[....] Starting OpenBSD Secure Shell server: sshd[ 48.445918] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. [ 48.786303] audit: type=1800 audit(1538957623.833:29): pid=5855 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 [ 48.806027] audit: type=1800 audit(1538957623.833:30): pid=5855 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 51.680141] random: sshd: uninitialized urandom read (32 bytes read) [ 52.105807] random: sshd: uninitialized urandom read (32 bytes read) [ 53.877049] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.0.84' (ECDSA) to the list of known hosts. [ 59.678518] random: sshd: uninitialized urandom read (32 bytes read) 2018/10/08 00:13:56 fuzzer started [ 63.953588] random: cc1: uninitialized urandom read (8 bytes read) 2018/10/08 00:14:01 dialing manager at 10.128.0.26:36867 2018/10/08 00:14:01 syscalls: 1 2018/10/08 00:14:01 code coverage: enabled 2018/10/08 00:14:01 comparison tracing: CONFIG_KCOV_ENABLE_COMPARISONS is not enabled 2018/10/08 00:14:01 setuid sandbox: enabled 2018/10/08 00:14:01 namespace sandbox: enabled 2018/10/08 00:14:01 Android sandbox: /sys/fs/selinux/policy does not exist 2018/10/08 00:14:01 fault injection: enabled 2018/10/08 00:14:01 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2018/10/08 00:14:01 net packed injection: enabled 2018/10/08 00:14:01 net device setup: enabled [ 68.487306] random: crng init done 00:15:38 executing program 0: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070") r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000e5b000)={0x2, 0x10000004e20, @multicast1}, 0x10) connect$inet(r1, &(0x7f0000ccb000)={0x2, 0x4e20}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1, 0x3, &(0x7f00009ff000)=ANY=[@ANYBLOB="180000000300000000000000000000819500000000000000"], &(0x7f00002bf000)='syzkaller\x00', 0x1, 0xb7, &(0x7f0000000440)=""/183}, 0x48) r3 = socket$kcm(0x29, 0x1000000000002, 0x0) ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x89e0, &(0x7f000031aff8)={r1, r2}) ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x89e2, &(0x7f0000001640)={0xffffffffffffffff}) sendmsg$IPVS_CMD_GET_CONFIG(r4, &(0x7f0000000400)={&(0x7f0000000280), 0xc, &(0x7f00000003c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\r\x00\x00\x00'], 0x1}}, 0x0) recvmmsg(r4, &(0x7f0000004540)=[{{0x0, 0x0, &(0x7f0000003c80), 0x0, &(0x7f0000003d00)=""/205, 0xcd}}, {{0x0, 0x0, &(0x7f0000001580)=[{&(0x7f0000000040)=""/129}, {&(0x7f0000000100)=""/99}, {&(0x7f0000000180)=""/239}, {&(0x7f0000000500)=""/98}, {&(0x7f0000000580)=""/4096}], 0x0, &(0x7f0000004480)=""/178, 0xb2}}], 0x400000000000253, 0x0, 0x0) [ 164.143217] IPVS: ftp: loaded support on port[0] = 21 [ 166.180869] bridge0: port 1(bridge_slave_0) entered blocking state [ 166.187463] bridge0: port 1(bridge_slave_0) entered disabled state [ 166.195802] device bridge_slave_0 entered promiscuous mode [ 166.333372] bridge0: port 2(bridge_slave_1) entered blocking state [ 166.339821] bridge0: port 2(bridge_slave_1) entered disabled state [ 166.348127] device bridge_slave_1 entered promiscuous mode [ 166.470866] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 166.593985] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready 00:15:42 executing program 1: r0 = socket$inet6(0xa, 0x100000002, 0x0) sendto$inet6(r0, &(0x7f0000000300), 0x0, 0x0, &(0x7f00000000c0)={0xa, 0x4e23, 0x0, @ipv4={[], [], @multicast2}}, 0x1c) [ 166.965791] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 167.093331] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 167.706467] IPVS: ftp: loaded support on port[0] = 21 [ 168.058227] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 168.066200] team0: Port device team_slave_0 added [ 168.326346] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 168.334427] team0: Port device team_slave_1 added [ 168.519275] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 168.724849] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 168.731985] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 168.740566] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 168.902419] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 168.909954] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 168.918958] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 169.068762] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 169.076516] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 169.085375] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 170.939121] bridge0: port 1(bridge_slave_0) entered blocking state [ 170.945671] bridge0: port 1(bridge_slave_0) entered disabled state [ 170.954433] device bridge_slave_0 entered promiscuous mode [ 171.079401] bridge0: port 2(bridge_slave_1) entered blocking state [ 171.085963] bridge0: port 2(bridge_slave_1) entered disabled state [ 171.094309] device bridge_slave_1 entered promiscuous mode [ 171.253877] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 171.374053] bridge0: port 2(bridge_slave_1) entered blocking state [ 171.381194] bridge0: port 2(bridge_slave_1) entered forwarding state [ 171.388211] bridge0: port 1(bridge_slave_0) entered blocking state [ 171.394731] bridge0: port 1(bridge_slave_0) entered forwarding state [ 171.403497] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 171.491114] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready 00:15:46 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_open_dev$mice(&(0x7f00000000c0)='/dev/input/mice\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000)=0x17, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x0, 0x0) ioctl$TUNGETVNETHDRSZ(r3, 