[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[   15.714159] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   17.828002] random: sshd: uninitialized urandom read (32 bytes read)
[   18.240331] random: sshd: uninitialized urandom read (32 bytes read)
[   18.753893] random: sshd: uninitialized urandom read (32 bytes read)
[   18.889965] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.0.27' (ECDSA) to the list of known hosts.
[   24.459262] random: sshd: uninitialized urandom read (32 bytes read)
2018/08/23 21:14:22 parsed 1 programs
[   25.766938] random: cc1: uninitialized urandom read (8 bytes read)
2018/08/23 21:14:25 executed programs: 0
[   27.839237] IPVS: Creating netns size=2536 id=1
[   27.972549] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   27.984443] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   28.029209] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   28.041374] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   28.087608] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   28.099514] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   28.111401] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   28.125206] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   28.653695] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   28.680040] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   28.686409] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   28.694580] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   28.935849] l2tp_core: tunl 4: sockfd_lookup(fd=6) returned -9
[   28.949895] hrtimer: interrupt took 14007 ns
[   28.981568] l2tp_core: tunl 4: sockfd_lookup(fd=6) returned -9
[   29.006187] BUG: unable to handle kernel NULL pointer dereference at 0000000000000080
[   29.014462] IP: [<ffffffff836c8f30>] l2tp_session_create+0xc60/0x16f0
[   29.021149] PGD 1d6e7b067 [   29.023795] PUD 1da116067 
PMD 0 [   29.027268] 
[   29.028891] Oops: 0002 [#1] PREEMPT SMP KASAN
[   29.033355] Dumping ftrace buffer:
[   29.036866]    (ftrace buffer empty)
[   29.040563] Modules linked in:
[   29.043849] CPU: 1 PID: 4230 Comm: syz-executor0 Not tainted 4.9.123-g7fa8c15 #28
[   29.051440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   29.060769] task: ffff8801d682c800 task.stack: ffff8801d5060000
[   29.066795] RIP: 0010:[<ffffffff836c8f30>]  [<ffffffff836c8f30>] l2tp_session_create+0xc60/0x16f0
[   29.075899] RSP: 0018:ffff8801d5067ac0  EFLAGS: 00010246
[   29.081359] RAX: 0000000000000000 RBX: ffff8801d6eb4280 RCX: 1ffff1003ad05a1d
[   29.088610] RDX: 1ffff1003add6920 RSI: ffff8801d682d0c8 RDI: ffff8801d6eb4900
[   29.095852] RBP: ffff8801d5067b60 R08: ffff8801d682d0e8 R09: 0000000000000000
[   29.103096] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8801d6eb47d8
[   29.110336] R13: 0000000000000000 R14: ffff8801d6eb4780 R15: ffff8801d5067c78
[   29.117579] FS:  00007f3fb746e700(0000) GS:ffff8801db300000(0000) knlGS:0000000000000000
[   29.125974] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   29.131832] CR2: 0000000000000080 CR3: 00000001d6d73000 CR4: 00000000001606f0
[   29.139081] Stack:
[   29.141210]  0000000000000201 ffffffff836ca241 ffff8801d5067ae0 ffffffff81237f0d
[   29.149217]  ffff8801d6eb4780 ffff8801d6eb43d8 ffff8801d6eb47d8 ffff8801d6eb43d0
[   29.157283]  ffff8801d6eb4330 ffff8801d6eb47a0 0000000000000000 0000000000000000
[   29.165441] Call Trace:
[   29.168007]  [<ffffffff836ca241>] ? l2tp_session_get+0x1d1/0x790
[   29.174136]  [<ffffffff81237f0d>] ? trace_hardirqs_on+0xd/0x10
[   29.180329]  [<ffffffff836ce0e7>] pppol2tp_connect+0x10d7/0x18f0
[   29.186459]  [<ffffffff836cd010>] ? pppol2tp_seq_show+0xc30/0xc30
[   29.192842]  [<ffffffff81cf90cf>] ? security_socket_connect+0x8f/0xc0
[   29.199446]  [<ffffffff8301ea38>] SYSC_connect+0x1b8/0x300
[   29.205050]  [<ffffffff83a02729>] ? retint_kernel+0x2d/0x2d
[   29.210741]  [<ffffffff8301e880>] ? SYSC_bind+0x280/0x280
[   29.216263]  [<ffffffff812db710>] ? do_futex+0x17c0/0x17c0
[   29.221928]  [<ffffffff83a02729>] ? retint_kernel+0x2d/0x2d
[   29.227629]  [<ffffffff83021314>] SyS_connect+0x24/0x30
[   29.232971]  [<ffffffff830212f0>] ? SyS_accept+0x30/0x30
[   29.238403]  [<ffffffff81006316>] do_syscall_64+0x1a6/0x490
[   29.244096]  [<ffffffff83a01d93>] entry_SYSCALL_64_after_swapgs+0x5d/0xdb
[   29.250994] Code: 00 00 49 8d be 80 01 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 7b 09 00 00 49 8b 86 80 01 00 00 <f0> ff 80 80 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 8b 55 d0 
[   29.278265] RIP  [<ffffffff836c8f30>] l2tp_session_create+0xc60/0x16f0
[   29.285090]  RSP <ffff8801d5067ac0>
[   29.288693] CR2: 0000000000000080
[   29.293297] ---[ end trace d951b70ec979a40f ]---
[   29.298101] Kernel panic - not syncing: Fatal exception
[   29.303770] Dumping ftrace buffer:
[   29.307294]    (ftrace buffer empty)
[   29.311133] Kernel Offset: disabled
[   29.314749] Rebooting in 86400 seconds..