[[36minfo[39;49m] Using makefile-style concurrent boot in runlevel 2.
[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
Starting mcstransd: 
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting file context maintaining daemon: restorecond[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.244' (ECDSA) to the list of known hosts.
2019/09/23 12:12:36 fuzzer started
2019/09/23 12:12:37 dialing manager at 10.128.0.105:39541
2019/09/23 12:12:37 syscalls: 2425
2019/09/23 12:12:37 code coverage: CONFIG_KCOV is not enabled
2019/09/23 12:12:37 comparison tracing: CONFIG_KCOV is not enabled
2019/09/23 12:12:37 extra coverage: CONFIG_KCOV is not enabled
2019/09/23 12:12:37 setuid sandbox: enabled
2019/09/23 12:12:37 namespace sandbox: enabled
2019/09/23 12:12:37 Android sandbox: /sys/fs/selinux/policy does not exist
2019/09/23 12:12:37 fault injection: kernel does not have systematic fault injection support
2019/09/23 12:12:37 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2019/09/23 12:12:37 net packet injection: enabled
2019/09/23 12:12:37 net device setup: enabled
12:12:37 executing program 0:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000000), 0x10)
sendmsg$can_raw(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f000000a000)=@canfd={{0x5}, 0x36, 0x0, 0x0, 0x0, "0327e1b22b5fcef700580f0b00580f02000000003f420f0000000000856b76b5ee00000000000000004e2f9663a918fa1efd9b0b00"}, 0x48}}, 0x0)

12:12:37 executing program 1:
mkdir(0x0, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10)
shutdown(r0, 0x1)
setsockopt$inet_tcp_int(r0, 0x6, 0x4000000000014, &(0x7f0000000000)=0x80000000002, 0xe3)
recvmmsg(r0, &(0x7f00000001c0), 0x460, 0xea225aec34b1dd0e, 0x0)

12:12:37 executing program 3:
r0 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
setsockopt$llc_int(r0, 0x10c, 0x1, &(0x7f0000000040)=0x3efd, 0x4)

12:12:37 executing program 5:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="200000001e00eb0300000000000000000700000053c05e81aeeda038e8623407ba7669bd4fab42eff1613eca4e988343901a181df48914a4", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], 0x20}}, 0x0)

12:12:37 executing program 4:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
bpf$MAP_CREATE(0x2, &(0x7f0000000040)={0x0, 0x0, 0x400000077fffb, 0x0, 0x0, 0x0}, 0x3c)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
io_setup(0x800, &(0x7f0000000180)=<r2=>0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
dup2(r3, r1)
io_submit(r2, 0x1e09328e, &(0x7f0000000040)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x1000800000000001, 0x0, r1, 0x0, 0x12f}])

12:12:37 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
setsockopt$sock_int(r1, 0x1, 0x6, &(0x7f0000000080)=0x32, 0x4)
connect$inet(r1, &(0x7f0000000040)={0x2, 0x0, @broadcast}, 0x10)
ioctl$sock_ifreq(r1, 0x8937, &(0x7f0000000100)={'veth0\x00', @ifru_settings={0x10001, 0x0, @fr=0x0}})
setsockopt$inet_msfilter(r1, 0x0, 0xd, 0x0, 0x0)

