[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[   19.928314] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   23.512743] random: sshd: uninitialized urandom read (32 bytes read)
[   23.985953] random: sshd: uninitialized urandom read (32 bytes read)
[   24.709272] random: sshd: uninitialized urandom read (32 bytes read)
[   25.543139] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.0.9' (ECDSA) to the list of known hosts.
[   30.987955] random: sshd: uninitialized urandom read (32 bytes read)
2018/05/06 16:05:21 parsed 1 programs
2018/05/06 16:05:21 executed programs: 0
[   31.464654] IPVS: ftp: loaded support on port[0] = 21
[   31.509337] FAULT_INJECTION: forcing a failure.
[   31.509337] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   31.521288] CPU: 0 PID: 4529 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #60
[   31.528466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   31.537800] Call Trace:
[   31.540375]  dump_stack+0x1b9/0x294
[   31.543988]  ? dump_stack_print_info.cold.2+0x52/0x52
[   31.549164]  should_fail.cold.4+0xa/0x1a
[   31.553215]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[   31.558302]  ? graph_lock+0x170/0x170
[   31.562083]  ? debug_check_no_locks_freed+0x310/0x310
[   31.567256]  ? find_held_lock+0x36/0x1c0
[   31.571295]  ? __lock_is_held+0xb5/0x140
[   31.575351]  ? check_same_owner+0x320/0x320
[   31.579663]  ? rcu_note_context_switch+0x710/0x710
[   31.584576]  ? __might_sleep+0x95/0x190
[   31.588533]  __alloc_pages_nodemask+0x34e/0xd70
[   31.593185]  ? __alloc_pages_slowpath+0x2db0/0x2db0
[   31.598187]  ? kasan_check_read+0x11/0x20
[   31.602312]  ? rcu_is_watching+0x85/0x140
[   31.606440]  ? rcu_bh_force_quiescent_state+0x20/0x20
[   31.611609]  ? rcu_bh_force_quiescent_state+0x20/0x20
[   31.616786]  ? __unwind_start+0x166/0x330
[   31.621018]  ? __kernel_text_address+0xd/0x40
[   31.625493]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[   31.631013]  alloc_pages_current+0x10c/0x210
[   31.635401]  depot_save_stack+0x3d8/0x450
[   31.639529]  save_stack+0xa9/0xd0
[   31.642961]  ? save_stack+0x43/0xd0
[   31.646567]  ? kasan_kmalloc+0xc4/0xe0
[   31.650433]  ? kasan_slab_alloc+0x12/0x20
[   31.654561]  ? kmem_cache_alloc_trace+0x13b/0x780
[   31.659395]  ? do_check+0x236/0xb570
[   31.663087]  ? bpf_check+0x3901/0x5f60
[   31.668254]  ? bpf_prog_load+0x1133/0x2080
[   31.672467]  ? __ia32_sys_bpf+0x389/0x4c0
[   31.676595]  ? do_fast_syscall_32+0x345/0xf9b
[   31.681069]  ? entry_SYSENTER_compat+0x70/0x7f
[   31.685628]  ? graph_lock+0x170/0x170
[   31.689408]  ? graph_lock+0x170/0x170
[   31.693186]  ? find_held_lock+0x36/0x1c0
[   31.697225]  ? find_held_lock+0x36/0x1c0
[   31.701265]  ? print_usage_bug+0xc0/0xc0
[   31.705305]  ? __lock_is_held+0xb5/0x140
[   31.709356]  ? kasan_unpoison_shadow+0x35/0x50
[   31.713921]  kasan_kmalloc+0xc4/0xe0
[   31.717616]  kasan_slab_alloc+0x12/0x20
[   31.721573]  kmem_cache_alloc_trace+0x13b/0x780
[   31.726224]  ? kasan_check_write+0x14/0x20
[   31.730448]  ? do_raw_spin_lock+0xc1/0x200
[   31.734673]  do_check+0x236/0xb570
[   31.738203]  ? save_stack+0xa9/0xd0
[   31.741811]  ? save_stack+0x43/0xd0
[   31.745424]  ? __kasan_slab_free+0x11a/0x170
[   31.749815]  ? kasan_slab_free+0xe/0x10
[   31.753767]  ? kfree+0xd9/0x260
[   31.757027]  ? bpf_check+0x38f4/0x5f60
[   31.760893]  ? bpf_prog_load+0x1133/0x2080
[   31.765110]  ? do_fast_syscall_32+0x345/0xf9b
[   31.769586]  ? entry_SYSENTER_compat+0x70/0x7f
[   31.774150]  ? kasan_check_read+0x11/0x20
[   31.778277]  ? do_raw_spin_unlock+0x9e/0x2e0
[   31.782663]  ? do_raw_spin_trylock+0x1b0/0x1b0
