Warning: Permanently added '10.128.0.234' (ECDSA) to the list of known hosts. executing program [ 114.857405][ T8457] ===================================================== [ 114.864392][ T8457] BUG: KMSAN: uninit-value in __skb_checksum_complete+0x37f/0x540 [ 114.872173][ T8457] CPU: 1 PID: 8457 Comm: syz-executor769 Not tainted 5.8.0-rc5-syzkaller #0 [ 114.880812][ T8457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 114.890839][ T8457] Call Trace: [ 114.894107][ T8457] dump_stack+0x1df/0x240 [ 114.898430][ T8457] kmsan_report+0xf7/0x1e0 [ 114.902833][ T8457] __msan_warning+0x58/0xa0 [ 114.907312][ T8457] __skb_checksum_complete+0x37f/0x540 [ 114.912750][ T8457] ? __skb_checksum+0x12a0/0x12a0 [ 114.917746][ T8457] ? csum_partial_ext+0xa0/0xa0 [ 114.922571][ T8457] nf_ip_checksum+0x53b/0x740 [ 114.927227][ T8457] nf_nat_icmp_reply_translation+0x2ba/0x980 [ 114.933190][ T8457] ? kmsan_get_metadata+0x4f/0x180 [ 114.938278][ T8457] nf_nat_ipv4_local_fn+0x215/0x830 [ 114.943455][ T8457] ? nf_nat_ipv4_out+0x780/0x780 [ 114.948368][ T8457] nf_hook_slow+0x16e/0x400 [ 114.952852][ T8457] __ip_local_out+0x69b/0x800 [ 114.957509][ T8457] ? __ip_local_out+0x800/0x800 [ 114.962334][ T8457] ip_push_pending_frames+0x16f/0x460 [ 114.967682][ T8457] icmp_push_reply+0x660/0x710 [ 114.972428][ T8457] __icmp_send+0x23ca/0x3150 [ 114.977014][ T8457] ? nf_ct_deliver_cached_events+0x403/0x6c0 [ 114.982974][ T8457] ? kmsan_get_metadata+0x11d/0x180 [ 114.988147][ T8457] ip_fragment+0x39f/0x400 [ 114.992608][ T8457] __ip_finish_output+0xd34/0xd80 [ 114.997613][ T8457] ip_finish_output+0x166/0x410 [ 115.002439][ T8457] ip_output+0x593/0x680 [ 115.006659][ T8457] ? ip_mc_finish_output+0x6c0/0x6c0 [ 115.011926][ T8457] ? ip_finish_output+0x410/0x410 [ 115.016925][ T8457] __ip_queue_xmit+0x1b5c/0x21a0 [ 115.021837][ T8457] ? kmsan_get_metadata+0x11d/0x180 [ 115.027009][ T8457] ? local_bh_enable+0x40/0x40 [ 115.031758][ T8457] ? kmsan_get_metadata+0x11d/0x180 [ 115.036943][ T8457] l2tp_ip_sendmsg+0x1477/0x1870 [ 115.041871][ T8457] ? kmsan_get_metadata+0x11d/0x180 [ 115.047048][ T8457] ? udp_cmsg_send+0x5d0/0x5d0 [ 115.051793][ T8457] ? l2tp_ip_destroy_sock+0x410/0x410 [ 115.057149][ T8457] inet_sendmsg+0x2d8/0x2e0 [ 115.061631][ T8457] ? inet_send_prepare+0x600/0x600 [ 115.066721][ T8457] kernel_sendmsg+0x384/0x440 [ 115.071373][ T8457] sock_no_sendpage+0x235/0x300 [ 115.076290][ T8457] ? sock_no_mmap+0x30/0x30 [ 115.080767][ T8457] sock_sendpage+0x1e1/0x2c0 [ 115.085509][ T8457] pipe_to_sendpage+0x38c/0x4c0 [ 115.090340][ T8457] ? sock_fasync+0x250/0x250 [ 115.094933][ T8457] __splice_from_pipe+0x565/0xf00 [ 115.099938][ T8457] ? generic_splice_sendpage+0x2d0/0x2d0 [ 115.105558][ T8457] generic_splice_sendpage+0x1d5/0x2d0 [ 115.111002][ T8457] ? iter_file_splice_write+0x1800/0x1800 [ 115.116700][ T8457] direct_splice_actor+0x1fd/0x580 [ 115.121789][ T8457] ? kmsan_get_metadata+0x4f/0x180 [ 115.126889][ T8457] splice_direct_to_actor+0x6b2/0xf50 [ 115.132240][ T8457] ? do_splice_direct+0x580/0x580 [ 115.137265][ T8457] do_splice_direct+0x342/0x580 [ 115.142095][ T8457] do_sendfile+0x101b/0x1d40 [ 115.146671][ T8457] __se_sys_sendfile64+0x2bb/0x360 [ 115.151765][ T8457] ? kmsan_get_metadata+0x4f/0x180 [ 115.156864][ T8457] __x64_sys_sendfile64+0x56/0x70 [ 115.161862][ T8457] do_syscall_64+0xb0/0x150 [ 115.166339][ T8457] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 115.172203][ T8457] RIP: 0033:0x440409 [ 115.176064][ T8457] Code: Bad RIP value. [ 115.180099][ T8457] RSP: 002b:00007ffe9c5d76d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 115.188495][ T8457] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 0000000000440409 [ 115.196452][ T8457] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000003 [ 115.204401][ T8457] RBP: 00000000006cb018 R08: 0000000000000014 R09: 65732f636f72702f [ 115.212349][ T8457] R10: 0800000080004103 R11: 0000000000000246 R12: 0000000000401c70 [ 115.220294][ T8457] R13: 0000000000401d00 R14: 0000000000000000 R15: 0000000000000000 [ 115.228245][ T8457] [ 115.230604][ T8457] Uninit was stored to memory at: [ 115.235607][ T8457] kmsan_internal_chain_origin+0xad/0x130 [ 115.241297][ T8457] kmsan_memcpy_memmove_metadata+0x272/0x2e0 [ 115.247246][ T8457] kmsan_memcpy_metadata+0xb/0x10 [ 115.252241][ T8457] __msan_memcpy+0x43/0x50 [ 115.256630][ T8457] csum_partial_copy+0xae/0x100 [ 115.261579][ T8457] skb_copy_and_csum_bits+0x227/0x1130 [ 115.267012][ T8457] icmp_glue_bits+0x166/0x380 [ 115.271666][ T8457] __ip_append_data+0x47c4/0x5630 [ 115.276673][ T8457] ip_append_data+0x328/0x480 [ 115.281336][ T8457] icmp_push_reply+0x206/0x710 [ 115.286083][ T8457] __icmp_send+0x23ca/0x3150 [ 115.290642][ T8457] ip_fragment+0x39f/0x400 [ 115.295031][ T8457] __ip_finish_output+0xd34/0xd80 [ 115.300025][ T8457] ip_finish_output+0x166/0x410 [ 115.304844][ T8457] ip_output+0x593/0x680 [ 115.309055][ T8457] __ip_queue_xmit+0x1b5c/0x21a0 [ 115.313966][ T8457] l2tp_ip_sendmsg+0x1477/0x1870 [ 115.318876][ T8457] inet_sendmsg+0x2d8/0x2e0 [ 115.323349][ T8457] kernel_sendmsg+0x384/0x440 [ 115.327995][ T8457] sock_no_sendpage+0x235/0x300 [ 115.332819][ T8457] sock_sendpage+0x1e1/0x2c0 [ 115.337380][ T8457] pipe_to_sendpage+0x38c/0x4c0 [ 115.342201][ T8457] __splice_from_pipe+0x565/0xf00 [ 115.347197][ T8457] generic_splice_sendpage+0x1d5/0x2d0 [ 115.352630][ T8457] direct_splice_actor+0x1fd/0x580 [ 115.357725][ T8457] splice_direct_to_actor+0x6b2/0xf50 [ 115.363078][ T8457] do_splice_direct+0x342/0x580 [ 115.367908][ T8457] do_sendfile+0x101b/0x1d40 [ 115.372482][ T8457] __se_sys_sendfile64+0x2bb/0x360 [ 115.377570][ T8457] __x64_sys_sendfile64+0x56/0x70 [ 115.382572][ T8457] do_syscall_64+0xb0/0x150 [ 115.387054][ T8457] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 115.392933][ T8457] [ 115.395235][ T8457] Uninit was stored to memory at: [ 115.400234][ T8457] kmsan_internal_chain_origin+0xad/0x130 [ 115.405923][ T8457] kmsan_memcpy_memmove_metadata+0x272/0x2e0 [ 115.411880][ T8457] kmsan_memcpy_metadata+0xb/0x10 [ 115.416888][ T8457] __msan_memcpy+0x43/0x50 [ 115.421277][ T8457] _copy_from_iter_full+0xbfe/0x13b0 [ 115.426532][ T8457] l2tp_ip_sendmsg+0x6a5/0x1870 [ 115.431354][ T8457] inet_sendmsg+0x2d8/0x2e0 [ 115.435830][ T8457] kernel_sendmsg+0x384/0x440 [ 115.440479][ T8457] sock_no_sendpage+0x235/0x300 [ 115.445300][ T8457] sock_sendpage+0x1e1/0x2c0 [ 115.449863][ T8457] pipe_to_sendpage+0x38c/0x4c0 [ 115.454689][ T8457] __splice_from_pipe+0x565/0xf00 [ 115.459685][ T8457] generic_splice_sendpage+0x1d5/0x2d0 [ 115.465114][ T8457] direct_splice_actor+0x1fd/0x580 [ 115.470197][ T8457] splice_direct_to_actor+0x6b2/0xf50 [ 115.475540][ T8457] do_splice_direct+0x342/0x580 [ 115.480361][ T8457] do_sendfile+0x101b/0x1d40 [ 115.484931][ T8457] __se_sys_sendfile64+0x2bb/0x360 [ 115.490013][ T8457] __x64_sys_sendfile64+0x56/0x70 [ 115.495012][ T8457] do_syscall_64+0xb0/0x150 [ 115.499492][ T8457] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 115.505348][ T8457] [ 115.507646][ T8457] Uninit was created at: [ 115.511951][ T8457] kmsan_save_stack_with_flags+0x3c/0x90 [ 115.517554][ T8457] kmsan_alloc_page+0xb9/0x180 [ 115.522287][ T8457] __alloc_pages_nodemask+0x56a2/0x5dc0 [ 115.527802][ T8457] alloc_pages_current+0x672/0x990 [ 115.532900][ T8457] push_pipe+0x605/0xb70 [ 115.537125][ T8457] iov_iter_get_pages_alloc+0x18a9/0x21c0 [ 115.542813][ T8457] do_splice_to+0x4fc/0x14f0 [ 115.547374][ T8457] splice_direct_to_actor+0x45c/0xf50 [ 115.552719][ T8457] do_splice_direct+0x342/0x580 [ 115.557540][ T8457] do_sendfile+0x101b/0x1d40 [ 115.562100][ T8457] __se_sys_sendfile64+0x2bb/0x360 [ 115.567180][ T8457] __x64_sys_sendfile64+0x56/0x70 [ 115.572180][ T8457] do_syscall_64+0xb0/0x150 [ 115.576658][ T8457] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 115.582515][ T8457] ===================================================== [ 115.589414][ T8457] Disabling lock debugging due to kernel taint [ 115.595535][ T8457] Kernel panic - not syncing: panic_on_warn set ... [ 115.602094][ T8457] CPU: 1 PID: 8457 Comm: syz-executor769 Tainted: G B 5.8.0-rc5-syzkaller #0 [ 115.612121][ T8457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 115.622149][ T8457] Call Trace: [ 115.625416][ T8457] dump_stack+0x1df/0x240 [ 115.629722][ T8457] panic+0x3d5/0xc3e [ 115.633630][ T8457] kmsan_report+0x1df/0x1e0 [ 115.638109][ T8457] __msan_warning+0x58/0xa0 [ 115.642590][ T8457] __skb_checksum_complete+0x37f/0x540 [ 115.648022][ T8457] ? __skb_checksum+0x12a0/0x12a0 [ 115.653020][ T8457] ? csum_partial_ext+0xa0/0xa0 [ 115.657846][ T8457] nf_ip_checksum+0x53b/0x740 [ 115.662509][ T8457] nf_nat_icmp_reply_translation+0x2ba/0x980 [ 115.668487][ T8457] ? kmsan_get_metadata+0x4f/0x180 [ 115.673575][ T8457] nf_nat_ipv4_local_fn+0x215/0x830 [ 115.678855][ T8457] ? nf_nat_ipv4_out+0x780/0x780 [ 115.683776][ T8457] nf_hook_slow+0x16e/0x400 [ 115.688263][ T8457] __ip_local_out+0x69b/0x800 [ 115.692917][ T8457] ? __ip_local_out+0x800/0x800 [ 