[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[   52.572023] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[ ok 8[?25h[?0c.
[   52.915819] audit: type=1800 audit(1539238142.973:29): pid=5851 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
[   53.851723] random: sshd: uninitialized urandom read (32 bytes read)

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   54.299055] random: sshd: uninitialized urandom read (32 bytes read)
[   55.730714] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.0.120' (ECDSA) to the list of known hosts.
[   61.572040] random: sshd: uninitialized urandom read (32 bytes read)
2018/10/11 06:09:13 fuzzer started
[   65.832737] random: cc1: uninitialized urandom read (8 bytes read)
2018/10/11 06:09:17 dialing manager at 10.128.0.26:39089
2018/10/11 06:09:18 syscalls: 1
2018/10/11 06:09:18 code coverage: enabled
2018/10/11 06:09:18 comparison tracing: CONFIG_KCOV_ENABLE_COMPARISONS is not enabled
2018/10/11 06:09:18 setuid sandbox: enabled
2018/10/11 06:09:18 namespace sandbox: enabled
2018/10/11 06:09:18 Android sandbox: /sys/fs/selinux/policy does not exist
2018/10/11 06:09:18 fault injection: enabled
2018/10/11 06:09:18 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2018/10/11 06:09:18 net packed injection: /dev/net/tun can't be opened (open /dev/net/tun: cannot allocate memory)
2018/10/11 06:09:18 net device setup: enabled
[   71.856915] random: crng init done
06:10:57 executing program 0:

[  168.107507] IPVS: ftp: loaded support on port[0] = 21
[  169.335129] bridge0: port 1(bridge_slave_0) entered blocking state
[  169.341628] bridge0: port 1(bridge_slave_0) entered disabled state
[  169.350199] device bridge_slave_0 entered promiscuous mode
[  169.479471] bridge0: port 2(bridge_slave_1) entered blocking state
[  169.486002] bridge0: port 2(bridge_slave_1) entered disabled state
[  169.494376] device bridge_slave_1 entered promiscuous mode
[  169.620992] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  169.750416] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  170.142751] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  170.275031] bond0: Enslaving bond_slave_1 as an active interface with an up link
06:11:00 executing program 1:

[  170.953336] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  170.961264] team0: Port device team_slave_0 added
[  171.160143] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  171.168258] team0: Port device team_slave_1 added
[  171.349965] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  171.358198] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  171.366824] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  171.557535] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  171.727632] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  171.733043] IPVS: ftp: loaded support on port[0] = 21
[  171.735305] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  171.748748] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  172.010211] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  172.017987] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  172.027041] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  173.752297] bridge0: port 1(bridge_slave_0) entered blocking state
[  173.758765] bridge0: port 1(bridge_slave_0) entered disabled state
[  173.767313] device bridge_slave_0 entered promiscuous mode
[  173.971851] bridge0: port 2(bridge_slave_1) entered blocking state
[  173.978426] bridge0: port 2(bridge_slave_1) entered disabled state
[  173.986859] device bridge_slave_1 entered promiscuous mode
[  174.188150] bridge0: port 2(bridge_slave_1) entered blocking state
[  174.194721] bridge0: port 2(bridge_slave_1) entered forwarding state
[  174.201778] bridge0: port 1(bridge_slave_0) entered blocking state
[  174.208237] bridge0: port 1(bridge_slave_0) entered forwarding state
[  174.216848] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  174.238216] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  174.421901] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  174.891928] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  174.963473] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  175.174301] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  175.405443] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  175.412658] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  175.622241] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  175.629465] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
06:11:05 executing program 2:

[  176.321966] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  176.329953] team0: Port device team_slave_0 added
[  176.597093] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  176.605260] team0: Port device team_slave_1 added
[  176.873147] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  176.887909] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  176.896520] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  176.944006] IPVS: ftp: loaded support on port[0] = 21
[  177.068825] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  177.076043] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  177.084783] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  177.351799] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  177.359332] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  177.368452] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  177.649451] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  177.657111] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  177.666254] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  179.301875] bridge0: port 1(bridge_slave_0) entered blocking state
[  179.308326] bridge0: port 1(bridge_slave_0) entered disabled state
[  179.316784] device bridge_slave_0 entered promiscuous mode
[  179.544383] bridge0: port 2(bridge_slave_1) entered blocking state
[  179.550832] bridge0: port 2(bridge_slave_1) entered disabled state
[  179.559297] device bridge_slave_1 entered promiscuous mode
[  179.888409] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  180.154378] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  180.645072] bridge0: port 2(bridge_slave_1) entered blocking state
[  180.651547] bridge0: port 2(bridge_slave_1) entered forwarding state
[  180.658586] bridge0: port 1(bridge_slave_0) entered blocking state
[  180.665090] bridge0: port 1(bridge_slave_0) entered forwarding state
[  180.674077] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  180.753029] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  181.036807] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  181.220311] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  181.289706] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  181.297012] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  181.596789] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  181.604050] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  182.432133] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  182.440616] team0: Port device team_slave_0 added
[  182.733665] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  182.741527] team0: Port device team_slave_1 added
06:11:12 executing program 3:

