[ 17.002582] random: sshd: uninitialized urandom read (32 bytes read, 32 bits of entropy available) [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 21.496236] random: sshd: uninitialized urandom read (32 bytes read, 38 bits of entropy available) [ 21.881466] random: sshd: uninitialized urandom read (32 bytes read, 38 bits of entropy available) [ 22.751377] random: sshd: uninitialized urandom read (32 bytes read, 106 bits of entropy available) [ 22.924225] random: sshd: uninitialized urandom read (32 bytes read, 110 bits of entropy available) Warning: Permanently added 'ci-android-44-kasan-gce-386-1,10.128.0.69' (ECDSA) to the list of known hosts. [ 28.321566] random: sshd: uninitialized urandom read (32 bytes read, 118 bits of entropy available) executing program [ 28.413720] ================================================================== [ 28.421107] BUG: KASAN: stack-out-of-bounds in strlcpy+0x101/0x120 [ 28.427388] Read of size 1 at addr ffff8800b4167acc by task syzkaller894244/3330 [ 28.434883] [ 28.436477] CPU: 0 PID: 3330 Comm: syzkaller894244 Not tainted 4.4.107-g610c835 #4 [ 28.444145] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 28.453471] 0000000000000000 2c8c0363512a7efd ffff8800b41679a8 ffffffff81d0457d [ 28.461413] ffffea0002d059c0 ffff8800b4167acc 0000000000000000 ffff8800b4167acc [ 28.469367] ffff8800b4167bb0 ffff8800b41679e0 ffffffff814fbb23 ffff8800b4167acc [ 28.477320] Call Trace: [ 28.479878] [] dump_stack+0xc1/0x124 [ 28.485208] [] print_address_description+0x73/0x260 [ 28.491836] [] kasan_report+0x285/0x370 [ 28.497425] [] ? strlcpy+0x101/0x120 [ 28.502753] [] __asan_report_load1_noabort+0x14/0x20 [ 28.509474] [] strlcpy+0x101/0x120 [ 28.514644] [] xt_copy_counters_from_user+0x152/0x2c0 [ 28.521448] [] ? xt_compat_target_to_user+0x3a0/0x3a0 [ 28.528257] [] ? mark_held_locks+0xaf/0x100 [ 28.534195] [] ? mutex_lock_nested+0x5d4/0x850 [ 28.540390] [] do_add_counters+0x96/0x590 [ 28.546152] [] ? __do_replace+0x6d0/0x6d0 [ 28.551914] [] ? security_capable+0x8e/0xc0 [ 28.557852] [] ? ns_capable_common+0xcf/0x160 [ 28.563963] [] compat_do_ipt_set_ctl+0xbf/0x150 [ 28.570245] [] compat_nf_setsockopt+0x88/0x130 [ 28.576438] [] ? compat_do_replace.isra.15+0x410/0x410 [ 28.583339] [] compat_ip_setsockopt+0x9d/0xf0 [ 28.589453] [] compat_udp_setsockopt+0x45/0x80 [ 28.595649] [] ? udp_lib_setsockopt+0x560/0x560 [ 28.601931] [] compat_ipv6_setsockopt+0xb2/0x1e0 [ 28.608300] [] inet_csk_compat_setsockopt+0x95/0x120 [ 28.615024] [] ? ipv6_setsockopt+0x150/0x150 [ 28.621055] [] compat_tcp_setsockopt+0x3d/0x70 [ 28.627255] [] compat_sock_common_setsockopt+0xb2/0x140 [ 28.634240] [] ? tcp_setsockopt+0xd0/0xd0 [ 28.640004] [] compat_SyS_setsockopt+0x149/0x290 [ 28.646375] [] ? sock_common_setsockopt+0xd0/0xd0 [ 28.652838] [] ? scm_detach_fds_compat+0x3c0/0x3c0 [ 28.659391] [] ? vmacache_update+0xfe/0x130 [ 28.665330] [] ? do_fast_syscall_32+0xd7/0x890 [ 28.671524] [] ? scm_detach_fds_compat+0x3c0/0x3c0 [ 28.678066] [] do_fast_syscall_32+0x314/0x890 [ 28.684178] [] sysenter_flags_fixed+0xd/0x17 [ 28.690196] [ 28.691788] The buggy address belongs to the page: [ 28.696684] page:ffffea0002d059c0 count:0 mapcount:0 mapping: (null) index:0x0 [ 