[[0;32m  OK  [0m] Started OpenBSD Secure Shell server.
[[0;32m  OK  [0m] Reached target Multi-User System.
[[0;32m  OK  [0m] Reached target Graphical Interface.
         Starting Update UTMP about System Runlevel Changes...
[[0;32m  OK  [0m] Started Update UTMP about System Runlevel Changes.

Debian GNU/Linux 9 syzkaller ttyS0

Warning: Permanently added '10.128.10.44' (ECDSA) to the list of known hosts.
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
syzkaller login: [  111.267877][ T8814] =====================================================
[  111.274950][ T8814] BUG: KMSAN: uninit-value in bpf_skb_load_helper_32+0xee/0x2d0
[  111.282568][ T8814] CPU: 1 PID: 8814 Comm: sshd Not tainted 5.7.0-rc4-syzkaller #0
[  111.290259][ T8814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  111.300293][ T8814] Call Trace:
[  111.303572][ T8814]  dump_stack+0x1c9/0x220
[  111.307885][ T8814]  kmsan_report+0xf7/0x1e0
[  111.312387][ T8814]  __msan_warning+0x58/0xa0
[  111.316875][ T8814]  bpf_skb_load_helper_32+0xee/0x2d0
[  111.322153][ T8814]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  111.328210][ T8814]  ___bpf_prog_run+0x214d/0x97a0
[  111.333129][ T8814]  ? bpf_skb_load_helper_16_no_cache+0x370/0x370
[  111.339446][ T8814]  __bpf_prog_run32+0x101/0x170
[  111.344299][ T8814]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  111.350348][ T8814]  ? kmsan_get_metadata+0x4f/0x180
[  111.355551][ T8814]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  111.361342][ T8814]  ? ___bpf_prog_run+0x97a0/0x97a0
[  111.366440][ T8814]  packet_rcv+0x70f/0x2160
[  111.370863][ T8814]  ? packet_sock_destruct+0x1e0/0x1e0
[  111.376222][ T8814]  dev_queue_xmit_nit+0x862/0x1270
[  111.381506][ T8814]  dev_hard_start_xmit+0x20f/0xab0
[  111.386610][ T8814]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  111.392657][ T8814]  ? kmsan_get_metadata+0x11d/0x180
[  111.397841][ T8814]  sch_direct_xmit+0x512/0x18b0
[  111.402682][ T8814]  __qdisc_run+0x15ec/0x3350
[  111.407258][ T8814]  ? kmsan_get_metadata+0x11d/0x180
[  111.412441][ T8814]  ? kmsan_set_origin_checked+0x95/0xf0
[  111.417978][ T8814]  __dev_queue_xmit+0x23b7/0x3b20
[  111.423005][ T8814]  dev_queue_xmit+0x4b/0x60
[  111.427491][ T8814]  ip_finish_output2+0x20fd/0x2610
[  111.432588][ T8814]  ? __msan_metadata_ptr_for_load_2+0x10/0x20
[  111.438640][ T8814]  ? nf_ct_deliver_cached_events+0x511/0x6c0
[  111.444617][ T8814]  __ip_finish_output+0xaa7/0xd80
[  111.449644][ T8814]  ip_finish_output+0x166/0x410
[  111.454569][ T8814]  ip_output+0x593/0x680
[  111.458803][ T8814]  ? ip_mc_finish_output+0x6c0/0x6c0
[  111.464071][ T8814]  ? ip_finish_output+0x410/0x410
[  111.469075][ T8814]  __ip_queue_xmit+0x1b5c/0x21a0
[  111.474000][ T8814]  ? kmsan_set_origin_checked+0x95/0xf0
[  111.479543][ T8814]  ? kmsan_get_metadata+0x11d/0x180
[  111.484729][ T8814]  ? kmsan_get_metadata+0x11d/0x180
[  111.489926][ T8814]  ip_queue_xmit+0xcc/0xf0
[  111.494327][ T8814]  ? tcp_v4_fill_cb+0x580/0x580
[  111.499159][ T8814]  __tcp_transmit_skb+0x4221/0x6090
