[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[   17.138626] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   22.083559] random: sshd: uninitialized urandom read (32 bytes read)
[   22.618723] random: sshd: uninitialized urandom read (32 bytes read)
[   23.383549] random: sshd: uninitialized urandom read (32 bytes read)
[  159.778283] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.0.39' (ECDSA) to the list of known hosts.
[  165.225333] random: sshd: uninitialized urandom read (32 bytes read)
[  165.309932] IPVS: ftp: loaded support on port[0] = 21
[  240.505219] ==================================================================
[  240.506492] swap_info_get: Bad swap file entry 8007fffc400d72b
[  240.512753] BUG: KASAN: stack-out-of-bounds in bpf_tcp_close+0xf10/0x1050
[  240.512768] Read of size 8 at addr ffff8801adcc4428 by task syz-executor115/24313
[  240.518905] BUG: Bad page map in process syz-executor115  pte:1ffff10035cac810 pmd:1ae564067
[  240.525800] 
[  240.525812] CPU: 0 PID: 24313 Comm: syz-executor115 Not tainted 4.18.0-rc3+ #58
[  240.525817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  240.525866] Call Trace:
[  240.525890] 
[  240.533612] addr:(____ptrval____) vm_flags:00000875 anon_vma:          (null) mapping:(____ptrval____) index:0
[  240.542215] Allocated by task 2294230744:
[  240.542246] usercopy: Kernel memory overwrite attempt detected to SLAB object 'task_struct(17:syz0)' (offset 6088, size 2)!
[  240.544111] file:syz-executor115250413 fault:ext4_filemap_fault mmap:ext4_file_mmap readpage:ext4_readpage
[  240.551505] ------------[ cut here ]------------
[  240.551517] Bad or missing usercopy whitelist? Kernel memory overwrite attempt detected to SLAB object 'task_struct(17:syz0)' (offset 4936, size 2)!
[  240.551612] WARNING: CPU: 0 PID: 24313 at mm/usercopy.c:81 usercopy_warn+0xf5/0x120
[  240.561673] CPU: 1 PID: 4479 Comm: syz-executor115 Not tainted 4.18.0-rc3+ #58
[  240.564219] Kernel panic - not syncing: panic_on_warn set ...
[  240.564219] 
[  240.565902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  240.652207] Call Trace:
[  240.654903]  dump_stack+0x1c9/0x2b4
[  240.658994]  ? dump_stack_print_info.cold.2+0x52/0x52
[  240.664195]  ? pud_val+0x100/0x100
[  240.667775]  ? mpage_map_and_submit_buffers+0x9d0/0x9d0
[  240.673179]  ? ext4_page_mkwrite+0x1430/0x1430
[  240.677854]  ? ext4_file_open+0x7b0/0x7b0
[  240.682018]  print_bad_pte.cold.116+0x1cd/0x22b
[  240.686807]  ? __do_fault+0x450/0x450
[  240.690615]  ? kasan_check_write+0x14/0x20
[  240.694857]  ? do_raw_spin_lock+0xc1/0x200
[  240.699094]  unmap_page_range+0x1cb9/0x2220
[  240.703409]  ? trace_hardirqs_on+0x10/0x10
[  240.707637]  ? vm_normal_page_pmd+0x3f0/0x3f0
[  240.712140]  ? search_extable+0x80/0xb0
[  240.716386]  ? trim_init_extable+0x3a0/0x3a0
[  240.720817]  ? __get_user_8+0x21/0x2b
[  240.724614]  ? __do_page_fault+0x389/0xe50
[  240.728838]  ? __get_user_8+0x21/0x2b
[  240.732644]  ? ex_handler_default+0x18/0x90
[  240.736971]  ? iounmap.cold.18+0x1f/0x1f
[  240.741165]  ? fixup_exception+0x9a/0xcb
[  240.745232]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  240.750784]  ? no_context+0xd9/0x980
[  240.754504]  ? bad_area+0x53/0x80
[  240.758303]  ? pgtable_bad+0x130/0x130
[  240.762288]  ? down_read_trylock+0x103/0x1e0
[  240.766787]  ? __do_page_fault+0x389/0xe50
[  240.771468]  ? trace_hardirqs_on+0x10/0x10
[  240.775719]  ? trace_hardirqs_on+0x10/0x10
[  240.779960]  ? __bad_area_nosemaphore+0x310/0x3f0
[  240.784822]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  240.790458]  ? bad_area+0x69/0x80
[  240.793940]  ? trace_hardirqs_on+0x10/0x10
[  240.798184]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  240.803724]  ? uprobe_munmap+0x14c/0x440
[  240.807783]  ? mm_fault_error+0x380/0x380
[  240.811922]  ? uprobe_mmap+0xd20/0xd20
[  240.815811]  ? vmalloc_sync_all+0x30/0x30
[  240.819944]  unmap_single_vma+0x1a0/0x310
[  240.824260]  unmap_vmas+0x120/0x1f0
[  240.827888]  exit_mmap+0x2c2/0x5b0
[  240.831423]  ? __ia32_sys_munmap+0x80/0x80
[  240.835663]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  240.841284]  ? rcu_note_context_switch+0x730/0x730
[  240.846232]  ? lock_release+0xa30/0xa30
[  240.850203]  mmput+0x265/0x620
[  240.853475]  ? lock_downgrade+0x8a1/0x8f0
[  240.857608]  ? set_mm_exe_file+0x200/0x200
[  240.861834]  ? kasan_check_read+0x11/0x20
[  240.865978]  ? do_raw_spin_unlock+0xa7/0x2f0
