INIT: Entering runlevel: 2 [info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.60' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 39.325930] ================================================================== [ 39.333311] BUG: KMSAN: uninit-value in pointer+0x11e5/0x1410 [ 39.339172] CPU: 0 PID: 4507 Comm: syz-executor218 Not tainted 4.16.0+ #87 [ 39.346167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 39.355494] Call Trace: [ 39.358072] dump_stack+0x185/0x1d0 [ 39.361683] ? pointer+0x11e5/0x1410 [ 39.365375] kmsan_report+0x142/0x240 [ 39.369154] __msan_warning_32+0x6c/0xb0 [ 39.373195] ? futex_wait_queue_me+0x401/0x710 [ 39.377752] pointer+0x11e5/0x1410 [ 39.381270] ? futex_wait_queue_me+0x476/0x710 [ 39.385828] vsnprintf+0xa2d/0x33c0 [ 39.389447] seq_printf+0x29f/0x420 [ 39.393076] ? futex_wait_queue_me+0x476/0x710 [ 39.397636] ? futex_wait_queue_me+0x476/0x710 [ 39.402195] ? futex_wait_queue_me+0x476/0x710 [ 39.406755] proc_pid_stack+0x326/0x470 [ 39.410709] proc_single_show+0x1af/0x300 [ 39.414832] ? proc_pid_wchan+0x250/0x250 [ 39.418959] ? proc_single_open+0x90/0x90 [ 39.423085] traverse+0x3c4/0xe60 [ 39.426517] ? __msan_poison_alloca+0x15c/0x1d0 [ 39.431164] seq_read+0x3dc/0x2260 [ 39.434680] ? security_file_permission+0x473/0x4b0 [ 39.439689] do_iter_read+0x880/0xd70 [ 39.443471] ? seq_open+0x360/0x360 [ 39.447078] vfs_readv+0x1ec/0x260 [ 39.450602] default_file_splice_read+0xa9a/0x1120 [ 39.455515] ? SYSC_tee+0x13d0/0x13d0 [ 39.459290] splice_direct_to_actor+0x4c6/0x1040 [ 39.464029] ? do_splice_direct+0x540/0x540 [ 39.468336] ? security_file_permission+0x28f/0x4b0 [ 39.473340] ? rw_verify_area+0x35e/0x580 [ 39.477466] do_splice_direct+0x335/0x540 [ 39.481592] do_sendfile+0x1067/0x1e40 [ 39.485459] SYSC_sendfile64+0x1b3/0x300 [ 39.489496] SyS_sendfile64+0x64/0x90 [ 39.493272] do_syscall_64+0x309/0x430 [ 39.497135] ? SYSC_sendfile+0x320/0x320 [ 39.501176] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 39.506340] RIP: 0033:0x445609 [ 39.509503] RSP: 002b:00007f43c0410d18 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 39.517195] RAX: ffffffffffffffda RBX: 00000000006dac24 RCX: 0000000000445609 [ 39.524445] RDX: 0000000020000040 RSI: 0000000000000003 RDI: 0000000000000004 [ 39.531696] RBP: 0000000000000000 R08: 65732f636f72702f R09: 65732f636f72702f [ 39.538942] R10: 00000800400000ff R11: 0000000000000246 R12: 00007f43c0410d20 [ 39.546185] R13: 00000000006dac20 R14: 006a64615f6d6f6f R15: 0000000000000003 [ 39.553431] [ 39.555033] Uninit was stored to memory at: [ 39.559339] kmsan_internal_chain_origin+0x12b/0x210 [ 39.564419] __msan_chain_origin+0x69/0xc0 [ 39.568632] __save_stack_trace+0x829/0xb00 [ 39.572932] save_stack_trace_tsk+0x258/0x2f0 [ 39.577406] proc_pid_stack+0x26a/0x470 [ 39.581356] proc_single_show+0x1af/0x300 [ 39.585478] traverse+0x3c4/0xe60 [ 39.588907] seq_read+0x3dc/0x2260 [ 39.592424] do_iter_read+0x880/0xd70 [ 39.596198] vfs_readv+0x1ec/0x260 [ 39.599711] default_file_splice_read+0xa9a/0x1120 [ 39.604614] splice_direct_to_actor+0x4c6/0x1040 [ 39.609345] do_splice_direct+0x335/0x540 [ 39.613467] do_sendfile+0x1067/0x1e40 [ 39.617331] SYSC_sendfile64+0x1b3/0x300 [ 39.621372] SyS_sendfile64+0x64/0x90 [ 39.625150] do_syscall_64+0x309/0x430 [ 39.629018] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 39.634189] Uninit was stored to memory at: [ 39.638493] kmsan_internal_chain_origin+0x12b/0x210 [ 39.643569] __msan_chain_origin+0x69/0xc0 [ 39.647784] update_stack_state+0x959/0xa40 [ 39.652089] unwind_next_frame+0x618/0xe50 [ 39.656302] __save_stack_trace+0x734/0xb00 [ 39.660600] save_stack_trace_tsk+0x258/0x2f0 [ 39.665074] proc_pid_stack+0x26a/0x470 [ 39.669035] proc_single_show+0x1af/0x300 [ 39.673165] traverse+0x3c4/0xe60 [ 39.676590] seq_read+0x3dc/0x2260 [ 39.680118] do_iter_read+0x880/0xd70 [ 39.683898] vfs_readv+0x1ec/0x260 [ 39.687414] default_file_splice_read+0xa9a/0x1120 [ 39.692326] splice_direct_to_actor+0x4c6/0x1040 [ 39.697064] do_splice_direct+0x335/0x540 [ 39.701186] do_sendfile+0x1067/0x1e40 [ 39.705054] SYSC_sendfile64+0x1b3/0x300 [ 39.709098] SyS_sendfile64+0x64/0x90 [ 39.712876] do_syscall_64+0x309/0x430 [ 39.716739] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 39.721900] Local variable description: ----flags.i.i.i@rcu_all_qs [ 39.728187] Variable was created at: [ 39.731877] rcu_all_qs+0x32/0x1f0 [ 39.735391] _cond_resched+0x3c/0xd0 [ 39.739079] ================================================================== [ 39.746420] Disabling lock debugging due to kernel taint [ 39.751846] Kernel panic - not syncing: panic_on_warn set ... [ 39.751846] [ 39.759185] CPU: 0 PID: 4507 Comm: syz-executor218 Tainted: G B 4.16.0+ #87 [ 39.767474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 39.776812] Call Trace: [ 39.779379] dump_stack+0x185/0x1d0 [ 39.782988] panic+0x39d/0x940 [ 39.786169] ? pointer+0x11e5/0x1410 [ 39.789863] kmsan_report+0x238/0x240 [ 39.793645] __msan_warning_32+0x6c/0xb0 [ 39.797693] ? futex_wait_queue_me+0x401/0x710 [ 39.802258] pointer+0x11e5/0x1410 [ 39.805778] ? futex_wait_queue_me+0x476/0x710 [ 39.810347] vsnprintf+0xa2d/0x33c0 [ 39.813957] seq_printf+0x29f/0x420 [ 39.817567] ? futex_wait_queue_me+0x476/0x710 [ 39.822127] ? futex_wait_queue_me+0x476/0x710 [ 39.826684] ? futex_wait_queue_me+0x476/0x710 [ 39.831245] proc_pid_stack+0x326/0x470 [ 39.835197] proc_single_show+0x1af/0x300 [ 39.839322] ? proc_pid_wchan+0x250/0x250 [ 39.843446] ? proc_single_open+0x90/0x90 [ 39.847568] traverse+0x3c4/0xe60 [ 39.850998] ? __msan_poison_alloca+0x15c/0x1d0 [ 39.855649] seq_read+0x3dc/0x2260 [ 39.859168] ? security_file_permission+0x473/0x4b0 [ 39.864598] do_iter_read+0x880/0xd70 [ 39.868385] ? seq_open+0x360/0x360 [ 39.871990] vfs_readv+0x1ec/0x260 [ 39.875514] default_file_splice_read+0xa9a/0x1120 [ 39.880427] ? SYSC_tee+0x13d0/0x13d0 [ 39.884204] splice_direct_to_actor+0x4c6/0x1040 [ 39.888935] ? do_splice_direct+0x540/0x540 [ 39.893231] ? security_file_permission+0x28f/0x4b0 [ 39.898225] ? rw_verify_area+0x35e/0x580 [ 39.902355] do_splice_direct+0x335/0x540 [ 39.906484] do_sendfile+0x1067/0x1e40 [ 39.910355] SYSC_sendfile64+0x1b3/0x300 [ 39.914394] SyS_sendfile64+0x64/0x90 [ 39.918174] do_syscall_64+0x309/0x430 [ 39.922045] ? SYSC_sendfile+0x320/0x320 [ 39.926089] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 39.931254] RIP: 0033:0x445609 [ 39.934418] RSP: 002b:00007f43c0410d18 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 39.942101] RAX: ffffffffffffffda RBX: 00000000006dac24 RCX: 0000000000445609 [ 39.949344] RDX: 0000000020000040 RSI: 0000000000000003 RDI: 0000000000000004 [ 39.956588] RBP: 0000000000000000 R08: 65732f636f72702f R09: 65732f636f72702f [ 39.963832] R10: 00000800400000ff R11: 0000000000000246 R12: 00007f43c0410d20 [ 39.971081] R13: 00000000006dac20 R14: 006a64615f6d6f6f R15: 0000000000000003 [ 39.978781] Dumping ftrace buffer: [ 39.982297] (ftrace buffer empty) [ 39.985979] Kernel Offset: disabled [ 39.989589] Rebooting in 86400 seconds..