[  111.504361][ T8814]  tcp_write_xmit+0x30e1/0xb470
[  111.509212][ T8814]  ? __msan_metadata_ptr_for_load_1+0x10/0x20
[  111.515319][ T8814]  __tcp_push_pending_frames+0x124/0x4e0
[  111.520941][ T8814]  tcp_push+0x6fa/0x8a0
[  111.525104][ T8814]  tcp_sendmsg_locked+0x5d89/0x6d00
[  111.530323][ T8814]  tcp_sendmsg+0xb2/0x100
[  111.534725][ T8814]  ? tcp_sendmsg_locked+0x6d00/0x6d00
[  111.540079][ T8814]  ? tcp_sendmsg_locked+0x6d00/0x6d00
[  111.545431][ T8814]  inet_sendmsg+0x178/0x2e0
[  111.550049][ T8814]  ? inet_send_prepare+0x600/0x600
[  111.555230][ T8814]  ? inet_send_prepare+0x600/0x600
[  111.560335][ T8814]  sock_write_iter+0x606/0x6d0
[  111.565097][ T8814]  ? sock_read_iter+0x700/0x700
[  111.569933][ T8814]  __vfs_write+0xa5a/0xca0
[  111.574364][ T8814]  vfs_write+0x444/0x8e0
[  111.578601][ T8814]  ksys_write+0x267/0x450
[  111.582930][ T8814]  __se_sys_write+0x92/0xb0
[  111.587428][ T8814]  __x64_sys_write+0x4a/0x70
[  111.592088][ T8814]  do_syscall_64+0xb8/0x160
[  111.596580][ T8814]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  111.602467][ T8814] RIP: 0033:0x7f155876b970
[  111.606917][ T8814] Code: 73 01 c3 48 8b 0d 28 d5 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d 99 2d 2c 00 00 75 10 b8 01 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 7e 9b 01 00 48 89 04 24
[  111.626544][ T8814] RSP: 002b:00007ffc12f70e38 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  111.634939][ T8814] RAX: ffffffffffffffda RBX: 0000000000000034 RCX: 00007f155876b970
[  111.642899][ T8814] RDX: 0000000000000034 RSI: 000055fc293bc0a4 RDI: 0000000000000003
[  111.650860][ T8814] RBP: 000055fc293ad0b0 R08: 00007ffc12fb4080 R09: 0000000000000070
[  111.658817][ T8814] R10: 000000000000006f R11: 0000000000000246 R12: 0000000000000001
[  111.666772][ T8814] R13: 00007ffc12f70ecf R14: 000055fc27f2fbe7 R15: 0000000000000003
[  111.674732][ T8814] 
[  111.677038][ T8814] Uninit was stored to memory at:
[  111.682452][ T8814]  kmsan_internal_chain_origin+0xad/0x130
[  111.691366][ T8814]  __msan_chain_origin+0x50/0x90
[  111.696284][ T8814]  ___bpf_prog_run+0x6c80/0x97a0
[  111.701287][ T8814]  __bpf_prog_run32+0x101/0x170
[  111.706120][ T8814]  packet_rcv+0x70f/0x2160
[  111.710518][ T8814]  dev_queue_xmit_nit+0x862/0x1270
[  111.715611][ T8814]  dev_hard_start_xmit+0x20f/0xab0
[  111.720722][ T8814]  sch_direct_xmit+0x512/0x18b0
[  111.725566][ T8814]  __qdisc_run+0x15ec/0x3350
[  111.730139][ T8814]  __dev_queue_xmit+0x23b7/0x3b20
[  111.735144][ T8814]  dev_queue_xmit+0x4b/0x60
[  111.739630][ T8814]  ip_finish_output2+0x20fd/0x2610
[  111.744721][ T8814]  __ip_finish_output+0xaa7/0xd80
[  111.749726][ T8814]  ip_finish_output+0x166/0x410
[  111.754557][ T8814]  ip_output+0x593/0x680
[  111.758883][ T8814]  __ip_queue_xmit+0x1b5c/0x21a0
[  111.763803][ T8814]  ip_queue_xmit+0xcc/0xf0
[  111.768231][ T8814]  __tcp_transmit_skb+0x4221/0x6090
[  111.773412][ T8814]  tcp_write_xmit+0x30e1/0xb470
[  111.778330][ T8814]  __tcp_push_pending_frames+0x124/0x4e0
