_state+0x9/0x30
[  236.201585]  ? INIT_BOOL+0x17/0x30
[  236.205228]  ? refcount_sub_and_test_checked+0x5ba/0x6c0
[  236.210830]  ? rtnl_setlink+0x6f0/0x6f0
[  236.214889]  rtnetlink_rcv_msg+0xa53/0x1590
[  236.219336]  ? __msan_poison_alloca+0x17a/0x210
[  236.224111]  ? kmsan_set_origin_inline+0x6b/0x120
[  236.229060]  ? apic_timer_interrupt+0xa/0x20
[  236.233568]  ? kmsan_set_origin_inline+0x6b/0x120
[  236.238514]  ? kmsan_set_origin+0x83/0x140
[  236.242841]  netlink_rcv_skb+0x394/0x640
[  236.246964]  ? rtnetlink_bind+0x120/0x120
[  236.251199]  rtnetlink_rcv+0x50/0x60
[  236.254973]  netlink_unicast+0x166d/0x1720
[  236.259288]  ? rtnetlink_net_exit+0x90/0x90
[  236.263699]  netlink_sendmsg+0x1391/0x1420
[  236.268090]  ___sys_sendmsg+0xe47/0x1200
[  236.272232]  ? netlink_getsockopt+0x1560/0x1560
[  236.277006]  ? __fget+0x8f7/0x940
[  236.280587]  ? __fdget+0x318/0x430
[  236.284229]  __se_sys_sendmsg+0x307/0x460
[  236.288492]  __x64_sys_sendmsg+0x4a/0x70
[  236.292607]  do_syscall_64+0xbe/0x100
[  236.296470]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  236.301705] RIP: 0033:0x457579
[  236.304964] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  236.323920] RSP: 002b:00007f6a417c6c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  236.331813] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457579
[  236.339258] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[  236.346571] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  236.354157] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6a417c76d4
[  236.361595] R13: 00000000004c38b9 R14: 00000000004d5700 R15: 00000000ffffffff
[  236.369536] Mem-Info:
[  236.372175] active_anon:67080 inactive_anon:111 isolated_anon:0
[  236.372175]  active_file:7385 inactive_file:34991 isolated_file:0
[  236.372175]  unevictable:0 dirty:27 writeback:0 unstable:0
[  236.372175]  slab_reclaimable:3738 slab_unreclaimable:7664
[  236.372175]  mapped:46712 shmem:119 pagetables:707 bounce:0
[  236.372175]  free:1020966 free_pcp:534 free_cma:0
[  236.405892] Node 0 active_anon:268320kB inactive_anon:444kB active_file:29540kB inactive_file:139964kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:186848kB dirty:108kB writeback:0kB shmem:476kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 200704kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  236.434380] Node 0 DMA free:15904kB min:144kB low:180kB high:216kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  236.460788] lowmem_reserve[]: 0 2803 7229 7229
[  236.465677] Node 0 DMA32 free:2873792kB min:26148kB low:32684kB high:39220kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2875232kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:1440kB local_pcp:0kB free_cma:0kB
[  236.493729] lowmem_reserve[]: 0 0 4425 4425
[  236.498217] Node 0 Normal free:1193028kB min:41284kB low:51604kB high:61924kB active_anon:268436kB inactive_anon:444kB active_file:29540kB inactive_file:140196kB unevictable:0kB writepending:108kB present:4718592kB managed:4532152kB mlocked:0kB kernel_stack:11648kB pagetables:3000kB bounce:0kB free_pcp:948kB local_pcp:488kB free_cma:0kB
[  236.528508] lowmem_reserve[]: 0 0 0 0
[  236.532603] Node 0 DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15904kB
[  236.546397] Node 0 DMA32: 4*4kB (M) 2*8kB (M) 2*16kB (M) 4*32kB (M) 2*64kB (M) 3*128kB (M) 3*256kB (M) 2*512kB (M) 2*1024kB (M) 3*2048kB (M) 699*4096kB (M) = 2873792kB
[  236.562127] Node 0 Normal: 1*4kB (U) 3*8kB (UME) 3*16kB (UME) 6*32kB (E) 2*64kB (UE) 4*128kB (ME) 4*256kB (ME) 1*512kB (U) 4*1024kB (UME) 1*2048kB (E) 289*4096kB (M) = 1192332kB
[  236.578817] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  236.588274] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  236.597069] 42623 total pagecache pages
[  236.601101] 0 pages in swap cache
[  236.604768] Swap cache stats: add 0, delete 0, find 0/0
[  236.610171] Free swap  = 0kB
[  236.613380] Total swap = 0kB
[  236.616444] 1965979 pages RAM
[  236.619583] 0 pages HighMem/MovableOnly
[  236.623740] 110157 pages reserved
[  236.627238] 0 pages cma reserved
12:44:28 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x4}, 0xc, &(0x7f0000000040)={&(0x7f0000000600)=@newlink={0x40, 0x10, 0x3eb80125379cfe6d, 0x0, 0x0, {}, [@IFLA_NUM_RX_QUEUES={0x8, 0x20, 0x7000000}, @IFLA_LINKINFO={0x18, 0x12, @ip6gretap={{0x10, 0x1, 'ip6gretap\x00'}, {0x4}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x5}, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000280)='/dev/input/mouse#\x00', 0x7fff, 0x400)
getsockopt$inet_sctp_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000200)={0x3, [0x20, 0x1000000000000000, 0x2]}, &(0x7f00000001c0)=0xa)
setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000180)={0x0, 0x101}, 0x8)
fsetxattr$security_selinux(r1, &(0x7f0000000140)='security.selinux\x00', &(0x7f0000000240)='system_u:object_r:hostname_exec_t:s0\x00', 0xa, 0x3)

