[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 syzkaller login: [ 56.312715] IPVS: ftp: loaded support on port[0] = 21 [ 92.875172] can: request_module (can-proto-0) failed. [ 92.889946] can: request_module (can-proto-0) failed. Warning: Permanently added '10.128.1.14' (ECDSA) to the list of known hosts. 2021/04/01 21:15:42 parsed 1 programs 2021/04/01 21:15:42 executed programs: 0 [ 103.407411] IPVS: ftp: loaded support on port[0] = 21 [ 103.421508] IPVS: ftp: loaded support on port[0] = 21 [ 103.442579] IPVS: ftp: loaded support on port[0] = 21 [ 103.459983] IPVS: ftp: loaded support on port[0] = 21 [ 103.498354] IPVS: ftp: loaded support on port[0] = 21 [ 103.499263] IPVS: ftp: loaded support on port[0] = 21 [ 106.083398] ip (5670) used greatest stack depth: 6232 bytes left [ 106.497107] bridge0: port 1(bridge_slave_0) entered blocking state [ 106.504607] bridge0: port 1(bridge_slave_0) entered disabled state [ 106.513517] device bridge_slave_0 entered promiscuous mode [ 106.517385] ip (5985) used greatest stack depth: 6184 bytes left [ 106.715557] bridge0: port 1(bridge_slave_0) entered blocking state [ 106.722328] bridge0: port 1(bridge_slave_0) entered disabled state [ 106.730907] device bridge_slave_0 entered promiscuous mode [ 106.757948] bridge0: port 2(bridge_slave_1) entered blocking state [ 106.764777] bridge0: port 2(bridge_slave_1) entered disabled state [ 106.773851] device bridge_slave_1 entered promiscuous mode [ 106.901142] bridge0: port 2(bridge_slave_1) entered blocking state [ 106.907948] bridge0: port 2(bridge_slave_1) entered disabled state [ 106.917096] device bridge_slave_1 entered promiscuous mode [ 106.944397] bridge0: port 1(bridge_slave_0) entered blocking state [ 106.951259] bridge0: port 1(bridge_slave_0) entered disabled state [ 106.960169] device bridge_slave_0 entered promiscuous mode [ 106.998164] bridge0: port 1(bridge_slave_0) entered blocking state [ 107.005644] bridge0: port 1(bridge_slave_0) entered disabled state [ 107.011235] ip (6136) used greatest stack depth: 5688 bytes left [ 107.014288] device bridge_slave_0 entered promiscuous mode [ 107.050983] bridge0: port 1(bridge_slave_0) entered blocking state [ 107.058133] bridge0: port 1(bridge_slave_0) entered disabled state [ 107.067214] device bridge_slave_0 entered promiscuous mode [ 107.113478] bridge0: port 1(bridge_slave_0) entered blocking state [ 107.120073] bridge0: port 1(bridge_slave_0) entered disabled state [ 107.129008] device bridge_slave_0 entered promiscuous mode [ 107.143852] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.150466] bridge0: port 2(bridge_slave_1) entered disabled state [ 107.159588] device bridge_slave_1 entered promiscuous mode [ 107.169402] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.176277] bridge0: port 2(bridge_slave_1) entered disabled state [ 107.185143] device bridge_slave_1 entered promiscuous mode [ 107.214275] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.220868] bridge0: port 2(bridge_slave_1) entered disabled state [ 107.229797] device bridge_slave_1 entered promiscuous mode [ 107.314305] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.320914] bridge0: port 2(bridge_slave_1) entered disabled state [ 107.330232] device bridge_slave_1 entered promiscuous mode [ 107.409360] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 107.614403] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 107.647062] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 107.735050] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 107.755034] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 107.772542] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 107.877579] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 107.893803] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 107.908597] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 107.979870] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 108.039979] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 108.053599] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 108.077406] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 