./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1555167023 <...> forked to background, child pid 3058 no interfaces have a carrier [ 80.623040][ T3059] 8021q: adding VLAN 0 to HW filter on device bond0 [ 80.637774][ T3059] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller syzkaller login: [ 100.264124][ T25] cfg80211: failed to load regulatory.db Warning: Permanently added '10.128.10.4' (ECDSA) to the list of known hosts. execve("./syz-executor1555167023", ["./syz-executor1555167023"], 0x7ffff81c1550 /* 10 vars */) = 0 brk(NULL) = 0x555557508000 brk(0x555557508c40) = 0x555557508c40 arch_prctl(ARCH_SET_FS, 0x555557508300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor1555167023", 4096) = 28 brk(0x555557529c40) = 0x555557529c40 brk(0x55555752a000) = 0x55555752a000 mprotect(0x7f0368c7c000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555575085d0) = 3490 ./strace-static-x86_64: Process 3490 attached [pid 3490] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3490] setpgid(0, 0) = 0 [pid 3490] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3490] write(3, "1000", 4) = 4 [pid 3490] close(3) = 0 [pid 3490] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3 [pid 3490] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 4 [pid 3490] sendto(4, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x09\x00\x02\x00\x54\x49\x50\x43\x00\x00\x00\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32 [pid 3490] recvfrom(4, [{nlmsg_len=88, nlmsg_type=nlctrl, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=3490}, "\x01\x02\x00\x00\x09\x00\x02\x00\x54\x49\x50\x43\x00\x00\x00\x00\x06\x00\x01\x00\x31\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x08\x00\x00\x00\x08\x00\x05\x00\x00\x00\x00\x00\x18\x00\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x02\x00\x00\x00"], 4096, 0, NULL, NULL) = 88 [pid 3490] recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=3490}, {error=0, msg={nlmsg_len=32, nlmsg_type=nlctrl, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36 [pid 3490] close(4) = 0 [ 114.224462][ T3490] ===================================================== [ 114.231668][ T3490] BUG: KMSAN: uninit-value in tipc_nl_compat_name_table_dump+0x841/0xea0 [ 114.240464][ T3490] tipc_nl_compat_name_table_dump+0x841/0xea0 [ 114.248043][ T3490] __tipc_nl_compat_dumpit+0xab2/0x1320 [ 114.253761][ T3490] tipc_nl_compat_dumpit+0x991/0xb50 [ 114.259169][ T3490] tipc_nl_compat_recv+0xb6e/0x1640 [ 114.264642][ T3490] genl_rcv_msg+0x103f/0x1260 [ 114.269449][ T3490] netlink_rcv_skb+0x3a5/0x6c0 [ 114.274404][ T3490] genl_rcv+0x3c/0x50 [ 114.278502][ T3490] netlink_unicast+0xf3b/0x1270 [ 114.283626][ T3490] netlink_sendmsg+0x1288/0x1440 [ 114.288670][ T3490] ____sys_sendmsg+0xabc/0xe90 [ 114.293614][ T3490] ___sys_sendmsg+0x2a1/0x3f0 [ 114.298409][ T3490] __x64_sys_sendmsg+0x367/0x540 [ 114.303540][ T3490] do_syscall_64+0x3d/0xb0 [ 114.308056][ T3490] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 114.314214][ T3490] [ 114.316586][ T3490] Uninit was created at: [ 114.320978][ T3490] __kmalloc_node_track_caller+0x814/0x1250 [ 114.327126][ T3490] __alloc_skb+0x346/0xcf0 [ 114.331671][ T3490] netlink_sendmsg+0xb71/0x1440 [ 114.336709][ T3490] ____sys_sendmsg+0xabc/0xe90 [ 114.341593][ T3490] ___sys_sendmsg+0x2a1/0x3f0 [ 114.346455][ T3490] __x64_sys_sendmsg+0x367/0x540 [ 114.351525][ T3490] do_syscall_64+0x3d/0xb0 [ 114.356120][ T3490] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 114.362225][ T3490] [ 114.364610][ T3490] CPU: 1 PID: 3490 Comm: syz-executor155 Not tainted 6.0.0-rc5-syzkaller-48538-g8f4ae27df775 #0 [ 114.375211][ T3490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 114.385387][ T3490] ===================================================== [ 114.392471][ T3490] Disabling lock debugging due to kernel taint [ 114.398677][ T3490] Kernel panic - not syncing: kmsan.panic set ... [ 114.405141][ T3490] CPU: 1 