[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 22.896835] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. [ 23.952909] random: sshd: uninitialized urandom read (32 bytes read) Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 24.249984] random: sshd: uninitialized urandom read (32 bytes read) [ 24.794633] random: sshd: uninitialized urandom read (32 bytes read) [ 81.298479] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.0.47' (ECDSA) to the list of known hosts. [ 87.005302] random: sshd: uninitialized urandom read (32 bytes read) 2018/08/14 02:36:23 parsed 1 programs [ 88.216570] random: cc1: uninitialized urandom read (8 bytes read) 2018/08/14 02:36:25 executed programs: 0 [ 89.264979] IPVS: ftp: loaded support on port[0] = 21 [ 89.474851] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.481431] bridge0: port 1(bridge_slave_0) entered disabled state [ 89.488733] device bridge_slave_0 entered promiscuous mode [ 89.505819] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.512372] bridge0: port 2(bridge_slave_1) entered disabled state [ 89.519840] device bridge_slave_1 entered promiscuous mode [ 89.535730] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 89.551719] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 89.594686] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 89.614041] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 89.678756] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 89.686039] team0: Port device team_slave_0 added [ 89.701139] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 89.708304] team0: Port device team_slave_1 added [ 89.724188] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 89.738730] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 89.756998] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 89.775597] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 89.896645] bridge0: port 2(bridge_slave_1) entered blocking state [ 89.903221] bridge0: port 2(bridge_slave_1) entered forwarding state [ 89.910046] bridge0: port 1(bridge_slave_0) entered blocking state [ 89.916437] bridge0: port 1(bridge_slave_0) entered forwarding state [ 90.359641] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 90.365746] 8021q: adding VLAN 0 to HW filter on device bond0 [ 90.410664] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 90.455836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 90.463619] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 90.502982] 8021q: adding VLAN 0 to HW filter on device team0 2018/08/14 02:36:30 executed programs: 5 2018/08/14 02:36:36 executed programs: 12 2018/08/14 02:36:42 executed programs: 19 2018/08/14 02:36:48 executed programs: 26 [ 115.229466] WARNING: CPU: 1 PID: 4871 at net/ipv4/tcp.c:2415 tcp_close+0xf3d/0x12c0 [ 115.237379] Kernel panic - not syncing: panic_on_warn set ... [ 115.237379] [ 115.244738] CPU: 1 PID: 4871 Comm: syz-executor0 Not tainted 4.18.0-next-20180813+ #37 [ 115.252787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 115.262136] Call Trace: [ 115.264721] dump_stack+0x1c9/0x2b4 [ 115.268335] ? dump_stack_print_info.cold.2+0x52/0x52 [ 115.273522] panic+0x238/0x4e7 [ 115.276708] ? add_taint.cold.5+0x16/0x16 [ 115.280855] ? __warn.cold.8+0x148/0x1ba [ 115.284908] ? __warn.cold.8+0x117/0x1ba [ 115.288968] ? tcp_close+0xf3d/0x12c0 [ 115.292808] __warn.cold.8+0x163/0x1ba [ 115.296690] ? tcp_close+0xf3d/0x12c0 [ 115.300484] report_bug+0x252/0x2d0 [ 115.304102] do_error_trap+0x1fc/0x4d0 [ 115.307983] ? math_error+0x3e0/0x3e0 [ 115.311825] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 115.316701] ? trace_hardirqs_on_caller+0x2b0/0x2b0 [ 115.321717] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 115.326560] do_invalid_op+0x1b/0x20 [ 115.330318] invalid_op+0x14/0x20 [ 115.333778] RIP: 0010:tcp_close+0xf3d/0x12c0 [ 115.338175] Code: ff ff e8 76 3d f6 fb be 07 00 