0x800454d7, &(0x7f0000000080)) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) exit(0xc222) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 172.102056] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 172.190135] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 172.453863] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 172.688488] IPVS: ftp: loaded support on port[0] = 21 [ 172.775577] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 172.782917] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 173.033301] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 173.041323] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 173.772126] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 173.779974] team0: Port device team_slave_0 added [ 174.047228] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 174.055278] team0: Port device team_slave_1 added [ 174.308096] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 174.315318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 174.324189] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 174.587965] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 174.595153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 174.603892] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 174.799659] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 174.807822] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 174.816526] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 175.087263] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 175.094896] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 175.103764] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 177.005597] bridge0: port 1(bridge_slave_0) entered blocking state [ 177.012216] bridge0: port 1(bridge_slave_0) entered disabled state [ 177.020407] device bridge_slave_0 entered promiscuous mode [ 177.323823] bridge0: port 2(bridge_slave_1) entered blocking state [ 177.330285] bridge0: port 2(bridge_slave_1) entered disabled state [ 177.338808] device bridge_slave_1 entered promiscuous mode [ 177.581098] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 177.785279] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 178.175132] bridge0: port 2(bridge_slave_1) entered blocking state [ 178.181662] bridge0: port 2(bridge_slave_1) entered forwarding state [ 178.188707] bridge0: port 1(bridge_slave_0) entered blocking state [ 178.195269] bridge0: port 1(bridge_slave_0) entered forwarding state [ 178.203747] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 178.232407] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 178.597623] bond0: Enslaving bond_slave_0 as an active interface with an up link 00:15:53 executing program 3: clone(0x20002100, 0x0, 0xfffffffffffffffe, &(0x7f0000000100), 0xffffffffffffffff) sched_setscheduler(0x0, 0x5, &(0x7f0000000000)) bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x1, 0x251, &(0x7f0000000040)=@raw=[@jmp], &(0x7f0000003ff6)='syzkaller\x00', 0x1, 0xfffffffffffffe0f, &(0x7f000000cf3d)=""/195}, 0x48) [ 178.843488] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 179.135195] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 179.144130] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 179.318810] ip (6339) used greatest stack depth: 53088 bytes left [ 179.449650] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 179.456928] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 179.923736] IPVS: ftp: loaded support on port[0] = 21 [ 180.368096] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 180.376237] team0: Port device team_slave_0 added [ 180.754032] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 180.762294] team0: Port device team_slave_1 added [ 181.154594] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 181.162030] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 181.170736] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 181.507982] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 181.515186] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 181.523979] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 181.835691] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 181.843326] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 181.852260] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 181.921238] 8021q: adding VLAN 0 to HW filter on device bond0 [ 182.109942] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 182.117781] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 182.126520] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 183.117226] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 184.463615] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 184.470063] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 184.478117] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 185.001047] bridge0: port 1(bridge_slave_0) entered blocking state [ 185.007768] bridge0: port 1(bridge_slave_0) entered disabled state [ 185.016310] device bridge_slave_0 entered promiscuous mode [ 185.359151] bridge0: port 2(bridge_slave_1) entered blocking state [ 185.365865] bridge0: port 2(bridge_slave_1) entered disabled state [ 185.374239] device bridge_slave_1 entered promiscuous mode [ 185.545953] bridge0: port 2(bridge_slave_1) entered blocking state [ 185.552519] bridge0: port 2(bridge_slave_1) entered forwarding state [ 185.559426] bridge0: port 1(bridge_slave_0) entered blocking state [ 185.566028] bridge0: port 1(bridge_slave_0) entered forwarding state [ 185.574622] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 185.688503] 8021q: adding VLAN 0 to HW filter on device team0 [ 185.735685] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 186.084918] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 