[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 56.710101] audit: type=1800 audit(1540412067.759:25): pid=6054 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 56.729198] audit: type=1800 audit(1540412067.759:26): pid=6054 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 56.749212] audit: type=1800 audit(1540412067.779:27): pid=6054 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.10.8' (ECDSA) to the list of known hosts. 2018/10/24 20:14:42 fuzzer started 2018/10/24 20:14:47 dialing manager at 10.128.0.26:35127 2018/10/24 20:14:47 syscalls: 1 2018/10/24 20:14:47 code coverage: enabled 2018/10/24 20:14:47 comparison tracing: CONFIG_KCOV_ENABLE_COMPARISONS is not enabled 2018/10/24 20:14:47 setuid sandbox: enabled 2018/10/24 20:14:47 namespace sandbox: enabled 2018/10/24 20:14:47 Android sandbox: /sys/fs/selinux/policy does not exist 2018/10/24 20:14:47 fault injection: enabled 2018/10/24 20:14:47 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2018/10/24 20:14:47 net packed injection: enabled 2018/10/24 20:14:47 net device setup: enabled 20:17:23 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_hmac_sha512\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000001400), 0x0) r1 = accept$alg(r0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000008e80)=[{{&(0x7f0000000140)=@ethernet={0x0, @remote}, 0x80, &(0x7f0000001600)=[{&(0x7f0000001540)=""/165, 0x536}], 0x1, &(0x7f0000001680)=""/72, 0x48}}], 0x1, 0x0, &(0x7f0000002240)) syzkaller login: [ 233.415180] IPVS: ftp: loaded support on port[0] = 21 [ 235.810565] bridge0: port 1(bridge_slave_0) entered blocking state [ 235.817135] bridge0: port 1(bridge_slave_0) entered disabled state [ 235.826305] device bridge_slave_0 entered promiscuous mode [ 235.968104] bridge0: port 2(bridge_slave_1) entered blocking state [ 235.974690] bridge0: port 2(bridge_slave_1) entered disabled state [ 235.983163] device bridge_slave_1 entered promiscuous mode [ 236.124643] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 236.264443] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready 20:17:27 executing program 1: perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sync() [ 236.699883] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 236.907798] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 237.294229] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 237.301254] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 237.380635] IPVS: ftp: loaded support on port[0] = 21 [ 237.937022] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 237.945231] team0: Port device team_slave_0 added [ 238.216822] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 238.225080] team0: Port device team_slave_1 added [ 238.495230] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 238.502452] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 238.511263] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 238.696223] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 238.703430] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 238.712493] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 238.976702] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 238.984420] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 238.993645] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 239.210359] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 239.218249] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 239.227315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 240.774071] bridge0: port 1(bridge_slave_0) entered blocking state [ 240.780557] bridge0: port 1(bridge_slave_0) entered disabled state [ 240.789046] device bridge_slave_0 entered promiscuous mode [ 241.094951] bridge0: port 2(bridge_slave_1) entered blocking state [ 241.101429] bridge0: port 2(bridge_slave_1) entered disabled state [ 241.110044] device bridge_slave_1 entered promiscuous mode [ 241.374011] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 241.541809] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 241.839565] bridge0: port 2(bridge_slave_1) entered blocking state [ 241.846128] bridge0: port 2(bridge_slave_1) entered forwarding state [ 241.853153] bridge0: port 1(bridge_slave_0) entered blocking state [ 241.859718] bridge0: port 1(bridge_slave_0) entered forwarding state [ 241.868557] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 242.232505] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 242.381118] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 242.687830] bond0: Enslaving bond_slave_1 as an active interface with an up link 20:17:33 executing program 2: mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0) mount(&(0x7f00000000c0)=ANY=[], &(0x7f00000001c0)='./file0\x00', &(0x7f0000000100)='configfs\x00', 0x0, &(0x7f00000000c0)) r0 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) getdents(r0, &(0x7f0000000340)=""/124, 0x7c) [ 242.971470] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 242.978675] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 243.315268] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 243.322387] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 243.535273] IPVS: ftp: loaded support on port[0] = 21 [ 244.242079] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 244.250080] team0: Port device team_slave_0 added [ 244.540542] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 244.548669] team0: Port device team_slave_1 added [ 244.933894] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 244.940961] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 244.949820] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 245.237091] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 245.244232] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 245.253181] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 245.588885] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 245.596671] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 245.606199] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 245.829393] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 245.837200] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 245.846371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 247.985702] bridge0: port 1(bridge_slave_0) entered blocking state [ 247.992332] bridge0: port 1(bridge_slave_0) entered disabled state [ 248.000663] device bridge_slave_0 entered promiscuous mode [ 248.331602] bridge0: port 2(bridge_slave_1) entered blocking state [ 248.338294] bridge0: port 2(bridge_slave_1) entered disabled state [ 248.346767] device bridge_slave_1 entered promiscuous mode [ 248.659442] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 248.921642] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 249.055043] bridge0: port 2(bridge_slave_1) entered blocking state [ 249.061559] bridge0: port 2(bridge_slave_1) entered forwarding state [ 249.068650] bridge0: port 1(bridge_slave_0) entered blocking state [ 249.075243] bridge0: port 1(bridge_slave_0) entered forwarding state [ 249.084059] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 249.682275] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 249.958466] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 250.273320] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 250.519774] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 250.526890] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 250.766134] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 250.773331] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready 20:17:42 executing program 3: r0 = memfd_create(&(0x7f00000061c0)='$\x00', 0x2) write$P9_RLCREATE(r0, &(0x7f0000006200)={0x18, 0xf, 0x1, {{0x0, 0x2, 0x8}, 0x1000}}, 0x18) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet6(0xa, 0x805, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f0000000800)={r2}) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(0xffffffffffffff9c, 0x84, 0x66, &(0x7f0000005d40)={0x0, 0x10000}, &(0x7f0000006140)=0x8) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}, 0x0, 0x0, 0x0, 0x2000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x200, 0x0) futex(&(0x7f0000000080)=0x2, 0xf, 0x2, &(0x7f0000000380)={0x0, 0x989680}, &(0x7f00000003c0)=0x2, 0x0) flistxattr(r3, &(0x7f0000000400)=""/168, 0xfffffffffffffcc0) recvmmsg(r3, &(0x7f0000005ec0)=[{{&(0x7f0000001b00)=@vsock={0x28, 