115.697742][ T8457] ip_push_pending_frames+0x16f/0x460 [ 115.703088][ T8457] icmp_push_reply+0x660/0x710 [ 115.707833][ T8457] __icmp_send+0x23ca/0x3150 [ 115.712418][ T8457] ? nf_ct_deliver_cached_events+0x403/0x6c0 [ 115.718386][ T8457] ? kmsan_get_metadata+0x11d/0x180 [ 115.723557][ T8457] ip_fragment+0x39f/0x400 [ 115.727950][ T8457] __ip_finish_output+0xd34/0xd80 [ 115.732955][ T8457] ip_finish_output+0x166/0x410 [ 115.737781][ T8457] ip_output+0x593/0x680 [ 115.742012][ T8457] ? ip_mc_finish_output+0x6c0/0x6c0 [ 115.747270][ T8457] ? ip_finish_output+0x410/0x410 [ 115.752273][ T8457] __ip_queue_xmit+0x1b5c/0x21a0 [ 115.757186][ T8457] ? kmsan_get_metadata+0x11d/0x180 [ 115.762357][ T8457] ? local_bh_enable+0x40/0x40 [ 115.767093][ T8457] ? kmsan_get_metadata+0x11d/0x180 [ 115.772270][ T8457] l2tp_ip_sendmsg+0x1477/0x1870 [ 115.777185][ T8457] ? kmsan_get_metadata+0x11d/0x180 [ 115.782365][ T8457] ? udp_cmsg_send+0x5d0/0x5d0 [ 115.787102][ T8457] ? l2tp_ip_destroy_sock+0x410/0x410 [ 115.792448][ T8457] inet_sendmsg+0x2d8/0x2e0 [ 115.796930][ T8457] ? inet_send_prepare+0x600/0x600 [ 115.802018][ T8457] kernel_sendmsg+0x384/0x440 [ 115.806672][ T8457] sock_no_sendpage+0x235/0x300 [ 115.811500][ T8457] ? sock_no_mmap+0x30/0x30 [ 115.815978][ T8457] sock_sendpage+0x1e1/0x2c0 [ 115.820547][ T8457] pipe_to_sendpage+0x38c/0x4c0 [ 115.825369][ T8457] ? sock_fasync+0x250/0x250 [ 115.829950][ T8457] __splice_from_pipe+0x565/0xf00 [ 115.834967][ T8457] ? generic_splice_sendpage+0x2d0/0x2d0 [ 115.840594][ T8457] generic_splice_sendpage+0x1d5/0x2d0 [ 115.846039][ T8457] ? iter_file_splice_write+0x1800/0x1800 [ 115.851742][ T8457] direct_splice_actor+0x1fd/0x580 [ 115.856859][ T8457] ? kmsan_get_metadata+0x4f/0x180 [ 115.861946][ T8457] splice_direct_to_actor+0x6b2/0xf50 [ 115.867290][ T8457] ? do_splice_direct+0x580/0x580 [ 115.872298][ T8457] do_splice_direct+0x342/0x580 [ 115.877130][ T8457] do_sendfile+0x101b/0x1d40 [ 115.881705][ T8457] __se_sys_sendfile64+0x2bb/0x360 [ 115.886789][ T8457] ? kmsan_get_metadata+0x4f/0x180 [ 115.891887][ T8457] __x64_sys_sendfile64+0x56/0x70 [ 115.896895][ T8457] do_syscall_64+0xb0/0x150 [ 115.901383][ T8457] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 115.907249][ T8457] RIP: 0033:0x440409 [ 115.911200][ T8457] Code: Bad RIP value. [ 115.915238][ T8457] RSP: 002b:00007ffe9c5d76d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 115.923630][ T8457] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 0000000000440409 [ 115.931572][ T8457] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000003 [ 115.939516][ T8457] RBP: 00000000006cb018 R08: 0000000000000014 R09: 65732f636f72702f [ 115.947459][ T8457] R10: 0800000080004103 R11: 0000000000000246 R12: 0000000000401c70 [ 115.955405][ T8457] R13: 0000000000401d00 R14: 0000000000000000 R15: 0000000000000000 [ 115.964561][ T8457] Kernel Offset: 0x2c000000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff) [ 115.976169][ T8457] Rebooting in 86400 seconds..