186.583193] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 186.984032] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 187.296839] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 187.627419] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 187.634587] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready 00:16:02 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380)='/dev/ptmx\x00', 0x0, 0x0) read(r0, &(0x7f00000000c0)=""/88, 0x58) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)) clone(0x3102001ffe, 0x0, 0xfffffffffffffffe, &(0x7f0000000080), 0xffffffffffffffff) ioctl$TIOCSLCKTRMIOS(r0, 0x5457, &(0x7f0000000180)) r1 = gettid() ppoll(&(0x7f00000002c0)=[{r0}], 0x1, &(0x7f0000000300), &(0x7f0000000340), 0x8) tkill(r1, 0xd) [ 188.034756] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 188.042683] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 189.046113] IPVS: ftp: loaded support on port[0] = 21 [ 189.097375] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 189.105321] team0: Port device team_slave_0 added [ 189.482142] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 189.490065] team0: Port device team_slave_1 added [ 189.835352] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 189.842634] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 189.851170] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 190.211003] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 190.218365] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 190.227081] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 190.634030] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 190.641587] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 190.650528] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 191.011457] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 191.019262] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 191.028161] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 192.138877] 8021q: adding VLAN 0 to HW filter on device bond0 [ 193.554688] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 194.079466] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 194.757364] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 194.764237] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 194.772206] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready 00:16:10 executing program 0: r0 = socket$nl_generic(0xa, 0x5, 0x84) ioctl$sock_SIOCETHTOOL(r0, 0x89f0, &(0x7f0000000000)={"62726964676530000000008000", &(0x7f0000000100)=@ethtool_cmd={0x7}}) [ 195.183590] bridge0: port 2(bridge_slave_1) entered blocking state [ 195.190052] bridge0: port 2(bridge_slave_1) entered forwarding state [ 195.197027] bridge0: port 1(bridge_slave_0) entered blocking state [ 195.203519] bridge0: port 1(bridge_slave_0) entered forwarding state [ 195.212245] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 195.445567] bridge0: port 1(bridge_slave_0) entered blocking state [ 195.452260] bridge0: port 1(bridge_slave_0) entered disabled state [ 195.460423] device bridge_slave_0 entered promiscuous mode 00:16:10 executing program 0: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) memfd_create(&(0x7f0000000040)='nodevself\x00', 0x2) getsockopt$sock_buf(r0, 0x1, 0x37, 0xfffffffffffffffe, &(0x7f0000000000)=0xcc44fddd54be8e7d) [ 195.622775] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 195.891124] bridge0: port 2(bridge_slave_1) entered blocking state [ 195.897851] bridge0: port 2(bridge_slave_1) entered disabled state [ 195.906151] device bridge_slave_1 entered promiscuous mode 00:16:11 executing program 0: r0 = gettid() rt_sigprocmask(0x0, &(0x7f00000000c0)={0x800000000040}, 0x0, 0x7722a594168f24e5) timer_create(0x3, &(0x7f0000044000)={0x0, 0x14, 0x4, @tid=r0}, &(0x7f0000044000)=0x0) timer_settime(0x0, 0x1, &(0x7f000002e000)={{}, {0x0, 0x9}}, &(0x7f0000000040)) timer_settime(r1, 0x1, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000000000)) [ 196.211933] 8021q: adding VLAN 0 to HW filter on device team0 [ 196.266680] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 196.566717] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 197.509278] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 197.836628] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 198.177851] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 198.185517] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 198.467659] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 198.475233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready 00:16:13 executing program 5: r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x100, 0x0) ioctl$KVM_SIGNAL_MSI(r0, 0x4020aea5, &(0x7f0000000040)={0xf005, 0x1, 0x10001, 0x0, 0x6}) write$P9_RATTACH(r0, &(0x7f0000000080)={0x14, 0x69, 0x1, {0x0, 0x1, 0x3}}, 0x14) fadvise64(r0, 0x5e, 0x7, 0x0) ioctl$TIOCCBRK(r0, 0x5428) ioctl$KVM_REINJECT_CONTROL(r0, 0xae71, &(0x7f00000000c0)={0x2}) write$P9_RCLUNK(r0, &(0x7f0000000100)={0x7, 0x79, 0x1}, 0x7) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snapshot\x00', 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x21) r2 = gettid() ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000180)={[], 0x9, 0x9, 0x5, 0x8, 0x9, r2}) getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f0000000200)={0x4, [0x3810e47f, 0x9, 0x4b, 0x400]}, &(0x7f0000000240)=0xc) write$cgroup_pid(r1, &(0x7f0000000280)=r2, 0x12) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f00000002c0)={0x0, 0xfff}, &(0x7f0000000300)=0x8) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000340)={r3, 