[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 45.109894] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 48.004218] random: sshd: uninitialized urandom read (32 bytes read) [ 48.454295] random: sshd: uninitialized urandom read (32 bytes read) [ 49.990414] random: sshd: uninitialized urandom read (32 bytes read) [ 50.325033] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.0.9' (ECDSA) to the list of known hosts. [ 56.251884] random: sshd: uninitialized urandom read (32 bytes read) executing program [ 56.417119] ================================================================== [ 56.424513] BUG: KMSAN: uninit-value in aa_fqlookupn_profile+0x33a/0x750 [ 56.431340] CPU: 1 PID: 4549 Comm: syz-executor303 Not tainted 4.19.0-rc4+ #58 [ 56.438687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 56.448025] Call Trace: [ 56.450635] dump_stack+0x2f6/0x430 [ 56.454307] kmsan_report+0x183/0x2b0 [ 56.458098] __msan_warning+0x70/0xc0 [ 56.461889] aa_fqlookupn_profile+0x33a/0x750 [ 56.466385] aa_label_strn_parse+0x179e/0x1f30 [ 56.470973] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 56.476323] ? strlen+0x51/0xa0 [ 56.479609] aa_label_parse+0x11f/0x130 [ 56.483598] aa_change_profile+0x979/0x41d0 [ 56.487944] ? __kmalloc_track_caller+0xc04/0xe50 [ 56.492772] ? memdup_user+0x7c/0x1e0 [ 56.496581] ? __vfs_write+0x1a8/0xa50 [ 56.500496] ? task_kmsan_context_state+0x5e/0x110 [ 56.505415] ? INIT_INT+0xc/0x30 [ 56.508772] ? _raw_spin_lock_irqsave+0x21a/0x310 [ 56.513648] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 56.518998] ? strcmp+0x83/0x160 [ 56.522358] apparmor_setprocattr+0x121a/0x12f0 [ 56.527035] ? apparmor_getprocattr+0x6c0/0x6c0 [ 56.531704] security_setprocattr+0x139/0x210 [ 56.536199] proc_pid_attr_write+0x3f9/0x4e0 [ 56.540600] ? proc_pid_attr_read+0x4d0/0x4d0 [ 56.545086] __vfs_write+0x1a8/0xa50 [ 56.548803] ? __sb_start_write+0x9f/0x2d0 [ 56.553035] vfs_write+0x495/0x8e0 [ 56.556572] __se_sys_write+0x173/0x350 [ 56.560539] __x64_sys_write+0x4a/0x70 [ 56.564412] do_syscall_64+0xb8/0x100 [ 56.568201] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 56.573381] RIP: 0033:0x440059 [ 56.576562] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 56.596147] RSP: 002b:00007ffc90c19af8 EFLAGS: 00000213 ORIG_RAX: 0000000000000001 [ 56.603852] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 0000000000440059 [ 56.611118] RDX: 0000000000000009 RSI: 0000000020000040 RDI: 0000000000000003 [ 56.618375] RBP: 00000000006ca018 R08: 0000000000000000 R09: 00000000004002c8 [ 56.625634] R10: 0000000000000000 R11: 0000000000000213 R12: 00000000004018e0 [ 56.632891] R13: 0000000000401970 R14: 0000000000000000 R15: 0000000000000000 [ 56.640154] [ 56.641761] Local variable description: ----ns_name@aa_fqlookupn_profile [ 56.648750] Variable was created at: [ 56.652452] aa_fqlookupn_profile+0x81/0x750 [ 56.656847] aa_label_strn_parse+0x179e/0x1f30 [ 56.661405] ================================================================== [ 56.668755] Disabling lock debugging due to kernel taint [ 56.674185] Kernel panic - not syncing: panic_on_warn set ... [ 56.674185] [ 56.681539] CPU: 1 PID: 4549 Comm: syz-executor303 Tainted: G B 4.19.0-rc4+ #58 [ 56.690270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 56.699620] Call Trace: [ 56.702201] dump_stack+0x2f6/0x430 [ 56.705822] panic+0x54c/0xaf7 [ 56.709018] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 56.714469] kmsan_report+0x2a8/0x2b0 [ 56.718263] __msan_warning+0x70/0xc0 [ 56.722055] aa_fqlookupn_profile+0x33a/0x750 [ 56.726544] aa_label_strn_parse+0x179e/0x1f30 [ 56.731128] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 56.736482] ? strlen+0x51/0xa0 [ 56.739751] aa_label_parse+0x11f/0x130 [ 56.743715] aa_change_profile+0x979/0x41d0 [ 56.748026] ? __kmalloc_track_caller+0xc04/0xe50 [ 56.752879] ? memdup_user+0x7c/0x1e0 [ 56.756680] ? __vfs_write+0x1a8/0xa50 [ 56.760575] ? task_kmsan_context_state+0x5e/0x110 [ 56.765503] ? INIT_INT+0xc/0x30 [ 56.768858] ? _raw_spin_lock_irqsave+0x21a/0x310 [ 56.773723] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 56.779074] ? strcmp+0x83/0x160 [ 56.782440] apparmor_setprocattr+0x121a/0x12f0 [ 56.787112] ? apparmor_getprocattr+0x6c0/0x6c0 [ 56.791781] security_setprocattr+0x139/0x210 [ 56.796287] proc_pid_attr_write+0x3f9/0x4e0 [ 56.800707] ? proc_pid_attr_read+0x4d0/0x4d0 [ 56.805200] __vfs_write+0x1a8/0xa50 [ 56.808903] ? __sb_start_write+0x9f/0x2d0 [ 56.813136] vfs_write+0x495/0x8e0 [ 56.816711] __se_sys_write+0x173/0x350 [ 56.820705] __x64_sys_write+0x4a/0x70 [ 56.824604] do_syscall_64+0xb8/0x100 [ 56.828417] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 56.833603] RIP: 0033:0x440059 [ 56.836782] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 56.855673] RSP: 002b:00007ffc90c19af8 EFLAGS: 00000213 ORIG_RAX: 0000000000000001 [ 56.863392] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 0000000000440059 [ 56.870657] RDX: 0000000000000009 RSI: 0000000020000040 RDI: 0000000000000003 [ 56.877919] RBP: 00000000006ca018 R08: 0000000000000000 R09: 00000000004002c8 [ 56.885177] R10: 0000000000000000 R11: 0000000000000213 R12: 00000000004018e0 [ 56.892434] R13: 0000000000401970 R14: 0000000000000000 R15: 0000000000000000 [ 56.900253] Kernel Offset: disabled [ 56.903882] Rebooting in 86400 seconds..