INIT: Entering runlevel: 2

[info] Using makefile-style concurrent boot in runlevel 2.
[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.10.21' (ECDSA) to the list of known hosts.
2018/09/23 19:15:37 fuzzer started
2018/09/23 19:15:40 dialing manager at 10.128.0.26:37039
2018/09/23 19:15:42 syscalls: 1
2018/09/23 19:15:42 code coverage: enabled
2018/09/23 19:15:42 comparison tracing: enabled
2018/09/23 19:15:42 setuid sandbox: enabled
2018/09/23 19:15:42 namespace sandbox: enabled
2018/09/23 19:15:42 Android sandbox: /sys/fs/selinux/policy does not exist
2018/09/23 19:15:42 fault injection: enabled
2018/09/23 19:15:42 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2018/09/23 19:15:42 net packed injection: enabled
2018/09/23 19:15:42 net device setup: enabled
19:16:30 executing program 0:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x40000080806, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x29, &(0x7f00000001c0)={0x0, 'bridge_slave_0\x00'}, 0x200001d8)
perf_event_open(&(0x7f0000aaa000)={0x0, 0x70, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439ed554fa07424ada75af1f02acc7edbcd7a071fb35331ce39c5a00000000")
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mq_open(&(0x7f00005a1ffb)='eth0\x00', 0x42, 0x2, &(0x7f0000000000)={0x7})
uselib(&(0x7f0000000380)='./file0\x00')
ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000200)=""/71)

19:16:30 executing program 1:
syz_emit_ethernet(0x3e, &(0x7f00000001c0)={@local, @dev, [], {@ipv6={0x86dd, {0x0, 0x6, "50a09c", 0x8, 0x2b, 0x0, @remote, @local, {[], @udp={0x0, 0x80040206, 0x8}}}}}}, &(0x7f0000000040))

19:16:30 executing program 5:
r0 = socket$inet6(0xa, 0x3, 0x800000000002)
ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000001000)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000200)="3665a1ab415b7ac7", 0x8)
r2 = accept$alg(r1, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0x3d4}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0)

19:16:30 executing program 2:
r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0)
r1 = getpid()
clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff)
sched_setscheduler(r1, 0x5, &(0x7f0000000200))
ioctl$EVIOCSFF(r0, 0x40304580, &(0x7f0000000180)={0x0, 0x0, 0x0, {}, {}, @period={0x0, 0x0, 0x0, 0x0, 0x0, {}, 0x0, &(0x7f0000000080)}})
getsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffff9c, 0x84, 0x1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2, 0x4a400000000, 0xcc36}, &(0x7f0000000100)=0x14)

19:16:30 executing program 3:
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x13, 0x10}, 0x2c)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xb, 0xf, &(0x7f0000000940)=ANY=[@ANYBLOB="00000000000000009500000000000000b834ef5333f5184045384b97468e8234c2fe586693bcced8c63636e078564c629b902f22dc4e4246d82d08998476949d1d6d28fcaf8f6b038fccfb590bf0088cb4b9439d9260e1868c469e90cb81d4a10442d309efdfb6b360421fdb42e49a631d45c5a227c7f2f0"], &(0x7f0000000140)='GPL\x00', 0x0, 0xf4, &(0x7f0000000280)=""/244}, 0x48)

19:16:30 executing program 4:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer\x00', 0x80000000000046, 0x0)
ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, &(0x7f0000000100)={0x0, 0x1})
r1 = syz_open_procfs(0x0, &(0x7f0000000080)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f79805854fa07424adee901d2da75af1f0200f5ab26d7a071fb35331ce39c5a")
sendfile(r0, r1, &(0x7f0000000000), 0x2b428a52)

