./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3441383527 <...> Warning: Permanently added '10.128.0.188' (ECDSA) to the list of known hosts. execve("./syz-executor3441383527", ["./syz-executor3441383527"], 0x7ffe284b8fe0 /* 10 vars */) = 0 brk(NULL) = 0x55555570d000 brk(0x55555570dc40) = 0x55555570dc40 arch_prctl(ARCH_SET_FS, 0x55555570d300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor3441383527", 4096) = 28 brk(0x55555572ec40) = 0x55555572ec40 brk(0x55555572f000) = 0x55555572f000 mprotect(0x7f8f46075000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 unshare(CLONE_NEWPID) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555570d5d0) = 4957 ./strace-static-x86_64: Process 4957 attached [pid 4957] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy) [pid 4957] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 4957] setsid() = 1 [pid 4957] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0 [pid 4957] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0 [pid 4957] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0 [pid 4957] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0 [pid 4957] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0 [pid 4957] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0 [pid 4957] unshare(CLONE_NEWNS) = 0 [pid 4957] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0 [pid 4957] unshare(CLONE_NEWIPC) = 0 [pid 4957] unshare(CLONE_NEWCGROUP) = 0 [pid 4957] unshare(CLONE_NEWUTS) = 0 [pid 4957] unshare(CLONE_SYSVSEM) = 0 [pid 4957] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3 [pid 4957] write(3, "16777216", 8) = 8 [pid 4957] close(3) = 0 [pid 4957] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3 [pid 4957] write(3, "536870912", 9) = 9 [pid 4957] close(3) = 0 [pid 4957] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3 [pid 4957] write(3, "1024", 4) = 4 [pid 4957] close(3) = 0 [pid 4957] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3 [pid 4957] write(3, "8192", 4) = 4 [pid 4957] close(3) = 0 [pid 4957] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3 [pid 4957] write(3, "1024", 4) = 4 [pid 4957] close(3) = 0 [pid 4957] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3 [pid 4957] write(3, "1024", 4) = 4 [pid 4957] close(3) = 0 [pid 4957] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3 [pid 4957] write(3, "1024 1048576 500 1024", 21) = 21 [pid 4957] close(3) = 0 [pid 4957] getpid() = 1 [pid 4957] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1< 2]) = 0 [pid 4983] sendmsg(4, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x64\x00\x00\x00\x10\x00\x21\x04\x00\x00\x00\x00\xfc\xdb\xdf\x25\x00\x00\x00\x00\x00\x00\x00\x00\xad\xff\xa8\x88\x00\x00\x00\x00\x28\x00\x12\x80\x09\x00\x01\x00\x76\x6c\x61\x6e\x00\x00\x00\x00\x18\x00\x02\x80\x0c\x00\x02\x00\x0e\x00\x00\x00\x0a\x00\x00\x00\x06\x00\x01\x00\x00\x00\x00\x00\x08\x00\x05\x00\x03\x00\x00\x00\x08\x00\x0a\x00\x00\x00\x00\x00\x0a\x00\x01\x00\xaa\xaa\xaa\xaa\xaa\xbb\x00\x00", iov_len=100}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 