IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
==================================================================
BUG: KMSAN: uninit-value in __rmqueue_pcplist mm/page_alloc.c:2964 [inline]
BUG: KMSAN: uninit-value in rmqueue_pcplist mm/page_alloc.c:2993 [inline]
BUG: KMSAN: uninit-value in rmqueue mm/page_alloc.c:3015 [inline]
BUG: KMSAN: uninit-value in get_page_from_freelist+0x5e3f/0xb5e0 mm/page_alloc.c:3359
CPU: 1 PID: 5888 Comm: sh Not tainted 4.17.0-rc5+ #103
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 <IRQ>
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x185/0x1d0 lib/dump_stack.c:113
 kmsan_report+0x149/0x260 mm/kmsan/kmsan.c:1084
 __msan_warning_32+0x6e/0xc0 mm/kmsan/kmsan_instr.c:686
 __rmqueue_pcplist mm/page_alloc.c:2964 [inline]
 rmqueue_pcplist mm/page_alloc.c:2993 [inline]
 rmqueue mm/page_alloc.c:3015 [inline]
 get_page_from_freelist+0x5e3f/0xb5e0 mm/page_alloc.c:3359
 __alloc_pages_nodemask+0x7be/0x5dc0 mm/page_alloc.c:4371
 alloc_pages_current+0x6b1/0x970 mm/mempolicy.c:2093
 alloc_pages include/linux/gfp.h:494 [inline]
 alloc_slab_page mm/slub.c:1467 [inline]
 allocate_slab mm/slub.c:1612 [inline]
 new_slab+0x349/0x1b50 mm/slub.c:1683
 new_slab_objects mm/slub.c:2464 [inline]
 ___slab_alloc+0x1516/0x1f50 mm/slub.c:2616
 __slab_alloc mm/slub.c:2656 [inline]
 slab_alloc_node mm/slub.c:2719 [inline]
 slab_alloc mm/slub.c:2761 [inline]
 kmem_cache_alloc+0x648/0xb90 mm/slub.c:2766
 dst_alloc+0x295/0x860 net/core/dst.c:104
 __ip6_dst_alloc net/ipv6/route.c:361 [inline]
 ip6_dst_alloc net/ipv6/route.c:376 [inline]
 icmp6_dst_alloc+0x15c/0xc60 net/ipv6/route.c:2461
 mld_sendpack+0x70c/0x11d0 net/ipv6/mcast.c:1647
 mld_send_cr net/ipv6/mcast.c:1954 [inline]
 mld_ifc_timer_expire+0x126b/0x15a0 net/ipv6/mcast.c:2451
 call_timer_fn+0x26a/0x5a0 kernel/time/timer.c:1326
 expire_timers kernel/time/timer.c:1363 [inline]
 __run_timers+0xda7/0x11c0 kernel/time/timer.c:1666
 run_timer_softirq+0x43/0x70 kernel/time/timer.c:1692
 __do_softirq+0x56d/0x93d kernel/softirq.c:285
 invoke_softirq kernel/softirq.c:365 [inline]
 irq_exit+0x202/0x240 kernel/softirq.c:405
 exiting_irq+0xe/0x10 arch/x86/include/asm/apic.h:525
 smp_apic_timer_interrupt+0x64/0x90 arch/x86/kernel/apic/apic.c:1055
 apic_timer_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:863
 </IRQ>
RIP: 0010:native_restore_fl arch/x86/include/asm/irqflags.h:37 [inline]
RIP: 0010:arch_local_irq_restore arch/x86/include/asm/irqflags.h:78 [inline]
RIP: 0010:__msan_poison_alloca+0x14c/0x1d0 mm/kmsan/kmsan_instr.c:652
RSP: 0018:ffff880138cafb10 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
RAX: 00000000fd200075 RBX: 00000000fd200075 RCX: ffff880138cafb50
RDX: 0000000000000004 RSI: 0000000000000004 RDI: 00000000a23fa17f
RBP: ffff880138cafbb0 R08: 0000000001080020 R09: 0000000000000002
R10: 00000000ffff0a00 R11: 0000000000000000 R12: 0000000000000000
R13: ffffffff8ac4a5f0 R14: 0000000000000246 R15: ffff880139139d40
 do_signal+0x4a/0x1cf0 arch/x86/kernel/signal.c:807
 exit_to_usermode_loop arch/x86/entry/common.c:162 [inline]
 prepare_exit_to_usermode+0x271/0x3a0 arch/x86/entry/common.c:196
 syscall_return_slowpath+0xe9/0x700 arch/x86/entry/common.c:265
 do_syscall_64+0x1af/0x230 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x44/0xa9
RIP: 0033:0x7f4be7c13aea
RSP: 002b:00007ffda752f998 EFLAGS: 00000202 ORIG_RAX: 000000000000003d
RAX: 00000000000000a1 RBX: 0000000000746400 RCX: 00007f4be7c13aea
RDX: 0000000000000000 RSI: 00007ffda752faac RDI: 00000000ffffffff
RBP: 0000000000000001 R08: 0000000000000000 R09: 00000000000000a0
R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
R13: 0000000000746400 R14: 0000000000000000 R15: 0000000000000000

Uninit was stored to memory at:
