[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[   21.438614] random: sshd: uninitialized urandom read (32 bytes read, 32 bits of entropy available)
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   26.793378] random: sshd: uninitialized urandom read (32 bytes read, 38 bits of entropy available)
[   27.732835] random: sshd: uninitialized urandom read (32 bytes read, 38 bits of entropy available)
[   28.519003] random: sshd: uninitialized urandom read (32 bytes read, 71 bits of entropy available)
[  110.185430] random: sshd: uninitialized urandom read (32 bytes read, 105 bits of entropy available)
Warning: Permanently added '10.128.0.55' (ECDSA) to the list of known hosts.
[  115.769206] random: sshd: uninitialized urandom read (32 bytes read, 107 bits of entropy available)
2018/08/29 10:04:48 parsed 1 programs
[  117.100324] random: cc1: uninitialized urandom read (8 bytes read, 109 bits of entropy available)
2018/08/29 10:04:50 executed programs: 0
[  117.969147] IPVS: Creating netns size=2552 id=1
[  118.034530] IPVS: Creating netns size=2552 id=2
[  118.089802] IPVS: Creating netns size=2552 id=3
[  118.177397] IPVS: Creating netns size=2552 id=4
[  118.289155] IPVS: Creating netns size=2552 id=5
[  118.421620] IPVS: Creating netns size=2552 id=6
[  118.634163] IPVS: Creating netns size=2552 id=7
[  118.726017] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  118.783630] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  118.874878] IPVS: Creating netns size=2552 id=8
[  119.054807] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  119.155842] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  119.244665] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  119.286192] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  119.421247] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  119.510776] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  119.623340] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  119.632053] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  119.689251] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  119.699350] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  119.738338] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  119.829067] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  120.004820] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  120.022931] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  120.079605] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  120.094038] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  120.105731] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  120.172699] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  120.182140] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  120.207274] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  120.224159] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  120.242095] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  120.258702] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  120.299018] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  120.309312] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  120.380542] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  120.453598] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  120.585124] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  120.643984] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  120.721860] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  120.737685] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  120.810031] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  120.822178] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  120.838330] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  120.858896] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  120.890651] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  120.917766] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  120.929359] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  120.939378] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  120.947384] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  120.962627] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  121.005970] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  121.016709] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  121.063315] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  121.352518] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  121.415549] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  121.486250] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  121.521933] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  121.570410] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  121.583669] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  121.595487] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  121.617064] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  121.645396] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  121.672617] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  121.697403] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
INIT: Id "6" respawning too fast: disabled for 5 minutes
INIT: Id "4" respawning too fast: disabled for 5 minutes
[  121.754605] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
INIT: Id "2" respawning too fast: disabled for 5 minutes
INIT: Id "5" respawning too fast: disabled for 5 minutes
