Received: by 2002:ac0:a5b6:0:0:0:0:0 with SMTP id m51-v6csp5733903imm;
        Tue, 12 Jun 2018 12:22:52 -0700 (PDT)
X-Google-Smtp-Source: ADUXVKJ1aCXPEQvZ636Cys6Nk1Uhjkyt54Ak1igNebIHChtG1vsmLmzI9qvg1+CXq0r3ICdzNsDN
X-Received: by 2002:a17:902:8509:: with SMTP id bj9-v6mr1797134plb.210.1528831372486;
        Tue, 12 Jun 2018 12:22:52 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1528831372; cv=none;
        d=google.com; s=arc-20160816;
        b=0+ICv5zJv1j3xH13yWDDmupl5LhKTmmIgMcF+3G51HJQx+utjPWuJ053PFKAXdz7j2
         Ie9Tbs05ND4e3CvOxuDAxFy3LMTlArkf29zWeva+JSdCCGy9X/v77IuLFTQCLYsQzJ8f
         smBXCDopR01b+Bp6p7bNChMTpJTid5hrEbE5dQjGmLsFlqM+Hwp7yUWiWyuzc1a81j0W
         DSLRL6T5kqkQMgszjzGOzvFSv1xmXJXVn4iQEZBOv4Rz4n24w9OxHJcrRdbspzTPpqTb
         zWmStx3Jhtj8KAFzw1bkMlqXuDxJ5Mez/NRdR8E8/JNCEGksZqlGL5PX1pTKadPTB/+q
         kjGw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:to:from:subject:message-id:date
         :mime-version:arc-authentication-results;
        bh=i5drFsYdF4/84Qj5hHR6yFL6JSCq+UhaTlu9j8q5FZA=;
        b=J3r2HXffOQlZZWhwYmQKDO9q55xm7FPNrdiBtbmOMLHGR3EYYd0srflqK9id6mmBKA
         kmb/IUB239vGnKBQsZuFgGBsm4rUy+iWuYjx4zdioYrFCcvr5K5mmoLER7JupH8llQfD
         OwtEdJrhR+kRP8C0IE2yiqLgaExrFtvJLbczkgpZgBjdvDcogudtOOYj1Vb7Hmw5dm8z
         gkDW7w995MgCXYKDPFsqsDIUz1ZZmUQBX1iPOLSqbRX6Bg4gEA6QYopc5skzgQGLt4pe
         cqdnorP79puVjbhaR+oSjRIZU6VIzrf7zg7jhLgObn1TfVEVrnRjpc+kY2YdxUviz4k5
         zJlw==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=appspotmail.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id q6-v6si660339pgs.451.2018.06.12.12.22.32;
        Tue, 12 Jun 2018 12:22:52 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=appspotmail.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1754228AbeFLTWE (ORCPT <rfc822;mohamedabbas.us@gmail.com>
        + 99 others); Tue, 12 Jun 2018 15:22:04 -0400
Received: from mail-it0-f72.google.com ([209.85.214.72]:53176 "EHLO
        mail-it0-f72.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1753517AbeFLTWD (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Tue, 12 Jun 2018 15:22:03 -0400
Received: by mail-it0-f72.google.com with SMTP id q5-v6so430284itq.2
        for <linux-kernel@vger.kernel.org>; Tue, 12 Jun 2018 12:22:02 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:date:message-id:subject:from:to;
        bh=i5drFsYdF4/84Qj5hHR6yFL6JSCq+UhaTlu9j8q5FZA=;
        b=cRoje74okxKMCm4CGJdlMOj769vTreiLN76//RpajhuPxDvinU1NyBNitTC+jLGCWX
         jKQ7aZ0V7a47cP/Rku5Z8ZvjswAIwyE1xFg7HFAQDcHa8+BqUHj5128Jn9Y90bGiDR1g
         ZpUBCXuxUz5ASrIQc596QM8ZHfGvNA9/xf6I97WDTZpZGGNehrPgIFZ2DmB7if0M9YKX
         1Zz77tvFPu9BLtslJ/oHVYjm+VsdQD6jPurs4MdsHrTR61dHEFJOv/QgOQRpy1TEU4LP
         aWTMJMak08H5YPO+gykyDuStrLT/nR7HLLwpNjXwEBZ5cx0wTiykaY2cmkCUhjO39yO2
         r4vQ==
X-Gm-Message-State: APt69E1qrJRVouHB2QtBbaqRumuemCHYy3/z9xC2Lp18XV+wEitvk4y+
        1GglwGTB2iCgTm5RqlQPgPSeR8+wHpgt+85NVQyfsoTIGjoZ
MIME-Version: 1.0
X-Received: by 2002:a24:b90d:: with SMTP id w13-v6mr776649ite.18.1528831322356;
 Tue, 12 Jun 2018 12:22:02 -0700 (PDT)
Date:   Tue, 12 Jun 2018 12:22:02 -0700
X-Google-Appengine-App-Id: s~syzkaller
X-Google-Appengine-App-Id-Alias: syzkaller
Message-ID: <000000000000e403b3056e76c786@google.com>
Subject: KMSAN: uninit-value in do_msgrcv
From:   syzbot <syzbot+2827ef6b3385deb07eaf@syzkaller.appspotmail.com>
To:     akpm@linux-foundation.org, ebiederm@xmission.com,
        keescook@chromium.org, linux-kernel@vger.kernel.org,
        linux@dominikbrodowski.net, manfred@colorfullife.com,
        syzkaller-bugs@googlegroups.com, viro@zeniv.linux.org.uk
Content-Type: text/plain; charset="UTF-8"; format=flowed; delsp=yes
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

