[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[   38.510259] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   41.944687] random: sshd: uninitialized urandom read (32 bytes read)
[   42.311934] random: sshd: uninitialized urandom read (32 bytes read)
[   43.614724] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.0.40' (ECDSA) to the list of known hosts.
[   49.405411] random: sshd: uninitialized urandom read (32 bytes read)
2018/08/11 20:56:55 fuzzer started
[   50.972784] random: cc1: uninitialized urandom read (8 bytes read)
2018/08/11 20:56:58 dialing manager at 10.128.0.26:37257
2018/08/11 20:57:02 syscalls: 1
2018/08/11 20:57:02 code coverage: enabled
2018/08/11 20:57:02 comparison tracing: CONFIG_KCOV_ENABLE_COMPARISONS is not enabled
2018/08/11 20:57:02 setuid sandbox: enabled
2018/08/11 20:57:02 namespace sandbox: enabled
2018/08/11 20:57:02 fault injection: enabled
2018/08/11 20:57:02 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2018/08/11 20:57:02 net packed injection: enabled
2018/08/11 20:57:02 net device setup: enabled
[   58.064269] random: crng init done
20:58:40 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000000080)={&(0x7f0000000000)=@nl, 0x80, &(0x7f0000000200)=[{&(0x7f0000000180)="5500000018007f7000fe01b2a4a280930a60020000a84302910000003900090023000c00020000000d000500fe8042000000c78b80082314e9030b9d566885b16732009b1100b1df136ef75afb0000000000000000", 0x55}], 0x1, &(0x7f0000000400)}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000240)={'team0\x00'})
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffff9c, 0x8933, &(0x7f00000007c0)={'vcan0\x00'})

20:58:40 executing program 1:
r0 = syz_open_dev$loop(&(0x7f0000000180)='/dev/loop#\x00', 0x0, 0x4002)
ioctl$BLKDISCARD(r0, 0x127d, &(0x7f00000000c0)=0x4000)

20:58:40 executing program 7:
r0 = syz_open_dev$loop(&(0x7f0000000180)='/dev/loop#\x00', 0x0, 0x4002)
ioctl$BLKDISCARD(r0, 0x127d, &(0x7f00000000c0))

20:58:40 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)
r1 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x1, {{0x2, 0x0, @multicast1}}, {{0x2, 0x0, @dev}}}, 0x108)
setsockopt$inet_int(r0, 0x0, 0x12, &(0x7f0000000300)=0x80000000008, 0x4)

20:58:40 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f000095bffc)={0x0, 0x0, 0xfffffffffffffffc}, 0x4)
r1 = socket$inet(0x2, 0x2, 0x0)
r2 = socket$packet(0x11, 0x4040000000000002, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000ff5ffc)={0x0, 0x3}, 0x4)
r3 = socket$inet(0x2, 0x2, 0x0)
sendto$inet(r3, &(0x7f0000865000), 0xebce, 0x0, &(0x7f0000fd9ff0)={0x2, 0x4e20, @loopback}, 0x10)
sendto$inet(r1, &(0x7f0000865000), 0xffe4, 0x11000000, &(0x7f0000fd9ff0)={0x2, 0x0, @rand_addr}, 0x10)

