./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3910192358 <...> forked to background, child pid 4594 no interfaces have a carrier [ 119.359092][ T4595] 8021q: adding VLAN 0 to HW filter on device bond0 [ 119.387517][ T4595] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller Warning: Permanently added '10.128.0.89' (ECDSA) to the list of known hosts. execve("./syz-executor3910192358", ["./syz-executor3910192358"], 0x7ffc4e0171f0 /* 10 vars */) = 0 brk(NULL) = 0x555557037000 brk(0x555557037c40) = 0x555557037c40 arch_prctl(ARCH_SET_FS, 0x555557037300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor3910192358", 4096) = 28 brk(0x555557058c40) = 0x555557058c40 brk(0x555557059000) = 0x555557059000 mprotect(0x7f670e91d000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5016 attached [pid 5016] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5016] setpgid(0, 0) = 0 [pid 5016] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5016] write(3, "1000", 4) = 4 [pid 5016] close(3) = 0 [pid 5016] openat(AT_FDCWD, "/sys/kernel/profiling", O_RDWR|O_EXCL|O_TRUNC|O_NONBLOCK|O_SYNC|O_NOATIME [pid 5015] <... clone resumed>, child_tidptr=0x5555570375d0) = 5016 [pid 5016] <... openat resumed>) = 3 syzkaller login: [ 166.450721][ T5016] kernel profiling enabled (shift: 0) [ 166.612006][ C1] ===================================================== [ 166.619267][ C1] BUG: KMSAN: uninit-value in profile_tick+0x1dd/0x1e0 [ 166.626331][ C1] profile_tick+0x1dd/0x1e0 [ 166.631045][ C1] tick_sched_timer+0x5ea/0x700 [ 166.636163][ C1] __hrtimer_run_queues+0x583/0x1140 [ 166.641689][ C1] hrtimer_interrupt+0x4f8/0x1eb0 [ 166.646957][ C1] __sysvec_apic_timer_interrupt+0x14f/0x5b0 [ 166.653165][ C1] sysvec_apic_timer_interrupt+0x99/0xc0 [ 166.659067][ C1] asm_sysvec_apic_timer_interrupt+0x1f/0x30 [ 166.665318][ C1] _raw_spin_unlock_irqrestore+0x33/0x50 [ 166.671177][ C1] do_notify_parent_cldstop+0x7c4/0x860 [ 166.676989][ C1] ptrace_stop+0x671/0xd40 [ 166.681592][ C1] ptrace_notify+0x240/0x330 [ 166.686394][ C1] syscall_exit_to_user_mode+0xa5/0x140 [ 166.692168][ C1] do_syscall_64+0x4d/0xc0 [ 166.696802][ C1] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 166.702943][ C1] [ 166.705390][ C1] Local variable ewq created at: [ 166.710713][ C1] userfaultfd_unmap_complete+0x4d/0x4f0 [ 166.716576][ C1] vm_mmap_pgoff+0x275/0x480 [ 166.721437][ C1] [ 166.723957][ C1] CPU: 1 PID: 5015 Comm: syz-executor391 Not tainted 6.3.0-rc3-syzkaller-g90ea0df61c98 #0 [ 166.734840][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 166.745706][ C1] ===================================================== [ 166.752889][ C1] Disabling lock debugging due to kernel taint [ 166.759192][ C1] Kernel panic - not syncing: kmsan.panic set ... [ 166.765738][ C1] CPU: 1 PID: 5015 Comm: syz-executor391 Tainted: G B 6.3.0-rc3-syzkaller-g90ea0df61c98 #0 [ 166.777317][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 166.787534][ C1] Call Trace: [ 166.790962][ C1] [ 166.794012][ C1] dump_stack_lvl+0x1cc/0x260 [ 166.798924][ C1] dump_stack+0x1e/0x20 [ 166.803280][ C1] panic+0x4e2/0xc70 [ 166.807450][ C1] ? add_taint+0x108/0x1a0 [ 166.812059][ C1] kmsan_report+0x2d0/0x2d0 [ 166.816950][ C1] ? __msan_warning+0x96/0x110 [ 166.822076][ C1] ? profile_tick+0x1dd/0x1e0 [ 166.826948][ C1] ? tick_sched_timer+0x5ea/0x700 [ 166.832198][ C1] ? __hrtimer_run_queues+0x583/0x1140 [ 166.837915][ C1] ? hrtimer_interrupt+0x4f8/0x1eb0 [ 166.843364][ C1] ? __sysvec_apic_timer_interrupt+0x14f/0x5b0 [ 166.849783][ C1] ? sysvec_apic_timer_interrupt+0x99/0xc0 [ 166.856023][ C1] ? asm_sysvec_apic_timer_interrupt+0x1f/0x30 [ 166.862516][ C1] ? _raw_spin_unlock_irqrestore+0x33/0x50 [ 166.868533][ C1] ? do_notify_parent_cldstop+0x7c4/0x860 [ 166.874575][ C1] ? ptrace_stop+0x671/0xd40 [ 166.879384][ C1] ? ptrace_notify+0x240/0x330 [ 166.884539][ C1] ? syscall_exit_to_user_mode+0xa5/0x140 [ 166.890513][ C1] ? do_syscall_64+0x4d/0xc0 [ 166.895318][ C1] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 166.902336][ C1] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 166.908367][ C1] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 166.914408][ C1] ? run_posix_cpu_timers+0x4f9/0x8a0 [ 166.920133][ C1] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 166.926264][ C1] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 166.932471][ C1] __msan_warning+0x96/0x110 [ 166.937258][ C1] profile_tick+0x1dd/0x1e0 [ 166.941955][ C1] ? do_notify_parent_cldstop+0x7c4/0x860 [ 166.948800][ C1] tick_sched_timer+0x5ea/0x700 [ 166.954685][ C1] ? tick_setup_sched_timer+0x770/0x770 [ 166.961321][ C1] __hrtimer_run_queues+0x583/0x1140 [ 166.966896][ C1] hrtimer_interrupt+0x4f8/0x1eb0 [ 166.972263][ C1] ? hrtimer_init+0x391/0x3a0 [ 166.977182][ C1] ? hrtimer_init+0x3a0/0x3a0 [ 166.982163][ C1] ? hrtimer_init+0x3a0/0x3a0 [ 166.987102][ C1] __sysvec_apic_timer_interrupt+0x14f/0x5b0 [ 166.993406][ C1] sysvec_apic_timer_interrupt+0x99/0xc0 [ 166.999407][ C1] [ 167.002455][ C1] [ 167.005680][ C1] asm_sysvec_apic_timer_interrupt+0x1f/0x30 [ 167.012100][ C1] RIP: 0010:_raw_spin_unlock_irqrestore+0x33/0x50 [ 167.018740][ C1] Code: 56 53 49 89 f6 48 89 fb e8 4a 11 9e f3 48 89 df e8 b2 04 9e f3 c6 00 00 c6 03 00 41 f7 c6 00 02 00 00 74 01 fb bf 01 00 00 00 a8 fb d7 f2 65 8b 05 a9 83 77 71 85 c0 74 05 5b 41 5e 5d c3 0f [ 167.038835][ C1] RSP: 0018:ffff888118e5fd00 EFLAGS: 00000206 [ 167.045184][ C1] RAX: ffff88811e614200 RBX: ffff88811ee14200 RCX: 0000000000599264 [ 167.053337][ C1] RDX: ffff88811ea14200 RSI: 00000000059a6640 RDI: 0000000000000001 [ 167.061745][ C1] RBP: ffff888118e5fd10 R08: ffff88811efe4c18 R09: 0000000000000001 [ 167.069984][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000292 [ 167.078138][ C1] R13: ffff88811efe4100 R14: 0000000000000292 R15: 0000000000000000 [ 167.086304][ C1] do_notify_parent_cldstop+0x7c4/0x860 [ 167.092382][ C1] ptrace_stop+0x671/0xd40 [ 167.097090][ C1] ptrace_notify+0x240/0x330 [ 167.101932][ C1] syscall_exit_to_user_mode+0xa5/0x140 [ 167.107743][ C1] do_syscall_64+0x4d/0xc0 [ 167.112386][ C1] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 167.118528][ C1] RIP: 0033:0x7f670e8e5cda [ 167.123110][ C1] Code: 83 ff 03 74 3b 48 83 ec 28 b8 fa ff ff ff 83 ff 02 49 89 ca 0f 44 f8 64 8b 04 25 18 00 00 00 85 c0 75 2d b8 e6 00 00 00 0f 05 <89> c2 f7 da 3d 00 f0 ff ff b8 00 00 00 00 0f 47 c2 48 83 c4 28 c3 [ 167.142948][ C1] RSP: 002b:00007ffeb5ce4570 EFLAGS: 00000246 ORIG_RAX: 00000000000000e6 [ 167.151569][ C1] RAX: 0000000000000000 RBX: 0000000000028a75 RCX: 00007f670e8e5cda [ 167.159785][ C1] RDX: 00007ffeb5ce45b0 RSI: 0000000000000000 RDI: 0000000000000000 [ 167.168105][ C1] RBP: 0000000000001398 R08: 00007ffeb5d360b0 R09: 0000000000000010 [ 167.176248][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffeb5ce45ec [ 167.184402][ C1] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 167.192542][ C1] [ 167.195841][ C1] Kernel Offset: disabled [ 167.200262][ C1] Rebooting in 86400 seconds..