0x0, 0x0, @my}, 0x80, &(0x7f0000001cc0)=[{&(0x7f0000001b80)=""/128, 0x80}, {&(0x7f0000001c00)=""/108, 0x6c}, {&(0x7f0000001c80)=""/27, 0x1b}], 0x3, &(0x7f0000001d00)=""/94, 0x5e, 0x5}, 0x1f}, {{&(0x7f0000001d80)=@hci, 0xfffffc74, &(0x7f00000033c0)=[{&(0x7f0000001e00)=""/159, 0x9f}, {&(0x7f0000001ec0)=""/128, 0x80}, {&(0x7f0000001f40)=""/231, 0xe7}, {&(0x7f0000002040)=""/203, 0xcb}, {&(0x7f0000002140)=""/4096, 0x1000}, {&(0x7f0000003140)=""/68, 0x44}, {&(0x7f00000031c0)=""/165, 0xa5}, {&(0x7f0000003280)=""/158, 0x9e}, {&(0x7f0000003340)=""/77, 0x4d}], 0x9, &(0x7f0000003480)=""/142, 0x8e, 0x2}, 0x3f}, {{&(0x7f0000003540)=@in={0x2, 0x0, @broadcast}, 0x80, &(0x7f0000003900)=[{&(0x7f00000035c0)=""/104, 0x68}, {&(0x7f0000003700)=""/180, 0xb4}, {&(0x7f00000037c0)}, {&(0x7f0000003800)=""/237, 0xed}], 0x4, &(0x7f0000003980)=""/75, 0x4b}, 0x1f}, {{&(0x7f0000003a00)=@pppol2tpv3in6, 0x80, &(0x7f0000003cc0)=[{&(0x7f0000003a80)=""/154, 0x9a}, {&(0x7f0000003b40)=""/123, 0x7b}], 0x2, &(0x7f0000003d00)=""/196, 0xc4, 0xfff}, 0x401}, {{&(0x7f0000003e00)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, 0x80, &(0x7f0000004480)=[{&(0x7f0000003e80)=""/218, 0xda}, {&(0x7f0000003f80)=""/150, 0x96}, {&(0x7f0000004040)=""/167, 0xa7}, {&(0x7f0000004100)=""/53, 0x35}, {&(0x7f0000004140)=""/50, 0x32}, {&(0x7f0000000580)=""/155, 0x9b}, {&(0x7f0000004240)=""/223, 0xdf}, {&(0x7f0000004340)=""/12, 0xc}, {&(0x7f0000004380)=""/235, 0xeb}], 0x9, 0x0, 0x0, 0x7f}, 0x6}, {{&(0x7f0000004540)=@un=@abs, 0x80, &(0x7f0000005b40)=[{&(0x7f00000045c0)=""/56, 0x38}, {&(0x7f0000004600)=""/4096, 0x1000}, {&(0x7f0000005600)=""/63, 0x3f}, {&(0x7f0000005740)=""/113, 0x71}, {&(0x7f00000057c0)=""/167, 0xa7}, {&(0x7f0000005a40)=""/246, 0xf6}], 0x6, &(0x7f0000005c00)=""/181, 0xb5, 0x1}, 0x5}, {{&(0x7f0000005cc0)=@xdp, 0x80, &(0x7f0000005dc0)=[{&(0x7f0000005d40)}, {&(0x7f0000005d80)=""/12, 0xc}], 0x2, &(0x7f0000005e00)=""/135, 0x87, 0x101}}], 0x7, 0x100, &(0x7f00000060c0)={0x0, 0x1c9c380}) epoll_wait(0xffffffffffffffff, &(0x7f0000000180)=[{}], 0x1, 0x9) unshare(0x40000000) r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000140)='/dev/zero\x00', 0x2e0402, 0x0) ioctl$KVM_HAS_DEVICE_ATTR(r4, 0x4018aee3, &(0x7f00000002c0)={0x0, 0x1ec4, 0xffe, &(0x7f0000000040)}) r5 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0, 0x2) lseek(r5, 0x0, 0x0) setsockopt$inet6_dccp_buf(r4, 0x21, 0xf, &(0x7f0000000300), 0x0) openat$cgroup_ro(r3, &(0x7f0000000280)='cpu.stat\x00', 0x0, 0x0) sendto$inet6(r2, &(0x7f00000000c0), 0x284, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x8, @dev={0xfe, 0x80, [0x8dffffff]}, 0x9}, 0x1c) ioctl$KDSIGACCEPT(r5, 0x4b4e, 0x13) sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f00000004c0), 0xc, &(0x7f0000000780)={&(0x7f0000000600)=ANY=[]}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000000) r6 = socket$inet_dccp(0x2, 0x6, 0x0) recvmsg(r6, &(0x7f0000000240)={&(0x7f00000000c0)=@ethernet={0x0, @link_local}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000140)=""/200, 0xc8}], 0x1, 0x0, 0x0, 0x2}, 0x2000) bind$rds(r5, &(0x7f0000000340)={0x2, 0x4e23, @local}, 0x10) syz_genetlink_get_family_id$ipvs(&(0x7f0000000540)='IPVS\x00') r7 = socket$alg(0x26, 0x5, 0x0) bind$alg(r7, &(0x7f00000001c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-des3_ede-asm\x00'}, 0xffffffffffffff3b) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000700)={&(0x7f00000006c0)='./file0\x00', r0}, 0x10) [ 251.840221] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 251.848432] team0: Port device team_slave_0 added [ 252.197547] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 252.205709] team0: Port device team_slave_1 added [ 252.478738] IPVS: ftp: loaded support on port[0] = 21 [ 252.519607] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 252.526826] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 252.535950] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 252.946697] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 252.953831] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 252.962813] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 253.355834] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 