20:58:40 executing program 3:
r0 = fcntl$dupfd(0xffffffffffffff9c, 0x0, 0xffffffffffffffff)
openat$cgroup_type(r0, &(0x7f0000000100)='cgroup.type\x00', 0x2, 0x0)
clone(0x1000000, &(0x7f0000000200), &(0x7f0000001800), &(0x7f0000000280), &(0x7f0000001700)="05280c220620c4e6bd8e6a24874054b4e5a1146999e20c8c4332af9c2130d3d6827f2b1ba8b4ebdd53a87f2d35ad98e3deb14aeb1a98917568a39acc8fd62dcc8ab6616b4f1561f2a927ff70aa541a0b70e51bdd283e7a0a2a86cd10868dea9434eb6fd2bff3f9e8d209bf439c3c5488796544605b01f5fa794fb3d7885ef23350786eb31ebe9873dee4003719b283c152a9a4cdccbe9892f07f5db48e0e1a1819bc314466afb1f097bc03db5f65cf948a6ed2d9972a6c2925cae831a5150deab78245ab764abb62e8e5b0")
mknod(&(0x7f00000000c0)='./file0\x00', 0x1040, 0x0)
clock_gettime(0x0, &(0x7f0000000340)={<r1=>0x0, <r2=>0x0})
timer_settime(0x0, 0x0, &(0x7f0000000380)={{r1, r2+10000000}}, &(0x7f00000003c0))
perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000940000)={0x0, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000940000)={0x2, 0x78, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000027000)='./file0\x00', 0x0)
mount(&(0x7f0000018000)='./file0\x00', &(0x7f00000005c0)='./file0\x00', &(0x7f0000000580)='ext3\x00', 0x0, &(0x7f0000000480)="e1fb76c3860f81bef9d4aeb257a3b11475c4c532976c5d67863a33c4d35ff3f7f7e0b114170f8b6e08002e5f08783b6eae45dddc37237ec6b534f42392dea4128ec010324f1dd744a33492cff40469735e786cc79807f7d6c63073a0573204f9cb2df8066cb2b72e7b0fa2141c29c6c88e83463243a5c090e7323822475a91345e3c34c019772375df194c357611efbda31af1487fe3c549fc163e0045a8f192d830268f4ae86ce0a8aba73458e93c19")
open$dir(&(0x7f00000000c0)='./file0/bus\x00', 0x40, 0x0)
ioctl$BLKTRACETEARDOWN(r3, 0x1276, 0x0)
ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000140))
ioctl(r3, 0x4, &(0x7f0000000800)="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")
r4 = socket(0x0, 0x0, 0x0)
timer_create(0x6, &(0x7f0000000240)={0x0, 0x1d, 0x2, @thr={&(0x7f0000000200)="0aa21a865c", &(0x7f00000002c0)="507db1f329182e4faebb3f9d72113f879274ac21c7b49ee56b44ad6d0073aab6f7365505049ffe7c15580009a5ef715f9bec649ff3e10878cf49cd1ebd14a1d4c663a2da694d6da20cc2b7bd80d4a921d170c29ee5ae6193aecfde851adf6ddb4903d316"}}, &(0x7f0000000400)=<r5=>0x0)
timer_gettime(r5, &(0x7f0000000440))
getsockopt$sock_buf(r4, 0x1, 0x1f, &(0x7f0000000940)=""/192, &(0x7f0000000040)=0xc0)
ioctl$BLKTRACESTART(r3, 0x1274, 0x0)

20:58:40 executing program 5:
r0 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x200, 0x0)
ioctl$SNDRV_RAWMIDI_IOCTL_DRAIN(r0, 0x40045731, &(0x7f00000002c0)=0x400)

20:58:40 executing program 6:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0)
write$cgroup_pid(r0, &(0x7f0000000040), 0x12)