[  183.035052] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  183.042203] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  183.050929] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  183.399943] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  183.407385] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  183.416178] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  183.709512] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  183.717156] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  183.726040] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  184.043572] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  184.051122] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  184.060323] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  184.263882] IPVS: ftp: loaded support on port[0] = 21
[  185.838690] 8021q: adding VLAN 0 to HW filter on device bond0
[  187.157545] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  187.210801] bridge0: port 1(bridge_slave_0) entered blocking state
[  187.217348] bridge0: port 1(bridge_slave_0) entered disabled state
[  187.225807] device bridge_slave_0 entered promiscuous mode
[  187.494050] bridge0: port 2(bridge_slave_1) entered blocking state
[  187.500520] bridge0: port 2(bridge_slave_1) entered disabled state
[  187.508993] device bridge_slave_1 entered promiscuous mode
[  187.577512] bridge0: port 2(bridge_slave_1) entered blocking state
[  187.584049] bridge0: port 2(bridge_slave_1) entered forwarding state
[  187.590943] bridge0: port 1(bridge_slave_0) entered blocking state
[  187.597489] bridge0: port 1(bridge_slave_0) entered forwarding state
[  187.606327] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  187.613443] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  187.798499] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  188.090145] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  188.463024] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  188.469424] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  188.477552] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  189.067555] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  189.404399] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  189.754211] 8021q: adding VLAN 0 to HW filter on device team0
[  189.773647] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  189.780699] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  190.137147] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  190.144388] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  191.103223] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  191.111304] team0: Port device team_slave_0 added
[  191.445724] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  191.453986] team0: Port device team_slave_1 added
[  191.741289] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  191.749397] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  191.758331] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  192.140047] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  192.147231] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  192.155999] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
06:11:22 executing program 4:

[  192.499311] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  192.506995] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  192.515686] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  192.852578] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  192.860153] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  192.869132] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  193.573865] 8021q: adding VLAN 0 to HW filter on device bond0
[  194.015300] IPVS: ftp: loaded support on port[0] = 21
[  195.010227] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  196.497887] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  196.504539] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  196.512518] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  197.296004] bridge0: port 2(bridge_slave_1) entered blocking state
[  197.302552] bridge0: port 2(bridge_slave_1) entered forwarding state
[  197.309436] bridge0: port 1(bridge_slave_0) entered blocking state
[  197.316016] bridge0: port 1(bridge_slave_0) entered forwarding state
[  197.324969] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  197.652452] bridge0: port 1(bridge_slave_0) entered blocking state
[  197.658909] bridge0: port 1(bridge_slave_0) entered disabled state
[  197.667382] device bridge_slave_0 entered promiscuous mode
[  197.772385] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  197.934600] 8021q: adding VLAN 0 to HW filter on device team0
[  198.105598] bridge0: port 2(bridge_slave_1) entered blocking state
[  198.112157] bridge0: port 2(bridge_slave_1) entered disabled state
[  198.120429] device bridge_slave_1 entered promiscuous mode
06:11:28 executing program 0:

[  198.535051] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
06:11:28 executing program 0:
unshare(0x20400)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/ip6_tables_targets\x00')
unlinkat(r0, &(0x7f0000000080)='\x00', 0x0)
r1 = semget(0x3, 0x0, 0x108)
semctl$IPC_INFO(r1, 0x4, 0x3, &(0x7f00000000c0)=""/204)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000300)=@req={0x1ff, 0x6, 0xdaf}, 0x10)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000000)=ANY=[@ANYRESOCT=r2], 0x1)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f00000001c0)={<r3=>0x0, @in={{0x2, 0x4e23, @rand_addr=0x4}}}, &(0x7f0000000280)=0x84)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f00000002c0)={r3, 0x2}, 0x8)

