[ 72.304715][ T30] audit: type=1800 audit(1561655365.357:25): pid=10968 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 72.329182][ T30] audit: type=1800 audit(1561655365.377:26): pid=10968 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 72.391813][ T30] audit: type=1800 audit(1561655365.407:27): pid=10968 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [ 73.382851][T11032] sshd (11032) used greatest stack depth: 54352 bytes left [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 75.066323][T11105] sshd (11105) used greatest stack depth: 54336 bytes left Warning: Permanently added '10.128.0.171' (ECDSA) to the list of known hosts. executing program [ 82.616519][T11119] ================================================================== [ 82.624600][T11119] BUG: KMSAN: uninit-value in aesti_encrypt+0x1238/0x1bc0 [ 82.631709][T11119] CPU: 0 PID: 11119 Comm: syz-executor333 Not tainted 5.2.0-rc4+ #7 [ 82.639672][T11119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 82.649699][T11119] Call Trace: [ 82.652970][T11119] dump_stack+0x191/0x1f0 [ 82.657286][T11119] kmsan_report+0x162/0x2d0 [ 82.661772][T11119] __msan_warning+0x75/0xe0 [ 82.666266][T11119] aesti_encrypt+0x1238/0x1bc0 [ 82.671032][T11119] ? aesti_set_key+0x1eb0/0x1eb0 [ 82.675940][T11119] crypto_cbcmac_digest_update+0x3cf/0x550 [ 82.681737][T11119] ? crypto_cbcmac_digest_init+0x140/0x140 [ 82.687561][T11119] shash_ahash_finup+0x659/0xb20 [ 82.692480][T11119] ? kmsan_get_shadow_origin_ptr+0x71/0x470 [ 82.698532][T11119] ? kmsan_get_shadow_origin_ptr+0x71/0x470 [ 82.704404][T11119] shash_async_finup+0xbb/0x110 [ 82.709233][T11119] crypto_ahash_op+0x1cd/0x6e0 [ 82.713983][T11119] ? kmsan_internal_memset_shadow+0x104/0x3a0 [ 82.720024][T11119] ? shash_async_final+0x420/0x420 [ 82.725110][T11119] ? kmsan_get_shadow_origin_ptr+0x71/0x470 [ 82.730975][T11119] ? shash_async_final+0x420/0x420 [ 82.736074][T11119] ? shash_async_final+0x420/0x420 [ 82.741163][T11119] crypto_ahash_finup+0x8c/0xb0 [ 82.745993][T11119] crypto_ccm_auth+0x14b2/0x1570 [ 82.750932][T11119] crypto_ccm_encrypt+0x272/0x8d0 [ 82.755929][T11119] ? kmsan_internal_memset_shadow+0x104/0x3a0 [ 82.761979][T11119] ? crypto_ccm_setauthsize+0xc0/0xc0 [ 82.767331][T11119] tls_push_record+0x341a/0x4f70 [ 82.772274][T11119] ? kmsan_get_shadow_origin_ptr+0x71/0x470 [ 82.778142][T11119] bpf_exec_tx_verdict+0x1454/0x1c90 [ 82.783405][T11119] ? kmsan_internal_memset_shadow+0x104/0x3a0 [ 82.789521][T11119] tls_sw_sendmsg+0x15bd/0x2740 [ 82.794394][T11119] ? tls_tx_records+0xb50/0xb50 [ 82.799238][T11119] inet_sendmsg+0x48e/0x750 [ 82.803732][T11119] ? kmsan_get_shadow_origin_ptr+0x71/0x470 [ 82.809612][T11119] ? inet_getname+0x490/0x490 [ 82.814274][T11119] __sys_sendto+0x905/0xb90 [ 82.818767][T11119] ? kmsan_get_shadow_origin_ptr+0x71/0x470 [ 82.824655][T11119] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 82.830705][T11119] ? prepare_exit_to_usermode+0x19a/0x4d0 [ 82.836405][T11119] ? kmsan_get_shadow_origin_ptr+0x71/0x470 [ 82.842281][T11119] __se_sys_sendto+0x107/0x130 [ 82.847042][T11119] __x64_sys_sendto+0x6e/0x90 [ 82.851713][T11119] do_syscall_64+0xbc/0xf0 [ 82.856106][T11119] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 82.861967][T11119] RIP: 0033:0x4402d9 [ 82.865831][T11119] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 82.885405][T11119] RSP: 002b:00007ffcef4112e8 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 82.893836][T11119] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 00000000004402d9 [ 82.901779][T11119] RDX: ffffffffffffff7f RSI: 00000000200005c0 RDI: 0000000000000003 [ 82.909735][T11119] RBP: 00000000006ca018 R08: 0000000000000000 R09: fffffffffffffd56 [ 82.917681][T11119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000401b60 [ 82.925657][T11119] R13: 0000000000401bf0 R14: 0000000000000000 R15: 0000000000000000 [ 82.933611][T11119] [ 82.935905][T11119] Uninit was stored to memory at: [ 82.940899][T11119] kmsan_internal_chain_origin+0xcc/0x150 [ 82.946592][T11119] __msan_chain_origin+0x6b/0xe0 [ 82.951515][T11119] __crypto_xor+0x1e8/0x1470 [ 82.956087][T11119] crypto_cbcmac_digest_update+0x2ba/0x550 [ 82.961916][T11119] shash_ahash_finup+0x659/0xb20 [ 82.966851][T11119] shash_async_finup+0xbb/0x110 [ 82.971697][T11119] crypto_ahash_op+0x1cd/0x6e0 [ 82.976432][T11119] crypto_ahash_finup+0x8c/0xb0 [ 82.981251][T11119] crypto_ccm_auth+0x14b2/0x1570 [ 82.986158][T11119] crypto_ccm_encrypt+0x272/0x8d0 [ 82.991151][T11119] tls_push_record+0x341a/0x4f70 [ 82.996060][T11119] bpf_exec_tx_verdict+0x1454/0x1c90 [ 83.001310][T11119] tls_sw_sendmsg+0x15bd/0x2740 [ 83.006135][T11119] inet_sendmsg+0x48e/0x750 [ 83.010625][T11119] __sys_sendto+0x905/0xb90 [ 83.015108][T11119] __se_sys_sendto+0x107/0x130 [ 83.019846][T11119] __x64_sys_sendto+0x6e/0x90 [ 83.024490][T11119] do_syscall_64+0xbc/0xf0 [ 83.028872][T11119] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 83.034737][T11119] [ 83.037097][T11119] Uninit was created at: [ 83.041310][T11119] kmsan_save_stack_with_flags+0x37/0x70 [ 83.046929][T11119] kmsan_internal_alloc_meta_for_pages+0x123/0x510 [ 83.053416][T11119] kmsan_alloc_page+0x7a/0xf0 [ 83.058083][T11119] __alloc_pages_nodemask+0x144d/0x6020 [ 83.063604][T11119] alloc_pages_current+0x6a0/0x9b0 [ 83.068688][T11119] skb_page_frag_refill+0x15e/0x560 [ 83.073874][T11119] sk_page_frag_refill+0xa4/0x330 [ 83.078868][T11119] sk_msg_alloc+0x203/0x1050 [ 83.083428][T11119] tls_sw_sendmsg+0xb6a/0x2740 [ 83.088162][T11119] inet_sendmsg+0x48e/0x750 [ 83.092637][T11119] __sys_sendto+0x905/0xb90 [ 83.097106][T11119] __se_sys_sendto+0x107/0x130 [ 83.101835][T11119] __x64_sys_sendto+0x6e/0x90 [ 83.106478][T11119] do_syscall_64+0xbc/0xf0 [ 83.110874][T11119] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 83.116734][T11119] ================================================================== [ 83.124762][T11119] Disabling lock debugging due to kernel taint [ 83.130897][T11119] Kernel panic - not syncing: panic_on_warn set ... [ 83.137509][T11119] CPU: 0 PID: 11119 Comm: syz-executor333 Tainted: G B 5.2.0-rc4+ #7 [ 