[  237.278843] syz-executor0: vmalloc: allocation failure: 22548578304 bytes, mode:0x6084c0(GFP_KERNEL|__GFP_RETRY_MAYFAIL|__GFP_ZERO), nodemask=(null)
[  237.292602] syz-executor0 cpuset=syz0 mems_allowed=0
[  237.297836] CPU: 0 PID: 7092 Comm: syz-executor0 Not tainted 4.19.0-rc4+ #63
[  237.305066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  237.314459] Call Trace:
[  237.317132]  dump_stack+0x306/0x460
[  237.320836]  warn_alloc+0x4c1/0x6f0
[  237.324539]  ? kmsan_set_origin_inline+0x6b/0x120
[  237.329530]  __vmalloc_node_range+0x203/0x1140
[  237.334215]  __vmalloc_node_flags_caller+0x12b/0x140
[  237.339381]  ? alloc_netdev_mqs+0x114d/0x1660
[  237.343928]  ? alloc_netdev_mqs+0x114d/0x1660
[  237.348501]  kvmalloc_node+0x3a1/0x3e0
[  237.352486]  alloc_netdev_mqs+0x114d/0x1660
[  237.356885]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  237.362414]  ? prepare_ip6gre_xmit_ipv6+0x8f0/0x8f0
[  237.367498]  rtnl_create_link+0x3e6/0xf50
[  237.371736]  rtnl_newlink+0x250d/0x39a0
[  237.375788]  ? rtnl_newlink+0x1751/0x39a0
[  237.380145]  ? kmsan_set_origin+0x83/0x140
[  237.384477]  ? kmsan_internal_unpoison_shadow+0x83/0xe0
[  237.389946]  ? __msan_get_context_state+0x9/0x30
[  237.394796]  ? INIT_BOOL+0x17/0x30
[  237.398453]  ? refcount_sub_and_test_checked+0x5ba/0x6c0
[  237.404055]  ? rtnl_setlink+0x6f0/0x6f0
[  237.408080]  rtnetlink_rcv_msg+0xa53/0x1590
[  237.412531]  ? __msan_poison_alloca+0x17a/0x210
[  237.417302]  ? kmsan_set_origin_inline+0x6b/0x120
[  237.422279]  ? kmsan_set_origin_inline+0x6b/0x120
[  237.427221]  ? kmsan_set_origin+0x83/0x140
[  237.431550]  netlink_rcv_skb+0x394/0x640
[  237.435671]  ? rtnetlink_bind+0x120/0x120
[  237.439897]  rtnetlink_rcv+0x50/0x60
[  237.443678]  netlink_unicast+0x166d/0x1720
[  237.448008]  ? rtnetlink_net_exit+0x90/0x90
[  237.452422]  netlink_sendmsg+0x1391/0x1420
[  237.456808]  ___sys_sendmsg+0xe47/0x1200
[  237.460944]  ? netlink_getsockopt+0x1560/0x1560
[  237.465728]  ? __fget+0x8f7/0x940
[  237.469323]  ? __fdget+0x318/0x430
[  237.472996]  __se_sys_sendmsg+0x307/0x460
[  237.477278]  __x64_sys_sendmsg+0x4a/0x70
[  237.481404]  do_syscall_64+0xbe/0x100
[  237.485291]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  237.490542] RIP: 0033:0x457579
[  237.493796] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  237.512764] RSP: 002b:00007f6a417c6c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  237.520552] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457579
[  237.527870] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[  237.535187] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  237.542506] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6a417c76d4
[  237.549822] R13: 00000000004c38b9 R14: 00000000004d5700 R15: 00000000ffffffff
[  237.557852] Mem-Info:
[  237.560406] active_anon:67086 inactive_anon:113 isolated_anon:0
[  237.560406]  active_file:7401 inactive_file:35504 isolated_file:0
[  237.560406]  unevictable:0 dirty:33 writeback:0 unstable:0
[  237.560406]  slab_reclaimable:3740 slab_unreclaimable:7676
[  237.560406]  mapped:46754 shmem:119 pagetables:705 bounce:0
[  237.560406]  free:1019805 free_pcp:647 free_cma:0
[  237.594031] Node 0 active_anon:268576kB inactive_anon:452kB active_file:29604kB inactive_file:142016kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:187016kB dirty:132kB writeback:0kB shmem:476kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 200704kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  237.622381] Node 0 DMA free:15904kB min:144kB low:180kB high:216kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  237.648790] lowmem_reserve[]: 0 2803 7229 7229
[  237.653595] Node 0 DMA32 free:2873792kB min:26148kB low:32684kB high:39220kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2875232kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:1440kB local_pcp:1440kB free_cma:0kB
[  237.681792] lowmem_reserve[]: 0 0 4425 4425
[  237.686246] Node 0 Normal free:1188576kB min:41284kB low:51604kB high:61924kB active_anon:268576kB inactive_anon:452kB active_file:29604kB inactive_file:142248kB unevictable:0kB writepending:132kB present:4718592kB managed:4532152kB mlocked:0kB kernel_stack:11648kB pagetables:2820kB bounce:0kB free_pcp:568kB local_pcp:400kB free_cma:0kB
[  237.716480] lowmem_reserve[]: 0 0 0 0
[  237.720408] Node 0 DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15904kB
[  237.734171] Node 0 DMA32: 4*4kB (M) 2*8kB (M) 2*16kB (M) 4*32kB (M) 2*64kB (M) 3*128kB (M) 3*256kB (M) 2*512kB (M) 2*1024kB (M) 3*2048kB (M) 699*4096kB (M) = 2873792kB
[  237.749838] Node 0 Normal: 0*4kB 1*8kB (M) 2*16kB (ME) 6*32kB (E) 2*64kB (UE) 3*128kB (E) 4*256kB (ME) 1*512kB (M) 2*1024kB (E) 2*2048kB (ME) 288*4096kB (M) = 1188072kB
[  237.765906] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  237.774926] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  237.783697] 43207 total pagecache pages
[  237.787717] 0 pages in swap cache
[  237.791214] Swap cache stats: add 0, delete 0, find 0/0
[  237.796978] Free swap  = 0kB
[  237.800047] Total swap = 0kB
[  237.803255] 1965979 pages RAM
[  237.806411] 0 pages HighMem/MovableOnly
[  237.810417] 110157 pages reserved
[  237.814055] 0 pages cma reserved
12:44:29 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x4}, 0xc, &(0x7f0000000040)={&(0x7f0000000600)=@newlink={0x40, 0x10, 0x3eb80125379cfe6d, 0x0, 0x0, {}, [@IFLA_NUM_RX_QUEUES={0x8, 0x20, 0x7000000}, @IFLA_LINKINFO={0x18, 0x12, @ip6gretap={{0x10, 0x1, 'ip6gretap\x00'}, {0x4}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x5}, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000280)='/dev/input/mouse#\x00', 0x7fff, 0x400)
getsockopt$inet_sctp_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000200)={0x3, [0x20, 0x1000000000000000, 0x2]}, &(0x7f00000001c0)=0xa)
setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000180)={0x0, 0x101}, 0x8)
fsetxattr$security_selinux(r1, &(0x7f0000000140)='security.selinux\x00', &(0x7f0000000240)='system_u:object_r:hostname_exec_t:s0\x00', 0xa, 0x3)

