[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[   19.051221] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   21.227848] random: sshd: uninitialized urandom read (32 bytes read)
[   21.519524] random: sshd: uninitialized urandom read (32 bytes read)
[   22.237569] random: sshd: uninitialized urandom read (32 bytes read)
[   22.396342] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.10.2' (ECDSA) to the list of known hosts.
[   27.853536] random: sshd: uninitialized urandom read (32 bytes read)
2018/05/07 06:46:57 parsed 1 programs
2018/05/07 06:46:57 executed programs: 0
[   28.351822] IPVS: ftp: loaded support on port[0] = 21
[   28.424825] FAULT_INJECTION: forcing a failure.
[   28.424825] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   28.436776] CPU: 1 PID: 4515 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #36
[   28.443947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   28.453285] Call Trace:
[   28.455862]  dump_stack+0x1b9/0x294
[   28.459476]  ? dump_stack_print_info.cold.2+0x52/0x52
[   28.464663]  ? zap_class+0x720/0x720
[   28.468368]  should_fail.cold.4+0xa/0x1a
[   28.472417]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[   28.477507]  ? graph_lock+0x170/0x170
[   28.481310]  ? debug_check_no_locks_freed+0x310/0x310
[   28.486488]  ? bpf_prog_kallsyms_find+0xd6/0x4a0
[   28.491233]  ? find_held_lock+0x36/0x1c0
[   28.495292]  ? __lock_is_held+0xb5/0x140
[   28.499388]  ? check_same_owner+0x320/0x320
[   28.503780]  ? zap_class+0x720/0x720
[   28.507485]  ? rcu_note_context_switch+0x710/0x710
[   28.512402]  ? __might_sleep+0x95/0x190
[   28.516362]  __alloc_pages_nodemask+0x34e/0xd70
[   28.521029]  ? __alloc_pages_slowpath+0x2db0/0x2db0
[   28.526051]  ? find_held_lock+0x36/0x1c0
[   28.530109]  ? lock_downgrade+0x8e0/0x8e0
[   28.534245]  ? do_raw_spin_trylock+0x1b0/0x1b0
[   28.538815]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[   28.544349]  alloc_pages_current+0x10c/0x210
[   28.548747]  __change_page_attr_set_clr+0x411/0x2ce0
[   28.553854]  ? _lookup_address_cpa.isra.24+0xa0/0xa0
[   28.558948]  ? graph_lock+0x170/0x170
[   28.562744]  ? lock_downgrade+0x8e0/0x8e0
[   28.566894]  ? perf_trace_lock+0xd6/0x900
[   28.571053]  ? find_held_lock+0x36/0x1c0
[   28.575113]  ? lock_downgrade+0x8e0/0x8e0
[   28.579253]  ? kasan_check_read+0x11/0x20
[   28.583388]  ? do_raw_spin_unlock+0x9e/0x2e0
[   28.587783]  ? do_raw_spin_trylock+0x1b0/0x1b0
[   28.592454]  ? lookup_address_in_pgd+0xb1/0x530
[   28.597120]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[   28.602141]  ? pfn_range_is_mapped+0xdc/0x110
[   28.606801]  __change_page_attr_set_clr+0x2517/0x2ce0
[   28.611988]  ? note_gp_changes+0x540/0x540
[   28.616232]  ? _lookup_address_cpa.isra.24+0xa0/0xa0
[   28.621323]  ? kasan_check_write+0x14/0x20
[   28.625551]  ? __mutex_unlock_slowpath+0x180/0x8a0
[   28.630484]  ? wait_for_completion+0x870/0x870
[   28.635066]  ? __lock_is_held+0xb5/0x140
[   28.639387]  ? kasan_check_read+0x11/0x20
[   28.643526]  ? do_raw_spin_unlock+0x9e/0x2e0
[   28.647928]  ? do_raw_spin_trylock+0x1b0/0x1b0
[   28.652514]  ? _raw_spin_unlock+0x22/0x30
[   28.656663]  ? mutex_unlock+0xd/0x10
[   28.660380]  ? vm_unmap_aliases+0x4ea/0x600
[   28.664704]  ? purge_fragmented_blocks_allcpus+0xbb0/0xbb0
[   28.670316]  ? __get_filter+0x1e0/0x280
[   28.674284]  ? kasan_check_read+0x11/0x20
[   28.678425]  ? do_raw_spin_unlock+0x9e/0x2e0
[   28.682833]  change_page_attr_set_clr+0x44a/0x11a0
[   28.687753]  ? __change_page_attr_set_clr+0x2ce0/0x2ce0
[   28.693101]  ? __lock_is_held+0xb5/0x140
[   28.697155]  ? mark_held_locks+0xc9/0x160
[   28.701290]  ? quarantine_put+0xeb/0x190
[   28.705337]  ? kfree+0x111/0x260
[   28.708687]  ? bpf_convert_filter+0x37fe/0x4400
[   28.713341]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   28.718340]  ? trace_hardirqs_on+0xd/0x10
[   28.722478]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   28.728010]  ? do_jit+0x7420/0x7420
[   28.731638]  ? __bpf_prog_run64+0x120/0x120
[   28.735955]  set_memory_ro+0x73/0x90
[   28.739673]  ? _set_memory_wb+0x90/0x90
[   28.743657]  ? __kmalloc_track_caller+0x5f5/0x760
[   28.748498]  ? quarantine_put+0xeb/0x190
[   28.752560]  ? __bpf_prog_run64+0x120/0x120
[   28.756873]  bpf_prog_select_runtime+0x19b/0x640
[   28.761621]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[   28.766626]  ? bpf_prog_realloc+0x7a/0x340
[   28.770868]  bpf_prepare_filter+0xb65/0x1060
[   28.775271]  ? bpf_convert_filter+0x4400/0x4400
[   28.779940]  ? memcpy+0x45/0x50
[   28.783215]  ? kmemdup+0x44/0x50
[   28.786573]  ? bpf_prog_store_orig_filter.isra.46+0x147/0x1f0
[   28.792456]  __get_filter+0x1e0/0x280
[   28.796249]  sk_attach_filter+0x1d/0x90
[   28.800217]  __tun_chr_ioctl+0x1198/0x4420
[   28.804443]  ? tun_chr_read_iter+0x1e0/0x1e0
[   28.808855]  ? zap_class+0x720/0x720
[   28.812563]  ? rcu_bh_force_quiescent_state+0x20/0x20
[   28.817743]  ? vm_insert_mixed_mkwrite+0x40/0x40
[   28.822487]  ? graph_lock+0x170/0x170
[   28.826273]  ? graph_lock+0x170/0x170
[   28.830074]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   28.835597]  ? proc_fail_nth_write+0x96/0x1f0
[   28.840086]  ? proc_cwd_link+0x1d0/0x1d0
[   28.844136]  ? find_held_lock+0x36/0x1c0
[   28.848194]  tun_chr_ioctl+0x2a/0x40
[   28.851898]  ? tun_chr_compat_ioctl+0x30/0x30
[   28.856397]  do_vfs_ioctl+0x1cf/0x16a0
[   28.860303]  ? ioctl_preallocate+0x2e0/0x2e0
[   28.864723]  ? fget_raw+0x20/0x20
[   28.868182]  ? __sb_end_write+0xac/0xe0
[   28.872163]  ? ksys_write+0x1a6/0x250
[   28.875961]  ? security_file_ioctl+0x94/0xc0
[   28.880369]  ksys_ioctl+0xa9/0xd0
[   28.883912]  __x64_sys_ioctl+0x73/0xb0
[   28.887802]  do_syscall_64+0x1b1/0x800
[   28.891855]  ? syscall_slow_exit_work+0x4f0/0x4f0
[   28.896696]  ? syscall_return_slowpath+0x5c0/0x5c0
[   28.901616]  ? syscall_return_slowpath+0x30f/0x5c0
[   28.906554]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[   28.911920]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   28.916763]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   28.921940] RIP: 0033:0x455979
[   28.925112] RSP: 002b:0000000000a3e8e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   28.932819] RAX: ffffffffffffffda RBX: 00000000012b1914 RCX: 0000000000455979
[   28.940093] RDX: 0000000020000180 RSI: 00000000401054d5 RDI: 0000000000000004
[   28.947359] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[   28.954619] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[   28.961875] R13: 0000000000000367 R14: 00000000006f9248 R15: 000000000000000a
[   28.969328] WARNING: CPU: 1 PID: 4515 at include/linux/filter.h:651 bpf_prog_select_runtime+0x53c/0x640
[   28.978863] Kernel panic - not syncing: panic_on_warn set ...
[   28.978863] 
[   28.986228] CPU: 1 PID: 4515 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #36
[   28.993409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   29.002751] Call Trace:
[   29.005350]  dump_stack+0x1b9/0x294
[   29.008987]  ? dump_stack_print_info.cold.2+0x52/0x52
[   29.014173]  ? bpf_prog_select_runtime+0x4f0/0x640
[   29.019092]  panic+0x22f/0x4de
[   29.022280]  ? add_taint.cold.5+0x16/0x16
[   29.026625]  ? __warn.cold.8+0x148/0x1b3
[   29.030694]  ? __warn.cold.8+0x117/0x1b3
[   29.034745]  ? bpf_prog_select_runtime+0x53c/0x640
[   29.039667]  __warn.cold.8+0x163/0x1b3
[   29.043543]  ? bpf_prog_select_runtime+0x53c/0x640
[   29.048465]  report_bug+0x252/0x2d0
[   29.052089]  do_error_trap+0x1de/0x490
[   29.055976]  ? math_error+0x420/0x420
[   29.059776]  ? kfree+0x111/0x260
[   29.063129]  ? bpf_convert_filter+0x37fe/0x4400
[   29.067792]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   29.072796]  ? trace_hardirqs_on+0xd/0x10
[   29.077028]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   29.082565]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   29.087404]  do_invalid_op+0x1b/0x20
[   29.091110]  invalid_op+0x14/0x20
[   29.094555] RIP: 0010:bpf_prog_select_runtime+0x53c/0x640
[   29.100083] RSP: 0018:ffff8801d9ba7788 EFLAGS: 00010293
[   29.105439] RAX: ffff8801ae0ee5c0 RBX: ffffc90001e52000 RCX: ffffffff818588b7
[   29.112703] RDX: 0000000000000000 RSI: ffffffff81858c4c RDI: 0000000000000005
[   29.119984] RBP: ffff8801d9ba77e8 R08: ffff8801ae0ee5c0 R09: 0000000000000006
[   29.127256] R10: ffff8801ae0ee5c0 R11: 0000000000000000 R12: 00000000fffffff4
[   29.134520] R13: ffffffff81862da0 R14: 0000000000000000 R15: ffff8801d77eb9c0
[   29.141806]  ? __bpf_prog_run64+0x120/0x120
[   29.146128]  ? bpf_prog_select_runtime+0x1a7/0x640
[   29.151054]  ? bpf_prog_select_runtime+0x53c/0x640
[   29.155983]  ? bpf_prog_select_runtime+0x53c/0x640
[   29.160910]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[   29.165933]  ? bpf_prog_realloc+0x7a/0x340
[   29.170158]  bpf_prepare_filter+0xb65/0x1060
[   29.174558]  ? bpf_convert_filter+0x4400/0x4400
[   29.179223]  ? memcpy+0x45/0x50
[   29.182497]  ? kmemdup+0x44/0x50
[   29.185881]  ? bpf_prog_store_orig_filter.isra.46+0x147/0x1f0
[   29.191778]  __get_filter+0x1e0/0x280
[   29.195585]  sk_attach_filter+0x1d/0x90
[   29.199554]  __tun_chr_ioctl+0x1198/0x4420
[   29.203799]  ? tun_chr_read_iter+0x1e0/0x1e0
[   29.208202]  ? zap_class+0x720/0x720
[   29.211903]  ? rcu_bh_force_quiescent_state+0x20/0x20
[   29.217094]  ? vm_insert_mixed_mkwrite+0x40/0x40
[   29.221838]  ? graph_lock+0x170/0x170
[   29.225638]  ? graph_lock+0x170/0x170
[   29.229434]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   29.234963]  ? proc_fail_nth_write+0x96/0x1f0
[   29.239455]  ? proc_cwd_link+0x1d0/0x1d0
[   29.243508]  ? find_held_lock+0x36/0x1c0
[   29.247569]  tun_chr_ioctl+0x2a/0x40
[   29.251282]  ? tun_chr_compat_ioctl+0x30/0x30
[   29.255776]  do_vfs_ioctl+0x1cf/0x16a0
[   29.259748]  ? ioctl_preallocate+0x2e0/0x2e0
[   29.264151]  ? fget_raw+0x20/0x20
[   29.267599]  ? __sb_end_write+0xac/0xe0
[   29.271564]  ? ksys_write+0x1a6/0x250
[   29.275362]  ? security_file_ioctl+0x94/0xc0
[   29.279764]  ksys_ioctl+0xa9/0xd0
[   29.283218]  __x64_sys_ioctl+0x73/0xb0
[   29.287100]  do_syscall_64+0x1b1/0x800
[   29.290990]  ? syscall_slow_exit_work+0x4f0/0x4f0
[   29.295851]  ? syscall_return_slowpath+0x5c0/0x5c0
[   29.300801]  ? syscall_return_slowpath+0x30f/0x5c0
[   29.305734]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[   29.311093]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   29.315936]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   29.321112] RIP: 0033:0x455979
[   29.324293] RSP: 002b:0000000000a3e8e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   29.331995] RAX: ffffffffffffffda RBX: 00000000012b1914 RCX: 0000000000455979
[   29.339263] RDX: 0000000020000180 RSI: 00000000401054d5 RDI: 0000000000000004
[   29.346521] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[   29.353785] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[   29.361048] R13: 0000000000000367 R14: 00000000006f9248 R15: 000000000000000a
[   29.369012] Dumping ftrace buffer:
[   29.372678]    (ftrace buffer empty)
[   29.376369] Kernel Offset: disabled
[   29.379980] Rebooting in 86400 seconds..