pkg/report/testdata/linux/report/219 - platform/external/syzkaller - Git at Google

 TITLE: KMSAN: use of uninitialized memory in rt6_mtu_change_route

 [   69.998746] ==================================================================
 [   70.006190] BUG: KMSAN: use of uninitialized memory in rt6_mtu_change_route+0x4d8/0xa70
 [   70.014351] CPU: 0 PID: 8319 Comm: syz-executor7 Not tainted 4.16.0-rc4+ #63
 [   70.021546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 [   70.030902] Call Trace:
 [   70.033502]  dump_stack+0x185/0x1d0
 [   70.037132]  ? rt6_mtu_change_route+0x4d8/0xa70
 [   70.041807]  kmsan_report+0x142/0x1f0
 [   70.045615]  __msan_warning_32+0x6c/0xb0
 [   70.049682]  rt6_mtu_change_route+0x4d8/0xa70
 [   70.054356]  ? fib6_walk_continue+0x9a1/0xbb0
 [   70.058860]  ? rt6_mtu_change+0x120/0x120
 [   70.063015]  fib6_clean_node+0x319/0x6b0
 [   70.067083]  ? node_free_rcu+0x70/0x70
 [   70.070974]  fib6_walk_continue+0x9a1/0xbb0
 [   70.075305]  __fib6_clean_all+0x501/0x810
 [   70.079457]  ? rt6_mtu_change+0x120/0x120
 [   70.083613]  ? node_free_rcu+0x70/0x70
 [   70.087596]  ? rt6_mtu_change+0x120/0x120
 [   70.091761]  fib6_clean_all+0x90/0xa0
 [   70.095567]  ? rt6_mtu_change+0x120/0x120
 [   70.099734]  rt6_mtu_change+0xd2/0x120
 [   70.103648]  addrconf_notify+0xb59/0x5020
 [   70.107799]  ? tun_device_event+0x53/0x1e70
 [   70.112136]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
 [   70.117510]  ? tun_device_event+0x2e5/0x1e70
 [   70.121924]  ? __msan_poison_alloca+0x15c/0x1d0
 [   70.126593]  ? raw_notifier_call_chain+0x13b/0x250
 [   70.131533]  ? cfg80211_netdev_notifier_call+0x73/0x2880
 [   70.136984]  ? raw_notifier_call_chain+0x13b/0x250
 [   70.141919]  ? raw_notifier_call_chain+0x13b/0x250
 [   70.146849]  ? sel_netif_netdev_notifier_handler+0x3d/0x5b0
 [   70.152570]  ? dev_forward_change+0xbe0/0xbe0
 [   70.157074]  raw_notifier_call_chain+0x13b/0x250
 [   70.161835]  dev_set_mtu+0xa0e/0xea0
 [   70.165554]  dev_ifsioc+0x3a9/0x10d0
 [   70.169271]  ? _cond_resched+0x3c/0xd0
 [   70.173938]  dev_ioctl+0x876/0x1490
 [   70.177572]  sock_do_ioctl+0x43a/0x6b0
 [   70.181461]  sock_ioctl+0x4e0/0xbf0
 [   70.185091]  ? SYSC_ioctl+0x1d9/0x260
 [   70.188894]  ? sock_poll+0x370/0x370
 [   70.192610]  do_vfs_ioctl+0xc6d/0x2440
 [   70.196508]  SYSC_ioctl+0x1d9/0x260
 [   70.200140]  SyS_ioctl+0x54/0x80
 [   70.203508]  do_syscall_64+0x2f1/0x450
 [   70.207395]  ? ioctl_file_clone+0x510/0x510
 [   70.211720]  entry_SYSCALL_64_after_hwframe+0x3d/0xa2
 [   70.216904] RIP: 0033:0x454239
 [   70.220088] RSP: 002b:00007fac6f2d2c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
 [   70.227799] RAX: ffffffffffffffda RBX: 00007fac6f2d36d4 RCX: 0000000000454239
 [   70.235066] RDX: 0000000020000100 RSI: 0000000000008922 RDI: 0000000000000013