0x81}, &(0x7f0000000380)=0x8) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000400)='nbd\x00') sendmsg$NBD_CMD_RECONFIGURE(r0, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x38, r4, 0xe20, 0x70bd25, 0x25dfdbff, {}, [@NBD_ATTR_TIMEOUT={0xc, 0x4, 0x9}, @NBD_ATTR_SOCKETS={0xc, 0x7, [{0x8, 0x1, r0}]}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x400}]}, 0x38}, 0x1, 0x0, 0x0, 0x80}, 0x20000800) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=0xc) sendmsg$nl_netfilter(r0, &(0x7f00000027c0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000002780)={&(0x7f00000005c0)={0x2188, 0x4, 0x7, 0x800, 0x70bd2b, 0x25dfdbfb, {0x5, 0x0, 0x9}, [@nested={0x20bc, 0x3b, [@typed={0x4, 0x26}, @typed={0x8, 0x41, @pid=r2}, @typed={0x14, 0x85, @ipv6=@dev={0xfe, 0x80, [], 0x15}}, @generic="ea1f18af8d64f137221f225dcf977b331aefe5bbcefbe66da6c5ce2d5bf2fc0bf5ae74f44b1c3d5fc1ced5335c0504d882dbfa38846736932564fdea6e06b980f6779d5beb04b312212986cf7bf62e6bfff7c8c72704af8371887327945f70336ac9062536442c44bf552b4147267678b61afd829a3facef3494c2962ccd18eabdbcf0b1cd6081ed03ddcff92d4f748b97e00b702d0ea88ef7ad48c4760b9d80c9073cd8eebdee4e710fc5f44b690456220171406f981e5490810d3e68dd1d9008218702256f486fd234f5bf6c6c711addce26fdff94781e71dddbe0b6ca8308a741e0507f6394ac2cb200d26a13a1aebcab9646166cf83ec9d55a2c8f4d8e94926b35722450cd566a8734aea25294257cb8ede5b76562b97f28ec11529c4b4653995da57ba26b492ff0ff4275d1407461f9aa82f762a768c14d2d8f5cf0785664e0a014cff6af7021e65fcceacd50a58039e5aad897531fed9e810888aaff4d8163d1dddb1e12119c0238090357c899f50bafb64fffc6cd99f349aaad84fd0c16911535ce350031fe9c028852e7b8a80804edcf8622b5e9e0e9790ef12ac1243e4d1ee8168d89c0cfc6d604ccb634116ae9f8d1dbf7aa7ef7d4b10eb7636e470e0a0867938a7f35a81d3de938af29ad83923d136f542074cd8ba017962735c8af17584803927fb547b1baa8c38f256827ad5bdb7aa9010ee04e19539f1ca83ff73ca5cb77ff25d45220a67b948e271ec8aee43527814bd2a594d2c8f845fa77d60e6e29626fb9dff72c61589c906bb5278705bbaec88d1a35fa0ec0b58617a9f48124a15877fa07f5a944c035addda4818f8882a302e6107ba0044416acf23ac499e8730fc9ce763e0ffb51a003de193d661f9fd9c28bb8d76a2f94fb0062be486a00fbd38c5e879c6e26a6afb25d7fe811ca999c04c92596fc86708f0b67ae1fa560d9d43a34d71267b9f5052096c01b061545ecc611fb4843ed6b643cea9fda710f2f16083c6ad32316f8342ddb25610b8ca2a74079b3c96bb46ab7509ae66973440a73f04224519c85ce670bb2cca8ba888656ab2177638f7631b4600fef706485499969f7721ea54265bca473cb41687c15639653b6565f5f0f58b21e303f4fb10aa46ff11d069a533f356960d845fd0c6dbeda8d2abcd20d18221f9912f707d8851f4374bacd35cc78d35634d4548bc83a0e50b5c3dd50d6d30ec4416f10b701acd371595098b04fa797aad16ef2b27fa0d871834e9f2b214dedec4932b39b0b9a42440bbba9d7ada5663b75c4b7f2ecf85d7af420d5c9fd83962809c15f882699904c75ea0cf5c8703edfb1e8e705503871275921769470429f046d1724ece4f064fed7adfd814cf1c22cd6dfab8a285e2edcd6d55d1dcdc37d313af2b677405ad8a771784fcbf4065170f8a2eb5643ca2c29da220ecbab77f92930f019c6a29e14e06cf13d3a9342e7e9727ad96835614143e7ef47d0b4f9c82beb81d549d0109fe2cbfcd3934997bf815fa2c27c63205ec5e4bea9a7b2ea666a310fef9d4510003d90d5dc767bd0a74888c0c052e3522e21515508e7886b957c962b10fa563f39332408e383cb6b6236e20a1ef4ec282e1e43fee46a7847ec9122a87d61dce10f91517a7b0184bedd58a271bab956ba62cf5f40b5b797632b7ee56a45db94456f5782eaca1989333073cc8a50e80bca9c775df08b1139de1c301a7681d0785f01409e983171e510457e1eab7d448cbdb3efb7af182d1547f225ea1e4aac85fbeb8d64724384c47d76dab122048110dd5fa1cc0774d63c8312b91e18474c3017046101ed8ac8c0b09790ea4bf72e0c8f6525dcb4342ba5f77fd1884debe8984b6a7dadbb125ec9e927a4504d8d61ec77501996946788fd01e75968c9160786d711a0e9365b2e7519f61837daca78249cbb21b4f36452a72f31b737f825469c7cbb269470fa4a4c45100847d7948d0fbad58dea7b684392241d8166215acffe91981f3c499838a9aeb14c6a67a58acf9abb9dbc0d4c8819a6de776b9979923e76fdd78a2d7581306bb95f5239f50d16a295251a5f3ba0ed98f772e3dc425194df3bf5c7f5a0dab8d189ee9f0c29007151d1858e3dc452bfd2fc8fb1d14689decf02beaa6086c6d27c8367e9a21037a4e376dfae393c41085aa57f9b11ab2b1aa12ad48bd9fc3c477b63c3a1061d9884a13f5e827781fa0a60b505a70f38dc1f708e3dd3d936801c682455b133d71447c72740530bd9e021461b629707c4cebbc41fc291e5605b8e4e71dffc54205ad1b301ebc3f80106a66f43260951a06d16387d2812f22ef8958f18a43211615aa7dec0a316dc40af441470fb8a1c21649daf9da189bd0eb2da51a67d24299dbdf05d567ddee6f04b231019e35c5905eb9acfd84b739884c858c1ef66372bec5ce56d984f2c9214feecc5e8508b62334c4d50d5ba2dfee2060b4fceda7c02d12e7ac2fd7ef4ac601922a463ac961d6e05e181e322ff0a3f48119d2b9e006b8b9d43419f62ff5f181d29fefa68d12f7ea47c133af8ca7852c57538ce720aecf9b6f5b71887c416ea361b64ab7d3a22d795f886e1ddf7b3e9660a4fded3b02553c59ad26045eceb064bc70e8d0f74fbdf5d0f32548cb3978f9d5e9721cd849b88d4ab1b65ecc905bc9ddfa10890f843a05071d61402d84ec0c1b73dff2d720180adfc7c5e59dd461dd3f01461a1f11ef9f9a6125c6e5e293a09986cb9c148187e0edbeec83336f1450bb3c2ab0e473a30249501fe40b339156664192850be26d12a8756f18c3fd7eb2cf78a79265e5c7189d9a0932cbf27dc6143fdce30281fef420623dec0359641752b29d035fbd6d2d0c013e23ac88de50ac7d4f1cd133ca73d9f9d1f9f304c9258efef14963879fdc9134118298f74e04889e35e4ca1c63d9547123955580519405e6dabb24f4c3e8e9531ace07c65f1a208a5524b8a632348e6c90b701bbb06a83907df8fa4f7af31949d910ba672b1d9c84a7677b184328340861203c5efd997f70417bcde30c7a376d5eff1c5c64203184264a99615dc25f1b135967a5a48cb226c43a63cabdd9f1d8bb9313313c7393c156a12d4c93240c0ce53af7937095c50b4ce50c80ce63ad2fab05919964dd45a25a2a763679402d796edc239b440bbd5a74032a15e93e863057e037e6dd080bc102eab37bfb719679944aa0900d62075b3f8594d4a838df2a4c4677d44481cc6d1a7f55e9994c22d1690c020b8d8081ae0b74d261927410d77e99238b514eb1ade554cc224d6e237ab9044bba473cd0e7133e9afd4128be51dcc67543b0c248f2d4727b4207bb85193b0a18cdc7e13476b51e968f86804c9c9ec0b7a5a03184664a6e0fb2f94f37334ff906abe90dbd8c2b247a63029ae977b7fdd7b18b54ed0c67621a9d8e7bd5a8e5db407affd5e68c4bf9fcc6daad4abd28f2c4a64c1531a013ff4cc907078727dd1a51d3a5f8e48c924de0db4264273155a064609d568f4718153ec51e1925538