./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1074771265 <...> Warning: Permanently added '10.128.0.185' (ED25519) to the list of known hosts. execve("./syz-executor1074771265", ["./syz-executor1074771265"], 0x7ffd01479830 /* 10 vars */) = 0 brk(NULL) = 0x5555770af000 brk(0x5555770afd00) = 0x5555770afd00 arch_prctl(ARCH_SET_FS, 0x5555770af380) = 0 set_tid_address(0x5555770af650) = 5779 set_robust_list(0x5555770af660, 24) = 0 rseq(0x5555770afca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1074771265", 4096) = 28 getrandom("\x3c\xb5\x51\x55\x58\x99\x97\x5b", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x5555770afd00 brk(0x5555770d0d00) = 0x5555770d0d00 brk(0x5555770d1000) = 0x5555770d1000 mprotect(0x7f9d547ea000, 16384, PROT_READ) = 0 mmap(0x3ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x3ffffffff000 mmap(0x400000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x400000000000 mmap(0x400001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x400001000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555770af650) = 5780 ./strace-static-x86_64: Process 5780 attached [pid 5780] set_robust_list(0x5555770af660, 24) = 0 [pid 5780] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5780] setpgid(0, 0) = 0 [pid 5780] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5780] write(3, "1000", 4) = 4 [pid 5780] close(3executing program ) = 0 [pid 5780] write(1, "executing program\n", 18) = 18 [pid 5780] socket(AF_IEEE802154, SOCK_DGRAM, 0) = 3 [pid 5780] setsockopt(3, SOL_IP, IP_TOS, [2], 4) = 0 [pid 5780] setsockopt(3, SOL_IP, IP_TOS, [0], 4) = 0 [ 184.288058][ T5780] ===================================================== [ 184.295412][ T5780] BUG: KMSAN: uninit-value in ieee802154_hdr_push+0xd66/0xe80 [ 184.303730][ T5780] ieee802154_hdr_push+0xd66/0xe80 [ 184.309110][ T5780] ieee802154_header_create+0x9bc/0xc70 [ 184.314874][ T5780] dgram_sendmsg+0xd91/0x15e0 [ 184.319765][ T5780] ieee802154_sock_sendmsg+0x96/0xd0 [ 184.325237][ T5780] __sock_sendmsg+0x30f/0x380 [ 184.330186][ T5780] __sys_sendto+0x594/0x750 [ 184.334901][ T5780] __x64_sys_sendto+0x125/0x1d0 [ 184.340052][ T5780] x64_sys_call+0x346a/0x3c30 [ 184.344885][ T5780] do_syscall_64+0xcd/0x1e0 [ 184.349604][ T5780] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 184.355685][ T5780] [ 184.358173][ T5780] Local variable hdr created at: [ 184.363193][ T5780] ieee802154_header_create+0x4e/0xc70 [ 184.368873][ T5780] dgram_sendmsg+0xd91/0x15e0 [ 184.373707][ T5780] [ 184.376097][ T5780] CPU: 1 UID: 0 PID: 5780 Comm: syz-executor107 Not tainted 6.14.0-rc3-syzkaller-00293-g5cf80612d3f7 #0 [ 184.387424][ T5780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 184.397796][ T5780] ===================================================== [ 184.404797][ T5780] Disabling lock debugging due to kernel taint [ 184.411145][ T5780] Kernel panic - not syncing: kmsan.panic set ... [ 184.417709][ T5780] CPU: 1 UID: 0 PID: 5780 Comm: syz-executor107 Tainted: G B 6.14.0-rc3-syzkaller-00293-g5cf80612d3f7 #0 [ 184.430428][ T5780] Tainted: [B]=BAD_PAGE [ 184.434645][ T5780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 184.444794][ T5780] Call Trace: [ 184.448169][ T5780] [ 184.451186][ T5780] dump_stack_lvl+0x216/0x2d0 [ 184.455959][ T5780] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 184.461893][ T5780] dump_stack+0x1e/0x24 [ 184.466137][ T5780] panic+0x4e2/0xcf0 [ 184.470184][ T5780] ? kmsan_get_metadata+0xc1/0x1c0 [ 184.475494][ T5780] kmsan_report+0x2c7/0x2d0 [ 184.480120][ T5780] ? __msan_memcpy+0x108/0x1c0 [ 184.485008][ T5780] ? __x64_sys_sendto+0x125/0x1d0 [ 184.490165][ T5780] ? __msan_warning+0x95/0x120 [ 184.495039][ T5780] ? ieee802154_hdr_push+0xd66/0xe80 [ 184.500449][ T5780] ? ieee802154_header_create+0x9bc/0xc70 [ 184.506278][ T5780] ? dgram_sendmsg+0xd91/0x15e0 [ 184.511239][ T5780] ? ieee802154_sock_sendmsg+0x96/0xd0 [ 184.516904][ T5780] ? __sock_sendmsg+0x30f/0x380 [ 184.521885][ T5780] ? __sys_sendto+0x594/0x750 [ 184.526676][ T5780] ? __x64_sys_sendto+0x125/0x1d0 [ 184.531864][ T5780] ? x64_sys_call+0x346a/0x3c30 [ 184.536819][ T5780] ? do_syscall_64+0xcd/0x1e0 [ 184.541607][ T5780] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 184.547805][ T5780] ? ieee802154_header_create+0x99f/0xc70 [ 184.553638][ T5780] ? dgram_sendmsg+0xd91/0x15e0 [ 184.558592][ T5780] ? ieee802154_sock_sendmsg+0x96/0xd0 [ 184.564171][ T5780] ? kmsan_get_metadata+0x13e/0x1c0 [ 184.569507][ T5780] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 184.575965][ T5780] ? kmsan_get_metadata+0x13e/0x1c0 [ 184.581283][ T5780] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 184.587219][ T5780] ? kmsan_get_metadata+0x13e/0x1c0 [ 184.592558][ T5780] ? kmsan_internal_memmove_metadata+0x91/0x230 [ 184.598934][ T5780] ? kmsan_get_metadata+0x13e/0x1c0 [ 184.604249][ T5780] ? kmsan_internal_memmove_metadata+0x17b/0x230 [ 184.610698][ T5780] ? kmsan_get_metadata+0x13e/0x1c0 [ 184.616018][ T5780] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 184.621970][ T5780] __msan_warning+0x95/0x120 [ 184.626674][ T5780] ieee802154_hdr_push+0xd66/0xe80 [ 184.631927][ T5780] ? __msan_memcpy+0x108/0x1c0 [ 184.636798][ T5780] ieee802154_header_create+0x9bc/0xc70 [ 184.642495][ T5780] ? __pfx_ieee802154_header_create+0x10/0x10 [ 184.648674][ T5780] dgram_sendmsg+0xd91/0x15e0 [ 184.653499][ T5780] ? __pfx_dgram_sendmsg+0x10/0x10 [ 184.658714][ T5780] ieee802154_sock_sendmsg+0x96/0xd0 [ 184.664147][ T5780] ? __pfx_ieee802154_sock_sendmsg+0x10/0x10 [ 184.670324][ T5780] ? __pfx_ieee802154_sock_sendmsg+0x10/0x10 [ 184.676462][ T5780] __sock_sendmsg+0x30f/0x380 [ 184.681252][ T5780] __sys_sendto+0x594/0x750 [ 184.685902][ T5780] ? kmsan_get_metadata+0x13e/0x1c0 [ 184.691219][ T5780] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 184.697176][ T5780] __x64_sys_sendto+0x125/0x1d0 [ 184.702180][ T5780] x64_sys_call+0x346a/0x3c30 [ 184.706955][ T5780] do_syscall_64+0xcd/0x1e0 [ 184.711561][ T5780] ? clear_bhb_loop+0x25/0x80 [ 184.716388][ T5780] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 184.722462][ T5780] RIP: 0033:0x7f9d54779103 [ 184.726960][ T5780] Code: 64 89 02 48 c7 c0 ff ff ff ff eb b7 66 2e 0f 1f 84 00 00 00 00 00 90 80 3d 81 5f 07 00 00 41 89 ca 74 14 b8 2c 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 75 c3 0f 1f 40 00 55 48 83 ec 30 44 89 4c 24 [ 184.746685][ T5780] RSP: 002b:00007ffcf0891728 EFLAGS: 00000202 ORIG_RAX: 000000000000002c [ 184.755248][ T5780] RAX: ffffffffffffffda RBX: 00007ffcf08917b4 RCX: 00007f9d54779103 [ 184.763477][ T5780] RDX: 0000000000000020 RSI: 00007ffcf08917a0 RDI: 0000000000000003 [ 184.771536][ T5780] RBP: 0000000000000003 R08: 00007ffcf0891744 R09: 000000000000000c [ 184.779591][ T5780] R10: 0000000000000000 R11: 0000000000000202 R12: 00007ffcf08917a0 [ 184.787662][ T5780] R13: 431bde82d7b634db R14: 0000000000000001 R15: 0000000000000001 [ 184.795761][ T5780] [ 184.799124][ T5780] Kernel Offset: disabled [ 184.803520][ T5780] Rebooting in 86400 seconds..