./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1609968576 <...> Warning: Permanently added '10.128.0.127' (ED25519) to the list of known hosts. execve("./syz-executor1609968576", ["./syz-executor1609968576"], 0x7ffc21166d40 /* 10 vars */) = 0 brk(NULL) = 0x555556bd8000 brk(0x555556bd8d00) = 0x555556bd8d00 arch_prctl(ARCH_SET_FS, 0x555556bd8380) = 0 set_tid_address(0x555556bd8650) = 5008 set_robust_list(0x555556bd8660, 24) = 0 rseq(0x555556bd8ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1609968576", 4096) = 28 getrandom("\xf3\x51\x49\x0d\x41\xd6\xb0\xa1", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555556bd8d00 brk(0x555556bf9d00) = 0x555556bf9d00 brk(0x555556bfa000) = 0x555556bfa000 mprotect(0x7fdc74ed0000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5009 attached , child_tidptr=0x555556bd8650) = 5009 [pid 5009] set_robust_list(0x555556bd8660, 24) = 0 [pid 5009] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5009] setpgid(0, 0) = 0 [pid 5009] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5009] write(3, "1000", 4) = 4 [pid 5009] close(3) = 0 [pid 5009] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3 [pid 5009] ioctl(3, VHOST_VSOCK_SET_GUEST_CID, 0x20000040) = 0 [pid 5009] socket(AF_VSOCK, SOCK_SEQPACKET, 0) = 4 [ 151.703595][ T5009] ===================================================== [ 151.710981][ T5009] BUG: KMSAN: uninit-value in vsock_assign_transport+0xb03/0xb70 [ 151.719127][ T5009] vsock_assign_transport+0xb03/0xb70 [ 151.724687][ T5009] vsock_connect+0x53f/0x1540 [ 151.729621][ T5009] __sys_connect+0x5f9/0x680 [ 151.734394][ T5009] __x64_sys_connect+0x91/0xe0 [ 151.739355][ T5009] do_syscall_64+0x44/0x110 [ 151.744002][ T5009] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 151.750162][ T5009] [ 151.752571][ T5009] Uninit was created at: [ 151.757125][ T5009] __kmalloc_large_node+0x231/0x370 [ 151.762478][ T5009] __kmalloc_node+0x1d6/0x3c0 [ 151.767413][ T5009] kvmalloc_node+0xc0/0x2d0 [ 151.772070][ T5009] vhost_vsock_dev_open+0x44/0x510 [ 151.777503][ T5009] misc_open+0x668/0x750 [ 151.781918][ T5009] chrdev_open+0x965/0xa90 [ 151.786674][ T5009] do_dentry_open+0x11e6/0x2110 [ 151.791744][ T5009] vfs_open+0x7e/0xa0 [ 151.796032][ T5009] path_openat+0x4ae2/0x5c70 [ 151.800809][ T5009] do_filp_open+0x20d/0x590 [ 151.805442][ T5009] do_sys_openat2+0x1bf/0x2f0 [ 151.810355][ T5009] __x64_sys_openat+0x2a1/0x310 [ 151.815425][ T5009] do_syscall_64+0x44/0x110 [ 151.820237][ T5009] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 151.826393][ T5009] [ 151.828811][ T5009] CPU: 1 PID: 5009 Comm: syz-executor160 Not tainted 6.7.0-rc1-syzkaller-00139-g6bc40e44f1dd #0 [ 151.839514][ T5009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023 [ 151.849731][ T5009] ===================================================== [ 151.856826][ T5009] Disabling lock debugging due to kernel taint [ 151.863073][ T5009] Kernel panic - not syncing: kmsan.panic set ... [ 151.869595][ T5009] CPU: 1 PID: 5009 Comm: syz-executor160 Tainted: G B 6.7.0-rc1-syzkaller-00139-g6bc40e44f1dd #0 [ 151.881691][ T5009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023 [ 151.891828][ T5009] Call Trace: [ 151.895185][ T5009] [ 151.898208][ T5009] dump_stack_lvl+0x1bf/0x240 [ 151.903002][ T5009] dump_stack+0x1e/0x20 [ 151.907245][ T5009] panic+0x4de/0xc90 [ 151.911292][ T5009] ? add_taint+0x108/0x1a0 [ 151.915864][ T5009] kmsan_report+0x2d0/0x2d0 [ 151.920492][ T5009] ? psi_group_change+0x1084/0x1670 [ 151.925896][ T5009] ? __msan_warning+0x96/0x110 [ 151.930854][ T5009] ? vsock_assign_transport+0xb03/0xb70 [ 151.936596][ T5009] ? vsock_connect+0x53f/0x1540 [ 151.941576][ T5009] ? __sys_connect+0x5f9/0x680 [ 151.946518][ T5009] ? __x64_sys_connect+0x91/0xe0 [ 151.951638][ T5009] ? do_syscall_64+0x44/0x110 [ 151.956464][ T5009] ? entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 151.962719][ T5009] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 151.968742][ T5009] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 151.974763][ T5009] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 151.980709][ T5009] ? __rcu_read_unlock+0x7a/0xd0 [ 151.985856][ T5009] ? vhost_transport_seqpacket_allow+0x30d/0x3e0 [ 151.992404][ T5009] ? vhost_transport_cancel_pkt+0x620/0x620 [ 151.998525][ T5009] __msan_warning+0x96/0x110 [ 152.003321][ T5009] vsock_assign_transport+0xb03/0xb70 [ 152.008910][ T5009] vsock_connect+0x53f/0x1540 [ 152.013707][ T5009] ? wake_bit_function+0x370/0x370 [ 152.018990][ T5009] __sys_connect+0x5f9/0x680 [ 152.023774][ T5009] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 152.029823][ T5009] ? _raw_spin_unlock_irq+0x31/0x50 [ 152.035183][ T5009] ? vsock_auto_bind+0xd0/0xd0 [ 152.040156][ T5009] __x64_sys_connect+0x91/0xe0 [ 152.045138][ T5009] do_syscall_64+0x44/0x110 [ 152.049844][ T5009] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 152.055933][ T5009] RIP: 0033:0x7fdc74e5da79 [ 152.060493][ T5009] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 152.080308][ T5009] RSP: 002b:00007ffd5c26d928 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 152.088891][ T5009] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fdc74e5da79 [ 152.097005][ T5009] RDX: 0000000000000010 RSI: 0000000020000200 RDI: 0000000000000004 [ 152.105080][ T5009] RBP: 00007fdc74ed05f0 R08: 0000000000000006 R09: 0000000000000006 [ 152.113169][ T5009] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001 [ 152.121244][ T5009] R13: 431bde82d7b634db R14: 0000000000000001 R15: 0000000000000001 [ 152.129387][ T5009] [ 152.132893][ T5009] Kernel Offset: disabled [ 152.137291][ T5009] Rebooting in 86400 seconds..