INIT: Entering runlevel: 2 [info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.47' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 43.008535] ================================================================== [ 43.015957] BUG: KMSAN: uninit-value in tipc_nl_compat_doit+0x404/0xa10 [ 43.022696] CPU: 0 PID: 4515 Comm: syz-executor081 Not tainted 4.16.0+ #87 [ 43.029686] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 43.039023] Call Trace: [ 43.041607] dump_stack+0x185/0x1d0 [ 43.045215] ? tipc_nl_compat_doit+0x404/0xa10 [ 43.049776] kmsan_report+0x142/0x240 [ 43.053556] __msan_warning_32+0x6c/0xb0 [ 43.057607] tipc_nl_compat_doit+0x404/0xa10 [ 43.061993] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 43.067425] ? ns_capable+0x1a8/0x1f0 [ 43.071206] tipc_nl_compat_recv+0x164b/0x2700 [ 43.075767] ? _cond_resched+0x3c/0xd0 [ 43.079632] ? mutex_lock+0x31/0x90 [ 43.083239] ? tipc_nl_bearer_get+0xa10/0xa10 [ 43.087715] ? tipc_nl_compat_doit+0xa10/0xa10 [ 43.092273] ? rcu_all_qs+0x32/0x1f0 [ 43.095964] ? tipc_netlink_compat_stop+0x40/0x40 [ 43.100794] genl_rcv_msg+0x1686/0x1810 [ 43.104752] netlink_rcv_skb+0x378/0x600 [ 43.108812] ? genl_unbind+0x350/0x350 [ 43.112678] genl_rcv+0x63/0x80 [ 43.115944] netlink_unicast+0x166b/0x1740 [ 43.120167] ? genl_pernet_exit+0xa0/0xa0 [ 43.124295] netlink_sendmsg+0x1048/0x1310 [ 43.128512] ? netlink_getsockopt+0xc80/0xc80 [ 43.132988] ___sys_sendmsg+0xec0/0x1310 [ 43.137040] ? do_huge_pmd_anonymous_page+0x19d5/0x2520 [ 43.142388] ? __fdget+0x4e/0x60 [ 43.145732] ? __fget_light+0x56/0x710 [ 43.149597] ? __fdget+0x4e/0x60 [ 43.152937] ? __fget_light+0x1dc/0x710 [ 43.156888] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 43.162226] ? __fget_light+0x1f5/0x710 [ 43.166182] SYSC_sendmsg+0x2a3/0x3d0 [ 43.169962] SyS_sendmsg+0x54/0x80 [ 43.173482] do_syscall_64+0x309/0x430 [ 43.177353] ? ___sys_sendmsg+0x1310/0x1310 [ 43.181654] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 43.186820] RIP: 0033:0x43fda9 [ 43.189985] RSP: 002b:00007ffc7b6b00e8 EFLAGS: 00000213 ORIG_RAX: 000000000000002e [ 43.197674] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 000000000043fda9 [ 43.204923] RDX: 0000000000000000 RSI: 0000000020023000 RDI: 0000000000000003 [ 43.212181] RBP: 00000000006ca018 R08: 00000000004002c8 R09: 00000000004002c8 [ 43.219429] R10: 00000000004002c8 R11: 0000000000000213 R12: 00000000004016d0 [ 43.226674] R13: 0000000000401760 R14: 0000000000000000 R15: 0000000000000000 [ 43.233922] [ 43.235525] Uninit was created at: [ 43.239052] kmsan_internal_poison_shadow+0xb8/0x1b0 [ 43.244130] kmsan_kmalloc+0x94/0x100 [ 43.247904] kmsan_slab_alloc+0x11/0x20 [ 43.251856] __kmalloc_node_track_caller+0xaed/0x11c0 [ 43.257027] __alloc_skb+0x2cf/0x9f0 [ 43.260733] netlink_sendmsg+0x9a6/0x1310 [ 