[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [ 56.543377] sshd (6062) used greatest stack depth: 53184 bytes left [....] Starting OpenBSD Secure Shell server: sshd[ 56.780752] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. [ 57.874464] random: sshd: uninitialized urandom read (32 bytes read) [ 58.373330] random: sshd: uninitialized urandom read (32 bytes read) Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 60.831374] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.0.93' (ECDSA) to the list of known hosts. [ 66.728864] random: sshd: uninitialized urandom read (32 bytes read) 2018/10/07 22:24:45 fuzzer started [ 71.407683] random: cc1: uninitialized urandom read (8 bytes read) 2018/10/07 22:24:50 dialing manager at 10.128.0.26:36867 2018/10/07 22:24:50 syscalls: 1 2018/10/07 22:24:50 code coverage: enabled 2018/10/07 22:24:50 comparison tracing: CONFIG_KCOV_ENABLE_COMPARISONS is not enabled 2018/10/07 22:24:50 setuid sandbox: enabled 2018/10/07 22:24:50 namespace sandbox: enabled 2018/10/07 22:24:50 Android sandbox: /sys/fs/selinux/policy does not exist 2018/10/07 22:24:50 fault injection: enabled 2018/10/07 22:24:50 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2018/10/07 22:24:50 net packed injection: enabled 2018/10/07 22:24:50 net device setup: enabled [ 76.392533] random: crng init done 22:26:55 executing program 0: clone(0x200, &(0x7f0000000080), &(0x7f0000000000), &(0x7f0000000100), &(0x7f0000000280)) mknod(&(0x7f0000f80000)='./file0\x00', 0x1040, 0x0) execve(&(0x7f0000000400)='./file0\x00', &(0x7f00000003c0), &(0x7f0000000600)) clone(0x3102001ffe, 0x0, 0xfffffffffffffffe, &(0x7f0000000280), 0xffffffffffffffff) execve(&(0x7f00000000c0)="e91f7189591e9233614b00", &(0x7f0000000140), &(0x7f0000001580)) r0 = memfd_create(&(0x7f0000000280)="2d42d54e49c56aba707070f00884a26d000b180034a24579dbd1a7b1533a2900bb8dacac76617d6b6e6823cb290fc8c03a9c631064eea98b4363ad899c6bdec5e936dd55a93dcd4a78aa8f7eb93061a9b2044b98933f8851f7d61da1ce8b19eaefe3abb6a52434d6fe370fe7d924ce20ab4e6e600000", 0x0) write$cgroup_pid(r0, &(0x7f0000000040), 0x12) sendfile(r0, r0, &(0x7f0000000140), 0xa5ff) open$dir(&(0x7f0000000240)='./file0\x00', 0x841, 0x0) [ 199.371820] IPVS: ftp: loaded support on port[0] = 21 [ 201.759343] bridge0: port 1(bridge_slave_0) entered blocking state [ 201.765929] bridge0: port 1(bridge_slave_0) entered disabled state [ 201.774480] device bridge_slave_0 entered promiscuous mode [ 201.931790] bridge0: port 2(bridge_slave_1) entered blocking state [ 201.938345] bridge0: port 2(bridge_slave_1) entered disabled state [ 201.946928] device bridge_slave_1 entered promiscuous mode [ 202.081812] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 202.216564] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready 22:26:59 executing program 1: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x613, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(&(0x7f0000000140)='./file0\x00', 0x0) [ 202.653223] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 202.824720] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 203.540816] IPVS: ftp: loaded support on port[0] = 21 [ 203.857094] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 203.865303] team0: Port device team_slave_0 added [ 204.055042] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 204.063337] team0: Port device team_slave_1 added [ 204.235721] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 204.242807] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 204.251610] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 204.520424] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 204.527703] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 204.536697] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 204.768261] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 204.776076] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 204.785078] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 205.031356] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 205.039140] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 205.048380] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 207.160412] bridge0: port 1(bridge_slave_0) entered blocking state [ 207.167029] bridge0: port 1(bridge_slave_0) entered disabled state [ 207.175467] device bridge_slave_0 entered promiscuous mode [ 207.396020] bridge0: port 2(bridge_slave_1) entered blocking state [ 207.402679] bridge0: port 2(bridge_slave_1) entered disabled state [ 207.410903] device bridge_slave_1 entered promiscuous mode [ 207.549207] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 207.628254] bridge0: port 2(bridge_slave_1) entered blocking state [ 207.634830] bridge0: port 2(bridge_slave_1) entered forwarding state [ 207.641775] bridge0: port 1(bridge_slave_0) entered blocking state [ 207.648469] bridge0: port 1(bridge_slave_0) entered forwarding state [ 207.657464] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 207.700775] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 208.232773] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready 22:27:05 executing program 2: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x100000001, 0x0) sendto$inet(r0, &(0x7f0000000140), 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x4e23}, 0x10) shutdown(r0, 0x0) [ 208.432192] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 208.705930] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 208.993389] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 209.000475] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 209.308032] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 209.315374] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 209.392148] IPVS: ftp: loaded support on port[0] = 21 [ 210.134891] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 210.143178] team0: Port device team_slave_0 added [ 210.421451] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 