[ OK ] Started OpenBSD Secure Shell server. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 syzkaller login: [ 77.714239][ T8749] sshd (8749) used greatest stack depth: 4768 bytes left Warning: Permanently added '10.128.0.184' (ECDSA) to the list of known hosts. executing program [ 88.834875][ T32] audit: type=1400 audit(1590272288.213:8): avc: denied { execmem } for pid=8784 comm="syz-executor812" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 88.856541][ T8785] [ 88.859221][ T8785] ********************************************************** [ 88.866692][ T8785] ** NOTICE NOTICE NOTICE NOTICE NOTICE NOTICE NOTICE ** [ 88.874370][ T8785] ** ** [ 88.882028][ T8785] ** trace_printk() being used. Allocating extra memory. ** [ 88.889783][ T8785] ** ** [ 88.897182][ T8785] ** This means that this is a DEBUG kernel and it is ** [ 88.904700][ T8785] ** unsafe for production use. ** [ 88.912284][ T8785] ** ** [ 88.919804][ T8785] ** If you see this message and you are not debugging ** [ 88.927235][ T8785] ** the kernel, report this immediately to your vendor! ** [ 88.934722][ T8785] ** ** [ 88.942283][ T8785] ** NOTICE NOTICE NOTICE NOTICE NOTICE NOTICE NOTICE ** [ 88.949790][ T8785] ********************************************************** [ 89.018803][ C1] hrtimer: interrupt took 63817 ns executing program executing program executing program [ 91.443989][ T8788] ===================================================== [ 91.451078][ T8788] BUG: KMSAN: uninit-value in bpf_trace_printk+0x160/0x1380 [ 91.458358][ T8788] CPU: 1 PID: 8788 Comm: syz-executor812 Not tainted 5.7.0-rc4-syzkaller #0 [ 91.467115][ T8788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 91.477290][ T8788] Call Trace: [ 91.480577][ T8788] dump_stack+0x1c9/0x220 [ 91.484904][ T8788] kmsan_report+0xf7/0x1e0 [ 91.489314][ T8788] __msan_warning+0x58/0xa0 [ 91.493811][ T8788] bpf_trace_printk+0x160/0x1380 [ 91.498746][ T8788] ? kmsan_get_metadata+0x4f/0x180 [ 91.503874][ T8788] ? kmsan_get_metadata+0x11d/0x180 [ 91.509052][ T8788] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 91.514839][ T8788] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 91.520902][ T8788] ? ktime_get+0x2b8/0x400 [ 91.525299][ T8788] ? 0xffffffffc03cdac4 [ 91.529449][ T8788] bpf_prog_0605f9f479290f07+0x36/0x53c [ 91.534991][ T8788] ? 0xffffffffc03cdac4 [ 91.539130][ T8788] bpf_test_run+0x60c/0xe50 [ 91.543620][ T8788] ? kmsan_get_metadata+0x11d/0x180 [ 91.548825][ T8788] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 91.554992][ T8788] bpf_prog_test_run_skb+0xe69/0x27c0 [ 91.560357][ T8788] ? bpf_prog_test_run_tracing+0x770/0x770 [ 91.566173][ T8788] __do_sys_bpf+0xb923/0x155f0 [ 91.570924][ T8788] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 91.577072][ T8788] ? fd_install+0x14e/0x3b0 [ 91.581567][ T8788] ? __se_sys_perf_event_open+0x67ac/0x6c60 [ 91.587451][ T8788] ? __se_sys_perf_event_open+0x15c1/0x6c60 [ 91.593337][ T8788] ? kmsan_get_metadata+0x11d/0x180 [ 91.598544][ T8788] ? kmsan_get_metadata+0x11d/0x180 [ 91.603737][ T8788] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 91.609685][ T8788] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 91.615743][ T8788] ? prepare_exit_to_usermode+0x1ca/0x520 [ 91.621474][ T8788] ? kmsan_get_metadata+0x4f/0x180 [ 91.628056][ T8788] ? kmsan_get_metadata+0x4f/0x180 [ 91.633162][ T8788] __se_sys_bpf+0x8e/0xa0 [ 91.637648][ T8788] __ia32_sys_bpf+0x4a/0x70 [ 91.642153][ T8788] ? __se_sys_bpf+0xa0/0xa0 [ 91.646658][ T8788] do_fast_syscall_32+0x3bf/0x6d0 [ 91.651667][ T8788] entry_SYSENTER_compat+0x68/0x77 [ 91.656763][ T8788] RIP: 0023:0xf7f67dd9 [ 91.660821][ T8788] Code: 90 e8 0b 00 00 00 f3 90 0f ae e8 eb f9 8d 74 26 00 89 3c 24 c3 90 90 90 90 90 90 90 90 90 90 90 90 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 91.680456][ T8788] RSP: 002b:00000000ffa8a0dc EFLAGS: 00000282 ORIG_RAX: 0000000000000165 [ 91.688913][ T8788] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000040 [ 91.696914][ T8788] RDX: 0000000000000040 RSI: 0000000000000001 RDI: 00000000ffa8a1f4 [ 91.704867][ T8788] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 91.712817][ T8788] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 91.720785][ T8788] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 91.728742][ T8788] [ 91.731046][ T8788] Local variable ----filename@process_measurement created at: [ 91.738484][ T8788] process_measurement+0x1c0/0x2ce0 [ 91.743664][ T8788] process_measurement+0x1c0/0x2ce0 [ 91.748834][ T8788] ===================================================== [ 91.755742][ T8788] Disabling lock debugging due to kernel taint [ 91.761868][ T8788] Kernel panic - not syncing: panic_on_warn set ... [ 91.768432][ T8788] CPU: 1 PID: 8788 Comm: syz-executor812 Tainted: G B 5.7.0-rc4-syzkaller #0 [ 91.778470][ T8788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 91.788531][ T8788] Call Trace: [ 91.791805][ T8788] dump_stack+0x1c9/0x220 [ 91.796129][ T8788] panic+0x3d5/0xc3e [ 91.800122][ T8788] kmsan_report+0x1df/0x1e0 [ 91.804604][ T8788] __msan_warning+0x58/0xa0 [ 91.809090][ T8788] bpf_trace_printk+0x160/0x1380 [ 91.814018][ T8788] ? kmsan_get_metadata+0x4f/0x180 [ 91.819122][ T8788] ? kmsan_get_metadata+0x11d/0x180 [ 91.824329][ T8788] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 91.830139][ T8788] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 91.836191][ T8788] ? ktime_get+0x2b8/0x400 [ 91.840602][ T8788] ? 0xffffffffc03cdac4 [ 91.844736][ T8788] bpf_prog_0605f9f479290f07+0x36/0x53c [ 91.850284][ T8788] ? 0xffffffffc03cdac4 [ 91.854460][ T8788] bpf_test_run+0x60c/0xe50 [ 91.858967][ T8788] ? kmsan_get_metadata+0x11d/0x180 [ 91.864163][ T8788] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 91.869969][ T8788] bpf_prog_test_run_skb+0xe69/0x27c0 [ 91.875424][ T8788] ? bpf_prog_test_run_tracing+0x770/0x770 [ 91.881213][ T8788] __do_sys_bpf+0xb923/0x155f0 [ 91.885962][ T8788] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 91.892095][ T8788] ? fd_install+0x14e/0x3b0 [ 91.896580][ T8788] ? __se_sys_perf_event_open+0x67ac/0x6c60 [ 91.902453][ T8788] ? __se_sys_perf_event_open+0x15c1/0x6c60 [ 91.908330][ T8788] ? kmsan_get_metadata+0x11d/0x180 [ 91.913505][ T8788] ? kmsan_get_metadata+0x11d/0x180 [ 91.918702][ T8788] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 91.924507][ T8788] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 91.931091][ T8788] ? prepare_exit_to_usermode+0x1ca/0x520 [ 91.936790][ T8788] ? kmsan_get_metadata+0x4f/0x180 [ 91.941912][ T8788] ? kmsan_get_metadata+0x4f/0x180 [ 91.947004][ T8788] __se_sys_bpf+0x8e/0xa0 [ 91.951330][ T8788] __ia32_sys_bpf+0x4a/0x70 [ 91.955820][ T8788] ? __se_sys_bpf+0xa0/0xa0 [ 91.960302][ T8788] do_fast_syscall_32+0x3bf/0x6d0 [ 91.965320][ T8788] entry_SYSENTER_compat+0x68/0x77 [ 91.970527][ T8788] RIP: 0023:0xf7f67dd9 [ 91.974575][ T8788] Code: 90 e8 0b 00 00 00 f3 90 0f ae e8 eb f9 8d 74 26 00 89 3c 24 c3 90 90 90 90 90 90 90 90 90 90 90 90 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 91.994171][ T8788] RSP: 002b:00000000ffa8a0dc EFLAGS: 00000282 ORIG_RAX: 0000000000000165 [ 92.002560][ T8788] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000040 [ 92.010508][ T8788] RDX: 0000000000000040 RSI: 0000000000000001 RDI: 00000000ffa8a1f4 [ 92.018465][ T8788] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 92.026435][ T8788] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 92.034432][ T8788] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 92.043228][ T8788] ------------[ cut here ]------------ [ 92.048683][ T8788] kernel BUG at mm/kmsan/kmsan.h:87! [ 92.054665][ T8788] invalid opcode: 0000 [#1] SMP [ 92.059494][ T8788] CPU: 1 PID: 8788 Comm: syz-executor812 Tainted: G B 5.7.0-rc4-syzkaller #0 [ 92.069525][ T8788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 92.079653][ T8788] RIP: 0010:kmsan_internal_check_memory+0x3c0/0x3d0 [ 92.086475][ T8788] Code: 5b 41 5c 41 5d 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 71 46 29 b3 31 c0 e8 51 64 46 ff 0f 0b 0f 0b 0f 0b 0f 0b e8 72 82 46 ff 0f 0b <0f> 0b 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 83 ff [ 92.106055][ T8788] RSP: 0018:ffffa3b800d83358 EFLAGS: 00010046 [ 92.112096][ T8788] RAX: 0000000000000002 RBX: 0000000004ce00de RCX: 0000000004ce00de [ 92.120040][ T8788] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffffa3b800d83434 [ 92.128088][ T8788] RBP: ffffa3b800d83400 R08: 0000000000000000 R09: ffffa0c66fd28ed0 [ 92.136038][ T8788] R10: 0000000000000000 R11: ffffffffa9f7b600 R12: 0000000000000000 [ 92.143982][ T8788] R13: 0000000000000001 R14: 0000000000000006 R15: 0000000000000001 [ 92.151941][ T8788] FS: 0000000000000000(0000) GS:ffffa0c66fd00000(0063) knlGS:0000000008351840 [ 92.160841][ T8788] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 92.167399][ T8788] CR2: 0000000020000080 CR3: 00000000b4c86000 CR4: 00000000001406e0 [ 92.175359][ T8788] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 92.183305][ T8788] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 92.191248][ T8788] Call Trace: [ 92.194541][ T8788] kmsan_check_memory+0xd/0x10 [ 92.199279][ T8788] iowrite8+0x99/0x2e0 [ 92.203415][ T8788] pvpanic_panic_notify+0x99/0xc0 [ 92.208414][ T8788] ? pvpanic_mmio_remove+0x60/0x60 [ 92.213512][ T8788] atomic_notifier_call_chain+0x12a/0x240 [ 92.219211][ T8788] panic+0x468/0xc3e [ 92.223197][ T8788] kmsan_report+0x1df/0x1e0 [ 92.227678][ T8788] __msan_warning+0x58/0xa0 [ 92.232156][ T8788] bpf_trace_printk+0x160/0x1380 [ 92.237067][ T8788] ? kmsan_get_metadata+0x4f/0x180 [ 92.242154][ T8788] ? kmsan_get_metadata+0x11d/0x180 [ 92.247327][ T8788] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 92.253109][ T8788] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 92.259227][ T8788] ? ktime_get+0x2b8/0x400 [ 92.263637][ T8788] ? 0xffffffffc03cdac4 [ 92.267775][ T8788] bpf_prog_0605f9f479290f07+0x36/0x53c [ 92.273301][ T8788] ? 