28.704788] flags: 0x4000000000000000() [ 28.708841] page dumped because: kasan: bad access detected [ 28.714512] [ 28.716105] Memory state around the buggy address: [ 28.721000] ffff8800b4167980: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 28.728324] ffff8800b4167a00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 28.735647] >ffff8800b4167a80: 00 f1 f1 f1 f1 00 00 00 00 04 f2 f2 f2 00 00 00 [ 28.742971] ^ [ 28.748644] ffff8800b4167b00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 28.755966] ffff8800b4167b80: 00 00 f1 f1 f1 f1 00 00 00 00 00 f2 f2 f2 00 00 [ 28.763287] ================================================================== [ 28.770608] Disabling lock debugging due to kernel taint [ 28.781490] Kernel panic - not syncing: panic_on_warn set ... [ 28.781490] [ 28.788854] CPU: 0 PID: 3330 Comm: syzkaller894244 Tainted: G B 4.4.107-g610c835 #4 [ 28.797742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 28.807061] 0000000000000000 2c8c0363512a7efd ffff8800b4167900 ffffffff81d0457d [ 28.815008] ffffffff83fb2cde ffff8800b41679d8 0000000000000000 ffff8800b4167acc [ 28.822953] ffff8800b4167bb0 ffff8800b41679c8 ffffffff8141774a 0000000041b58ab3 [ 28.830897] Call Trace: [ 28.833456] [] dump_stack+0xc1/0x124 [ 28.838787] [] panic+0x1aa/0x388 [ 28.843768] [] ? percpu_up_read.constprop.45+0xe1/0xe1 [ 28.850659] [] ? preempt_schedule_common+0x42/0x70 [ 28.857202] [] ? preempt_schedule+0x24/0x30 [ 28.863138] [] ? ___preempt_schedule+0x12/0x14 [ 28.869335] [] kasan_end_report+0x50/0x50 [ 28.875095] [] kasan_report+0x15c/0x370 [ 28.880684] [] ? strlcpy+0x101/0x120 [ 28.886015] [] __asan_report_load1_noabort+0x14/0x20 [ 28.892731] [] strlcpy+0x101/0x120 [ 28.897893] [] xt_copy_counters_from_user+0x152/0x2c0 [ 28.904695] [] ? xt_compat_target_to_user+0x3a0/0x3a0 [ 28.911501] [] ? mark_held_locks+0xaf/0x100 [ 28.917440] [] ? mutex_lock_nested+0x5d4/0x850 [ 28.923639] [] do_add_counters+0x96/0x590 [ 28.929401] [] ? __do_replace+0x6d0/0x6d0 [ 28.935164] [] ? security_capable+0x8e/0xc0 [ 28.941099] [] ? ns_capable_common+0xcf/0x160 [ 28.947210] [] compat_do_ipt_set_ctl+0xbf/0x150 [ 28.953494] [] compat_nf_setsockopt+0x88/0x130 [ 28.959690] [] ? compat_do_replace.isra.15+0x410/0x410 [ 28.966582] [] compat_ip_setsockopt+0x9d/0xf0 [ 28.972693] [] compat_udp_setsockopt+0x45/0x80 [ 28.978890] [] ? udp_lib_setsockopt+0x560/0x560 [ 28.985184] [] compat_ipv6_setsockopt+0xb2/0x1e0 [ 28.991553] [] inet_csk_compat_setsockopt+0x95/0x120 [ 28.998269] [] ? ipv6_setsockopt+0x150/0x150 [ 29.004296] [] compat_tcp_setsockopt+0x3d/0x70 [ 29.010493] [] compat_sock_common_setsockopt+0xb2/0x140 [ 29.017469] [] ? tcp_setsockopt+0xd0/0xd0 [ 29.023232] [] compat_SyS_setsockopt+0x149/0x290 [ 29.029602] [] ? sock_common_setsockopt+0xd0/0xd0 [ 29.036059] [] ? scm_detach_fds_compat+0x3c0/0x3c0 [ 29.042601] [] ? vmacache_update+0xfe/0x130 [ 29.048537] [] ? do_fast_syscall_32+0xd7/0x890 [ 29.054733] [] ? scm_detach_fds_compat+0x3c0/0x3c0 [ 29.061275] [] do_fast_syscall_32+0x314/0x890 [ 29.067385] [] sysenter_flags_fixed+0xd/0x17 [ 29.073450] Dumping ftrace buffer: [ 29.076957] (ftrace buffer empty) [ 29.080631] Kernel Offset: disabled [ 29.084226] Rebooting in 86400 seconds..