===================================================== BUG: KMSAN: uninit-value in do_user_addr_fault+0x7ee/0x1ee0 arch/x86/mm/fault.c:1340 do_user_addr_fault+0x7ee/0x1ee0 arch/x86/mm/fault.c:1340 handle_page_fault arch/x86/mm/fault.c:1505 [inline] exc_page_fault+0x69/0x150 arch/x86/mm/fault.c:1562 asm_exc_page_fault+0x1e/0x30 Local variable regs created at: __bpf_prog_run32+0x84/0x180 kernel/bpf/core.c:1795 bpf_dispatcher_nop_func include/linux/bpf.h:727 [inline] __bpf_prog_run include/linux/filter.h:626 [inline] bpf_prog_run include/linux/filter.h:633 [inline] BPF_PROG_RUN_ARRAY include/linux/bpf.h:1301 [inline] trace_call_bpf+0x2c3/0x720 kernel/trace/bpf_trace.c:127 CPU: 0 PID: 12202 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 ===================================================== Kernel panic - not syncing: kmsan.panic set ... CPU: 0 PID: 12202 Comm: syz-executor.0 Tainted: G B 5.16.0-rc5-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0x1ff/0x28e lib/dump_stack.c:106 dump_stack+0x25/0x28 lib/dump_stack.c:113 panic+0x487/0xe1f kernel/panic.c:232 kmsan_report+0x2e6/0x2f0 mm/kmsan/report.c:207 __msan_warning+0xb8/0x130 mm/kmsan/instrumentation.c:222 do_user_addr_fault+0x7ee/0x1ee0 arch/x86/mm/fault.c:1340 handle_page_fault arch/x86/mm/fault.c:1505 [inline] exc_page_fault+0x69/0x150 arch/x86/mm/fault.c:1562 asm_exc_page_fault+0x1e/0x30 RIP: 0023:0xf6e95116 Code: 6c 01 4c 24 6c 89 44 24 68 8b 44 24 30 8b 54 24 0c b9 07 00 00 00 6b c0 34 8d ba 4c a0 f7 ff 8b b4 02 40 8f fc ff 89 74 24 74 a6 0f 97 c0 1c 00 84 c0 75 2d b8 f4 01 00 00 8b 74 24 78 8b 7c RSP: 002b:00000000ffb0ef30 EFLAGS: 00010202 RAX: 00000000000018c8 RBX: 00000000f6fda3f8 RCX: 0000000000000007 RDX: 00000000f6faf000 RSI: 00000000f6f54ec6 RDI: 00000000f6f2904c RBP: 00000000f6fda400 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000 R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 Kernel Offset: disabled Rebooting in 86400 seconds.. ---------------- Code disassembly (best guess): 0: 6c insb (%dx),%es:(%rdi) 1: 01 4c 24 6c add %ecx,0x6c(%rsp) 5: 89 44 24 68 mov %eax,0x68(%rsp) 9: 8b 44 24 30 mov 0x30(%rsp),%eax d: 8b 54 24 0c mov 0xc(%rsp),%edx 11: b9 07 00 00 00 mov $0x7,%ecx 16: 6b c0 34 imul $0x34,%eax,%eax 19: 8d ba 4c a0 f7 ff lea -0x85fb4(%rdx),%edi 1f: 8b b4 02 40 8f fc ff mov -0x370c0(%rdx,%rax,1),%esi 26: 89 74 24 74 mov %esi,0x74(%rsp) * 2a: f3 a6 repz cmpsb %es:(%rdi),%ds:(%rsi) <-- trapping instruction 2c: 0f 97 c0 seta %al 2f: 1c 00 sbb $0x0,%al 31: 84 c0 test %al,%al 33: 75 2d jne 0x62 35: b8 f4 01 00 00 mov $0x1f4,%eax 3a: 8b 74 24 78 mov 0x78(%rsp),%esi 3e: 8b .byte 0x8b 3f: 7c .byte 0x7c