00 00 48 89 df 4c 8d 63 28 e8 75 f1 fe ff 48 89 df e8 1d dc fd ff e9 e6 f6 ff ff e8 53 3d f6 fb <0f> 0b e9 71 f8 ff ff e8 47 3d f6 fb be 07 00 00 00 48 89 df e8 4a [ 115.357075] RSP: 0018:ffff8801aba3f6a0 EFLAGS: 00010293 [ 115.362437] RAX: ffff8801cf42c580 RBX: ffff8801d3054100 RCX: ffffffff85864907 [ 115.369849] RDX: 0000000000000000 RSI: ffffffff8586509d RDI: 0000000000000005 [ 115.377114] RBP: ffff8801aba3f760 R08: ffff8801cf42c580 R09: ffffed003a60a831 [ 115.384410] R10: ffffed003a60a831 R11: ffff8801d305418b R12: ffff8801d3054128 [ 115.391676] R13: ffff8801d3054188 R14: ffff8801d3054112 R15: 0000000000000007 [ 115.398978] ? tcp_close+0x7a7/0x12c0 [ 115.402773] ? tcp_close+0xf3d/0x12c0 [ 115.406567] ? tcp_check_oom+0x530/0x530 [ 115.410620] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 115.416149] ? ipv6_sock_mc_close+0x162/0x1d0 [ 115.420632] ? ip_mc_drop_socket+0x20f/0x270 [ 115.425029] ? down_write+0x8f/0x130 [ 115.428731] inet_release+0x104/0x1f0 [ 115.432518] inet6_release+0x50/0x70 [ 115.436221] __sock_release+0xd7/0x250 [ 115.440150] ? __sock_release+0x250/0x250 [ 115.444294] sock_close+0x19/0x20 [ 115.447742] __fput+0x376/0x8a0 [ 115.451011] ? __alloc_file+0x400/0x400 [ 115.454981] ? kasan_check_write+0x14/0x20 [ 115.459207] ? do_raw_spin_lock+0xc1/0x200 [ 115.463440] ____fput+0x15/0x20 [ 115.466717] task_work_run+0x1e8/0x2a0 [ 115.470591] ? task_work_cancel+0x240/0x240 [ 115.474897] ? release_sock+0x1ec/0x2c0 [ 115.478869] get_signal+0x14bf/0x18e0 [ 115.482668] ? kasan_check_write+0x14/0x20 [ 115.486901] ? __release_sock+0x3a0/0x3a0 [ 115.491050] ? ptrace_notify+0x130/0x130 [ 115.495101] ? task_work_add+0x123/0x1f0 [ 115.499151] ? cpumask_weight.constprop.5+0x3f/0x3f [ 115.504157] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 115.509689] ? security_socket_sendmsg+0x94/0xc0 [ 115.514439] do_signal+0x9c/0x21c0 [ 115.517963] ? __sys_sendto+0x475/0x670 [ 115.521932] ? __ia32_sys_getpeername+0xb0/0xb0 [ 115.526591] ? setup_sigcontext+0x7d0/0x7d0 [ 115.530906] ? schedule+0xfb/0x450 [ 115.534440] ? __sys_bind+0x1d1/0x440 [ 115.538345] ? exit_to_usermode_loop+0x8c/0x380 [ 115.543120] ? exit_to_usermode_loop+0x8c/0x380 [ 115.547784] ? lockdep_hardirqs_on+0x421/0x5c0 [ 115.552359] ? trace_hardirqs_on+0xbd/0x2c0 [ 115.556666] ? do_syscall_64+0x6be/0x820 [ 115.560763] ? trace_hardirqs_off_caller+0x2b0/0x2b0 [ 115.565865] ? __x64_sys_futex+0x47f/0x6a0 [ 115.570137] ? do_syscall_64+0x9a/0x820 [ 115.574104] ? do_syscall_64+0x9a/0x820 [ 115.578076] exit_to_usermode_loop+0x2e5/0x380 [ 115.582650] ? syscall_slow_exit_work+0x490/0x490 [ 115.587483] ? __x64_sys_sendto+0xe1/0x1a0 [ 115.591704] do_syscall_64+0x6be/0x820 [ 115.595587] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 115.600950] ? syscall_return_slowpath+0x5e0/0x5e0 [ 115.605879] ? trace_hardirqs_on_caller+0x2b0/0x2b0 [ 115.610894] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 115.615909] ? recalc_sigpending_tsk+0x180/0x180 [ 115.620662] ? kasan_check_write+0x14/0x20 [ 115.624886] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 115.629759] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 115.634985] RIP: 0033:0x457089 [ 115.638170] Code: fd b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 115.657069] RSP: 002b:00007fe7a921bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 115.664767] RAX: 0000000000364650 RBX: 00007fe7a921c6d4 RCX: 0000000000457089 [ 115.672034] RDX: 08d2d601e8976aa5 RSI: 0000000020000100 RDI: 0000000000000004 [ 115.679348] RBP: 00000000009300a0 R08: 000000002031e000 R09: 000000000000001c [ 115.686618] R10: 0000000020000004 R11: 0000000000000246 R12: 00000000ffffffff [ 115.693886] R13: 00000000004d3d20 R14: 00000000004c8999 R15: 0000000000000000 [ 115.701516] Dumping ftrace buffer: [ 115.705179] (ftrace buffer empty) [ 115.708881] Kernel Offset: disabled [ 115.712504] Rebooting in 86400 seconds..