INIT: Entering runlevel: 2 [info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.10.20' (ECDSA) to the list of known hosts. executing program executing program syzkaller login: [ 35.079710] Not allocated shadow for addr ffff8801a3373000 (page ffffea0009d34b20) [ 35.087628] Attempted to access 4096 bytes [ 35.091976] ------------[ cut here ]------------ [ 35.096750] kernel BUG at mm/kmsan/kmsan.c:1326! [ 35.101529] invalid opcode: 0000 [#1] SMP PTI [ 35.106041] Dumping ftrace buffer: [ 35.109597] (ftrace buffer empty) [ 35.113303] Modules linked in: [ 35.116502] CPU: 1 PID: 3589 Comm: syzkaller234058 Not tainted 4.16.0+ #84 [ 35.123506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 35.132878] RIP: 0010:kmsan_get_shadow_address+0x1ce/0x1f0 [ 35.138499] RSP: 0018:ffff8801d525f380 EFLAGS: 00010086 [ 35.143876] RAX: 000000000000001e RBX: 0000000000000680 RCX: 0000000000000000 [ 35.151165] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000000 [ 35.158518] RBP: ffff8801d525f398 R08: 0000000000000000 R09: 0000000000000001 [ 35.165785] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8801a3373000 [ 35.173156] R13: 0000000000001000 R14: 0000000000000001 R15: 0000000000001000 [ 35.180446] FS: 0000000001fdc940(0000) GS:ffff88021fd00000(0000) knlGS:0000000000000000 [ 35.188676] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 35.194571] CR2: 00000000204c1f80 CR3: 00000001a54ea000 CR4: 00000000001406e0 [ 35.201861] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 35.209132] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 35.216396] Call Trace: [ 35.219003] kmsan_internal_unpoison_shadow+0x5c/0xe0 [ 35.224219] kmsan_unpoison_shadow+0x66/0xb0 [ 35.228652] get_user_pages_fast+0x47b/0x760 [ 35.233078] iov_iter_get_pages+0x465/0x1810 [ 35.237534] af_alg_make_sg+0xdf/0x6d0 [ 35.241444] ? __kmalloc+0x23c/0x350 [ 35.245169] ? __list_add_valid+0xb8/0x450 [ 35.249422] af_alg_get_rsgl+0x746/0xe10 [ 35.253509] skcipher_recvmsg+0x546/0x1940 [ 35.257863] ? release_sock+0x237/0x2a0 [ 35.261897] skcipher_recvmsg_nokey+0x129/0x160 [ 35.266686] sock_recvmsg+0x1d0/0x230 [ 35.270504] ? skcipher_sendmsg_nokey+0x1f0/0x1f0 [ 35.275370] ___sys_recvmsg+0x3fb/0x810 [ 35.279361] ? __fget_light+0x56/0x710 [ 35.283247] ? __fdget+0x4e/0x60 [ 35.286627] ? __fget_light+0x1dc/0x710 [ 35.290617] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 35.295980] ? __fget_light+0x1f5/0x710 [ 35.299966] __sys_recvmmsg+0x54e/0xdb0 [ 35.303966] ? kmsan_set_origin+0x9e/0x160 [ 35.308219] SYSC_recvmmsg+0x29b/0x3e0 [ 35.312135] SyS_recvmmsg+0x76/0xa0 [ 35.315775] do_syscall_64+0x309/0x430 [ 35.319675] ? __sys_recvmmsg+0xdb0/0xdb0 [ 35.323847] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 35.329042] RIP: 0033:0x441bc9 [ 35.332241] RSP: 002b:00007fff1f894c58 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 35.339956] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441bc9 [ 35.347244] RDX: 0000000000000001 RSI: 0000000020ee6f10 RDI: 0000000000000004 [ 35.354522] RBP: 0000000000000000 R08: 00000000205a3000 R09: 0000000000000e04 [ 35.361802] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000000088ee [ 35.369086] R13: 00000000006ce448 R14: 0000000000000000 R15: 0000000000000000 [ 35.376457] Code: 75 29 48 c7 c7 71 2a a1 87 31 c0 e8 0d 11 86 ff 80 3c 25 a8 a4 2d 88 00 75 11 48 c7 c7 a1 2a a1 87 31 c0 4c 89 fe e8 f2 10 86 ff <0f> 0b eb fe 48 3d ff ff ff 1f 0f 87 a2 fe ff ff 48 8b 1c 25 10 [ 35.395692] RIP: kmsan_get_shadow_address+0x1ce/0x1f0 RSP: ffff8801d525f380 [ 35.402823] ---[ end trace b6961f7dccfae081 ]--- [ 35.407605] Kernel panic - not syncing: Fatal exception [ 35.413587] Dumping ftrace buffer: [ 35.417142] (ftrace buffer empty) [ 35.420848] Kernel Offset: disabled [ 35.424487] Rebooting in 86400 seconds..