syzkaller login: [   87.942620] IPVS: ftp: loaded support on port[0] = 21
[   87.956784] IPVS: ftp: loaded support on port[0] = 21
[   87.981982] IPVS: ftp: loaded support on port[0] = 21
[   87.984629] IPVS: ftp: loaded support on port[0] = 21
[   87.991090] IPVS: ftp: loaded support on port[0] = 21
[   88.009401] IPVS: ftp: loaded support on port[0] = 21
[   90.287098] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.310281] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.327012] device bridge_slave_0 entered promiscuous mode
[   90.337550] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.347994] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.356693] device bridge_slave_0 entered promiscuous mode
[   90.388814] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.397255] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.414286] device bridge_slave_0 entered promiscuous mode
[   90.452945] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.462131] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.471344] device bridge_slave_1 entered promiscuous mode
[   90.479054] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.488011] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.496953] device bridge_slave_0 entered promiscuous mode
[   90.507404] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.521817] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.530262] device bridge_slave_0 entered promiscuous mode
[   90.540572] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.557397] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.566085] device bridge_slave_1 entered promiscuous mode
[   90.573023] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.588692] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.604140] device bridge_slave_1 entered promiscuous mode
[   90.611011] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.622222] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.629748] device bridge_slave_0 entered promiscuous mode
[   90.639655] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   90.657103] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.673431] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.680946] device bridge_slave_1 entered promiscuous mode
[   90.690733] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   90.702308] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.728237] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.742834] device bridge_slave_1 entered promiscuous mode
[   90.756254] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.762623] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.778513] device bridge_slave_1 entered promiscuous mode
[   90.790665] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   90.817090] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   90.824692] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   90.836892] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   90.850355] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   90.878215] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   90.940684] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   90.960710] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   91.018684] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   91.036076] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   91.191606] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   91.245611] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   91.362440] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   91.380268] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   91.406543] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   91.433113] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   91.451789] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   91.472150] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   91.515475] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   91.564789] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   91.582557] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   91.607083] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   91.636245] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   91.643142] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   91.681828] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   91.703577] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   91.726254] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   91.735042] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   91.753906] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   91.760764] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   91.804150] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   91.831350] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   91.848610] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   91.859944] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   91.872942] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   91.889929] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   91.914880] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   91.934358] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   91.955679] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   91.983047] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   92.021159] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   92.041110] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   92.131256] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   92.149309] team0: Port device team_slave_0 added
[   92.195464] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   92.204145] team0: Port device team_slave_0 added
[   92.261954] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   92.278905] team0: Port device team_slave_1 added
[   92.303472] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   92.321754] team0: Port device team_slave_0 added
[   92.333062] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   92.344307] team0: Port device team_slave_1 added
[   92.352407] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   92.361018] team0: Port device team_slave_0 added
[   92.393831] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   92.401334] team0: Port device team_slave_0 added
[   92.447141] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   92.464077] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   92.471535] team0: Port device team_slave_1 added
[   92.508488] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   92.519021] team0: Port device team_slave_1 added
[   92.527657] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   92.538024] team0: Port device team_slave_1 added
[   92.544833] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   92.552886] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   92.561420] team0: Port device team_slave_0 added
[   92.581332] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   92.605105] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   92.674557] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   92.681697] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   92.689068] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   92.709579] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   92.724225] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   92.739152] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   92.747389] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   92.758709] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   92.771202] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   92.794258] team0: Port device team_slave_1 added
[   92.802214] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   92.813713] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   92.821681] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   92.839407] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   92.848727] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   92.857130] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   92.866143] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   92.874812] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   92.884425] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   92.891754] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   92.902039] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   92.914641] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   92.921456] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   92.954110] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   92.962028] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   93.004200] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   93.012119] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   93.024703] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   93.032114] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   93.040112] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   93.047826] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   93.055682] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   93.063816] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   93.070634] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   93.078601] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   93.095089] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   93.105657] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   93.116371] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   93.126939] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   93.154313] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   93.165836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   93.192173] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   93.214311] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   93.228285] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   93.236412] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   93.244718] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   93.252527] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   93.263660] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   93.287602] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   93.300858] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   93.326159] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   93.354315] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   93.362303] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   93.389443] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   93.406951] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   93.421030] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   93.445686] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   93.465402] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   93.484490] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   93.504191] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   93.511408] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   93.528185] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   93.690288] ip (6041) used greatest stack depth: 15992 bytes left
[   94.623060] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.629668] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.636720] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.643106] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.654384] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   94.664983] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   94.692469] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.698905] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.705649] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.712028] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.723055] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   94.766605] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.773005] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.779746] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.786176] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.828884] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   94.842580] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.849097] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.855809] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.862188] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.871023] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   94.891355] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.897800] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.904547] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.910918] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.941321] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   95.080230] bridge0: port 2(bridge_slave_1) entered blocking state
[   95.086700] bridge0: port 2(bridge_slave_1) entered forwarding state
[   95.093439] bridge0: port 1(bridge_slave_0) entered blocking state
[   95.099847] bridge0: port 1(bridge_slave_0) entered forwarding state
[   95.118985] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[   95.753910] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   95.761203] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   95.784493] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   95.791800] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   95.809626] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   99.941624] 8021q: adding VLAN 0 to HW filter on device bond0
[  100.077137] 8021q: adding VLAN 0 to HW filter on device bond0
[  100.094161] 8021q: adding VLAN 0 to HW filter on device bond0
[  100.180300] 8021q: adding VLAN 0 to HW filter on device bond0
[  100.218574] 8021q: adding VLAN 0 to HW filter on device bond0
[  100.285588] 8021q: adding VLAN 0 to HW filter on device bond0
[  100.385074] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  100.581427] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  100.640241] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  100.655961] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  100.681292] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  100.851962] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  100.882079] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  100.893938] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  100.904433] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  101.092111] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  101.105289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  101.114320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  101.141462] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  101.156994] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  101.178716] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  101.204742] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  101.213161] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  101.224314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  101.237601] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  101.258187] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  101.280984] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  101.376474] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  101.384892] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  101.392057] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  101.479347] 8021q: adding VLAN 0 to HW filter on device team0
[  101.553194] 8021q: adding VLAN 0 to HW filter on device team0
[  101.623568] 8021q: adding VLAN 0 to HW filter on device team0
[  101.765068] 8021q: adding VLAN 0 to HW filter on device team0
[  101.792715] 8021q: adding VLAN 0 to HW filter on device team0
[  101.883869] 8021q: adding VLAN 0 to HW filter on device team0
19:16:47 executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r1 = dup(r0)
sendto$packet(r1, &(0x7f0000000140), 0x0, 0x4000800, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random="cb0f97239227"}, 0x14)

19:16:47 executing program 1:
syz_emit_ethernet(0x3e, &(0x7f00000001c0)={@local, @dev, [], {@ipv6={0x86dd, {0x0, 0x6, "50a09c", 0x8, 0x2b, 0x0, @remote, @local, {[], @udp={0x0, 0x80040206, 0x8}}}}}}, &(0x7f0000000040))

19:16:47 executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r1 = dup(r0)
sendto$packet(r1, &(0x7f0000000140), 0x0, 0x4000800, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random="cb0f97239227"}, 0x14)

19:16:47 executing program 5:
r0 = socket$inet6(0xa, 0x3, 0x800000000002)
ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000001000)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000200)="3665a1ab415b7ac7", 0x8)
r2 = accept$alg(r1, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0x3d4}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0)

19:16:47 executing program 1:
syz_emit_ethernet(0x3e, &(0x7f00000001c0)={@local, @dev, [], {@ipv6={0x86dd, {0x0, 0x6, "50a09c", 0x8, 0x2b, 0x0, @remote, @local, {[], @udp={0x0, 0x80040206, 0x8}}}}}}, &(0x7f0000000040))

