Warning: Permanently added '10.128.0.94' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 117.431170][ T8478] ===================================================== [ 117.438145][ T8478] BUG: KMSAN: uninit-value in gf128mul_4k_lle+0x202/0x2b0 [ 117.445279][ T8478] CPU: 0 PID: 8478 Comm: syz-executor268 Not tainted 5.8.0-rc5-syzkaller #0 [ 117.453919][ T8478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 117.463947][ T8478] Call Trace: [ 117.467216][ T8478] dump_stack+0x1df/0x240 [ 117.471523][ T8478] kmsan_report+0xf7/0x1e0 [ 117.475914][ T8478] __msan_warning+0x58/0xa0 [ 117.480392][ T8478] gf128mul_4k_lle+0x202/0x2b0 [ 117.485149][ T8478] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 117.490940][ T8478] ghash_update+0x9cc/0x1130 [ 117.495511][ T8478] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 117.501551][ T8478] ? ghash_init+0x80/0x80 [ 117.505875][ T8478] crypto_shash_update+0x4e9/0x550 [ 117.510959][ T8478] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 117.517093][ T8478] ? crypto_hash_walk_first+0x1fd/0x360 [ 117.522629][ T8478] ? kmsan_get_metadata+0x4f/0x180 [ 117.527727][ T8478] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 117.533504][ T8478] shash_async_update+0x113/0x1d0 [ 117.538503][ T8478] ? shash_async_init+0x1e0/0x1e0 [ 117.543499][ T8478] hash_sendpage+0x8ef/0xdf0 [ 117.548094][ T8478] hash_sendpage_nokey+0x3a4/0x430 [ 117.553183][ T8478] ? hash_recvmsg_nokey+0x3e0/0x3e0 [ 117.558365][ T8478] sock_sendpage+0x1e1/0x2c0 [ 117.562944][ T8478] pipe_to_sendpage+0x38c/0x4c0 [ 117.567769][ T8478] ? sock_fasync+0x250/0x250 [ 117.572337][ T8478] __splice_from_pipe+0x565/0xf00 [ 117.577335][ T8478] ? generic_splice_sendpage+0x2d0/0x2d0 [ 117.582950][ T8478] generic_splice_sendpage+0x1d5/0x2d0 [ 117.588386][ T8478] ? iter_file_splice_write+0x1800/0x1800 [ 117.594103][ T8478] direct_splice_actor+0x1fd/0x580 [ 117.599208][ T8478] ? kmsan_get_metadata+0x4f/0x180 [ 117.604310][ T8478] splice_direct_to_actor+0x6b2/0xf50 [ 117.609653][ T8478] ? do_splice_direct+0x580/0x580 [ 117.614661][ T8478] do_splice_direct+0x342/0x580 [ 117.619492][ T8478] do_sendfile+0x101b/0x1d40 [ 117.624067][ T8478] __se_sys_sendfile64+0x2bb/0x360 [ 117.629181][ T8478] ? kmsan_get_metadata+0x4f/0x180 [ 117.634265][ T8478] __x64_sys_sendfile64+0x56/0x70 [ 117.639263][ T8478] do_syscall_64+0xb0/0x150 [ 117.643748][ T8478] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 117.649612][ T8478] RIP: 0033:0x440419 [ 117.653472][ T8478] Code: Bad RIP value. [ 117.657515][ T8478] RSP: 002b:00007ffff699dc48 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 117.665899][ T8478] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 0000000000440419 [ 117.673844][ T8478] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 117.681794][ T8478] RBP: 00000000006cb018 R08: 0000000000000017 R09: 65732f636f72702f [ 117.689750][ T8478] R10: 0000000000000fd2 R11: 0000000000000246 R12: 0000000000401c80 [ 117.697703][ T8478] R13: 0000000000401d10 R14: 0000000000000000 R15: 0000000000000000 [ 117.705654][ T8478] [ 117.707960][ T8478] Uninit was stored to memory at: [ 117.712961][ T8478] kmsan_internal_chain_origin+0xad/0x130 [ 117.718653][ T8478] __msan_chain_origin+0x50/0x90 [ 117.723569][ T8478] ghash_update+0xa83/0x1130 [ 117.728144][ T8478] crypto_shash_update+0x4e9/0x550 [ 117.733224][ T8478] shash_async_update+0x113/0x1d0 [ 117.738221][ T8478] hash_sendpage+0x8ef/0xdf0 [ 117.742793][ T8478] hash_sendpage_nokey+0x3a4/0x430 [ 117.747876][ T8478] sock_sendpage+0x1e1/0x2c0 [ 117.752438][ T8478] pipe_to_sendpage+0x38c/0x4c0 [ 117.757258][ T8478] __splice_from_pipe+0x565/0xf00 [ 117.762255][ T8478] generic_splice_sendpage+0x1d5/0x2d0 [ 117.767684][ T8478] direct_splice_actor+0x1fd/0x580 [ 117.772767][ T8478] splice_direct_to_actor+0x6b2/0xf50 [ 117.778110][ T8478] do_splice_direct+0x342/0x580 [ 117.782933][ T8478] do_sendfile+0x101b/0x1d40 [ 117.787494][ T8478] __se_sys_sendfile64+0x2bb/0x360 [ 117.792574][ T8478] __x64_sys_sendfile64+0x56/0x70 [ 117.797570][ T8478] do_syscall_64+0xb0/0x150 [ 117.802047][ T8478] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 117.807905][ T8478] [ 117.810215][ T8478] Uninit was created at: [ 117.814604][ T8478] kmsan_save_stack_with_flags+0x3c/0x90 [ 117.820205][ T8478] kmsan_alloc_page+0xb9/0x180 [ 117.824952][ T8478] __alloc_pages_nodemask+0x56a2/0x5dc0 [ 117.830479][ T8478] alloc_pages_current+0x672/0x990 [ 117.835558][ T8478] push_pipe+0x605/0xb70 [ 117.839774][ T8478] iov_iter_get_pages_alloc+0x18a9/0x21c0 [ 117.845465][ T8478] do_splice_to+0x4fc/0x14f0 [ 117.850026][ T8478] splice_direct_to_actor+0x45c/0xf50 [ 117.855367][ T8478] do_splice_direct+0x342/0x580 [ 117.860188][ T8478] do_sendfile+0x101b/0x1d40 [ 117.864753][ T8478] __se_sys_sendfile64+0x2bb/0x360 [ 117.869835][ T8478] __x64_sys_sendfile64+0x56/0x70 [ 117.874831][ T8478] do_syscall_64+0xb0/0x150 [ 117.879304][ T8478] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 117.885163][ T8478] ===================================================== [ 117.892063][ T8478] Disabling lock debugging due to kernel taint [ 117.898184][ T8478] Kernel panic - not syncing: panic_on_warn set ... [ 117.904744][ T8478] CPU: 0 PID: 8478 Comm: syz-executor268 Tainted: G B 5.8.0-rc5-syzkaller #0 [ 117.914781][ T8478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 117.924894][ T8478] Call Trace: [ 117.928163][ T8478] dump_stack+0x1df/0x240 [ 117.932470][ T8478] panic+0x3d5/0xc3e [ 117.936351][ T8478] kmsan_report+0x1df/0x1e0 [ 117.940837][ T8478] __msan_warning+0x58/0xa0 [ 117.945316][ T8478] gf128mul_4k_lle+0x202/0x2b0 [ 117.950065][ T8478] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 117.955848][ T8478] ghash_update+0x9cc/0x1130 [ 117.960415][ T8478] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 117.966455][ T8478] ? ghash_init+0x80/0x80 [ 117.970757][ T8478] crypto_shash_update+0x4e9/0x550 [ 117.975841][ T8478] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 117.981977][ T8478] ? crypto_hash_walk_first+0x1fd/0x360 [ 117.987505][ T8478] ? kmsan_get_metadata+0x4f/0x180 [ 117.992597][ T8478] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 117.998374][ T8478] shash_async_update+0x113/0x1d0 [ 118.003374][ T8478] ? shash_async_init+0x1e0/0x1e0 [ 118.008370][ T8478] hash_sendpage+0x8ef/0xdf0 [ 118.012939][ T8478] hash_sendpage_nokey+0x3a4/0x430 [ 118.018026][ T8478] ? hash_recvmsg_nokey+0x3e0/0x3e0 [ 118.023198][ T8478] sock_sendpage+0x1e1/0x2c0 [ 118.027767][ T8478] pipe_to_sendpage+0x38c/0x4c0 [ 118.032593][ T8478] ? sock_fasync+0x250/0x250 [ 118.037248][ T8478] __splice_from_pipe+0x565/0xf00 [ 118.042249][ T8478] ? generic_splice_sendpage+0x2d0/0x2d0 [ 118.047863][ T8478] generic_splice_sendpage+0x1d5/0x2d0 [ 118.053300][ T8478] ? iter_file_splice_write+0x1800/0x1800 [ 118.059005][ T8478] direct_splice_actor+0x1fd/0x580 [ 118.064098][ T8478] ? kmsan_get_metadata+0x4f/0x180 [ 118.069185][ T8478] splice_direct_to_actor+0x6b2/0xf50 [ 118.074527][ T8478] ? do_splice_direct+0x580/0x580 [ 118.079532][ T8478] do_splice_direct+0x342/0x580 [ 118.084364][ T8478] do_sendfile+0x101b/0x1d40 [ 118.088937][ T8478] __se_sys_sendfile64+0x2bb/0x360 [ 118.094022][ T8478] ? kmsan_get_metadata+0x4f/0x180 [ 118.099108][ T8478] __x64_sys_sendfile64+0x56/0x70 [ 118.104121][ T8478] do_syscall_64+0xb0/0x150 [ 118.108600][ T8478] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 118.114461][ T8478] RIP: 0033:0x440419 [ 118.118323][ T8478] Code: Bad RIP value. [ 118.122360][ T8478] RSP: 002b:00007ffff699dc48 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 118.130740][ T8478] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 0000000000440419 [ 118.138685][ T8478] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 118.146716][ T8478] RBP: 00000000006cb018 R08: 0000000000000017 R09: 65732f636f72702f [ 118.154659][ T8478] R10: 0000000000000fd2 R11: 0000000000000246 R12: 0000000000401c80 [ 118.162603][ T8478] R13: 0000000000401d10 R14: 0000000000000000 R15: 0000000000000000 [ 118.171195][ T8478] ------------[ cut here ]------------ [ 118.176638][ T8478] kernel BUG at mm/kmsan/kmsan.h:87! [ 118.181922][ T8478] invalid opcode: 0000 [#1] SMP [ 118.186746][ T8478] CPU: 0 PID: 8478 Comm: syz-executor268 Tainted: G B 5.8.0-rc5-syzkaller #0 [ 118.196776][ T8478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 118.206821][ T8478] RIP: 0010:kmsan_internal_check_memory+0x3c0/0x3d0 [ 118.213385][ T8478] Code: 5b 41 5c 41 5d 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 ea 03 8a 93 31 c0 e8 81 fe 44 ff 0f 0b 0f 0b 0f 0b 0f 0b e8 32 3f 8c 0c 0f 0b <0f> 0b 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 83 ff [ 118.232973][ T8478] RSP: 0018:ffff92b380d96e28 EFLAGS: 00010046 [ 118.239010][ T8478] RAX: 0000000000000002 RBX: 0000000007d800af RCX: 0000000007d800af [ 118.247127][ T8478] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffff92b380d96f04 [ 118.255071][ T8478] RBP: ffff92b380d96ed0 R08: 0000000000000000 R09: ffff8dd42fc28210 [ 118.263015][ T8478] R10: 0000000000000000 R11: ffffffff8a602730 R12: 0000000000000000 [ 118.270958][ T8478] R13: 0000000000000001 R14: 0000000000000006 R15: 0000000000000001 [ 118.278903][ T8478] FS: 0000000001f29880(0000) GS:ffff8dd42fc00000(0000) knlGS:0000000000000000 [ 118.287802][ T8478] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 118.294357][ T8478] CR2: 0000000000455380 CR3: 0000000115742000 CR4: 00000000001406f0 [ 118.302303][ T8478] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 118.310254][ T8478] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 118.318317][ T8478] Call Trace: [ 118.321602][ T8478] kmsan_check_memory+0xd/0x10 [ 118.326343][ T8478] iowrite8+0x99/0x2e0 [ 118.330451][ T8478] pvpanic_panic_notify+0x99/0xc0 [ 118.335452][ T8478] ? pvpanic_mmio_remove+0x60/0x60 [ 118.340547][ T8478] atomic_notifier_call_chain+0x130/0x250 [ 118.346280][ T8478] panic+0x468/0xc3e [ 118.350166][ T8478] kmsan_report+0x1df/0x1e0 [ 118.354647][ T8478] __msan_warning+0x58/0xa0 [ 118.359216][ T8478] gf128mul_4k_lle+0x202/0x2b0 [ 118.363962][ T8478] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 118.369750][ T8478] ghash_update+0x9cc/0x1130 [ 118.374333][ T8478] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 118.380373][ T8478] ? ghash_init+0x80/0x80 [ 118.384673][ T8478] crypto_shash_update+0x4e9/0x550 [ 118.389757][ T8478] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 118.395888][ T8478] ? crypto_hash_walk_first+0x1fd/0x360 [ 118.401420][ T8478] ? kmsan_get_metadata+0x4f/0x180 [ 118.406506][ T8478] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 118.412298][ T8478] shash_async_update+0x113/0x1d0 [ 118.417295][ T8478] ? shash_async_init+0x1e0/0x1e0 [ 118.422289][ T8478] hash_sendpage+0x8ef/0xdf0 [ 118.426872][ T8478] hash_sendpage_nokey+0x3a4/0x430 [ 118.431960][ T8478] ? hash_recvmsg_nokey+0x3e0/0x3e0 [ 118.437132][ T8478] sock_sendpage+0x1e1/0x2c0 [ 118.441699][ T8478] pipe_to_sendpage+0x38c/0x4c0 [ 118.446527][ T8478] ? sock_fasync+0x250/0x250 [ 118.451096][ T8478] __splice_from_pipe+0x565/0xf00 [ 118.456093][ T8478] ? generic_splice_sendpage+0x2d0/0x2d0 [ 118.461707][ T8478] generic_splice_sendpage+0x1d5/0x2d0 [ 118.467156][ T8478] ? iter_file_splice_write+0x1800/0x1800 [ 118.472852][ T8478] direct_splice_actor+0x1fd/0x580 [ 118.477939][ T8478] ? kmsan_get_metadata+0x4f/0x180 [ 118.483023][ T8478] splice_direct_to_actor+0x6b2/0xf50 [ 118.488366][ T8478] ? do_splice_direct+0x580/0x580 [ 118.493373][ T8478] do_splice_direct+0x342/0x580 [ 118.498208][ T8478] do_sendfile+0x101b/0x1d40 [ 118.502789][ T8478] __se_sys_sendfile64+0x2bb/0x360 [ 118.507871][ T8478] ? kmsan_get_metadata+0x4f/0x180 [ 118.512958][ T8478] __x64_sys_sendfile64+0x56/0x70 [ 118.518304][ T8478] do_syscall_64+0xb0/0x150 [ 118.522784][ T8478] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 118.528647][ T8478] RIP: 0033:0x440419 [ 118.532512][ T8478] Code: Bad RIP value. [ 118.536548][ T8478] RSP: 002b:00007ffff699dc48 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 118.544929][ T8478] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 0000000000440419 [ 118.552875][ T8478] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 118.560820][ T8478] RBP: 00000000006cb018 R08: 0000000000000017 R09: 65732f636f72702f [ 118.568762][ T8478] R10: 0000000000000fd2 R11: 0000000000000246 R12: 0000000000401c80 [ 118.576726][ T8478] R13: 0000000000401d10 R14: 0000000000000000 R15: 0000000000000000 [ 118.584673][ T8478] Modules linked in: [ 118.588603][ T8478] ---[ end trace 0dfe35817cb15063 ]--- [ 118.594055][ T8478] RIP: 0010:kmsan_internal_check_memory+0x3c0/0x3d0 [ 118.600622][ T8478] Code: 5b 41 5c 41 5d 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 ea 03 8a 93 31 c0 e8 81 fe 44 ff 0f 0b 0f 0b 0f 0b 0f 0b e8 32 3f 8c 0c 0f 0b <0f> 0b 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 83 ff [ 118.620211][ T8478] RSP: 0018:ffff92b380d96e28 EFLAGS: 00010046 [ 118.626260][ T8478] RAX: 0000000000000002 RBX: 0000000007d800af RCX: 0000000007d800af [ 118.634297][ T8478] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffff92b380d96f04 [ 118.642246][ T8478] RBP: ffff92b380d96ed0 R08: 0000000000000000 R09: ffff8dd42fc28210 [ 118.650192][ T8478] R10: 0000000000000000 R11: ffffffff8a602730 R12: 0000000000000000 [ 118.658143][ T8478] R13: 0000000000000001 R14: 0000000000000006 R15: 0000000000000001 [ 118.666087][ T8478] FS: 0000000001f29880(0000) GS:ffff8dd42fc00000(0000) knlGS:0000000000000000 [ 118.674986][ T8478] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 118.682059][ T8478] CR2: 0000000000455380 CR3: 0000000115742000 CR4: 00000000001406f0 [ 118.690004][ T8478] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 118.697948][ T8478] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 118.706065][ T8478] Kernel panic - not syncing: Fatal exception [ 118.712683][ T8478] Kernel Offset: 0x4200000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff) [ 118.724199][ T8478] Rebooting in 86400 seconds..