Starting mcstransd: [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [ 118.002992][ T33] kauditd_printk_skb: 4 callbacks suppressed [ 118.003039][ T33] audit: type=1800 audit(1584461769.063:39): pid=11275 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 [ 118.048389][ T33] audit: type=1800 audit(1584461769.093:40): pid=11275 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 122.988309][ T33] audit: type=1400 audit(1584461774.043:41): avc: denied { map } for pid=11450 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added '10.128.0.131' (ECDSA) to the list of known hosts. [ 131.367274][ T33] audit: type=1400 audit(1584461782.423:42): avc: denied { map } for pid=11462 comm="syz-executor165" path="/root/syz-executor165759109" dev="sda1" ino=16483 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 131.408877][T11463] IPVS: ftp: loaded support on port[0] = 21 [ 131.515300][T11463] chnl_net:caif_netlink_parms(): no params data found [ 131.593398][T11463] bridge0: port 1(bridge_slave_0) entered blocking state [ 131.600529][T11463] bridge0: port 1(bridge_slave_0) entered disabled state [ 131.609640][T11463] device bridge_slave_0 entered promiscuous mode [ 131.620145][T11463] bridge0: port 2(bridge_slave_1) entered blocking state [ 131.627521][T11463] bridge0: port 2(bridge_slave_1) entered disabled state [ 131.635902][T11463] device bridge_slave_1 entered promiscuous mode [ 131.664052][T11463] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 131.678023][T11463] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 131.707263][T11463] team0: Port device team_slave_0 added [ 131.717303][T11463] team0: Port device team_slave_1 added [ 131.741452][T11463] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 131.748557][T11463] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 131.774773][T11463] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 131.788619][T11463] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 131.795773][T11463] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 131.821840][T11463] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 131.885328][T11463] device hsr_slave_0 entered promiscuous mode [ 131.922356][T11463] device hsr_slave_1 entered promiscuous mode [ 132.086557][ T33] audit: type=1400 audit(1584461783.143:43): avc: denied { create } for pid=11463 comm="syz-executor165" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 132.093720][T11463] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 132.111643][ T33] audit: type=1400 audit(1584461783.143:44): avc: denied { write } for pid=11463 comm="syz-executor165" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 132.143083][ T33] audit: type=1400 audit(1584461783.143:45): avc: denied { read } for pid=11463 comm="syz-executor165" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 132.187454][T11463] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 132.236971][T11463] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 132.297287][T11463] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 132.391698][T11463] bridge0: port 2(bridge_slave_1) entered blocking state [ 132.398898][T11463] bridge0: port 2(bridge_slave_1) entered forwarding state [ 132.406714][T11463] bridge0: port 1(bridge_slave_0) entered blocking state [ 132.414039][T11463] bridge0: port 1(bridge_slave_0) entered forwarding state [ 132.509023][T11463] 8021q: adding VLAN 0 to HW filter on device bond0 [ 132.533298][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 132.544661][ T32] bridge0: port 1(bridge_slave_0) entered disabled state [ 132.555169][ T32] bridge0: port 2(bridge_slave_1) entered disabled state [ 132.565512][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 132.584569][T11463] 8021q: adding VLAN 0 to HW filter on device team0 [ 132.603371][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 