./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3424645755 <...> forked to background, child pid 4594 no interfaces have a carrier [ 115.547340][ T4595] 8021q: adding VLAN 0 to HW filter on device bond0 [ 115.600247][ T4595] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller Warning: Permanently added '10.128.1.229' (ECDSA) to the list of known hosts. execve("./syz-executor3424645755", ["./syz-executor3424645755"], 0x7fff06ec3a60 /* 10 vars */) = 0 brk(NULL) = 0x555555c22000 brk(0x555555c22c40) = 0x555555c22c40 arch_prctl(ARCH_SET_FS, 0x555555c22300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor3424645755", 4096) = 28 brk(0x555555c43c40) = 0x555555c43c40 brk(0x555555c44000) = 0x555555c44000 mprotect(0x7fd8263a5000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555c225d0) = 5001 ./strace-static-x86_64: Process 5001 attached [pid 5001] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5001] setpgid(0, 0) = 0 [pid 5001] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5001] write(3, "1000", 4) = 4 [pid 5001] close(3) = 0 [pid 5001] socket(AF_VSOCK, SOCK_STREAM, 0) = 3 syzkaller login: [ 161.195489][ T112] ===================================================== [ 161.202823][ T112] BUG: KMSAN: uninit-value in virtio_transport_recv_pkt+0x183e/0x5af0 [ 161.211137][ T112] virtio_transport_recv_pkt+0x183e/0x5af0 [ 161.218455][ T112] vsock_loopback_work+0x3fb/0x600 [ 161.223810][ T112] process_one_work+0xb0d/0x1410 [ 161.228945][ T112] worker_thread+0x107e/0x1d60 [ 161.233985][ T112] kthread+0x31f/0x430 [ 161.238246][ T112] ret_from_fork+0x1f/0x30 [ 161.242963][ T112] [ 161.245363][ T112] Uninit was stored to memory at: [ 161.250652][ T112] virtio_transport_recv_pkt+0x2bda/0x5af0 [ 161.256809][ T112] vsock_loopback_work+0x3fb/0x600 [ 161.262242][ T112] process_one_work+0xb0d/0x1410 [ 161.267392][ T112] worker_thread+0x107e/0x1d60 [ 161.272330][ T112] kthread+0x31f/0x430 [ 161.276683][ T112] ret_from_fork+0x1f/0x30 [ 161.281296][ T112] [ 161.283819][ T112] Uninit was created at: [ 161.288231][ T112] slab_post_alloc_hook+0x12d/0xb60 [ 161.293657][ T112] kmem_cache_alloc_node+0x543/0xab0 [ 161.299125][ T112] kmalloc_reserve+0x14b/0x3e0 [ 161.304104][ T112] __alloc_skb+0x3a7/0x850 [ 161.308729][ T112] virtio_transport_alloc_skb+0x95/0xcc0 [ 161.314749][ T112] virtio_transport_recv_pkt+0x2a6e/0x5af0 [ 161.320811][ T112] vsock_loopback_work+0x3fb/0x600 [ 161.326217][ T112] process_one_work+0xb0d/0x1410 [ 161.331306][ T112] worker_thread+0x107e/0x1d60 [ 161.336284][ T112] kthread+0x31f/0x430 [ 161.340573][ T112] ret_from_fork+0x1f/0x30 [ 161.345325][ T112] [ 161.347754][ T112] CPU: 0 PID: 112 Comm: kworker/0:2 Not tainted 6.3.0-rc1-syzkaller-ge61893130d87 #0 [ 161.357555][ T112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 161.367846][ T112] Workqueue: vsock-loopback vsock_loopback_work [ 161.374534][ T112] ===================================================== [ 161.381591][ T112] Disabling lock debugging due to kernel taint [ 161.387962][ T112] Kernel panic - not syncing: kmsan.panic set ... [ 161.394514][ T112] CPU: 0 PID: 112 Comm: kworker/0:2 Tainted: G B 6.3.0-rc1-syzkaller-ge61893130d87 #0 [ 161.405659][ T112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 161.415875][ T112] Workqueue: vsock-loopback vsock_loopback_work [ 161.422364][ T112] Call Trace: [ 161.425736][ T112] [ 161.428751][ T112] dump_stack_lvl+0x1cc/0x260 [ 161.433635][ T112] dump_stack+0x1e/0x20 [ 161.437969][ T112] panic+0x4e2/0xc70 [ 161.442121][ T112] ? add_taint+0x108/0x1a0 [ 161.446734][ T112] kmsan_report+0x2d0/0x2d0 [ 161.451405][ T112] ? free_to_partial_list+0x9d4/0x1c80 [ 161.457031][ T112] ? __msan_warning+0x96/0x110 [ 161.461973][ T112] ? virtio_transport_recv_pkt+0x183e/0x5af0 [ 161.468186][ T112] ? vsock_loopback_work+0x3fb/0x600 [ 161.473679][ T112] ? process_one_work+0xb0d/0x1410 [ 161.478909][ T112] ? worker_thread+0x107e/0x1d60 [ 161.484009][ T112] ? kthread+0x31f/0x430 [ 161.488384][ T112] ? ret_from_fork+0x1f/0x30 [ 161.493103][ T112] ? ret_from_fork+0x1f/0x30 [ 161.497809][ T112] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 161.503745][ T112] ? virtio_transport_recv_pkt+0x92/0x5af0 [ 161.509733][ T112] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 161.515753][ T112] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 161.521743][ T112] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 161.527718][ T112] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 161.533731][ T112] __msan_warning+0x96/0x110 [ 161.538495][ T112] virtio_transport_recv_pkt+0x183e/0x5af0 [ 161.544612][ T112] vsock_loopback_work+0x3fb/0x600 [ 161.549942][ T112] ? vsock_loopback_send_pkt+0xc0/0xc0 [ 161.555580][ T112] process_one_work+0xb0d/0x1410 [ 161.560717][ T112] worker_thread+0x107e/0x1d60 [ 161.565645][ T112] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 161.571724][ T112] ? __kthread_parkme+0xc0/0x1b0 [ 161.576837][ T112] kthread+0x31f/0x430 [ 161.581110][ T112] ? pr_cont_work+0xce0/0xce0 [ 161.585974][ T112] ? kthread_blkcg+0x120/0x120 [ 161.590952][ T112] ret_from_fork+0x1f/0x30 [ 161.595519][ T112] [ 161.598957][ T112] Kernel Offset: disabled [ 161.603372][ T112] Rebooting in 86400 seconds..