[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 13.165436] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 18.023241] random: sshd: uninitialized urandom read (32 bytes read) [ 18.561370] random: sshd: uninitialized urandom read (32 bytes read) [ 19.075467] random: sshd: uninitialized urandom read (32 bytes read) [ 63.168228] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.0.17' (ECDSA) to the list of known hosts. [ 68.643766] random: sshd: uninitialized urandom read (32 bytes read) 2018/08/29 09:49:17 parsed 1 programs [ 69.578355] random: cc1: uninitialized urandom read (8 bytes read) 2018/08/29 09:49:19 executed programs: 0 [ 70.905947] IPVS: Creating netns size=2536 id=1 [ 70.943374] IPVS: Creating netns size=2536 id=2 [ 70.979816] IPVS: Creating netns size=2536 id=3 [ 71.011548] IPVS: Creating netns size=2536 id=4 [ 71.040525] IPVS: Creating netns size=2536 id=5 [ 71.081330] IPVS: Creating netns size=2536 id=6 [ 71.142684] IPVS: Creating netns size=2536 id=7 [ 71.184544] IPVS: Creating netns size=2536 id=8 [ 71.372378] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 71.394718] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 71.410136] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 71.426874] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 71.491893] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 71.518309] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 71.592234] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 71.602758] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 71.613004] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 71.622944] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 71.638448] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 71.646475] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 71.653936] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 71.665545] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 71.674395] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 71.682618] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 71.692539] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 71.703812] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 71.716598] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 71.731856] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 71.753655] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 71.790821] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 71.800078] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 71.809630] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 71.852971] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 71.868097] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 71.878634] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 71.886685] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 71.894536] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 71.906430] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 71.913346] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 71.921864] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 71.929766] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 71.937174] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 71.945823] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 71.954689] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 71.963092] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 71.970823] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 71.979443] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 71.992896] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 72.004729] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 72.024631] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 72.037398] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 72.048930] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 72.109657] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 72.133613] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 72.151147] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 72.163014] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 72.171718] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 72.185737] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 72.192943] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 72.200889] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 72.209809] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 72.217389] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 72.224667] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 72.232707] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 72.241021] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 72.248817] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 72.256267] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 72.264614] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 72.272377] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 72.280523] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 72.289106] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 72.297186] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 72.304611] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 72.312656] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 72.320349] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 72.328118] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 72.335540] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 72.343000] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 72.350598] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 72.360310] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 72.368056] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 72.379828] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 72.387095] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 72.394558] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 72.404119] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 72.412013] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 72.425408] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 72.436426] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 72.443823] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 72.457485] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 72.467909] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 72.477060] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 74.897420] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 74.912609] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 75.059536] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 75.073275] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 75.083906] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 75.091704] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 75.102476] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 75.109425] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 75.212723] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 75.339919] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 75.376782] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 75.388477] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 75.395442] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 75.402189] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 75.417853] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 75.425401] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 75.495100] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 75.502490] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 75.509925] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 75.519379] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 75.533337] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 75.541238] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 75.558579] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 75.597654] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 75.606644] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 75.613377] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 75.636507] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 75.642940] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 75.651761] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 75.696521] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 75.702641] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 75.714191] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready 2018/08/29 09:49:25 executed programs: 8 [ 77.104045] l2tp_core: tunl 4: sockfd_lookup(fd=6) returned -9 [ 77.368713] BUG: unable to handle kernel NULL pointer dereference at 0000000000000080 [ 77.376997] IP: [] l2tp_session_create+0xc60/0x16f0 [ 77.383680] PGD 1c870f067 [ 77.386330] PUD 1bebc3067 PMD 0 [ 77.389814] [ 77.391437] Oops: 0002 [#1] PREEMPT SMP KASAN [ 77.395904] Dumping ftrace buffer: [ 77.399418] (ftrace buffer empty) [ 77.403105] Modules linked in: [ 77.406432] CPU: 1 PID: 7079 Comm: syz-executor1 Not tainted 4.9.124-g09eb2ba #31 [ 77.414033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 77.423397] task: ffff8801d998c800 task.stack: ffff8801cb7f0000 [ 77.429433] RIP: 0010:[] [] l2tp_session_create+0xc60/0x16f0 [ 77.438553] RSP: 0018:ffff8801cb7f7ac0 EFLAGS: 00010246 [ 77.443973] RAX: 0000000000000000 RBX: ffff8801b691cc80 RCX: 1ffff1003b331a1d [ 77.451220] RDX: 1ffff10036d238d0 RSI: ffff8801d998d0c8 RDI: ffff8801b691c680 [ 77.458580] RBP: ffff8801cb7f7b60 R08: ffff8801d998d0e8 R09: 0000000000000000 [ 77.465824] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8801b691c558 [ 77.473069] R13: 0000000000000000 R14: ffff8801b691c500 R15: 0000000000000000 [ 77.480314] FS: 00007fc4aa0d2700(0000) GS:ffff8801db300000(0000) knlGS:0000000000000000 [ 77.488514] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 77.494717] CR2: 0000000000000080 CR3: 00000001bc81c000 CR4: 00000000001606f0 [ 77.501963] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 77.509210] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 77.516454] Stack: [ 77.518578] ffffffff836c8e27 0000000000000000 ffff8801cd105d48 0000000000000000 [ 77.526597] ffff8801b691c500 ffff8801b691cdd8 ffff8801b691c558 ffff8801b691cdd0 [ 77.534597] ffff8801b691cd30 ffff8801b691c520 ffff8801cd105500 0000000000000000 [ 77.542600] Call Trace: [ 77.545172] [] ? l2tp_session_create+0xed7/0x16f0 [ 77.551645] [] pppol2tp_connect+0x10d7/0x18f0 [ 77.557765] [] ? pppol2tp_seq_show+0xc30/0xc30 [ 77.563974] [] ? security_socket_connect+0x8f/0xc0 [ 77.570529] [] SYSC_connect+0x1b8/0x300 [ 77.576126] [] ? SYSC_bind+0x280/0x280 [ 77.581636] [] ? get_unused_fd_flags+0xd0/0xd0 [ 77.587847] [] ? do_futex+0x17c0/0x17c0 [ 77.593446] [] ? SyS_socket+0x121/0x1b0 [ 77.599054] [] ? move_addr_to_kernel+0x50/0x50 [ 77.605262] [] SyS_connect+0x24/0x30 [ 77.610608] [] ? SyS_accept+0x30/0x30 [ 77.616033] [] do_syscall_64+0x1a6/0x490 [ 77.621721] [] entry_SYSCALL_64_after_swapgs+0x5d/0xdb [ 77.628615] Code: 00 00 49 8d be 80 01 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 7b 09 00 00 49 8b 86 80 01 00 00 ff 80 80 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 8b 55 d0 [ 77.655569] RIP [] l2tp_session_create+0xc60/0x16f0 [ 77.662331] RSP [ 77.665933] CR2: 0000000000000080 [ 77.680342] ---[ end trace ee20a42c02f632df ]--- [ 77.692967] Kernel panic - not syncing: Fatal exception [ 77.698688] Dumping ftrace buffer: [ 77.702209] (ftrace buffer empty) [ 77.705892] Kernel Offset: disabled [ 77.709540] Rebooting in 86400 seconds..