[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[   31.777754] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   33.180810] random: sshd: uninitialized urandom read (32 bytes read)
[   33.860183] random: sshd: uninitialized urandom read (32 bytes read)
[   35.148400] random: sshd: uninitialized urandom read (32 bytes read)
[   35.388468] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.0.15' (ECDSA) to the list of known hosts.
[   40.918696] random: sshd: uninitialized urandom read (32 bytes read)
executing program
[   41.053314] ==================================================================
[   41.060714] BUG: KMSAN: uninit-value in __sctp_v6_cmp_addr+0x49a/0x850
[   41.067361] CPU: 0 PID: 4453 Comm: syz-executor325 Not tainted 4.17.0-rc3+ #88
[   41.074696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   41.084041] Call Trace:
[   41.086617]  <IRQ>
[   41.088751]  dump_stack+0x185/0x1d0
[   41.092356]  ? __sctp_v6_cmp_addr+0x49a/0x850
[   41.096830]  kmsan_report+0x142/0x240
[   41.100616]  __msan_warning_32+0x6c/0xb0
[   41.104664]  __sctp_v6_cmp_addr+0x49a/0x850
[   41.108966]  sctp_inet6_cmp_addr+0x3dc/0x400
[   41.113355]  ? sctp_inet6_af_supported+0xf0/0xf0
[   41.118096]  sctp_bind_addr_match+0x18b/0x2f0
[   41.122660]  sctp_addrs_lookup_transport+0x904/0xa20
[   41.127743]  sctp_rcv+0x15e6/0x4d30
[   41.131350]  ? raw_local_deliver+0x63/0x1660
[   41.135737]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[   41.141077]  ? raw_local_deliver+0xe2/0x1660
[   41.145464]  ? iptable_nat_ipv4_fn+0xb0/0xb0
[   41.149863]  ? kmsan_set_origin_inline+0x6b/0x120
[   41.154683]  ? sctp_v4_cmp_addr+0x250/0x250
[   41.158989]  ? sctp_csum_combine+0xa0/0xa0
[   41.163204]  ip_local_deliver_finish+0x874/0xec0
[   41.167940]  ip_local_deliver+0x43c/0x4e0
[   41.172076]  ? ip_local_deliver+0x4e0/0x4e0
[   41.176388]  ? ip_call_ra_chain+0x7c0/0x7c0
[   41.180686]  ip_rcv_finish+0xa36/0x1d00
[   41.184642]  ? __msan_metadata_ptr_for_load_2+0x10/0x20
[   41.189980]  ? nf_hook_slow+0x36f/0x3d0
[   41.193937]  ip_rcv+0x118f/0x16d0
[   41.197366]  ? ip_rcv+0x16d0/0x16d0
[   41.200974]  __netif_receive_skb_core+0x47df/0x4a90
[   41.205967]  ? kmsan_set_origin_inline+0x6b/0x120
[   41.210785]  ? kmsan_set_origin_inline+0x40/0x120
[   41.215611]  ? ip_local_deliver_finish+0xec0/0xec0
[   41.220517]  process_backlog+0x62d/0xe20
[   41.224558]  ? rps_trigger_softirq+0x2f0/0x2f0
[   41.229115]  net_rx_action+0x7c1/0x1a70
[   41.233067]  ? net_tx_action+0xab0/0xab0
[   41.237213]  __do_softirq+0x56d/0x93d
[   41.240996]  do_softirq_own_stack+0x2a/0x40
[   41.245290]  </IRQ>
[   41.247503]  __local_bh_enable_ip+0x114/0x140
[   41.251984]  local_bh_enable+0x36/0x40
[   41.255876]  ip_finish_output2+0x135a/0x1470
[   41.260275]  ip_finish_output+0xcb2/0xff0
[   41.264402]  ip_output+0x505/0x5d0
[   41.267929]  ? ip_mc_finish_output+0x3b0/0x3b0
[   41.272498]  ? ip_finish_output+0xff0/0xff0
[   41.276798]  ip_queue_xmit+0x1a1e/0x1d10
[   41.280838]  ? __msan_poison_alloca+0x15c/0x1d0
[   41.285488]  ? sctp_chunk_put+0x29d/0x460
[   41.289619]  sctp_v4_xmit+0x188/0x210
[   41.293397]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[   41.298823]  ? sctp_addr_wq_timeout_handler+0x840/0x840
