[....] Starting file context maintaining daemon: restorecond[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[  120.060732][   T33] kauditd_printk_skb: 4 callbacks suppressed
[  120.060780][   T33] audit: type=1800 audit(1584072427.103:39): pid=11280 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
[  120.110789][   T33] audit: type=1800 audit(1584072427.143:40): pid=11280 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0
[  121.134407][   T33] audit: type=1400 audit(1584072428.183:41): avc:  denied  { map } for  pid=11456 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1
[  121.184961][T11453] sshd (11453) used greatest stack depth: 3352 bytes left

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.126' (ECDSA) to the list of known hosts.
syzkaller login: [  131.036103][   T33] audit: type=1400 audit(1584072438.083:42): avc:  denied  { map } for  pid=11468 comm="syz-executor600" path="/root/syz-executor600072577" dev="sda1" ino=16484 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1
[  131.078962][T11469] IPVS: ftp: loaded support on port[0] = 21
[  131.168814][T11469] chnl_net:caif_netlink_parms(): no params data found
[  131.248968][T11469] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.256139][T11469] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.264922][T11469] device bridge_slave_0 entered promiscuous mode
[  131.276388][T11469] bridge0: port 2(bridge_slave_1) entered blocking state
[  131.283657][T11469] bridge0: port 2(bridge_slave_1) entered disabled state
[  131.292710][T11469] device bridge_slave_1 entered promiscuous mode
[  131.322471][T11469] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  131.336835][T11469] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  131.365376][T11469] team0: Port device team_slave_0 added
[  131.376329][T11469] team0: Port device team_slave_1 added
[  131.400314][T11469] batman_adv: batadv0: Adding interface: batadv_slave_0
[  131.407342][T11469] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  131.433481][T11469] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  131.447590][T11469] batman_adv: batadv0: Adding interface: batadv_slave_1
[  131.454708][T11469] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  131.480818][T11469] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  131.555500][T11469] device hsr_slave_0 entered promiscuous mode
[  131.592456][T11469] device hsr_slave_1 entered promiscuous mode
[  131.765736][   T33] audit: type=1400 audit(1584072438.813:43): avc:  denied  { create } for  pid=11469 comm="syz-executor600" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
[  131.793703][   T33] audit: type=1400 audit(1584072438.843:44): avc:  denied  { write } for  pid=11469 comm="syz-executor600" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
[  131.797143][T11469] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  131.818738][   T33] audit: type=1400 audit(1584072438.843:45): avc:  denied  { read } for  pid=11469 comm="syz-executor600" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1
[  131.857222][T11469] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  131.927464][T11469] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  131.987478][T11469] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  132.080731][T11469] bridge0: port 2(bridge_slave_1) entered blocking state
[  132.088025][T11469] bridge0: port 2(bridge_slave_1) entered forwarding state
[  132.095847][T11469] bridge0: port 1(bridge_slave_0) entered blocking state
[  132.103046][T11469] bridge0: port 1(bridge_slave_0) entered forwarding state
[  132.186366][   T31] bridge0: port 1(bridge_slave_0) entered disabled state
[  132.196001][   T31] bridge0: port 2(bridge_slave_1) entered disabled state
[  132.224358][T11469] 8021q: adding VLAN 0 to HW filter on device bond0
[  132.247368][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  132.256124][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  132.272473][T11469] 8021q: adding VLAN 0 to HW filter on device team0
[  132.288213][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  132.297812][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  132.306872][   T17] bridge0: port 1(bridge_slave_0) entered blocking state