[  198.926779] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  198.944937] syz-executor0: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  198.955983] syz-executor0 cpuset=syz0 mems_allowed=0
[  198.961196] CPU: 1 PID: 6714 Comm: syz-executor0 Not tainted 4.19.0-rc4+ #66
[  198.968444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  198.977837] Call Trace:
[  198.980494]  dump_stack+0x306/0x460
[  198.984183]  warn_alloc+0x4c1/0x6f0
[  198.987915]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  198.993441]  __vmalloc_node_range+0xd9b/0x1280
[  198.998114]  ? task_kmsan_context_state+0x6b/0x120
[  199.003128]  __vmalloc_node_flags_caller+0x12b/0x140
[  199.008331]  ? xt_alloc_entry_offsets+0xb1/0xe0
[  199.013054]  ? xt_alloc_entry_offsets+0xb1/0xe0
[  199.017805]  kvmalloc_node+0xd1/0x1a0
[  199.021672]  xt_alloc_entry_offsets+0xb1/0xe0
[  199.026224]  translate_table+0x208/0x3720
[  199.030485]  ? task_kmsan_context_state+0x6b/0x120
[  199.035482]  ? task_kmsan_context_state+0x6b/0x120
[  199.040493]  ? task_kmsan_context_state+0x6b/0x120
[  199.045515]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  199.050940]  ? kmsan_internal_unpoison_shadow+0x83/0xe0
[  199.056389]  ? kmsan_internal_unpoison_shadow+0x83/0xe0
[  199.061855]  do_ip6t_set_ctl+0x686/0xa40
[  199.066024]  ? cleanup_entry+0x610/0x610
[  199.070255]  nf_setsockopt+0x47c/0x4e0
[  199.074211]  ipv6_setsockopt+0x1e2/0x350
[  199.078371]  rawv6_setsockopt+0x358/0x820
[  199.082605]  ? raw6_destroy+0x80/0x80
[  199.086484]  sock_common_setsockopt+0x13b/0x170
[  199.091198]  ? sock_common_recvmsg+0x290/0x290
[  199.095899]  __sys_setsockopt+0x496/0x540
[  199.100105]  __se_sys_setsockopt+0xdd/0x100
[  199.104478]  __x64_sys_setsockopt+0x62/0x80
[  199.108831]  do_syscall_64+0xbe/0x100
[  199.112655]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  199.117862] RIP: 0033:0x457519
[  199.121074] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  199.140010] RSP: 002b:00007f4f59e01c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  199.147754] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000457519
[  199.155040] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000004
[  199.162337] RBP: 000000000072bf00 R08: 0000000000000001 R09: 0000000000000000
[  199.169620] R10: 0000000020000000 R11: 0000000000000246 R12: 00007f4f59e026d4
[  199.176913] R13: 00000000004c99e0 R14: 00000000004d5a48 R15: 00000000ffffffff
[  199.185169] Mem-Info:
[  199.187719] active_anon:56416 inactive_anon:113 isolated_anon:0
[  199.187719]  active_file:7350 inactive_file:33964 isolated_file:0
[  199.187719]  unevictable:0 dirty:51 writeback:0 unstable:0
[  199.187719]  slab_reclaimable:3693 slab_unreclaimable:9101
[  199.187719]  mapped:46693 shmem:119 pagetables:704 bounce:0
[  199.187719]  free:1053439 free_pcp:663 free_cma:0
[  199.221309] Node 0 active_anon:225664kB inactive_anon:452kB active_file:29400kB inactive_file:135972kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:186656kB dirty:204kB writeback:0kB shmem:476kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 188416kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  199.249644] Node 0 DMA free:15904kB min:144kB low:180kB high:216kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  199.276041] lowmem_reserve[]: 0 2803 7229 7229
[  199.280747] Node 0 DMA32 free:2873792kB min:26148kB low:32684kB high:39220kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2875232kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:1440kB local_pcp:0kB free_cma:0kB
[  199.308629] lowmem_reserve[]: 0 0 4425 4425
[  199.313135] Node 0 Normal free:1323824kB min:41284kB low:51604kB high:61924kB active_anon:225548kB inactive_anon:452kB active_file:29400kB inactive_file:136088kB unevictable:0kB writepending:204kB present:4718592kB managed:4532152kB mlocked:0kB kernel_stack:11392kB pagetables:2816kB bounce:0kB free_pcp:848kB local_pcp:556kB free_cma:0kB