[   41.304169]  sctp_packet_transmit+0x3eaa/0x4350
[   41.308820]  ? __msan_metadata_ptr_for_store_2+0x13/0x20
[   41.314262]  sctp_outq_flush+0x1a7a/0x6320
[   41.318477]  ? kmsan_set_origin+0x9e/0x160
[   41.322692]  ? kmsan_internal_unpoison_shadow+0x83/0xe0
[   41.328043]  ? process_slab+0x830/0x1f20
[   41.332110]  sctp_outq_uncork+0xd2/0xf0
[   41.336088]  sctp_do_sm+0x8707/0x8d20
[   41.339880]  ? init_wait_entry+0x1a0/0x1a0
[   41.344107]  ? kmsan_set_origin_inline+0x6b/0x120
[   41.348936]  ? __msan_poison_alloca+0x15c/0x1d0
[   41.353590]  sctp_primitive_REQUESTHEARTBEAT+0x175/0x1a0
[   41.359020]  sctp_apply_peer_addr_params+0x207/0x1670
[   41.364192]  sctp_setsockopt+0x10e5f/0x11600
[   41.368583]  ? sctp_shutdown+0x270/0x270
[   41.372623]  sock_common_setsockopt+0x136/0x170
[   41.377267]  ? sock_common_recvmsg+0x270/0x270
[   41.381824]  __sys_setsockopt+0x4af/0x560
[   41.385951]  __x64_sys_setsockopt+0x15c/0x1c0
[   41.390425]  do_syscall_64+0x154/0x220
[   41.394289]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   41.399452] RIP: 0033:0x43fef9
[   41.402618] RSP: 002b:00007ffc00d9bfd8 EFLAGS: 00000207 ORIG_RAX: 0000000000000036
[   41.410301] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 000000000043fef9
[   41.417551] RDX: 0000000000000009 RSI: 0000000000000084 RDI: 0000000000000003
[   41.424796] RBP: 00000000006ca018 R08: 0000000000000098 R09: 000000000000001c
[   41.432048] R10: 0000000020000180 R11: 0000000000000207 R12: 0000000000401820
[   41.439308] R13: 00000000004018b0 R14: 0000000000000000 R15: 0000000000000000
[   41.446565] 
[   41.448169] Local variable description: ----dest@sctp_rcv
[   41.453675] Variable was created at:
[   41.457375]  sctp_rcv+0x13d/0x4d30
[   41.460894]  ip_local_deliver_finish+0x874/0xec0
[   41.465618] ==================================================================
[   41.472946] Disabling lock debugging due to kernel taint
[   41.478369] Kernel panic - not syncing: panic_on_warn set ...
[   41.478369] 
[   41.485708] CPU: 0 PID: 4453 Comm: syz-executor325 Tainted: G    B             4.17.0-rc3+ #88
[   41.494428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   41.503756] Call Trace:
[   41.506315]  <IRQ>
[   41.508444]  dump_stack+0x185/0x1d0
[   41.512052]  panic+0x39d/0x940
[   41.515231]  ? __sctp_v6_cmp_addr+0x49a/0x850
[   41.519704]  kmsan_report+0x238/0x240
[   41.523483]  __msan_warning_32+0x6c/0xb0
[   41.527520]  __sctp_v6_cmp_addr+0x49a/0x850
[   41.531822]  sctp_inet6_cmp_addr+0x3dc/0x400
[   41.536224]  ? sctp_inet6_af_supported+0xf0/0xf0
[   41.540958]  sctp_bind_addr_match+0x18b/0x2f0
[   41.545431]  sctp_addrs_lookup_transport+0x904/0xa20
[   41.550518]  sctp_rcv+0x15e6/0x4d30
[   41.554128]  ? raw_local_deliver+0x63/0x1660
[   41.558510]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[   41.563863]  ? raw_local_deliver+0xe2/0x1660
[   41.568254]  ? iptable_nat_ipv4_fn+0xb0/0xb0
[   41.572636]  ? kmsan_set_origin_inline+0x6b/0x120
[   41.577455]  ? sctp_v4_cmp_addr+0x250/0x250
[   41.581772]  ? sctp_csum_combine+0xa0/0xa0
[   41.585982]  ip_local_deliver_finish+0x874/0xec0
[   41.590717]  ip_local_deliver+0x43c/0x4e0
