[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 27.838501] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. [ 28.674260] random: sshd: uninitialized urandom read (32 bytes read) [ 28.949456] random: sshd: uninitialized urandom read (32 bytes read) Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 30.126930] random: sshd: uninitialized urandom read (32 bytes read) [ 42.547626] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.0.59' (ECDSA) to the list of known hosts. [ 47.972906] random: sshd: uninitialized urandom read (32 bytes read) 2018/06/09 16:29:09 parsed 1 programs [ 49.085367] random: cc1: uninitialized urandom read (8 bytes read) 2018/06/09 16:29:10 executed programs: 0 [ 49.958970] IPVS: ftp: loaded support on port[0] = 21 [ 49.962549] IPVS: ftp: loaded support on port[0] = 21 [ 49.966499] IPVS: ftp: loaded support on port[0] = 21 [ 49.973725] IPVS: ftp: loaded support on port[0] = 21 [ 50.004605] IPVS: ftp: loaded support on port[0] = 21 [ 50.035416] IPVS: ftp: loaded support on port[0] = 21 [ 50.035664] IPVS: ftp: loaded support on port[0] = 21 [ 50.047574] IPVS: ftp: loaded support on port[0] = 21 [ 50.223131] ip (4523) used greatest stack depth: 54424 bytes left [ 50.355097] ================================================================== [ 50.362485] BUG: KMSAN: uninit-value in __list_add_valid+0x1b8/0x450 [ 50.368957] CPU: 1 PID: 4552 Comm: ip Not tainted 4.17.0+ #5 [ 50.374746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 50.384074] Call Trace: [ 50.386639] dump_stack+0x185/0x1d0 [ 50.390245] kmsan_report+0x188/0x2a0 [ 50.394026] __msan_warning_32+0x70/0xc0 [ 50.398062] __list_add_valid+0x1b8/0x450 [ 50.402195] enqueue_task_fair+0xe12/0x4490 [ 50.406497] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 50.411848] ? update_load_avg+0x2cc0/0x2cc0 [ 50.416233] try_to_wake_up+0x162f/0x2260 [ 50.420362] wake_up_process+0x34/0x40 [ 50.424235] __queue_work+0x1b57/0x1f00 [ 50.428188] queue_work_on+0x1a5/0x1c0 [ 50.432052] pcpu_alloc+0x1535/0x2040 [ 50.435830] __alloc_percpu+0x7a/0x90 [ 50.439608] ipv6_add_dev+0x7e4/0x1ee0 [ 50.443474] ? __msan_poison_alloca+0x15c/0x1d0 [ 50.448119] ? raw_notifier_call_chain+0x13e/0x240 [ 50.453024] ? raw_notifier_call_chain+0x13e/0x240 [ 50.457928] addrconf_notify+0x420/0x5930 [ 50.462050] ? __msan_poison_alloca+0x15c/0x1d0 [ 50.466703] ? _cond_resched+0x3c/0xd0 [ 50.470569] ? rcu_all_qs+0x32/0x1f0 [ 50.474257] ? _cond_resched+0x3c/0xd0 [ 50.478128] ? rcu_all_qs+0x32/0x1f0 [ 50.481822] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 50.487159] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 50.492506] ? dev_forward_change+0xb60/0xb60 [ 50.496976] raw_notifier_call_chain+0x13e/0x240 [ 50.501711] register_netdevice+0x2178/0x2720 [ 50.506183] bond_newlink+0x107/0x1c0 [ 50.509967] ? bond_validate+0x220/0x220 [ 50.514000] rtnl_newlink+0x2721/0x37a0 [ 50.517949] ? rtnl_newlink+0xca5/0x37a0 [ 50.521986] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 50.527328] ? strcmp+0x83/0x160 [ 50.530669] ? rtnl_newlink+0xb4c/0x37a0 [ 50.534703] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 50.540046] ? rtnl_newlink+0xb64/0x37a0 [ 50.544092] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 50.549440] ? rtnl_setlink+0x770/0x770 [ 50.553388] rtnetlink_rcv_msg+0xa44/0x1570 [ 50.557688] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 50.563027] ? netlink_sendmsg+0x76e/0x1350 [ 50.567332] ? ___sys_sendmsg+0xec8/0x1320 [ 50.571538] ? __x64_sys_sendmsg+0x331/0x460 [ 50.575920] ? do_syscall_64+0x15b/0x230 [ 50.579958] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 50.585317] ? kmsan_set_origin_inline+0x6b/0x120 [ 50.590137] ? kmsan_set_origin_inline+0x6b/0x120 [ 50.594959] ? kmsan_set_origin+0x9e/0x160 [ 50.599174] netlink_rcv_skb+0x37e/0x600 [ 50.603210] ? rtnetlink_bind+0x120/0x120 [ 50.607419] rtnetlink_rcv+0x50/0x60 [ 50.611106] netlink_unicast+0x1680/0x1750 [ 50.615341] ? rtnetlink_net_exit+0xa0/0xa0 [ 50.619640] netlink_sendmsg+0x104f/0x1350 [ 50.623862] ? netlink_getsockopt+0xc60/0xc60 [ 50.628332] ___sys_sendmsg+0xec8/0x1320 [ 50.632374] ? __fdget+0x4e/0x60 [ 50.635714] ? __fget_light+0x57/0x700 [ 50.639573] ? __fdget+0x4e/0x60 [ 50.642911] ? __fget_light+0x1dc/0x700 [ 50.646862] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 50.652208] ? __fget_light+0x1f5/0x700 [ 50.656162] __x64_sys_sendmsg+0x331/0x460 [ 50.660373] ? ___sys_sendmsg+0x1320/0x1320 [ 50.664681] do_syscall_64+0x15b/0x230 [ 50.668549] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 50.673715] RIP: 0033:0x7f03df3a5320 [ 50.677408] RSP: 002b:00007ffcf4ffbd38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 50.685096] RAX: ffffffffffffffda RBX: 00007ffcf4fffe30 RCX: 00007f03df3a5320 [ 50.692343] RDX: 0000000000000000 RSI: 00007ffcf4ffbd70 RDI: 0000000000000003 [ 50.699677] RBP: 00007ffcf4ffbd70 R08: 0000000000000000 R09: 00007f03df6540b0 [ 50.707021] R10: 0000000000000000 R11: 0000000000000246 R12: 000000005b1c0059 [ 50.714269] R13: 0000000000000000 R14: 00000000006395c0 R15: 00007ffcf5000610 [ 50.721521] [ 50.723122] Uninit was stored to memory at: [ 50.727422] kmsan_internal_chain_origin+0x12b/0x210 [ 50.732496] __msan_chain_origin+0x69/0xc0 [ 50.736705] pick_next_task_fair+0x2474/0x2530 [ 50.741259] pick_next_task+0x1ba/0x420 [ 50.745210] __schedule+0x20f/0x770 [ 50.748811] do_task_dead+0xc8/0xf0 [ 50.752412] do_exit+0x347e/0x3930 [ 50.755926] do_group_exit+0x1a0/0x360 [ 50.759787] __do_sys_exit_group+0x21/0x30 [ 50.763994] __se_sys_exit_group+0x14/0x20 [ 50.768204] __x64_sys_exit_group+0x4c/0x50 [ 50.772497] do_syscall_64+0x15b/0x230 [ 50.776362] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 50.782390] Local variable description: ----flags.i.i.i.i@_raw_spin_lock_irqsave [ 50.789894] Variable was created at: [ 50.793583] _raw_spin_lock_irqsave+0x45/0xf0 [ 50.798061] do_task_dead+0x40/0xf0 [ 50.801665] ================================================================== [ 50.808997] Disabling lock debugging due to kernel taint [ 50.814437] Kernel panic - not syncing: panic_on_warn set ... [ 50.814437] [ 50.821791] CPU: 1 PID: 4552 Comm: ip Tainted: G B 4.17.0+ #5 [ 50.828949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 50.838277] Call Trace: [ 50.840843] dump_stack+0x185/0x1d0 [ 50.844460] panic+0x3d0/0x990 [ 50.847631] kmsan_report+0x29e/0x2a0 [ 50.851408] __msan_warning_32+0x70/0xc0 [ 50.857458] __list_add_valid+0x1b8/0x450 [ 50.861583] enqueue_task_fair+0xe12/0x4490 [ 50.865890] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 50.871232] ? update_load_avg+0x2cc0/0x2cc0 [ 50.875634] try_to_wake_up+0x162f/0x2260 [ 50.879768] wake_up_process+0x34/0x40 [ 50.883632] __queue_work+0x1b57/0x1f00 [ 50.887585] queue_work_on+0x1a5/0x1c0 [ 50.891535] pcpu_alloc+0x1535/0x2040 [ 50.895323] __alloc_percpu+0x7a/0x90 [ 50.899101] ipv6_add_dev+0x7e4/0x1ee0 [ 50.902961] ? __msan_poison_alloca+0x15c/0x1d0 [ 50.907609] ? raw_notifier_call_chain+0x13e/0x240 [ 50.912514] ? raw_notifier_call_chain+0x13e/0x240 [ 50.917421] addrconf_notify+0x420/0x5930 [ 50.921542] ? __msan_poison_alloca+0x15c/0x1d0 [ 50.926184] ? _cond_resched+0x3c/0xd0 [ 50.930049] ? rcu_all_qs+0x32/0x1f0 [ 50.933740] ? _cond_resched+0x3c/0xd0 [ 50.937604] ? rcu_all_qs+0x32/0x1f0 [ 50.941303] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 50.946640] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 50.952160] ? dev_forward_change+0xb60/0xb60 [ 50.956720] raw_notifier_call_chain+0x13e/0x240 [ 50.961454] register_netdevice+0x2178/0x2720 [ 50.965938] bond_newlink+0x107/0x1c0 [ 50.969724] ? bond_validate+0x220/0x220 [ 50.973761] rtnl_newlink+0x2721/0x37a0 [ 50.978349] ? rtnl_newlink+0xca5/0x37a0 [ 50.982400] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 50.987745] ? strcmp+0x83/0x160 [ 50.991084] ? rtnl_newlink+0xb4c/0x37a0 [ 50.995129] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 51.000469] ? rtnl_newlink+0xb64/0x37a0 [ 51.004507] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 51.009853] ? rtnl_setlink+0x770/0x770 [ 51.013803] rtnetlink_rcv_msg+0xa44/0x1570 [ 51.018105] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 51.023445] ? netlink_sendmsg+0x76e/0x1350 [ 51.027756] ? ___sys_sendmsg+0xec8/0x1320 [ 51.031968] ? __x64_sys_sendmsg+0x331/0x460 [ 51.036352] ? do_syscall_64+0x15b/0x230 [ 51.040389] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 51.045730] ? kmsan_set_origin_inline+0x6b/0x120 [ 51.050548] ? kmsan_set_origin_inline+0x6b/0x120 [ 51.055369] ? kmsan_set_origin+0x9e/0x160 [ 51.059581] netlink_rcv_skb+0x37e/0x600 [ 51.063625] ? rtnetlink_bind+0x120/0x120 [ 51.067749] rtnetlink_rcv+0x50/0x60 [ 51.071435] netlink_unicast+0x1680/0x1750 [ 51.075658] ? rtnetlink_net_exit+0xa0/0xa0 [ 51.079954] netlink_sendmsg+0x104f/0x1350 [ 51.084166] ? netlink_getsockopt+0xc60/0xc60 [ 51.088634] ___sys_sendmsg+0xec8/0x1320 [ 51.092682] ? __fdget+0x4e/0x60 [ 51.096023] ? __fget_light+0x57/0x700 [ 51.099885] ? __fdget+0x4e/0x60 [ 51.103225] ? __fget_light+0x1dc/0x700 [ 51.107184] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 51.112520] ? __fget_light+0x1f5/0x700 [ 51.116470] __x64_sys_sendmsg+0x331/0x460 [ 51.120684] ? ___sys_sendmsg+0x1320/0x1320 [ 51.124980] do_syscall_64+0x15b/0x230 [ 51.128845] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 51.134020] RIP: 0033:0x7f03df3a5320 [ 51.137703] RSP: 002b:00007ffcf4ffbd38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 51.145386] RAX: ffffffffffffffda RBX: 00007ffcf4fffe30 RCX: 00007f03df3a5320 [ 51.152629] RDX: 0000000000000000 RSI: 00007ffcf4ffbd70 RDI: 0000000000000003 [ 51.159874] RBP: 00007ffcf4ffbd70 R08: 0000000000000000 R09: 00007f03df6540b0 [ 51.167119] R10: 0000000000000000 R11: 0000000000000246 R12: 000000005b1c0059 [ 51.174362] R13: 0000000000000000 R14: 00000000006395c0 R15: 00007ffcf5000610 [ 52.270365] Shutting down cpus with NMI [ 52.286576] Dumping ftrace buffer: [ 52.290143] (ftrace buffer empty) [ 52.293836] Kernel Offset: disabled [ 52.297447] Rebooting in 86400 seconds..