210.429760] team0: Port device team_slave_1 added [ 210.768039] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 210.775172] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 210.784140] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 210.974205] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 210.981238] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 210.990392] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 211.251820] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 211.259502] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 211.268755] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 211.570154] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 211.577830] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 211.586775] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 214.320932] bridge0: port 1(bridge_slave_0) entered blocking state [ 214.327553] bridge0: port 1(bridge_slave_0) entered disabled state [ 214.336071] device bridge_slave_0 entered promiscuous mode [ 214.600379] bridge0: port 2(bridge_slave_1) entered blocking state [ 214.607141] bridge0: port 2(bridge_slave_1) entered disabled state [ 214.615720] device bridge_slave_1 entered promiscuous mode [ 214.900884] bridge0: port 2(bridge_slave_1) entered blocking state [ 214.907472] bridge0: port 2(bridge_slave_1) entered forwarding state [ 214.914608] bridge0: port 1(bridge_slave_0) entered blocking state [ 214.921080] bridge0: port 1(bridge_slave_0) entered forwarding state [ 214.929911] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 214.958061] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 214.983617] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 215.250925] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 216.111043] bond0: Enslaving bond_slave_0 as an active interface with an up link 22:27:13 executing program 3: r0 = creat(&(0x7f0000000100)='./file0\x00', 0x0) pwrite64(r0, &(0x7f0000000040)="bf", 0x1, 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x0) [ 216.413753] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 216.736326] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 216.743619] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 217.066275] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 217.113583] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 217.411495] IPVS: ftp: loaded support on port[0] = 21 [ 218.194403] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 218.202567] team0: Port device team_slave_0 added [ 218.548667] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 218.556810] team0: Port device team_slave_1 added [ 218.856491] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 218.863821] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 218.872699] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 219.198718] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 219.205892] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 219.214819] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 219.566824] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 219.574484] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 219.583831] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 219.801092] 8021q: adding VLAN 0 to HW filter on device bond0 [ 219.908742] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 219.916512] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 219.925567] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 220.979796] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 222.435749] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 222.442069] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 222.450162] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 222.904910] bridge0: port 1(bridge_slave_0) entered blocking state [ 222.911403] bridge0: port 1(bridge_slave_0) entered disabled state [ 222.919891] device bridge_slave_0 entered promiscuous mode [ 223.263782] bridge0: port 2(bridge_slave_1) entered blocking state [ 223.270309] bridge0: port 2(bridge_slave_1) entered disabled state [ 223.278885] device bridge_slave_1 entered promiscuous mode [ 223.587804] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 223.837345] 8021q: adding VLAN 0 to HW filter on device team0 [ 223.861747] bridge0: port 2(bridge_slave_1) entered blocking state [ 223.868288] bridge0: port 2(bridge_slave_1) entered forwarding state [ 223.875346] bridge0: port 1(bridge_slave_0) entered blocking state [ 223.881816] bridge0: port 1(bridge_slave_0) entered forwarding state [ 223.890984] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 223.899444] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 224.312685] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 224.829001] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 225.208390] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 225.532930] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 225.539935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 225.963908] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 225.970930] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready 22:27:23 executing program 4: r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000080)="120000001200e7ef007b0000f4afd7030a7c", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000000)=""/74}], 0x32a, &(0x7f0000001140)=""/182, 0xb6}}], 0x3fffff9, 0x0, &(0x7f0000003600)={0x0, 0x989680}) [ 227.081086] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 227.089327] team0: Port device team_slave_0 added [ 227.527519] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 227.535632] team0: Port device team_slave_1 added [ 227.915269] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 227.922319] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 227.931246] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 227.969138] IPVS: ftp: loaded support on port[0] = 21 [ 