108.099291] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 108.124018] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 108.227872] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 108.256207] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 108.270217] team0: Port device team_slave_0 added [ 108.425901] team0: Port device team_slave_1 added [ 108.480124] team0: Port device team_slave_0 added [ 108.553268] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 108.611508] team0: Port device team_slave_1 added [ 108.658470] team0: Port device team_slave_0 added [ 108.664815] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 108.674081] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 108.703130] team0: Port device team_slave_0 added [ 108.791068] team0: Port device team_slave_1 added [ 108.797811] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 108.808028] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 108.817289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 108.826861] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 108.888962] team0: Port device team_slave_0 added [ 108.910282] team0: Port device team_slave_1 added [ 108.948693] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 108.958156] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 108.967038] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 108.977481] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 108.986855] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 108.996280] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 109.046860] team0: Port device team_slave_0 added [ 109.080196] team0: Port device team_slave_1 added [ 109.147802] team0: Port device team_slave_1 added [ 109.165704] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 109.175568] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 109.184315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 109.193695] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 109.202418] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 109.212544] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 109.221893] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 109.231840] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 109.436319] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 109.445168] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 109.454801] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 109.464283] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 109.474234] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 109.483270] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 109.493522] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 109.502796] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 109.513082] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 109.522823] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 109.532222] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 109.550423] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 109.590381] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 109.600488] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 109.692711] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 109.703028] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 109.712138] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 109.722672] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 109.804764] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 109.814688] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 109.873172] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 109.884115] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 110.418446] bridge0: port 2(bridge_slave_1) entered blocking state [ 110.425222] bridge0: port 2(bridge_slave_1) entered forwarding state [ 110.432628] bridge0: port 1(bridge_slave_0) entered blocking state [ 110.439336] bridge0: port 1(bridge_slave_0) entered forwarding state [ 110.547033] bridge0: port 2(bridge_slave_1) entered blocking state [ 110.553837] bridge0: port 2(bridge_slave_1) entered forwarding state [ 110.560992] bridge0: port 1(bridge_slave_0) entered blocking state [ 110.567887] bridge0: port 1(bridge_slave_0) entered forwarding state [ 110.592002] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 110.600369] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 110.706854] bridge0: port 2(bridge_slave_1) entered blocking state [ 110.713722] bridge0: port 2(bridge_slave_1) entered forwarding state [ 110.721135] bridge0: port 1(bridge_slave_0) entered blocking state [ 110.728124] bridge0: port 1(bridge_slave_0) entered forwarding state [ 110.951600] bridge0: port 2(bridge_slave_1) entered blocking state [ 110.958311] bridge0: port 2(bridge_slave_1) entered forwarding state [ 110.965664] bridge0: port 1(bridge_slave_0) entered blocking state [ 110.973248] bridge0: port 1(bridge_slave_0) entered forwarding state [ 111.080204] bridge0: port 2(bridge_slave_1) entered blocking state [ 111.087167] bridge0: port 2(bridge_slave_1) entered forwarding state [ 111.094611] bridge0: port 1(bridge_slave_0) entered blocking state [ 111.101360] bridge0: port 1(bridge_slave_0) entered forwarding state [ 111.236850] bridge0: port 2(bridge_slave_1) entered blocking state [ 111.243708] bridge0: port 2(bridge_slave_1) entered forwarding state [ 111.250908] bridge0: port 1(bridge_slave_0) entered blocking state [ 111.257758] bridge0: port 1(bridge_slave_0) entered forwarding state [ 111.622330] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 111.630895] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 111.639893] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 111.648493] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 115.084846] 8021q: adding VLAN 0 to HW filter on device bond0 [ 115.448641] 8021q: adding VLAN 0 to HW filter on device bond0 [ 115.470400] 8021q: adding VLAN 0 to HW filter on device bond0 [ 115.726641] 8021q: adding VLAN 0 to HW filter on device bond0 [ 115.749552] 8021q: adding VLAN 0 to HW filter on device bond0 [ 115.944588] 8021q: adding VLAN 0 to HW filter on device bond0 [ 115.982029] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 115.990502] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 116.324220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 116.332905] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 116.391589] 8021q: adding VLAN 0 to HW filter on device team0 [ 116.410858] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 116.419742] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 116.628475] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 116.637324] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 116.645932] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 116.654570] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 116.796980] 8021q: adding VLAN 0 to HW filter on device team0 [ 116.848202] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 116.857240] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 116.905075] 8021q: adding VLAN 0 to HW filter on device team0 [ 117.085610] 8021q: adding VLAN 0 to HW filter on device team0 [ 117.159267] 8021q: adding VLAN 0 to HW filter on device team0 [ 117.360825] 8021q: adding VLAN 0 to HW filter on device team0 2021/04/01 21:15:58 executed programs: 6 [ 122.552861] ===================================================== [ 122.559193] BUG: KMSAN: uninit-value in bcmp+0x127/0x180 [ 122.561695] CPU: 0 PID: 7632 Comm: syz-executor1 Not tainted 5.11.0-rc7-syzkaller #0 [ 122.561695] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 122.561695] Call Trace: [ 122.561695] dump_stack+0x1df/0x240 [ 122.561695] kmsan_report+0xfb/0x1e0 [ 122.561695] __msan_warning+0x5f/0xa0 [ 122.561695] bcmp+0x127/0x180 [ 122.561695] __dev_mc_del+0x181/0x700 [ 122.561695] dev_mc_del+0x6d/0x80 [ 122.561695] igmp6_group_dropped+0x2d7/0x1430 [ 122.561695] ? __msan_instrument_asm_store+0x25/0x130 [ 122.561695] __ipv6_dev_mc_dec+0x642/0xb20 [ 122.561695] __ipv6_ifa_notify+0x116d/0x1c00 [ 122.561695] ? __kthread_should_park+0x9c/0x120 [ 122.561695] ? __msan_instrument_asm_store+0x25/0x130 [ 122.561695] ? __local_bh_enable_ip+0x97/0x1d0 [ 122.561695] addrconf_ifdown+0x1813/0x27a0 [ 122.561695] addrconf_notify+0x1d6/0x5b10 [ 122.561695] ? __msan_get_context_state+0x9/0x20 [ 122.561695] ? rcu_all_qs+0x23/0x240 [ 122.561695] ? __local_bh_enable_ip+0x97/0x1d0 [ 122.561695] ? kmsan_get_metadata+0x116/0x180 [ 122.561695] ? kmsan_get_metadata+0x116/0x180 [ 122.561695] ? __msan_instrument_asm_store+0x25/0x130 [ 122.561695] ? kmsan_get_metadata+0x116/0x180 [ 122.561695] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 122.561695] ? kmsan_get_metadata+0x116/0x180 [ 122.561695] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 122.561695] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 122.561695] ? ip6mr_device_event+0x341/0x3b0 [ 122.561695] ? kmsan_get_metadata+0x116/0x180 [ 122.561695] ? dev_forward_change+0xbd0/0xbd0 [ 122.561695] raw_notifier_call_chain+0x130/0x250 [ 122.561695] dev_close_many+0x670/0xb10 [ 122.561695] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 122.561695] rollback_registered_many+0x896/0x2b00 [ 122.561695] ? kmsan_get_metadata+0x116/0x180 [ 122.561695] unregister_netdevice_queue+0x578/0xac0 [ 122.561695] __tun_detach+0x23b2/0x2d50 [ 122.561695] tun_chr_close+0xda/0x1c0 [ 122.561695] ? tun_chr_open+0x700/0x700 [ 122.561695] __fput+0x5c6/0xcd0 [ 122.561695] ____fput+0x37/0x40 [ 122.561695] ? fput_many+0x2a0/0x2a0 [ 122.561695] task_work_run+0x14d/0x260 [ 122.561695] exit_to_user_mode_prepare+0x445/0x4e0 [ 122.561695] syscall_exit_to_user_mode+0x35/0x60 [ 122.561695] do_syscall_64+0xc8/0x120 [ 122.561695] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 122.561695] RIP: 0033:0x411e1b [ 122.561695] Code: 0f 05 48 3d 00 f0 ff ff 77 45 c3 0f 1f 40 00 48 83 ec 18 89 7c 24 0c e8 63 fc ff ff 8b 7c 24 0c 41 89 c0 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 44 89 c7 89 44 24 0c e8 a1 fc ff ff 8b 44 [ 122.561695] RSP: 002b:00007ffe1fb8c8b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 122.561695] RAX: 0000000000000000 RBX: 0000000000000006 RCX: 0000000000411e1b [ 122.561695] RDX: 0000000000000000 RSI: 0000000000520358 RDI: 0000000000000005 [ 122.561695] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 122.561695] R10: 00007ffe1fb8c7d0 R11: 0000000000000293 R12: 0000000000000000 [ 122.561695] R13: 00007ffe1fb8c9f0 R14: 0000000000000001 R15: 0000000000000001 [ 122.561695] [ 122.561695] Local variable ----buf@igmp6_group_dropped created at: [ 122.561695] igmp6_group_dropped+0xa1/0x1430 [ 122.561695] igmp6_group_dropped+0xa1/0x1430 [ 122.561695] ===================================================== [ 122.561695] Disabling lock debugging due to kernel taint [ 122.892075] ===================================================== [ 122.898499] BUG: KMSAN: uninit-value in bcmp+0x127/0x180 [ 122.902032] CPU: 0 PID: 7632 Comm: syz-executor1 Tainted: G B 5.11.0-rc7-syzkaller #0 [ 122.905634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 122.905634] Call Trace: [ 122.905634] dump_stack+0x1df/0x240 [ 122.905634] kmsan_report+0xfb/0x1e0 [ 122.905634] __msan_warning+0x5f/0xa0 [ 122.905634] bcmp+0x127/0x180 [ 122.905634] __dev_mc_del+0x181/0x700 [ 122.905634] dev_mc_del+0x6d/0x80 [ 122.905634] igmp6_group_dropped+0x2d7/0x1430 [ 122.905634] ? __msan_instrument_asm_store+0x25/0x130 [ 122.905634] __ipv6_dev_mc_dec+0x642/0xb20 [ 122.905634] __ipv6_ifa_notify+0x116d/0x1c00 [ 122.905634] ? __kthread_should_park+0x9c/0x120 [ 122.905634] ? __msan_instrument_asm_store+0x25/0x130 [ 122.905634] ? __local_bh_enable_ip+0x97/0x1d0 [ 122.905634] addrconf_ifdown+0x1813/0x27a0 [ 122.905634] addrconf_notify+0x1d6/0x5b10 [ 122.989440] ? __msan_get_context_state+0x9/0x20 [ 122.995250] ? rcu_all_qs+0x23/0x240 [ 122.998853] ? __local_bh_enable_ip+0x97/0x1d0 [ 123.003755] ? kmsan_get_metadata+0x116/0x180 [ 123.008559] ? kmsan_get_metadata+0x116/0x180 [ 123.012164] ? __msan_instrument_asm_store+0x25/0x130 [ 123.018335] ? kmsan_get_metadata+0x116/0x180 [ 123.021964] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 123.027969] ? kmsan_get_metadata+0x116/0x180 [ 123.032764] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 123.037555] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 