__do_sys_ppoll fs/select.c:1121 [inline] __se_sys_ppoll+0x5c4/0x6b0 fs/select.c:1101 CPU: 0 PID: 3047 Comm: dhcpcd Not tainted 5.18.0-rc4-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 ===================================================== Disabling lock debugging due to kernel taint Kernel panic - not syncing: kmsan.panic set ... CPU: 0 PID: 3047 Comm: dhcpcd Tainted: G B 5.18.0-rc4-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0x1ff/0x28e lib/dump_stack.c:106 dump_stack+0x25/0x28 lib/dump_stack.c:113 panic+0x4fe/0xc73 kernel/panic.c:250 kmsan_report+0x2e6/0x2f0 mm/kmsan/report.c:208 __msan_warning+0x94/0x110 mm/kmsan/instrumentation.c:252 __preempt_count_add arch/x86/include/asm/preempt.h:80 [inline] preempt_count_add+0x1b5/0x320 kernel/sched/core.c:5532 sysvec_reschedule_ipi+0x1c/0x110 arch/x86/kernel/smp.c:225 asm_sysvec_reschedule_ipi+0x12/0x20 RIP: 0010:__msan_metadata_ptr_for_store_8+0x30/0x40 mm/kmsan/instrumentation.c:77 Code: 83 ec 10 9c 8f 45 e8 0f 01 ca 48 8b 5d e8 be 08 00 00 00 ba 01 00 00 00 e8 9d 1f 00 00 48 89 5d f0 ff 75 f0 9d 48 83 c4 10 5b <5d> c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 55 48 89 e5 41 57 RSP: 0018:ffff88811cb6b3c0 EFLAGS: 00000286 RAX: ffff88811c36b660 RBX: 0000000005d10000 RCX: 000000000058e517 RDX: ffff88811c76b660 RSI: 00000000058f9170 RDI: ffffea000000000f RBP: ffff88811cb6b3c0 R08: 0000000000000000 R09: ffff88811cb6c001 R10: ffff88811cb6bd00 R11: 0000000000000000 R12: 0000000000000000 R13: 0000000000000000 R14: ffffffff8275d3a5 R15: ffff88811cb6b660 update_stack_state+0x859/0xa60 arch/x86/kernel/unwind_frame.c:243 unwind_next_frame+0x6d0/0xe50 arch/x86/kernel/unwind_frame.c:304 arch_stack_walk+0x320/0x3c0 arch/x86/kernel/stacktrace.c:25 stack_trace_save+0x117/0x1a0 kernel/stacktrace.c:122 kmsan_save_stack_with_flags mm/kmsan/core.c:80 [inline] kmsan_internal_chain_origin+0xac/0x120 mm/kmsan/core.c:252 kmsan_internal_memmove_metadata+0x201/0x350 mm/kmsan/core.c:163 __msan_memcpy+0x65/0x90 mm/kmsan/instrumentation.c:145 sock_write_iter+0x109/0x690 net/socket.c:1048 do_iter_readv_writev+0x90c/0xb00 do_iter_write+0x52c/0x1500 fs/read_write.c:852 vfs_writev fs/read_write.c:925 [inline] do_writev+0x645/0xe00 fs/read_write.c:968 __do_sys_writev fs/read_write.c:1041 [inline] __se_sys_writev fs/read_write.c:1038 [inline] __x64_sys_writev+0xe5/0x120 fs/read_write.c:1038 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x3d/0x90 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x7f592fef81c3 Code: 8b 15 b9 9c 0c 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b8 0f 1f 00 64 8b 04 25 18 00 00 00 85 c0 75 14 b8 14 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 55 c3 0f 1f 40 00 48 83 ec 28 89 54 24 1c 48 RSP: 002b:00007fff86140a08 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 RAX: ffffffffffffffda RBX: 00007fff86140c98 RCX: 00007f592fef81c3 RDX: 0000000000000004 RSI: 00007fff86140a10 RDI: 000000000000000a RBP: 000056310cdf5120 R08: 000000000000000a R09: 00007fff86140a40 R10: 00007fff86140a48 R11: 0000000000000246 R12: 000056310b0ce5ae R13: 00000000000001cc R14: 0000000000000000 R15: 0000000000000000 Kernel Offset: disabled Rebooting in 86400 seconds.. ---------------- Code disassembly (best guess): 0: 83 ec 10 sub $0x10,%esp 3: 9c pushfq 4: 8f 45 e8 popq -0x18(%rbp) 7: 0f 01 ca clac a: 48 8b 5d e8 mov -0x18(%rbp),%rbx e: be 08 00 00 00 mov $0x8,%esi 13: ba 01 00 00 00 mov $0x1,%edx 18: e8 9d 1f 00 00 callq 0x1fba 1d: 48 89 5d f0 mov %rbx,-0x10(%rbp) 21: ff 75 f0 pushq -0x10(%rbp) 24: 9d popfq 25: 48 83 c4 10 add $0x10,%rsp 29: 5b pop %rbx * 2a: 5d pop %rbp <-- trapping instruction 2b: c3 retq 2c: 66 2e 0f 1f 84 00 00 nopw %cs:0x0(%rax,%rax,1) 33: 00 00 00 36: 0f 1f 40 00 nopl 0x0(%rax) 3a: 55 push %rbp 3b: 48 89 e5 mov %rsp,%rbp 3e: 41 57 push %r15