[  199.343345] lowmem_reserve[]: 0 0 0 0
[  199.347265] Node 0 DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15904kB
[  199.360900] Node 0 DMA32: 4*4kB (M) 2*8kB (M) 2*16kB (M) 4*32kB (M) 2*64kB (M) 3*128kB (M) 3*256kB (M) 2*512kB (M) 2*1024kB (M) 3*2048kB (M) 699*4096kB (M) = 2873792kB
[  199.376515] Node 0 Normal: 1*4kB (U) 2*8kB (UE) 3*16kB (UE) 2*32kB (UE) 12*64kB (UME) 6*128kB (UME) 5*256kB (UME) 4*512kB (UE) 2*1024kB (UM) 3*2048kB (UME) 320*4096kB (M) = 1323908kB
[  199.393424] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  199.402442] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  199.411055] 41516 total pagecache pages
[  199.415130] 0 pages in swap cache
[  199.418612] Swap cache stats: add 0, delete 0, find 0/0
[  199.424081] Free swap  = 0kB
[  199.427132] Total swap = 0kB
[  199.430176] 1965979 pages RAM
[  199.433374] 0 pages HighMem/MovableOnly
[  199.437831] 110157 pages reserved
[  199.441299] 0 pages cma reserved
[  199.825316] syz-executor0: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  199.836443] syz-executor0 cpuset=syz0 mems_allowed=0
[  199.841656] CPU: 0 PID: 6714 Comm: syz-executor0 Not tainted 4.19.0-rc4+ #66
[  199.848878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  199.858270] Call Trace:
[  199.860915]  dump_stack+0x306/0x460
[  199.864616]  warn_alloc+0x4c1/0x6f0
[  199.868361]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  199.873887]  __vmalloc_node_range+0xd9b/0x1280
[  199.878641]  ? task_kmsan_context_state+0x6b/0x120
[  199.883647]  __vmalloc_node_flags_caller+0x12b/0x140
[  199.888805]  ? xt_alloc_entry_offsets+0xb1/0xe0
[  199.893529]  ? xt_alloc_entry_offsets+0xb1/0xe0
[  199.898263]  kvmalloc_node+0xd1/0x1a0
[  199.902116]  xt_alloc_entry_offsets+0xb1/0xe0
[  199.906672]  translate_table+0x208/0x3720
[  199.910895]  ? task_kmsan_context_state+0x6b/0x120
[  199.915891]  ? task_kmsan_context_state+0x6b/0x120
[  199.920916]  ? task_kmsan_context_state+0x6b/0x120
[  199.925931]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  199.931343]  ? kmsan_internal_unpoison_shadow+0x83/0xe0
[  199.936777]  ? kmsan_internal_unpoison_shadow+0x83/0xe0
[  199.942230]  do_ip6t_set_ctl+0x686/0xa40
[  199.946406]  ? cleanup_entry+0x610/0x610
[  199.950546]  nf_setsockopt+0x47c/0x4e0
[  199.954501]  ipv6_setsockopt+0x1e2/0x350
[  199.958651]  rawv6_setsockopt+0x358/0x820
[  199.962882]  ? raw6_destroy+0x80/0x80
[  199.966761]  sock_common_setsockopt+0x13b/0x170
[  199.971481]  ? sock_common_recvmsg+0x290/0x290
[  199.976117]  __sys_setsockopt+0x496/0x540
[  199.980356]  __se_sys_setsockopt+0xdd/0x100
[  199.984767]  __x64_sys_setsockopt+0x62/0x80
[  199.989129]  do_syscall_64+0xbe/0x100
[  199.992980]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  199.998208] RIP: 0033:0x457519
[  200.001449] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  200.020386] RSP: 002b:00007f4f59e01c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  200.028152] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000457519
[  200.035465] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000006
[  200.042771] RBP: 000000000072bf00 R08: 0000000000000001 R09: 0000000000000000
[  200.050074] R10: 0000000020000000 R11: 0000000000000246 R12: 00007f4f59e026d4
[  200.057388] R13: 00000000004c99e0 R14: 00000000004d5a48 R15: 00000000ffffffff
[  200.696860] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  201.045187] bond0: Enslaving bond_slave_1 as an active interface with an up link
06:11:31 executing program 0:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(cipher_null)\x00'}, 0xffffffffffffff0e)
r2 = accept4(r1, 0x0, &(0x7f00000000c0), 0x0)
sendmsg$TEAM_CMD_PORT_LIST_GET(r2, &(0x7f0000002bc0)={&(0x7f0000000040), 0xc, &(0x7f0000002b80)={&(0x7f0000000000)=ANY=[@ANYBLOB="2f030000", @ANYRES16=0x0, @ANYBLOB="00000000054fcdd35d605e35682f08dcba"], 0x14}}, 0x8000)
write$binfmt_aout(r2, &(0x7f0000000340), 0xfdef)