 kmsan_save_stack_with_flags mm/kmsan/kmsan.c:279 [inline]
 kmsan_save_stack mm/kmsan/kmsan.c:294 [inline]
 kmsan_internal_chain_origin+0x12b/0x210 mm/kmsan/kmsan.c:685
 __msan_chain_origin+0x69/0xc0 mm/kmsan/kmsan_instr.c:529
 __write_once_size include/linux/compiler.h:224 [inline]
 __list_add include/linux/list.h:66 [inline]
 list_add include/linux/list.h:79 [inline]
 free_unref_page_commit+0x4bc/0x4d0 mm/page_alloc.c:2796
 free_unref_page mm/page_alloc.c:2816 [inline]
 __free_pages mm/page_alloc.c:4440 [inline]
 free_pages+0x290/0x320 mm/page_alloc.c:4452
 arch_tlb_finish_mmu mm/memory.c:290 [inline]
 tlb_finish_mmu+0x3f7/0x5c0 mm/memory.c:433
 exit_mmap+0x514/0x970 mm/mmap.c:3107
 __mmput+0x158/0x600 kernel/fork.c:962
 mmput+0xab/0xf0 kernel/fork.c:983
 exit_mm+0x6ed/0x7a0 kernel/exit.c:545
 do_exit+0xc01/0x38d0 kernel/exit.c:854
 do_group_exit+0x1a0/0x360 kernel/exit.c:970
 __do_sys_exit_group+0x21/0x30 kernel/exit.c:981
 __se_sys_exit_group+0x14/0x20 kernel/exit.c:979
 __x64_sys_exit_group+0x4c/0x50 kernel/exit.c:979
 do_syscall_64+0x152/0x230 arch/x86/entry/common.c:287
 entry_SYSCALL_64_after_hwframe+0x44/0xa9
Uninit was stored to memory at:
 kmsan_save_stack_with_flags mm/kmsan/kmsan.c:279 [inline]
 kmsan_save_stack mm/kmsan/kmsan.c:294 [inline]
 kmsan_internal_chain_origin+0x12b/0x210 mm/kmsan/kmsan.c:685
 __msan_chain_origin+0x69/0xc0 mm/kmsan/kmsan_instr.c:529
 tlb_next_batch mm/memory.c:213 [inline]
 __tlb_remove_page_size mm/memory.c:316 [inline]
 __tlb_remove_page include/asm-generic/tlb.h:150 [inline]
 zap_pte_range mm/memory.c:1340 [inline]
 zap_pmd_range mm/memory.c:1441 [inline]
 zap_pud_range mm/memory.c:1470 [inline]
 zap_p4d_range mm/memory.c:1491 [inline]
 unmap_page_range+0xeb4/0x3be0 mm/memory.c:1512
 unmap_single_vma+0x445/0x5e0 mm/memory.c:1557
 unmap_vmas+0x1f4/0x360 mm/memory.c:1587
 exit_mmap+0x4bb/0x970 mm/mmap.c:3105
 __mmput+0x158/0x600 kernel/fork.c:962
 mmput+0xab/0xf0 kernel/fork.c:983
 exit_mm+0x6ed/0x7a0 kernel/exit.c:545
 do_exit+0xc01/0x38d0 kernel/exit.c:854
 do_group_exit+0x1a0/0x360 kernel/exit.c:970
 __do_sys_exit_group+0x21/0x30 kernel/exit.c:981
 __se_sys_exit_group+0x14/0x20 kernel/exit.c:979
 __x64_sys_exit_group+0x4c/0x50 kernel/exit.c:979
 do_syscall_64+0x152/0x230 arch/x86/entry/common.c:287
 entry_SYSCALL_64_after_hwframe+0x44/0xa9
Uninit was stored to memory at:
 kmsan_save_stack_with_flags mm/kmsan/kmsan.c:279 [inline]
 kmsan_save_stack mm/kmsan/kmsan.c:294 [inline]
 kmsan_internal_chain_origin+0x12b/0x210 mm/kmsan/kmsan.c:685
 __msan_chain_origin+0x69/0xc0 mm/kmsan/kmsan_instr.c:529
 __write_once_size include/linux/compiler.h:224 [inline]
 __list_add include/linux/list.h:66 [inline]
 list_add include/linux/list.h:79 [inline]
 free_unref_page_commit+0x4bc/0x4d0 mm/page_alloc.c:2796
 free_unref_page mm/page_alloc.c:2816 [inline]
 __free_pages mm/page_alloc.c:4440 [inline]
 free_pages+0x290/0x320 mm/page_alloc.c:4452
 arch_tlb_finish_mmu mm/memory.c:290 [inline]
 tlb_finish_mmu+0x3f7/0x5c0 mm/memory.c:433
 exit_mmap+0x514/0x970 mm/mmap.c:3107
 __mmput+0x158/0x600 kernel/fork.c:962
 mmput+0xab/0xf0 kernel/fork.c:983
 exit_mm+0x6ed/0x7a0 kernel/exit.c:545
 do_exit+0xc01/0x38d0 kernel/exit.c:854
 do_group_exit+0x1a0/0x360 kernel/exit.c:970
 __do_sys_exit_group+0x21/0x30 kernel/exit.c:981
 __se_sys_exit_group+0x14/0x20 kernel/exit.c:979
 __x64_sys_exit_group+0x4c/0x50 kernel/exit.c:979
 do_syscall_64+0x152/0x230 arch/x86/entry/common.c:287
 entry_SYSCALL_64_after_hwframe+0x44/0xa9
Local variable description: ----tlb@exit_mmap
Variable was created at:
 exit_mmap+0x47/0x970 mm/mmap.c:3051
 __mmput+0x158/0x600 kernel/fork.c:962
==================================================================