[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 18.994447] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 24.006651] random: sshd: uninitialized urandom read (32 bytes read) [ 24.236198] random: sshd: uninitialized urandom read (32 bytes read) [ 25.115715] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.10.36' (ECDSA) to the list of known hosts. [ 30.546287] random: sshd: uninitialized urandom read (32 bytes read) 2018/06/01 07:23:13 fuzzer started 2018/06/01 07:23:14 connecting to host at 10.128.0.26:38831 2018/06/01 07:23:14 checking config... [ 53.389080] can: request_module (can-proto-0) failed. [ 53.398309] can: request_module (can-proto-0) failed. 2018/06/01 07:23:38 enabled syscalls: 1736 2018/06/01 07:23:38 testing simple program... [ 55.063426] IPVS: ftp: loaded support on port[0] = 21 [ 55.256164] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.262647] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.270088] device bridge_slave_0 entered promiscuous mode [ 55.285917] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.292285] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.299490] device bridge_slave_1 entered promiscuous mode [ 55.315148] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 55.331701] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 55.371797] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 55.390318] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 55.451142] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 55.458594] team0: Port device team_slave_0 added [ 55.473011] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 55.480878] team0: Port device team_slave_1 added [ 55.495586] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 55.512736] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 55.528858] kasan: CONFIG_KASAN_INLINE enabled [ 55.533549] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 55.540963] general protection fault: 0000 [#1] SMP KASAN [ 55.546491] Dumping ftrace buffer: [ 55.550009] (ftrace buffer empty) [ 55.553703] Modules linked in: [ 55.556888] CPU: 1 PID: 4615 Comm: ip Not tainted 4.17.0-rc6+ #71 [ 55.563104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 55.572446] RIP: 0010:rtnl_newlink+0x695/0x1d80 [ 55.577089] RSP: 0018:ffff8801aba26f10 EFLAGS: 00010206 [ 55.582427] RAX: 0000000000000011 RBX: dffffc0000000000 RCX: 0000000000000000 [ 55.589674] RDX: 0000000000000000 RSI: ffffffff85e73c57 RDI: 0000000000000088 [ 55.596919] RBP: ffff8801aba27618 R08: ffffed0035744e08 R09: ffffed0035744e0e [ 55.604171] R10: ffffed0035744e07 R11: ffff8801aba2703f R12: ffff8801aba275f0 [ 55.611425] R13: 0000000000000000 R14: 0000000000000000 R15: ffff8801aba27390 [ 55.618685] FS: 00007f8075104700(0000) GS:ffff8801daf00000(0000) knlGS:0000000000000000 [ 55.626901] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 55.632760] CR2: 000000000063f210 CR3: 00000001d86cb000 CR4: 00000000001406e0 [ 55.640009] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 55.647264] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 55.654507] Call Trace: [ 55.657080] ? rtnl_link_unregister+0x370/0x370 [ 55.661732] ? print_usage_bug+0xc0/0xc0 [ 55.665779] ? print_usage_bug+0xc0/0xc0 [ 55.669819] ? print_usage_bug+0xc0/0xc0 [ 55.673856] ? lock_acquire+0x1dc/0x520 [ 55.677808] ? rtnetlink_rcv_msg+0x40a/0xc10 [ 55.682190] ? graph_lock+0x170/0x170 [ 55.685966] ? lock_release+0xa10/0xa10 [ 55.689925] ? check_same_owner+0x320/0x320 [ 55.694238] ? rcu_note_context_switch+0x710/0x710 [ 55.699143] ? __lock_acquire+0x7f5/0x5140 [ 55.703361] ? __might_sleep+0x95/0x190 [ 55.707322] ? kasan_check_write+0x14/0x20 [ 55.711539] ? __mutex_lock+0x7d9/0x17f0 [ 55.715581] ? rtnetlink_rcv_msg+0x40a/0xc10 [ 55.719965] ? debug_check_no_locks_freed+0x310/0x310 [ 55.725130] ? lock_downgrade+0x8e0/0x8e0 [ 55.729257] ? mutex_trylock+0x2a0/0x2a0 [ 55.733296] ? kasan_check_read+0x11/0x20 [ 55.737425] ? rcu_is_watching+0x85/0x140 [ 55.741552] ? __lock_acquire+0x7f5/0x5140 [ 55.745775] ? graph_lock+0x170/0x170 [ 55.749563] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 55.755082] ? rtnl_get_link+0x164/0x350 [ 55.759120] ? rtnl_dump_all+0x5e0/0x5e0 [ 55.763168] ? rcu_is_watching+0x85/0x140 [ 55.767298] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 55.772476] ? __netlink_ns_capable+0x100/0x130 [ 55.777137] ? rtnl_link_unregister+0x370/0x370 [ 55.781810] rtnetlink_rcv_msg+0x466/0xc10 [ 55.786036] ? rtnetlink_put_metrics+0x690/0x690 [ 55.790773] netlink_rcv_skb+0x172/0x440 [ 55.794821] ? rtnetlink_put_metrics+0x690/0x690 [ 55.799553] ? netlink_ack+0xbc0/0xbc0 [ 55.803417] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 55.808592] ? netlink_skb_destructor+0x210/0x210 [ 55.813415] rtnetlink_rcv+0x1c/0x20 [ 55.817105] netlink_unicast+0x58b/0x740 [ 55.821170] ? netlink_attachskb+0x970/0x970 [ 55.825559] ? import_iovec+0x24b/0x420 [ 55.829514] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 55.834507] ? security_netlink_send+0x88/0xb0 [ 55.839075] netlink_sendmsg+0x9f0/0xfa0 [ 55.843117] ? netlink_unicast+0x740/0x740 [ 55.847332] ? security_socket_sendmsg+0x94/0xc0 [ 55.852071] ? netlink_unicast+0x740/0x740 [ 55.856283] sock_sendmsg+0xd5/0x120 [ 55.859979] ___sys_sendmsg+0x805/0x940 [ 55.863944] ? __handle_mm_fault+0x93a/0x4310 [ 55.868426] ? copy_msghdr_from_user+0x560/0x560 [ 55.873162] ? vm_insert_mixed_mkwrite+0x40/0x40 [ 55.877895] ? graph_lock+0x170/0x170 [ 55.881670] ? find_held_lock+0x36/0x1c0 [ 55.885715] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 55.891229] ? __fget_light+0x2ef/0x430 [ 55.895178] ? fget_raw+0x20/0x20 [ 55.898609] ? find_held_lock+0x36/0x1c0 [ 55.902657] ? lock_downgrade+0x8e0/0x8e0 [ 55.906783] ? handle_mm_fault+0x8c0/0xc70 [ 55.910999] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 55.916539] ? sockfd_lookup_light+0xc5/0x160 [ 55.921030] __sys_sendmsg+0x115/0x270 [ 55.924896] ? __ia32_sys_shutdown+0x80/0x80 [ 55.929283] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 55.934805] ? __do_page_fault+0x441/0xe40 [ 55.939031] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 55.943852] __x64_sys_sendmsg+0x78/0xb0 [ 55.947892] do_syscall_64+0x1b1/0x800 [ 55.951766] ? syscall_return_slowpath+0x5c0/0x5c0 [ 55.956687] ? syscall_return_slowpath+0x30f/0x5c0 [ 55.961597] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 55.967112] ? retint_user+0x18/0x18 [ 55.970805] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 55.975627] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 55.980792] RIP: 0033:0x7f8074825320 [ 55.984477] RSP: 002b:00007ffcb3705598 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 55.992163] RAX: ffffffffffffffda RBX: 00007ffcb3709690 RCX: 00007f8074825320 [ 55.999413] RDX: 0000000000000000 RSI: 00007ffcb37055d0 RDI: 0000000000000003 [ 56.006664] RBP: 00007ffcb37055d0 R08: 0000000000000000 R09: 0000000000000000 [ 56.013912] R10: 0000000000000000 R11: 0000000000000246 R12: 000000005b10f47c [ 56.021161] R13: 0000000000000000 R14: 00000000006395c0 R15: 00007ffcb3709e60 [ 56.028410] Code: 88 95 0a 00 00 e8 1c ff 91 fb 48 83 bd 80 f9 ff ff 00 0f 84 fb 03 00 00 e8 09 ff 91 fb 49 8d bd 88 00 00 00 48 89 f8 48 c1 e8 03 <0f> b6 04 18 84 c0 74 08 3c 03 0f 8e 90 14 00 00 45 8b b5 88 00 [ 56.047542] RIP: rtnl_newlink+0x695/0x1d80 RSP: ffff8801aba26f10 [ 56.053949] ---[ end trace 0067f19e38c0bc39 ]--- [ 56.058736] Kernel panic - not syncing: Fatal exception [ 56.064549] Dumping ftrace buffer: [ 56.068071] (ftrace buffer empty) [ 56.071756] Kernel Offset: disabled [ 56.075363] Rebooting in 86400 seconds..