e77a5fd6342c7562b59aeb03b706d8eb99c610f976f8f9d4d5b233210c9064c15e5b4a9b41c0941db11fca31b95d2cc307a3d3430a6f8c2f744071cb585f7bbad7fa59c350fcde72e0ee2f8ebd29c42c5743fa351e3c2243317673f843af97fe04286a23e20c759405b4a934aeb083cbd8506c9805b6cadca25b089f1719aec3dd02fd96b0374e606242fe86f13bcb33ce782e71e646e838386525103608a2e8691c570cb3f2075afbde59f8f9a8348b5d8f054b061abe360f540ee3c571c1d1d1d7e2945813bb7b78c56de7667cee076ed919f8520503bb104a02efb6919db742abe7510cfa5bfa91e4eb7cc2051504887718cf1327d9be40d663403867c8851820f61fa0cc6c0b2e5f83b3f457684429ac41a1da4c6eda0c4cafc728a9b80e82142058c499653c7b115d11c1291b1ef3916e12d57dd5ff2f86e9fc72792c7f7381dbdda05b235b7f3d4d58052b5a2b13f191a698aa2180194355c49095c0b1ee90f83bf0f3e46275d2d407e1a6b4160183963aa39e1ca4403d74604d1549c775e15042b87b6ac336efa58b2c09bd732b5b4745b27709f555c0dc93491f515bf4ee31067a0126a0865f7e4d5243808b7ba1d26cf7ced05da6bd0330db3154c5d018337819148bf21fbf28206fab8e8e382512efb9e84003a32ce6e8a0b7109fa8fbb6970c997055a479426bf47f5b8ac3bd06eb69525f01da8c14806f35391594f336a8aaebe98c05e7068cefd0e347639338ab6e7193e22cd8386a704fe6c5f8315b3e0042112e7ad8b95a9bd47b473acd78e1acdf9aa53048a2cd8a34a7ecc311cbcda01e47fadd3d3b103ee58e8686b98ab04594cca4ae6b8e2eea5b6341a673c7c5d20e0dd61a04470dcb69815977ff8a6e33eac8b914a9f4e197466813714c1fd7fb38bbcec30a6e2dbe7ad9516b48255bb145aadf03a7bafeeba8c4956e841e974190e9e9e3854e9abc0d4ba89fef2450439c445816fa58c1fce94185b4e5c4b4786d62d6114ff1b1e05efc2c153cb1392fe4f12d4d275e403a1d6e6b9035bbc3270748a246a2b3d7236cebdf18d76d9dddf5d2a9baca8979749668c4a71bc9b9de71ad5adf34850e28a4c197a49a3f3dc26922f9e014cbcbfdb0a1b41f452891bf2aed0ba899bf9ee75f57559f112aae4403fd21797cc770eb398cbef2221f85dc07da2b891cc464d39f383064dbe0dff57adc87d1407e7377066ba6a67cd92b7db2a0fb04311f838653a08dede715a11241e91922c9cb70b68377046d98584f07982643cb72bbb50ab2645ba5e05ef555d137eb55ad06e1a6eaf94cd34626c6b6d5a12a1c5100c02945d4d886ff2ab7426311022d394adf2f7dbe3a39972a154428feba2beb013968b0ff43084a1f68529511a21386b03fc72a26710e667f69b499a7271df3b38b4af7919ac6d77b6d3a30fc9e632235fcf775c8e0ce49dee79e049559083817dbbcf521e3657987c188afce5317e364603f7c6991afd71359524e5b41b809343a778c3ed9d93235e279002d91388f826056f7fe005056a93748b558a29abce8bbf046c34f7bf80d88d83b08b5b79e9c33990cb5cd249b848bcbdf06e26ed7cd6d445b4ece3adf27479d1094ccd33c9b8fd26d1899be492615e4247063f2dc23674432cbb1d1e67a042fa23e578c6d3f46eab29f286c71aeff139ccb152890bd44c735717f065df66b5a837a4f96ab80ea1b8c867a4b4dc5fdc64f3a2b0774461548b1d63639c3055eff0ce113641fcc9880d0c3718f28221ba10e64d5ac81b36eb9a17c91ba34c131af5f78abcfd7f29f330e8cff1fe56fbdfe241ae023b1bcf209421d67cff2992184e35cab5360fa13c5fd7ad5c92a2e002fea85e0a3099545bf3ba97ece6011423d447ca969174a6f57e5f7cf0f95f55de9c2a37334eb67a5cc41d616d7bdf3862c1a5e136c24355c51580b6a6a45b2ebfa8595e8e93dadc4d75ba3596863d847f4edd8e6f63aa3cb1de5106d146370e7728a1c3d6693db82ef2ac2b8abe8f76b19e145e9e0b94d0fa0d1f1bed4f16b560b09cdc87450d113e622e304044d50a379ef249c55a604344b33dc18fce089741dfb7e7e80b52e063ebc1a746160efd83eaf695cf5d2e4fc99c0b544ce91120df62650ad8520d5d74be52b6851ee1d77ecd9f9b982b3635a59b2ee4fd8e0fa7806518995fdcf981be407e613fe4a9cb1200f2747196d91eb6fc87d56fef908de49829d8896549a62c4c4418320e9928096418d986653485c6fe5adb7e54dcac5dce56b999c1da294", @generic="bda78a03308ee66006956ae85e1a9521a560b5a5928bc173674c83fff152733c70e4f2063b9bc8d9adcc4e9dec4141ed53317bbc2b954f2f91f02b741a575cbfea9f4a45eae79f1b55cce8f3317aed2a120e541f3f207283e0a5c8753d5664206db7e279439214be856610846b209bf007a088d81c8280d29374231448909902", @generic="282684b2c752bb1c4501745755d8bd8876d3fcae125b391939292f6472872a489641af357edc1ac566bf89eb0d98d900ed3013b8ee22493ff72a8fcb32f4adce4c55fb81a01f407dbab4a86b823261c44763015a3b2ebc6083da9d46ffb61a045807ea2b9602a762ed1b328736d0ac4204348ffa163a1a1ac201fdeb7767eca77f7a2455913b718ebcd6a3f3e89fa316470154a8c784b8515cf2a138fcf197fad72975e86cc7c84697c4efcc49069b12f2362520a97cb661935c28eabfbbb442bdfa6f12f898a93a9acc004e2bce7f95a82fac8a125041338ec072510401d001db4b5a7f85f004da25c79661ce8bb26ace74c828fda8c214d55cc7c4f4586b78cfcd0a5b67c8cd18ee322da0071779680b9ab0a1f02ee5969e342b360f00c1b5f38fb54298f3158628dafa20234678969fa14b7dfdf22decd84ce26cf011e52aa36720375543c94e74435d6ce32ed536426a507aff20d46f84f870c2e0e493509c86126ab73000a05d1c9a528bcd482c124f2e3bd81b227d3a38005ef087bfc9b9f10d88b499ed7d741cb4eb3a4f47e61f86cbadea8e0b09aaa1dd8a06e6ea3fc768117bf0e0f2493dccba1e8ffbeb9fd821ac1370031b63a95b89305069ef2d938877b3b810d0febe0242d5a2a5097f079ae0daab95b64bcf01b5810cd25882c536160d90a7ba2992a85594f665b77694660dcee7d17404cc773ad3d2b37db9a5693ca1d5c9f66001179db41825d328a3651d39ed57f44133458eec8aa761bf52f239ccf6bc16d9c7192255491d54e1f5140139223dbb8ac37e3e1b8dda28f2d932b609036303b158f8e7d373909abe4726e8f2cbca66dd9605dd5f82da52fd5cc71d18ccbb3d1970f84fc59a9e6c0924993525c6f1493aca8c810cdab616de6ec284ac18f3e0883dc3240ef6ca87adfacdaafbaafed9e5a704e7e7e0e71e943c1b076ccc2b0bc5bd520d5fbc67ab31a3c8c24caaac407623da13b9d5a90043a7c34c42151866087fdbe3c001fcabf36222838dedd32a9200bbeeb93d8e4c89fa2cef71161d24722172f49d21afe9a0841adfdd9248f9171b33e152858e5f8e9f0a4f7a95af180bc9bb4484d96dc570efcb89e61e8b2b89bc29025c70cc689122137816d196918e0d3394baba093d09efff7c4c1c38f0a5993a6a2757191f302d5093872a2618e1525ae00da63f44f666a25ab4b1c677d90d1fbcdb2bde096a8c51824fbb98e2550fc3a5e476fc435d980d690d46b251db4e9c2e5fc65c535f98dadbcd18dc777214c5aca553534cb680b940819f45dfb9d41f30141fdcf52b151b05ff3f744c4e280570ca16b51e61fe8c96078da19a8fbe2e14ed4350b847b8b533797daa4d9d93be2d9f871ed61292d6ff245e3795a0417f3ad447c0c664e56faa3727db509faeb5a7290985756b0fc6dadaff2126cf14fffdfb840befb0089596cfbe859236e3d652704e712d38af4b1dbf7db113c16652ec95edc89b59f8667e42f6ee8ae98cfeffa401794c702b02ee24ac88e26090c2b4a08c138c0240