KMSAN: uninit-value in set_selection

KMSAN: uninit-value in set_selection_kernel
Status: upstream: reported on 2020/03/12 21:47
Reported-by: syzbot+0b81ae727db96ee52ca8@syzkaller.appspotmail.com
First crash: 503d, last: 4h09m

Sample crash report:

=====================================================
BUG: KMSAN: uninit-value in vc_do_selection drivers/tty/vt/selection.c:253 [inline]
BUG: KMSAN: uninit-value in vc_selection drivers/tty/vt/selection.c:350 [inline]
BUG: KMSAN: uninit-value in set_selection_kernel+0x1881/0x38c0 drivers/tty/vt/selection.c:359
CPU: 0 PID: 16367 Comm: syz-executor.4 Not tainted 5.13.0-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:79 [inline]
 dump_stack+0x24c/0x2e0 lib/dump_stack.c:120
 kmsan_report+0xfb/0x1e0 mm/kmsan/kmsan_report.c:121
 __msan_warning+0x5c/0xa0 mm/kmsan/kmsan_instr.c:200
 vc_do_selection drivers/tty/vt/selection.c:253 [inline]
 vc_selection drivers/tty/vt/selection.c:350 [inline]
 set_selection_kernel+0x1881/0x38c0 drivers/tty/vt/selection.c:359
 set_selection_user+0x12a/0x170 drivers/tty/vt/selection.c:185
 tioclinux+0x24d/0xce0 drivers/tty/vt/vt.c:3160
 vt_ioctl+0x56e/0x5ed0 drivers/tty/vt/vt_ioctl.c:760
 vt_compat_ioctl+0x507/0xa90 drivers/tty/vt/vt_ioctl.c:1105
 tty_compat_ioctl+0x730/0x1660 drivers/tty/tty_io.c:2984
 __do_compat_sys_ioctl fs/ioctl.c:1167 [inline]
 __se_compat_sys_ioctl+0x8bb/0x1110 fs/ioctl.c:1109
 __ia32_compat_sys_ioctl+0xd9/0x110 fs/ioctl.c:1109
 do_syscall_32_irqs_on arch/x86/entry/common.c:84 [inline]
 __do_fast_syscall_32+0x132/0x1b0 arch/x86/entry/common.c:149
 do_fast_syscall_32+0x77/0xd0 arch/x86/entry/common.c:179
 do_SYSENTER_32+0x73/0x90 arch/x86/entry/common.c:222
 entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
RIP: 0023:0xf7f60549
Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
RSP: 002b:00000000f555a5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000036
RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000541c
RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000000000000
RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000

Uninit was created at:
 kmsan_save_stack_with_flags+0x3c/0x90 mm/kmsan/kmsan.c:120
 kmsan_alloc_page+0xd0/0x1e0 mm/kmsan/kmsan_shadow.c:274
 __alloc_pages+0xb14/0xf70 mm/page_alloc.c:5241
 __alloc_pages_node include/linux/gfp.h:549 [inline]
 alloc_pages_node include/linux/gfp.h:563 [inline]
 __vmalloc_area_node mm/vmalloc.c:2827 [inline]
 __vmalloc_node_range+0xa13/0x14d0 mm/vmalloc.c:2933
 __vmalloc_node mm/vmalloc.c:2982 [inline]
 vmalloc+0xe0/0xf0 mm/vmalloc.c:3015
 vc_uniscr_alloc drivers/tty/vt/vt.c:347 [inline]
 vc_do_resize+0x771/0x3120 drivers/tty/vt/vt.c:1232
 vc_resize+0xc3/0xe0 drivers/tty/vt/vt.c:1345
 fbcon_modechanged+0xddb/0x16f0 drivers/video/fbdev/core/fbcon.c:2640
 fbcon_update_vcs+0x86/0xa0 drivers/video/fbdev/core/fbcon.c:2696
 do_fb_ioctl+0xf2c/0x1090 drivers/video/fbdev/core/fbmem.c:1110
 fb_compat_ioctl+0x470/0x1780 drivers/video/fbdev/core/fbmem.c:1309
 __do_compat_sys_ioctl fs/ioctl.c:1167 [inline]
 __se_compat_sys_ioctl+0x8bb/0x1110 fs/ioctl.c:1109
 __ia32_compat_sys_ioctl+0xd9/0x110 fs/ioctl.c:1109
 do_syscall_32_irqs_on arch/x86/entry/common.c:84 [inline]
 __do_fast_syscall_32+0x132/0x1b0 arch/x86/entry/common.c:149
 do_fast_syscall_32+0x77/0xd0 arch/x86/entry/common.c:179
 do_SYSENTER_32+0x73/0x90 arch/x86/entry/common.c:222
 entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
=====================================================

