[ 99.750093][ T4609] 8021q: adding VLAN 0 to HW filter on device bond0 [ 99.766602][ T4609] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller syzkaller login: [ 105.376171][ T1442] cfg80211: failed to load regulatory.db [ 155.377202][ T4953] can: request_module (can-proto-0) failed. [ 155.458009][ T4953] can: request_module (can-proto-0) failed. Warning: Permanently added '10.128.0.89' (ECDSA) to the list of known hosts. 2023/05/12 22:34:01 parsed 1 programs 2023/05/12 22:34:07 executed programs: 0 [ 197.289186][ T5022] chnl_net:caif_netlink_parms(): no params data found [ 197.385717][ T5022] bridge0: port 1(bridge_slave_0) entered blocking state [ 197.393121][ T5022] bridge0: port 1(bridge_slave_0) entered disabled state [ 197.400866][ T5022] bridge_slave_0: entered allmulticast mode [ 197.408756][ T5022] bridge_slave_0: entered promiscuous mode [ 197.420715][ T5022] bridge0: port 2(bridge_slave_1) entered blocking state [ 197.428303][ T5022] bridge0: port 2(bridge_slave_1) entered disabled state [ 197.436372][ T5022] bridge_slave_1: entered allmulticast mode [ 197.444830][ T5022] bridge_slave_1: entered promiscuous mode [ 197.500667][ T5022] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 197.517708][ T5022] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 197.573423][ T5022] team0: Port device team_slave_0 added [ 197.586477][ T5022] team0: Port device team_slave_1 added [ 197.648226][ T5022] hsr_slave_0: entered promiscuous mode [ 197.656608][ T5022] hsr_slave_1: entered promiscuous mode [ 197.697948][ T5022] bridge0: port 2(bridge_slave_1) entered blocking state [ 197.705703][ T5022] bridge0: port 2(bridge_slave_1) entered forwarding state [ 197.714149][ T5022] bridge0: port 1(bridge_slave_0) entered blocking state [ 197.721616][ T5022] bridge0: port 1(bridge_slave_0) entered forwarding state [ 197.865942][ T5022] 8021q: adding VLAN 0 to HW filter on device bond0 [ 197.891686][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 197.905180][ T9] bridge0: port 1(bridge_slave_0) entered disabled state [ 197.915976][ T9] bridge0: port 2(bridge_slave_1) entered disabled state [ 197.928844][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 197.951806][ T5022] 8021q: adding VLAN 0 to HW filter on device team0 [ 197.972307][ T4686] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 197.982894][ T4686] bridge0: port 1(bridge_slave_0) entered blocking state [ 197.990632][ T4686] bridge0: port 1(bridge_slave_0) entered forwarding state [ 198.011240][ T4686] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 198.022508][ T4686] bridge0: port 2(bridge_slave_1) entered blocking state [ 198.030152][ T4686] bridge0: port 2(bridge_slave_1) entered forwarding state [ 198.076982][ T4686] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 198.089324][ T4686] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 198.120154][ T4686] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 198.131122][ T4686] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 198.155496][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 198.172346][ T5022] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 198.232416][ T5022] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 