syz-executor2 cpuset=syz2 mems_allowed=0 CPU: 0 PID: 12830 Comm: syz-executor2 Not tainted 4.19.0+ #80 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: ================================================================== BUG: KMSAN: uninit-value in get_stack_info+0x720/0x9d0 arch/x86/kernel/dumpstack_64.c:139 CPU: 0 PID: 12830 Comm: syz-executor2 Not tainted 4.19.0+ #80 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 binder: release 12825:12826 transaction 57 out, still active Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x419/0x480 lib/dump_stack.c:113 kmsan_report+0x19f/0x300 mm/kmsan/kmsan.c:911 __msan_warning+0x76/0xd0 mm/kmsan/kmsan_instr.c:415 get_stack_info+0x720/0x9d0 arch/x86/kernel/dumpstack_64.c:139 binder: undelivered TRANSACTION_ERROR: 29201 __unwind_start+0x7d/0xe0 arch/x86/kernel/unwind_frame.c:402 unwind_start arch/x86/include/asm/unwind.h:54 [inline] show_trace_log_lvl+0x20e/0x11e0 arch/x86/kernel/dumpstack.c:173 show_stack+0x12e/0x170 arch/x86/kernel/dumpstack.c:293 __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x32d/0x480 lib/dump_stack.c:113 warn_alloc+0x4e9/0x720 mm/page_alloc.c:3441 __vmalloc_node_range+0xd5a/0x12a0 mm/vmalloc.c:1768 __vmalloc_node mm/vmalloc.c:1797 [inline] vmalloc_user+0xde/0x440 mm/vmalloc.c:1867 vb2_vmalloc_alloc+0x162/0x530 drivers/media/common/videobuf2/videobuf2-vmalloc.c:48 __vb2_buf_mem_alloc drivers/media/common/videobuf2/videobuf2-core.c:210 [inline] __vb2_queue_alloc+0xc6a/0x1ea0 drivers/media/common/videobuf2/videobuf2-core.c:363 vb2_core_create_bufs+0x5c9/0xba0 drivers/media/common/videobuf2/videobuf2-core.c:822 vb2_create_bufs+0x694/0xb20 drivers/media/common/videobuf2/videobuf2-v4l2.c:558 v4l2_m2m_create_bufs drivers/media/v4l2-core/v4l2-mem2mem.c:519 [inline] v4l2_m2m_ioctl_create_bufs+0x1bc/0x1d0 drivers/media/v4l2-core/v4l2-mem2mem.c:969 v4l_create_bufs+0x2c0/0x3b0 drivers/media/v4l2-core/v4l2-ioctl.c:1925 __video_do_ioctl+0x1cc5/0x1d90 drivers/media/v4l2-core/v4l2-ioctl.c:2833 video_usercopy+0xf13/0x1b30 drivers/media/v4l2-core/v4l2-ioctl.c:3013 video_ioctl2+0x9f/0xb0 drivers/media/v4l2-core/v4l2-ioctl.c:3057 v4l2_ioctl+0x23f/0x270 drivers/media/v4l2-core/v4l2-dev.c:364 do_vfs_ioctl+0xf77/0x2d30 fs/ioctl.c:46 ksys_ioctl fs/ioctl.c:702 [inline] __do_sys_ioctl fs/ioctl.c:709 [inline] __se_sys_ioctl+0x1da/0x270 fs/ioctl.c:707 __x64_sys_ioctl+0x4a/0x70 fs/ioctl.c:707 do_syscall_64+0xcf/0x110 arch/x86/entry/common.c:291 entry_SYSCALL_64_after_hwframe+0x63/0xe7 RIP: 0033:0x457569 Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 RSP: 002b:00007f30224cac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 RDX: 0000000020000140 RSI: 00000000c100565c RDI: 0000000000000003 RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007f30224cb6d4 R13: 00000000004c181b R14: 00000000004d26f8 R15: 00000000ffffffff binder: send failed reply for transaction 57, target dead Local variable description: ----state@show_trace_log_lvl Variable was created at: show_trace_log_lvl+0xb3/0x11e0 arch/x86/kernel/dumpstack.c:164 show_stack+0x12e/0x170 arch/x86/kernel/dumpstack.c:293