==================================================================
BUG: KMSAN: uninit-value in accumulate_sum kernel/sched/fair.c:3146 [inline]
BUG: KMSAN: uninit-value in ___update_load_sum kernel/sched/fair.c:3229 [inline]
BUG: KMSAN: uninit-value in __update_load_avg_cfs_rq kernel/sched/fair.c:3308 [inline]
BUG: KMSAN: uninit-value in update_cfs_rq_load_avg+0x1344/0x1aa0 kernel/sched/fair.c:3684
CPU: 0 PID: 4531 Comm: syz-executor645 Not tainted 4.16.0+ #87
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 <IRQ>
 __dump_stack lib/dump_stack.c:17 [inline]
 dump_stack+0x185/0x1d0 lib/dump_stack.c:53
 kmsan_report+0x142/0x240 mm/kmsan/kmsan.c:1067
 __msan_warning_32+0x6c/0xb0 mm/kmsan/kmsan_instr.c:683
 accumulate_sum kernel/sched/fair.c:3146 [inline]
 ___update_load_sum kernel/sched/fair.c:3229 [inline]
 __update_load_avg_cfs_rq kernel/sched/fair.c:3308 [inline]
 update_cfs_rq_load_avg+0x1344/0x1aa0 kernel/sched/fair.c:3684
 update_load_avg+0xde6/0x2c20 kernel/sched/fair.c:3785
 enqueue_task_fair+0x3ca7/0x43a0 kernel/sched/fair.c:5241
 enqueue_task kernel/sched/core.c:774 [inline]
 activate_task kernel/sched/core.c:793 [inline]
 ttwu_activate kernel/sched/core.c:1664 [inline]
 ttwu_do_activate kernel/sched/core.c:1723 [inline]
 ttwu_queue kernel/sched/core.c:1868 [inline]
 try_to_wake_up+0x13cc/0x20a0 kernel/sched/core.c:2081
 wake_up_process+0x34/0x40 kernel/sched/core.c:2154
 hrtimer_wakeup+0xac/0x100 kernel/time/hrtimer.c:1598
 __run_hrtimer kernel/time/hrtimer.c:1349 [inline]
 __hrtimer_run_queues+0xc03/0x15d0 kernel/time/hrtimer.c:1411
 hrtimer_interrupt+0x426/0xaf0 kernel/time/hrtimer.c:1469
 local_apic_timer_interrupt+0x66/0x230 arch/x86/kernel/apic/apic.c:1025
 smp_apic_timer_interrupt+0x5a/0x90 arch/x86/kernel/apic/apic.c:1053
 apic_timer_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:857
 </IRQ>
RIP: 0010:__nr_to_section include/linux/mmzone.h:1160 [inline]
RIP: 0010:pfn_valid include/linux/mmzone.h:1243 [inline]
RIP: 0010:my_virt_addr_valid mm/kmsan/kmsan_instr.c:129 [inline]
RIP: 0010:msan_get_shadow_origin_ptr+0xe1/0x230 mm/kmsan/kmsan_instr.c:256
RSP: 0018:ffff88019850f450 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff12
RAX: ffff88021850f678 RBX: ffffffff8b311000 RCX: ffff88021fff1000
RDX: 000000019850f678 RSI: 0000000000000004 RDI: 0000000000000000
RBP: ffff88019850f480 R08: 0000000000000000 R09: 00000000ffffffff
R10: 0000000000000000 R11: 0000000000000000 R12: ffffea000a115880
R13: 0000000000000000 R14: ffffffff8b310000 R15: ffff88019850f678
 __msan_metadata_ptr_for_load_4+0x10/0x20 mm/kmsan/kmsan_instr.c:320
 trace_mm_page_alloc include/trace/events/kmem.h:192 [inline]
 __alloc_pages_nodemask+0x8cc/0x5dc0 mm/page_alloc.c:4281
 alloc_pages_current+0x6b5/0x970 mm/mempolicy.c:2055
 alloc_pages include/linux/gfp.h:494 [inline]
 __vmalloc_area_node mm/vmalloc.c:1699 [inline]
 __vmalloc_node_range+0x80f/0x1140 mm/vmalloc.c:1759
 __vmalloc_node mm/vmalloc.c:1804 [inline]
 __vmalloc_node_flags mm/vmalloc.c:1818 [inline]
 vzalloc+0xb2/0xc0 mm/vmalloc.c:1857
 alloc_counters+0x99/0x920 net/ipv6/netfilter/ip6_tables.c:830
 copy_entries_to_user net/ipv6/netfilter/ip6_tables.c:852 [inline]
 get_entries net/ipv6/netfilter/ip6_tables.c:1053 [inline]
 do_ip6t_get_ctl+0x832/0x1120 net/ipv6/netfilter/ip6_tables.c:1718
 nf_sockopt net/netfilter/nf_sockopt.c:104 [inline]