[  132.314014][   T17] bridge0: port 1(bridge_slave_0) entered forwarding state
[  132.329165][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  132.338643][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  132.347711][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  132.354860][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  132.383173][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  132.393948][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  132.411761][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  132.421188][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  132.453257][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  132.462659][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  132.472658][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  132.482812][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  132.491636][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  132.500969][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  132.509875][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  132.527540][T11469] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  132.566488][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  132.574577][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  132.596028][T11469] 8021q: adding VLAN 0 to HW filter on device batadv0
[  132.634682][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  132.644626][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  132.679945][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  132.688946][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  132.700900][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  132.710059][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  132.723614][T11469] device veth0_vlan entered promiscuous mode
[  132.745849][T11469] device veth1_vlan entered promiscuous mode
[  132.790862][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  132.799684][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  132.809027][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  132.818235][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  132.835405][T11469] device veth0_macvtap entered promiscuous mode
[  132.850989][T11469] device veth1_macvtap entered promiscuous mode
[  132.887162][T11469] batman_adv: batadv0: Interface activated: batadv_slave_0
[  132.895412][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  132.904646][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  132.913601][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  132.923326][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  132.941415][T11469] batman_adv: batadv0: Interface activated: batadv_slave_1
[  132.951070][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  132.961129][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
executing program
[  133.187578][   T33] audit: type=1400 audit(1584072440.233:46): avc:  denied  { prog_load } for  pid=11469 comm="syz-executor600" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=bpf permissive=1
[  133.224805][   T33] audit: type=1400 audit(1584072440.273:47): avc:  denied  { prog_run } for  pid=11469 comm="syz-executor600" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=bpf permissive=1
[  133.225127][T11469] =====================================================
[  133.255178][T11469] BUG: KMSAN: uninit-value in erspan_xmit+0x1b65/0x2ae0
[  133.262102][T11469] CPU: 1 PID: 11469 Comm: syz-executor600 Not tainted 5.6.0-rc2-syzkaller #0
[  133.270875][T11469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  133.280909][T11469] Call Trace:
[  133.284186][T11469]  dump_stack+0x1c9/0x220
[  133.288498][T11469]  kmsan_report+0xf7/0x1e0
[  133.292921][T11469]  __msan_warning+0x58/0xa0
[  133.297430][T11469]  erspan_xmit+0x1b65/0x2ae0
[  133.302012][T11469]  ? kmsan_get_metadata+0x11d/0x180
[  133.307211][T11469]  ? erspan_tunnel_init+0x360/0x360
[  133.312390][T11469]  dev_hard_start_xmit+0x531/0xab0
[  133.317498][T11469]  ? kmsan_get_metadata+0x11d/0x180
[  133.322708][T11469]  sch_direct_xmit+0x512/0x18b0
[  133.327577][T11469]  __dev_queue_xmit+0x1fc3/0x4220
[  133.332603][T11469]  dev_queue_xmit+0x4b/0x60
[  133.337089][T11469]  __bpf_redirect+0x11d5/0x1440