43.264859] ___sys_sendmsg+0xec0/0x1310 [ 43.268903] SYSC_sendmsg+0x2a3/0x3d0 [ 43.272678] SyS_sendmsg+0x54/0x80 [ 43.276196] do_syscall_64+0x309/0x430 [ 43.280062] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 43.285225] ================================================================== [ 43.292555] Disabling lock debugging due to kernel taint [ 43.297998] Kernel panic - not syncing: panic_on_warn set ... [ 43.297998] [ 43.305360] CPU: 0 PID: 4515 Comm: syz-executor081 Tainted: G B 4.16.0+ #87 [ 43.313646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 43.322975] Call Trace: [ 43.325549] dump_stack+0x185/0x1d0 [ 43.329165] panic+0x39d/0x940 [ 43.332353] ? tipc_nl_compat_doit+0x404/0xa10 [ 43.336912] kmsan_report+0x238/0x240 [ 43.340690] __msan_warning_32+0x6c/0xb0 [ 43.344731] tipc_nl_compat_doit+0x404/0xa10 [ 43.349120] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 43.354550] ? ns_capable+0x1a8/0x1f0 [ 43.358330] tipc_nl_compat_recv+0x164b/0x2700 [ 43.362893] ? _cond_resched+0x3c/0xd0 [ 43.366760] ? mutex_lock+0x31/0x90 [ 43.370366] ? tipc_nl_bearer_get+0xa10/0xa10 [ 43.374841] ? tipc_nl_compat_doit+0xa10/0xa10 [ 43.379410] ? rcu_all_qs+0x32/0x1f0 [ 43.383104] ? tipc_netlink_compat_stop+0x40/0x40 [ 43.387927] genl_rcv_msg+0x1686/0x1810 [ 43.391887] netlink_rcv_skb+0x378/0x600 [ 43.395925] ? genl_unbind+0x350/0x350 [ 43.399801] genl_rcv+0x63/0x80 [ 43.403060] netlink_unicast+0x166b/0x1740 [ 43.407274] ? genl_pernet_exit+0xa0/0xa0 [ 43.411401] netlink_sendmsg+0x1048/0x1310 [ 43.415616] ? netlink_getsockopt+0xc80/0xc80 [ 43.420089] ___sys_sendmsg+0xec0/0x1310 [ 43.424129] ? do_huge_pmd_anonymous_page+0x19d5/0x2520 [ 43.429482] ? __fdget+0x4e/0x60 [ 43.432827] ? __fget_light+0x56/0x710 [ 43.436690] ? __fdget+0x4e/0x60 [ 43.440042] ? __fget_light+0x1dc/0x710 [ 43.443996] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 43.449341] ? __fget_light+0x1f5/0x710 [ 43.453300] SYSC_sendmsg+0x2a3/0x3d0 [ 43.457086] SyS_sendmsg+0x54/0x80 [ 43.460605] do_syscall_64+0x309/0x430 [ 43.464479] ? ___sys_sendmsg+0x1310/0x1310 [ 43.468781] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 43.473958] RIP: 0033:0x43fda9 [ 43.477134] RSP: 002b:00007ffc7b6b00e8 EFLAGS: 00000213 ORIG_RAX: 000000000000002e [ 43.484830] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 000000000043fda9 [ 43.492077] RDX: 0000000000000000 RSI: 0000000020023000 RDI: 0000000000000003 [ 43.499324] RBP: 00000000006ca018 R08: 00000000004002c8 R09: 00000000004002c8 [ 43.506576] R10: 00000000004002c8 R11: 0000000000000213 R12: 00000000004016d0 [ 43.513824] R13: 0000000000401760 R14: 0000000000000000 R15: 0000000000000000 [ 43.521644] Dumping ftrace buffer: [ 43.525169] (ftrace buffer empty) [ 43.528854] Kernel Offset: disabled [ 43.532460] Rebooting in 86400 seconds..