100 [pid 4983] close(3) = 0 [pid 4983] close(4) = 0 [pid 4983] close(5) = 0 [pid 4983] close(6) = -1 EBADF (Bad file descriptor) [pid 4983] close(7) = -1 EBADF (Bad file descriptor) [pid 4983] close(8) = -1 EBADF (Bad file descriptor) [pid 4983] close(9) = -1 EBADF (Bad file descriptor) [pid 4983] close(10) = -1 EBADF (Bad file descriptor) [pid 4983] close(11) = -1 EBADF (Bad file descriptor) [pid 4983] close(12) = -1 EBADF (Bad file descriptor) [pid 4983] close(13) = -1 EBADF (Bad file descriptor) [pid 4983] close(14) = -1 EBADF (Bad file descriptor) [pid 4983] close(15) = -1 EBADF (Bad file descriptor) [pid 4983] close(16) = -1 EBADF (Bad file descriptor) [pid 4983] close(17) = -1 EBADF (Bad file descriptor) [pid 4983] close(18) = -1 EBADF (Bad file descriptor) [pid 4983] close(19) = -1 EBADF (Bad file descriptor) [pid 4983] close(20) = -1 EBADF (Bad file descriptor) [pid 4983] close(21) = -1 EBADF (Bad file descriptor) [pid 4983] close(22) = -1 EBADF (Bad file descriptor) [pid 4983] close(23) = -1 EBADF (Bad file descriptor) [pid 4983] close(24) = -1 EBADF (Bad file descriptor) [pid 4983] close(25) = -1 EBADF (Bad file descriptor) [pid 4983] close(26) = -1 EBADF (Bad file descriptor) [pid 4983] close(27) = -1 EBADF (Bad file descriptor) [pid 4983] close(28) = -1 EBADF (Bad file descriptor) [pid 4983] close(29) = -1 EBADF (Bad file descriptor) [pid 4983] exit_group(0) = ? [ 161.583163][ T4983] gre0: entered promiscuous mode [ 161.588509][ T4983] vlan2: entered promiscuous mode [ 161.594510][ T4983] vlan2: entered allmulticast mode [ 161.599783][ T4983] gre0: entered allmulticast mode [pid 4983] +++ exited with 0 +++ [pid 4957] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 4957] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 4984 attached , child_tidptr=0x55555570d5d0) = 3 [pid 4984] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 4984] setpgid(0, 0) = 0 [pid 4984] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 4984] write(3, "1000", 4) = 4 [pid 4984] close(3) = 0 [pid 4984] socket(AF_PACKET, SOCK_DGRAM, htons(ETH_P_ALL)) = 3 [pid 4984] ioctl(3, SIOCGIFINDEX, {ifr_name="gre0", ifr_ifindex=3}) = 0 [pid 4984] bind(-1, {sa_family=AF_PACKET, sll_protocol=htons(0 /* ETH_P_??? */), sll_ifindex=if_nametoindex("dummy0"), sll_hatype=ARPHRD_ETHER, sll_pkttype=PACKET_HOST, sll_halen=6, sll_addr=[0xaa, 0xaa, 0xaa, 0xaa, 0xaa, 0xbb]}, 20) = -1 EBADF (Bad file descriptor) [pid 4984] socket(AF_NETLINK, SOCK_RAW, NETLINK_ROUTE) = 4 [pid 4984] socket(AF_UNIX, SOCK_RAW|SOCK_NONBLOCK, 0) = 5 [pid 4984] getsockname(5, {sa_family=AF_UNIX}, [20 => 2]) = 0 [pid 4984] sendmsg(4, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x64\x00\x00\x00\x10\x00\x21\x04\x00\x00\x00\x00\xfc\xdb\xdf\x25\x00\x00\x00\x00\x00\x00\x00\x00\xad\xff\xa8\x88\x00\x00\x00\x00\x28\x00\x12\x80\x09\x00\x01\x00\x76\x6c\x61\x6e\x00\x00\x00\x00\x18\x00\x02\x80\x0c\x00\x02\x00\x0e\x00\x00\x00\x0a\x00\x00\x00\x06\x00\x01\x00\x00\x00\x00\x00\x08\x00\x05\x00\x03\x00\x00\x00\x08\x00\x0a\x00\x00\x00\x00\x00\x0a\x00\x01\x00\xaa\xaa\xaa\xaa\xaa\xbb\x00\x00", iov_len=100}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 