[  155.271969] IPVS: ftp: loaded support on port[0] = 21
[  155.362926] IPVS: ftp: loaded support on port[0] = 21
[  155.385320] IPVS: ftp: loaded support on port[0] = 21
[  155.409217] IPVS: ftp: loaded support on port[0] = 21
[  155.422777] IPVS: ftp: loaded support on port[0] = 21
[  155.434893] IPVS: ftp: loaded support on port[0] = 21
[  155.451696] IPVS: ftp: loaded support on port[0] = 21
[  155.481422] IPVS: ftp: loaded support on port[0] = 21
[  158.465867] ip (4694) used greatest stack depth: 53848 bytes left
[  159.411403] ip (4750) used greatest stack depth: 53688 bytes left
[  160.248647] bridge0: port 1(bridge_slave_0) entered blocking state
[  160.255154] bridge0: port 1(bridge_slave_0) entered disabled state
[  160.309109] device bridge_slave_0 entered promiscuous mode
[  160.373170] bridge0: port 1(bridge_slave_0) entered blocking state
[  160.379656] bridge0: port 1(bridge_slave_0) entered disabled state
[  160.403287] device bridge_slave_0 entered promiscuous mode
[  160.465147] bridge0: port 1(bridge_slave_0) entered blocking state
[  160.471649] bridge0: port 1(bridge_slave_0) entered disabled state
[  160.520439] device bridge_slave_0 entered promiscuous mode
[  160.556730] bridge0: port 1(bridge_slave_0) entered blocking state
[  160.563235] bridge0: port 1(bridge_slave_0) entered disabled state
[  160.589579] device bridge_slave_0 entered promiscuous mode
[  160.614881] bridge0: port 2(bridge_slave_1) entered blocking state
[  160.621391] bridge0: port 2(bridge_slave_1) entered disabled state
[  160.644506] device bridge_slave_1 entered promiscuous mode
[  160.657637] bridge0: port 1(bridge_slave_0) entered blocking state
[  160.664147] bridge0: port 1(bridge_slave_0) entered disabled state
[  160.691092] device bridge_slave_0 entered promiscuous mode
[  160.719750] bridge0: port 1(bridge_slave_0) entered blocking state
[  160.726273] bridge0: port 1(bridge_slave_0) entered disabled state
[  160.762677] device bridge_slave_0 entered promiscuous mode
[  160.784476] bridge0: port 1(bridge_slave_0) entered blocking state
[  160.790961] bridge0: port 1(bridge_slave_0) entered disabled state
[  160.802084] device bridge_slave_0 entered promiscuous mode
[  160.819715] bridge0: port 2(bridge_slave_1) entered blocking state
[  160.826192] bridge0: port 2(bridge_slave_1) entered disabled state
[  160.845936] device bridge_slave_1 entered promiscuous mode
[  160.859812] bridge0: port 2(bridge_slave_1) entered blocking state
[  160.866262] bridge0: port 2(bridge_slave_1) entered disabled state
[  160.889330] device bridge_slave_1 entered promiscuous mode
[  160.910616] bridge0: port 1(bridge_slave_0) entered blocking state
[  160.917093] bridge0: port 1(bridge_slave_0) entered disabled state
[  160.947623] device bridge_slave_0 entered promiscuous mode
[  160.969084] bridge0: port 2(bridge_slave_1) entered blocking state
[  160.975583] bridge0: port 2(bridge_slave_1) entered disabled state
[  161.002366] device bridge_slave_1 entered promiscuous mode
[  161.028360] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  161.042731] bridge0: port 2(bridge_slave_1) entered blocking state
[  161.049199] bridge0: port 2(bridge_slave_1) entered disabled state
[  161.079929] device bridge_slave_1 entered promiscuous mode
[  161.096198] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  161.106506] bridge0: port 2(bridge_slave_1) entered blocking state
[  161.112980] bridge0: port 2(bridge_slave_1) entered disabled state
[  161.137322] device bridge_slave_1 entered promiscuous mode
[  161.152934] bridge0: port 2(bridge_slave_1) entered blocking state
[  161.159413] bridge0: port 2(bridge_slave_1) entered disabled state
[  161.178522] device bridge_slave_1 entered promiscuous mode
[  161.207377] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  161.219881] bridge0: port 2(bridge_slave_1) entered blocking state
[  161.226324] bridge0: port 2(bridge_slave_1) entered disabled state
[  161.282538] device bridge_slave_1 entered promiscuous mode
[  161.309415] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  161.329210] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  161.339874] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  161.352332] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  161.430924] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  161.441778] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  161.480686] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  161.598155] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  161.648373] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  161.715724] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  161.740462] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  161.762648] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  161.945982] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  162.272963] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  162.353920] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  162.377081] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  162.529720] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  162.568677] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  162.670460] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  162.720816] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  162.731543] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  162.745888] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  162.765583] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  162.856980] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  162.870598] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  162.881246] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  162.888169] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  162.973084] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  163.037714] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  163.044676] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  163.060139] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  163.072775] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  163.118785] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  163.130711] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  163.177529] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  163.184625] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  163.228797] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  163.280344] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  163.288549] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  163.305842] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  163.312794] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  163.385302] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  163.393374] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  163.416377] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  163.423329] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  163.442141] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  163.452410] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  163.496749] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  163.505297] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  163.548800] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  163.556266] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  163.574342] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  163.601354] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  163.709667] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  163.716807] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  163.759454] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  163.766507] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  163.860411] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  163.867427] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  163.937618] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  163.944661] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  164.198266] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  164.229732] team0: Port device team_slave_0 added