19:16:47 executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r1 = dup(r0)
sendto$packet(r1, &(0x7f0000000140), 0x0, 0x4000800, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random="cb0f97239227"}, 0x14)

[  104.794686] hrtimer: interrupt took 53163 ns
19:16:47 executing program 0:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x40000080806, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x29, &(0x7f00000001c0)={0x0, 'bridge_slave_0\x00'}, 0x200001d8)
perf_event_open(&(0x7f0000aaa000)={0x0, 0x70, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439ed554fa07424ada75af1f02acc7edbcd7a071fb35331ce39c5a00000000")
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mq_open(&(0x7f00005a1ffb)='eth0\x00', 0x42, 0x2, &(0x7f0000000000)={0x7})
uselib(&(0x7f0000000380)='./file0\x00')
ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000200)=""/71)

19:16:47 executing program 1:
syz_emit_ethernet(0x3e, &(0x7f00000001c0)={@local, @dev, [], {@ipv6={0x86dd, {0x0, 0x6, "50a09c", 0x8, 0x2b, 0x0, @remote, @local, {[], @udp={0x0, 0x80040206, 0x8}}}}}}, &(0x7f0000000040))

19:16:47 executing program 5:
r0 = socket$inet6(0xa, 0x3, 0x800000000002)
ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000001000)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000200)="3665a1ab415b7ac7", 0x8)
r2 = accept$alg(r1, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0x3d4}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0)

19:16:47 executing program 2:
r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0)
r1 = getpid()
clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff)
sched_setscheduler(r1, 0x5, &(0x7f0000000200))
ioctl$EVIOCSFF(r0, 0x40304580, &(0x7f0000000180)={0x0, 0x0, 0x0, {}, {}, @period={0x0, 0x0, 0x0, 0x0, 0x0, {}, 0x0, &(0x7f0000000080)}})
getsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffff9c, 0x84, 0x1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2, 0x4a400000000, 0xcc36}, &(0x7f0000000100)=0x14)

19:16:47 executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r1 = dup(r0)
sendto$packet(r1, &(0x7f0000000140), 0x0, 0x4000800, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random="cb0f97239227"}, 0x14)

19:16:48 executing program 4:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer\x00', 0x80000000000046, 0x0)
ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, &(0x7f0000000100)={0x0, 0x1})
r1 = syz_open_procfs(0x0, &(0x7f0000000080)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f79805854fa07424adee901d2da75af1f0200f5ab26d7a071fb35331ce39c5a")
sendfile(r0, r1, &(0x7f0000000000), 0x2b428a52)

19:16:48 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x40000080806, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x29, &(0x7f00000001c0)={0x0, 'bridge_slave_0\x00'}, 0x200001d8)
perf_event_open(&(0x7f0000aaa000)={0x0, 0x70, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439ed554fa07424ada75af1f02acc7edbcd7a071fb35331ce39c5a00000000")
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mq_open(&(0x7f00005a1ffb)='eth0\x00', 0x42, 0x2, &(0x7f0000000000)={0x7})
uselib(&(0x7f0000000380)='./file0\x00')
ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000200)=""/71)

19:16:48 executing program 5:
r0 = socket$inet6(0xa, 0x3, 0x800000000002)
ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000001000)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000200)="3665a1ab415b7ac7", 0x8)
r2 = accept$alg(r1, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0x3d4}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0)

19:16:48 executing program 0:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x40000080806, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x29, &(0x7f00000001c0)={0x0, 'bridge_slave_0\x00'}, 0x200001d8)
perf_event_open(&(0x7f0000aaa000)={0x0, 0x70, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439ed554fa07424ada75af1f02acc7edbcd7a071fb35331ce39c5a00000000")
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mq_open(&(0x7f00005a1ffb)='eth0\x00', 0x42, 0x2, &(0x7f0000000000)={0x7})
uselib(&(0x7f0000000380)='./file0\x00')
ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000200)=""/71)

19:16:48 executing program 3:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x40000080806, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x29, &(0x7f00000001c0)={0x0, 'bridge_slave_0\x00'}, 0x200001d8)
perf_event_open(&(0x7f0000aaa000)={0x0, 0x70, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439ed554fa07424ada75af1f02acc7edbcd7a071fb35331ce39c5a00000000")
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mq_open(&(0x7f00005a1ffb)='eth0\x00', 0x42, 0x2, &(0x7f0000000000)={0x7})
uselib(&(0x7f0000000380)='./file0\x00')
ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000200)=""/71)

19:16:48 executing program 2:
r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0)
r1 = getpid()
clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff)
sched_setscheduler(r1, 0x5, &(0x7f0000000200))
ioctl$EVIOCSFF(r0, 0x40304580, &(0x7f0000000180)={0x0, 0x0, 0x0, {}, {}, @period={0x0, 0x0, 0x0, 0x0, 0x0, {}, 0x0, &(0x7f0000000080)}})
getsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffff9c, 0x84, 0x1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2, 0x4a400000000, 0xcc36}, &(0x7f0000000100)=0x14)

19:16:48 executing program 0:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x40000080806, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x29, &(0x7f00000001c0)={0x0, 'bridge_slave_0\x00'}, 0x200001d8)
perf_event_open(&(0x7f0000aaa000)={0x0, 0x70, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439ed554fa07424ada75af1f02acc7edbcd7a071fb35331ce39c5a00000000")
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mq_open(&(0x7f00005a1ffb)='eth0\x00', 0x42, 0x2, &(0x7f0000000000)={0x7})
uselib(&(0x7f0000000380)='./file0\x00')
ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000200)=""/71)

19:16:48 executing program 3:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x40000080806, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x29, &(0x7f00000001c0)={0x0, 'bridge_slave_0\x00'}, 0x200001d8)
perf_event_open(&(0x7f0000aaa000)={0x0, 0x70, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439ed554fa07424ada75af1f02acc7edbcd7a071fb35331ce39c5a00000000")
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mq_open(&(0x7f00005a1ffb)='eth0\x00', 0x42, 0x2, &(0x7f0000000000)={0x7})
uselib(&(0x7f0000000380)='./file0\x00')
ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000200)=""/71)

