[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 37.041812] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. [ 38.412765] random: sshd: uninitialized urandom read (32 bytes read) Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 38.731966] random: sshd: uninitialized urandom read (32 bytes read) [ 39.845578] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.0.31' (ECDSA) to the list of known hosts. [ 45.609725] random: sshd: uninitialized urandom read (32 bytes read) 2018/08/27 19:15:22 fuzzer started [ 46.897950] random: cc1: uninitialized urandom read (8 bytes read) 2018/08/27 19:15:25 dialing manager at 10.128.0.26:41751 2018/08/27 19:15:27 syscalls: 1 2018/08/27 19:15:27 code coverage: enabled 2018/08/27 19:15:27 comparison tracing: CONFIG_KCOV_ENABLE_COMPARISONS is not enabled 2018/08/27 19:15:27 setuid sandbox: enabled 2018/08/27 19:15:27 namespace sandbox: enabled 2018/08/27 19:15:27 fault injection: enabled 2018/08/27 19:15:27 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2018/08/27 19:15:27 net packed injection: enabled 2018/08/27 19:15:27 net device setup: enabled [ 54.093363] random: crng init done 19:17:29 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={&(0x7f0000000000), 0xc, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="3800000020000108000000d8075252000200000000000000000000001100010008000100ac1414bb08000f000000000008000b0005000000578c27bd167ac5388d33bf20d95ea6c9427b53"], 0x1}}, 0x0) 19:17:29 executing program 1: exit(0x0) r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x20000000001, 0x0) bind$unix(r1, &(0x7f0000366000)=@file={0x1, "e91f7189591e9233614b00"}, 0xc) listen(r1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) r3 = accept4$inet(r2, &(0x7f0000000040)={0x2, 0x0, @broadcast}, &(0x7f0000000080)=0x10, 0x0) connect$unix(r0, &(0x7f0000932000)=@file={0x1, "e91f7189591e9233614b00"}, 0xc) setsockopt$inet_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0x4) 19:17:29 executing program 3: r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r1, 0x6, 0x20000000000002, &(0x7f00007b1000)=0x81, 0x4bc94be12c9f0923) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, &(0x7f0000e77fff), 0x2bd, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000000)=0x1, 0x4) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = open(&(0x7f0000000040)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, &(0x7f0000d83ff8), 0x8000fffffffe) 19:17:29 executing program 7: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$evdev(0xffffffffffffffff, &(0x7f0000000240)=[{{}, 0x15, 0x46, 0x1}, {{0x0, 0x2710}, 0x0, 0x8, 0x3}, {{}, 0x0, 0x9, 0x8}, {{0x77359400}}], 0x60) mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0) mount(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='tmpfs\x00', 0x0, 0x0) open(&(0x7f0000000080)='./file0/file0\x00', 0x3fffa, 0x0) rename(&(0x7f0000000100)='./file0/file0\x00', &(0x7f0000000140)='./file0/file1\x00') link(&(0x7f00000001c0)='./file0/file1\x00', &(0x7f0000000200)='./file0/file0\x00') 19:17:29 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8000000008912, &(0x7f0000000080)="0a5cc80700315f85715070") r1 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r1, &(0x7f0000a34fff)='H', 0x1, 0x0, &(0x7f0000000180)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10) shutdown(r1, 0x1) 19:17:29 executing program 5: r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r1, 0x6, 0x20000000000002, &(0x7f00007b1000)=0x81, 0x4bc94be12c9f0923) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, &(0x7f0000e77fff), 0x2bd, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000000)=0x1, 0x4) getpgrp(0x0) sched_getaffinity(0x0, 0x8, &(0x7f0000000080)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = open(&(0x7f0000000040)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, &(0x7f0000d83ff8), 0x8000fffffffe) 19:17:29 executing program 2: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='hybla\x00', 0x6) sendto$inet(r0, &(0x7f00000001c0), 0x0, 0x200007fc, &(0x7f0000deaff0)={0x2, 0x0, @loopback}, 0x10) 19:17:29 executing program 6: exit(0x0) pipe2(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) dup2(r1, r0) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000040)='tls\x00', 0x4) [ 173.383650] IPVS: ftp: loaded support on port[0] = 21 [ 173.386561] IPVS: ftp: loaded support on port[0] = 21 [ 173.448240] IPVS: ftp: loaded support on port[0] = 21 [ 173.468440] IPVS: ftp: loaded support on port[0] = 21 [ 173.515119] IPVS: ftp: loaded support on port[0] = 21 [ 173.531876] IPVS: ftp: loaded support on port[0] = 21 [ 173.536099] IPVS: ftp: loaded support on port[0] = 21 [ 173.555459] IPVS: ftp: loaded support on port[0] = 21 [ 177.403614] ip (4743) used greatest stack depth: 53960 bytes left [ 177.634417] ip (4756) used greatest stack depth: 53688 bytes left [ 178.321518] bridge0: port 1(bridge_slave_0) entered blocking state [ 178.328137] bridge0: port 1(bridge_slave_0) entered disabled state [ 178.375637] device bridge_slave_0 entered promiscuous mode [ 178.386822] bridge0: port 1(bridge_slave_0) entered blocking state [ 178.393272] bridge0: port 1(bridge_slave_0) entered disabled state [ 178.424482] device bridge_slave_0 entered promiscuous mode [ 178.474997] bridge0: port 1(bridge_slave_0) entered blocking state [ 178.481626] bridge0: port 1(bridge_slave_0) entered disabled state [ 178.507377] device bridge_slave_0 entered promiscuous mode [ 178.536551] bridge0: port 1(bridge_slave_0) entered blocking state [ 178.543129] bridge0: port 1(bridge_slave_0) entered disabled state [ 178.570910] device bridge_slave_0 entered promiscuous mode [ 178.581424] bridge0: port 1(bridge_slave_0) entered blocking state [ 178.587922] bridge0: port 1(bridge_slave_0) entered disabled state [ 178.609518] device bridge_slave_0 entered promiscuous mode [ 178.624869] bridge0: port 1(bridge_slave_0) entered blocking state [ 178.631392] bridge0: port 1(bridge_slave_0) entered disabled state [ 178.664645] device bridge_slave_0 entered promiscuous mode [ 178.679632] bridge0: port 1(bridge_slave_0) entered blocking state [ 178.686164] bridge0: port 1(bridge_slave_0) entered disabled state [ 178.707529] device bridge_slave_0 entered promiscuous mode [ 178.731255] bridge0: port 2(bridge_slave_1) entered blocking state [ 178.737772] bridge0: port 2(bridge_slave_1) entered disabled state [ 178.761439] device bridge_slave_1 entered promiscuous mode [ 178.772107] bridge0: port 2(bridge_slave_1) entered blocking state [ 178.778603] bridge0: port 2(bridge_slave_1) entered disabled state [ 178.799213] device bridge_slave_1 entered promiscuous mode [ 178.814953] bridge0: port 2(bridge_slave_1) entered