[....] Starting file context maintaining daemon: restorecond[?25l[?1c7[1G[[[ 16.476631] random: sshd: uninitialized urandom read (32 bytes read, 33 bits of entropy available) 32m ok [39;49m8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 21.443804] random: sshd: uninitialized urandom read (32 bytes read, 40 bits of entropy available) [ 21.742149] random: sshd: uninitialized urandom read (32 bytes read, 40 bits of entropy available) [ 22.571312] random: sshd: uninitialized urandom read (32 bytes read, 106 bits of entropy available) [ 32.593285] random: sshd: uninitialized urandom read (32 bytes read, 113 bits of entropy available) Warning: Permanently added '10.128.0.42' (ECDSA) to the list of known hosts. [ 37.994499] random: sshd: uninitialized urandom read (32 bytes read, 119 bits of entropy available) executing program [ 38.087427] kasan: CONFIG_KASAN_INLINE enabled [ 38.092250] kasan: GPF could be caused by NULL-ptr deref or user memory accessgeneral protection fault: 0000 [#1] PREEMPT SMP KASAN [ 38.105054] Dumping ftrace buffer: [ 38.108566] (ftrace buffer empty) [ 38.112243] Modules linked in: [ 38.115611] CPU: 0 PID: 3339 Comm: syzkaller439748 Not tainted 4.4.107-g610c835 #4 [ 38.123278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 38.132597] task: ffff8801d21717c0 task.stack: ffff8801cfc10000 [ 38.138617] RIP: 0010:[] [] __free_pages+0x21/0x90 [ 38.146847] RSP: 0018:ffff8801cfc17970 EFLAGS: 00010a07 [ 38.152261] RAX: dffffc0000000000 RBX: dead4ead00000000 RCX: ffffffff825b8ccb [ 38.159497] RDX: 1bd5a9d5a0000003 RSI: 0000000000000001 RDI: dead4ead0000001c [ 38.166734] RBP: ffff8801cfc17980 R08: 0000000000000001 R09: 0000000000000000 [ 38.173970] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000004 [ 38.181204] R13: 0000000000000020 R14: ffff8801d515c200 R15: dffffc0000000000 [ 38.188440] FS: 0000000000000000(0000) GS:ffff8801db200000(0063) knlGS:0000000008ffa840 [ 38.196629] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 38.202473] CR2: 0000000020d84f40 CR3: 00000000b4ba7000 CR4: 00000000001406f0 [ 38.209708] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 38.216941] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 38.224181] Stack: [ 38.226292] 0000000000000000 ffff8801d515c358 ffff8801cfc179e0 ffffffff825b8cf1 [ 38.234232] ffff8801d515c370 ffffed003aa2b86b ffffed003aa2b86e ffff8801d515c368 [ 38.242193] dead4ead00000000 ffff8801d515c340 0000000000000000 0000000000000000 [ 38.250146] Call Trace: [ 38.252702] [] sg_remove_scat.isra.17+0x1c1/0x2d0 [ 38.259158] [] sg_finish_rem_req+0x2b5/0x340 [ 38.265179] [] sg_new_read.isra.18+0x39/0x3c0 [ 38.271297] [] ? sg_get_rq_mark+0x142/0x190 [ 38.277247] [] sg_read+0x8c2/0x1490 [ 38.282489] [] ? sg_ioctl+0x2c20/0x2c20 [ 38.288086] [] ? sg_proc_seq_show_debug+0xd30/0xd30 [ 38.294716] [] ? fsnotify+0xee0/0xee0 [ 38.300131] [] ? avc_policy_seqno+0x9/0x20 [ 38.305982] [] do_loop_readv_writev+0x141/0x1e0 [ 38.312266] [] ? security_file_permission+0x89/0x1e0 [ 38.318986] [] ? sg_proc_seq_show_debug+0xd30/0xd30 [ 38.325616] [] ? sg_proc_seq_show_debug+0xd30/0xd30 [ 38.332255] [] compat_do_readv_writev+0x5df/0x6e0 [ 38.338710] [] ? vfs_writev+0xb0/0xb0 [ 38.344122] [] ? __vfs_write+0x10b/0x450 [ 38.349798] [] ? _raw_spin_unlock+0x2c/0x50 [ 38.355732] [] ? fsnotify+0xee0/0xee0 [ 38.361144] [] ? rw_verify_area+0x100/0x2f0 [ 38.367080] [] compat_readv+0xd9/0x140 [ 38.372579] [] compat_SyS_readv+0xd8/0x1b0 [ 38.378426] [] ? SyS_pwritev+0x230/0x230 [ 38.384099] [] ? do_fast_syscall_32+0xd7/0x890 [ 38.390293] [] ? SyS_pwritev+0x230/0x230 [ 38.395966] [] do_fast_syscall_32+0x314/0x890 [ 38.402073] [] sysenter_flags_fixed+0xd/0x17 [ 38.408092] Code: 76 ae 0c 00 e9 78 fd ff ff 90 48 b8 00 00 00 00 00 fc ff df 55 48 89 e5 53 48 89 fb 48 83 c7 1c 48 89 fa 48 83 ec 08 48 c1 ea 03 <0f> b6 14 02 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 04 84 d2 75 49 [ 38.434362] RIP [] __free_pages+0x21/0x90 [ 38.440237] RSP [ 38.443953] ---[ end trace 12e879c50477f454 ]--- [ 38.448678] Kernel panic - not syncing: Fatal exception [ 38.454042] Dumping ftrace buffer: [ 38.457550] (ftrace buffer empty) [ 38.461224] Kernel Offset: disabled [ 38.464816] Rebooting in 86400 seconds..