[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 13.200184] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 17.604719] random: sshd: uninitialized urandom read (32 bytes read) [ 17.981322] random: sshd: uninitialized urandom read (32 bytes read) [ 18.556682] random: sshd: uninitialized urandom read (32 bytes read) [ 18.700940] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.0.28' (ECDSA) to the list of known hosts. [ 24.206708] random: sshd: uninitialized urandom read (32 bytes read) 2018/08/29 09:44:54 parsed 1 programs [ 25.306323] random: cc1: uninitialized urandom read (8 bytes read) 2018/08/29 09:44:56 executed programs: 0 [ 26.524844] IPVS: Creating netns size=2536 id=1 [ 26.559124] IPVS: Creating netns size=2536 id=2 [ 26.601974] IPVS: Creating netns size=2536 id=3 [ 26.634184] IPVS: Creating netns size=2536 id=4 [ 26.668557] IPVS: Creating netns size=2536 id=5 [ 26.722666] IPVS: Creating netns size=2536 id=6 [ 26.773968] IPVS: Creating netns size=2536 id=7 [ 26.827786] IPVS: Creating netns size=2536 id=8 [ 27.036870] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 27.093060] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 27.138461] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 27.192765] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 27.229706] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 27.273245] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 27.352147] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 27.372876] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 27.403324] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 27.455020] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 27.495842] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 27.518891] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 27.536420] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 27.545766] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 27.556885] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 27.568635] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 27.584345] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 27.599779] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 27.671366] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 27.685967] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 27.713257] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 27.725024] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 27.740345] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 27.771677] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 27.789746] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 27.799477] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 27.807800] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 27.840999] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 27.849538] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 27.857207] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 27.869818] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 27.879989] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 27.888931] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 27.896493] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 27.913361] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 27.929880] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 27.939582] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 27.947117] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 27.956326] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 27.964127] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 27.984980] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 27.992639] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 28.003720] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 28.029729] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 28.039865] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 28.053579] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 28.078185] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 28.089995] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 28.098446] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 28.106282] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 28.128780] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 28.136810] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 28.146819] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 28.155945] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 28.165812] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 28.173844] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 28.182268] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 28.189877] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 28.199334] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 28.210160] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 28.218723] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 28.233064] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 28.248678] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 28.279655] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 28.300059] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 28.325102] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 28.344568] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 28.364344] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 28.373473] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 28.390122] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 28.397182] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 28.412582] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 28.435887] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 28.449323] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 28.459080] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 28.470113] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 28.482076] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 28.491366] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 28.501347] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 28.509106] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 28.524245] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 28.534943] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 28.547989] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 28.561514] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 28.573366] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 28.589827] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 28.599136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 28.606842] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 28.619082] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 28.635436] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 28.645363] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 28.668682] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 28.683705] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 28.700150] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 31.493137] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 31.592332] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 31.652666] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 31.668230] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 31.675161] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 31.721516] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 31.755142] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 31.768657] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 31.775446] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 31.873795] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 31.895034] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 31.906799] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 31.917048] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 31.929699] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 31.944985] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 31.981950] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 32.037721] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 32.051697] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 32.061778] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 32.078448] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 32.090761] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 32.097510] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 32.120637] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 32.128351] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 32.135127] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 32.152189] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 32.166231] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 32.177542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 32.204410] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 32.356106] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 32.371681] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 32.380206] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 33.009597] BUG: unable to handle kernel NULL pointer dereference at 0000000000000080 [ 33.017948] IP: [] l2tp_session_create+0xc60/0x16f0 [ 33.024789] PGD 1d3b48067 [ 33.027469] PUD 1d32ab067 PMD 0 [ 33.031024] [ 33.032692] Oops: 0002 [#1] PREEMPT SMP KASAN [ 33.037200] Dumping ftrace buffer: [ 33.040746] (ftrace buffer empty) [ 33.044551] Modules linked in: [ 33.047939] CPU: 1 PID: 6544 Comm: syz-executor1 Not tainted 4.9.124-g09eb2ba #83 [ 33.055576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 33.064976] task: ffff8801ccba4800 task.stack: ffff8801cc1b0000 [ 33.071474] RIP: 0010:[] [] l2tp_session_create+0xc60/0x16f0 [ 33.080789] RSP: 0018:ffff8801cc1b7ac0 EFLAGS: 00010246 [ 33.086252] RAX: 0000000000000000 RBX: ffff8801d7886c80 RCX: 1ffff10039974a1d [ 33.093622] RDX: 1ffff1003b4493a0 RSI: ffff8801ccba50c8 RDI: ffff8801da249d00 [ 33.100943] RBP: ffff8801cc1b7b60 R08: ffff8801ccba50e8 R09: 0000000000000000 [ 33.108317] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8801da249bd8 [ 33.115600] R13: 0000000000000000 R14: ffff8801da249b80 R15: 0000000000000000 [ 33.122972] FS: 00007f7e48470700(0000) GS:ffff8801db300000(0000) knlGS:0000000000000000 [ 33.131355] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 33.137250] CR2: 0000000000000080 CR3: 00000001cb740000 CR4: 00000000001606f0 [ 33.144535] Stack: [ 33.146697] ffffffff836c8e27 ffffffff836c9ec1 ffff8801cfeb3b48 0000000000000000 [ 33.155777] ffff8801da249b80 ffff8801d7886dd8 ffff8801da249bd8 ffff8801d7886dd0 [ 33.163955] ffff8801d7886d30 ffff8801da249ba0 ffff8801cfeb3300 0000000000000000 [ 33.172142] Call Trace: [ 33.175303] [] ? l2tp_session_create+0xed7/0x16f0 [ 33.181934] [] ? l2tp_session_get+0x1d1/0x790 [ 33.188094] [] pppol2tp_connect+0x10d7/0x18f0 [ 33.194256] [] ? pppol2tp_seq_show+0xc30/0xc30 [ 33.200503] [] ? security_socket_connect+0x8f/0xc0 [ 33.207339] [] SYSC_connect+0x1b8/0x300 [ 33.212982] [] ? SYSC_bind+0x280/0x280 [ 33.218530] [] ? get_unused_fd_flags+0xd0/0xd0 [ 33.224775] [] ? do_futex+0x17c0/0x17c0 [ 33.230414] [] ? SyS_socket+0x121/0x1b0 [ 33.236056] [] ? move_addr_to_kernel+0x50/0x50 [ 33.242432] [] SyS_connect+0x24/0x30 [ 33.247807] [] ? SyS_accept+0x30/0x30 [ 33.253363] [] do_syscall_64+0x1a6/0x490 2018/08/29 09:45:03 executed programs: 8 [ 33.259201] [] entry_SYSCALL_64_after_swapgs+0x5d/0xdb [ 33.266145] Code: 00 00 49 8d be 80 01 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 7b 09 00 00 49 8b 86 80 01 00 00 ff 80 80 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 8b 55 d0 [ 33.295559] RIP [] l2tp_session_create+0xc60/0x16f0 [ 33.303008] RSP [ 33.306889] CR2: 0000000000000080 [ 33.435981] ---[ end trace 263bb856dffd18ea ]--- [ 33.446763] Kernel panic - not syncing: Fatal exception [ 33.452437] Dumping ftrace buffer: [ 33.455992] (ftrace buffer empty) [ 33.459830] Kernel Offset: disabled [ 33.463445] Rebooting in 86400 seconds..