INIT: Entering runlevel: 2 [info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.8' (ECDSA) to the list of known hosts. executing program executing program syzkaller login: [ 39.369625] ================================================================== [ 39.377067] BUG: KMSAN: uninit-value in inet_csk_bind_conflict+0x5f9/0x990 [ 39.384086] CPU: 0 PID: 4503 Comm: syz-executor585 Not tainted 4.16.0+ #87 [ 39.391090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 39.400437] Call Trace: [ 39.403037] dump_stack+0x185/0x1d0 [ 39.406663] ? inet_csk_bind_conflict+0x5f9/0x990 [ 39.411493] kmsan_report+0x142/0x240 [ 39.415293] __msan_warning_32+0x6c/0xb0 [ 39.419351] inet_csk_bind_conflict+0x5f9/0x990 [ 39.424033] inet_csk_get_port+0x1d28/0x1e40 [ 39.428461] ? __msan_poison_alloca+0x15c/0x1d0 [ 39.433123] ? local_bh_enable+0x36/0x40 [ 39.437208] ? __local_bh_enable_ip+0x3b/0x140 [ 39.441793] ? local_bh_enable+0x36/0x40 [ 39.445862] ? inet_get_local_port_range+0x2d0/0x2d0 [ 39.450960] inet6_bind+0x121c/0x1820 [ 39.454752] ? ipv6_mod_enabled+0x60/0x60 [ 39.458902] SYSC_bind+0x3f2/0x4b0 [ 39.462444] SyS_bind+0x54/0x80 [ 39.465712] do_syscall_64+0x309/0x430 [ 39.469613] ? SYSC_socketpair+0x14a0/0x14a0 [ 39.474030] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 39.479218] RIP: 0033:0x441809 [ 39.482396] RSP: 002b:00007fff81949c18 EFLAGS: 00000217 ORIG_RAX: 0000000000000031 [ 39.490098] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441809 [ 39.497367] RDX: 000000000000001c RSI: 0000000020000000 RDI: 0000000000000003 [ 39.504626] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000001 [ 39.511901] R10: 0000000000000004 R11: 0000000000000217 R12: 00000000000099bb [ 39.519166] R13: 00000000006cd448 R14: 0000000000000000 R15: 0000000000000000 [ 39.526436] [ 39.528052] Uninit was stored to memory at: [ 39.532367] kmsan_internal_chain_origin+0x12b/0x210 [ 39.537461] __msan_chain_origin+0x69/0xc0 [ 39.541682] inet_twsk_alloc+0xaef/0xc00 [ 39.545748] tcp_time_wait+0xd9/0xf50 [ 39.549536] tcp_rcv_state_process+0xe9d/0x65f0 [ 39.554201] tcp_v4_do_rcv+0xb26/0xd90 [ 39.558081] __release_sock+0x2d6/0x680 [ 39.562062] release_sock+0x97/0x2a0 [ 39.565773] tcp_close+0x277/0x18f0 [ 39.569388] inet_release+0x240/0x2a0 [ 39.573183] sock_close+0xe0/0x300 [ 39.576712] __fput+0x49e/0xa10 [ 39.580003] ____fput+0x37/0x40 [ 39.583281] task_work_run+0x243/0x2c0 [ 39.587157] do_exit+0x10e1/0x38d0 [ 39.590679] do_group_exit+0x1a0/0x360 [ 39.594549] SYSC_exit_group+0x21/0x30 [ 39.598419] SyS_exit_group+0x25/0x30 [ 39.602204] do_syscall_64+0x309/0x430 [ 39.606076] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 39.611243] Uninit was created at: [ 39.614773] kmsan_internal_poison_shadow+0xb8/0x1b0 [ 39.619872] kmsan_kmalloc+0x94/0x100 [ 39.623656] kmem_cache_alloc+0xaab/0xb90 [ 39.627792] inet_twsk_alloc+0x13b/0xc00 [ 39.631844] tcp_time_wait+0xd9/0xf50 [ 39.635628] tcp_rcv_state_process+0xe9d/0x65f0 [ 39.640284] tcp_v4_do_rcv+0xb26/0xd90 [ 39.644170] __release_sock+0x2d6/0x680 [ 39.648142] release_sock+0x97/0x2a0 [ 39.651847] tcp_close+0x277/0x18f0 [ 39.655457] inet_release+0x240/0x2a0 [ 39.659254] sock_close+0xe0/0x300 [ 39.662778] __fput+0x49e/0xa10 [ 39.666043] ____fput+0x37/0x40 [ 39.669312] task_work_run+0x243/0x2c0 [ 39.673190] do_exit+0x10e1/0x38d0 [ 39.676722] do_group_exit+0x1a0/0x360 [ 39.680592] SYSC_exit_group+0x21/0x30 [ 39.684473] SyS_exit_group+0x25/0x30 [ 39.688257] do_syscall_64+0x309/0x430 [ 39.692129] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 39.697295] ================================================================== [ 39.704636] Disabling lock debugging due to kernel taint [ 39.710069] Kernel panic - not syncing: panic_on_warn set ... [ 39.710069] [ 39.717439] CPU: 0 PID: 4503 Comm: syz-executor585 Tainted: G B 4.16.0+ #87 [ 39.725767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 39.735118] Call Trace: [ 39.737713] dump_stack+0x185/0x1d0 [ 39.741344] panic+0x39d/0x940 [ 39.744540] ? inet_csk_bind_conflict+0x5f9/0x990 [ 39.749371] kmsan_report+0x238/0x240 [ 39.753165] __msan_warning_32+0x6c/0xb0 [ 39.757224] inet_csk_bind_conflict+0x5f9/0x990 [ 39.762161] inet_csk_get_port+0x1d28/0x1e40 [ 39.766558] ? __msan_poison_alloca+0x15c/0x1d0 [ 39.771213] ? local_bh_enable+0x36/0x40 [ 39.775261] ? __local_bh_enable_ip+0x3b/0x140 [ 39.779855] ? local_bh_enable+0x36/0x40 [ 39.783910] ? inet_get_local_port_range+0x2d0/0x2d0 [ 39.788999] inet6_bind+0x121c/0x1820 [ 39.792798] ? ipv6_mod_enabled+0x60/0x60 [ 39.796932] SYSC_bind+0x3f2/0x4b0 [ 39.800460] SyS_bind+0x54/0x80 [ 39.803728] do_syscall_64+0x309/0x430 [ 39.807614] ? SYSC_socketpair+0x14a0/0x14a0 [ 39.812029] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 39.817214] RIP: 0033:0x441809 [ 39.820386] RSP: 002b:00007fff81949c18 EFLAGS: 00000217 ORIG_RAX: 0000000000000031 [ 39.828085] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441809 [ 39.835345] RDX: 000000000000001c RSI: 0000000020000000 RDI: 0000000000000003 [ 39.842609] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000001 [ 39.849888] R10: 0000000000000004 R11: 0000000000000217 R12: 00000000000099bb [ 39.857144] R13: 00000000006cd448 R14: 0000000000000000 R15: 0000000000000000 [ 39.864889] Dumping ftrace buffer: [ 39.868421] (ftrace buffer empty) [ 39.872106] Kernel Offset: disabled [ 39.875712] Rebooting in 86400 seconds..