[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 32.796210] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 36.733330] random: sshd: uninitialized urandom read (32 bytes read) [ 37.092708] random: sshd: uninitialized urandom read (32 bytes read) [ 38.467853] random: sshd: uninitialized urandom read (32 bytes read) [ 38.706997] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.10.47' (ECDSA) to the list of known hosts. [ 44.219654] random: sshd: uninitialized urandom read (32 bytes read) 2018/07/14 05:10:00 parsed 1 programs [ 45.316681] random: cc1: uninitialized urandom read (8 bytes read) 2018/07/14 05:10:02 executed programs: 0 [ 46.655536] IPVS: ftp: loaded support on port[0] = 21 [ 46.833847] FAULT_INJECTION: forcing a failure. [ 46.833847] name failslab, interval 1, probability 0, space 0, times 1 [ 46.845240] CPU: 1 PID: 4571 Comm: syz-executor0 Not tainted 4.18.0-rc4+ #27 [ 46.852447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 46.861827] Call Trace: [ 46.864441] dump_stack+0x185/0x1e0 [ 46.868097] should_fail+0x8a7/0xae0 [ 46.871863] __should_failslab+0x278/0x2a0 [ 46.876126] should_failslab+0x29/0x70 [ 46.880069] __kmalloc_node+0x23c/0x1240 [ 46.884147] ? kmsan_set_origin_inline+0x6b/0x120 [ 46.889040] ? kvmalloc_node+0x19d/0x370 [ 46.893116] kvmalloc_node+0x19d/0x370 [ 46.897018] semctl_main+0xcf2/0x5980 [ 46.900864] ? kmsan_set_origin_inline+0x6b/0x120 [ 46.905719] ? kmsan_set_origin+0x9e/0x160 [ 46.910006] ? task_kmsan_context_state+0x6b/0x120 [ 46.914984] ? task_kmsan_context_state+0x6b/0x120 [ 46.919936] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 46.925844] ? kmsan_set_origin_inline+0x6b/0x120 [ 46.930709] ? __msan_poison_alloca+0x183/0x220 [ 46.935408] ? __x64_sys_semctl+0x11e/0x170 [ 46.939741] ? ksys_semctl+0xa4/0x730 [ 46.943562] ksys_semctl+0x5ef/0x730 [ 46.947310] __x64_sys_semctl+0x11e/0x170 [ 46.951476] ? semctl_down+0xf00/0xf00 [ 46.955377] do_syscall_64+0x15b/0x230 [ 46.959277] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 46.964471] RIP: 0033:0x455ab9 [ 46.967663] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 46.987429] RSP: 002b:00007ffcdd889cd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000042 [ 46.995150] RAX: ffffffffffffffda RBX: 00000000019b5914 RCX: 0000000000455ab9 [ 47.002422] RDX: 000000000000000d RSI: 0000000000000000 RDI: 0000000000000000 [ 47.009707] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 47.016975] R10: 0000000020000080 R11: 0000000000000246 R12: 0000000000000004 [ 47.024251] R13: 00000000004c0c8f R14: 00000000004d11e8 R15: 0000000000000000 [ 47.032621] ================================================================== [ 47.040013] BUG: KMSAN: kernel-infoleak in semctl_main+0x1361/0x5980 [ 47.046506] CPU: 1 PID: 4571 Comm: syz-executor0 Not tainted 4.18.0-rc4+ #27 [ 47.053675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 47.063017] Call Trace: [ 47.065607] dump_stack+0x185/0x1e0 [ 47.069223] kmsan_report+0x195/0x2c0 [ 47.073027] kmsan_internal_check_memory+0x148/0x210 [ 47.078139] kmsan_copy_to_user+0x83/0xe0 [ 47.082294] semctl_main+0x1361/0x5980 [ 47.086180] ? kmsan_set_origin_inline+0x6b/0x120 [ 47.091020] ? kmsan_set_origin+0x9e/0x160 [ 47.095257] ? task_kmsan_context_state+0x6b/0x120 [ 47.100182] ? task_kmsan_context_state+0x6b/0x120 [ 47.105107] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 47.110564] ? kmsan_set_origin_inline+0x6b/0x120 [ 47.115409] ? __msan_poison_alloca+0x183/0x220 [ 47.120076] ? __x64_sys_semctl+0x11e/0x170 [ 47.124405] ? ksys_semctl+0xa4/0x730 [ 47.128208] ksys_semctl+0x5ef/0x730 [ 47.131927] __x64_sys_semctl+0x11e/0x170 [ 47.136068] ? semctl_down+0xf00/0xf00 [ 47.139941] do_syscall_64+0x15b/0x230 [ 47.143827] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 47.149004] RIP: 0033:0x455ab9 [ 47.152199] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 47.171384] RSP: 002b:00007ffcdd889cd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000042 [ 47.179086] RAX: ffffffffffffffda RBX: 00000000019b5914 RCX: 0000000000455ab9 [ 47.186342] RDX: 000000000000000d RSI: 0000000000000000 RDI: 0000000000000000 [ 47.193598] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 47.200879] R10: 0000000020000080 R11: 0000000000000246 R12: 0000000000000004 [ 47.208141] R13: 00000000004c0c8f R14: 00000000004d11e8 R15: 0000000000000000 [ 47.215404] [ 47.217014] Uninit was created at: [ 47.220576] kmsan_internal_alloc_meta_for_pages+0x157/0x730 [ 47.226379] kmsan_alloc_page+0x80/0xe0 [ 47.230341] __alloc_pages_nodemask+0x105b/0x6320 [ 47.235169] alloc_pages_current+0x6b1/0x970 [ 47.239563] __vmalloc_node_range+0x8bf/0x1170 [ 47.244130] __vmalloc_node_flags_caller+0x12b/0x140 [ 47.249230] kvmalloc_node+0x330/0x370 [ 47.253117] semctl_main+0xcf2/0x5980 [ 47.256903] ksys_semctl+0x5ef/0x730 [ 47.260606] __x64_sys_semctl+0x11e/0x170 [ 47.264737] do_syscall_64+0x15b/0x230 [ 47.268611] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 47.273776] [ 47.275387] Bytes 4096-4101 of 4110 are uninitialized [ 47.280561] Memory access starts at ffffc9000194e000 [ 47.285649] ================================================================== [ 47.292994] Disabling lock debugging due to kernel taint [ 47.298434] Kernel panic - not syncing: panic_on_warn set ... [ 47.298434] [ 47.305787] CPU: 1 PID: 4571 Comm: syz-executor0 Tainted: G B 4.18.0-rc4+ #27 [ 47.314367] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 47.323718] Call Trace: [ 47.326302] dump_stack+0x185/0x1e0 [ 47.329922] panic+0x3d0/0x9b0 [ 47.333120] kmsan_report+0x2bf/0x2c0 [ 47.336918] kmsan_internal_check_memory+0x148/0x210 [ 47.342028] kmsan_copy_to_user+0x83/0xe0 [ 47.346190] semctl_main+0x1361/0x5980 [ 47.350079] ? kmsan_set_origin_inline+0x6b/0x120 [ 47.354916] ? kmsan_set_origin+0x9e/0x160 [ 47.359144] ? task_kmsan_context_state+0x6b/0x120 [ 47.364070] ? task_kmsan_context_state+0x6b/0x120 [ 47.368998] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 47.374466] ? kmsan_set_origin_inline+0x6b/0x120 [ 47.379305] ? __msan_poison_alloca+0x183/0x220 [ 47.383959] ? __x64_sys_semctl+0x11e/0x170 [ 47.388279] ? ksys_semctl+0xa4/0x730 [ 47.392077] ksys_semctl+0x5ef/0x730 [ 47.395783] __x64_sys_semctl+0x11e/0x170 [ 47.399917] ? semctl_down+0xf00/0xf00 [ 47.403790] do_syscall_64+0x15b/0x230 [ 47.407667] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 47.412839] RIP: 0033:0x455ab9 [ 47.416011] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 47.435226] RSP: 002b:00007ffcdd889cd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000042 [ 47.442922] RAX: ffffffffffffffda RBX: 00000000019b5914 RCX: 0000000000455ab9 [ 47.450176] RDX: 000000000000000d RSI: 0000000000000000 RDI: 0000000000000000 [ 47.457438] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 47.464694] R10: 0000000020000080 R11: 0000000000000246 R12: 0000000000000004 [ 47.471947] R13: 00000000004c0c8f R14: 00000000004d11e8 R15: 0000000000000000 [ 47.479675] Dumping ftrace buffer: [ 47.483205] (ftrace buffer empty) [ 47.486895] Kernel Offset: disabled [ 47.490505] Rebooting in 86400 seconds..