[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 16.268342] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 22.499273] random: sshd: uninitialized urandom read (32 bytes read) [ 22.979490] random: sshd: uninitialized urandom read (32 bytes read) [ 23.739829] random: sshd: uninitialized urandom read (32 bytes read) [ 25.734712] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.10.8' (ECDSA) to the list of known hosts. [ 31.080293] random: sshd: uninitialized urandom read (32 bytes read) 2018/05/03 15:36:54 parsed 1 programs 2018/05/03 15:36:54 executed programs: 0 [ 31.522392] IPVS: Creating netns size=2536 id=1 [ 31.556314] IPVS: Creating netns size=2536 id=2 [ 31.585910] IPVS: Creating netns size=2536 id=3 [ 31.629813] IPVS: Creating netns size=2536 id=4 [ 31.672497] IPVS: Creating netns size=2536 id=5 [ 31.719746] IPVS: Creating netns size=2536 id=6 [ 31.783066] IPVS: Creating netns size=2536 id=7 [ 31.843633] IPVS: Creating netns size=2536 id=8 [ 31.887110] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 31.931225] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 32.043131] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 32.072631] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 32.084451] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 32.092945] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 32.128446] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 32.137163] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 32.227259] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 32.264853] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 32.278832] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 32.287891] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 32.297595] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 32.305672] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 32.316412] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 32.325224] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 32.349888] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 32.379555] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 32.407209] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 32.424921] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 32.447608] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 32.461552] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 32.477392] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 32.493576] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 32.511115] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 32.532675] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 32.548555] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 32.562442] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 32.589167] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 32.605082] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 32.616613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 32.624833] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 32.647920] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 32.666522] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 32.695545] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 32.732208] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 32.759962] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 32.769468] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 32.789678] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 32.804282] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 32.811796] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 32.830373] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 32.861778] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 32.874577] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 32.897534] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 32.905320] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 32.913472] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 32.936901] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 32.945926] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 32.955966] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 32.964557] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 32.979696] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 33.012254] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 33.022822] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 33.033631] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 33.049600] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 33.064220] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 33.072768] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 33.083549] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 33.093168] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 33.101285] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 