[ OK ] Started System Logging Service. [ OK ] Started getty on tty2-tty6 if dbus and logind are not available. [ **] A start job is running for OpenBSD …Shell server (1min 24s / 2min 45s)[ ***] A start job is running for OpenBSD …Shell server (1min 25s / 2min 45s)[ *** ] A start job is running for OpenBSD …Shell server (1min 26s / 2min 45s)[ *** ] A start job is running for OpenBSD …Shell server (1min 26s / 2min 45s)[*** ] A start job is running for OpenBSD …Shell server (1min 27s / 2min 45s)[** ] A start job is running for OpenBSD …Shell server (1min 28s / 2min 45s)[* ] A start job is running for OpenBSD …Shell server (1min 28s / 2min 45s)[ OK ] Started OpenBSD Secure Shell server. [ OK ] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch. [ OK ] Started Getty on tty6. [ OK ] Started Getty on tty5. [ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty2. [ OK ] Started Getty on tty1. [ OK ] Started Serial Getty on ttyS0. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.216' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 139.377687][ T8216] ===================================================== [ 139.384773][ T8216] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 139.392280][ T8216] CPU: 0 PID: 8216 Comm: syz-executor147 Not tainted 5.12.0-rc6-syzkaller #0 [ 139.401146][ T8216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 139.411194][ T8216] Call Trace: [ 139.414466][ T8216] dump_stack+0x24c/0x2e0 [ 139.418797][ T8216] kmsan_report+0xfb/0x1e0 [ 139.423236][ T8216] kmsan_internal_check_memory+0x48c/0x520 [ 139.429037][ T8216] kmsan_copy_to_user+0x9c/0xb0 [ 139.433881][ T8216] _copy_to_user+0x1ac/0x270 [ 139.438484][ T8216] fb_cmap_to_user+0x40a/0x990 [ 139.444545][ T8216] do_fb_ioctl+0xc53/0x1090 [ 139.449058][ T8216] ? kmsan_get_metadata+0x116/0x180 [ 139.454286][ T8216] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 139.460264][ T8216] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 139.466427][ T8216] ? do_vfs_ioctl+0x117f/0x3510 [ 139.471746][ T8216] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 139.479817][ T8216] ? kmsan_get_metadata+0x116/0x180 [ 139.488166][ T8216] fb_ioctl+0x1e4/0x210 [ 139.492588][ T8216] ? fb_write+0xd80/0xd80 [ 139.496922][ T8216] __se_sys_ioctl+0x311/0x4d0 [ 139.501623][ T8216] __x64_sys_ioctl+0x4a/0x70 [ 139.506227][ T8216] do_syscall_64+0x9f/0x140 [ 139.510745][ T8216] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 139.516798][ T8216] RIP: 0033:0x43fbd9 [ 139.521497][ T8216] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 139.545450][ T8216] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 139.554069][ T8216] RAX: ffffffffffffffda RBX: 0000000000400488 RCX: 000000000043fbd9 [ 139.562275][ T8216] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 139.571304][ T8216] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 139.579491][ T8216] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 0000000000403460 [ 139.588071][ T8216] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 139.596181][ T8216] [ 139.598513][ T8216] Uninit was created at: [ 139.602762][ T8216] kmsan_internal_poison_shadow+0x5c/0xf0 [ 139.608638][ T8216] kmsan_slab_alloc+0x8e/0xe0 [ 139.613906][ T8216] __kmalloc+0x387/0x550 [ 139.618238][ T8216] fb_alloc_cmap_gfp+0x39b/0xa70 [ 139.624325][ T8216] fb_alloc_cmap+0x95/0xb0 [ 139.628900][ T8216] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 139.635835][ T8216] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 139.642322][ T8216] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 139.649786][ T8216] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 139.655377][ T8216] drm_fbdev_generic_setup+0x39d/0xa00 [ 139.661749][ T8216] vkms_init+0x9d6/0xc43 [ 139.666708][ T8216] do_one_initcall+0x362/0x8d0 [ 139.671863][ T8216] do_initcall_level+0x1e7/0x35a [ 139.676912][ T8216] do_initcalls+0x127/0x1cb [ 139.681449][ T8216] do_basic_setup+0x33/0x36 [ 139.686126][ T8216] kernel_init_freeable+0x287/0x3cc [ 139.691568][ T8216] kernel_init+0x1f/0x840 [ 139.695898][ T8216] ret_from_fork+0x1f/0x30 [ 139.702077][ T8216] [ 139.707776][ T8216] Bytes 0-1 of 2 are uninitialized [ 139.712974][ T8216] Memory access of size 2 starts at ffff88810494f3c0 [ 139.719653][ T8216] Data copied to user address 0000000020007300 [ 139.728946][ T8216] ===================================================== [ 139.736119][ T8216] Disabling lock debugging due to kernel taint [ 139.742837][ T8216] ===================================================== [ 139.749904][ T8216] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 139.757713][ T8216] CPU: 0 PID: 8216 Comm: syz-executor147 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 139.767992][ T8216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 139.778082][ T8216] Call Trace: [ 139.781380][ T8216] dump_stack+0x24c/0x2e0 [ 139.786146][ T8216] kmsan_report+0xfb/0x1e0 [ 139.790597][ T8216] kmsan_internal_check_memory+0x48c/0x520 [ 139.796524][ T8216] kmsan_copy_to_user+0x9c/0xb0 [ 139.801645][ T8216] _copy_to_user+0x1ac/0x270 [ 139.806245][ T8216] fb_cmap_to_user+0x60c/0x990 [ 139.811320][ T8216] do_fb_ioctl+0xc53/0x1090 [ 139.815923][ T8216] ? kmsan_get_metadata+0x116/0x180 [ 139.821136][ T8216] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 139.827915][ T8216] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 139.834510][ T8216] ? do_vfs_ioctl+0x117f/0x3510 [ 139.839370][ T8216] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 139.845337][ T8216] ? kmsan_get_metadata+0x116/0x180 [ 139.850543][ T8216] fb_ioctl+0x1e4/0x210 [ 139.854888][ T8216] ? fb_write+0xd80/0xd80 [ 139.859408][ T8216] __se_sys_ioctl+0x311/0x4d0 [ 139.864105][ T8216] __x64_sys_ioctl+0x4a/0x70 [ 139.868781][ T8216] do_syscall_64+0x9f/0x140 [ 139.873287][ T8216] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 139.880565][ T8216] RIP: 0033:0x43fbd9 [ 139.884652][ T8216] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 139.904925][ T8216] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 139.913609][ T8216] RAX: ffffffffffffffda RBX: 0000000000400488 RCX: 000000000043fbd9 [ 139.921595][ T8216] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 139.929806][ T8216] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 139.937792][ T8216] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 0000000000403460 [ 139.945795][ T8216] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 139.953798][ T8216] [ 139.956121][ T8216] Uninit was created at: [ 139.960363][ T8216] kmsan_internal_poison_shadow+0x5c/0xf0 [ 139.966982][ T8216] kmsan_slab_alloc+0x8e/0xe0 [ 139.972126][ T8216] __kmalloc+0x387/0x550 [ 139.976397][ T8216] fb_alloc_cmap_gfp+0x42d/0xa70 [ 139.981337][ T8216] fb_alloc_cmap+0x95/0xb0 [ 139.985927][ T8216] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 139.991493][ T8216] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 139.997398][ T8216] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 140.004799][ T8216] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 140.010361][ T8216] drm_fbdev_generic_setup+0x39d/0xa00 [ 140.015938][ T8216] vkms_init+0x9d6/0xc43 [ 140.020294][ T8216] do_one_initcall+0x362/0x8d0 [ 140.025158][ T8216] do_initcall_level+0x1e7/0x35a executing program [ 140.030097][ T8216] do_initcalls+0x127/0x1cb [ 140.034634][ T8216] do_basic_setup+0x33/0x36 [ 140.039185][ T8216] kernel_init_freeable+0x287/0x3cc [ 140.044396][ T8216] kernel_init+0x1f/0x840 [ 140.048747][ T8216] ret_from_fork+0x1f/0x30 [ 140.053254][ T8216] [ 140.055567][ T8216] Bytes 0-1 of 2 are uninitialized [ 140.060665][ T8216] Memory access of size 2 starts at ffff888142d363c0 [ 140.067412][ T8216] ===================================================== [ 140.090018][ T8217] ===================================================== [ 140.096995][ T8217] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 140.104492][ T8217] CPU: 0 PID: 8217 Comm: syz-executor147 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 140.115288][ T8217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 140.128371][ T8217] Call Trace: [ 140.131785][ T8217] dump_stack+0x24c/0x2e0 [ 140.136145][ T8217] kmsan_report+0xfb/0x1e0 [ 140.140565][ T8217] kmsan_internal_check_memory+0x48c/0x520 [ 140.146373][ T8217] kmsan_copy_to_user+0x9c/0xb0 [ 140.151230][ T8217] _copy_to_user+0x1ac/0x270 [ 140.155812][ T8217] fb_cmap_to_user+0x40a/0x990 [ 140.160571][ T8217] do_fb_ioctl+0xc53/0x1090 [ 140.165077][ T8217] ? kmsan_get_metadata+0x116/0x180 [ 140.170264][ T8217] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 140.176086][ T8217] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 140.182227][ T8217] ? do_vfs_ioctl+0x117f/0x3510 [ 140.187079][ T8217] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 140.192880][ T8217] ? kmsan_get_metadata+0x116/0x180 [ 140.198107][ T8217] fb_ioctl+0x1e4/0x210 [ 140.202250][ T8217] ? fb_write+0xd80/0xd80 [ 140.206584][ T8217] __se_sys_ioctl+0x311/0x4d0 [ 140.211270][ T8217] __x64_sys_ioctl+0x4a/0x70 [ 140.215849][ T8217] do_syscall_64+0x9f/0x140 [ 140.220342][ T8217] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 140.226221][ T8217] RIP: 0033:0x43fbd9 [ 140.230464][ T8217] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 140.250174][ T8217] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 140.258591][ T8217] RAX: ffffffffffffffda RBX: 00000000000220a0 RCX: 000000000043fbd9 [ 140.266646][ T8217] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 140.274880][ T8217] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 140.282942][ T8217] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 00007ffc012a3b8c [ 140.291029][ T8217] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 140.299000][ T8217] [ 140.301307][ T8217] Uninit was created at: [ 140.305558][ T8217] kmsan_internal_poison_shadow+0x5c/0xf0 [ 140.311298][ T8217] kmsan_slab_alloc+0x8e/0xe0 [ 140.316078][ T8217] __kmalloc+0x387/0x550 [ 140.320409][ T8217] fb_alloc_cmap_gfp+0x39b/0xa70 [ 140.325459][ T8217] fb_alloc_cmap+0x95/0xb0 [ 140.329865][ T8217] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 140.335313][ T8217] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 140.341123][ T8217] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 140.348310][ T8217] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 140.354296][ T8217] drm_fbdev_generic_setup+0x39d/0xa00 [ 140.361087][ T8217] vkms_init+0x9d6/0xc43 [ 140.365423][ T8217] do_one_initcall+0x362/0x8d0 [ 140.370182][ T8217] do_initcall_level+0x1e7/0x35a [ 140.375116][ T8217] do_initcalls+0x127/0x1cb [ 140.379625][ T8217] do_basic_setup+0x33/0x36 [ 140.384144][ T8217] kernel_init_freeable+0x287/0x3cc [ 140.389331][ T8217] kernel_init+0x1f/0x840 [ 140.393677][ T8217] ret_from_fork+0x1f/0x30 [ 140.398083][ T8217] [ 140.400389][ T8217] Bytes 0-1 of 2 are uninitialized [ 140.405483][ T8217] Memory access of size 2 starts at ffff88810494f3c0 [ 140.412246][ T8217] Data copied to user address 0000000020007300 [ 140.418374][ T8217] ===================================================== [ 140.425694][ T8217] ===================================================== [ 140.432668][ T8217] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 140.441118][ T8217] CPU: 0 PID: 8217 Comm: syz-executor147 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 140.451291][ T8217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 140.461387][ T8217] Call Trace: [ 140.464686][ T8217] dump_stack+0x24c/0x2e0 [ 140.469068][ T8217] kmsan_report+0xfb/0x1e0 [ 140.473653][ T8217] kmsan_internal_check_memory+0x48c/0x520 [ 140.479927][ T8217] kmsan_copy_to_user+0x9c/0xb0 [ 140.484820][ T8217] _copy_to_user+0x1ac/0x270 [ 140.489443][ T8217] fb_cmap_to_user+0x60c/0x990 [ 140.494274][ T8217] do_fb_ioctl+0xc53/0x1090 [ 140.498824][ T8217] ? kmsan_get_metadata+0x116/0x180 [ 140.504063][ T8217] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 140.509990][ T8217] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 140.516096][ T8217] ? do_vfs_ioctl+0x117f/0x3510 [ 140.520992][ T8217] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 