050c0df3d761824eefcf608c0e8fb3973a1f7b599e2ae4588c2db2c024f9e95fa3442f7da82678f0aad4d401ff06add0a98a70a6afd9159a9eb0308cd8bc9550d1da60ca5d8b19f470f1777c1b3e49749a13fd0bd3673bf053e13a7f7b4526e837c243e4a3f738b2bcf2a3a4b99b3c52fd0ed0caa651e2530564f3a568b37a291ca463c2caba0a870ef4af8bb059dce0eddafa6ac6e5182a15cb07559efc44d5168217183fc0d264658d309ecf6dc1328f6a553601c0f8a4959c88112719b1871632a6050be7e421215fba622f3d9279cae1407cfefbb611f790281a4eb4d5fbfc8e33d7e4b9929d4a12ed9198bcfd7b7cf46c1521818aa57bb83c334d02479c1b740441d0fb03d3845fd65075b3101d1fe39f55edee7db62f4255efeb9d2fbee6b4b42b71a9f4a09d10061f8694e8b5e98963bba831e2a2f20744a16a9029c048c05c06383ee7492f586b39cae2ab94cc1df798ba0225545f9749919c4b6b9a07213e2423b5b996d060887ac472acc942eb74095c7c04576f981e82ad24278dd44cc968acfb61a6f9eadbf0e8c64b889229ea1514a608a7b66dba0bdf10f2b6bbbaf3d7e238faddd7ba1e5ba2547dfd1597225df7f895f29479ad0c94fb82dc378faac9824fe8fd1560b23e2f89183e1d1dbf489f9ba512350ea30a1a76f548ac445eebca9c8e743e961746f06146abfa21ec6b6c84fb12d71e5aad58fda16c26b41b4765c02f404ca4c1c2a8b9120d76f57425679f0f03d07fe3e13f26bba5b3efa124e824d15309a090c61c244c7bdba632653e3310468c32fecfbbdf8d4f332b80514692bee1a29709beeedabc2cae6c6ce4e899cfa9fed0e57ec6cc22b1a1da11cef93d501423c023572050e2a6b9837adc4f070d46c38320ac73aed2500d72691c30d56daf2c44991d895af4d11845f37941c29600572976b3ac7e161d62f2f448a12d9b79982dead54928848dcab9c5c73e1e294dbe113a9aa1c83db4c0587cc5542faa51e5371e67a8d14e80ea0759501b65a2ed6109051bf2aab235e280e08903aa23b307e59a5363f757e222a7af25d0e2c6a44046ecb64335375d2e12392b2b3fe861a008bd2a1b193031d77bea1d085d65c5dcd5b5e9dc5a41283f1dfa800c4cc131628ae2131ed29f8587f36b9f209e35c9e331badf7af22048090f7d161fd1d15a5979c4978bb85a0943a040a1d2d1373a99dfca57c13577d7a1b2ad3ddfec6c5309d4205a31d6ea41944130febc76f4805778af0ff4500ec95b6eaeec8543a7aa57c9a3a7405c63bbda712e124e127760b670e504adb31a3c91744b2cb8290cc658c26240955812e33b598aaf4ac681fa10e2be8620b5c38cae08dee97cf8b4faad478bff0d4d9280a03462d84159871ae903bacc8bcf5e22cdb46f064c7d0b9cd83cf9ede23d32455ecd96f52f0c51d921c1f1796456ae129d167e925ecbbf9e5e5fa28e0bc0334cf4506f3024c1317cda4d1551269ef567c082456d6cf05a7b258f13e572f4985f46ff659a1bb25ff73f0695fc89131a4ccae6de353caf137460fb77ab41c19e1b69f67bea9b1be3a978b4271c952d2581be5fe8a662021184de5aa17311d343edcc15d815ddeff03dd3edb66081ed7b9d30356618238ecafd20e73ecc3341cbea6f8dd3ec20968a33dd55985e86ceab97e65ac274a40df41af7bf2ed4de6ae0c9a8fd5934c587d20b963d41290db809b4be4d2784ed9bdba5ba343adfd7035b7c0f29e52df08a3e777dcef3ffaddf9ea0f3095192aeaf08b35e832044267fa17668c02eb1c8e37d62c54ff0a56bf95b953753153723ca85ea070b963aa2e8e379cc63ddbdb088187eaf98f943574875f3a57115c460cf1216b4f9b5bd22741ee06e19d261d20fdebc842bab058f252a7bdf278969443e6566dcda59f8f3e0f63df47a0caf17035353bb4cb1bae0781fcc2da222a729837c83b235df4235c55efdfca97cf004c8c8ee5994437dce52fc830bc795e5629e2053c7b500d432207303919cd586b65857ad2edac6b9bf538ad4f9eda4f3bdf2f0e4ada1ec2417e1d8ee3827fc9545db478df9c217ef095541817c563b382132dbdcdfb69873fff8f99df6ee4ce3fae11b321d6a432f2fe5cdb6eabd166a71983595412076345b119a7811211b9fa5260fbf244487cef741bc33ebb3ede7dad5a9d525289086fe7edd97eec20260fda4c595ccc692b7f065749281aa4c59b56583c6c63a970790e9c91528084a571de8e9fb1a6fc5408d8197eb94de1f1fdeddabb6f97d198e43c26a8849751cb97596188727cd53be4fa2f39353720c6a7ad7a1b1b25ddabc7b13c4141d9dd346685b0057d1c78706e12b2c1e7f4216e9e15f43ed7d6d79b67266b142827161b197c19560595cb28ae84c6d3de96fd11136c9cdb7a9a586077b5d6ef4cb75d73f0ea19b6999d4bd81513c62964e20cd5e97576025e89a3628c24d430e96546c1827116fafca951619607b952ad25c066f71c4df3b195c367770fbd03d44beaa3700fccc12ebda7ffc0306a981d2d496bfac9940077f52186538d70a653144e8b26fade03f1366519d3e07339be41646effcd94a80ca06a569bb4ce284bc67d83de4f3dd0095b93945e62e8abc1e799af807259c477e3bb4ecc02ef8ffacc390e8025c407005e92385879f57a2dc5fad3f84fa801f92be08f5a6331bc0f6312fbdf39256504aaca03205f0076a85336134157a72b5508684aa7aff0b9b3752a4e8f8c01bc719297309db9ce2916a0cdaa6f0fd28723ab355a66bde8961b7f51ee9158a1d88045a6066809b299c96ed1c01c38a254d9f7917f347af395f3fca11d2265f45b9ba2c18047abed04ed52c3aceb647643765cb6a493ad37e26c6a7e3bcc8c9720d16e016f5cbfacfca2ae9b26829f1e079b3d7ff96dedbf4e1a8ce69db9bf32639ca964122bb7a5986bb6c7d09e54a8ac0f6abd9509637a4298930fa41d1170b67ea0d36d54f8803cd41d3d14ad619891f210bee955781a79bdd3a19401e17e4c08b050aac2d7c61e4b399aa6bbdac316598956f210365364664debfaae449904de62476f85a1bc59d6b438ae52276591c8be1b3311cce062f72cf8b7e1dff758c2415c7122b12eba079577182c6a477154532b7b6cc46252b0686c54f3c0884503f8d71a5485e71dcd4c46099c1b63ccfe6de17db7a45af46396a34845dc4e1f615267ff81e73ceb8a256b3f3316a4dc32734e28b6b2c0152c036ded1904ca7be9317555295a811679698b9198695811bb39ce892533aee9b3f0229c109c55a794d715950d241714302762d0133fb190fd400be046ffe88f0db2884a41b54fa54550dc53acb2b6177858fa06c06b05325c42185a6d020c6478ceb0ad246a22b74f9a108f19b0002796f73f9c6d95f1f6413a46b438438e192289b4c19189eeb45cce933ae2937001a5cabcdbc832eca5a548c8e31443c9f820443806fd8ff77eed6c5279960a68b25a90dc892a4b947f4c8d9028740241198640a4074de07147cfe69b73e5523e8018bb3c64949bd28170f478217d8631f680d0481542c1707867c86111dcc81af357a9a9f4afecf79327c9ad1faf82a0f060a463eacb34d3267ec9a3ebe274dbd6b5e9addcecfb9bee271e9bec0301f09c95db581cea3a41e85761403682d7cd685885b03ec4c2e13f9f26564a1000ca0b10d1449546178b5d33bed0538c23f4d5e1c15f63aec7f8b5f20c056ff0e4a52281e694c683579be6a06da1750a1a0eaf0313e5434c4261cdf4bf937e6cd90e2ab48d94f95b90099e9fa54c726bdddbf9dfea5a43164a35ee2f0a63ac9e5cd618a4b57ec9ed38f96b5688a61deba470ae155d58d5788611e99f9c55a7e1b0741685fc34de7a9897ad3fad2852f04a208c5310f75fd20106dad126e8bbba48c6a4de04b5eaa93da0b0e3c8540dd339e008aac98e9a3ca853493682fb82decd2b022050519bc49745c9e4843acfc0ce4cb885d7cc905502a627799a3500a054d79c4f224ea19d65409fe6fe38e071fa2fbde8dbd4e4385df7404648def7daedcc30ff0bcdf61b12e252820725d8314cec54307c1087abeaf3bdc071d787064c4920e95fae78787943d1f777512eba720b1e9c0d782d3fdb6947207ee6c6a8a903b2af25a005df91ea06a50a5490a273ed3e52276db8291d30f6deab858362546cd9bc5834abf855ff8b3efb6e006f54744e719ebc3f34f27b45ad6ed3132fe808f96cc60a8d3f9b3d5183a01b6f67f1d81", @typed={0x8, 