[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[   19.967922] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   20.402416] random: sshd: uninitialized urandom read (32 bytes read)
[   20.734952] random: sshd: uninitialized urandom read (32 bytes read)

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   21.589753] random: sshd: uninitialized urandom read (32 bytes read)
[  587.459363] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.10.60' (ECDSA) to the list of known hosts.
[  593.005496] random: sshd: uninitialized urandom read (32 bytes read)
executing program
[  861.152239] INFO: task syz-executor815:4525 blocked for more than 140 seconds.
[  861.159844]       Not tainted 4.18.0-rc5+ #149
[  861.164455] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  861.172450] syz-executor815 D23464  4525   4521 0x00000004
[  861.178203] Call Trace:
[  861.180872]  __schedule+0x87c/0x1ed0
[  861.184617]  ? __sched_text_start+0x8/0x8
[  861.188785]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  861.193424]  ? _raw_spin_unlock_irqrestore+0x74/0xc0
[  861.198570]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  861.203628]  ? trace_hardirqs_on+0xd/0x10
[  861.207795]  ? prepare_to_wait_event+0x396/0xc70
[  861.212580]  ? prepare_to_wait_exclusive+0x550/0x550
[  861.217708]  schedule+0xfb/0x450
[  861.221114]  ? __schedule+0x1ed0/0x1ed0
[  861.225125]  ? check_same_owner+0x340/0x340
[  861.229480]  ? do_raw_spin_unlock+0xa7/0x2f0
[  861.233910]  ? replenish_dl_entity.cold.53+0x37/0x37
[  861.239051]  request_wait_answer+0x4c8/0x920
[  861.243487]  ? fuse_read_forget.isra.22+0xdc0/0xdc0
[  861.248530]  ? finish_wait+0x430/0x430
[  861.252436]  ? finish_wait+0x430/0x430
[  861.256355]  ? finish_wait+0x430/0x430
[  861.260273]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  861.264882]  ? fuse_dev_ioctl+0x430/0x430
[  861.269052]  ? kasan_check_write+0x14/0x20
[  861.273315]  ? do_raw_spin_lock+0xc1/0x200
[  861.277578]  __fuse_request_send+0x12a/0x1d0
[  861.282333]  fuse_request_send+0x62/0xa0
[  861.286511]  fuse_simple_request+0x33d/0x730
[  861.290939]  fuse_lookup_name+0x3ee/0x830
[  861.295096]  ? fuse_valid_type+0xb0/0xb0
[  861.299180]  fuse_lookup+0xf9/0x4c0
[  861.302814]  ? fuse_lookup_name+0x830/0x830
[  861.307168]  ? retint_kernel+0x10/0x10
[  861.311065]  ? __lockdep_init_map+0x105/0x590
[  861.315680]  __lookup_slow+0x2b5/0x540
[  861.319580]  ? vfs_unlink+0x510/0x510
[  861.323408]  ? down_read+0xb5/0x1d0
[  861.327063]  ? lookup_slow+0x49/0x80
[  861.330798]  ? __down_interruptible+0x700/0x700
[  861.335489]  ? lookup_fast+0x470/0x12a0
[  861.339486]  ? __follow_mount_rcu.isra.36.part.37+0x890/0x890
[  861.345394]  lookup_slow+0x57/0x80
[  861.348964]  walk_component+0x94a/0x2630
[  861.353042]  ? inode_permission+0xb2/0x560
[  861.357294]  ? path_init+0x2340/0x2340
[  861.361466]  ? walk_component+0x2630/0x2630
[  861.365814]  ? trace_hardirqs_on+0xd/0x10
[  861.369987]  ? depot_save_stack+0x291/0x470
[  861.374339]  ? save_stack+0xa9/0xd0
[  861.377986]  ? save_stack+0x43/0xd0
[  861.381630]  ? kmem_cache_alloc+0x12e/0x760
[  861.385971]  ? getname_flags+0xd0/0x5a0
[  861.389967]  ? user_path_at_empty+0x2d/0x50
[  861.394312]  ? do_utimes+0x1d0/0x380
[  861.398050]  path_lookupat.isra.45+0x202/0xbf0
[  861.402657]  ? find_held_lock+0x36/0x1c0
[  861.406768]  ? path_parentat.isra.43+0x160/0x160
[  861.411570]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  861.416782]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  861.421835]  ? __check_object_size+0x9d/0x5f2
