[ 15.907343] random: sshd: uninitialized urandom read (32 bytes read, 32 bits of entropy available) [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 21.323245] random: sshd: uninitialized urandom read (32 bytes read, 38 bits of entropy available) [ 21.729315] random: sshd: uninitialized urandom read (32 bytes read, 40 bits of entropy available) [ 22.547068] random: sshd: uninitialized urandom read (32 bytes read, 104 bits of entropy available) [ 22.718971] random: sshd: uninitialized urandom read (32 bytes read, 108 bits of entropy available) Warning: Permanently added 'ci-android-44-kasan-gce-0,10.128.15.208' (ECDSA) to the list of known hosts. [ 28.132354] random: sshd: uninitialized urandom read (32 bytes read, 119 bits of entropy available) executing program [ 28.244084] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  [ 28.267989] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  executing program [ 28.360080] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  [ 28.383710] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  executing program executing program [ 28.477485] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  [ 28.498272] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  [ 28.520397] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  [ 28.536074] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  executing program [ 28.627186] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  [ 28.638080] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  executing program [ 28.702375] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  [ 28.712901] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  executing program executing program [ 28.774373] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  [ 28.786525] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  [ 28.844526] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  [ 28.856352] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  executing program executing program [ 28.934435] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  [ 28.953668] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  [ 29.003844] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  [ 29.016689] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  executing program [ 29.112884] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  [ 29.136259] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  executing program [ 29.222497] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  [ 29.229934] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:0 executing program executing program [ 29.344099] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  [ 29.366776] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  [ 29.425358] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  [ 29.439454] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  executing program executing program [ 29.520908] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  [ 29.536834] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  [ 29.592392] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  [ 29.621674] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  executing program [ 29.711594] IPVS: set_ctl: invalid protocol: 45975 236.44.193.237:56990  [ 29.725847] ================================================================== [ 29.733228] BUG: KASAN: stack-out-of-bounds in strnlen+0xc1/0xd0 [ 29.739348] Read of size 1 at addr ffff8801d0877d04 by task syzkaller968690/3469 [ 29.746852] [ 29.748450] CPU: 0 PID: 3469 Comm: syzkaller968690 Not tainted 4.4.107-g610c835 #12 [ 29.756215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 29.765533] 0000000000000000 32c3afb9a0a8afa3 ffff8801d0877758 ffffffff81d0457d [ 29.773491] ffffea0007421dc0 ffff8801d0877d04 0000000000000000 ffff8801d0877d04 [ 29.781439] ffffffff856b29c0 ffff8801d0877790 ffffffff814fbb23 ffff8801d0877d04 [ 29.789383] Call Trace: [ 29.791936] [] dump_stack+0xc1/0x124 [ 29.797264] [] print_address_description+0x73/0x260 [ 29.803894] [] kasan_report+0x285/0x370 [ 29.809501] [] ? strnlen+0xc1/0xd0 [ 29.814660] [] __asan_report_load1_noabort+0x14/0x20 [ 29.821378] [] strnlen+0xc1/0xd0 [ 29.826357] [] string.isra.4+0x4c/0x240 [ 29.831946] [] ? format_decode+0x118/0xa50 [ 29.837796] [] vsnprintf+0x766/0x15f0 [ 