===================================================== BUG: KMSAN: uninit-value in decode_session6 net/xfrm/xfrm_policy.c:3477 [inline] BUG: KMSAN: uninit-value in __xfrm_decode_session+0x880/0x2890 net/xfrm/xfrm_policy.c:3566 decode_session6 net/xfrm/xfrm_policy.c:3477 [inline] __xfrm_decode_session+0x880/0x2890 net/xfrm/xfrm_policy.c:3566 xfrm_decode_session_reverse include/net/xfrm.h:1223 [inline] icmpv6_route_lookup+0x68b/0xa70 net/ipv6/icmp.c:388 icmp6_send+0x2164/0x29b0 net/ipv6/icmp.c:595 __icmpv6_send include/linux/icmpv6.h:28 [inline] icmpv6_send include/linux/icmpv6.h:49 [inline] ip6_link_failure+0x40/0x320 net/ipv6/route.c:2785 dst_link_failure include/net/dst.h:437 [inline] ip6_tnl_xmit+0x22dc/0x3760 net/ipv6/ip6_tunnel.c:1268 ipxip6_tnl_xmit net/ipv6/ip6_tunnel.c:1384 [inline] ip6_tnl_start_xmit+0x1851/0x1a70 net/ipv6/ip6_tunnel.c:1432 __netdev_start_xmit include/linux/netdevice.h:4910 [inline] netdev_start_xmit include/linux/netdevice.h:4924 [inline] xmit_one net/core/dev.c:3537 [inline] dev_hard_start_xmit+0x247/0xa10 net/core/dev.c:3553 sch_direct_xmit+0x3c5/0xd40 net/sched/sch_generic.c:342 qdisc_restart net/sched/sch_generic.c:407 [inline] __qdisc_run+0x14ab/0x35a0 net/sched/sch_generic.c:415 __dev_xmit_skb net/core/dev.c:3827 [inline] __dev_queue_xmit+0x1b43/0x50f0 net/core/dev.c:4169 dev_queue_xmit include/linux/netdevice.h:3088 [inline] neigh_connected_output+0x569/0x660 net/core/neighbour.c:1581 neigh_output include/net/neighbour.h:544 [inline] ip6_finish_output2+0x2179/0x28e0 net/ipv6/ip6_output.c:135 __ip6_finish_output net/ipv6/ip6_output.c:196 [inline] ip6_finish_output+0xa10/0x1240 net/ipv6/ip6_output.c:207 NF_HOOK_COND include/linux/netfilter.h:292 [inline] ip6_output+0x323/0x610 net/ipv6/ip6_output.c:228 dst_output include/net/dst.h:458 [inline] ip6_local_out+0xe9/0x140 net/ipv6/output_core.c:155 ip6_send_skb net/ipv6/ip6_output.c:2008 [inline] ip6_push_pending_frames+0x1f9/0x560 net/ipv6/ip6_output.c:2028 rawv6_push_pending_frames+0xbe8/0xdf0 net/ipv6/raw.c:582 rawv6_sendmsg+0x2925/0x2c10 net/ipv6/raw.c:926 inet_sendmsg+0x105/0x190 net/ipv4/af_inet.c:830 sock_sendmsg_nosec net/socket.c:725 [inline] sock_sendmsg net/socket.c:748 [inline] ____sys_sendmsg+0x9c2/0xd60 net/socket.c:2494 ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2548 __sys_sendmsg+0x225/0x3c0 net/socket.c:2577 __compat_sys_sendmsg net/compat.c:346 [inline] __do_compat_sys_sendmsg net/compat.c:353 [inline] __se_compat_sys_sendmsg net/compat.c:350 [inline] __ia32_compat_sys_sendmsg+0x9d/0xe0 net/compat.c:350 do_syscall_32_irqs_on arch/x86/entry/common.c:112 [inline] __do_fast_syscall_32+0xa2/0x100 arch/x86/entry/common.c:178 do_fast_syscall_32+0x37/0x80 arch/x86/entry/common.c:203 do_SYSENTER_32+0x1f/0x30 arch/x86/entry/common.c:246 entry_SYSENTER_compat_after_hwframe+0x70/0x82 Uninit was created at: __alloc_pages+0x9a4/0xe00 mm/page_alloc.c:4500 alloc_pages+0xd01/0x1040 alloc_slab_page mm/slub.c:1862 [inline] allocate_slab mm/slub.c:2009 [inline] new_slab+0x41e/0x1580 mm/slub.c:2062 ___slab_alloc+0x13c3/0x33b0 mm/slub.c:3215 __slab_alloc mm/slub.c:3314 [inline] __slab_alloc_node mm/slub.c:3367 [inline] slab_alloc_node mm/slub.c:3460 [inline] kmem_cache_alloc_node+0x61d/0xa80 mm/slub.c:3515 kmalloc_reserve+0x148/0x470 net/core/skbuff.c:559 __alloc_skb+0x318/0x740 net/core/skbuff.c:644 alloc_skb_fclone include/linux/skbuff.h:1339 [inline] tipc_buf_acquire net/tipc/msg.c:72 [inline] tipc_msg_build+0x155/0x1a20 net/tipc/msg.c:386 __tipc_sendstream+0xdce/0x1f10 net/tipc/socket.c:1620 tipc_sendstream net/tipc/socket.c:1551 [inline] tipc_send_packet+0xab/0x100 net/tipc/socket.c:1657 sock_sendmsg_nosec net/socket.c:725 [inline] sock_sendmsg net/socket.c:748 [inline] kernel_sendmsg+0x140/0x240 net/socket.c:768 tipc_conn_send_to_sock net/tipc/topsrv.c:277 [inline] tipc_conn_send_work+0x330/0xce0 net/tipc/topsrv.c:306 process_one_work+0xbf6/0x17c0 kernel/workqueue.c:2600 worker_thread+0x107e/0x1d60 kernel/workqueue.c:2751 kthread+0x3e8/0x540 kernel/kthread.c:389 ret_from_fork+0x57/0x80 arch/x86/kernel/process.c:145 ret_from_fork_asm+0x11/0x20 arch/x86/entry/entry_64.S:304 CPU: 0 PID: 23350 Comm: syz-executor.0 Not tainted 6.5.0-rc5-syzkaller-00296-gf8de32cc060b #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023 =====================================================