blocking state [ 178.821451] bridge0: port 2(bridge_slave_1) entered disabled state [ 178.851308] device bridge_slave_1 entered promiscuous mode [ 178.864218] bridge0: port 2(bridge_slave_1) entered blocking state [ 178.870690] bridge0: port 2(bridge_slave_1) entered disabled state [ 178.901239] device bridge_slave_1 entered promiscuous mode [ 178.925461] bridge0: port 1(bridge_slave_0) entered blocking state [ 178.931970] bridge0: port 1(bridge_slave_0) entered disabled state [ 178.950594] device bridge_slave_0 entered promiscuous mode [ 178.968120] bridge0: port 2(bridge_slave_1) entered blocking state [ 178.974584] bridge0: port 2(bridge_slave_1) entered disabled state [ 178.983785] device bridge_slave_1 entered promiscuous mode [ 179.008379] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 179.016525] bridge0: port 2(bridge_slave_1) entered blocking state [ 179.022993] bridge0: port 2(bridge_slave_1) entered disabled state [ 179.066608] device bridge_slave_1 entered promiscuous mode [ 179.086185] bridge0: port 2(bridge_slave_1) entered blocking state [ 179.092672] bridge0: port 2(bridge_slave_1) entered disabled state [ 179.121902] device bridge_slave_1 entered promiscuous mode [ 179.167976] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 179.186853] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 179.196891] bridge0: port 2(bridge_slave_1) entered blocking state [ 179.203343] bridge0: port 2(bridge_slave_1) entered disabled state [ 179.247216] device bridge_slave_1 entered promiscuous mode [ 179.269120] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 179.301496] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 179.310511] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 179.323807] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 179.419725] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 179.452296] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 179.487180] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 179.516993] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 179.539408] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 179.603515] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 179.634879] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 179.791621] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 179.794370] ip (4864) used greatest stack depth: 53432 bytes left [ 179.808384] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 180.231151] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 180.305243] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 180.341151] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 180.485676] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 180.501384] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 180.539901] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 180.549957] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 180.600622] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 180.655600] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 180.748125] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 180.760000] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 180.791672] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 180.806130] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 180.862596] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 180.877777] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 180.887343] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 180.898269] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 180.909745] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 180.967617] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 180.974630] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 181.033548] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 181.105510] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 181.157509] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 181.164579] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 181.200674] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 181.212192] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 181.238910] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 181.246375] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 181.268901] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 181.277770] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 181.284744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 181.333669] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 181.366268] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 181.373218] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 181.396446] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 181.403720] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 181.444743] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 181.451739] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 181.538859] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 181.547662] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 181.569495] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 181.606532] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 181.725235] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 181.733474] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 181.756235] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 181.763234] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 181.820485] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 181.827505] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 182.157193] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 182.177848] team0: Port device team_slave_0 added [ 182.188147] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 182.200098] team0: Port device team_slave_0 added [ 182.268313] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 182.295664] team0: Port device team_slave_0 added [ 182.488196] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 182.518691] team0: Port device team_slave_1 added [ 182.535905] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 182.547311] team0: Port device team_slave_1 added [ 182.572890] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 182.599700] team0: Port device team_slave_1 added [ 182.613867] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 182.626146] team0: Port device team_slave_0 added [ 182.646778] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 182.658853] team0: Port device team_slave_0 added [ 182.680989] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 182.693523] team0: Port device team_slave_0 added [ 182.724237] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 