[  201.428963] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  201.436670] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
06:11:31 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x3)
accept4$unix(r0, &(0x7f0000000040), &(0x7f00000000c0)=0x6e, 0x80800)

[  201.825160] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  201.832391] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
06:11:32 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0xa)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffff9c, 0x8933, &(0x7f0000000bc0)={'bridge0\x00', <r1=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000c00)={'teql0\x00', r1})
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000c80)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffff9c, 0x0, 0x1, &(0x7f0000000c40)='\x00', 0xffffffffffffffff}, 0x30)
capset(&(0x7f0000000cc0)={0x0, r2}, &(0x7f0000000d00)={0x3, 0x800, 0xcf5f, 0xc98e, 0x3, 0x6e})
lsetxattr$security_smack_transmute(&(0x7f0000000d40)='./file0\x00', &(0x7f0000000d80)='security.SMACK64TRANSMUTE\x00', &(0x7f0000000dc0)='TRUE', 0x4, 0x3)
r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000e00)='/dev/audio\x00', 0x80, 0x0)
ioctl$EVIOCGSND(r4, 0x8040451a, &(0x7f0000000e40)=""/96)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r4, 0x84, 0x71, &(0x7f0000000ec0)={<r5=>0x0, 0x6}, &(0x7f0000000f00)=0x8)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r4, 0x84, 0x18, &(0x7f0000000f40)={r5, 0x3}, &(0x7f0000000f80)=0x8)
connect$bt_rfcomm(r4, &(0x7f0000000fc0)={0x1f, {0x5, 0x1, 0x8, 0xffffffff, 0x4, 0x5}, 0x5}, 0xa)
setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r4, 0x84, 0x79, &(0x7f0000001000)={r5, 0x80, 0x1}, 0x8)
r6 = accept$inet(r0, &(0x7f0000001040)={0x2, 0x0, @dev}, &(0x7f0000001080)=0x10)
syz_open_pts(r4, 0x200000)
ioctl$KVM_GET_DEBUGREGS(r0, 0x8080aea1, &(0x7f00000010c0))
mkdirat$cgroup(r4, &(0x7f0000001140)='syz1\x00', 0x1ff)
fcntl$notify(r0, 0x402, 0x1)
socketpair$inet6_udplite(0xa, 0x2, 0x88, &(0x7f0000001180)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
fcntl$setownex(r7, 0xf, &(0x7f00000011c0)={0x1, r2})
setsockopt$inet6_IPV6_PKTINFO(r7, 0x29, 0x32, &(0x7f0000001200)={@dev={0xfe, 0x80, [], 0xb}, r1}, 0x14)
ioctl$BLKROGET(r4, 0x125e, &(0x7f0000001240))
ioctl$PPPIOCSFLAGS(r4, 0x40047459, &(0x7f0000001280)=0x40)
write$UHID_INPUT(r8, &(0x7f00000012c0)={0x8, "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", 0x1000}, 0x1006)
ioctl$PERF_EVENT_IOC_QUERY_BPF(r3, 0xc008240a, &(0x7f0000002300)={0x3, 0x0, [0x0, 0x0, 0x0]})
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000002340)='/dev/vhost-vsock\x00', 0x2, 0x0)
ioctl$FS_IOC_FSGETXATTR(r6, 0x801c581f, &(0x7f0000002380)={0x40, 0x5, 0x1, 0x100000001, 0x2a})
ioctl$KVM_SET_XCRS(r4, 0x4188aea7, &(0x7f00000023c0)={0x2, 0x0, [{0x5, 0x0, 0xffffffff}, {0x7fffffff, 0x0, 0x3}]})
timer_create(0x0, &(0x7f0000002400)={0x0, 0x31, 0x4, @tid=r2}, &(0x7f0000002440)=<r9=>0x0)
timer_getoverrun(r9)
ioctl$SNDRV_TIMER_IOCTL_STATUS(r4, 0x80605414, &(0x7f0000002480)=""/71)

06:11:32 executing program 0:
syz_open_dev$loop(&(0x7f00000000c0)='/dev/loop#\x00', 0x0, 0x0)

[  202.650569] 8021q: adding VLAN 0 to HW filter on device bond0
[  202.915052] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  202.923515] team0: Port device team_slave_0 added
06:11:33 executing program 0:

[  203.358870] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  203.367072] team0: Port device team_slave_1 added
06:11:33 executing program 0:

