[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[   15.045840] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   15.625575] random: sshd: uninitialized urandom read (32 bytes read)
[   15.815522] random: sshd: uninitialized urandom read (32 bytes read)

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   16.505408] random: sshd: uninitialized urandom read (32 bytes read)
[  424.041840] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.0.25' (ECDSA) to the list of known hosts.
[  429.566263] random: sshd: uninitialized urandom read (32 bytes read)
executing program
[  574.431236] INFO: task syz-executor926:4455 blocked for more than 140 seconds.
[  574.438726]       Not tainted 4.18.0-rc4-next-20180713+ #7
[  574.444389] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  574.452370] syz-executor926 D23616  4455   4451 0x00000004
[  574.458109] Call Trace:
[  574.460820]  __schedule+0x87c/0x1ed0
[  574.465432]  ? __sched_text_start+0x8/0x8
[  574.469657]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  574.474280]  ? kasan_check_write+0x14/0x20
[  574.478529]  ? do_raw_spin_lock+0xc1/0x200
[  574.482790]  ? trace_hardirqs_on+0xd/0x10
[  574.486951]  ? prepare_to_wait_event+0x396/0xc70
[  574.491719]  ? prepare_to_wait_exclusive+0x550/0x550
[  574.496867]  ? send_sigio+0x340/0x340
[  574.500726]  ? do_raw_spin_unlock+0xa7/0x2f0
[  574.505141]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  574.509734]  schedule+0xfb/0x450
[  574.513121]  ? lock_downgrade+0x8f0/0x8f0
[  574.517293]  ? __schedule+0x1ed0/0x1ed0
[  574.521331]  ? check_same_owner+0x340/0x340
[  574.525675]  ? do_raw_spin_unlock+0xa7/0x2f0
[  574.530099]  ? replenish_dl_entity.cold.54+0x37/0x37
[  574.535246]  request_wait_answer+0x4c8/0x920
[  574.539675]  ? fuse_read_forget.isra.22+0xdc0/0xdc0
[  574.544772]  ? finish_wait+0x430/0x430
[  574.548724]  ? send_sigio+0x340/0x340
[  574.552569]  ? lock_acquire+0x1e4/0x540
[  574.556558]  ? finish_wait+0x430/0x430
[  574.560563]  ? refcount_inc_not_zero+0x1e5/0x2f0
[  574.565353]  ? finish_wait+0x430/0x430
[  574.569265]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  574.573874]  ? fuse_dev_ioctl+0x430/0x430
[  574.578052]  ? kasan_check_write+0x14/0x20
[  574.582296]  ? do_raw_spin_lock+0xc1/0x200
[  574.586566]  __fuse_request_send+0x12a/0x1d0
[  574.591016]  fuse_request_send+0x62/0xa0
[  574.595178]  fuse_simple_request+0x33d/0x730
[  574.599609]  fuse_lookup_name+0x3ee/0x830
[  574.603775]  ? fuse_valid_type+0xb0/0xb0
[  574.607859]  fuse_lookup+0xf9/0x4c0
[  574.611511]  ? fuse_lookup_name+0x830/0x830
[  574.615859]  ? lock_release+0xa30/0xa30
[  574.619878]  ? d_lookup+0x221/0x340
[  574.623558]  fuse_atomic_open+0x223/0x350
[  574.627761]  ? fuse_lookup+0x4c0/0x4c0
[  574.631795]  lookup_open+0xdbd/0x1b70
[  574.635671]  ? complete_walk+0x260/0x260
[  574.639817]  ? down_read+0xb5/0x1d0
[  574.643506]  ? path_openat+0x25fe/0x5430
[  574.647644]  ? __down_interruptible+0x700/0x700
[  574.652448]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  574.657496]  path_openat+0x261e/0x5430
[  574.661395]  ? lock_acquire+0x1e4/0x540
[  574.665422]  ? is_bpf_text_address+0xae/0x170
[  574.669950]  ? path_lookupat.isra.45+0xbf0/0xbf0
[  574.674763]  ? rcu_cleanup_dead_rnp+0x200/0x200
