[....] Starting periodic command scheduler: cron�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[ 30.316544] random: sshd: uninitialized urandom read (32 bytes read)
�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
Debian GNU/Linux 7 syzkaller ttyS0
syzkaller login: [ 32.483638] random: sshd: uninitialized urandom read (32 bytes read)
[ 32.844133] random: sshd: uninitialized urandom read (32 bytes read)
[ 34.004617] random: sshd: uninitialized urandom read (32 bytes read)
[ 34.211486] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.0.58' (ECDSA) to the list of known hosts.
[ 39.772683] random: sshd: uninitialized urandom read (32 bytes read)
[ 39.883166] IPVS: ftp: loaded support on port[0] = 21
[ 40.023295] ip (4530) used greatest stack depth: 54328 bytes left
[ 40.055222] bridge0: port 1(bridge_slave_0) entered blocking state
[ 40.061665] bridge0: port 1(bridge_slave_0) entered disabled state
[ 40.069145] device bridge_slave_0 entered promiscuous mode
[ 40.090270] bridge0: port 2(bridge_slave_1) entered blocking state
[ 40.096717] bridge0: port 2(bridge_slave_1) entered disabled state
[ 40.104012] device bridge_slave_1 entered promiscuous mode
[ 40.124600] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[ 40.146150] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[ 40.205768] bond0: Enslaving bond_slave_0 as an active interface with an up link
[ 40.230117] bond0: Enslaving bond_slave_1 as an active interface with an up link
[ 40.322578] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[ 40.329868] team0: Port device team_slave_0 added
[ 40.350199] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[ 40.357711] team0: Port device team_slave_1 added
[ 40.379330] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 40.403511] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 40.422812] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 40.448591] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
RTNETLINK answers: Operation not supported
RTNETLINK answers: No buffer space available
RTNETLINK answers: Operation not supported
[ 40.645584] bridge0: port 2(bridge_slave_1) entered blocking state
[ 40.652125] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 40.658901] bridge0: port 1(bridge_slave_0) entered blocking state
[ 40.665364] bridge0: port 1(bridge_slave_0) entered forwarding state
RTNETLINK answers: Operation not supported
RTNETLINK answers: Operation not supported
RTNETLINK answers: Operation not supported
RTNETLINK answers: Invalid argument
RTNETLINK answers: Invalid argument
RTNETLINK answers: Invalid argument
[ 41.330232] 8021q: adding VLAN 0 to HW filter on device bond0
[ 41.395381] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[ 41.482514] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[ 41.488939] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 41.497221] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 41.573523] 8021q: adding VLAN 0 to HW filter on device team0
executing program
[ 41.943639] ==================================================================
[ 41.951047] BUG: KMSAN: uninit-value in IP6_ECN_decapsulate+0x421/0x970
[ 41.957790] CPU: 0 PID: 4515 Comm: syz-executor162 Not tainted 4.17.0+ #8
[ 41.964884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 41.974223] Call Trace:
[ 41.976787]
[ 41.978921] dump_stack+0x185/0x1d0
[ 41.982550] kmsan_report+0x188/0x2a0
[ 41.986525] __msan_warning_32+0x70/0xc0
[ 41.990568] IP6_ECN_decapsulate+0x421/0x970
[ 41.994956] ip6ip6_dscp_ecn_decapsulate+0x1e0/0x250