[  238.254907] bond0: Enslaving bond_slave_0 as an active interface with an up link
12:44:29 executing program 5:
r0 = request_key(&(0x7f0000000000)='encrypted\x00', &(0x7f0000000040)={'syz', 0x1}, &(0x7f0000000080)='lo}*vmnet1\x00', 0xfffffffffffffffd)
keyctl$read(0xb, r0, &(0x7f00000000c0)=""/226, 0xe2)
sched_yield()
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ppp\x00', 0x400402, 0x0)
ioctl$ASHMEM_PURGE_ALL_CACHES(r1, 0x770a, 0x0)
ioctl$ASHMEM_PURGE_ALL_CACHES(r1, 0x770a, 0x0)
ioctl$VHOST_SET_LOG_BASE(r1, 0x4008af04, &(0x7f0000000240)=&(0x7f0000000200))
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r1, 0xc0145401, &(0x7f0000000280)={0x1, 0x0, 0x7, 0x3, 0x8000000})
r2 = syz_open_dev$amidi(&(0x7f00000002c0)='/dev/amidi#\x00', 0x2, 0x100)
listen(r2, 0x7f)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f0000000300)={0x2, [<r3=>0x0, <r4=>0x0]}, &(0x7f0000000340)=0xc)
clock_getres(0x6, &(0x7f0000000380))
r5 = openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/thread-self/attr/exec\x00', 0x2, 0x0)
getsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(r1, 0x84, 0x12, &(0x7f0000000400), &(0x7f0000000440)=0x4)
ioctl$EXT4_IOC_SWAP_BOOT(r1, 0x6611)
shutdown(r1, 0x0)
ioctl$EVIOCGPROP(r2, 0x80404509, 0x0)
ioctl$ASHMEM_PURGE_ALL_CACHES(r1, 0x770a, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f00000005c0)={0x0, 0x1, &(0x7f0000000480)=""/73, &(0x7f0000000500)=""/36, &(0x7f0000000540)=""/83, 0x1000})
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000600)={0x80000000, 0x2, 0x200, 0x4d, 0x2, 0x81, 0x4, 0x6, r4}, 0x20)
readahead(r2, 0x4, 0x4)
ioctl$DRM_IOCTL_GET_STATS(r2, 0x80f86406, &(0x7f0000000640)=""/186)
fsetxattr$trusted_overlay_redirect(r5, &(0x7f0000000700)='trusted.overlay.redirect\x00', &(0x7f0000000740)='./file0\x00', 0x8, 0x1)
epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r2, &(0x7f0000000780)={0x2000})
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f00000007c0)={r3, 0x1}, &(0x7f0000000800)=0x8)
getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000840)={{{@in6=@remote, @in6=@ipv4={[], [], @remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in=@loopback}, 0x0, @in=@dev}}, &(0x7f0000000940)=0xe8)
keyctl$get_persistent(0x16, r6, r0)
getsockopt$ARPT_SO_GET_REVISION_TARGET(r1, 0x0, 0x63, &(0x7f0000000980)={'icmp\x00'}, &(0x7f00000009c0)=0x1e)
ioctl$SG_SET_RESERVED_SIZE(r2, 0x2275, &(0x7f0000000a00)=0x8)
ioctl$SCSI_IOCTL_BENCHMARK_COMMAND(r1, 0x3)

[  238.684551] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  239.006363] 8021q: adding VLAN 0 to HW filter on device bond0
[  239.089044] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  239.096391] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  239.535283] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  239.542493] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  239.609776] IPVS: ftp: loaded support on port[0] = 21
[  240.224295] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  240.783132] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  240.791226] team0: Port device team_slave_0 added
[  241.174911] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  241.183115] team0: Port device team_slave_1 added
[  241.486635] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  241.493820] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  241.502574] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  241.676410] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  241.682847] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  241.690753] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  241.871060] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  241.878244] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  241.887281] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  242.238200] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  242.245962] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  242.255110] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  242.587787] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  242.595744] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  242.604654] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  242.910059] 8021q: adding VLAN 0 to HW filter on device team0
[  243.416485] ALSA: seq fatal error: cannot create timer (-22)
12:44:34 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x4}, 0xc, &(0x7f0000000040)={&(0x7f0000000600)=@newlink={0x40, 0x10, 0x3eb80125379cfe6d, 0x0, 0x0, {}, [@IFLA_NUM_RX_QUEUES={0x8, 0x20, 0x7000000}, @IFLA_LINKINFO={0x18, 0x12, @ip6gretap={{0x10, 0x1, 'ip6gretap\x00'}, {0x4}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x5}, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000280)='/dev/input/mouse#\x00', 0x7fff, 0x400)
getsockopt$inet_sctp_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000200)={0x3, [0x20, 0x1000000000000000, 0x2]}, &(0x7f00000001c0)=0xa)
setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000180)={0x0, 0x101}, 0x8)