182.753914] team0: Port device team_slave_0 added [ 182.774372] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 182.784567] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 182.815750] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 182.858529] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 182.866379] team0: Port device team_slave_0 added [ 182.899473] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 182.908480] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 182.916440] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 182.932194] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 182.973213] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 182.993987] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 183.013123] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 183.022216] team0: Port device team_slave_1 added [ 183.035965] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 183.047199] team0: Port device team_slave_1 added [ 183.108239] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 183.125480] team0: Port device team_slave_1 added [ 183.133685] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 183.153126] team0: Port device team_slave_1 added [ 183.158746] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 183.165885] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 183.190773] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 183.217117] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 183.234113] team0: Port device team_slave_1 added [ 183.259868] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 183.266848] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 183.278912] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 183.319251] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 183.332395] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 183.339325] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 183.351589] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 183.398291] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 183.416896] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 183.434878] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 183.450303] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 183.478654] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 183.503490] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 183.511291] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 183.520650] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 183.557485] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 183.564989] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 183.581175] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 183.590447] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 183.603867] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 183.628971] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 183.645686] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 183.663494] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 183.680733] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 183.725716] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 183.737322] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 183.744924] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 183.765236] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 183.789689] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 183.799275] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 183.809869] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 183.816807] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 183.833201] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 183.865517] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 183.872636] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 183.895090] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 183.935283] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 183.945503] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 183.965856] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 183.997235] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 184.004280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 184.020659] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 184.041674] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 184.049366] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 184.060263] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 184.076763] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 184.104448] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 184.128828] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 184.177914] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 184.205787] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 184.230888] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 184.252519] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 184.273583] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 184.293160] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 184.310666] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 184.337795] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 184.366939] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 184.385565] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 184.398763] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 184.411419] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 184.427840] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 184.459405] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 184.486193] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 184.514380] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 184.530921] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 184.551408] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 184.580106] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 184.607218] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 184.626507] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 184.633962] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 184.650490] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 184.682701] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 184.712940] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 184.739859] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 184.773778] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 184.787588] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 184.801179] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 184.832166] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 184.842798] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 