253.363632] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 253.372627] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 253.792168] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 253.801503] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 253.810606] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 254.520034] 8021q: adding VLAN 0 to HW filter on device bond0 [ 256.008903] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 257.419597] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 257.426075] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 257.434293] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 257.680531] bridge0: port 2(bridge_slave_1) entered blocking state [ 257.687233] bridge0: port 2(bridge_slave_1) entered forwarding state [ 257.694290] bridge0: port 1(bridge_slave_0) entered blocking state [ 257.700742] bridge0: port 1(bridge_slave_0) entered forwarding state [ 257.709582] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 257.732835] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 258.461180] bridge0: port 1(bridge_slave_0) entered blocking state [ 258.467785] bridge0: port 1(bridge_slave_0) entered disabled state [ 258.476353] device bridge_slave_0 entered promiscuous mode [ 258.802270] 8021q: adding VLAN 0 to HW filter on device team0 [ 258.854043] bridge0: port 2(bridge_slave_1) entered blocking state [ 258.860517] bridge0: port 2(bridge_slave_1) entered disabled state [ 258.869170] device bridge_slave_1 entered promiscuous mode [ 259.265872] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 259.587620] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 260.581169] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 260.951200] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 261.331354] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 261.338763] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 261.702710] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 261.709781] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready 20:17:52 executing program 4: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r0, &(0x7f0000000000)="06", 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x17}}}, 0x1c) [ 263.027569] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 263.035796] team0: Port device team_slave_0 added [ 263.359769] IPVS: ftp: loaded support on port[0] = 21 [ 263.387618] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 263.395692] team0: Port device team_slave_1 added [ 263.748732] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 263.755957] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 263.765026] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 264.066625] 8021q: adding VLAN 0 to HW filter on device bond0 [ 264.186751] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 264.193932] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 264.202954] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 264.601673] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 264.609632] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 264.619011] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 265.076867] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 265.084583] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 265.093795] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 265.751882] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 266.721873] ip (6900) used greatest stack depth: 53488 bytes left [ 267.286013] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 267.292574] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 267.300542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready 20:18:00 executing program 0: clone(0x2102001ffe, 0x0, 0xfffffffffffffffe, &(0x7f0000000280), 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)="2f65786500000000000409004bdd070000a4d119698f1c12750f798058439ed554fa07424adee901d2da75cb85b4b7a1350588743c8d9baf1f02acc7edbcd7a071fb35331ce39c5a8b0bd6dcaf21bc211317ffef33867ccc5b8f1439b56d341662bc8880979843b3355236be93426485f99f87998f48ad7ffa29bda080d701b70d252407218fad612e074583416711ec1053ba40f26809a95171a9") fsetxattr$security_smack_entry(r0, &(0x7f0000000140)='security.SMACK64IPIN\x00', &(0x7f00000002c0)='proc$\x00', 