[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[   23.514514] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   28.525006] random: sshd: uninitialized urandom read (32 bytes read)
[   28.804626] random: sshd: uninitialized urandom read (32 bytes read)
[   29.349276] random: sshd: uninitialized urandom read (32 bytes read)
[  184.449124] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.10.19' (ECDSA) to the list of known hosts.
[  189.976190] random: sshd: uninitialized urandom read (32 bytes read)
2018/08/29 03:47:46 parsed 1 programs
[  191.150951] random: cc1: uninitialized urandom read (8 bytes read)
2018/08/29 03:47:48 executed programs: 0
[  192.484841] IPVS: ftp: loaded support on port[0] = 21
[  192.688188] bridge0: port 1(bridge_slave_0) entered blocking state
[  192.694659] bridge0: port 1(bridge_slave_0) entered disabled state
[  192.701920] device bridge_slave_0 entered promiscuous mode
[  192.718525] bridge0: port 2(bridge_slave_1) entered blocking state
[  192.724881] bridge0: port 2(bridge_slave_1) entered disabled state
[  192.731828] device bridge_slave_1 entered promiscuous mode
[  192.747136] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  192.763867] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  192.806096] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  192.824074] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  192.888951] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  192.896439] team0: Port device team_slave_0 added
[  192.911426] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  192.918914] team0: Port device team_slave_1 added
[  192.935583] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  192.952564] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  192.969954] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  192.987328] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  193.108056] bridge0: port 2(bridge_slave_1) entered blocking state
[  193.114525] bridge0: port 2(bridge_slave_1) entered forwarding state
[  193.121352] bridge0: port 1(bridge_slave_0) entered blocking state
[  193.127847] bridge0: port 1(bridge_slave_0) entered forwarding state
[  193.555458] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready
[  193.561603] 8021q: adding VLAN 0 to HW filter on device bond0
[  193.606487] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  193.643058] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  193.658926] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  193.665120] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  193.673116] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  193.712994] 8021q: adding VLAN 0 to HW filter on device team0
[  193.981855] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details.
[  194.006370] WARNING: CPU: 1 PID: 4748 at arch/x86/kvm/vmx.c:8247 enter_vmx_operation+0x391/0x470
[  194.015431] Kernel panic - not syncing: panic_on_warn set ...
[  194.015431] 
[  194.022799] CPU: 1 PID: 4748 Comm: syz-executor0 Not tainted 4.19.0-rc1+ #213
[  194.030055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  194.039394] Call Trace:
[  194.041977]  dump_stack+0x1c9/0x2b4
[  194.045597]  ? dump_stack_print_info.cold.2+0x52/0x52
[  194.050779]  panic+0x238/0x4e7
[  194.053955]  ? add_taint.cold.5+0x16/0x16
[  194.058097]  ? __warn.cold.8+0x148/0x1ba
[  194.062150]  ? __warn.cold.8+0x117/0x1ba
[  194.066194]  ? enter_vmx_operation+0x391/0x470
[  194.070758]  __warn.cold.8+0x163/0x1ba
[  194.074627]  ? enter_vmx_operation+0x391/0x470
[  194.079202]  report_bug+0x252/0x2d0
[  194.082919]  do_error_trap+0x1fc/0x4d0
[  194.086798]  ? math_error+0x3e0/0x3e0
[  194.090591]  ? mark_held_locks+0xc9/0x160
[  194.094729]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  194.099561]  ? trace_hardirqs_on_caller+0x2b0/0x2b0
[  194.104616]  ? kmem_cache_alloc_trace+0x275/0x730
[  194.109467]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  194.114298]  do_invalid_op+0x1b/0x20
[  194.117994]  invalid_op+0x14/0x20
[  194.121438] RIP: 0010:enter_vmx_operation+0x391/0x470
[  194.126614] Code: 00 4c 89 ef bb f4 ff ff ff e8 7b ec ff ff e9 f2 fe ff ff e8 71 dc 5f 00 48 8b 4d d0 48 85 c9 0f 84 08 ff ff ff e8 5f dc 5f 00 <0f> 0b e9 0e fe ff ff e8 f3 d9 9e 00 e9 c1 fe ff ff e8 09 da 9e 00
[  194.145511] RSP: 0018:ffff8801aa826f48 EFLAGS: 00010293
[  194.150867] RAX: ffff8801abbde080 RBX: ffff8801d3668040 RCX: ffff8801c366d000
[  194.158121] RDX: 0000000000000000 RSI: ffffffff811ce421 RDI: ffff8801d366d820
[  194.165379] RBP: ffff8801aa826f80 R08: ffff8801abbde080 R09: ffffed003b6246de
[  194.172635] R10: ffffed003b6246de R11: ffff8801db1236f3 R12: ffff8801d366dba8
[  194.179897] R13: ffff8801d366dbb8 R14: ffff8801d366dba0 R15: ffff8801d366d7a8
