INIT: Entering runlevel: 2 [info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.44' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 31.403163] ================================================================== [ 31.410564] BUG: KMSAN: uninit-value in gcmaes_decrypt+0x2ec/0xea0 [ 31.416862] CPU: 0 PID: 3567 Comm: syzkaller475259 Not tainted 4.16.0+ #82 [ 31.423846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 31.433174] Call Trace: [ 31.435738] dump_stack+0x185/0x1d0 [ 31.439343] ? gcmaes_decrypt+0x2ec/0xea0 [ 31.443476] kmsan_report+0x142/0x240 [ 31.447259] __msan_warning_32+0x6c/0xb0 [ 31.451295] gcmaes_decrypt+0x2ec/0xea0 [ 31.455250] generic_gcmaes_decrypt+0x181/0x1e0 [ 31.459894] ? generic_gcmaes_encrypt+0x1e0/0x1e0 [ 31.464717] gcmaes_wrapper_decrypt+0x2f5/0x340 [ 31.469363] ? gcmaes_wrapper_encrypt+0x2d0/0x2d0 [ 31.474181] aead_recvmsg+0x25b5/0x2960 [ 31.478139] aead_recvmsg_nokey+0x129/0x160 [ 31.482438] sock_recvmsg+0x1d0/0x230 [ 31.486213] ? aead_sendmsg_nokey+0x250/0x250 [ 31.490690] ___sys_recvmsg+0x3fb/0x810 [ 31.494645] ? __fget_light+0x56/0x710 [ 31.498519] ? __fdget+0x4e/0x60 [ 31.501862] ? __fget_light+0x1dc/0x710 [ 31.505815] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 31.511156] ? __fget_light+0x1f5/0x710 [ 31.515111] SYSC_recvmsg+0x298/0x3c0 [ 31.518893] SyS_recvmsg+0x54/0x80 [ 31.522423] do_syscall_64+0x309/0x430 [ 31.526287] ? ___sys_recvmsg+0x810/0x810 [ 31.530413] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 31.535578] RIP: 0033:0x43ff29 [ 31.538743] RSP: 002b:00007fff7bf82728 EFLAGS: 00000207 ORIG_RAX: 000000000000002f [ 31.546427] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 000000000043ff29 [ 31.553672] RDX: 0000000000000000 RSI: 0000000020000d40 RDI: 0000000000000004 [ 31.560921] RBP: 00000000006ca018 R08: 00000000004002c8 R09: 00000000004002c8 [ 31.568175] R10: 00000000004002c8 R11: 0000000000000207 R12: 0000000000401850 [ 31.575431] R13: 00000000004018e0 R14: 0000000000000000 R15: 0000000000000000 [ 31.582676] [ 31.584276] Uninit was created at: [ 31.587798] kmsan_internal_poison_shadow+0xb8/0x1b0 [ 31.592890] kmsan_kmalloc+0x94/0x100 [ 31.596687] __kmalloc+0x23c/0x350 [ 31.600203] sock_kmalloc+0x14e/0x270 [ 31.603979] af_alg_alloc_areq+0x85/0x320 [ 31.608103] aead_recvmsg+0x65a/0x2960 [ 31.611968] aead_recvmsg_nokey+0x129/0x160 [ 31.616267] sock_recvmsg+0x1d0/0x230 [ 31.620050] ___sys_recvmsg+0x3fb/0x810 [ 31.624008] SYSC_recvmsg+0x298/0x3c0 [ 31.627793] SyS_recvmsg+0x54/0x80 [ 31.631310] do_syscall_64+0x309/0x430 [ 31.635174] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 31.640337] ================================================================== [ 31.647673] Disabling lock debugging due to kernel taint [ 31.653110] Kernel panic - not syncing: panic_on_warn set ... [ 31.653110] [ 31.660450] CPU: 0 PID: 3567 Comm: syzkaller475259 Tainted: G B 4.16.0+ #82 [ 31.668737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 31.678068] Call Trace: [ 31.680637] dump_stack+0x185/0x1d0 [ 31.684241] panic+0x39d/0x940 [ 31.687420] ? gcmaes_decrypt+0x2ec/0xea0 [ 31.691543] kmsan_report+0x238/0x240 [ 31.695322] __msan_warning_32+0x6c/0xb0 [ 31.699356] gcmaes_decrypt+0x2ec/0xea0 [ 31.703311] generic_gcmaes_decrypt+0x181/0x1e0 [ 31.707958] ? generic_gcmaes_encrypt+0x1e0/0x1e0 [ 31.712778] gcmaes_wrapper_decrypt+0x2f5/0x340 [ 31.717424] ? gcmaes_wrapper_encrypt+0x2d0/0x2d0 [ 31.722241] aead_recvmsg+0x25b5/0x2960 [ 31.726198] aead_recvmsg_nokey+0x129/0x160 [ 31.730498] sock_recvmsg+0x1d0/0x230 [ 31.734274] ? aead_sendmsg_nokey+0x250/0x250 [ 31.738747] ___sys_recvmsg+0x3fb/0x810 [ 31.742702] ? __fget_light+0x56/0x710 [ 31.746562] ? __fdget+0x4e/0x60 [ 31.749904] ? __fget_light+0x1dc/0x710 [ 31.753858] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 31.759201] ? __fget_light+0x1f5/0x710 [ 31.763156] SYSC_recvmsg+0x298/0x3c0 [ 31.766941] SyS_recvmsg+0x54/0x80 [ 31.770455] do_syscall_64+0x309/0x430 [ 31.774319] ? ___sys_recvmsg+0x810/0x810 [ 31.778443] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 31.783614] RIP: 0033:0x43ff29 [ 31.786778] RSP: 002b:00007fff7bf82728 EFLAGS: 00000207 ORIG_RAX: 000000000000002f [ 31.794459] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 000000000043ff29 [ 31.801704] RDX: 0000000000000000 RSI: 0000000020000d40 RDI: 0000000000000004 [ 31.808950] RBP: 00000000006ca018 R08: 00000000004002c8 R09: 00000000004002c8 [ 31.816195] R10: 00000000004002c8 R11: 0000000000000207 R12: 0000000000401850 [ 31.823441] R13: 00000000004018e0 R14: 0000000000000000 R15: 0000000000000000 [ 31.831169] Dumping ftrace buffer: [ 31.834683] (ftrace buffer empty) [ 31.838363] Kernel Offset: disabled [ 31.841963] Rebooting in 86400 seconds..