./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1084945918 <...> Warning: Permanently added '10.128.1.140' (ECDSA) to the list of known hosts. execve("./syz-executor1084945918", ["./syz-executor1084945918"], 0x7ffd1c75eff0 /* 10 vars */) = 0 brk(NULL) = 0x555556c62000 brk(0x555556c62c40) = 0x555556c62c40 arch_prctl(ARCH_SET_FS, 0x555556c62300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor1084945918", 4096) = 28 brk(0x555556c83c40) = 0x555556c83c40 brk(0x555556c84000) = 0x555556c84000 mprotect(0x7fc04c954000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556c625d0) = 5016 ./strace-static-x86_64: Process 5016 attached [pid 5016] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5016] setpgid(0, 0) = 0 [pid 5016] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5016] write(3, "1000", 4) = 4 [pid 5016] close(3) = 0 [pid 5016] io_uring_setup(1453, {flags=0, sq_thread_cpu=0, sq_thread_idle=0, sq_entries=2048, cq_entries=4096, features=IORING_FEAT_SINGLE_MMAP|IORING_FEAT_NODROP|IORING_FEAT_SUBMIT_STABLE|IORING_FEAT_RW_CUR_POS|IORING_FEAT_CUR_PERSONALITY|IORING_FEAT_FAST_POLL|IORING_FEAT_POLL_32BITS|IORING_FEAT_SQPOLL_NONFIXED|IORING_FEAT_EXT_ARG|IORING_FEAT_NATIVE_WORKERS|IORING_FEAT_RSRC_TAGS|IORING_FEAT_CQE_SKIP|IORING_FEAT_LINKED_FILE|0x2000, sq_off={head=0, tail=64, ring_mask=256, ring_entries=264, flags=276, dropped=272, array=65856}, cq_off={head=128, tail=192, ring_mask=260, ring_entries=268, overflow=284, cqes=320, flags=280}}) = 3 [pid 5016] mmap(0x20000000, 74048, PROT_READ|PROT_WRITE, MAP_SHARED|MAP_FIXED|MAP_POPULATE, 3, 0) = 0x20000000 [pid 5016] mmap(0x20000000, 131008, PROT_READ|PROT_WRITE, MAP_SHARED|MAP_FIXED|MAP_POPULATE, 3, 0x10000000) = 0x20000000 [pid 5016] bind(-1, 0x20000000, 88) = -1 EBADF (Bad file descriptor) [ 164.929148][ T5016] ===================================================== [ 164.936520][ T5016] BUG: KMSAN: uninit-value in io_rw_fail+0x1a7/0x1b0 [ 164.943563][ T5016] io_rw_fail+0x1a7/0x1b0 [ 164.948165][ T5016] io_req_defer_failed+0x217/0x3e0 [ 164.953727][ T5016] io_queue_sqe_fallback+0x1f4/0x260 [ 164.959218][ T5016] io_submit_sqes+0x2319/0x2e10 [ 164.964359][ T5016] __se_sys_io_uring_enter+0x4ed/0x4300 [ 164.970088][ T5016] __x64_sys_io_uring_enter+0x11b/0x1a0 [ 164.976005][ T5016] do_syscall_64+0x41/0xc0 [ 164.980638][ T5016] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 164.987330][ T5016] [ 164.989765][ T5016] Uninit was created at: [ 164.994450][ T5016] slab_post_alloc_hook+0x12d/0xb60 [ 164.999855][ T5016] __kmem_cache_alloc_node+0x518/0x920 [ 165.005671][ T5016] __kmalloc+0x121/0x3c0 [ 165.010135][ T5016] io_req_prep_async+0x384/0x5a0 [ 165.015455][ T5016] io_queue_sqe_fallback+0x95/0x260 [ 165.020825][ T5016] io_submit_sqes+0x2319/0x2e10 [ 165.025974][ T5016] __se_sys_io_uring_enter+0x4ed/0x4300 [ 165.031711][ T5016] __x64_sys_io_uring_enter+0x11b/0x1a0 [ 165.037668][ T5016] do_syscall_64+0x41/0xc0 [ 165.042384][ T5016] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 165.048512][ T5016] [ 165.050941][ T5016] CPU: 0 PID: 5016 Comm: syz-executor108 Not tainted 