[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 16.254070] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 20.761451] random: sshd: uninitialized urandom read (32 bytes read) [ 21.263449] random: sshd: uninitialized urandom read (32 bytes read) [ 21.988140] random: sshd: uninitialized urandom read (32 bytes read) [ 22.128318] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.15.200' (ECDSA) to the list of known hosts. [ 27.584834] random: sshd: uninitialized urandom read (32 bytes read) executing program [ 27.672622] kasan: CONFIG_KASAN_INLINE enabled [ 27.677392] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 27.684787] general protection fault: 0000 [#1] SMP KASAN [ 27.690340] CPU: 1 PID: 4451 Comm: syz-executor120 Not tainted 4.18.0-rc4-next-20180713+ #7 [ 27.698834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 27.708213] RIP: 0010:in_aton+0x3e/0x180 [ 27.712272] Code: f6 41 55 41 54 49 89 fc 53 48 83 ec 08 c7 45 d4 00 00 00 00 e8 43 15 75 fb 4c 89 e0 4c 89 e2 c1 65 d4 08 48 c1 e8 03 83 e2 07 <42> 0f b6 04 38 38 d0 7f 08 84 c0 0f 85 1a 01 00 00 41 0f be 1c 24 [ 27.731431] RSP: 0018:ffff8801af127290 EFLAGS: 00010246 [ 27.736787] RAX: 0000000000000000 RBX: ffff8801bce378e4 RCX: ffffffff87721f39 [ 27.744051] RDX: 0000000000000000 RSI: ffffffff86075b0d RDI: 0000000000000000 [ 27.751330] RBP: ffff8801af1272c0 R08: ffff8801b52e40c0 R09: ffffed0035e24e17 [ 27.758612] R10: ffffed0035e24e17 R11: 0000000000000003 R12: 0000000000000000 [ 27.766905] R13: dffffc0000000000 R14: 0000000000000000 R15: dffffc0000000000 [ 27.774163] FS: 000000000071d880(0000) GS:ffff8801daf00000(0000) knlGS:0000000000000000 [ 27.782404] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 27.788280] CR2: 0000000000455060 CR3: 00000001afd19000 CR4: 00000000001406e0 [ 27.795543] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 27.802797] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 27.810058] Call Trace: [ 27.812637] rdma_create_trans+0xdbe/0x1ed0 [ 27.816962] ? recv_done+0x570/0x570 [ 27.820673] ? legacy_get_tree+0x118/0x440 [ 27.824916] ? do_mount+0x6c1/0x1fb0 [ 27.828635] ? ksys_mount+0x12d/0x140 [ 27.832430] ? __x64_sys_mount+0xbe/0x150 [ 27.836563] ? do_syscall_64+0x1b9/0x820 [ 27.840610] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 27.845968] ? save_stack+0x43/0xd0 [ 27.849594] ? kasan_slab_free+0xe/0x10 [ 27.853559] ? kfree+0xd9/0x260 [ 27.856825] ? p9_client_create+0x7f9/0x1770 [ 27.861217] ? v9fs_session_init+0x21a/0x1a80 [ 27.865700] ? v9fs_mount+0x7c/0x900 [ 27.869412] ? legacy_get_tree+0x118/0x440 [ 27.873630] ? vfs_get_tree+0x1cb/0x5c0 [ 27.877596] ? lock_acquire+0x1e4/0x540 [ 27.881559] ? fs_reclaim_acquire+0x20/0x20 [ 27.885870] ? lock_downgrade+0x8f0/0x8f0 [ 27.890015] ? lock_release+0xa30/0xa30 [ 27.893981] ? check_same_owner+0x340/0x340 [ 27.898295] ? _raw_spin_unlock_irqrestore+0x63/0xc0 [ 27.903400] ? kasan_unpoison_shadow+0x35/0x50 [ 27.907978] ? kasan_kmalloc+0xc4/0xe0 [ 27.911857] ? __lockdep_init_map+0x105/0x590 [ 27.916343] ? kmem_cache_alloc_trace+0x318/0x780 [ 27.921175] ? lockdep_init_map+0x9/0x10 [ 27.925220] ? __raw_spin_lock_init+0x2d/0x100 [ 27.929790] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 27.935313] ? xa_init_flags+0xaa/0x120 [ 27.939274] p9_client_create+0x8ed/0x1770 [ 27.943496] ? p9_client_read+0xc60/0xc60 [ 27.947643] ? kasan_check_read+0x11/0x20 [ 27.951793] ? lock_acquire+0x1e4/0x540 [ 27.955758] ? fs_reclaim_acquire+0x20/0x20 [ 27.960088] ? lock_release+0xa30/0xa30 [ 27.964050] ? __lockdep_init_map+0x105/0x590 [ 27.968531] ? kasan_check_write+0x14/0x20 [ 27.972759] ? __init_rwsem+0x1cc/0x2a0 [ 27.976719] ? do_raw_write_unlock.cold.8+0x49/0x49 [ 27.981721] ? __kmalloc_track_caller+0x311/0x760 [ 27.986543] ? save_stack+0xa9/0xd0 [ 27.990149] ? save_stack+0x43/0xd0 [ 27.993755] ? kasan_kmalloc+0xc4/0xe0 [ 27.997632] ? kmem_cache_alloc_trace+0x152/0x780 [ 