[  203.809281] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  203.816535] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  203.825156] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  203.831211] IPVS: ftp: loaded support on port[0] = 21
[  204.090625] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  204.165959] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  204.173158] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  204.181938] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  204.481791] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  204.489322] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  204.498445] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  204.803582] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  204.811096] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  204.820148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  205.323306] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  205.329656] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  205.337594] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
06:11:36 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rtc0\x00', 0x20001, 0x0)
r1 = socket$inet(0x2, 0xa, 0x0)
r2 = socket$inet6_dccp(0xa, 0x6, 0x0)
ioctl$sock_bt_hidp_HIDPCONNADD(r0, 0x400448c8, &(0x7f0000000280)={r1, r2, 0x8, 0x4, &(0x7f00000004c0)="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", 0x100, 0x7, 0xfffffffffffffffa, 0x6, 0xd9, 0x10000, 0x3, "a456b4c7543e62d3792d961ca24d4b2ba9a8a417f026354c05a7779b51fc3ec5d80f03ffd6a868fa7676ce29b404a142adddefb98b6c9e3bb066421999cbe35950b32dc4bbdaf6cce114db32548e027fd5833bd3594cbe665f35d2f00d5fada401"})
r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)="2f67726f75702e73746174003c23fb572a1f0294e6f378b41ad54b4d9d9a1f63f8785ad188a7e1c88875e05b18a4cb3a9cd12dcea440d899c22c652b3a471b4a7fa2f3fdf6e034d804e5f0df4b1dee483b157624c59c0100e89e6a357c000000", 0x2761, 0x0)
write$cgroup_int(r3, &(0x7f0000000080), 0x297ef)
sync()
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, &(0x7f0000000080), &(0x7f00000000c0)=0x8)
setsockopt$inet6_MRT6_ADD_MFC_PROXY(0xffffffffffffffff, 0x29, 0xd2, &(0x7f0000000000)={{0xa, 0x0, 0x7}, {0xa, 0x0, 0xffff}, 0x0, [0x1, 0x0, 0x40, 0x0, 0xcf1, 0x0, 0x0, 0x5]}, 0x5c)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffff9c, 0x8933, &(0x7f0000000240)={'vcan0\x00'})
getsockopt$inet6_mtu(0xffffffffffffffff, 0x29, 0x17, &(0x7f0000000440), &(0x7f0000000480)=0x4)

[  206.719974] 8021q: adding VLAN 0 to HW filter on device team0
[  206.853184] syz-executor1 uses obsolete (PF_INET,SOCK_PACKET)
[  206.991494] bridge0: port 1(bridge_slave_0) entered blocking state
[  206.998120] bridge0: port 1(bridge_slave_0) entered disabled state
[  207.006462] device bridge_slave_0 entered promiscuous mode
[  207.293503] bridge0: port 2(bridge_slave_1) entered blocking state
[  207.299980] bridge0: port 2(bridge_slave_1) entered disabled state
[  207.308490] device bridge_slave_1 entered promiscuous mode
[  207.476212] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  207.683870] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  208.265851] bridge0: port 2(bridge_slave_1) entered blocking state
[  208.272720] bridge0: port 2(bridge_slave_1) entered forwarding state
[  208.279610] bridge0: port 1(bridge_slave_0) entered blocking state
[  208.286169] bridge0: port 1(bridge_slave_0) entered forwarding state
[  208.294429] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  208.303657] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  208.548406] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  208.840906] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  209.080299] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  209.089068] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  209.379436] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  209.386840] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  210.236259] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  210.244493] team0: Port device team_slave_0 added
[  210.449954] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  210.458148] team0: Port device team_slave_1 added
[  210.726304] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  210.733686] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  210.742357] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  210.953063] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  210.960163] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  210.968957] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  211.199648] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  211.207492] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  211.216320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  211.469128] 8021q: adding VLAN 0 to HW filter on device bond0
[  211.491302] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  211.499215] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  211.508034] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  212.362937] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
06:11:43 executing program 2:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup.cpu\x00', 0x200002, 0x0)
fchdir(r0)
r1 = creat(&(0x7f0000000700)='./bus\x00', 0x0)
ioctl$EXT4_IOC_SWAP_BOOT(r1, 0x6611)

[  213.405015] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  213.411408] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  213.419474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  214.264097] 8021q: adding VLAN 0 to HW filter on device team0
[  214.317502] bridge0: port 2(bridge_slave_1) entered blocking state
[  214.324068] bridge0: port 2(bridge_slave_1) entered forwarding state
[  214.330960] bridge0: port 1(bridge_slave_0) entered blocking state
[  214.337560] bridge0: port 1(bridge_slave_0) entered forwarding state
[  214.345899] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  214.413311] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  217.901499] 8021q: adding VLAN 0 to HW filter on device bond0
[  218.639792] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
06:11:48 executing program 3:

