[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 14.315934] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 18.906002] random: sshd: uninitialized urandom read (32 bytes read) [ 19.339352] random: sshd: uninitialized urandom read (32 bytes read) [ 19.903047] random: sshd: uninitialized urandom read (32 bytes read) [ 20.036683] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.0.18' (ECDSA) to the list of known hosts. [ 25.768373] random: sshd: uninitialized urandom read (32 bytes read) 2018/08/22 14:23:18 parsed 1 programs [ 26.840965] random: cc1: uninitialized urandom read (8 bytes read) 2018/08/22 14:23:20 executed programs: 0 [ 28.340305] IPVS: Creating netns size=2536 id=1 [ 28.372696] IPVS: Creating netns size=2536 id=2 [ 28.408988] IPVS: Creating netns size=2536 id=3 [ 28.446938] IPVS: Creating netns size=2536 id=4 [ 28.481691] IPVS: Creating netns size=2536 id=5 [ 28.535672] IPVS: Creating netns size=2536 id=6 [ 28.573932] IPVS: Creating netns size=2536 id=7 [ 28.631490] IPVS: Creating netns size=2536 id=8 [ 28.736726] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 28.770797] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 28.872964] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 28.914559] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 28.997508] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 29.056349] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 29.119202] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 29.135319] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 29.152669] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 29.164104] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 29.183490] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 29.214134] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 29.228000] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 29.246904] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 29.266731] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 29.276104] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 29.285595] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 29.301361] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 29.310314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 29.338621] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 29.350882] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 29.365555] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 29.387444] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 29.415661] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 29.425627] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 29.434194] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 29.443783] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 29.452975] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 29.461501] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 29.469572] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 29.477448] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 29.488717] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 29.496620] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 29.508391] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 29.515781] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 29.546212] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 29.555373] ip (4408) used greatest stack depth: 24376 bytes left [ 29.636964] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 29.653239] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 29.663039] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 29.671323] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 29.678609] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 29.689012] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 29.697706] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 29.706719] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 29.715254] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 29.723037] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 29.730610] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 29.741536] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 29.748547] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 29.757285] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 29.764817] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 29.776322] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 29.783928] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 29.791350] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 29.798793] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 29.806220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 29.813719] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 29.821295] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 29.828784] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 29.836441] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 29.844010] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 29.851483] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 29.865962] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 29.873540] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 29.882118] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 29.889186] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 29.896233] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 29.904128] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 29.912282] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 29.920077] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 29.927637] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 29.935046] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 29.996224] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 30.055807] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 30.108804] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 30.126918] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 