[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[   24.841500] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   30.518002] random: sshd: uninitialized urandom read (32 bytes read)
[   30.954329] random: sshd: uninitialized urandom read (32 bytes read)
[   31.485416] random: sshd: uninitialized urandom read (32 bytes read)
[   31.672485] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.15.208' (ECDSA) to the list of known hosts.
[   37.275174] random: sshd: uninitialized urandom read (32 bytes read)
2018/08/30 18:10:11 parsed 1 programs
[   38.910664] random: cc1: uninitialized urandom read (8 bytes read)
2018/08/30 18:10:14 executed programs: 0
[   40.810433] IPVS: ftp: loaded support on port[0] = 21
[   41.033297] bridge0: port 1(bridge_slave_0) entered blocking state
[   41.039760] bridge0: port 1(bridge_slave_0) entered disabled state
[   41.047191] device bridge_slave_0 entered promiscuous mode
[   41.064430] bridge0: port 2(bridge_slave_1) entered blocking state
[   41.070857] bridge0: port 2(bridge_slave_1) entered disabled state
[   41.078079] device bridge_slave_1 entered promiscuous mode
[   41.095427] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   41.112079] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   41.156398] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   41.174917] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   41.241892] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   41.249187] team0: Port device team_slave_0 added
[   41.263940] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   41.271739] team0: Port device team_slave_1 added
[   41.287335] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   41.304741] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   41.322005] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   41.340668] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   41.466625] bridge0: port 2(bridge_slave_1) entered blocking state
[   41.473065] bridge0: port 2(bridge_slave_1) entered forwarding state
[   41.479834] bridge0: port 1(bridge_slave_0) entered blocking state
[   41.486187] bridge0: port 1(bridge_slave_0) entered forwarding state
[   41.949779] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready
[   41.955894] 8021q: adding VLAN 0 to HW filter on device bond0
[   41.975180] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   42.005641] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   42.052055] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   42.058289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   42.065376] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   42.105873] 8021q: adding VLAN 0 to HW filter on device team0
[   42.386054] ------------[ cut here ]------------
[   42.390876] usb usb1: BOGUS urb flags, 40 --> 0
[   42.395761] WARNING: CPU: 1 PID: 4984 at drivers/usb/core/urb.c:503 usb_submit_urb+0x719/0x14d0
[   42.404585] Kernel panic - not syncing: panic_on_warn set ...
[   42.404585] 
[   42.411941] CPU: 1 PID: 4984 Comm: syz-executor0 Not tainted 4.19.0-rc1-next-20180830+ #52
[   42.420325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   42.429760] Call Trace:
[   42.432341]  dump_stack+0x1c9/0x2b4
[   42.435962]  ? dump_stack_print_info.cold.2+0x52/0x52
[   42.441148]  panic+0x238/0x4e7
[   42.444327]  ? add_taint.cold.5+0x16/0x16
[   42.448459]  ? __warn.cold.8+0x148/0x1ba
[   42.452501]  ? __warn.cold.8+0x117/0x1ba
[   42.456554]  ? usb_submit_urb+0x719/0x14d0
[   42.460776]  __warn.cold.8+0x163/0x1ba
[   42.464652]  ? usb_submit_urb+0x719/0x14d0
[   42.468925]  report_bug+0x252/0x2d0
[   42.472552]  do_error_trap+0x1fc/0x4d0
[   42.476425]  ? math_error+0x3e0/0x3e0
[   42.480212]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   42.485175]  ? trace_hardirqs_on_caller+0x2b0/0x2b0
[   42.490189]  ? vprintk_func+0x81/0x117
[   42.494112]  ? printk+0xa7/0xcf
[   42.497413]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   42.502247]  do_invalid_op+0x1b/0x20
[   42.505956]  invalid_op+0x14/0x20
[   42.509398] RIP: 0010:usb_submit_urb+0x719/0x14d0
[   42.514326] Code: 06 fd 48 8b 45 d0 48 8d b8 a0 00 00 00 e8 7f d2 72 ff 45 89 e0 44 89 e9 4c 89 fa 48 89 c6 48 c7 c7 00 1a 7e 87 e8 e7 11 d1 fc <0f> 0b e8 30 56 06 fd 48 c7 c6 00 1b 7e 87 4c 89 f7 e8 71 57 06 fd
