[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[   25.840688] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   30.387268] random: sshd: uninitialized urandom read (32 bytes read)
[   30.817128] random: sshd: uninitialized urandom read (32 bytes read)
[   31.429352] random: sshd: uninitialized urandom read (32 bytes read)
[   90.035757] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.10.22' (ECDSA) to the list of known hosts.
[   95.725558] random: sshd: uninitialized urandom read (32 bytes read)
2018/09/11 10:56:42 parsed 1 programs
[   97.041720] random: cc1: uninitialized urandom read (8 bytes read)
2018/09/11 10:56:44 executed programs: 0
[   98.228807] IPVS: ftp: loaded support on port[0] = 21
[   98.468279] bridge0: port 1(bridge_slave_0) entered blocking state
[   98.475118] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.482866] device bridge_slave_0 entered promiscuous mode
[   98.500251] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.506620] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.513563] device bridge_slave_1 entered promiscuous mode
[   98.531336] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   98.549007] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   98.595875] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   98.615564] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   98.688072] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   98.695684] team0: Port device team_slave_0 added
[   98.711723] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   98.718890] team0: Port device team_slave_1 added
[   98.734951] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   98.753309] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   98.772752] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   98.791226] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   98.935920] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.942402] bridge0: port 2(bridge_slave_1) entered forwarding state
[   98.949393] bridge0: port 1(bridge_slave_0) entered blocking state
[   98.955724] bridge0: port 1(bridge_slave_0) entered forwarding state
[   99.466809] 8021q: adding VLAN 0 to HW filter on device bond0
[   99.517872] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   99.567608] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   99.574003] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   99.582184] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   99.632383] 8021q: adding VLAN 0 to HW filter on device team0
[   99.937404] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details.
[   99.966029] WARNING: CPU: 0 PID: 5632 at arch/x86/kvm/vmx.c:8247 enter_vmx_operation+0x391/0x470
[   99.975080] Kernel panic - not syncing: panic_on_warn set ...
[   99.975080] 
[   99.982483] CPU: 0 PID: 5632 Comm: syz-executor0 Not tainted 4.19.0-rc3+ #231
[   99.989741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   99.999085] Call Trace:
[  100.001681]  dump_stack+0x1c4/0x2b4
[  100.005302]  ? dump_stack_print_info.cold.2+0x52/0x52
[  100.010551]  panic+0x238/0x4e7
[  100.013863]  ? add_taint.cold.5+0x16/0x16
[  100.018021]  ? __warn.cold.8+0x148/0x1ba
[  100.022063]  ? __warn.cold.8+0x117/0x1ba
[  100.026123]  ? enter_vmx_operation+0x391/0x470
[  100.030711]  __warn.cold.8+0x163/0x1ba
[  100.034592]  ? rcu_bh_qs+0xc0/0xc0
[  100.038132]  ? enter_vmx_operation+0x391/0x470
[  100.042702]  report_bug+0x254/0x2d0
[  100.046324]  do_error_trap+0x1fc/0x4d0
[  100.050213]  ? math_error+0x3f0/0x3f0
[  100.054051]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  100.058893]  ? trace_hardirqs_on_caller+0x310/0x310
[  100.063937]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  100.068793]  do_invalid_op+0x1b/0x20
[  100.072495]  invalid_op+0x14/0x20
[  100.075936] RIP: 0010:enter_vmx_operation+0x391/0x470
[  100.081137] Code: 00 4c 89 ef bb f4 ff ff ff e8 eb c6 ff ff e9 f2 fe ff ff e8 31 85 61 00 48 8b 4d d0 48 85 c9 0f 84 08 ff ff ff e8 1f 85 61 00 <0f> 0b e9 0e fe ff ff e8 d3 eb a4 00 e9 c1 fe ff ff e8 e9 eb a4 00
[  100.100044] RSP: 0018:ffff8801b8f1f2d8 EFLAGS: 00010293
[  100.105411] RAX: ffff8801b8b88000 RBX: ffff8801d30c0040 RCX: ffff8801d141d000
[  100.112677] RDX: 0000000000000000 RSI: ffffffff811d4ba1 RDI: ffff8801d30c5820
[  100.119941] RBP: ffff8801b8f1f310 R08: ffff8801b8b88000 R09: 1ffffffff12b43d5
[  100.127213] R10: ffffed003b5c4732 R11: ffff8801dae23993 R12: ffff8801d30c5ba8
[  100.134487] R13: ffff8801d30c5bb8 R14: ffff8801d30c5ba0 R15: ffff8801d30c57a8
[  100.141770]  ? enter_vmx_operation+0x391/0x470
[  100.146341]  ? enter_vmx_operation+0x391/0x470
[  100.150929]  handle_vmon+0x46b/0x500
[  100.154646]  ? nested_vmx_get_vmptr+0x1d0/0x1d0
[  100.159318]  ? nested_vmx_get_vmptr+0x1d0/0x1d0
[  100.163975]  vmx_handle_exit+0x2f7/0x17e0
[  100.168121]  ? lock_acquire+0x1ed/0x520
[  100.172092]  ? vcpu_enter_guest+0x12f2/0x62e0
[  100.176592]  ? vcpu_enter_guest+0x1271/0x62e0
[  100.181076]  ? handle_vmfunc+0x9d0/0x9d0
[  100.185122]  ? trace_hardirqs_on+0xbd/0x310
[  100.189430]  ? kvm_arch_vcpu_ioctl_run+0x375/0x16e0
[  100.194434]  ? check_preemption_disabled+0x48/0x200
[  100.199454]  ? check_preemption_disabled+0x48/0x200
[  100.204479]  vcpu_enter_guest+0x14a9/0x62e0
[  100.208795]  ? emulator_read_emulated+0x50/0x50
[  100.213453]  ? vmx_vcpu_load+0xb06/0x1030
[  100.217621]  ? find_held_lock+0x36/0x1c0
[  100.221671]  ? vmx_write_tsc_offset+0x680/0x680
[  100.226341]  ? graph_lock+0x170/0x170
[  100.230140]  ? kvm_vcpu_ioctl+0x28c/0x1150
[  100.234406]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  100.239979]  ? check_preemption_disabled+0x48/0x200
[  100.244982]  ? check_preemption_disabled+0x48/0x200
[  100.249989]  ? __lock_is_held+0xb5/0x140
[  100.254041]  ? kvm_check_async_pf_completion+0x3ae/0x5c0
[  100.259488]  ? kvm_clear_async_pf_completion_queue+0x770/0x770
[  100.265448]  ? kvm_arch_dev_ioctl+0x630/0x630
[  100.269937]  ? preempt_notifier_dec+0x20/0x20
[  100.274430]  kvm_arch_vcpu_ioctl_run+0x375/0x16e0
[  100.279260]  ? kvm_arch_vcpu_ioctl_run+0x375/0x16e0
[  100.284296]  kvm_vcpu_ioctl+0x72b/0x1150
[  100.288352]  ? kvm_vcpu_block+0x1030/0x1030
[  100.292683]  ? add_mm_counter_fast+0xd0/0xd0
[  100.297102]  ? exit_robust_list+0x280/0x280
[  100.301428]  ? _raw_spin_unlock+0x2c/0x50
[  100.305569]  ? __handle_mm_fault+0x9ab/0x53e0
[  100.310057]  ? vmf_insert_mixed_mkwrite+0xa0/0xa0
[  100.314890]  ? print_usage_bug+0xc0/0xc0
[  100.318937]  ? __kasan_slab_free+0x119/0x150
[  100.323338]  ? graph_lock+0x170/0x170
[  100.327122]  ? graph_lock+0x170/0x170
[  100.330912]  ? graph_lock+0x170/0x170
[  100.334717]  ? find_held_lock+0x36/0x1c0
[  100.338799]  ? kvm_vcpu_block+0x1030/0x1030
[  100.343123]  do_vfs_ioctl+0x1de/0x1720
[  100.347012]  ? ioctl_preallocate+0x300/0x300
[  100.351410]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  100.356935]  ? __fget_light+0x2e9/0x430
[  100.360928]  ? fget_raw+0x20/0x20
[  100.364374]  ? __x64_sys_futex+0x47f/0x6a0
[  100.368605]  ? do_syscall_64+0x9a/0x820
[  100.372569]  ? do_syscall_64+0x9a/0x820
[  100.376539]  ? lockdep_hardirqs_on+0x421/0x5c0
[  100.381110]  ? security_file_ioctl+0x94/0xc0
[  100.385513]  ksys_ioctl+0xa9/0xd0
[  100.388953]  __x64_sys_ioctl+0x73/0xb0
[  100.392828]  do_syscall_64+0x1b9/0x820
[  100.396699]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  100.402356]  ? syscall_return_slowpath+0x5e0/0x5e0
[  100.407289]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  100.412131]  ? trace_hardirqs_on_caller+0x310/0x310
[  100.417133]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  100.422137]  ? prepare_exit_to_usermode+0x291/0x3b0
[  100.427172]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  100.432031]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  100.437250] RIP: 0033:0x4572a9
[  100.440430] Code: fd b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  100.459323] RSP: 002b:00007fff152c9638 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  100.467078] RAX: ffffffffffffffda RBX: 00000000013e2914 RCX: 00000000004572a9
[  100.474336] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  100.481603] RBP: 00000000009300a0 R08: 0000000000000000 R09: 0000000000000000
[  100.488896] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  100.496178] R13: 00000000004cf9b0 R14: 00000000004c5c37 R15: 0000000000000000
[  100.503883] Dumping ftrace buffer:
[  100.507494]    (ftrace buffer empty)
[  100.511838] Kernel Offset: disabled
[  100.515467] Rebooting in 86400 seconds..