syzkaller login: [   43.603356] IPv6: ADDRCONF(NETDEV_CHANGE): nr4: link becomes ready
[   43.611826] IPv6: ADDRCONF(NETDEV_CHANGE): nr0: link becomes ready
[   43.618903] IPv6: ADDRCONF(NETDEV_CHANGE): nr2: link becomes ready
[   43.626069] IPv6: ADDRCONF(NETDEV_CHANGE): nr5: link becomes ready
[   43.633315] IPv6: ADDRCONF(NETDEV_CHANGE): nr3: link becomes ready
[   43.640099] IPv6: ADDRCONF(NETDEV_CHANGE): nr1: link becomes ready
[   43.648675] IPVS: Creating netns size=2712 id=1
[   43.653524] IPVS: ftp: loaded support on port[0] = 21
[   43.665562] IPVS: Creating netns size=2712 id=2
[   43.670281] IPVS: ftp: loaded support on port[0] = 21
[   43.685072] chnl_net:caif_netlink_parms(): no params data found
[   43.692886] IPVS: Creating netns size=2712 id=3
[   43.693605] kobject: 'ip6gretap0' (ffff880128031538): kobject_add_internal: parent: 'net', set: 'devices'
[   43.693819] kobject: 'ip6gretap0' (ffff880128031538): kobject_uevent_env
[   43.693824] kobject: 'ip6gretap0' (ffff880128031538): fill_kobj_path: path = '/devices/virtual/net/ip6gretap0'
[   43.693847] kobject: 'queues' (ffff8800b0964a48): kobject_add_internal: parent: 'ip6gretap0', set: '<NULL>'
[   43.693851] kobject: 'queues' (ffff8800b0964a48): kobject_uevent_env
[   43.693852] kobject: 'queues' (ffff8800b0964a48): kobject_uevent_env: filter function caused the event to drop!
[   43.693855] kobject: 'rx-0' (ffff8800af8b4410): kobject_add_internal: parent: 'queues', set: 'queues'
[   43.693868] kobject: 'rx-0' (ffff8800af8b4410): kobject_uevent_env
[   43.693870] kobject: 'rx-0' (ffff8800af8b4410): fill_kobj_path: path = '/devices/virtual/net/ip6gretap0/queues/rx-0'
[   43.693888] kobject: 'tx-0' (ffff88012abe6e18): kobject_add_internal: parent: 'queues', set: 'queues'
[   43.693921] kobject: 'tx-0' (ffff88012abe6e18): kobject_uevent_env
[   43.693923] kobject: 'tx-0' (ffff88012abe6e18): fill_kobj_path: path = '/devices/virtual/net/ip6gretap0/queues/tx-0'
[   43.694058] kobject: 'batman_adv' (ffff8800b032c780): kobject_add_internal: parent: 'ip6gretap0', set: '<NULL>'
[   43.694077] kobject: 'batman_adv' (ffff8800b032c780): kobject_cleanup, parent ffff880128031538
[   43.694078] kobject: 'batman_adv' (ffff8800b032c780): auto cleanup kobject_del
[   43.694086] kobject: 'batman_adv' (ffff8800b032c780): calling ktype release
[   43.694087] kobject: (ffff8800b032c780): dynamic_kobj_release
[   43.694088] kobject: 'batman_adv': free name
[   43.694699] ------------[ cut here ]------------
[   43.694707] WARNING: CPU: 1 PID: 5665 at net/batman-adv/main.c:750 batadv_tvlv_container_remove+0x7b/0x80()
[   43.694724] Kernel panic - not syncing: panic_on_warn set ...
[   43.694724] 
[   43.694727] CPU: 1 PID: 5665 Comm: syz-executor.4 Not tainted 4.4.194 #0
[   43.694728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   43.694732]  0000000000000082 ffff8800b6177870 ffffffff818a6f22 0000000000000000
[   43.694735]  ffffffff82e96378 ffffffff8300ac2f ffff8800b61778e8 ffffffff8126f9bc
[   43.694737]  ffff880000000008 ffff8800b61778f8 ffff8800b6177898 ffffffff81274e1f
[   43.694737] Call Trace:
[   43.694743]  [<ffffffff818a6f22>] dump_stack+0xa1/0xdf
[   43.694748]  [<ffffffff8126f9bc>] panic+0xd2/0x225
[   43.694751]  [<ffffffff81274e1f>] ? printk+0x48/0x4a
[   43.694754]  [<ffffffff8126fb35>] warn_slowpath_common.cold+0x16/0x16
[   43.694759]  [<ffffffff811715f5>] warn_slowpath_null+0x15/0x20
[   43.694761]  [<ffffffff825e852b>] batadv_tvlv_container_remove+0x7b/0x80
[   43.694763]  [<ffffffff825e9333>] batadv_tvlv_container_register+0xb3/0x120
[   43.694765]  [<ffffffff825e27b6>] batadv_dat_tvlv_container_update+0x26/0x40
[   43.694767]  [<ffffffff825e321a>] batadv_dat_init+0x6a/0x80
[   43.694769]  [<ffffffff825e89b9>] batadv_mesh_init+0x239/0x290
[   43.694773]  [<ffffffff825f3b11>] batadv_softif_init_late+0x271/0x2c0
[   43.694778]  [<ffffffff820e542a>] register_netdevice+0xfa/0x450
[   43.694781]  [<ffffffff820f4e85>] rtnl_newlink+0x8a5/0x910
[   43.694782]  [<ffffffff820f475d>] ? rtnl_newlink+0x17d/0x910
[   43.694785]  [<ffffffff820f3440>] rtnetlink_rcv_msg+0x170/0x1e0
[   43.694789]  [<ffffffff811c48fd>] ? trace_hardirqs_on+0xd/0x10
[   43.694792]  [<ffffffff8264f0fa>] ? mutex_lock_nested+0x30a/0x5a0
[   43.694794]  [<ffffffff820f32b7>] ? rtnetlink_rcv+0x17/0x30
[   43.694795]  [<ffffffff820f32d0>] ? rtnetlink_rcv+0x30/0x30
[   43.694798]  [<ffffffff82157821>] netlink_rcv_skb+0x31/0xc0
[   43.694800]  [<ffffffff820f32c6>] rtnetlink_rcv+0x26/0x30
[   43.694801]  [<ffffffff82157298>] netlink_unicast+0x168/0x210
[   43.694802]  [<ffffffff82157531>] netlink_sendmsg+0x1f1/0x390
[   43.694805]  [<ffffffff820c01f5>] sock_sendmsg+0x35/0x40
[   43.694807]  [<ffffffff820c067d>] SYSC_sendto+0xed/0x160
[   43.694809]  [<ffffffff820bd88c>] ? sock_alloc_file+0x8c/0x120
[   43.694812]  [<ffffffff813247d2>] ? fd_install+0x22/0x30
[   43.694815]  [<ffffffff81003044>] ? lockdep_sys_exit_thunk+0x12/0x14
[   43.694817]  [<ffffffff820c1509>] SyS_sendto+0x9/0x10
[   43.694820]  [<ffffffff826548bc>] entry_SYSCALL_64_fastpath+0x1c/0x7c
[   43.699133] Kernel Offset: disabled
[   44.099901] Rebooting in 86400 seconds..