syzbot

IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
ip_tables: iptables: counters copy to user failed while replacing table
lo: caps=(0x00000144401d7c69, 0x00000144401d7c69) len=2552 data_len=1092 gso_size=500 gso_type=1 ip_summed=3
IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
------------[ cut here ]------------
WARNING: CPU: 0 PID: 7986 at net/core/dev.c:2609 skb_warn_bad_offload.cold+0x1d1/0x44d net/core/dev.c:2609
Kernel panic - not syncing: panic_on_warn set ...

CPU: 0 PID: 7986 Comm: syz-executor318 Not tainted 4.14.213-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:17 [inline]
 dump_stack+0x1b2/0x283 lib/dump_stack.c:58
 panic+0x1f9/0x42d kernel/panic.c:183
 __warn.cold+0x20/0x4b kernel/panic.c:547
 report_bug+0x208/0x249 lib/bug.c:186
 fixup_bug arch/x86/kernel/traps.c:177 [inline]
 fixup_bug arch/x86/kernel/traps.c:172 [inline]
 do_error_trap+0x195/0x2d0 arch/x86/kernel/traps.c:295
 invalid_op+0x1b/0x40 arch/x86/entry/entry_64.S:964
RIP: 0010:skb_warn_bad_offload.cold+0x1d1/0x44d net/core/dev.c:2609
RSP: 0018:ffff88809cf3f340 EFLAGS: 00010282
RAX: 000000000000006c RBX: ffff88809c0b5828 RCX: 0000000000000000
RDX: 0000000000000000 RSI: ffffffff878bbac0 RDI: ffffed10139e7e5e
RBP: ffff8880a4ddc7d0 R08: 000000000000006c R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: ffff8880a4ddc700
R13: 00000000000001f4 R14: 0000000000000444 R15: 00000000000009f8
 skb_checksum_help+0x627/0x7d0 net/core/dev.c:2630
 checksum_tg+0x52/0x65 net/netfilter/xt_CHECKSUM.c:29
 ipt_do_table+0xa9a/0x16f0 net/ipv4/netfilter/ip_tables.c:353
 iptable_mangle_hook+0x9c/0x560 net/ipv4/netfilter/iptable_mangle.c:90
 nf_hook_entry_hookfn include/linux/netfilter.h:108 [inline]
 nf_hook_slow+0xb0/0x1a0 net/netfilter/core.c:467
 nf_hook include/linux/netfilter.h:205 [inline]
 NF_HOOK_COND include/linux/netfilter.h:238 [inline]
 ip_output+0x2e7/0x510 net/ipv4/ip_output.c:406
 dst_output include/net/dst.h:470 [inline]
 ip_local_out+0x93/0x170 net/ipv4/ip_output.c:125
 ip_queue_xmit+0x7d3/0x1a80 net/ipv4/ip_output.c:505
 __tcp_transmit_skb+0x17e2/0x2cb0 net/ipv4/tcp_output.c:1133
 tcp_transmit_skb net/ipv4/tcp_output.c:1149 [inline]
 tcp_write_xmit+0x654/0x5570 net/ipv4/tcp_output.c:2394
 tcp_sendmsg_locked+0x14e6/0x2ef0 net/ipv4/tcp.c:1406
 tcp_sendmsg+0x2b/0x40 net/ipv4/tcp.c:1457
 inet_sendmsg+0x11a/0x4e0 net/ipv4/af_inet.c:762
 sock_sendmsg_nosec net/socket.c:646 [inline]
 sock_sendmsg+0xb5/0x100 net/socket.c:656
 sock_write_iter+0x22c/0x370 net/socket.c:925
 call_write_iter include/linux/fs.h:1778 [inline]
 new_sync_write fs/read_write.c:469 [inline]
 __vfs_write+0x44c/0x630 fs/read_write.c:482
 vfs_write+0x17f/0x4d0 fs/read_write.c:544
 SYSC_write fs/read_write.c:590 [inline]
 SyS_write+0xf2/0x210 fs/read_write.c:582
 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292
 entry_SYSCALL_64_after_hwframe+0x46/0xbb
RIP: 0033:0x444479
RSP: 002b:00007ffd59e6b9e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000444479
RDX: 0000000100000530 RSI: 0000000020000300 RDI: 0000000000000005
RBP: 00007ffd59e6ba00 R08: 0000000000000014 R09: 0000000000000010
R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd59e6ba10
R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
Kernel Offset: disabled
Rebooting in 86400 seconds..