[ 42.000054] __ip6_tnl_rcv+0xff9/0x1a10
[ 42.004026] ? __ip6_tnl_rcv+0x1a10/0x1a10
[ 42.008252] ip6_tnl_rcv+0xe6/0x110
[ 42.011862] gre_rcv+0x1661/0x1a90
[ 42.015386] ? ip6erspan_tunnel_xmit+0x3200/0x3200
[ 42.020302] ip6_input_finish+0x1353/0x2260
[ 42.024610] ? ip6_input_finish+0xf71/0x2260
[ 42.029005] ip6_input+0x294/0x320
[ 42.032535] ? ip6_input+0x320/0x320
[ 42.039720] ? ipv6_rcv+0x2360/0x2360
[ 42.043502] ip6_rcv_finish+0x498/0x6e0
[ 42.047457] ipv6_rcv+0x1d6b/0x2360
[ 42.051067] ? local_bh_enable+0x40/0x40
[ 42.055113] __netif_receive_skb_core+0x47f3/0x4aa0
[ 42.060111] ? timerqueue_add+0x35f/0x4f0
[ 42.064244] ? ip6_rcv_finish+0x6e0/0x6e0
[ 42.068375] process_backlog+0x62d/0xe20
[ 42.072421] ? rps_trigger_softirq+0x2f0/0x2f0
[ 42.076999] net_rx_action+0x766/0x1a80
[ 42.080973] ? net_tx_action+0xad0/0xad0
[ 42.085023] __do_softirq+0x592/0x979
[ 42.088814] do_softirq_own_stack+0x2a/0x40
[ 42.093110]
[ 42.095332] __local_bh_enable_ip+0x114/0x140
[ 42.099839] local_bh_enable+0x36/0x40
[ 42.103713] ip6_finish_output2+0x1ce8/0x2100
[ 42.108201] ? __flow_hash_from_keys+0x986/0x1150
[ 42.113048] ip6_finish_output+0xaf0/0xbb0
[ 42.117276] ip6_output+0x597/0x6c0
[ 42.120900] ? __ip6_local_out+0x730/0x730
[ 42.125146] ? ac6_seq_show+0x200/0x200
[ 42.129128] ip6_local_out+0x164/0x1d0
[ 42.133022] ip6_push_pending_frames+0x218/0x4d0
[ 42.137802] rawv6_sendmsg+0x4254/0x4fc0
[ 42.141854] ? __msan_metadata_ptr_for_store_2+0x13/0x20
[ 42.147302] ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 42.152741] ? ip6_sk_dst_store_flow+0x6c8/0x830
[ 42.157524] ? compat_rawv6_ioctl+0x100/0x100
[ 42.162019] inet_sendmsg+0x3fc/0x760
[ 42.165873] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 42.171544] ? inet_getname+0x4a0/0x4a0
[ 42.175516] sock_write_iter+0x3bc/0x470
[ 42.179572] ? sock_read_iter+0x480/0x480
[ 42.183711] __vfs_write+0x808/0x9f0
[ 42.187444] vfs_write+0x467/0x8c0
[ 42.190995] __x64_sys_write+0x1bf/0x3e0
[ 42.195072] ? ksys_write+0x360/0x360
[ 42.198875] do_syscall_64+0x15b/0x230
[ 42.202754] entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 42.207931] RIP: 0033:0x441199
[ 42.211105] RSP: 002b:00007fff83b55688 EFLAGS: 00000217 ORIG_RAX: 0000000000000001
[ 42.218799] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441199
[ 42.226063] RDX: 0000000000000004 RSI: 00000000200001c0 RDI: 0000000000000003
[ 42.233415] RBP: 00000000006cc018 R08: 0000000000000000 R09: 0000000000000000
[ 42.240677] R10: 0000000000000000 R11: 0000000000000217 R12: 00000000004020a0
[ 42.247930] R13: 0000000000402130 R14: 0000000000000000 R15: 0000000000000000
[ 42.255183]
[ 42.256796] Uninit was created at:
[ 42.260319] kmsan_internal_poison_shadow+0xb8/0x1b0
[ 42.265411] kmsan_kmalloc+0x94/0x100
[ 42.269202] kmsan_slab_alloc+0x10/0x20
[ 42.273178] __kmalloc_node_track_caller+0xb35/0x11b0
[ 42.278353] __alloc_skb+0x2cb/0x9e0
[ 42.282050] __ip6_append_data+0x364d/0x4fb0
[ 42.286436] ip6_append_data+0x40e/0x6b0
[ 42.290483] rawv6_sendmsg+0x2756/0x4fc0
[ 42.294611] inet_sendmsg+0x3fc/0x760
[ 42.298398] sock_write_iter+0x3bc/0x470
[ 42.302451] __vfs_write+0x808/0x9f0
[ 42.306171] vfs_write+0x467/0x8c0
[ 42.309718] __x64_sys_write+0x1bf/0x3e0
[ 42.313808] do_syscall_64+0x15b/0x230
[ 42.317695] entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 42.322885] ==================================================================
[ 42.330231] Disabling lock debugging due to kernel taint
[ 42.335670] Kernel panic - not syncing: panic_on_warn set ...