[  111.784694][ T8814]  tcp_push+0x6fa/0x8a0
[  111.788832][ T8814]  tcp_sendmsg_locked+0x5d89/0x6d00
[  111.794017][ T8814]  tcp_sendmsg+0xb2/0x100
[  111.798327][ T8814]  inet_sendmsg+0x178/0x2e0
[  111.802812][ T8814]  sock_write_iter+0x606/0x6d0
[  111.807554][ T8814]  __vfs_write+0xa5a/0xca0
[  111.811951][ T8814]  vfs_write+0x444/0x8e0
[  111.816185][ T8814]  ksys_write+0x267/0x450
[  111.820492][ T8814]  __se_sys_write+0x92/0xb0
[  111.824979][ T8814]  __x64_sys_write+0x4a/0x70
[  111.829550][ T8814]  do_syscall_64+0xb8/0x160
[  111.834051][ T8814]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  111.839919][ T8814] 
[  111.842239][ T8814] Uninit was stored to memory at:
[  111.847247][ T8814]  kmsan_internal_chain_origin+0xad/0x130
[  111.852948][ T8814]  __msan_chain_origin+0x50/0x90
[  111.857871][ T8814]  ___bpf_prog_run+0x6cbe/0x97a0
[  111.862792][ T8814]  __bpf_prog_run32+0x101/0x170
[  111.867624][ T8814]  packet_rcv+0x70f/0x2160
[  111.872108][ T8814]  dev_queue_xmit_nit+0x862/0x1270
[  111.877298][ T8814]  dev_hard_start_xmit+0x20f/0xab0
[  111.882995][ T8814]  sch_direct_xmit+0x512/0x18b0
[  111.887840][ T8814]  __qdisc_run+0x15ec/0x3350
[  111.892410][ T8814]  __dev_queue_xmit+0x23b7/0x3b20
[  111.897418][ T8814]  dev_queue_xmit+0x4b/0x60
[  111.901900][ T8814]  ip_finish_output2+0x20fd/0x2610
[  111.906992][ T8814]  __ip_finish_output+0xaa7/0xd80
[  111.911995][ T8814]  ip_finish_output+0x166/0x410
[  111.916844][ T8814]  ip_output+0x593/0x680
[  111.921065][ T8814]  __ip_queue_xmit+0x1b5c/0x21a0
[  111.925984][ T8814]  ip_queue_xmit+0xcc/0xf0
[  111.930382][ T8814]  __tcp_transmit_skb+0x4221/0x6090
[  111.935560][ T8814]  tcp_write_xmit+0x30e1/0xb470
[  111.940389][ T8814]  __tcp_push_pending_frames+0x124/0x4e0
[  111.946000][ T8814]  tcp_push+0x6fa/0x8a0
[  111.950228][ T8814]  tcp_sendmsg_locked+0x5d89/0x6d00
[  111.955420][ T8814]  tcp_sendmsg+0xb2/0x100
[  111.959733][ T8814]  inet_sendmsg+0x178/0x2e0
[  111.964219][ T8814]  sock_write_iter+0x606/0x6d0
[  111.968969][ T8814]  __vfs_write+0xa5a/0xca0
[  111.973365][ T8814]  vfs_write+0x444/0x8e0
[  111.977590][ T8814]  ksys_write+0x267/0x450
[  111.982514][ T8814]  __se_sys_write+0x92/0xb0
[  111.987001][ T8814]  __x64_sys_write+0x4a/0x70
[  111.991661][ T8814]  do_syscall_64+0xb8/0x160
[  111.996166][ T8814]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  112.002032][ T8814] 
[  112.004348][ T8814] Uninit was stored to memory at:
[  112.009367][ T8814]  kmsan_internal_chain_origin+0xad/0x130
[  112.015064][ T8814]  __msan_chain_origin+0x50/0x90
[  112.019984][ T8814]  ___bpf_prog_run+0x6c64/0x97a0
[  112.024901][ T8814]  __bpf_prog_run32+0x101/0x170
[  112.029762][ T8814]  packet_rcv+0x70f/0x2160
[  112.034159][ T8814]  dev_queue_xmit_nit+0x862/0x1270
[  112.039258][ T8814]  dev_hard_start_xmit+0x20f/0xab0
[  112.044348][ T8814]  sch_direct_xmit+0x512/0x18b0
[  112.049175][ T8814]  __qdisc_run+0x15ec/0x3350
[  112.053744][ T8814]  __dev_queue_xmit+0x23b7/0x3b20
