[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [ 10.097526] random: sshd: uninitialized urandom read (32 bytes read) [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 29.037952] random: sshd: uninitialized urandom read (32 bytes read) [ 29.213630] random: crng init done Warning: Permanently added '10.128.0.50' (ECDSA) to the list of known hosts. executing program [ 36.118577] BUG: unable to handle kernel paging request at ffffed005ad4afff [ 36.126112] IP: [] fuse_dev_do_write+0x1316/0x23d0 [ 36.132827] PGD 21fffb067 [ 36.135475] PUD 21fff9067 PMD 0 [ 36.138956] [ 36.140578] Oops: 0000 [#1] PREEMPT SMP KASAN [ 36.145268] Modules linked in: [ 36.148562] CPU: 0 PID: 2051 Comm: syz-executor112 Not tainted 4.9.143+ #75 [ 36.155638] task: ffff8801d1458000 task.stack: ffff8801cee38000 [ 36.161670] RIP: 0010:[] [] fuse_dev_do_write+0x1316/0x23d0 [ 36.170855] RSP: 0018:ffff8801cee3f910 EFLAGS: 00010a07 [ 36.176297] RAX: dffffc0000000000 RBX: ffff8801c4f28248 RCX: ffff8801d6a58000 [ 36.183556] RDX: 1ffff1005ad4afff RSI: ffff8802d6a57fff RDI: ffff8801c4f282f8 [ 36.190807] RBP: ffff8801cee3fba0 R08: 0000000000000000 R09: 0000000000000001 [ 36.198055] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000 [ 36.205300] R13: ffff8801cee3fbd0 R14: ffff8801cee57840 R15: 1ffff10039dc7f2f [ 36.212545] FS: 00007f3d2863b700(0000) GS:ffff8801db600000(0000) knlGS:0000000000000000 [ 36.220906] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 36.226793] CR2: ffffed005ad4afff CR3: 00000001cef3a000 CR4: 00000000001606b0 [ 36.234155] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 36.241406] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 36.248772] Stack: [ 36.250902] ffff880100000000 ffff8801cee3fbd0 ffff8801c4f28248 ffff8801c4f282f8 [ 36.258906] ffffffff00000001 ffff880100001000 ffff8801c4f282e4 ffff8801cee57848 [ 36.266913] ffff8801c4f282f0 ffff8801c4f28278 ffff8801cee57850 ffff8801ce81e600 [ 36.274965] Call Trace: [ 36.277552] [] ? fuse_dev_release+0x480/0x480 [ 36.283686] [] ? futex_wake+0x1aa/0x450 [ 36.289321] [] ? futex_wait_restart+0x230/0x230 [ 36.295628] [] ? __lock_acquire+0x654/0x4a10 [ 36.301680] [] fuse_dev_write+0x142/0x1d0 [ 36.307473] [] ? fuse_dev_splice_write+0xc00/0xc00 [ 36.314044] [] ? iov_iter_init+0xaf/0x1d0 [ 36.319828] [] __vfs_write+0x3d7/0x580 [ 36.325405] [] ? __vfs_read+0x560/0x560 [ 36.331019] [] ? avc_policy_seqno+0x9/0x20 [ 36.336888] [] ? selinux_file_permission+0x82/0x470 [ 36.343540] [] ? rw_verify_area+0xe5/0x2a0 [ 36.349410] [] vfs_write+0x187/0x520 [ 36.354787] [] SyS_write+0xd9/0x1c0 [ 36.360061] [] ? SyS_read+0x1c0/0x1c0 [ 36.365501] [] ? trace_hardirqs_on_caller+0x38b/0x590 [ 36.372328] [] ? do_syscall_64+0x48/0x550 [ 36.378127] [] ? SyS_read+0x1c0/0x1c0 [ 36.383562] [] do_syscall_64+0x19f/0x550 [ 36.389261] [] entry_SYSCALL_64_after_swapgs+0x5d/0xdb [ 36.396172] Code: 02 84 c0 74 08 3c 03 0f 8e 33 10 00 00 8b 83 b0 00 00 00 83 e8 01 48 8d 34 01 48 b8 00 00 00 00 00 fc ff df 48 89 f2 48 c1 ea 03 <0f> b6 04 02 48 89 f2 83 e2 07 38 d0 7f 08 84 c0 0f 85 32 0d 00 [ 36.423889] RIP [] fuse_dev_do_write+0x1316/0x23d0 [ 36.430589] RSP [ 36.434228] CR2: ffffed005ad4afff [ 36.437680] ---[ end trace 4e838286917712ed ]--- [ 36.442421] Kernel panic - not syncing: Fatal exception [ 36.448116] Kernel Offset: disabled [ 36.451725] Rebooting in 86400 seconds..