===================================================== BUG: KMSAN: uninit-value in memcmp lib/string.c:778 [inline] BUG: KMSAN: uninit-value in bcmp+0x14e/0x290 lib/string.c:810 memcmp lib/string.c:778 [inline] bcmp+0x14e/0x290 lib/string.c:810 ip6frag_obj_cmpfn+0x93/0x110 include/net/ipv6_frag.h:60 __rhashtable_lookup include/linux/rhashtable.h:601 [inline] rhashtable_lookup include/linux/rhashtable.h:638 [inline] inet_frag_find+0x591/0x2a60 net/ipv4/inet_fragment.c:362 fq_find net/ipv6/netfilter/nf_conntrack_reasm.c:158 [inline] nf_ct_frag6_gather+0xe5e/0x3310 net/ipv6/netfilter/nf_conntrack_reasm.c:472 ipv6_defrag+0x624/0x770 net/ipv6/netfilter/nf_defrag_ipv6_hooks.c:66 nf_hook_entry_hookfn include/linux/netfilter.h:142 [inline] nf_hook_slow+0x184/0x480 net/netfilter/core.c:619 nf_hook include/linux/netfilter.h:262 [inline] NF_HOOK include/linux/netfilter.h:305 [inline] ipv6_rcv+0x3c7/0x460 net/ipv6/ip6_input.c:297 __netif_receive_skb_one_core net/core/dev.c:5465 [inline] __netif_receive_skb+0x1ec/0x630 net/core/dev.c:5579 process_backlog+0x54b/0xc10 net/core/dev.c:6455 __napi_poll+0x14c/0xc00 net/core/dev.c:7023 napi_poll net/core/dev.c:7090 [inline] net_rx_action+0x7e2/0x1820 net/core/dev.c:7177 __do_softirq+0x1ee/0x7c5 kernel/softirq.c:558 do_softirq+0x16d/0x220 kernel/softirq.c:459 netif_rx_ni+0xb6/0x410 net/core/dev.c:4973 dev_loopback_xmit+0x7cb/0x8d0 net/core/dev.c:3927 NF_HOOK include/linux/netfilter.h:307 [inline] ip6_finish_output2+0x69b/0x2c50 net/ipv6/ip6_output.c:92 ip6_fragment+0x2c5e/0x4210 net/ipv6/ip6_output.c:907 __ip6_finish_output+0xca4/0x10a0 net/ipv6/ip6_output.c:189 ip6_finish_output+0x15c/0x4d0 net/ipv6/ip6_output.c:201 NF_HOOK_COND include/linux/netfilter.h:296 [inline] ip6_output+0x4ac/0x7f0 net/ipv6/ip6_output.c:224 dst_output include/net/dst.h:450 [inline] ip6_local_out+0x180/0x1f0 net/ipv6/output_core.c:161 ip6_send_skb net/ipv6/ip6_output.c:1912 [inline] ip6_push_pending_frames+0x252/0x570 net/ipv6/ip6_output.c:1932 rawv6_push_pending_frames+0xcc1/0xd30 net/ipv6/raw.c:613 rawv6_sendmsg+0x2f83/0x3450 net/ipv6/raw.c:956 inet_sendmsg+0x15b/0x1d0 net/ipv4/af_inet.c:819 sock_sendmsg_nosec net/socket.c:704 [inline] sock_sendmsg net/socket.c:724 [inline] kernel_sendmsg+0x22c/0x2f0 net/socket.c:744 sock_no_sendpage+0x227/0x2c0 net/core/sock.c:3080 kernel_sendpage+0x4a0/0x5a0 net/socket.c:3504 sock_sendpage+0x161/0x1a0 net/socket.c:1003 pipe_to_sendpage+0x3f1/0x510 fs/splice.c:364 splice_from_pipe_feed fs/splice.c:418 [inline] __splice_from_pipe+0x5c3/0x1000 fs/splice.c:562 splice_from_pipe fs/splice.c:597 [inline] generic_splice_sendpage+0x1d5/0x2c0 fs/splice.c:746 do_splice_from fs/splice.c:767 [inline] do_splice+0x24f9/0x2df0 fs/splice.c:1079 __do_splice fs/splice.c:1144 [inline] __do_sys_splice fs/splice.c:1350 [inline] __se_sys_splice+0x935/0xb70 fs/splice.c:1332 __ia32_sys_splice+0x1a0/0x200 fs/splice.c:1332 do_syscall_32_irqs_on arch/x86/entry/common.c:114 [inline] __do_fast_syscall_32+0x96/0xf0 arch/x86/entry/common.c:180 do_fast_syscall_32+0x34/0x70 arch/x86/entry/common.c:205 do_SYSENTER_32+0x1b/0x20 arch/x86/entry/common.c:248 entry_SYSENTER_compat_after_hwframe+0x4d/0x5c Local variable key.i created at: fq_find net/ipv6/netfilter/nf_conntrack_reasm.c:149 [inline] nf_ct_frag6_gather+0xd8c/0x3310 net/ipv6/netfilter/nf_conntrack_reasm.c:472 ipv6_defrag+0x624/0x770 net/ipv6/netfilter/nf_defrag_ipv6_hooks.c:66 CPU: 0 PID: 32578 Comm: syz-executor.4 Not tainted 5.16.0-rc5-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 =====================================================