[  112.058768][ T8814]  dev_queue_xmit+0x4b/0x60
[  112.063254][ T8814]  ip_finish_output2+0x20fd/0x2610
[  112.068347][ T8814]  __ip_finish_output+0xaa7/0xd80
[  112.073352][ T8814]  ip_finish_output+0x166/0x410
[  112.078182][ T8814]  ip_output+0x593/0x680
[  112.082829][ T8814]  __ip_queue_xmit+0x1b5c/0x21a0
[  112.087763][ T8814]  ip_queue_xmit+0xcc/0xf0
[  112.092158][ T8814]  __tcp_transmit_skb+0x4221/0x6090
[  112.097334][ T8814]  tcp_write_xmit+0x30e1/0xb470
[  112.102164][ T8814]  __tcp_push_pending_frames+0x124/0x4e0
[  112.107777][ T8814]  tcp_push+0x6fa/0x8a0
[  112.111916][ T8814]  tcp_sendmsg_locked+0x5d89/0x6d00
[  112.117097][ T8814]  tcp_sendmsg+0xb2/0x100
[  112.121408][ T8814]  inet_sendmsg+0x178/0x2e0
[  112.125895][ T8814]  sock_write_iter+0x606/0x6d0
[  112.130640][ T8814]  __vfs_write+0xa5a/0xca0
[  112.135035][ T8814]  vfs_write+0x444/0x8e0
[  112.139258][ T8814]  ksys_write+0x267/0x450
[  112.143569][ T8814]  __se_sys_write+0x92/0xb0
[  112.148053][ T8814]  __x64_sys_write+0x4a/0x70
[  112.152651][ T8814]  do_syscall_64+0xb8/0x160
[  112.157139][ T8814]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  112.163005][ T8814] 
[  112.165315][ T8814] Local variable ----regs@__bpf_prog_run32 created at:
[  112.172228][ T8814]  __bpf_prog_run32+0x87/0x170
[  112.176974][ T8814]  __bpf_prog_run32+0x87/0x170
[  112.182038][ T8814] =====================================================
[  112.188967][ T8814] Disabling lock debugging due to kernel taint
[  112.195096][ T8814] Kernel panic - not syncing: panic_on_warn set ...
[  112.201756][ T8814] CPU: 1 PID: 8814 Comm: sshd Tainted: G    B             5.7.0-rc4-syzkaller #0
[  112.210838][ T8814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  112.220876][ T8814] Call Trace:
[  112.224155][ T8814]  dump_stack+0x1c9/0x220
[  112.228470][ T8814]  panic+0x3d5/0xc3e
[  112.232360][ T8814]  kmsan_report+0x1df/0x1e0
[  112.236855][ T8814]  __msan_warning+0x58/0xa0
[  112.241348][ T8814]  bpf_skb_load_helper_32+0xee/0x2d0
[  112.246633][ T8814]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  112.252683][ T8814]  ___bpf_prog_run+0x214d/0x97a0
[  112.257639][ T8814]  ? bpf_skb_load_helper_16_no_cache+0x370/0x370
[  112.263984][ T8814]  __bpf_prog_run32+0x101/0x170
[  112.268833][ T8814]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  112.274893][ T8814]  ? kmsan_get_metadata+0x4f/0x180
[  112.280079][ T8814]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  112.285889][ T8814]  ? ___bpf_prog_run+0x97a0/0x97a0
[  112.290987][ T8814]  packet_rcv+0x70f/0x2160
[  112.295404][ T8814]  ? packet_sock_destruct+0x1e0/0x1e0
[  112.300779][ T8814]  dev_queue_xmit_nit+0x862/0x1270
[  112.305890][ T8814]  dev_hard_start_xmit+0x20f/0xab0
[  112.311005][ T8814]  ? kmsan_internal_unpoison_shadow+0x2f/0x40
[  112.317070][ T8814]  ? kmsan_get_metadata+0x11d/0x180
[  112.322254][ T8814]  sch_direct_xmit+0x512/0x18b0
[  112.327099][ T8814]  __qdisc_run+0x15ec/0x3350
[  112.331677][ T8814]  ? kmsan_get_metadata+0x11d/0x180