INIT: Id "1" respawning too fast: disabled for 5 minutes
INIT: Id "3" respawning too fast: disabled for 5 minutes
[  121.824120] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  121.843834] ip (4751) used greatest stack depth: 24432 bytes left
[  121.888374] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  122.172318] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  122.230025] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  122.336406] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  122.390796] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  125.343155] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  125.536269] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  125.588366] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  125.772925] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  126.011618] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  126.161035] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  126.287345] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  126.435311] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  126.452626] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  126.745950] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  126.825503] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  126.860537] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  127.018841] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  127.112188] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  127.502918] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
2018/08/29 10:05:00 executed programs: 8
[  127.765565] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  130.129685] l2tp_core: tunl 4: sockfd_lookup(fd=16) returned -9
2018/08/29 10:05:05 executed programs: 144
[  136.342066] l2tp_core: tunl 4: sockfd_lookup(fd=8) returned -9
2018/08/29 10:05:10 executed programs: 314
[  137.762008] random: nonblocking pool is initialized
[  139.525549] BUG: unable to handle kernel NULL pointer dereference at 0000000000000080
[  139.538127] IP: [<ffffffff835aab88>] l2tp_session_create+0x948/0x1030
[  139.544849] PGD 1d970a067 PUD 1c91f3067 PMD 0 
[  139.549828] Oops: 0002 [#1] PREEMPT SMP KASAN
[  139.554843] Dumping ftrace buffer:
[  139.558371]    (ftrace buffer empty)
[  139.562072] Modules linked in:
[  139.565395] CPU: 1 PID: 9361 Comm: syz-executor4 Not tainted 4.4.153-g5e24b4e #26
[  139.573002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  139.582349] task: ffff8801d6858000 task.stack: ffff8800b9330000
[  139.588398] RIP: 0010:[<ffffffff835aab88>]  [<ffffffff835aab88>] l2tp_session_create+0x948/0x1030
[  139.597519] RSP: 0018:ffff8800b9337ad0  EFLAGS: 00010246
[  139.602941] RAX: 0000000000000000 RBX: ffff8801d826b900 RCX: 0000000000000000
[  139.610185] RDX: 1ffff1003b04d750 RSI: ffffffff835a4c93 RDI: ffff8801d826ba80
[  139.617437] RBP: ffff8800b9337b40 R08: 000000000000000a R09: 000000000000ffff
[  139.624690] R10: ffffed00174982e8 R11: ffffffff8463a200 R12: ffff8800ba4c1728
[  139.631939] R13: ffff8800b9337c58 R14: ffff8800ba4c1680 R15: ffffffff835a4770
[  139.639186] FS:  0000000000000000(0000) GS:ffff8801db300000(0063) knlGS:00000000f7755b40
[  139.647391] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  139.653256] CR2: 0000000000000080 CR3: 00000001d480c000 CR4: 00000000001606f0
[  139.660517] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  139.667879] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  139.675128] Stack:
[  139.677255]  ffffffff81140aba ffff8801d826b920 ffff8800ba4c17d8 ffff8800ba4c1690
[  139.685477]  ffffffff838cc1e0 ffff8800ba4c1730 ffff8800ba4c17d0 ffff8801d826b9e0
[  139.693476]  ffffffff00000000 ffff8801d4838880 0000000000000000 ffff8801d48388b0
[  139.701484] Call Trace:
[  139.704052]  [<ffffffff81140aba>] ? __local_bh_enable_ip+0x6a/0xd0
[  139.710353]  [<ffffffff838cc1e0>] ? _raw_read_unlock_bh+0x30/0x40
[  139.716565]  [<ffffffff835aef80>] pppol2tp_connect+0x10f0/0x1910
[  139.722747]  [<ffffffff835ade90>] ? pppol2tp_recv+0x320/0x320
[  139.728611]  [<ffffffff81c5740f>] ? security_socket_connect+0x8f/0xc0
[  139.735169]  [<ffffffff82f27ef8>] SYSC_connect+0x1b8/0x300
[  139.740776]  [<ffffffff82f27d40>] ? SYSC_bind+0x280/0x280
[  139.746292]  [<ffffffff8157ff20>] ? get_unused_fd_flags+0xd0/0xd0
[  139.752503]  [<ffffffff812d5940>] ? compat_SyS_get_robust_list+0x310/0x310
[  139.759497]  [<ffffffff82f29f61>] ? SyS_socket+0x121/0x1b0
[  139.765100]  [<ffffffff82f29e40>] ? move_addr_to_kernel+0x50/0x50
[  139.771310]  [<ffffffff82f2a844>] SyS_connect+0x24/0x30
[  139.776664]  [<ffffffff82f2a820>] ? SyS_accept+0x30/0x30
[  139.782092]  [<ffffffff81006d94>] do_fast_syscall_32+0x324/0x8b0
[  139.788213]  [<ffffffff838ce1c3>] sysenter_flags_fixed+0xd/0x1a
[  139.794244] Code: 00 00 48 8d bb 80 01 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 36 06 00 00 48 8b 83 80 01 00 00 <f0> ff 80 80 00 00 00 48 8d 43 20 48 89 c7 48 89 45 b0 e8 f1 13 
[  139.821737] RIP  [<ffffffff835aab88>] l2tp_session_create+0x948/0x1030
[  139.828508]  RSP <ffff8800b9337ad0>
[  139.832110] CR2: 0000000000000080
[  139.837481] ---[ end trace 6d9bd69e4a54d49d ]---
[  139.845668] Kernel panic - not syncing: Fatal exception
[  139.851389] Dumping ftrace buffer:
[  139.854976]    (ftrace buffer empty)
[  139.858661] Kernel Offset: disabled
[  139.862284] Rebooting in 86400 seconds..