
Debian GNU/Linux 7 syzkaller ttyS0

net.ipv6.conf.syz0.accept_dad = 0
net.ipv6.conf.syz0.router_solicitations = 0
executing program
syzkaller login: [    9.318163] netlink: 13 bytes leftover after parsing attributes in process `syzkaller129596'.
[    9.319123] ------------[ cut here ]------------
[    9.319666] WARNING: CPU: 2 PID: 2908 at mm/slab_common.c:962 kmalloc_slab+0x5d/0x70
[    9.320473] Kernel panic - not syncing: panic_on_warn set ...
[    9.320473] 
[    9.321150] CPU: 2 PID: 2908 Comm: syzkaller129596 Not tainted 4.13.0-rc4-next-20170811 #1
[    9.321904] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Bochs 01/01/2011
[    9.322645] Call Trace:
[    9.322888]  dump_stack+0x194/0x257
[    9.323226]  ? arch_local_irq_restore+0x53/0x53
[    9.323665]  panic+0x1e4/0x417
[    9.323960]  ? __warn+0x1d9/0x1d9
[    9.324278]  ? show_regs_print_info+0x65/0x65
[    9.324693]  ? retint_kernel+0x10/0x10
[    9.325061]  ? kmalloc_slab+0x5d/0x70
[    9.325805]  __warn+0x1c4/0x1d9
[    9.326109]  ? kmalloc_slab+0x5f/0x70
[    9.326457]  ? kmalloc_slab+0x5d/0x70
[    9.326810]  report_bug+0x211/0x2d0
[    9.327151]  fixup_bug+0x40/0x90
[    9.327468]  do_trap+0x260/0x390
[    9.327776]  do_error_trap+0x120/0x390
[    9.328146]  ? netlink_unicast+0x4e8/0x6f0
[    9.328527]  ? netlink_sendmsg+0xa4a/0xe60
[    9.328912]  ? sock_sendmsg+0xca/0x110
[    9.329271]  ? do_trap+0x390/0x390
[    9.329597]  ? kmalloc_slab+0x5d/0x70
[    9.329948]  ? __lock_is_held+0xb6/0x140
[    9.330325]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[    9.330771]  do_invalid_op+0x1b/0x20
[    9.331111]  invalid_op+0x1e/0x30
[    9.331434] RIP: 0010:kmalloc_slab+0x5d/0x70
[    9.331833] RSP: 0018:ffff8800392a6aa0 EFLAGS: 00010246
[    9.332337] RAX: 0000000000000000 RBX: ffff88006d0da1c0 RCX: 0000000000000000
[    9.332991] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000700040
[    9.333645] RBP: ffff8800392a6aa0 R08: 0000000000000001 R09: 0000000000000000
[    9.334325] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[    9.334984] R13: 0000000000000001 R14: 00000000014080c0 R15: 0000000000700040
[    9.335663]  __kmalloc+0x24/0x710
[    9.336043]  ? tun_device_event+0x3e9/0xca0
[    9.336443]  tun_device_event+0x3e9/0xca0
[    9.336825]  ? sel_netif_destroy+0x250/0x250
[    9.337248]  notifier_call_chain+0x136/0x2c0
[    9.337611]  ? raw_notifier_chain_unregister+0x1b0/0x1b0
[    9.337970]  ? dev_set_rx_mode+0x2f/0x40
[    9.338271]  ? __dev_change_flags+0x643/0x990
[    9.338592]  ? lock_downgrade+0x990/0x990
[    9.338927]  ? __dev_notify_flags+0x155/0x2e0
[    9.339224]  ? rtnl_is_locked+0x54/0xb0
[    9.339511]  ? rtnl_kfree_skbs+0x70/0x70
[    9.339774]  raw_notifier_call_chain+0x2d/0x40
[    9.340069]  call_netdevice_notifiers_info+0x51/0x90
[    9.340396]  call_netdevice_notifiers+0x6a/0x90
[    9.340691]  ? call_netdevice_notifiers_info+0x90/0x90
[    9.341027]  ? dev_change_flags+0xfa/0x140
[    9.341298]  do_setlink+0xbe5/0x38d0
[    9.341563]  ? console_unlock+0x69c/0xd80
[    9.341829]  ? trace_hardirqs_on_caller+0x421/0x5c0
[    9.342152]  ? rtnl_register+0x70/0x70
[    9.342406]  ? devkmsg_poll+0x1d0/0x1e0
[    9.342660]  ? wake_up_klogd+0x100/0x100
[    9.342921]  ? vprintk_emit+0x49b/0x590
[    9.343176]  ? __down_trylock_console_sem+0x18b/0x1e0
[    9.343507]  ? __down_trylock_console_sem+0x10d/0x1e0
[    9.343840]  ? vprintk_emit+0x3ea/0x590
[    9.344098]  ? vprintk_default+0x28/0x30
[    9.344358]  ? vprintk_func+0x5e/0xc0
[    9.344602]  ? printk+0xaa/0xca
[    9.344812]  ? show_regs_print_info+0x65/0x65
[    9.345100]  ? idr_get_free+0xff0/0xff0
