[....] Starting OpenBSD Secure Shell server: sshd[   19.809595] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   23.060490] random: sshd: uninitialized urandom read (32 bytes read)
[   23.330219] random: sshd: uninitialized urandom read (32 bytes read)
[   24.087542] random: sshd: uninitialized urandom read (32 bytes read)
[   24.242914] random: sshd: uninitialized urandom read (32 bytes read)
[   24.379345] sshd (4508) used greatest stack depth: 16920 bytes left
Warning: Permanently added '10.128.0.15' (ECDSA) to the list of known hosts.
[   29.681570] random: sshd: uninitialized urandom read (32 bytes read)
executing program
[   29.777373] FAULT_INJECTION: forcing a failure.
[   29.777373] name failslab, interval 1, probability 0, space 0, times 1
[   29.788708] CPU: 1 PID: 4515 Comm: syz-executor745 Not tainted 4.17.0-rc5+ #51
[   29.796049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   29.805386] Call Trace:
[   29.807963]  dump_stack+0x1b9/0x294
[   29.811582]  ? dump_stack_print_info.cold.2+0x52/0x52
[   29.816768]  should_fail.cold.4+0xa/0x1a
[   29.820817]  ? lock_acquire+0x1dc/0x520
[   29.824775]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[   29.830245]  ? lock_release+0xa10/0xa10
[   29.834203]  ? check_same_owner+0x320/0x320
[   29.838508]  ? kasan_kmalloc+0xc4/0xe0
[   29.842376]  ? graph_lock+0x170/0x170
[   29.846161]  ? rcu_note_context_switch+0x710/0x710
[   29.851076]  ? find_held_lock+0x36/0x1c0
[   29.855121]  ? __lock_is_held+0xb5/0x140
[   29.859168]  ? check_same_owner+0x320/0x320
[   29.863473]  ? rcu_note_context_switch+0x710/0x710
[   29.868397]  __should_failslab+0x124/0x180
[   29.872622]  should_failslab+0x9/0x14
[   29.876410]  kmem_cache_alloc+0x2af/0x760
[   29.880540]  ? kasan_check_write+0x14/0x20
[   29.884760]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[   29.889768]  __kernfs_new_node+0xe7/0x580
[   29.893905]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[   29.898652]  ? kasan_check_write+0x14/0x20
[   29.902870]  ? __mutex_unlock_slowpath+0x180/0x8a0
[   29.907794]  ? graph_lock+0x170/0x170
[   29.911587]  ? wait_for_completion+0x870/0x870
[   29.916164]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[   29.921686]  kernfs_new_node+0x80/0xf0
[   29.925564]  __kernfs_create_file+0x4d/0x330
[   29.929963]  sysfs_add_file_mode_ns+0x21a/0x560
[   29.934619]  sysfs_add_file+0x4e/0x60
[   29.938405]  sysfs_merge_group+0xfa/0x230
[   29.942550]  dpm_sysfs_add+0x161/0x210
[   29.946425]  device_add+0xa11/0x16d0
[   29.950131]  ? device_private_init+0x230/0x230
[   29.954697]  ? kfree+0x1e9/0x260
[   29.958057]  ? kfree_const+0x5e/0x70
[   29.961767]  device_create_groups_vargs+0x1ff/0x270
[   29.966777]  device_create_vargs+0x46/0x60
[   29.971008]  bdi_register_va.part.10+0xbb/0x9b0
[   29.975698]  ? __lockdep_init_map+0x105/0x590
[   29.980189]  ? cgwb_kill+0x630/0x630
[   29.983886]  ? lockdep_init_map+0x9/0x10
[   29.987940]  ? __init_waitqueue_head+0x96/0x140
[   29.992590]  ? init_wait_entry+0x1b0/0x1b0
[   29.996805]  ? __lockdep_init_map+0x105/0x590
[   30.001297]  ? pm_runtime_init+0x451/0x540
[   30.005515]  ? update_pm_runtime_accounting+0x1b0/0x1b0
[   30.010864]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   30.016389]  ? put_dec_trunc8+0x273/0x300
[   30.020520]  bdi_register+0x101/0x110
[   30.024301]  ? bdi_register_va+0x80/0x80
[   30.028355]  ? graph_lock+0x170/0x170
[   30.032140]  bdi_register_owner+0x5e/0x100
[   30.036365]  __device_add_disk+0xf07/0x1340
[   30.040668]  ? blk_alloc_devt+0x2a0/0x2a0
[   30.044798]  ? vsnprintf+0x242/0x1b40
[   30.048595]  ? pointer+0xa20/0xa20
[   30.052118]  ? __mutex_init+0x1ef/0x280
[   30.056074]  ? sprintf+0xa7/0xd0
[   30.059478]  ? scnprintf+0x120/0x120
[   30.063173]  ? __lockdep_init_map+0x105/0x590
[   30.067650]  device_add_disk+0x22/0x30