[  574.679444]  ? is_bpf_text_address+0xd7/0x170
[  574.683987]  ? kernel_text_address+0x79/0xf0
[  574.688717]  ? __kernel_text_address+0xd/0x40
[  574.693277]  ? unwind_get_return_address+0x61/0xa0
[  574.698243]  ? __save_stack_trace+0x8d/0xf0
[  574.702598]  ? trace_hardirqs_on+0x10/0x10
[  574.706838]  ? save_stack+0xa9/0xd0
[  574.710471]  ? save_stack+0x43/0xd0
[  574.714099]  ? kasan_kmalloc+0xc4/0xe0
[  574.718065]  ? kasan_slab_alloc+0x12/0x20
[  574.722224]  ? kmem_cache_alloc+0x12e/0x760
[  574.726573]  ? prepare_creds+0x80/0x3f0
[  574.730578]  ? prepare_exec_creds+0x11/0xf0
[  574.734992]  ? prepare_bprm_creds+0x70/0x120
[  574.739415]  ? __do_execve_file.isra.36+0x475/0x2760
[  574.744516]  ? __x64_sys_execve+0x8f/0xc0
[  574.748897]  ? do_syscall_64+0x1b9/0x820
[  574.752970]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  574.758335]  ? mutex_trylock+0x2b0/0x2b0
[  574.762409]  ? save_stack+0xa9/0xd0
[  574.766043]  do_filp_open+0x255/0x380
[  574.769861]  ? may_open_dev+0x100/0x100
[  574.773839]  ? check_same_owner+0x340/0x340
[  574.778169]  ? kasan_unpoison_shadow+0x35/0x50
[  574.782755]  do_open_execat+0x221/0x8e0
[  574.786729]  ? __do_execve_file.isra.36+0x913/0x2760
[  574.791842]  ? unregister_binfmt+0x2a0/0x2a0
[  574.796253]  ? kasan_check_read+0x11/0x20
[  574.800410]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  574.805005]  ? kasan_check_write+0x14/0x20
[  574.809255]  ? do_raw_spin_lock+0xc1/0x200
[  574.813681]  __do_execve_file.isra.36+0x1856/0x2760
[  574.818717]  ? prepare_bprm_creds+0x120/0x120
[  574.823231]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  574.828429]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  574.833502]  ? __check_object_size+0xa3/0x5d7
[  574.838028]  ? usercopy_warn+0x120/0x120
[  574.842107]  ? kasan_check_read+0x11/0x20
[  574.846277]  ? do_raw_spin_unlock+0xa7/0x2f0
[  574.850698]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  574.855306]  ? kasan_check_write+0x14/0x20
[  574.859570]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  574.865164]  ? strncpy_from_user+0x3be/0x510
[  574.869596]  ? mpi_free.cold.1+0x19/0x19
[  574.873665]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  574.879234]  ? getname_flags+0x26e/0x5a0
[  574.883300]  __x64_sys_execve+0x8f/0xc0
[  574.887285]  do_syscall_64+0x1b9/0x820
[  574.891177]  ? syscall_return_slowpath+0x5e0/0x5e0
[  574.896115]  ? syscall_return_slowpath+0x31d/0x5e0
[  574.901062]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  574.906088]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  574.910938]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  574.916147] RIP: 0033:0x445869
[  574.919347] Code: Bad RIP value.
[  574.922732] RSP: 002b:00007f7dac487da8 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[  574.930533] RAX: ffffffffffffffda RBX: 00000000006dac3c RCX: 0000000000445869
[  574.937836] RDX: 00000000200003c0 RSI: 0000000020000340 RDI: 0000000020000000
[  574.945124] RBP: 00000000006dac38 R08: 0000000000000000 R09: 0000000000000000
[  574.952417] R10: 0000000000000000 R11: 0000000000000246 R12: 64695f70756f7267
[  574.959710] R13: 7375662f7665642f R14: 2f30656c69662f2e R15: 0000000000000001
[  574.967024] INFO: lockdep is turned off.
