[ OK ] Started OpenBSD Secure Shell server. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.22' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 113.173231][ T8486] ===================================================== [ 113.180326][ T8486] BUG: KMSAN: uninit-value in nl_fib_input+0x31f/0xdb0 [ 113.187148][ T8486] CPU: 0 PID: 8486 Comm: syz-executor180 Not tainted 5.8.0-rc5-syzkaller #0 [ 113.195787][ T8486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 113.205814][ T8486] Call Trace: [ 113.209081][ T8486] dump_stack+0x1df/0x240 [ 113.213461][ T8486] kmsan_report+0xf7/0x1e0 [ 113.217855][ T8486] __msan_warning+0x58/0xa0 [ 113.222333][ T8486] nl_fib_input+0x31f/0xdb0 [ 113.226852][ T8486] ? kmsan_set_origin_checked+0x95/0xf0 [ 113.232374][ T8486] ? kmsan_get_metadata+0x11d/0x180 [ 113.237549][ T8486] netlink_unicast+0xf9e/0x1100 [ 113.242373][ T8486] ? ip_fib_net_exit+0x630/0x630 [ 113.247288][ T8486] netlink_sendmsg+0x1246/0x14d0 [ 113.252210][ T8486] ? netlink_getsockopt+0x1440/0x1440 [ 113.257555][ T8486] kernel_sendmsg+0x433/0x440 [ 113.262208][ T8486] sock_no_sendpage+0x235/0x300 [ 113.267039][ T8486] ? sock_no_mmap+0x30/0x30 [ 113.271516][ T8486] sock_sendpage+0x1e1/0x2c0 [ 113.276084][ T8486] pipe_to_sendpage+0x38c/0x4c0 [ 113.280907][ T8486] ? sock_fasync+0x250/0x250 [ 113.285473][ T8486] __splice_from_pipe+0x565/0xf00 [ 113.290514][ T8486] ? generic_splice_sendpage+0x2d0/0x2d0 [ 113.296131][ T8486] generic_splice_sendpage+0x1d5/0x2d0 [ 113.301566][ T8486] ? iter_file_splice_write+0x1800/0x1800 [ 113.307257][ T8486] direct_splice_actor+0x1fd/0x580 [ 113.312345][ T8486] ? kmsan_get_metadata+0x4f/0x180 [ 113.317431][ T8486] splice_direct_to_actor+0x6b2/0xf50 [ 113.322773][ T8486] ? do_splice_direct+0x580/0x580 [ 113.327782][ T8486] do_splice_direct+0x342/0x580 [ 113.332617][ T8486] do_sendfile+0x101b/0x1d40 [ 113.337191][ T8486] __se_sys_sendfile64+0x2bb/0x360 [ 113.342273][ T8486] ? kmsan_get_metadata+0x4f/0x180 [ 113.347358][ T8486] __x64_sys_sendfile64+0x56/0x70 [ 113.352356][ T8486] do_syscall_64+0xb0/0x150 [ 113.356836][ T8486] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 113.362701][ T8486] RIP: 0033:0x4402c9 [ 113.366576][ T8486] Code: Bad RIP value. [ 113.370616][ T8486] RSP: 002b:00007fff19bb7718 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 113.379003][ T8486] RAX: ffffffffffffffda RBX: 00007fff19bb7720 RCX: 00000000004402c9 [ 113.386947][ T8486] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004 [ 113.394893][ T8486] RBP: 00000000006ca018 R08: 65732f636f72702f R09: 65732f636f72702f [ 113.402840][ T8486] R10: 000000007fffffff R11: 0000000000000246 R12: 0000000000401b30 [ 113.410793][ T8486] R13: 0000000000401bc0 R14: 0000000000000000 R15: 0000000000000000 [ 113.418749][ T8486] [ 113.421055][ T8486] Uninit was stored to memory at: [ 113.426062][ T8486] kmsan_internal_chain_origin+0xad/0x130 [ 113.431759][ T8486] kmsan_memcpy_memmove_metadata+0x272/0x2e0 [ 113.437733][ T8486] kmsan_memcpy_metadata+0xb/0x10 [ 113.442733][ T8486] __msan_memcpy+0x43/0x50 [ 113.447123][ T8486] _copy_from_iter_full+0xbfe/0x13b0 [ 113.452381][ T8486] netlink_sendmsg+0xfaa/0x14d0 [ 113.457204][ T8486] kernel_sendmsg+0x433/0x440 [ 113.461854][ T8486] sock_no_sendpage+0x235/0x300 [ 113.466689][ T8486] sock_sendpage+0x1e1/0x2c0 [ 113.471276][ T8486] pipe_to_sendpage+0x38c/0x4c0 [ 113.476104][ T8486] __splice_from_pipe+0x565/0xf00 [ 113.481105][ T8486] generic_splice_sendpage+0x1d5/0x2d0 [ 113.486537][ T8486] direct_splice_actor+0x1fd/0x580 [ 113.491622][ T8486] splice_direct_to_actor+0x6b2/0xf50 [ 113.496969][ T8486] do_splice_direct+0x342/0x580 [ 113.501794][ T8486] do_sendfile+0x101b/0x1d40 [ 113.506357][ T8486] __se_sys_sendfile64+0x2bb/0x360 [ 113.511443][ T8486] __x64_sys_sendfile64+0x56/0x70 [ 113.516440][ T8486] do_syscall_64+0xb0/0x150 [ 113.521010][ T8486] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 113.526871][ T8486] [ 113.529180][ T8486] Uninit was created at: [ 113.533406][ T8486] kmsan_save_stack_with_flags+0x3c/0x90 [ 113.539044][ T8486] kmsan_alloc_page+0xb9/0x180 [ 113.543790][ T8486] __alloc_pages_nodemask+0x56a2/0x5dc0 [ 113.549308][ T8486] alloc_pages_current+0x672/0x990 [ 113.554413][ T8486] push_pipe+0x605/0xb70 [ 113.558672][ T8486] iov_iter_get_pages_alloc+0x18a9/0x21c0 [ 113.564363][ T8486] do_splice_to+0x4fc/0x14f0 [ 113.568931][ T8486] splice_direct_to_actor+0x45c/0xf50 [ 113.574274][ T8486] do_splice_direct+0x342/0x580 [ 113.579099][ T8486] do_sendfile+0x101b/0x1d40 [ 113.583664][ T8486] __se_sys_sendfile64+0x2bb/0x360 [ 113.588753][ T8486] __x64_sys_sendfile64+0x56/0x70 [ 113.593761][ T8486] do_syscall_64+0xb0/0x150 [ 113.598237][ T8486] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 113.604095][ T8486] ===================================================== [ 113.610997][ T8486] Disabling lock debugging due to kernel taint [ 113.617119][ T8486] Kernel panic - not syncing: panic_on_warn set ... [ 113.623684][ T8486] CPU: 0 PID: 8486 Comm: syz-executor180 Tainted: G B 5.8.0-rc5-syzkaller #0 [ 113.633713][ T8486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 113.643765][ T8486] Call Trace: [ 113.647038][ T8486] dump_stack+0x1df/0x240 [ 113.651349][ T8486] panic+0x3d5/0xc3e [ 113.655232][ T8486] kmsan_report+0x1df/0x1e0 [ 113.659712][ T8486] __msan_warning+0x58/0xa0 [ 113.664191][ T8486] nl_fib_input+0x31f/0xdb0 [ 113.668672][ T8486] ? kmsan_set_origin_checked+0x95/0xf0 [ 113.674192][ T8486] ? kmsan_get_metadata+0x11d/0x180 [ 113.679368][ T8486] netlink_unicast+0xf9e/0x1100 [ 113.684216][ T8486] ? ip_fib_net_exit+0x630/0x630 [ 113.689139][ T8486] netlink_sendmsg+0x1246/0x14d0 [ 113.694060][ T8486] ? netlink_getsockopt+0x1440/0x1440 [ 113.699405][ T8486] kernel_sendmsg+0x433/0x440 [ 113.704058][ T8486] sock_no_sendpage+0x235/0x300 [ 113.708891][ T8486] ? sock_no_mmap+0x30/0x30 [ 113.713369][ T8486] sock_sendpage+0x1e1/0x2c0 [ 113.717939][ T8486] pipe_to_sendpage+0x38c/0x4c0 [ 113.722761][ T8486] ? sock_fasync+0x250/0x250 [ 113.727331][ T8486] __splice_from_pipe+0x565/0xf00 [ 113.732332][ T8486] ? generic_splice_sendpage+0x2d0/0x2d0 [ 113.737946][ T8486] generic_splice_sendpage+0x1d5/0x2d0 [ 113.743381][ T8486] ? iter_file_splice_write+0x1800/0x1800 [ 113.749074][ T8486] direct_splice_actor+0x1fd/0x580 [ 113.754164][ T8486] ? kmsan_get_metadata+0x4f/0x180 [ 113.759251][ T8486] splice_direct_to_actor+0x6b2/0xf50 [ 113.764599][ T8486] ? do_splice_direct+0x580/0x580 [ 113.769607][ T8486] do_splice_direct+0x342/0x580 [ 113.774439][ T8486] do_sendfile+0x101b/0x1d40 [ 113.779017][ T8486] __se_sys_sendfile64+0x2bb/0x360 [ 113.784100][ T8486] ? kmsan_get_metadata+0x4f/0x180 [ 113.789187][ T8486] __x64_sys_sendfile64+0x56/0x70 [ 113.794186][ T8486] do_syscall_64+0xb0/0x150 [ 113.798665][ T8486] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 113.804529][ T8486] RIP: 0033:0x4402c9 [ 113.808391][ T8486] Code: Bad RIP value. [ 113.812428][ T8486] RSP: 002b:00007fff19bb7718 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 113.820809][ T8486] RAX: ffffffffffffffda RBX: 00007fff19bb7720 RCX: 00000000004402c9 [ 113.828753][ T8486] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004 [ 113.836707][ T8486] RBP: 00000000006ca018 R08: 65732f636f72702f R09: 65732f636f72702f [ 113.844656][ T8486] R10: 000000007fffffff R11: 0000000000000246 R12: 0000000000401b30 [ 113.852607][ T8486] R13: 0000000000401bc0 R14: 0000000000000000 R15: 0000000000000000 [ 113.861712][ T8486] Kernel Offset: 0x2600000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff) [ 113.873232][ T8486] Rebooting in 86400 seconds..