[  164.342577] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  164.373613] team0: Port device team_slave_0 added
[  164.472478] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  164.497253] team0: Port device team_slave_1 added
[  164.528498] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  164.562634] team0: Port device team_slave_0 added
[  164.583609] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  164.600687] team0: Port device team_slave_0 added
[  164.663201] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  164.695304] team0: Port device team_slave_1 added
[  164.734937] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  164.758969] team0: Port device team_slave_0 added
[  164.776935] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  164.807182] team0: Port device team_slave_0 added
[  164.821783] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  164.846574] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  164.873385] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  164.919171] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  164.948605] team0: Port device team_slave_1 added
[  164.961333] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  164.990531] team0: Port device team_slave_1 added
[  165.018509] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  165.028651] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  165.038576] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  165.069648] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  165.083013] team0: Port device team_slave_0 added
[  165.100250] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  165.112401] team0: Port device team_slave_1 added
[  165.128130] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  165.147360] team0: Port device team_slave_0 added
[  165.163883] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  165.174106] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  165.199789] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  165.254136] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  165.279292] team0: Port device team_slave_1 added
[  165.298137] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  165.309397] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  165.321332] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  165.335695] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  165.382473] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  165.416899] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  165.468564] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  165.476866] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  165.483768] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  165.496480] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  165.506875] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  165.516231] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  165.535467] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  165.555093] team0: Port device team_slave_1 added
[  165.560735] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  165.567707] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  165.586216] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  165.607503] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  165.620439] team0: Port device team_slave_1 added
[  165.626410] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  165.633391] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  165.652851] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  165.706528] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  165.713923] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  165.727248] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  165.761769] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  165.769734] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  165.788306] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  165.819909] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  165.830216] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  165.843552] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  165.893161] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  165.900811] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  165.924611] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  165.963177] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  165.972817] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  165.990099] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  166.022109] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  166.031521] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  166.043715] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  166.052065] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  166.061406] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  166.079938] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  166.088100] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  166.096827] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  166.105745] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  166.139319] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  166.166141] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  166.208520] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  166.248972] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  166.261731] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  166.276319] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  166.322907] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  166.336301] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  166.349563] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  166.396104] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  166.418364] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  166.435252] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  166.455300] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  166.464138] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  166.476327] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  166.487680] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  166.539601] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  166.564512] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  166.584790] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  166.600493] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  166.619793] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  166.638859] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  166.646861] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  166.659403] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  166.678884] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  166.705942] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  166.720318] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  166.732762] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  166.741191] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  166.763435] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  166.784081] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  166.808390] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  166.843157] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  166.868678] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  166.903939] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  166.929498] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  166.993413] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  167.000931] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  167.010511] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  167.060675] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  167.069748] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  167.078080] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  167.093382] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  167.146544] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  167.176903] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  169.954571] bridge0: port 2(bridge_slave_1) entered blocking state
