[ 77.499547][ T3057] 8021q: adding VLAN 0 to HW filter on device bond0 [ 77.520169][ T3057] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller syzkaller login: [ 100.243656][ T28] cfg80211: failed to load regulatory.db [ 125.030837][ T3479] can: request_module (can-proto-0) failed. [ 125.076851][ T3479] can: request_module (can-proto-0) failed. Warning: Permanently added '10.128.10.38' (ECDSA) to the list of known hosts. 2022/09/30 01:24:54 parsed 1 programs 2022/09/30 01:25:00 executed programs: 0 [ 158.777268][ T3558] chnl_net:caif_netlink_parms(): no params data found [ 158.866833][ T3558] bridge0: port 1(bridge_slave_0) entered blocking state [ 158.874328][ T3558] bridge0: port 1(bridge_slave_0) entered disabled state [ 158.884044][ T3558] device bridge_slave_0 entered promiscuous mode [ 158.896308][ T3558] bridge0: port 2(bridge_slave_1) entered blocking state [ 158.903847][ T3558] bridge0: port 2(bridge_slave_1) entered disabled state [ 158.913510][ T3558] device bridge_slave_1 entered promiscuous mode [ 158.967332][ T3558] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 158.983387][ T3558] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 159.036328][ T3558] team0: Port device team_slave_0 added [ 159.047820][ T3558] team0: Port device team_slave_1 added [ 159.105430][ T3558] device hsr_slave_0 entered promiscuous mode [ 159.114314][ T3558] device hsr_slave_1 entered promiscuous mode [ 159.155289][ T3558] bridge0: port 2(bridge_slave_1) entered blocking state [ 159.162777][ T3558] bridge0: port 2(bridge_slave_1) entered forwarding state [ 159.170685][ T3558] bridge0: port 1(bridge_slave_0) entered blocking state [ 159.178274][ T3558] bridge0: port 1(bridge_slave_0) entered forwarding state [ 159.316612][ T3558] 8021q: adding VLAN 0 to HW filter on device bond0 [ 159.340209][ T120] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 159.352120][ T120] bridge0: port 1(bridge_slave_0) entered disabled state [ 159.361659][ T120] bridge0: port 2(bridge_slave_1) entered disabled state [ 159.373081][ T120] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 159.395762][ T3558] 8021q: adding VLAN 0 to HW filter on device team0 [ 159.415707][ T3560] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 159.425849][ T3560] bridge0: port 1(bridge_slave_0) entered blocking state [ 159.433435][ T3560] bridge0: port 1(bridge_slave_0) entered forwarding state [ 159.452944][ T3560] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 159.462711][ T3560] bridge0: port 2(bridge_slave_1) entered blocking state [ 159.470179][ T3560] bridge0: port 2(bridge_slave_1) entered forwarding state [ 159.517212][ T3560] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 159.529869][ T3560] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 159.547747][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 159.573657][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 159.593514][ T3560] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 159.610262][ T3558] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 159.660891][ T3558] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 159.897669][ T3567] ===================================================== [ 159.904911][ T3567] BUG: KMSAN: uninit-value in hsr_get_node+0xa02/0xa20 [ 159.912135][ T3567] hsr_get_node+0xa02/0xa20 [ 159.917011][ T3567] hsr_forward_skb+0x462/0x3040 [ 159.922182][ T3567] hsr_dev_xmit+0x187/0x330 [ 159.927185][ T3567] xmit_one+0x14e/0x5f0 [ 159.931493][ T3567] dev_hard_start_xmit+0xe5/0x370 [ 159.937446][ T3567] __dev_queue_xmit+0x1dec/0x31f0 [ 159.942838][ T3567] dev_queue_xmit+0x2b/0x30 [ 159.947486][ T3567] packet_sendmsg+0x605b/0x78e0 [ 159.952754][ T3567] __sys_sendto+0x7f2/0xa60 [ 159.957440][ T3567] __x64_sys_sendto+0x121/0x1c0 [ 159.962667][ T3567] do_syscall_64+0x3d/0xb0 [ 159.967209][ T3567] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 159.973408][ T3567] [ 159.975799][ T3567] Uninit was created at: [ 159.980182][ T3567] __kmalloc_node_track_caller+0x814/0x1250 [ 159.986780][ T3567] __alloc_skb+0x346/0xcf0 [ 159.991377][ T3567] alloc_skb_with_frags+0xb9/0xba0 [ 159.996728][ T3567] sock_alloc_send_pskb+0xaa8/0xc30 [ 160.002154][ T3567] packet_sendmsg+0x4bfd/0x78e0 [ 160.007155][ T3567] __sys_sendto+0x7f2/0xa60 [ 160.011944][ T3567] __x64_sys_sendto+0x121/0x1c0 [ 160.016948][ T3567] do_syscall_64+0x3d/0xb0 [ 160.021495][ T3567] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 160.027690][ T3567] [ 160.030072][ T3567] CPU: 0 PID: 3567 Comm: syz-executor.0 Not tainted 6.0.0-rc5-syzkaller-00055-g968c2729e576 #0 [ 160.040665][ T3567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 160.052035][ T3567] ===================================================== [ 160.059023][ T3567] Disabling lock debugging due to kernel taint [ 160.065462][ T3567] Kernel panic - not syncing: kmsan.panic set ... [ 160.071966][ T3567] CPU: 0 PID: 3567 Comm: syz-executor.0 Tainted: G B 6.0.0-rc5-syzkaller-00055-g968c2729e576 #0 [ 160.083910][ T3567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 160.094231][ T3567] Call Trace: [ 160.097567][ T3567] [ 160.100537][ T3567] dump_stack_lvl+0x1c8/0x256 [ 160.105451][ T3567] dump_stack+0x1a/0x1c [ 160.109761][ T3567] panic+0x4d3/0xc69 [ 160.113853][ T3567] ? add_taint+0x104/0x1a0 [ 160.118503][ T3567] kmsan_report+0x2cc/0x2d0 [ 160.123120][ T3567] ? kernel_text_address+0x11d/0x1a0 [ 160.128513][ T3567] ? __msan_warning+0x92/0x110 [ 160.133542][ T3567] ? hsr_get_node+0xa02/0xa20 [ 160.138303][ T3567] ? hsr_forward_skb+0x462/0x3040 [ 160.143512][ T3567] ? hsr_dev_xmit+0x187/0x330 [ 160.148276][ T3567] ? xmit_one+0x14e/0x5f0 [ 160.152709][ T3567] ? dev_hard_start_xmit+0xe5/0x370 [ 160.158061][ T3567] ? __dev_queue_xmit+0x1dec/0x31f0 [ 160.163355][ T3567] ? dev_queue_xmit+0x2b/0x30 [ 160.168117][ T3567] ? packet_sendmsg+0x605b/0x78e0 [ 160.173228][ T3567] ? __sys_sendto+0x7f2/0xa60 [ 160.177999][ T3567] ? __x64_sys_sendto+0x121/0x1c0 [ 160.183215][ T3567] ? do_syscall_64+0x3d/0xb0 [ 160.187885][ T3567] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 160.194088][ T3567] ? preempt_count_sub+0x7d/0x280 [ 160.199214][ T3567] ? _raw_spin_unlock_irqrestore+0x34/0x50 [ 160.205145][ T3567] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 160.211508][ T3567] ? kmsan_internal_poison_memory+0x78/0x90 [ 160.217520][ T3567] ? kmsan_internal_poison_memory+0x45/0x90 [ 160.223535][ T3567] ? hsr_forward_skb+0x49/0x3040 [ 160.228638][ T3567] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 160.234564][ T3567] ? hsr_forward_skb+0x49/0x3040 [ 160.239667][ T3567] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 160.245650][ T3567] __msan_warning+0x92/0x110 [ 160.250470][ T3567] hsr_get_node+0xa02/0xa20 [ 160.255109][ T3567] hsr_forward_skb+0x462/0x3040 [ 160.260090][ T3567] hsr_dev_xmit+0x187/0x330 [ 160.264695][ T3567] ? is_hsr_master+0x90/0x90 [ 160.269398][ T3567] xmit_one+0x14e/0x5f0 [ 160.273675][ T3567] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 160.279595][ T3567] dev_hard_start_xmit+0xe5/0x370 [ 160.284712][ T3567] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 160.290647][ T3567] __dev_queue_xmit+0x1dec/0x31f0 [ 160.295862][ T3567] dev_queue_xmit+0x2b/0x30 [ 160.300456][ T3567] ? packet_create+0xd20/0xd20 [ 160.305342][ T3567] packet_sendmsg+0x605b/0x78e0 [ 160.310309][ T3567] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 160.316859][ T3567] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 160.322993][ T3567] ? packet_getsockopt+0xfd0/0xfd0 [ 160.328352][ T3567] __sys_sendto+0x7f2/0xa60 [ 160.332993][ T3567] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 160.339242][ T3567] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 160.345214][ T3567] __x64_sys_sendto+0x121/0x1c0 [ 160.350182][ T3567] do_syscall_64+0x3d/0xb0 [ 160.354681][ T3567] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 160.360781][ T3567] RIP: 0033:0x45f689 [ 160.364738][ T3567] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 160.384633][ T3567] RSP: 002b:00007fbaa49df1a8 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 160.393234][ T3567] RAX: ffffffffffffffda RBX: 000000000052bf00 RCX: 000000000045f689 [ 160.401310][ T3567] RDX: 000000000000000e RSI: 00000000200000c0 RDI: 0000000000000003 [ 160.409358][ T3567] RBP: 0000000000000006 R08: 0000000000000000 R09: 0000000000000000 [ 160.417517][ T3567] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 160.425551][ T3567] R13: 00000000004f1330 R14: 00000000004b0b28 R15: 00007fbaa49df6bc [ 160.433622][ T3567] [ 160.437010][ T3567] Kernel Offset: disabled [ 160.441384][ T3567] Rebooting in 86400 seconds..