[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 30.902921] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 36.120104] random: sshd: uninitialized urandom read (32 bytes read) [ 36.572660] random: sshd: uninitialized urandom read (32 bytes read) [ 37.710948] random: sshd: uninitialized urandom read (32 bytes read) [ 37.921237] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.10.31' (ECDSA) to the list of known hosts. [ 43.406554] random: sshd: uninitialized urandom read (32 bytes read) 2018/05/21 14:26:28 parsed 1 programs 2018/05/21 14:26:28 executed programs: 0 [ 43.992828] IPVS: ftp: loaded support on port[0] = 21 [ 44.047466] ip (4531) used greatest stack depth: 54456 bytes left [ 44.155976] ip (4544) used greatest stack depth: 54344 bytes left [ 44.171521] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.177953] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.185336] device bridge_slave_0 entered promiscuous mode [ 44.206764] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.213195] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.220598] device bridge_slave_1 entered promiscuous mode [ 44.242251] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 44.263993] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 44.323982] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 44.349316] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 44.440635] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 44.448332] team0: Port device team_slave_0 added [ 44.468883] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 44.476341] team0: Port device team_slave_1 added [ 44.497431] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 44.516183] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 44.540433] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 44.565708] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 44.747993] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.754463] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.761265] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.767706] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.438792] 8021q: adding VLAN 0 to HW filter on device bond0 [ 45.506259] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 45.573436] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 45.579762] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 45.587984] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 45.651497] 8021q: adding VLAN 0 to HW filter on device team0 [ 46.050919] ================================================================== [ 46.058541] BUG: KMSAN: uninit-value in copy_siginfo_to_user+0x397/0x1270 [ 46.065476] CPU: 1 PID: 4766 Comm: syz-executor0 Not tainted 4.17.0-rc5+ #101 [ 46.072733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 46.082074] Call Trace: [ 46.084648] dump_stack+0x185/0x1d0 [ 46.088258] ? copy_siginfo_to_user+0x397/0x1270 [ 46.092997] kmsan_report+0x149/0x260 [ 46.096784] __msan_warning_32+0x6e/0xc0 [ 46.100829] copy_siginfo_to_user+0x397/0x1270 [ 46.105396] ? kmsan_internal_unpoison_shadow+0x83/0xe0 [ 46.110741] ptrace_request+0x1d6a/0x20e0 [ 46.114869] ? wait_task_inactive+0x21b/0x990 [ 46.119351] ? _raw_spin_lock_irqsave+0x45/0xf0 [ 46.124002] ? wait_task_inactive+0x21b/0x990 [ 46.128495] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 46.133932] ? wait_task_inactive+0x7df/0x990 [ 46.138414] arch_ptrace+0x1f6/0x1230 [ 46.142202] __se_sys_ptrace+0x309/0x850 [ 46.146268] __x64_sys_ptrace+0x11e/0x170 [ 46.150406] do_syscall_64+0x154/0x220 [ 46.154281] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 46.159464] RIP: 0033:0x455a09 [ 46.162635] RSP: 002b:00007fffa07bb8f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000065 [ 46.170325] RAX: ffffffffffffffda RBX: 0000000002017914 RCX: 0000000000455a09 [ 46.177576] RDX: 0000000000730004 RSI: 0000000000000001 RDI: 0000000000004209 [ 46.184833] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 46.192086] R10: 0000000020000000 R11: 0000000000000246 R12: 00000000ffffffff [ 46.199337] R13: 000000000000052c R14: 00000000006fbcc0 R15: 000000000000b6fe [ 46.206589] [ 46.208196] Local variable description: ----kiov@ptrace_request [ 46.214228] Variable was created at: [ 46.217926] ptrace_request+0x194/0x20e0 [ 46.221978] arch_ptrace+0x1f6/0x1230 [ 46.225762] ================================================================== [ 46.233098] Disabling lock debugging due to kernel taint [ 46.238527] Kernel panic - not syncing: panic_on_warn set ... [ 46.238527] [ 46.245887] CPU: 1 PID: 4766 Comm: syz-executor0 Tainted: G B 4.17.0-rc5+ #101 [ 46.254529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 46.263866] Call Trace: [ 46.266436] dump_stack+0x185/0x1d0 [ 46.270075] panic+0x39d/0x940 [ 46.273263] ? copy_siginfo_to_user+0x397/0x1270 [ 46.278001] kmsan_report+0x260/0x260 [ 46.281790] __msan_warning_32+0x6e/0xc0 [ 46.285835] copy_siginfo_to_user+0x397/0x1270 [ 46.290416] ? kmsan_internal_unpoison_shadow+0x83/0xe0 [ 46.295767] ptrace_request+0x1d6a/0x20e0 [ 46.299908] ? wait_task_inactive+0x21b/0x990 [ 46.304386] ? _raw_spin_lock_irqsave+0x45/0xf0 [ 46.309050] ? wait_task_inactive+0x21b/0x990 [ 46.313546] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 46.318986] ? wait_task_inactive+0x7df/0x990 [ 46.323476] arch_ptrace+0x1f6/0x1230 [ 46.327259] __se_sys_ptrace+0x309/0x850 [ 46.331303] __x64_sys_ptrace+0x11e/0x170 [ 46.335438] do_syscall_64+0x154/0x220 [ 46.339308] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 46.345301] RIP: 0033:0x455a09 [ 46.348469] RSP: 002b:00007fffa07bb8f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000065 [ 46.356159] RAX: ffffffffffffffda RBX: 0000000002017914 RCX: 0000000000455a09 [ 46.363424] RDX: 0000000000730004 RSI: 0000000000000001 RDI: 0000000000004209 [ 46.370677] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 46.377929] R10: 0000000020000000 R11: 0000000000000246 R12: 00000000ffffffff [ 46.385185] R13: 000000000000052c R14: 00000000006fbcc0 R15: 000000000000b6fe [ 46.393089] Dumping ftrace buffer: [ 46.396622] (ftrace buffer empty) [ 46.400313] Kernel Offset: disabled [ 46.403938] Rebooting in 86400 seconds..