 nf_getsockopt+0x47b/0x4e0 net/netfilter/nf_sockopt.c:122
 ipv6_getsockopt+0x25b/0x480 net/ipv6/ipv6_sockglue.c:1370
 tcp_getsockopt+0x1c1/0x1f0 net/ipv4/tcp.c:3359
 sock_common_getsockopt+0x13a/0x170 net/core/sock.c:2934
 SYSC_getsockopt+0x49b/0x570 net/socket.c:1880
 SyS_getsockopt+0x76/0xa0 net/socket.c:1862
 do_syscall_64+0x309/0x430 arch/x86/entry/common.c:287
 entry_SYSCALL_64_after_hwframe+0x3d/0xa2
RIP: 0033:0x44642a
RSP: 002b:00000000007ee7c8 EFLAGS: 00000216 ORIG_RAX: 0000000000000037
RAX: ffffffffffffffda RBX: 00000000006d2240 RCX: 000000000044642a
RDX: 0000000000000041 RSI: 0000000000000029 RDI: 0000000000000003
RBP: 00000000006d2240 R08: 00000000007ee7ec R09: 0000000000004000
R10: 00000000007ee8f0 R11: 0000000000000216 R12: 0000000000000003
R13: 00000000007ee8f0 R14: 00000000007ee7f0 R15: 0000000000000029

Uninit was stored to memory at:
 kmsan_save_stack_with_flags mm/kmsan/kmsan.c:278 [inline]
 kmsan_save_stack mm/kmsan/kmsan.c:293 [inline]
 kmsan_internal_chain_origin+0x12b/0x210 mm/kmsan/kmsan.c:684
 __msan_chain_origin+0x69/0xc0 mm/kmsan/kmsan_instr.c:528
 update_load_sub kernel/sched/fair.c:144 [inline]
 account_entity_dequeue kernel/sched/fair.c:2676 [inline]
 dequeue_entity kernel/sched/fair.c:4127 [inline]
 dequeue_task_fair+0x16f0/0x2ea0 kernel/sched/fair.c:5266
 dequeue_task kernel/sched/core.c:785 [inline]
 deactivate_task+0x50d/0x780 kernel/sched/core.c:801
 __schedule+0x164/0x730 kernel/sched/core.c:3396
 schedule+0x1cc/0x2f0 kernel/sched/core.c:3505
 schedule_timeout+0x91/0x570 kernel/time/timer.c:1777
 do_wait_for_common kernel/sched/completion.c:86 [inline]
 __wait_for_common kernel/sched/completion.c:107 [inline]
 wait_for_common+0x43b/0x940 kernel/sched/completion.c:118
 wait_for_completion+0x3e/0x50 kernel/sched/completion.c:139
 __wait_rcu_gp+0x589/0x5f0 kernel/rcu/update.c:414
 synchronize_sched+0x147/0x150 kernel/rcu/tree.c:3212
 synchronize_rcu include/linux/rcupdate.h:94 [inline]
 synchronize_net+0x71/0x80 net/core/dev.c:8438
 packet_release+0x100a/0x15e0 net/packet/af_packet.c:3023
 sock_release net/socket.c:595 [inline]
 sock_close+0xe0/0x300 net/socket.c:1149
 __fput+0x49e/0xa10 fs/file_table.c:209
 ____fput+0x37/0x40 fs/file_table.c:243
 task_work_run+0x243/0x2c0 kernel/task_work.c:113
 exit_task_work include/linux/task_work.h:22 [inline]
 do_exit+0x10e1/0x38d0 kernel/exit.c:867
 do_group_exit+0x1a0/0x360 kernel/exit.c:970
 SYSC_exit_group+0x21/0x30 kernel/exit.c:981
 SyS_exit_group+0x25/0x30 kernel/exit.c:979
 do_syscall_64+0x309/0x430 arch/x86/entry/common.c:287
 entry_SYSCALL_64_after_hwframe+0x3d/0xa2
Uninit was stored to memory at:
 kmsan_save_stack_with_flags mm/kmsan/kmsan.c:278 [inline]
 kmsan_save_stack mm/kmsan/kmsan.c:293 [inline]
 kmsan_internal_chain_origin+0x12b/0x210 mm/kmsan/kmsan.c:684
 __msan_chain_origin+0x69/0xc0 mm/kmsan/kmsan_instr.c:528
 update_load_add kernel/sched/fair.c:138 [inline]
 account_entity_enqueue kernel/sched/fair.c:2659 [inline]
 enqueue_entity kernel/sched/fair.c:4036 [inline]
 enqueue_task_fair+0x15b1/0x43a0 kernel/sched/fair.c:5219
 enqueue_task kernel/sched/core.c:774 [inline]
 activate_task kernel/sched/core.c:793 [inline]
 ttwu_activate kernel/sched/core.c:1664 [inline]
 ttwu_do_activate kernel/sched/core.c:1723 [inline]
 ttwu_queue kernel/sched/core.c:1868 [inline]
 try_to_wake_up+0x13cc/0x20a0 kernel/sched/core.c:2081