[  243.860023] syz-executor0: vmalloc: allocation failure: 22548578304 bytes, mode:0x6084c0(GFP_KERNEL|__GFP_RETRY_MAYFAIL|__GFP_ZERO), nodemask=(null)
[  243.873901] syz-executor0 cpuset=syz0 mems_allowed=0
[  243.879129] CPU: 1 PID: 7260 Comm: syz-executor0 Not tainted 4.19.0-rc4+ #63
[  243.886359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  243.895764] Call Trace:
[  243.898438]  dump_stack+0x306/0x460
[  243.902678]  warn_alloc+0x4c1/0x6f0
[  243.906385]  ? kmsan_set_origin_inline+0x6b/0x120
[  243.911381]  __vmalloc_node_range+0x203/0x1140
[  243.916079]  __vmalloc_node_flags_caller+0x12b/0x140
[  243.921255]  ? alloc_netdev_mqs+0x114d/0x1660
[  243.925818]  ? alloc_netdev_mqs+0x114d/0x1660
[  243.930396]  kvmalloc_node+0x3a1/0x3e0
[  243.934356]  alloc_netdev_mqs+0x114d/0x1660
[  243.938751]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  243.944284]  ? prepare_ip6gre_xmit_ipv6+0x8f0/0x8f0
[  243.949362]  rtnl_create_link+0x3e6/0xf50
[  243.953598]  rtnl_newlink+0x250d/0x39a0
[  243.957638]  ? rtnl_newlink+0x1751/0x39a0
[  243.961993]  ? kmsan_set_origin+0x83/0x140
[  243.966331]  ? kmsan_internal_unpoison_shadow+0x83/0xe0
[  243.971819]  ? __msan_get_context_state+0x9/0x30
[  243.976661]  ? INIT_BOOL+0x17/0x30
[  243.980308]  ? refcount_sub_and_test_checked+0x5ba/0x6c0
[  243.985903]  ? rtnl_setlink+0x6f0/0x6f0
[  243.989931]  rtnetlink_rcv_msg+0xa53/0x1590
[  243.994384]  ? __msan_poison_alloca+0x17a/0x210
[  243.999139]  ? kmsan_set_origin_inline+0x6b/0x120
[  244.004105]  ? kmsan_set_origin_inline+0x6b/0x120
[  244.009051]  ? kmsan_set_origin+0x83/0x140
[  244.013364]  netlink_rcv_skb+0x394/0x640
[  244.017484]  ? rtnetlink_bind+0x120/0x120
[  244.021714]  rtnetlink_rcv+0x50/0x60
[  244.025499]  netlink_unicast+0x166d/0x1720
[  244.029820]  ? rtnetlink_net_exit+0x90/0x90
[  244.034224]  netlink_sendmsg+0x1391/0x1420
[  244.038558]  ___sys_sendmsg+0xe47/0x1200
[  244.042686]  ? netlink_getsockopt+0x1560/0x1560
[  244.047456]  ? __fget+0x8f7/0x940
[  244.051041]  ? __fdget+0x318/0x430
[  244.054688]  __se_sys_sendmsg+0x307/0x460
[  244.058956]  __x64_sys_sendmsg+0x4a/0x70
[  244.063091]  do_syscall_64+0xbe/0x100
[  244.066960]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  244.072208] RIP: 0033:0x457579
[  244.075478] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  244.094430] RSP: 002b:00007f6a417c6c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  244.102206] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457579
[  244.109520] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[  244.116831] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  244.124145] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6a417c76d4
[  244.131462] R13: 00000000004c38b9 R14: 00000000004d5700 R15: 00000000ffffffff
[  244.139969] Mem-Info:
[  244.142736] active_anon:67135 inactive_anon:113 isolated_anon:0
[  244.142736]  active_file:7407 inactive_file:35858 isolated_file:0
[  244.142736]  unevictable:0 dirty:55 writeback:0 unstable:0
[  244.142736]  slab_reclaimable:3749 slab_unreclaimable:8097
[  244.142736]  mapped:54947 shmem:119 pagetables:765 bounce:0
[  244.142736]  free:988968 free_pcp:524 free_cma:0
[  244.176454] Node 0 active_anon:268600kB inactive_anon:444kB active_file:29704kB inactive_file:143372kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:219764kB dirty:236kB writeback:0kB shmem:476kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 194560kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  244.204869] Node 0 DMA free:15904kB min:144kB low:180kB high:216kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  244.231462] lowmem_reserve[]: 0 2803 7229 7229
[  244.236294] Node 0 DMA32 free:2873792kB min:26148kB low:32684kB high:39220kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2875232kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:1440kB local_pcp:0kB free_cma:0kB
[  244.264133] lowmem_reserve[]: 0 0 4425 4425
[  244.268597] Node 0 Normal free:1065288kB min:41284kB low:51604kB high:61924kB active_anon:268832kB inactive_anon:444kB active_file:29704kB inactive_file:143372kB unevictable:0kB writepending:236kB present:4718592kB managed:4532152kB mlocked:0kB kernel_stack:11840kB pagetables:3056kB bounce:0kB free_pcp:476kB local_pcp:220kB free_cma:0kB
[  244.298729] lowmem_reserve[]: 0 0 0 0
[  244.302749] Node 0 DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15904kB
[  244.316304] Node 0 DMA32: 4*4kB (M) 2*8kB (M) 2*16kB (M) 4*32kB (M) 2*64kB (M) 3*128kB (M) 3*256kB (M) 2*512kB (M) 2*1024kB (M) 3*2048kB (M) 699*4096kB (M) = 2873792kB
[  244.332017] Node 0 Normal: 2*4kB (ME) 2*8kB (UE) 5*16kB (ME) 7*32kB (ME) 4*64kB (UME) 2*128kB (E) 4*256kB (UE) 1*512kB (U) 2*1024kB (E) 2*2048kB (ME) 258*4096kB (UM) = 1065288kB
[  244.348663] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  244.357623] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  244.366329] 43387 total pagecache pages
[  244.370333] 0 pages in swap cache
[  244.373989] Swap cache stats: add 0, delete 0, find 0/0
[  244.379381] Free swap  = 0kB
[  244.382548] Total swap = 0kB
[  244.385599] 1965979 pages RAM
[  244.388706] 0 pages HighMem/MovableOnly
[  244.392806] 110157 pages reserved
[  244.396314] 0 pages cma reserved
[  245.588630] ip (7296) used greatest stack depth: 53088 bytes left
[  245.880392] bridge0: port 1(bridge_slave_0) entered blocking state
[  245.887188] bridge0: port 1(bridge_slave_0) entered disabled state
[  245.895695] device bridge_slave_0 entered promiscuous mode
[  246.179610] bridge0: port 2(bridge_slave_1) entered blocking state
[  246.187133] bridge0: port 2(bridge_slave_1) entered disabled state
[  246.195639] device bridge_slave_1 entered promiscuous mode
[  246.479792] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  246.704220] bridge0: port 2(bridge_slave_1) entered blocking state
[  246.710786] bridge0: port 2(bridge_slave_1) entered forwarding state
[  246.717870] bridge0: port 1(bridge_slave_0) entered blocking state
[  246.724441] bridge0: port 1(bridge_slave_0) entered forwarding state
[  246.732958] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  246.790302] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  247.542079] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  247.670783] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  247.898319] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  248.155803] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  248.163021] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  248.530267] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  248.537723] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  249.270026] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  249.278369] team0: Port device team_slave_0 added
[  249.545712] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  249.554052] team0: Port device team_slave_1 added
[  249.743684] 8021q: adding VLAN 0 to HW filter on device bond0
[  249.904472] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  249.911583] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  249.920549] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  250.210175] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  250.217471] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  250.226277] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  250.482304] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  250.489927] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  250.499062] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  250.819578] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  250.827402] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  250.836474] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  250.886005] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
12:44:42 executing program 2:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000002ff0), 0x10)
sendmsg$key(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000008000)={0x5, 0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0x0, [@sadb_lifetime={0x4, 0x0, 0x4}, @sadb_x_nat_t_port={0x1}, @sadb_x_filter={0x5, 0x1a, @in6=@local={0xfe, 0x80, [], 0xffffffffffffffff}, @in6=@remote={0xfe, 0x80, [], 0xffffffffffffffff}}, @sadb_x_nat_t_port={0x1}]}, 0x68}}, 0x0)

[  251.922408] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  251.928854] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  251.936793] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  252.715912] 8021q: adding VLAN 0 to HW filter on device team0
[  253.601060] bridge0: port 2(bridge_slave_1) entered blocking state
[  253.607622] bridge0: port 2(bridge_slave_1) entered forwarding state
[  253.614678] bridge0: port 1(bridge_slave_0) entered blocking state
[  253.621140] bridge0: port 1(bridge_slave_0) entered forwarding state
[  253.629659] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  253.636563] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  256.831221] 8021q: adding VLAN 0 to HW filter on device bond0
[  257.620634] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
12:44:49 executing program 3:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000002ff0), 0x10)
sendmsg$key(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000008000)={0x5, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, [@sadb_lifetime={0x4}, @sadb_lifetime={0x4, 0x0, 0x4}, @sadb_x_nat_t_port={0x1}, @sadb_x_filter={0x5, 0x1a, @in6=@local={0xfe, 0x80, [], 0xffffffffffffffff}, @in6=@remote={0xfe, 0x80, [], 0xffffffffffffffff}}, @sadb_x_nat_t_port={0x1}]}, 0x88}}, 0x0)

[  258.565530] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  258.572054] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  258.579828] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  259.118024] 8021q: adding VLAN 0 to HW filter on device team0
[  261.030147] 8021q: adding VLAN 0 to HW filter on device bond0
[  261.591821] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  262.147377] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  262.154652] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  262.162707] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
12:44:53 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f00000001c0)="153f6234488dd25d766070")
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f000014f000)={&(0x7f00003c7ff4), 0xc, &(0x7f00000bfff0)={&(0x7f0000006440)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in6=@mcast1, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0xa}}}, 0xb8}}, 0x0)

12:44:53 executing program 1:
r0 = socket$kcm(0x10, 0x800000000002, 0x0)
r1 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close(r1)
socket$kcm(0x2, 0x3, 0x2)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)="160000001a0081aee4050c00000f00fe078bc36f1600", 0x16}], 0x1, &(0x7f0000000080)}, 0x0)