33.111476] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 33.119081] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 33.138295] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 33.147116] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 33.158554] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 33.166072] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 33.180538] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 33.191649] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 33.200611] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 33.209686] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 33.217385] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 33.224773] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 33.238760] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 33.246420] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 33.262898] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 33.271814] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 33.281942] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 33.317302] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 33.324317] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 33.331937] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 33.352915] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 33.367333] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 33.374889] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 33.434787] ip (4601) used greatest stack depth: 23960 bytes left [ 34.545293] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 34.631409] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 34.670380] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 34.699441] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 34.705607] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 34.713510] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 34.773522] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 34.782665] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 34.790235] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 34.827805] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 34.833960] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 34.843184] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 34.884897] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 34.999796] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 35.026278] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 35.040488] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 35.048103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 35.084014] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 35.092262] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 35.119494] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 35.143683] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 35.153121] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 35.160219] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 35.210020] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 35.216654] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 35.223390] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 35.236441] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 35.249093] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 35.255849] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 35.300838] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 35.307363] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 35.314004] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 35.682853] ------------[ cut here ]------------ [ 35.687679] WARNING: CPU: 0 PID: 5785 at net/core/dev.c:2473 skb_warn_bad_offload+0x2af/0x380 [ 35.696336] veth0: caps=(0x00000c229fbb59e9, 0x0000000000000000) len=65488 data_len=65422 gso_size=2307 gso_type=6 ip_summed=0 [ 35.707876] Kernel panic - not syncing: panic_on_warn set ... [ 35.707876] [ 35.715233] CPU: 0 PID: 5785 Comm: syz-executor0 Not tainted 4.9.98-gf679e4d #17 [ 35.722754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 35.732101] ffff8801d8f1f490 ffffffff81eb0fc9 ffffffff83c484a0 00000000ffffffff [ 35.740150] 0000000000000000 0000000000000000 00000000000009a9 ffff8801d8f1f550 [ 35.748192] ffffffff8141f975 0000000041b58ab3 ffffffff843b86e8 ffffffff8141f7b6 [ 35.756226] Call Trace: [ 35.758801] [] dump_stack+0xc1/0x128 [ 35.764160] [] panic+0x1bf/0x3bc [ 35.769172] [] ? add_taint.cold.6+0x16/0x16 [ 35.775137] [] ? __warn.cold.9+0xa6/0x17f [ 35.780928] [] ? skb_warn_bad_offload+0x2af/0x380 [ 35.787415] [] __warn.cold.9+0xc1/0x17f [ 35.793053] [] warn_slowpath_fmt+0xc2/0x100 [ 35.799021] [] ? __warn+0x50/0x50 [ 35.804122] [] ? _raw_spin_unlock_irqrestore+0x45/0x70 [ 35.811044] [] ? ___ratelimit+0x53/0x401 [ 35.816757] [] skb_warn_bad_offload+0x2af/0x380 [ 35.823073] [] __skb_gso_segment+0x546/0x680 [ 