140.526844][ T8217] ? kmsan_get_metadata+0x116/0x180 [ 140.532095][ T8217] fb_ioctl+0x1e4/0x210 [ 140.536463][ T8217] ? fb_write+0xd80/0xd80 [ 140.540998][ T8217] __se_sys_ioctl+0x311/0x4d0 [ 140.545724][ T8217] __x64_sys_ioctl+0x4a/0x70 [ 140.550446][ T8217] do_syscall_64+0x9f/0x140 [ 140.554985][ T8217] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 140.561184][ T8217] RIP: 0033:0x43fbd9 [ 140.565115][ T8217] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 140.585670][ T8217] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 140.594210][ T8217] RAX: ffffffffffffffda RBX: 00000000000220a0 RCX: 000000000043fbd9 [ 140.602211][ T8217] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 140.612733][ T8217] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 140.625876][ T8217] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 00007ffc012a3b8c [ 140.639538][ T8217] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 140.647637][ T8217] [ 140.650322][ T8217] Uninit was created at: [ 140.654583][ T8217] kmsan_internal_poison_shadow+0x5c/0xf0 [ 140.660349][ T8217] kmsan_slab_alloc+0x8e/0xe0 [ 140.665149][ T8217] __kmalloc+0x387/0x550 [ 140.669431][ T8217] fb_alloc_cmap_gfp+0x42d/0xa70 [ 140.674503][ T8217] fb_alloc_cmap+0x95/0xb0 [ 140.678935][ T8217] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 140.684397][ T8217] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 140.690202][ T8217] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 140.697415][ T8217] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 140.702963][ T8217] drm_fbdev_generic_setup+0x39d/0xa00 [ 140.708525][ T8217] vkms_init+0x9d6/0xc43 [ 140.712894][ T8217] do_one_initcall+0x362/0x8d0 [ 140.717694][ T8217] do_initcall_level+0x1e7/0x35a [ 140.722646][ T8217] do_initcalls+0x127/0x1cb [ 140.727262][ T8217] do_basic_setup+0x33/0x36 [ 140.731780][ T8217] kernel_init_freeable+0x287/0x3cc [ 140.736978][ T8217] kernel_init+0x1f/0x840 executing program [ 140.741324][ T8217] ret_from_fork+0x1f/0x30 [ 140.745949][ T8217] [ 140.748277][ T8217] Bytes 0-1 of 2 are uninitialized [ 140.753385][ T8217] Memory access of size 2 starts at ffff888142d363c0 [ 140.760068][ T8217] ===================================================== [ 140.790050][ T8219] ===================================================== [ 140.797037][ T8219] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 140.804547][ T8219] CPU: 1 PID: 8219 Comm: syz-executor147 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 140.815053][ T8219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 140.825264][ T8219] Call Trace: [ 140.828563][ T8219] dump_stack+0x24c/0x2e0 [ 140.833003][ T8219] kmsan_report+0xfb/0x1e0 [ 140.837409][ T8219] kmsan_internal_check_memory+0x48c/0x520 [ 140.843536][ T8219] kmsan_copy_to_user+0x9c/0xb0 [ 140.848396][ T8219] _copy_to_user+0x1ac/0x270 [ 140.852997][ T8219] fb_cmap_to_user+0x40a/0x990 [ 140.857757][ T8219] do_fb_ioctl+0xc53/0x1090 [ 140.862443][ T8219] ? kmsan_get_metadata+0x116/0x180 [ 140.867659][ T8219] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 140.873588][ T8219] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 140.879671][ T8219] ? do_vfs_ioctl+0x117f/0x3510 [ 140.885162][ T8219] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 140.890996][ T8219] ? kmsan_get_metadata+0x116/0x180 [ 140.896276][ T8219] fb_ioctl+0x1e4/0x210 [ 140.900557][ T8219] ? fb_write+0xd80/0xd80 [ 140.904896][ T8219] __se_sys_ioctl+0x311/0x4d0 [ 140.910133][ T8219] __x64_sys_ioctl+0x4a/0x70 [ 140.914763][ T8219] do_syscall_64+0x9f/0x140 [ 140.919362][ T8219] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 140.926147][ T8219] RIP: 0033:0x43fbd9 [ 140.930311][ T8219] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 140.950013][ T8219] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 140.958547][ T8219] RAX: ffffffffffffffda RBX: 0000000000022369 RCX: 000000000043fbd9 [ 140.966608][ T8219] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 140.975255][ T8219] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 140.983852][ T8219] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 00007ffc012a3b8c [ 140.993280][ T8219] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 141.001244][ T8219] [ 141.003569][ T8219] Uninit was created at: [ 141.007880][ T8219] kmsan_internal_poison_shadow+0x5c/0xf0 [ 141.013600][ T8219] kmsan_slab_alloc+0x8e/0xe0 [ 141.018276][ T8219] __kmalloc+0x387/0x550 [ 141.022547][ T8219] fb_alloc_cmap_gfp+0x39b/0xa70 [ 141.027575][ T8219] fb_alloc_cmap+0x95/0xb0 [ 141.031977][ T8219] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 141.037421][ T8219] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 141.043221][ T8219] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 141.050511][ T8219] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 141.056060][ T8219] drm_fbdev_generic_setup+0x39d/0xa00 [ 141.061520][ T8219] vkms_init+0x9d6/0xc43 [ 141.065907][ T8219] do_one_initcall+0x362/0x8d0 [ 141.070687][ T8219] do_initcall_level+0x1e7/0x35a [ 141.075622][ T8219] do_initcalls+0x127/0x1cb [ 141.080118][ T8219] do_basic_setup+0x33/0x36 [ 141.084610][ T8219] kernel_init_freeable+0x287/0x3cc [ 141.089796][ T8219] kernel_init+0x1f/0x840 [ 141.094122][ T8219] ret_from_fork+0x1f/0x30 [ 141.098524][ T8219] [ 141.100848][ T8219] Bytes 0-1 of 2 are uninitialized [ 141.105935][ T8219] Memory access of size 2 starts at ffff88810494f3c0 [ 141.112585][ T8219] Data copied to user address 0000000020007300 [ 141.118711][ T8219] ===================================================== [ 141.126378][ T8219] ===================================================== [ 141.133318][ T8219] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 141.140806][ T8219] CPU: 1 PID: 8219 Comm: syz-executor147 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 141.150981][ T8219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 141.161778][ T8219] Call Trace: [ 141.165107][ T8219] dump_stack+0x24c/0x2e0 [ 141.169472][ T8219] kmsan_report+0xfb/0x1e0 [ 141.173949][ T8219] kmsan_internal_check_memory+0x48c/0x520 [ 141.179804][ T8219] kmsan_copy_to_user+0x9c/0xb0 [ 141.184687][ T8219] _copy_to_user+0x1ac/0x270 [ 141.189379][ T8219] fb_cmap_to_user+0x60c/0x990 [ 141.194137][ T8219] do_fb_ioctl+0xc53/0x1090 [ 141.198648][ T8219] ? kmsan_get_metadata+0x116/0x180 [ 141.203874][ T8219] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 141.209671][ T8219] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 141.215729][ T8219] ? do_vfs_ioctl+0x117f/0x3510 [ 141.220575][ T8219] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 141.226374][ T8219] ? kmsan_get_metadata+0x116/0x180 [ 141.231576][ T8219] fb_ioctl+0x1e4/0x210 [ 141.235727][ T8219] ? fb_write+0xd80/0xd80 [ 141.240088][ T8219] __se_sys_ioctl+0x311/0x4d0 [ 141.244762][ T8219] __x64_sys_ioctl+0x4a/0x70 [ 141.249344][ T8219] do_syscall_64+0x9f/0x140 [ 141.254193][ T8219] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 141.260367][ T8219] RIP: 0033:0x43fbd9 [ 141.264258][ T8219] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 141.283873][ T8219] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 141.292400][ T8219] RAX: ffffffffffffffda RBX: 0000000000022369 RCX: 000000000043fbd9 [ 141.300373][ T8219] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 141.308335][ T8219] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 141.316295][ T8219] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 00007ffc012a3b8c [ 141.324257][ T8219] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 141.332288][ T8219] [ 141.334605][ T8219] Uninit was created at: [ 141.338827][ T8219] kmsan_internal_poison_shadow+0x5c/0xf0 [ 141.344547][ T8219] kmsan_slab_alloc+0x8e/0xe0 [ 141.349238][ T8219] __kmalloc+0x387/0x550 [ 141.353473][ T8219] fb_alloc_cmap_gfp+0x42d/0xa70 [ 141.358398][ T8219] fb_alloc_cmap+0x95/0xb0 [ 141.362807][ T8219] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 141.368273][ T8219] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 141.374068][ T8219] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 141.381257][ T8219] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 141.386822][ T8219] drm_fbdev_generic_setup+0x39d/0xa00 [ 141.392271][ T8219] vkms_init+0x9d6/0xc43 [ 141.396508][ T8219] do_one_initcall+0x362/0x8d0 [ 141.401302][ T8219] do_initcall_level+0x1e7/0x35a [ 141.406233][ T8219] do_initcalls+0x127/0x1cb [ 141.410728][ T8219] do_basic_setup+0x33/0x36 [ 141.415223][ T8219] kernel_init_freeable+0x287/0x3cc [ 141.420425][ T8219] kernel_init+0x1f/0x840 [ 141.424768][ T8219] ret_from_fork+0x1f/0x30 [ 141.429176][ T8219] [ 141.431483][ T8219] Bytes 0-1 of 2 are uninitialized [ 141.436576][ T8219] Memory access of size 2 starts at ffff888142d363c0 executing program [ 141.443247][ T8219] ===================================================== [ 141.473939][ T8220] ===================================================== [ 141.480935][ T8220] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 141.488430][ T8220] CPU: 1 PID: 8220 Comm: syz-executor147 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 141.498692][ T8220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 141.508874][ T8220] Call Trace: [ 141.512166][ T8220] dump_stack+0x24c/0x2e0 [ 141.516495][ T8220] kmsan_report+0xfb/0x1e0 [ 141.520903][ T8220] kmsan_internal_check_memory+0x48c/0x520 [ 141.526702][ T8220] kmsan_copy_to_user+0x9c/0xb0 [ 141.531551][ T8220] _copy_to_user+0x1ac/0x270 [ 141.536178][ T8220] fb_cmap_to_user+0x40a/0x990 [ 141.540968][ T8220] do_fb_ioctl+0xc53/0x1090 [ 141.545462][ T8220] ? kmsan_get_metadata+0x116/0x180 [ 141.550650][ T8220] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 141.556446][ T8220] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 141.562551][ T8220] ? do_vfs_ioctl+0x117f/0x3510 [ 141.567423][ T8220] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 141.573543][ T8220] ? kmsan_get_metadata+0x116/0x180 [ 141.578802][ T8220] fb_ioctl+0x1e4/0x210 [ 141.582998][ T8220] ? fb_write+0xd80/0xd80 [ 141.587322][ T8220] __se_sys_ioctl+0x311/0x4d0 [ 141.592016][ T8220] __x64_sys_ioctl+0x4a/0x70 [ 141.596619][ T8220] do_syscall_64+0x9f/0x140 [ 141.601133][ T8220] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 141.607036][ T8220] RIP: 0033:0x43fbd9 [ 141.610930][ T8220] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 141.631080][ T8220] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 141.639510][ T8220] RAX: ffffffffffffffda RBX: 0000000000022622 RCX: 000000000043fbd9 [ 141.647488][ T8220] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 141.655472][ T8220] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 141.663464][ T8220] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 00007ffc012a3b8c [ 141.671425][ T8220] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 141.679388][ T8220] [ 141.681704][ T8220] Uninit was created at: [ 141.685924][ T8220] kmsan_internal_poison_shadow+0x5c/0xf0 [ 141.691680][ T8220] kmsan_slab_alloc+0x8e/0xe0 [ 141.696371][ T8220] __kmalloc+0x387/0x550 [ 141.700629][ T8220] fb_alloc_cmap_gfp+0x39b/0xa70 [ 141.705558][ T8220] fb_alloc_cmap+0x95/0xb0 [ 141.709979][ T8220] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 141.715428][ T8220] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 141.721222][ T8220] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 141.728754][ T8220] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 141.734331][ T8220] drm_fbdev_generic_setup+0x39d/0xa00 [ 141.739780][ T8220] vkms_init+0x9d6/0xc43 [ 141.744016][ T8220] do_one_initcall+0x362/0x8d0 [ 141.748771][ T8220] do_initcall_level+0x1e7/0x35a [ 141.753704][ T8220] do_initcalls+0x127/0x1cb [ 141.758220][ T8220] do_basic_setup+0x33/0x36 [ 141.763234][ T8220] kernel_init_freeable+0x287/0x3cc [ 141.768447][ T8220] kernel_init+0x1f/0x840 [ 141.773183][ T8220] ret_from_fork+0x1f/0x30 [ 141.777609][ T8220] [ 141.779926][ T8220] Bytes 0-1 of 2 are uninitialized [ 141.785086][ T8220] Memory access of size 2 starts at ffff88810494f3c0 [ 141.791754][ T8220] Data copied to user