 [   70.242328] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
 [   70.249586] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
 [   70.256846] R13: 0000000000000379 R14: 00000000006f63f8 R15: 0000000000000000
 [   70.264109] chained origin:
 [   70.267045]  kmsan_internal_chain_origin+0x12d/0x210
 [   70.272144]  __msan_chain_origin+0x69/0xc0
 [   70.276383]  ip6_convert_metrics+0x715/0xa00
 [   70.280787]  ip6_route_add+0x13c/0x300
 [   70.284652]  inet6_rtm_newroute+0x1481/0x2520
 [   70.289127]  rtnetlink_rcv_msg+0xa4b/0x15d0
 [   70.293428]  netlink_rcv_skb+0x355/0x5f0
 [   70.297480]  rtnetlink_rcv+0x50/0x60
 [   70.301183]  netlink_unicast+0x1656/0x1730
 [   70.305396]  netlink_sendmsg+0x1048/0x1310
 [   70.309626]  ___sys_sendmsg+0xed5/0x1330
 [   70.313669]  SYSC_sendmsg+0x2a6/0x3d0
 [   70.317454]  SyS_sendmsg+0x54/0x80
 [   70.320973]  do_syscall_64+0x2f1/0x450
 [   70.324839]  entry_SYSCALL_64_after_hwframe+0x3d/0xa2
 [   70.329998] origin:
 [   70.332221]  kmsan_internal_poison_shadow+0xb8/0x1b0
 [   70.337315]  kmsan_kmalloc+0x94/0x100
 [   70.341115]  kmsan_slab_alloc+0x11/0x20
 [   70.345074]  __kmalloc_node_track_caller+0xa7a/0x1290
 [   70.350248]  __alloc_skb+0x2e3/0xa20
 [   70.353952]  netlink_sendmsg+0x9a6/0x1310
 [   70.358093]  ___sys_sendmsg+0xed5/0x1330
 [   70.362133]  SYSC_sendmsg+0x2a6/0x3d0
 [   70.365919]  SyS_sendmsg+0x54/0x80
 [   70.369450]  do_syscall_64+0x2f1/0x450
 [   70.373327]  entry_SYSCALL_64_after_hwframe+0x3d/0xa2
 [   70.378488] ==================================================================
	TITLE: KMSAN: use of uninitialized memory in rt6_mtu_change_route

	[ 69.998746] ==================================================================
	[ 70.006190] BUG: KMSAN: use of uninitialized memory in rt6_mtu_change_route+0x4d8/0xa70
	[ 70.014351] CPU: 0 PID: 8319 Comm: syz-executor7 Not tainted 4.16.0-rc4+ #63
	[ 70.021546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
	[ 70.030902] Call Trace:
	[ 70.033502] dump_stack+0x185/0x1d0
	[ 70.037132] ? rt6_mtu_change_route+0x4d8/0xa70
	[ 70.041807] kmsan_report+0x142/0x1f0
	[ 70.045615] __msan_warning_32+0x6c/0xb0
	[ 70.049682] rt6_mtu_change_route+0x4d8/0xa70
	[ 70.054356] ? fib6_walk_continue+0x9a1/0xbb0
	[ 70.058860] ? rt6_mtu_change+0x120/0x120
	[ 70.063015] fib6_clean_node+0x319/0x6b0
	[ 70.067083] ? node_free_rcu+0x70/0x70
	[ 70.070974] fib6_walk_continue+0x9a1/0xbb0
	[ 70.075305] __fib6_clean_all+0x501/0x810
	[ 70.079457] ? rt6_mtu_change+0x120/0x120
	[ 70.083613] ? node_free_rcu+0x70/0x70
	[ 70.087596] ? rt6_mtu_change+0x120/0x120
	[ 70.091761] fib6_clean_all+0x90/0xa0
	[ 70.095567] ? rt6_mtu_change+0x120/0x120
	[ 70.099734] rt6_mtu_change+0xd2/0x120
	[ 70.103648] addrconf_notify+0xb59/0x5020
	[ 70.107799] ? tun_device_event+0x53/0x1e70