[  194.187180]  ? enter_vmx_operation+0x391/0x470
[  194.191858]  ? enter_vmx_operation+0x391/0x470
[  194.196490]  vmx_set_nested_state+0x4d6/0xea0
[  194.201093]  ? handle_vmlaunch+0x20/0x20
[  194.205154]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  194.210681]  ? _copy_from_user+0xdf/0x150
[  194.214819]  kvm_arch_vcpu_ioctl+0x790/0x3ac0
[  194.219298]  ? __lock_acquire+0x7fc/0x5020
[  194.223529]  ? _raw_spin_unlock_irq+0x27/0x70
[  194.228016]  ? finish_task_switch+0x1d3/0x870
[  194.232501]  ? kvm_arch_vcpu_put+0x420/0x420
[  194.236896]  ? mark_held_locks+0x160/0x160
[  194.241122]  ? __switch_to_asm+0x34/0x70
[  194.245192]  ? __switch_to_asm+0x34/0x70
[  194.249250]  ? __switch_to_asm+0x40/0x70
[  194.253304]  ? __switch_to_asm+0x34/0x70
[  194.257352]  ? __switch_to_asm+0x40/0x70
[  194.261403]  ? __switch_to_asm+0x34/0x70
[  194.265455]  ? __switch_to_asm+0x40/0x70
[  194.269506]  ? __schedule+0x884/0x1df0
[  194.273387]  ? __sched_text_start+0x8/0x8
[  194.277534]  ? graph_lock+0x170/0x170
[  194.281331]  ? plist_check_list+0xa0/0xa0
[  194.285489]  ? print_usage_bug+0xc0/0xc0
[  194.289541]  ? lock_acquire+0x1e4/0x4f0
[  194.293503]  ? kvm_vcpu_ioctl+0x1ea/0x1280
[  194.297737]  ? lock_acquire+0x1e4/0x4f0
[  194.301705]  ? lock_release+0x9f0/0x9f0
[  194.305718]  ? check_same_owner+0x340/0x340
[  194.310035]  ? rcu_note_context_switch+0x680/0x680
[  194.314954]  ? kasan_check_write+0x14/0x20
[  194.319179]  ? __mutex_lock+0x6d0/0x1700
[  194.323242]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  194.328785]  ? kvm_vcpu_ioctl+0x1ea/0x1280
[  194.333171]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  194.338171]  ? futex_wait_setup+0x281/0x410
[  194.342477]  ? mutex_trylock+0x2b0/0x2b0
[  194.346566]  ? futex_wake+0x760/0x760
[  194.350361]  ? __lock_acquire+0x7fc/0x5020
[  194.354617]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  194.360146]  ? drop_futex_key_refs.isra.14+0x6d/0xe0
[  194.365241]  ? futex_wait+0x5d2/0xa20
[  194.369039]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  194.374227]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  194.379759]  ? drop_futex_key_refs.isra.14+0x6d/0xe0
[  194.384858]  ? futex_wake+0x304/0x760
[  194.388652]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  194.393576]  ? wait_for_completion+0x8d0/0x8d0
[  194.398165]  kvm_vcpu_ioctl+0x286/0x1280
[  194.402218]  ? kvm_uevent_notify_change.part.32+0x440/0x440
[  194.408027]  ? find_held_lock+0x36/0x1c0
[  194.412087]  ? lock_downgrade+0x8f0/0x8f0
[  194.416299]  ? __switch_to_asm+0x40/0x70
[  194.420354]  ? kasan_check_read+0x11/0x20
[  194.424492]  ? rcu_is_watching+0x8c/0x150
[  194.428640]  ? rcu_cleanup_dead_rnp+0x200/0x200
[  194.433318]  ? __fget+0x4d5/0x740
[  194.436855]  ? ksys_dup3+0x690/0x690
[  194.440567]  ? kvm_uevent_notify_change.part.32+0x440/0x440
[  194.446271]  do_vfs_ioctl+0x1de/0x1720
[  194.450152]  ? ioctl_preallocate+0x300/0x300
[  194.454548]  ? __fget_light+0x2f7/0x440
[  194.458508]  ? __schedule+0x1df0/0x1df0
[  194.462470]  ? fget_raw+0x20/0x20
[  194.465908]  ? trace_hardirqs_off+0xb8/0x2b0
[  194.470307]  ? __x64_sys_futex+0x47f/0x6a0
[  194.474532]  ? do_syscall_64+0x9a/0x820
[  194.478495]  ? do_syscall_64+0x9a/0x820
[  194.482457]  ? lockdep_hardirqs_on+0x421/0x5c0
[  194.487028]  ? security_file_ioctl+0x94/0xc0
[  194.491432]  ksys_ioctl+0xa9/0xd0
[  194.494874]  __x64_sys_ioctl+0x73/0xb0
[  194.498756]  do_syscall_64+0x1b9/0x820
[  194.502635]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  194.507988]  ? syscall_return_slowpath+0x5e0/0x5e0
[  194.512903]  ? trace_hardirqs_on_caller+0x2b0/0x2b0
[  194.517907]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  194.522949]  ? recalc_sigpending_tsk+0x180/0x180
[  194.527700]  ? kasan_check_write+0x14/0x20
[  194.531929]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  194.536764]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  194.541941] RIP: 0033:0x457089
[  194.545122] Code: fd b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  194.564026] RSP: 002b:00007f0ac2b1cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  194.571734] RAX: ffffffffffffffda RBX: 00007f0ac2b1d6d4 RCX: 0000000000457089
[  194.578997] RDX: 0000000020000580 RSI: 000000004080aebf RDI: 0000000000000005
[  194.586264] RBP: 0000000000930140 R08: 0000000000000000 R09: 0000000000000000
[  194.593527] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  194.600783] R13: 00000000004cf070 R14: 00000000004c56c3 R15: 0000000000000001
[  194.608500] Dumping ftrace buffer:
[  194.612106]    (ftrace buffer empty)
[  194.615802] Kernel Offset: disabled
[  194.619418] Rebooting in 86400 seconds..