[   31.787229]  ? check_func_arg+0xca0/0xca0
[   31.791362]  ? do_raw_spin_lock+0xc1/0x200
[   31.795579]  ? trace_hardirqs_off+0xd/0x10
[   31.799801]  ? debug_check_no_obj_freed+0x2ff/0x584
[   31.804799]  ? __lock_is_held+0xb5/0x140
[   31.808842]  ? mark_held_locks+0xc9/0x160
[   31.812968]  ? quarantine_put+0xeb/0x190
[   31.817010]  ? kfree+0x111/0x260
[   31.820370]  ? bpf_check+0x38f4/0x5f60
[   31.824237]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   31.829234]  bpf_check+0x3901/0x5f60
[   31.832931]  ? ktime_get_with_offset+0x395/0x4a0
[   31.837669]  ? fixup_bpf_calls+0x1c70/0x1c70
[   31.842057]  ? ktime_get+0x430/0x430
[   31.845748]  ? __might_sleep+0x95/0x190
[   31.849701]  ? memset+0x31/0x40
[   31.852963]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   31.858496]  ? bpf_obj_name_cpy+0x17c/0x1c0
[   31.862797]  bpf_prog_load+0x1133/0x2080
[   31.866838]  ? bpf_prog_new_fd+0x60/0x60
[   31.870877]  ? find_held_lock+0x36/0x1c0
[   31.874924]  ? lock_downgrade+0x8e0/0x8e0
[   31.879048]  ? lock_release+0xa10/0xa10
[   31.883001]  ? check_same_owner+0x320/0x320
[   31.887313]  ? __check_object_size+0x95/0x5d9
[   31.891792]  ? __might_sleep+0x95/0x190
[   31.895757]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   31.901283]  __ia32_sys_bpf+0x389/0x4c0
[   31.905237]  ? __x64_sys_bpf+0x4c0/0x4c0
[   31.909280]  ? do_fast_syscall_32+0x148/0xf9b
[   31.913757]  do_fast_syscall_32+0x345/0xf9b
[   31.918057]  ? do_int80_syscall_32+0x880/0x880
[   31.922618]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   31.927378]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   31.932902]  ? syscall_return_slowpath+0x30f/0x5c0
[   31.937812]  ? sysret32_from_system_call+0x5/0x46
[   31.942638]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   31.947461]  entry_SYSENTER_compat+0x70/0x7f
[   31.951845] RIP: 0023:0xf7f87cb9
[   31.955186] RSP: 002b:00000000ff8392fc EFLAGS: 00000286 ORIG_RAX: 0000000000000165
[   31.962871] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000
[   31.970117] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[   31.977366] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   31.984623] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   31.991870] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   32.020582] FAULT_INJECTION: forcing a failure.
[   32.020582] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   32.032504] CPU: 0 PID: 4531 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #60
[   32.039671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   32.049002] Call Trace:
[   32.051577]  dump_stack+0x1b9/0x294
[   32.055186]  ? dump_stack_print_info.cold.2+0x52/0x52
[   32.060366]  ? __isolate_free_page+0x7c0/0x7c0
[   32.064942]  should_fail.cold.4+0xa/0x1a
[   32.068983]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[   32.074071]  ? debug_check_no_locks_freed+0x310/0x310
[   32.079244]  ? find_held_lock+0x36/0x1c0
[   32.083297]  ? check_same_owner+0x320/0x320
[   32.087602]  ? rcu_note_context_switch+0x710/0x710
[   32.092512]  ? __might_sleep+0x95/0x190
[   32.096477]  __alloc_pages_nodemask+0x34e/0xd70
[   32.101131]  ? __alloc_pages_slowpath+0x2db0/0x2db0
[   32.106131]  ? find_held_lock+0x36/0x1c0
[   32.110180]  ? lock_downgrade+0x8e0/0x8e0
[   32.114309]  ? lock_downgrade+0x8e0/0x8e0
[   32.118455]  ? do_raw_spin_trylock+0x1b0/0x1b0
[   32.123025]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[   32.128555]  alloc_pages_current+0x10c/0x210
[   32.132953]  __change_page_attr_set_clr+0x411/0x2ce0
[   32.138050]  ? _lookup_address_cpa.isra.24+0xa0/0xa0
[   32.143140]  ? graph_lock+0x170/0x170
[   32.146921]  ? lock_downgrade+0x8e0/0x8e0
[   32.151054]  ? find_held_lock+0x36/0x1c0
[   32.155101]  ? lock_downgrade+0x8e0/0x8e0
[   32.159236]  ? kasan_check_read+0x11/0x20
[   32.163368]  ? do_raw_spin_unlock+0x9e/0x2e0
[   32.167758]  ? do_raw_spin_trylock+0x1b0/0x1b0
[   32.172323]  ? lookup_address_in_pgd+0xb1/0x530
[   32.176977]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[   32.181982]  ? pfn_range_is_mapped+0xdc/0x110
[   32.186464]  __change_page_attr_set_clr+0x2517/0x2ce0
[   32.191637]  ? note_gp_changes+0x540/0x540
[   32.195873]  ? _lookup_address_cpa.isra.24+0xa0/0xa0
[   32.200967]  ? kasan_check_write+0x14/0x20
[   32.205187]  ? __mutex_unlock_slowpath+0x180/0x8a0
[   32.210100]  ? wait_for_completion+0x870/0x870
[   32.214664]  ? __lock_is_held+0xb5/0x140
[   32.218710]  ? kasan_check_read+0x11/0x20
[   32.222841]  ? do_raw_spin_unlock+0x9e/0x2e0
[   32.227233]  ? do_raw_spin_trylock+0x1b0/0x1b0
[   32.231804]  ? _raw_spin_unlock+0x22/0x30
[   32.235934]  ? mutex_unlock+0xd/0x10
[   32.239630]  ? vm_unmap_aliases+0x4ea/0x600
[   32.243934]  ? __kasan_slab_free+0x11a/0x170
[   32.248328]  ? purge_fragmented_blocks_allcpus+0xbb0/0xbb0
[   32.253936]  ? do_raw_spin_trylock+0x1b0/0x1b0
[   32.258523]  change_page_attr_set_clr+0x44a/0x11a0
[   32.263438]  ? __change_page_attr_set_clr+0x2ce0/0x2ce0
[   32.268794]  ? trace_hardirqs_off+0xd/0x10
[   32.273008]  ? quarantine_put+0xeb/0x190
[   32.277049]  ? bpf_check+0x3d2/0x5f60
[   32.280828]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   32.285824]  ? trace_hardirqs_on+0xd/0x10
[   32.289955]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   32.295484]  ? do_jit+0x7420/0x7420
[   32.299091]  ? __bpf_prog_run64+0x120/0x120
[   32.303395]  set_memory_ro+0x73/0x90
[   32.307092]  ? _set_memory_wb+0x90/0x90
[   32.311050]  ? ktime_get+0x430/0x430
[   32.314745]  ? __might_sleep+0x95/0x190
[   32.318699]  ? __bpf_prog_run64+0x120/0x120
[   32.323001]  bpf_prog_select_runtime+0x19b/0x640
[   32.327745]  ? memset+0x31/0x40
[   32.331007]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   32.336527]  bpf_prog_load+0x16c5/0x2080
[   32.340573]  ? bpf_prog_new_fd+0x60/0x60
[   32.344625]  ? lock_downgrade+0x8e0/0x8e0
[   32.348753]  ? lock_release+0xa10/0xa10
[   32.352707]  ? check_same_owner+0x320/0x320
[   32.357006]  ? __check_object_size+0x95/0x5d9
[   32.361495]  ? __might_sleep+0x95/0x190
[   32.365465]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   32.370985]  __ia32_sys_bpf+0x389/0x4c0
[   32.374949]  ? __x64_sys_bpf+0x4c0/0x4c0
[   32.379007]  ? do_fast_syscall_32+0x148/0xf9b
[   32.383489]  do_fast_syscall_32+0x345/0xf9b
[   32.387792]  ? do_int80_syscall_32+0x880/0x880
[   32.392357]  ? syscall_slow_exit_work+0x4f0/0x4f0
[   32.397184]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   32.402712]  ? syscall_return_slowpath+0x30f/0x5c0
[   32.407626]  ? sysret32_from_system_call+0x5/0x46
[   32.412461]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   32.417294]  entry_SYSENTER_compat+0x70/0x7f
[   32.421684] RIP: 0023:0xf7f87cb9
[   32.425713] RSP: 002b:00000000ff8392fc EFLAGS: 00000286 ORIG_RAX: 0000000000000165
[   32.433403] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000
[   32.440651] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[   32.447898] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   32.455148] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   32.462403] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   32.469809] WARNING: CPU: 0 PID: 4531 at include/linux/filter.h:651 bpf_prog_select_runtime+0x53c/0x640
[   32.479328] Kernel panic - not syncing: panic_on_warn set ...