6.3.0-rc2-syzkaller-g34add094f9de #0 [ 165.061397][ T5016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 165.071786][ T5016] ===================================================== [ 165.078956][ T5016] Disabling lock debugging due to kernel taint [ 165.085319][ T5016] Kernel panic - not syncing: kmsan.panic set ... [ 165.091870][ T5016] CPU: 0 PID: 5016 Comm: syz-executor108 Tainted: G B 6.3.0-rc2-syzkaller-g34add094f9de #0 [ 165.103525][ T5016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 165.113740][ T5016] Call Trace: [ 165.117118][ T5016] [ 165.120139][ T5016] dump_stack_lvl+0x1cc/0x260 [ 165.125057][ T5016] dump_stack+0x1e/0x20 [ 165.129420][ T5016] panic+0x4e2/0xc70 [ 165.133582][ T5016] ? add_taint+0x108/0x1a0 [ 165.138197][ T5016] kmsan_report+0x2d0/0x2d0 [ 165.142913][ T5016] ? __msan_warning+0x96/0x110 [ 165.147857][ T5016] ? io_rw_fail+0x1a7/0x1b0 [ 165.152485][ T5016] ? io_req_defer_failed+0x217/0x3e0 [ 165.158040][ T5016] ? io_queue_sqe_fallback+0x1f4/0x260 [ 165.163701][ T5016] ? io_submit_sqes+0x2319/0x2e10 [ 165.168861][ T5016] ? __se_sys_io_uring_enter+0x4ed/0x4300 [ 165.174760][ T5016] ? __x64_sys_io_uring_enter+0x11b/0x1a0 [ 165.180612][ T5016] ? do_syscall_64+0x41/0xc0 [ 165.185406][ T5016] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 165.191751][ T5016] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 165.197773][ T5016] ? __import_iovec+0xea/0x730 [ 165.202786][ T5016] ? kmsan_internal_set_shadow_origin+0x66/0xe0 [ 165.209248][ T5016] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 165.215258][ T5016] ? io_import_iovec+0x780/0x980 [ 165.220375][ T5016] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 165.226347][ T5016] __msan_warning+0x96/0x110 [ 165.231119][ T5016] io_rw_fail+0x1a7/0x1b0 [ 165.235617][ T5016] ? loop_rw_iter+0xac0/0xac0 [ 165.240411][ T5016] io_req_defer_failed+0x217/0x3e0 [ 165.245775][ T5016] io_queue_sqe_fallback+0x1f4/0x260 [ 165.251285][ T5016] io_submit_sqes+0x2319/0x2e10 [ 165.256327][ T5016] ? kmsan_save_stack_with_flags+0x30/0x60 [ 165.262348][ T5016] __se_sys_io_uring_enter+0x4ed/0x4300 [ 165.268136][ T5016] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 165.274241][ T5016] __x64_sys_io_uring_enter+0x11b/0x1a0 [ 165.279959][ T5016] do_syscall_64+0x41/0xc0 [ 165.284590][ T5016] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 165.290659][ T5016] RIP: 0033:0x7fc04c8e7e29 [ 165.295230][ T5016] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 165.315054][ T5016] RSP: 002b:00007ffff9ae5f48 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 165.323665][ T5016] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fc04c8e7e29 [ 165.331808][ T5016] RDX: 0000000000000000 RSI: 0000000000001d32 RDI: 0000000000000003 [ 165.339928][ T5016] RBP: 0000000000000000 R08: 0000000020000000 R09: 0000000000000008 [ 165.348015][ T5016] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc04c8ab6b0 [ 165.356172][ T5016] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 165.364317][ T5016] [ 165.367685][ T5016] Kernel Offset: disabled [ 165.372090][ T5016] Rebooting in 86400 seconds..