[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 16.452693] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 19.707148] random: sshd: uninitialized urandom read (32 bytes read) [ 20.039118] random: sshd: uninitialized urandom read (32 bytes read) [ 20.758687] random: sshd: uninitialized urandom read (32 bytes read) [ 20.909311] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.15.206' (ECDSA) to the list of known hosts. [ 26.349872] random: sshd: uninitialized urandom read (32 bytes read) executing program [ 26.431714] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 26.449723] kasan: CONFIG_KASAN_INLINE enabled [ 26.454335] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 26.461713] general protection fault: 0000 [#1] SMP KASAN [ 26.467233] CPU: 0 PID: 4450 Comm: syz-executor721 Not tainted 4.18.0-rc3-next-20180706+ #1 [ 26.475702] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 26.485073] RIP: 0010:do_tcp_getsockopt.isra.43+0x2f9d/0x3c10 [ 26.490935] Code: 3c 03 0f 8e 46 08 00 00 89 9d 10 fd ff ff e8 0a db 0e fb 49 8d be 80 00 00 00 be ff ff 37 00 48 89 f8 48 c1 e6 2a 48 c1 e8 03 <0f> b6 04 30 84 c0 74 08 3c 03 0f 8e cd 06 00 00 48 8b 85 50 fc ff [ 26.510077] RSP: 0018:ffff8801ace6f860 EFLAGS: 00010202 [ 26.515433] RAX: 0000000000000010 RBX: 0000000000000000 RCX: ffffffff866d9ebd [ 26.522686] RDX: 0000000000000000 RSI: dffffc0000000000 RDI: 0000000000000080 [ 26.529941] RBP: ffff8801ace6fc60 R08: ffff8801ac9e64c0 R09: ffffed0035951ac7 [ 26.537195] R10: ffffed0035951ac7 R11: ffff8801aca8d63f R12: 0000000000001000 [ 26.544533] R13: 0000000000000000 R14: 0000000000000000 R15: ffff8801ace6f9b0 [ 26.551787] FS: 0000000001d7f880(0000) GS:ffff8801dae00000(0000) knlGS:0000000000000000 [ 26.560011] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 26.565898] CR2: 0000000020005000 CR3: 00000001cf817000 CR4: 00000000001406f0 [ 26.573165] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 26.580418] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 26.587678] Call Trace: [ 26.590256] ? tcp_ioctl+0x730/0x730 [ 26.593954] ? tcp_disconnect+0xda1/0x14d0 [ 26.598167] ? release_sock+0x1ec/0x2c0 [ 26.602141] ? tcp_write_queue_purge+0x8b0/0x8b0 [ 26.606882] ? _raw_spin_unlock_bh+0x30/0x40 [ 26.611279] ? kasan_check_write+0x14/0x20 [ 26.615496] ? __release_sock+0x3a0/0x3a0 [ 26.619645] ? release_sock+0x1ec/0x2c0 [ 26.623618] ? lock_downgrade+0x8f0/0x8f0 [ 26.627756] ? lock_downgrade+0x8f0/0x8f0 [ 26.631900] ? kasan_check_read+0x11/0x20 [ 26.636038] ? do_raw_spin_unlock+0xa7/0x2f0 [ 26.640442] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 26.645010] ? release_sock+0x1ec/0x2c0 [ 26.648973] ? trace_hardirqs_on+0xd/0x10 [ 26.653103] ? __local_bh_enable_ip+0x161/0x230 [ 26.657757] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 26.663275] ? __fget_light+0x2f7/0x440 [ 26.667234] ? fget_raw+0x20/0x20 [ 26.670692] ? inet_stream_connect+0x7b/0xa0 [ 26.675084] tcp_getsockopt+0xc1/0xe0 [ 26.678868] ? tcp_getsockopt+0xc1/0xe0 [ 26.682822] sock_common_getsockopt+0x9a/0xe0 [ 26.687307] __sys_getsockopt+0x1ad/0x390 [ 26.691439] ? kernel_setsockopt+0x1d0/0x1d0 [ 26.695849] __x64_sys_getsockopt+0xbe/0x150 [ 26.700252] do_syscall_64+0x1b9/0x820 [ 26.704136] ? syscall_return_slowpath+0x5e0/0x5e0 [ 26.709056] ? syscall_return_slowpath+0x31d/0x5e0 [ 26.713986] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 26.719001] ? prepare_exit_to_usermode+0x291/0x3b0 [ 26.724008] ? perf_trace_sys_enter+0xb10/0xb10 [ 26.728685] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 26.733520] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 26.738694] RIP: 0033:0x440279 [ 26.741864] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 26.761004] RSP: 002b:00007fff2340a1b8 EFLAGS: 00000217 ORIG_RAX: 0000000000000037 [ 26.768712] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 0000000000440279 [ 26.775974] RDX: 0000000000000023 RSI: 0000000000000006 RDI: 0000000000000003 [ 26.783241] RBP: 00000000006cb018 R08: 0000000020000040 R09: 0000000000000080 [ 26.790510] R10: 0000000020000000 R11: 0000000000000217 R12: 0000000000401b00 [ 26.797839] R13: 0000000000401b90 R14: 0000000000000000 R15: 0000000000000000 [ 26.805100] Modules linked in: [ 26.808287] Dumping ftrace buffer: [ 26.811819] (ftrace buffer empty) [ 26.815611] ---[ end trace 7509f9f7bfe9f4cd ]--- [ 26.820390] RIP: 0010:do_tcp_getsockopt.isra.43+0x2f9d/0x3c10 [ 26.826271] Code: 3c 03 0f 8e 46 08 00 00 89 9d 10 fd ff ff e8 0a db 0e fb 49 8d be 80 00 00 00 be ff ff 37 00 48 89 f8 48 c1 e6 2a 48 c1 e8 03 <0f> b6 04 30 84 c0 74 08 3c 03 0f 8e cd 06 00 00 48 8b 85 50 fc ff [ 26.845519] RSP: 0018:ffff8801ace6f860 EFLAGS: 00010202 [ 26.850925] RAX: 0000000000000010 RBX: 0000000000000000 RCX: ffffffff866d9ebd [ 26.858205] RDX: 0000000000000000 RSI: dffffc0000000000 RDI: 0000000000000080 [ 26.865489] RBP: ffff8801ace6fc60 R08: ffff8801ac9e64c0 R09: ffffed0035951ac7 [ 26.872777] R10: ffffed0035951ac7 R11: ffff8801aca8d63f R12: 0000000000001000 [ 26.880066] R13: 0000000000000000 R14: 0000000000000000 R15: ffff8801ace6f9b0 [ 26.887347] FS: 0000000001d7f880(0000) GS:ffff8801dae00000(0000) knlGS:0000000000000000 [ 26.895579] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 26.901467] CR2: 0000000020005000 CR3: 00000001cf817000 CR4: 00000000001406f0 [ 26.908750] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 26.916038] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 26.923320] Kernel panic - not syncing: Fatal exception [ 26.929191] Dumping ftrace buffer: [ 26.932731] (ftrace buffer empty) [ 26.936419] Kernel Offset: disabled [ 26.940045] Rebooting in 86400 seconds..