0x6, 0x2) [ 269.067599] 8021q: adding VLAN 0 to HW filter on device team0 20:18:00 executing program 0: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) r1 = socket$l2tp(0x18, 0x1, 0x1) connect$l2tp(r1, &(0x7f0000000180)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x0, @multicast2}, 0x4}}, 0x26) sendmmsg(r0, &(0x7f0000000100), 0xef, 0x8000) r2 = syz_open_dev$amidi(&(0x7f0000000040)='/dev/amidi#\x00', 0x2, 0x4000) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00') sendmsg$IPVS_CMD_GET_DAEMON(r2, &(0x7f0000001200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000011c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="b7562681daa101e5c2f870d7407f1c0c2af6cfc81de7afc9d221d76a0c8d10370fb2debc938d6c98bb42fb309f1de374a298c5af32b50e436c4f184d9a92e893c59bf158cebad24c71e847adac4808b13ce377076f7824fa1fcdf2f8d48a2436bc23878c84d5412d1233532138504b402d1cc8e840641eee536bd3baebcbb3964dfe947834", @ANYRES16=r3, @ANYBLOB="00062bbd7000ffdbdf250b0000000c0003000800010003000000"], 0x20}, 0x1, 0x0, 0x0, 0x4000040}, 0x4000000) r4 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x2, 0x101001) ioctl$EVIOCGKEY(r4, 0x80404518, &(0x7f00000001c0)=""/4096) 20:18:01 executing program 0: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) r1 = socket$l2tp(0x18, 0x1, 0x1) connect$l2tp(r1, &(0x7f0000000180)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x0, @multicast2}, 0x4}}, 0x26) sendmmsg(r0, &(0x7f0000000100), 0xef, 0x8000) r2 = syz_open_dev$amidi(&(0x7f0000000040)='/dev/amidi#\x00', 0x2, 0x4000) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00') sendmsg$IPVS_CMD_GET_DAEMON(r2, &(0x7f0000001200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000011c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="b7562681daa101e5c2f870d7407f1c0c2af6cfc81de7afc9d221d76a0c8d10370fb2debc938d6c98bb42fb309f1de374a298c5af32b50e436c4f184d9a92e893c59bf158cebad24c71e847adac4808b13ce377076f7824fa1fcdf2f8d48a2436bc23878c84d5412d1233532138504b402d1cc8e840641eee536bd3baebcbb3964dfe947834", @ANYRES16=r3, @ANYBLOB="00062bbd7000ffdbdf250b0000000c0003000800010003000000"], 0x20}, 0x1, 0x0, 0x0, 0x4000040}, 0x4000000) r4 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x2, 0x101001) ioctl$EVIOCGKEY(r4, 0x80404518, &(0x7f00000001c0)=""/4096) [ 270.134002] bridge0: port 2(bridge_slave_1) entered blocking state [ 270.140515] bridge0: port 2(bridge_slave_1) entered forwarding state [ 270.147604] bridge0: port 1(bridge_slave_0) entered blocking state [ 270.154197] bridge0: port 1(bridge_slave_0) entered forwarding state [ 270.162759] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 270.404639] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready 20:18:01 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @multicast1}, 0x10) setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000d4effc)=0x1, 0x4) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000d80)={@in, 0x0, 0x8, 0x0, "4dbd3b0988e17b2d1d331c69872a9dda1d6a64edcd1cd30fb0ce73f1249d122559232b4970ee70afb23c5802edeb144bd80029d8a5754107cec75bbd53956c00"}, 0xd8) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10) sendto$inet(r0, &(0x7f00006d1fd4)="db", 0x1, 0x0, &(0x7f00004daff0)={0x2, 0x0, @broadcast}, 0x10) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) r2 = fcntl$dupfd(r0, 0x0, r0) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) futimesat(r2, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)={{0x77359400}, {r3, r4/1000+30000}}) ioctl(r1, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") sendto$inet(r0, &(0x7f0000000240)="df", 0x1, 0x4000010, &(0x7f0000000100)={0x2, 0x0, @broadcast}, 0x10) [ 270.706569] bridge0: port 1(bridge_slave_0) entered blocking state [ 270.713227] bridge0: port 1(bridge_slave_0) entered disabled state [ 270.721689] device bridge_slave_0 entered promiscuous mode [ 270.864609] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 271.219074] bridge0: port 2(bridge_slave_1) entered blocking state [ 271.226039] bridge0: port 2(bridge_slave_1) entered disabled state [ 271.234510] device bridge_slave_1 entered promiscuous mode 20:18:02 executing program 