===================================================== BUG: KMSAN: uninit-value in profile_hit include/linux/profile.h:53 [inline] BUG: KMSAN: uninit-value in profile_tick+0x1ae/0x1b0 kernel/profile.c:339 profile_hit include/linux/profile.h:53 [inline] profile_tick+0x1ae/0x1b0 kernel/profile.c:339 tick_sched_handle kernel/time/tick-sched.c:277 [inline] tick_nohz_handler+0x588/0x690 kernel/time/tick-sched.c:297 __run_hrtimer kernel/time/hrtimer.c:1687 [inline] __hrtimer_run_queues+0x56f/0xe40 kernel/time/hrtimer.c:1751 hrtimer_interrupt+0x3ab/0x1490 kernel/time/hrtimer.c:1813 local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1032 [inline] __sysvec_apic_timer_interrupt+0xa6/0x3a0 arch/x86/kernel/apic/apic.c:1049 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1043 [inline] sysvec_apic_timer_interrupt+0x40/0x90 arch/x86/kernel/apic/apic.c:1043 asm_sysvec_apic_timer_interrupt+0x1f/0x30 arch/x86/include/asm/idtentry.h:702 __preempt_count_dec_and_test arch/x86/include/asm/preempt.h:94 [inline] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:152 [inline] _raw_spin_unlock_irqrestore+0x33/0x60 kernel/locking/spinlock.c:194 spin_unlock_irqrestore include/linux/spinlock.h:406 [inline] __wake_up_common_lock kernel/sched/wait.c:108 [inline] __wake_up_sync_key+0x26f/0x2a0 kernel/sched/wait.c:173 sock_def_readable+0xde/0x370 net/core/sock.c:3354 tcp_data_ready+0x3b3/0x5b0 net/ipv4/tcp_input.c:5143 tcp_data_queue+0x3467/0x7f40 net/ipv4/tcp_input.c:5223 tcp_rcv_established+0x113b/0x2610 net/ipv4/tcp_input.c:6170 tcp_v4_do_rcv+0x7f3/0x10b0 net/ipv4/tcp_ipv4.c:1912 tcp_v4_rcv+0x4f64/0x5420 net/ipv4/tcp_ipv4.c:2338 ip_protocol_deliver_rcu+0x2a3/0x13d0 net/ipv4/ip_input.c:205 ip_local_deliver_finish+0x332/0x500 net/ipv4/ip_input.c:233 NF_HOOK include/linux/netfilter.h:314 [inline] ip_local_deliver+0x21f/0x490 net/ipv4/ip_input.c:254 dst_input include/net/dst.h:460 [inline] ip_sublist_rcv_finish net/ipv4/ip_input.c:580 [inline] ip_list_rcv_finish net/ipv4/ip_input.c:631 [inline] ip_sublist_rcv+0x15f3/0x17f0 net/ipv4/ip_input.c:639 ip_list_rcv+0x9ef/0xa40 net/ipv4/ip_input.c:674 __netif_receive_skb_list_ptype net/core/dev.c:5587 [inline] __netif_receive_skb_list_core+0x15c5/0x1670 net/core/dev.c:5635 __netif_receive_skb_list net/core/dev.c:5687 [inline] netif_receive_skb_list_internal+0x1085/0x1700 net/core/dev.c:5779 gro_normal_list include/net/gro.h:447 [inline] napi_complete_done+0x425/0x880 net/core/dev.c:6119 virtqueue_napi_complete drivers/net/virtio_net.c:515 [inline] virtnet_poll+0x164e/0x23e0 drivers/net/virtio_net.c:2227 __napi_poll+0xe7/0x980 net/core/dev.c:6638 napi_poll net/core/dev.c:6707 [inline] net_rx_action+0x89d/0x1820 net/core/dev.c:6822 handle_softirqs+0x1d8/0x810 kernel/softirq.c:554 __do_softirq kernel/softirq.c:588 [inline] invoke_softirq kernel/softirq.c:428 [inline] __irq_exit_rcu+0x68/0x120 kernel/softirq.c:637 irq_exit_rcu+0x12/0x20 kernel/softirq.c:649 common_interrupt+0x94/0xa0 arch/x86/kernel/irq.c:278 asm_common_interrupt+0x2b/0x40 arch/x86/include/asm/idtentry.h:693 smap_restore arch/x86/include/asm/smap.h:56 [inline] get_shadow_origin_ptr mm/kmsan/instrumentation.c:37 [inline] __msan_metadata_ptr_for_load_8+0x2c/0x40 mm/kmsan/instrumentation.c:92 batadv_nc_purge_paths+0xb3/0x770 net/batman-adv/network-coding.c:438 batadv_nc_worker+0x366/0x19f0 net/batman-adv/network-coding.c:722 process_one_work kernel/workqueue.c:3267 [inline] process_scheduled_works+0xa81/0x1bd0 kernel/workqueue.c:3348 worker_thread+0xea5/0x1560 kernel/workqueue.c:3429 kthread+0x3e2/0x540 kernel/kthread.c:389 ret_from_fork+0x6d/0x90 arch/x86/kernel/process.c:147 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244 Local variable sock_ops.i created at: bpf_skops_write_hdr_opt net/ipv4/tcp_output.c:549 [inline] __tcp_transmit_skb+0x2921/0x4890 net/ipv4/tcp_output.c:1429 __tcp_send_ack+0x60a/0x860 net/ipv4/tcp_output.c:4234 CPU: 1 PID: 13977 Comm: kworker/u8:40 Tainted: G W 6.9.0-syzkaller-02707-g614da38e2f7a #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 Workqueue: bat_events batadv_nc_worker =====================================================