[  133.341959][T11469]  bpf_clone_redirect+0x466/0x620
[  133.346997][T11469]  ? bpf_prog_79bab0a1566dd526+0xb74/0x1000
[  133.352872][T11469]  bpf_prog_79bab0a1566dd526+0xbd0/0x1000
[  133.358568][T11469]  ? bpf_prog_79bab0a1566dd526+0xb74/0x1000
[  133.364448][T11469]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  133.370619][T11469]  ? kmsan_get_metadata+0x4f/0x180
[  133.375717][T11469]  ? kmsan_internal_set_origin+0x75/0xb0
[  133.381345][T11469]  ? __msan_poison_alloca+0xf0/0x120
[  133.386609][T11469]  ? kmsan_get_metadata+0x11d/0x180
[  133.391785][T11469]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  133.397575][T11469]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  133.403622][T11469]  ? ktime_get+0x2b8/0x400
[  133.408036][T11469]  ? kmsan_get_metadata+0x4f/0x180
[  133.413128][T11469]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  133.418946][T11469]  ? bpf_prog_79bab0a1566dd526+0xb74/0x1000
[  133.424836][T11469]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  133.430886][T11469]  bpf_test_run+0x60c/0xe50
[  133.435376][T11469]  ? kmsan_get_metadata+0x11d/0x180
[  133.440566][T11469]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  133.446416][T11469]  bpf_prog_test_run_skb+0xcab/0x24a0
[  133.451796][T11469]  ? bpf_fentry_test6+0xd0/0xd0
[  133.456762][T11469]  __do_sys_bpf+0xa684/0x13510
[  133.461523][T11469]  ? kmsan_get_metadata+0x4f/0x180
[  133.466636][T11469]  ? kmsan_get_metadata+0x11d/0x180
[  133.471820][T11469]  ? kmsan_set_origin_checked+0x95/0xf0
[  133.477365][T11469]  ? __fpregs_load_activate+0x38c/0x3c0
[  133.482936][T11469]  ? kmsan_get_metadata+0x11d/0x180
[  133.488129][T11469]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  133.493964][T11469]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  133.500009][T11469]  ? prepare_exit_to_usermode+0x1ca/0x520
[  133.505729][T11469]  ? kmsan_get_metadata+0x4f/0x180
[  133.510820][T11469]  ? kmsan_get_metadata+0x4f/0x180
[  133.515914][T11469]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  133.521726][T11469]  __ia32_sys_bpf+0xdb/0x120
[  133.526304][T11469]  ? __se_sys_bpf+0xa0/0xa0
[  133.530784][T11469]  do_fast_syscall_32+0x3c7/0x6e0
[  133.535823][T11469]  entry_SYSENTER_compat+0x68/0x77
[  133.540931][T11469] RIP: 0023:0xf7ff0d99
[  133.544997][T11469] Code: 90 e8 0b 00 00 00 f3 90 0f ae e8 eb f9 8d 74 26 00 89 3c 24 c3 90 90 90 90 90 90 90 90 90 90 90 90 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[  133.564582][T11469] RSP: 002b:00000000ffbc489c EFLAGS: 00000246 ORIG_RAX: 0000000000000165
[  133.572972][T11469] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000140
[  133.580921][T11469] RDX: 0000000000000040 RSI: 00000000f7ff028c RDI: 0000000000000004
[  133.588879][T11469] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  133.596834][T11469] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  133.604801][T11469] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  133.612780][T11469] 
[  133.615104][T11469] Uninit was created at:
[  133.619347][T11469]  kmsan_internal_poison_shadow+0x66/0xd0
[  133.625046][T11469]  kmsan_slab_alloc+0x8a/0xe0
[  133.629701][T11469]  __kmalloc_node_track_caller+0xb40/0x1200
[  133.635575][T11469]  pskb_expand_head+0x20b/0x1b00
[  133.640492][T11469]  erspan_xmit+0xc60/0x2ae0
[  133.644977][T11469]  dev_hard_start_xmit+0x531/0xab0
[  133.650063][T11469]  sch_direct_xmit+0x512/0x18b0
[  133.654892][T11469]  __dev_queue_xmit+0x1fc3/0x4220
[  133.659946][T11469]  dev_queue_xmit+0x4b/0x60
[  133.664431][T11469]  __bpf_redirect+0x11d5/0x1440
[  133.669258][T11469]  bpf_clone_redirect+0x466/0x620
[  133.674301][T11469]  bpf_prog_79bab0a1566dd526+0xbd0/0x1000
[  133.679999][T11469]  bpf_test_run+0x60c/0xe50
[  133.684482][T11469]  bpf_prog_test_run_skb+0xcab/0x24a0
[  133.689830][T11469]  __do_sys_bpf+0xa684/0x13510
[  133.694685][T11469]  __ia32_sys_bpf+0xdb/0x120
[  133.699261][T11469]  do_fast_syscall_32+0x3c7/0x6e0
[  133.704269][T11469]  entry_SYSENTER_compat+0x68/0x77
[  133.709355][T11469] =====================================================
[  133.716264][T11469] Disabling lock debugging due to kernel taint
[  133.722401][T11469] Kernel panic - not syncing: panic_on_warn set ...
