Warning: Permanently added '10.128.0.130' (ECDSA) to the list of known hosts. [ 40.132989] random: sshd: uninitialized urandom read (32 bytes read) executing program [ 40.253455] audit: type=1400 audit(1580486804.602:36): avc: denied { map } for pid=7298 comm="syz-executor843" path="/root/syz-executor843716389" dev="sda1" ino=16484 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 40.280286] audit: type=1400 audit(1580486804.602:37): avc: denied { create } for pid=7298 comm="syz-executor843" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 [ 40.280836] BUG: sleeping function called from invalid context at arch/x86/mm/fault.c:1363 [ 40.304573] audit: type=1400 audit(1580486804.602:38): avc: denied { write } for pid=7298 comm="syz-executor843" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 [ 40.337613] in_atomic(): 0, irqs_disabled(): 0, pid: 7298, name: syz-executor843 [ 40.337620] 3 locks held by syz-executor843/7298: [ 40.337623] #0: (&table[i].mutex){+.+.}, at: [] nfnetlink_rcv_msg+0x78a/0xc00 [ 40.359349] #1: (rcu_read_lock){....}, at: [] ctnetlink_create_conntrack+0x18c/0x10c0 [ 40.369437] #2: (&mm->mmap_sem){++++}, at: [] __do_page_fault+0x2ca/0xb80 [ 40.378176] Preemption disabled at: [ 40.378190] [] rcu_lockdep_current_cpu_online+0x35/0x140 [ 40.388959] CPU: 1 PID: 7298 Comm: syz-executor843 Not tainted 4.14.169-syzkaller #0 [ 40.396866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 40.406318] Call Trace: [ 40.408917] dump_stack+0x142/0x197 [ 40.412555] ? rcu_lockdep_current_cpu_online+0x35/0x140 [ 40.418084] ___might_sleep.cold+0x1bd/0x1f6 [ 40.422493] __might_sleep+0x93/0xb0 [ 40.426204] __do_page_fault+0x2ed/0xb80 [ 40.430258] ? ___sys_sendmsg+0x70a/0x840 [ 40.434408] ? vmalloc_fault+0xe30/0xe30 [ 40.438466] do_page_fault+0x71/0x511 [ 40.442268] page_fault+0x25/0x50 [ 40.445704] RIP: 0010: (null) [ 40.449569] RSP: 0018:ffff888098f1f200 EFLAGS: 00010246 [ 40.454953] RAX: ffffffff88b304b0 RBX: ffff888098f1f290 RCX: 0000000000000000 [ 40.462219] RDX: 1ffffffff116609d RSI: ffff888098f1f240 RDI: ffff888098f1f290 [ 40.469489] RBP: ffff888098f1f308 R08: 1ffff110131e3e52 R09: ffff888098f1f290 [ 40.477057] R10: ffffed10131e3e57 R11: ffff888098f1f2bf R12: ffff8880a855ddc0 [ 40.484879] R13: 0000000000000000 R14: ffff888098f1f2e0 R15: ffff888098f1f240 [ 40.492270] ? nfnetlink_parse_nat_setup+0x215/0x3b0 [ 40.497581] ? nf_nat_alloc_null_binding+0x50/0x50 [ 40.502770] ? rcu_read_lock_sched_held+0x110/0x130 [ 40.507989] ? __lock_is_held+0xb6/0x140 [ 40.512051] ? check_preemption_disabled+0x3c/0x250 [ 40.517069] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 40.522518] ? nf_nat_alloc_null_binding+0x50/0x50 [ 40.527445] ? ctnetlink_parse_nat_setup+0x76/0x4a0 [ 40.532459] ? ctnetlink_create_conntrack+0x4a6/0x10c0 [ 40.537803] ? queue_work_on+0xfd/0x1d0 [ 40.541772] ? ctnetlink_del_conntrack+0x5e0/0x5e0 [ 40.546710] ? hash_conntrack_raw+0x2c1/0x430 [ 40.551234] ? nf_ct_get_id+0x170/0x170 [ 40.555241] ? ctnetlink_new_conntrack+0x4af/0xcc0 [ 40.560181] ? ctnetlink_create_conntrack+0x10c0/0x10c0 [ 40.565557] ? ctnetlink_create_conntrack+0x10c0/0x10c0 [ 40.571043] ? nfnetlink_rcv_msg+0xa08/0xc00 [ 