INIT: Entering runlevel: 2 [info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.36' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 32.976038] ================================================================== [ 32.983459] BUG: KMSAN: uninit-value in move_addr_to_user+0x32e/0x530 [ 32.990032] CPU: 1 PID: 3586 Comm: syzkaller481044 Not tainted 4.16.0+ #82 [ 32.997028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 33.006416] Call Trace: [ 33.008997] dump_stack+0x185/0x1d0 [ 33.012632] ? kmsan_internal_check_memory+0x145/0x1d0 [ 33.017899] kmsan_report+0x142/0x240 [ 33.021701] kmsan_internal_check_memory+0x164/0x1d0 [ 33.026943] kmsan_copy_to_user+0x69/0x160 [ 33.031218] move_addr_to_user+0x32e/0x530 [ 33.035451] ___sys_recvmsg+0x4e2/0x810 [ 33.039415] ? __fget_light+0x56/0x710 [ 33.043284] ? __fdget+0x4e/0x60 [ 33.046634] ? __fget_light+0x1dc/0x710 [ 33.050607] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 33.055950] ? __fget_light+0x1f5/0x710 [ 33.059909] __sys_recvmmsg+0x54e/0xdb0 [ 33.063868] ? kmsan_set_origin+0x9e/0x160 [ 33.068088] SYSC_recvmmsg+0x29b/0x3e0 [ 33.071956] SyS_recvmmsg+0x76/0xa0 [ 33.075563] do_syscall_64+0x309/0x430 [ 33.079432] ? __sys_recvmmsg+0xdb0/0xdb0 [ 33.083568] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 33.088759] RIP: 0033:0x4401c9 [ 33.091935] RSP: 002b:00007ffc56f73098 EFLAGS: 00000217 ORIG_RAX: 000000000000012b [ 33.099636] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 00000000004401c9 [ 33.106901] RDX: 0000000000000001 RSI: 0000000020003ac0 RDI: 0000000000000003 [ 33.114159] RBP: 00000000006ca018 R08: 0000000020003bc0 R09: 0000000000000010 [ 33.121424] R10: 0000000000000000 R11: 0000000000000217 R12: 0000000000401af0 [ 33.128677] R13: 0000000000401b80 R14: 0000000000000000 R15: 0000000000000000 [ 33.135940] [ 33.137551] Local variable description: ----addr@___sys_recvmsg [ 33.143578] Variable was created at: [ 33.147455] ___sys_recvmsg+0xd5/0x810 [ 33.151339] __sys_recvmmsg+0x54e/0xdb0 [ 33.155300] [ 33.156904] Bytes 8-15 of 16 are uninitialized [ 33.161469] ================================================================== [ 33.168809] Disabling lock debugging due to kernel taint [ 33.174242] Kernel panic - not syncing: panic_on_warn set ... [ 33.174242] [ 33.181589] CPU: 1 PID: 3586 Comm: syzkaller481044 Tainted: G B 4.16.0+ #82 [ 33.189882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 33.199224] Call Trace: [ 33.201824] dump_stack+0x185/0x1d0 [ 33.205444] panic+0x39d/0x940 [ 33.208644] ? kmsan_internal_check_memory+0x145/0x1d0 [ 33.213915] kmsan_report+0x238/0x240 [ 33.217704] kmsan_internal_check_memory+0x164/0x1d0 [ 33.222799] kmsan_copy_to_user+0x69/0x160 [ 33.227023] move_addr_to_user+0x32e/0x530 [ 33.231249] ___sys_recvmsg+0x4e2/0x810 [ 33.235211] ? __fget_light+0x56/0x710 [ 33.239079] ? __fdget+0x4e/0x60 [ 33.242433] ? __fget_light+0x1dc/0x710 [ 33.246389] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 33.251733] ? __fget_light+0x1f5/0x710 [ 33.255694] __sys_recvmmsg+0x54e/0xdb0 [ 33.259660] ? kmsan_set_origin+0x9e/0x160 [ 33.263887] SYSC_recvmmsg+0x29b/0x3e0 [ 33.267766] SyS_recvmmsg+0x76/0xa0 [ 33.271385] do_syscall_64+0x309/0x430 [ 33.275260] ? __sys_recvmmsg+0xdb0/0xdb0 [ 33.279394] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 33.284566] RIP: 0033:0x4401c9 [ 33.287737] RSP: 002b:00007ffc56f73098 EFLAGS: 00000217 ORIG_RAX: 000000000000012b [ 33.295431] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 00000000004401c9 [ 33.302706] RDX: 0000000000000001 RSI: 0000000020003ac0 RDI: 0000000000000003 [ 33.309961] RBP: 00000000006ca018 R08: 0000000020003bc0 R09: 0000000000000010 [ 33.317219] R10: 0000000000000000 R11: 0000000000000217 R12: 0000000000401af0 [ 33.324473] R13: 0000000000401b80 R14: 0000000000000000 R15: 0000000000000000 [ 33.332255] Dumping ftrace buffer: [ 33.335783] (ftrace buffer empty) [ 33.339475] Kernel Offset: disabled [ 33.343080] Rebooting in 86400 seconds..