./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3026318521 <...> forked to background, child pid 3049 no interfaces have a carrier [ 67.599726][ T3050] 8021q: adding VLAN 0 to HW filter on device bond0 [ 67.650741][ T3050] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller syzkaller login: [ 95.123150][ T119] cfg80211: failed to load regulatory.db Warning: Permanently added '10.128.0.68' (ECDSA) to the list of known hosts. execve("./syz-executor3026318521", ["./syz-executor3026318521"], 0x7ffdf8e99870 /* 10 vars */) = 0 brk(NULL) = 0x555555c79000 brk(0x555555c79c40) = 0x555555c79c40 arch_prctl(ARCH_SET_FS, 0x555555c79300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor3026318521", 4096) = 28 brk(0x555555c9ac40) = 0x555555c9ac40 brk(0x555555c9b000) = 0x555555c9b000 mprotect(0x7f4228bec000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 openat(AT_FDCWD, "/sys/kernel/debug/failslab/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_futex/ignore-private", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-highmem", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/min-order", O_WRONLY|O_CLOEXEC) = 3 write(3, "0", 1) = 1 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555c795d0) = 3478 ./strace-static-x86_64: Process 3478 attached [pid 3478] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3478] setpgid(0, 0) = 0 [pid 3478] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3478] write(3, "1000", 4) = 4 [pid 3478] close(3) = 0 [pid 3478] openat(AT_FDCWD, "/dev/ptmx", O_WRONLY|O_CREAT, 000) = 3 [pid 3478] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 4 [pid 3478] write(4, "3", 1) = 1 [pid 3478] write(3, NULL, 65326) = -1 EFAULT (Bad address) [ 100.560293][ T3478] FAULT_INJECTION: forcing a failure. [ 100.560293][ T3478] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 100.574137][ T3478] CPU: 1 PID: 3478 Comm: syz-executor302 Not tainted 5.18.0-syzkaller-16265-g365ac3bfacfb #0 [ 100.584556][ T3478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 100.594842][ T3478] Call Trace: [ 100.598213][ T3478] [ 100.601223][ T3478] dump_stack_lvl+0x1c8/0x256 [ 100.606063][ T3478] dump_stack+0x1a/0x1c [ 100.610381][ T3478] should_fail+0x6c5/0x7e0 [ 100.614981][ T3478] should_fail_alloc_page+0x143/0x190 [ 100.620500][ T3478] __alloc_pages+0x2fa/0xe50 [ 100.625289][ T3478] ===================================================== [ 100.632275][ T3478] BUG: KMSAN: uninit-value in show_trace_log_lvl+0x825/0xbb0 [ 100.639681][ T3478] show_trace_log_lvl+0x825/0xbb0 [ 100.644726][ T3478] show_stack+0x55/0x60 [ 100.648915][ T3478] dump_stack_lvl+0x1c8/0x256 [ 100.653625][ T3478] dump_stack+0x1a/0x1c [ 100.657796][ T3478] should_fail+0x6c5/0x7e0 [ 100.662229][ T3478] should_fail_alloc_page+0x143/0x190 [ 100.667651][ T3478] __alloc_pages+0x2fa/0xe50 [ 100.672267][ T3478] alloc_pages_vma+0x14b7/0x1b20 [ 100.677245][ T3478] wp_page_copy+0x3b3/0x4060 [ 100.681858][ T3478] do_wp_page+0x139f/0x2760 [ 100.686398][ T3478] handle_mm_fault+0x3df7/0x4230 [ 100.691374][ T3478] do_user_addr_fault+0xcef/0x1710 [ 100.696505][ T3478] exc_page_fault+0x60/0x140 [ 100.701140][ T3478] asm_exc_page_fault+0x1e/0x30 [ 100.706015][ T3478] [ 100.708382][ T3478] Local variable filename created at: [ 100.713895][ T3478] process_measurement+0x10e/0x36d0 [ 100.719137][ T3478] ima_file_check+0xbc/0x120 [ 100.723750][ T3478] [ 100.726079][ T3478] CPU: 1 PID: 3478 Comm: syz-executor302 Not tainted 5.18.0-syzkaller-16265-g365ac3bfacfb #0 [ 100.736264][ T3478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 100.746342][ T3478] ===================================================== [ 100.753282][ T3478] Disabling lock debugging due to kernel taint [ 100.759537][ T3478] Kernel panic - not syncing: kmsan.panic set ... [ 100.765954][ T3478] CPU: 1 PID: 3478 Comm: syz-executor302 Tainted: G B 5.18.0-syzkaller-16265-g365ac3bfacfb #0 [ 100.777539][ T3478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 100.787603][ T3478] Call Trace: [ 100.790888][ T3478] [ 100.793830][ T3478] dump_stack_lvl+0x1c8/0x256 [ 100.798539][ T3478] dump_stack+0x1a/0x1c [ 100.802745][ T3478] panic+0x4d3/0xc69 [ 100.806702][ T3478] ? get_taint+0x1/0x50 [ 100.810906][ T3478] ? add_taint+0x104/0x1a0 [ 100.815346][ T3478] ? console_unlock+0x1c70/0x20c0 [ 100.820397][ T3478] kmsan_report+0x2cc/0x2d0 [ 100.824959][ T3478] ? __msan_warning+0x92/0x110 [ 100.829758][ T3478] ? show_trace_log_lvl+0x825/0xbb0 [ 100.835003][ T3478] ? show_stack+0x55/0x60 [ 100.839846][ T3478] ? dump_stack_lvl+0x1c8/0x256 [ 100.844730][ T3478] ? dump_stack+0x1a/0x1c [ 100.849107][ T3478] ? should_fail+0x6c5/0x7e0 [ 100.853718][ T3478] ? should_fail_alloc_page+0x143/0x190 [ 100.859325][ T3478] ? __alloc_pages+0x2fa/0xe50 [ 100.864122][ T3478] ? alloc_pages_vma+0x14b7/0x1b20 [ 100.869381][ T3478] ? wp_page_copy+0x3b3/0x4060 [ 100.874171][ T3478] ? do_wp_page+0x139f/0x2760 [ 100.878915][ T3478] ? handle_mm_fault+0x3df7/0x4230 [ 100.884048][ T3478] ? do_user_addr_fault+0xcef/0x1710 [ 100.889358][ T3478] ? exc_page_fault+0x60/0x140 [ 100.894311][ T3478] ? asm_exc_page_fault+0x1e/0x30 [ 100.899360][ T3478] ? kmsan_get_metadata+0x33/0x220 [ 100.904538][ T3478] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 100.910407][ T3478] ? kmsan_get_metadata+0x33/0x220 [ 100.915558][ T3478] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 100.921409][ T3478] ? preempt_count_sub+0x7d/0x280 [ 100.926466][ T3478] ? is_module_text_address+0x206/0x2a0 [ 100.932053][ T3478] ? kmsan_get_metadata+0x33/0x220 [ 100.937202][ T3478] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 100.943059][ T3478] __msan_warning+0x92/0x110 [ 100.947695][ T3478] show_trace_log_lvl+0x825/0xbb0 [ 100.952767][ T3478] ? alloc_pages_vma+0x14b7/0x1b20 [ 100.957930][ T3478] show_stack+0x55/0x60 [ 100.962132][ T3478] dump_stack_lvl+0x1c8/0x256 [ 100.966855][ T3478] dump_stack+0x1a/0x1c [ 100.971040][ T3478] should_fail+0x6c5/0x7e0 [ 100.975479][ T3478] should_fail_alloc_page+0x143/0x190 [ 100.980885][ T3478] __alloc_pages+0x2fa/0xe50 [ 100.985511][ T3478] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 100.991353][ T3478] alloc_pages_vma+0x14b7/0x1b20 [ 100.996318][ T3478] ? kmsan_get_metadata+0x33/0x220 [ 101.001484][ T3478] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 101.007764][ T3478] ? kmsan_get_metadata+0x33/0x220 [ 101.012928][ T3478] wp_page_copy+0x3b3/0x4060 [ 101.017544][ T3478] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 101.023418][ T3478] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 101.029283][ T3478] ? kmsan_get_metadata+0x33/0x220 [ 101.034442][ T3478] ? preempt_count_sub+0x7d/0x280 [ 101.039511][ T3478] do_wp_page+0x139f/0x2760 [ 101.044069][ T3478] handle_mm_fault+0x3df7/0x4230 [ 101.049070][ T3478] do_user_addr_fault+0xcef/0x1710 [ 101.054224][ T3478] exc_page_fault+0x60/0x140 [ 101.058869][ T3478] ? asm_exc_page_fault+0x8/0x30 [ 101.063829][ T3478] asm_exc_page_fault+0x1e/0x30 [ 101.068717][ T3478] RIP: 0033:0x7f4228b47e05 [ 101.073139][ T3478] Code: 0a 00 00 74 08 84 c9 0f 85 46 02 00 00 45 31 e4 0f 1f 44 00 00 64 8b 04 25 18 00 00 00 ba 01 00 00 00 85 c0 0f 85 d5 01 00 00 <0f> b1 15 3c b0 0a 00 4c 8b 33 4d 85 f6 75 3b e9 72 01 00 00 0f 1f [ 101.092786][ T3478] RSP: 002b:00007ffe6ca22490 EFLAGS: 00010246 [ 101.098871][ T3478] RAX: 0000000000000000 RBX: 00007f4228bf0140 RCX: 0000000000000001 [ 101.106855][ T3478] RDX: 0000000000000001 RSI: 00007f4228bf0140 RDI: 0000000000000000 [ 101.114846][ T3478] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000001 [ 101.122835][ T3478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 101.130813][ T3478] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000000 [ 101.138805][ T3478] [ 101.141991][ T3478] Kernel Offset: disabled [ 101.146321][ T3478] Rebooting in 86400 seconds..