[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[   20.891084] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   24.826951] random: sshd: uninitialized urandom read (32 bytes read)
[   25.111147] random: sshd: uninitialized urandom read (32 bytes read)
[   25.849201] random: sshd: uninitialized urandom read (32 bytes read)
[   35.398400] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.10.6' (ECDSA) to the list of known hosts.
[   40.865713] random: sshd: uninitialized urandom read (32 bytes read)
[   40.958147] IPVS: ftp: loaded support on port[0] = 21
net.ipv6.conf.syz_tun.accept_dad = 0
net.ipv6.conf.syz_tun.router_solicitations = 0
[   41.161564] bridge0: port 1(bridge_slave_0) entered blocking state
[   41.168058] bridge0: port 1(bridge_slave_0) entered disabled state
[   41.175449] device bridge_slave_0 entered promiscuous mode
[   41.191238] bridge0: port 2(bridge_slave_1) entered blocking state
[   41.197678] bridge0: port 2(bridge_slave_1) entered disabled state
[   41.204726] device bridge_slave_1 entered promiscuous mode
[   41.219893] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   41.235189] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   41.274939] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   41.293140] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   41.352009] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   41.359430] team0: Port device team_slave_0 added
[   41.373974] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   41.381588] team0: Port device team_slave_1 added
[   41.395900] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   41.412629] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   41.428602] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   41.444818] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
RTNETLINK answers: Operation not supported
RTNETLINK answers: No buffer space available
RTNETLINK answers: Operation not supported
[   41.555693] bridge0: port 2(bridge_slave_1) entered blocking state
[   41.562203] bridge0: port 2(bridge_slave_1) entered forwarding state
[   41.569077] bridge0: port 1(bridge_slave_0) entered blocking state
[   41.575422] bridge0: port 1(bridge_slave_0) entered forwarding state
RTNETLINK answers: Operation not supported
RTNETLINK answers: Operation not supported
RTNETLINK answers: Operation not supported
RTNETLINK answers: Invalid argument
RTNETLINK answers: Invalid argument
RTNETLINK answers: Invalid argument
[   41.956552] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready
[   41.962684] 8021q: adding VLAN 0 to HW filter on device bond0
[   42.004077] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   42.046321] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   42.053894] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   42.089261] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[   42.095420] 8021q: adding VLAN 0 to HW filter on device team0
[   42.105262] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
executing program
[   42.325997] 
[   42.327681] ================================================
[   42.333453] WARNING: lock held when returning to user space!
[   42.339231] 4.17.0-rc3+ #37 Not tainted
[   42.343181] ------------------------------------------------
[   42.348966] syz-executor294/4558 is leaving the kernel with locks still held!
[   42.356215] 1 lock held by syz-executor294/4558:
[   42.360942]  #0:         (ptrval) (rcu_read_lock){....}, at: ip6_route_del+0xea/0x13f0
[   42.369061] BUG: scheduling while atomic: syz-executor294/4558/0x00000002
[   42.376061] INFO: lockdep is turned off.
[   42.380134] Modules linked in:
[   42.383326] Kernel panic - not syncing: scheduling while atomic
[   42.383326] 
[   42.390848] CPU: 1 PID: 4558 Comm: syz-executor294 Not tainted 4.17.0-rc3+ #37
[   42.398189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   42.407521] Call Trace:
[   42.410099]  dump_stack+0x1b9/0x294
[   42.413704]  ? dump_stack_print_info.cold.2+0x52/0x52
[   42.418875]  ? print_modules.cold.82+0x1f/0x72
[   42.423453]  panic+0x22f/0x4de
[   42.426638]  ? add_taint.cold.5+0x16/0x16
[   42.430768]  ? vprintk_func+0x81/0xe7
[   42.434560]  __schedule_bug.cold.85+0xdf/0xdf
[   42.439035]  __schedule+0x139e/0x1e30
[   42.442815]  ? __sched_text_start+0x8/0x8
[   42.446942]  ? console_unlock+0x1100/0x1100
[   42.451245]  ? printk+0x9e/0xba
[   42.454505]  ? kmsg_dump_rewind_nolock+0xe4/0xe4
[   42.459240]  ? console_unlock+0x1100/0x1100
[   42.463541]  ? lock_downgrade+0x8e0/0x8e0
[   42.467773]  ? vprintk_default+0x28/0x30
[   42.471816]  ? vprintk_func+0x81/0xe7
[   42.475611]  ? printk+0x9e/0xba
[   42.478880]  schedule+0xef/0x430
[   42.482228]  ? vprintk_func+0x81/0xe7
[   42.486008]  ? __schedule+0x1e30/0x1e30
[   42.489961]  ? printk+0x9e/0xba
[   42.493234]  ? kmsg_dump_rewind_nolock+0xe4/0xe4
[   42.497980]  ? __lockdep_init_map.cold.49+0xb6/0xb6
[   42.502976]  ? kmsg_dump_rewind_nolock+0xe4/0xe4
[   42.507711]  ? ip6_route_del+0xea/0x13f0
[   42.511752]  ? print_lock+0xd1/0xd6
[   42.515357]  exit_to_usermode_loop+0x220/0x310
[   42.519921]  ? syscall_slow_exit_work+0x4f0/0x4f0
[   42.524742]  ? syscall_return_slowpath+0x5c0/0x5c0
[   42.529655]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   42.535173]  ? debug_locks_off+0x40/0xb0
[   42.539215]  prepare_exit_to_usermode+0x32e/0x390
[   42.544036]  ? perf_trace_sys_enter+0xaf0/0xaf0
[   42.548686]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   42.553508]  retint_user+0x8/0x18
[   42.556941] RIP: 0033:0x441aa9
[   42.560109] RSP: 002b:00007ffff8ab4c08 EFLAGS: 00000213 ORIG_RAX: ffffffffffffff13
[   42.567806] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000441aa9
[   42.575054] RDX: 00000000200001c0 RSI: 000000000000890c RDI: 0000000000000003
[   42.582305] RBP: 00000000006cd018 R08: 00007fff0000d4d0 R09: 00007fff0000d4d0
[   42.589554] R10: 00007ffff8ba82f4 R11: 0000000000000213 R12: 00000000004027a0
[   42.596804] R13: 0000000000402830 R14: 0000000000000000 R15: 0000000000000000
[   42.604481] Dumping ftrace buffer:
[   42.608000]    (ftrace buffer empty)
[   42.611689] Kernel Offset: disabled
[   42.615298] Rebooting in 86400 seconds..