[   30.071525]  loop_add+0x70b/0x9c0
[   30.074959]  ? loop_queue_rq+0x640/0x640
[   30.079010]  ? module_unload_free+0x5b0/0x5b0
[   30.083501]  loop_probe+0x185/0x1c0
[   30.087108]  ? loop_control_ioctl+0x500/0x500
[   30.091587]  kobj_lookup+0x269/0x460
[   30.095285]  ? loop_control_ioctl+0x500/0x500
[   30.099764]  get_gendisk+0x4c/0x380
[   30.103375]  blkdev_get+0x16a/0xb30
[   30.106997]  ? kasan_check_write+0x14/0x20
[   30.111221]  ? do_raw_spin_lock+0xc1/0x200
[   30.115448]  ? bdget+0x5c0/0x5c0
[   30.118794]  ? mntput+0x74/0xa0
[   30.122065]  ? path_put+0x50/0x70
[   30.125501]  ? lookup_bdev+0xb4/0x240
[   30.129293]  ? blkdev_open+0x280/0x280
[   30.133166]  blkdev_get_by_path+0x5c/0xe0
[   30.137304]  mount_bdev+0x5d/0x3e0
[   30.140836]  ? fuse_get_root_inode+0x190/0x190
[   30.145400]  fuse_mount_blk+0x34/0x40
[   30.149184]  mount_fs+0xae/0x328
[   30.152535]  vfs_kern_mount.part.34+0xd4/0x4d0
[   30.157099]  ? may_umount+0xb0/0xb0
[   30.160707]  ? _raw_read_unlock+0x22/0x30
[   30.164843]  ? __get_fs_type+0x97/0xc0
[   30.168713]  do_mount+0x564/0x3070
[   30.172262]  ? copy_mount_string+0x40/0x40
[   30.176477]  ? rcu_pm_notify+0xc0/0xc0
[   30.180349]  ? copy_mount_options+0x5f/0x380
[   30.184738]  ? rcu_read_lock_sched_held+0x108/0x120
[   30.189734]  ? kmem_cache_alloc_trace+0x616/0x780
[   30.194564]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   30.200099]  ? _copy_from_user+0xdf/0x150
[   30.204232]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   30.209760]  ? copy_mount_options+0x285/0x380
[   30.214242]  ksys_mount+0x12d/0x140
[   30.217861]  __x64_sys_mount+0xbe/0x150
[   30.221822]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   30.226820]  do_syscall_64+0x1b1/0x800
[   30.230688]  ? finish_task_switch+0x1ca/0x840
[   30.235169]  ? syscall_return_slowpath+0x5c0/0x5c0
[   30.240081]  ? syscall_return_slowpath+0x30f/0x5c0
[   30.244995]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[   30.250348]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   30.255369]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   30.260545] RIP: 0033:0x445989
[   30.263713] RSP: 002b:00007f03acf92c88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[   30.271421] RAX: ffffffffffffffda RBX: 00000000006dbc24 RCX: 0000000000445989
[   30.278676] RDX: 00000000004ae3f9 RSI: 0000000020000880 RDI: 00000000200008c0
[   30.285930] RBP: 0000000000000000 R08: 00007f03acf92ca0 R09: 0000000000000000
[   30.293181] R10: 0000000000000000 R11: 0000000000000206 R12: 00000000006dbc20
[   30.300430] R13: 0000000000000005 R14: 0030656c69662f2e R15: 0000000000000001
[   30.317466] WARNING: CPU: 1 PID: 4515 at block/genhd.c:697 __device_add_disk+0x104a/0x1340
[   30.325887] Kernel panic - not syncing: panic_on_warn set ...
[   30.325887] 
[   30.333252] CPU: 1 PID: 4515 Comm: syz-executor745 Not tainted 4.17.0-rc5+ #51
[   30.340589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   30.349922] Call Trace:
[   30.352497]  dump_stack+0x1b9/0x294
[   30.356108]  ? dump_stack_print_info.cold.2+0x52/0x52
[   30.361284]  ? __device_add_disk+0xf90/0x1340
[   30.365773]  panic+0x22f/0x4de
[   30.368948]  ? add_taint.cold.5+0x16/0x16
[   30.373080]  ? __warn.cold.8+0x148/0x1b3
[   30.377128]  ? __warn.cold.8+0x117/0x1b3
[   30.381170]  ? __device_add_disk+0x104a/0x1340
[   30.385734]  __warn.cold.8+0x163/0x1b3
[   30.389602]  ? __device_add_disk+0x104a/0x1340
[   30.394174]  report_bug+0x252/0x2d0
[   30.397782]  do_error_trap+0x1de/0x490
[   30.401662]  ? init_wait_entry+0x1b0/0x1b0
[   30.405876]  ? math_error+0x420/0x420
[   30.409656]  ? __lockdep_init_map+0x105/0x590
[   30.414141]  ? pm_runtime_init+0x451/0x540
[   30.418357]  ? update_pm_runtime_accounting+0x1b0/0x1b0
[   30.423722]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   30.429248]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   30.434074]  do_invalid_op+0x1b/0x20