132.613185][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 132.622570][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 132.629703][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 132.644881][T11469] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 132.654041][T11469] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 132.663225][T11469] bridge0: port 2(bridge_slave_1) entered blocking state [ 132.670332][T11469] bridge0: port 2(bridge_slave_1) entered forwarding state [ 132.687260][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 132.713045][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 132.724518][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 132.734591][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 132.745384][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 132.758178][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 132.768629][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 132.786404][ T3390] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 132.795365][ T3390] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 132.815054][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 132.824557][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 132.839469][T11463] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 132.874748][ T3390] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 132.882510][ T3390] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 132.904228][T11463] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 132.939674][ T3390] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 132.950405][ T3390] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 132.985639][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 132.995132][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 133.007583][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 133.015948][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 133.028711][T11463] device veth0_vlan entered promiscuous mode [ 133.049060][T11463] device veth1_vlan entered promiscuous mode [ 133.093779][ T3390] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 133.102799][ T3390] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 133.111910][ T3390] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 133.121505][ T3390] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 133.137038][T11463] device veth0_macvtap entered promiscuous mode [ 133.151010][T11463] device veth1_macvtap entered promiscuous mode [ 133.184912][T11463] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 133.192909][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 133.201685][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 133.210981][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 133.220217][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 133.237920][T11463] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 133.245561][ T3390] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 133.255227][ T3390] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready executing program executing program executing program executing program [ 133.508277][T11491] batman_adv: batadv0: Adding interface: gretap0 [ 133.514814][T11491] batman_adv: batadv0: The MTU of interface gretap0 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 133.540296][T11491] batman_adv: batadv0: Interface activated: gretap0 executing program executing program executing program executing program [ 133.560365][T11492] batman_adv: batadv0: Adding interface: erspan0 [ 133.568164][T11492] batman_adv: batadv0: The MTU of interface erspan0 is too small (1450) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 133.593715][T11492] batman_adv: batadv0: Interface activated: erspan0 executing program executing program executing program [ 