0: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f0000d84000)={0xa, 0x2}, 0x1c) ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0x5) accept4$alg(r0, 0x0, 0x0, 0x80000) sendto$inet6(r2, &(0x7f0000000080), 0x0, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r1, 0x40106614, &(0x7f0000000040)) sendto$inet6(r2, &(0x7f0000000080)="fe", 0x1, 0x80000000001, &(0x7f00000001c0)={0xa, 0x4e22, 0x0, @local}, 0x1c) splice(r2, 0x0, r1, 0x0, 0xab11, 0x0) [ 271.729020] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready 20:18:02 executing program 0: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000b6dfc8)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000000080)={0x2, 0x400000000000003, 0x0, 0x3, 0x13, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @ipv4={[], [], @rand_addr}}}, @sadb_address={0x5, 0x9, 0xffffff3d, 0x0, 0x0, @in6}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffffff02}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @mcast2}}]}, 0x98}}, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$KDDISABIO(r1, 0x4b37) [ 272.173624] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready 20:18:04 executing program 0: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000b6dfc8)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000000080)={0x2, 0x400000000000003, 0x0, 0x3, 0x13, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @ipv4={[], [], @rand_addr}}}, @sadb_address={0x5, 0x9, 0xffffff3d, 0x0, 0x0, @in6}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffffff02}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @mcast2}}]}, 0x98}}, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$KDDISABIO(r1, 0x4b37) [ 273.428617] bond0: Enslaving bond_slave_0 as an active interface with an up link 20:18:04 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000280)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x1262, 0x0) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/drop_entry\x00', 0x2, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000040)={0x3, [0x0, 0x0, 0x0]}, &(0x7f0000000080)=0x10) [ 273.886712] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 274.311636] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 274.318863] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 274.708823] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 274.716047] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 275.052981] 8021q: adding VLAN 0 to HW filter on device bond0 [ 275.764057] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 275.772424] team0: Port device team_slave_0 added [ 276.076266] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 276.084521] team0: Port device team_slave_1 added [ 276.187352] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 276.412376] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 276.419439] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 276.428254] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 276.691314] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 276.698566] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 276.708247] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 276.986964] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 276.994769] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 277.003852] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 277.307463] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 277.314006] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 277.321791] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 277.342548] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 277.353247] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 277.362047] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready 20:18:09 executing program 0: r0 = socket$packet(0x11, 0x3, 0x300) socketpair$unix(0x1, 0x2000000000001, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) recvmmsg(r1, &(0x7f0000003000)=[{{&(0x7f0000000280)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x80, &(0x7f0000000180)}}], 0x1, 0x0, &(0x7f0000001b00)) clone(0x0, &(0x7f0000000100), &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000100)) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000100)='/dev/full\x00', 