0x7c, @u32=0x3}, @typed={0x8, 0x6c, @fd=r0}, @typed={0x8, 0x6e, @pid=r2}]}, @nested={0x10, 0x2a, [@typed={0x8, 0x5b, @u32=0x4}, @typed={0x4, 0x63}]}, @nested={0x9c, 0x5a, [@typed={0x8, 0x57, @pid=r2}, @typed={0x14, 0x8f, @ipv6=@mcast1}, @typed={0x8, 0x53, @u32}, @typed={0x14, 0x53, @ipv6=@local}, @generic="d5d089466ebbc7f116287645dc9fbd2130f1a972c9b7404576af083536430ab1e90f9f", @generic="771b3b0b860a5799e76116c485f6474c8c0c1893cfb4464a16c8f0e1fa6bcb3cfb46a64b5aef", @typed={0x8, 0x39, @uid=r6}, @generic="92ba34ee3ed2d3e970c0d42194"]}, @typed={0x8, 0x27, @pid=r2}, @typed={0x4, 0x2}]}, 0x2188}, 0x1, 0x0, 0x0, 0x4004080}, 0x10) wait4(r5, &(0x7f0000002800), 0x20000000, &(0x7f0000002840)) setsockopt$SO_RDS_MSG_RXPATH_LATENCY(r1, 0x114, 0xa, &(0x7f0000002900), 0x1) r7 = request_key(&(0x7f0000002940)='ceph\x00', &(0x7f0000002980)={'syz', 0x3}, &(0x7f00000029c0)='\x00', 0xffffffffffffffff) keyctl$update(0x2, r7, &(0x7f0000002a00)="4fd664010ee20da89e86cf2e056bc9b7a2cbb2dc008f20ce1f42a3978eaf7f1743c34c50528ec9a8e56fee793a79", 0x2e) setsockopt$inet_opts(r1, 0x0, 0x9, &(0x7f0000002a40)="15938c9f0b4a43e692973d55e6068f77cced852b06eb1f9f9875880576ab70068165", 0x22) getsockopt$inet_sctp6_SCTP_STATUS(r1, 0x84, 0xe, &(0x7f0000002a80)={r3, 0x46, 0x8, 0x40, 0x3, 0x6, 0x2, 0x9, {r3, @in6={{0xa, 0x4e20, 0x84, @mcast2, 0x8}}, 0xff, 0x101, 0x20, 0x6, 0xffff}}, &(0x7f0000002b40)=0xb0) getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000002b80)={'broute\x00'}, &(0x7f0000002c00)=0x78) ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r0, 0xc4c85512, &(0x7f0000002c40)={{0x5, 0x6, 0x1000, 0x5, '\x00', 0x20004000}, 0x0, [0x100, 0x4, 0x2, 0x8, 0x8, 0x0, 0xfbe, 0x1f, 0x0, 0x2, 0x0, 0x7, 0x1, 0x4, 0x6, 0x5, 0x8, 0x10001, 0x8, 0xfffffffffffffe00, 0x3, 0x1, 0x100, 0x9, 0x3, 0x10001, 0xcc7e, 0xe44, 0x7fffffff, 0xff, 0x4, 0x101, 0x4, 0xb159, 0x2, 0x8, 0x5, 0x8, 0x9, 0x40, 0x1, 0x401, 0xffff, 0x401, 0x23f3d66b, 0x20, 0x6, 0x4, 0xffffffff, 0x50b, 0x1, 0xff, 0xff, 0xffff, 0x2, 0x7, 0x243, 0x6d, 0xffffffffffff0001, 0x0, 0x0, 0x0, 0x8, 0x5, 0x20, 0x8, 0x5e1, 0xff, 0x3, 0x1, 0x8, 0x40, 0x5, 0xc96, 0x2, 0x35bc, 0x0, 0x1, 0x3, 0xfffffffffffff7e2, 0x57671ad4, 0x8, 0x0, 0x7, 0x531, 0x1ff, 0x1, 0x8001, 0x5, 0xffffffff, 0x0, 0x200, 0x2, 0x800000000000000, 0x0, 0x3, 0x3, 0x10000, 0x9, 0x0, 0xba78, 0x5, 0x7, 0x59b5, 0x7f, 0x8, 0x9, 0x800, 0x6, 0x1ff, 0xfffffffffffffff9, 0x0, 0x8001, 0xffffffffffffffff, 0x5, 0x3, 0xfffffffffffffffe, 0x8bd, 0x7, 0x61f, 0x1f, 0x1, 0x3, 0x5, 0x8, 0x3, 0x200, 0x4]}) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000003140)={r3, 0x5, 0x20}, &(0x7f0000003180)=0xc) getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f00000031c0)=@assoc_value, &(0x7f0000003200)=0x8) fchdir(r1) 00:16:14 executing program 0: 00:16:14 executing program 0: [ 199.539799] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 199.548286] team0: Port device team_slave_0 added 00:16:15 executing program 0: [ 199.968396] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 199.976434] team0: Port device team_slave_1 added [ 200.175722] IPVS: ftp: loaded support on port[0] = 21 00:16:15 executing program 0: [ 200.397709] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 200.405009] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 200.413648] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 200.486930] 8021q: adding VLAN 0 to HW filter on device bond0 [ 200.819032] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 200.826745] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 200.835264] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 201.093408] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 201.100952] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 201.109903] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 201.434045] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 201.442132] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 201.450645] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 201.804850] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 202.939787] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 202.946338] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 202.954069] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 204.190102] 8021q: adding VLAN 0 to HW filter on device team0 00:16:19 executing program 1: [ 204.949951] bridge0: port 2(bridge_slave_1) entered blocking state [ 204.956482] bridge0: port 2(bridge_slave_1) entered forwarding state [ 204.963435] bridge0: port 1(bridge_slave_0) entered blocking state [ 204.969844] bridge0: port 1(bridge_slave_0) entered forwarding state [ 204.977933] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 205.009378] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 205.261983] bridge0: port 1(bridge_slave_0) entered blocking state [ 205.268447] bridge0: port 1(bridge_slave_0) entered disabled state [ 205.276710] device bridge_slave_0 entered promiscuous mode [ 205.568955] bridge0: port 2(bridge_slave_1) entered blocking state [ 205.575567] bridge0: port 2(bridge_slave_1) entered disabled state [ 205.584144] device bridge_slave_1 entered promiscuous mode [ 205.950322] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 206.221652] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 207.088492] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 