[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 32.070338] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 36.817454] random: sshd: uninitialized urandom read (32 bytes read) [ 37.251974] random: sshd: uninitialized urandom read (32 bytes read) [ 38.383619] random: sshd: uninitialized urandom read (32 bytes read) [ 59.269204] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.0.23' (ECDSA) to the list of known hosts. [ 64.756815] random: sshd: uninitialized urandom read (32 bytes read) 2018/05/09 23:03:49 parsed 1 programs 2018/05/09 23:03:49 executed programs: 0 [ 65.284588] IPVS: ftp: loaded support on port[0] = 21 [ 65.293824] IPVS: ftp: loaded support on port[0] = 21 [ 65.312236] IPVS: ftp: loaded support on port[0] = 21 [ 65.328548] IPVS: ftp: loaded support on port[0] = 21 [ 65.339835] IPVS: ftp: loaded support on port[0] = 21 [ 65.364934] IPVS: ftp: loaded support on port[0] = 21 [ 65.373838] IPVS: ftp: loaded support on port[0] = 21 [ 65.379482] IPVS: ftp: loaded support on port[0] = 21 [ 65.494098] Not allocated shadow for addr ffff8801b8600000 (page ffffea000a524000) [ 65.501820] Attempted to access 4096 bytes [ 65.506051] ------------[ cut here ]------------ [ 65.510784] kernel BUG at mm/kmsan/kmsan.c:1326! [ 65.515532] invalid opcode: 0000 [#1] SMP PTI [ 65.520010] Dumping ftrace buffer: [ 65.523525] (ftrace buffer empty) [ 65.527228] Modules linked in: [ 65.530407] CPU: 0 PID: 4547 Comm: syz-executor3 Not tainted 4.17.0-rc3+ #88 [ 65.537576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 65.546915] RIP: 0010:kmsan_get_shadow_address+0x1ce/0x1f0 [ 65.552521] RSP: 0018:ffff8801ad39f890 EFLAGS: 00010082 [ 65.557870] RAX: 000000000000001e RBX: 00000000000006e0 RCX: 0000000000000000 [ 65.565118] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000000 [ 65.572377] RBP: ffff8801ad39f8a8 R08: 0000000000000000 R09: 0000000000000001 [ 65.579624] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8801b8600000 [ 65.586871] R13: 000000000000c000 R14: 0000000000000001 R15: 0000000000001000 [ 65.594121] FS: 00007f03fa48b700(0000) GS:ffff88021fc00000(0000) knlGS:0000000000000000 [ 65.602321] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 65.608178] CR2: 0000000020ec3000 CR3: 00000001abc48000 CR4: 00000000001406f0 [ 65.615424] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 65.622682] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 65.629937] Call Trace: [ 65.632506] kmsan_internal_unpoison_shadow+0x5c/0xe0 [ 65.637672] kmsan_unpoison_shadow+0x66/0xb0 [ 65.642059] get_user_pages_fast+0x4ae/0x780 [ 65.646446] iov_iter_get_pages+0x465/0x1810 [ 65.650838] ? kmsan_set_origin_inline+0x6b/0x120 [ 65.655656] ? hash_sendmsg+0x305/0x1110 [ 65.659693] af_alg_make_sg+0xdf/0x6d0 [ 65.663559] ? af_alg_free_sg+0x42/0x270 [ 65.667610] hash_sendmsg+0x305/0x1110 [ 65.671476] ? hash_accept+0x880/0x880 [ 65.675340] __sys_sendto+0x6c0/0x7e0 [ 65.679144] __x64_sys_sendto+0x1a1/0x210 [ 65.683279] do_syscall_64+0x154/0x220 [ 65.687145] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 65.692395] RIP: 0033:0x455979 [ 65.695558] RSP: 002b:00007f03fa48ac68 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 65.703240] RAX: ffffffffffffffda RBX: 00007f03fa48b6d4 RCX: 0000000000455979 [ 65.710485] RDX: ffffffffffffff05 RSI: 00000000208ac000 RDI: 0000000000000004 [ 65.717728] RBP: 000000000072bea0 R08: 0000000020ec3000 R09: 0000000000000080 [ 65.724972] R10: 0000000000008000 R11: 0000000000000246 R12: 00000000ffffffff [ 65.732227] R13: 0000000000000544 R14: 00000000006fbf00 R15: 0000000000000000 [ 65.739473] Code: 75 29 48 c7 c7 84 fe 9f 8a 31 c0 e8 4d 2a 83 ff 80 3c 25 f8 73 53 8b 00 75 11 48 c7 c7 b4 fe 9f 8a 31 c0 4c 89 fe e8 32 2a 83 ff <0f> 0b eb fe 48 3d ff ff ff 1f 0f 87 a2 fe ff ff 48 8b 1c 25 10 [ 65.758547] RIP: kmsan_get_shadow_address+0x1ce/0x1f0 RSP: ffff8801ad39f890 [ 65.765623] ---[ end trace 458c3b53b923382d ]--- [ 65.770372] Kernel panic - not syncing: Fatal exception [ 65.776162] Dumping ftrace buffer: [ 65.779685] (ftrace buffer empty) [ 65.783370] Kernel Offset: disabled [ 65.786989] Rebooting in 86400 seconds..