19:16:48 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x40000080806, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x29, &(0x7f00000001c0)={0x0, 'bridge_slave_0\x00'}, 0x200001d8)
perf_event_open(&(0x7f0000aaa000)={0x0, 0x70, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439ed554fa07424ada75af1f02acc7edbcd7a071fb35331ce39c5a00000000")
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mq_open(&(0x7f00005a1ffb)='eth0\x00', 0x42, 0x2, &(0x7f0000000000)={0x7})
uselib(&(0x7f0000000380)='./file0\x00')
ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000200)=""/71)

19:16:48 executing program 2:
r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0)
r1 = getpid()
clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff)
sched_setscheduler(r1, 0x5, &(0x7f0000000200))
ioctl$EVIOCSFF(r0, 0x40304580, &(0x7f0000000180)={0x0, 0x0, 0x0, {}, {}, @period={0x0, 0x0, 0x0, 0x0, 0x0, {}, 0x0, &(0x7f0000000080)}})
getsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffff9c, 0x84, 0x1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2, 0x4a400000000, 0xcc36}, &(0x7f0000000100)=0x14)

19:16:48 executing program 5:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer\x00', 0x80000000000046, 0x0)
ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, &(0x7f0000000100)={0x0, 0x1})
r1 = syz_open_procfs(0x0, &(0x7f0000000080)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f79805854fa07424adee901d2da75af1f0200f5ab26d7a071fb35331ce39c5a")
sendfile(r0, r1, &(0x7f0000000000), 0x2b428a52)

19:16:48 executing program 4:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer\x00', 0x80000000000046, 0x0)
ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, &(0x7f0000000100)={0x0, 0x1})
r1 = syz_open_procfs(0x0, &(0x7f0000000080)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f79805854fa07424adee901d2da75af1f0200f5ab26d7a071fb35331ce39c5a")
sendfile(r0, r1, &(0x7f0000000000), 0x2b428a52)

19:16:48 executing program 2:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer\x00', 0x80000000000046, 0x0)
ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, &(0x7f0000000100)={0x0, 0x1})
r1 = syz_open_procfs(0x0, &(0x7f0000000080)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f79805854fa07424adee901d2da75af1f0200f5ab26d7a071fb35331ce39c5a")
sendfile(r0, r1, &(0x7f0000000000), 0x2b428a52)

19:16:48 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x40000080806, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x29, &(0x7f00000001c0)={0x0, 'bridge_slave_0\x00'}, 0x200001d8)
perf_event_open(&(0x7f0000aaa000)={0x0, 0x70, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439ed554fa07424ada75af1f02acc7edbcd7a071fb35331ce39c5a00000000")
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mq_open(&(0x7f00005a1ffb)='eth0\x00', 0x42, 0x2, &(0x7f0000000000)={0x7})
uselib(&(0x7f0000000380)='./file0\x00')
ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000200)=""/71)

19:16:48 executing program 3:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x40000080806, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x29, &(0x7f00000001c0)={0x0, 'bridge_slave_0\x00'}, 0x200001d8)
perf_event_open(&(0x7f0000aaa000)={0x0, 0x70, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439ed554fa07424ada75af1f02acc7edbcd7a071fb35331ce39c5a00000000")
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mq_open(&(0x7f00005a1ffb)='eth0\x00', 0x42, 0x2, &(0x7f0000000000)={0x7})
uselib(&(0x7f0000000380)='./file0\x00')
ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000200)=""/71)

19:16:48 executing program 5:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer\x00', 0x80000000000046, 0x0)
ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, &(0x7f0000000100)={0x0, 0x1})
r1 = syz_open_procfs(0x0, &(0x7f0000000080)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f79805854fa07424adee901d2da75af1f0200f5ab26d7a071fb35331ce39c5a")
sendfile(r0, r1, &(0x7f0000000000), 0x2b428a52)

19:16:48 executing program 0:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x4000100000008912, &(0x7f0000000280)="88f96234488dd25d766070")
pkey_mprotect(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x3000005, 0xffffffffffffffff)

19:16:48 executing program 4:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer\x00', 0x80000000000046, 0x0)
ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, &(0x7f0000000100)={0x0, 0x1})
r1 = syz_open_procfs(0x0, &(0x7f0000000080)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f79805854fa07424adee901d2da75af1f0200f5ab26d7a071fb35331ce39c5a")
sendfile(r0, r1, &(0x7f0000000000), 0x2b428a52)

19:16:48 executing program 2:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer\x00', 0x80000000000046, 0x0)
ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, &(0x7f0000000100)={0x0, 0x1})
r1 = syz_open_procfs(0x0, &(0x7f0000000080)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f79805854fa07424adee901d2da75af1f0200f5ab26d7a071fb35331ce39c5a")
sendfile(r0, r1, &(0x7f0000000000), 0x2b428a52)

19:16:48 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhost-vsock\x00', 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000140)={@my=0x0})
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_dgram(r1, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x0}, 0x10)

19:16:48 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000640), 0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x5, &(0x7f0000000000))
getitimer(0x3, &(0x7f00000000c0))

19:16:48 executing program 0:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x4000100000008912, &(0x7f0000000280)="88f96234488dd25d766070")
pkey_mprotect(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x3000005, 0xffffffffffffffff)

19:16:48 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000640), 0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x5, &(0x7f0000000000))
getitimer(0x3, &(0x7f00000000c0))

