INIT: Entering runlevel: 2 [info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.12' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 29.979767] FAULT_INJECTION: forcing a failure. [ 29.979767] name failslab, interval 1, probability 0, space 0, times 1 [ 29.991082] CPU: 0 PID: 3581 Comm: syzkaller910547 Not tainted 4.16.0+ #84 [ 29.998095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 30.007454] Call Trace: [ 30.010097] dump_stack+0x185/0x1d0 [ 30.013746] should_fail+0x87b/0xab0 [ 30.017453] ================================================================== [ 30.024800] BUG: KMSAN: uninit-value in kernel_text_address+0x248/0x3a0 [ 30.031540] CPU: 0 PID: 3581 Comm: syzkaller910547 Not tainted 4.16.0+ #84 [ 30.038526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 30.047852] Call Trace: [ 30.050423] dump_stack+0x14a/0x1d0 [ 30.054036] ? kernel_text_address+0x248/0x3a0 [ 30.058596] kmsan_report+0x142/0x240 [ 30.062371] __msan_warning_32+0x6c/0xb0 [ 30.066408] kernel_text_address+0x248/0x3a0 [ 30.070798] __kernel_text_address+0x34/0xe0 [ 30.075182] show_trace_log_lvl+0x954/0x1030 [ 30.079568] ? should_failslab+0x279/0x2a0 [ 30.083784] show_stack+0xfc/0x150 [ 30.087299] ? print_worker_info+0x1b0/0x660 [ 30.091681] dump_stack+0x185/0x1d0 [ 30.095285] should_fail+0x87b/0xab0 [ 30.098974] should_failslab+0x279/0x2a0 [ 30.103016] __kmalloc+0xc2/0x350 [ 30.106454] ? sctp_stream_init_ext+0x6a/0x200 [ 30.111020] sctp_stream_init_ext+0x6a/0x200 [ 30.115418] sctp_sendmsg+0x3747/0x6020 [ 30.119372] ? rw_copy_check_uvector+0x5af/0x6c0 [ 30.124110] ? sctp_getsockopt+0x145b0/0x145b0 [ 30.128667] inet_sendmsg+0x48d/0x740 [ 30.132443] ? security_socket_sendmsg+0x9e/0x210 [ 30.137261] ? inet_getname+0x500/0x500 [ 30.141213] ___sys_sendmsg+0xec0/0x1310 [ 30.145249] ? kstrtoull+0x766/0x7e0 [ 30.148938] ? __fdget+0x4e/0x60 [ 30.152281] ? __fget_light+0x56/0x710 [ 30.156142] ? __fdget+0x4e/0x60 [ 30.159484] ? __fget_light+0x1dc/0x710 [ 30.163436] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 30.168784] ? __fget_light+0x1f5/0x710 [ 30.172739] __sys_sendmmsg+0x42d/0x800 [ 30.176686] ? __msan_poison_alloca+0x15c/0x1d0 [ 30.181338] ? syscall_return_slowpath+0xe9/0x700 [ 30.186156] ? prepare_exit_to_usermode+0x4a/0x3a0 [ 30.191071] SYSC_sendmmsg+0xc4/0x110 [ 30.194848] SyS_sendmmsg+0x63/0x90 [ 30.198511] do_syscall_64+0x309/0x430 [ 30.202385] ? __sys_sendmmsg+0x800/0x800 [ 30.206514] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 30.211677] RIP: 0033:0x440689 [ 30.214841] RSP: 002b:00007ffffb7904c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 30.222524] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000440689 [ 30.229767] RDX: 0000000000000002 RSI: 0000000020007c00 RDI: 0000000000000003 [ 30.237027] RBP: 00007ffffb7904d0 R08: 0000000000000001 R09: 0000000000000031 [ 30.244280] R10: 0000000000000000 R11: 0000000000000246 R12: 0100000000000000 [ 30.251530] R13: ffffffffffffffff R14: 