================================================================== BUG: KMSAN: uninit-value in lock_timer_base kernel/time/timer.c:939 [inline] BUG: KMSAN: uninit-value in __mod_timer+0x430/0x2c40 kernel/time/timer.c:1010 CPU: 1 PID: 26095 Comm: syz-executor0 Not tainted 4.17.0-rc5+ #101 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x185/0x1d0 lib/dump_stack.c:113 kmsan_report+0x149/0x260 mm/kmsan/kmsan.c:1084 __msan_warning_32+0x6e/0xc0 mm/kmsan/kmsan_instr.c:686 lock_timer_base kernel/time/timer.c:939 [inline] __mod_timer+0x430/0x2c40 kernel/time/timer.c:1010 mod_timer+0x70/0x80 kernel/time/timer.c:1102 can_stat_update+0x173d/0x1870 net/can/proc.c:179 call_timer_fn+0x26a/0x5a0 kernel/time/timer.c:1326 expire_timers kernel/time/timer.c:1363 [inline] __run_timers+0xda7/0x11c0 kernel/time/timer.c:1666 run_timer_softirq+0x43/0x70 kernel/time/timer.c:1692 __do_softirq+0x56d/0x93d kernel/softirq.c:285 invoke_softirq kernel/softirq.c:365 [inline] irq_exit+0x202/0x240 kernel/softirq.c:405 exiting_irq+0xe/0x10 arch/x86/include/asm/apic.h:525 smp_apic_timer_interrupt+0x64/0x90 arch/x86/kernel/apic/apic.c:1055 apic_timer_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:863 RIP: 0010:native_restore_fl arch/x86/include/asm/irqflags.h:37 [inline] RIP: 0010:arch_local_irq_restore arch/x86/include/asm/irqflags.h:78 [inline] RIP: 0010:kmsan_alloc_page+0x9f/0xe0 mm/kmsan/kmsan.c:886 RSP: 0000:ffff8801c3fcf840 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13 RAX: 0000000000000246 RBX: ffff8801b8d0d7c0 RCX: 0000000000000001 RDX: 0000000000000001 RSI: ffffea000aa81ca0 RDI: ffffea000aa81ca0 RBP: ffff8801c3fcf880 R08: 0000000000000000 R09: 00000000ffffffff R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 R13: 0000000000000000 R14: 00000000015080c0 R15: ffffea0009dc1b80 __alloc_pages_nodemask+0xf8e/0x5dd0 mm/page_alloc.c:4402 alloc_pages_current+0x6b5/0x970 mm/mempolicy.c:2093 alloc_pages include/linux/gfp.h:494 [inline] pmd_alloc_one arch/x86/include/asm/pgalloc.h:102 [inline] __pmd_alloc+0xad/0x410 mm/memory.c:4205 pmd_alloc include/linux/mm.h:1759 [inline] __handle_mm_fault mm/memory.c:4054 [inline] handle_mm_fault+0x1416/0x7e50 mm/memory.c:4124 __do_page_fault+0xec4/0x1a10 arch/x86/mm/fault.c:1400 do_page_fault+0xd3/0x260 arch/x86/mm/fault.c:1477 page_fault+0x1e/0x30 arch/x86/entry/entry_64.S:1160 RIP: 0033:0x40d73f RSP: 002b:0000000000a3e7b0 EFLAGS: 00010206 RAX: 00007f1abf54c000 RBX: 0000000000020000 RCX: 0000000000455a5a RDX: 0000000000021000 RSI: 0000000000021000 RDI: 0000000000000000 RBP: 0000000000a3e890 R08: ffffffffffffffff R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000a3e8a0 R13: 00007f1abf56c700 R14: 000000000072becc R15: 0000000000000000 Uninit was stored to memory at: kmsan_save_stack_with_flags mm/kmsan/kmsan.c:279 [inline] kmsan_save_stack mm/kmsan/kmsan.c:294 [inline] kmsan_internal_chain_origin+0x12b/0x210 mm/kmsan/kmsan.c:685 __msan_chain_origin+0x69/0xc0 mm/kmsan/kmsan_instr.c:529 timer_set_idx kernel/time/timer.c:480 [inline] enqueue_timer kernel/time/timer.c:539 [inline] __internal_add_timer kernel/time/timer.c:548 [inline] internal_add_timer kernel/time/timer.c:590 [inline] __mod_timer+0x21a6/0x2c40 kernel/time/timer.c:1055 mod_timer+0x70/0x80 kernel/time/timer.c:1102 can_stat_update+0x173d/0x1870 net/can/proc.c:179 call_timer_fn+0x26a/0x5a0 kernel/time/timer.c:1326 expire_timers kernel/time/timer.c:1363 [inline] __run_timers+0xda7/0x11c0 kernel/time/timer.c:1666 run_timer_softirq+0x43/0x70 kernel/time/timer.c:1692 __do_softirq+0x56d/0x93d kernel/softirq.c:285 Local variable description: ----timer@schedule_timeout Variable was created at: schedule_timeout+0x67/0x570 kernel/time/timer.c:1763 rcu_gp_kthread+0x21e1/0x38d0 kernel/rcu/tree.c:2231 ==================================================================