19:16:48 executing program 5:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer\x00', 0x80000000000046, 0x0)
ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, &(0x7f0000000100)={0x0, 0x1})
r1 = syz_open_procfs(0x0, &(0x7f0000000080)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f79805854fa07424adee901d2da75af1f0200f5ab26d7a071fb35331ce39c5a")
sendfile(r0, r1, &(0x7f0000000000), 0x2b428a52)

19:16:48 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000640), 0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x5, &(0x7f0000000000))
getitimer(0x3, &(0x7f00000000c0))

19:16:49 executing program 2:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer\x00', 0x80000000000046, 0x0)
ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, &(0x7f0000000100)={0x0, 0x1})
r1 = syz_open_procfs(0x0, &(0x7f0000000080)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f79805854fa07424adee901d2da75af1f0200f5ab26d7a071fb35331ce39c5a")
sendfile(r0, r1, &(0x7f0000000000), 0x2b428a52)

19:16:49 executing program 4:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000380)="617474722f63757272656e740099871411d7432e4cd1d0c3679f15b8cb27b7fcfedaffdfb67899fd7611a29de5a2a9897cbc43db1add207e2395f8e43a285a5487f4d39a3f4160448ebe8e43b67448ec2d6ebc0522cdcfc53ec697")
r1 = syz_open_procfs(0x0, &(0x7f0000000100)='net/ipv6_route\x00')
sendfile(r0, r1, &(0x7f0000000280), 0x2000000000000001)

19:16:49 executing program 0:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x4000100000008912, &(0x7f0000000280)="88f96234488dd25d766070")
pkey_mprotect(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x3000005, 0xffffffffffffffff)

19:16:49 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000640), 0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x5, &(0x7f0000000000))
getitimer(0x3, &(0x7f00000000c0))

19:16:49 executing program 5:
r0 = socket(0x1000000000000010, 0x80802, 0x0)
r1 = dup(r0)
write(r1, &(0x7f0000000100)="2400000058001f02ff07f4f9002304000a04f51108000100020100020800028001000000", 0x24)

[  106.393993] audit: type=1400 audit(1537730209.152:2): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=7264 comm="syz-executor4"
19:16:49 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x0, &(0x7f0000000000), 0x1000000000000040)
ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000001040)={0x0, 0x0, 0x2080, {}, [], "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", "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"})

[  106.560096] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details.
[  106.607866] ==================================================================
[  106.615435] BUG: KASAN: use-after-free in finish_task_switch+0x78e/0x900
[  106.622298] Read of size 8 at addr ffff8801a0918058 by task syz-executor3/7285
[  106.629664] 
[  106.631306] CPU: 0 PID: 7285 Comm: syz-executor3 Not tainted 4.19.0-rc4-next-20180921+ #77
[  106.639711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  106.649066] Call Trace:
[  106.651668]  dump_stack+0x1d3/0x2c4
[  106.655310]  ? dump_stack_print_info.cold.2+0x52/0x52
[  106.660504]  ? printk+0xa7/0xcf
[  106.663803]  ? kmsg_dump_rewind_nolock+0xe4/0xe4
[  106.668574]  print_address_description.cold.8+0x9/0x1ff
[  106.673951]  kasan_report.cold.9+0x242/0x309
[  106.678363]  ? finish_task_switch+0x78e/0x900
[  106.682873]  __asan_report_load8_noabort+0x14/0x20
[  106.687805]  finish_task_switch+0x78e/0x900
[  106.692130]  ? __switch_to_asm+0x40/0x70
[  106.696193]  ? __switch_to_asm+0x34/0x70
[  106.700260]  ? preempt_notifier_register+0x200/0x200
[  106.705369]  ? __switch_to_asm+0x34/0x70
[  106.709441]  ? __switch_to_asm+0x34/0x70
[  106.713519]  ? __switch_to_asm+0x40/0x70
[  106.717582]  ? __switch_to_asm+0x34/0x70
[  106.721646]  ? __switch_to_asm+0x40/0x70
[  106.725711]  ? __switch_to_asm+0x34/0x70
[  106.729774]  ? __switch_to_asm+0x40/0x70
[  106.733841]  ? __switch_to_asm+0x34/0x70
[  106.737921]  ? __switch_to_asm+0x34/0x70
[  106.741989]  ? __switch_to_asm+0x40/0x70
[  106.746055]  ? __switch_to_asm+0x34/0x70
[  106.750135]  ? __switch_to_asm+0x40/0x70
[  106.754202]  ? __switch_to_asm+0x34/0x70
[  106.758268]  ? __switch_to_asm+0x40/0x70
[  106.762338]  __schedule+0x874/0x1ed0
[  106.766065]  ? __sched_text_start+0x8/0x8
[  106.770232]  ? check_preemption_disabled+0x48/0x200
[  106.775269]  ? find_held_lock+0x36/0x1c0
[  106.779347]  ? try_to_wake_up+0x10a/0x12f0
[  106.783594]  ? _raw_spin_unlock_irqrestore+0x82/0xd0
[  106.788708]  ? _raw_spin_unlock_irqrestore+0x82/0xd0
[  106.793821]  ? lockdep_hardirqs_on+0x421/0x5c0
[  106.798409]  ? preempt_schedule+0x4d/0x60
[  106.802566]  preempt_schedule_common+0x1f/0xd0
[  106.807155]  preempt_schedule+0x4d/0x60
[  106.811139]  ___preempt_schedule+0x16/0x18
[  106.815416]  _raw_spin_unlock_irqrestore+0xbb/0xd0
[  106.820357]  try_to_wake_up+0x10a/0x12f0
[  106.824421]  ? __mutex_lock+0x85e/0x1700
[  106.828501]  ? migrate_swap_stop+0x930/0x930
[  106.832925]  ? find_held_lock+0x36/0x1c0
[  106.837028]  ? futex_wake+0x613/0x760
[  106.840868]  ? lock_downgrade+0x900/0x900
[  106.845034]  ? kasan_check_read+0x11/0x20
[  106.849191]  ? do_raw_spin_unlock+0xa7/0x2f0
[  106.853607]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  106.858197]  ? __unqueue_futex+0x2e0/0x2e0
[  106.862448]  wake_up_q+0xa4/0x100
[  106.865911]  futex_wake+0x61f/0x760
[  106.869557]  ? get_futex_key+0x21b0/0x21b0
[  106.873811]  ? rcu_lockdep_current_cpu_online+0x1a4/0x210
[  106.879356]  ? rcu_pm_notify+0xc0/0xc0
[  106.883266]  do_futex+0x2e4/0x26d0
[  106.886824]  ? kvm_vcpu_ioctl+0x2a1/0x1150
[  106.891081]  ? exit_robust_list+0x280/0x280
[  106.895412]  ? find_held_lock+0x36/0x1c0
[  106.899491]  ? __fget+0x4aa/0x740
[  106.902965]  ? lock_downgrade+0x900/0x900
[  106.907124]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  106.912062]  ? kasan_check_read+0x11/0x20
[  106.916214]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  106.921499]  ? rcu_softirq_qs+0x20/0x20
[  106.925504]  ? __fget+0x4d1/0x740
[  106.928986]  ? ksys_dup3+0x680/0x680
[  106.932709]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  106.937309]  ? kasan_check_write+0x14/0x20
[  106.941549]  ? do_raw_spin_lock+0xc1/0x200
[  106.945813]  ? _raw_spin_unlock+0x2c/0x50
[  106.949974]  ? kvm_vcpu_block+0x1020/0x1020
[  106.954313]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  106.959855]  ? do_vfs_ioctl+0x201/0x1720
[  106.963928]  ? __perf_event_task_sched_in+0x2a9/0xb60
[  106.969134]  ? ioctl_preallocate+0x300/0x300
[  106.973584]  ? __fget_light+0x2e9/0x430
[  106.977568]  ? fget_raw+0x20/0x20
[  106.981028]  ? graph_lock+0x170/0x170
[  106.984845]  __x64_sys_futex+0x472/0x6a0
[  106.988931]  ? do_futex+0x26d0/0x26d0
[  106.992738]  ? trace_hardirqs_on+0xbd/0x310
[  106.997602]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  107.003147]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  107.008531]  ? trace_hardirqs_off_caller+0x300/0x300
[  107.013642]  ? ksys_ioctl+0x81/0xd0
[  107.017288]  do_syscall_64+0x1b9/0x820
[  107.021188]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  107.026570]  ? syscall_return_slowpath+0x5e0/0x5e0
[  107.031522]  ? trace_hardirqs_off+0x310/0x310
[  107.036043]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  107.041068]  ? recalc_sigpending_tsk+0x180/0x180
[  107.045831]  ? kasan_check_write+0x14/0x20
[  107.050080]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  107.054937]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  107.060135] RIP: 0033:0x457679
[  107.063339] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  107.082303] RSP: 002b:00007fb7f70decf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  107.090028] RAX: ffffffffffffffda RBX: 000000000072bfa8 RCX: 0000000000457679
[  107.097303] RDX: 0000000000000016 RSI: 0000000000000081 RDI: 000000000072bfac
[  107.104575] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000
[  107.111940] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000072bfac
[  107.119238] R13: 00007ffe8841f7ef R14: 00007fb7f70df9c0 R15: 0000000000000001
[  107.126537] 
[  107.128167] Allocated by task 7283:
[  107.131799]  save_stack+0x43/0xd0
[  107.135254]  kasan_kmalloc+0xc7/0xe0
[  107.138972]  kasan_slab_alloc+0x12/0x20
[  107.142947]  kmem_cache_alloc+0x12e/0x730
[  107.147101]  vmx_create_vcpu+0xcf/0x25c0
[  107.151163]  kvm_arch_vcpu_create+0xe5/0x220
[  107.155590]  kvm_vm_ioctl+0x472/0x1d60
[  107.159487]  do_vfs_ioctl+0x1de/0x1720
[  107.163408]  ksys_ioctl+0xa9/0xd0
[  107.166864]  __x64_sys_ioctl+0x73/0xb0
[  107.170782]  do_syscall_64+0x1b9/0x820
[  107.174675]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  107.179855] 
[  107.181483] Freed by task 7282:
[  107.184770]  save_stack+0x43/0xd0
[  107.188235]  __kasan_slab_free+0x102/0x150
[  107.192474]  kasan_slab_free+0xe/0x10
[  107.196285]  kmem_cache_free+0x83/0x290
[  107.200271]  vmx_free_vcpu+0x26b/0x300
[  107.204164]  kvm_arch_destroy_vm+0x365/0x7c0
[  107.208577]  kvm_put_kvm+0x6c8/0xff0
[  107.212303]  kvm_vcpu_release+0x7b/0xa0
[  107.216284]  __fput+0x3bc/0xa70
[  107.219565]  ____fput+0x15/0x20
[  107.222851]  task_work_run+0x1e8/0x2a0
[  107.226748]  exit_to_usermode_loop+0x318/0x380
[  107.231340]  do_syscall_64+0x6be/0x820
[  107.235234]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  107.240418] 
[  107.242050] The buggy address belongs to the object at ffff8801a0918040
[  107.242050]  which belongs to the cache kvm_vcpu of size 23872
[  107.254651] The buggy address is located 24 bytes inside of
[  107.254651]  23872-byte region [ffff8801a0918040, ffff8801a091dd80)
[  107.266616] The buggy address belongs to the page:
[  107.271658] page:ffffea0006824600 count:1 mapcount:0 mapping:ffff8801d59f8e00 index:0x0 compound_mapcount: 0
[  107.281648] flags: 0x2fffc0000010200(slab|head)
[  107.286335] raw: 02fffc0000010200 ffff8801d59f2948 ffff8801d59f2948 ffff8801d59f8e00
[  107.294236] raw: 0000000000000000 ffff8801a0918040 0000000100000001 0000000000000000
[  107.302125] page dumped because: kasan: bad access detected
[  107.307839] 
[  107.309464] Memory state around the buggy address:
[  107.314398]  ffff8801a0917f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  107.321764]  ffff8801a0917f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  107.329131] >ffff8801a0918000: fc fc fc fc fc fc fc fc fb fb fb fb fb fb fb fb
[  107.336487]                                                     ^
[  107.342725]  ffff8801a0918080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  107.350092]  ffff8801a0918100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  107.357462] ==================================================================
[  107.364824] Disabling lock debugging due to kernel taint
[  107.371604] Kernel panic - not syncing: panic_on_warn set ...
[  107.371604] 
[  107.378989] CPU: 0 PID: 7285 Comm: syz-executor3 Tainted: G    B             4.19.0-rc4-next-20180921+ #77
[  107.388768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  107.398157] Call Trace:
[  107.400739]  dump_stack+0x1d3/0x2c4
[  107.404369]  ? dump_stack_print_info.cold.2+0x52/0x52
[  107.409567]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  107.414327]  panic+0x238/0x4e7
[  107.417511]  ? add_taint.cold.5+0x16/0x16
[  107.421674]  ? trace_hardirqs_on+0xb4/0x310
[  107.425985]  ? trace_hardirqs_on+0xb4/0x310
[  107.430304]  kasan_end_report+0x47/0x4f
[  107.434283]  kasan_report.cold.9+0x76/0x309
[  107.438619]  ? finish_task_switch+0x78e/0x900
[  107.443104]  __asan_report_load8_noabort+0x14/0x20
[  107.448022]  finish_task_switch+0x78e/0x900
[  107.452357]  ? __switch_to_asm+0x40/0x70
[  107.456419]  ? __switch_to_asm+0x34/0x70
[  107.460467]  ? preempt_notifier_register+0x200/0x200
[  107.465560]  ? __switch_to_asm+0x34/0x70
[  107.469637]  ? __switch_to_asm+0x34/0x70
[  107.473687]  ? __switch_to_asm+0x40/0x70
[  107.477753]  ? __switch_to_asm+0x34/0x70
[  107.481820]  ? __switch_to_asm+0x40/0x70
[  107.485868]  ? __switch_to_asm+0x34/0x70
[  107.489943]  ? __switch_to_asm+0x40/0x70
[  107.493993]  ? __switch_to_asm+0x34/0x70
[  107.498044]  ? __switch_to_asm+0x34/0x70
[  107.502112]  ? __switch_to_asm+0x40/0x70
[  107.506160]  ? __switch_to_asm+0x34/0x70
[  107.510209]  ? __switch_to_asm+0x40/0x70
[  107.514257]  ? __switch_to_asm+0x34/0x70
[  107.518306]  ? __switch_to_asm+0x40/0x70
[  107.522362]  __schedule+0x874/0x1ed0
[  107.526079]  ? __sched_text_start+0x8/0x8
[  107.530228]  ? check_preemption_disabled+0x48/0x200
[  107.535238]  ? find_held_lock+0x36/0x1c0
[  107.539298]  ? try_to_wake_up+0x10a/0x12f0
[  107.543534]  ? _raw_spin_unlock_irqrestore+0x82/0xd0
[  107.548623]  ? _raw_spin_unlock_irqrestore+0x82/0xd0
[  107.553717]  ? lockdep_hardirqs_on+0x421/0x5c0
[  107.558289]  ? preempt_schedule+0x4d/0x60
[  107.562433]  preempt_schedule_common+0x1f/0xd0
[  107.567010]  preempt_schedule+0x4d/0x60
[  107.570979]  ___preempt_schedule+0x16/0x18
[  107.575205]  _raw_spin_unlock_irqrestore+0xbb/0xd0
[  107.580123]  try_to_wake_up+0x10a/0x12f0
[  107.584169]  ? __mutex_lock+0x85e/0x1700
[  107.588244]  ? migrate_swap_stop+0x930/0x930
[  107.592640]  ? find_held_lock+0x36/0x1c0
[  107.596692]  ? futex_wake+0x613/0x760
[  107.600483]  ? lock_downgrade+0x900/0x900
[  107.604627]  ? kasan_check_read+0x11/0x20
[  107.608765]  ? do_raw_spin_unlock+0xa7/0x2f0
[  107.613159]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  107.617732]  ? __unqueue_futex+0x2e0/0x2e0
[  107.621985]  wake_up_q+0xa4/0x100
[  107.625433]  futex_wake+0x61f/0x760
[  107.629053]  ? get_futex_key+0x21b0/0x21b0
[  107.633282]  ? rcu_lockdep_current_cpu_online+0x1a4/0x210
[  107.638822]  ? rcu_pm_notify+0xc0/0xc0
[  107.642702]  do_futex+0x2e4/0x26d0
[  107.646235]  ? kvm_vcpu_ioctl+0x2a1/0x1150
[  107.650479]  ? exit_robust_list+0x280/0x280
[  107.654810]  ? find_held_lock+0x36/0x1c0
[  107.658862]  ? __fget+0x4aa/0x740
[  107.662304]  ? lock_downgrade+0x900/0x900
[  107.666442]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  107.671358]  ? kasan_check_read+0x11/0x20
[  107.675493]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  107.680765]  ? rcu_softirq_qs+0x20/0x20
[  107.684731]  ? __fget+0x4d1/0x740
[  107.688190]  ? ksys_dup3+0x680/0x680
[  107.691889]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  107.696489]  ? kasan_check_write+0x14/0x20
[  107.700724]  ? do_raw_spin_lock+0xc1/0x200
[  107.704950]  ? _raw_spin_unlock+0x2c/0x50
[  107.709091]  ? kvm_vcpu_block+0x1020/0x1020
[  107.713408]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  107.718934]  ? do_vfs_ioctl+0x201/0x1720
[  107.722985]  ? __perf_event_task_sched_in+0x2a9/0xb60
[  107.728165]  ? ioctl_preallocate+0x300/0x300
[  107.732581]  ? __fget_light+0x2e9/0x430
[  107.736569]  ? fget_raw+0x20/0x20
[  107.740038]  ? graph_lock+0x170/0x170
[  107.743861]  __x64_sys_futex+0x472/0x6a0
[  107.747935]  ? do_futex+0x26d0/0x26d0
[  107.751750]  ? trace_hardirqs_on+0xbd/0x310
[  107.755900] kobject: 'loop1' (000000003b0d1d09): kobject_uevent_env
19:16:50 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhost-vsock\x00', 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000140)={@my=0x0})
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_dgram(r1, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x0}, 0x10)