PID: 3490 Comm: syz-executor155 Tainted: G B 6.0.0-rc5-syzkaller-48538-g8f4ae27df775 #0 [ 114.417143][ T3490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 114.427260][ T3490] Call Trace: [ 114.430590][ T3490] [ 114.433571][ T3490] dump_stack_lvl+0x1c8/0x256 [ 114.438398][ T3490] dump_stack+0x1a/0x1c [ 114.442695][ T3490] panic+0x4d3/0xc69 [ 114.446749][ T3490] kmsan_report+0x2cc/0x2d0 [ 114.451394][ T3490] ? __msan_warning+0x92/0x110 [ 114.456254][ T3490] ? tipc_nl_compat_name_table_dump+0x841/0xea0 [ 114.462599][ T3490] ? __tipc_nl_compat_dumpit+0xab2/0x1320 [ 114.468387][ T3490] ? tipc_nl_compat_dumpit+0x991/0xb50 [ 114.473953][ T3490] ? tipc_nl_compat_recv+0xb6e/0x1640 [ 114.479453][ T3490] ? genl_rcv_msg+0x103f/0x1260 [ 114.484394][ T3490] ? netlink_rcv_skb+0x3a5/0x6c0 [ 114.489448][ T3490] ? genl_rcv+0x3c/0x50 [ 114.493729][ T3490] ? netlink_unicast+0xf3b/0x1270 [ 114.498851][ T3490] ? netlink_sendmsg+0x1288/0x1440 [ 114.504072][ T3490] ? ____sys_sendmsg+0xabc/0xe90 [ 114.509098][ T3490] ? ___sys_sendmsg+0x2a1/0x3f0 [ 114.514023][ T3490] ? __x64_sys_sendmsg+0x367/0x540 [ 114.519254][ T3490] ? do_syscall_64+0x3d/0xb0 [ 114.523947][ T3490] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 114.530109][ T3490] ? __nla_validate_parse+0x371f/0x4240 [ 114.535728][ T3490] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 114.541651][ T3490] ? preempt_count_sub+0x7d/0x280 [ 114.546825][ T3490] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 114.553182][ T3490] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 114.559149][ T3490] __msan_warning+0x92/0x110 [ 114.563883][ T3490] tipc_nl_compat_name_table_dump+0x841/0xea0 [ 114.570065][ T3490] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 114.576029][ T3490] ? tipc_nl_compat_name_table_dump_header+0x2c0/0x2c0 [ 114.583024][ T3490] __tipc_nl_compat_dumpit+0xab2/0x1320 [ 114.588700][ T3490] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 114.595070][ T3490] tipc_nl_compat_dumpit+0x991/0xb50 [ 114.600508][ T3490] tipc_nl_compat_recv+0xb6e/0x1640 [ 114.605864][ T3490] ? tipc_nl_compat_link_reset_stats+0x430/0x430 [ 114.612321][ T3490] ? tipc_nametbl_stop+0x2660/0x2660 [ 114.617764][ T3490] ? tipc_nl_compat_name_table_dump_header+0x2c0/0x2c0 [ 114.624756][ T3490] ? tipc_netlink_compat_stop+0x30/0x30 [ 114.630476][ T3490] genl_rcv_msg+0x103f/0x1260 [ 114.635281][ T3490] ? tipc_netlink_compat_stop+0x30/0x30 [ 114.640937][ T3490] netlink_rcv_skb+0x3a5/0x6c0 [ 114.645783][ T3490] ? genl_bind+0x490/0x490 [ 114.650319][ T3490] ? genl_pernet_exit+0x60/0x60 [ 114.655256][ T3490] genl_rcv+0x3c/0x50 [ 114.659348][ T3490] netlink_unicast+0xf3b/0x1270 [ 114.664305][ T3490] netlink_sendmsg+0x1288/0x1440 [ 114.669368][ T3490] ? netlink_getsockopt+0x13b0/0x13b0 [ 114.674811][ T3490] ____sys_sendmsg+0xabc/0xe90 [ 114.679687][ T3490] ___sys_sendmsg+0x2a1/0x3f0 [ 114.684500][ T3490] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 114.690422][ T3490] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 114.696395][ T3490] __x64_sys_sendmsg+0x367/0x540 [ 114.701482][ T3490] do_syscall_64+0x3d/0xb0 [ 114.706021][ T3490] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 114.712073][ T3490] RIP: 0033:0x7f0368c0f7b9 [ 114.716584][ T3490] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 114.736328][ T3490] RSP: 002b:00007fff932008b8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 114.744834][ T3490] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f0368c0f7b9 [ 114.752919][ T3490] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 114.760974][ T3490] RBP: 0000000000000000 R08: 0000000000000000 R09: 00007fff93200a58 [ 114.768996][ T3490] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f0368bd2ac0 [ 114.777036][ T3490] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 114.785114][ T3490] [ 114.788350][ T3490] Kernel Offset: disabled [ 114.792718][ T3490] Rebooting in 86400 seconds..