address 0000000020007300 [ 141.797895][ T8220] ===================================================== [ 141.805290][ T8220] ===================================================== [ 141.812433][ T8220] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 141.819933][ T8220] CPU: 1 PID: 8220 Comm: syz-executor147 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 141.830130][ T8220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 141.840203][ T8220] Call Trace: [ 141.843495][ T8220] dump_stack+0x24c/0x2e0 [ 141.847949][ T8220] kmsan_report+0xfb/0x1e0 [ 141.852405][ T8220] kmsan_internal_check_memory+0x48c/0x520 [ 141.858238][ T8220] kmsan_copy_to_user+0x9c/0xb0 [ 141.863088][ T8220] _copy_to_user+0x1ac/0x270 [ 141.867692][ T8220] fb_cmap_to_user+0x60c/0x990 [ 141.872469][ T8220] do_fb_ioctl+0xc53/0x1090 [ 141.876974][ T8220] ? kmsan_get_metadata+0x116/0x180 [ 141.882183][ T8220] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 141.888015][ T8220] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 141.894085][ T8220] ? do_vfs_ioctl+0x117f/0x3510 [ 141.898951][ T8220] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 141.904760][ T8220] ? kmsan_get_metadata+0x116/0x180 [ 141.909976][ T8220] fb_ioctl+0x1e4/0x210 [ 141.914130][ T8220] ? fb_write+0xd80/0xd80 [ 141.918456][ T8220] __se_sys_ioctl+0x311/0x4d0 [ 141.923237][ T8220] __x64_sys_ioctl+0x4a/0x70 [ 141.927845][ T8220] do_syscall_64+0x9f/0x140 [ 141.932358][ T8220] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 141.938456][ T8220] RIP: 0033:0x43fbd9 [ 141.942347][ T8220] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 141.961984][ T8220] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 141.970394][ T8220] RAX: ffffffffffffffda RBX: 0000000000022622 RCX: 000000000043fbd9 [ 141.978366][ T8220] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 141.986358][ T8220] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 141.994331][ T8220] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 00007ffc012a3b8c [ 142.002296][ T8220] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 142.010262][ T8220] [ 142.012572][ T8220] Uninit was created at: [ 142.016790][ T8220] kmsan_internal_poison_shadow+0x5c/0xf0 [ 142.022529][ T8220] kmsan_slab_alloc+0x8e/0xe0 [ 142.027215][ T8220] __kmalloc+0x387/0x550 [ 142.031468][ T8220] fb_alloc_cmap_gfp+0x42d/0xa70 [ 142.036395][ T8220] fb_alloc_cmap+0x95/0xb0 [ 142.040837][ T8220] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 142.046295][ T8220] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 142.052093][ T8220] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 142.059287][ T8220] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 142.064861][ T8220] drm_fbdev_generic_setup+0x39d/0xa00 [ 142.070337][ T8220] vkms_init+0x9d6/0xc43 [ 142.074838][ T8220] do_one_initcall+0x362/0x8d0 [ 142.079727][ T8220] do_initcall_level+0x1e7/0x35a [ 142.084704][ T8220] do_initcalls+0x127/0x1cb [ 142.089235][ T8220] do_basic_setup+0x33/0x36 executing program [ 142.093774][ T8220] kernel_init_freeable+0x287/0x3cc [ 142.098968][ T8220] kernel_init+0x1f/0x840 [ 142.103316][ T8220] ret_from_fork+0x1f/0x30 [ 142.107728][ T8220] [ 142.110051][ T8220] Bytes 0-1 of 2 are uninitialized [ 142.115180][ T8220] Memory access of size 2 starts at ffff888142d363c0 [ 142.121834][ T8220] ===================================================== [ 142.154034][ T8221] ===================================================== [ 142.161015][ T8221] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 142.169192][ T8221] CPU: 1 PID: 8221 Comm: syz-executor147 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 142.179332][ T8221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 142.189372][ T8221] Call Trace: [ 142.192637][ T8221] dump_stack+0x24c/0x2e0 [ 142.196969][ T8221] kmsan_report+0xfb/0x1e0 [ 142.201391][ T8221] kmsan_internal_check_memory+0x48c/0x520 [ 142.207203][ T8221] kmsan_copy_to_user+0x9c/0xb0 [ 142.212056][ T8221] _copy_to_user+0x1ac/0x270 [ 142.216643][ T8221] fb_cmap_to_user+0x40a/0x990 [ 142.221416][ T8221] do_fb_ioctl+0xc53/0x1090 [ 142.225906][ T8221] ? kmsan_get_metadata+0x116/0x180 [ 142.231117][ T8221] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 142.236914][ T8221] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 142.242989][ T8221] ? do_vfs_ioctl+0x117f/0x3510 [ 142.247852][ T8221] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 142.253665][ T8221] ? kmsan_get_metadata+0x116/0x180 [ 142.259642][ T8221] fb_ioctl+0x1e4/0x210 [ 142.263783][ T8221] ? fb_write+0xd80/0xd80 [ 142.268096][ T8221] __se_sys_ioctl+0x311/0x4d0 [ 142.272855][ T8221] __x64_sys_ioctl+0x4a/0x70 [ 142.277456][ T8221] do_syscall_64+0x9f/0x140 [ 142.281950][ T8221] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 142.287948][ T8221] RIP: 0033:0x43fbd9 [ 142.291910][ T8221] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 142.311764][ T8221] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 142.320693][ T8221] RAX: ffffffffffffffda RBX: 00000000000228d2 RCX: 000000000043fbd9 [ 142.330505][ T8221] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 142.338489][ T8221] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 142.346448][ T8221] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 00007ffc012a3b8c [ 142.354407][ T8221] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 142.362377][ T8221] [ 142.364692][ T8221] Uninit was created at: [ 142.368905][ T8221] kmsan_internal_poison_shadow+0x5c/0xf0 [ 142.374618][ T8221] kmsan_slab_alloc+0x8e/0xe0 [ 142.379278][ T8221] __kmalloc+0x387/0x550 [ 142.383507][ T8221] fb_alloc_cmap_gfp+0x39b/0xa70 [ 142.388429][ T8221] fb_alloc_cmap+0x95/0xb0 [ 142.392830][ T8221] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 142.398284][ T8221] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 142.404087][ T8221] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 142.411280][ T8221] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 142.416810][ T8221] drm_fbdev_generic_setup+0x39d/0xa00 [ 142.422264][ T8221] vkms_init+0x9d6/0xc43 [ 142.426488][ T8221] do_one_initcall+0x362/0x8d0 [ 142.431235][ T8221] do_initcall_level+0x1e7/0x35a [ 142.436156][ T8221] do_initcalls+0x127/0x1cb [ 142.440650][ T8221] do_basic_setup+0x33/0x36 [ 142.445137][ T8221] kernel_init_freeable+0x287/0x3cc [ 142.450331][ T8221] kernel_init+0x1f/0x840 [ 142.454647][ T8221] ret_from_fork+0x1f/0x30 [ 142.459054][ T8221] [ 142.461422][ T8221] Bytes 0-1 of 2 are uninitialized [ 142.466544][ T8221] Memory access of size 2 starts at ffff88810494f3c0 [ 142.473205][ T8221] Data copied to user address 0000000020007300 [ 142.479341][ T8221] ===================================================== [ 142.486683][ T8221] ===================================================== [ 142.493670][ T8221] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 142.501180][ T8221] CPU: 1 PID: 8221 Comm: syz-executor147 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 142.511359][ T8221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 142.521435][ T8221] Call Trace: [ 142.524728][ T8221] dump_stack+0x24c/0x2e0 [ 142.530225][ T8221] kmsan_report+0xfb/0x1e0 [ 142.534669][ T8221] kmsan_internal_check_memory+0x48c/0x520 [ 142.540504][ T8221] kmsan_copy_to_user+0x9c/0xb0 [ 142.545453][ T8221] _copy_to_user+0x1ac/0x270 [ 142.550044][ T8221] fb_cmap_to_user+0x60c/0x990 [ 142.554804][ T8221] do_fb_ioctl+0xc53/0x1090 [ 142.559403][ T8221] ? kmsan_get_metadata+0x116/0x180 [ 142.564793][ T8221] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 142.570778][ T8221] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 142.576866][ T8221] ? do_vfs_ioctl+0x117f/0x3510 [ 142.581725][ T8221] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 142.587990][ T8221] ? kmsan_get_metadata+0x116/0x180 [ 142.593198][ T8221] fb_ioctl+0x1e4/0x210 [ 142.597381][ T8221] ? fb_write+0xd80/0xd80 [ 142.601718][ T8221] __se_sys_ioctl+0x311/0x4d0 [ 142.606395][ T8221] __x64_sys_ioctl+0x4a/0x70 [ 142.610994][ T8221] do_syscall_64+0x9f/0x140 [ 142.615509][ T8221] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 142.621412][ T8221] RIP: 0033:0x43fbd9 [ 142.625300][ T8221] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 142.645791][ T8221] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 142.654770][ T8221] RAX: ffffffffffffffda RBX: 00000000000228d2 RCX: 000000000043fbd9 [ 142.662746][ T8221] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 142.671310][ T8221] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 142.679572][ T8221] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 00007ffc012a3b8c [ 142.687625][ T8221] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 142.695960][ T8221] [ 142.698396][ T8221] Uninit was created at: [ 142.702634][ T8221] kmsan_internal_poison_shadow+0x5c/0xf0 [ 142.708369][ T8221] kmsan_slab_alloc+0x8e/0xe0 [ 142.713127][ T8221] __kmalloc+0x387/0x550 [ 142.717392][ T8221] fb_alloc_cmap_gfp+0x42d/0xa70 [ 142.722328][ T8221] fb_alloc_cmap+0x95/0xb0 [ 142.726870][ T8221] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 142.732342][ T8221] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 142.738157][ T8221] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 142.745348][ T8221] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 142.750909][ T8221] drm_fbdev_generic_setup+0x39d/0xa00 [ 142.756370][ T8221] vkms_init+0x9d6/0xc43 [ 142.760599][ T8221] do_one_initcall+0x362/0x8d0 [ 142.765351][ T8221] do_initcall_level+0x1e7/0x35a [ 142.770282][ T8221] do_initcalls+0x127/0x1cb [ 142.774771][ T8221] do_basic_setup+0x33/0x36 [ 142.779279][ T8221] kernel_init_freeable+0x287/0x3cc [ 142.784464][ T8221] kernel_init+0x1f/0x840 [ 142.788782][ T8221] ret_from_fork+0x1f/0x30 [ 142.793190][ T8221] [ 142.795602][ T8221] Bytes 0-1 of 2 are uninitialized [ 142.800705][ T8221] Memory access of size 2 starts at ffff888142d363c0 executing program [ 142.807374][ T8221] ===================================================== [ 142.831047][ T8222] ===================================================== [ 142.838018][ T8222] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 142.845510][ T8222] CPU: 0 PID: 8222 Comm: syz-executor147 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 142.855793][ T8222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 142.865856][ T8222] Call Trace: [ 142.869124][ T8222] dump_stack+0x24c/0x2e0 [ 142.873448][ T8222] kmsan_report+0xfb/0x1e0 [ 142.877860][ T8222] kmsan_internal_check_memory+0x48c/0x520 [ 142.883768][ T8222] kmsan_copy_to_user+0x9c/0xb0 [ 142.888610][ T8222] _copy_to_user+0x1ac/0x270 [ 142.893193][ T8222] fb_cmap_to_user+0x40a/0x990 [ 142.897948][ T8222] do_fb_ioctl+0xc53/0x1090 [ 142.902443][ T8222] ? kmsan_get_metadata+0x116/0x180 [ 142.907633][ T8222] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 142.913442][ T8222] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 142.919499][ T8222] ? do_vfs_ioctl+0x117f/0x3510 [ 142.924347][ T8222] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 142.930163][ T8222] ? kmsan_get_metadata+0x116/0x180 [ 142.935352][ T8222] fb_ioctl+0x1e4/0x210 [ 142.939513][ T8222] ? fb_write+0xd80/0xd80 [ 142.944330][ T8222] __se_sys_ioctl+0x311/0x4d0 [ 142.949014][ T8222] __x64_sys_ioctl+0x4a/0x70 [ 142.953595][ T8222] do_syscall_64+0x9f/0x140 [ 142.958089][ T8222] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 142.963971][ T8222] RIP: 0033:0x43fbd9 [ 142.967864][ T8222] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 142.987687][ T8222] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 142.996159][ T8222] RAX: ffffffffffffffda RBX: 0000000000022b7a RCX: 000000000043fbd9 [ 143.004136][ T8222] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 143.012239][ T8222] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 143.020230][ T8222] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 00007ffc012a3b8c [ 143.028343][ T8222] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 143.036334][ T8222] [ 143.038649][ T8222] Uninit was created at: [ 143.042871][ T8222] kmsan_internal_poison_shadow+0x5c/0xf0 [ 143.048643][ T8222] kmsan_slab_alloc+0x8e/0xe0 [ 143.053342][ T8222] __kmalloc+0x387/0x550 [ 143.057581][ T8222] fb_alloc_cmap_gfp+0x39b/0xa70 [ 143.062694][ T8222] fb_alloc_cmap+0x95/0xb0 [ 143.067103][ T8222] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 143.072649][ T8222] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 143.078463][ T8222] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 143.085660][ T8222] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 143.091219][ T8222] drm_fbdev_generic_setup+0x39d/0xa00 [ 143.096671][ T8222] vkms_init+0x9d6/0xc43 [ 143.100900][ T8222] do_one_initcall+0x362/0x8d0 [ 143.105653][ T8222] do_initcall_level+0x1e7/0x35a [ 143.110586][ T8222] do_initcalls+0x127/0x1cb [ 143.115081][ T8222] do_basic_setup+0x33/0x36 [ 143.121057][ T8222] kernel_init_freeable+0x287/0x3cc [ 143.126424][ T8222] kernel_init+0x1f/0x840 [ 143.130894][ T8222] ret_from_fork+0x1f/0x30 [ 143.135319][ T8222] [ 143.137730][ T8222] Bytes 0-1 of 2 are uninitialized [ 143.143043][ T8222] Memory access of size 2 starts at ffff88810494f3c0 [ 143.149900][ T8222] Data copied to user address 0000000020007300 [ 143.156062][ T8222] ===================================================== [ 143.165096][ T8222] ===================================================== [ 143.172052][ T8222] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 143.179560][ T8222] CPU: 0 PID: 8222 Comm: syz-executor147 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 143.190089][ T8222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 143.201117][ T8222] Call Trace: [ 143.204425][ T8222] dump_stack+0x24c/0x2e0 [ 143.208795][ T8222] kmsan_report+0xfb/0x1e0 [ 143.213425][ T8222] kmsan_internal_check_memory+0x48c/0x520 [ 143.219264][ T8222] kmsan_copy_to_user+0x9c/0xb0 [ 143.224135][ T8222] _copy_to_user+0x1ac/0x270 [ 143.228943][ T8222] fb_cmap_to_user+0x60c/0x990 [ 143.234112][ T8222] do_fb_ioctl+0xc53/0x1090 [ 143.238714][ T8222] ? kmsan_get_metadata+0x116/0x180 [ 143.244005][ T8222] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 143.250109][ T8222] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 143.256181][ T8222] ? do_vfs_ioctl+0x117f/0x3510 [ 143.261203][ T8222] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 143.267282][ T8222] ? kmsan_get_metadata+0x116/0x180 [ 143.272724][ T8222] fb_ioctl+0x1e4/0x210 [ 143.277031][ T8222] ? fb_write+0xd80/0xd80 [ 143.281387][ T8222] __se_sys_ioctl+0x311/0x4d0 [ 143.286073][ T8222] __x64_sys_ioctl+0x4a/0x70 [ 143.290724][ T8222] do_syscall_64+0x9f/0x140 [ 143.295232][ T8222] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 143.301235][ T8222] RIP: 0033:0x43fbd9 [ 143.306114][ T8222] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 143.325954][ T8222] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 143.334483][ T8222] RAX: ffffffffffffffda RBX: 0000000000022b7a RCX: 000000000043fbd9 [ 143.342930][ T8222] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 143.351017][ T8222] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 143.359121][ T8222] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 00007ffc012a3b8c [ 143.367238][ T8222] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 143.375338][ T8222] [ 143.377761][ T8222] Uninit was created at: [ 143.381984][ T8222] kmsan_internal_poison_shadow+0x5c/0xf0 [ 143.387741][ T8222] kmsan_slab_alloc+0x8e/0xe0 [ 143.392415][ T8222] __kmalloc+0x387/0x550 [ 143.396669][ T8222] fb_alloc_cmap_gfp+0x42d/0xa70 [ 143.401624][ T8222] fb_alloc_cmap+0x95/0xb0 [ 143.406044][ T8222] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 143.411496][ T8222] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 143.419658][ T8222] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 143.426987][ T8222] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 143.432542][ T8222] drm_fbdev_generic_setup+0x39d/0xa00 [ 143.438360][ T8222] vkms_init+0x9d6/0xc43 [ 143.442645][ T8222] do_one_initcall+0x362/0x8d0 [ 143.448923][ T8222] do_initcall_level+0x1e7/0x35a [ 143.453878][ T8222] do_initcalls+0x127/0x1cb executing program [ 143.458389][ T8222] do_basic_setup+0x33/0x36 [ 143.462892][ T8222] kernel_init_freeable+0x287/0x3cc [ 143.468154][ T8222] kernel_init+0x1f/0x840 [ 143.472621][ T8222] ret_from_fork+0x1f/0x30 [ 143.478205][ T8222] [ 143.480547][ T8222] Bytes 0-1 of 2 are uninitialized [ 143.485659][ T8222] Memory access of size 2 starts at ffff888142d363c0 [ 143.492329][ T8222] ===================================================== [ 143.515839][ T8223] ===================================================== [ 143.522821][ T8223] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 143.530311][ T8223] CPU: 0 PID: 8223 Comm: syz-executor147 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 143.540495][ T8223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 143.550662][ T8223] Call Trace: [ 143.553941][ T8223] dump_stack+0x24c/0x2e0 [ 143.558271][ T8223] kmsan_report+0xfb/0x1e0 [ 143.562957][ T8223] kmsan_internal_check_memory+0x48c/0x520 [ 143.568870][ T8223] kmsan_copy_to_user+0x9c/0xb0 [ 143.573731][ T8223] _copy_to_user+0x1ac/0x270 [ 143.578319][ T8223] fb_cmap_to_user+0x40a/0x990 [ 143.583081][ T8223] do_fb_ioctl+0xc53/0x1090 [ 143.587577][ T8223] ? kmsan_get_metadata+0x116/0x180 [ 143.592793][ T8223] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 143.598743][ T8223] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 143.604899][ T8223] ? do_vfs_ioctl+0x117f/0x3510 [ 143.611888][ T8223] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 143.618967][ T8223] ? kmsan_get_metadata+0x116/0x180 [ 143.624271][ T8223] fb_ioctl+0x1e4/0x210 [ 143.628431][ T8223] ? fb_write+0xd80/0xd80 [ 143.632888][ T8223] __se_sys_ioctl+0x311/0x4d0 [ 143.642957][ T8223] __x64_sys_ioctl+0x4a/0x70 [ 143.647559][ T8223] do_syscall_64+0x9f/0x140 [ 143.652072][ T8223] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 143.657963][ T8223] RIP: 0033:0x43fbd9 [ 143.661864][ T8223] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 143.681575][ T8223] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 143.690563][ T8223] RAX: ffffffffffffffda RBX: 0000000000022e1f RCX: 000000000043fbd9 [ 143.698525][ T8223] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 143.708350][ T8223] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 143.716325][ T8223] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 00007ffc012a3b8c [ 143.724297][ T8223] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 143.732265][ T8223] [ 143.734582][ T8223] Uninit was created at: [ 143.738803][ T8223] kmsan_internal_poison_shadow+0x5c/0xf0 [ 143.744617][ T8223] kmsan_slab_alloc+0x8e/0xe0 [ 143.749283][ T8223] __kmalloc+0x387/0x550 [ 143.753538][ T8223] fb_alloc_cmap_gfp+0x39b/0xa70 [ 143.758578][ T8223] fb_alloc_cmap+0x95/0xb0 [ 143.763051][ T8223] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 143.768882][ T8223] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 143.774692][ T8223] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 143.781893][ T8223] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 143.787433][ T8223] drm_fbdev_generic_setup+0x39d/0xa00 [ 143.792906][ T8223] vkms_init+0x9d6/0xc43 [ 143.797160][ T8223] do_one_initcall+0x362/0x8d0 [ 143.801917][ T8223] do_initcall_level+0x1e7/0x35a [ 143.806866][ T8223] do_initcalls+0x127/0x1cb [ 143.811364][ T8223] do_basic_setup+0x33/0x36 [ 143.815856][ T8223] kernel_init_freeable+0x287/0x3cc [ 143.821057][ T8223] kernel_init+0x1f/0x840 [ 143.825719][ T8223] ret_from_fork+0x1f/0x30 [ 143.830124][ T8223] [ 143.832464][ T8223] Bytes 0-1 of 2 are uninitialized [ 143.837555][ T8223] Memory access of size 2 starts at ffff88810494f3c0 [ 143.844223][ T8223] Data copied to user address 0000000020007300 [ 143.851132][ T8223] ===================================================== [ 143.858476][ T8223] ===================================================== [ 143.865412][ T8223] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 143.872924][ T8223] CPU: 0 PID: 8223 Comm: syz-executor147 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 143.883208][ T8223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 143.893291][ T8223] Call Trace: [ 143.896583][ T8223] dump_stack+0x24c/0x2e0 [ 143.900950][ T8223] kmsan_report+0xfb/0x1e0 [ 143.905450][ T8223] kmsan_internal_check_memory+0x48c/0x520 [ 143.911286][ T8223] kmsan_copy_to_user+0x9c/0xb0 [ 143.916945][ T8223] _copy_to_user+0x1ac/0x270 [ 143.921540][ T8223] fb_cmap_to_user+0x60c/0x990 [ 143.926329][ T8223] do_fb_ioctl+0xc53/0x1090 [ 143.930870][ T8223] ? kmsan_get_metadata+0x116/0x180 [ 143.936068][ T8223] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 143.941897][ T8223] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 143.947959][ T8223] ? do_vfs_ioctl+0x117f/0x3510 [ 143.952916][ T8223] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 143.960476][ T8223] ? kmsan_get_metadata+0x116/0x180 [ 143.965785][ T8223] fb_ioctl+0x1e4/0x210 [ 143.969964][ T8223] ? fb_write+0xd80/0xd80 [ 143.974376][ T8223] __se_sys_ioctl+0x311/0x4d0 [ 143.979073][ T8223] __x64_sys_ioctl+0x4a/0x70 [ 143.983665][ T8223] do_syscall_64+0x9f/0x140 [ 143.988166][ T8223] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 143.994079][ T8223] RIP: 0033:0x43fbd9 [ 143.997977][ T8223] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 144.017597][ T8223] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 144.026010][ T8223] RAX: ffffffffffffffda RBX: 0000000000022e1f RCX: 000000000043fbd9 [ 144.033983][ T8223] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 144.041954][ T8223] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 144.049938][ T8223] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 00007ffc012a3b8c [ 144.057944][ T8223] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 144.065943][ T8223] [ 144.068273][ T8223] Uninit was created at: [ 144.072585][ T8223] kmsan_internal_poison_shadow+0x5c/0xf0 [ 144.078305][ T8223] kmsan_slab_alloc+0x8e/0xe0 [ 144.082974][ T8223] __kmalloc+0x387/0x550 [ 144.087211][ T8223] fb_alloc_cmap_gfp+0x42d/0xa70 [ 144.092143][ T8223] fb_alloc_cmap+0x95/0xb0 [ 144.096561][ T8223] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 144.104013][ T8223] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 144.110110][ T8223] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 144.117670][ T8223] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 144.123213][ T8223] drm_fbdev_generic_setup+0x39d/0xa00 [ 144.128775][ T8223] vkms_init+0x9d6/0xc43 [ 144.133036][ T8223] do_one_initcall+0x362/0x8d0 [ 144.137887][ T8223] do_initcall_level+0x1e7/0x35a [ 144.142831][ T8223] do_initcalls+0x127/0x1cb [ 144.147349][ T8223] do_basic_setup+0x33/0x36 [ 144.151848][ T8223] kernel_init_freeable+0x287/0x3cc [ 144.157146][ T8223] kernel_init+0x1f/0x840 [ 144.161597][ T8223] ret_from_fork+0x1f/0x30 [ 144.166024][ T8223] executing program [ 144.168336][ T8223] Bytes 0-1 of 2 are uninitialized [ 144.173437][ T8223] Memory access of size 2 starts at ffff888142d363c0 [ 144.180127][ T8223] ===================================================== [ 144.201463][ T8224] ===================================================== [ 144.208533][ T8224] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 144.216068][ T8224] CPU: 1 PID: 8224 Comm: syz-executor147 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 144.226516][ T8224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 144.236719][ T8224] Call Trace: [ 144.240052][ T8224] dump_stack+0x24c/0x2e0 [ 144.244382][ T8224] kmsan_report+0xfb/0x1e0 [ 144.251086][ T8224] kmsan_internal_check_memory+0x48c/0x520 [ 144.256906][ T8224] kmsan_copy_to_user+0x9c/0xb0 [ 144.261769][ T8224] _copy_to_user+0x1ac/0x270 [ 144.266366][ T8224] fb_cmap_to_user+0x40a/0x990 [ 144.271160][ T8224] do_fb_ioctl+0xc53/0x1090 [ 144.275651][ T8224] ? kmsan_get_metadata+0x116/0x180 [ 144.280853][ T8224] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 144.286655][ T8224] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 144.292709][ T8224] ? do_vfs_ioctl+0x117f/0x3510 [ 144.297550][ T8224] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 144.303430][ T8224] ? kmsan_get_metadata+0x116/0x180 [ 144.308726][ T8224] fb_ioctl+0x1e4/0x210 [ 144.312981][ T8224] ? fb_write+0xd80/0xd80 [ 144.317295][ T8224] __se_sys_ioctl+0x311/0x4d0 [ 144.322056][ T8224] __x64_sys_ioctl+0x4a/0x70 [ 144.327608][ T8224] do_syscall_64+0x9f/0x140 [ 144.332113][ T8224] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 144.338006][ T8224] RIP: 0033:0x43fbd9 [ 144.341906][ T8224] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 144.365411][ T8224] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 144.374077][ T8224] RAX: ffffffffffffffda RBX: 00000000000230cd RCX: 000000000043fbd9 [ 144.382760][ T8224] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 144.391245][ T8224] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 144.399291][ T8224] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 00007ffc012a3b8c [ 144.407252][ T8224] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 144.415262][ T8224] [ 144.417604][ T8224] Uninit was created at: [ 144.421847][ T8224] kmsan_internal_poison_shadow+0x5c/0xf0 [ 144.427654][ T8224] kmsan_slab_alloc+0x8e/0xe0 [ 144.432714][ T8224] __kmalloc+0x387/0x550 [ 144.436954][ T8224] fb_alloc_cmap_gfp+0x39b/0xa70 [ 144.441894][ T8224] fb_alloc_cmap+0x95/0xb0 [ 144.446295][ T8224] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 144.451742][ T8224] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 144.457716][ T8224] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 144.465027][ T8224] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 144.470595][ T8224] drm_fbdev_generic_setup+0x39d/0xa00 [ 144.476066][ T8224] vkms_init+0x9d6/0xc43 [ 144.480324][ T8224] do_one_initcall+0x362/0x8d0 [ 144.485080][ T8224] do_initcall_level+0x1e7/0x35a [ 144.490008][ T8224] do_initcalls+0x127/0x1cb [ 144.494497][ T8224] do_basic_setup+0x33/0x36 [ 144.499011][ T8224] kernel_init_freeable+0x287/0x3cc [ 144.504209][ T8224] kernel_init+0x1f/0x840 [ 144.508542][ T8224] ret_from_fork+0x1f/0x30 [ 144.512948][ T8224] [ 144.515267][ T8224] Bytes 0-1 of 2 are uninitialized [ 144.520368][ T8224] Memory access of size 2 starts at ffff88810494f3c0 [ 144.527029][ T8224] Data copied to user address 0000000020007300 [ 144.533861][ T8224] ===================================================== [ 144.541466][ T8224] ===================================================== [ 144.548623][ T8224] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 144.556109][ T8224] CPU: 1 PID: 8224 Comm: syz-executor147 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 144.566559][ T8224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 144.576632][ T8224] Call Trace: [ 144.579926][ T8224] dump_stack+0x24c/0x2e0 [ 144.584289][ T8224] kmsan_report+0xfb/0x1e0 [ 144.588742][ T8224] kmsan_internal_check_memory+0x48c/0x520 [ 144.594585][ T8224] kmsan_copy_to_user+0x9c/0xb0 [ 144.599512][ T8224] _copy_to_user+0x1ac/0x270 [ 144.604120][ T8224] fb_cmap_to_user+0x60c/0x990 [ 144.608915][ T8224] do_fb_ioctl+0xc53/0x1090 [ 144.613423][ T8224] ? kmsan_get_metadata+0x116/0x180 [ 144.618651][ T8224] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 144.624455][ T8224] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 144.630541][ T8224] ? do_vfs_ioctl+0x117f/0x3510 [ 144.635419][ T8224] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 144.641226][ T8224] ? kmsan_get_metadata+0x116/0x180 [ 144.646445][ T8224] fb_ioctl+0x1e4/0x210 [ 144.650627][ T8224] ? fb_write+0xd80/0xd80 [ 144.654954][ T8224] __se_sys_ioctl+0x311/0x4d0 [ 144.659665][ T8224] __x64_sys_ioctl+0x4a/0x70 [ 144.664347][ T8224] do_syscall_64+0x9f/0x140 [ 144.669016][ T8224] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 144.674938][ T8224] RIP: 0033:0x43fbd9 [ 144.678863][ T8224] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 144.698734][ T8224] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 144.707365][ T8224] RAX: ffffffffffffffda RBX: 00000000000230cd RCX: 000000000043fbd9 [ 144.715365][ T8224] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 144.723362][ T8224] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 144.731356][ T8224] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 00007ffc012a3b8c [ 144.739339][ T8224] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 144.747349][ T8224] [ 144.749725][ T8224] Uninit was created at: [ 144.754067][ T8224] kmsan_internal_poison_shadow+0x5c/0xf0 [ 144.760700][ T8224] kmsan_slab_alloc+0x8e/0xe0 [ 144.765553][ T8224] __kmalloc+0x387/0x550 [ 144.769812][ T8224] fb_alloc_cmap_gfp+0x42d/0xa70 [ 144.774754][ T8224] fb_alloc_cmap+0x95/0xb0 [ 144.779235][ T8224] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 144.784733][ T8224] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 144.790581][ T8224] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 144.797834][ T8224] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 144.807253][ T8224] drm_fbdev_generic_setup+0x39d/0xa00 [ 144.812912][ T8224] vkms_init+0x9d6/0xc43 [ 144.818752][ T8224] do_one_initcall+0x362/0x8d0 [ 144.823536][ T8224] do_initcall_level+0x1e7/0x35a [ 144.828566][ T8224] do_initcalls+0x127/0x1cb [ 144.833077][ T8224] do_basic_setup+0x33/0x36 [ 144.837580][ T8224] kernel_init_freeable+0x287/0x3cc [ 144.842784][ T8224] kernel_init+0x1f/0x840 [ 144.847247][ T8224] ret_from_fork+0x1f/0x30 [ 144.851720][ T8224] [ 144.854033][ T8224] Bytes 0-1 of 2 are uninitialized [ 144.859164][ T8224] Memory access of size 2 starts at ffff888142d363c0 executing program [ 144.865925][ T8224] ===================================================== [ 144.896267][ T8225] ===================================================== [ 144.903253][ T8225] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 144.912321][ T8225] CPU: 1 PID: 8225 Comm: syz-executor147 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 144.922562][ T8225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 144.932825][ T8225] Call Trace: [ 144.936133][ T8225] dump_stack+0x24c/0x2e0 [ 144.940716][ T8225] kmsan_report+0xfb/0x1e0 [ 144.945263][ T8225] kmsan_internal_check_memory+0x48c/0x520 [ 144.951116][ T8225] kmsan_copy_to_user+0x9c/0xb0 [ 144.956040][ T8225] _copy_to_user+0x1ac/0x270 [ 144.960635][ T8225] fb_cmap_to_user+0x40a/0x990 [ 144.965397][ T8225] do_fb_ioctl+0xc53/0x1090 [ 144.969913][ T8225] ? kmsan_get_metadata+0x116/0x180 [ 144.975131][ T8225] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 144.981298][ T8225] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 144.987385][ T8225] ? do_vfs_ioctl+0x117f/0x3510 [ 144.992381][ T8225] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 144.998198][ T8225] ? kmsan_get_metadata+0x116/0x180 [ 145.003409][ T8225] fb_ioctl+0x1e4/0x210 [ 145.007612][ T8225] ? fb_write+0xd80/0xd80 [ 145.011953][ T8225] __se_sys_ioctl+0x311/0x4d0 [ 145.016645][ T8225] __x64_sys_ioctl+0x4a/0x70 [ 145.021333][ T8225] do_syscall_64+0x9f/0x140 [ 145.025850][ T8225] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 145.031924][ T8225] RIP: 0033:0x43fbd9 [ 145.035826][ T8225] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 145.058590][ T8225] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 145.067010][ T8225] RAX: ffffffffffffffda RBX: 0000000000023379 RCX: 000000000043fbd9 [ 145.074979][ T8225] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 145.082959][ T8225] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 145.091014][ T8225] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 00007ffc012a3b8c [ 145.101202][ T8225] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 145.109189][ T8225] [ 145.111706][ T8225] Uninit was created at: [ 145.116011][ T8225] kmsan_internal_poison_shadow+0x5c/0xf0 [ 145.122533][ T8225] kmsan_slab_alloc+0x8e/0xe0 [ 145.127380][ T8225] __kmalloc+0x387/0x550 [ 145.131877][ T8225] fb_alloc_cmap_gfp+0x39b/0xa70 [ 145.136927][ T8225] fb_alloc_cmap+0x95/0xb0 [ 145.142978][ T8225] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 145.148432][ T8225] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 145.154232][ T8225] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 145.161516][ T8225] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 145.167053][ T8225] drm_fbdev_generic_setup+0x39d/0xa00 [ 145.172609][ T8225] vkms_init+0x9d6/0xc43 [ 145.176931][ T8225] do_one_initcall+0x362/0x8d0 [ 145.182300][ T8225] do_initcall_level+0x1e7/0x35a [ 145.188399][ T8225] do_initcalls+0x127/0x1cb [ 145.193993][ T8225] do_basic_setup+0x33/0x36 [ 145.199591][ T8225] kernel_init_freeable+0x287/0x3cc [ 145.206201][ T8225] kernel_init+0x1f/0x840 [ 145.211218][ T8225] ret_from_fork+0x1f/0x30 [ 145.215653][ T8225] [ 145.217961][ T8225] Bytes 0-1 of 2 are uninitialized [ 145.223056][ T8225] Memory access of size 2 starts at ffff88810494f3c0 [ 145.229902][ T8225] Data copied to user address 0000000020007300 [ 145.236094][ T8225] ===================================================== [ 145.243649][ T8225] ===================================================== [ 145.250695][ T8225] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 145.258365][ T8225] CPU: 1 PID: 8225 Comm: syz-executor147 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 145.268625][ T8225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 145.278697][ T8225] Call Trace: [ 145.281991][ T8225] dump_stack+0x24c/0x2e0 [ 145.286358][ T8225] kmsan_report+0xfb/0x1e0 [ 145.290889][ T8225] kmsan_internal_check_memory+0x48c/0x520 [ 145.296734][ T8225] kmsan_copy_to_user+0x9c/0xb0 [ 145.301610][ T8225] _copy_to_user+0x1ac/0x270 [ 145.306218][ T8225] fb_cmap_to_user+0x60c/0x990 [ 145.310978][ T8225] do_fb_ioctl+0xc53/0x1090 [ 145.315476][ T8225] ? kmsan_get_metadata+0x116/0x180 [ 145.320672][ T8225] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 145.326485][ T8225] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 145.332577][ T8225] ? do_vfs_ioctl+0x117f/0x3510 [ 145.337557][ T8225] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 145.343369][ T8225] ? kmsan_get_metadata+0x116/0x180 [ 145.348615][ T8225] fb_ioctl+0x1e4/0x210 [ 145.352773][ T8225] ? fb_write+0xd80/0xd80 [ 145.357307][ T8225] __se_sys_ioctl+0x311/0x4d0 [ 145.362329][ T8225] __x64_sys_ioctl+0x4a/0x70 [ 145.366936][ T8225] do_syscall_64+0x9f/0x140 [ 145.371449][ T8225] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 145.377371][ T8225] RIP: 0033:0x43fbd9 [ 145.381257][ T8225] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 145.400945][ T8225] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 145.409366][ T8225] RAX: ffffffffffffffda RBX: 0000000000023379 RCX: 000000000043fbd9 [ 145.417491][ T8225] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 145.425499][ T8225] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 145.433489][ T8225] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 00007ffc012a3b8c [ 145.441472][ T8225] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 145.449551][ T8225] [ 145.451881][ T8225] Uninit was created at: [ 145.456112][ T8225] kmsan_internal_poison_shadow+0x5c/0xf0 [ 145.461847][ T8225] kmsan_slab_alloc+0x8e/0xe0 [ 145.466514][ T8225] __kmalloc+0x387/0x550 [ 145.470763][ T8225] fb_alloc_cmap_gfp+0x42d/0xa70 [ 145.475705][ T8225] fb_alloc_cmap+0x95/0xb0 [ 145.480215][ T8225] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 145.485680][ T8225] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 145.491479][ T8225] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 145.498683][ T8225] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 145.504241][ T8225] drm_fbdev_generic_setup+0x39d/0xa00 [ 145.509703][ T8225] vkms_init+0x9d6/0xc43 [ 145.513964][ T8225] do_one_initcall+0x362/0x8d0 [ 145.518917][ T8225] do_initcall_level+0x1e7/0x35a [ 145.523859][ T8225] do_initcalls+0x127/0x1cb [ 145.528360][ T8225] do_basic_setup+0x33/0x36 [ 145.532999][ T8225] kernel_init_freeable+0x287/0x3cc [ 145.538225][ T8225] kernel_init+0x1f/0x840 [ 145.542672][ T8225] ret_from_fork+0x1f/0x30 [ 145.547100][ T8225] executing program [ 