[ 33.846650] audit: type=1800 audit(1577286788.241:33): pid=6882 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op="collect_data" cause="failed(directio)" comm="startpar" name="rc.local" dev="sda1" ino=2465 res=0 [ 33.873831] audit: type=1800 audit(1577286788.241:34): pid=6882 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op="collect_data" cause="failed(directio)" comm="startpar" name="rmnologin" dev="sda1" ino=2456 res=0 Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 35.778563] random: sshd: uninitialized urandom read (32 bytes read) [ 36.184384] audit: type=1400 audit(1577286790.581:35): avc: denied { map } for pid=7055 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 36.295380] random: sshd: uninitialized urandom read (32 bytes read) [ 36.942246] random: sshd: uninitialized urandom read (32 bytes read) [ 37.173779] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.0.151' (ECDSA) to the list of known hosts. [ 42.784541] random: sshd: uninitialized urandom read (32 bytes read) executing program [ 42.900249] audit: type=1400 audit(1577286797.291:36): avc: denied { map } for pid=7067 comm="syz-executor926" path="/root/syz-executor926738089" dev="sda1" ino=16484 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 42.927313] ip_tables: iptables: counters copy to user failed while replacing table [ 42.937295] : caps=(0x0000000000000000, 0x00000144401d7c69) len=572 data_len=0 gso_size=104 gso_type=1 ip_summed=3 [ 42.948080] ------------[ cut here ]------------ [ 42.952849] WARNING: CPU: 1 PID: 7067 at net/core/dev.c:2613 skb_warn_bad_offload.cold+0x1d7/0x454 [ 42.961925] Kernel panic - not syncing: panic_on_warn set ... [ 42.961925] [ 42.969280] CPU: 1 PID: 7067 Comm: syz-executor926 Not tainted 4.14.160-syzkaller #0 [ 42.977138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 42.986470] Call Trace: [ 42.989041] dump_stack+0x142/0x197 [ 42.992661] panic+0x1f9/0x42d [ 42.995830] ? add_taint.cold+0x16/0x16 [ 42.999805] ? skb_warn_bad_offload.cold+0x1d7/0x454 [ 43.004937] ? skb_warn_bad_offload.cold+0x1d7/0x454 [ 43.010134] __warn.cold+0x2f/0x2f [ 43.013659] ? ist_end_non_atomic+0x10/0x10 [ 43.017963] ? skb_warn_bad_offload.cold+0x1d7/0x454 [ 43.023049] report_bug+0x216/0x254 [ 43.026659] do_error_trap+0x1bb/0x310 [ 43.030532] ? math_error+0x360/0x360 [ 43.034317] ? vprintk_emit+0x171/0x600 [ 43.038270] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 43.043092] do_invalid_op+0x1b/0x20 [ 43.046852] invalid_op+0x1b/0x40 [ 43.050313] RIP: 0010:skb_warn_bad_offload.cold+0x1d7/0x454 [ 43.056014] RSP: 0018:ffff88807c79f368 EFLAGS: 00010286 [ 43.061367] RAX: 0000000000000066 RBX: ffff88808bc38da8 RCX: 0000000000000000 [ 43.068619] RDX: 0000000000000000 RSI: ffff888090026950 RDI: ffffed100f8f3e63 [ 43.075875] RBP: ffff88807c79f3b8 R08: 0000000000000066 R09: ffff888090026920 [ 43.083127] R10: 0000000000000000 R11: 0000000000000000 R12: ffffffff875893e0 [ 43.090379] R13: ffffffff875876e0 R14: 0000000000000000 R15: 000000000000023c [ 43.097650] ? skb_warn_bad_offload.cold+0x1d7/0x454 [ 43.102837] skb_checksum_help+0x61b/0x850 [ 43.107085] ? check_preemption_disabled+0x3c/0x250 [ 43.112091] checksum_tg+0x5c/0x71 [ 43.115643] ipt_do_table+0xafd/0x1770 [ 43.119509] ? __local_bh_enable_ip+0x99/0x1a0 [ 43.124101] ? ipt_do_table+0xc2a/0x1770 [ 43.128157] ? __lock_acquire+0x5f7/0x4620 [ 43.132376] ? get_info+0x560/0x560 [ 43.135996] ? tcp_abort+0x810/0x820 [ 43.139701] ? tcp_sendmsg_locked+0x31b0/0x31c0 [ 43.144348] iptable_mangle_hook+0x2dc/0x570 [ 43.148759] nf_hook_slow+0xaf/0x1b0 [ 43.152455] __ip_local_out+0x38c/0x820 [ 43.156406] ? ip_finish_output+0xc60/0xc60 [ 43.160710] ? ip_append_data.part.0+0x160/0x160 [ 43.165440] ? check_preemption_disabled+0x3c/0x250 [ 43.170434] ip_local_out+0x29/0x170 [ 43.174135] ip_queue_xmit+0x7d7/0x1b10 [ 43.178090] ? __tcp_v4_send_check+0x1c0/0x360 [ 43.182660] __tcp_transmit_skb+0x1721/0x2fd0 [ 43.187143] ? bictcp_cong_avoid+0xe50/0xe50 [ 43.191533] ? __tcp_select_window+0x6e0/0x6e0 [ 43.196105] ? tcp_small_queue_check+0x184/0x1e0 [ 43.200842] tcp_write_xmit+0x523/0x49b0 [ 43.204881] ? iov_iter_advance+0x218/0xc60 [ 43.209505] tcp_push_one+0xc1/0xf0 [ 43.213143] tcp_sendmsg_locked+0x1584/0x31c0 [ 43.217854] ? tcp_sendpage+0x60/0x60 [ 43.221645] ? trace_hardirqs_on_caller+0x400/0x590 [ 43.226654] ? trace_hardirqs_on+0xd/0x10 [ 43.230794] tcp_sendmsg+0x30/0x50 [ 43.234316] inet_sendmsg+0x122/0x500 [ 43.238091] ? inet_recvmsg+0x500/0x500 [ 43.242044] sock_sendmsg+0xce/0x110 [ 43.245738] SYSC_sendto+0x206/0x310 [ 43.249428] ? SYSC_connect+0x2d0/0x2d0 [ 43.253393] ? up_read+0x1a/0x40 [ 43.256737] ? __do_page_fault+0x358/0xb80 [ 43.260952] SyS_sendto+0x40/0x50 [ 43.264382] ? SyS_getpeername+0x30/0x30 [ 43.268419] do_syscall_64+0x1e8/0x640 [ 43.272285] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 43.277194] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 43.282360] RIP: 0033:0x441689 [ 43.285578] RSP: 002b:00007ffc11b90838 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 43.293276] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 0000000000441689 [ 43.300530] RDX: 0000000000008293 RSI: 0000000020000180 RDI: 0000000000000004 [ 43.307780] RBP: 00000000006cb018 R08: 0000000000000000 R09: 0000000000000027 [ 43.315043] R10: 0000000004000002 R11: 0000000000000246 R12: 0000000000402f10 [ 43.322297] R13: 0000000000402fa0 R14: 0000000000000000 R15: 0000000000000000 [ 43.331038] Kernel Offset: disabled [ 43.334718] Rebooting in 86400 seconds..