12:44:53 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x4}, 0xc, &(0x7f0000000040)={&(0x7f0000000600)=@newlink={0x40, 0x10, 0x3eb80125379cfe6d, 0x0, 0x0, {}, [@IFLA_NUM_RX_QUEUES={0x8, 0x20, 0x7000000}, @IFLA_LINKINFO={0x18, 0x12, @ip6gretap={{0x10, 0x1, 'ip6gretap\x00'}, {0x4}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x5}, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000280)='/dev/input/mouse#\x00', 0x7fff, 0x400)
getsockopt$inet_sctp_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000200)={0x3, [0x20, 0x1000000000000000, 0x2]}, &(0x7f00000001c0)=0xa)

12:44:53 executing program 2:
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000100), 0xffffffffffffffff)
open(&(0x7f0000000000)='./bus\x00', 0x44, 0x146)
prctl$intptr(0x18, 0x0)
execve(&(0x7f0000001340)='./bus\x00', &(0x7f0000000400), &(0x7f0000000340))

12:44:53 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000000)={@loopback, 0x0, 0x0, 0x0, 0x4}, 0x20)

[  262.676969] 8021q: adding VLAN 0 to HW filter on device team0
[  262.825221] syz-executor0: vmalloc: allocation failure: 22548578304 bytes, mode:0x6084c0(GFP_KERNEL|__GFP_RETRY_MAYFAIL|__GFP_ZERO), nodemask=(null)
[  262.839002] syz-executor0 cpuset=syz0 mems_allowed=0
[  262.844456] CPU: 0 PID: 7807 Comm: syz-executor0 Not tainted 4.19.0-rc4+ #63
[  262.851692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  262.861103] Call Trace:
[  262.863795]  dump_stack+0x306/0x460
[  262.867501]  warn_alloc+0x4c1/0x6f0
[  262.871198]  ? kmsan_set_origin_inline+0x6b/0x120
[  262.876182]  __vmalloc_node_range+0x203/0x1140
[  262.880853]  __vmalloc_node_flags_caller+0x12b/0x140
[  262.886016]  ? alloc_netdev_mqs+0x114d/0x1660
[  262.890560]  ? alloc_netdev_mqs+0x114d/0x1660
[  262.895132]  kvmalloc_node+0x3a1/0x3e0
[  262.899077]  alloc_netdev_mqs+0x114d/0x1660
[  262.903464]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  262.908976]  ? prepare_ip6gre_xmit_ipv6+0x8f0/0x8f0
[  262.914047]  rtnl_create_link+0x3e6/0xf50
[  262.918277]  rtnl_newlink+0x250d/0x39a0
[  262.922307]  ? rtnl_newlink+0x1751/0x39a0
[  262.926643]  ? kmsan_set_origin+0x83/0x140
[  262.930958]  ? kmsan_internal_unpoison_shadow+0x83/0xe0
[  262.936414]  ? __msan_get_context_state+0x9/0x30
[  262.941256]  ? INIT_BOOL+0x17/0x30
[  262.944892]  ? refcount_sub_and_test_checked+0x5ba/0x6c0
[  262.950473]  ? rtnl_setlink+0x6f0/0x6f0
[  262.954503]  rtnetlink_rcv_msg+0xa53/0x1590
[  262.959133]  ? __msan_poison_alloca+0x17a/0x210
[  262.963882]  ? kmsan_set_origin_inline+0x6b/0x120
[  262.968832]  ? kmsan_set_origin_inline+0x6b/0x120
[  262.974017]  ? kmsan_set_origin+0x83/0x140
[  262.978327]  netlink_rcv_skb+0x394/0x640
[  262.982448]  ? rtnetlink_bind+0x120/0x120
[  262.986670]  rtnetlink_rcv+0x50/0x60
[  262.990436]  netlink_unicast+0x166d/0x1720
[  262.994738]  ? rtnetlink_net_exit+0x90/0x90
[  262.999138]  netlink_sendmsg+0x1391/0x1420
[  263.003454]  ___sys_sendmsg+0xe47/0x1200
[  263.007576]  ? netlink_getsockopt+0x1560/0x1560
[  263.012342]  ? __fget+0x8f7/0x940
[  263.015901]  ? __fdget+0x318/0x430
[  263.019531]  __se_sys_sendmsg+0x307/0x460
[  263.023790]  __x64_sys_sendmsg+0x4a/0x70
[  263.027901]  do_syscall_64+0xbe/0x100
[  263.031768]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  263.037013] RIP: 0033:0x457579
[  263.040259] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  263.059301] RSP: 002b:00007f6a417c6c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  263.067072] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457579
[  263.074380] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[  263.081686] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  263.089003] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6a417c76d4
[  263.096309] R13: 00000000004c38b9 R14: 00000000004d5700 R15: 00000000ffffffff
[  263.104952] Mem-Info:
[  263.107517] active_anon:67656 inactive_anon:113 isolated_anon:0
[  263.107517]  active_file:7467 inactive_file:35814 isolated_file:0
[  263.107517]  unevictable:0 dirty:31 writeback:0 unstable:0
[  263.107517]  slab_reclaimable:3791 slab_unreclaimable:8824
[  263.107517]  mapped:54965 shmem:119 pagetables:815 bounce:0
[  263.107517]  free:971035 free_pcp:632 free_cma:0
[  263.135176] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  263.141057] Node 0 active_anon:272688kB inactive_anon:452kB active_file:29944kB inactive_file:143188kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:219820kB dirty:128kB writeback:0kB shmem:476kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 204800kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  263.177390] Node 0 DMA free:15904kB min:144kB low:180kB high:216kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  263.203816] lowmem_reserve[]: 0 2803 7229 7229
[  263.208548] Node 0 DMA32 free:2873792kB min:26148kB low:32684kB high:39220kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2875232kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:1440kB local_pcp:1440kB free_cma:0kB
[  263.236691] lowmem_reserve[]: 0 0 4425 4425
[  263.241157] Node 0 Normal free:982620kB min:41284kB low:51604kB high:61924kB active_anon:274792kB inactive_anon:452kB active_file:29944kB inactive_file:143188kB unevictable:0kB writepending:128kB present:4718592kB managed:4532152kB mlocked:0kB kernel_stack:12160kB pagetables:3276kB bounce:0kB free_pcp:1100kB local_pcp:416kB free_cma:0kB
[  263.271422] lowmem_reserve[]: 0 0 0 0
[  263.275433] Node 0 DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15904kB
[  263.289186] Node 0 DMA32: 4*4kB (M) 2*8kB (M) 2*16kB (M) 4*32kB (M) 2*64kB (M) 3*128kB (M) 3*256kB (M) 2*512kB (M) 2*1024kB (M) 3*2048kB (M) 699*4096kB (M) = 2873792kB
[  263.304838] Node 0 Normal: 3*4kB (ME) 1*8kB (M) 3*16kB (UE) 3*32kB (UE) 0*64kB 1*128kB (E) 3*256kB (UE) 0*512kB 2*1024kB (E) 4*2048kB (UME) 237*4096kB (UM) = 982052kB
12:44:54 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000280))
bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x1, 0x2, 0x3ff, 0x1, 0x0, 0x1}, 0x2c)