[  169.961100] bridge0: port 2(bridge_slave_1) entered forwarding state
[  169.967965] bridge0: port 1(bridge_slave_0) entered blocking state
[  169.974410] bridge0: port 1(bridge_slave_0) entered forwarding state
[  170.004135] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  170.011107] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  170.054627] bridge0: port 2(bridge_slave_1) entered blocking state
[  170.061106] bridge0: port 2(bridge_slave_1) entered forwarding state
[  170.067981] bridge0: port 1(bridge_slave_0) entered blocking state
[  170.074469] bridge0: port 1(bridge_slave_0) entered forwarding state
[  170.083398] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  170.098692] bridge0: port 2(bridge_slave_1) entered blocking state
[  170.105630] bridge0: port 2(bridge_slave_1) entered forwarding state
[  170.112500] bridge0: port 1(bridge_slave_0) entered blocking state
[  170.118972] bridge0: port 1(bridge_slave_0) entered forwarding state
[  170.175114] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  170.198505] bridge0: port 2(bridge_slave_1) entered blocking state
[  170.204956] bridge0: port 2(bridge_slave_1) entered forwarding state
[  170.211817] bridge0: port 1(bridge_slave_0) entered blocking state
[  170.218261] bridge0: port 1(bridge_slave_0) entered forwarding state
[  170.304646] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  170.373559] bridge0: port 2(bridge_slave_1) entered blocking state
[  170.380114] bridge0: port 2(bridge_slave_1) entered forwarding state
[  170.386953] bridge0: port 1(bridge_slave_0) entered blocking state
[  170.393460] bridge0: port 1(bridge_slave_0) entered forwarding state
[  170.445226] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  170.546452] bridge0: port 2(bridge_slave_1) entered blocking state
[  170.552958] bridge0: port 2(bridge_slave_1) entered forwarding state
[  170.559834] bridge0: port 1(bridge_slave_0) entered blocking state
[  170.566289] bridge0: port 1(bridge_slave_0) entered forwarding state
[  170.610495] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  170.635102] bridge0: port 2(bridge_slave_1) entered blocking state
[  170.641589] bridge0: port 2(bridge_slave_1) entered forwarding state
[  170.648489] bridge0: port 1(bridge_slave_0) entered blocking state
[  170.654959] bridge0: port 1(bridge_slave_0) entered forwarding state
[  170.677583] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  170.708336] bridge0: port 2(bridge_slave_1) entered blocking state
[  170.714787] bridge0: port 2(bridge_slave_1) entered forwarding state
[  170.721637] bridge0: port 1(bridge_slave_0) entered blocking state
[  170.728142] bridge0: port 1(bridge_slave_0) entered forwarding state
[  170.834742] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  171.040220] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  171.056349] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  171.100112] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  171.141308] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  171.172790] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  171.195115] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  171.223309] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  175.948179] ip (5577) used greatest stack depth: 53432 bytes left
[  182.573818] 8021q: adding VLAN 0 to HW filter on device bond0
[  182.743657] 8021q: adding VLAN 0 to HW filter on device bond0
[  182.945345] 8021q: adding VLAN 0 to HW filter on device bond0
[  183.279179] 8021q: adding VLAN 0 to HW filter on device bond0
[  183.364103] 8021q: adding VLAN 0 to HW filter on device bond0
[  183.402337] 8021q: adding VLAN 0 to HW filter on device bond0
[  183.593845] 8021q: adding VLAN 0 to HW filter on device bond0
[  183.753591] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  183.785273] 8021q: adding VLAN 0 to HW filter on device bond0
[  184.002809] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  184.087376] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  184.405427] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  184.520529] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  184.668421] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  184.760557] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  184.952237] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  185.019551] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  185.025877] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  185.048409] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  185.169590] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  185.175919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  185.186610] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  185.259629] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  185.265952] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  185.278094] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  185.599610] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  185.613294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  185.638666] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  185.760304] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  185.766744] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  185.782468] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  185.944639] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  185.953434] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  185.967980] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  186.006099] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  186.012447] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  186.043477] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  186.242219] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  186.248847] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  186.260618] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  186.351100] 8021q: adding VLAN 0 to HW filter on device team0
[  186.401339] 8021q: adding VLAN 0 to HW filter on device team0
[  186.448077] 8021q: adding VLAN 0 to HW filter on device team0
[  186.889153] 8021q: adding VLAN 0 to HW filter on device team0
[  186.946540] 8021q: adding VLAN 0 to HW filter on device team0
[  187.261239] 8021q: adding VLAN 0 to HW filter on device team0
[  187.294531] 8021q: adding VLAN 0 to HW filter on device team0
[  187.439671] 8021q: adding VLAN 0 to HW filter on device team0
20:59:20 executing program 7:
r0 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
r1 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r1, 0x8912, &(0x7f0000000280)="0a5cc80700315f85714070")
setsockopt$inet6_opts(r0, 0x29, 0x2a, &(0x7f0000000000)=ANY=[], 0x0)