[  133.728981][T11469] CPU: 1 PID: 11469 Comm: syz-executor600 Tainted: G    B             5.6.0-rc2-syzkaller #0
[  133.739103][T11469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  133.749272][T11469] Call Trace:
[  133.752551][T11469]  dump_stack+0x1c9/0x220
[  133.756862][T11469]  panic+0x3d5/0xc3e
[  133.760757][T11469]  kmsan_report+0x1df/0x1e0
[  133.765249][T11469]  __msan_warning+0x58/0xa0
[  133.769731][T11469]  erspan_xmit+0x1b65/0x2ae0
[  133.774308][T11469]  ? kmsan_get_metadata+0x11d/0x180
[  133.779499][T11469]  ? erspan_tunnel_init+0x360/0x360
[  133.784681][T11469]  dev_hard_start_xmit+0x531/0xab0
[  133.789835][T11469]  ? kmsan_get_metadata+0x11d/0x180
[  133.795017][T11469]  sch_direct_xmit+0x512/0x18b0
[  133.799861][T11469]  __dev_queue_xmit+0x1fc3/0x4220
[  133.804943][T11469]  dev_queue_xmit+0x4b/0x60
[  133.809441][T11469]  __bpf_redirect+0x11d5/0x1440
[  133.814295][T11469]  bpf_clone_redirect+0x466/0x620
[  133.819309][T11469]  ? bpf_prog_79bab0a1566dd526+0xb74/0x1000
[  133.825192][T11469]  bpf_prog_79bab0a1566dd526+0xbd0/0x1000
[  133.830893][T11469]  ? bpf_prog_79bab0a1566dd526+0xb74/0x1000
[  133.836795][T11469]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  133.842947][T11469]  ? kmsan_get_metadata+0x4f/0x180
[  133.848042][T11469]  ? kmsan_internal_set_origin+0x75/0xb0
[  133.853672][T11469]  ? __msan_poison_alloca+0xf0/0x120
[  133.858953][T11469]  ? kmsan_get_metadata+0x11d/0x180
[  133.864133][T11469]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  133.869937][T11469]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  133.875987][T11469]  ? ktime_get+0x2b8/0x400
[  133.880425][T11469]  ? kmsan_get_metadata+0x4f/0x180
[  133.885534][T11469]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  133.891332][T11469]  ? bpf_prog_79bab0a1566dd526+0xb74/0x1000
[  133.897211][T11469]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  133.903267][T11469]  bpf_test_run+0x60c/0xe50
[  133.907759][T11469]  ? kmsan_get_metadata+0x11d/0x180
[  133.912953][T11469]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  133.918748][T11469]  bpf_prog_test_run_skb+0xcab/0x24a0
[  133.924138][T11469]  ? bpf_fentry_test6+0xd0/0xd0
[  133.928967][T11469]  __do_sys_bpf+0xa684/0x13510
[  133.933753][T11469]  ? kmsan_get_metadata+0x4f/0x180
[  133.938862][T11469]  ? kmsan_get_metadata+0x11d/0x180
[  133.944166][T11469]  ? kmsan_set_origin_checked+0x95/0xf0
[  133.949701][T11469]  ? __fpregs_load_activate+0x38c/0x3c0
[  133.955234][T11469]  ? kmsan_get_metadata+0x11d/0x180
[  133.960424][T11469]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  133.966235][T11469]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  133.972292][T11469]  ? prepare_exit_to_usermode+0x1ca/0x520
[  133.977992][T11469]  ? kmsan_get_metadata+0x4f/0x180
[  133.983107][T11469]  ? kmsan_get_metadata+0x4f/0x180
[  133.988214][T11469]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  133.994118][T11469]  __ia32_sys_bpf+0xdb/0x120
[  133.998791][T11469]  ? __se_sys_bpf+0xa0/0xa0
[  134.003286][T11469]  do_fast_syscall_32+0x3c7/0x6e0
[  134.009441][T11469]  entry_SYSENTER_compat+0x68/0x77
[  134.014545][T11469] RIP: 0023:0xf7ff0d99
[  134.018621][T11469] Code: 90 e8 0b 00 00 00 f3 90 0f ae e8 eb f9 8d 74 26 00 89 3c 24 c3 90 90 90 90 90 90 90 90 90 90 90 90 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[  134.038249][T11469] RSP: 002b:00000000ffbc489c EFLAGS: 00000246 ORIG_RAX: 0000000000000165
[  134.046651][T11469] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000140
[  134.054608][T11469] RDX: 0000000000000040 RSI: 00000000f7ff028c RDI: 0000000000000004
[  134.062585][T11469] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  134.070629][T11469] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  134.078593][T11469] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  134.087407][T11469] ------------[ cut here ]------------
[  134.092867][T11469] kernel BUG at mm/kmsan/kmsan.h:87!