12:44:54 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='gid_map\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x2, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc))
r2 = syz_open_pts(r1, 0x4000000000000005)
ioctl$TCSETS(r2, 0x5402, &(0x7f0000000040)={0x0, 0x0, 0x0, 0xa})
r3 = dup3(r2, r0, 0x0)
write(r1, &(0x7f0000c34fff), 0xffffff0b)
writev(r0, &(0x7f00000024c0)=[{&(0x7f0000000180)="0f", 0x1}], 0x1)
ioctl$TCXONC(r3, 0x540a, 0x0)

[  263.320584] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  263.329567] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  263.338336] 43401 total pagecache pages
[  263.342435] 0 pages in swap cache
[  263.345933] Swap cache stats: add 0, delete 0, find 0/0
[  263.351335] Free swap  = 0kB
[  263.354513] Total swap = 0kB
[  263.357567] 1965979 pages RAM
[  263.360706] 0 pages HighMem/MovableOnly
[  263.364858] 110157 pages reserved
[  263.368351] 0 pages cma reserved
[  263.645299] hrtimer: interrupt took 42965 ns
12:44:54 executing program 1:
r0 = socket(0xa, 0x2400000001, 0x0)
perf_event_open(&(0x7f000001d000)={0x200000002, 0x70, 0x5, 0x108000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000034000)={0x2, {{0xa, 0x0, 0x0, @mcast2}}}, 0x88)
getsockopt$inet6_buf(r0, 0x29, 0x10000000000030, &(0x7f0000034000)=""/144, &(0x7f00000000c0)=0xfffffffffffffe3e)

12:44:57 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text16={0x10, &(0x7f0000000180)="2e65f32efe0a6766c7442400008000006766c7442402000000006766c744240600000000670f011c24b866000f00d066b88044a2b20f23c80f21f866350400d0000f23f80f0766b80500000066b9080000000f01c10f0766b8010000000f01c10f01dfb835008ee0", 0x68}], 0x1, 0x0, &(0x7f00000000c0), 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000100)="0fc75af38f49189b26440f00d6c441cb5cc00fc71bc442f932d10f225c0f01cb66baf80cb8a4d35b8bef66bafc0c66edb805000000b9020000000f01c1", 0x3d}], 0x1, 0x40, &(0x7f0000000180), 0x0)
getpgid(0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_dev$loop(&(0x7f00000000c0)='/dev/loop#\x00', 0x0, 0x0)
r3 = dup3(0xffffffffffffffff, 0xffffffffffffff9c, 0x0)
ioctl$sock_SIOCGIFCONF(0xffffffffffffffff, 0x8910, &(0x7f0000000800))
listen(0xffffffffffffffff, 0x0)
r4 = socket$inet6_sctp(0xa, 0x0, 0x84)
getsockopt$inet_sctp6_SCTP_RECVNXTINFO(r4, 0x84, 0x21, &(0x7f0000000040), &(0x7f0000000080)=0x4)
recvmsg$kcm(r3, &(0x7f00000007c0)={&(0x7f0000000500)=@ax25, 0x80, &(0x7f0000000680)=[{&(0x7f0000000380)=""/94, 0xfffffffffffffef6}, {&(0x7f0000000600)=""/118, 0x76}], 0x2, &(0x7f00000006c0)=""/246, 0xcae53934, 0x8}, 0x1)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x0, &(0x7f00000009c0)=0x1057, 0x4)
socket$inet6_sctp(0xa, 0x1, 0x84)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f0000000840)={0x9, 0x8, 0x8203, 0x1, 0x0, 0xff, 0x0, 0x95, <r5=>0x0}, &(0x7f0000000880)=0x20)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r3, 0x84, 0x7c, &(0x7f0000000280)={r5, 0x400000000000003, 0x80000001}, 0x8)

12:44:57 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'sit0\x00', <r2=>0x0})
bind$packet(r1, &(0x7f0000000040)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @dev}, 0x14)
sendmmsg(r1, &(0x7f00000004c0)=[{{&(0x7f00000000c0)=@in6={0xa, 0x0, 0x2, @mcast2}, 0x80, &(0x7f0000000840), 0x0, &(0x7f0000000300)}}], 0x4000000000001fe, 0x0)

12:44:57 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000940)='net/psched\x00')
close(r0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x0, 0x0)

12:44:57 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x4}, 0xc, &(0x7f0000000040)={&(0x7f0000000600)=@newlink={0x40, 0x10, 0x3eb80125379cfe6d, 0x0, 0x0, {}, [@IFLA_NUM_RX_QUEUES={0x8, 0x20, 0x7000000}, @IFLA_LINKINFO={0x18, 0x12, @ip6gretap={{0x10, 0x1, 'ip6gretap\x00'}, {0x4}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x5}, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000280)='/dev/input/mouse#\x00', 0x7fff, 0x400)
getsockopt$inet_sctp_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000200)={0x3, [0x20, 0x1000000000000000, 0x2]}, &(0x7f00000001c0)=0xa)

12:44:57 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0)
r0 = syz_open_dev$amidi(&(0x7f0000000040)='/dev/amidi#\x00', 0x0, 0x80040)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
socket$unix(0x1, 0x1, 0x0)
sendto$inet(r0, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
bind$unix(0xffffffffffffffff, &(0x7f0000000040)=@abs={0x1}, 0x6e)
r2 = syz_open_procfs(0x0, &(0x7f0000a92ff7)='net/unix\x00')
r3 = socket$inet(0x2, 0x0, 0x21c)
bind$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x804e23, @multicast1}, 0x10)
sendto$inet(0xffffffffffffffff, &(0x7f0000000280), 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(r3, 0x1, 0x9, &(0x7f0000000040)=0x3, 0x4)
sendfile(r1, r2, &(0x7f0000000340), 0x800009)
ioctl$EVIOCGABS20(r0, 0x80184560, &(0x7f00000000c0)=""/120)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='numa_maps\x00')
preadv(r4, &(0x7f0000000480), 0x1000000000000298, 0x0)

12:44:57 executing program 1:
r0 = creat(&(0x7f0000000340)='./file0\x00', 0x0)
write$cgroup_type(r0, &(0x7f00000009c0)='threaded\x00', 0xced423)
clone(0x20002100, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff)
write$UHID_DESTROY(r0, &(0x7f0000000000), 0x4)
mount(&(0x7f0000000080)=ANY=[@ANYBLOB], &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='dax\x00', 0x0, &(0x7f00000001c0)='threaded\x00')