[  861.426351]  ? usercopy_warn+0x120/0x120
[  861.430426]  ? kasan_check_read+0x11/0x20
[  861.434596]  ? do_raw_spin_unlock+0xa7/0x2f0
[  861.439151]  filename_lookup+0x264/0x510
[  861.443289]  ? filename_parentat.isra.58+0x570/0x570
[  861.448427]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  861.454009]  ? mpi_free.cold.1+0x19/0x19
[  861.458108]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  861.463681]  ? getname_flags+0x26e/0x5a0
[  861.467761]  ? lock_downgrade+0x8f0/0x8f0
[  861.471942]  user_path_at_empty+0x40/0x50
[  861.476102]  do_utimes+0x1d0/0x380
[  861.479658]  ? utimes_common.isra.1+0x8e0/0x8e0
[  861.484344]  __x64_sys_utime+0x1df/0x290
[  861.488433]  ? do_futex+0x27d0/0x27d0
[  861.492244]  ? do_compat_futimesat+0x380/0x380
[  861.496851]  ? _raw_spin_unlock_irq+0x27/0x70
[  861.501366]  ? do_syscall_64+0x9a/0x820
[  861.505376]  do_syscall_64+0x1b9/0x820
[  861.509297]  ? syscall_return_slowpath+0x5e0/0x5e0
[  861.514256]  ? syscall_return_slowpath+0x31d/0x5e0
[  861.519232]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  861.524989]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  861.529856]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  861.535066] RIP: 0033:0x445809
[  861.538264] Code: Bad RIP value.
[  861.541671] RSP: 002b:00007fc3299abda8 EFLAGS: 00000246 ORIG_RAX: 0000000000000084
[  861.549485] RAX: ffffffffffffffda RBX: 00000000006dac3c RCX: 0000000000445809
[  861.556789] RDX: 0000000000445809 RSI: 00000000200001c0 RDI: 0000000020000080
[  861.564067] RBP: 00000000006dac38 R08: 0000000000000000 R09: 0000000000000000
[  861.571366] R10: 0000000000000000 R11: 0000000000000246 R12: 0030656c69662f2e
[  861.578669] R13: 65646f6d746f6f72 R14: 2f30656c69662f2e R15: 0000000000000001
[  861.586026] 
[  861.586026] Showing all locks held in the system:
[  861.592383] 1 lock held by khungtaskd/901:
[  861.596639]  #0: (____ptrval____) (rcu_read_lock){....}, at: debug_show_all_locks+0xd0/0x428
[  861.605309] 1 lock held by rsyslogd/4404:
[  861.609500] 2 locks held by getty/4494:
[  861.613724]  #0: (____ptrval____) (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x37/0x40
[  861.622054]  #1: (____ptrval____) (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1ce0
[  861.630962] 2 locks held by getty/4495:
[  861.635052]  #0: (____ptrval____) (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x37/0x40
[  861.643330]  #1: (____ptrval____) (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1ce0
[  861.652311] 2 locks held by getty/4496:
[  861.656312]  #0: (____ptrval____) (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x37/0x40
[  861.664614]  #1: (____ptrval____) (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1ce0
[  861.673528] 2 locks held by getty/4497:
[  861.677535]  #0: (____ptrval____) (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x37/0x40
[  861.686005]  #1: (____ptrval____) (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1ce0
[  861.694918] 2 locks held by getty/4498:
[  861.698972]  #0: (____ptrval____) (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x37/0x40
[  861.707327]  #1: (____ptrval____) (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1ce0
[  861.716317] 2 locks held by getty/4499:
[  861.720309]  #0: (____ptrval____) (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x37/0x40
[  861.728626]  #1: (____ptrval____) (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1ce0