19:16:50 executing program 4:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000380)="617474722f63757272656e740099871411d7432e4cd1d0c3679f15b8cb27b7fcfedaffdfb67899fd7611a29de5a2a9897cbc43db1add207e2395f8e43a285a5487f4d39a3f4160448ebe8e43b67448ec2d6ebc0522cdcfc53ec697")
r1 = syz_open_procfs(0x0, &(0x7f0000000100)='net/ipv6_route\x00')
sendfile(r0, r1, &(0x7f0000000280), 0x2000000000000001)

19:16:50 executing program 0:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x4000100000008912, &(0x7f0000000280)="88f96234488dd25d766070")
pkey_mprotect(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x3000005, 0xffffffffffffffff)

19:16:50 executing program 5:
r0 = socket(0x1000000000000010, 0x80802, 0x0)
r1 = dup(r0)
write(r1, &(0x7f0000000100)="2400000058001f02ff07f4f9002304000a04f51108000100020100020800028001000000", 0x24)

19:16:50 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r1, 0x800c6613, &(0x7f0000000200)={0x0, @aes128, 0x2, "9f821cb522602d76"})
timerfd_settime(r1, 0x1, &(0x7f0000000100)={{0x0, 0x1c9c380}}, &(0x7f0000000280))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text16={0x10, &(0x7f0000000180)="2e65f32efe0a6766c7442400008000006766c7442402000000006766c744240600000000670f011c24b866000f00d066b88044a2b20f23c80f21f866350400d0000f23f80f0766b80500000066b9080000000f01c10f0766b8010000000f01c10f01dfb835008ee0", 0x68}], 0x1, 0x0, &(0x7f00000000c0), 0x0)
pkey_alloc(0x0, 0x100000)
ioctl$KVM_GET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000580)=ANY=[])
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe4000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000400)="66b9800000c00f326635000400000f300fc71e4425749e66b8eab9ffdd0f23d80f21f86635400000100f23f866b8ef6700000f23c00f21f8663501000f000f23f866b9860b000066b80300000066ba000000000f306666660fd5ef66b8ca9300000f23d00f21f86635100000010f23f8ba6100ec66b80d0000000f23d00f21f866351000000e0f23f8", 0x89}], 0x1, 0x0, &(0x7f0000000180), 0x0)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2f, &(0x7f00000006c0)={0x7, {{0xa, 0x4e24, 0x14, @mcast1, 0x3}}, {{0xa, 0x4e24, 0x81, @ipv4={[], [], @local}, 0xc891}}}, 0x108)
mlock(&(0x7f0000ff1000/0x2000)=nil, 0x2000)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000680)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
setxattr$trusted_overlay_origin(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='trusted.overlay.origin\x00', &(0x7f0000000340)='y\x00', 0x2, 0x0)
clone(0x0, &(0x7f0000000240), &(0x7f00000001c0), &(0x7f0000000140), &(0x7f0000000200))

[  107.756084]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  107.762530] kobject: 'loop1' (000000003b0d1d09): fill_kobj_path: path = '/devices/virtual/block/loop1'
[  107.768038]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  107.768057]  ? trace_hardirqs_off_caller+0x300/0x300
[  107.768075]  ? ksys_ioctl+0x81/0xd0
[  107.768098]  do_syscall_64+0x1b9/0x820
[  107.795511]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  107.800945]  ? syscall_return_slowpath+0x5e0/0x5e0
[  107.805868]  ? trace_hardirqs_off+0x310/0x310
19:16:50 executing program 5:
r0 = socket(0x1000000000000010, 0x80802, 0x0)
r1 = dup(r0)
write(r1, &(0x7f0000000100)="2400000058001f02ff07f4f9002304000a04f51108000100020100020800028001000000", 0x24)

[  107.810363]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  107.815389]  ? recalc_sigpending_tsk+0x180/0x180
[  107.820164]  ? kasan_check_write+0x14/0x20
[  107.824416]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  107.829278]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  107.834482] RIP: 0033:0x457679
[  107.837698] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  107.856611] RSP: 002b:00007fb7f70decf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  107.858345] kobject: 'loop5' (000000001d3cdc04): kobject_uevent_env
[  107.864337] RAX: ffffffffffffffda RBX: 000000000072bfa8 RCX: 0000000000457679
[  107.864346] RDX: 0000000000000016 RSI: 0000000000000081 RDI: 000000000072bfac
[  107.864355] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000
[  107.864372] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000072bfac
[  107.887764] kobject: 'loop5' (000000001d3cdc04): fill_kobj_path: path = '/devices/virtual/block/loop5'
[  107.892604] R13: 00007ffe8841f7ef R14: 00007fb7f70df9c0 R15: 0000000000000001
[  107.893600] Kernel Offset: disabled
[  107.921151] Rebooting in 86400 seconds..