 wake_up_process+0x34/0x40 kernel/sched/core.c:2154
 wake_up_q+0x5f/0xa0 kernel/sched/core.c:471
 rwsem_wake+0x285/0x2d0 kernel/locking/rwsem-xadd.c:680
 call_rwsem_wake+0x1b/0x30 arch/x86/lib/rwsem.S:140
 __up_write arch/x86/include/asm/rwsem.h:204 [inline]
 up_write+0x62/0xa0 kernel/locking/rwsem.c:134
 unlock_anon_vma_root mm/rmap.c:245 [inline]
 unlink_anon_vmas+0x7ac/0xc20 mm/rmap.c:404
 free_pgtables+0x127/0x650 mm/memory.c:627
 exit_mmap+0x46c/0x950 mm/mmap.c:3039
 __mmput+0x16c/0x610 kernel/fork.c:961
 mmput+0xab/0xf0 kernel/fork.c:982
 exit_mm+0x6ed/0x7a0 kernel/exit.c:545
 do_exit+0xc01/0x38d0 kernel/exit.c:854
 do_group_exit+0x1a0/0x360 kernel/exit.c:970
 SYSC_exit_group+0x21/0x30 kernel/exit.c:981
 SyS_exit_group+0x25/0x30 kernel/exit.c:979
 do_syscall_64+0x309/0x430 arch/x86/entry/common.c:287
 entry_SYSCALL_64_after_hwframe+0x3d/0xa2
Uninit was stored to memory at:
 kmsan_save_stack_with_flags mm/kmsan/kmsan.c:278 [inline]
 kmsan_save_stack mm/kmsan/kmsan.c:293 [inline]
 kmsan_internal_chain_origin+0x12b/0x210 mm/kmsan/kmsan.c:684
 __msan_chain_origin+0x69/0xc0 mm/kmsan/kmsan_instr.c:528
 update_load_add kernel/sched/fair.c:138 [inline]
 account_entity_enqueue kernel/sched/fair.c:2659 [inline]
 reweight_entity+0x1607/0x1a30 kernel/sched/fair.c:2809
 update_cfs_group kernel/sched/fair.c:3006 [inline]
 entity_tick kernel/sched/fair.c:4324 [inline]
 task_tick_fair+0x5f1/0x1040 kernel/sched/fair.c:9452
 scheduler_tick+0x28b/0x490 kernel/sched/core.c:3091
 update_process_times+0x157/0x1a0 kernel/time/timer.c:1641
 tick_sched_handle kernel/time/tick-sched.c:162 [inline]
 tick_sched_timer+0x33b/0x4b0 kernel/time/tick-sched.c:1194
 __run_hrtimer kernel/time/hrtimer.c:1349 [inline]
 __hrtimer_run_queues+0xc03/0x15d0 kernel/time/hrtimer.c:1411
 hrtimer_interrupt+0x426/0xaf0 kernel/time/hrtimer.c:1469
 local_apic_timer_interrupt+0x66/0x230 arch/x86/kernel/apic/apic.c:1025
 smp_apic_timer_interrupt+0x5a/0x90 arch/x86/kernel/apic/apic.c:1053
Uninit was stored to memory at:
 kmsan_save_stack_with_flags mm/kmsan/kmsan.c:278 [inline]
 kmsan_save_stack mm/kmsan/kmsan.c:293 [inline]
 kmsan_internal_chain_origin+0x12b/0x210 mm/kmsan/kmsan.c:684
 __msan_chain_origin+0x69/0xc0 mm/kmsan/kmsan_instr.c:528
 update_load_set kernel/sched/fair.c:150 [inline]
 reweight_entity+0x126b/0x1a30 kernel/sched/fair.c:2795
 update_cfs_group kernel/sched/fair.c:3006 [inline]
 entity_tick kernel/sched/fair.c:4324 [inline]
 task_tick_fair+0x5f1/0x1040 kernel/sched/fair.c:9452
 scheduler_tick+0x28b/0x490 kernel/sched/core.c:3091
 update_process_times+0x157/0x1a0 kernel/time/timer.c:1641
 tick_sched_handle kernel/time/tick-sched.c:162 [inline]
 tick_sched_timer+0x33b/0x4b0 kernel/time/tick-sched.c:1194
 __run_hrtimer kernel/time/hrtimer.c:1349 [inline]
 __hrtimer_run_queues+0xc03/0x15d0 kernel/time/hrtimer.c:1411
 hrtimer_interrupt+0x426/0xaf0 kernel/time/hrtimer.c:1469
 local_apic_timer_interrupt+0x66/0x230 arch/x86/kernel/apic/apic.c:1025
 smp_apic_timer_interrupt+0x5a/0x90 arch/x86/kernel/apic/apic.c:1053
Local variable description: ----flags.i.i.i.i@_raw_spin_lock_irqsave
Variable was created at:
 _raw_spin_lock_irqsave+0x45/0xf0 kernel/locking/spinlock.c:150
 hrtimer_interrupt+0x101/0xaf0 kernel/time/hrtimer.c:1450
==================================================================