184.862161] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 184.877319] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 184.895684] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 184.925361] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 184.954904] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 187.441683] bridge0: port 2(bridge_slave_1) entered blocking state [ 187.448206] bridge0: port 2(bridge_slave_1) entered forwarding state [ 187.455265] bridge0: port 1(bridge_slave_0) entered blocking state [ 187.461717] bridge0: port 1(bridge_slave_0) entered forwarding state [ 187.537595] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 187.544388] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 187.593226] bridge0: port 2(bridge_slave_1) entered blocking state [ 187.599731] bridge0: port 2(bridge_slave_1) entered forwarding state [ 187.606602] bridge0: port 1(bridge_slave_0) entered blocking state [ 187.613115] bridge0: port 1(bridge_slave_0) entered forwarding state [ 187.703263] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 187.801422] bridge0: port 2(bridge_slave_1) entered blocking state [ 187.807932] bridge0: port 2(bridge_slave_1) entered forwarding state [ 187.814799] bridge0: port 1(bridge_slave_0) entered blocking state [ 187.821253] bridge0: port 1(bridge_slave_0) entered forwarding state [ 187.865255] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 187.971375] bridge0: port 2(bridge_slave_1) entered blocking state [ 187.977876] bridge0: port 2(bridge_slave_1) entered forwarding state [ 187.984749] bridge0: port 1(bridge_slave_0) entered blocking state [ 187.991254] bridge0: port 1(bridge_slave_0) entered forwarding state [ 188.046612] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 188.089563] bridge0: port 2(bridge_slave_1) entered blocking state [ 188.096154] bridge0: port 2(bridge_slave_1) entered forwarding state [ 188.102993] bridge0: port 1(bridge_slave_0) entered blocking state [ 188.109506] bridge0: port 1(bridge_slave_0) entered forwarding state [ 188.169711] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 188.201933] bridge0: port 2(bridge_slave_1) entered blocking state [ 188.208444] bridge0: port 2(bridge_slave_1) entered forwarding state [ 188.215326] bridge0: port 1(bridge_slave_0) entered blocking state [ 188.222292] bridge0: port 1(bridge_slave_0) entered forwarding state [ 188.246159] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 188.255819] bridge0: port 2(bridge_slave_1) entered blocking state [ 188.262268] bridge0: port 2(bridge_slave_1) entered forwarding state [ 188.269172] bridge0: port 1(bridge_slave_0) entered blocking state [ 188.275624] bridge0: port 1(bridge_slave_0) entered forwarding state [ 188.322608] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 188.338141] bridge0: port 2(bridge_slave_1) entered blocking state [ 188.344593] bridge0: port 2(bridge_slave_1) entered forwarding state [ 188.351441] bridge0: port 1(bridge_slave_0) entered blocking state [ 188.357896] bridge0: port 1(bridge_slave_0) entered forwarding state [ 188.409395] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 188.580013] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 188.595144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 188.638973] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 188.667929] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 188.676375] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 188.684369] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 188.692374] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 199.629903] 8021q: adding VLAN 0 to HW filter on device bond0 [ 199.774262] 8021q: adding VLAN 0 to HW filter on device bond0 [ 200.247824] 8021q: adding VLAN 0 to HW filter on device bond0 [ 200.299566] 8021q: adding VLAN 0 to HW filter on device bond0 [ 200.346879] 8021q: adding VLAN 0 to HW filter on device bond0 [ 200.740985] 8021q: adding VLAN 0 to HW filter on device bond0 [ 200.772277] 8021q: adding VLAN 0 to HW filter on device bond0 [ 200.836727] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 200.968534] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 201.113028] 8021q: adding VLAN 0 to HW filter on device bond0 [ 201.328744] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 201.446628] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 201.517821] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 201.941408] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 201.949743] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 202.004165] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 202.010449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 202.023695] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 202.074629] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 202.080959] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 202.104479] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 202.405303] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 202.453954] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 202.460282] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 202.474612] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 202.608514] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 202.614814] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 202.626033] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 202.743638] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 202.750678] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 202.775174] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 203.109589] 8021q: adding VLAN 0 to HW filter on device team0 [ 203.150610] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 203.156938] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 203.173850] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 203.205187] 8021q: adding VLAN 0 to HW filter on device team0 [ 203.231309] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 203.240568] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 203.255422] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 203.545394] 8021q: adding VLAN 0 to HW filter on device team0 [ 203.650586] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 203.714536] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 203.752172] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 203.871363] 8021q: adding VLAN 0 to HW filter on device team0 [ 203.932623] 8021q: adding VLAN 0 to HW filter on device team0 [ 204.372960] 8021q: adding VLAN 0 to HW filter on device team0 [ 204.460417] 8021q: adding VLAN 0 to HW filter on device team0 [ 204.831848] 8021q: adding VLAN 0 to