[  134.098160][T11469] invalid opcode: 0000 [#1] SMP
[  134.102994][T11469] CPU: 1 PID: 11469 Comm: syz-executor600 Tainted: G    B             5.6.0-rc2-syzkaller #0
[  134.113121][T11469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  134.123176][T11469] RIP: 0010:kmsan_internal_check_memory+0x3c0/0x3d0
[  134.129747][T11469] Code: 5b 41 5c 41 5d 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 06 4c 88 b7 31 c0 e8 e1 70 48 ff 0f 0b 0f 0b 0f 0b 0f 0b e8 02 8f 48 ff 0f 0b <0f> 0b 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 83 ff
[  134.149469][T11469] RSP: 0018:ffffa6bc81582cb8 EFLAGS: 00010046
[  134.155516][T11469] RAX: 0000000000000002 RBX: 00000000050300ac RCX: 00000000050300ac
[  134.163476][T11469] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffffa6bc81582d94
[  134.171437][T11469] RBP: ffffa6bc81582d60 R08: 0000000000000000 R09: ffffa2af2fd28ed0
[  134.179391][T11469] R10: 0000000000000000 R11: ffffffffae616f70 R12: 0000000000000000
[  134.187352][T11469] R13: 0000000000000001 R14: 0000000000000006 R15: 0000000000000001
[  134.195310][T11469] FS:  0000000000000000(0000) GS:ffffa2af2fd00000(0063) knlGS:0000000008a76840
[  134.204225][T11469] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  134.210792][T11469] CR2: 0000000020000200 CR3: 0000000105fc1000 CR4: 00000000001406e0
[  134.218754][T11469] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  134.226715][T11469] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  134.234674][T11469] Call Trace:
[  134.237962][T11469]  kmsan_check_memory+0xd/0x10
[  134.242706][T11469]  iowrite8+0x99/0x2e0
[  134.246787][T11469]  pvpanic_panic_notify+0x99/0xc0
[  134.251803][T11469]  ? pvpanic_mmio_remove+0x60/0x60
[  134.256897][T11469]  atomic_notifier_call_chain+0x12a/0x240
[  134.262601][T11469]  panic+0x468/0xc3e
[  134.266511][T11469]  kmsan_report+0x1df/0x1e0
[  134.271006][T11469]  __msan_warning+0x58/0xa0
[  134.275508][T11469]  erspan_xmit+0x1b65/0x2ae0
[  134.280086][T11469]  ? kmsan_get_metadata+0x11d/0x180
[  134.285337][T11469]  ? erspan_tunnel_init+0x360/0x360
[  134.290523][T11469]  dev_hard_start_xmit+0x531/0xab0
[  134.295628][T11469]  ? kmsan_get_metadata+0x11d/0x180
[  134.300815][T11469]  sch_direct_xmit+0x512/0x18b0
[  134.305700][T11469]  __dev_queue_xmit+0x1fc3/0x4220
[  134.310724][T11469]  dev_queue_xmit+0x4b/0x60
[  134.315210][T11469]  __bpf_redirect+0x11d5/0x1440
[  134.320053][T11469]  bpf_clone_redirect+0x466/0x620
[  134.325068][T11469]  ? bpf_prog_79bab0a1566dd526+0xb74/0x1000
[  134.330946][T11469]  bpf_prog_79bab0a1566dd526+0xbd0/0x1000
[  134.336639][T11469]  ? bpf_prog_79bab0a1566dd526+0xb74/0x1000
[  134.342554][T11469]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  134.348730][T11469]  ? kmsan_get_metadata+0x4f/0x180
[  134.353827][T11469]  ? kmsan_internal_set_origin+0x75/0xb0
[  134.359439][T11469]  ? __msan_poison_alloca+0xf0/0x120
[  134.364701][T11469]  ? kmsan_get_metadata+0x11d/0x180
[  134.369875][T11469]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  134.375658][T11469]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  134.381710][T11469]  ? ktime_get+0x2b8/0x400
[  134.386123][T11469]  ? kmsan_get_metadata+0x4f/0x180
[  134.391314][T11469]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  134.397104][T11469]  ? bpf_prog_79bab0a1566dd526+0xb74/0x1000
[  134.402976][T11469]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  134.409026][T11469]  bpf_test_run+0x60c/0xe50