[  574.971445] NMI backtrace for cpu 0
[  574.975133] CPU: 0 PID: 903 Comm: khungtaskd Not tainted 4.18.0-rc4-next-20180713+ #7
[  574.983083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  574.992415] Call Trace:
[  574.995032]  dump_stack+0x1c9/0x2b4
[  574.998663]  ? dump_stack_print_info.cold.2+0x52/0x52
[  575.003844]  ? vprintk_default+0x28/0x30
[  575.008112]  ? lapic_can_unplug_cpu.cold.28+0x3f/0x3f
[  575.013735]  nmi_cpu_backtrace.cold.3+0x48/0x88
[  575.018400]  ? lapic_can_unplug_cpu.cold.28+0x3f/0x3f
[  575.023572]  nmi_trigger_cpumask_backtrace+0x151/0x192
[  575.028842]  arch_trigger_cpumask_backtrace+0x14/0x20
[  575.034016]  watchdog+0xb81/0x10f0
[  575.037631]  ? reset_hung_task_detector+0xd0/0xd0
[  575.042460]  ? find_held_lock+0x36/0x1c0
[  575.046512]  ? kasan_check_read+0x11/0x20
[  575.050641]  ? do_raw_spin_unlock+0xa7/0x2f0
[  575.055038]  ? _raw_spin_unlock_irqrestore+0x74/0xc0
[  575.060298]  ? __kthread_parkme+0x58/0x1b0
[  575.064520]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  575.069547]  ? trace_hardirqs_on+0xd/0x10
[  575.073682]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  575.080071]  ? __kthread_parkme+0x106/0x1b0
[  575.087592]  kthread+0x345/0x410
[  575.090939]  ? reset_hung_task_detector+0xd0/0xd0
[  575.095774]  ? kthread_bind+0x40/0x40
[  575.099559]  ret_from_fork+0x3a/0x50
[  575.103433] Sending NMI from CPU 0 to CPUs 1:
[  575.108009] NMI backtrace for cpu 1 skipped: idling at native_safe_halt+0x6/0x10
[  575.108950] Kernel panic - not syncing: hung_task: blocked tasks
[  575.121736] CPU: 0 PID: 903 Comm: khungtaskd Not tainted 4.18.0-rc4-next-20180713+ #7
[  575.129699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  575.139047] Call Trace:
[  575.141625]  dump_stack+0x1c9/0x2b4
[  575.145238]  ? dump_stack_print_info.cold.2+0x52/0x52
[  575.150413]  ? printk_safe_log_store+0x2f0/0x2f0
[  575.155238]  panic+0x238/0x4e7
[  575.158414]  ? add_taint.cold.5+0x16/0x16
[  575.162551]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  575.168081]  ? nmi_trigger_cpumask_backtrace+0x13a/0x192
[  575.173514]  ? printk_safe_flush+0xd7/0x130
[  575.177831]  watchdog+0xb92/0x10f0
[  575.181358]  ? reset_hung_task_detector+0xd0/0xd0
[  575.186184]  ? find_held_lock+0x36/0x1c0
[  575.190237]  ? kasan_check_read+0x11/0x20
[  575.194365]  ? do_raw_spin_unlock+0xa7/0x2f0
[  575.198759]  ? _raw_spin_unlock_irqrestore+0x74/0xc0
[  575.203845]  ? __kthread_parkme+0x58/0x1b0
[  575.208080]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  575.213085]  ? trace_hardirqs_on+0xd/0x10
[  575.217308]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  575.223612]  ? __kthread_parkme+0x106/0x1b0
[  575.227918]  kthread+0x345/0x410
[  575.231275]  ? reset_hung_task_detector+0xd0/0xd0
[  575.236106]  ? kthread_bind+0x40/0x40
[  575.239902]  ret_from_fork+0x3a/0x50
[  575.243990] Dumping ftrace buffer:
[  575.247507]    (ftrace buffer empty)
[  575.251206] Kernel Offset: disabled
[  575.254817] Rebooting in 86400 seconds..