Crashes (252):
Manager	Time	Kernel	Commit	Syzkaller	Config	Log	Report	VM info	Title
ci-upstream-kmsan-gce-386	2021/07/28 09:03	https://github.com/google/kmsan.git master	981c4ec7b5ad	17d6ab15	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/27 14:45	https://github.com/google/kmsan.git master	e8a3c6c03fa1	fd511809	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/26 18:56	https://github.com/google/kmsan.git master	e8a3c6c03fa1	fd511809	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/26 07:40	https://github.com/google/kmsan.git master	a43e029dee89	fd511809	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/21 21:02	https://github.com/google/kmsan.git master	aeb985b98bde	29c3f20f	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/20 19:51	https://github.com/google/kmsan.git master	b9c8f24b368d	1b201b48	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/20 02:37	https://github.com/google/kmsan.git master	4edbed3bb57c	bc48c9ab	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/19 17:12	https://github.com/google/kmsan.git master	4edbed3bb57c	e6a17580	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/18 20:50	https://github.com/google/kmsan.git master	a0f3a2c4404f	f115ae98	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/17 18:41	https://github.com/google/kmsan.git master	a0f3a2c4404f	f115ae98	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/16 23:15	https://github.com/google/kmsan.git master	a0f3a2c4404f	f115ae98	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/16 20:18	https://github.com/google/kmsan.git master	a0f3a2c4404f	f115ae98	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/16 05:06	https://github.com/google/kmsan.git master	57b5797c8013	f115ae98	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/15 18:00	https://github.com/google/kmsan.git master	57b5797c8013	b9a2f64e	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/14 08:29	https://github.com/google/kmsan.git master	57b5797c8013	484502bd	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/14 02:03	https://github.com/google/kmsan.git master	57b5797c8013	fa0594c3	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/13 21:27	https://github.com/google/kmsan.git master	57b5797c8013	fa0594c3	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/12 21:44	https://github.com/google/kmsan.git master	57b5797c8013	f415556d	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/12 10:32	https://github.com/google/kmsan.git master	57b5797c8013	a4869c92	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/12 08:55	https://github.com/google/kmsan.git master	57b5797c8013	a4869c92	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/11 16:21	https://github.com/google/kmsan.git master	57b5797c8013	8f5a7b8c	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/10 05:44	https://github.com/google/kmsan.git master	57b5797c8013	8f5a7b8c	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/09 13:04	https://github.com/google/kmsan.git master	57b5797c8013	281e815f	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/08 05:01	https://github.com/google/kmsan.git master	57b5797c8013	95793bce	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/07 21:43	https://github.com/google/kmsan.git master	57b5797c8013	4846d5c1	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/06 13:23	https://github.com/google/kmsan.git master	57b5797c8013	6c4484eb	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/06 12:35	https://github.com/google/kmsan.git master	57b5797c8013	6c4484eb	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/02 20:07	https://github.com/google/kmsan.git master	57b5797c8013	55aa55c2	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/02 14:19	https://github.com/google/kmsan.git master	57b5797c8013	658ebc66	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/02 01:12	https://github.com/google/kmsan.git master	57b5797c8013	658ebc66	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/01 10:33	https://github.com/google/kmsan.git master	57b5797c8013	658ebc66	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/07/01 00:17	https://github.com/google/kmsan.git master	57b5797c8013	38a885d1	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/06/30 18:48	https://github.com/google/kmsan.git master	57b5797c8013	84fd4c77	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/06/28 14:46	https://github.com/google/kmsan.git master	57b5797c8013	9d2ab5df	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/06/27 22:39	https://github.com/google/kmsan.git master	57b5797c8013	9d2ab5df	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/06/25 01:07	https://github.com/google/kmsan.git master	a520ce29b172	0edbbe31	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/06/24 06:13	https://github.com/google/kmsan.git master	31ffdb453231	fe4ab389	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/06/24 02:08	https://github.com/google/kmsan.git master	31ffdb453231	fe4ab389	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/06/23 19:01	https://github.com/google/kmsan.git master	31ffdb453231	aba2b2fb	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/06/23 05:35	https://github.com/google/kmsan.git master	6a6a67f21dec	aba2b2fb	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/06/21 20:30	https://github.com/google/kmsan.git master	6a6a67f21dec	aba2b2fb	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/06/16 15:41	https://github.com/google/kmsan.git master	7bcc9a7be76b	c06f97ad	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/06/14 00:13	https://github.com/google/kmsan.git master	6099c9da2f7d	1ba81399	.config	log	report	info	KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386	2021/01/14 10:24	https://github.com/google/kmsan.git master	73d62e81b476	269d24e8	.config	log	report	info
ci-upstream-kmsan-gce-386	2020/03/12 09:01	https://github.com/google/kmsan.git master	8bbbc5cf3dca	d850e9d0	.config	log	report
ci-upstream-kmsan-gce-386	2020/03/11 16:35	https://github.com/google/kmsan.git master	8bbbc5cf3dca	e7caca8e	.config	log	report