207.318083] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 207.596960] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 207.604183] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 207.887519] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 207.894783] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 208.308035] 8021q: adding VLAN 0 to HW filter on device bond0 [ 208.543341] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 208.551307] team0: Port device team_slave_0 added [ 208.809200] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 208.817204] team0: Port device team_slave_1 added [ 209.049888] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 209.210679] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 209.247898] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 209.255094] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 209.263793] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 209.588791] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 209.596559] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 209.605648] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 209.826225] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 209.833920] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 209.842821] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 209.977992] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 209.984761] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 209.992698] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 210.459818] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details. [ 210.490290] ================================================================== [ 210.497728] BUG: KMSAN: uninit-value in vmx_create_vcpu+0x10df/0x7920 [ 210.504328] CPU: 1 PID: 7236 Comm: syz-executor2 Not tainted 4.19.0-rc4+ #63 [ 210.511524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 210.520894] Call Trace: [ 210.523504] dump_stack+0x306/0x460 [ 210.527167] ? _raw_spin_lock_irqsave+0x227/0x340 [ 210.532025] ? vmx_create_vcpu+0x10df/0x7920 [ 210.536459] kmsan_report+0x1a3/0x2d0 [ 210.540289] __msan_warning+0x7c/0xe0 [ 210.544121] vmx_create_vcpu+0x10df/0x7920 [ 210.548373] ? kmsan_set_origin_inline+0x6b/0x120 [ 210.553229] ? __msan_poison_alloca+0x17a/0x210 [ 210.557923] ? vmx_vm_init+0x340/0x340 [ 210.561829] kvm_arch_vcpu_create+0x25d/0x2f0 [ 210.566346] kvm_vm_ioctl+0x13fd/0x33d0 [ 210.570340] ? __msan_poison_alloca+0x17a/0x210 [ 210.575026] ? do_vfs_ioctl+0x18a/0x2810 [ 210.579106] ? __se_sys_ioctl+0x1da/0x270 [ 210.583268] ? vcpu_stat_clear_per_vm+0x420/0x420 [ 210.588128] ? vcpu_stat_clear_per_vm+0x420/0x420 [ 210.592986] do_vfs_ioctl+0xcf3/0x2810 [ 210.596900] ? security_file_ioctl+0x92/0x200 [ 210.601412] __se_sys_ioctl+0x1da/0x270 [ 210.605406] __x64_sys_ioctl+0x4a/0x70 [ 210.609310] do_syscall_64+0xbe/0x100 [ 210.613133] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 210.618330] RIP: 0033:0x457579 [ 210.621545] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 210.640460] RSP: 002b:00007f707153ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 210.648192] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457579 [ 210.655475] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 210.662756] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 210.670036] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f707153b6d4 [ 210.677321] R13: 00000000004bfc18 R14: 00000000004cfca0 R15: 00000000ffffffff [ 210.684609] [ 210.686247] Local variable description: ----c.i.i.i.i.i.i@vmx_create_vcpu [ 210.693177] Variable was created at: [ 210.696909] vmx_create_vcpu+0xd5/0x7920 [ 210.700989] kvm_arch_vcpu_create+0x25d/0x2f0 [ 210.705485] ================================================================== [ 210.712855] Disabling lock debugging due to kernel taint [ 210.718321] Kernel panic - not syncing: panic_on_warn set ... [ 210.718321] [ 210.725707] CPU: 1 PID: 7236 Comm: syz-executor2 Tainted: G B 4.19.0-rc4+ #63 [ 210.734285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 210.743653] Call Trace: [ 210.746260] dump_stack+0x306/0x460 [ 210.749919] panic+0x54c/0xafa [ 210.753159] kmsan_report+0x2cd/0x2d0 [ 210.756978] __msan_warning+0x7c/0xe0 [ 210.760797] vmx_create_vcpu+0x10df/0x7920 [ 210.765046] ? kmsan_set_origin_inline+0x6b/0x120 [ 210.769900] ? __msan_poison_alloca+0x17a/0x210 [ 210.774593] ? vmx_vm_init+0x340/0x340 [ 210.778489] kvm_arch_vcpu_create+0x25d/0x2f0 [ 210.783004] kvm_vm_ioctl+0x13fd/0x33d0 [ 210.787003] ? __msan_poison_alloca+0x17a/0x210 [ 210.791696] ? do_vfs_ioctl+0x18a/0x2810 [ 210.795769] ? __se_sys_ioctl+0x1da/0x270 [ 210.799934] ? vcpu_stat_clear_per_vm+0x420/0x420 [ 210.804793] ? vcpu_stat_clear_per_vm+0x420/0x420 [ 210.809655] do_vfs_ioctl+0xcf3/0x2810 [ 210.813575] ? security_file_ioctl+0x92/0x200 [ 210.818094] __se_sys_ioctl+0x1da/0x270 [ 210.822097] __x64_sys_ioctl+0x4a/0x70 [ 210.825995] do_syscall_64+0xbe/0x100 [ 210.829816] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 210.835013] RIP: 0033:0x457579 [ 210.838223] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 210.852879] 8021q: adding VLAN 0 to HW filter on device team0 [ 210.857131] RSP: 002b:00007f707153ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 210.870739] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457579 [ 210.878023] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 210.885309] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 210.892591] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f707153b6d4 [ 210.899872] R13: 00000000004bfc18 R14: 00000000004cfca0 R15: 00000000ffffffff [ 210.908240] Kernel Offset: disabled [ 210.911865] Rebooting in 86400 seconds..