0x8000, 0x0) write$P9_RLERRORu(r3, &(0x7f0000000140)={0x25, 0x7, 0x1, {{0x18, "6b657972696e67656d3070707030776c616e31d670707030"}, 0x7}}, 0x25) dup2(r0, r2) setsockopt$packet_int(r0, 0x107, 0x10, &(0x7f00000000c0)=0x8, 0x4) [ 278.420631] 8021q: adding VLAN 0 to HW filter on device team0 [ 280.530854] bridge0: port 2(bridge_slave_1) entered blocking state [ 280.537422] bridge0: port 2(bridge_slave_1) entered forwarding state [ 280.544525] bridge0: port 1(bridge_slave_0) entered blocking state [ 280.550976] bridge0: port 1(bridge_slave_0) entered forwarding state [ 280.559524] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 280.566208] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 282.142690] 8021q: adding VLAN 0 to HW filter on device bond0 [ 282.883985] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 283.698686] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 283.705707] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 283.713570] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready 20:18:15 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setxattr$security_selinux(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='security.selinux\x00', &(0x7f0000000240)='system_u:object_r:dhcpd_initrc_exec_t:s0\x00', 0x29, 0x2) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x0, &(0x7f0000000080), 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, &(0x7f0000000040)="b9800000c00f3235001000000f30f24c0f2c49e8426dc4027d3493b80800003626660f7e676d660f1678b06cc403f9dfbeb70000000bc7442400f5000000c744240284d178bcff1c24f2f347dbe1", 0x4e}], 0x77, 0x48, &(0x7f0000000140), 0x1000000000000390) fsetxattr(r0, &(0x7f00000000c0)=@known='trusted.overlay.upper\x00', &(0x7f0000000100)='}\x00', 0x2, 0x1) r3 = syz_open_dev$audion(&(0x7f0000000280)='/dev/audio#\x00', 0x1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x2400, 0x8001) ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000000580)={0x0, 0x0, 0x2080, {0x0, 0xf000}, [], "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", "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"}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0xc02, 0x0) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) getsockopt$inet6_mreq(r3, 0x29, 0x1f, &(0x7f00000027c0)={@dev, 0x0}, &(0x7f0000002800)=0x14) getresuid(&(0x7f0000002840), &(0x7f0000002880)=0x0, &(0x7f00000028c0)) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000002900)={{{@in=@remote, @in6=@remote, 0x4e24, 0x4, 0x4e22, 0x2, 0xa, 0x20, 0xa0, 0xe6, r4, r5}, {0x8, 0x10000, 0x2, 0x5, 0x4, 0x1, 0x8, 0x6}, {0x0, 0x81, 0x3, 0x1b00}, 0x1, 0x6e6bba, 0x0, 0x1, 0x2, 0x3}, {{@in6=@local, 0x4d3, 0xff}, 0xa, @in6=@mcast2, 0x3502, 0x3, 0x3, 0x9, 0x0, 0x101, 0x6}}, 0xe8) [ 284.129383] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details. [ 284.314655] ================================================================== [ 284.322101] BUG: KMSAN: kernel-infoleak in kvm_vcpu_write_guest_page+0x383/0x500 [ 284.329672] CPU: 1 PID: 7392 Comm: syz-executor2 Not tainted 4.19.0-rc8+ #70 [ 284.336876] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 284.346253] Call Trace: [ 284.348884] dump_stack+0x306/0x460 [ 284.352548] ? kvm_vcpu_write_guest_page+0x383/0x500 [ 284.357699] kmsan_report+0x1a2/0x2e0 [ 284.361545] kmsan_internal_check_memory+0x374/0x460 [ 284.366687] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 284.372193] kmsan_copy_to_user+0x89/0xe0 [ 284.376374] kvm_vcpu_write_guest_page+0x383/0x500 [ 284.381356] handle_vmptrld+0x22ad/0x25e0 [ 284.385593] ? handle_vmlaunch+0x60/0x60 [ 284.389690] vmx_handle_exit+0x20f5/0xb900 [ 284.394003] ? vmx_flush_tlb_gva+0x450/0x450 [ 284.398455] kvm_arch_vcpu_ioctl_run+0xa22b/0x10ab0 [ 284.403669] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 284.409078] ? __list_del_entry_valid+0x123/0x440 [ 284.413968] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 284.419464] ? wait_for_common+0x791/0x960 [ 284.423784] ? kmsan_set_origin+0x83/0x140 [ 284.428052] ? kmsan_internal_unpoison_shadow+0x83/0xe0 [ 284.433447] ? __msan_get_context_state+0x9/0x30 [ 284.438247] ? INIT_BOOL+0x17/0x30 [ 284.441819] ? put_pid+0x3de/0x410 [ 284.445406] kvm_vcpu_ioctl+0x11a7/0x20b0 [ 284.449612] ? do_vfs_ioctl+0x187/0x2ca0 [ 284.453694] ? __se_sys_ioctl+0x1da/0x270 [ 284.457872] ? kvm_vm_release+0x90/0x90 [ 284.461875] do_vfs_ioctl+0xf28/0x2ca0 [ 284.465807] ? security_file_ioctl+0x92/0x200 [ 284.470345] __se_sys_ioctl+0x1da/0x270 [ 284.474357] __x64_sys_ioctl+0x4a/0x70 [ 284.478269] do_syscall_64+0xbe/0x100 [ 284.482102] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 284.487310] RIP: 0033:0x457569 [ 284.490534] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 284.509469] RSP: 002b:00007fda1b6eec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 284.517231] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 284.524531] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 284.531826] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 284.539134] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fda1b6ef6d4 [ 284.546426] R13: 00000000004c0027 R14: 00000000004d0108 R15: 00000000ffffffff [ 284.553731] [ 284.555377] Uninit was created at: [ 284.558945] kmsan_internal_poison_shadow+0xc8/0x1d0 [ 284.564073] kmsan_kmalloc+0xa4/0x120 [ 284.567917] __kmalloc+0x14b/0x440 [ 284.571487] enter_vmx_operation+0x601/0x1660 [ 284.576023] vmx_set_nested_state+0xca3/0x1590 [ 284.580629] kvm_arch_vcpu_ioctl+0x5224/0x75a0 [ 284.585233] kvm_vcpu_ioctl+0xd6e/0x20b0 [ 284.589321] do_vfs_ioctl+0xf28/0x2ca0 [ 284.593243] __se_sys_ioctl+0x1da/0x270 [ 284.597245] __x64_sys_ioctl+0x4a/0x70 [ 284.601151] do_syscall_64+0xbe/0x100 [ 284.605296] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 284.610499] [ 284.612143] Bytes 1000-4095 of 4096 are uninitialized [ 284.617354] Memory access of size 4096 starts at ffff880182b39000 [ 284.623591] ================================================================== [ 284.630965] Disabling lock debugging due to kernel taint [ 284.636440] Kernel panic - not syncing: panic_on_warn set ... [ 284.636440] [ 284.643859] CPU: 1 PID: 7392 Comm: syz-executor2 Tainted: G B 4.19.0-rc8+ #70 [ 284.652463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 284.661872] Call Trace: [ 284.664508] dump_stack+0x306/0x460 [ 284.668191] panic+0x54c/0xafa [ 284.671470] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 284.676966] kmsan_report+0x2d3/0x2e0 [ 284.680814] kmsan_internal_check_memory+0x374/0x460 [ 284.685954] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 284.691460] kmsan_copy_to_user+0x89/0xe0 [ 284.695658] kvm_vcpu_write_guest_page+0x383/0x500 [ 284.700651] handle_vmptrld+0x22ad/0x25e0 [ 284.704848] ? handle_vmlaunch+0x60/0x60 [ 284.708935] vmx_handle_exit+0x20f5/0xb900 [ 284.713229] ? vmx_flush_tlb_gva+0x450/0x450 [ 284.717672] kvm_arch_vcpu_ioctl_run+0xa22b/0x10ab0 [ 284.722846] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 284.728237] ? __list_del_entry_valid+0x123/0x440 [ 284.733121] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 284.739079] ? wait_for_common+0x791/0x960 [ 284.743371] ? kmsan_set_origin+0x83/0x140 [ 284.747635] ? kmsan_internal_unpoison_shadow+0x83/0xe0 [ 284.753074] ? __msan_get_context_state+0x9/0x30 [ 284.757912] ? INIT_BOOL+0x17/0x30 [ 284.761496] ? put_pid+0x3de/0x410 [ 284.765089] kvm_vcpu_ioctl+0x11a7/0x20b0 [ 284.769284] ? do_vfs_ioctl+0x187/0x2ca0 [ 284.773404] ? __se_sys_ioctl+0x1da/0x270 [ 284.777598] ? kvm_vm_release+0x90/0x90 [ 284.781659] do_vfs_ioctl+0xf28/0x2ca0 [ 284.785599] ? security_file_ioctl+0x92/0x200 [ 284.790159] __se_sys_ioctl+0x1da/0x270 [ 284.794176] __x64_sys_ioctl+0x4a/0x70 [ 284.798117] do_syscall_64+0xbe/0x100 [ 284.801949] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 284.807204] RIP: 0033:0x457569 [ 284.810420] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 284.829343] RSP: 002b:00007fda1b6eec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 284.837072] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 284.844357] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 284.851641] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 284.858951] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fda1b6ef6d4 [ 284.866243] R13: 00000000004c0027 R14: 00000000004d0108 R15: 00000000ffffffff [ 284.874547] Kernel Offset: disabled [ 284.878188] Rebooting in 86400 seconds..