123.043603] ? ip6mr_device_event+0x341/0x3b0 [ 123.048646] ? kmsan_get_metadata+0x116/0x180 [ 123.053557] ? dev_forward_change+0xbd0/0xbd0 [ 123.058446] raw_notifier_call_chain+0x130/0x250 [ 123.064505] dev_close_many+0x670/0xb10 [ 123.069318] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 123.074206] rollback_registered_many+0x896/0x2b00 [ 123.079001] ? kmsan_get_metadata+0x116/0x180 [ 123.084085] unregister_netdevice_queue+0x578/0xac0 [ 123.090338] __tun_detach+0x23b2/0x2d50 [ 123.093991] tun_chr_close+0xda/0x1c0 [ 123.097620] ? tun_chr_open+0x700/0x700 [ 123.102597] __fput+0x5c6/0xcd0 [ 123.105014] ____fput+0x37/0x40 [ 123.108640] ? fput_many+0x2a0/0x2a0 [ 123.116022] task_work_run+0x14d/0x260 [ 123.120924] exit_to_user_mode_prepare+0x445/0x4e0 [ 123.125738] syscall_exit_to_user_mode+0x35/0x60 [ 123.130538] do_syscall_64+0xc8/0x120 [ 123.134203] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 123.138995] RIP: 0033:0x411e1b [ 123.142594] Code: 0f 05 48 3d 00 f0 ff ff 77 45 c3 0f 1f 40 00 48 83 ec 18 89 7c 24 0c e8 63 fc ff ff 8b 7c 24 0c 41 89 c0 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 44 89 c7 89 44 24 0c e8 a1 fc ff ff 8b 44 [ 123.161803] RSP: 002b:00007ffe1fb8c8b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 123.170246] RAX: 0000000000000000 RBX: 0000000000000006 RCX: 0000000000411e1b [ 123.177433] RDX: 0000000000000000 RSI: 0000000000520358 RDI: 0000000000000005 [ 123.184633] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 123.191850] R10: 00007ffe1fb8c7d0 R11: 0000000000000293 R12: 0000000000000000 [ 123.199045] R13: 00007ffe1fb8c9f0 R14: 0000000000000001 R15: 0000000000000001 [ 123.207442] [ 123.208660] Local variable ----buf@igmp6_group_dropped created at: [ 123.216019] igmp6_group_dropped+0xa1/0x1430 [ 123.220975] igmp6_group_dropped+0xa1/0x1430 [ 123.224640] ===================================================== [ 123.617350] ===================================================== [ 123.621685] BUG: KMSAN: uninit-value in bcmp+0x127/0x180 [ 123.621685] CPU: 1 PID: 7654 Comm: syz-executor3 Tainted: G B 5.11.0-rc7-syzkaller #0 [ 123.621685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 123.621685] Call Trace: [ 123.621685] dump_stack+0x1df/0x240 [ 123.621685] kmsan_report+0xfb/0x1e0 [ 123.621685] __msan_warning+0x5f/0xa0 [ 123.621685] bcmp+0x127/0x180 [ 123.621685] __dev_mc_del+0x181/0x700 [ 123.621685] dev_mc_del+0x6d/0x80 [ 123.621685] igmp6_group_dropped+0x2d7/0x1430 [ 123.621685] ? __msan_instrument_asm_store+0x25/0x130 [ 123.621685] ? __local_bh_enable_ip+0x97/0x1d0 [ 123.621685] __ipv6_dev_mc_dec+0x642/0xb20 [ 123.621685] __ipv6_ifa_notify+0x116d/0x1c00 [ 123.621685] ? kmsan_internal_set_origin+0x85/0xc0 [ 123.621685] ? __msan_instrument_asm_store+0x25/0x130 [ 123.621685] ? __local_bh_enable_ip+0x97/0x1d0 [ 123.621685] addrconf_ifdown+0x1813/0x27a0 [ 123.621685] addrconf_notify+0x1d6/0x5b10 [ 123.621685] ? __msan_get_context_state+0x9/0x20 [ 123.621685] ? rcu_all_qs+0x23/0x240 [ 123.621685] ? __local_bh_enable_ip+0x97/0x1d0 [ 123.621685] ? kmsan_get_metadata+0x116/0x180 [ 123.621685] ? kmsan_get_metadata+0x116/0x180 [ 123.621685] ? __msan_instrument_asm_store+0x25/0x130 [ 123.621685] ? kmsan_get_metadata+0x116/0x180 [ 123.621685] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 123.621685] ? kmsan_get_metadata+0x116/0x180 [ 123.621685] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 123.621685] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 123.621685] ? ip6mr_device_event+0x341/0x3b0 [ 123.621685] ? kmsan_get_metadata+0x116/0x180 [ 123.621685] ? dev_forward_change+0xbd0/0xbd0 [ 123.621685] raw_notifier_call_chain+0x130/0x250 [ 123.621685] dev_close_many+0x670/0xb10 [ 123.621685] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 123.621685] rollback_registered_many+0x896/0x2b00 [ 123.621685] ? kmsan_get_metadata+0x116/0x180 [ 123.621685] unregister_netdevice_queue+0x578/0xac0 [ 123.621685] __tun_detach+0x23b2/0x2d50 [ 123.621685] tun_chr_close+0xda/0x1c0 [ 123.621685] ? tun_chr_open+0x700/0x700 [ 123.621685] __fput+0x5c6/0xcd0 [ 123.621685] ____fput+0x37/0x40 [ 123.621685] ? fput_many+0x2a0/0x2a0 [ 123.621685] task_work_run+0x14d/0x260 [ 123.621685] get_signal+0x2f7a/0x3150 [ 123.621685] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 123.621685] ? netdev_run_todo+0x15ce/0x1620 [ 123.621685] ? kmsan_get_metadata+0x116/0x180 [ 123.621685] ? __tun_chr_ioctl+0x73f/0x78d0 [ 123.621685] ? kmsan_internal_set_origin+0x85/0xc0 [ 123.621685] ? kmsan_internal_set_origin+0x85/0xc0 [ 123.621685] ? __msan_poison_alloca+0xe9/0x110 [ 123.621685] arch_do_signal_or_restart+0xa5/0xe40 [ 123.621685] ? fput+0x22f/0x270 [ 123.621685] ? kmsan_get_metadata+0x116/0x180 [ 123.621685] exit_to_user_mode_prepare+0x2c2/0x4e0 [ 123.621685] syscall_exit_to_user_mode+0x35/0x60 [ 123.621685] do_syscall_64+0xc8/0x120 [ 123.621685] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 123.621685] RIP: 0033:0x45f5a9 [ 123.621685] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 123.621685] RSP: 002b:00007f0e075b41a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 123.621685] RAX: ffffffffffffffef RBX: 000000000051bfa0 RCX: 000000000045f5a9 [ 123.621685] RDX: 0000000020000000 RSI: 00000000400454ca RDI: 0000000000000005 [ 123.621685] RBP: 0000000000000003 R08: 0000000000000000 R09: 0000000000000000 [ 123.621685] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 123.621685] R13: 00000000004ebc10 R14: 00000000004ade1d R15: 00007f0e075b46bc [ 123.621685] [ 123.621685] Local variable ----buf@igmp6_group_dropped created at: [ 123.621685] igmp6_group_dropped+0xa1/0x1430 [ 123.621685] igmp6_group_dropped+0xa1/0x1430 [ 123.621685] ===================================================== [ 124.003483] ===================================================== [ 124.009729] BUG: KMSAN: uninit-value in bcmp+0x127/0x180 [ 124.013370] CPU: 1 PID: 7654 Comm: syz-executor3 Tainted: G B 5.11.0-rc7-syzkaller #0 [ 124.013370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 124.013370] Call Trace: [ 124.013370] dump_stack+0x1df/0x240 [ 124.013370] kmsan_report+0xfb/0x1e0 [ 124.013370] __msan_warning+0x5f/0xa0 [ 124.013370] bcmp+0x127/0x180 [ 124.013370] __dev_mc_del+0x181/0x700 [ 124.013370] dev_mc_del+0x6d/0x80 [ 124.013370] igmp6_group_dropped+0x2d7/0x1430 [ 124.013370] ? __msan_instrument_asm_store+0x25/0x130 [ 124.013370] ? __local_bh_enable_ip+0x97/0x1d0 [ 124.013370] __ipv6_dev_mc_dec+0x642/0xb20 [ 124.013370] __ipv6_ifa_notify+0x116d/0x1c00 [ 124.013370] ? kmsan_internal_set_origin+0x85/0xc0 [ 124.013370] ? __msan_instrument_asm_store+0x25/0x130 [ 124.013370] ? __local_bh_enable_ip+0x97/0x1d0 [ 124.013370] addrconf_ifdown+0x1813/0x27a0 [ 124.013370] addrconf_notify+0x1d6/0x5b10 [ 124.013370] ? __msan_get_context_state+0x9/0x20 [ 124.013370] ? rcu_all_qs+0x23/0x240 [ 124.013370] ? __local_bh_enable_ip+0x97/0x1d0 [ 124.013370] ? kmsan_get_metadata+0x116/0x180 [ 124.013370] ? kmsan_get_metadata+0x116/0x180 [ 124.013370] ? __msan_instrument_asm_store+0x25/0x130 [ 124.013370] ? kmsan_get_metadata+0x116/0x180 [ 124.013370] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 124.013370] ? kmsan_get_metadata+0x116/0x180 [ 124.013370] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 124.013370] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 124.013370] ? ip6mr_device_event+0x341/0x3b0 [ 124.013370] ? kmsan_get_metadata+0x116/0x180 [ 124.013370] ? dev_forward_change+0xbd0/0xbd0 [ 124.013370] raw_notifier_call_chain+0x130/0x250 [ 124.013370] dev_close_many+0x670/0xb10 [ 124.013370] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 124.013370] rollback_registered_many+0x896/0x2b00 [ 124.191779] ? kmsan_get_metadata+0x116/0x180 [ 124.191779] unregister_netdevice_queue+0x578/0xac0 [ 124.191779] __tun_detach+0x23b2/0x2d50 [ 124.191779] tun_chr_close+0xda/0x1c0 [ 124.191779] ? tun_chr_open+0x700/0x700 [ 124.191779] __fput+0x5c6/0xcd0 [ 124.191779] ____fput+0x37/0x40 [ 124.191779] ? fput_many+0x2a0/0x2a0 [ 124.191779] task_work_run+0x14d/0x260 [ 124.191779] get_signal+0x2f7a/0x3150 [ 124.191779] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 124.191779] ? netdev_run_todo+0x15ce/0x1620 [ 124.191779] ? kmsan_get_metadata+0x116/0x180 [ 124.191779] ? __tun_chr_ioctl+0x73f/0x78d0 [ 124.191779] ? kmsan_internal_set_origin+0x85/0xc0 [ 124.191779] ? kmsan_internal_set_origin+0x85/0xc0 [ 124.191779] ? __msan_poison_alloca+0xe9/0x110 [ 124.191779] arch_do_signal_or_restart+0xa5/0xe40 [ 124.191779] ? fput+0x22f/0x270 [ 124.191779] ? kmsan_get_metadata+0x116/0x180 [ 124.191779] exit_to_user_mode_prepare+0x2c2/0x4e0 [ 124.191779] syscall_exit_to_user_mode+0x35/0x60 [ 124.191779] do_syscall_64+0xc8/0x120 [ 124.191779] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 124.191779] RIP: 0033:0x45f5a9 [ 124.191779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 124.191779] RSP: 002b:00007f0e075b41a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 124.191779] RAX: ffffffffffffffef RBX: 000000000051bfa0 RCX: 000000000045f5a9 [ 124.191779] RDX: 0000000020000000 RSI: 00000000400454ca RDI: 0000000000000005 [ 124.191779] RBP: 0000000000000003 R08: 0000000000000000 R09: 0000000000000000 [ 124.191779] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 124.191779] R13: 00000000004ebc10 R14: 00000000004ade1d R15: 00007f0e075b46bc [ 124.191779] [ 124.191779] Local variable ----buf@igmp6_group_dropped created at: [ 124.191779] igmp6_group_dropped+0xa1/0x1430 [ 124.191779] igmp6_group_dropped+0xa1/0x1430 [ 124.191779] ===================================================== 2021/04/01 21:16:03 executed programs: 18 [ 128.692297] ===================================================== [ 128.698716] BUG: KMSAN: uninit-value in bcmp+0x127/0x180 [ 128.701669] CPU: 0 PID: 7889 Comm: syz-executor5 Tainted: G B 5.11.0-rc7-syzkaller #0 [ 128.701669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 128.701669] Call Trace: [ 128.701669] dump_stack+0x1df/0x240 [ 128.701669] kmsan_report+0xfb/0x1e0 [ 128.701669] __msan_warning+0x5f/0xa0 [ 128.701669] bcmp+0x127/0x180 [ 128.701669] __dev_mc_del+0x181/0x700 [ 128.701669] dev_mc_del+0x6d/0x80 [ 128.701669] igmp6_group_dropped+0x2d7/0x1430 [ 128.701669] ? __msan_instrument_asm_store+0x25/0x130 [ 128.701669] __ipv6_dev_mc_dec+0x642/0xb20 [ 128.701669] __ipv6_ifa_notify+0x116d/0x1c00 [ 128.701669] ? __kthread_should_park+0x9c/0x120 [ 128.701669] ? __msan_instrument_asm_store+0x25/0x130 [ 128.701669] ? __local_bh_enable_ip+0x97/0x1d0 [ 128.701669] addrconf_ifdown+0x1813/0x27a0 [ 128.701669] addrconf_notify+0x1d6/0x5b10 [ 128.701669] ? __msan_get_context_state+0x9/0x20 [ 128.701669] ? rcu_all_qs+0x23/0x240 [ 128.701669] ? __local_bh_enable_ip+0x97/0x1d0 [ 128.701669] ? kmsan_get_metadata+0x116/0x180 [ 128.701669] ? kmsan_get_metadata+0x116/0x180 [ 128.701669] ? __msan_instrument_asm_store+0x25/0x130 [ 128.701669] ? kmsan_get_metadata+0x116/0x180 [ 128.701669] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 128.701669] ? kmsan_get_metadata+0x116/0x180 [ 128.701669] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 128.701669] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 128.701669] ? ip6mr_device_event+0x341/0x3b0 [ 128.701669] ? kmsan_get_metadata+0x116/0x180 [ 128.701669] ? dev_forward_change+0xbd0/0xbd0 [ 128.701669] raw_notifier_call_chain+0x130/0x250 [ 128.701669] dev_close_many+0x670/0xb10 [ 128.701669] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 128.701669] rollback_registered_many+0x896/0x2b00 [ 128.701669] ? kmsan_get_metadata+0x116/0x180 [ 128.701669] unregister_netdevice_queue+0x578/0xac0 [ 128.701669] __tun_detach+0x23b2/0x2d50 [ 128.701669] tun_chr_close+0xda/0x1c0 [ 128.701669] ? tun_chr_open+0x700/0x700 [ 128.701669] __fput+0x5c6/0xcd0 [ 128.701669] ____fput+0x37/0x40 [ 128.701669] ? fput_many+0x2a0/0x2a0 [ 128.701669] task_work_run+0x14d/0x260 [ 128.701669] exit_to_user_mode_prepare+0x445/0x4e0 [ 128.701669] syscall_exit_to_user_mode+0x35/0x60 [ 128.701669] do_syscall_64+0xc8/0x120 [ 128.701669] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 128.701669] RIP: 0033:0x411e1b [ 128.701669] Code: 0f 05 48 3d 00 f0 ff ff 77 45 c3 0f 1f 40 00 48 83 ec 18 89 7c 24 0c e8 63 fc ff ff 8b 7c 24 0c 41 89 c0 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 44 89 c7 89 44 24 0c e8 a1 fc ff ff 8b 44 [ 128.701669] RSP: 002b:00007ffe4d3041e0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 