[  219.276199] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  219.282756] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  219.290438] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  219.777352] 8021q: adding VLAN 0 to HW filter on device team0
[  221.378978] 8021q: adding VLAN 0 to HW filter on device bond0
[  221.862798] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  222.344944] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  222.351327] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  222.359236] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  222.834800] 8021q: adding VLAN 0 to HW filter on device team0
06:11:53 executing program 4:

06:11:53 executing program 0:

06:11:53 executing program 1:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$inet6(0xa, 0x1000000000002, 0x0)
r2 = gettid()
r3 = socket$inet(0x2, 0x6, 0x0)
setsockopt$inet_opts(r3, 0x0, 0x4, &(0x7f000064effb)="8907040000", 0x5)
connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={&(0x7f0000000340), &(0x7f0000000080)}}, &(0x7f0000583ffc))
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000e60000))
dup2(r1, r3)
tkill(r2, 0x14)

06:11:53 executing program 2:

06:11:53 executing program 3:

06:11:55 executing program 5:

06:11:55 executing program 3:

06:11:55 executing program 2:

06:11:55 executing program 0:

06:11:55 executing program 4:

06:11:55 executing program 1:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$inet6(0xa, 0x1000000000002, 0x0)
r2 = gettid()
r3 = socket$inet(0x2, 0x6, 0x0)
setsockopt$inet_opts(r3, 0x0, 0x4, &(0x7f000064effb)="8907040000", 0x5)
connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={&(0x7f0000000340), &(0x7f0000000080)}}, &(0x7f0000583ffc))
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000e60000))
dup2(r1, r3)
tkill(r2, 0x14)

06:11:55 executing program 5:

06:11:55 executing program 0:

06:11:55 executing program 4:

06:11:55 executing program 2:

06:11:55 executing program 3:

06:11:55 executing program 1:

06:11:55 executing program 0:

06:11:55 executing program 2:

06:11:55 executing program 5:

06:11:56 executing program 3:

06:11:56 executing program 4:

06:11:56 executing program 0:

06:11:56 executing program 5:

06:11:56 executing program 1:

06:11:56 executing program 4:

06:11:56 executing program 2:

06:11:56 executing program 0:

06:11:56 executing program 3:

06:11:56 executing program 5:

06:11:56 executing program 4:

06:11:56 executing program 1:

06:11:56 executing program 2:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
creat(&(0x7f0000000200)='./bus\x00', 0x0)
r2 = open(&(0x7f000000fffa)='./bus\x00', 0x0, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x11, r2, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x151)
connect$inet6(r1, &(0x7f0000000140), 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000080)='tls\x00', 0x152)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100), 0x28)
sendmsg$TEAM_CMD_PORT_LIST_GET(r1, &(0x7f000000f840)={&(0x7f0000000040), 0xc, &(0x7f000000f800)={&(0x7f0000000280)=ANY=[@ANYBLOB], 0x1}}, 0x8000)
sendto$inet6(r1, &(0x7f00000005c0), 0xfffffdef, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote}, 0x1c)

06:11:56 executing program 0:
r0 = openat$ion(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000000)={0x5, 0xfffffffffffffffe, 0x0, <r1=>0xffffffffffffffff})
ioctl$DMA_BUF_IOCTL_SYNC(r1, 0x40086200, &(0x7f0000000040)=0x1)
dup2(r0, r1)