20:59:20 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000d80)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0))
r1 = epoll_create1(0x0)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000240))
r3 = syz_open_pts(r0, 0x0)
dup2(r2, r3)

20:59:20 executing program 6:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000180)={&(0x7f0000000000), 0xc, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB="300000001800230000000000000000000a0000000000000000000000140005000000000000bb0e000000000000000000"], 0x1}}, 0x0)

20:59:20 executing program 7:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.memory_pressure\x00', 0x26e1, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0xc0185879, &(0x7f0000000000)={0x0, 0x0, 0xfffffffffffffffe})

20:59:20 executing program 6:
socket$packet(0x11, 0x3, 0x300)
r0 = socket$kcm(0x11, 0x3, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
sendmsg$kcm(r0, &(0x7f0000001540)={&(0x7f0000000040)=@nfc={0x27, 0x3}, 0x80, &(0x7f0000000140)=[{&(0x7f00000000c0)="c14380000000400000871fe4ac14140eeb", 0x11}], 0x1}, 0x0)

20:59:20 executing program 0:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'bridge0\x00'})
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000440)={&(0x7f0000000340), 0xc, &(0x7f0000000400)={&(0x7f0000000380)=ANY=[@ANYBLOB="00000000000000000c0001000000000001000000"], 0x1}}, 0x0)

[  194.769318] ==================================================================
[  194.776773] BUG: KMSAN: uninit-value in __ip_select_ident+0x438/0x7c0
[  194.783406] CPU: 0 PID: 6634 Comm: syz-executor6 Not tainted 4.18.0-rc8+ #33
[  194.790610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  194.799985] Call Trace:
[  194.802607]  dump_stack+0x17c/0x1c0
[  194.806263]  kmsan_report+0x188/0x2a0
[  194.810103]  __msan_warning+0x70/0xc0
[  194.813952]  __ip_select_ident+0x438/0x7c0
[  194.818235]  iptunnel_xmit+0x7b7/0xd30
[  194.822220]  ip_tunnel_xmit+0x33e1/0x3750
[  194.826458]  ipgre_xmit+0xdcf/0xeb0
[  194.830127]  ? ipgre_close+0x230/0x230
[  194.834073]  dev_hard_start_xmit+0x5df/0xc20
[  194.838534]  __dev_queue_xmit+0x2eea/0x3a70
[  194.842913]  dev_queue_xmit+0x4b/0x60
[  194.846738]  ? __netdev_pick_tx+0xb20/0xb20
[  194.851094]  packet_sendmsg+0x7fb5/0x8ae0
[  194.855264]  ? kmsan_internal_unpoison_shadow+0x83/0xe0
[  194.860661]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
20:59:20 executing program 7:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000280)="025cc80700145f8f764070")
r1 = socket$nl_xfrm(0x11, 0x3, 0x6)
bind$packet(r1, &(0x7f0000000240)={0x11, 0x3}, 0x14)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f00000004c0)={0x0, 0x5}, 0x4)
syz_emit_ethernet(0x2a, &(0x7f0000000280)={@broadcast, @broadcast, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, @udp={0x0, 0x0, 0x8}}}}}, &(0x7f0000000040))

20:59:20 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={&(0x7f0000000040)={0x10, 0x34000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x28, 0x26, 0x829, 0x0, 0x0, {0x3}, [@typed={0x14, 0x0, @ipv6=@remote}]}, 0x28}}, 0x0)