128.701669] RAX: 0000000000000000 RBX: 0000000000000006 RCX: 0000000000411e1b [ 128.701669] RDX: 0000000000518060 RSI: 0000000000520358 RDI: 0000000000000005 [ 128.701669] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 128.701669] R10: 00007ffe4d304100 R11: 0000000000000293 R12: 0000000000000000 [ 128.701669] R13: 00007ffe4d304320 R14: 0000000000000001 R15: 0000000000000001 [ 128.701669] [ 128.701669] Local variable ----buf@igmp6_group_dropped created at: [ 128.701669] igmp6_group_dropped+0xa1/0x1430 [ 128.701669] igmp6_group_dropped+0xa1/0x1430 [ 128.701669] ===================================================== [ 129.019252] ===================================================== [ 129.025485] BUG: KMSAN: uninit-value in bcmp+0x127/0x180 [ 129.029209] CPU: 0 PID: 7889 Comm: syz-executor5 Tainted: G B 5.11.0-rc7-syzkaller #0 [ 129.029209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 129.029209] Call Trace: [ 129.029209] dump_stack+0x1df/0x240 [ 129.029209] kmsan_report+0xfb/0x1e0 [ 129.029209] __msan_warning+0x5f/0xa0 [ 129.029209] bcmp+0x127/0x180 [ 129.029209] __dev_mc_del+0x181/0x700 [ 129.029209] dev_mc_del+0x6d/0x80 [ 129.029209] igmp6_group_dropped+0x2d7/0x1430 [ 129.029209] ? __msan_instrument_asm_store+0x25/0x130 [ 129.029209] __ipv6_dev_mc_dec+0x642/0xb20 [ 129.029209] __ipv6_ifa_notify+0x116d/0x1c00 [ 129.029209] ? __kthread_should_park+0x9c/0x120 [ 129.029209] ? __msan_instrument_asm_store+0x25/0x130 [ 129.029209] ? __local_bh_enable_ip+0x97/0x1d0 [ 129.029209] addrconf_ifdown+0x1813/0x27a0 [ 129.029209] addrconf_notify+0x1d6/0x5b10 [ 129.029209] ? __msan_get_context_state+0x9/0x20 [ 129.029209] ? rcu_all_qs+0x23/0x240 [ 129.029209] ? __local_bh_enable_ip+0x97/0x1d0 [ 129.029209] ? kmsan_get_metadata+0x116/0x180 [ 129.029209] ? kmsan_get_metadata+0x116/0x180 [ 129.029209] ? __msan_instrument_asm_store+0x25/0x130 [ 129.029209] ? kmsan_get_metadata+0x116/0x180 [ 129.029209] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 129.029209] ? kmsan_get_metadata+0x116/0x180 [ 129.029209] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 129.029209] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 129.029209] ? ip6mr_device_event+0x341/0x3b0 [ 129.029209] ? kmsan_get_metadata+0x116/0x180 [ 129.029209] ? dev_forward_change+0xbd0/0xbd0 [ 129.029209] raw_notifier_call_chain+0x130/0x250 [ 129.029209] dev_close_many+0x670/0xb10 [ 129.029209] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 129.029209] rollback_registered_many+0x896/0x2b00 [ 129.029209] ? kmsan_get_metadata+0x116/0x180 [ 129.029209] unregister_netdevice_queue+0x578/0xac0 [ 129.029209] __tun_detach+0x23b2/0x2d50 [ 129.029209] tun_chr_close+0xda/0x1c0 [ 129.029209] ? tun_chr_open+0x700/0x700 [ 129.029209] __fput+0x5c6/0xcd0 [ 129.029209] ____fput+0x37/0x40 [ 129.029209] ? fput_many+0x2a0/0x2a0 [ 129.029209] task_work_run+0x14d/0x260 [ 129.029209] exit_to_user_mode_prepare+0x445/0x4e0 [ 129.029209] syscall_exit_to_user_mode+0x35/0x60 [ 129.029209] do_syscall_64+0xc8/0x120 [ 129.029209] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 129.029209] RIP: 0033:0x411e1b [ 129.029209] Code: 0f 05 48 3d 00 f0 ff ff 77 45 c3 0f 1f 40 00 48 83 ec 18 89 7c 24 0c e8 63 fc ff ff 8b 7c 24 0c 41 89 c0 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 44 89 c7 89 44 24 0c e8 a1 fc ff ff 8b 44 [ 129.029209] RSP: 002b:00007ffe4d3041e0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 129.029209] RAX: 0000000000000000 RBX: 0000000000000006 RCX: 0000000000411e1b [ 129.029209] RDX: 0000000000518060 RSI: 0000000000520358 RDI: 0000000000000005 [ 129.029209] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 129.029209] R10: 00007ffe4d304100 R11: 0000000000000293 R12: 0000000000000000 [ 129.029209] R13: 00007ffe4d304320 R14: 0000000000000001 R15: 0000000000000001 [ 129.029209] [ 129.029209] Local variable ----buf@igmp6_group_dropped created at: [ 129.029209] igmp6_group_dropped+0xa1/0x1430 [ 129.029209] igmp6_group_dropped+0xa1/0x1430 [ 129.029209] ===================================================== 2021/04/01 21:16:08 executed programs: 43