[  266.465780] syz-executor0: vmalloc: allocation failure: 22548578304 bytes, mode:0x6084c0(GFP_KERNEL|__GFP_RETRY_MAYFAIL|__GFP_ZERO), nodemask=(null)
[  266.479511] syz-executor0 cpuset=syz0 mems_allowed=0
[  266.484918] CPU: 0 PID: 7904 Comm: syz-executor0 Not tainted 4.19.0-rc4+ #63
[  266.492172] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  266.501581] Call Trace:
[  266.504278]  dump_stack+0x306/0x460
[  266.507997]  warn_alloc+0x4c1/0x6f0
[  266.511697]  ? kmsan_set_origin_inline+0x6b/0x120
[  266.516681]  __vmalloc_node_range+0x203/0x1140
[  266.521360]  __vmalloc_node_flags_caller+0x12b/0x140
[  266.523890] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details.
[  266.526534]  ? alloc_netdev_mqs+0x114d/0x1660
[  266.545532]  ? alloc_netdev_mqs+0x114d/0x1660
[  266.550090]  kvmalloc_node+0x3a1/0x3e0
[  266.554037]  alloc_netdev_mqs+0x114d/0x1660
[  266.558412]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  266.563921]  ? prepare_ip6gre_xmit_ipv6+0x8f0/0x8f0
[  266.569000]  rtnl_create_link+0x3e6/0xf50
[  266.573216]  rtnl_newlink+0x250d/0x39a0
[  266.577244]  ? rtnl_newlink+0x1751/0x39a0
[  266.581589]  ? kmsan_set_origin+0x83/0x140
[  266.585902]  ? kmsan_internal_unpoison_shadow+0x83/0xe0
[  266.591348]  ? __msan_get_context_state+0x9/0x30
[  266.596169]  ? INIT_BOOL+0x17/0x30
[  266.599796]  ? refcount_sub_and_test_checked+0x5ba/0x6c0
[  266.605386]  ? rtnl_setlink+0x6f0/0x6f0
[  266.609401]  rtnetlink_rcv_msg+0xa53/0x1590
[  266.613823]  ? __msan_poison_alloca+0x17a/0x210
[  266.618567]  ? kmsan_set_origin_inline+0x6b/0x120
[  266.623620]  ? kmsan_set_origin_inline+0x6b/0x120
[  266.628541]  ? kmsan_set_origin+0x83/0x140
[  266.632837]  netlink_rcv_skb+0x394/0x640
[  266.636947]  ? rtnetlink_bind+0x120/0x120
[  266.641178]  rtnetlink_rcv+0x50/0x60
[  266.644942]  netlink_unicast+0x166d/0x1720
[  266.649255]  ? rtnetlink_net_exit+0x90/0x90
[  266.653643]  netlink_sendmsg+0x1391/0x1420
[  266.657955]  ___sys_sendmsg+0xe47/0x1200
[  266.662081]  ? netlink_getsockopt+0x1560/0x1560
[  266.666834]  ? __fget+0x8f7/0x940
[  266.670394]  ? __fdget+0x318/0x430
[  266.674054]  __se_sys_sendmsg+0x307/0x460
[  266.678318]  __x64_sys_sendmsg+0x4a/0x70
[  266.682454]  do_syscall_64+0xbe/0x100
[  266.686312]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  266.691555] RIP: 0033:0x457579
[  266.694789] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  266.713748] RSP: 002b:00007f6a417c6c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  266.721509] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457579
[  266.728813] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[  266.736120] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  266.743423] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6a417c76d4
[  266.750727] R13: 00000000004c38b9 R14: 00000000004d5700 R15: 00000000ffffffff
[  266.759536] Mem-Info:
[  266.762174] active_anon:71323 inactive_anon:113 isolated_anon:0
[  266.762174]  active_file:7494 inactive_file:35806 isolated_file:0
[  266.762174]  unevictable:0 dirty:42 writeback:0 unstable:0
[  266.762174]  slab_reclaimable:3815 slab_unreclaimable:9145
[  266.762174]  mapped:54992 shmem:119 pagetables:842 bounce:0
[  266.762174]  free:957319 free_pcp:621 free_cma:0
[  266.796240] Node 0 active_anon:285292kB inactive_anon:452kB active_file:29976kB inactive_file:143224kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:220084kB dirty:168kB writeback:0kB shmem:476kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 202752kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  266.824640] Node 0 DMA free:15904kB min:144kB low:180kB high:216kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  266.851030] lowmem_reserve[]: 0 2803 7229 7229
[  266.855889] Node 0 DMA32 free:2873792kB min:26148kB low:32684kB high:39220kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2875232kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:1440kB local_pcp:1440kB free_cma:0kB
[  266.884012] lowmem_reserve[]: 0 0 4425 4425
[  266.888471] Node 0 Normal free:937520kB min:41284kB low:51604kB high:61924kB active_anon:285408kB inactive_anon:684kB active_file:29976kB inactive_file:143224kB unevictable:0kB writepending:168kB present:4718592kB managed:4532152kB mlocked:0kB kernel_stack:12224kB pagetables:3540kB bounce:0kB free_pcp:1036kB local_pcp:552kB free_cma:0kB
[  266.918711] lowmem_reserve[]: 0 0 0 0
[  266.922797] Node 0 DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15904kB
[  266.936568] Node 0 DMA32: 4*4kB (M) 2*8kB (M) 2*16kB (M) 4*32kB (M) 2*64kB (M) 3*128kB (M) 3*256kB (M) 2*512kB (M) 2*1024kB (M) 3*2048kB (M) 699*4096kB (M) = 2873792kB
[  266.952325] Node 0 Normal: 2*4kB (UE) 2*8kB (UM) 3*16kB (UME) 5*32kB (UE) 0*64kB 1*128kB (U) 4*256kB (UME) 1*512kB (U) 4*1024kB (UME) 3*2048kB (UME) 227*4096kB (M) = 941928kB
[  266.969157] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  266.978155] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  266.986915] 43598 total pagecache pages
[  266.990950] 0 pages in swap cache
[  266.994586] Swap cache stats: add 0, delete 0, find 0/0
[  266.999997] Free swap  = 0kB
[  267.003195] Total swap = 0kB
[  267.006271] 1965979 pages RAM
[  267.009407] 0 pages HighMem/MovableOnly
[  267.013543] 110157 pages reserved
[  267.017055] 0 pages cma reserved
[  267.052590] ==================================================================
[  267.060008] BUG: KMSAN: uninit-value in loaded_vmcs_init+0x343/0x590
[  267.066520] CPU: 1 PID: 17 Comm: ksoftirqd/1 Not tainted 4.19.0-rc4+ #63
[  267.073365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  267.082725] Call Trace:
[  267.085325]  <IRQ>
