INIT: Entering runlevel: 2 [info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.7' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 31.243493] ================================================================== [ 31.250879] BUG: KMSAN: uninit-value in crypto_inc+0x2ab/0x2f0 [ 31.256830] CPU: 0 PID: 3582 Comm: syzkaller017867 Not tainted 4.16.0+ #82 [ 31.263814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 31.273142] Call Trace: [ 31.276364] dump_stack+0x185/0x1d0 [ 31.279971] ? crypto_inc+0x2ab/0x2f0 [ 31.283750] kmsan_report+0x142/0x240 [ 31.287526] __msan_warning_32+0x6c/0xb0 [ 31.291561] crypto_inc+0x2ab/0x2f0 [ 31.295163] drbg_ctr_update+0x3a04/0x3d10 [ 31.299380] ? drbg_hash_df+0xc70/0xc70 [ 31.303331] drbg_seed+0xcba/0xe90 [ 31.306852] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 31.312192] ? add_random_ready_callback+0x4c/0x3c0 [ 31.317183] ? __kmalloc+0x23c/0x350 [ 31.320872] ? _cond_resched+0x3c/0xd0 [ 31.324737] ? drbg_kcapi_seed+0x129f/0x2270 [ 31.329124] drbg_kcapi_seed+0x1c97/0x2270 [ 31.333339] ? drbg_kcapi_random+0xc20/0xc20 [ 31.337724] crypto_rng_reset+0x262/0x310 [ 31.341849] rng_setkey+0x8b/0xa0 [ 31.345278] alg_setsockopt+0x6c5/0x740 [ 31.349227] ? rng_release+0x50/0x50 [ 31.352916] ? alg_accept+0xd0/0xd0 [ 31.356519] SYSC_setsockopt+0x4b8/0x570 [ 31.360556] SyS_setsockopt+0x76/0xa0 [ 31.364330] do_syscall_64+0x309/0x430 [ 31.368192] ? SYSC_recv+0xe0/0xe0 [ 31.371711] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 31.376877] RIP: 0033:0x43fd99 [ 31.380044] RSP: 002b:00007ffd6868f7a8 EFLAGS: 00000217 ORIG_RAX: 0000000000000036 [ 31.387734] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 000000000043fd99 [ 31.394979] RDX: 0000000000000001 RSI: 0000000000000117 RDI: 0000000000000003 [ 31.402233] RBP: 00000000006ca018 R08: 0000000000000000 R09: 00000000004002c8 [ 31.409499] R10: 0000000020ff8000 R11: 0000000000000217 R12: 00000000004016c0 [ 31.416762] R13: 0000000000401750 R14: 0000000000000000 R15: 0000000000000000 [ 31.424026] [ 31.425637] Uninit was stored to memory at: [ 31.429934] kmsan_internal_chain_origin+0x12b/0x210 [ 31.435016] kmsan_memcpy_origins+0x11d/0x170 [ 31.439494] __msan_memcpy+0x19f/0x1f0 [ 31.443355] drbg_ctr_update+0x393a/0x3d10 [ 31.447562] drbg_seed+0xcba/0xe90 [ 31.451076] drbg_kcapi_seed+0x1c97/0x2270 [ 31.455285] crypto_rng_reset+0x262/0x310 [ 31.459416] rng_setkey+0x8b/0xa0 [ 31.462859] alg_setsockopt+0x6c5/0x740 [ 31.466832] SYSC_setsockopt+0x4b8/0x570 [ 31.470890] SyS_setsockopt+0x76/0xa0 [ 31.474684] do_syscall_64+0x309/0x430 [ 31.478569] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 31.483738] Uninit was stored to memory at: [ 31.488048] kmsan_internal_chain_origin+0x12b/0x210 [ 31.493133] kmsan_memcpy_origins+0x11d/0x170 [ 31.497600] __msan_memcpy+0x19f/0x1f0 [ 31.501461] drbg_kcapi_sym_ctr+0x6e8/0x840 [ 31.505753] drbg_ctr_update+0x349a/0x3d10 [ 31.509961] drbg_seed+0xcba/0xe90 [ 31.513475] drbg_kcapi_seed+0x1c97/0x2270 [ 31.517684] crypto_rng_reset+0x262/0x310 [ 31.521805] rng_setkey+0x8b/0xa0 [ 31.525233] alg_setsockopt+0x6c5/0x740 [ 31.529187] SYSC_setsockopt+0x4b8/0x570 [ 31.533223] SyS_setsockopt+0x76/0xa0 [ 31.536997] do_syscall_64+0x309/0x430 [ 31.540864] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 31.546026] Uninit was created at: [ 31.549557] kmsan_internal_poison_shadow+0xb8/0x1b0 [ 31.554634] kmsan_kmalloc+0x94/0x100 [ 31.558407] __kmalloc+0x23c/0x350 [ 31.561918] drbg_init_sym_kernel+0x8ca/0xcc0 [ 31.566387] drbg_kcapi_seed+0xa5a/0x2270 [ 31.570506] crypto_rng_reset+0x262/0x310 [ 31.574626] rng_setkey+0x8b/0xa0 [ 31.578061] alg_setsockopt+0x6c5/0x740 [ 31.582025] SYSC_setsockopt+0x4b8/0x570 [ 31.586076] SyS_setsockopt+0x76/0xa0 [ 31.589856] do_syscall_64+0x309/0x430 [ 31.593717] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 31.598874] ================================================================== [ 31.606205] Disabling lock debugging due to kernel taint [ 31.611628] Kernel panic - not syncing: panic_on_warn set ... [ 31.611628] [ 31.618966] CPU: 0 PID: 3582 Comm: syzkaller017867 Tainted: G B 4.16.0+ #82 [ 31.627263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 31.636589] Call Trace: [ 31.639157] dump_stack+0x185/0x1d0 [ 31.642759] panic+0x39d/0x940 [ 31.645936] ? crypto_inc+0x2ab/0x2f0 [ 31.649713] kmsan_report+0x238/0x240 [ 31.653488] __msan_warning_32+0x6c/0xb0 [ 31.657526] crypto_inc+0x2ab/0x2f0 [ 31.661130] drbg_ctr_update+0x3a04/0x3d10 [ 31.665357] ? drbg_hash_df+0xc70/0xc70 [ 31.669314] drbg_seed+0xcba/0xe90 [ 31.672833] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 31.678181] ? add_random_ready_callback+0x4c/0x3c0 [ 31.683172] ? __kmalloc+0x23c/0x350 [ 31.689300] ? _cond_resched+0x3c/0xd0 [ 31.693167] ? drbg_kcapi_seed+0x129f/0x2270 [ 31.697551] drbg_kcapi_seed+0x1c97/0x2270 [ 31.701765] ? drbg_kcapi_random+0xc20/0xc20 [ 31.706150] crypto_rng_reset+0x262/0x310 [ 31.710275] rng_setkey+0x8b/0xa0 [ 31.713705] alg_setsockopt+0x6c5/0x740 [ 31.717653] ? rng_release+0x50/0x50 [ 31.721342] ? alg_accept+0xd0/0xd0 [ 31.724961] SYSC_setsockopt+0x4b8/0x570 [ 31.728998] SyS_setsockopt+0x76/0xa0 [ 31.732781] do_syscall_64+0x309/0x430 [ 31.736647] ? SYSC_recv+0xe0/0xe0 [ 31.740165] entry_SYSCALL_64_after_hwframe+0x3d/0xa2 [ 31.745329] RIP: 0033:0x43fd99 [ 31.748509] RSP: 002b:00007ffd6868f7a8 EFLAGS: 00000217 ORIG_RAX: 0000000000000036 [ 31.756190] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 000000000043fd99 [ 31.763433] RDX: 0000000000000001 RSI: 0000000000000117 RDI: 0000000000000003 [ 31.770675] RBP: 00000000006ca018 R08: 0000000000000000 R09: 00000000004002c8 [ 31.777920] R10: 0000000020ff8000 R11: 0000000000000217 R12: 00000000004016c0 [ 31.785168] R13: 0000000000401750 R14: 0000000000000000 R15: 0000000000000000 [ 31.793001] Dumping ftrace buffer: [ 31.796524] (ftrace buffer empty) [ 31.800203] Kernel Offset: disabled [ 31.803803] Rebooting in 86400 seconds..