[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 28.761822] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 30.468388] random: sshd: uninitialized urandom read (32 bytes read) [ 30.759792] random: sshd: uninitialized urandom read (32 bytes read) [ 31.899927] random: sshd: uninitialized urandom read (32 bytes read) [ 157.804726] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.10.21' (ECDSA) to the list of known hosts. [ 163.366509] random: sshd: uninitialized urandom read (32 bytes read) 2018/06/17 19:51:39 parsed 1 programs [ 164.696612] random: cc1: uninitialized urandom read (8 bytes read) 2018/06/17 19:51:41 executed programs: 0 [ 165.903892] IPVS: ftp: loaded support on port[0] = 21 [ 165.913070] IPVS: ftp: loaded support on port[0] = 21 [ 165.922174] IPVS: ftp: loaded support on port[0] = 21 [ 165.940161] IPVS: ftp: loaded support on port[0] = 21 [ 165.950619] IPVS: ftp: loaded support on port[0] = 21 [ 165.968121] IPVS: ftp: loaded support on port[0] = 21 [ 165.979703] IPVS: ftp: loaded support on port[0] = 21 [ 166.024129] IPVS: ftp: loaded support on port[0] = 21 [ 166.602109] ip (4623) used greatest stack depth: 54352 bytes left [ 166.763947] ip (4658) used greatest stack depth: 54168 bytes left [ 167.102647] ================================================================== [ 167.110198] BUG: KMSAN: uninit-value in __list_add_valid+0x1b8/0x450 [ 167.116680] CPU: 1 PID: 4722 Comm: ip Not tainted 4.17.0+ #8 [ 167.122457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 167.131807] Call Trace: [ 167.134381] dump_stack+0x185/0x1d0 [ 167.137998] kmsan_report+0x188/0x2a0 [ 167.141885] __msan_warning_32+0x70/0xc0 [ 167.145927] __list_add_valid+0x1b8/0x450 [ 167.150058] enqueue_task_fair+0xe12/0x4490 [ 167.154435] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 167.159776] ? update_load_avg+0x2cc0/0x2cc0 [ 167.164172] try_to_wake_up+0x162f/0x2260 [ 167.168317] wake_up_process+0x34/0x40 [ 167.172198] __queue_work+0x1b57/0x1f00 [ 167.176146] ? kmsan_set_origin_inline+0x6b/0x120 [ 167.180978] queue_work_on+0x1a5/0x1c0 [ 167.184852] netdevice_event+0xcc3/0xf90 [ 167.188925] ? del_netdev_ips+0xa0/0xa0 [ 167.192874] ? del_netdev_default_ips_join+0x1e0/0x1e0 [ 167.198142] ? is_eth_port_of_netdev+0x520/0x520 [ 167.202877] ? enum_all_gids_of_dev_cb+0x8f0/0x8f0 [ 167.207784] ? inet6addr_event+0x4c0/0x4c0 [ 167.211996] ? inet6addr_event+0x4c0/0x4c0 [ 167.216213] raw_notifier_call_chain+0x13e/0x240 [ 167.220959] register_netdevice+0x2178/0x2720 [ 167.225521] veth_newlink+0xb9e/0x1480 [ 167.229404] ? alloc_netdev_mqs+0x16a7/0x1760 [ 167.233961] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 167.239387] ? alloc_netdev_mqs+0x171a/0x1760 [ 167.243861] ? rtnl_create_link+0xe62/0x1060 [ 167.248245] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 167.253584] ? rtnl_create_link+0xf24/0x1060 [ 167.257971] ? veth_validate+0x340/0x340 [ 167.262006] ? veth_validate+0x340/0x340 [ 167.266051] rtnl_newlink+0x2721/0x37a0 [ 167.270019] ? rtnl_newlink+0xca5/0x37a0 [ 167.274054] ? rtnl_newlink+0xb64/0x37a0 [ 167.278097] ? kmsan_set_origin_inline+0x6b/0x120 [ 167.283096] ? __msan_poison_alloca+0x15c/0x1d0 [ 167.287839] ? rcu_all_qs+0x32/0x1f0 [ 167.291637] ? rtnl_setlink+0x770/0x770 [ 167.295592] rtnetlink_rcv_msg+0xa44/0x1570 [ 167.299899] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 167.305333] ? netlink_sendmsg+0x76e/0x1350 [ 167.309741] ? kmsan_set_origin_inline+0x6b/0x120 [ 167.314570] ? __msan_poison_alloca+0x15c/0x1d0 [ 167.319302] ? __should_failslab+0x278/0x2a0 [ 167.323689] ? kmsan_set_origin_inline+0x6b/0x120 [ 167.328527] ? kmsan_set_origin+0x9e/0x160 [ 167.332742] netlink_rcv_skb+0x37e/0x600 [ 167.336791] ? rtnetlink_bind+0x120/0x120 [ 167.340915] rtnetlink_rcv+0x50/0x60 [ 167.344869] netlink_unicast+0x1680/0x1750 [ 167.349088] ? rtnetlink_net_exit+0xa0/0xa0 [ 167.353385] netlink_sendmsg+0x104f/0x1350 [ 167.357600] ? netlink_getsockopt+0xc60/0xc60 [ 167.362080] ___sys_sendmsg+0xec8/0x1320 [ 167.366125] ? __fdget+0x4e/0x60 [ 167.369473] ? __fget_light+0x57/0x700 [ 167.373335] ? __fdget+0x4e/0x60 [ 167.376676] ? __fget_light+0x1dc/0x700 [ 167.380630] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 167.385978] ? __fget_light+0x1f5/0x700 [ 167.389947] __x64_sys_sendmsg+0x331/0x460 [ 167.394167] ? ___sys_sendmsg+0x1320/0x1320 [ 167.398479] do_syscall_64+0x15b/0x230 [ 167.402344] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 167.407509] RIP: 0033:0x7fb8757cd320 [ 167.411195] RSP: 002b:00007fff416c45d8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 167.418882] RAX: ffffffffffffffda RBX: 00007fff416c86d0 RCX: 00007fb8757cd320 [ 167.426123] RDX: 0000000000000000 RSI: 00007fff416c4610 RDI: 0000000000000003 [ 167.433376] RBP: 00007fff416c4610 R08: 0000000000000000 R09: 0000000000000006 [ 167.440632] R10: 0000000000000000 R11: 0000000000000246 R12: 000000005b26bbd1 [ 167.448098] R13: 0000000000000000 R14: 00000000006395c0 R15: 00007fff416c8ea0 [ 167.455379] [ 167.456987] Uninit was stored to memory at: [ 167.461315] kmsan_internal_chain_origin+0x12b/0x210 [ 167.466427] __msan_chain_origin+0x69/0xc0 [ 167.470654] pick_next_task_fair+0x2474/0x2530 [ 167.475227] pick_next_task+0x1ba/0x420 [ 167.479197] __schedule+0x20f/0x770 [ 167.482803] do_task_dead+0xc8/0xf0 [ 167.486591] do_exit+0x347e/0x3930 [ 167.490126] do_group_exit+0x1a0/0x360 [ 167.494000] __do_sys_exit_group+0x21/0x30 [ 167.498575] __se_sys_exit_group+0x14/0x20 [ 167.502794] __x64_sys_exit_group+0x4c/0x50 [ 167.507116] do_syscall_64+0x15b/0x230 [ 167.510985] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 167.516145] [ 167.517747] Local variable description: ----tlb.i@ldt_arch_exit_mmap [ 167.524208] Variable was created at: [ 167.527902] ldt_arch_exit_mmap+0x46/0x160 [ 167.532113] exit_mmap+0x410/0x980 [ 167.535624] ================================================================== [ 167.542965] Disabling lock debugging due to kernel taint [ 167.548476] Kernel panic - not syncing: panic_on_warn set ... [ 167.548476] [ 167.556003] CPU: 1 PID: 4722 Comm: ip Tainted: G B 4.17.0+ #8 [ 167.563164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 167.572501] Call Trace: [ 167.575083] dump_stack+0x185/0x1d0 [ 167.578696] panic+0x3d0/0x990 [ 167.581888] kmsan_report+0x29e/0x2a0 [ 167.585667] __msan_warning_32+0x70/0xc0 [ 167.589714] __list_add_valid+0x1b8/0x450 [ 167.593864] enqueue_task_fair+0xe12/0x4490 [ 167.598163] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 167.603505] ? update_load_avg+0x2cc0/0x2cc0 [ 167.607891] try_to_wake_up+0x162f/0x2260 [ 167.612041] wake_up_process+0x34/0x40 [ 167.615917] __queue_work+0x1b57/0x1f00 [ 167.619866] ? kmsan_set_origin_inline+0x6b/0x120 [ 167.624689] queue_work_on+0x1a5/0x1c0 [ 167.628557] netdevice_event+0xcc3/0xf90 [ 167.633479] ? del_netdev_ips+0xa0/0xa0 [ 167.637515] ? del_netdev_default_ips_join+0x1e0/0x1e0 [ 167.642768] ? is_eth_port_of_netdev+0x520/0x520 [ 167.647505] ? enum_all_gids_of_dev_cb+0x8f0/0x8f0 [ 167.652409] ? inet6addr_event+0x4c0/0x4c0 [ 167.656622] ? inet6addr_event+0x4c0/0x4c0 [ 167.660844] raw_notifier_call_chain+0x13e/0x240 [ 167.665579] register_netdevice+0x2178/0x2720 [ 167.670057] veth_newlink+0xb9e/0x1480 [ 167.673943] ? alloc_netdev_mqs+0x16a7/0x1760 [ 167.678415] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 167.683848] ? alloc_netdev_mqs+0x171a/0x1760 [ 167.688324] ? rtnl_create_link+0xe62/0x1060 [ 167.692739] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 167.698082] ? rtnl_create_link+0xf24/0x1060 [ 167.702480] ? veth_validate+0x340/0x340 [ 167.706516] ? veth_validate+0x340/0x340 [ 167.710566] rtnl_newlink+0x2721/0x37a0 [ 167.714525] ? rtnl_newlink+0xca5/0x37a0 [ 167.718571] ? rtnl_newlink+0xb64/0x37a0 [ 167.722613] ? kmsan_set_origin_inline+0x6b/0x120 [ 167.727442] ? __msan_poison_alloca+0x15c/0x1d0 [ 167.733528] ? rcu_all_qs+0x32/0x1f0 [ 167.737261] ? rtnl_setlink+0x770/0x770 [ 167.741267] rtnetlink_rcv_msg+0xa44/0x1570 [ 167.745662] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 167.751026] ? netlink_sendmsg+0x76e/0x1350 [ 167.755371] ? kmsan_set_origin_inline+0x6b/0x120 [ 167.760397] ? __msan_poison_alloca+0x15c/0x1d0 [ 167.765172] ? __should_failslab+0x278/0x2a0 [ 167.769674] ? kmsan_set_origin_inline+0x6b/0x120 [ 167.774510] ? kmsan_set_origin+0x9e/0x160 [ 167.778746] netlink_rcv_skb+0x37e/0x600 [ 167.782795] ? rtnetlink_bind+0x120/0x120 [ 167.786946] rtnetlink_rcv+0x50/0x60 [ 167.790647] netlink_unicast+0x1680/0x1750 [ 167.794871] ? rtnetlink_net_exit+0xa0/0xa0 [ 167.799192] netlink_sendmsg+0x104f/0x1350 [ 167.803517] ? netlink_getsockopt+0xc60/0xc60 [ 167.808004] ___sys_sendmsg+0xec8/0x1320 [ 167.812048] ? __fdget+0x4e/0x60 [ 167.815394] ? __fget_light+0x57/0x700 [ 167.819259] ? __fdget+0x4e/0x60 [ 167.822599] ? __fget_light+0x1dc/0x700 [ 167.826556] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 167.831904] ? __fget_light+0x1f5/0x700 [ 167.835868] __x64_sys_sendmsg+0x331/0x460 [ 167.840094] ? ___sys_sendmsg+0x1320/0x1320 [ 167.844397] do_syscall_64+0x15b/0x230 [ 167.848265] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 167.853431] RIP: 0033:0x7fb8757cd320 [ 167.857134] RSP: 002b:00007fff416c45d8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 167.864819] RAX: ffffffffffffffda RBX: 00007fff416c86d0 RCX: 00007fb8757cd320 [ 167.872068] RDX: 0000000000000000 RSI: 00007fff416c4610 RDI: 0000000000000003 [ 167.879320] RBP: 00007fff416c4610 R08: 0000000000000000 R09: 0000000000000006 [ 167.886585] R10: 0000000000000000 R11: 0000000000000246 R12: 000000005b26bbd1 [ 167.893852] R13: 0000000000000000 R14: 00000000006395c0 R15: 00007fff416c8ea0 [ 169.072632] Shutting down cpus with NMI [ 169.089230] Dumping ftrace buffer: [ 169.092764] (ftrace buffer empty) [ 169.096455] Kernel Offset: disabled [ 169.100189] Rebooting in 86400 seconds..