[  861.737607] 2 locks held by getty/4500:
[  861.741660]  #0: (____ptrval____) (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x37/0x40
[  861.749953]  #1: (____ptrval____) (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1ce0
[  861.759242] 2 locks held by syz-executor815/4525:
[  861.764155]  #0: (____ptrval____) (&type->i_mutex_dir_key#3){.+.+}, at: lookup_slow+0x49/0x80
[  861.773040]  #1: (____ptrval____) (&fi->mutex){+.+.}, at: fuse_lock_inode+0xaf/0xe0
[  861.781097] 
[  861.782764] =============================================
[  861.782764] 
[  861.789802] NMI backtrace for cpu 1
[  861.793450] CPU: 1 PID: 901 Comm: khungtaskd Not tainted 4.18.0-rc5+ #149
[  861.800445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  861.809796] Call Trace:
[  861.812459]  dump_stack+0x1c9/0x2b4
[  861.816090]  ? dump_stack_print_info.cold.2+0x52/0x52
[  861.821786]  ? vprintk_default+0x28/0x30
[  861.825836]  nmi_cpu_backtrace.cold.4+0x19/0xce
[  861.830491]  ? rcu_report_qs_rnp+0x7a0/0x7a0
[  861.834890]  ? lapic_can_unplug_cpu.cold.27+0x3f/0x3f
[  861.840065]  nmi_trigger_cpumask_backtrace+0x151/0x192
[  861.845341]  arch_trigger_cpumask_backtrace+0x14/0x20
[  861.850520]  watchdog+0x9c4/0xf80
[  861.853969]  ? reset_hung_task_detector+0xd0/0xd0
[  861.858803]  ? kasan_check_read+0x11/0x20
[  861.862942]  ? do_raw_spin_unlock+0xa7/0x2f0
[  861.867339]  ? _raw_spin_unlock_irqrestore+0x74/0xc0
[  861.872421]  ? __kthread_parkme+0x58/0x1b0
[  861.876656]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  861.882468]  ? trace_hardirqs_on+0xd/0x10
[  861.886923]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  861.892470]  ? __kthread_parkme+0x106/0x1b0
[  861.896776]  kthread+0x345/0x410
[  861.900127]  ? reset_hung_task_detector+0xd0/0xd0
[  861.904952]  ? kthread_bind+0x40/0x40
[  861.908738]  ret_from_fork+0x3a/0x50
[  861.912547] Sending NMI from CPU 1 to CPUs 0:
[  861.917105] NMI backtrace for cpu 0 skipped: idling at native_safe_halt+0x6/0x10
[  861.918069] Kernel panic - not syncing: hung_task: blocked tasks
[  861.930915] CPU: 1 PID: 901 Comm: khungtaskd Not tainted 4.18.0-rc5+ #149
[  861.937831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  861.947167] Call Trace:
[  861.949742]  dump_stack+0x1c9/0x2b4
[  861.953351]  ? dump_stack_print_info.cold.2+0x52/0x52
[  861.958542]  ? printk_safe_log_store+0x2f0/0x2f0
[  861.963287]  panic+0x238/0x4e7
[  861.966462]  ? add_taint.cold.5+0x16/0x16
[  861.970595]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  861.976127]  ? nmi_trigger_cpumask_backtrace+0x13a/0x192
[  861.981574]  ? printk_safe_flush+0xd7/0x130
[  861.985900]  watchdog+0x9d5/0xf80
[  861.989362]  ? reset_hung_task_detector+0xd0/0xd0
[  861.994193]  ? kasan_check_read+0x11/0x20
[  861.998326]  ? do_raw_spin_unlock+0xa7/0x2f0
[  862.002723]  ? _raw_spin_unlock_irqrestore+0x74/0xc0
[  862.007818]  ? __kthread_parkme+0x58/0x1b0
[  862.012038]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  862.017051]  ? trace_hardirqs_on+0xd/0x10
[  862.021185]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  862.026708]  ? __kthread_parkme+0x106/0x1b0
[  862.031014]  kthread+0x345/0x410
[  862.034367]  ? reset_hung_task_detector+0xd0/0xd0
[  862.039552]  ? kthread_bind+0x40/0x40
[  862.043341]  ret_from_fork+0x3a/0x50
[  862.047691] Dumping ftrace buffer:
[  862.051314]    (ftrace buffer empty)
[  862.055036] Kernel Offset: disabled
[  862.058656] Rebooting in 86400 seconds..