[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[   14.349644] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   20.865528] random: sshd: uninitialized urandom read (32 bytes read)
[   21.250759] random: sshd: uninitialized urandom read (32 bytes read)
[   21.801765] random: sshd: uninitialized urandom read (32 bytes read)
[   21.937872] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.10.34' (ECDSA) to the list of known hosts.
[   27.536452] random: sshd: uninitialized urandom read (32 bytes read)
2018/08/22 15:08:53 parsed 1 programs
[   28.765312] random: cc1: uninitialized urandom read (8 bytes read)
2018/08/22 15:08:55 executed programs: 0
[   29.944305] IPVS: Creating netns size=2536 id=1
[   30.067169] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   30.078729] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   30.122736] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   30.134464] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[   30.177982] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   30.189503] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   30.202721] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   30.224488] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   30.719700] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   30.746212] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   30.752449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   30.759194] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   30.951664] hrtimer: interrupt took 32629 ns
[   31.283650] l2tp_core: tunl 4: sockfd_lookup(fd=6) returned -9
[   31.393320] BUG: unable to handle kernel NULL pointer dereference at 0000000000000080
[   31.401668] IP: [<ffffffff836c8e30>] l2tp_session_create+0xc60/0x16f0
[   31.408361] PGD 1d3d5a067 [   31.411007] PUD 1d3e6d067 
PMD 0 [   31.414486] 
[   31.416107] Oops: 0002 [#1] PREEMPT SMP KASAN
[   31.420575] Dumping ftrace buffer:
[   31.424087]    (ftrace buffer empty)
[   31.427774] Modules linked in:
[   31.431059] CPU: 0 PID: 4409 Comm: syz-executor0 Not tainted 4.9.123-g8dd3fc2 #79
[   31.438652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   31.447981] task: ffff8801d4100000 task.stack: ffff8801d4298000
[   31.454012] RIP: 0010:[<ffffffff836c8e30>]  [<ffffffff836c8e30>] l2tp_session_create+0xc60/0x16f0
[   31.463126] RSP: 0018:ffff8801d429fac0  EFLAGS: 00010246
[   31.468549] RAX: 0000000000000000 RBX: ffff8801d3d1cc80 RCX: 1ffff1003a82011d
[   31.475926] RDX: 1ffff1003a7d8f50 RSI: ffff8801d41008c8 RDI: ffff8801d3ec7a80
[   31.483270] RBP: ffff8801d429fb60 R08: ffff8801d41008e8 R09: 0000000000000000
[   31.490629] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8801d3ec7958
[   31.497875] R13: 0000000000000000 R14: ffff8801d3ec7900 R15: ffff8801d429fc78
[   31.505121] FS:  00007f80df9c7700(0000) GS:ffff8801db200000(0000) knlGS:0000000000000000
[   31.513320] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   31.519183] CR2: 0000000000000080 CR3: 00000001d4516000 CR4: 00000000001606f0
[   31.526431] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   31.533680] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   31.540921] Stack:
[   31.543043]  0000000000000201 ffffffff836ca141 ffff8801d429fae0 ffffffff81237f0d
[   31.551031]  ffff8801d3ec7900 ffff8801d3d1cdd8 ffff8801d3ec7958 ffff8801d3d1cdd0
[   31.559043]  ffff8801d3d1cd30 ffff8801d3ec7920 0000000000000000 0000000000000000
[   31.567182] Call Trace:
[   31.569752]  [<ffffffff836ca141>] ? l2tp_session_get+0x1d1/0x790
[   31.575876]  [<ffffffff81237f0d>] ? trace_hardirqs_on+0xd/0x10
[   31.581823]  [<ffffffff836cdfe7>] pppol2tp_connect+0x10d7/0x18f0
[   31.587949]  [<ffffffff836ccf10>] ? pppol2tp_seq_show+0xc30/0xc30
[   31.594161]  [<ffffffff81cf90cf>] ? security_socket_connect+0x8f/0xc0
[   31.600851]  [<ffffffff8301e958>] SYSC_connect+0x1b8/0x300
[   31.606456]  [<ffffffff8301e7a0>] ? SYSC_bind+0x280/0x280
[   31.611974]  [<ffffffff812db710>] ? do_futex+0x17c0/0x17c0
[   31.617685]  [<ffffffff83020830>] ? move_addr_to_kernel+0x50/0x50
[   31.624006]  [<ffffffff83021224>] SyS_connect+0x24/0x30
[   31.629408]  [<ffffffff83021200>] ? SyS_accept+0x30/0x30
[   31.634848]  [<ffffffff81006316>] do_syscall_64+0x1a6/0x490
[   31.640544]  [<ffffffff83a01c93>] entry_SYSCALL_64_after_swapgs+0x5d/0xdb
[   31.647556] Code: 00 00 49 8d be 80 01 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 7b 09 00 00 49 8b 86 80 01 00 00 <f0> ff 80 80 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 8b 55 d0 
[   31.674926] RIP  [<ffffffff836c8e30>] l2tp_session_create+0xc60/0x16f0
[   31.681737]  RSP <ffff8801d429fac0>
[   31.685336] CR2: 0000000000000080
[   31.689291] ---[ end trace bcae9b8b13a28fa7 ]---
[   31.694205] Kernel panic - not syncing: Fatal exception
[   31.699837] Dumping ftrace buffer:
[   31.703364]    (ftrace buffer empty)
[   31.707049] Kernel Offset: disabled
[   31.710746] Rebooting in 86400 seconds..