HW filter on device team0 [ 210.485462] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 210.628107] hrtimer: interrupt took 85147 ns 19:18:07 executing program 2: pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) read(r0, &(0x7f0000000280)=""/151, 0x97) r2 = gettid() socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r2, 0x1000000000016) write(r1, &(0x7f0000000100)="03", 0x1) 19:18:07 executing program 3: socketpair$inet_icmp_raw(0x2, 0x3, 0x1, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) readv(r1, &(0x7f00000002c0)=[{&(0x7f0000000080)=""/45, 0x2d}, {&(0x7f00000000c0)=""/50, 0x32}, {&(0x7f0000000100)=""/84, 0x54}, {&(0x7f0000000240)=""/72, 0x48}, {&(0x7f00000003c0)=""/130, 0x82}], 0x5) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$zero(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/zero\x00', 0x101100, 0x0) ioctl$UI_END_FF_UPLOAD(r2, 0x406055c9, &(0x7f00000005c0)={0x1, 0x9, {0x53, 0x8, 0xffffffffffffffff, {0x200}, {0x2, 0x100000000}, @rumble={0x0, 0x6}}, {0x57, 0x2, 0x10000, {0xaf6f, 0x3}, {}, @rumble={0x7fffffff, 0xfca}}}) r3 = socket(0xa, 0x5, 0x0) sendmsg$rds(r3, &(0x7f0000000a40)={&(0x7f0000000300)={0x2, 0xe803000000000000, @dev={0xac, 0x14, 0x14, 0x1a}, [0x0, 0x0, 0x0, 0x3f00000000000000]}, 0x10, &(0x7f0000000480)=[{&(0x7f0000000340)=""/112, 0x34000}], 0x1, &(0x7f00000008c0)=[@mask_fadd={0x58, 0x84, 0x8, {{}, &(0x7f0000000540), &(0x7f0000000580)}}], 0x58}, 0x0) readv(r0, &(0x7f0000000500)=[{&(0x7f0000000a80)=""/4096, 0x1000}, {&(0x7f0000000640)=""/155, 0x9b}, {&(0x7f0000001a80)=""/4096, 0x1000}], 0x3) bind$inet6(r3, &(0x7f0000000000)={0xa, 0x4e24, 0x1f, @ipv4={[], [], @broadcast}}, 0x1c) 19:18:08 executing program 2: 19:18:08 executing program 4: 19:18:08 executing program 2: 19:18:08 executing program 1: 19:18:08 executing program 4: 19:18:08 executing program 2: [ 211.793290] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. 19:18:09 executing program 4: r0 = openat$zero(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/zero\x00', 0x80140, 0x0) ioctl$UI_SET_MSCBIT(r0, 0x40045568, 0x5) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev, 0xa}, 0x1c) r2 = syz_open_procfs(0x0, &(0x7f0000000100)='net/ipv6_route\x00') fsetxattr(r0, &(0x7f0000000300)=@random={'system.', 'net/ipv6_route\x00'}, &(0x7f0000000340)='bdev\x00', 0x5, 0x3) ioctl$IOC_PR_PREEMPT(r2, 0x401870cb, &(0x7f0000000000)={0x100000001, 0xecc, 0x7, 0xd8b}) sendfile(r1, r2, &(0x7f0000000080), 0x3412) rmdir(&(0x7f00000002c0)='./file0\x00') write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x3, &(0x7f00000000c0)={0xffffffffffffffff}, 0x0, 0x3}}, 0x20) write$RDMA_USER_CM_CMD_CONNECT(r1, &(0x7f0000000180)={0x6, 0x386, 0xfa00, {{0x89f9, 0x2, "c6931c5dafb104687b21a114db85924f056dae44c440f8388596e3b93324d9549e488318c9ccfb81b5b09459269a52edd982eb3608247655a3ffb892843eb8b712a18ae55e0313f946f0e6461fe0a9aa150bb1c0c5fecd9b3e9b90567f5abe4177969177b74e0c353980a4962d98629c11c46c0e018f37ebb24c88d1d970232c75850adeb72872ca984009c22ebe18220103b6ab79ee757de0d218ceeb5622d178a80f3e9a3f2e97a5df6857ab703747bdb57ca9d4c3278d9da36f2524933b7c10a9ef79d494c0f09e0e53dec33f8f47332cc5e82c8f36ddce9fcc1e37d18404be7e0ebd9daff466d7ee93e645ca70ee49eda0e8bbbd3844e93fa6d841aeb2b8", 0x45, 0x3, 0x7, 0x8, 0x8, 0x4, 0x7fffffff}, r3}}, 0x120) 19:18:09 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f00000004c0)={&(0x7f0000000000), 0xc, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="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"], 0x64}}, 0x0) 19:18:09 executing program 1: r0 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000000)=0xffffffffffffffff, 0x4) fsync(r0) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000000040)={0x0}, &(0x7f0000000080)=0xc) ioprio_get$pid(0x3, r1) 19:18:09 executing program 7: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ppp\x00', 0x0, 0x0) ioctl$TIOCSCTTY(r0, 0x540e, 0x1000fd) r1 = syz_open_dev$sndpcmc(&(0x7f0000001fee)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000080)={0x100, 0x1, 0x8, 0xc63a, 0x1}, 0x14) preadv(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000009f7c)=""/132, 0x84}, {&(0x7f0000012000)=""/252, 0xfc}, {&(0x7f0000012000)=""/155, 0x9b}], 0x3, 0x0) ioctl(r1, 0xc2604110, &(0x7f0000000000)) 19:18:09 executing program 1: r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0xa340, 0x0) epoll_pwait(r0, &(0x7f0000000040)=[{}, {}, {}], 0x3, 0xfffffffffffffffd, &(0x7f0000000080)={0x8}, 0x8) r1 = memfd_create(&(0x7f00000000c0)='#em1#+\x00', 0x0) write(r1, &(0x7f0000000200)="3861a9e8971828896e1dc746fb028d61c55d3ac0c795d0", 0x17) sendfile(r1, r1, &(0x7f0000001000), 0xffff) mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x80000000004, 0x11, r1, 0x0) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000100), &(0x7f0000000180)=0xc) 19:18:09 executing program 5: r0 = syz_open_dev$sndseq(&(0x7f0000000600)='/dev/snd/seq\x00', 0x0, 0x10004) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000080)={0x0, 0x0, 0x0, 'queue0\x00'}) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000002c0)={0x0, 0x0, 0x0, 'queue1\x00'}) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000000240)) r1 = syz_open_dev$sndtimer(&(0x7f00000004c0)='/dev/snd/timer\x00', 0x0, 0x404) ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000029fcc)={{0x0, 0x2}}) pipe2(&(0x7f0000000540)={0xffffffffffffffff}, 0x80001) r3 = syz_genetlink_get_family_id$fou(&(0x7f0000000000)='fou\x00') sendmsg$FOU_CMD_GET(r2, &(0x7f00000003c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000380)={&(0x7f0000000400)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="00002abd7000fedbdf2503000000000001004e200000080004000300000000000200020000000800040002000000080001004e220000e32fa323493028df268493707b8aee735bfb021c14330f1daeaa41b06613e0ed903d959d162d79d1d0152170a110e5ba4c256db2578608fc83ba0c0e6004a26a9f488b8ec489c0607312f2122688452022881939d4ddfc82"], 0xffce}, 0x1, 0x0, 0x0, 0x4}, 0x4000000) 19:18:09 executing program 2: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x22, &(0x7f0000ddfffc)=0x1, 0xfdf3) setsockopt$inet_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000100)=0x1, 0x4) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='\\[\x00', 0xffffffffffffff9c}, 0x10) ioctl$GIO_UNISCRNMAP(r1, 0x4b69, &(0x7f0000000140)=""/220) sendmmsg(r0, &(0x7f0000004180)=[{{&(0x7f0000000080)=@nl=@unspec, 0x80, &(0x7f0000000280)}}], 0x1, 0x0) 19:18:09 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8000000008912, &(0x7f0000000080)="0a5cc80700315f85715070") mkdir(&(0x7f00000001c0)='./file0\x00', 0x0) r1 = inotify_init1(0x0) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x101040, 0x0) r3 