[....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 32.255018] random: sshd: uninitialized urandom read (32 bytes read) [ 32.462067] kauditd_printk_skb: 9 callbacks suppressed [ 32.462075] audit: type=1400 audit(1572665016.200:35): avc: denied { map } for pid=6736 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 32.503034] random: sshd: uninitialized urandom read (32 bytes read) [ 33.040961] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.10.13' (ECDSA) to the list of known hosts. [ 38.835374] urandom_read: 1 callbacks suppressed [ 38.835379] random: sshd: uninitialized urandom read (32 bytes read) executing program [ 38.956537] audit: type=1400 audit(1572665022.690:36): avc: denied { map } for pid=6749 comm="syz-executor616" path="/root/syz-executor616928593" dev="sda1" ino=16482 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 38.960787] INFO: trying to register non-static key. [ 38.987853] the code is fine but needs lockdep annotation. [ 38.993450] turning off the locking correctness validator. [ 38.999048] CPU: 0 PID: 6749 Comm: syz-executor616 Not tainted 4.14.151 #0 [ 39.006036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 39.015370] Call Trace: [ 39.017938] dump_stack+0x138/0x197 [ 39.021542] register_lock_class+0x2fd/0x1730 [ 39.026102] ? cpuacct_charge+0x1db/0x360 [ 39.030223] ? find_held_lock+0x35/0x130 [ 39.034257] ? check_noncircular+0x20/0x20 [ 39.038465] __lock_acquire+0x147/0x4620 [ 39.042499] ? save_trace+0x290/0x290 [ 39.046273] ? __lock_acquire+0x5f7/0x4620 [ 39.050479] ? __lock_is_held+0xb6/0x140 [ 39.054514] ? trace_hardirqs_on+0x10/0x10 [ 39.058722] ? trace_hardirqs_on+0x10/0x10 [ 39.062931] ? save_trace+0x290/0x290 [ 39.066726] ? check_preemption_disabled+0x3c/0x250 [ 39.071734] ? finish_task_switch+0x178/0x650 [ 39.076204] ? find_held_lock+0x35/0x130 [ 39.080237] lock_acquire+0x16f/0x430 [ 39.084012] ? flush_work+0x84/0x730 [ 39.087697] flush_work+0xae/0x730 [ 39.091209] ? flush_work+0x84/0x730 [ 39.094903] ? insert_work+0x320/0x320 [ 39.098760] ? finish_task_switch+0x178/0x650 [ 39.103225] ? finish_task_switch+0x14d/0x650 [ 39.107696] ? __schedule+0x7c0/0x1cd0 [ 39.111558] ? mark_held_locks+0xb1/0x100 [ 39.115678] ? __cancel_work_timer+0x166/0x480 [ 39.120231] __cancel_work_timer+0x2f0/0x480 [ 39.124627] ? cancel_delayed_work+0x20/0x20 [ 39.129007] ? preempt_schedule+0x4b/0x60 [ 39.133131] ? smc_accept_dequeue+0x3b6/0x5e0 [ 39.137609] ? __local_bh_enable_ip+0x15e/0x1a0 [ 39.142257] cancel_work_sync+0x18/0x20 [ 39.146203] smc_close_active+0x68e/0xba0 [ 39.150324] smc_release+0x45a/0x630 [ 39.154015] __sock_release+0xce/0x2b0 [ 39.157890] ? __sock_release+0x2b0/0x2b0 [ 39.162009] sock_close+0x1b/0x30 [ 39.165438] __fput+0x275/0x7a0 [ 39.168693] ____fput+0x16/0x20 [ 39.171960] task_work_run+0x114/0x190 [ 39.175821] do_exit+0x7df/0x2c10 [ 39.179271] ? mm_update_next_owner+0x5d0/0x5d0 [ 39.183925] ? release_sock+0x14a/0x1b0 [ 39.187874] ? smc_listen+0x141/0x400 [ 39.191647] ? SyS_listen+0x181/0x230 [ 39.195420] do_group_exit+0x111/0x330 [ 39.199283] SyS_exit_group+0x1d/0x20 [ 39.203057] ? do_group_exit+0x330/0x330 [ 39.207093] do_syscall_64+0x1e8/0x640 [ 39.210963] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 39.215791] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 39.220956] RIP: 0033:0x43ed88 [ 39.224130] RSP: 002b:00007ffd1fcc8898 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 39.231819] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000043ed88 [ 39.239066] RDX: 0000000000000000 RSI: 000000000000003c RDI: 0000000000000000 [ 39.246313] RBP: 00000000004be588 R08: 00000000000000e7 R09: ffffffffffffffd0 [ 39.253558] R10: 0000000000000000 R11: 0000000