133.663048][T11498] batman_adv: batadv0: Adding interface: syz_tun [ 133.669442][T11498] batman_adv: batadv0: The MTU of interface syz_tun is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 133.695325][T11498] batman_adv: batadv0: Interface activated: syz_tun executing program [ 133.716841][T11499] batman_adv: batadv0: Adding interface: ip6gretap0 [ 133.724138][T11499] batman_adv: batadv0: The MTU of interface ip6gretap0 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 133.750558][T11499] batman_adv: batadv0: Interface activated: ip6gretap0 executing program executing program [ 133.769965][T11500] batman_adv: batadv0: Adding interface: bridge0 [ 133.776797][T11500] batman_adv: batadv0: The MTU of interface bridge0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 133.802228][T11500] batman_adv: batadv0: Interface activated: bridge0 executing program [ 133.834735][T11502] batman_adv: batadv0: Adding interface: bond0 [ 133.840992][T11502] batman_adv: batadv0: The MTU of interface bond0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 133.866360][T11502] batman_adv: batadv0: Interface activated: bond0 executing program [ 133.890306][T11503] batman_adv: batadv0: Adding interface: team0 [ 133.897068][T11503] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 133.922428][T11503] batman_adv: batadv0: Interface activated: team0 executing program executing program executing program executing program [ 133.944603][T11504] batman_adv: batadv0: Adding interface: dummy0 [ 133.950910][T11504] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 133.976323][T11504] batman_adv: batadv0: Interface activated: dummy0 executing program executing program executing program [ 134.046830][T11510] batman_adv: batadv0: Adding interface: veth0 [ 134.053778][T11510] batman_adv: batadv0: The MTU of interface veth0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 134.079003][T11510] batman_adv: batadv0: Interface activated: veth0 executing program executing program [ 134.098114][T11511] batman_adv: batadv0: Adding interface: veth1 [ 134.105218][T11511] batman_adv: batadv0: The MTU of interface veth1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 134.130404][T11511] batman_adv: batadv0: Interface activated: veth1 executing program [ 134.160910][T11513] batman_adv: batadv0: Adding interface: veth0_to_bridge [ 134.169206][T11513] batman_adv: batadv0: The MTU of interface veth0_to_bridge is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 134.195431][T11513] batman_adv: batadv0: Interface activated: veth0_to_bridge [ 134.214704][T11514] device bridge_slave_0 left promiscuous mode [ 134.221208][T11514] bridge0: port 1(bridge_slave_0) entered disabled state executing program [ 134.264852][T11514] batman_adv: batadv0: Adding interface: bridge_slave_0 [ 134.271970][T11514] batman_adv: batadv0: The MTU of interface bridge_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 134.298104][T11514] batman_adv: batadv0: Interface activated: bridge_slave_0 executing program [ 134.319436][T11516] batman_adv: batadv0: Adding interface: veth1_to_bridge [ 134.326649][T11516] batman_adv: batadv0: The MTU of interface veth1_to_bridge is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 134.353140][T11516] batman_adv: batadv0: Interface activated: veth1_to_bridge [ 134.377766][T11517] device bridge_slave_1 left promiscuous mode [ 134.384416][T11517] bridge0: port 2(bridge_slave_1) entered disabled state executing program [ 134.424740][T11517] batman_adv: batadv0: Adding interface: bridge_slave_1 [ 134.431731][T11517] batman_adv: batadv0: The MTU of interface bridge_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 134.457873][T11517] batman_adv: batadv0: Interface activated: bridge_slave_1 executing program [ 134.483286][T11518] batman_adv: batadv0: Adding interface: veth0_to_bond [ 134.490196][T11518] batman_adv: batadv0: The MTU of interface veth0_to_bond is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 134.516211][T11518] batman_adv: batadv0: Interface activated: veth0_to_bond [ 134.539797][T11519] bond0: (slave bond_slave_0): Releasing backup interface executing program [ 134.606072][T11519] batman_adv: batadv0: Adding interface: bond_slave_0 [ 134.613021][T11519] batman_adv: batadv0: The MTU of interface bond_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 134.638969][T11519] batman_adv: batadv0: Not using interface bond_slave_0 (retrying later): interface not active executing program [ 134.671463][T11520] batman_adv: batadv0: Adding interface: veth1_to_bond [ 134.679273][T11520] batman_adv: batadv0: The MTU of interface veth1_to_bond is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 134.706861][T11520] batman_adv: batadv0: Interface activated: veth1_to_bond [ 134.727177][T11521] bond0: (slave bond_slave_1): Releasing backup interface executing program [ 134.797395][T11521] batman_adv: batadv0: Adding interface: bond_slave_1 [ 134.804281][T11521] batman_adv: batadv0: The MTU of interface bond_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 134.830778][T11521] batman_adv: batadv0: Not using interface bond_slave_1 (retrying later): interface not active [ 134.861714][T11522] batman_adv: batadv0: Adding interface: veth0_to_team [ 134.869141][T11522] batman_adv: batadv0: The MTU of interface veth0_to_team is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 134.896607][T11522] batman_adv: batadv0: Interface activated: veth0_to_team [ 134.899037][ T833] ===================================================== [ 134.910714][ T833] BUG: KMSAN: uninit-value in kmsan_check_skb+0x3c/0x210 [ 134.917736][ T833] CPU: 1 PID: 833 Comm: kworker/u4:20 Not tainted 5.6.0-rc6-syzkaller #0 [ 134.926137][ T833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 134.936193][ T833] Workqueue: bat_events batadv_iv_send_outstanding_bat_ogm_packet [ 134.944086][ T833] Call Trace: [ 134.947373][ T833] dump_stack+0x1c9/0x220 [ 134.951701][ T833] kmsan_report+0xf7/0x1e0 [ 134.956121][ T833] kmsan_internal_check_memory+0x238/0x3d0 [ 134.961927][ T833] ? stack_trace_save+0x123/0x1a0 [ 134.966972][ T833] kmsan_check_skb+0x3c/0x210 [ 134.971654][ T833] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 134.977458][ T833] pfifo_fast_dequeue+0xdb4/0xfd0 [ 134.982496][ T833] ? pfifo_fast_enqueue+0x960/0x960 [ 134.987687][ T833] __qdisc_run+0x3f1/0x3350 [ 134.992200][ T833] ? kmsan_get_metadata+0x11d/0x180 [ 134.997400][ T833] ? kmsan_set_origin_checked+0x95/0xf0 [ 135.002954][ T833] ? kmsan_get_metadata+0x11d/0x180 [ 135.008163][ T833] __dev_queue_xmit+0x23b7/0x3b20 [ 135.013188][ T833] ? kmsan_get_metadata+0x11d/0x180 [ 135.018401][ T833] dev_queue_xmit+0x4b/0x60 [ 135.022907][ T833] batadv_send_skb_packet+0x59b/0x8c0 [ 135.028290][ T833] batadv_send_broadcast_skb+0x76/0x90 [ 135.033746][ T833] batadv_iv_send_outstanding_bat_ogm_packet+0x97e/0xd50 [ 135.040783][ T833] ? batadv_iv_ogm_queue_add+0x1900/0x1900 [ 135.046585][ T833] process_one_work+0x1555/0x1f40 [ 135.051628][ T833] worker_thread+0xef6/0x2450 [ 135.056324][ T833] kthread+0x4b5/0x4f0 [ 135.060385][ T833] ? process_one_work+0x1f40/0x1f40 [ 135.065584][ T833] ? kthread_blkcg+0xf0/0xf0 [ 135.070165][ T833] ret_from_fork+0x35/0x40 [ 135.074575][ T833] [ 135.076890][ T833] Uninit was stored to memory at: [ 135.081906][ T833] kmsan_internal_chain_origin+0xad/0x130 [ 135.087610][ T833] kmsan_memcpy_memmove_metadata+0x272/0x2e0 [ 135.093575][ T833] kmsan_memcpy_metadata+0xb/0x10 [ 135.098586][ T833] __msan_memcpy+0x43/0x50 [ 135.102986][ T833] pskb_expand_head+0x38b/0x1b00 [ 135.107910][ T833] batadv_skb_head_push+0x234/0x350 [ 135.113105][ T833] batadv_send_skb_packet+0x1a7/0x8c0 [ 135.118468][ T833] batadv_send_broadcast_skb+0x76/0x90 [ 135.123915][ T833] batadv_iv_send_outstanding_bat_ogm_packet+0x97e/0xd50 [ 135.130924][ T833] process_one_work+0x1555/0x1f40 [ 135.135932][ T833] worker_thread+0xef6/0x2450 [ 135.140594][ T833] kthread+0x4b5/0x4f0 [ 135.144649][ T833] ret_from_fork+0x35/0x40 [ 135.149040][ T833] [ 135.151353][ T833] Uninit was created at: [ 135.155580][ T833] kmsan_save_stack_with_flags+0x3c/0x90 [ 135.161195][ T833] kmsan_alloc_page+0x12a/0x310 [ 135.166032][ T833] __alloc_pages_nodemask+0x5712/0x5e80 [ 135.171563][ T833] page_frag_alloc+0x3ae/0x910 [ 135.176318][ T833] __napi_alloc_skb+0x193/0xa60 [ 135.181159][ T833] page_to_skb+0x19f/0x1100 [ 135.185650][ T833] receive_buf+0xe79/0x8b30 [ 135.190137][ T833] virtnet_poll+0x64b/0x19f0 [ 135.194714][ T833] net_rx_action+0x786/0x1aa0 [ 135.199379][ T833] __do_softirq+0x311/0x83d [ 135.203871][ T833] [ 135.206196][ T833] Bytes 52-53 of 146 are uninitialized [ 135.211706][ T833] Memory access of size 146 starts at ffff9a60b51f3c40 [ 135.218540][ T833] ===================================================== [ 135.225457][ T833] Disabling lock debugging due to kernel taint [ 135.231603][ T833] Kernel panic - not syncing: panic_on_warn set ... [ 135.238203][ T833] CPU: 1 PID: 833 Comm: kworker/u4:20 Tainted: G B 5.6.0-rc6-syzkaller #0 [ 135.248001][ T833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 135.258058][ T833] Workqueue: bat_events batadv_iv_send_outstanding_bat_ogm_packet [ 135.265854][ T833] Call Trace: [ 135.269140][ T833] dump_stack+0x1c9/0x220 [ 135.273468][ T833] panic+0x3d5/0xc3e [ 135.277479][ T833] kmsan_report+0x1df/0x1e0 [ 135.281990][ T833] kmsan_internal_check_memory+0x238/0x3d0 [ 135.287795][ T833] ? stack_trace_save+0x123/0x1a0 [ 135.292822][ T833] kmsan_check_skb+0x3c/0x210 [ 135.297492][ T833] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 135.303301][ T833] pfifo_fast_dequeue+0xdb4/0xfd0 [ 135.308452][ T833] ? pfifo_fast_enqueue+0x960/0x960 [ 135.313651][ T833] __qdisc_run+0x3f1/0x3350 [ 135.318157][ T833] ? kmsan_get_metadata+0x11d/0x180 [ 135.323354][ T833] ? kmsan_set_origin_checked+0x95/0xf0 [ 135.328900][ T833] ? kmsan_get_metadata+0x11d/0x180 [ 135.334097][ T833] __dev_queue_xmit+0x23b7/0x3b20 [ 135.339119][ T833] ? kmsan_get_metadata+0x11d/0x180 [ 135.344333][ T833] dev_queue_xmit+0x4b/0x60 [ 135.348829][ T833] batadv_send_skb_packet+0x59b/0x8c0 [ 135.354229][ T833] batadv_send_broadcast_skb+0x76/0x90 [ 135.359699][ T833] batadv_iv_send_outstanding_bat_ogm_packet+0x97e/0xd50 [ 135.366739][ T833] ? batadv_iv_ogm_queue_add+0x1900/0x1900 [ 135.372539][ T833] process_one_work+0x1555/0x1f40 [ 135.377577][ T833] worker_thread+0xef6/0x2450 [ 135.382282][ T833] kthread+0x4b5/0x4f0 [ 135.386346][ T833] ? process_one_work+0x1f40/0x1f40 [ 135.391544][ T833] ? kthread_blkcg+0xf0/0xf0 [ 135.396130][ T833] ret_from_fork+0x35/0x40 [ 135.401124][ T833] ------------[ cut here ]------------ [ 135.406686][ T833] kernel BUG at mm/kmsan/kmsan.h:87! [ 135.411957][ T833] invalid opcode: 0000 [#1] SMP [ 135.416787][ T833] CPU: 1 PID: 833 Comm: kworker/u4:20 Tainted: G B 5.6.0-rc6-syzkaller #0 [ 135.426562][ T833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 135.436614][ T833] Workqueue: bat_events batadv_iv_send_outstanding_bat_ogm_packet [ 135.444398][ T833] RIP: 0010:kmsan_internal_check_memory+0x3c0/0x3d0 [ 135.450974][ T833] Code: 5b 41 5c 41 5d 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 a6 44 28 94 31 c0 e8 61 78 48 ff 0f 0b 0f 0b 0f 0b 0f 0b e8 82 96 48 ff 0f 0b <0f> 0b 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 83 ff [ 135.470678][ T833] RSP: 0018:ffffab7201e671f8 EFLAGS: 00010046 [ 135.476723][ T833] RAX: 0000000000000002 RBX: 00000000045d0104 RCX: 00000000045d0104 [ 135.484685][ T833] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffffab7201e672d4 [ 135.492638][ T833] RBP: ffffab7201e672a0 R08: 0000000000000000 R09: ffff9a612fd28ed0 [ 135.500599][ T833] R10: 0000000000000000 R11: ffffffff8b01cea0 R12: 0000000000000000 [ 135.508555][ T833] R13: 0000000000000001 R14: 0000000000000002 R15: 0000000000000001 [ 135.517037][ T833] FS: 0000000000000000(0000) GS:ffff9a612fd00000(0000) knlGS:0000000000000000 [ 135.525947][ T833] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 135.532517][ T833] CR2: 00000000080d72fc CR3: 0000000104ff5000 CR4: 00000000001406e0 [ 135.540523][ T833] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 135.548473][ T833] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 135.556419][ T833] Call Trace: [ 135.559723][ T833] kmsan_check_memory+0xd/0x10 [ 135.564478][ T833] iowrite8+0x99/0x2e0 [ 135.568531][ T833] pvpanic_panic_notify+0x99/0xc0 [ 135.573535][ T833] ? pvpanic_mmio_remove+0x60/0x60 [ 135.578624][ T833] atomic_notifier_call_chain+0x12a/0x240 [ 135.584429][ T833] panic+0x468/0xc3e [ 135.588324][ T833] kmsan_report+0x1df/0x1e0 [ 135.592812][ T833] kmsan_internal_check_memory+0x238/0x3d0 [ 135.598599][ T833] ? stack_trace_save+0x123/0x1a0 [ 135.603616][ T833] kmsan_check_skb+0x3c/0x210 [ 135.608275][ T833] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 135.614062][ T833] pfifo_fast_dequeue+0xdb4/0xfd0 [ 135.619075][ T833] ? pfifo_fast_enqueue+0x960/0x960 [ 135.624248][ T833] __qdisc_run+0x3f1/0x3350 [ 135.628733][ T833] ? kmsan_get_metadata+0x11d/0x180 [ 135.633910][ T833] ? kmsan_set_origin_checked+0x95/0xf0 [ 135.639446][ T833] ? kmsan_get_metadata+0x11d/0x180 [ 135.644636][ T833] __dev_queue_xmit+0x23b7/0x3b20 [ 135.649651][ T833] ? kmsan_get_metadata+0x11d/0x180 [ 135.654841][ T833] dev_queue_xmit+0x4b/0x60 [ 135.659324][ T833] batadv_send_skb_packet+0x59b/0x8c0 [ 135.664696][ T833] batadv_send_broadcast_skb+0x76/0x90 [ 135.670141][ T833] batadv_iv_send_outstanding_bat_ogm_packet+0x97e/0xd50 [ 135.677155][ T833] ? batadv_iv_ogm_queue_add+0x1900/0x1900 [ 135.682944][ T833] process_one_work+0x1555/0x1f40 [ 135.687967][ T833] worker_thread+0xef6/0x2450 [ 135.692636][ T833] kthread+0x4b5/0x4f0 [ 135.696694][ T833] ? process_one_work+0x1f40/0x1f40 [ 135.701927][ T833] ? kthread_blkcg+0xf0/0xf0 [ 135.706534][ T833] ret_from_fork+0x35/0x40 [ 135.710938][ T833] Modules linked in: [ 135.714821][ T833] ---[ end trace 1ed94bf7cff6fef1 ]--- [ 135.720262][ T833] RIP: 0010:kmsan_internal_check_memory+0x3c0/0x3d0 [ 135.726831][ T833] Code: 5b 41 5c 41 5d 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 a6 44 28 94 31 c0 e8 61 78 48 ff 0f 0b 0f 0b 0f 0b 0f 0b e8 82 96 48 ff 0f 0b <0f> 0b 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 83 ff [ 135.746414][ T833] RSP: 0018:ffffab7201e671f8 EFLAGS: 00010046 [ 135.752454][ T833] RAX: 0000000000000002 RBX: 00000000045d0104 RCX: 00000000045d0104 [ 135.760401][ T833] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffffab7201e672d4 [ 135.768359][ T833] RBP: ffffab7201e672a0 R08: 0000000000000000 R09: ffff9a612fd28ed0 [ 135.776316][ T833] R10: 0000000000000000 R11: ffffffff8b01cea0 R12: 0000000000000000 [ 135.784264][ T833] R13: 0000000000000001 R14: 0000000000000002 R15: 0000000000000001 [ 135.792215][ T833] FS: 0000000000000000(0000) GS:ffff9a612fd00000(0000) knlGS:0000000000000000 [ 135.801169][ T833] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 135.807772][ T833] CR2: 00000000080d72fc CR3: 0000000104ff5000 CR4: 00000000001406e0 [ 135.815767][ T833] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 135.823725][ T833] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 135.831676][ T833] Kernel panic - not syncing: Fatal exception in interrupt [ 135.839558][ T833] Kernel Offset: 0x4e00000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff) [ 135.851082][ T833] Rebooting in 86400 seconds..