[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 18.755769] random: sshd: uninitialized urandom read (32 bytes read, 32 bits of entropy available) [?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 [ 19.946077] random: sshd: uninitialized urandom read (32 bytes read, 34 bits of entropy available) syzkaller login: [ 20.164367] random: sshd: uninitialized urandom read (32 bytes read, 34 bits of entropy available) [ 21.074694] random: nonblocking pool is initialized Warning: Permanently added '10.128.10.3' (ECDSA) to the list of known hosts. 2018/04/16 04:43:30 parsed 1 programs 2018/04/16 04:43:30 executed programs: 0 [ 30.158675] IPVS: Creating netns size=2552 id=1 [ 30.215911] ================================================================== [ 30.223299] BUG: KASAN: stack-out-of-bounds in strlcpy+0x101/0x120 [ 30.229595] Read of size 1 at addr ffff8801c761f9cc by task syz-executor0/3772 [ 30.236928] [ 30.238530] CPU: 1 PID: 3772 Comm: syz-executor0 Not tainted 4.4.125-g38f41ec #21 [ 30.246154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 30.255483] 0000000000000000 81199a04c3c6c0f6 ffff8801c761f8a8 ffffffff81d067bd [ 30.263584] ffffea00071d87c0 ffff8801c761f9cc 0000000000000000 ffff8801c761f9cc [ 30.272188] ffff8801c761fab0 ffff8801c761f8e0 ffffffff814fea83 ffff8801c761f9cc [ 30.280171] Call Trace: [ 30.282734] [] dump_stack+0xc1/0x124 [ 30.288074] [] print_address_description+0x73/0x260 [ 30.294713] [] kasan_report+0x285/0x370 [ 30.300309] [] ? strlcpy+0x101/0x120 [ 30.305643] [] __asan_report_load1_noabort+0x14/0x20 [ 30.312366] [] strlcpy+0x101/0x120 [ 30.317530] [] xt_copy_counters_from_user+0x152/0x2c0 [ 30.324342] [] ? xt_alloc_entry_offsets+0x60/0x60 [ 30.330805] [] do_add_counters+0x96/0x590 [ 30.336573] [] ? get_counters+0x530/0x530 [ 30.342346] [] ? security_capable+0x8e/0xc0 [ 30.348297] [] ? ns_capable_common+0xcf/0x160 [ 30.354416] [] compat_do_arpt_set_ctl+0x1be/0x6b0 [ 30.360877] [] ? __do_replace+0x7e0/0x7e0 [ 30.366648] [] ? __mutex_unlock_slowpath+0x242/0x3b0 [ 30.373373] [] ? __mutex_unlock_slowpath+0x208/0x3b0 [ 30.380104] [] ? __ww_mutex_lock_interruptible+0x14d0/0x14d0 [ 30.387530] [] ? sock_has_perm+0x1c1/0x400 [ 30.393391] [] ? mutex_unlock+0x9/0x10 [ 30.398902] [] ? nf_sockopt_find.constprop.0+0x1a7/0x220 [ 30.405974] [] compat_nf_setsockopt+0x88/0x130 [ 30.412179] [] ? __do_replace+0x7e0/0x7e0 [ 30.417954] [] compat_ip_setsockopt+0x8b/0xd0 [ 30.424080] [] inet_csk_compat_setsockopt+0x95/0x120 [ 30.430808] [] ? ip_setsockopt+0xa0/0xa0 [ 30.436491] [] compat_tcp_setsockopt+0x3d/0x70 [ 30.442696] [] compat_sock_common_setsockopt+0xb2/0x140 [ 30.449684] [] ? tcp_setsockopt+0xd0/0xd0 [ 30.455462] [] compat_SyS_setsockopt+0x149/0x290 [ 30.461845] [] ? sock_common_setsockopt+0xd0/0xd0 [ 30.468310] [] ? scm_detach_fds_compat+0x3c0/0x3c0 [ 30.474863] [] ? vmacache_update+0xfe/0x130 [ 30.480808] [] ? do_fast_syscall_32+0xd7/0x8a0 [ 30.487015] [] ? scm_detach_fds_compat+0x3c0/0x3c0 [ 30.493579] [] do_fast_syscall_32+0x321/0x8a0 [ 30.499710] [] sysenter_flags_fixed+0xd/0x17 [ 30.505737] [ 30.507339] The buggy address belongs to the page: [ 30.512242] page:ffffea00071d87c0 count:0 mapcount:0 mapping: (null) index:0x0 [ 30.520353] flags: 