Hello,

syzbot found the following crash on:

HEAD commit:    8fc8ecd1c58a kmsan: unpoison regs in arch_uprobe_exception..
git tree:       https://github.com/google/kmsan.git/master
console output: https://syzkaller.appspot.com/x/log.txt?x=1481799f800000
kernel config:  https://syzkaller.appspot.com/x/.config?x=9fa436d3ae606638
dashboard link: https://syzkaller.appspot.com/bug?extid=2827ef6b3385deb07eaf
compiler:       clang version 7.0.0 (trunk 332596)
syzkaller repro:https://syzkaller.appspot.com/x/repro.syz?x=1265edb7800000
C reproducer:   https://syzkaller.appspot.com/x/repro.c?x=16eeee9f800000

IMPORTANT: if you fix the bug, please add the following tag to the commit:
Reported-by: syzbot+2827ef6b3385deb07eaf@syzkaller.appspotmail.com

==================================================================
BUG: KMSAN: uninit-value in do_msgrcv+0x509/0x1e30 ipc/msg.c:1048
CPU: 0 PID: 4528 Comm: syz-executor852 Not tainted 4.17.0-rc5+ #103
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS  
Google 01/01/2011
Call Trace:
  __dump_stack lib/dump_stack.c:77 [inline]
  dump_stack+0x185/0x1d0 lib/dump_stack.c:113
  kmsan_report+0x149/0x260 mm/kmsan/kmsan.c:1084
  __msan_warning_32+0x6e/0xc0 mm/kmsan/kmsan_instr.c:686
  do_msgrcv+0x509/0x1e30 ipc/msg.c:1048
  ksys_msgrcv ipc/msg.c:1184 [inline]
  __do_sys_msgrcv ipc/msg.c:1190 [inline]
  __se_sys_msgrcv ipc/msg.c:1187 [inline]
  __x64_sys_msgrcv+0x160/0x1b0 ipc/msg.c:1187
  do_syscall_64+0x152/0x230 arch/x86/entry/common.c:287
  entry_SYSCALL_64_after_hwframe+0x44/0xa9
RIP: 0033:0x4459b9
RSP: 002b:00007f0d57662db8 EFLAGS: 00000297 ORIG_RAX: 0000000000000046
RAX: ffffffffffffffda RBX: 00000000006dac54 RCX: 00000000004459b9
RDX: 00000000000000d0 RSI: 0000000020000000 RDI: 0000000000260007
RBP: 00000000006dac50 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000297 R12: 0000000000000000
R13: 00007ffd5ab7e25f R14: 00007f0d576639c0 R15: 0000000000000006

Uninit was created at:
  kmsan_save_stack_with_flags mm/kmsan/kmsan.c:279 [inline]
  kmsan_internal_poison_shadow+0xb8/0x1b0 mm/kmsan/kmsan.c:189
  kmsan_kmalloc+0x94/0x100 mm/kmsan/kmsan.c:315
  __kmalloc_node+0xe25/0x11f0 mm/slub.c:3865
  kmalloc_node include/linux/slab.h:554 [inline]
  kvmalloc_node+0x197/0x2f0 mm/util.c:421
  kvmalloc include/linux/mm.h:550 [inline]
  newque+0xb4/0x7d0 ipc/msg.c:139
  ipcget_new ipc/util.c:315 [inline]
  ipcget+0x27b/0xd90 ipc/util.c:653
  ksys_msgget ipc/msg.c:289 [inline]
  __do_sys_msgget ipc/msg.c:294 [inline]
  __se_sys_msgget ipc/msg.c:292 [inline]
  __x64_sys_msgget+0x14c/0x1d0 ipc/msg.c:292
  do_syscall_64+0x152/0x230 arch/x86/entry/common.c:287
  entry_SYSCALL_64_after_hwframe+0x44/0xa9
==================================================================


---
This bug is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzkaller@googlegroups.com.

syzbot will keep track of this bug report. See:
https://goo.gl/tpsmEJ#bug-status-tracking for how to communicate with  
syzbot.
syzbot can test patches for this bug, for details see:
https://goo.gl/tpsmEJ#testing-patches