[  240.870388]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  240.875207]  ? kasan_check_write+0x14/0x20
[  240.879538]  ? do_raw_spin_lock+0xc1/0x200
[  240.883781]  do_exit+0xea9/0x2750
[  240.887250]  ? mm_update_next_owner+0x9a0/0x9a0
[  240.892019]  ? profiling_store+0xd0/0xd0
[  240.896078]  ? kasan_check_write+0x14/0x20
[  240.900317]  ? do_raw_spin_lock+0xc1/0x200
[  240.904563]  ? do_coredump+0x477/0x3fff
[  240.908550]  ? kasan_check_write+0x14/0x20
[  240.912781]  ? do_raw_spin_lock+0xc1/0x200
[  240.917069]  ? _raw_read_unlock_irqrestore+0x90/0xc0
[  240.922165]  ? dump_align+0xa0/0xa0
[  240.925785]  ? save_stack+0xa9/0xd0
[  240.929401]  ? save_stack+0x43/0xd0
[  240.933021]  ? __kasan_slab_free+0x11a/0x170
[  240.937428]  ? kasan_slab_free+0xe/0x10
[  240.941396]  ? kmem_cache_free+0x86/0x2d0
[  240.945559]  ? __sigqueue_free.part.29+0x7d/0xa0
[  240.950304]  ? __dequeue_signal+0x530/0x7d0
[  240.954605]  ? dequeue_signal+0xbc/0x620
[  240.958654]  ? get_signal+0x3f1/0x1970
[  240.962541]  ? do_signal+0x9c/0x21c0
[  240.966241]  ? exit_to_usermode_loop+0x2e0/0x370
[  240.970997]  ? prepare_exit_to_usermode+0x342/0x3b0
[  240.976021]  ? kasan_check_read+0x11/0x20
[  240.980173]  ? do_raw_spin_unlock+0xa7/0x2f0
[  240.984573]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  240.989509]  ? kasan_check_write+0x14/0x20
[  240.993744]  ? do_raw_spin_lock+0xc1/0x200
[  240.997975]  ? trace_hardirqs_off+0xd/0x10
[  241.002226]  ? _raw_spin_unlock_irqrestore+0x63/0xc0
[  241.007333]  ? trace_hardirqs_off+0xd/0x10
[  241.011656]  ? quarantine_put+0x10d/0x1b0
[  241.015809]  ? __kasan_slab_free+0x131/0x170
[  241.020237]  ? trace_hardirqs_off+0xd/0x10
[  241.024506]  ? kmem_cache_free+0x22e/0x2d0
[  241.028754]  ? __sigqueue_free.part.29+0x7d/0xa0
[  241.033693]  ? __dequeue_signal+0xf9/0x7d0
[  241.038386]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  241.044464]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  241.050011]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  241.055566]  ? proc_coredump_connector+0x4d0/0x610
[  241.060493]  ? lock_downgrade+0x8f0/0x8f0
[  241.064638]  ? proc_comm_connector+0x500/0x500
[  241.069224]  do_group_exit+0x177/0x440
[  241.073251]  ? __ia32_sys_exit+0x50/0x50
[  241.077311]  ? kasan_check_write+0x14/0x20
[  241.081569]  ? do_raw_spin_lock+0xc1/0x200
[  241.085802]  get_signal+0x88e/0x1970
[  241.089530]  ? ptrace_notify+0x130/0x130
[  241.093615]  ? lock_release+0xa30/0xa30
[  241.097585]  ? __bad_area_nosemaphore+0x310/0x3f0
[  241.102427]  do_signal+0x9c/0x21c0
[  241.105969]  ? __bad_area+0x159/0x200
[  241.109760]  ? bad_area_nosemaphore+0x40/0x40
[  241.114254]  ? setup_sigcontext+0x7d0/0x7d0
[  241.118562]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  241.124097]  ? bad_area_access_error+0x1f2/0x2e0
[  241.128841]  ? find_vma+0x34/0x190
[  241.132377]  ? __do_page_fault+0x449/0xe50
[  241.136619]  ? clock_was_set_work+0x30/0x30
[  241.140944]  ? hrtimer_nanosleep+0x620/0x620
[  241.145363]  exit_to_usermode_loop+0x2e0/0x370
[  241.150119]  ? syscall_slow_exit_work+0x500/0x500
[  241.154984]  ? syscall_return_slowpath+0x5e0/0x5e0
[  241.159921]  prepare_exit_to_usermode+0x342/0x3b0
[  241.164766]  ? perf_trace_sys_enter+0xb10/0xb10
[  241.169434]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  241.174275]  ? page_fault+0x8/0x30
[  241.177809]  retint_user+0x8/0x18
[  241.181258] RIP: 0033:0x4731e0
[  241.184805] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 <00> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 
[  241.204009] RSP: 002b:00007ffd426a9928 EFLAGS: 00010246
[  241.209385] RAX: 0000000000000000 RBX: 0000000000002e7e RCX: 00000000004731e0
[  241.216773] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007ffd426a9930
[  241.224051] RBP: 0000000000002e7e R08: 0000000000000001 R09: 0000000000e2a880
[  241.231330] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000f7e
[  241.238611] R13: 000000000003ab5f R14: 0000000000000000 R15: 0000000000000000
[  241.245929] CPU: 0 PID: 24313 Comm: syz-executor115 Not tainted 4.18.0-rc3+ #58
[  241.245958] swap_info_get: Bad swap file entry 403fffe200725fc
[  241.253677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  241.253683] Call Trace:
[  241.254197] Dumping ftrace buffer:
[  241.254201]    (ftrace buffer empty)
[  241.254205] Kernel Offset: disabled
[  241.283568] Rebooting in 86400 seconds..