83.146864][T11119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 83.156888][T11119] Call Trace: [ 83.160151][T11119] dump_stack+0x191/0x1f0 [ 83.164462][T11119] panic+0x3c9/0xc1e [ 83.168364][T11119] kmsan_report+0x2ca/0x2d0 [ 83.172857][T11119] __msan_warning+0x75/0xe0 [ 83.177335][T11119] aesti_encrypt+0x1238/0x1bc0 [ 83.182103][T11119] ? aesti_set_key+0x1eb0/0x1eb0 [ 83.187037][T11119] crypto_cbcmac_digest_update+0x3cf/0x550 [ 83.192839][T11119] ? crypto_cbcmac_digest_init+0x140/0x140 [ 83.198630][T11119] shash_ahash_finup+0x659/0xb20 [ 83.203540][T11119] ? kmsan_get_shadow_origin_ptr+0x71/0x470 [ 83.209443][T11119] ? kmsan_get_shadow_origin_ptr+0x71/0x470 [ 83.215313][T11119] shash_async_finup+0xbb/0x110 [ 83.220135][T11119] crypto_ahash_op+0x1cd/0x6e0 [ 83.224871][T11119] ? kmsan_internal_memset_shadow+0x104/0x3a0 [ 83.230917][T11119] ? shash_async_final+0x420/0x420 [ 83.236016][T11119] ? kmsan_get_shadow_origin_ptr+0x71/0x470 [ 83.241881][T11119] ? shash_async_final+0x420/0x420 [ 83.246965][T11119] ? shash_async_final+0x420/0x420 [ 83.252053][T11119] crypto_ahash_finup+0x8c/0xb0 [ 83.256984][T11119] crypto_ccm_auth+0x14b2/0x1570 [ 83.261932][T11119] crypto_ccm_encrypt+0x272/0x8d0 [ 83.266931][T11119] ? kmsan_internal_memset_shadow+0x104/0x3a0 [ 83.273005][T11119] ? crypto_ccm_setauthsize+0xc0/0xc0 [ 83.278360][T11119] tls_push_record+0x341a/0x4f70 [ 83.283306][T11119] ? kmsan_get_shadow_origin_ptr+0x71/0x470 [ 83.289198][T11119] bpf_exec_tx_verdict+0x1454/0x1c90 [ 83.294474][T11119] ? kmsan_internal_memset_shadow+0x104/0x3a0 [ 83.300578][T11119] tls_sw_sendmsg+0x15bd/0x2740 [ 83.305444][T11119] ? tls_tx_records+0xb50/0xb50 [ 83.310277][T11119] inet_sendmsg+0x48e/0x750 [ 83.314766][T11119] ? kmsan_get_shadow_origin_ptr+0x71/0x470 [ 83.320641][T11119] ? inet_getname+0x490/0x490 [ 83.325295][T11119] __sys_sendto+0x905/0xb90 [ 83.329811][T11119] ? kmsan_get_shadow_origin_ptr+0x71/0x470 [ 83.335679][T11119] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 83.341729][T11119] ? prepare_exit_to_usermode+0x19a/0x4d0 [ 83.347417][T11119] ? kmsan_get_shadow_origin_ptr+0x71/0x470 [ 83.353283][T11119] __se_sys_sendto+0x107/0x130 [ 83.358075][T11119] __x64_sys_sendto+0x6e/0x90 [ 83.362727][T11119] do_syscall_64+0xbc/0xf0 [ 83.367115][T11119] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 83.372976][T11119] RIP: 0033:0x4402d9 [ 83.376838][T11119] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 83.396409][T11119] RSP: 002b:00007ffcef4112e8 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 83.404801][T11119] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 00000000004402d9 [ 83.412743][T11119] RDX: ffffffffffffff7f RSI: 00000000200005c0 RDI: 0000000000000003 [ 83.420686][T11119] RBP: 00000000006ca018 R08: 0000000000000000 R09: fffffffffffffd56 [ 83.428642][T11119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000401b60 [ 83.436587][T11119] R13: 0000000000401bf0 R14: 0000000000000000 R15: 0000000000000000 [ 83.445491][T11119] Kernel Offset: disabled [ 83.449814][T11119] Rebooting in 86400 seconds..