[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 18.079716] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 29.340383] random: sshd: uninitialized urandom read (32 bytes read) [ 29.736888] random: sshd: uninitialized urandom read (32 bytes read) [ 30.161542] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.10.26' (ECDSA) to the list of known hosts. [ 35.948477] urandom_read: 1 callbacks suppressed [ 35.948482] random: sshd: uninitialized urandom read (32 bytes read) executing program [ 36.039612] kasan: CONFIG_KASAN_INLINE enabled [ 36.044346] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 36.051958] general protection fault: 0000 [#1] SMP KASAN [ 36.057499] CPU: 1 PID: 4332 Comm: syz-executor255 Not tainted 4.18.0-rc8-next-20180809+ #35 [ 36.066054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 36.075415] RIP: 0010:do_raw_spin_lock+0x27/0x200 [ 36.080242] Code: 00 00 00 48 b8 00 00 00 00 00 fc ff df 55 48 89 e5 41 56 41 55 41 54 53 48 89 fb 48 83 c7 04 48 89 fa 48 c1 ea 03 48 83 ec 08 <0f> b6 14 02 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 7b [ 36.099122] RSP: 0018:ffff8801cf1a7430 EFLAGS: 00010286 [ 36.104467] RAX: dffffc0000000000 RBX: 00000000000001b0 RCX: 0000000000000000 [ 36.111723] RDX: 0000000000000036 RSI: 0000000000000000 RDI: 00000000000001b4 [ 36.119070] RBP: ffff8801cf1a7458 R08: 0000000000000001 R09: 0000000000000000 [ 36.126320] R10: ffffed0035c51089 R11: ffff8801ae28844f R12: ffff8801ae288430 [ 36.133616] R13: 0000000000000000 R14: dffffc0000000000 R15: 0000000000000000 [ 36.140874] FS: 00000000014a5880(0000) GS:ffff8801db100000(0000) knlGS:0000000000000000 [ 36.149083] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 36.154944] CR2: 0000000020000000 CR3: 00000001b4a66000 CR4: 00000000001426e0 [ 36.162198] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 36.169448] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 36.176696] Call Trace: [ 36.179273] _raw_spin_lock+0x32/0x40 [ 36.183074] ? kvm_ioapic_scan_entry+0x7f/0x3c0 [ 36.187730] kvm_ioapic_scan_entry+0x7f/0x3c0 [ 36.192213] vcpu_enter_guest+0x494b/0x6360 [ 36.196519] ? kasan_check_write+0x14/0x20 [ 36.200735] ? __mutex_lock+0x6d0/0x1700 [ 36.204780] ? kvm_set_msr_common+0x2680/0x2680 [ 36.209537] ? vmx_set_virtual_apic_mode+0x7d0/0x7d0 [ 36.214630] ? vmx_vcpu_load+0xad2/0xfe0 [ 36.218687] ? __debug_object_init+0x581/0x12e0 [ 36.223337] ? lock_downgrade+0x8f0/0x8f0 [ 36.227469] ? handle_dr+0x8c0/0x8c0 [ 36.231170] ? kasan_check_read+0x11/0x20 [ 36.235401] ? do_raw_spin_unlock+0xa7/0x2f0 [ 36.239819] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 36.244382] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 36.248946] ? kasan_check_write+0x14/0x20 [ 36.253165] ? lock_acquire+0x1e4/0x540 [ 36.257129] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 36.262133] ? lock_release+0xa30/0xa30 [ 36.266091] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 36.271350] ? kvm_arch_dev_ioctl+0x610/0x610 [ 36.275832] ? preempt_notifier_dec+0x20/0x20 [ 36.280319] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 36.285146] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 36.290153] kvm_vcpu_ioctl+0x7b8/0x1300 [ 36.294199] ? kvm_uevent_notify_change.part.32+0x440/0x440 [ 36.300006] ? trace_hardirqs_on+0xd/0x10 [ 36.304148] ? debug_object_active_state+0x2f5/0x4d0 [ 36.309235] ? kasan_check_read+0x11/0x20 [ 36.313368] ? rcu_is_watching+0x8c/0x150 [ 36.317545] ? mntput_no_expire+0x160/0xbc0 [ 36.321856] ? rcu_cleanup_dead_rnp+0x200/0x200 [ 36.326640] ? lock_release+0xa30/0xa30 [ 36.330734] ? trace_hardirqs_on+0xd/0x10 [ 36.334933] ? note_gp_changes+0x420/0x420 [ 36.339163] ? mntput_no_expire+0x18e/0xbc0 [ 36.343475] ? blkcg_maybe_throttle_current+0xa56/0x10c0 [ 36.348917] ? _raw_spin_unlock+0x22/0x30 [ 36.353052] ? mnt_get_count+0x150/0x150 [ 36.357099] ? dput.part.26+0x276/0x7a0 [ 36.361155] ? blkcg_print_stat+0x1420/0x1420 [ 36.365656] ? lock_acquire+0x1e4/0x540 [ 36.369613] ? task_work_run+0x1af/0x2a0 [ 36.373658] ? lock_downgrade+0x8f0/0x8f0 [ 36.377831] ? kvm_uevent_notify_change.part.32+0x440/0x440 [ 36.383554] do_vfs_ioctl+0x1de/0x1720 [ 36.387427] ? do_raw_spin_unlock+0xa7/0x2f0 [ 36.391826] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 36.396404] ? ioctl_preallocate+0x300/0x300 [ 36.400844] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 36.406396] ? __fget_light+0x2f7/0x440 [ 36.410358] ? fget_raw+0x20/0x20 [ 36.413800] ? task_work_run+0x22b/0x2a0 [ 36.417957] ? task_work_cancel+0x240/0x240 [ 36.422260] ? putname+0xf7/0x130 [ 36.425698] ? security_file_ioctl+0x94/0xc0 [ 36.430089] ksys_ioctl+0xa9/0xd0 [ 36.433525] __x64_sys_ioctl+0x73/0xb0 [ 36.437406] do_syscall_64+0x1b9/0x820 [ 36.441381] ? syscall_return_slowpath+0x5e0/0x5e0 [ 36.446296] ? syscall_return_slowpath+0x31d/0x5e0 [ 36.451223] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 36.456225] ? prepare_exit_to_usermode+0x291/0x3b0 [ 36.461225] ? perf_trace_sys_enter+0xb10/0xb10 [ 36.465878] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 36.470755] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 36.475935] RIP: 0033:0x4402f9 [ 36.479112] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 36.498073] RSP: 002b:00007ffdb31251d8 EFLAGS: 00000213 ORIG_RAX: 0000000000000010 [ 36.505836] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 00000000004402f9 [ 36.513211] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000003 [ 36.520463] RBP: 00000000006ca018 R08: 00000000004002c8 R09: 00000000004002c8 [ 36.527716] R10: 00000000004002c8 R11: 0000000000000213 R12: 0000000000401b80 [ 36.535063] R13: 0000000000401c10 R14: 0000000000000000 R15: 0000000000000000 [ 36.542335] Modules linked in: [ 36.545510] Dumping ftrace buffer: [ 36.549030] (ftrace buffer empty) [ 36.552827] ---[ end trace c89a962150abb5ce ]--- [ 36.557606] RIP: 0010:do_raw_spin_lock+0x27/0x200 [ 36.562460] Code: 00 00 00 48 b8 00 00 00 00 00 fc ff df 55 48 89 e5 41 56 41 55 41 54 53 48 89 fb 48 83 c7 04 48 89 fa 48 c1 ea 03 48 83 ec 08 <0f> b6 14 02 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 7b [ 36.581370] RSP: 0018:ffff8801cf1a7430 EFLAGS: 00010286 [ 36.586749] RAX: dffffc0000000000 RBX: 00000000000001b0 RCX: 0000000000000000 [ 36.594028] RDX: 0000000000000036 RSI: 0000000000000000 RDI: 00000000000001b4 [ 36.601318] RBP: ffff8801cf1a7458 R08: 0000000000000001 R09: 0000000000000000 [ 36.608731] R10: ffffed0035c51089 R11: ffff8801ae28844f R12: ffff8801ae288430 [ 36.616147] R13: 0000000000000000 R14: dffffc0000000000 R15: 0000000000000000 [ 36.623441] FS: 00000000014a5880(0000) GS:ffff8801db100000(0000) knlGS:0000000000000000 [ 36.631725] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 36.637614] CR2: 0000000020000000 CR3: 00000001b4a66000 CR4: 00000000001426e0 [ 36.644896] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 36.652268] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 36.659553] Kernel panic - not syncing: Fatal exception [ 36.665264] Dumping ftrace buffer: [ 36.668798] (ftrace buffer empty) [ 36.672486] Kernel Offset: disabled [ 36.676094] Rebooting in 86400 seconds..