[  194.866137]  ? rw_copy_check_uvector+0x13f/0x710
[  194.870939]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  194.876481]  ___sys_sendmsg+0xe32/0x1250
[  194.880574]  ? compat_packet_setsockopt+0x360/0x360
[  194.885676]  __x64_sys_sendmsg+0x32d/0x460
[  194.889957]  ? ___sys_sendmsg+0x1250/0x1250
[  194.894302]  do_syscall_64+0x15b/0x220
[  194.898238]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  194.903454] RIP: 0033:0x457089
[  194.906675] Code: fd b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  194.926274] RSP: 002b:00007fbafdb08c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  194.934024] RAX: ffffffffffffffda RBX: 00007fbafdb096d4 RCX: 0000000000457089
[  194.941312] RDX: 0000000000000000 RSI: 0000000020001540 RDI: 0000000000000004
[  194.948613] RBP: 00000000009300a0 R08: 0000000000000000 R09: 0000000000000000
[  194.955901] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  194.963198] R13: 00000000004d3b88 R14: 00000000004c889b R15: 0000000000000000
[  194.970497] 
[  194.972130] Uninit was stored to memory at:
[  194.976479]  kmsan_internal_chain_origin+0x128/0x210
[  194.981609]  __msan_chain_origin+0x69/0xc0
[  194.985869]  iptunnel_xmit+0xa37/0xd30
[  194.989780]  ip_tunnel_xmit+0x33e1/0x3750
[  194.994429]  ipgre_xmit+0xdcf/0xeb0
[  194.998084]  dev_hard_start_xmit+0x5df/0xc20
[  195.002529]  __dev_queue_xmit+0x2eea/0x3a70
[  195.006869]  dev_queue_xmit+0x4b/0x60
[  195.010698]  packet_sendmsg+0x7fb5/0x8ae0
[  195.014907]  ___sys_sendmsg+0xe32/0x1250
20:59:21 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000683ff4)={@multicast2, @loopback}, 0xc)
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000140)={@multicast2, @loopback, 0x0, 0x2, [@rand_addr=0xfffffffffffffff8, @multicast1]}, 0x18)
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000040)=ANY=[@ANYBLOB="e00000027f0000010000000003000000000000e000000100000000"], 0x1)