145.549424][ T8225] Bytes 0-1 of 2 are uninitialized [ 145.554526][ T8225] Memory access of size 2 starts at ffff888142d363c0 [ 145.561187][ T8225] ===================================================== [ 145.598887][ T8226] ===================================================== [ 145.605863][ T8226] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 145.613488][ T8226] CPU: 0 PID: 8226 Comm: syz-executor147 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 145.623669][ T8226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 145.633727][ T8226] Call Trace: [ 145.637016][ T8226] dump_stack+0x24c/0x2e0 [ 145.641351][ T8226] kmsan_report+0xfb/0x1e0 [ 145.645767][ T8226] kmsan_internal_check_memory+0x48c/0x520 [ 145.651598][ T8226] kmsan_copy_to_user+0x9c/0xb0 [ 145.656458][ T8226] _copy_to_user+0x1ac/0x270 [ 145.661076][ T8226] fb_cmap_to_user+0x40a/0x990 [ 145.665836][ T8226] do_fb_ioctl+0xc53/0x1090 [ 145.670345][ T8226] ? kmsan_get_metadata+0x116/0x180 [ 145.675971][ T8226] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 145.681769][ T8226] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 145.687863][ T8226] ? do_vfs_ioctl+0x117f/0x3510 [ 145.692713][ T8226] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 145.698528][ T8226] ? kmsan_get_metadata+0x116/0x180 [ 145.703722][ T8226] fb_ioctl+0x1e4/0x210 [ 145.707963][ T8226] ? fb_write+0xd80/0xd80 [ 145.712281][ T8226] __se_sys_ioctl+0x311/0x4d0 [ 145.716954][ T8226] __x64_sys_ioctl+0x4a/0x70 [ 145.721564][ T8226] do_syscall_64+0x9f/0x140 [ 145.726103][ T8226] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 145.731990][ T8226] RIP: 0033:0x43fbd9 [ 145.735876][ T8226] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 145.755479][ T8226] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 145.763899][ T8226] RAX: ffffffffffffffda RBX: 0000000000023630 RCX: 000000000043fbd9 [ 145.771871][ T8226] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 145.779836][ T8226] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 145.787807][ T8226] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 00007ffc012a3b8c [ 145.796004][ T8226] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 145.804057][ T8226] [ 145.806394][ T8226] Uninit was created at: [ 145.810625][ T8226] kmsan_internal_poison_shadow+0x5c/0xf0 [ 145.816345][ T8226] kmsan_slab_alloc+0x8e/0xe0 [ 145.821045][ T8226] __kmalloc+0x387/0x550 [ 145.825285][ T8226] fb_alloc_cmap_gfp+0x39b/0xa70 [ 145.830218][ T8226] fb_alloc_cmap+0x95/0xb0 [ 145.834624][ T8226] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 145.840533][ T8226] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 145.846351][ T8226] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 145.853551][ T8226] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 145.859146][ T8226] drm_fbdev_generic_setup+0x39d/0xa00 [ 145.864617][ T8226] vkms_init+0x9d6/0xc43 [ 145.868851][ T8226] do_one_initcall+0x362/0x8d0 [ 145.873603][ T8226] do_initcall_level+0x1e7/0x35a [ 145.878546][ T8226] do_initcalls+0x127/0x1cb [ 145.883043][ T8226] do_basic_setup+0x33/0x36 [ 145.887564][ T8226] kernel_init_freeable+0x287/0x3cc [ 145.892753][ T8226] kernel_init+0x1f/0x840 [ 145.897107][ T8226] ret_from_fork+0x1f/0x30 [ 145.901518][ T8226] [ 145.903837][ T8226] Bytes 0-1 of 2 are uninitialized [ 145.908929][ T8226] Memory access of size 2 starts at ffff88810494f3c0 [ 145.915612][ T8226] Data copied to user address 0000000020007300 [ 145.921747][ T8226] ===================================================== [ 145.929282][ T8226] ===================================================== [ 145.936253][ T8226] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 145.943832][ T8226] CPU: 0 PID: 8226 Comm: syz-executor147 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 145.953998][ T8226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 145.964066][ T8226] Call Trace: [ 145.967352][ T8226] dump_stack+0x24c/0x2e0 [ 145.971712][ T8226] kmsan_report+0xfb/0x1e0 [ 145.976152][ T8226] kmsan_internal_check_memory+0x48c/0x520 [ 145.981987][ T8226] kmsan_copy_to_user+0x9c/0xb0 [ 145.986856][ T8226] _copy_to_user+0x1ac/0x270 [ 145.991461][ T8226] fb_cmap_to_user+0x60c/0x990 [ 145.996393][ T8226] do_fb_ioctl+0xc53/0x1090 [ 146.000891][ T8226] ? kmsan_get_metadata+0x116/0x180 [ 146.006083][ T8226] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 146.011893][ T8226] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 146.018059][ T8226] ? do_vfs_ioctl+0x117f/0x3510 [ 146.022921][ T8226] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 146.028760][ T8226] ? kmsan_get_metadata+0x116/0x180 [ 146.033964][ T8226] fb_ioctl+0x1e4/0x210 [ 146.038155][ T8226] ? fb_write+0xd80/0xd80 [ 146.042482][ T8226] __se_sys_ioctl+0x311/0x4d0 [ 146.047164][ T8226] __x64_sys_ioctl+0x4a/0x70 [ 146.051765][ T8226] do_syscall_64+0x9f/0x140 [ 146.056320][ T8226] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 146.062244][ T8226] RIP: 0033:0x43fbd9 [ 146.066209][ T8226] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 146.085829][ T8226] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 146.094243][ T8226] RAX: ffffffffffffffda RBX: 0000000000023630 RCX: 000000000043fbd9 [ 146.102315][ T8226] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 146.110432][ T8226] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 146.118404][ T8226] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 00007ffc012a3b8c [ 146.126374][ T8226] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 146.134446][ T8226] [ 146.136764][ T8226] Uninit was created at: [ 146.141010][ T8226] kmsan_internal_poison_shadow+0x5c/0xf0 [ 146.146739][ T8226] kmsan_slab_alloc+0x8e/0xe0 [ 146.151425][ T8226] __kmalloc+0x387/0x550 [ 146.155661][ T8226] fb_alloc_cmap_gfp+0x42d/0xa70 [ 146.160592][ T8226] fb_alloc_cmap+0x95/0xb0 [ 146.165010][ T8226] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 146.170478][ T8226] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 146.176372][ T8226] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 146.183583][ T8226] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 146.189200][ T8226] drm_fbdev_generic_setup+0x39d/0xa00 [ 146.194659][ T8226] vkms_init+0x9d6/0xc43 [ 146.199065][ T8226] do_one_initcall+0x362/0x8d0 [ 146.203828][ T8226] do_initcall_level+0x1e7/0x35a [ 146.208765][ T8226] do_initcalls+0x127/0x1cb [ 146.213278][ T8226] do_basic_setup+0x33/0x36 [ 146.217789][ T8226] kernel_init_freeable+0x287/0x3cc [ 146.223076][ T8226] kernel_init+0x1f/0x840 [ 146.227605][ T8226] ret_from_fork+0x1f/0x30 [ 146.232310][ T8226] [ 146.234629][ T8226] Bytes 0-1 of 2 are uninitialized [ 146.239753][ T8226] Memory access of size 2 starts at ffff888142d363c0 executing program [ 146.246429][ T8226] ===================================================== [ 146.271923][ T8227] ===================================================== [ 146.278904][ T8227] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 146.286399][ T8227] CPU: 0 PID: 8227 Comm: syz-executor147 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 146.296579][ T8227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 146.306740][ T8227] Call Trace: [ 146.310017][ T8227] dump_stack+0x24c/0x2e0 [ 146.314339][ T8227] kmsan_report+0xfb/0x1e0 [ 146.318742][ T8227] kmsan_internal_check_memory+0x48c/0x520 [ 146.324547][ T8227] kmsan_copy_to_user+0x9c/0xb0 [ 146.329398][ T8227] _copy_to_user+0x1ac/0x270 [ 146.333976][ T8227] fb_cmap_to_user+0x40a/0x990 [ 146.338729][ T8227] do_fb_ioctl+0xc53/0x1090 [ 146.343218][ T8227] ? kmsan_get_metadata+0x116/0x180 [ 146.348400][ T8227] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 146.354464][ T8227] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 146.360553][ T8227] ? do_vfs_ioctl+0x117f/0x3510 [ 146.365408][ T8227] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 146.371297][ T8227] ? kmsan_get_metadata+0x116/0x180 [ 146.376489][ T8227] fb_ioctl+0x1e4/0x210 [ 146.380643][ T8227] ? fb_write+0xd80/0xd80 [ 146.385065][ T8227] __se_sys_ioctl+0x311/0x4d0 [ 146.389741][ T8227] __x64_sys_ioctl+0x4a/0x70 [ 146.394324][ T8227] do_syscall_64+0x9f/0x140 [ 146.398819][ T8227] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 146.404700][ T8227] RIP: 0033:0x43fbd9 [ 146.408580][ T8227] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 146.428216][ T8227] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 146.436628][ T8227] RAX: ffffffffffffffda RBX: 00000000000238e9 RCX: 000000000043fbd9 [ 146.444609][ T8227] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 146.452567][ T8227] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 146.460536][ T8227] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 00007ffc012a3b8c [ 146.468501][ T8227] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 146.476477][ T8227] [ 146.478808][ T8227] Uninit was created at: [ 146.491563][ T8227] kmsan_internal_poison_shadow+0x5c/0xf0 [ 146.497323][ T8227] kmsan_slab_alloc+0x8e/0xe0 [ 146.501994][ T8227] __kmalloc+0x387/0x550 [ 146.506399][ T8227] fb_alloc_cmap_gfp+0x39b/0xa70 [ 146.511329][ T8227] fb_alloc_cmap+0x95/0xb0 [ 146.515728][ T8227] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 146.521175][ T8227] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 146.526973][ T8227] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 146.534221][ T8227] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 146.539764][ T8227] drm_fbdev_generic_setup+0x39d/0xa00 [ 146.545223][ T8227] vkms_init+0x9d6/0xc43 [ 146.549467][ T8227] do_one_initcall+0x362/0x8d0 [ 146.554233][ T8227] do_initcall_level+0x1e7/0x35a [ 146.559212][ T8227] do_initcalls+0x127/0x1cb [ 146.563718][ T8227] do_basic_setup+0x33/0x36 [ 146.568212][ T8227] kernel_init_freeable+0x287/0x3cc [ 146.573416][ T8227] kernel_init+0x1f/0x840 [ 146.577735][ T8227] ret_from_fork+0x1f/0x30 [ 146.582140][ T8227] [ 146.584444][ T8227] Bytes 0-1 of 2 are uninitialized [ 146.589545][ T8227] Memory access of size 2 starts at ffff88810494f3c0 [ 146.596207][ T8227] Data copied to user address 0000000020007300 [ 146.602335][ T8227] ===================================================== [ 146.609794][ T8227] ===================================================== [ 146.616760][ T8227] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 146.624251][ T8227] CPU: 0 PID: 8227 Comm: syz-executor147 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 146.634416][ T8227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 146.644478][ T8227] Call Trace: [ 146.647776][ T8227] dump_stack+0x24c/0x2e0 [ 146.652564][ T8227] kmsan_report+0xfb/0x1e0 [ 146.657022][ T8227] kmsan_internal_check_memory+0x48c/0x520 [ 146.662860][ T8227] kmsan_copy_to_user+0x9c/0xb0 [ 146.667725][ T8227] _copy_to_user+0x1ac/0x270 [ 146.672312][ T8227] fb_cmap_to_user+0x60c/0x990 [ 146.677111][ T8227] do_fb_ioctl+0xc53/0x1090 [ 146.681657][ T8227] ? kmsan_get_metadata+0x116/0x180 [ 146.686877][ T8227] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 146.692699][ T8227] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 146.698757][ T8227] ? do_vfs_ioctl+0x117f/0x3510 [ 146.703603][ T8227] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 146.709449][ T8227] ? kmsan_get_metadata+0x116/0x180 [ 146.714647][ T8227] fb_ioctl+0x1e4/0x210 [ 146.718794][ T8227] ? fb_write+0xd80/0xd80 [ 146.723201][ T8227] __se_sys_ioctl+0x311/0x4d0 [ 146.727913][ T8227] __x64_sys_ioctl+0x4a/0x70 [ 146.732496][ T8227] do_syscall_64+0x9f/0x140 [ 146.736996][ T8227] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 146.742883][ T8227] RIP: 0033:0x43fbd9 [ 146.746788][ T8227] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 146.766476][ T8227] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 146.774888][ T8227] RAX: ffffffffffffffda RBX: 00000000000238e9 RCX: 000000000043fbd9 [ 146.782854][ T8227] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 146.790842][ T8227] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 146.798802][ T8227] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 00007ffc012a3b8c [ 146.806766][ T8227] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 146.814734][ T8227] [ 146.817081][ T8227] Uninit was created at: [ 146.821310][ T8227] kmsan_internal_poison_shadow+0x5c/0xf0 [ 146.827117][ T8227] kmsan_slab_alloc+0x8e/0xe0 [ 146.831785][ T8227] __kmalloc+0x387/0x550 [ 146.836018][ T8227] fb_alloc_cmap_gfp+0x42d/0xa70 [ 146.840944][ T8227] fb_alloc_cmap+0x95/0xb0 [ 146.845349][ T8227] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 146.850796][ T8227] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 146.856589][ T8227] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 146.863776][ T8227] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 146.869659][ T8227] drm_fbdev_generic_setup+0x39d/0xa00 [ 146.875124][ T8227] vkms_init+0x9d6/0xc43 [ 146.879371][ T8227] do_one_initcall+0x362/0x8d0 [ 146.884187][ T8227] do_initcall_level+0x1e7/0x35a [ 146.889156][ T8227] do_initcalls+0x127/0x1cb [ 146.893656][ T8227] do_basic_setup+0x33/0x36 [ 146.898155][ T8227] kernel_init_freeable+0x287/0x3cc executing program [ 146.903344][ T8227] kernel_init+0x1f/0x840 [ 146.907667][ T8227] ret_from_fork+0x1f/0x30 [ 146.912134][ T8227] [ 146.914444][ T8227] Bytes 0-1 of 2 are uninitialized [ 146.919552][ T8227] Memory access of size 2 starts at ffff888142d363c0 [ 146.926327][ T8227] ===================================================== [ 146.951210][ T8228] ===================================================== [ 146.958199][ T8228] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 146.965725][ T8228] CPU: 1 PID: 8228 Comm: syz-executor147 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 146.983349][ T8228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 146.993490][ T8228] Call Trace: [ 146.996769][ T8228] dump_stack+0x24c/0x2e0 [ 147.001110][ T8228] kmsan_report+0xfb/0x1e0 [ 147.005566][ T8228] kmsan_internal_check_memory+0x48c/0x520 [ 147.011386][ T8228] kmsan_copy_to_user+0x9c/0xb0 [ 147.016263][ T8228] _copy_to_user+0x1ac/0x270 [ 147.020885][ T8228] fb_cmap_to_user+0x40a/0x990 [ 147.025683][ T8228] do_fb_ioctl+0xc53/0x1090 [ 147.030190][ T8228] ? kmsan_get_metadata+0x116/0x180 [ 147.035397][ T8228] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 147.041213][ T8228] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 147.047276][ T8228] ? do_vfs_ioctl+0x117f/0x3510 [ 147.052146][ T8228] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 147.057946][ T8228] ? kmsan_get_metadata+0x116/0x180 [ 147.063137][ T8228] fb_ioctl+0x1e4/0x210 [ 147.067295][ T8228] ? fb_write+0xd80/0xd80 [ 147.071612][ T8228] __se_sys_ioctl+0x311/0x4d0 [ 147.076295][ T8228] __x64_sys_ioctl+0x4a/0x70 [ 147.080904][ T8228] do_syscall_64+0x9f/0x140 [ 147.085426][ T8228] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 147.091309][ T8228] RIP: 0033:0x43fbd9 [ 147.095190][ T8228] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 147.114886][ T8228] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 147.123341][ T8228] RAX: ffffffffffffffda RBX: 0000000000023b8f RCX: 000000000043fbd9 [ 147.131305][ T8228] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 147.139266][ T8228] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 147.147248][ T8228] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 00007ffc012a3b8c [ 147.155216][ T8228] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 147.163198][ T8228] [ 147.165523][ T8228] Uninit was created at: [ 147.169758][ T8228] kmsan_internal_poison_shadow+0x5c/0xf0 [ 147.175494][ T8228] kmsan_slab_alloc+0x8e/0xe0 [ 147.180183][ T8228] __kmalloc+0x387/0x550 [ 147.184415][ T8228] fb_alloc_cmap_gfp+0x39b/0xa70 [ 147.189355][ T8228] fb_alloc_cmap+0x95/0xb0 [ 147.193773][ T8228] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 147.199219][ T8228] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 147.205012][ T8228] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 147.212197][ T8228] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 147.217731][ T8228] drm_fbdev_generic_setup+0x39d/0xa00 [ 147.223180][ T8228] vkms_init+0x9d6/0xc43 [ 147.227417][ T8228] do_one_initcall+0x362/0x8d0 [ 147.232206][ T8228] do_initcall_level+0x1e7/0x35a [ 147.237152][ T8228] do_initcalls+0x127/0x1cb [ 147.241663][ T8228] do_basic_setup+0x33/0x36 [ 147.246157][ T8228] kernel_init_freeable+0x287/0x3cc [ 147.251361][ T8228] kernel_init+0x1f/0x840 [ 147.255694][ T8228] ret_from_fork+0x1f/0x30 [ 147.260101][ T8228] [ 147.262421][ T8228] Bytes 0-1 of 2 are uninitialized [ 147.267513][ T8228] Memory access of size 2 starts at ffff88810494f3c0 [ 147.274182][ T8228] Data copied to user address 0000000020007300 [ 147.280315][ T8228] ===================================================== [ 147.288045][ T8228] ===================================================== [ 147.295003][ T8228] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 147.302579][ T8228] CPU: 1 PID: 8228 Comm: syz-executor147 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 147.312752][ T8228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 147.322826][ T8228] Call Trace: [ 147.326123][ T8228] dump_stack+0x24c/0x2e0 [ 147.330485][ T8228] kmsan_report+0xfb/0x1e0 [ 147.334930][ T8228] kmsan_internal_check_memory+0x48c/0x520 [ 147.340986][ T8228] kmsan_copy_to_user+0x9c/0xb0 [ 147.345868][ T8228] _copy_to_user+0x1ac/0x270 [ 147.350493][ T8228] fb_cmap_to_user+0x60c/0x990 [ 147.355297][ T8228] do_fb_ioctl+0xc53/0x1090 [ 147.360607][ T8228] ? kmsan_get_metadata+0x116/0x180 [ 147.365937][ T8228] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 147.371796][ T8228] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 147.377890][ T8228] ? do_vfs_ioctl+0x117f/0x3510 [ 147.382736][ T8228] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 147.388540][ T8228] ? kmsan_get_metadata+0x116/0x180 [ 147.393855][ T8228] fb_ioctl+0x1e4/0x210 [ 147.398005][ T8228] ? fb_write+0xd80/0xd80 [ 147.402522][ T8228] __se_sys_ioctl+0x311/0x4d0 [ 147.407203][ T8228] __x64_sys_ioctl+0x4a/0x70 [ 147.411799][ T8228] do_syscall_64+0x9f/0x140 [ 147.416319][ T8228] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 147.422213][ T8228] RIP: 0033:0x43fbd9 [ 147.426128][ T8228] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 147.445920][ T8228] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 147.454343][ T8228] RAX: ffffffffffffffda RBX: 0000000000023b8f RCX: 000000000043fbd9 [ 147.462333][ T8228] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 147.470416][ T8228] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 147.478391][ T8228] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 00007ffc012a3b8c [ 147.486358][ T8228] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 147.494325][ T8228] [ 147.496633][ T8228] Uninit was created at: [ 147.500857][ T8228] kmsan_internal_poison_shadow+0x5c/0xf0 [ 147.506672][ T8228] kmsan_slab_alloc+0x8e/0xe0 [ 147.511401][ T8228] __kmalloc+0x387/0x550 [ 147.515674][ T8228] fb_alloc_cmap_gfp+0x42d/0xa70 [ 147.520691][ T8228] fb_alloc_cmap+0x95/0xb0 [ 147.525164][ T8228] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 147.531317][ T8228] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 147.537422][ T8228] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 147.544709][ T8228] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 147.550253][ T8228] drm_fbdev_generic_setup+0x39d/0xa00 [ 147.555715][ T8228] vkms_init+0x9d6/0xc43 [ 147.560818][ T8228] do_one_initcall+0x362/0x8d0 [ 147.565579][ T8228] do_initcall_level+0x1e7/0x35a [ 147.570509][ T8228] do_initcalls+0x127/0x1cb [ 147.575121][ T8228] do_basic_setup+0x33/0x36 [ 147.579627][ T8228] kernel_init_freeable+0x287/0x3cc [ 147.584826][ T8228] kernel_init+0x1f/0x840 [ 147.589410][ T8228] ret_from_fork+0x1f/0x30 [ 147.593849][ T8228] [ 147.596157][ T8228] Bytes 0-1 of 2 are uninitialized [ 147.601247][ T8228] Memory access of size 2 starts at ffff888142d363c0 executing program [ 147.607918][ T8228] ===================================================== [ 147.658095][ T8229] ===================================================== [ 147.665072][ T8229] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 147.672534][ T8229] CPU: 0 PID: 8229 Comm: syz-executor147 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 147.682774][ T8229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 147.692868][ T8229] Call Trace: [ 147.696218][ T8229] dump_stack+0x24c/0x2e0 [ 147.700576][ T8229] kmsan_report+0xfb/0x1e0 [ 147.705007][ T8229] kmsan_internal_check_memory+0x48c/0x520 [ 147.710829][ T8229] kmsan_copy_to_user+0x9c/0xb0 [ 147.715676][ T8229] _copy_to_user+0x1ac/0x270 [ 147.720264][ T8229] fb_cmap_to_user+0x40a/0x990 [ 147.725124][ T8229] do_fb_ioctl+0xc53/0x1090 [ 147.729634][ T8229] ? kmsan_get_metadata+0x116/0x180 [ 147.734832][ T8229] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 147.741208][ T8229] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 147.747447][ T8229] ? do_vfs_ioctl+0x117f/0x3510 [ 147.752365][ T8229] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 147.758899][ T8229] ? kmsan_get_metadata+0x116/0x180 [ 147.764110][ T8229] fb_ioctl+0x1e4/0x210 [ 147.768363][ T8229] ? fb_write+0xd80/0xd80 [ 147.772696][ T8229] __se_sys_ioctl+0x311/0x4d0 [ 147.777542][ T8229] __x64_sys_ioctl+0x4a/0x70 [ 147.782147][ T8229] do_syscall_64+0x9f/0x140 [ 147.786673][ T8229] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 147.792694][ T8229] RIP: 0033:0x43fbd9 [ 147.796883][ T8229] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 147.817068][ T8229] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 147.825505][ T8229] RAX: ffffffffffffffda RBX: 0000000000023e36 RCX: 000000000043fbd9 [ 147.833567][ T8229] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 147.841597][ T8229] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 147.852979][ T8229] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 00007ffc012a3b8c [ 147.861140][ T8229] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 147.869116][ T8229] [ 147.871436][ T8229] Uninit was created at: [ 147.876079][ T8229] kmsan_internal_poison_shadow+0x5c/0xf0 [ 147.881849][ T8229] kmsan_slab_alloc+0x8e/0xe0 [ 147.886551][ T8229] __kmalloc+0x387/0x550 [ 147.891583][ T8229] fb_alloc_cmap_gfp+0x39b/0xa70 [ 147.896527][ T8229] fb_alloc_cmap+0x95/0xb0 [ 147.900951][ T8229] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 147.906726][ T8229] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 147.912529][ T8229] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 147.919728][ T8229] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 147.925990][ T8229] drm_fbdev_generic_setup+0x39d/0xa00 [ 147.931891][ T8229] vkms_init+0x9d6/0xc43 [ 147.937297][ T8229] do_one_initcall+0x362/0x8d0 [ 147.942081][ T8229] do_initcall_level+0x1e7/0x35a [ 147.947244][ T8229] do_initcalls+0x127/0x1cb [ 147.951769][ T8229] do_basic_setup+0x33/0x36 [ 147.956288][ T8229] kernel_init_freeable+0x287/0x3cc [ 147.961508][ T8229] kernel_init+0x1f/0x840 [ 147.966289][ T8229] ret_from_fork+0x1f/0x30 [ 147.970711][ T8229] [ 147.973021][ T8229] Bytes 0-1 of 2 are uninitialized [ 147.978236][ T8229] Memory access of size 2 starts at ffff88810494f3c0 [ 147.984918][ T8229] Data copied to user address 0000000020007300 [ 147.991085][ T8229] ===================================================== [ 147.998967][ T8229] ===================================================== [ 148.006119][ T8229] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 148.013618][ T8229] CPU: 0 PID: 8229 Comm: syz-executor147 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 148.025435][ T8229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 148.035534][ T8229] Call Trace: [ 148.038826][ T8229] dump_stack+0x24c/0x2e0 [ 148.043197][ T8229] kmsan_report+0xfb/0x1e0 [ 148.050878][ T8229] kmsan_internal_check_memory+0x48c/0x520 [ 148.056720][ T8229] kmsan_copy_to_user+0x9c/0xb0 [ 148.061615][ T8229] _copy_to_user+0x1ac/0x270 [ 148.066225][ T8229] fb_cmap_to_user+0x60c/0x990 [ 148.070987][ T8229] do_fb_ioctl+0xc53/0x1090 [ 148.075506][ T8229] ? kmsan_get_metadata+0x116/0x180 [ 148.080715][ T8229] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 148.086515][ T8229] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 148.092694][ T8229] ? do_vfs_ioctl+0x117f/0x3510 [ 148.097547][ T8229] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 148.103565][ T8229] ? kmsan_get_metadata+0x116/0x180 [ 148.113214][ T8229] fb_ioctl+0x1e4/0x210 [ 148.117488][ T8229] ? fb_write+0xd80/0xd80 [ 148.122027][ T8229] __se_sys_ioctl+0x311/0x4d0 [ 148.126716][ T8229] __x64_sys_ioctl+0x4a/0x70 [ 148.131317][ T8229] do_syscall_64+0x9f/0x140 [ 148.136788][ T8229] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 148.142688][ T8229] RIP: 0033:0x43fbd9 [ 148.146592][ T8229] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 148.166295][ T8229] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 148.175365][ T8229] RAX: ffffffffffffffda RBX: 0000000000023e36 RCX: 000000000043fbd9 [ 148.183463][ T8229] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 148.197800][ T8229] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 148.206003][ T8229] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 00007ffc012a3b8c [ 148.214096][ T8229] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 148.222097][ T8229] [ 148.224442][ T8229] Uninit was created at: [ 148.228681][ T8229] kmsan_internal_poison_shadow+0x5c/0xf0 [ 148.234433][ T8229] kmsan_slab_alloc+0x8e/0xe0 [ 148.239119][ T8229] __kmalloc+0x387/0x550 [ 148.243687][ T8229] fb_alloc_cmap_gfp+0x42d/0xa70 [ 148.250808][ T8229] fb_alloc_cmap+0x95/0xb0 [ 148.255219][ T8229] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 148.260703][ T8229] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 148.270817][ T8229] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 148.278018][ T8229] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 148.283575][ T8229] drm_fbdev_generic_setup+0x39d/0xa00 [ 148.289123][ T8229] vkms_init+0x9d6/0xc43 [ 148.293359][ T8229] do_one_initcall+0x362/0x8d0 [ 148.300466][ T8229] do_initcall_level+0x1e7/0x35a executing program [ 148.311393][ T8229] do_initcalls+0x127/0x1cb [ 148.315929][ T8229] do_basic_setup+0x33/0x36 [ 148.320446][ T8229] kernel_init_freeable+0x287/0x3cc [ 148.326479][ T8229] kernel_init+0x1f/0x840 [ 148.330821][ T8229] ret_from_fork+0x1f/0x30 [ 148.335262][ T8229] [ 148.337630][ T8229] Bytes 0-1 of 2 are uninitialized [ 148.342765][ T8229] Memory access of size 2 starts at ffff888142d363c0 [ 148.349576][ T8229] ===================================================== [ 148.389373][ T8230] ===================================================== [ 148.398282][ T8230] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 148.405768][ T8230] CPU: 0 PID: 8230 Comm: syz-executor147 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 148.415912][ T8230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 148.425962][ T8230] Call Trace: [ 148.429238][ T8230] dump_stack+0x24c/0x2e0 [ 148.433575][ T8230] kmsan_report+0xfb/0x1e0 [ 148.438027][ T8230] kmsan_internal_check_memory+0x48c/0x520 [ 148.443837][ T8230] kmsan_copy_to_user+0x9c/0xb0 [ 148.448692][ T8230] _copy_to_user+0x1ac/0x270 [ 148.453857][ T8230] fb_cmap_to_user+0x40a/0x990 [ 148.459314][ T8230] do_fb_ioctl+0xc53/0x1090 [ 148.465289][ T8230] ? kmsan_get_metadata+0x116/0x180 [ 148.470661][ T8230] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 148.476549][ T8230] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 148.482751][ T8230] ? do_vfs_ioctl+0x117f/0x3510 [ 148.487805][ T8230] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 148.493634][ T8230] ? kmsan_get_metadata+0x116/0x180 [ 148.498876][ T8230] fb_ioctl+0x1e4/0x210 [ 148.503034][ T8230] ? fb_write+0xd80/0xd80 [ 148.507365][ T8230] __se_sys_ioctl+0x311/0x4d0 [ 148.512224][ T8230] __x64_sys_ioctl+0x4a/0x70 [ 148.516976][ T8230] do_syscall_64+0x9f/0x140 [ 148.521488][ T8230] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 148.527408][ T8230] RIP: 0033:0x43fbd9 [ 148.531316][ T8230] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 148.552841][ T8230] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 148.561300][ T8230] RAX: ffffffffffffffda RBX: 00000000000240f8 RCX: 000000000043fbd9 [ 148.569706][ T8230] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 148.577816][ T8230] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 148.585832][ T8230] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 00007ffc012a3b8c [ 148.593962][ T8230] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 148.601940][ T8230] [ 148.604256][ T8230] Uninit was created at: [ 148.608746][ T8230] kmsan_internal_poison_shadow+0x5c/0xf0 [ 148.614488][ T8230] kmsan_slab_alloc+0x8e/0xe0 [ 148.619159][ T8230] __kmalloc+0x387/0x550 [ 148.623423][ T8230] fb_alloc_cmap_gfp+0x39b/0xa70 [ 148.628496][ T8230] fb_alloc_cmap+0x95/0xb0 [ 148.633107][ T8230] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 148.638672][ T8230] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 148.644491][ T8230] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 148.651770][ T8230] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 148.657324][ T8230] drm_fbdev_generic_setup+0x39d/0xa00 [ 148.662814][ T8230] vkms_init+0x9d6/0xc43 [ 148.667102][ T8230] do_one_initcall+0x362/0x8d0 [ 148.671870][ T8230] do_initcall_level+0x1e7/0x35a [ 148.676895][ T8230] do_initcalls+0x127/0x1cb [ 148.681421][ T8230] do_basic_setup+0x33/0x36 [ 148.686232][ T8230] kernel_init_freeable+0x287/0x3cc [ 148.691487][ T8230] kernel_init+0x1f/0x840 [ 148.695821][ T8230] ret_from_fork+0x1f/0x30 [ 148.700253][ T8230] [ 148.702572][ T8230] Bytes 0-1 of 2 are uninitialized [ 148.707752][ T8230] Memory access of size 2 starts at ffff88810494f3c0 [ 148.714564][ T8230] Data copied to user address 0000000020007300 [ 148.720719][ T8230] ===================================================== [ 148.728126][ T8230] ===================================================== [ 148.735074][ T8230] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 148.742540][ T8230] CPU: 0 PID: 8230 Comm: syz-executor147 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 148.752705][ T8230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 148.762782][ T8230] Call Trace: [ 148.766077][ T8230] dump_stack+0x24c/0x2e0 [ 148.770479][ T8230] kmsan_report+0xfb/0x1e0 [ 148.775917][ T8230] kmsan_internal_check_memory+0x48c/0x520 [ 148.781846][ T8230] kmsan_copy_to_user+0x9c/0xb0 [ 148.786819][ T8230] _copy_to_user+0x1ac/0x270 [ 148.791445][ T8230] fb_cmap_to_user+0x60c/0x990 [ 148.796239][ T8230] do_fb_ioctl+0xc53/0x1090 [ 148.800785][ T8230] ? kmsan_get_metadata+0x116/0x180 [ 148.808709][ T8230] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 148.814703][ T8230] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 148.820805][ T8230] ? do_vfs_ioctl+0x117f/0x3510 [ 148.825676][ T8230] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 148.832009][ T8230] ? kmsan_get_metadata+0x116/0x180 [ 148.837509][ T8230] fb_ioctl+0x1e4/0x210 [ 148.841763][ T8230] ? fb_write+0xd80/0xd80 [ 148.846096][ T8230] __se_sys_ioctl+0x311/0x4d0 [ 148.850928][ T8230] __x64_sys_ioctl+0x4a/0x70 [ 148.855651][ T8230] do_syscall_64+0x9f/0x140 [ 148.860165][ T8230] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 148.866217][ T8230] RIP: 0033:0x43fbd9 [ 148.870279][ T8230] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 148.890332][ T8230] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 148.898777][ T8230] RAX: ffffffffffffffda RBX: 00000000000240f8 RCX: 000000000043fbd9 [ 148.907093][ T8230] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 148.915847][ T8230] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 148.923837][ T8230] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 00007ffc012a3b8c [ 148.932322][ T8230] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 148.940840][ T8230] [ 148.943179][ T8230] Uninit was created at: [ 148.947504][ T8230] kmsan_internal_poison_shadow+0x5c/0xf0 [ 148.955753][ T8230] kmsan_slab_alloc+0x8e/0xe0 [ 148.960956][ T8230] __kmalloc+0x387/0x550 [ 148.965398][ T8230] fb_alloc_cmap_gfp+0x42d/0xa70 [ 148.970455][ T8230] fb_alloc_cmap+0x95/0xb0 [ 148.974982][ T8230] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 148.980577][ T8230] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 148.988316][ T8230] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 148.995521][ T8230] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 149.001068][ T8230] drm_fbdev_generic_setup+0x39d/0xa00 [ 149.008261][ T8230] vkms_init+0x9d6/0xc43 [ 149.012501][ T8230] do_one_initcall+0x362/0x8d0 [ 149.017286][ T8230] do_initcall_level+0x1e7/0x35a [ 149.022252][ T8230] do_initcalls+0x127/0x1cb [ 149.026760][ T8230] do_basic_setup+0x33/0x36 [ 149.031270][ T8230] kernel_init_freeable+0x287/0x3cc [ 149.036470][ T8230] kernel_init+0x1f/0x840 executing program [ 149.040823][ T8230] ret_from_fork+0x1f/0x30 [ 149.045426][ T8230] [ 149.047748][ T8230] Bytes 0-1 of 2 are uninitialized [ 149.052849][ T8230] Memory access of size 2 starts at ffff888142d363c0 [ 149.059530][ T8230] ===================================================== [ 149.081940][ T8231] ===================================================== [ 149.088977][ T8231] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x9c/0xb0 [ 149.096478][ T8231] CPU: 1 PID: 8231 Comm: syz-executor147 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 149.106729][ T8231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 149.117005][ T8231] Call Trace: [ 149.120395][ T8231] dump_stack+0x24c/0x2e0 [ 149.132146][ T8231] kmsan_report+0xfb/0x1e0 [ 149.136959][ T8231] kmsan_internal_check_memory+0x48c/0x520 [ 149.142766][ T8231] kmsan_copy_to_user+0x9c/0xb0 [ 149.147627][ T8231] _copy_to_user+0x1ac/0x270 [ 149.152212][ T8231] fb_cmap_to_user+0x40a/0x990 [ 149.156977][ T8231] do_fb_ioctl+0xc53/0x1090 [ 149.161716][ T8231] ? kmsan_get_metadata+0x116/0x180 [ 149.167035][ T8231] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 149.172857][ T8231] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 149.179106][ T8231] ? do_vfs_ioctl+0x117f/0x3510 [ 149.183993][ T8231] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 149.189902][ T8231] ? kmsan_get_metadata+0x116/0x180 [ 149.196941][ T8231] fb_ioctl+0x1e4/0x210 [ 149.201378][ T8231] ? fb_write+0xd80/0xd80 [ 149.205760][ T8231] __se_sys_ioctl+0x311/0x4d0 [ 149.210444][ T8231] __x64_sys_ioctl+0x4a/0x70 [ 149.215055][ T8231] do_syscall_64+0x9f/0x140 [ 149.219599][ T8231] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 149.225858][ T8231] RIP: 0033:0x43fbd9 [ 149.229847][ T8231] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 149.251877][ T8231] RSP: 002b:00007ffc012a3b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 149.260420][ T8231] RAX: ffffffffffffffda RBX: 00000000000243d9 RCX: 000000000043fbd9 [ 149.268387][ T8231] RDX: 0000000020007400 RSI: 0000000000004604 RDI: 0000000000000003 [ 149.276883][ T8231] RBP: 0000000000000000 R08: 00007ffc012a3d18 R09: 00007ffc012a3d18 [ 149.284863][ T8231] R10: 00007ffc012a35f0 R11: 0000000000000246 R12: 00007ffc012a3b8c [ 149.292843][ T8231] R13: 431bde82d7b634db R14: 00000000004ad018 R15: 0000000000400488 [ 149.300828][ T8231] [ 149.303142][ T8231] Uninit was created at: [ 149.307388][ T8231] kmsan_internal_poison_shadow+0x5c/0xf0 [ 149.313199][ T8231] kmsan_slab_alloc+0x8e/0xe0 [ 149.317879][ T8231] __kmalloc+0x387/0x550 [ 149.322119][ T8231] fb_alloc_cmap_gfp+0x39b/0xa70 [ 149.328897][ T8231] fb_alloc_cmap+0x95/0xb0 [ 149.333427][ T8231] drm_fb_helper_alloc_fbi+0x106/0x3f0 [ 149.338894][ T8231] drm_fb_helper_generic_probe+0x4f3/0xc70 [ 149.349023][ T8231] __drm_fb_helper_initial_config_and_unlock+0x1cac/0x26c0 [ 149.356319][ T8231] drm_fbdev_client_hotplug+0xbb8/0xd70 [ 149.361868][ T8231] drm_fbdev_generic_setup+0x39d/0xa00 [ 149.367353][ T8231] vkms_init+0x9d6/0xc43 [ 149.371604][ T8231] do_one_initcall+0x362/0x8d0 [ 149.376425][ T8231] do_initcall_level+0x1e7/0x35a [ 149.381355][ T8231] do_initcalls+0x127/0x1cb [ 149.385869][ T8231] do_basic_setup+0x33/0x36 [ 149.390370][ T8231] kernel_init_freeable+0x287/0x3cc