[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 81.582893] audit: type=1800 audit(1556937262.632:25): pid=10090 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 81.606619] audit: type=1800 audit(1556937262.652:26): pid=10090 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 81.641726] audit: type=1800 audit(1556937262.682:27): pid=10090 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 87.005507] sshd (10227) used greatest stack depth: 53664 bytes left Warning: Permanently added '10.128.10.37' (ECDSA) to the list of known hosts. [ 107.559511] IPVS: ftp: loaded support on port[0] = 21 [ 107.560956] IPVS: ftp: loaded support on port[0] = 21 [ 107.585714] IPVS: ftp: loaded support on port[0] = 21 [ 107.596285] IPVS: ftp: loaded support on port[0] = 21 [ 107.607002] IPVS: ftp: loaded support on port[0] = 21 [ 107.617016] IPVS: ftp: loaded support on port[0] = 21 executing program [ 107.755535] ptrace attach of "./syz-executor353086472"[10254] was attempted by "./syz-executor353086472"[10255] executing program executing program [ 107.827924] ptrace attach of "./syz-executor353086472"[10256] was attempted by "./syz-executor353086472"[10257] [ 107.866374] ptrace attach of "./syz-executor353086472"[10258] was attempted by "./syz-executor353086472"[10259] executing program executing program executing program [ 107.948454] ptrace attach of "./syz-executor353086472"[10260] was attempted by "./syz-executor353086472"[10263] [ 107.964290] ptrace attach of "./syz-executor353086472"[10262] was attempted by "./syz-executor353086472"[10264] [ 107.975505] ptrace attach of "./syz-executor353086472"[10261] was attempted by "./syz-executor353086472"[10265] executing program executing program [ 112.788049] ptrace attach of "./syz-executor353086472"[10266] was attempted by "./syz-executor353086472"[10267] executing program executing program executing program [ 112.852444] ptrace attach of "./syz-executor353086472"[10268] was attempted by "./syz-executor353086472"[10269] [ 112.877007] ptrace attach of "./syz-executor353086472"[10270] was attempted by "./syz-executor353086472"[10271] executing program [ 112.945306] ptrace attach of "./syz-executor353086472"[10273] was attempted by "./syz-executor353086472"[10275] [ 112.952286] ptrace attach of "./syz-executor353086472"[10274] was attempted by "./syz-executor353086472"[10276] [ 112.958659] ptrace attach of "./syz-executor353086472"[10272] was attempted by "./syz-executor353086472"[10277] executing program executing program [ 117.781756] ptrace attach of "./syz-executor353086472"[10278] was attempted by "./syz-executor353086472"[10279] executing program [ 117.843173] ptrace attach of "./syz-executor353086472"[10280] was attempted by "./syz-executor353086472"[10281] executing program executing program [ 117.889085] ptrace attach of "./syz-executor353086472"[10282] was attempted by "./syz-executor353086472"[10283] [ 117.946845] ================================================================== [ 117.954284] BUG: KMSAN: kernel-infoleak in _copy_to_user+0x16b/0x1f0 [ 117.960793] CPU: 1 PID: 10284 Comm: syz-executor353 Not tainted 5.1.0-rc7+ #5 [ 117.968066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 117.977438] Call Trace: [ 117.980048] dump_stack+0x191/0x1f0 [ 117.983717] kmsan_report+0x130/0x2a0 [ 117.987558] kmsan_internal_check_memory+0x974/0xa80 [ 117.992697] ? page_fault+0x3d/0x50 [ 117.996366] kmsan_copy_to_user+0xa9/0xb0 [ 118.000535] _copy_to_user+0x16b/0x1f0 [ 118.004460] copy_siginfo_to_user+0x80/0x160 [ 118.008894] ptrace_request+0x24bd/0x2950 [ 118.013076] ? wait_task_inactive+0x7b4/0x9b0 [ 118.017623] arch_ptrace+0x9fa/0x1090 [ 118.021471] __se_sys_ptrace+0x2b9/0x7b0 [ 118.025576] __x64_sys_ptrace+0x56/0x70 [ 118.029576] do_syscall_64+0xbc/0xf0 [ 118.033315] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 118.038516] RIP: 0033:0x441cc9 [ 118.041723] Code: e8 bc e6 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 1b 08 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 118.060649] RSP: 002b:00000000007efdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000065 [ 118.068380] RAX: ffffffffffffffda RBX: 0000000000000063 RCX: 0000000000441cc9 [ 118.075666] RDX: 00000000200000c0 RSI: 0000000000000007 RDI: 0000000000004209 [ 118.082943] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 118.090221] R10: 0000000000716000 R11: 0000000000000246 R12: 0000000000000002 [ 118.097499] R13: 0000000000402a00 R14: 0000000000000000 R15: 0000000000000000 [ 118.104801] [ 118.106432] Local variable description: ----info.i@ptrace_request [ 118.112669] Variable was created at: [ 118.116395] ptrace_request+0x2161/0x2950 [ 118.120563] arch_ptrace+0x9fa/0x1090 [ 118.124364] [ 118.125994] Bytes 0-47 of 48 are uninitialized [ 118.130581] Memory access of size 48 starts at ffff8880a902fd70 [ 118.136650] Data copied to user address 0000000000716000 [ 118.142106] ================================================================== [ 118.149471] Disabling lock debugging due to kernel taint [ 118.154926] Kernel panic - not syncing: panic_on_warn set ... [ 118.160826] CPU: 1 PID: 10284 Comm: syz-executor353 Tainted: G B 5.1.0-rc7+ #5 [ 118.169489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 118.178848] Call Trace: [ 118.181462] dump_stack+0x191/0x1f0 [ 118.185121] panic+0x3ca/0xafe [ 118.188393] kmsan_report+0x298/0x2a0 [ 118.192234] kmsan_internal_check_memory+0x974/0xa80 [ 118.197361] ? page_fault+0x3d/0x50 [ 118.201023] kmsan_copy_to_user+0xa9/0xb0 [ 118.205193] _copy_to_user+0x16b/0x1f0 [ 118.209128] copy_siginfo_to_user+0x80/0x160 [ 118.213562] ptrace_request+0x24bd/0x2950 [ 118.217740] ? wait_task_inactive+0x7b4/0x9b0 [ 118.222280] arch_ptrace+0x9fa/0x1090 [ 118.226123] __se_sys_ptrace+0x2b9/0x7b0 [ 118.230223] __x64_sys_ptrace+0x56/0x70 [ 118.234225] do_syscall_64+0xbc/0xf0 [ 118.237960] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 118.243160] RIP: 0033:0x441cc9 [ 118.246366] Code: e8 bc e6 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 1b 08 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 118.265275] RSP: 002b:00000000007efdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000065 [ 118.272995] RAX: ffffffffffffffda RBX: 0000000000000063 RCX: 0000000000441cc9 [ 118.280276] RDX: 00000000200000c0 RSI: 0000000000000007 RDI: 0000000000004209 [ 118.287553] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 118.294832] R10: 0000000000716000 R11: 0000000000000246 R12: 0000000000000002 [ 118.302122] R13: 0000000000402a00 R14: 0000000000000000 R15: 0000000000000000 [ 118.310452] Kernel Offset: disabled [ 118.314096] Rebooting in 86400 seconds..