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) inotify_add_watch(r1, &(0x7f0000ac5000)='./file0\x00', 0xa400295c) r4 = open(&(0x7f0000fa3000)='./file0\x00', 0x0, 0x0) rmdir(&(0x7f0000000040)='./file0\x00') dup2(r1, r4) 19:18:09 executing program 6: faccessat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x150, 0x400) perf_event_open(&(0x7f000001d000)={0x200000002, 0x70, 0x5, 0x108000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x200000002, 0x70, 0x100000006, 0x108000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = dup3(r0, r0, 0x7fffd) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r2, 0x8b12, &(0x7f0000000280)="025cc83d6d345f8f762070") sendmsg(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000880)="24000000110007031dfffd946fa2830020200a0009000300001d85680c1ba3a20400ff7e280000001100ffffba16a0aa1c0009b3ebea8653b1cc7e63975c0ac47b6268e3966cf055d90f15a3", 0x4c}], 0x1}, 0x0) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r3, 0x6, 0x80200000000002, &(0x7f00000012c0)=0x105, 0xd5) setsockopt$IP_VS_SO_SET_TIMEOUT(r3, 0x0, 0x48a, &(0x7f0000000500)={0x10001, 0x3fe, 0xe66b}, 0xfffffe9e) setsockopt$inet_tcp_TCP_MD5SIG(r3, 0x6, 0xe, &(0x7f0000001300)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x2, 0x0, "a77760f5a7645bc43c241d69912dda0c63c2a66726f8cfafd6c8fe2c98de7ba44947a79015f0fe57917cb62a93987a938fdedfce7bbba4fec2d8a09c41fb233245f2604b9e07b8ab79ec15ef2818a179"}, 0xd8) bind$inet(r3, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(0xffffffffffffffff, &(0x7f00000004c0), 0xffffffffffffff02, 0x0, 0x0, 0x0) r4 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r4, 0x8912, &(0x7f00000005c0)="0a5cc80700315f85714070") r5 = socket$inet(0x10, 0x3, 0xc) sendmsg(r5, &(0x7f0000011fc8)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000020107031dfffd946fa2830020200a0009000200001d85680c1baba20400", 0x22}], 0x1}, 0x0) sendto$inet(r3, &(0x7f0000a88f88), 0x29f, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @loopback}, 0x10) bind$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @multicast1}, 0x10) getegid() getsockopt$bt_hci(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000400)=""/89, &(0x7f0000000180)=0xffffffffffffff2e) setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000100), 0x921b527a62bfd8af) setsockopt$IP_VS_SO_SET_ZERO(r1, 0x0, 0x48f, &(0x7f00000004c0)={0x0, @loopback, 0x4e21, 0x2, 'lblc\x00', 0x8, 0x3, 0x14}, 0x2c) socket$inet(0x2, 0x0, 0x0) ioctl$KDGETMODE(0xffffffffffffffff, 0x4b3b, &(0x7f0000000480)) socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$full(0xffffffffffffff9c, &(0x7f0000003a40)='/dev/full\x00', 0x0, 0x0) sysfs$1(0x1, &(0x7f0000000600)='erspan0\x00') sendmsg$nl_generic(r3, &(0x7f0000001900)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2030}, 0xc, &(0x7f00000003c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140027ea61a5c5d8a7212b81b200000000000000fef2f2554f4dd228ed956db17639765839df73ee9a92e63007c5a50e4fd6584a2b6748f3c0a1cd276bda2d21c6e5218b8084e2bcd857e9c20b8f63f3d26a8b13"], 0x14}}, 0x4011) recvmsg(r3, &(0x7f0000000240)={&(0x7f0000000040)=@nfc, 0x80, &(0x7f00000001c0)=[{&(0x7f0000003ac0)=""/4096, 0x1000}], 0x1, &(0x7f0000000200)=""/20, 0x14}, 0x100) 19:18:09 executing program 0: r0 = socket$inet_dccp(0x2, 0x6, 0x0) getsockopt$inet_int(r0, 0x10d, 0x200000000000093, &(0x7f0000000080), &(0x7f0000000000)=0xc21) r1 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0x2, 0x481) ioctl$sock_inet_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f00000000c0)) 19:18:09 executing program 5: r0 = socket$inet(0x2, 0x3, 0x100000000052) recvmsg(r0, &(0x7f0000001780)={&(0x7f0000000000)=@xdp, 0xf, &(0x7f0000000700), 0x0, &(0x7f0000000780)=""/4096, 0x1000}, 0x20) setsockopt$inet_int(r0, 0x0, 0x6, &(0x7f00000000c0)=0xa7f, 0xfe9e) sendto$inet(r0, &(0x7f0000004000), 0x33f, 0x0, &(0x7f0000002000), 0x10) r1 = getgid() getgroups(0x6, &(0x7f0000000080)=[0xee01, 0xffffffffffffffff, 0xffffffffffffffff, 0xee00, 0xee00, 0xffffffffffffffff]) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000100)={0x0, 0x0, 0x0}, &(0x7f0000000140)=0xc) getgroups(0x8, &(0x7f0000000180)=[0xee01, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xee00, 0xee00, 0xee01]) stat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setgroups(0x6, &(0x7f0000000340)=[r1, r2, r3, r4, r5, r6]) 19:18:10 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f00000000c0)="0a5cfbf83fe202bedbd2adb85b0000005f85714070") r1 = socket(0xa, 0x1, 0x0) ioctl$fiemap(0xffffffffffffffff, 0xc020660b, &(0x7f0000000000)=ANY=[@ANYBLOB="0000230000005b5050920002000001010000000011"]) ioctl(r1, 0x8916, &(0x7f0000000000)) ioctl(r1, 0x8936, &(0x7f0000000000)) 19:18:10 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(hmac(sha256-generic))\x00'}, 0x58) r1 = accept$alg(r0, 0x0, 0x0) dup3(r0, r1, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000840), 0x11f) sendmmsg$alg(r1, &(0x7f0000004ec0)=[{0x0, 0x0, &(0x7f0000000480), 0x0, &(0x7f00000005c0)}], 0x4924924924923e4, 0x0) setsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000180), 0xc) 19:18:10 executing program 5: r0 = socket$can_raw(0x1d, 0x3, 0x1) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', 0x0}) r2 = socket$xdp(0x2c, 0x3, 0x0) ioctl$RTC_UIE_ON(r0, 0x7003) setsockopt$XDP_TX_RING(r2, 0x11b, 0x3, &(0x7f0000000000)=0x800, 0x4) bind$xdp(r2, &(0x7f0000000040)={0x2c, 0x0, r1, 0xa, 0xffffffffffffff9c}, 0x10) 19:18:10 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000000)="0a5cc80700315f85715070") ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000000080)=0x0) io_setup(0x4c, &(0x7f0000000200)=0x0) r3 = syz_open_dev$dspn(&(0x7f00000002c0)='/dev/dsp#\x00', 0x3, 0x480000) io_cancel(r2, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x7fff, r0, &(0x7f0000000240)="f825e04ac8b9cb8dd1bd421b8ebc1723dbf3a282ff5bc9b79b9998f356d20f3782fc66de57b70abe63ecec1249ba738cb21139a0909618426b5639d2d56fb9870d62fd05f3b00f5ab98397baa965d20da712645db40b06174cff6884f712b310805449cc40650788cb43", 0x6a, 0x6, 0x0, 0x2, r3}, &(0x7f0000000340)) sched_getaffinity(r1, 0x8, &(0x7f00000000c0)) socketpair$unix(0x1, 0x5, 0x0, &(0x7f000001a000)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = fcntl$getown(r0, 0x9) r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000180)='/dev/hwrng\x00', 0x103000, 0x0) ioctl$EVIOCSABS20(r7, 0x401845e0, &(0x7f00000001c0)={0x5, 0xffff, 0xffffffff, 0x40, 0x8, 0x3ffc00000}) getpeername(r4, &(0x7f0000000380)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @ipv4={[], [], @remote}}}}, &(0x7f0000000140)=0x80) sched_getaffinity(r6, 0x8, &(0x7f0000000040)) socketpair$inet_udp(0x2, 0x2, 0x0, &(0x7f0000000100)) setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x4d}, {0x6}]}, 0x10) 