100 [pid 4984] close(3) = 0 [pid 4984] close(4) = 0 [pid 4984] close(5) = 0 [pid 4984] close(6) = -1 EBADF (Bad file descriptor) [pid 4984] close(7) = -1 EBADF (Bad file descriptor) [pid 4984] close(8) = -1 EBADF (Bad file descriptor) [pid 4984] close(9) = -1 EBADF (Bad file descriptor) [pid 4984] close(10) = -1 EBADF (Bad file descriptor) [pid 4984] close(11) = -1 EBADF (Bad file descriptor) [pid 4984] close(12) = -1 EBADF (Bad file descriptor) [pid 4984] close(13) = -1 EBADF (Bad file descriptor) [pid 4984] close(14) = -1 EBADF (Bad file descriptor) [pid 4984] close(15) = -1 EBADF (Bad file descriptor) [pid 4984] close(16) = -1 EBADF (Bad file descriptor) [pid 4984] close(17) = -1 EBADF (Bad file descriptor) [pid 4984] close(18) = -1 EBADF (Bad file descriptor) [pid 4984] close(19) = -1 EBADF (Bad file descriptor) [pid 4984] close(20) = -1 EBADF (Bad file descriptor) [pid 4984] close(21) = -1 EBADF (Bad file descriptor) [pid 4984] close(22) = -1 EBADF (Bad file descriptor) [pid 4984] close(23) = -1 EBADF (Bad file descriptor) [pid 4984] close(24) = -1 EBADF (Bad file descriptor) [pid 4984] close(25) = -1 EBADF (Bad file descriptor) [pid 4984] close(26) = -1 EBADF (Bad file descriptor) [pid 4984] close(27) = -1 EBADF (Bad file descriptor) [pid 4984] close(28) = -1 EBADF (Bad file descriptor) [pid 4984] close(29) = -1 EBADF (Bad file descriptor) [pid 4984] exit_group(0) = ? [pid 4984] +++ exited with 0 +++ [pid 4957] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} --- [pid 4957] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 4985 attached , child_tidptr=0x55555570d5d0) = 4 [pid 4985] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 4985] setpgid(0, 0) = 0 [pid 4985] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 4985] write(3, "1000", 4) = 4 [pid 4985] close(3) = 0 [pid 4985] socket(AF_PACKET, SOCK_DGRAM, htons(ETH_P_ALL)) = 3 [pid 4985] ioctl(3, SIOCGIFINDEX, {ifr_name="gre0", ifr_ifindex=3}) = 0 [pid 4985] bind(-1, {sa_family=AF_PACKET, sll_protocol=htons(0 /* ETH_P_??? */), sll_ifindex=if_nametoindex("dummy0"), sll_hatype=ARPHRD_ETHER, sll_pkttype=PACKET_HOST, sll_halen=6, sll_addr=[0xaa, 0xaa, 0xaa, 0xaa, 0xaa, 0xbb]}, 20) = -1 EBADF (Bad file descriptor) [pid 4985] socket(AF_NETLINK, SOCK_RAW, NETLINK_ROUTE) = 4 [pid 4985] socket(AF_UNIX, SOCK_RAW|SOCK_NONBLOCK, 0) = 5 [pid 4985] getsockname(5, {sa_family=AF_UNIX}, [20 => 2]) = 0 [pid 4985] sendmsg(4, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x64\x00\x00\x00\x10\x00\x21\x04\x00\x00\x00\x00\xfc\xdb\xdf\x25\x00\x00\x00\x00\x00\x00\x00\x00\xad\xff\xa8\x88\x00\x00\x00\x00\x28\x00\x12\x80\x09\x00\x01\x00\x76\x6c\x61\x6e\x00\x00\x00\x00\x18\x00\x02\x80\x0c\x00\x02\x00\x0e\x00\x00\x00\x0a\x00\x00\x00\x06\x00\x01\x00\x00\x00\x00\x00\x08\x00\x05\x00\x03\x00\x00\x00\x08\x00\x0a\x00\x00\x00\x00\x00\x0a\x00\x01\x00\xaa\xaa\xaa\xaa\xaa\xbb\x00\x00", iov_len=100}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 