40.575450] ? netlink_rcv_skb+0x14f/0x3c0 [ 40.579881] ? nfnetlink_bind+0x240/0x240 [ 40.584185] ? netlink_ack+0x9a0/0x9a0 [ 40.588068] ? ns_capable_common+0x12c/0x160 [ 40.592498] ? __netlink_ns_capable+0xe2/0x130 [ 40.597181] ? nfnetlink_rcv+0x1ab/0x1650 [ 40.601783] ? netlink_deliver_tap+0x93/0x8f0 [ 40.606269] ? find_held_lock+0x35/0x130 [ 40.610322] ? netlink_deliver_tap+0x93/0x8f0 [ 40.614893] ? nfnl_err_del+0x160/0x160 [ 40.618875] ? lock_downgrade+0x740/0x740 [ 40.623080] ? netlink_deliver_tap+0xba/0x8f0 [ 40.627658] ? netlink_unicast+0x44d/0x650 [ 40.631881] ? netlink_attachskb+0x6a0/0x6a0 [ 40.636501] ? security_netlink_send+0x81/0xb0 [ 40.641160] ? netlink_sendmsg+0x7c4/0xc60 [ 40.645395] ? netlink_unicast+0x650/0x650 [ 40.649672] ? security_socket_sendmsg+0x89/0xb0 [ 40.654432] ? netlink_unicast+0x650/0x650 [ 40.658655] ? sock_sendmsg+0xce/0x110 [ 40.662541] ? ___sys_sendmsg+0x70a/0x840 [ 40.666699] ? copy_msghdr_from_user+0x3f0/0x3f0 [ 40.671496] ? save_trace+0x290/0x290 [ 40.675295] ? selinux_file_alloc_security+0xb4/0x190 [ 40.680688] ? __fd_install+0x1fb/0x5f0 [ 40.684662] ? find_held_lock+0x35/0x130 [ 40.688786] ? __fd_install+0x236/0x5f0 [ 40.692851] ? errseq_sample+0x4d/0x60 [ 40.696771] ? __fget_light+0x172/0x1f0 [ 40.700822] ? __fdget+0x1b/0x20 [ 40.704187] ? sockfd_lookup_light+0xb4/0x160 [ 40.708680] ? __sys_sendmsg+0xb9/0x140 [ 40.712658] ? SyS_shutdown+0x170/0x170 [ 40.716633] ? fd_install+0x4d/0x60 [ 40.720315] ? SyS_sendmsg+0x2d/0x50 [ 40.724070] ? __sys_sendmsg+0x140/0x140 [ 40.728139] ? do_syscall_64+0x1e8/0x640 [ 40.732195] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 40.737036] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 40.742907] BUG: unable to handle kernel NULL pointer dereference at (null) [ 40.750876] IP: (null) [ 40.754251] PGD 9e830067 P4D 9e830067 PUD 8cbb4067 PMD 0 [ 40.759787] Oops: 0010 [#1] PREEMPT SMP KASAN [ 40.764273] Modules linked in: [ 40.767453] CPU: 1 PID: 7298 Comm: syz-executor843 Tainted: G W 4.14.169-syzkaller #0 [ 40.776665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 40.786162] task: ffff88808dfee300 task.stack: ffff888098f18000 [ 40.792214] RIP: 0010: (null) [ 40.796085] RSP: 0018:ffff888098f1f200 EFLAGS: 00010246 [ 40.801543] RAX: ffffffff88b304b0 RBX: ffff888098f1f290 RCX: 0000000000000000 [ 40.808840] RDX: 1ffffffff116609d RSI: ffff888098f1f240 RDI: ffff888098f1f290 [ 40.816281] RBP: ffff888098f1f308 R08: 1ffff110131e3e52 R09: ffff888098f1f290 [ 40.823545] R10: ffffed10131e3e57 R11: ffff888098f1f2bf R12: ffff8880a855ddc0 [ 40.830828] R13: 0000000000000000 R14: ffff888098f1f2e0 R15: ffff888098f1f240 [ 40.838120] FS: 00000000011a1880(0000) GS:ffff8880aed00000(0000) knlGS:0000000000000000 [ 40.846347] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 40.852222] CR2: 0000000000000000 CR3: 0000000081cb6000 CR4: 00000000001406e0 [ 40.859486] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 40.866751] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 40.874011] Call Trace: [ 40.876637] nfnetlink_parse_nat_setup+0x215/0x3b0 [ 40.881594] ? nf_nat_alloc_null_binding+0x50/0x50 [ 40.886535] ? rcu_read_lock_sched_held+0x110/0x130 [ 