[   32.479328] 
[   32.486674] CPU: 0 PID: 4531 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #60
[   32.493837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   32.503169] Call Trace:
[   32.505740]  dump_stack+0x1b9/0x294
[   32.509360]  ? dump_stack_print_info.cold.2+0x52/0x52
[   32.514538]  ? bpf_prog_select_runtime+0x440/0x640
[   32.519447]  panic+0x22f/0x4de
[   32.522620]  ? add_taint.cold.5+0x16/0x16
[   32.526762]  ? __warn.cold.8+0x148/0x1b3
[   32.530804]  ? __warn.cold.8+0x117/0x1b3
[   32.534844]  ? bpf_prog_select_runtime+0x53c/0x640
[   32.539752]  __warn.cold.8+0x163/0x1b3
[   32.543622]  ? bpf_prog_select_runtime+0x53c/0x640
[   32.548534]  report_bug+0x252/0x2d0
[   32.552140]  do_error_trap+0x1de/0x490
[   32.556006]  ? trace_hardirqs_off+0xd/0x10
[   32.560218]  ? math_error+0x420/0x420
[   32.563997]  ? bpf_check+0x3d2/0x5f60
[   32.567788]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   32.572785]  ? trace_hardirqs_on+0xd/0x10
[   32.576917]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   32.582446]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   32.587270]  do_invalid_op+0x1b/0x20
[   32.590965]  invalid_op+0x14/0x20
[   32.594402] RIP: 0010:bpf_prog_select_runtime+0x53c/0x640
[   32.600001] RSP: 0018:ffff8801ac5f7a00 EFLAGS: 00010293
[   32.605345] RAX: ffff8801b60b0040 RBX: ffffc90001962000 RCX: ffffffff81857b67
[   32.612604] RDX: 0000000000000000 RSI: ffffffff81857efc RDI: 0000000000000005
[   32.619853] RBP: ffff8801ac5f7a60 R08: ffff8801b60b0040 R09: 0000000000000000
[   32.627103] R10: 0000000000000000 R11: 0000000000000000 R12: 00000000fffffff4
[   32.634354] R13: ffffffff81862050 R14: ffffc90001962000 R15: ffff8801ac5f7ac8
[   32.641616]  ? __bpf_prog_run64+0x120/0x120
[   32.645918]  ? bpf_prog_select_runtime+0x1a7/0x640
[   32.650835]  ? bpf_prog_select_runtime+0x53c/0x640
[   32.655751]  ? memset+0x31/0x40
[   32.659011]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   32.664615]  bpf_prog_load+0x16c5/0x2080
[   32.668659]  ? bpf_prog_new_fd+0x60/0x60
[   32.672714]  ? lock_downgrade+0x8e0/0x8e0
[   32.676842]  ? lock_release+0xa10/0xa10
[   32.680797]  ? check_same_owner+0x320/0x320
[   32.685110]  ? __check_object_size+0x95/0x5d9
[   32.689590]  ? __might_sleep+0x95/0x190
[   32.693547]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   32.699067]  __ia32_sys_bpf+0x389/0x4c0
[   32.703030]  ? __x64_sys_bpf+0x4c0/0x4c0
[   32.707075]  ? do_fast_syscall_32+0x148/0xf9b
[   32.711564]  do_fast_syscall_32+0x345/0xf9b
[   32.715867]  ? do_int80_syscall_32+0x880/0x880
[   32.720432]  ? syscall_slow_exit_work+0x4f0/0x4f0
[   32.725258]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   32.730779]  ? syscall_return_slowpath+0x30f/0x5c0
[   32.735695]  ? sysret32_from_system_call+0x5/0x46
[   32.740524]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   32.745350]  entry_SYSENTER_compat+0x70/0x7f
[   32.749747] RIP: 0023:0xf7f87cb9
[   32.753089] RSP: 002b:00000000ff8392fc EFLAGS: 00000286 ORIG_RAX: 0000000000000165
[   32.760780] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000000
[   32.768039] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[   32.775293] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   32.782550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   32.789801] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   32.797577] Dumping ftrace buffer:
[   32.801201]    (ftrace buffer empty)
[   32.804891] Kernel Offset: disabled
[   32.808500] Rebooting in 86400 seconds..