[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[   30.316544] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   32.483638] random: sshd: uninitialized urandom read (32 bytes read)
[   32.844133] random: sshd: uninitialized urandom read (32 bytes read)
[   34.004617] random: sshd: uninitialized urandom read (32 bytes read)
[   34.211486] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.0.58' (ECDSA) to the list of known hosts.
[   39.772683] random: sshd: uninitialized urandom read (32 bytes read)
[   39.883166] IPVS: ftp: loaded support on port[0] = 21
[   40.023295] ip (4530) used greatest stack depth: 54328 bytes left
[   40.055222] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.061665] bridge0: port 1(bridge_slave_0) entered disabled state
[   40.069145] device bridge_slave_0 entered promiscuous mode
[   40.090270] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.096717] bridge0: port 2(bridge_slave_1) entered disabled state
[   40.104012] device bridge_slave_1 entered promiscuous mode
[   40.124600] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   40.146150] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   40.205768] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   40.230117] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   40.322578] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   40.329868] team0: Port device team_slave_0 added
[   40.350199] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   40.357711] team0: Port device team_slave_1 added
[   40.379330] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   40.403511] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   40.422812] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   40.448591] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
RTNETLINK answers: Operation not supported
RTNETLINK answers: No buffer space available
RTNETLINK answers: Operation not supported
[   40.645584] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.652125] bridge0: port 2(bridge_slave_1) entered forwarding state
[   40.658901] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.665364] bridge0: port 1(bridge_slave_0) entered forwarding state
RTNETLINK answers: Operation not supported
RTNETLINK answers: Operation not supported
RTNETLINK answers: Operation not supported
RTNETLINK answers: Invalid argument
RTNETLINK answers: Invalid argument
RTNETLINK answers: Invalid argument
[   41.330232] 8021q: adding VLAN 0 to HW filter on device bond0
[   41.395381] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   41.482514] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   41.488939] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   41.497221] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   41.573523] 8021q: adding VLAN 0 to HW filter on device team0
executing program
[   41.943639] ==================================================================
[   41.951047] BUG: KMSAN: uninit-value in IP6_ECN_decapsulate+0x421/0x970
[   41.957790] CPU: 0 PID: 4515 Comm: syz-executor162 Not tainted 4.17.0+ #8
[   41.964884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   41.974223] Call Trace:
[   41.976787]  <IRQ>
[   41.978921]  dump_stack+0x185/0x1d0
[   41.982550]  kmsan_report+0x188/0x2a0
[   41.986525]  __msan_warning_32+0x70/0xc0
[   41.990568]  IP6_ECN_decapsulate+0x421/0x970
[   41.994956]  ip6ip6_dscp_ecn_decapsulate+0x1e0/0x250
[   42.000054]  __ip6_tnl_rcv+0xff9/0x1a10
[   42.004026]  ? __ip6_tnl_rcv+0x1a10/0x1a10
[   42.008252]  ip6_tnl_rcv+0xe6/0x110
[   42.011862]  gre_rcv+0x1661/0x1a90
[   42.015386]  ? ip6erspan_tunnel_xmit+0x3200/0x3200
[   42.020302]  ip6_input_finish+0x1353/0x2260
[   42.024610]  ? ip6_input_finish+0xf71/0x2260
[   42.029005]  ip6_input+0x294/0x320
[   42.032535]  ? ip6_input+0x320/0x320
[   42.039720]  ? ipv6_rcv+0x2360/0x2360
[   42.043502]  ip6_rcv_finish+0x498/0x6e0
[   42.047457]  ipv6_rcv+0x1d6b/0x2360
[   42.051067]  ? local_bh_enable+0x40/0x40
[   42.055113]  __netif_receive_skb_core+0x47f3/0x4aa0
[   42.060111]  ? timerqueue_add+0x35f/0x4f0
[   42.064244]  ? ip6_rcv_finish+0x6e0/0x6e0
[   42.068375]  process_backlog+0x62d/0xe20
[   42.072421]  ? rps_trigger_softirq+0x2f0/0x2f0
[   42.076999]  net_rx_action+0x766/0x1a80
[   42.080973]  ? net_tx_action+0xad0/0xad0
[   42.085023]  __do_softirq+0x592/0x979
[   42.088814]  do_softirq_own_stack+0x2a/0x40
[   42.093110]  </IRQ>
[   42.095332]  __local_bh_enable_ip+0x114/0x140
[   42.099839]  local_bh_enable+0x36/0x40
[   42.103713]  ip6_finish_output2+0x1ce8/0x2100
[   42.108201]  ? __flow_hash_from_keys+0x986/0x1150
[   42.113048]  ip6_finish_output+0xaf0/0xbb0
[   42.117276]  ip6_output+0x597/0x6c0
[   42.120900]  ? __ip6_local_out+0x730/0x730
[   42.125146]  ? ac6_seq_show+0x200/0x200
[   42.129128]  ip6_local_out+0x164/0x1d0
[   42.133022]  ip6_push_pending_frames+0x218/0x4d0
[   42.137802]  rawv6_sendmsg+0x4254/0x4fc0
[   42.141854]  ? __msan_metadata_ptr_for_store_2+0x13/0x20
[   42.147302]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[   42.152741]  ? ip6_sk_dst_store_flow+0x6c8/0x830
[   42.157524]  ? compat_rawv6_ioctl+0x100/0x100
[   42.162019]  inet_sendmsg+0x3fc/0x760
[   42.165873]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[   42.171544]  ? inet_getname+0x4a0/0x4a0
[   42.175516]  sock_write_iter+0x3bc/0x470
[   42.179572]  ? sock_read_iter+0x480/0x480
[   42.183711]  __vfs_write+0x808/0x9f0
[   42.187444]  vfs_write+0x467/0x8c0
[   42.190995]  __x64_sys_write+0x1bf/0x3e0
[   42.195072]  ? ksys_write+0x360/0x360
[   42.198875]  do_syscall_64+0x15b/0x230
[   42.202754]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   42.207931] RIP: 0033:0x441199
[   42.211105] RSP: 002b:00007fff83b55688 EFLAGS: 00000217 ORIG_RAX: 0000000000000001
[   42.218799] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441199
[   42.226063] RDX: 0000000000000004 RSI: 00000000200001c0 RDI: 0000000000000003
[   42.233415] RBP: 00000000006cc018 R08: 0000000000000000 R09: 0000000000000000
[   42.240677] R10: 0000000000000000 R11: 0000000000000217 R12: 00000000004020a0
[   42.247930] R13: 0000000000402130 R14: 0000000000000000 R15: 0000000000000000
[   42.255183] 
[   42.256796] Uninit was created at:
[   42.260319]  kmsan_internal_poison_shadow+0xb8/0x1b0
[   42.265411]  kmsan_kmalloc+0x94/0x100
[   42.269202]  kmsan_slab_alloc+0x10/0x20
[   42.273178]  __kmalloc_node_track_caller+0xb35/0x11b0
[   42.278353]  __alloc_skb+0x2cb/0x9e0
[   42.282050]  __ip6_append_data+0x364d/0x4fb0
[   42.286436]  ip6_append_data+0x40e/0x6b0
[   42.290483]  rawv6_sendmsg+0x2756/0x4fc0
[   42.294611]  inet_sendmsg+0x3fc/0x760
[   42.298398]  sock_write_iter+0x3bc/0x470
[   42.302451]  __vfs_write+0x808/0x9f0
[   42.306171]  vfs_write+0x467/0x8c0
[   42.309718]  __x64_sys_write+0x1bf/0x3e0
[   42.313808]  do_syscall_64+0x15b/0x230
[   42.317695]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   42.322885] ==================================================================
[   42.330231] Disabling lock debugging due to kernel taint
[   42.335670] Kernel panic - not syncing: panic_on_warn set ...
[   42.335670] 
[   42.343026] CPU: 0 PID: 4515 Comm: syz-executor162 Tainted: G    B             4.17.0+ #8
[   42.351329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   42.360682] Call Trace:
[   42.363251]  <IRQ>
[   42.365399]  dump_stack+0x185/0x1d0
[   42.369042]  panic+0x3d0/0x990
[   42.372262]  kmsan_report+0x29e/0x2a0
[   42.376067]  __msan_warning_32+0x70/0xc0
[   42.380132]  IP6_ECN_decapsulate+0x421/0x970
[   42.384530]  ip6ip6_dscp_ecn_decapsulate+0x1e0/0x250
[   42.389774]  __ip6_tnl_rcv+0xff9/0x1a10
[   42.393768]  ? __ip6_tnl_rcv+0x1a10/0x1a10
[   42.398023]  ip6_tnl_rcv+0xe6/0x110
[   42.401652]  gre_rcv+0x1661/0x1a90
[   42.405189]  ? ip6erspan_tunnel_xmit+0x3200/0x3200
[   42.410118]  ip6_input_finish+0x1353/0x2260
[   42.414537]  ? ip6_input_finish+0xf71/0x2260
[   42.418934]  ip6_input+0x294/0x320
[   42.422567]  ? ip6_input+0x320/0x320
[   42.426283]  ? ipv6_rcv+0x2360/0x2360
[   42.430069]  ip6_rcv_finish+0x498/0x6e0
[   42.434058]  ipv6_rcv+0x1d6b/0x2360
[   42.437692]  ? local_bh_enable+0x40/0x40
[   42.441753]  __netif_receive_skb_core+0x47f3/0x4aa0
[   42.446767]  ? timerqueue_add+0x35f/0x4f0
[   42.450916]  ? ip6_rcv_finish+0x6e0/0x6e0
[   42.455058]  process_backlog+0x62d/0xe20
[   42.459107]  ? rps_trigger_softirq+0x2f0/0x2f0
[   42.463676]  net_rx_action+0x766/0x1a80
[   42.467649]  ? net_tx_action+0xad0/0xad0
[   42.471704]  __do_softirq+0x592/0x979
[   42.475512]  do_softirq_own_stack+0x2a/0x40
[   42.479849]  </IRQ>
[   42.482113]  __local_bh_enable_ip+0x114/0x140
[   42.486625]  local_bh_enable+0x36/0x40
[   42.490517]  ip6_finish_output2+0x1ce8/0x2100
[   42.495018]  ? __flow_hash_from_keys+0x986/0x1150
[   42.499966]  ip6_finish_output+0xaf0/0xbb0
[   42.504191]  ip6_output+0x597/0x6c0
[   42.507814]  ? __ip6_local_out+0x730/0x730
[   42.512090]  ? ac6_seq_show+0x200/0x200
[   42.516072]  ip6_local_out+0x164/0x1d0
[   42.519953]  ip6_push_pending_frames+0x218/0x4d0
[   42.524704]  rawv6_sendmsg+0x4254/0x4fc0
[   42.528753]  ? __msan_metadata_ptr_for_store_2+0x13/0x20
[   42.534207]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[   42.539733]  ? ip6_sk_dst_store_flow+0x6c8/0x830
[   42.544486]  ? compat_rawv6_ioctl+0x100/0x100
[   42.548970]  inet_sendmsg+0x3fc/0x760
[   42.552760]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[   42.558118]  ? inet_getname+0x4a0/0x4a0
[   42.562085]  sock_write_iter+0x3bc/0x470
[   42.566139]  ? sock_read_iter+0x480/0x480
[   42.570285]  __vfs_write+0x808/0x9f0
[   42.573997]  vfs_write+0x467/0x8c0
[   42.577553]  __x64_sys_write+0x1bf/0x3e0
[   42.581608]  ? ksys_write+0x360/0x360
[   42.585479]  do_syscall_64+0x15b/0x230
[   42.589359]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   42.594542] RIP: 0033:0x441199
[   42.597710] RSP: 002b:00007fff83b55688 EFLAGS: 00000217 ORIG_RAX: 0000000000000001
[   42.605402] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441199
[   42.612666] RDX: 0000000000000004 RSI: 00000000200001c0 RDI: 0000000000000003
[   42.619936] RBP: 00000000006cc018 R08: 0000000000000000 R09: 0000000000000000
[   42.627311] R10: 0000000000000000 R11: 0000000000000217 R12: 00000000004020a0
[   42.634699] R13: 0000000000402130 R14: 0000000000000000 R15: 0000000000000000
[   42.642666] Dumping ftrace buffer:
[   42.646199]    (ftrace buffer empty)
[   42.649975] Kernel Offset: disabled
[   42.653582] Rebooting in 86400 seconds..