228.341049] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 228.349359] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 228.358300] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 228.832069] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 228.839865] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 228.849005] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 229.255277] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 229.263206] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 229.272295] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 229.528557] 8021q: adding VLAN 0 to HW filter on device bond0 [ 231.132571] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 232.883831] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 232.890732] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 232.898740] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 233.920106] bridge0: port 2(bridge_slave_1) entered blocking state [ 233.926692] bridge0: port 2(bridge_slave_1) entered forwarding state [ 233.933722] bridge0: port 1(bridge_slave_0) entered blocking state [ 233.940204] bridge0: port 1(bridge_slave_0) entered forwarding state [ 233.949224] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 233.955743] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready 22:27:31 executing program 0: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) r1 = openat$ion(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ion\x00', 0x0, 0x0) ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000180)={0xfffb, 0x80001b, 0x0, 0xffffffffffffffff}) ioctl$DMA_BUF_IOCTL_SYNC(r2, 0x40086200, &(0x7f0000000080)=0x3) dup3(r0, r2, 0x0) [ 234.602619] 8021q: adding VLAN 0 to HW filter on device team0 [ 234.708320] Not allocated shadow for addr ffff88014a6f7090 (page ffffea0007be9ca0) [ 234.716109] Attempted to access 8 bytes [ 234.720164] ------------[ cut here ]------------ [ 234.724935] kernel BUG at mm/kmsan/kmsan.c:1075! [ 234.729739] invalid opcode: 0000 [#1] SMP [ 234.733915] CPU: 0 PID: 6913 Comm: syz-executor0 Not tainted 4.19.0-rc4+ #63 [ 234.741113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 234.750516] RIP: 0010:kmsan_get_shadow_address+0x2d6/0x3d0 [ 234.756164] Code: e9 89 00 00 00 c7 04 25 20 73 28 8c 01 00 00 00 65 48 8b 04 25 00 fd 02 00 c6 80 7b 09 00 00 01 80 3c 25 38 73 28 8c 00 74 0c <0f> 0b 0f 1f 84 00 00 00 00 00 eb fe 48 c7 c7 11 bc 57 8b 31 c0 4c [ 234.775092] RSP: 0018:ffff88014952f828 EFLAGS: 00010046 [ 234.780488] RAX: 000000000000001b RBX: 0000000000000000 RCX: 9ee57cc74d488c00 [ 234.787811] RDX: 0000000000000000 RSI: 0000000000002169 RDI: 000000000000216a [ 234.795106] RBP: ffff88014952f858 R08: 0000000000000000 R09: ffff88021fc38f50 [ 234.802407] R10: 0000000000000000 R11: ffffffff86258280 R12: 0000000000000001 [ 234.809702] R13: ffff88014a6f7090 R14: 0000000000000001 R15: 0000000000000008 [ 234.817019] FS: 00007fea684dc700(0000) GS:ffff88021fc00000(0000) knlGS:0000000000000000 [ 234.825279] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 234.831182] CR2: 000000000072c000 CR3: 0000000149b61000 CR4: 00000000001406f0 [ 234.838484] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 234.845777] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 234.853082] Call Trace: [ 234.855738] kmsan_internal_unpoison_shadow+0x5c/0xe0 [ 234.860962] kmsan_unpoison_shadow+0x72/0xd0 [ 234.865449] vunmap_page_range+0x828/0xc20 [ 234.869769] remove_vm_area+0x39b/0x450 [ 234.873824] __vunmap+0x34c/0x5d0 [ 234.877321] vfree+0x79/0x170 [ 234.880519] ion_heap_map_kernel+0xa5a/0xad0 [ 234.885046] ? ion_ioctl+0x690/0x690 [ 234.888809] ion_dma_buf_begin_cpu_access+0x2ba/0x9b0 [ 234.894046] ? ion_dma_buf_release+0x430/0x430 [ 234.898660] dma_buf_ioctl+0x376/0x630 [ 234.902582] ? dma_buf_poll+0x1690/0x1690 [ 234.906764] do_vfs_ioctl+0xcf3/0x2810 [ 234.910712] ? security_file_ioctl+0x92/0x200 [ 234.915253] __se_sys_ioctl+0x1da/0x270 [ 234.919273] __x64_sys_ioctl+0x4a/0x70 [ 234.923188] do_syscall_64+0xbe/0x100 [ 234.927037] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 234.932251] RIP: 0033:0x457579 [ 234.935468] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 234.954415] RSP: 002b:00007fea684dbc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 234.962167] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457579 [ 234.969468] RDX: 0000000020000080 RSI: 0000000040086200 RDI: 0000000000000006 [ 234.976760] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 234.984057] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fea684dc6d4 [ 234.991349] R13: 00000000004bedb1 R14: 00000000004ceb30 R15: 00000000ffffffff [ 234.998671] Modules linked in: [ 235.001914] ---[ end trace 8f2385612b44e1fa ]--- [ 235.006702] RIP: 0010:kmsan_get_shadow_address+0x2d6/0x3d0 [ 235.012347] Code: e9 89 00 00 00 c7 04 25 20 73 28 8c 01 00 00 00 65 48 8b 04 25 00 fd 02 00 c6 80 7b 09 00 00 01 80 3c 25 38 73 28 8c 00 74 0c <0f> 0b 0f 1f 84 00 00 00 00 00 eb fe 48 c7 c7 11 bc 57 8b 31 c0 4c [ 235.031284] RSP: 0018:ffff88014952f828 EFLAGS: 00010046 [ 235.036698] RAX: 000000000000001b RBX: 0000000000000000 RCX: 9ee57cc74d488c00 [ 235.043993] RDX: 0000000000000000 RSI: 0000000000002169 RDI: 000000000000216a [ 235.051299] RBP: ffff88014952f858 R08: 0000000000000000 R09: ffff88021fc38f50 [ 235.058592] R10: 0000000000000000 R11: ffffffff86258280 R12: 0000000000000001 [ 235.065884] R13: ffff88014a6f7090 R14: 0000000000000001 R15: 0000000000000008 [ 235.073183] FS: 00007fea684dc700(0000) GS:ffff88021fc00000(0000) knlGS:0000000000000000 [ 235.081433] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 235.087353] CR2: 000000000072c000 CR3: 0000000149b61000 CR4: 00000000001406f0 [ 235.094665] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 235.101993] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 235.109283] Kernel panic - not syncing: Fatal exception [ 235.115598] Kernel Offset: disabled [ 235.119240] Rebooting in 86400 seconds..