0xffffffffc03cdac4 [ 92.277441][ T8788] bpf_test_run+0x60c/0xe50 [ 92.281925][ T8788] ? kmsan_get_metadata+0x11d/0x180 [ 92.287118][ T8788] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 92.292902][ T8788] bpf_prog_test_run_skb+0xe69/0x27c0 [ 92.300349][ T8788] ? bpf_prog_test_run_tracing+0x770/0x770 [ 92.306131][ T8788] __do_sys_bpf+0xb923/0x155f0 [ 92.310875][ T8788] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 92.317005][ T8788] ? fd_install+0x14e/0x3b0 [ 92.321507][ T8788] ? __se_sys_perf_event_open+0x67ac/0x6c60 [ 92.327374][ T8788] ? __se_sys_perf_event_open+0x15c1/0x6c60 [ 92.333247][ T8788] ? kmsan_get_metadata+0x11d/0x180 [ 92.338430][ T8788] ? kmsan_get_metadata+0x11d/0x180 [ 92.343606][ T8788] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 92.349388][ T8788] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 92.355430][ T8788] ? prepare_exit_to_usermode+0x1ca/0x520 [ 92.361209][ T8788] ? kmsan_get_metadata+0x4f/0x180 [ 92.366305][ T8788] ? kmsan_get_metadata+0x4f/0x180 [ 92.371406][ T8788] __se_sys_bpf+0x8e/0xa0 [ 92.375716][ T8788] __ia32_sys_bpf+0x4a/0x70 [ 92.380193][ T8788] ? __se_sys_bpf+0xa0/0xa0 [ 92.384687][ T8788] do_fast_syscall_32+0x3bf/0x6d0 [ 92.389692][ T8788] entry_SYSENTER_compat+0x68/0x77 [ 92.394776][ T8788] RIP: 0023:0xf7f67dd9 [ 92.398824][ T8788] Code: 90 e8 0b 00 00 00 f3 90 0f ae e8 eb f9 8d 74 26 00 89 3c 24 c3 90 90 90 90 90 90 90 90 90 90 90 90 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 92.418417][ T8788] RSP: 002b:00000000ffa8a0dc EFLAGS: 00000282 ORIG_RAX: 0000000000000165 [ 92.426818][ T8788] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000040 [ 92.434764][ T8788] RDX: 0000000000000040 RSI: 0000000000000001 RDI: 00000000ffa8a1f4 [ 92.442712][ T8788] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 92.450676][ T8788] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 92.458638][ T8788] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 92.466598][ T8788] Modules linked in: [ 92.470472][ T8788] ---[ end trace 28460da16741a242 ]--- [ 92.475909][ T8788] RIP: 0010:kmsan_internal_check_memory+0x3c0/0x3d0 [ 92.482469][ T8788] Code: 5b 41 5c 41 5d 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 71 46 29 b3 31 c0 e8 51 64 46 ff 0f 0b 0f 0b 0f 0b 0f 0b e8 72 82 46 ff 0f 0b <0f> 0b 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 83 ff [ 92.502151][ T8788] RSP: 0018:ffffa3b800d83358 EFLAGS: 00010046 [ 92.508460][ T8788] RAX: 0000000000000002 RBX: 0000000004ce00de RCX: 0000000004ce00de [ 92.516436][ T8788] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffffa3b800d83434 [ 92.524392][ T8788] RBP: ffffa3b800d83400 R08: 0000000000000000 R09: ffffa0c66fd28ed0 [ 92.532400][ T8788] R10: 0000000000000000 R11: ffffffffa9f7b600 R12: 0000000000000000 [ 92.540355][ T8788] R13: 0000000000000001 R14: 0000000000000006 R15: 0000000000000001 [ 92.548310][ T8788] FS: 0000000000000000(0000) GS:ffffa0c66fd00000(0063) knlGS:0000000008351840 [ 92.557222][ T8788] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 92.563785][ T8788] CR2: 0000000020000080 CR3: 00000000b4c86000 CR4: 00000000001406e0 [ 92.571752][ T8788] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 92.579719][ T8788] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 92.587670][ T8788] Kernel panic - not syncing: Fatal exception [ 92.594425][ T8788] Kernel Offset: 0x23c00000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff) [ 92.606041][ T8788] Rebooting in 86400 seconds..