[   42.533256] RSP: 0018:ffff8801d4487278 EFLAGS: 00010282
[   42.538611] RAX: 0000000000000000 RBX: ffff8801d3f78000 RCX: 0000000000000000
[   42.545867] RDX: 0000000000000000 RSI: ffffffff8163ac11 RDI: ffff8801d4486f68
[   42.553147] RBP: ffff8801d44872e8 R08: ffff8801b3488600 R09: 0000000000000006
[   42.560412] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[   42.567664] R13: 0000000000000040 R14: 0000000000000000 R15: ffff8801cea16840
[   42.574996]  ? vprintk_func+0x81/0x117
[   42.578919]  ? usb_submit_urb+0x719/0x14d0
[   42.583148]  ? kasan_check_write+0x14/0x20
[   42.587374]  proc_do_submiturb+0x2669/0x3d70
[   42.591776]  ? free_async+0x490/0x490
[   42.595573]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   42.601097]  ? _copy_from_user+0xdf/0x150
[   42.605241]  proc_submiturb_compat+0x544/0x800
[   42.609816]  ? proc_do_submiturb+0x3d70/0x3d70
[   42.614541]  usbdev_do_ioctl+0x19a5/0x3b30
[   42.618767]  ? processcompl_compat+0x680/0x680
[   42.623335]  ? __pagevec_lru_add+0x30/0x30
[   42.627559]  ? graph_lock+0x170/0x170
[   42.631348]  ? kasan_check_read+0x11/0x20
[   42.635484]  ? rcu_is_watching+0x8c/0x150
[   42.639626]  ? __sanitizer_cov_trace_switch+0x53/0x90
[   42.644808]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   42.650356]  ? drop_futex_key_refs.isra.14+0x6d/0xe0
[   42.655498]  ? futex_wake+0x304/0x760
[   42.659293]  ? get_futex_key+0x2000/0x2000
[   42.663509]  ? graph_lock+0x170/0x170
[   42.667296]  ? trace_hardirqs_on+0xbd/0x2c0
[   42.671621]  ? trace_hardirqs_off_caller+0x2b0/0x2b0
[   42.676769]  ? do_futex+0x249/0x27d0
[   42.680478]  ? lock_downgrade+0x8f0/0x8f0
[   42.684614]  ? exit_robust_list+0x290/0x290
[   42.688924]  ? do_raw_spin_unlock+0xa7/0x2f0
[   42.693316]  ? do_raw_spin_trylock+0x1c0/0x1c0
[   42.698092]  ? pte_val+0x100/0x100
[   42.701625]  ? kasan_check_write+0x14/0x20
[   42.705994]  ? do_raw_spin_lock+0xc1/0x200
[   42.710223]  ? _raw_spin_unlock+0x22/0x30
[   42.714355]  ? __handle_mm_fault+0x945/0x4350
[   42.718879]  ? vmf_insert_mixed_mkwrite+0xa0/0xa0
[   42.723711]  ? graph_lock+0x170/0x170
[   42.727501]  ? graph_lock+0x170/0x170
[   42.731299]  ? find_held_lock+0x36/0x1c0
[   42.735364]  usbdev_ioctl+0x25/0x30
[   42.738982]  ? usbdev_compat_ioctl+0x30/0x30
[   42.743489]  do_vfs_ioctl+0x1de/0x1720
[   42.747371]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   42.752907]  ? ioctl_preallocate+0x300/0x300
[   42.757301]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   42.762826]  ? __fget_light+0x2f7/0x440
[   42.766792]  ? __handle_mm_fault+0x4350/0x4350
[   42.771404]  ? fget_raw+0x20/0x20
[   42.774855]  ? __x64_sys_futex+0x47f/0x6a0
[   42.779205]  ? do_syscall_64+0x9a/0x820
[   42.783165]  ? do_syscall_64+0x9a/0x820
[   42.787170]  ? lockdep_hardirqs_on+0x421/0x5c0
[   42.791747]  ? security_file_ioctl+0x94/0xc0
[   42.796142]  ksys_ioctl+0xa9/0xd0
[   42.799578]  __x64_sys_ioctl+0x73/0xb0
[   42.803457]  do_syscall_64+0x1b9/0x820
[   42.807376]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[   42.812732]  ? syscall_return_slowpath+0x5e0/0x5e0
[   42.817669]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   42.822508]  ? trace_hardirqs_on_caller+0x2b0/0x2b0
[   42.827573]  ? prepare_exit_to_usermode+0x291/0x3b0
[   42.832580]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   42.837454]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   42.842635] RIP: 0033:0x457089
[   42.845820] Code: fd b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   42.864726] RSP: 002b:00007fffffefed68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   42.872426] RAX: ffffffffffffffda RBX: 000000000202f914 RCX: 0000000000457089
[   42.879874] RDX: 0000000020000080 RSI: 00000000802c550a RDI: 0000000000000003
[   42.887255] RBP: 00000000009300a0 R08: 0000000000000000 R09: 0000000000000000
[   42.894517] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[   42.901781] R13: 00000000004cf368 R14: 00000000004c57eb R15: 0000000000000000
[   42.909447] Dumping ftrace buffer:
[   42.913057]    (ftrace buffer empty)
[   42.916752] Kernel Offset: disabled
[   42.920368] Rebooting in 86400 seconds..