[  134.413516][T11469]  ? kmsan_get_metadata+0x11d/0x180
[  134.418710][T11469]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  134.424497][T11469]  bpf_prog_test_run_skb+0xcab/0x24a0
[  134.429868][T11469]  ? bpf_fentry_test6+0xd0/0xd0
[  134.434695][T11469]  __do_sys_bpf+0xa684/0x13510
[  134.439492][T11469]  ? kmsan_get_metadata+0x4f/0x180
[  134.444582][T11469]  ? kmsan_get_metadata+0x11d/0x180
[  134.449755][T11469]  ? kmsan_set_origin_checked+0x95/0xf0
[  134.455334][T11469]  ? __fpregs_load_activate+0x38c/0x3c0
[  134.461401][T11469]  ? kmsan_get_metadata+0x11d/0x180
[  134.466582][T11469]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  134.472368][T11469]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  134.478453][T11469]  ? prepare_exit_to_usermode+0x1ca/0x520
[  134.484150][T11469]  ? kmsan_get_metadata+0x4f/0x180
[  134.489285][T11469]  ? kmsan_get_metadata+0x4f/0x180
[  134.494375][T11469]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  134.500169][T11469]  __ia32_sys_bpf+0xdb/0x120
[  134.504743][T11469]  ? __se_sys_bpf+0xa0/0xa0
[  134.509229][T11469]  do_fast_syscall_32+0x3c7/0x6e0
[  134.514254][T11469]  entry_SYSENTER_compat+0x68/0x77
[  134.519346][T11469] RIP: 0023:0xf7ff0d99
[  134.523443][T11469] Code: 90 e8 0b 00 00 00 f3 90 0f ae e8 eb f9 8d 74 26 00 89 3c 24 c3 90 90 90 90 90 90 90 90 90 90 90 90 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[  134.543038][T11469] RSP: 002b:00000000ffbc489c EFLAGS: 00000246 ORIG_RAX: 0000000000000165
[  134.551432][T11469] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000140
[  134.559420][T11469] RDX: 0000000000000040 RSI: 00000000f7ff028c RDI: 0000000000000004
[  134.567409][T11469] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  134.575359][T11469] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  134.583346][T11469] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  134.591342][T11469] Modules linked in:
[  134.595216][T11469] ---[ end trace 8d46080f837352b0 ]---
[  134.600655][T11469] RIP: 0010:kmsan_internal_check_memory+0x3c0/0x3d0
[  134.607220][T11469] Code: 5b 41 5c 41 5d 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 06 4c 88 b7 31 c0 e8 e1 70 48 ff 0f 0b 0f 0b 0f 0b 0f 0b e8 02 8f 48 ff 0f 0b <0f> 0b 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 83 ff
[  134.626816][T11469] RSP: 0018:ffffa6bc81582cb8 EFLAGS: 00010046
[  134.632895][T11469] RAX: 0000000000000002 RBX: 00000000050300ac RCX: 00000000050300ac
[  134.640888][T11469] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffffa6bc81582d94
[  134.648837][T11469] RBP: ffffa6bc81582d60 R08: 0000000000000000 R09: ffffa2af2fd28ed0
[  134.656829][T11469] R10: 0000000000000000 R11: ffffffffae616f70 R12: 0000000000000000
[  134.664786][T11469] R13: 0000000000000001 R14: 0000000000000006 R15: 0000000000000001
[  134.672761][T11469] FS:  0000000000000000(0000) GS:ffffa2af2fd00000(0063) knlGS:0000000008a76840
[  134.681679][T11469] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  134.688250][T11469] CR2: 0000000020000200 CR3: 0000000105fc1000 CR4: 00000000001406e0
[  134.696205][T11469] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  134.704157][T11469] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  134.712109][T11469] Kernel panic - not syncing: Fatal exception in interrupt
[  134.719874][T11469] Kernel Offset: 0x28400000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff)
[  134.731490][T11469] Rebooting in 86400 seconds..