[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[   29.809858] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   32.982593] random: sshd: uninitialized urandom read (32 bytes read)
[   33.512900] random: sshd: uninitialized urandom read (32 bytes read)
[   34.692754] random: sshd: uninitialized urandom read (32 bytes read)
[   90.287841] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.0.16' (ECDSA) to the list of known hosts.
[   95.793195] random: sshd: uninitialized urandom read (32 bytes read)
2018/06/16 18:06:32 parsed 1 programs
[   96.793078] random: cc1: uninitialized urandom read (8 bytes read)
2018/06/16 18:06:33 executed programs: 0
[   97.501097] IPVS: ftp: loaded support on port[0] = 21
[   97.548362] IPVS: ftp: loaded support on port[0] = 21
[   97.560379] IPVS: ftp: loaded support on port[0] = 21
[   97.566872] IPVS: ftp: loaded support on port[0] = 21
[   97.577051] IPVS: ftp: loaded support on port[0] = 21
[   97.580696] IPVS: ftp: loaded support on port[0] = 21
[   97.590634] IPVS: ftp: loaded support on port[0] = 21
[   97.604460] IPVS: ftp: loaded support on port[0] = 21
[   97.999040] ==================================================================
[   98.006437] BUG: KMSAN: uninit-value in __list_add_valid+0x1b8/0x450
[   98.012914] CPU: 1 PID: 4579 Comm: sh Not tainted 4.17.0+ #8
[   98.018685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   98.028022] Call Trace:
[   98.030588]  <IRQ>
[   98.032721]  dump_stack+0x185/0x1d0
[   98.036340]  kmsan_report+0x188/0x2a0
[   98.040122]  __msan_warning_32+0x70/0xc0
[   98.044174]  __list_add_valid+0x1b8/0x450
[   98.048308]  enqueue_task_fair+0xe12/0x4490
[   98.052614]  ? __msan_metadata_ptr_for_load_1+0x10/0x20
[   98.057969]  ? update_load_avg+0x2cc0/0x2cc0
[   98.062364]  try_to_wake_up+0x162f/0x2260
[   98.066498]  wake_up_process+0x34/0x40
[   98.070372]  process_timeout+0x59/0x70
[   98.074252]  call_timer_fn+0x280/0x5d0
[   98.078123]  ? run_local_timers+0x100/0x100
[   98.082430]  __run_timers+0xd96/0x11b0
[   98.086300]  ? run_local_timers+0x100/0x100
[   98.090605]  ? irq_exit+0x202/0x240
[   98.094215]  ? run_timer_softirq+0x14/0x70
[   98.098432]  ? timers_dead_cpu+0x1010/0x1010
[   98.102822]  run_timer_softirq+0x43/0x70
[   98.106865]  __do_softirq+0x592/0x979
[   98.110650]  irq_exit+0x202/0x240
[   98.114086]  exiting_irq+0xe/0x10
[   98.117528]  smp_apic_timer_interrupt+0x64/0x90
[   98.122177]  apic_timer_interrupt+0xf/0x20
[   98.126387]  </IRQ>
[   98.128605] RIP: 0010:__msan_poison_alloca+0x14c/0x1d0
[   98.133854] RSP: 0018:ffff8801b430fc00 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
[   98.141548] RAX: 00000000d3200073 RBX: 00000000d3200073 RCX: ffff8801b430fc40
[   98.148813] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 000000006afb3930
[   98.156064] RBP: ffff8801b430fca0 R08: 0000000001080020 R09: 0000000000000002
[   98.163314] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000
[   98.170567] R13: ffffffff8acc5f70 R14: 0000000000000246 R15: ffff8801aca23a80
[   98.177831]  ? __mmdrop+0x91c/0x930
[   98.181441]  ? kmem_cache_free+0xec/0x2bc0
[   98.185654]  ? __mmdrop+0x91c/0x930
[   98.189261]  ? __mmdrop+0x91c/0x930
[   98.192869]  kmem_cache_free+0xec/0x2bc0
[   98.196913]  ? __mmdrop+0x91c/0x930
[   98.200532]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[   98.205966]  ? destroy_context_ldt+0x61/0x1c0
[   98.210445]  ? __mmdrop+0x8d7/0x930
[   98.214054]  __mmdrop+0x91c/0x930
[   98.217488]  mmdrop+0xc2/0xd0
[   98.220574]  finish_task_switch+0x103/0x270
[   98.224897]  schedule_tail+0x2f/0x360
[   98.228678]  ? task_thread_info+0xd/0x30
[   98.232718]  ? __switch_to+0x330/0x420
[   98.236588]  ret_from_fork+0x8/0x40
[   98.240203] RIP: 0033:0x7f0e07b4ff46
[   98.243908] RSP: 002b:00007ffcf7ef5b30 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[   98.251598] RAX: 0000000000000000 RBX: 00007ffcf7ef5b30 RCX: 00007f0e07b4ff46
[   98.258855] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[   98.266107] RBP: 00007ffcf7ef5b70 R08: 0000000000000000 R09: 000000000000000a
[   98.273358] R10: 00007f0e080469d0 R11: 0000000000000246 R12: 0000000000000000
[   98.280619] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   98.287872] 
[   98.289477] Uninit was stored to memory at:
[   98.293795]  kmsan_internal_chain_origin+0x12b/0x210
[   98.298886]  __msan_chain_origin+0x69/0xc0
[   98.303113]  pick_next_task_fair+0x2474/0x2530
[   98.307673]  pick_next_task+0x1ba/0x420
[   98.311626]  __schedule+0x20f/0x770
[   98.315237]  do_task_dead+0xc8/0xf0
[   98.318844]  do_exit+0x347e/0x3930
[   98.322367]  do_group_exit+0x1a0/0x360
[   98.326237]  __do_sys_exit_group+0x21/0x30
[   98.330459]  __se_sys_exit_group+0x14/0x20
[   98.334678]  __x64_sys_exit_group+0x4c/0x50
[   98.338983]  do_syscall_64+0x15b/0x230
[   98.342856]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   98.348023] 
[   98.349644] Local variable description: ----tlb.i@ldt_arch_exit_mmap
[   98.356112] Variable was created at:
[   98.359812]  ldt_arch_exit_mmap+0x46/0x160
[   98.364030]  exit_mmap+0x410/0x980
[   98.367542] ==================================================================
[   98.374878] Disabling lock debugging due to kernel taint
[   98.380310] Kernel panic - not syncing: panic_on_warn set ...
