[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 31.814788] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 35.427181] random: sshd: uninitialized urandom read (32 bytes read) [ 35.872312] random: sshd: uninitialized urandom read (32 bytes read) [ 37.087958] random: sshd: uninitialized urandom read (32 bytes read) [ 37.315476] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.10.22' (ECDSA) to the list of known hosts. [ 42.923676] random: sshd: uninitialized urandom read (32 bytes read) executing program [ 43.555682] ================================================================== [ 43.563198] BUG: KMSAN: kernel-infoleak in snd_pcm_oss_read+0x78b/0x1b30 [ 43.570077] CPU: 1 PID: 4532 Comm: syz-executor007 Not tainted 4.17.0+ #16 [ 43.577141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 43.586499] Call Trace: [ 43.589095] dump_stack+0x185/0x1d0 [ 43.592726] kmsan_report+0x188/0x2a0 [ 43.596517] kmsan_internal_check_memory+0x17e/0x1f0 [ 43.601622] kmsan_copy_to_user+0x7a/0x160 [ 43.605860] snd_pcm_oss_read+0x78b/0x1b30 [ 43.610102] ? snd_pcm_oss_unregister_minor+0x4d0/0x4d0 [ 43.615458] __vfs_read+0x1b2/0x9d0 [ 43.619092] vfs_read+0x36c/0x6b0 [ 43.622537] __x64_sys_read+0x1bf/0x3e0 [ 43.626505] ? ksys_read+0x360/0x360 [ 43.630210] do_syscall_64+0x15b/0x230 [ 43.634082] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 43.639263] RIP: 0033:0x440049 [ 43.642432] RSP: 002b:00007ffe24ff0758 EFLAGS: 00000203 ORIG_RAX: 0000000000000000 [ 43.650120] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 0000000000440049 [ 43.657472] RDX: 00000000000000fa RSI: 0000000020000300 RDI: 0000000000000003 [ 43.664722] RBP: 00000000006ca018 R08: 00000000004002c8 R09: 00000000004002c8 [ 43.671971] R10: 00000000004002c8 R11: 0000000000000203 R12: 00000000004018d0 [ 43.679228] R13: 0000000000401960 R14: 0000000000000000 R15: 0000000000000000 [ 43.686477] [ 43.688088] Uninit was created at: [ 43.691611] kmsan_alloc_meta_for_pages+0x166/0x3b0 [ 43.696600] kmsan_alloc_page+0x82/0xe0 [ 43.700552] __alloc_pages_nodemask+0xf7b/0x5cc0 [ 43.705291] alloc_pages_current+0x6b1/0x970 [ 43.709678] __vmalloc_node_range+0x8bf/0x1170 [ 43.714239] vmalloc+0xd8/0xf0 [ 43.717409] snd_pcm_oss_change_params_locked+0x631b/0x6940 [ 43.723108] snd_pcm_oss_read+0x4ad/0x1b30 [ 43.727320] __vfs_read+0x1b2/0x9d0 [ 43.730921] vfs_read+0x36c/0x6b0 [ 43.734359] __x64_sys_read+0x1bf/0x3e0 [ 43.738310] do_syscall_64+0x15b/0x230 [ 43.742174] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 43.747336] [ 43.748939] Bytes 0-249 of 250 are uninitialized [ 43.753670] Memory access starts at ffffc900018c3000 [ 43.758745] ================================================================== [ 43.766075] Disabling lock debugging due to kernel taint [ 43.771508] Kernel panic - not syncing: panic_on_warn set ... [ 43.771508] [ 43.778847] CPU: 1 PID: 4532 Comm: syz-executor007 Tainted: G B 4.17.0+ #16 [ 43.787223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 43.796552] Call Trace: [ 43.799127] dump_stack+0x185/0x1d0 [ 43.802732] panic+0x3d0/0x990 [ 43.805913] kmsan_report+0x29e/0x2a0 [ 43.809690] kmsan_internal_check_memory+0x17e/0x1f0 [ 43.814776] kmsan_copy_to_user+0x7a/0x160 [ 43.819009] snd_pcm_oss_read+0x78b/0x1b30 [ 43.823229] ? snd_pcm_oss_unregister_minor+0x4d0/0x4d0 [ 43.828574] __vfs_read+0x1b2/0x9d0 [ 43.832183] vfs_read+0x36c/0x6b0 [ 43.835615] __x64_sys_read+0x1bf/0x3e0 [ 43.839566] ? ksys_read+0x360/0x360 [ 43.843259] do_syscall_64+0x15b/0x230 [ 43.847133] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 43.852299] RIP: 0033:0x440049 [ 43.855471] RSP: 002b:00007ffe24ff0758 EFLAGS: 00000203 ORIG_RAX: 0000000000000000 [ 43.863241] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 0000000000440049 [ 43.870491] RDX: 00000000000000fa RSI: 0000000020000300 RDI: 0000000000000003 [ 43.877735] RBP: 00000000006ca018 R08: 00000000004002c8 R09: 00000000004002c8 [ 43.884997] R10: 00000000004002c8 R11: 0000000000000203 R12: 00000000004018d0 [ 43.892243] R13: 0000000000401960 R14: 0000000000000000 R15: 0000000000000000 [ 43.900087] Dumping ftrace buffer: [ 43.903608] (ftrace buffer empty) [ 43.907294] Kernel Offset: disabled [ 43.910895] Rebooting in 86400 seconds..