29.843211] [] ? pointer.isra.22+0xa00/0xa00 [ 29.849234] [] vscnprintf+0x2d/0x60 [ 29.854483] [] vprintk_emit+0xdb/0x850 [ 29.859985] [] ? mark_held_locks+0xaf/0x100 [ 29.865919] [] vprintk+0x28/0x30 [ 29.870900] [] vprintk_default+0x1d/0x30 [ 29.876574] [] printk+0xb7/0xe2 [ 29.881471] [] ? pm_qos_get_value.part.4+0xb/0xb [ 29.887842] [] ? __ww_mutex_lock+0x14f0/0x14f0 [ 29.894042] [] do_ip_vs_set_ctl+0x9b7/0xba0 [ 29.899979] [] ? ip_vs_genl_set_cmd+0x9a0/0x9a0 [ 29.906261] [] ? __lock_is_held+0xa1/0xf0 [ 29.912026] [] ? mark_held_locks+0xaf/0x100 [ 29.917969] [] ? mutex_lock_nested+0x5d4/0x850 [ 29.924167] [] ? trace_hardirqs_on_caller+0x38b/0x590 [ 29.930981] [] ? mutex_unlock+0x9/0x10 [ 29.936498] [] ? nf_sockopt_find.constprop.0+0x1a7/0x220 [ 29.943560] [] nf_setsockopt+0x67/0xc0 [ 29.949061] [] ip_setsockopt+0xa1/0xb0 [ 29.954565] [] udp_setsockopt+0x45/0x80 [ 29.960164] [] sock_common_setsockopt+0x95/0xd0 [ 29.966447] [] SyS_setsockopt+0x160/0x250 [ 29.972213] [] ? vmacache_update+0xfe/0x130 [ 29.978148] [] ? SyS_recv+0x40/0x40 [ 29.983401] [] ? retint_user+0x18/0x20 [ 29.988906] [] ? trace_hardirqs_on_thunk+0x17/0x19 [ 29.995456] [] entry_SYSCALL_64_fastpath+0x16/0x76 [ 30.002009] [ 30.003601] The buggy address belongs to the page: [ 30.008501] page:ffffea0007421dc0 count:0 mapcount:0 mapping: (null) index:0x0 [ 30.016606] flags: 0x8000000000000000() [ 30.020657] page dumped because: kasan: bad access detected [ 30.026328] [ 30.027920] Memory state around the buggy address: [ 30.032815] ffff8801d0877c00: 00 00 00 00 00 04 f2 f2 f2 f2 f2 f2 00 00 00 00 [ 30.040141] ffff8801d0877c80: 00 00 00 00 f2 f2 f2 f2 00 00 00 00 00 00 00 00 [ 30.047473] >ffff8801d0877d00: 04 f2 f2 f2 00 00 00 00 00 00 00 00 00 00 00 00 [ 30.054794] ^ [ 30.058125] ffff8801d0877d80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 30.065461] ffff8801d0877e00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 30.072794] ================================================================== [ 30.080117] Kernel panic - not syncing: panic_on_warn set ... [ 30.080117] [ 30.087447] CPU: 0 PID: 3469 Comm: syzkaller968690 Tainted: G B 4.4.107-g610c835 #12 [ 30.096419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 30.105745] 0000000000000000 32c3afb9a0a8afa3 ffff8801d08776b0 ffffffff81d0457d [ 30.113705] ffffffff83fb2cde ffff8801d0877788 0000000000000000 ffff8801d0877d04 [ 30.121668] ffffffff856b29c0 ffff8801d0877778 ffffffff8141774a 0000000041b58ab3 [ 30.129622] Call Trace: [ 30.132176] [] dump_stack+0xc1/0x124 [ 30.137513] [] panic+0x1aa/0x388 [ 30.142500] [] ? percpu_up_read.constprop.45+0xe1/0xe1 [ 30.149395] [] ? pm_qos_get_value.part.4+0xb/0xb [ 30.155764] [] kasan_end_report+0x50/0x50 [ 30.161526] [] kasan_report+0x15c/0x370 [ 30.167116] [] ? strnlen+0xc1/0xd0 [ 30.172283] [] __asan_report_load1_noabort+0x14/0x20 [ 30.179001] [] strnlen+0xc1/0xd0 [ 30.183989] [] string.isra.4+0x4c/0x240 [ 30.189581] [] ? format_decode+0x118/0xa50 [ 30.195437] [] vsnprintf+0x766/0x15f0 [ 30.200854] [] ? pointer.isra.22+0xa00/0xa00 [ 30.206876] [] vscnprintf+0x2d/0x60 [ 30.212135] [] vprintk_emit+0xdb/0x850 [ 30.217637] [] ? mark_held_locks+0xaf/0x100 [ 30.223572] [] vprintk+0x28/0x30 [ 30.228563] [] vprintk_default+0x1d/0x30 [ 30.234240] [] printk+0xb7/0xe2 [ 30.239134] [] ? pm_qos_get_value.part.4+0xb/0xb [ 30.245508] [] ? __ww_mutex_lock+0x14f0/0x14f0 [ 30.251707] [] do_ip_vs_set_ctl+0x9b7/0xba0 [ 30.257644] [] ? ip_vs_genl_set_cmd+0x9a0/0x9a0 [ 30.263928] [] ? __lock_is_held+0xa1/0xf0 [ 30.269692] [] ? mark_held_locks+0xaf/0x100 [ 30.275635] [] ? mutex_lock_nested+0x5d4/0x850 [ 30.281841] [] ? trace_hardirqs_on_caller+0x38b/0x590 [ 30.288647] [] ? mutex_unlock+0x9/0x10 [ 30.294237] [] ? nf_sockopt_find.constprop.0+0x1a7/0x220 [ 30.301312] [] nf_setsockopt+0x67/0xc0 [ 30.306824] [] ip_setsockopt+0xa1/0xb0 [ 30.312330] [] udp_setsockopt+0x45/0x80 [ 30.317921] [] sock_common_setsockopt+0x95/0xd0 [ 30.324206] [] SyS_setsockopt+0x160/0x250 [ 30.329971] [] ? vmacache_update+0xfe/0x130 [ 30.335916] [] ? SyS_recv+0x40/0x40 [ 30.341157] [] ? retint_user+0x18/0x20 [ 30.346668] [] ? trace_hardirqs_on_thunk+0x17/0x19 [ 30.353215] [] entry_SYSCALL_64_fastpath+0x16/0x76 [ 30.359802] Dumping ftrace buffer: [ 30.363306] (ftrace buffer empty) [ 30.366982] Kernel Offset: disabled [ 30.370571] Rebooting in 86400 seconds..