[  195.019014]  __x64_sys_sendmsg+0x32d/0x460
[  195.023298]  do_syscall_64+0x15b/0x220
[  195.027228]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  195.032427] 
[  195.034058] Uninit was stored to memory at:
[  195.038420]  kmsan_internal_chain_origin+0x128/0x210
[  195.043547]  __msan_chain_origin+0x69/0xc0
[  195.047811]  ip_tunnel_xmit+0xa24/0x3750
[  195.051897]  ipgre_xmit+0xdcf/0xeb0
[  195.055556]  dev_hard_start_xmit+0x5df/0xc20
[  195.059987]  __dev_queue_xmit+0x2eea/0x3a70
[  195.064347]  dev_queue_xmit+0x4b/0x60
[  195.068251]  packet_sendmsg+0x7fb5/0x8ae0
[  195.072442]  ___sys_sendmsg+0xe32/0x1250
[  195.076532]  __x64_sys_sendmsg+0x32d/0x460
[  195.080793]  do_syscall_64+0x15b/0x220
[  195.084698]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  195.089918] 
[  195.091551] Uninit was stored to memory at:
[  195.095895]  kmsan_internal_chain_origin+0x128/0x210
[  195.101270]  kmsan_memcpy_origins+0x13d/0x1b0
[  195.105789]  __msan_memcpy+0xda/0x130
[  195.109609]  pskb_expand_head+0x3b3/0x19b0
[  195.113876]  ipgre_xmit+0x4bc/0xeb0
[  195.117527]  dev_hard_start_xmit+0x5df/0xc20
[  195.121982]  __dev_queue_xmit+0x2eea/0x3a70
[  195.126323]  dev_queue_xmit+0x4b/0x60
[  195.130183]  packet_sendmsg+0x7fb5/0x8ae0
[  195.134346]  ___sys_sendmsg+0xe32/0x1250
[  195.138444]  __x64_sys_sendmsg+0x32d/0x460
[  195.142697]  do_syscall_64+0x15b/0x220
[  195.146610]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  195.151800] 
[  195.153435] Uninit was created at:
[  195.156996]  kmsan_internal_poison_shadow+0xb8/0x1b0
[  195.162113]  kmsan_kmalloc+0x98/0x100
[  195.165930]  kmsan_slab_alloc+0x10/0x20
[  195.169916]  __kmalloc_node_track_caller+0xb4c/0x11d0
[  195.175135]  __alloc_skb+0x2ce/0x9b0
[  195.178868]  alloc_skb_with_frags+0x1d0/0xac0
[  195.183398]  sock_alloc_send_pskb+0xb47/0x1120
[  195.187998]  packet_sendmsg+0x6480/0x8ae0
[  195.192166]  ___sys_sendmsg+0xe32/0x1250
[  195.196251]  __x64_sys_sendmsg+0x32d/0x460
[  195.200508]  do_syscall_64+0x15b/0x220
[  195.204422]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  195.209615] ==================================================================
[  195.216980] Disabling lock debugging due to kernel taint
[  195.222439] Kernel panic - not syncing: panic_on_warn set ...
[  195.222439] 
[  195.229841] CPU: 0 PID: 6634 Comm: syz-executor6 Tainted: G    B             4.18.0-rc8+ #33
[  195.238421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  195.247797] Call Trace:
[  195.250429]  dump_stack+0x17c/0x1c0
[  195.254085]  panic+0x3c3/0x9a0
[  195.257344]  kmsan_report+0x29e/0x2a0
[  195.261196]  __msan_warning+0x70/0xc0
[  195.265040]  __ip_select_ident+0x438/0x7c0
[  195.269319]  iptunnel_xmit+0x7b7/0xd30
[  195.273292]  ip_tunnel_xmit+0x33e1/0x3750
[  195.277521]  ipgre_xmit+0xdcf/0xeb0
[  195.281187]  ? ipgre_close+0x230/0x230
[  195.285100]  dev_hard_start_xmit+0x5df/0xc20
[  195.289565]  __dev_queue_xmit+0x2eea/0x3a70
[  195.293954]  dev_queue_xmit+0x4b/0x60
[  195.297780]  ? __netdev_pick_tx+0xb20/0xb20
[  195.302138]  packet_sendmsg+0x7fb5/0x8ae0
[  195.306311]  ? kmsan_internal_unpoison_shadow+0x83/0xe0
[  195.311714]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  195.317183]  ? rw_copy_check_uvector+0x13f/0x710
[  195.321989]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  195.327502]  ___sys_sendmsg+0xe32/0x1250
[  195.331596]  ? compat_packet_setsockopt+0x360/0x360
[  195.336690]  __x64_sys_sendmsg+0x32d/0x460
[  195.340970]  ? ___sys_sendmsg+0x1250/0x1250
[  195.345318]  do_syscall_64+0x15b/0x220
[  195.349248]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  195.354490] RIP: 0033:0x457089
[  195.357685] Code: fd b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  195.377208] RSP: 002b:00007fbafdb08c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  195.384932] RAX: ffffffffffffffda RBX: 00007fbafdb096d4 RCX: 0000000000457089
[  195.392243] RDX: 0000000000000000 RSI: 0000000020001540 RDI: 0000000000000004
[  195.399560] RBP: 00000000009300a0 R08: 0000000000000000 R09: 0000000000000000
[  195.406851] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  195.414150] R13: 00000000004d3b88 R14: 00000000004c889b R15: 0000000000000000
[  195.421758] Dumping ftrace buffer:
[  195.425294]    (ftrace buffer empty)
[  195.428989] Kernel Offset: disabled
[  195.432613] Rebooting in 86400 seconds..