[    9.345354]  ? mutex_lock_io_nested+0x1740/0x1740
[    9.345684]  ? nla_parse+0x29a/0x3d0
[    9.345951]  ? nla_validate+0x1c0/0x1c0
[    9.346725]  ? validate_linkmsg+0x31b/0x4e0
[    9.347030]  rtnl_setlink+0x270/0x3c0
[    9.347312]  ? do_setlink+0x38d0/0x38d0
[    9.347582]  ? cred_has_capability+0x1a0/0x3d0
[    9.347927]  ? do_setlink+0x38d0/0x38d0
[    9.348200]  rtnetlink_rcv_msg+0x733/0x1090
[    9.348499]  ? rtnl_calcit.isra.23+0x4f0/0x4f0
[    9.348807]  ? trace_hardirqs_on+0xd/0x10
[    9.349089]  ? check_noncircular+0x20/0x20
[    9.349376]  ? find_held_lock+0x35/0x1d0
[    9.349656]  ? netlink_lookup+0x5f7/0xa90
[    9.349937]  ? find_held_lock+0x35/0x1d0
[    9.350217]  ? do_setlink+0x38d0/0x38d0
[    9.350483]  ? lock_downgrade+0x990/0x990
[    9.350766]  ? lock_release+0xa40/0xa40
[    9.351058]  ? netlink_lookup+0x620/0xa90
[    9.351342]  ? do_setlink+0x38d0/0x38d0
[    9.351631]  ? netlink_connect+0x4e0/0x4e0
[    9.351940]  ? netlink_deliver_tap+0x176/0xa60
[    9.352256]  ? iov_iter_advance+0x2a1/0x13f0
[    9.352559]  ? sock_has_perm+0x29c/0x400
[    9.352841]  netlink_rcv_skb+0x216/0x440
[    9.353119]  ? rtnl_calcit.isra.23+0x4f0/0x4f0
[    9.353434]  ? netlink_ack+0xab0/0xab0
[    9.353705]  ? netlink_skb_destructor+0x1d0/0x1d0
[    9.354037]  ? selinux_nlmsg_lookup+0x32b/0x430
[    9.354361]  rtnetlink_rcv+0x1c/0x20
[    9.354617]  netlink_unicast+0x4e8/0x6f0
[    9.354897]  ? netlink_attachskb+0x8a0/0x8a0
[    9.355202]  ? security_netlink_send+0x81/0xb0
[    9.355588]  netlink_sendmsg+0xa4a/0xe60
[    9.355916]  ? netlink_unicast+0x6f0/0x6f0
[    9.356226]  ? security_socket_sendmsg+0x89/0xb0
[    9.356568]  ? netlink_unicast+0x6f0/0x6f0
[    9.356861]  sock_sendmsg+0xca/0x110
[    9.357120]  sock_write_iter+0x31a/0x5d0
[    9.357404]  ? sock_sendmsg+0x110/0x110
[    9.357686]  ? selinux_capset+0x100/0x100
[    9.357971]  ? ___might_sleep+0x45c/0x470
[    9.358262]  do_iter_readv_writev+0x525/0x7f0
[    9.358576]  ? vfs_dedupe_file_range+0x900/0x900
[    9.358909]  ? rw_verify_area+0xe5/0x2b0
[    9.359194]  do_iter_write+0x154/0x540
[    9.359467]  ? dup_iter+0x260/0x260
[    9.359720]  ? __do_page_fault+0x51b/0xb60
[    9.360018]  vfs_writev+0x18a/0x340
[    9.360265]  ? __fget_light+0x297/0x380
[    9.360542]  ? vfs_iter_write+0xb0/0xb0
[    9.360815]  ? downgrade_write+0x150/0x150
[    9.361106]  ? vmacache_find+0x61/0x270
[    9.361387]  ? up_read+0x1a/0x40
[    9.361622]  ? __do_page_fault+0x35b/0xb60
[    9.361916]  ? __fdget_pos+0x130/0x190
[    9.362184]  ? __fdget_raw+0x20/0x20
[    9.362438]  ? do_page_fault+0x70/0x70
[    9.362711]  do_writev+0xfc/0x2a0
[    9.362947]  ? do_writev+0xfc/0x2a0
[    9.363200]  ? vfs_writev+0x340/0x340
[    9.363492]  ? entry_SYSCALL_64_fastpath+0x5/0xbe
[    9.363822]  ? trace_hardirqs_on_caller+0x421/0x5c0
[    9.364168]  SyS_writev+0x27/0x30
[    9.364405]  entry_SYSCALL_64_fastpath+0x1f/0xbe
[    9.364742] RIP: 0033:0x43a539
[    9.365017] RSP: 002b:00000000007dfe48 EFLAGS: 00000207 ORIG_RAX: 0000000000000014
[    9.365698] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000043a539
[    9.366394] RDX: 0000000000000001 RSI: 0000000020001ff0 RDI: 0000000000000004
[    9.367008] RBP: 0000000000000086 R08: 0000000000000000 R09: 0000000000000000
[    9.367898] R10: 0000000000000000 R11: 0000000000000207 R12: 0000000000000000
[    9.368583] R13: 0000000000402b00 R14: 0000000000402b90 R15: 0000000000000000
[    9.369478] Dumping ftrace buffer:
[    9.369907]    (ftrace buffer empty)
[    9.370291] Kernel Offset: disabled
[    9.370711] Rebooting in 86400 seconds..