[   41.594841]  ? ip_local_deliver+0x4e0/0x4e0
[   41.599143]  ? ip_call_ra_chain+0x7c0/0x7c0
[   41.603440]  ip_rcv_finish+0xa36/0x1d00
[   41.607391]  ? __msan_metadata_ptr_for_load_2+0x10/0x20
[   41.612729]  ? nf_hook_slow+0x36f/0x3d0
[   41.616680]  ip_rcv+0x118f/0x16d0
[   41.620117]  ? ip_rcv+0x16d0/0x16d0
[   41.623726]  __netif_receive_skb_core+0x47df/0x4a90
[   41.628717]  ? kmsan_set_origin_inline+0x6b/0x120
[   41.633538]  ? kmsan_set_origin_inline+0x40/0x120
[   41.638361]  ? ip_local_deliver_finish+0xec0/0xec0
[   41.643275]  process_backlog+0x62d/0xe20
[   41.647314]  ? rps_trigger_softirq+0x2f0/0x2f0
[   41.651871]  net_rx_action+0x7c1/0x1a70
[   41.655825]  ? net_tx_action+0xab0/0xab0
[   41.659868]  __do_softirq+0x56d/0x93d
[   41.663654]  do_softirq_own_stack+0x2a/0x40
[   41.667948]  </IRQ>
[   41.670166]  __local_bh_enable_ip+0x114/0x140
[   41.674638]  local_bh_enable+0x36/0x40
[   41.678502]  ip_finish_output2+0x135a/0x1470
[   41.682887]  ip_finish_output+0xcb2/0xff0
[   41.687024]  ip_output+0x505/0x5d0
[   41.690561]  ? ip_mc_finish_output+0x3b0/0x3b0
[   41.695127]  ? ip_finish_output+0xff0/0xff0
[   41.699423]  ip_queue_xmit+0x1a1e/0x1d10
[   41.703466]  ? __msan_poison_alloca+0x15c/0x1d0
[   41.708111]  ? sctp_chunk_put+0x29d/0x460
[   41.712255]  sctp_v4_xmit+0x188/0x210
[   41.716043]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[   41.721471]  ? sctp_addr_wq_timeout_handler+0x840/0x840
[   41.726820]  sctp_packet_transmit+0x3eaa/0x4350
[   41.731472]  ? __msan_metadata_ptr_for_store_2+0x13/0x20
[   41.736907]  sctp_outq_flush+0x1a7a/0x6320
[   41.741124]  ? kmsan_set_origin+0x9e/0x160
[   41.745349]  ? kmsan_internal_unpoison_shadow+0x83/0xe0
[   41.750688]  ? process_slab+0x830/0x1f20
[   41.754743]  sctp_outq_uncork+0xd2/0xf0
[   41.758694]  sctp_do_sm+0x8707/0x8d20
[   41.762472]  ? init_wait_entry+0x1a0/0x1a0
[   41.766685]  ? kmsan_set_origin_inline+0x6b/0x120
[   41.771506]  ? __msan_poison_alloca+0x15c/0x1d0
[   41.776159]  sctp_primitive_REQUESTHEARTBEAT+0x175/0x1a0
[   41.781589]  sctp_apply_peer_addr_params+0x207/0x1670
[   41.786765]  sctp_setsockopt+0x10e5f/0x11600
[   41.791153]  ? sctp_shutdown+0x270/0x270
[   41.795194]  sock_common_setsockopt+0x136/0x170
[   41.799840]  ? sock_common_recvmsg+0x270/0x270
[   41.804401]  __sys_setsockopt+0x4af/0x560
[   41.808535]  __x64_sys_setsockopt+0x15c/0x1c0
[   41.813009]  do_syscall_64+0x154/0x220
[   41.816887]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   41.822056] RIP: 0033:0x43fef9
[   41.825233] RSP: 002b:00007ffc00d9bfd8 EFLAGS: 00000207 ORIG_RAX: 0000000000000036
[   41.832914] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 000000000043fef9
[   41.840159] RDX: 0000000000000009 RSI: 0000000000000084 RDI: 0000000000000003
[   41.847405] RBP: 00000000006ca018 R08: 0000000000000098 R09: 000000000000001c
[   41.854652] R10: 0000000020000180 R11: 0000000000000207 R12: 0000000000401820
[   41.861898] R13: 00000000004018b0 R14: 0000000000000000 R15: 0000000000000000
[   41.869754] Dumping ftrace buffer:
[   41.873269]    (ftrace buffer empty)
[   41.876954] Kernel Offset: disabled
[   41.880555] Rebooting in 86400 seconds..