0000408000000001 R15: 0000000000000004 [ 30.258782] [ 30.260387] Local variable description: ----sackh.i.i@sctp_do_sm [ 30.266502] Variable was created at: [ 30.270195] sctp_do_sm+0xfa/0x8c20 [ 30.273795] sctp_assoc_bh_rcv+0x6cd/0xab0 [ 30.277997] ================================================================== [ 30.285330] Disabling lock debugging due to kernel taint [ 30.290753] Kernel panic - not syncing: panic_on_warn set ... [ 30.290753] [ 30.298091] CPU: 0 PID: 3581 Comm: syzkaller910547 Tainted: G B 4.16.0+ #84 [ 30.306377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 30.315703] Call Trace: [ 30.318267] dump_stack+0x14a/0x1d0 [ 30.321870] panic+0x39d/0x940 [ 30.325057] ? kernel_text_address+0x248/0x3a0 [ 30.329874] kmsan_report+0x238/0x240 [ 30.333653] __msan_warning_32+0x6c/0xb0 [ 30.337691] kernel_text_address+0x248/0x3a0 [ 30.342082] __kernel_text_address+0x34/0xe0 [ 30.346469] show_trace_log_lvl+0x954/0x1030 [ 30.350855] ? should_failslab+0x279/0x2a0 [ 30.355074] show_stack+0xfc/0x150 [ 30.358590] ? print_worker_info+0x1b0/0x660 [ 30.362974] dump_stack+0x185/0x1d0 [ 30.366580] should_fail+0x87b/0xab0 [ 30.370272] should_failslab+0x279/0x2a0 [ 30.374312] __kmalloc+0xc2/0x350 [ 30.377740] ? sctp_stream_init_ext+0x6a/0x200 [ 30.382296] sctp_stream_init_ext+0x6a/0x200 [ 30.386689] sctp_sendmsg+0x3747/0x6020 [ 30.390643] ? rw_copy_check_uvector+0x5af/0x6c0 [ 30.395388] ? sctp_getsockopt+0x145b0/0x145b0 [ 30.399945] inet_sendmsg+0x48d/0x740 [ 30.403723] ? security_socket_sendmsg+0x9e/0x210 [ 30.408551] ? inet_getname+0x500/0x500 [ 30.412505] ___sys_sendmsg+0xec0/0x1310 [ 30.416543] ? kstrtoull+0x766/0x7e0 [ 30.420234] ? __fdget+0x4e/0x60 [ 30.423577] ? __fget_light+0x56/0x710 [ 30.427441] ? __fdget+0x4e/0x60 [ 30.430782] ? __fget_light+0x1dc/0x710 [ 30.434732] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 30.440074] ? __fget_light+0x1f5/0x710 [ 30.444043] __sys_sendmmsg+0x42d/0x800 [ 30.447996] ? __msan_poison_alloca+0x15c/0x1d0 [ 30.452644] ? syscall_return_slowpath+0xe9/0x700 [ 30.457463] ? prepare_exit_to_usermode+0x4a/0x3a0 [ 30.462373] SYSC_sendmmsg+0xc4/0x110 [ 30.466151] SyS_sendmmsg+0x63/0x90 [ 30.469754] do_syscall_64+0x309/0x430 [ 30.473617] ? __sys_sendmmsg+0x800/0x800 [ 30.477743] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 30.482909] RIP: 0033:0x440689 [ 30.486070] RSP: 002b:00007ffffb7904c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 30.493990] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000440689 [ 30.501241] RDX: 0000000000000002 RSI: 0000000020007c00 RDI: 0000000000000003 [ 30.508485] RBP: 00007ffffb7904d0 R08: 0000000000000001 R09: 0000000000000031 [ 30.515729] R10: 0000000000000000 R11: 0000000000000246 R12: 0100000000000000 [ 30.522976] R13: ffffffffffffffff R14: 0000408000000001 R15: 0000000000000004 [ 30.530670] Dumping ftrace buffer: [ 30.534192] (ftrace buffer empty) [ 30.537880] Kernel Offset: disabled [ 30.541488] Rebooting in 86400 seconds..