[  112.336880][ T8814]  ? kmsan_set_origin_checked+0x95/0xf0
[  112.342416][ T8814]  __dev_queue_xmit+0x23b7/0x3b20
[  112.347439][ T8814]  dev_queue_xmit+0x4b/0x60
[  112.351924][ T8814]  ip_finish_output2+0x20fd/0x2610
[  112.357018][ T8814]  ? __msan_metadata_ptr_for_load_2+0x10/0x20
[  112.363079][ T8814]  ? nf_ct_deliver_cached_events+0x511/0x6c0
[  112.369058][ T8814]  __ip_finish_output+0xaa7/0xd80
[  112.374083][ T8814]  ip_finish_output+0x166/0x410
[  112.378943][ T8814]  ip_output+0x593/0x680
[  112.383206][ T8814]  ? ip_mc_finish_output+0x6c0/0x6c0
[  112.388488][ T8814]  ? ip_finish_output+0x410/0x410
[  112.393494][ T8814]  __ip_queue_xmit+0x1b5c/0x21a0
[  112.398419][ T8814]  ? kmsan_set_origin_checked+0x95/0xf0
[  112.404089][ T8814]  ? kmsan_get_metadata+0x11d/0x180
[  112.409286][ T8814]  ? kmsan_get_metadata+0x11d/0x180
[  112.414476][ T8814]  ip_queue_xmit+0xcc/0xf0
[  112.418880][ T8814]  ? tcp_v4_fill_cb+0x580/0x580
[  112.423814][ T8814]  __tcp_transmit_skb+0x4221/0x6090
[  112.429037][ T8814]  tcp_write_xmit+0x30e1/0xb470
[  112.433885][ T8814]  ? __msan_metadata_ptr_for_load_1+0x10/0x20
[  112.439957][ T8814]  __tcp_push_pending_frames+0x124/0x4e0
[  112.445579][ T8814]  tcp_push+0x6fa/0x8a0
[  112.449726][ T8814]  tcp_sendmsg_locked+0x5d89/0x6d00
[  112.454946][ T8814]  tcp_sendmsg+0xb2/0x100
[  112.459262][ T8814]  ? tcp_sendmsg_locked+0x6d00/0x6d00
[  112.464618][ T8814]  ? tcp_sendmsg_locked+0x6d00/0x6d00
[  112.469968][ T8814]  inet_sendmsg+0x178/0x2e0
[  112.474454][ T8814]  ? inet_send_prepare+0x600/0x600
[  112.479544][ T8814]  ? inet_send_prepare+0x600/0x600
[  112.484636][ T8814]  sock_write_iter+0x606/0x6d0
[  112.489390][ T8814]  ? sock_read_iter+0x700/0x700
[  112.494222][ T8814]  __vfs_write+0xa5a/0xca0
[  112.498637][ T8814]  vfs_write+0x444/0x8e0
[  112.502866][ T8814]  ksys_write+0x267/0x450
[  112.507186][ T8814]  __se_sys_write+0x92/0xb0
[  112.511672][ T8814]  __x64_sys_write+0x4a/0x70
[  112.516242][ T8814]  do_syscall_64+0xb8/0x160
[  112.520738][ T8814]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  112.526628][ T8814] RIP: 0033:0x7f155876b970
[  112.531032][ T8814] Code: 73 01 c3 48 8b 0d 28 d5 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d 99 2d 2c 00 00 75 10 b8 01 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 7e 9b 01 00 48 89 04 24
[  112.550616][ T8814] RSP: 002b:00007ffc12f70e38 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  112.559006][ T8814] RAX: ffffffffffffffda RBX: 0000000000000034 RCX: 00007f155876b970
[  112.566959][ T8814] RDX: 0000000000000034 RSI: 000055fc293bc0a4 RDI: 0000000000000003
[  112.574909][ T8814] RBP: 000055fc293ad0b0 R08: 00007ffc12fb4080 R09: 0000000000000070
[  112.582874][ T8814] R10: 000000000000006f R11: 0000000000000246 R12: 0000000000000001
[  112.590828][ T8814] R13: 00007ffc12f70ecf R14: 000055fc27f2fbe7 R15: 0000000000000003
[  112.600051][ T8814] Kernel Offset: 0x2be00000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff)
[  112.611656][ T8814] Rebooting in 86400 seconds..