35.829125] [] validate_xmit_skb+0x48e/0xab0 [ 35.835184] [] ? check_preemption_disabled+0x3b/0x170 [ 35.842026] [] ? check_preemption_disabled+0x3b/0x170 [ 35.848860] [] __dev_queue_xmit+0x888/0x2080 [ 35.854920] [] ? __dev_queue_xmit+0x1e2/0x2080 [ 35.861149] [] ? netdev_pick_tx+0x2c0/0x2c0 [ 35.867119] [] ? __check_object_size+0x248/0x38e [ 35.873525] [] ? copy_page_from_iter+0x3df/0x610 [ 35.879931] [] ? skb_copy_datagram_from_iter+0x3b3/0x5c0 [ 35.887032] [] ? dev_get_by_index+0x1fb/0x300 [ 35.893169] [] dev_queue_xmit+0x17/0x20 [ 35.898787] [] packet_sendmsg+0x1eff/0x4470 [ 35.904757] [] ? packet_cached_dev_get+0x1f0/0x1f0 [ 35.911331] [] ? sock_has_perm+0x292/0x3e0 [ 35.917210] [] ? sock_has_perm+0x9f/0x3e0 [ 35.923001] [] ? selinux_file_send_sigiotask+0x310/0x310 [ 35.930100] [] ? selinux_socket_sendmsg+0x3f/0x50 [ 35.936586] [] ? security_socket_sendmsg+0x8f/0xc0 [ 35.943160] [] ? packet_cached_dev_get+0x1f0/0x1f0 [ 35.949738] [] sock_sendmsg+0xcc/0x110 [ 35.955271] [] SYSC_sendto+0x21c/0x370 [ 35.960804] [] ? SYSC_connect+0x300/0x300 [ 35.966603] [] ? sock_has_perm+0x292/0x3e0 [ 35.972482] [] ? selinux_file_send_sigiotask+0x310/0x310 [ 35.979580] [] ? selinux_netlbl_socket_setsockopt+0x8c/0x340 [ 35.987022] [] ? selinux_netlbl_sock_rcv_skb+0x480/0x480 [ 35.994119] [] ? compat_SyS_futex+0x1e1/0x2f0 [ 36.000263] [] ? compat_SyS_get_robust_list+0x310/0x310 [ 36.007278] [] ? compat_SyS_setsockopt+0x18d/0x2a0 [ 36.013859] [] ? packet_setsockopt+0x23d0/0x23d0 [ 36.020272] [] ? scm_detach_fds_compat+0x3b0/0x3b0 [ 36.026848] [] SyS_sendto+0x40/0x50 [ 36.032121] [] ? SyS_getpeername+0x30/0x30 [ 36.035392] ------------[ cut here ]------------ [ 36.035406] WARNING: CPU: 1 PID: 5886 at net/core/dev.c:2473 skb_warn_bad_offload+0x2af/0x380 [ 36.035414] veth0: caps=(0x00000c229fbb59e9, 0x0000000000000000) len=65488 data_len=65422 gso_size=2307 gso_type=6 ip_summed=0 [ 36.035417] Modules linked in: [ 36.066025] [] do_fast_syscall_32+0x2f7/0x870 [ 36.072149] [] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 36.078793] [] entry_SYSENTER_compat+0x90/0xa2 [ 36.085007] CPU: 1 PID: 5886 Comm: syz-executor1 Not tainted 4.9.98-gf679e4d #17 [ 36.092529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 36.101860] ffff8801d767f550 ffffffff81eb0fc9 ffff8801d767f5d0 ffff8801d767f5c8 [ 36.109878] 0000000000000000 ffffffff83068c9f 00000000000009a9 ffff8801d767f598 [ 36.117880] ffffffff8141fcdd ffff8801d7b58000 0000000900000000 ffffed003aecfeb5 [ 36.125874] Call Trace: [ 36.128437] [] dump_stack+0xc1/0x128 [ 36.133783] [] ? skb_warn_bad_offload+0x2af/0x380 [ 36.140254] [] __warn.cold.9+0x13d/0x17f [ 36.145940] [] warn_slowpath_fmt+0xc2/0x100 [ 36.151884] [] ? __warn+0x50/0x50 [ 36.156968] [] ? _raw_spin_unlock_irqrestore+0x45/0x70 [ 36.163874] [] ? ___ratelimit+0x53/0x401 [ 36.169562] [] skb_warn_bad_offload+0x2af/0x380 [ 36.175857] [] __skb_gso_segment+0x546/0x680 [ 36.181894] [] validate_xmit_skb+0x48e/0xab0 [ 36.187929] [] ? check_preemption_disabled+0x3b/0x170 [ 36.194755] [] ? check_preemption_disabled+0x3b/0x170 [ 36.201571] [] __dev_queue_xmit+0x888/0x2080 [ 36.207607] [] ? __dev_queue_xmit+0x1e2/0x2080 [ 36.213814] [] ? netdev_pick_tx+0x2c0/0x2c0 [ 36.219762] [] ? __check_object_size+0x248/0x38e [ 36.226147] [] ? copy_page_from_iter+0x3df/0x610 [ 36.232529] [] ? skb_copy_datagram_from_iter+0x3b3/0x5c0 [ 36.239603] [] ? dev_get_by_index+0x1fb/0x300 [ 36.245726] [] dev_queue_xmit+0x17/0x20 [ 36.251329] [] packet_sendmsg+0x1eff/0x4470 [ 36.257280] [] ? __lock_acquire+0x654/0x4070 [ 36.263314] [] ? packet_cached_dev_get+0x1f0/0x1f0 [ 36.269869] [] ? sock_has_perm+0x292/0x3e0 [ 36.275727] [] ? sock_has_perm+0x9f/0x3e0 [ 36.281501] [] ? selinux_file_send_sigiotask+0x310/0x310 [ 36.288579] [] ? selinux_socket_sendmsg+0x3f/0x50 [ 36.295057] [] ? security_socket_sendmsg+0x8f/0xc0 [ 36.301613] [] ? packet_cached_dev_get+0x1f0/0x1f0 [ 36.308168] [] sock_sendmsg+0xcc/0x110 [ 36.313690] [] SYSC_sendto+0x21c/0x370 [ 36.319202] [] ? SYSC_connect+0x300/0x300 [ 36.324976] [] ? sock_has_perm+0x292/0x3e0 [ 36.330838] [] ? selinux_file_send_sigiotask+0x310/0x310 [ 36.337932] [] ? selinux_netlbl_socket_setsockopt+0x8c/0x340 [ 36.345424] [] ? selinux_netlbl_sock_rcv_skb+0x480/0x480 [ 36.352503] [] ? compat_SyS_futex+0x1e1/0x2f0 [ 36.358623] [] ? compat_SyS_get_robust_list+0x310/0x310 [ 36.365616] [] ? compat_SyS_setsockopt+0x18d/0x2a0 [ 36.372173] [] ? packet_setsockopt+0x23d0/0x23d0 [ 36.378579] [] ? scm_detach_fds_compat+0x3b0/0x3b0 [ 36.385158] [] SyS_sendto+0x40/0x50 [ 36.390410] [] ? SyS_getpeername+0x30/0x30 [ 36.396273] [] do_fast_syscall_32+0x2f7/0x870 [ 36.402391] [] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 36.409031] [] entry_SYSENTER_compat+0x90/0xa2 [ 36.415820] Dumping ftrace buffer: [ 36.419424] (ftrace buffer empty) [ 36.423104] Kernel Offset: disabled [ 36.426711] Rebooting in 86400 seconds..