28.002481] ? memcpy+0x45/0x50 [ 28.005772] v9fs_session_init+0x21a/0x1a80 [ 28.010083] ? rcu_note_context_switch+0x730/0x730 [ 28.015004] ? do_mount+0x69e/0x1fb0 [ 28.018834] ? lock_acquire+0x1e4/0x540 [ 28.022796] ? lock_downgrade+0x8f0/0x8f0 [ 28.026933] ? v9fs_show_options+0x7e0/0x7e0 [ 28.031338] ? kasan_check_read+0x11/0x20 [ 28.035474] ? do_raw_spin_unlock+0xa7/0x2f0 [ 28.039875] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 28.044457] ? kasan_check_write+0x14/0x20 [ 28.048689] ? do_raw_spin_lock+0xc1/0x200 [ 28.052910] ? kasan_unpoison_shadow+0x35/0x50 [ 28.057480] ? kasan_kmalloc+0xc4/0xe0 [ 28.061353] ? kmem_cache_alloc_trace+0x318/0x780 [ 28.066185] ? kasan_unpoison_shadow+0x35/0x50 [ 28.070773] ? kasan_kmalloc+0xc4/0xe0 [ 28.074669] v9fs_mount+0x7c/0x900 [ 28.078204] ? v9fs_drop_inode+0x150/0x150 [ 28.082428] legacy_get_tree+0x118/0x440 [ 28.086491] vfs_get_tree+0x1cb/0x5c0 [ 28.090282] do_mount+0x6c1/0x1fb0 [ 28.093836] ? check_same_owner+0x340/0x340 [ 28.098174] ? lock_release+0xa30/0xa30 [ 28.102156] ? copy_mount_string+0x40/0x40 [ 28.106393] ? kasan_kmalloc+0xc4/0xe0 [ 28.110282] ? kmem_cache_alloc_trace+0x318/0x780 [ 28.115128] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 28.120654] ? _copy_from_user+0xdf/0x150 [ 28.124791] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 28.130331] ? copy_mount_options+0x285/0x380 [ 28.134813] ksys_mount+0x12d/0x140 [ 28.138438] __x64_sys_mount+0xbe/0x150 [ 28.142422] do_syscall_64+0x1b9/0x820 [ 28.146296] ? syscall_return_slowpath+0x5e0/0x5e0 [ 28.151213] ? syscall_return_slowpath+0x31d/0x5e0 [ 28.156132] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 28.161138] ? prepare_exit_to_usermode+0x291/0x3b0 [ 28.166147] ? perf_trace_sys_enter+0xb10/0xb10 [ 28.170809] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 28.175636] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 28.180819] RIP: 0033:0x440279 [ 28.183996] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 28.203159] RSP: 002b:00007fff75c10598 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5 [ 28.210872] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 0000000000440279 [ 28.218236] RDX: 0000000020000340 RSI: 00000000200000c0 RDI: 0000000000000000 [ 28.225498] RBP: 00000000006ca018 R08: 0000000020000180 R09: 00000000004002c8 [ 28.232772] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000401b00 [ 28.240039] R13: 0000000000401b90 R14: 0000000000000000 R15: 0000000000000000 [ 28.247312] Modules linked in: [ 28.250491] Dumping ftrace buffer: [ 28.254011] (ftrace buffer empty) [ 28.258138] ---[ end trace d573d88b49aac628 ]--- [ 28.262950] RIP: 0010:in_aton+0x3e/0x180 [ 28.267024] Code: f6 41 55 41 54 49 89 fc 53 48 83 ec 08 c7 45 d4 00 00 00 00 e8 43 15 75 fb 4c 89 e0 4c 89 e2 c1 65 d4 08 48 c1 e8 03 83 e2 07 <42> 0f b6 04 38 38 d0 7f 08 84 c0 0f 85 1a 01 00 00 41 0f be 1c 24 [ 28.286274] RSP: 0018:ffff8801af127290 EFLAGS: 00010246 [ 28.291678] RAX: 0000000000000000 RBX: ffff8801bce378e4 RCX: ffffffff87721f39 [ 28.298969] RDX: 0000000000000000 RSI: ffffffff86075b0d RDI: 0000000000000000 [ 28.306252] RBP: ffff8801af1272c0 R08: ffff8801b52e40c0 R09: ffffed0035e24e17 [ 28.313553] R10: ffffed0035e24e17 R11: 0000000000000003 R12: 0000000000000000 [ 28.320850] R13: dffffc0000000000 R14: 0000000000000000 R15: dffffc0000000000 [ 28.328154] FS: 000000000071d880(0000) GS:ffff8801daf00000(0000) knlGS:0000000000000000 [ 28.336432] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 28.342345] CR2: 0000000000455060 CR3: 00000001afd19000 CR4: 00000000001406e0 [ 28.349655] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 28.356948] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 28.364232] Kernel panic - not syncing: Fatal exception [ 28.370103] Dumping ftrace buffer: [ 28.373625] (ftrace buffer empty) [ 28.377328] Kernel Offset: disabled [ 28.380951] Rebooting in 86400 seconds..