30.135594] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 30.146284] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 30.160431] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 30.170570] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 30.181695] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 30.192311] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 30.231702] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 30.238736] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 30.247117] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 30.262607] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 30.272312] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 30.279855] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 30.904952] ip (5032) used greatest stack depth: 23976 bytes left [ 32.596573] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 32.764324] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 32.774926] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 32.787506] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 32.837815] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 32.997011] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 33.015917] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 33.025373] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 33.105600] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 33.197091] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 33.251724] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 33.257889] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 33.265066] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 33.295425] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 33.347840] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 33.362154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 33.369878] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 33.425577] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 33.441606] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 33.455249] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 33.463580] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 33.513676] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 33.576403] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 33.584967] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 33.592359] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 33.647243] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 33.684159] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 33.690408] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 33.699399] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 33.827256] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 33.834162] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 33.840823] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready 2018/08/22 14:23:26 executed programs: 8 [ 36.005878] l2tp_core: tunl 4: sockfd_lookup(fd=11) returned -9 [ 36.080663] BUG: unable to handle kernel NULL pointer dereference at 0000000000000080 [ 36.088947] IP: [] l2tp_session_create+0xc60/0x16f0 [ 36.095633] PGD 1be352067 [ 36.098292] PUD 1c0763067 PMD 0 [ 36.101816] [ 36.103457] Oops: 0002 [#1] PREEMPT SMP KASAN [ 36.107943] Dumping ftrace buffer: [ 36.111470] (ftrace buffer empty) [ 36.115169] Modules linked in: [ 36.118476] CPU: 1 PID: 7301 Comm: syz-executor7 Not tainted 4.9.123-g8dd3fc2 #79 [ 36.126081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 36.135411] task: ffff8801d8f61800 task.stack: ffff8801d81f0000 [ 36.141453] RIP: 0010:[] [] l2tp_session_create+0xc60/0x16f0 [ 36.150598] RSP: 0018:ffff8801d81f7ac0 EFLAGS: 00010246 [ 36.156022] RAX: 0000000000000000 RBX: ffff8801c1884c80 RCX: 1ffff1003b1ec41d [ 36.163284] RDX: 1ffff10038379520 RSI: ffff8801d8f620c8 RDI: ffff8801c1bca900 [ 36.170533] RBP: ffff8801d81f7b60 R08: ffff8801d8f620e8 R09: 0000000000000000 [ 36.177784] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8801c1bca7d8 [ 36.185038] R13: 0000000000000000 R14: ffff8801c1bca780 R15: 0000000000000000 [ 36.192296] FS: 00007f931edb0700(0000) GS:ffff8801db300000(0000) knlGS:0000000000000000 [ 36.200506] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 36.206378] CR2: 0000000000000080 CR3: 00000001be1b7000 CR4: 00000000001606f0 [ 36.213625] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 36.220872] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 36.228140] Stack: [ 36.230263] ffffffff836c90a7 ffffffff836ca141 ffff8801d7d65d48 0000000000000000 [ 36.238279] ffff8801c1bca780 ffff8801c1884dd8 ffff8801c1bca7d8 ffff8801c1884dd0 [ 36.246286] ffff8801c1884d30 ffff8801c1bca7a0 ffff8801d7d65500 0000000000000000 [ 36.254295] Call Trace: [ 36.256862] [] ? l2tp_session_create+0xed7/0x16f0 [ 36.263329] [] ? l2tp_session_get+0x1d1/0x790 [ 36.269449] [] pppol2tp_connect+0x10d7/0x18f0 [ 36.275569] [] ? pppol2tp_seq_show+0xc30/0xc30 [ 36.281784] [] ? security_socket_connect+0x8f/0xc0 [ 36.288339] [] SYSC_connect+0x1b8/0x300 [ 36.293941] [] ? SYSC_bind+0x280/0x280 [ 36.299456] [] ? get_unused_fd_flags+0xd0/0xd0 [ 36.305671] [] ? do_futex+0x17c0/0x17c0 [ 36.311271] [] ? SyS_socket+0x121/0x1b0 [ 36.316870] [] ? move_addr_to_kernel+0x50/0x50 [ 36.323080] [] ? do_vfs_ioctl+0x11a0/0x11a0 [ 36.329043] [] SyS_connect+0x24/0x30 [ 36.334383] [] ? SyS_accept+0x30/0x30 [ 36.339809] [] do_syscall_64+0x1a6/0x490 [ 36.345498] [] entry_SYSCALL_64_after_swapgs+0x5d/0xdb [ 36.352393] Code: 00 00 49 8d be 80 01 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 7b 09 00 00 49 8b 86 80 01 00 00 ff 80 80 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 8b 55 d0 [ 36.379688] RIP [] l2tp_session_create+0xc60/0x16f0 [ 36.386464] RSP [ 36.390062] CR2: 0000000000000080 [ 36.399476] ---[ end trace c85dc0def4955763 ]--- [ 36.404418] Kernel panic - not syncing: Fatal exception [ 36.410147] Dumping ftrace buffer: [ 36.413665] (ftrace buffer empty) [ 36.417349] Kernel Offset: disabled [ 36.420949] Rebooting in 86400 seconds..