[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[   17.106652] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   24.877275] random: sshd: uninitialized urandom read (32 bytes read)
[   25.408026] random: sshd: uninitialized urandom read (32 bytes read)
[   25.919013] random: sshd: uninitialized urandom read (32 bytes read)
[   57.962339] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.0.33' (ECDSA) to the list of known hosts.
[   63.502918] random: sshd: uninitialized urandom read (32 bytes read)
2018/08/17 23:27:20 parsed 1 programs
[   64.717700] random: cc1: uninitialized urandom read (8 bytes read)
2018/08/17 23:27:22 executed programs: 0
[   65.799190] IPVS: Creating netns size=2536 id=1
[   65.833020] IPVS: Creating netns size=2536 id=2
[   65.845173] IPVS: Creating netns size=2536 id=3
[   65.864162] IPVS: Creating netns size=2536 id=4
[   65.893092] IPVS: Creating netns size=2536 id=5
[   65.912502] IPVS: Creating netns size=2536 id=6
[   65.936274] IPVS: Creating netns size=2536 id=7
[   65.955957] IPVS: Creating netns size=2536 id=8
[   66.167444] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   66.214755] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   66.223207] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   66.260889] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   66.309640] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   66.336744] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   66.367302] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   66.388499] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   66.396765] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   66.409133] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   66.422803] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   66.448477] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   66.459427] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   66.469337] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   66.489061] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   66.503224] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   66.512573] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   66.527994] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   66.545242] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   66.556586] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   66.574924] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   66.584177] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   66.598047] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   66.606307] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   66.621584] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   66.637914] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   66.647821] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   66.670817] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   66.689829] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   66.699447] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   66.716665] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   66.733642] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   66.746909] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   66.755454] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   66.765406] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   66.790896] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   66.798565] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   66.813821] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   66.821203] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   66.828954] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   66.839044] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   66.852656] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   66.860353] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   66.876587] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   66.886876] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   66.906275] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   66.919155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   66.930072] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   66.940614] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   66.954294] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   66.965413] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   66.977052] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   66.991390] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   66.999544] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   67.008022] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   67.018960] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   67.030355] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   67.038740] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   67.054379] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   67.063321] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   67.071099] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   67.078559] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   67.086402] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   67.094111] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   67.101594] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   67.109099] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   67.116817] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   67.124241] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   67.138527] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   67.148429] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[   67.158751] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   67.166617] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   67.174562] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   67.182038] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   69.972761] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   69.994605] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   70.042967] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   70.122953] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   70.130960] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   70.140771] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   70.148745] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   70.156100] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   70.166703] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   70.175384] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   70.185262] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   70.231509] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   70.237693] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   70.245017] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   70.297708] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   70.317845] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   70.329706] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   70.340099] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   70.354070] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   70.362426] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   70.376680] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   70.389682] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   70.400528] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   70.488738] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   70.495697] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   70.503170] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   70.511412] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   70.518266] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   70.525109] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   70.577434] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   70.587830] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   70.595127] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
2018/08/17 23:27:27 executed programs: 8
[   72.310952] BUG: unable to handle kernel NULL pointer dereference at 0000000000000080
[   72.319273] IP: [<ffffffff836c6e40>] l2tp_session_create+0xc60/0x16f0
[   72.326004] PGD 1d46ff067 [   72.328665] PUD 1c1996067 
PMD 0 [   72.332175] 
[   72.333801] Oops: 0002 [#1] PREEMPT SMP KASAN
[   72.338272] Dumping ftrace buffer:
[   72.341805]    (ftrace buffer empty)
[   72.345499] Modules linked in:
[   72.348949] CPU: 1 PID: 7079 Comm: syz-executor2 Not tainted 4.9.121-g681e57b #25
[   72.356546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   72.365931] task: ffff8801ca74c800 task.stack: ffff8801b5d08000
[   72.372189] RIP: 0010:[<ffffffff836c6e40>]  [<ffffffff836c6e40>] l2tp_session_create+0xc60/0x16f0
[   72.381317] RSP: 0018:ffff8801b5d0fac0  EFLAGS: 00010246
[   72.386744] RAX: 0000000000000000 RBX: ffff8801c0342780 RCX: 1ffff100394e9a1d
[   72.394009] RDX: 1ffff10036ce1030 RSI: ffff8801ca74d0c8 RDI: ffff8801b6708180
[   72.401268] RBP: ffff8801b5d0fb60 R08: ffff8801ca74d0e8 R09: 0000000000000000
[   72.408515] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8801b6708058
[   72.415783] R13: 0000000000000000 R14: ffff8801b6708000 R15: 0000000000000000
[   72.423061] FS:  00007f0c82346700(0000) GS:ffff8801db300000(0000) knlGS:0000000000000000
[   72.431266] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   72.437127] CR2: 0000000000000080 CR3: 00000001b8587000 CR4: 00000000001606f0
[   72.444409] Stack:
[   72.446537]  ffffffff836c70b7 ffffffff836c8151 ffff8801cf616e48 0000000000000000
[   72.454607]  ffff8801b6708000 ffff8801c03428d8 ffff8801b6708058 ffff8801c03428d0
[   72.462639]  ffff8801c0342830 ffff8801b6708020 ffff8801cf616600 0000000000000000
[   72.470688] Call Trace:
[   72.473283]  [<ffffffff836c70b7>] ? l2tp_session_create+0xed7/0x16f0
[   72.479770]  [<ffffffff836c8151>] ? l2tp_session_get+0x1d1/0x790
[   72.485902]  [<ffffffff836cbff7>] pppol2tp_connect+0x10d7/0x18f0
[   72.492052]  [<ffffffff836caf20>] ? pppol2tp_seq_show+0xc30/0xc30
[   72.498264]  [<ffffffff81cf786f>] ? security_socket_connect+0x8f/0xc0
[   72.504842]  [<ffffffff8301c958>] SYSC_connect+0x1b8/0x300
[   72.510456]  [<ffffffff8301c7a0>] ? SYSC_bind+0x280/0x280
[   72.515973]  [<ffffffff815da5a0>] ? get_unused_fd_flags+0xd0/0xd0
[   72.522185]  [<ffffffff812db2a0>] ? do_futex+0x17c0/0x17c0
[   72.527789]  [<ffffffff8301e951>] ? SyS_socket+0x121/0x1b0
[   72.533391]  [<ffffffff8301e830>] ? move_addr_to_kernel+0x50/0x50
[   72.539611]  [<ffffffff8301f224>] SyS_connect+0x24/0x30
[   72.544962]  [<ffffffff8301f200>] ? SyS_accept+0x30/0x30
[   72.550395]  [<ffffffff81006316>] do_syscall_64+0x1a6/0x490
[   72.556111]  [<ffffffff839ffcd3>] entry_SYSCALL_64_after_swapgs+0x5d/0xdb
[   72.563023] Code: 00 00 49 8d be 80 01 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 7b 09 00 00 49 8b 86 80 01 00 00 <f0> ff 80 80 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 8b 55 d0 
[   72.591113] RIP  [<ffffffff836c6e40>] l2tp_session_create+0xc60/0x16f0
[   72.597958]  RSP <ffff8801b5d0fac0>
[   72.601559] CR2: 0000000000000080
[   72.608845] ---[ end trace 335b0e5f06fa551e ]---
[   72.613864] Kernel panic - not syncing: Fatal exception
[   72.619526] Dumping ftrace buffer:
[   72.623052]    (ftrace buffer empty)
[   72.626736] Kernel Offset: disabled
[   72.630341] Rebooting in 86400 seconds..