[....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 19.452009] random: sshd: uninitialized urandom read (32 bytes read, 31 bits of entropy available) [?25l[?1c7[ ok 8[?25h[?0c. [ 20.595666] random: sshd: uninitialized urandom read (32 bytes read, 34 bits of entropy available) Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 20.982849] random: sshd: uninitialized urandom read (32 bytes read, 34 bits of entropy available) [ 21.833469] random: sshd: uninitialized urandom read (32 bytes read, 111 bits of entropy available) [ 25.962225] random: sshd: uninitialized urandom read (32 bytes read, 116 bits of entropy available) Warning: Permanently added '10.128.0.2' (ECDSA) to the list of known hosts. [ 31.332770] random: sshd: uninitialized urandom read (32 bytes read, 121 bits of entropy available) executing program [ 31.417314] audit: type=1400 audit(1518030395.406:5): avc: denied { create } for pid=3785 comm="syzkaller148391" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 [ 31.443618] audit: type=1400 audit(1518030395.426:6): avc: denied { write } for pid=3785 comm="syzkaller148391" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 [ 31.467860] kasan: CONFIG_KASAN_INLINE enabled [ 31.472244] kasan: GPF could be caused by NULL-ptr deref or user memory accessgeneral protection fault: 0000 [#1] PREEMPT SMP KASAN [ 31.485070] Dumping ftrace buffer: [ 31.488580] (ftrace buffer empty) [ 31.492258] Modules linked in: [ 31.495541] CPU: 0 PID: 3785 Comm: syzkaller148391 Not tainted 4.4.115-g810bdaf #10 [ 31.503306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 31.512636] task: ffff8801c4988000 task.stack: ffff8801c4848000 [ 31.518660] RIP: 0010:[] [] do_raw_spin_lock+0x25/0x2c0 [ 31.527326] RSP: 0018:ffff8801c484f5e0 EFLAGS: 00010203 [ 31.532742] RAX: dffffc0000000000 RBX: 0000000000000010 RCX: 0000000000000000 [ 31.539984] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000014 [ 31.547234] RBP: ffff8801c484f608 R08: 0000000000000000 R09: 0000000000000000 [ 31.554474] R10: ffffffff838443e0 R11: 1ffff10038909e8e R12: 0000000000000000 [ 31.561714] R13: 00000000fffffdf4 R14: 000000000000007d R15: ffff8801c484f6a8 [ 31.568956] FS: 0000000000000000(0000) GS:ffff8801db200000(0063) knlGS:0000000008c6c840 [ 31.577151] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 31.583006] CR2: 000000002023df9c CR3: 00000000b138c000 CR4: 0000000000160670 [ 31.590245] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 31.597482] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 31.604718] Stack: [ 31.606834] 0000000000000010 0000000000000000 00000000fffffdf4 000000000000007d [ 31.614798] ffff8801c484f6a8 ffff8801c484f628 ffffffff83773762 ffffffff82fa5269 [ 31.622808] 0000000000000010 ffff8801c484f690 ffffffff82fa5269 ffffffff82fa4cdf [ 31.630791] Call Trace: [ 31.633348] [] _raw_spin_lock_bh+0x42/0x50 [ 31.639201] [] ? nfulnl_recv_config+0x609/0x1430 [ 31.645573] [] nfulnl_recv_config+0x609/0x1430 [ 31.651772] [] ? nfulnl_recv_config+0x7f/0x1430 [ 31.658063] [] ? nfulnl_log_packet+0x2290/0x2290 [ 31.664434] [] nfnetlink_rcv_msg+0xa63/0xbc0 [ 31.670457] [] ? nfnetlink_rcv_msg+0x3d6/0xbc0 [ 31.676657] [] netlink_rcv_skb+0x13e/0x370 [ 31.682507] [] ? nfnetlink_bind+0x250/0x250 [ 31.688445] [] nfnetlink_rcv+0x29e/0x1070 [ 31.694213] [] ? netlink_unicast+0x44f/0x760 [ 31.700245] [] ? selinux_nlmsg_lookup+0x312/0x4f0 [ 31.706706] [] netlink_unicast+0x522/0x760 [ 31.712560] [] ? netlink_unicast+0x44f/0x760 [ 31.718586] [] ? netlink_attachskb+0x6c0/0x6c0 [ 31.724782] [] netlink_sendmsg+0x8e8/0xc50 [ 31.730634] [] ? netlink_unicast+0x760/0x760 [ 31.736664] [] ? move_addr_to_kernel.part.12+0xc5/0x110 [ 31.743646] [] ? selinux_socket_sendmsg+0x3f/0x50 [ 31.750112] [] ? security_socket_sendmsg+0x89/0xb0 [ 31.756657] [] ? netlink_unicast+0x760/0x760 [ 31.762683] [] sock_sendmsg+0xca/0x110 [ 31.768186] [] ___sys_sendmsg+0x6c1/0x7c0 [ 31.773953] [] ? copy_msghdr_from_user+0x550/0x550 [ 31.780507] [] ? __alloc_pages_direct_compact+0x250/0x250 [ 31.787662] [] ? debug_check_no_locks_freed+0x2c0/0x2c0 [ 31.794642] [] ? __alloc_pages_direct_compact+0x250/0x250 [ 31.801798] [] ? check_preemption_disabled+0x3b/0x200 [ 31.808604] [] ? check_preemption_disabled+0x3b/0x200 [ 31.815413] [] ? __lru_cache_add+0x164/0x240 [ 31.821444] [] ? do_huge_pmd_anonymous_page+0x549/0xa10 [ 31.828427] [] ? __fget_light+0xa1/0x1e0 [ 31.834102] [] ? __fdget+0x18/0x20 [ 31.839261] [] ? sockfd_lookup_light+0x118/0x160 [ 31.845633] [] __sys_sendmsg+0xd3/0x190 [ 31.851225] [] ? SyS_shutdown+0x1b0/0x1b0 [ 31.857005] [] ? __do_page_fault+0x380/0xa00 [ 31.863033] [] compat_SyS_sendmsg+0x2a/0x40 [ 31.868970] [] ? compat_SyS_getsockopt+0x2a0/0x2a0 [ 31.875515] [] do_fast_syscall_32+0x314/0x890 [ 31.881628] [] sysenter_flags_fixed+0xd/0x17 [ 31.887649] Code: 84 00 00 00 00 00 48 b8 00 00 00 00 00 fc ff df 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 89 fb 48 83 c7 04 48 89 fa 48 c1 ea 03 <0f> b6 14 02 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 [ 31.914182] RIP [] do_raw_spin_lock+0x25/0x2c0 [ 31.920499] RSP [ 31.924120] ---[ end trace 671e69f7980527ea ]--- [ 31.928869] Kernel panic - not syncing: Fatal exception in interrupt [ 31.936100] Dumping ftrace buffer: [ 31.939617] (ftrace buffer empty) [ 31.943297] Kernel Offset: disabled [ 31.946892] Rebooting in 86400 seconds..