[   98.380310] 
[   98.387666] CPU: 1 PID: 4579 Comm: sh Tainted: G    B             4.17.0+ #8
[   98.394830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   98.404161] Call Trace:
[   98.406721]  <IRQ>
[   98.408863]  dump_stack+0x185/0x1d0
[   98.412473]  panic+0x3d0/0x990
[   98.415650]  kmsan_report+0x29e/0x2a0
[   98.419433]  __msan_warning_32+0x70/0xc0
[   98.423474]  __list_add_valid+0x1b8/0x450
[   98.427609]  enqueue_task_fair+0xe12/0x4490
[   98.431914]  ? __msan_metadata_ptr_for_load_1+0x10/0x20
[   98.437269]  ? update_load_avg+0x2cc0/0x2cc0
[   98.441658]  try_to_wake_up+0x162f/0x2260
[   98.445794]  wake_up_process+0x34/0x40
[   98.449664]  process_timeout+0x59/0x70
[   98.453539]  call_timer_fn+0x280/0x5d0
[   98.457410]  ? run_local_timers+0x100/0x100
[   98.461717]  __run_timers+0xd96/0x11b0
[   98.465591]  ? run_local_timers+0x100/0x100
[   98.469902]  ? irq_exit+0x202/0x240
[   98.473515]  ? run_timer_softirq+0x14/0x70
[   98.477739]  ? timers_dead_cpu+0x1010/0x1010
[   98.482154]  run_timer_softirq+0x43/0x70
[   98.486199]  __do_softirq+0x592/0x979
[   98.489982]  irq_exit+0x202/0x240
[   98.493419]  exiting_irq+0xe/0x10
[   98.496863]  smp_apic_timer_interrupt+0x64/0x90
[   98.501536]  apic_timer_interrupt+0xf/0x20
[   98.505747]  </IRQ>
[   98.507990] RIP: 0010:__msan_poison_alloca+0x14c/0x1d0
[   98.513241] RSP: 0018:ffff8801b430fc00 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
[   98.520931] RAX: 00000000d3200073 RBX: 00000000d3200073 RCX: ffff8801b430fc40
[   98.528185] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 000000006afb3930
[   98.535435] RBP: ffff8801b430fca0 R08: 0000000001080020 R09: 0000000000000002
[   98.542696] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000
[   98.549958] R13: ffffffff8acc5f70 R14: 0000000000000246 R15: ffff8801aca23a80
[   98.557232]  ? __mmdrop+0x91c/0x930
[   98.560849]  ? kmem_cache_free+0xec/0x2bc0
[   98.565062]  ? __mmdrop+0x91c/0x930
[   98.568677]  ? __mmdrop+0x91c/0x930
[   98.572282]  kmem_cache_free+0xec/0x2bc0
[   98.576322]  ? __mmdrop+0x91c/0x930
[   98.579931]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[   98.585358]  ? destroy_context_ldt+0x61/0x1c0
[   98.589835]  ? __mmdrop+0x8d7/0x930
[   98.593443]  __mmdrop+0x91c/0x930
[   98.596874]  mmdrop+0xc2/0xd0
[   98.599964]  finish_task_switch+0x103/0x270
[   98.604266]  schedule_tail+0x2f/0x360
[   98.608055]  ? task_thread_info+0xd/0x30
[   98.612094]  ? __switch_to+0x330/0x420
[   98.615964]  ret_from_fork+0x8/0x40
[   98.619575] RIP: 0033:0x7f0e07b4ff46
[   98.623262] RSP: 002b:00007ffcf7ef5b30 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[   98.630950] RAX: 0000000000000000 RBX: 00007ffcf7ef5b30 RCX: 00007f0e07b4ff46
[   98.638214] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[   98.645473] RBP: 00007ffcf7ef5b70 R08: 0000000000000000 R09: 000000000000000a
[   98.652725] R10: 00007f0e080469d0 R11: 0000000000000246 R12: 0000000000000000
[   98.659973] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   99.813491] Shutting down cpus with NMI
[   99.830059] Dumping ftrace buffer:
[   99.833614]    (ftrace buffer empty)
[   99.837310] Kernel Offset: disabled
[   99.840950] Rebooting in 86400 seconds..