[ OK ] Started OpenBSD Secure Shell server. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.122' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 114.018045][ T8445] ===================================================== [ 114.025024][ T8445] BUG: KMSAN: uninit-value in wp512_process_buffer+0x49f9/0x4c90 [ 114.032739][ T8445] CPU: 0 PID: 8445 Comm: syz-executor729 Not tainted 5.8.0-rc5-syzkaller #0 [ 114.041395][ T8445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 114.051433][ T8445] Call Trace: [ 114.054720][ T8445] dump_stack+0x1df/0x240 [ 114.059026][ T8445] kmsan_report+0xf7/0x1e0 [ 114.063417][ T8445] __msan_warning+0x58/0xa0 [ 114.067899][ T8445] wp512_process_buffer+0x49f9/0x4c90 [ 114.073250][ T8445] ? kmsan_get_metadata+0x4f/0x180 [ 114.078334][ T8445] ? kmsan_get_metadata+0x11d/0x180 [ 114.083502][ T8445] ? kmsan_task_context_state+0x47/0x90 [ 114.089018][ T8445] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 114.095060][ T8445] ? update_stack_state+0xa18/0xb40 [ 114.100231][ T8445] ? kmsan_task_context_state+0x47/0x90 [ 114.105749][ T8445] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 114.111789][ T8445] ? update_stack_state+0xa18/0xb40 [ 114.116965][ T8445] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 114.123004][ T8445] ? __module_address+0x68/0x600 [ 114.127919][ T8445] ? is_module_text_address+0x4d/0x2a0 [ 114.133358][ T8445] ? __kernel_text_address+0x171/0x2d0 [ 114.138820][ T8445] ? unwind_get_return_address+0x8c/0x130 [ 114.144514][ T8445] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 114.150615][ T8445] ? arch_stack_walk+0x2a2/0x3e0 [ 114.155529][ T8445] ? stack_trace_save+0x1a0/0x1a0 [ 114.160533][ T8445] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 114.166588][ T8445] ? stack_trace_save+0x123/0x1a0 [ 114.171589][ T8445] ? kmsan_internal_chain_origin+0xfa/0x130 [ 114.177459][ T8445] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 114.183500][ T8445] ? kmsan_internal_chain_origin+0xad/0x130 [ 114.189516][ T8445] ? __msan_chain_origin+0x50/0x90 [ 114.194605][ T8445] ? wp512_update+0x74a/0xbe0 [ 114.199255][ T8445] ? crypto_shash_update+0x4e9/0x550 [ 114.204509][ T8445] ? shash_finup_unaligned+0xab/0x160 [ 114.209852][ T8445] ? crypto_shash_finup+0x2b4/0x6b0 [ 114.215021][ T8445] ? shash_digest_unaligned+0x22b/0x260 [ 114.220537][ T8445] ? shash_ahash_digest+0x788/0x8a0 [ 114.225706][ T8445] ? shash_async_digest+0xbb/0x110 [ 114.230806][ T8445] ? crypto_ahash_op+0x1c6/0x6c0 [ 114.235731][ T8445] ? crypto_ahash_digest+0xdc/0x150 [ 114.240900][ T8445] ? hash_sendpage+0x9cc/0xdf0 [ 114.245641][ T8445] ? sock_sendpage+0x1e1/0x2c0 [ 114.250378][ T8445] ? pipe_to_sendpage+0x38c/0x4c0 [ 114.255374][ T8445] ? __splice_from_pipe+0x565/0xf00 [ 114.260543][ T8445] ? generic_splice_sendpage+0x1d5/0x2d0 [ 114.266146][ T8445] ? direct_splice_actor+0x1fd/0x580 [ 114.271403][ T8445] ? splice_direct_to_actor+0x6b2/0xf50 [ 114.276933][ T8445] ? do_splice_direct+0x342/0x580 [ 114.282016][ T8445] ? do_sendfile+0x101b/0x1d40 [ 114.286754][ T8445] ? __se_sys_sendfile64+0x2bb/0x360 [ 114.292012][ T8445] ? __x64_sys_sendfile64+0x56/0x70 [ 114.297203][ T8445] ? do_syscall_64+0xb0/0x150 [ 114.301853][ T8445] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 114.307891][ T8445] ? __msan_get_context_state+0x9/0x20 [ 114.313324][ T8445] ? widen_string+0xba/0x830 [ 114.317888][ T8445] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 114.324018][ T8445] ? kmsan_task_context_state+0x47/0x90 [ 114.329537][ T8445] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 114.335575][ T8445] ? update_stack_state+0xa18/0xb40 [ 114.340751][ T8445] ? kmsan_task_context_state+0x47/0x90 [ 114.346271][ T8445] ? kmsan_get_metadata+0x11d/0x180 [ 114.351447][ T8445] wp512_update+0x5ca/0xbe0 [ 114.355934][ T8445] ? wp512_init+0x110/0x110 [ 114.360413][ T8445] crypto_shash_update+0x4e9/0x550 [ 114.365497][ T8445] ? __kernel_text_address+0x171/0x2d0 [ 114.370933][ T8445] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 114.376973][ T8445] ? arch_stack_walk+0x2a2/0x3e0 [ 114.381883][ T8445] ? stack_trace_save+0x1a0/0x1a0 [ 114.386884][ T8445] shash_finup_unaligned+0xab/0x160 [ 114.392061][ T8445] ? crypto_shash_finup+0x6b0/0x6b0 [ 114.397234][ T8445] crypto_shash_finup+0x2b4/0x6b0 [ 114.402265][ T8445] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 114.408310][ T8445] ? wp512_init+0xc7/0x110 [ 114.412702][ T8445] shash_digest_unaligned+0x22b/0x260 [ 114.418049][ T8445] ? crypto_shash_digest+0x3d0/0x3d0 [ 114.423306][ T8445] shash_ahash_digest+0x788/0x8a0 [ 114.428311][ T8445] shash_async_digest+0xbb/0x110 [ 114.433257][ T8445] crypto_ahash_op+0x1c6/0x6c0 [ 114.438004][ T8445] ? __kmalloc+0x115/0x460 [ 114.442482][ T8445] ? kmsan_get_metadata+0x11d/0x180 [ 114.447661][ T8445] ? kmsan_get_metadata+0x11d/0x180 [ 114.452834][ T8445] ? shash_async_finup+0x110/0x110 [ 114.457918][ T8445] ? shash_async_finup+0x110/0x110 [ 114.463006][ T8445] crypto_ahash_digest+0xdc/0x150 [ 114.468008][ T8445] hash_sendpage+0x9cc/0xdf0 [ 114.472592][ T8445] ? hash_recvmsg+0xd30/0xd30 [ 114.477258][ T8445] sock_sendpage+0x1e1/0x2c0 [ 114.481835][ T8445] pipe_to_sendpage+0x38c/0x4c0 [ 114.486662][ T8445] ? sock_fasync+0x250/0x250 [ 114.491237][ T8445] __splice_from_pipe+0x565/0xf00 [ 114.496240][ T8445] ? generic_splice_sendpage+0x2d0/0x2d0 [ 114.501856][ T8445] generic_splice_sendpage+0x1d5/0x2d0 [ 114.507292][ T8445] ? iter_file_splice_write+0x1800/0x1800 [ 114.513000][ T8445] direct_splice_actor+0x1fd/0x580 [ 114.518100][ T8445] ? kmsan_get_metadata+0x4f/0x180 [ 114.523197][ T8445] splice_direct_to_actor+0x6b2/0xf50 [ 114.528548][ T8445] ? do_splice_direct+0x580/0x580 [ 114.533571][ T8445] do_splice_direct+0x342/0x580 [ 114.538404][ T8445] do_sendfile+0x101b/0x1d40 [ 114.543049][ T8445] __se_sys_sendfile64+0x2bb/0x360 [ 114.548147][ T8445] ? kmsan_get_metadata+0x4f/0x180 [ 114.553286][ T8445] __x64_sys_sendfile64+0x56/0x70 [ 114.558289][ T8445] do_syscall_64+0xb0/0x150 [ 114.562769][ T8445] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 114.568637][ T8445] RIP: 0033:0x4403d9 [ 114.572504][ T8445] Code: Bad RIP value. [ 114.576550][ T8445] RSP: 002b:00007ffcb769fba8 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 114.584944][ T8445] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 00000000004403d9 [ 114.592945][ T8445] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005 [ 114.600894][ T8445] RBP: 00000000006ca018 R08: 65732f636f72702f R09: 65732f636f72702f [ 114.608840][ T8445] R10: 00000000000003ff R11: 0000000000000246 R12: 0000000000401c40 [ 114.616785][ T8445] R13: 0000000000401cd0 R14: 0000000000000000 R15: 0000000000000000 [ 114.624738][ T8445] [ 114.627040][ T8445] Uninit was stored to memory at: [ 114.632097][ T8445] kmsan_internal_chain_origin+0xad/0x130 [ 114.637789][ T8445] __msan_chain_origin+0x50/0x90 [ 114.642704][ T8445] wp512_update+0x74a/0xbe0 [ 114.647177][ T8445] crypto_shash_update+0x4e9/0x550 [ 114.652258][ T8445] shash_finup_unaligned+0xab/0x160 [ 114.657426][ T8445] crypto_shash_finup+0x2b4/0x6b0 [ 114.662423][ T8445] shash_digest_unaligned+0x22b/0x260 [ 114.667766][ T8445] shash_ahash_digest+0x788/0x8a0 [ 114.672763][ T8445] shash_async_digest+0xbb/0x110 [ 114.677676][ T8445] crypto_ahash_op+0x1c6/0x6c0 [ 114.682413][ T8445] crypto_ahash_digest+0xdc/0x150 [ 114.687408][ T8445] hash_sendpage+0x9cc/0xdf0 [ 114.691976][ T8445] sock_sendpage+0x1e1/0x2c0 [ 114.696540][ T8445] pipe_to_sendpage+0x38c/0x4c0 [ 114.701362][ T8445] __splice_from_pipe+0x565/0xf00 [ 114.706358][ T8445] generic_splice_sendpage+0x1d5/0x2d0 [ 114.711787][ T8445] direct_splice_actor+0x1fd/0x580 [ 114.716885][ T8445] splice_direct_to_actor+0x6b2/0xf50 [ 114.722227][ T8445] do_splice_direct+0x342/0x580 [ 114.727051][ T8445] do_sendfile+0x101b/0x1d40 [ 114.731611][ T8445] __se_sys_sendfile64+0x2bb/0x360 [ 114.736692][ T8445] __x64_sys_sendfile64+0x56/0x70 [ 114.741686][ T8445] do_syscall_64+0xb0/0x150 [ 114.746161][ T8445] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 114.752021][ T8445] [ 114.754320][ T8445] Uninit was created at: [ 114.758556][ T8445] kmsan_save_stack_with_flags+0x3c/0x90 [ 114.764180][ T8445] kmsan_alloc_page+0xb9/0x180 [ 114.768918][ T8445] __alloc_pages_nodemask+0x56a2/0x5dc0 [ 114.774440][ T8445] alloc_pages_current+0x672/0x990 [ 114.779524][ T8445] push_pipe+0x605/0xb70 [ 114.783737][ T8445] iov_iter_get_pages_alloc+0x18a9/0x21c0 [ 114.789427][ T8445] do_splice_to+0x4fc/0x14f0 [ 114.793987][ T8445] splice_direct_to_actor+0x45c/0xf50 [ 114.799330][ T8445] do_splice_direct+0x342/0x580 [ 114.804154][ T8445] do_sendfile+0x101b/0x1d40 [ 114.808719][ T8445] __se_sys_sendfile64+0x2bb/0x360 [ 114.813798][ T8445] __x64_sys_sendfile64+0x56/0x70 [ 114.818795][ T8445] do_syscall_64+0xb0/0x150 [ 114.823270][ T8445] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 114.829126][ T8445] ===================================================== [ 114.836070][ T8445] Disabling lock debugging due to kernel taint [ 114.842193][ T8445] Kernel panic - not syncing: panic_on_warn set ... [ 114.848755][ T8445] CPU: 0 PID: 8445 Comm: syz-executor729 Tainted: G B 5.8.0-rc5-syzkaller #0 [ 114.858782][ T8445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 114.868985][ T8445] Call Trace: [ 114.872253][ T8445] dump_stack+0x1df/0x240 [ 114.876563][ T8445] panic+0x3d5/0xc3e [ 114.880448][ T8445] kmsan_report+0x1df/0x1e0 [ 114.884928][ T8445] __msan_warning+0x58/0xa0 [ 114.889408][ T8445] wp512_process_buffer+0x49f9/0x4c90 [ 114.894811][ T8445] ? kmsan_get_metadata+0x4f/0x180 [ 114.899898][ T8445] ? kmsan_get_metadata+0x11d/0x180 [ 114.905090][ T8445] ? kmsan_task_context_state+0x47/0x90 [ 114.910616][ T8445] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 114.916658][ T8445] ? update_stack_state+0xa18/0xb40 [ 114.921832][ T8445] ? kmsan_task_context_state+0x47/0x90 [ 114.927355][ T8445] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 114.933403][ T8445] ? update_stack_state+0xa18/0xb40 [ 114.938579][ T8445] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 114.944621][ T8445] ? __module_address+0x68/0x600 [ 114.949540][ T8445] ? is_module_text_address+0x4d/0x2a0 [ 114.954978][ T8445] ? __kernel_text_address+0x171/0x2d0 [ 114.960414][ T8445] ? unwind_get_return_address+0x8c/0x130 [ 114.966112][ T8445] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 114.972155][ T8445] ? arch_stack_walk+0x2a2/0x3e0 [ 114.977120][ T8445] ? stack_trace_save+0x1a0/0x1a0 [ 114.982189][ T8445] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 114.988238][ T8445] ? stack_trace_save+0x123/0x1a0 [ 114.993244][ T8445] ? kmsan_internal_chain_origin+0xfa/0x130 [ 114.999217][ T8445] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 115.005261][ T8445] ? kmsan_internal_chain_origin+0xad/0x130 [ 115.011129][ T8445] ? __msan_chain_origin+0x50/0x90 [ 115.016214][ T8445] ? wp512_update+0x74a/0xbe0 [ 115.020862][ T8445] ? crypto_shash_update+0x4e9/0x550 [ 115.026118][ T8445] ? shash_finup_unaligned+0xab/0x160 [ 115.031460][ T8445] ? crypto_shash_finup+0x2b4/0x6b0 [ 115.036629][ T8445] ? shash_digest_unaligned+0x22b/0x260 [ 115.042147][ T8445] ? shash_ahash_digest+0x788/0x8a0 [ 115.047316][ T8445] ? shash_async_digest+0xbb/0x110 [ 115.052405][ T8445] ? crypto_ahash_op+0x1c6/0x6c0 [ 115.057317][ T8445] ? crypto_ahash_digest+0xdc/0x150 [ 115.062504][ T8445] ? hash_sendpage+0x9cc/0xdf0 [ 115.067242][ T8445] ? sock_sendpage+0x1e1/0x2c0 [ 115.071978][ T8445] ? pipe_to_sendpage+0x38c/0x4c0 [ 115.076976][ T8445] ? __splice_from_pipe+0x565/0xf00 [ 115.082149][ T8445] ? generic_splice_sendpage+0x1d5/0x2d0 [ 115.087768][ T8445] ? direct_splice_actor+0x1fd/0x580 [ 115.093050][ T8445] ? splice_direct_to_actor+0x6b2/0xf50 [ 115.098584][ T8445] ? do_splice_direct+0x342/0x580 [ 115.103595][ T8445] ? do_sendfile+0x101b/0x1d40 [ 115.108331][ T8445] ? __se_sys_sendfile64+0x2bb/0x360 [ 115.113607][ T8445] ? __x64_sys_sendfile64+0x56/0x70 [ 115.118807][ T8445] ? do_syscall_64+0xb0/0x150 [ 115.123462][ T8445] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 115.129503][ T8445] ? __msan_get_context_state+0x9/0x20 [ 115.134936][ T8445] ? widen_string+0xba/0x830 [ 115.139501][ T8445] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 115.145631][ T8445] ? kmsan_task_context_state+0x47/0x90 [ 115.151151][ T8445] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 115.157192][ T8445] ? update_stack_state+0xa18/0xb40 [ 115.162365][ T8445] ? kmsan_task_context_state+0x47/0x90 [ 115.167899][ T8445] ? kmsan_get_metadata+0x11d/0x180 [ 115.173074][ T8445] wp512_update+0x5ca/0xbe0 [ 115.177563][ T8445] ? wp512_init+0x110/0x110 [ 115.182056][ T8445] crypto_shash_update+0x4e9/0x550 [ 115.187143][ T8445] ? __kernel_text_address+0x171/0x2d0 [ 115.192596][ T8445] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 115.198642][ T8445] ? arch_stack_walk+0x2a2/0x3e0 [ 115.203554][ T8445] ? stack_trace_save+0x1a0/0x1a0 [ 115.208557][ T8445] shash_finup_unaligned+0xab/0x160 [ 115.213732][ T8445] ? crypto_shash_finup+0x6b0/0x6b0 [ 115.218901][ T8445] crypto_shash_finup+0x2b4/0x6b0 [ 115.223904][ T8445] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 115.229947][ T8445] ? wp512_init+0xc7/0x110 [ 115.234337][ T8445] shash_digest_unaligned+0x22b/0x260 [ 115.239687][ T8445] ? crypto_shash_digest+0x3d0/0x3d0 [ 115.244945][ T8445] shash_ahash_digest+0x788/0x8a0 [ 115.249948][ T8445] shash_async_digest+0xbb/0x110 [ 115.254863][ T8445] crypto_ahash_op+0x1c6/0x6c0 [ 115.259614][ T8445] ? __kmalloc+0x115/0x460 [ 115.264003][ T8445] ? kmsan_get_metadata+0x11d/0x180 [ 115.269172][ T8445] ? kmsan_get_metadata+0x11d/0x180 [ 115.274353][ T8445] ? shash_async_finup+0x110/0x110 [ 115.279438][ T8445] ? shash_async_finup+0x110/0x110 [ 115.284523][ T8445] crypto_ahash_digest+0xdc/0x150 [ 115.289539][ T8445] hash_sendpage+0x9cc/0xdf0 [ 115.294110][ T8445] ? hash_recvmsg+0xd30/0xd30 [ 115.298768][ T8445] sock_sendpage+0x1e1/0x2c0 [ 115.303333][ T8445] pipe_to_sendpage+0x38c/0x4c0 [ 115.308155][ T8445] ? sock_fasync+0x250/0x250 [ 115.312722][ T8445] __splice_from_pipe+0x565/0xf00 [ 115.317734][ T8445] ? generic_splice_sendpage+0x2d0/0x2d0 [ 115.323366][ T8445] generic_splice_sendpage+0x1d5/0x2d0 [ 115.328802][ T8445] ? iter_file_splice_write+0x1800/0x1800 [ 115.334495][ T8445] direct_splice_actor+0x1fd/0x580 [ 115.339595][ T8445] ? kmsan_get_metadata+0x4f/0x180 [ 115.344692][ T8445] splice_direct_to_actor+0x6b2/0xf50 [ 115.350043][ T8445] ? do_splice_direct+0x580/0x580 [ 115.355055][ T8445] do_splice_direct+0x342/0x580 [ 115.359891][ T8445] do_sendfile+0x101b/0x1d40 [ 115.364488][ T8445] __se_sys_sendfile64+0x2bb/0x360 [ 115.369574][ T8445] ? kmsan_get_metadata+0x4f/0x180 [ 115.374680][ T8445] __x64_sys_sendfile64+0x56/0x70 [ 115.379691][ T8445] do_syscall_64+0xb0/0x150 [ 115.384289][ T8445] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 115.390158][ T8445] RIP: 0033:0x4403d9 [ 115.394020][ T8445] Code: Bad RIP value. [ 115.398057][ T8445] RSP: 002b:00007ffcb769fba8 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 115.406578][ T8445] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 00000000004403d9 [ 115.414523][ T8445] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005 [ 115.422469][ T8445] RBP: 00000000006ca018 R08: 65732f636f72702f R09: 65732f636f72702f [ 115.430505][ T8445] R10: 00000000000003ff R11: 0000000000000246 R12: 0000000000401c40 [ 115.438451][ T8445] R13: 0000000000401cd0 R14: 0000000000000000 R15: 0000000000000000 [ 115.447532][ T8445] Kernel Offset: 0x28000000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff) [ 115.459137][ T8445] Rebooting in 86400 seconds..