[info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.10.8' (ECDSA) to the list of known hosts. 2019/05/07 11:58:12 fuzzer started 2019/05/07 11:58:15 dialing manager at 10.128.0.105:41067 2019/05/07 11:58:15 syscalls: 2389 2019/05/07 11:58:15 code coverage: CONFIG_KCOV is not enabled 2019/05/07 11:58:15 comparison tracing: CONFIG_KCOV is not enabled 2019/05/07 11:58:15 extra coverage: CONFIG_KCOV is not enabled 2019/05/07 11:58:15 setuid sandbox: enabled 2019/05/07 11:58:15 namespace sandbox: enabled 2019/05/07 11:58:15 Android sandbox: /sys/fs/selinux/policy does not exist 2019/05/07 11:58:15 fault injection: kernel does not have systematic fault injection support 2019/05/07 11:58:15 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/05/07 11:58:15 net packet injection: enabled 2019/05/07 11:58:15 net device setup: enabled 11:58:16 executing program 0: prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000100)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x50000}]}) sendto$inet(0xffffffffffffffff, 0x0, 0xfffffc3b, 0x20000044, 0x0, 0x0) 11:58:16 executing program 1: prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000100)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x50000}]}) r0 = eventfd2(0x0, 0x0) ioctl$TIOCGWINSZ(r0, 0x5413, 0x0) 11:58:16 executing program 5: prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0x0, 0x50000}]}) r0 = accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) futimesat(r0, 0x0, 0x0) 11:58:16 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) read(r0, &(0x7f0000000180)=""/11, 0xa) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)) clone(0x3102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = socket$inet6(0xa, 0x2, 0x0) syz_execute_func(&(0x7f00000006c0)="410f01f964ff0941c3c4e2c99758423e46d8731266420fe2e33e0f1110c442019dcc6f") connect$inet6(r2, &(0x7f000000cfe4)={0xa, 0x0, 0x0, @loopback}, 0x1c) read(r2, &(0x7f0000000240)=""/98, 0x62) ioctl$KIOCSOUND(r1, 0x4b2f, 0x0) setsockopt$inet6_opts(r2, 0x29, 0x36, &(0x7f0000000480)=@dstopts={0x0, 0x3, [], [@hao={0xc9, 0x10, @ipv4={[], [], @loopback}}, @calipso={0x7, 0x8}]}, 0x28) write(r2, 0x0, 0x0) 11:58:16 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) read(r0, &(0x7f0000000180)=""/11, 0xa) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)) clone(0x3102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = socket$inet6(0xa, 0x2, 0x0) syz_execute_func(&(0x7f00000006c0)="410f01f964ff0941c3c4e2c99758423e46d8731266420fe2e33e0f1110c442019dcc6f") connect$inet6(r2, &(0x7f000000cfe4)={0xa, 0x0, 0x0, @loopback}, 0x1c) read(r2, &(0x7f0000000240)=""/98, 0x62) ioctl$VT_RELDISP(r1, 0x5605) setsockopt$inet6_opts(r2, 0x29, 0x36, &(0x7f0000000480)=@dstopts={0x0, 0x3, [], [@hao={0xc9, 0x10, @ipv4={[], [], @loopback}}, @calipso={0x7, 0x8}]}, 0x28) write(r2, 0x0, 0x0) 11:58:16 executing program 4: syz_execute_func(&(0x7f0000000040)="410f01f9c4e1f573d50664ff0941c3c4e2c99758423e46d8731266420fe2e33e0f1110d4b842419dcccc") clone(0x3102001fff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) read(r0, &(0x7f0000000140)=""/11, 