[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 29.478383] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 33.724373] random: sshd: uninitialized urandom read (32 bytes read) [ 34.197315] random: sshd: uninitialized urandom read (32 bytes read) [ 35.262334] random: sshd: uninitialized urandom read (32 bytes read) [ 35.472650] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.10.29' (ECDSA) to the list of known hosts. [ 40.885756] random: sshd: uninitialized urandom read (32 bytes read) 2018/05/19 13:35:56 parsed 1 programs 2018/05/19 13:35:56 executed programs: 0 [ 41.449663] IPVS: ftp: loaded support on port[0] = 21 [ 41.500742] ip (4498) used greatest stack depth: 54552 bytes left [ 41.567093] ip (4507) used greatest stack depth: 54136 bytes left [ 41.611756] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.618158] bridge0: port 1(bridge_slave_0) entered disabled state [ 41.625366] device bridge_slave_0 entered promiscuous mode [ 41.645212] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.651590] bridge0: port 2(bridge_slave_1) entered disabled state [ 41.658762] device bridge_slave_1 entered promiscuous mode [ 41.678253] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 41.698371] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 41.751468] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 41.773658] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 41.854794] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 41.861938] team0: Port device team_slave_0 added [ 41.880960] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 41.888236] team0: Port device team_slave_1 added [ 41.907144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 41.928906] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 41.950800] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 41.973283] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 42.138644] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.145094] bridge0: port 2(bridge_slave_1) entered forwarding state [ 42.151844] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.158236] bridge0: port 1(bridge_slave_0) entered forwarding state [ 42.751088] 8021q: adding VLAN 0 to HW filter on device bond0 [ 42.811775] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 42.871825] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 42.878143] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 42.885949] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 42.941838] 8021q: adding VLAN 0 to HW filter on device team0 [ 43.285521] ================================================================== [ 43.292939] BUG: KMSAN: uninit-value in copy_siginfo_to_user+0x397/0x1270 [ 43.299860] CPU: 1 PID: 4734 Comm: syz-executor0 Not tainted 4.17.0-rc5+ #101 [ 43.307108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 43.316438] Call Trace: [ 43.319006] dump_stack+0x185/0x1d0 [ 43.322626] ? copy_siginfo_to_user+0x397/0x1270 [ 43.327361] kmsan_report+0x149/0x260 [ 43.331139] __msan_warning_32+0x6e/0xc0 [ 43.335179] copy_siginfo_to_user+0x397/0x1270 [ 43.340069] ? kmsan_internal_unpoison_shadow+0x83/0xe0 [ 43.345412] ptrace_request+0x1d6a/0x20e0 [ 43.349540] ? wait_task_inactive+0x21b/0x990 [ 43.354020] ? _raw_spin_lock_irqsave+0x45/0xf0 [ 43.358675] ? wait_task_inactive+0x21b/0x990 [ 43.363152] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 43.368583] ? wait_task_inactive+0x7df/0x990 [ 43.373071] arch_ptrace+0x1f6/0x1230 [ 43.376861] __se_sys_ptrace+0x309/0x850 [ 43.380899] __x64_sys_ptrace+0x11e/0x170 [ 43.385037] do_syscall_64+0x154/0x220 [ 43.388912] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 43.394081] RIP: 0033:0x455a09 [ 43.397247] RSP: 002b:00007ffedfb8df78 EFLAGS: 00000246 ORIG_RAX: 0000000000000065 [ 43.404931] RAX: ffffffffffffffda RBX: 0000000000e22914 RCX: 0000000000455a09 [ 43.412176] RDX: 0000000000730004 RSI: 0000000000000001 RDI: 0000000000004209 [ 43.419423] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 43.426668] R10: 0000000020000000 R11: 0000000000000246 R12: 00000000ffffffff [ 43.433915] R13: 000000000000052c R14: 00000000006fbcc0 R15: 000000000000ac31 [ 43.441164] [ 43.442766] Local variable description: ----kiov@ptrace_request [ 43.448794] Variable was created at: [ 43.452483] ptrace_request+0x194/0x20e0 [ 43.456522] arch_ptrace+0x1f6/0x1230 [ 43.460293] ================================================================== [ 43.467627] Disabling lock debugging due to kernel taint [ 43.473053] Kernel panic - not syncing: panic_on_warn set ... [ 43.473053] [ 43.480408] CPU: 1 PID: 4734 Comm: syz-executor0 Tainted: G B 4.17.0-rc5+ #101 [ 43.489052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 43.498653] Call Trace: [ 43.501218] dump_stack+0x185/0x1d0 [ 43.504828] panic+0x39d/0x940 [ 43.508012] ? copy_siginfo_to_user+0x397/0x1270 [ 43.512755] kmsan_report+0x260/0x260 [ 43.516534] __msan_warning_32+0x6e/0xc0 [ 43.520574] copy_siginfo_to_user+0x397/0x1270 [ 43.525133] ? kmsan_internal_unpoison_shadow+0x83/0xe0 [ 43.530475] ptrace_request+0x1d6a/0x20e0 [ 43.534609] ? wait_task_inactive+0x21b/0x990 [ 43.539080] ? _raw_spin_lock_irqsave+0x45/0xf0 [ 43.543725] ? wait_task_inactive+0x21b/0x990 [ 43.548196] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 43.553624] ? wait_task_inactive+0x7df/0x990 [ 43.558100] arch_ptrace+0x1f6/0x1230 [ 43.561879] __se_sys_ptrace+0x309/0x850 [ 43.565920] __x64_sys_ptrace+0x11e/0x170 [ 43.570055] do_syscall_64+0x154/0x220 [ 43.573931] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 43.579096] RIP: 0033:0x455a09 [ 43.582261] RSP: 002b:00007ffedfb8df78 EFLAGS: 00000246 ORIG_RAX: 0000000000000065 [ 43.589945] RAX: ffffffffffffffda RBX: 0000000000e22914 RCX: 0000000000455a09 [ 43.597189] RDX: 0000000000730004 RSI: 0000000000000001 RDI: 0000000000004209 [ 43.604433] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 43.611677] R10: 0000000020000000 R11: 0000000000000246 R12: 00000000ffffffff [ 43.618926] R13: 000000000000052c R14: 00000000006fbcc0 R15: 000000000000ac31 [ 43.626690] Dumping ftrace buffer: [ 43.630215] (ftrace buffer empty) [ 43.633898] Kernel Offset: disabled [ 43.637499] Rebooting in 86400 seconds..