KMSAN: uninit-value in selinux_inet_conn_request CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B 6.0.0-rc2-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 ===================================================== ===================================================== BUG: KMSAN: uninit-value in selinux_inet_conn_request+0x31c/0x4c0 selinux_inet_conn_request+0x31c/0x4c0 security_inet_conn_request+0xaa/0x160 tcp_v4_route_req+0x3b8/0x4a0 tcp_conn_request+0x1254/0x33e0 tcp_v4_conn_request+0x143/0x1a0 tcp_rcv_state_process+0x1e2/0x3d60 tcp_v4_do_rcv+0x854/0xcc0 tcp_v4_rcv+0x3548/0x3be0 ip_protocol_deliver_rcu+0x201/0x9b0 ip_local_deliver_finish+0x22f/0x320 ip_local_deliver+0x1fb/0x430 ip_sublist_rcv+0x1017/0x1280 ip_list_rcv+0x909/0x960 __netif_receive_skb_list_core+0x13e6/0x1490 __netif_receive_skb_list+0x5bd/0x6b0 netif_receive_skb_list_internal+0x741/0xc40 napi_complete_done+0x2fa/0x810 virtnet_poll+0x1318/0x1cf0 __napi_poll+0xaf/0x770 net_rx_action+0x9cc/0x1990 __do_softirq+0x1dd/0x7f6 invoke_softirq+0x8f/0x100 irq_exit_rcu+0x50/0x100 common_interrupt+0xaf/0xd0 asm_common_interrupt+0x27/0x40 acpi_idle_enter+0x4f7/0x5c0 cpuidle_enter_state+0x682/0x1520 cpuidle_enter+0x7b/0xf0 do_idle+0x5ee/0x7f0 cpu_startup_entry+0x1d/0x20 start_secondary+0x103/0x130 secondary_startup_64_no_verify+0xcf/0xdb Local variable nlbl_type.i created at: selinux_inet_conn_request+0xe1/0x4c0 security_inet_conn_request+0xaa/0x160 CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B 6.0.0-rc2-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 ===================================================== ===================================================== BUG: KMSAN: uninit-value in selinux_inet_conn_established+0x2a7/0x2c0 selinux_inet_conn_established+0x2a7/0x2c0 security_inet_conn_established+0x7b/0x100 tcp_finish_connect+0xb5/0x4b0 tcp_rcv_state_process+0x27cb/0x3d60 tcp_v4_do_rcv+0x854/0xcc0 tcp_v4_rcv+0x37f9/0x3be0 ip_protocol_deliver_rcu+0x201/0x9b0 ip_local_deliver_finish+0x22f/0x320 ip_local_deliver+0x1fb/0x430 ip_sublist_rcv+0x1017/0x1280 ip_list_rcv+0x909/0x960 __netif_receive_skb_list_core+0x13e6/0x1490 __netif_receive_skb_list+0x5bd/0x6b0 netif_receive_skb_list_internal+0x741/0xc40 napi_complete_done+0x2fa/0x810 virtnet_poll+0x1318/0x1cf0 __napi_poll+0xaf/0x770 net_rx_action+0x9cc/0x1990 __do_softirq+0x1dd/0x7f6 invoke_softirq+0x8f/0x100 irq_exit_rcu+0x50/0x100 common_interrupt+0xaf/0xd0 asm_common_interrupt+0x27/0x40 __msan_metadata_ptr_for_load_8+0x28/0x30 kmem_cache_alloc+0x360/0xe70 ep_insert+0x763/0x23f0 do_epoll_ctl+0xcc8/0x1560 __x64_sys_epoll_ctl+0x171/0x1e0 do_syscall_64+0x41/0x90 entry_SYSCALL_64_after_hwframe+0x63/0xcd Local variable nlbl_type.i created at: selinux_inet_conn_established+0x131/0x2c0 security_inet_conn_established+0x7b/0x100 CPU: 0 PID: 584 Comm: syz-fuzzer Tainted: G B 6.0.0-rc2-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 ===================================================== audit: type=1400 audit(1661880220.917:73): avc: denied { getattr } for pid=584 comm="syz-fuzzer" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 36.674818] start_secondary+0x103/0x130 [ 36.679175] secondary_startup_64_no_verify+0xcf/0xdb [ 36.684528] [ 36.686209] Local variable nlbl_type.i created at: [ 36.691294] selinux_inet_conn_request+0xe1/0x4c0 [ 36.696341] security_inet_conn_request+0xaa/0x160 [ 36.701408] [ 36.703086] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B 6.0.0-rc2-syzkaller #0 [ 36.712229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 36.721841] ===================================================== [ 42.581216] ===================================================== [ 42.587901] BUG: KMSAN: uninit-value in selinux_inet_conn_request+0x31c/0x4c0 [ 42.595819] selinux_inet_conn_request+0x31c/0x4c0 [ 42.600991] security_inet_conn_request+0xaa/0x160 [ 42.606084] tcp_v4_route_req+0x3b8/0x4a0 [ 42.610384] tcp_conn_request+0x1254/0x33e0 [ 42.615149] tcp_v4_conn_request+0x143/0x1a0 [ 42.619720] tcp_rcv_state_process+0x1e2/0x3d60 [ 42.624598] tcp_v4_do_rcv+0x854/0xcc0 [ 42.628618] tcp_v4_rcv+0x3548/0x3be0 [ 42.632735] ip_protocol_deliver_rcu+0x201/0x9b0 [ 42.637662] ip_local_deliver_finish+0x22f/0x320 [ 42.642569] ip_local_deliver+0x1fb/0x430 [ 42.647135] ip_sublist_rcv+0x1017/0x1280 [ 42.652714] ip_list_rcv+0x909/0x960 [ 42.656839] __netif_receive_skb_list_core+0x13e6/0x1490 [ 42.662665] __netif_receive_skb_list+0x5bd/0x6b0 [ 42.667634] netif_receive_skb_list_internal+0x741/0xc40 [ 42.673234] napi_complete_done+0x2fa/0x810 [ 42.677692] virtnet_poll+0x1318/0x1cf0 [ 42.681823] __napi_poll+0xaf/0x770 [ 42.685586] net_rx_action+0x9cc/0x1990 [ 42.689699] __do_softirq+0x1dd/0x7f6 [ 42.693710] invoke_softirq+0x8f/0x100 [ 42.697855] irq_exit_rcu+0x50/0x100 [ 42.701740] common_interrupt+0xaf/0xd0 [ 42.705865] asm_common_interrupt+0x27/0x40 [ 42.710335] acpi_idle_enter+0x4f7/0x5c0 [ 42.714605] cpuidle_enter_state+0x682/0x1520 [ 42.719248] cpuidle_enter+0x7b/0xf0 [ 42.723169] do_idle+0x5ee/0x7f0 [ 42.726963] cpu_startup_entry+0x1d/0x20 [ 42.731330] start_secondary+0x103/0x130 [ 42.735732] secondary_startup_64_no_verify+0xcf/0xdb [ 42.741056] [ 42.742756] Local variable nlbl_type.i created at: [ 42.747856] selinux_inet_conn_request+0xe1/0x4c0 [ 42.752861] security_inet_conn_request+0xaa/0x160 [ 42.758124] [ 42.759810] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B 6.0.0-rc2-syzkaller #0 [ 42.768605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 42.778265] ===================================================== Warning: Permanently added '10.128.1.84' (ECDSA) to the list of known hosts. 2022/08/30 17:23:40 fuzzer started 2022/08/30 17:23:40 connecting to host at 10.128.0.169:35919 [ 43.697504] ===================================================== [ 43.704040] BUG: KMSAN: uninit-value in selinux_inet_conn_established+0x2a7/0x2c0 [ 43.711939] selinux_inet_conn_established+0x2a7/0x2c0 [ 43.717428] security_inet_conn_established+0x7b/0x100 [ 43.723000] tcp_finish_connect+0xb5/0x4b0 [ 43.727408] tcp_rcv_state_process+0x27cb/0x3d60 [ 43.732708] tcp_v4_do_rcv+0x854/0xcc0 [ 43.736811] tcp_v4_rcv+0x37f9/0x3be0 [ 43.740822] ip_protocol_deliver_rcu+0x201/0x9b0 [ 43.745806] ip_local_deliver_finish+0x22f/0x320 [ 43.750778] ip_local_deliver+0x1fb/0x430 [ 43.755244] ip_sublist_rcv+0x1017/0x1280 [ 43.759906] ip_list_rcv+0x909/0x960 [ 43.763802] __netif_receive_skb_list_core+0x13e6/0x1490 [ 43.769440] __netif_receive_skb_list+0x5bd/0x6b0 [ 43.774637] netif_receive_skb_list_internal+0x741/0xc40 [ 43.780532] napi_complete_done+0x2fa/0x810 [ 43.785103] virtnet_poll+0x1318/0x1cf0 [ 43.789329] __napi_poll+0xaf/0x770 [ 43.793093] net_rx_action+0x9cc/0x1990 [ 43.797310] __do_softirq+0x1dd/0x7f6 [ 43.801371] invoke_softirq+0x8f/0x100 [ 43.805519] irq_exit_rcu+0x50/0x100 [ 43.809393] common_interrupt+0xaf/0xd0 [ 43.813520] asm_common_interrupt+0x27/0x40 [ 43.818114] __msan_metadata_ptr_for_load_8+0x28/0x30 [ 43.823487] kmem_cache_alloc+0x360/0xe70 [ 43.827885] ep_insert+0x763/0x23f0 [ 43.831712] do_epoll_ctl+0xcc8/0x1560 [ 43.835786] __x64_sys_epoll_ctl+0x171/0x1e0 [ 43.840351] do_syscall_64+0x41/0x90 2022/08/30 17:23:40 checking config... [ 43.844407] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 43.849783] [ 43.851487] Local variable nlbl_type.i created at: [ 43.857132] selinux_inet_conn_established+0x131/0x2c0 [ 43.862874] security_inet_conn_established+0x7b/0x100 [ 43.868443] [ 43.870260] CPU: 0 PID: 584 Comm: syz-fuzzer Tainted: G B 6.0.0-rc2-syzkaller #0 [ 43.879940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 43.889779] ===================================================== [ 43.910400] audit: type=1400 audit(1661880220.917:73): avc: denied { getattr } for pid=584 comm="syz-fuzzer" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 syzkaller build log: go env (err=) GO111MODULE="auto" GOARCH="amd64" GOBIN="" GOCACHE="/syzkaller/.cache/go-build" GOENV="/syzkaller/.config/go/env" GOEXE="" GOEXPERIMENT="" GOFLAGS="" GOHOSTARCH="amd64" GOHOSTOS="linux" GOINSECURE="" GOMODCACHE="/syzkaller/jobs/linux/gopath/pkg/mod" GONOPROXY="" GONOSUMDB="" GOOS="linux" GOPATH="/syzkaller/jobs/linux/gopath" GOPRIVATE="" GOPROXY="https://proxy.golang.org,direct" GOROOT="/usr/local/go" GOSUMDB="sum.golang.org" GOTMPDIR="" GOTOOLDIR="/usr/local/go/pkg/tool/linux_amd64" GOVCS="" GOVERSION="go1.17" GCCGO="gccgo" AR="ar" CC="gcc" CXX="g++" CGO_ENABLED="1" GOMOD="" CGO_CFLAGS="-g -O2" CGO_CPPFLAGS="" CGO_CXXFLAGS="-g -O2" CGO_FFLAGS="-g -O2" CGO_LDFLAGS="-g -O2" PKG_CONFIG="pkg-config" GOGCCFLAGS="-fPIC -m64 -pthread -fmessage-length=0 -fdebug-prefix-map=/tmp/go-build2248179573=/tmp/go-build -gno-record-gcc-switches" git status (err=) HEAD detached at b9f655072 nothing to commit, working tree clean GOOS=linux GOARCH=amd64 go install ./syz-fuzzer make fuzzer execprog stress executor make[1]: Entering directory '/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller' GOOS=linux GOARCH=amd64 go build "-ldflags=-s -w -X github.com/google/syzkaller/sys.GitRevision=b9f655072cffb76f8b33aca772bfda9eb3a4530d" -o ./bin/linux_amd64/syz-fuzzer github.com/google/syzkaller/syz-fuzzer GOOS=linux GOARCH=amd64 go build "-ldflags=-s -w -X github.com/google/syzkaller/sys.GitRevision=b9f655072cffb76f8b33aca772bfda9eb3a4530d" -o ./bin/linux_amd64/syz-execprog github.com/google/syzkaller/tools/syz-execprog GOOS=linux GOARCH=amd64 go build "-ldflags=-s -w -X github.com/google/syzkaller/sys.GitRevision=b9f655072cffb76f8b33aca772bfda9eb3a4530d" -o ./bin/linux_amd64/syz-stress github.com/google/syzkaller/tools/syz-stress mkdir -p ./bin/linux_amd64 "x86_64-linux-gnu-gcc" -o ./bin/linux_amd64/syz-executor executor/executor_linux.cc \ -pthread -Wall -Wframe-larger-than=8192 -Wparentheses -Werror -O2 \ -static -fpermissive -w -DGOOS=\"linux\" -DGIT_REVISION=\"b9f655072cffb76f8b33aca772bfda9eb3a4530d\" make[1]: Leaving directory '/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller'