[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[   27.191312] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   30.683500] random: sshd: uninitialized urandom read (32 bytes read)
[   31.158297] random: sshd: uninitialized urandom read (32 bytes read)
[   32.257329] random: sshd: uninitialized urandom read (32 bytes read)
[  808.757557] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.10.14' (ECDSA) to the list of known hosts.
[  814.200294] random: sshd: uninitialized urandom read (32 bytes read)
2018/05/28 16:02:05 parsed 1 programs
2018/05/28 16:02:05 executed programs: 0
[  814.737635] IPVS: ftp: loaded support on port[0] = 21
[  814.875453] ip (4500) used greatest stack depth: 54408 bytes left
[  814.904715] bridge0: port 1(bridge_slave_0) entered blocking state
[  814.911178] bridge0: port 1(bridge_slave_0) entered disabled state
[  814.918429] device bridge_slave_0 entered promiscuous mode
[  814.939160] bridge0: port 2(bridge_slave_1) entered blocking state
[  814.945617] bridge0: port 2(bridge_slave_1) entered disabled state
[  814.952938] device bridge_slave_1 entered promiscuous mode
[  814.973020] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  814.993846] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  815.048811] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  815.071523] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  815.157129] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  815.164513] team0: Port device team_slave_0 added
[  815.184001] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  815.191454] team0: Port device team_slave_1 added
[  815.211253] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  815.233314] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  815.256385] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  815.278932] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  815.452088] bridge0: port 2(bridge_slave_1) entered blocking state
[  815.458525] bridge0: port 2(bridge_slave_1) entered forwarding state
[  815.465254] bridge0: port 1(bridge_slave_0) entered blocking state
[  815.471650] bridge0: port 1(bridge_slave_0) entered forwarding state
[  816.106630] 8021q: adding VLAN 0 to HW filter on device bond0
[  816.169270] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  816.176827] ip (4662) used greatest stack depth: 54104 bytes left
[  816.232455] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  816.238688] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  816.246542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  816.302719] 8021q: adding VLAN 0 to HW filter on device team0
2018/05/28 16:02:10 executed programs: 102
2018/05/28 16:02:15 executed programs: 272
2018/05/28 16:02:20 executed programs: 442
2018/05/28 16:02:25 executed programs: 612
2018/05/28 16:02:30 executed programs: 781
2018/05/28 16:02:35 executed programs: 950
2018/05/28 16:02:40 executed programs: 1118
2018/05/28 16:02:45 executed programs: 1286
2018/05/28 16:02:50 executed programs: 1451
2018/05/28 16:02:55 executed programs: 1617
2018/05/28 16:03:00 executed programs: 1783
2018/05/28 16:03:05 executed programs: 1951
2018/05/28 16:03:10 executed programs: 2121
2018/05/28 16:03:15 executed programs: 2289
2018/05/28 16:03:20 executed programs: 2458
2018/05/28 16:03:25 executed programs: 2626
2018/05/28 16:03:30 executed programs: 2794
2018/05/28 16:03:36 executed programs: 2962
2018/05/28 16:03:41 executed programs: 3131
2018/05/28 16:03:46 executed programs: 3301
2018/05/28 16:03:51 executed programs: 3471
2018/05/28 16:03:56 executed programs: 3640
2018/05/28 16:04:01 executed programs: 3807
2018/05/28 16:04:06 executed programs: 3976
2018/05/28 16:04:11 executed programs: 4145
2018/05/28 16:04:16 executed programs: 4314
2018/05/28 16:04:21 executed programs: 4483
2018/05/28 16:04:26 executed programs: 4652
2018/05/28 16:04:31 executed programs: 4822
2018/05/28 16:04:36 executed programs: 4990
2018/05/28 16:04:41 executed programs: 5157
2018/05/28 16:04:46 executed programs: 5325
2018/05/28 16:04:51 executed programs: 5494
2018/05/28 16:04:56 executed programs: 5662
2018/05/28 16:05:01 executed programs: 5831
[  992.224982] random: crng init done
2018/05/28 16:05:06 executed programs: 6000
2018/05/28 16:05:11 executed programs: 6169
2018/05/28 16:05:16 executed programs: 6337
2018/05/28 16:05:21 executed programs: 6505
2018/05/28 16:05:26 executed programs: 6672
2018/05/28 16:05:31 executed programs: 6840
2018/05/28 16:05:36 executed programs: 7008
2018/05/28 16:05:41 executed programs: 7177
2018/05/28 16:05:46 executed programs: 7345
2018/05/28 16:05:51 executed programs: 7514
2018/05/28 16:05:56 executed programs: 7684
2018/05/28 16:06:01 executed programs: 7854
2018/05/28 16:06:06 executed programs: 8023
2018/05/28 16:06:11 executed programs: 8192
2018/05/28 16:06:16 executed programs: 8361
2018/05/28 16:06:21 executed programs: 8530
2018/05/28 16:06:26 executed programs: 8700
2018/05/28 16:06:31 executed programs: 8870
2018/05/28 16:06:36 executed programs: 9040
2018/05/28 16:06:41 executed programs: 9211
2018/05/28 16:06:46 executed programs: 9382
2018/05/28 16:06:51 executed programs: 9552
2018/05/28 16:06:56 executed programs: 9722
2018/05/28 16:07:01 executed programs: 9893
2018/05/28 16:07:06 executed programs: 10064
2018/05/28 16:07:11 executed programs: 10234
2018/05/28 16:07:16 executed programs: 10402
2018/05/28 16:07:21 executed programs: 10571
2018/05/28 16:07:26 executed programs: 10740
2018/05/28 16:07:31 executed programs: 10909
2018/05/28 16:07:36 executed programs: 11079
2018/05/28 16:07:41 executed programs: 11249
2018/05/28 16:07:46 executed programs: 11419
2018/05/28 16:07:51 executed programs: 11587
2018/05/28 16:07:56 executed programs: 11758
2018/05/28 16:08:01 executed programs: 11927
2018/05/28 16:08:06 executed programs: 12098
2018/05/28 16:08:11 executed programs: 12268
2018/05/28 16:08:16 executed programs: 12437
2018/05/28 16:08:21 executed programs: 12606
2018/05/28 16:08:26 executed programs: 12776
2018/05/28 16:08:31 executed programs: 12947
2018/05/28 16:08:36 executed programs: 13119
2018/05/28 16:08:42 executed programs: 13291
[ 1211.887534] ==================================================================
[ 1211.895030] BUG: KMSAN: uninit-value in flush_tlb_func_remote+0xce/0xf0
[ 1211.901801] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 4.17.0-rc5+ #102
[ 1211.908443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1211.917774] Call Trace:
[ 1211.920337]  <IRQ>
[ 1211.922510]  dump_stack+0x185/0x1d0
[ 1211.926121]  ? flush_tlb_func_remote+0xce/0xf0
[ 1211.930691]  kmsan_report+0x149/0x260
[ 1211.934475]  __msan_warning_32+0x6e/0xc0
[ 1211.938518]  flush_tlb_func_remote+0xce/0xf0
[ 1211.942909]  flush_smp_call_function_queue+0x2db/0x5f0
[ 1211.948167]  ? native_flush_tlb_others+0x4f0/0x4f0
[ 1211.953081]  ? flat_init_apic_ldr+0x160/0x160
[ 1211.957563]  generic_smp_call_function_single_interrupt+0x1f/0x30
[ 1211.963812]  smp_call_function_single_interrupt+0x22f/0x3d0
[ 1211.969507]  call_function_single_interrupt+0xf/0x20
[ 1211.974585]  </IRQ>
[ 1211.976805] RIP: 0010:default_idle+0x1fb/0x3c0
[ 1211.981364] RSP: 0018:ffff8801d8e5fdf0 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff04
[ 1211.989089] RAX: ffff8801fd431f38 RBX: 0000000000000000 RCX: ffff880000000000
[ 1211.996341] RDX: ffff8801fd031f38 RSI: aaaaaaaaaaaab000 RDI: ffffea0000000000
[ 1212.003594] RBP: ffff8801d8e5fe28 R08: 0000000001080020 R09: 0000000000000002
[ 1212.010846] R10: 0000000000000000 R11: 0000000000000004 R12: ffff8801d8e5fe8f