[   30.437769]  invalid_op+0x14/0x20
[   30.441212] RIP: 0010:__device_add_disk+0x104a/0x1340
[   30.446383] RSP: 0018:ffff8801d903f4e0 EFLAGS: 00010293
[   30.451735] RAX: ffff8801d8ce8600 RBX: ffff8801d8e30200 RCX: ffffffff83438983
[   30.458985] RDX: 0000000000000000 RSI: ffffffff83438aba RDI: 0000000000000005
[   30.466245] RBP: ffff8801d903f6b0 R08: ffff8801d8ce8600 R09: 0000000000000006
[   30.473495] R10: ffff8801d8ce8600 R11: 0000000000000000 R12: 00000000fffffff4
[   30.480746] R13: ffff8801d903f688 R14: ffff8801d8e30760 R15: ffff8801d8e30204
[   30.488006]  ? __device_add_disk+0xf13/0x1340
[   30.492489]  ? __device_add_disk+0x104a/0x1340
[   30.497056]  ? blk_alloc_devt+0x2a0/0x2a0
[   30.501183]  ? vsnprintf+0x242/0x1b40
[   30.504980]  ? pointer+0xa20/0xa20
[   30.508499]  ? __mutex_init+0x1ef/0x280
[   30.512455]  ? sprintf+0xa7/0xd0
[   30.515811]  ? scnprintf+0x120/0x120
[   30.519505]  ? __lockdep_init_map+0x105/0x590
[   30.523993]  device_add_disk+0x22/0x30
[   30.527870]  loop_add+0x70b/0x9c0
[   30.531302]  ? loop_queue_rq+0x640/0x640
[   30.535351]  ? module_unload_free+0x5b0/0x5b0
[   30.539841]  loop_probe+0x185/0x1c0
[   30.543447]  ? loop_control_ioctl+0x500/0x500
[   30.547928]  kobj_lookup+0x269/0x460
[   30.551625]  ? loop_control_ioctl+0x500/0x500
[   30.556103]  get_gendisk+0x4c/0x380
[   30.559715]  blkdev_get+0x16a/0xb30
[   30.563335]  ? kasan_check_write+0x14/0x20
[   30.567551]  ? do_raw_spin_lock+0xc1/0x200
[   30.571769]  ? bdget+0x5c0/0x5c0
[   30.575114]  ? mntput+0x74/0xa0
[   30.578375]  ? path_put+0x50/0x70
[   30.581809]  ? lookup_bdev+0xb4/0x240
[   30.585598]  ? blkdev_open+0x280/0x280
[   30.589473]  blkdev_get_by_path+0x5c/0xe0
[   30.593603]  mount_bdev+0x5d/0x3e0
[   30.597125]  ? fuse_get_root_inode+0x190/0x190
[   30.601693]  fuse_mount_blk+0x34/0x40
[   30.605483]  mount_fs+0xae/0x328
[   30.608832]  vfs_kern_mount.part.34+0xd4/0x4d0
[   30.613403]  ? may_umount+0xb0/0xb0
[   30.617013]  ? _raw_read_unlock+0x22/0x30
[   30.621146]  ? __get_fs_type+0x97/0xc0
[   30.625025]  do_mount+0x564/0x3070
[   30.628909]  ? copy_mount_string+0x40/0x40
[   30.633124]  ? rcu_pm_notify+0xc0/0xc0
[   30.636993]  ? copy_mount_options+0x5f/0x380
[   30.641384]  ? rcu_read_lock_sched_held+0x108/0x120
[   30.646381]  ? kmem_cache_alloc_trace+0x616/0x780
[   30.651211]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   30.656739]  ? _copy_from_user+0xdf/0x150
[   30.660872]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   30.666389]  ? copy_mount_options+0x285/0x380
[   30.670867]  ksys_mount+0x12d/0x140
[   30.674476]  __x64_sys_mount+0xbe/0x150
[   30.678429]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   30.683427]  do_syscall_64+0x1b1/0x800
[   30.687302]  ? finish_task_switch+0x1ca/0x840
[   30.691779]  ? syscall_return_slowpath+0x5c0/0x5c0
[   30.696690]  ? syscall_return_slowpath+0x30f/0x5c0
[   30.701602]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[   30.706948]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   30.711772]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   30.716955] RIP: 0033:0x445989
[   30.720126] RSP: 002b:00007f03acf92c88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[   30.727813] RAX: ffffffffffffffda RBX: 00000000006dbc24 RCX: 0000000000445989
[   30.735064] RDX: 00000000004ae3f9 RSI: 0000000020000880 RDI: 00000000200008c0
[   30.742313] RBP: 0000000000000000 R08: 00007f03acf92ca0 R09: 0000000000000000
[   30.749561] R10: 0000000000000000 R11: 0000000000000206 R12: 00000000006dbc20
[   30.756810] R13: 0000000000000005 R14: 0030656c69662f2e R15: 0000000000000001
[   30.764682] Dumping ftrace buffer:
[   30.768306]    (ftrace buffer empty)
[   30.771995] Kernel Offset: disabled
[   30.775600] Rebooting in 86400 seconds..