KMSAN: uninit-value in selinux_inet_conn_request ===================================================== BUG: KMSAN: uninit-value in selinux_inet_conn_request+0x361/0x570 selinux_inet_conn_request+0x361/0x570 security_inet_conn_request+0xaa/0x160 tcp_v4_route_req+0x3b8/0x4a0 tcp_conn_request+0x1763/0x37e0 tcp_v4_conn_request+0x143/0x1a0 tcp_rcv_state_process+0x1d4/0x1ec0 tcp_v4_do_rcv+0x854/0xcc0 tcp_v4_rcv+0x363f/0x3cc0 ip_protocol_deliver_rcu+0x201/0x9b0 ip_local_deliver_finish+0x22f/0x320 ip_local_deliver+0x1fb/0x430 ip_sublist_rcv+0x1299/0x1510 ip_list_rcv+0x909/0x960 __netif_receive_skb_list_core+0x13e6/0x1490 __netif_receive_skb_list+0x5bd/0x6b0 netif_receive_skb_list_internal+0x741/0xc40 napi_complete_done+0x2fa/0x810 virtnet_poll+0x1318/0x1cf0 __napi_poll+0xaf/0x770 net_rx_action+0x9cc/0x1990 __do_softirq+0x1dd/0x7f6 invoke_softirq+0x8f/0x100 irq_exit_rcu+0x50/0x100 common_interrupt+0xaf/0xd0 asm_common_interrupt+0x27/0x40 acpi_idle_enter+0x4f7/0x5c0 cpuidle_enter_state+0x682/0x1520 cpuidle_enter+0x7b/0xf0 do_idle+0x5ee/0x7f0 cpu_startup_entry+0x1d/0x20 start_secondary+0x103/0x130 secondary_startup_64_no_verify+0xcf/0xdb Local variable nlbl_type.i created at: selinux_inet_conn_request+0xfb/0x570 security_inet_conn_request+0xaa/0x160 CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B 6.0.0-rc2-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 ===================================================== ===================================================== BUG: KMSAN: uninit-value in selinux_inet_conn_established+0x2fd/0x370 selinux_inet_conn_established+0x2fd/0x370 security_inet_conn_established+0x7b/0x100 tcp_finish_connect+0xb5/0x4b0 tcp_rcv_synsent_state_process+0x181e/0x1dc0 tcp_rcv_state_process+0x2d8/0x1ec0 tcp_v4_do_rcv+0x854/0xcc0 tcp_v4_rcv+0x38e7/0x3cc0 ip_protocol_deliver_rcu+0x201/0x9b0 ip_local_deliver_finish+0x22f/0x320 ip_local_deliver+0x1fb/0x430 ip_sublist_rcv+0x1299/0x1510 ip_list_rcv+0x909/0x960 __netif_receive_skb_list_core+0x13e6/0x1490 __netif_receive_skb_list+0x5bd/0x6b0 netif_receive_skb_list_internal+0x741/0xc40 napi_complete_done+0x2fa/0x810 virtnet_poll+0x1318/0x1cf0 __napi_poll+0xaf/0x770 net_rx_action+0x9cc/0x1990 __do_softirq+0x1dd/0x7f6 invoke_softirq+0x8f/0x100 irq_exit_rcu+0x50/0x100 common_interrupt+0xaf/0xd0 asm_common_interrupt+0x27/0x40 __stack_depot_save+0x149/0x4b0 stack_depot_save+0x13/0x20 __msan_poison_alloca+0x100/0x1a0 __schedule+0x41/0x3050 schedule+0x136/0x200 exit_to_user_mode_loop+0x81/0x2b0 exit_to_user_mode_prepare+0x13a/0x1e0 syscall_exit_to_user_mode+0x23/0x40 do_syscall_64+0x4f/0x90 entry_SYSCALL_64_after_hwframe+0x63/0xcd Local variable nlbl_type.i created at: selinux_inet_conn_established+0x142/0x370 security_inet_conn_established+0x7b/0x100 CPU: 1 PID: 1038 Comm: syz-fuzzer Tainted: G B 6.0.0-rc2-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 ===================================================== audit: type=1400 audit(1661904626.803:73): avc: denied { getattr } for pid=1038 comm="syz-fuzzer" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 68.345397] ===================================================== [ 68.352011] BUG: KMSAN: uninit-value in selinux_inet_conn_request+0x361/0x570 [ 68.359459] selinux_inet_conn_request+0x361/0x570 [ 68.364577] security_inet_conn_request+0xaa/0x160 [ 68.369674] tcp_v4_route_req+0x3b8/0x4a0 [ 68.374065] tcp_conn_request+0x1763/0x37e0 [ 68.378669] tcp_v4_conn_request+0x143/0x1a0 [ 68.383399] tcp_rcv_state_process+0x1d4/0x1ec0 [ 68.388205] tcp_v4_do_rcv+0x854/0xcc0 [ 68.392272] tcp_v4_rcv+0x363f/0x3cc0 [ 68.396286] ip_protocol_deliver_rcu+0x201/0x9b0 [ 68.401253] ip_local_deliver_finish+0x22f/0x320 [ 68.406204] ip_local_deliver+0x1fb/0x430 [ 68.410504] ip_sublist_rcv+0x1299/0x1510 [ 68.414826] ip_list_rcv+0x909/0x960 [ 68.418684] __netif_receive_skb_list_core+0x13e6/0x1490 [ 68.424310] __netif_receive_skb_list+0x5bd/0x6b0 [ 68.429332] netif_receive_skb_list_internal+0x741/0xc40 [ 68.435045] napi_complete_done+0x2fa/0x810 [ 68.439531] virtnet_poll+0x1318/0x1cf0 [ 68.443668] __napi_poll+0xaf/0x770 [ 68.447450] net_rx_action+0x9cc/0x1990 [ 68.451573] __do_softirq+0x1dd/0x7f6 [ 68.455505] invoke_softirq+0x8f/0x100 [ 68.459556] irq_exit_rcu+0x50/0x100 [ 68.463411] common_interrupt+0xaf/0xd0 [ 68.467526] asm_common_interrupt+0x27/0x40 [ 68.471995] acpi_idle_enter+0x4f7/0x5c0 [ 68.476174] cpuidle_enter_state+0x682/0x1520 [ 68.480812] cpuidle_enter+0x7b/0xf0 [ 68.484665] do_idle+0x5ee/0x7f0 [ 68.488193] cpu_startup_entry+0x1d/0x20 [ 68.492394] start_secondary+0x103/0x130 [ 68.496585] secondary_startup_64_no_verify+0xcf/0xdb [ 68.501978] [ 68.503703] Local variable nlbl_type.i created at: [ 68.508737] selinux_inet_conn_request+0xfb/0x570 [ 68.513938] security_inet_conn_request+0xaa/0x160 [ 68.519027] [ 68.520718] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B 6.0.0-rc2-syzkaller #0 [ 68.529512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 68.538995] ===================================================== Warning: Permanently added '10.128.1.91' (ECDSA) to the list of known hosts. 2022/08/31 00:10:25 fuzzer started 2022/08/31 00:10:26 connecting to host at 10.128.0.169:33701 [ 69.556242] ===================================================== [ 69.562804] BUG: KMSAN: uninit-value in selinux_inet_conn_established+0x2fd/0x370 [ 69.570974] selinux_inet_conn_established+0x2fd/0x370 [ 69.576722] security_inet_conn_established+0x7b/0x100 [ 69.582231] tcp_finish_connect+0xb5/0x4b0 [ 69.586692] tcp_rcv_synsent_state_process+0x181e/0x1dc0 [ 69.592530] tcp_rcv_state_process+0x2d8/0x1ec0 [ 69.597393] tcp_v4_do_rcv+0x854/0xcc0 [ 69.601497] tcp_v4_rcv+0x38e7/0x3cc0 [ 69.605476] ip_protocol_deliver_rcu+0x201/0x9b0 [ 69.610423] ip_local_deliver_finish+0x22f/0x320 [ 69.615354] ip_local_deliver+0x1fb/0x430 [ 69.619771] ip_sublist_rcv+0x1299/0x1510 [ 69.624087] ip_list_rcv+0x909/0x960 [ 69.628010] __netif_receive_skb_list_core+0x13e6/0x1490 [ 69.633830] __netif_receive_skb_list+0x5bd/0x6b0 [ 69.639006] netif_receive_skb_list_internal+0x741/0xc40 [ 69.644695] napi_complete_done+0x2fa/0x810 [ 69.649296] virtnet_poll+0x1318/0x1cf0 [ 69.653436] __napi_poll+0xaf/0x770 [ 69.657238] net_rx_action+0x9cc/0x1990 [ 69.661366] __do_softirq+0x1dd/0x7f6 [ 69.665423] invoke_softirq+0x8f/0x100 [ 69.669469] irq_exit_rcu+0x50/0x100 [ 69.673340] common_interrupt+0xaf/0xd0 [ 69.677485] asm_common_interrupt+0x27/0x40 [ 69.681999] __stack_depot_save+0x149/0x4b0 [ 69.686541] stack_depot_save+0x13/0x20 [ 69.690676] __msan_poison_alloca+0x100/0x1a0 [ 69.695339] __schedule+0x41/0x3050 [ 69.699130] schedule+0x136/0x200 [ 69.703367] exit_to_user_mode_loop+0x81/0x2b0 [ 69.708179] exit_to_user_mode_prepare+0x13a/0x1e0 [ 69.713290] syscall_exit_to_user_mode+0x23/0x40 [ 69.718222] do_syscall_64+0x4f/0x90 [ 69.722083] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 69.727444] [ 69.729168] Local variable nlbl_type.i created at: [ 69.734293] selinux_inet_conn_established+0x142/0x370 [ 69.739750] security_inet_conn_established+0x7b/0x100 [ 69.745229] [ 69.746993] CPU: 1 PID: 1038 Comm: syz-fuzzer Tainted: G B 6.0.0-rc2-syzkaller #0 2022/08/31 00:10:26 checking config... [ 69.756175] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 69.765699] ===================================================== [ 69.792680] audit: type=1400 audit(1661904626.803:73): avc: denied { getattr } for pid=1038 comm="syz-fuzzer" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 syzkaller build log: go env (err=) GO111MODULE="auto" GOARCH="amd64" GOBIN="" GOCACHE="/syzkaller/.cache/go-build" GOENV="/syzkaller/.config/go/env" GOEXE="" GOEXPERIMENT="" GOFLAGS="" GOHOSTARCH="amd64" GOHOSTOS="linux" GOINSECURE="" GOMODCACHE="/syzkaller/jobs/linux/gopath/pkg/mod" GONOPROXY="" GONOSUMDB="" GOOS="linux" GOPATH="/syzkaller/jobs/linux/gopath" GOPRIVATE="" GOPROXY="https://proxy.golang.org,direct" GOROOT="/usr/local/go" GOSUMDB="sum.golang.org" GOTMPDIR="" GOTOOLDIR="/usr/local/go/pkg/tool/linux_amd64" GOVCS="" GOVERSION="go1.17" GCCGO="gccgo" AR="ar" CC="gcc" CXX="g++" CGO_ENABLED="1" GOMOD="" CGO_CFLAGS="-g -O2" CGO_CPPFLAGS="" CGO_CXXFLAGS="-g -O2" CGO_FFLAGS="-g -O2" CGO_LDFLAGS="-g -O2" PKG_CONFIG="pkg-config" GOGCCFLAGS="-fPIC -m64 -pthread -fmessage-length=0 -fdebug-prefix-map=/tmp/go-build3096011109=/tmp/go-build -gno-record-gcc-switches" git status (err=) HEAD detached at d5b114b40 nothing to commit, working tree clean GOOS=linux GOARCH=amd64 go install ./syz-fuzzer make fuzzer execprog stress executor make[1]: Entering directory '/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller' GOOS=linux GOARCH=amd64 go build "-ldflags=-s -w -X github.com/google/syzkaller/sys.GitRevision=d5b114b4015bcfb0ea2724efc01f478f6ea96b4f" -o ./bin/linux_amd64/syz-fuzzer github.com/google/syzkaller/syz-fuzzer GOOS=linux GOARCH=amd64 go build "-ldflags=-s -w -X github.com/google/syzkaller/sys.GitRevision=d5b114b4015bcfb0ea2724efc01f478f6ea96b4f" -o ./bin/linux_amd64/syz-execprog github.com/google/syzkaller/tools/syz-execprog GOOS=linux GOARCH=amd64 go build "-ldflags=-s -w -X github.com/google/syzkaller/sys.GitRevision=d5b114b4015bcfb0ea2724efc01f478f6ea96b4f" -o ./bin/linux_amd64/syz-stress github.com/google/syzkaller/tools/syz-stress mkdir -p ./bin/linux_amd64 "x86_64-linux-gnu-gcc" -o ./bin/linux_amd64/syz-executor executor/executor_linux.cc \ -pthread -Wall -Wframe-larger-than=8192 -Wparentheses -Werror -O2 \ -static -fpermissive -w -DGOOS=\"linux\" -DGIT_REVISION=\"d5b114b4015bcfb0ea2724efc01f478f6ea96b4f\" make[1]: Leaving directory '/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller'