[....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 29.659018] random: sshd: uninitialized urandom read (32 bytes read) [ 29.813131] audit: type=1400 audit(1568159651.156:6): avc: denied { map } for pid=1765 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 29.855877] random: sshd: uninitialized urandom read (32 bytes read) [ 30.319062] random: sshd: uninitialized urandom read (32 bytes read) [ 35.408798] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.1.10' (ECDSA) to the list of known hosts. [ 40.971733] random: sshd: uninitialized urandom read (32 bytes read) [ 41.060474] audit: type=1400 audit(1568159662.406:7): avc: denied { map } for pid=1789 comm="syz-executor508" path="/root/syz-executor508071515" dev="sda1" ino=16461 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 executing program executing program [ 47.750119] ------------[ cut here ]------------ [ 47.754971] WARNING: CPU: 0 PID: 0 at net/ipv4/tcp_timer.c:429 tcp_retransmit_timer+0x1a66/0x2590 [ 47.764080] Kernel panic - not syncing: panic_on_warn set ... [ 47.764080] [ 47.771420] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 4.14.143+ #0 [ 47.777747] Call Trace: [ 47.780340] [ 47.782483] dump_stack+0xca/0x134 [ 47.786004] panic+0x1ea/0x3d3 [ 47.789178] ? add_taint.cold+0x16/0x16 [ 47.793132] ? tcp_retransmit_timer+0x1a66/0x2590 [ 47.797963] ? __probe_kernel_read+0x163/0x1c0 [ 47.802524] ? tcp_retransmit_timer+0x1a66/0x2590 [ 47.807342] __warn.cold+0x2f/0x3a [ 47.810860] ? __lock_acquire+0x5d7/0x4320 [ 47.815086] ? tcp_retransmit_timer+0x1a66/0x2590 [ 47.819917] report_bug+0x20a/0x248 [ 47.823526] do_error_trap+0x1bf/0x2d0 [ 47.827392] ? math_error+0x2d0/0x2d0 [ 47.831175] ? __lock_acquire+0x5d7/0x4320 [ 47.835409] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 47.840340] invalid_op+0x18/0x40 [ 47.843807] RIP: 0010:tcp_retransmit_timer+0x1a66/0x2590 [ 47.849236] RSP: 0018:ffff8881db807c78 EFLAGS: 00010206 [ 47.854581] RAX: ffffffff92430d40 RBX: ffff8881cfa28000 RCX: 0000000000000001 [ 47.861838] RDX: 0000000000000100 RSI: 0000000000000000 RDI: ffff8881cd7294c8 [ 47.869085] RBP: ffff8881cd728b00 R08: ffff88821ffff01c R09: ffff88821ffff008 [ 47.876339] R10: ffff88821ffff017 R11: ffff88821ffff010 R12: ffff8881cd72919a [ 47.883588] R13: ffff8881cd728b30 R14: 0000000000000000 R15: ffff8881cd72930c [ 47.890859] ? tcp_retransmit_timer+0x1a66/0x2590 [ 47.895686] ? sched_clock+0x5/0x10 [ 47.899291] ? sched_clock_cpu+0x31/0x1c0 [ 47.903434] ? tcp_write_timer_handler+0x780/0x780 [ 47.908342] tcp_write_timer_handler+0x43d/0x780 [ 47.913094] tcp_write_timer+0xc9/0x170 [ 47.917058] call_timer_fn+0x15b/0x6a0 [ 47.920923] ? collect_expired_timers+0x280/0x280 [ 47.925745] ? check_preemption_disabled+0x35/0x1f0 [ 47.930739] ? _raw_spin_unlock_irq+0x24/0x50 [ 47.935213] ? tcp_write_timer_handler+0x780/0x780 [ 47.940117] expire_timers+0x227/0x4c0 [ 47.943983] run_timer_softirq+0x1eb/0x5d0 [ 47.948199] ? expire_timers+0x4c0/0x4c0 [ 47.952238] ? check_preemption_disabled+0x35/0x1f0 [ 47.957233] ? check_preemption_disabled+0x35/0x1f0 [ 47.962235] __do_softirq+0x234/0x9ec [ 47.966015] ? check_preemption_disabled+0x35/0x1f0 [ 47.971009] irq_exit+0x114/0x150 [ 47.974449] smp_apic_timer_interrupt+0x1a7/0x650 [ 47.979270] apic_timer_interrupt+0x8c/0xa0 [ 47.983567] [ 47.985791] RIP: 0010:native_safe_halt+0x13/0x20 [ 47.990521] RSP: 0018:ffffffff92407d48 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff10 [ 47.998206] RAX: 0000000000000000 RBX: ffffffff9282eba8 RCX: 0000000000000000 [ 48.005459] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffffffff9243156c [ 48.012706] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000 [ 48.019952] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 48.027199] R13: 0000000000000000 R14: ffffffff92430d40 R15: dffffc0000000000 [ 48.034459] default_idle+0x61/0x3b0 [ 48.038175] do_idle+0x2e6/0x390 [ 48.041531] ? arch_cpu_idle_exit+0x40/0x40 [ 48.045843] ? check_preemption_disabled+0x35/0x1f0 [ 48.050842] cpu_startup_entry+0xc6/0xd0 [ 48.054881] ? cpu_in_idle+0x20/0x20 [ 48.058571] ? preempt_count_add+0xb8/0x180 [ 48.062873] ? trace_event_define_fields_x86_irq_vector+0x28/0x28 [ 48.069082] start_kernel+0x858/0x890 [ 48.072860] ? mem_encrypt_init+0x5/0x5 [ 48.076815] ? memcpy_orig+0x54/0x110 [ 48.080608] secondary_startup_64+0xa5/0xb0 [ 48.085556] Kernel Offset: 0xf000000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff) [ 48.096403] Rebooting in 86400 seconds..