[    9.584047] random: sshd: uninitialized urandom read (32 bytes read)
[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c.
[....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   21.554651] random: sshd: uninitialized urandom read (32 bytes read)
[   21.766812] random: sshd: uninitialized urandom read (32 bytes read)
[   21.881949] random: crng init done
Warning: Permanently added '10.128.0.179' (ECDSA) to the list of known hosts.
2019/09/03 07:49:44 parsed 1 programs
2019/09/03 07:49:45 executed programs: 0
[   47.937162] audit: type=1400 audit(1567496986.338:5): avc:  denied  { associate } for  pid=2074 comm="syz-executor.0" name="syz0" scontext=unconfined_u:object_r:unlabeled_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=filesystem permissive=1
[   48.303198] ------------[ cut here ]------------
[   48.308006] kernel BUG at ./include/linux/skbuff.h:1294!
[   48.313453] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[   48.318817] Modules linked in:
[   48.322131] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 4.9.190+ #2
[   48.328353] task: 000000008239087c task.stack: 00000000b9d9b18d
[   48.334432] RIP: 0010:[<ffffffff8252c406>]  [<00000000ad7009d9>] tcp_fragment+0x1266/0x1390
[   48.343388] RSP: 0018:ffff8801db707b90  EFLAGS: 00010206
[   48.348816] RAX: ffff8801da6b2f80 RBX: ffff8801d0a48a80 RCX: 1ffff1003a1491cd
[   48.356076] RDX: 0000000000000100 RSI: ffffffff8252c406 RDI: ffff8801cbc10288
[   48.363413] RBP: ffff8801db707be0 R08: 0000000002080020 R09: ffff8801cbc102a8
[   48.370684] R10: ffff88021fffd050 R11: 0000000ba17ba565 R12: 0000000000000000
[   48.377994] R13: ffff8801d0a48c70 R14: ffff8801cbc10280 R15: ffff8801d0a48cc4
[   48.385523] FS:  0000000000000000(0000) GS:ffff8801db700000(0000) knlGS:0000000000000000
[   48.393735] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   48.399981] CR2: 000000000075c000 CR3: 00000001cbcbf000 CR4: 00000000001606b0
[   48.407373] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   48.414626] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   48.421877] Stack:
[   48.424015]  ffff8801cbc10280 ffff8801d0a48c70 ffff8801cbc102f8 ffff880102080020
[   48.432335]  000068000000ffcb 0000000000006800 ffff8801d0a48a80 ffff8801cbc10280
[   48.440681]  000000000000ffcb ffff8801cbc102b4 ffff8801db707c30 ffffffff8253fd65
[   48.448777] Call Trace:
[   48.451339]  <IRQ> [   48.453400]  [<000000005029487e>] tcp_write_wakeup+0x345/0x5b0
[   48.459397]  [<00000000786128c6>] tcp_send_probe0+0x4b/0x400
[   48.465372]  [<00000000e2f64aeb>] tcp_write_timer_handler+0x6a0/0x7a0
[   48.471947]  [<00000000cea2d03c>] tcp_write_timer+0xc5/0x190
[   48.477727]  [<00000000bd3112ef>] call_timer_fn+0x167/0x6d0
[   48.483592]  [<0000000026d6b595>] ? call_timer_fn+0xde/0x6d0
[   48.489369]  [<000000005b1a0767>] ? free_object+0x2b0/0x2b0
[   48.495061]  [<000000004202923b>] ? tcp_write_timer_handler+0x7a0/0x7a0
[   48.501815]  [<000000006dd65b7c>] ? process_timeout+0x20/0x20
[   48.507765]  [<000000002f69ca6b>] ? _raw_spin_unlock_irq+0x28/0x60
[   48.514065]  [<000000004202923b>] ? tcp_write_timer_handler+0x7a0/0x7a0
[   48.521000]  [<00000000f8389070>] ? trace_hardirqs_on_caller+0x260/0x5a0
[   48.527942]  [<000000004202923b>] ? tcp_write_timer_handler+0x7a0/0x7a0
[   48.534698]  [<00000000c6b49c02>] expire_timers+0x25b/0x5c0
[   48.540490]  [<00000000f1add57c>] run_timer_softirq+0x1ff/0x620
[   48.546561]  [<000000001599bccc>] ? expire_timers+0x5c0/0x5c0
[   48.552445]  [<00000000db9ed6be>] ? check_preemption_disabled+0x3c/0x200
[   48.559368]  [<00000000db9ed6be>] ? check_preemption_disabled+0x3c/0x200
[   48.566193]  [<000000007fe3f41e>] __do_softirq+0x22d/0x964
[   48.571809]  [<00000000d75602c1>] ? hrtimer_interrupt+0x34b/0x450
[   48.578030]  [<00000000db9ed6be>] ? check_preemption_disabled+0x3c/0x200
[   48.585147]  [<000000000dfb3919>] irq_exit+0x119/0x160
[   48.590417]  [<00000000781cd91c>] smp_apic_timer_interrupt+0x7e/0xb0
[   48.597151]  [<000000001a597e75>] apic_timer_interrupt+0xa5/0xb0
[   48.603548]  <EOI> [   48.605768]  [<00000000186439dc>] ? native_safe_halt+0x41/0x60
[   48.611741]  [<000000001011b274>] default_idle+0x56/0x370
[   48.617282]  [<000000005cc66a76>] arch_cpu_idle+0x10/0x20
[   48.622803]  [<00000000342338b6>] default_idle_call+0x36/0x60
[   48.628679]  [<000000009ecc9ac8>] cpu_startup_entry+0x283/0x3a0
[   48.634837]  [<00000000ce07f33a>] ? cpu_in_idle+0x20/0x20
[   48.640390]  [<000000008938aba1>] start_secondary+0x31c/0x410
[   48.646288]  [<00000000ce520db9>] ? set_cpu_sibling_map+0x1290/0x1290
[   48.652847] Code: c1 ea 03 80 3c 02 00 0f 85 3a 01 00 00 4c 8b ab f8 01 00 00 ba 00 00 00 00 4c 3b 6d b8 4c 0f 44 ea e9 f9 fc ff ff e8 6a 5f df fe <0f> 0b e8 f3 20 fd fe e9 6e f0 ff ff e8 e9 20 fd fe e9 68 f3 ff 
[   48.680508] RIP  [<00000000ad7009d9>] tcp_fragment+0x1266/0x1390
[   48.686786]  RSP <ffff8801db707b90>
[   48.690444] ---[ end trace 28a53f1e69d0eb8b ]---
[   48.695207] Kernel panic - not syncing: Fatal exception in interrupt
[   48.702945] Kernel Offset: disabled
[   48.706835] Rebooting in 86400 seconds..