[ 552.424996][ T3073] hsr_slave_0: left promiscuous mode [ 552.442003][ T3073] hsr_slave_1: left promiscuous mode [ 552.451164][ T3073] bridge_slave_1: left allmulticast mode [ 552.457295][ T3073] bridge_slave_1: left promiscuous mode [ 552.463874][ T3073] bridge0: port 2(bridge_slave_1) entered disabled state [ 552.486389][ T3073] bridge_slave_0: left allmulticast mode [ 552.492272][ T3073] bridge_slave_0: left promiscuous mode [ 552.498997][ T3073] bridge0: port 1(bridge_slave_0) entered disabled state [ 552.866339][ T3073] team0 (unregistering): Port device team_slave_1 removed [ 552.910066][ T3073] team0 (unregistering): Port device team_slave_0 removed [ 552.940789][ T3073] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 552.977391][ T3073] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 553.208767][ T3073] bond0 (unregistering): Released all slaves Warning: Permanently added '10.128.1.0' (ECDSA) to the list of known hosts. [ 558.653752][T11288] nr0: entered promiscuous mode [ 558.729788][T11287] ===================================================== [ 558.737195][T11287] BUG: KMSAN: uninit-value in llc_rcv+0x119e/0x1540 [ 558.744085][T11287] llc_rcv+0x119e/0x1540 [ 558.748508][T11287] __netif_receive_skb+0x1b8/0x5e0 [ 558.754079][T11287] netif_receive_skb+0x68/0x680 [ 558.759130][T11287] tun_rx_batched+0x837/0x930 [ 558.764221][T11287] tun_get_user+0x591d/0x7070 [ 558.769445][T11287] tun_chr_write_iter+0x3af/0x5d0 [ 558.774744][T11287] vfs_write+0x834/0x1580 [ 558.779396][T11287] ksys_write+0x21f/0x4f0 [ 558.784040][T11287] __x64_sys_write+0x93/0xd0 [ 558.788798][T11287] do_syscall_64+0x41/0xc0 [ 558.793485][T11287] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 558.799609][T11287] [ 558.802022][T11287] Uninit was created at: [ 558.806640][T11287] slab_post_alloc_hook+0x12d/0xb60 [ 558.812397][T11287] kmem_cache_alloc_node+0x543/0xab0 [ 558.818017][T11287] kmalloc_reserve+0x148/0x470 [ 558.824646][T11287] __alloc_skb+0x3a7/0x850 [ 558.829261][T11287] alloc_skb_with_frags+0xbd/0xbb0 [ 558.834621][T11287] sock_alloc_send_pskb+0xaad/0xc30 [ 558.840002][T11287] tun_get_user+0x2167/0x7070 [ 558.844927][T11287] tun_chr_write_iter+0x3af/0x5d0 [ 558.850132][T11287] vfs_write+0x834/0x1580 [ 558.854780][T11287] ksys_write+0x21f/0x4f0 [ 558.859320][T11287] __x64_sys_write+0x93/0xd0 [ 558.864131][T11287] do_syscall_64+0x41/0xc0 [ 558.868738][T11287] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 558.874868][T11287] [ 558.877282][T11287] CPU: 0 PID: 11287 Comm: syz-executor290 Not tainted 6.3.0-rc7-syzkaller-00014-g0255004d2a8e #0 [ 558.888293][T11287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023 [ 558.899002][T11287] ===================================================== [ 558.906498][T11287] Disabling lock debugging due to kernel taint [ 558.912835][T11287] Kernel panic - not syncing: kmsan.panic set ... [ 558.919357][T11287] CPU: 0 PID: 11287 Comm: syz-executor290 Tainted: G B 6.3.0-rc7-syzkaller-00014-g0255004d2a8e #0 [ 558.931770][T11287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023 [ 558.941958][T11287] Call Trace: [ 558.945334][T11287] [ 558.948395][T11287] dump_stack_lvl+0x1cc/0x260 [ 558.953377][T11287] dump_stack+0x1e/0x20 [ 558.957729][T11287] panic+0x4e2/0xc70 [ 558.961891][T11287] ? add_taint+0x108/0x1a0 [ 558.966486][T11287] kmsan_report+0x2d0/0x2d0 [ 558.971164][T11287] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 558.979235][T11287] ? __msan_warning+0x96/0x110 [ 558.984243][T11287] ? llc_rcv+0x119e/0x1540 [ 558.988844][T11287] ? __netif_receive_skb+0x1b8/0x5e0 [ 558.994289][T11287] ? netif_receive_skb+0x68/0x680 [ 558.999778][T11287] ? tun_rx_batched+0x837/0x930 [ 559.004949][T11287] ? tun_get_user+0x591d/0x7070 [ 559.009985][T11287] ? tun_chr_write_iter+0x3af/0x5d0 [ 559.015368][T11287] ? vfs_write+0x834/0x1580 [ 559.020129][T11287] ? ksys_write+0x21f/0x4f0 [ 559.024878][T11287] ? __x64_sys_write+0x93/0xd0 [ 559.030787][T11287] ? do_syscall_64+0x41/0xc0 [ 559.035583][T11287] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 559.041927][T11287] ? kmsan_internal_memmove_metadata+0x9a/0x360 [ 559.048501][T11287] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 559.054682][T11287] ? __pskb_pull_tail+0x1d08/0x2320 [ 559.060157][T11287] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 559.066571][T11287] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 559.072584][T11287] __msan_warning+0x96/0x110 [ 559.077349][T11287] llc_rcv+0x119e/0x1540 [ 559.082058][T11287] __netif_receive_skb+0x1b8/0x5e0 [ 559.087437][T11287] ? llc_set_station_handler+0x70/0x70 [ 559.093181][T11287] netif_receive_skb+0x68/0x680 [ 559.098424][T11287] tun_rx_batched+0x837/0x930 [ 559.103491][T11287] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 559.109759][T11287] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 559.115961][T11287] tun_get_user+0x591d/0x7070 [ 559.120984][T11287] ? vfs_write+0x530/0x1580 [ 559.125710][T11287] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 559.131712][T11287] tun_chr_write_iter+0x3af/0x5d0 [ 559.137476][T11287] ? tun_chr_read_iter+0x670/0x670 [ 559.142781][T11287] vfs_write+0x834/0x1580 [ 559.147400][T11287] ksys_write+0x21f/0x4f0 [ 559.151908][T11287] __x64_sys_write+0x93/0xd0 [ 559.156760][T11287] do_syscall_64+0x41/0xc0 [ 559.161453][T11287] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 559.167793][T11287] RIP: 0033:0x7f1dbd7b8299 [ 559.172508][T11287] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c4 ff ff ff f7 d8 64 89 01 48 [ 559.193025][T11287] RSP: 002b:00007fff6a915208 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 559.201608][T11287] RAX: ffffffffffffffda RBX: 00007fff6a915240 RCX: 00007f1dbd7b8299 [ 559.209719][T11287] RDX: 000000000000fdef RSI: 00000000200000c0 RDI: 0000000000000003 [ 559.217829][T11287] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 559.226129][T11287] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000000f4240 [ 559.234538][T11287] R13: 0000000000000000 R14: 00007fff6a91522c R15: 00007fff6a915230 [ 559.242718][T11287] [ 559.246344][T11287] Kernel Offset: disabled [ 559.250784][T11287] Rebooting in 86400 seconds..