[  226.938916] ==================================================================
[  226.946342] BUG: KMSAN: uninit-value in vmap_page_range_noflush+0x975/0xed0
[  226.953459] CPU: 0 PID: 7570 Comm: syz-executor0 Not tainted 4.19.0-rc4+ #66
[  226.960648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  226.970007] Call Trace:
[  226.972609]  dump_stack+0x306/0x460
[  226.976248]  ? vmap_page_range_noflush+0x975/0xed0
[  226.981206]  kmsan_report+0x1a2/0x2e0
[  226.985023]  __msan_warning+0x7c/0xe0
[  226.988839]  vmap_page_range_noflush+0x975/0xed0
[  226.993635]  map_vm_area+0x17d/0x1f0
[  226.997371]  kmsan_vmap+0xf2/0x180
[  227.000928]  vmap+0x3a1/0x510
[  227.004051]  ? ion_heap_map_kernel+0xa33/0xad0
[  227.008652]  ion_heap_map_kernel+0xa33/0xad0
[  227.013082]  ? ion_ioctl+0x690/0x690
[  227.016812]  ion_dma_buf_begin_cpu_access+0x2ba/0x9b0
[  227.022024]  ? ion_dma_buf_release+0x430/0x430
[  227.026616]  dma_buf_ioctl+0x376/0x630
[  227.030522]  ? dma_buf_poll+0x1690/0x1690
[  227.034690]  do_vfs_ioctl+0xcf3/0x2810
[  227.038601]  ? security_file_ioctl+0x92/0x200
[  227.043114]  __se_sys_ioctl+0x1da/0x270
[  227.047111]  __x64_sys_ioctl+0x4a/0x70
[  227.051011]  do_syscall_64+0xbe/0x100
[  227.054831]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  227.060025] RIP: 0033:0x457519
[  227.063228] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  227.082143] RSP: 002b:00007f4f59e01c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  227.089867] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457519
[  227.097144] RDX: 0000000020000040 RSI: 0000000040086200 RDI: 0000000000000004
[  227.104422] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  227.111701] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f59e026d4
[  227.118974] R13: 00000000004bed50 R14: 00000000004cead0 R15: 00000000ffffffff
[  227.126309] 
[  227.127946] Uninit was created at:
[  227.131506]  kmsan_internal_poison_shadow+0xc8/0x1d0
[  227.136630]  kmsan_kmalloc+0xa4/0x120
[  227.140444]  __kmalloc+0x14b/0x440
[  227.143994]  kmsan_vmap+0x9b/0x180
[  227.147555]  vmap+0x3a1/0x510
[  227.150666]  ion_heap_map_kernel+0xa33/0xad0
[  227.155083]  ion_dma_buf_begin_cpu_access+0x2ba/0x9b0
[  227.160289]  dma_buf_ioctl+0x376/0x630
[  227.164186]  do_vfs_ioctl+0xcf3/0x2810
[  227.168083]  __se_sys_ioctl+0x1da/0x270
[  227.172068]  __x64_sys_ioctl+0x4a/0x70
[  227.175983]  do_syscall_64+0xbe/0x100
[  227.179788]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  227.184988] ==================================================================
[  227.192348] Disabling lock debugging due to kernel taint
[  227.197803] Kernel panic - not syncing: panic_on_warn set ...
[  227.197803] 
[  227.205176] CPU: 0 PID: 7570 Comm: syz-executor0 Tainted: G    B             4.19.0-rc4+ #66
[  227.213750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  227.223128] Call Trace:
[  227.225731]  dump_stack+0x306/0x460
[  227.229383]  panic+0x54c/0xafa
[  227.232620]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  227.238170]  kmsan_report+0x2d3/0x2e0
[  227.241990]  __msan_warning+0x7c/0xe0
[  227.245829]  vmap_page_range_noflush+0x975/0xed0
[  227.250629]  map_vm_area+0x17d/0x1f0
[  227.254383]  kmsan_vmap+0xf2/0x180
[  227.257945]  vmap+0x3a1/0x510
[  227.261068]  ? ion_heap_map_kernel+0xa33/0xad0
[  227.265676]  ion_heap_map_kernel+0xa33/0xad0
[  227.270138]  ? ion_ioctl+0x690/0x690
[  227.273878]  ion_dma_buf_begin_cpu_access+0x2ba/0x9b0
[  227.279098]  ? ion_dma_buf_release+0x430/0x430
[  227.283699]  dma_buf_ioctl+0x376/0x630
[  227.287620]  ? dma_buf_poll+0x1690/0x1690
[  227.291822]  do_vfs_ioctl+0xcf3/0x2810
[  227.295732]  ? security_file_ioctl+0x92/0x200
[  227.300252]  __se_sys_ioctl+0x1da/0x270
[  227.304283]  __x64_sys_ioctl+0x4a/0x70
[  227.308202]  do_syscall_64+0xbe/0x100
[  227.312021]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  227.317217] RIP: 0033:0x457519
[  227.320416] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  227.339325] RSP: 002b:00007f4f59e01c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  227.347049] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457519
[  227.354326] RDX: 0000000020000040 RSI: 0000000040086200 RDI: 0000000000000004
[  227.361601] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  227.368879] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f59e026d4
[  227.376159] R13: 00000000004bed50 R14: 00000000004cead0 R15: 00000000ffffffff
[  227.384597] Kernel Offset: disabled
[  227.388245] Rebooting in 86400 seconds..