40.891553] ? __lock_is_held+0xb6/0x140 [ 40.895619] ? check_preemption_disabled+0x3c/0x250 [ 40.900680] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 40.906160] ? nf_nat_alloc_null_binding+0x50/0x50 [ 40.911166] ctnetlink_parse_nat_setup+0x76/0x4a0 [ 40.916017] ctnetlink_create_conntrack+0x4a6/0x10c0 [ 40.921112] ? queue_work_on+0xfd/0x1d0 [ 40.925120] ? ctnetlink_del_conntrack+0x5e0/0x5e0 [ 40.930072] ? hash_conntrack_raw+0x2c1/0x430 [ 40.934553] ? nf_ct_get_id+0x170/0x170 [ 40.938526] ctnetlink_new_conntrack+0x4af/0xcc0 [ 40.943280] ? ctnetlink_create_conntrack+0x10c0/0x10c0 [ 40.948729] ? ctnetlink_create_conntrack+0x10c0/0x10c0 [ 40.954089] nfnetlink_rcv_msg+0xa08/0xc00 [ 40.958325] netlink_rcv_skb+0x14f/0x3c0 [ 40.962381] ? nfnetlink_bind+0x240/0x240 [ 40.966512] ? netlink_ack+0x9a0/0x9a0 [ 40.970390] ? ns_capable_common+0x12c/0x160 [ 40.974795] ? __netlink_ns_capable+0xe2/0x130 [ 40.979416] nfnetlink_rcv+0x1ab/0x1650 [ 40.983398] ? netlink_deliver_tap+0x93/0x8f0 [ 40.987879] ? find_held_lock+0x35/0x130 [ 40.991931] ? netlink_deliver_tap+0x93/0x8f0 [ 40.996431] ? nfnl_err_del+0x160/0x160 [ 41.000402] ? lock_downgrade+0x740/0x740 [ 41.004539] ? netlink_deliver_tap+0xba/0x8f0 [ 41.009043] netlink_unicast+0x44d/0x650 [ 41.013097] ? netlink_attachskb+0x6a0/0x6a0 [ 41.017510] ? security_netlink_send+0x81/0xb0 [ 41.022198] netlink_sendmsg+0x7c4/0xc60 [ 41.026258] ? netlink_unicast+0x650/0x650 [ 41.030515] ? security_socket_sendmsg+0x89/0xb0 [ 41.035378] ? netlink_unicast+0x650/0x650 [ 41.039621] sock_sendmsg+0xce/0x110 [ 41.043530] ___sys_sendmsg+0x70a/0x840 [ 41.047486] ? copy_msghdr_from_user+0x3f0/0x3f0 [ 41.052239] ? save_trace+0x290/0x290 [ 41.056035] ? selinux_file_alloc_security+0xb4/0x190 [ 41.061266] ? __fd_install+0x1fb/0x5f0 [ 41.065248] ? find_held_lock+0x35/0x130 [ 41.069305] ? __fd_install+0x236/0x5f0 [ 41.073269] ? errseq_sample+0x4d/0x60 [ 41.077224] ? __fget_light+0x172/0x1f0 [ 41.081414] ? __fdget+0x1b/0x20 [ 41.084811] ? sockfd_lookup_light+0xb4/0x160 [ 41.089300] __sys_sendmsg+0xb9/0x140 [ 41.093105] ? SyS_shutdown+0x170/0x170 [ 41.097071] ? fd_install+0x4d/0x60 [ 41.100716] SyS_sendmsg+0x2d/0x50 [ 41.104509] ? __sys_sendmsg+0x140/0x140 [ 41.108563] do_syscall_64+0x1e8/0x640 [ 41.112447] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 41.117556] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 41.122859] RIP: 0033:0x440239 [ 41.126044] RSP: 002b:00007ffed4372918 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 41.133756] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 0000000000440239 [ 41.141015] RDX: 0000000000000000 RSI: 0000000020000640 RDI: 0000000000000003 [ 41.148276] RBP: 00000000006ca018 R08: 0000000000000000 R09: 00000000004002c8 [ 41.155587] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000401ac0 [ 41.162871] R13: 0000000000401b50 R14: 0000000000000000 R15: 0000000000000000 [ 41.170246] Code: Bad RIP value. [ 41.173696] RIP: (null) RSP: ffff888098f1f200 [ 41.179077] CR2: 0000000000000000 [ 41.183562] ---[ end trace dc4bc7bf5bf38f73 ]--- [ 41.188348] Kernel panic - not syncing: Fatal exception [ 41.195447] Kernel Offset: disabled [ 41.199080] Rebooting in 86400 seconds..