	[ 70.112136] ? __msan_metadata_ptr_for_load_8+0x10/0x20
	[ 70.117510] ? tun_device_event+0x2e5/0x1e70
	[ 70.121924] ? __msan_poison_alloca+0x15c/0x1d0
	[ 70.126593] ? raw_notifier_call_chain+0x13b/0x250
	[ 70.131533] ? cfg80211_netdev_notifier_call+0x73/0x2880
	[ 70.136984] ? raw_notifier_call_chain+0x13b/0x250
	[ 70.141919] ? raw_notifier_call_chain+0x13b/0x250
	[ 70.146849] ? sel_netif_netdev_notifier_handler+0x3d/0x5b0
	[ 70.152570] ? dev_forward_change+0xbe0/0xbe0
	[ 70.157074] raw_notifier_call_chain+0x13b/0x250
	[ 70.161835] dev_set_mtu+0xa0e/0xea0
	[ 70.165554] dev_ifsioc+0x3a9/0x10d0
	[ 70.169271] ? _cond_resched+0x3c/0xd0
	[ 70.173938] dev_ioctl+0x876/0x1490
	[ 70.177572] sock_do_ioctl+0x43a/0x6b0
	[ 70.181461] sock_ioctl+0x4e0/0xbf0
	[ 70.185091] ? SYSC_ioctl+0x1d9/0x260
	[ 70.188894] ? sock_poll+0x370/0x370
	[ 70.192610] do_vfs_ioctl+0xc6d/0x2440
	[ 70.196508] SYSC_ioctl+0x1d9/0x260
	[ 70.200140] SyS_ioctl+0x54/0x80
	[ 70.203508] do_syscall_64+0x2f1/0x450
	[ 70.207395] ? ioctl_file_clone+0x510/0x510
	[ 70.211720] entry_SYSCALL_64_after_hwframe+0x3d/0xa2
	[ 70.216904] RIP: 0033:0x454239
	[ 70.220088] RSP: 002b:00007fac6f2d2c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
	[ 70.227799] RAX: ffffffffffffffda RBX: 00007fac6f2d36d4 RCX: 0000000000454239
	[ 70.235066] RDX: 0000000020000100 RSI: 0000000000008922 RDI: 0000000000000013
	[ 70.242328] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
	[ 70.249586] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
	[ 70.256846] R13: 0000000000000379 R14: 00000000006f63f8 R15: 0000000000000000
	[ 70.264109] chained origin:
	[ 70.267045] kmsan_internal_chain_origin+0x12d/0x210
	[ 70.272144] __msan_chain_origin+0x69/0xc0
	[ 70.276383] ip6_convert_metrics+0x715/0xa00
	[ 70.280787] ip6_route_add+0x13c/0x300
	[ 70.284652] inet6_rtm_newroute+0x1481/0x2520
	[ 70.289127] rtnetlink_rcv_msg+0xa4b/0x15d0
	[ 70.293428] netlink_rcv_skb+0x355/0x5f0
	[ 70.297480] rtnetlink_rcv+0x50/0x60
	[ 70.301183] netlink_unicast+0x1656/0x1730
	[ 70.305396] netlink_sendmsg+0x1048/0x1310
	[ 70.309626] ___sys_sendmsg+0xed5/0x1330
	[ 70.313669] SYSC_sendmsg+0x2a6/0x3d0
	[ 70.317454] SyS_sendmsg+0x54/0x80
	[ 70.320973] do_syscall_64+0x2f1/0x450
	[ 70.324839] entry_SYSCALL_64_after_hwframe+0x3d/0xa2
	[ 70.329998] origin:
	[ 70.332221] kmsan_internal_poison_shadow+0xb8/0x1b0
	[ 70.337315] kmsan_kmalloc+0x94/0x100
	[ 70.341115] kmsan_slab_alloc+0x11/0x20
	[ 70.345074] __kmalloc_node_track_caller+0xa7a/0x1290
	[ 70.350248] __alloc_skb+0x2e3/0xa20
	[ 70.353952] netlink_sendmsg+0x9a6/0x1310
	[ 70.358093] ___sys_sendmsg+0xed5/0x1330
	[ 70.362133] SYSC_sendmsg+0x2a6/0x3d0
	[ 70.365919] SyS_sendmsg+0x54/0x80
	[ 70.369450] do_syscall_64+0x2f1/0x450
	[ 70.373327] entry_SYSCALL_64_after_hwframe+0x3d/0xa2
	[ 70.378488] ==================================================================