198.607622][ T5032] ===================================================== [ 198.615144][ T5032] BUG: KMSAN: uninit-value in hsr_get_node+0xa2e/0xa40 [ 198.622245][ T5032] hsr_get_node+0xa2e/0xa40 [ 198.627025][ T5032] hsr_forward_skb+0x328/0x30f0 [ 198.632069][ T5032] hsr_dev_xmit+0x192/0x330 [ 198.636830][ T5032] dev_hard_start_xmit+0x247/0xa10 [ 198.642086][ T5032] __dev_queue_xmit+0x34eb/0x50f0 [ 198.647318][ T5032] packet_xmit+0x9c/0x6b0 [ 198.651769][ T5032] packet_sendmsg+0x8a5d/0x9de0 [ 198.656862][ T5032] __sys_sendto+0x76c/0xa10 [ 198.661515][ T5032] __x64_sys_sendto+0x125/0x1c0 [ 198.666591][ T5032] do_syscall_64+0x41/0xc0 [ 198.671160][ T5032] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 198.677264][ T5032] [ 198.679647][ T5032] Uninit was created at: [ 198.684230][ T5032] slab_post_alloc_hook+0x12d/0xb60 [ 198.689570][ T5032] kmem_cache_alloc_node+0x535/0xa30 [ 198.695147][ T5032] kmalloc_reserve+0x148/0x470 [ 198.700097][ T5032] __alloc_skb+0x318/0x740 [ 198.704764][ T5032] alloc_skb_with_frags+0xbd/0xbb0 [ 198.710035][ T5032] sock_alloc_send_pskb+0xa80/0xbf0 [ 198.715444][ T5032] packet_sendmsg+0x6fc2/0x9de0 [ 198.720506][ T5032] __sys_sendto+0x76c/0xa10 [ 198.725229][ T5032] __x64_sys_sendto+0x125/0x1c0 [ 198.730231][ T5032] do_syscall_64+0x41/0xc0 [ 198.734863][ T5032] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 198.740918][ T5032] [ 198.743345][ T5032] CPU: 1 PID: 5032 Comm: syz-executor.0 Not tainted 6.4.0-rc1-syzkaller-00004-g46e8b6e7cfeb #0 [ 198.753980][ T5032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/28/2023 [ 198.764209][ T5032] ===================================================== [ 198.771226][ T5032] Disabling lock debugging due to kernel taint [ 198.777582][ T5032] Kernel panic - not syncing: kmsan.panic set ... [ 198.784110][ T5032] CPU: 1 PID: 5032 Comm: syz-executor.0 Tainted: G B 6.4.0-rc1-syzkaller-00004-g46e8b6e7cfeb #0 [ 198.797198][ T5032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/28/2023 [ 198.807705][ T5032] Call Trace: [ 198.811060][ T5032] [ 198.814068][ T5032] dump_stack_lvl+0x1bf/0x240 [ 198.818913][ T5032] dump_stack+0x1e/0x20 [ 198.823389][ T5032] panic+0x4d5/0xc70 [ 198.827549][ T5032] ? add_taint+0x108/0x1a0 [ 198.832118][ T5032] kmsan_report+0x2d0/0x2d0 [ 198.836889][ T5032] ? _raw_spin_unlock_irqrestore+0x3f/0x60 [ 198.842846][ T5032] ? __msan_warning+0x96/0x110 [ 198.847769][ T5032] ? hsr_get_node+0xa2e/0xa40 [ 198.852690][ T5032] ? hsr_forward_skb+0x328/0x30f0 [ 198.857895][ T5032] ? hsr_dev_xmit+0x192/0x330 [ 198.862726][ T5032] ? dev_hard_start_xmit+0x247/0xa10 [ 198.868145][ T5032] ? __dev_queue_xmit+0x34eb/0x50f0 [ 198.873475][ T5032] ? packet_xmit+0x9c/0x6b0 [ 198.878100][ T5032] ? packet_sendmsg+0x8a5d/0x9de0 [ 198.883278][ T5032] ? __sys_sendto+0x76c/0xa10 [ 198.888111][ T5032] ? __x64_sys_sendto+0x125/0x1c0 [ 198.893297][ T5032] ? do_syscall_64+0x41/0xc0 [ 198.898030][ T5032] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 198.904245][ T5032] ? kmsan_internal_poison_memory+0x49/0xa0 [ 198.910302][ T5032] ? kmsan_slab_alloc+0xdd/0x150 [ 198.915392][ T5032] ? slab_post_alloc_hook+0x12d/0xb60 [ 198.920912][ T5032] ? kmem_cache_alloc_node+0x535/0xa30 [ 198.926504][ T5032] ? kmalloc_reserve+0x148/0x470 [ 198.931597][ T5032] ? __alloc_skb+0x318/0x740 [ 198.936357][ T5032] ? alloc_skb_with_frags+0xbd/0xbb0 [ 198.941803][ T5032] ? sock_alloc_send_pskb+0xa80/0xbf0 [ 198.947329][ T5032] ? packet_sendmsg+0x6fc2/0x9de0 [ 198.952483][ T5032] ? __sys_sendto+0x76c/0xa10 [ 198.957401][ T5032] ? __x64_sys_sendto+0x125/0x1c0 [ 198.962596][ T5032] ? do_syscall_64+0x41/0xc0 [ 198.967398][ T5032] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 198.973713][ T5032] ? kmsan_internal_poison_memory+0x49/0xa0 [ 198.979857][ T5032] ? kmsan_slab_alloc+0xdd/0x150 [ 198.984943][ T5032] ? slab_post_alloc_hook+0x12d/0xb60 [ 198.990471][ T5032] ? kmem_cache_alloc_node+0x535/0xa30 [ 198.996060][ T5032] ? __alloc_skb+0x1e5/0x740 [ 199.000883][ T5032] ? alloc_skb_with_frags+0xbd/0xbb0 [ 199.006332][ T5032] ? sock_alloc_send_pskb+0xa80/0xbf0 [ 199.011958][ T5032] ? packet_sendmsg+0x6fc2/0x9de0 [ 199.017142][ T5032] ? __sys_sendto+0x76c/0xa10 [ 199.022028][ T5032] ? __x64_sys_sendto+0x125/0x1c0 [ 199.027234][ T5032] ? do_syscall_64+0x41/0xc0 [ 199.031977][ T5032] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 199.038204][ T5032] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 199.044192][ T5032] ? hsr_forward_skb+0x43/0x30f0 [ 199.049305][ T5032] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 199.055318][ T5032] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 199.061292][ T5032] __msan_warning+0x96/0x110 [ 199.066125][ T5032] hsr_get_node+0xa2e/0xa40 [ 199.070889][ T5032] hsr_forward_skb+0x328/0x30f0 [ 199.075932][ T5032] hsr_dev_xmit+0x192/0x330 [ 199.080597][ T5032] ? is_hsr_master+0x90/0x90 [ 199.085612][ T5032] dev_hard_start_xmit+0x247/0xa10 [ 199.091156][ T5032] __dev_queue_xmit+0x34eb/0x50f0 [ 199.096434][ T5032] packet_xmit+0x9c/0x6b0 [ 199.100927][ T5032] packet_sendmsg+0x8a5d/0x9de0 [ 199.105910][ T5032] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 199.112079][ T5032] ? aa_label_sk_perm+0x64c/0x790 [ 199.117273][ T5032] ? filter_irq_stacks+0x60/0x1a0 [ 199.122558][ T5032] ? kmsan_internal_set_shadow_origin+0x66/0xe0 [ 199.129032][ T5032] ? packet_getsockopt+0xfb0/0xfb0 [ 199.134274][ T5032] __sys_sendto+0x76c/0xa10 [ 199.139064][ T5032] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 199.145072][ T5032] ? xfd_validate_state+0x89/0x210 [ 199.150407][ T5032] __x64_sys_sendto+0x125/0x1c0 [ 199.155463][ T5032] do_syscall_64+0x41/0xc0 [ 199.160027][ T5032] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 199.166152][ T5032] RIP: 0033:0x45f689 [ 199.170149][ T5032] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 199.190294][ T5032] RSP: 002b:00007f6d6f7091a8 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 199.199185][ T5032] RAX: ffffffffffffffda RBX: 000000000052bf00 RCX: 000000000045f689 [ 199.207445][ T5032] RDX: 000000000000000e RSI: 00000000200000c0 RDI: 0000000000000003 [ 199.215518][ T5032] RBP: 0000000000000006 R08: 0000000000000000 R09: 0000000000000000 [ 199.223601][ T5032] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 199.231779][ T5032] R13: 00000000004f1330 R14: 00000000004b0b28 R15: 00007f6d6f7096bc [ 199.239907][ T5032] [ 199.243194][ T5032] Kernel Offset: disabled [ 199.247644][ T5032] Rebooting in 86400 seconds..