Starting mcstransd: [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok [ 10.683911] random: sshd: uninitialized urandom read (32 bytes read) 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 20.063243] random: sshd: uninitialized urandom read (32 bytes read) [ 20.073902] random: crng init done Warning: Permanently added '10.128.0.140' (ECDSA) to the list of known hosts. 2019/09/05 00:07:54 parsed 1 programs 2019/09/05 00:07:56 executed programs: 0 [ 28.377933] audit: type=1400 audit(1567642076.803:5): avc: denied { associate } for pid=2063 comm="syz-executor.0" name="syz0" scontext=unconfined_u:object_r:unlabeled_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=filesystem permissive=1 [ 28.757358] ------------[ cut here ]------------ [ 28.762268] kernel BUG at ./include/linux/skbuff.h:1294! [ 28.767702] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 28.773494] Modules linked in: [ 28.776833] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 4.9.190+ #0 [ 28.783044] task: 0000000070381f19 task.stack: 00000000a7dc603c [ 28.789080] RIP: 0010:[] [<00000000d117d43b>] tcp_fragment+0x1266/0x1390 [ 28.797983] RSP: 0018:ffff8801db707b90 EFLAGS: 00010206 [ 28.803771] RAX: ffff8801da6b2f80 RBX: ffff8801d1dd1f80 RCX: 1ffff1003a3ba46d [ 28.811558] RDX: 0000000000000100 RSI: ffffffff8252c406 RDI: ffff8801d6318788 [ 28.818917] RBP: ffff8801db707be0 R08: 0000000002080020 R09: ffff8801d63187a8 [ 28.826390] R10: ffff88021fffd050 R11: 0000000728739f87 R12: 0000000000000000 [ 28.834231] R13: ffff8801d1dd2170 R14: ffff8801d6318780 R15: ffff8801d1dd21c4 [ 28.842829] FS: 0000000000000000(0000) GS:ffff8801db700000(0000) knlGS:0000000000000000 [ 28.851472] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 28.857519] CR2: 000000000075c000 CR3: 00000001ce8fc000 CR4: 00000000001606b0 [ 28.864979] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 28.872534] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 28.880050] Stack: [ 28.882196] ffff8801d6318780 ffff8801d1dd2170 ffff8801d63187f8 ffff880102080020 [ 28.890321] 000068000000ffcb 0000000000006800 ffff8801d1dd1f80 ffff8801d6318780 [ 28.898371] 000000000000ffcb ffff8801d63187b4 ffff8801db707c30 ffffffff8253fd65 [ 28.906503] Call Trace: [ 28.909066] [ 28.911115] [<000000008483bde3>] tcp_write_wakeup+0x345/0x5b0 [ 28.917085] [<00000000241d255c>] tcp_send_probe0+0x4b/0x400 [ 28.922870] [<000000009106866d>] tcp_write_timer_handler+0x6a0/0x7a0 [ 28.929431] [<00000000f14fd341>] tcp_write_timer+0xc5/0x190 [ 28.935737] [<0000000061a26068>] call_timer_fn+0x167/0x6d0 [ 28.942586] [<000000001e3d357f>] ? call_timer_fn+0xde/0x6d0 [ 28.948363] [<0000000019d7d062>] ? free_object+0x2b0/0x2b0 [ 28.954067] [<000000007a0304ec>] ? tcp_write_timer_handler+0x7a0/0x7a0 [ 28.960803] [<00000000d604d25b>] ? process_timeout+0x20/0x20 [ 28.966668] [<000000006ad3dd94>] ? _raw_spin_unlock_irq+0x28/0x60 [ 28.972968] [<000000007a0304ec>] ? tcp_write_timer_handler+0x7a0/0x7a0 [ 28.979708] [<000000005c76de4b>] ? trace_hardirqs_on_caller+0x260/0x5a0 [ 28.987052] [<000000007a0304ec>] ? tcp_write_timer_handler+0x7a0/0x7a0 [ 28.993810] [<00000000058f6cd0>] expire_timers+0x25b/0x5c0 [ 28.999678] [<00000000862c4bdf>] run_timer_softirq+0x1ff/0x620 [ 29.005721] [<000000003c4c7e1e>] ? expire_timers+0x5c0/0x5c0 [ 29.011777] [<00000000bd463405>] ? check_preemption_disabled+0x3c/0x200 [ 29.019405] [<00000000bd463405>] ? check_preemption_disabled+0x3c/0x200 [ 29.026247] [<000000004b1d3e78>] __do_softirq+0x22d/0x964 [ 29.031861] [<000000002ea7fdee>] ? hrtimer_interrupt+0x34b/0x450 [ 29.038080] [<00000000bd463405>] ? check_preemption_disabled+0x3c/0x200 [ 29.044934] [<00000000ad5c7daf>] irq_exit+0x119/0x160 [ 29.050195] [<000000003131a9f6>] smp_apic_timer_interrupt+0x7e/0xb0 [ 29.056671] [<00000000ffe8199a>] apic_timer_interrupt+0xa5/0xb0 [ 29.062914] [ 29.064974] [<00000000ee8a0d44>] ? native_safe_halt+0x41/0x60 [ 29.071052] [<0000000038862f40>] default_idle+0x56/0x370 [ 29.076787] [<00000000c277a15e>] arch_cpu_idle+0x10/0x20 [ 29.082368] [<00000000fb262793>] default_idle_call+0x36/0x60 [ 29.088372] [<00000000a6e56543>] cpu_startup_entry+0x283/0x3a0 [ 29.094424] [<00000000ff6cd3f5>] ? cpu_in_idle+0x20/0x20 [ 29.099958] [<000000006168022d>] start_secondary+0x31c/0x410 [ 29.105825] [<000000007abb013e>] ? set_cpu_sibling_map+0x1290/0x1290 [ 29.112384] Code: c1 ea 03 80 3c 02 00 0f 85 3a 01 00 00 4c 8b ab f8 01 00 00 ba 00 00 00 00 4c 3b 6d b8 4c 0f 44 ea e9 f9 fc ff ff e8 6a 5f df fe <0f> 0b e8 f3 20 fd fe e9 6e f0 ff ff e8 e9 20 fd fe e9 68 f3 ff [ 29.139931] RIP [<00000000d117d43b>] tcp_fragment+0x1266/0x1390 [ 29.146218] RSP [ 29.150034] ---[ end trace 8b72927ac5457728 ]--- [ 29.155227] Kernel panic - not syncing: Fatal exception in interrupt [ 29.162490] Kernel Offset: disabled [ 29.166104] Rebooting in 86400 seconds..