19:18:10 executing program 1: socket$vsock_stream(0x28, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) close(r1) socket$packet(0x11, 0x3, 0x300) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r1, 0xc08c5334, &(0x7f0000000080)={0x634b, 0x1, 0x9, 'queue1\x00', 0x100000000}) socket$netlink(0x10, 0x3, 0x4) ioctl$sock_inet_SIOCDARP(r1, 0x8953, &(0x7f0000000000)={{0x2, 0x0, @loopback}, {0x0, @dev}, 0x78, {}, 'gretap0\x00'}) [ 363.542900] watchdog: BUG: soft lockup - CPU#1 stuck for 123s! [syz-executor5:6711] [ 363.550787] Modules linked in: [ 363.554024] CPU: 1 PID: 6711 Comm: syz-executor5 Not tainted 4.18.0-rc8+ #34 [ 363.561303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 363.570733] RIP: 0010:msan_get_shadow_origin_ptr+0x25e/0x2e0 [ 363.576533] Code: 9e 00 00 00 20 d1 48 0f 45 d8 4d 0f 45 f4 e8 49 11 4c ff 48 8b 45 c8 48 89 45 b8 ff 75 b8 9d 4c 89 f0 48 89 da 48 83 c4 28 5b <41> 5c 41 5d 41 5e 41 5f 5d c3 48 b9 ff ff ff 7f ff ff ff ff 49 39 [ 363.596897] RSP: 0018:ffff88012d80f1a0 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff13 [ 363.604662] RAX: ffff88012d81f258 RBX: 0000000000000003 RCX: ffff88012a7cf258 [ 363.611965] RDX: ffff88012a7cf258 RSI: aaaaaaaaaaaab000 RDI: ffffea00071105a0 [ 363.619257] RBP: ffff88012d80f1c0 R08: 0000000000000000 R09: 0000000000000002 [ 363.626550] R10: 0000000000000000 R11: ffffffff81174df0 R12: 0000000000000004 [ 363.633838] R13: 0000000000000258 R14: ffff88012d81f258 R15: 0000000000000258 [ 363.641146] FS: 00007f0b7dcfd700(0000) GS:ffff88021fd00000(0000) knlGS:0000000000000000 [ 363.649401] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 363.655301] CR2: 00007f8f0dd40db8 CR3: 000000012d8cc000 CR4: 00000000001406e0 [ 363.662594] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 363.669889] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 363.677177] Call Trace: [ 363.679824] __msan_metadata_ptr_for_load_4+0x10/0x20 [ 363.685055] smp_call_function_single+0x373/0x4e0 [ 363.689956] ? flush_tlb_all+0x40/0x40 [ 363.693873] ? flush_tlb_all+0x40/0x40 [ 363.697840] ? cpumask_next_and+0xa9/0xc0 [ 363.702032] smp_call_function_many+0x658/0xdb0 [ 363.706731] ? flush_tlb_all+0x40/0x40 [ 363.710684] ? __msan_poison_alloca+0x173/0x200 [ 363.715395] ? flush_tlb_all+0x40/0x40 [ 363.719312] on_each_cpu+0xd2/0x160 [ 363.723008] ? flush_tlb_all+0x40/0x40 [ 363.726985] flush_tlb_kernel_range+0x161/0x1e0 [ 363.731720] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 363.737156] __purge_vmap_area_lazy+0x1f7/0x3b0 [ 363.741905] vm_unmap_aliases+0x635/0x6d0 [ 363.746134] change_page_attr_set_clr+0x587/0x1dd0 [ 363.751146] set_memory_ro+0xcc/0x100 [ 363.754989] bpf_int_jit_compile+0x80b3/0x8590 [ 363.759707] ? vmalloc_to_page+0x50b/0x630 [ 363.764012] ? vmalloc_to_page_or_null+0x3b/0xa0 [ 363.768841] bpf_prog_select_runtime+0x953/0x9f0 [ 363.773654] bpf_prepare_filter+0x1940/0x1d80 [ 363.778234] __get_filter+0x561/0x7a0 [ 363.782113] sk_attach_filter+0x72/0x2e0 [ 363.786246] sock_setsockopt+0x35ab/0x44e0 [ 363.790560] __sys_setsockopt+0x339/0x540 [ 363.794750] __x64_sys_setsockopt+0x15c/0x1c0 [ 363.799277] ? __ia32_sys_recv+0x180/0x180 [ 363.803539] do_syscall_64+0x15b/0x220 [ 363.807464] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 363.812676] RIP: 0033:0x457089 [ 363.815876] Code: fd b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 363.835547] RSP: 002b:00007f0b7dcfcc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 363.843309] RAX: ffffffffffffffda RBX: 00007f0b7dcfd6d4 RCX: 0000000000457089 [ 363.850601] RDX: 000000000000001a RSI: 0000000000000001 RDI: 0000000000000005 [ 363.857904] RBP: 00000000009300a0 R08: 0000000000000010 R09: 0000000000000000 [ 363.865196] R10: 0000000020ab9ff0 R11: 0000000000000246 R12: 00000000ffffffff [ 363.872490] R13: 00000000004d4710 R14: 00000000004c8e0f R15: 0000000000000000 [ 363.879798] Sending NMI from CPU 1 to CPUs 0: [ 363.884366] ------------[ cut here ]------------ [ 363.889144] kernel BUG at mm/kmsan/kmsan_entry.c:81! [ 363.894262] invalid opcode: 0000 [#1] SMP PTI [ 363.898764] CPU: 0 PID: 6664 Comm: syz-executor4 Not tainted 4.18.0-rc8+ #34 [ 363.905947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 363.915339] RIP: 0010:kmsan_nmi_enter+0x42/0x70 [ 363.920000] Code: 00 74 27 65 8b 04 25 80 90 03 00 83 c0 01 83 f8 08 7d 27 65 89 04 25 80 90 03 00 65 c6 04 25 15 6e 0b 00 ff c3 0f 0b 90 eb fe <0f> 0b 66 90 66 2e 0f 1f 84 00 00 00 00 00 eb fe 0f 0b 66 90 66 2e [ 363.939446] RSP: 0018:fffffe000000eea8 EFLAGS: 00010046 [ 363.944815] RAX: 0000000000000200 RBX: 0000000000000001 RCX: 00000000c0000101 [ 363.952090] RDX: 00000000ffff8802 RSI: ffffffff88c0136c RDI: ffffffff7fffffff [ 363.959360] RBP: fffffe000000eef9 R08: 0000000000000000 R09: 0000000000000000 [ 363.966630] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 363.973909] R13: 0000000000000000 R14: 000000012f778000 R15: 0000000000000000 [ 363.981187] FS: 00007f5061f35700(0000) GS:ffff88021fc00000(0000) knlGS:0000000000000000 [ 363.989416] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 363.995317] CR2: 0000001b2e321000 CR3: 000000012f778000 CR4: 00000000001406f0 [ 364.002591] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 364.009862] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 364.017142] Call Trace: [ 364.019727] [ 364.021900] ? end_repeat_nmi+0x19/0x8e [ 364.025904] ? end_repeat_nmi+0x7/0x8e [ 364.029816] ? kmsan_get_origin_address+0x39d/0x3d0 [ 364.034841] ? kmsan_get_origin_address+0x39d/0x3d0 [ 364.039869] ? kmsan_get_origin_address+0x39d/0x3d0 [ 364.044907] [ 364.047152] ? kmsan_memmove_origins+0xda/0x1d0 [ 364.051834] ? __msan_memmove+0xda/0x130 [ 364.055921] ? widen_string+0x580/0x6c0 [ 364.059933] ? string+0x32a/0x340 [ 364.063409] ? vsnprintf+0x10aa/0x31a0 [ 364.067329] ? seq_printf+0x2cb/0x460 [ 364.071174] ? ipv6_route_seq_show+0x431/0x520 [ 364.075782] ? seq_read+0x1744/0x2240 [ 364.079605] ? ipv6_route_seq_next+0x11d0/0x11d0 [ 364.084411] ? seq_open+0x360/0x360 [ 364.088057] ? proc_reg_read+0x1e1/0x2f0 [ 364.092142] ? do_iter_read+0xb87/0xd80 [ 364.096129] ? proc_reg_llseek+0x270/0x270 [ 364.100383] ? vfs_readv+0x1d9/0x250 [ 364.104136] ? default_file_splice_read+0xa80/0x10e0 [ 364.109297] ? rw_verify_area+0x35e/0x580 [ 364.113482] ? __ia32_sys_tee+0x160/0x160 [ 364.117643] ? splice_direct_to_actor+0x4af/0xfb0 [ 364.122495] ? do_splice_direct+0x540/0x540 [ 364.126852] ? do_splice_direct+0x332/0x540 [ 364.131209] ? do_sendfile+0x1090/0x1df0 [ 364.135305] ? __se_sys_sendfile64+0x1c2/0x380 [ 364.139917] ? __x64_sys_sendfile64+0x11e/0x170 [ 364.144598] ? __ia32_sys_sendfile+0x160/0x160 [ 364.149191] ? do_syscall_64+0x15b/0x220 [ 