[ 1212.018098] R13: ffff8801d8da57c0 R14: ffff8801d8e5fe8c R15: ffff8801d8da6098
[ 1212.025372]  ? __cpuidle_text_start+0x8/0x8
[ 1212.029677]  arch_cpu_idle+0x20/0x30
[ 1212.033372]  do_idle+0x36d/0x830
[ 1212.036721]  cpu_startup_entry+0x45/0x50
[ 1212.040762]  ? setup_APIC_timer+0x220/0x220
[ 1212.045071]  start_secondary+0x3a2/0x470
[ 1212.049115]  secondary_startup_64+0xa5/0xb0
[ 1212.053421] 
[ 1212.055028] Uninit was stored to memory at:
[ 1212.059389]  kmsan_internal_chain_origin+0x12b/0x210
[ 1212.064473]  __msan_chain_origin+0x69/0xc0
[ 1212.068689]  generic_exec_single+0x499/0x4e0
[ 1212.073080]  smp_call_function_single+0x28c/0x4e0
[ 1212.077908]  smp_call_function_many+0x662/0xdf0
[ 1212.082560]  native_flush_tlb_others+0x4de/0x4f0
[ 1212.087296]  flush_tlb_mm_range+0x32f/0x450
[ 1212.091597]  tlb_flush_mmu_tlbonly+0x1ce/0x5f0
[ 1212.096159]  tlb_finish_mmu+0x202/0x5c0
[ 1212.100115]  ldt_arch_exit_mmap+0x130/0x160
[ 1212.104421]  exit_mmap+0x3ef/0x970
[ 1212.107942]  __mmput+0x158/0x600
[ 1212.111298]  mmput+0xab/0xf0
[ 1212.114298]  exit_mm+0x6ed/0x7a0
[ 1212.117645]  do_exit+0xc01/0x38d0
[ 1212.121082]  do_group_exit+0x1a0/0x360
[ 1212.124953]  get_signal+0xfcb/0x1f40
[ 1212.128645]  do_signal+0xb8/0x1cf0
[ 1212.132166]  prepare_exit_to_usermode+0x271/0x3a0
[ 1212.136987]  syscall_return_slowpath+0xe9/0x700
[ 1212.141634]  do_syscall_64+0x1af/0x230
[ 1212.145504]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1212.150670] Local variable description: ----tlb.i@ldt_arch_exit_mmap
[ 1212.157136] Variable was created at:
[ 1212.160834]  ldt_arch_exit_mmap+0x46/0x160
[ 1212.165051]  exit_mmap+0x3ef/0x970
[ 1212.168566] ==================================================================
[ 1212.175902] Disabling lock debugging due to kernel taint
[ 1212.181341] Kernel panic - not syncing: panic_on_warn set ...
[ 1212.181341] 
[ 1212.188689] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G    B             4.17.0-rc5+ #102
[ 1212.196722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1212.206054] Call Trace:
[ 1212.208616]  <IRQ>
[ 1212.210751]  dump_stack+0x185/0x1d0
[ 1212.214362]  panic+0x39d/0x940
[ 1212.217549]  ? flush_tlb_func_remote+0xce/0xf0
[ 1212.222114]  kmsan_report+0x260/0x260
[ 1212.225897]  __msan_warning_32+0x6e/0xc0
[ 1212.229941]  flush_tlb_func_remote+0xce/0xf0
[ 1212.234347]  flush_smp_call_function_queue+0x2db/0x5f0
[ 1212.239608]  ? native_flush_tlb_others+0x4f0/0x4f0
[ 1212.244528]  ? flat_init_apic_ldr+0x160/0x160
[ 1212.249007]  generic_smp_call_function_single_interrupt+0x1f/0x30
[ 1212.255225]  smp_call_function_single_interrupt+0x22f/0x3d0
[ 1212.260931]  call_function_single_interrupt+0xf/0x20
[ 1212.266023]  </IRQ>
[ 1212.268246] RIP: 0010:default_idle+0x1fb/0x3c0
[ 1212.272807] RSP: 0018:ffff8801d8e5fdf0 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff04
[ 1212.280496] RAX: ffff8801fd431f38 RBX: 0000000000000000 RCX: ffff880000000000
[ 1212.287758] RDX: ffff8801fd031f38 RSI: aaaaaaaaaaaab000 RDI: ffffea0000000000
[ 1212.295009] RBP: ffff8801d8e5fe28 R08: 0000000001080020 R09: 0000000000000002
[ 1212.302271] R10: 0000000000000000 R11: 0000000000000004 R12: ffff8801d8e5fe8f
[ 1212.309522] R13: ffff8801d8da57c0 R14: ffff8801d8e5fe8c R15: ffff8801d8da6098
[ 1212.316784]  ? __cpuidle_text_start+0x8/0x8
[ 1212.321088]  arch_cpu_idle+0x20/0x30
[ 1212.324785]  do_idle+0x36d/0x830
[ 1212.328134]  cpu_startup_entry+0x45/0x50
[ 1212.332178]  ? setup_APIC_timer+0x220/0x220
[ 1212.336482]  start_secondary+0x3a2/0x470
[ 1212.340526]  secondary_startup_64+0xa5/0xb0
[ 1212.345298] Dumping ftrace buffer:
[ 1212.348832]    (ftrace buffer empty)
[ 1212.352517] Kernel Offset: disabled
[ 1212.356119] Rebooting in 86400 seconds..