100 [pid 4985] close(3) = 0 [pid 4985] close(4) = 0 [pid 4985] close(5) = 0 [pid 4985] close(6) = -1 EBADF (Bad file descriptor) [pid 4985] close(7) = -1 EBADF (Bad file descriptor) [pid 4985] close(8) = -1 EBADF (Bad file descriptor) [pid 4985] close(9) = -1 EBADF (Bad file descriptor) [pid 4985] close(10) = -1 EBADF (Bad file descriptor) [pid 4985] close(11) = -1 EBADF (Bad file descriptor) [pid 4985] close(12) = -1 EBADF (Bad file descriptor) [pid 4985] close(13) = -1 EBADF (Bad file descriptor) [pid 4985] close(14) = -1 EBADF (Bad file descriptor) [pid 4985] close(15) = -1 EBADF (Bad file descriptor) [pid 4985] close(16) = -1 EBADF (Bad file descriptor) [pid 4985] close(17) = -1 EBADF (Bad file descriptor) [pid 4985] close(18) = -1 EBADF (Bad file descriptor) [ 161.742044][ C0] ===================================================== [ 161.749303][ C0] BUG: KMSAN: uninit-value in ip_tunnel_xmit+0x8f1/0x4230 [ 161.756684][ C0] ip_tunnel_xmit+0x8f1/0x4230 [ 161.761602][ C0] ipgre_xmit+0xd29/0xe30 [ 161.766271][ C0] dev_hard_start_xmit+0x253/0xa20 [ 161.771547][ C0] __dev_queue_xmit+0x3c7f/0x5ac0 [ 161.776849][ C0] garp_join_timer+0x18e/0x2e0 [ 161.781867][ C0] call_timer_fn+0x45/0x4e0 [ 161.786585][ C0] __run_timers+0x861/0xf90 [ 161.791284][ C0] run_timer_softirq+0x68/0xe0 [ 161.796367][ C0] __do_softirq+0x1c9/0x7c5 [ 161.801040][ C0] __irq_exit_rcu+0xe5/0x220 [ 161.805925][ C0] irq_exit_rcu+0x12/0x20 [ 161.810456][ C0] sysvec_apic_timer_interrupt+0x9e/0xc0 [ 161.816323][ C0] asm_sysvec_apic_timer_interrupt+0x1f/0x30 [ 161.822587][ C0] __msan_metadata_ptr_for_store_8+0x2f/0x40 [ 161.828737][ C0] update_stack_state+0x183/0x1e0 [ 161.833992][ C0] unwind_next_frame+0x11d/0x360 [ 161.839124][ C0] arch_stack_walk+0x1bd/0x290 [ 161.844174][ C0] stack_trace_save+0xb6/0x100 [ 161.849135][ C0] kmsan_internal_poison_memory+0x49/0xa0 [ 161.855138][ C0] kmsan_slab_alloc+0xdd/0x150 [ 161.860051][ C0] slab_post_alloc_hook+0x12d/0xb60 [ 161.865459][ C0] kmem_cache_alloc_node+0x543/0xab0 [ 161.870954][ C0] kmalloc_reserve+0x148/0x470 [ 161.876004][ C0] __alloc_skb+0x3a7/0x850 [ 161.880583][ C0] tcp_stream_alloc_skb+0x54/0x5c0 [ 161.885912][ C0] tcp_sendmsg_locked+0x1842/0x6360 [ 161.891256][ C0] tcp_sendmsg+0x49/0x80 [ 161.895676][ C0] inet_sendmsg+0x105/0x190 [ 161.900356][ C0] sock_write_iter+0x4b0/0x660 [ 161.905347][ C0] vfs_write+0x834/0x1580 [ 161.909843][ C0] ksys_write+0x21f/0x4f0 [ 161.914372][ C0] __x64_sys_write+0x93/0xd0 [ 161.919096][ C0] do_syscall_64+0x41/0xc0 [ 161.923751][ C0] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 161.929822][ C0] [ 161.932305][ C0] Uninit was created at: [ 161.936766][ C0] slab_post_alloc_hook+0x12d/0xb60 [ 161.942216][ C0] __kmem_cache_alloc_node+0x518/0x920 [ 161.947871][ C0] __kmalloc_node_track_caller+0x118/0x3c0 [ 161.953939][ C0] kmalloc_reserve+0x248/0x470 [ 161.958857][ C0] __alloc_skb+0x3a7/0x850 [ 161.963475][ C0] garp_pdu_append_attr+0x299/0x1170 [ 161.968922][ C0] garp_attr_event+0x146/0x280 [ 161.973936][ C0] garp_join_timer+0xc5/0x2e0 [ 161.978769][ C0] call_timer_fn+0x45/0x4e0 [ 161.983574][ C0] __run_timers+0x861/0xf90 [ 161.988260][ C0] run_timer_softirq+0x68/0xe0 [ 161.993243][ C0] __do_softirq+0x1c9/0x7c5 [ 161.997916][ C0] [ 162.000296][ C0] CPU: 0 PID: 4951 Comm: sshd Not tainted 6.3.0-syzkaller-g81af97bdef5e #0 [ 162.009096][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023 [ 162.019320][ C0] ===================================================== [ 162.026413][ C0] Disabling lock debugging due to kernel taint [ 162.032718][ C0] Kernel panic - not syncing: kmsan.panic set ... [ 162.039233][ C0] CPU: 0 PID: 4951 Comm: sshd Tainted: G B 6.3.0-syzkaller-g81af97bdef5e #0 [ 162.049398][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023 [ 162.059548][ C0] Call Trace: [ 162.062990][ C0] [ 162.065936][ C0] dump_stack_lvl+0x1cc/0x260 [ 162.070780][ C0] dump_stack+0x1e/0x20 [ 162.075067][ C0] panic+0x4e2/0xc70 [ 162.079191][ C0] ? add_taint+0x108/0x1a0 [ 162.083808][ C0] kmsan_report+0x2d0/0x2d0 [ 162.088500][ C0] ? _raw_spin_unlock_irqrestore+0x38/0x50 [ 162.094478][ C0] ? __msan_warning+0x96/0x110 [ 162.099355][ C0] ? ip_tunnel_xmit+0x8f1/0x4230 [ 162.104446][ C0] ? ipgre_xmit+0xd29/0xe30 [ 162.109082][ C0] ? dev_hard_start_xmit+0x253/0xa20 [ 162.114545][ C0] ? __dev_queue_xmit+0x3c7f/0x5ac0 [ 162.119863][ C0] ? garp_join_timer+0x18e/0x2e0 [ 162.124935][ C0] ? call_timer_fn+0x45/0x4e0 [ 162.129815][ C0] ? __run_timers+0x861/0xf90 [ 162.134698][ C0] ? run_timer_softirq+0x68/0xe0 [ 162.139797][ C0] ? __do_softirq+0x1c9/0x7c5 [ 162.144571][ C0] ? __irq_exit_rcu+0xe5/0x220 [ 162.149462][ C0] ? irq_exit_rcu+0x12/0x20 [ 162.154148][ C0] ? sysvec_apic_timer_interrupt+0x9e/0xc0 [ 162.160149][ C0] ? asm_sysvec_apic_timer_interrupt+0x1f/0x30 [ 162.166516][ C0] ? __msan_metadata_ptr_for_store_8+0x2f/0x40 [ 162.172799][ C0] ? update_stack_state+0x183/0x1e0 [ 162.178205][ C0] ? unwind_next_frame+0x11d/0x360 [ 162.183547][ C0] ? arch_stack_walk+0x1bd/0x290 [ 162.188668][ C0] ? stack_trace_save+0xb6/0x100 [ 162.193720][ C0] ? kmsan_internal_poison_memory+0x49/0xa0 [ 162.199789][ C0] ? kmsan_slab_alloc+0xdd/0x150 [ 162.204889][ C0] ? slab_post_alloc_hook+0x12d/0xb60 [ 162.210446][ C0] ? kmem_cache_alloc_node+0x543/0xab0 [ 162.216051][ C0] ? kmalloc_reserve+0x148/0x470 [ 162.221183][ C0] ? __alloc_skb+0x3a7/0x850 [ 162.225916][ C0] ? tcp_stream_alloc_skb+0x54/0x5c0 [ 162.231386][ C0] ? tcp_sendmsg_locked+0x1842/0x6360 [ 162.236924][ C0] ? tcp_sendmsg+0x49/0x80 [ 162.241429][ C0] ? inet_sendmsg+0x105/0x190 [ 162.246234][ C0] ? sock_write_iter+0x4b0/0x660 [ 162.251343][ C0] ? vfs_write+0x834/0x1580 [ 162.256004][ C0] ? ksys_write+0x21f/0x4f0 [ 162.260616][ C0] ? __x64_sys_write+0x93/0xd0 [ 162.265510][ C0] ? do_syscall_64+0x41/0xc0 [ 162.270262][ C0] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 162.276481][ C0] ? filter_irq_stacks+0x60/0x1a0 [ 162.281650][ C0] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 162.287663][ C0] __msan_warning+0x96/0x110 [ 162.292403][ C0] ip_tunnel_xmit+0x8f1/0x4230 [ 162.297323][ C0] ? kmsan_slab_alloc+0xdd/0x150 [ 162.302369][ C0] ? slab_post_alloc_hook+0x12d/0xb60 [ 162.307953][ C0] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 162.313920][ C0] ? gre_build_header+0x298/0x910 [ 162.319094][ C0] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 162.325105][ C0] ipgre_xmit+0xd29/0xe30 [ 162.329628][ C0] ? ipgre_close+0x240/0x240 [ 162.334403][ C0] dev_hard_start_xmit+0x253/0xa20 [ 162.339704][ C0] __dev_queue_xmit+0x3c7f/0x5ac0 [ 162.344873][ C0] garp_join_timer+0x18e/0x2e0 [ 162.349771][ C0] ? garp_init_applicant+0x820/0x820 [ 162.355201][ C0] call_timer_fn+0x45/0x4e0 [ 162.359824][ C0] ? garp_init_applicant+0x820/0x820 [ 162.365213][ C0] ? garp_init_applicant+0x820/0x820 [ 162.370649][ C0] __run_timers+0x861/0xf90 [ 162.375292][ C0] ? sysvec_reschedule_ipi+0x72/0x120 [ 162.380813][ C0] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 162.386796][ C0] run_timer_softirq+0x68/0xe0 [ 162.391700][ C0] ? timers_dead_cpu+0xbc0/0xbc0 [ 162.396820][ C0] __do_softirq+0x1c9/0x7c5 [ 162.401416][ C0] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 162.407359][ C0] __irq_exit_rcu+0xe5/0x220 [ 162.412132][ C0] irq_exit_rcu+0x12/0x20 [ 162.416604][ C0] sysvec_apic_timer_interrupt+0x9e/0xc0 [ 162.422385][ C0] [ 162.425409][ C0] [ 162.428416][ C0] asm_sysvec_apic_timer_interrupt+0x1f/0x30 [ 162.434532][ C0] RIP: 0010:__msan_metadata_ptr_for_store_8+0x2f/0x40 [ 162.441417][ C0] Code: 48 89 e5 53 48 83 ec 10 9c 8f 45 e8 0f 01 ca 48 8b 5d e8 be 08 00 00 00 ba 01 00 00 00 e8 69 22 00 00 48 89 5d f0 ff 75 f0 9d <48> 83 c4 10 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 55 [ 162.461179][ C0] RSP: 0018:ffff88811ca7f1c0 EFLAGS: 00000286 [ 162.467367][ C0] RAX: ffff88811c27f2e0 RBX: 0000000000000286 RCX: 000000000058e07b [ 162.475468][ C0] RDX: ffff88811c67f2e0 RSI: 00000000058f47b0 RDI: ffffea000000000f [ 162.483547][ C0] RBP: ffff88811ca7f1d8 R08: 0000000000000000 R09: 0000000000000000 [ 162.491651][ C0] R10: ffff88811ca7c000 R11: 0000000000000000 R12: ffffffff8c6edc54 [ 162.499732][ C0] R13: ffff88811ca7f278 R14: ffff88811d42ab98 R15: ffff88811ca7f8a8 [ 162.507809][ C0] ? tcp_stream_alloc_skb+0x54/0x5c0 [ 162.513275][ C0] update_stack_state+0x183/0x1e0 [ 162.518474][ C0] unwind_next_frame+0x11d/0x360 [ 162.523652][ C0] arch_stack_walk+0x1bd/0x290 [ 162.528630][ C0] ? stack_trace_save+0x100/0x100 [ 162.533771][ C0] ? __alloc_skb+0x3a7/0x850 [ 162.538512][ C0] stack_trace_save+0xb6/0x100 [ 162.543555][ C0] kmsan_internal_poison_memory+0x49/0xa0 [ 162.549509][ C0] ? kmsan_internal_poison_memory+0x49/0xa0 [ 162.555600][ C0] ? kmsan_slab_alloc+0xdd/0x150 [ 162.560650][ C0] ? slab_post_alloc_hook+0x12d/0xb60 [ 162.566222][ C0] ? kmem_cache_alloc_node+0x543/0xab0 [ 162.571878][ C0] ? kmalloc_reserve+0x148/0x470 [ 162.577003][ C0] ? __alloc_skb+0x3a7/0x850 [ 162.581791][ C0] ? kmsan_internal_poison_memory+0x82/0xa0 [ 162.587940][ C0] ? kmsan_internal_poison_memory+0x49/0xa0 [ 162.594029][ C0] ? kmsan_slab_alloc+0xdd/0x150 [ 162.599140][ C0] ? slab_post_alloc_hook+0x12d/0xb60 [ 