364.153270] ? entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 364.158642] Modules linked in: [ 364.161840] Dumping ftrace buffer: [ 364.165376] (ftrace buffer empty) [ 364.169101] ---[ end trace bad88d3ff413732c ]--- [ 364.173862] RIP: 0010:kmsan_nmi_enter+0x42/0x70 [ 364.178532] Code: 00 74 27 65 8b 04 25 80 90 03 00 83 c0 01 83 f8 08 7d 27 65 89 04 25 80 90 03 00 65 c6 04 25 15 6e 0b 00 ff c3 0f 0b 90 eb fe <0f> 0b 66 90 66 2e 0f 1f 84 00 00 00 00 00 eb fe 0f 0b 66 90 66 2e [ 364.197962] RSP: 0018:fffffe000000eea8 EFLAGS: 00010046 [ 364.203331] RAX: 0000000000000200 RBX: 0000000000000001 RCX: 00000000c0000101 [ 364.210608] RDX: 00000000ffff8802 RSI: ffffffff88c0136c RDI: ffffffff7fffffff [ 364.218388] RBP: fffffe000000eef9 R08: 0000000000000000 R09: 0000000000000000 [ 364.225673] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 364.232940] R13: 0000000000000000 R14: 000000012f778000 R15: 0000000000000000 [ 364.240216] FS: 00007f5061f35700(0000) GS:ffff88021fc00000(0000) knlGS:0000000000000000 [ 364.248461] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 364.254344] CR2: 0000001b2e321000 CR3: 000000012f778000 CR4: 00000000001406f0 [ 364.261613] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 364.268889] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 364.276171] Kernel panic - not syncing: Fatal exception in interrupt [ 365.818791] Shutting down cpus with NMI [ 365.822918] ------------[ cut here ]------------ [ 365.827715] kernel BUG at mm/kmsan/kmsan_entry.c:81! [ 365.832862] invalid opcode: 0000 [#2] SMP PTI [ 365.837414] CPU: 1 PID: 6711 Comm: syz-executor5 Tainted: G D 4.18.0-rc8+ #34 [ 365.838681] Dumping ftrace buffer: [ 365.846015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 365.849567] (ftrace buffer empty) [ 365.858959] RIP: 0010:kmsan_nmi_enter+0x42/0x70 [ 365.862634] Kernel Offset: disabled [ [ 33656.58.8707904941]1] ReRbeobooottiingn gi in n 86400 seconds.. [ 365.877443] 27 65 8b 04 25 80 90 03 00 83 c0 01 83 f8 08 7d 27 65 89 04 25 80 90 03 00 65 c6 04 25 15 6e 0b 00 ff c3 0f 0b 90 eb fe <0f> 0b 66 90 66 2e 0f 1f 84 00 00 00 00 00 eb fe 0f 0b 66 90 66 2e [ 365.896159] RSP: 0018:fffffe0000049ea8 EFLAGS: 00010046 [ 365.901564] RAX: 0000000000010000 RBX: 0000000000000001 RCX: 00000000c0000101 [ 365.908864] RDX: 00000000ffff8802 RSI: ffffffff88c0136c RDI: 0000000000231877 [ 365.916176] RBP: fffffe0000049ef9 R08: 0000000000000000 R09: 0000000000000000 [ 365.923490] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 365.930791] R13: 0000000000000000 R14: 000000012d8cc000 R15: 0000000000000000 [ 365.938099] FS: 00007f0b7dcfd700(0000) GS:ffff88021fd00000(0000) knlGS:0000000000000000 [ 365.946356] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 365.952274] CR2: 00007f8f0dd40db8 CR3: 000000012d8cc000 CR4: 00000000001406e0 [ 365.959577] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 365.966873] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 365.974171] Call Trace: [ 365.976823] [ 365.979020] ? end_repeat_nmi+0x19/0x8e [ 365.983035] ? end_repeat_nmi+0x7/0x8e [ 365.986964] ? delay_loop+0x50/0x50 [ 365.990630] ? delay_tsc+0xb4/0xe0 [ 365.994208] ? delay_tsc+0xb4/0xe0 [ 365.997792] ? delay_tsc+0xb4/0xe0 [ 366.001344] [ 366.003601] [ 366.005792] ? delay_loop+0x50/0x50 [ 366.009505] ? __const_udelay+0xb2/0xe0 [ 366.013596] ? nmi_trigger_cpumask_backtrace+0x439/0x4b0 [ 366.019091] ? arch_trigger_cpumask_backtrace+0x40/0x40 [ 366.024500] ? arch_trigger_cpumask_backtrace+0x2c/0x40 [ 366.029915] ? watchdog_timer_fn+0x6bd/0x760 [ 366.034372] ? watchdog_disable+0xe0/0xe0 [ 366.038619] ? __hrtimer_run_queues+0xbfc/0x15b0 [ 366.043448] ? hrtimer_interrupt+0x458/0x13d0 [ 366.048006] ? __msan_poison_alloca+0x173/0x200 [ 366.052736] ? hrtimer_init+0x5b0/0x5b0 [ 366.056757] ? local_apic_timer_interrupt+0x6b/0x250 [ 366.061921] ? smp_apic_timer_interrupt+0x5a/0x90 [ 366.066808] ? apic_timer_interrupt+0xf/0x20 [ 366.071229] [ 366.073516] ? native_apic_mem_read+0x60/0x60 [ 366.078060] ? msan_get_shadow_origin_ptr+0x25e/0x2e0 [ 366.083295] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 366.088706] ? smp_call_function_single+0x373/0x4e0 [ 366.093774] ? flush_tlb_all+0x40/0x40 [ 366.097706] ? flush_tlb_all+0x40/0x40 [ 366.101682] ? cpumask_next_and+0xa9/0xc0 [ 366.105890] ? smp_call_function_many+0x658/0xdb0 [ 366.110775] ? flush_tlb_all+0x40/0x40 [ 366.114748] ? __msan_poison_alloca+0x173/0x200 [ 366.119468] ? flush_tlb_all+0x40/0x40 [ 366.123402] ? on_each_cpu+0xd2/0x160 [ 366.127288] ? flush_tlb_all+0x40/0x40 [ 366.131268] ? flush_tlb_kernel_range+0x161/0x1e0 [ 366.136198] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 366.141649] ? __purge_vmap_area_lazy+0x1f7/0x3b0 [ 366.146580] ? vm_unmap_aliases+0x635/0x6d0 [ 366.151004] ? change_page_attr_set_clr+0x587/0x1dd0 [ 366.156222] ? set_memory_ro+0xcc/0x100 [ 366.160249] ? bpf_int_jit_compile+0x80b3/0x8590 [ 366.165137] ? vmalloc_to_page+0x50b/0x630 [ 366.169465] ? vmalloc_to_page_or_null+0x3b/0xa0 [ 366.174318] ? bpf_prog_select_runtime+0x953/0x9f0 [ 366.179308] ? bpf_prepare_filter+0x1940/0x1d80 [ 366.184084] ? __get_filter+0x561/0x7a0 [ 366.188150] ? sk_attach_filter+0x72/0x2e0 [ 366.192495] ? sock_setsockopt+0x35ab/0x44e0 [ 366.197004] ? __sys_setsockopt+0x339/0x540 [ 366.201379] ? __x64_sys_setsockopt+0x15c/0x1c0 [ 366.206110] ? __ia32_sys_recv+0x180/0x180 [ 366.210385] ? do_syscall_64+0x15b/0x220 [ 366.214506] ? entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 366.220226] Modules linked in: [ 366.223451] Dumping ftrace buffer: [ 366.227006] (ftrace buffer empty) [ 366.230750] ---[ end trace bad88d3ff413732d ]--- [ 366.235559] RIP: 0010:kmsan_nmi_enter+0x42/0x70 [ 366.240238] Code: 00 74 27 65 8b 04 25 80 90 03 00 83 c0 01 83 f8 08 7d 27 65 89 04 25 80 90 03 00 65 c6 04 25 15 6e 0b 00 ff c3 0f 0b 90 eb fe <0f> 0b 66 90 66 2e 0f 1f 84 00 00 00 00 00 eb fe 0f 0b 66 90 66 2e [ 366.260335] RSP: 0018:fffffe000000eea8 EFLAGS: 00010046 [ 366.265750] RAX: 0000000000000200 RBX: 0000000000000001 RCX: 00000000c0000101 [ 366.273051] RDX: 00000000ffff8802 RSI: ffffffff88c0136c RDI: ffffffff7fffffff [ 366.280351] RBP: fffffe000000eef9 R08: 0000000000000000 R09: 0000000000000000 [ 366.287652] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 366.294951] R13: 0000000000000000 R14: 000000012f778000 R15: 0000000000000000 [ 366.302262] FS: 00007f0b7dcfd700(0000) GS:ffff88021fd00000(0000) knlGS:0000000000000000 [ 366.310531] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 366.316463] CR2: 00007f8f0dd40db8 CR3: 000000012d8cc000 CR4: 00000000001406e0 [ 366.323768] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 366.331454] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400