[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 13.513274] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 26.742835] random: sshd: uninitialized urandom read (32 bytes read) [ 27.292106] random: sshd: uninitialized urandom read (32 bytes read) [ 27.692788] random: sshd: uninitialized urandom read (32 bytes read) [ 27.829054] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.0.61' (ECDSA) to the list of known hosts. [ 33.258394] random: sshd: uninitialized urandom read (32 bytes read) executing program [ 33.345296] FAT-fs (loop0): bogus number of reserved sectors [ 33.351237] FAT-fs (loop0): Can't find a valid FAT filesystem [ 33.385347] kasan: CONFIG_KASAN_INLINE enabled [ 33.389970] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 33.397477] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 33.403694] Dumping ftrace buffer: [ 33.407345] (ftrace buffer empty) [ 33.411050] Modules linked in: [ 33.414341] CPU: 1 PID: 3630 Comm: syz-executor234 Not tainted 4.9.119-g92e8704 #22 [ 33.422114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 33.431520] task: ffff8801c66a6000 task.stack: ffff8801c5040000 [ 33.437561] RIP: 0010:[] [] vsscanf+0x33f/0x2430 [ 33.445648] RSP: 0018:ffff8801c50474e8 EFLAGS: 00010246 [ 33.451076] RAX: 0000000000000000 RBX: ffffffff841a3c41 RCX: 0000000000000000 [ 33.458449] RDX: 0000000000000000 RSI: ffffffff81edc6a2 RDI: ffffffff841a3c40 [ 33.465808] RBP: ffff8801c5047698 R08: ffff8801c5047860 R09: ffff8801c5047864 [ 33.473053] R10: 0000000000000000 R11: 0000000000000000 R12: ffffffff841a3c41 [ 33.480296] R13: 0000000000000064 R14: dffffc0000000000 R15: 0000000000000000 [ 33.487549] FS: 0000000001101880(0000) GS:ffff8801db300000(0000) knlGS:0000000000000000 [ 33.495750] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 33.501615] CR2: 0000000000413720 CR3: 00000001c6daa000 CR4: 00000000001606f0 [ 33.508862] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 33.516112] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 33.523357] Stack: [ 33.525487] ffff8801c66a6000 fffffbfff07c4739 1ffff10038a08ea6 0000000000000000 [ 33.533555] 00000000000002ff 00000000c5047530 ffffffff8123ffff ffff8801c50476c8 [ 33.541633] ffffffff841a3c64 0000000041b58ab3 ffffffff843e4e98 ffffffff81edc370 [ 33.549731] Call Trace: [ 33.552299] [] ? rt_mutex_enqueue+0xef/0x2f0 [ 33.558709] [] ? simple_strtoll+0xa0/0xa0 [ 33.564483] [] ? parse_opts.part.1+0x252/0x320 [ 33.570812] [] ? kasan_slab_free+0x88/0xc0 [ 33.576757] [] ? kfree+0xfb/0x310 [ 33.581844] [] ? parse_opts.part.1+0x257/0x320 [ 33.588054] [] ? p9_read_work+0xac0/0xac0 [ 33.593828] [] ? p9_client_create+0x673/0x10a0 [ 33.600040] [] ? v9fs_mount+0x7d/0x810 [ 33.605559] [] ? mount_fs+0x28c/0x370 [ 33.610985] [] ? vfs_kern_mount.part.29+0xd1/0x3d0 [ 33.617545] [] ? do_mount+0x3c9/0x2740 [ 33.623062] [] sscanf+0xab/0xe0 [ 33.627965] [] ? vsscanf+0x2430/0x2430 [ 33.633480] [] p9_fd_create_tcp+0x127/0x430 [ 33.639436] [] ? p9_fd_create_unix+0x260/0x260 [ 33.645651] [] ? check_preemption_disabled+0x3b/0x170 [ 33.652477] [] ? trace_hardirqs_on_caller+0x38b/0x590 [ 33.659300] [] ? lockdep_init_map+0x105/0x4f0 [ 33.665425] [] ? __raw_spin_lock_init+0x2d/0x100 [ 33.671817] [] p9_client_create+0x6ff/0x10a0 [ 33.677854] [] ? p9_client_zc_rpc.constprop.11+0x1020/0x1020 [ 33.685288] [] ? rcu_read_lock_sched_held+0x103/0x120 [ 33.692134] [] ? bdi_register+0xb4/0x570 [ 33.692139] [] ? bdi_init+0x7ae/0xab0 [ 33.692148] [] v9fs_session_init+0x333/0x13a0 [ 33.692154] [] ? _raw_spin_unlock_irqrestore+0x45/0x70 [ 33.692162] [] ? debug_check_no_obj_freed+0x2ec/0x930 [ 33.692168] [] ? v9fs_inode_init_once+0x30/0x30 [ 33.692179] [] ? debug_object_activate+0x4e0/0x4e0 [ 33.692186] [] ? trace_hardirqs_on_caller+0x38b/0x590 [ 33.692191] [] ? free_hot_cold_page+0x493/0x840 [ 33.692196] [] ? check_preemption_disabled+0x3b/0x170 [ 33.692201] [] ? kasan_unpoison_shadow+0x35/0x50 [ 33.692205] [] ? kasan_kmalloc+0xc7/0xe0 [ 33.692212] [] ? kmem_cache_alloc_trace+0xfd/0x2b0 [ 33.692217] [] ? v9fs_mount+0x62/0x810 [ 33.692221] [] v9fs_mount+0x7d/0x810 [ 33.692228] [] mount_fs+0x28c/0x370 [ 33.692233] [] vfs_kern_mount.part.29+0xd1/0x3d0 [ 33.692240] [] ? ns_capable_common+0x12a/0x150 [ 33.692245] [] do_mount+0x3c9/0x2740 [ 33.692249] [] ? copy_mount_string+0x40/0x40 [ 33.692253] [] ? kasan_unpoison_shadow+0x35/0x50 [ 33.692257] [] ? kasan_kmalloc+0xc7/0xe0 [ 33.692261] [] ? kmem_cache_alloc_trace+0xfd/0x2b0 [ 33.692265] [] ? copy_mount_options+0x5f/0x320 [ 33.692269] [] ? copy_mount_options+0x1e5/0x320 [ 33.692273] [] SyS_mount+0xfe/0x110 [ 33.692277] [] ? copy_mnt_ns+0x8e0/0x8e0 [ 33.692283] [] do_syscall_64+0x1a6/0x490 [ 33.692288] [] entry_SYSCALL_64_after_swapgs+0x5d/0xdb [ 33.692355] Code: ff 45 84 ed 0f 84 c9 fe ff ff e8 3d 24 48 ff 41 80 fd 6e 0f 84 34 02 00 00 e8 2e 24 48 ff 4c 89 f8 4c 89 fa 48 c1 e8 03 83 e2 07 <42> 0f b6 04 30 38 d0 7f 08 84 c0 0f 85 dd 17 00 00 41 80 3f 00 [ 33.692364] RIP [] vsscanf+0x33f/0x2430 [ 33.692365] RSP [ 33.694171] ---[ end trace f16d0719c81dd740 ]--- [ 33.694175] Kernel panic - not syncing: Fatal exception [ 33.698145] Dumping ftrace buffer: [ 33.698148] (ftrace buffer empty) [ 33.698150] Kernel Offset: disabled [ 33.918637] Rebooting in 86400 seconds..