0x8000000000000000() [ 30.524438] page dumped because: kasan: bad access detected [ 30.530119] [ 30.531718] Memory state around the buggy address: [ 30.536619] ffff8801c761f880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 30.543948] ffff8801c761f900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 30.551279] >ffff8801c761f980: 00 f1 f1 f1 f1 00 00 00 00 04 f2 f2 f2 00 00 00 [ 30.558608] ^ [ 30.564298] ffff8801c761fa00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 30.571632] ffff8801c761fa80: 00 00 f1 f1 f1 f1 00 00 00 00 00 f2 f2 f2 00 00 [ 30.578970] ================================================================== [ 30.586307] Disabling lock debugging due to kernel taint [ 30.591970] Kernel panic - not syncing: panic_on_warn set ... [ 30.591970] [ 30.599326] CPU: 1 PID: 3772 Comm: syz-executor0 Tainted: G B 4.4.125-g38f41ec #21 [ 30.608136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 30.617462] 0000000000000000 81199a04c3c6c0f6 ffff8801c761f800 ffffffff81d067bd [ 30.625456] ffffffff83fb764d ffff8801c761f8d8 0000000000000000 ffff8801c761f9cc [ 30.633443] ffff8801c761fab0 ffff8801c761f8c8 ffffffff8141b46a 0000000041b58ab3 [ 30.641429] Call Trace: [ 30.643995] [] dump_stack+0xc1/0x124 [ 30.649331] [] panic+0x1aa/0x388 [ 30.654319] [] ? percpu_up_read.constprop.45+0xe1/0xe1 [ 30.661219] [] ? preempt_schedule+0x25/0x30 [ 30.667166] [] ? ___preempt_schedule+0x12/0x14 [ 30.673378] [] kasan_end_report+0x50/0x50 [ 30.679146] [] kasan_report+0x15c/0x370 [ 30.684743] [] ? strlcpy+0x101/0x120 [ 30.690086] [] __asan_report_load1_noabort+0x14/0x20 [ 30.696818] [] strlcpy+0x101/0x120 [ 30.701990] [] xt_copy_counters_from_user+0x152/0x2c0 [ 30.708807] [] ? xt_alloc_entry_offsets+0x60/0x60 [ 30.715278] [] do_add_counters+0x96/0x590 [ 30.721046] [] ? get_counters+0x530/0x530 [ 30.726826] [] ? security_capable+0x8e/0xc0 [ 30.732771] [] ? ns_capable_common+0xcf/0x160 [ 30.738886] [] compat_do_arpt_set_ctl+0x1be/0x6b0 [ 30.745349] [] ? __do_replace+0x7e0/0x7e0 [ 30.751117] [] ? __mutex_unlock_slowpath+0x242/0x3b0 [ 30.757846] [] ? __mutex_unlock_slowpath+0x208/0x3b0 [ 30.764580] [] ? __ww_mutex_lock_interruptible+0x14d0/0x14d0 [ 30.772008] [] ? sock_has_perm+0x1c1/0x400 [ 30.777868] [] ? mutex_unlock+0x9/0x10 [ 30.783376] [] ? nf_sockopt_find.constprop.0+0x1a7/0x220 [ 30.790447] [] compat_nf_setsockopt+0x88/0x130 [ 30.796661] [] ? __do_replace+0x7e0/0x7e0 [ 30.802429] [] compat_ip_setsockopt+0x8b/0xd0 [ 30.808545] [] inet_csk_compat_setsockopt+0x95/0x120 [ 30.815268] [] ? ip_setsockopt+0xa0/0xa0 [ 30.820950] [] compat_tcp_setsockopt+0x3d/0x70 [ 30.827163] [] compat_sock_common_setsockopt+0xb2/0x140 [ 30.834146] [] ? tcp_setsockopt+0xd0/0xd0 [ 30.839923] [] compat_SyS_setsockopt+0x149/0x290 [ 30.846300] [] ? sock_common_setsockopt+0xd0/0xd0 [ 30.852762] [] ? scm_detach_fds_compat+0x3c0/0x3c0 [ 30.859316] [] ? vmacache_update+0xfe/0x130 [ 30.865258] [] ? do_fast_syscall_32+0xd7/0x8a0 [ 30.871460] [] ? scm_detach_fds_compat+0x3c0/0x3c0 [ 30.878021] [] do_fast_syscall_32+0x321/0x8a0 [ 30.884139] [] sysenter_flags_fixed+0xd/0x17 [ 30.890613] Dumping ftrace buffer: [ 30.894124] (ftrace buffer empty) [ 30.897811] Kernel Offset: disabled [ 30.901406] Rebooting in 86400 seconds..