INIT: Entering runlevel: 2 [info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.10.8' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 31.864515] ================================================================== [ 31.871894] BUG: KMSAN: uninit-value in af_alg_free_areq_sgls+0x5ff/0xb20 [ 31.878793] CPU: 1 PID: 3568 Comm: syzkaller909997 Not tainted 4.16.0+ #82 [ 31.885774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 31.895102] Call Trace: [ 31.897665] dump_stack+0x185/0x1d0 [ 31.901264] ? af_alg_free_areq_sgls+0x5ff/0xb20 [ 31.905992] kmsan_report+0x142/0x240 [ 31.909773] __msan_warning_32+0x6c/0xb0 [ 31.913805] af_alg_free_areq_sgls+0x5ff/0xb20 [ 31.918361] af_alg_free_resources+0x66/0xf0 [ 31.922745] aead_recvmsg+0x9a4/0x2960 [ 31.926606] ? __local_bh_enable_ip+0x3b/0x140 [ 31.931165] aead_recvmsg_nokey+0x129/0x160 [ 31.935462] sock_recvmsg+0x1d0/0x230 [ 31.939234] ? aead_sendmsg_nokey+0x250/0x250 [ 31.943704] ___sys_recvmsg+0x3fb/0x810 [ 31.947654] ? __fget_light+0x56/0x710 [ 31.951511] ? __fdget+0x4e/0x60 [ 31.954853] ? __fget_light+0x1dc/0x710 [ 31.958800] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 31.964134] ? __fget_light+0x1f5/0x710 [ 31.968084] SYSC_recvmsg+0x298/0x3c0 [ 31.971865] SyS_recvmsg+0x54/0x80 [ 31.975378] do_syscall_64+0x309/0x430 [ 31.979239] ? ___sys_recvmsg+0x810/0x810 [ 31.983360] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 31.988521] RIP: 0033:0x43ff29 [ 31.991964] RSP: 002b:00007ffd9919c808 EFLAGS: 00000207 ORIG_RAX: 000000000000002f [ 31.999643] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 000000000043ff29 [ 32.006885] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000004 [ 32.014125] RBP: 00000000006ca018 R08: 00000000004002c8 R09: 00000000004002c8 [ 32.021367] R10: 00000000004002c8 R11: 0000000000000207 R12: 0000000000401850 [ 32.028622] R13: 00000000004018e0 R14: 0000000000000000 R15: 0000000000000000 [ 32.035866] [ 32.037462] Uninit was created at: [ 32.040979] kmsan_internal_poison_shadow+0xb8/0x1b0 [ 32.046061] kmsan_kmalloc+0x94/0x100 [ 32.049835] __kmalloc+0x23c/0x350 [ 32.053352] sock_kmalloc+0x14e/0x270 [ 32.057124] af_alg_get_rsgl+0x427/0xe10 [ 32.061157] aead_recvmsg+0x953/0x2960 [ 32.065025] aead_recvmsg_nokey+0x129/0x160 [ 32.069329] sock_recvmsg+0x1d0/0x230 [ 32.073104] ___sys_recvmsg+0x3fb/0x810 [ 32.077056] SYSC_recvmsg+0x298/0x3c0 [ 32.080828] SyS_recvmsg+0x54/0x80 [ 32.084345] do_syscall_64+0x309/0x430 [ 32.088209] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 32.093367] ================================================================== [ 32.100694] Disabling lock debugging due to kernel taint [ 32.106113] Kernel panic - not syncing: panic_on_warn set ... [ 32.106113] [ 32.113448] CPU: 1 PID: 3568 Comm: syzkaller909997 Tainted: G B 4.16.0+ #82 [ 32.121733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 32.131055] Call Trace: [ 32.133616] dump_stack+0x185/0x1d0 [ 32.137219] panic+0x39d/0x940 [ 32.140393] ? af_alg_free_areq_sgls+0x5ff/0xb20 [ 32.145119] kmsan_report+0x238/0x240 [ 32.148891] __msan_warning_32+0x6c/0xb0 [ 32.152925] af_alg_free_areq_sgls+0x5ff/0xb20 [ 32.157488] af_alg_free_resources+0x66/0xf0 [ 32.161873] aead_recvmsg+0x9a4/0x2960 [ 32.165735] ? __local_bh_enable_ip+0x3b/0x140 [ 32.170296] aead_recvmsg_nokey+0x129/0x160 [ 32.174591] sock_recvmsg+0x1d0/0x230 [ 32.178368] ? aead_sendmsg_nokey+0x250/0x250 [ 32.182839] ___sys_recvmsg+0x3fb/0x810 [ 32.186795] ? __fget_light+0x56/0x710 [ 32.190652] ? __fdget+0x4e/0x60 [ 32.193991] ? __fget_light+0x1dc/0x710 [ 32.197943] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 32.203277] ? __fget_light+0x1f5/0x710 [ 32.207226] SYSC_recvmsg+0x298/0x3c0 [ 32.211006] SyS_recvmsg+0x54/0x80 [ 32.214526] do_syscall_64+0x309/0x430 [ 32.218389] ? ___sys_recvmsg+0x810/0x810 [ 32.222514] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 32.227675] RIP: 0033:0x43ff29 [ 32.230835] RSP: 002b:00007ffd9919c808 EFLAGS: 00000207 ORIG_RAX: 000000000000002f [ 32.238516] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 000000000043ff29 [ 32.245756] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000004 [ 32.252996] RBP: 00000000006ca018 R08: 00000000004002c8 R09: 00000000004002c8 [ 32.260242] R10: 00000000004002c8 R11: 0000000000000207 R12: 0000000000401850 [ 32.267486] R13: 00000000004018e0 R14: 0000000000000000 R15: 0000000000000000 [ 32.275170] Dumping ftrace buffer: [ 32.278682] (ftrace buffer empty) [ 32.282364] Kernel Offset: disabled [ 32.285960] Rebooting in 86400 seconds..