[  267.087502]  dump_stack+0x306/0x460
[  267.091145]  ? loaded_vmcs_init+0x343/0x590
[  267.095502]  kmsan_report+0x1a3/0x2d0
[  267.099335]  __msan_warning+0x7c/0xe0
[  267.103164]  loaded_vmcs_init+0x343/0x590
[  267.107344]  __loaded_vmcs_clear+0x2fb/0x3c0
[  267.111793]  flush_smp_call_function_queue+0x404/0x770
[  267.117088]  ? vmx_get_msr_feature+0x180/0x180
[  267.121706]  generic_smp_call_function_single_interrupt+0x1f/0x30
[  267.127968]  smp_call_function_single_interrupt+0x2f7/0x530
[  267.133712]  call_function_single_interrupt+0xf/0x20
[  267.138823]  </IRQ>
[  267.141082] RIP: 0010:__memset+0x0/0x30
[  267.145071] Code: 66 44 8b 1e 66 44 8b 54 16 fe 66 44 89 1f 66 44 89 54 17 fe eb 0c 48 83 fa 01 72 06 44 8a 1e 44 88 1f c3 90 90 90 90 90 90 90 <eb> 2e 0f 1f 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03 40 0f b6 f6
[  267.163989] RSP: 0018:ffff8801d100f8f8 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff04
[  267.171727] RAX: ffff8801d101fb28 RBX: 0000000000000008 RCX: 00000001d101fb28
[  267.179012] RDX: 0000000000000008 RSI: 00000000ffffffff RDI: ffff8801d101fb28
[  267.186298] RBP: ffff8801d100f9a0 R08: ffffffff7fffffff R09: 0000000000000002
[  267.193578] R10: 000000008010000c R11: ffffffff821797c0 R12: 0000000000000008
[  267.200862] R13: ffff8801d100fb28 R14: ffff8801d17b9e00 R15: 0000000000000008
[  267.208170]  ? __fput+0xda0/0xda0
[  267.211660]  ? __msan_poison_alloca+0xd5/0x210
[  267.216277]  ? kmem_cache_free+0xd9/0x3100
[  267.220556]  ? file_free_rcu+0x1f3/0x270
[  267.224661]  kmem_cache_free+0xee/0x3100
[  267.228756]  ? __msan_get_context_state+0x9/0x30
[  267.233650]  ? INIT_INT+0xc/0x30
[  267.237053]  ? file_free_rcu+0x1f3/0x270
[  267.241148]  ? shmem_destroy_callback+0x10/0x130
[  267.245942]  ? kmsan_set_origin+0x83/0x140
[  267.250210]  ? kmsan_internal_unpoison_shadow+0x83/0xe0
[  267.255616]  file_free_rcu+0x1f3/0x270
[  267.259535]  ? __fput+0xda0/0xda0
[  267.263010]  rcu_process_callbacks+0x148d/0x1cb0
[  267.267802]  ? kmsan_set_origin_inline+0x6b/0x120
[  267.272698]  ? rcu_scheduler_starting+0xe0/0xe0
[  267.277394]  __do_softirq+0x601/0xa6d
[  267.281241]  ? ksoftirqd_should_run+0x30/0x30
[  267.285799]  run_ksoftirqd+0x26/0x50
[  267.289557]  smpboot_thread_fn+0x622/0xa70
[  267.293843]  kthread+0x59c/0x5d0
[  267.297232]  ? cpu_report_death+0x470/0x470
[  267.301593]  ? INIT_BOOL+0x30/0x30
[  267.305165]  ret_from_fork+0x35/0x40
[  267.308902] 
[  267.310534] Local variable description: ----error.i@loaded_vmcs_init
[  267.317035] Variable was created at:
[  267.320778]  loaded_vmcs_init+0x8a/0x590
[  267.324854]  __loaded_vmcs_clear+0x2fb/0x3c0
[  267.329267] ==================================================================
[  267.336637] Disabling lock debugging due to kernel taint
[  267.342102] Kernel panic - not syncing: panic_on_warn set ...
[  267.342102] 
[  267.349497] CPU: 1 PID: 17 Comm: ksoftirqd/1 Tainted: G    B             4.19.0-rc4+ #63
[  267.357763] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  267.367140] Call Trace:
[  267.369733]  <IRQ>
[  267.371915]  dump_stack+0x306/0x460
[  267.375583]  panic+0x54c/0xafa
[  267.378838]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  267.384324]  kmsan_report+0x2cd/0x2d0
[  267.388163]  __msan_warning+0x7c/0xe0
[  267.391996]  loaded_vmcs_init+0x343/0x590
[  267.396187]  __loaded_vmcs_clear+0x2fb/0x3c0
[  267.400635]  flush_smp_call_function_queue+0x404/0x770
[  267.405949]  ? vmx_get_msr_feature+0x180/0x180
[  267.410575]  generic_smp_call_function_single_interrupt+0x1f/0x30
[  267.416841]  smp_call_function_single_interrupt+0x2f7/0x530
[  267.422587]  call_function_single_interrupt+0xf/0x20
[  267.427704]  </IRQ>
[  267.429972] RIP: 0010:__memset+0x0/0x30
[  267.433966] Code: 66 44 8b 1e 66 44 8b 54 16 fe 66 44 89 1f 66 44 89 54 17 fe eb 0c 48 83 fa 01 72 06 44 8a 1e 44 88 1f c3 90 90 90 90 90 90 90 <eb> 2e 0f 1f 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03 40 0f b6 f6
[  267.452896] RSP: 0018:ffff8801d100f8f8 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff04
[  267.460650] RAX: ffff8801d101fb28 RBX: 0000000000000008 RCX: 00000001d101fb28
[  267.467951] RDX: 0000000000000008 RSI: 00000000ffffffff RDI: ffff8801d101fb28
[  267.475275] RBP: ffff8801d100f9a0 R08: ffffffff7fffffff R09: 0000000000000002
[  267.482838] R10: 000000008010000c R11: ffffffff821797c0 R12: 0000000000000008
[  267.490601] R13: ffff8801d100fb28 R14: ffff8801d17b9e00 R15: 0000000000000008
[  267.498726]  ? __fput+0xda0/0xda0
[  267.502238]  ? __msan_poison_alloca+0xd5/0x210
[  267.506877]  ? kmem_cache_free+0xd9/0x3100
[  267.511141]  ? file_free_rcu+0x1f3/0x270
[  267.515242]  kmem_cache_free+0xee/0x3100
[  267.519332]  ? __msan_get_context_state+0x9/0x30
[  267.524115]  ? INIT_INT+0xc/0x30
[  267.527510]  ? file_free_rcu+0x1f3/0x270
[  267.531740]  ? shmem_destroy_callback+0x10/0x130
[  267.536543]  ? kmsan_set_origin+0x83/0x140
[  267.541205]  ? kmsan_internal_unpoison_shadow+0x83/0xe0
[  267.546777]  file_free_rcu+0x1f3/0x270
[  267.551029]  ? __fput+0xda0/0xda0
[  267.554502]  rcu_process_callbacks+0x148d/0x1cb0
[  267.559295]  ? kmsan_set_origin_inline+0x6b/0x120
[  267.564199]  ? rcu_scheduler_starting+0xe0/0xe0
[  267.568900]  __do_softirq+0x601/0xa6d
[  267.572768]  ? ksoftirqd_should_run+0x30/0x30
[  267.577299]  run_ksoftirqd+0x26/0x50
[  267.581052]  smpboot_thread_fn+0x622/0xa70
[  267.585337]  kthread+0x59c/0x5d0
[  267.588740]  ? cpu_report_death+0x470/0x470
[  267.593101]  ? INIT_BOOL+0x30/0x30
[  267.596842]  ret_from_fork+0x35/0x40
[  267.602107] Kernel Offset: disabled
[  267.605758] Rebooting in 86400 seconds..