162.604675][ C0] ? kmem_cache_alloc_node+0x543/0xab0 [ 162.610276][ C0] ? __alloc_skb+0x1f2/0x850 [ 162.615038][ C0] ? tcp_stream_alloc_skb+0x54/0x5c0 [ 162.620449][ C0] ? tcp_sendmsg_locked+0x1842/0x6360 [ 162.626005][ C0] ? tcp_sendmsg+0x49/0x80 [ 162.630587][ C0] ? inet_sendmsg+0x105/0x190 [ 162.635413][ C0] ? sock_write_iter+0x4b0/0x660 [ 162.640509][ C0] ? vfs_write+0x834/0x1580 [ 162.645162][ C0] ? ksys_write+0x21f/0x4f0 [ 162.649819][ C0] ? __x64_sys_write+0x93/0xd0 [ 162.654751][ C0] ? do_syscall_64+0x41/0xc0 [ 162.659502][ C0] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 162.665735][ C0] ? _raw_spin_lock_irqsave+0x45/0xd0 [ 162.671255][ C0] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 162.677198][ C0] ? _raw_spin_lock_irqsave+0x45/0xd0 [ 162.682688][ C0] ? kmem_cache_alloc_node+0x94/0xab0 [ 162.688239][ C0] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 162.694279][ C0] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 162.700262][ C0] kmsan_slab_alloc+0xdd/0x150 [ 162.705179][ C0] slab_post_alloc_hook+0x12d/0xb60 [ 162.710570][ C0] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 162.716512][ C0] kmem_cache_alloc_node+0x543/0xab0 [ 162.722004][ C0] ? kmalloc_reserve+0x148/0x470 [ 162.727125][ C0] kmalloc_reserve+0x148/0x470 [ 162.732040][ C0] __alloc_skb+0x3a7/0x850 [ 162.736648][ C0] tcp_stream_alloc_skb+0x54/0x5c0 [ 162.741928][ C0] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 162.747912][ C0] tcp_sendmsg_locked+0x1842/0x6360 [ 162.753280][ C0] ? kmsan_internal_set_shadow_origin+0x66/0xe0 [ 162.759678][ C0] ? preempt_count_sub+0x81/0x280 [ 162.764893][ C0] tcp_sendmsg+0x49/0x80 [ 162.769290][ C0] ? tcp_downgrade_zcopy_pure+0x310/0x310 [ 162.775171][ C0] inet_sendmsg+0x105/0x190 [ 162.779837][ C0] ? inet_send_prepare+0x5c0/0x5c0 [ 162.785155][ C0] sock_write_iter+0x4b0/0x660 [ 162.790128][ C0] ? sock_read_iter+0x5d0/0x5d0 [ 162.795092][ C0] vfs_write+0x834/0x1580 [ 162.799574][ C0] ksys_write+0x21f/0x4f0 [ 162.804063][ C0] __x64_sys_write+0x93/0xd0 [ 162.808753][ C0] do_syscall_64+0x41/0xc0 [ 162.813293][ C0] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 162.819351][ C0] RIP: 0033:0x7f0e33716bf2 [ 162.823901][ C0] Code: 89 c7 48 89 44 24 08 e8 7b 34 fa ff 48 8b 44 24 08 48 83 c4 28 c3 c3 64 8b 04 25 18 00 00 00 85 c0 75 20 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 76 6f 48 8b 15 07 a2 0d 00 f7 d8 64 89 02 48 83 [ 162.843717][ C0] RSP: 002b:00007ffc3cbae748 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 162.852312][ C0] RAX: ffffffffffffffda RBX: 00000000000000bc RCX: 00007f0e33716bf2 [ 162.860413][ C0] RDX: 00000000000000bc RSI: 000055878c0d9840 RDI: 0000000000000004 [ 162.868477][ C0] RBP: 000055878c0cec70 R08: 0000000000000000 R09: 0000000000000000 [ 162.876556][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 000055878bd4faa4 [ 162.884634][ C0] R13: 00000000000000a1 R14: 000055878bd503e8 R15: 00007ffc3cbae7b8 [ 162.892719][ C0] [ 162.896092][ C0] Kernel Offset: disabled [ 162.900487][ C0] Rebooting in 86400 seconds..