0x81) clone(0x3102001ff6, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x200000000000013, &(0x7f0000000380)=0x404100000001, 0xfe3f) connect$inet6(r1, &(0x7f0000000080), 0x1c) r2 = dup2(r1, r1) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000440), 0x132441) sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_open_pts(r0, 0x4400) syzkaller login: [ 62.039243] IPv6: ADDRCONF(NETDEV_CHANGE): nr0: link becomes ready [ 62.047938] IPv6: ADDRCONF(NETDEV_CHANGE): nr5: link becomes ready [ 62.054809] IPv6: ADDRCONF(NETDEV_CHANGE): nr3: link becomes ready [ 62.061393] IPv6: ADDRCONF(NETDEV_CHANGE): nr4: link becomes ready [ 62.068361] IPv6: ADDRCONF(NETDEV_CHANGE): nr1: link becomes ready [ 62.075276] IPv6: ADDRCONF(NETDEV_CHANGE): nr2: link becomes ready [ 62.083238] IPVS: Creating netns size=2712 id=1 [ 62.087911] IPVS: ftp: loaded support on port[0] = 21 [ 62.100171] IPVS: Creating netns size=2712 id=2 [ 62.104868] IPVS: ftp: loaded support on port[0] = 21 [ 62.116563] chnl_net:caif_netlink_parms(): no params data found [ 62.124043] ------------[ cut here ]------------ [ 62.128790] WARNING: CPU: 1 PID: 5817 at net/batman-adv/main.c:750 batadv_tvlv_container_remove+0x7b/0x80() [ 62.138694] Kernel panic - not syncing: panic_on_warn set ... [ 62.138694] [ 62.146044] CPU: 1 PID: 5817 Comm: syz-executor.0 Not tainted 4.4.179 #3 [ 62.152846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 62.162166] 0000000000000082 ffff8800b85d3868 ffffffff818ad452 0000000000000000 [ 62.170184] ffffffff82e94970 ffffffff8300853d ffff8800b85d38e0 ffffffff812711cc [ 62.178171] ffff880000000008 ffff8800b85d38f0 ffff8800b85d3890 ffffffff8127659d [ 62.186166] Call Trace: [ 62.188721] [] dump_stack+0xa1/0xdf [ 62.193982] [] panic+0xd2/0x237 [ 62.198882] [] ? printk+0x4b/0x4d [ 62.203956] [] warn_slowpath_common.cold+0x16/0x16 [ 62.210505] [] warn_slowpath_null+0x15/0x20 [ 62.216445] [] batadv_tvlv_container_remove+0x7b/0x80 [ 62.223252] [] batadv_tvlv_container_register+0xb3/0x120 [ 62.230323] [] batadv_dat_tvlv_container_update+0x26/0x40 [ 62.237477] [] batadv_dat_init+0x6a/0x80 [ 62.243156] [] batadv_mesh_init+0x239/0x290 [ 62.249095] [] batadv_softif_init_late+0x271/0x2c0 [ 62.255641] [] register_netdevice+0xfd/0x450 [ 62.261668] [] rtnl_newlink+0x8b9/0x920 [ 62.267263] [] ? rtnl_newlink+0x17d/0x920 [ 62.273041] [] rtnetlink_rcv_msg+0x176/0x1e0 [ 62.279079] [] ? trace_hardirqs_on+0xd/0x10 [ 62.285058] [] ? mutex_lock_nested+0x30a/0x5a0 [ 62.291255] [] ? rtnetlink_rcv+0x17/0x30 [ 62.296932] [] ? rtnetlink_rcv+0x30/0x30 [ 62.302628] [] netlink_rcv_skb+0x34/0xc0 [ 62.308334] [] rtnetlink_rcv+0x26/0x30 [ 62.313839] [] netlink_unicast+0x16b/0x2d0 [ 62.319690] [] ? netlink_unicast+0x18d/0x2d0 [ 62.325715] [] netlink_sendmsg+0x1f1/0x390 [ 62.331570] [] sock_sendmsg+0x3b/0x50 [ 62.336987] [] SYSC_sendto+0xed/0x160 [ 62.342406] [] ? sock_alloc_file+0x8c/0x120 [ 62.348345] [] ? fd_install+0x22/0x30 [ 62.353765] [] ? lockdep_sys_exit_thunk+0x12/0x14 [ 62.360225] [] SyS_sendto+0x9/0x10 [ 62.365418] [] entry_SYSCALL_64_fastpath+0x22/0x82 [ 62.372898] Kernel Offset: disabled [ 62.376527] Rebooting in 86400 seconds.. serialport: VM disconnected.