[ 42.335670]
[ 42.343026] CPU: 0 PID: 4515 Comm: syz-executor162 Tainted: G B 4.17.0+ #8
[ 42.351329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 42.360682] Call Trace:
[ 42.363251]
[ 42.365399] dump_stack+0x185/0x1d0
[ 42.369042] panic+0x3d0/0x990
[ 42.372262] kmsan_report+0x29e/0x2a0
[ 42.376067] __msan_warning_32+0x70/0xc0
[ 42.380132] IP6_ECN_decapsulate+0x421/0x970
[ 42.384530] ip6ip6_dscp_ecn_decapsulate+0x1e0/0x250
[ 42.389774] __ip6_tnl_rcv+0xff9/0x1a10
[ 42.393768] ? __ip6_tnl_rcv+0x1a10/0x1a10
[ 42.398023] ip6_tnl_rcv+0xe6/0x110
[ 42.401652] gre_rcv+0x1661/0x1a90
[ 42.405189] ? ip6erspan_tunnel_xmit+0x3200/0x3200
[ 42.410118] ip6_input_finish+0x1353/0x2260
[ 42.414537] ? ip6_input_finish+0xf71/0x2260
[ 42.418934] ip6_input+0x294/0x320
[ 42.422567] ? ip6_input+0x320/0x320
[ 42.426283] ? ipv6_rcv+0x2360/0x2360
[ 42.430069] ip6_rcv_finish+0x498/0x6e0
[ 42.434058] ipv6_rcv+0x1d6b/0x2360
[ 42.437692] ? local_bh_enable+0x40/0x40
[ 42.441753] __netif_receive_skb_core+0x47f3/0x4aa0
[ 42.446767] ? timerqueue_add+0x35f/0x4f0
[ 42.450916] ? ip6_rcv_finish+0x6e0/0x6e0
[ 42.455058] process_backlog+0x62d/0xe20
[ 42.459107] ? rps_trigger_softirq+0x2f0/0x2f0
[ 42.463676] net_rx_action+0x766/0x1a80
[ 42.467649] ? net_tx_action+0xad0/0xad0
[ 42.471704] __do_softirq+0x592/0x979
[ 42.475512] do_softirq_own_stack+0x2a/0x40
[ 42.479849]
[ 42.482113] __local_bh_enable_ip+0x114/0x140
[ 42.486625] local_bh_enable+0x36/0x40
[ 42.490517] ip6_finish_output2+0x1ce8/0x2100
[ 42.495018] ? __flow_hash_from_keys+0x986/0x1150
[ 42.499966] ip6_finish_output+0xaf0/0xbb0
[ 42.504191] ip6_output+0x597/0x6c0
[ 42.507814] ? __ip6_local_out+0x730/0x730
[ 42.512090] ? ac6_seq_show+0x200/0x200
[ 42.516072] ip6_local_out+0x164/0x1d0
[ 42.519953] ip6_push_pending_frames+0x218/0x4d0
[ 42.524704] rawv6_sendmsg+0x4254/0x4fc0
[ 42.528753] ? __msan_metadata_ptr_for_store_2+0x13/0x20
[ 42.534207] ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 42.539733] ? ip6_sk_dst_store_flow+0x6c8/0x830
[ 42.544486] ? compat_rawv6_ioctl+0x100/0x100
[ 42.548970] inet_sendmsg+0x3fc/0x760
[ 42.552760] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 42.558118] ? inet_getname+0x4a0/0x4a0
[ 42.562085] sock_write_iter+0x3bc/0x470
[ 42.566139] ? sock_read_iter+0x480/0x480
[ 42.570285] __vfs_write+0x808/0x9f0
[ 42.573997] vfs_write+0x467/0x8c0
[ 42.577553] __x64_sys_write+0x1bf/0x3e0
[ 42.581608] ? ksys_write+0x360/0x360
[ 42.585479] do_syscall_64+0x15b/0x230
[ 42.589359] entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 42.594542] RIP: 0033:0x441199
[ 42.597710] RSP: 002b:00007fff83b55688 EFLAGS: 00000217 ORIG_RAX: 0000000000000001
[ 42.605402] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441199
[ 42.612666] RDX: 0000000000000004 RSI: 00000000200001c0 RDI: 0000000000000003
[ 42.619936] RBP: 00000000006cc018 R08: 0000000000000000 R09: 0000000000000000
[ 42.627311] R10: 0000000000000000 R11: 0000000000000217 R12: 00000000004020a0
[ 42.634699] R13: 0000000000402130 R14: 0000000000000000 R15: 0000000000000000
[ 42.642666] Dumping ftrace buffer:
[ 42.646199] (ftrace buffer empty)
[ 42.649975] Kernel Offset: disabled
[ 42.653582] Rebooting in 86400 seconds..