[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [ 13.672962] restorecond (5633) used greatest stack depth: 11960 bytes left [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.1.42' (ECDSA) to the list of known hosts. 2019/09/23 14:11:49 fuzzer started 2019/09/23 14:11:50 dialing manager at 10.128.0.105:39633 2019/09/23 14:11:50 syscalls: 2425 2019/09/23 14:11:50 code coverage: CONFIG_KCOV is not enabled 2019/09/23 14:11:50 comparison tracing: CONFIG_KCOV is not enabled 2019/09/23 14:11:50 extra coverage: CONFIG_KCOV is not enabled 2019/09/23 14:11:50 setuid sandbox: enabled 2019/09/23 14:11:50 namespace sandbox: enabled 2019/09/23 14:11:50 Android sandbox: /sys/fs/selinux/policy does not exist 2019/09/23 14:11:50 fault injection: kernel does not have systematic fault injection support 2019/09/23 14:11:50 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/09/23 14:11:50 net packet injection: enabled 2019/09/23 14:11:50 net device setup: enabled 14:11:50 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r0, &(0x7f0000e11ff0)=[{&(0x7f0000000140)="580000001400192340834b80040d8c560a067fffffff81004e220000000058000b4824ca945f64009400050028925aa8000000000000008000f0fffeffe809000000fff5dd0000001000010002040800410400000000fcff", 0x58}], 0x1) 14:11:50 executing program 1: mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$bt_hci(r0, 0x0, 0x3, &(0x7f00000003c0)=""/4096, &(0x7f00000013c0)=0x2) 14:11:50 executing program 5: perf_event_open(&(0x7f000001d000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000000), 0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f00000000c0), 0x1}}, 0x0, 0x1, 0xffffffffffffffff, 0x0) 14:11:50 executing program 3: r0 = socket(0x10, 0x3, 0x0) write(r0, &(0x7f0000000000)="2400000052001f0014f9f407000904ff0200070208000100feffffff0800000000000006", 0x24) 14:11:50 executing program 2: capset(&(0x7f0000000200)={0x20071026}, &(0x7f0000000080)) r0 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r0, &(0x7f0000e11ff0)=[{&(0x7f0000000140)="580000001400192340834b80040d8c560a067fffffff81004e220000000058000b4824ca945f64009400050028925aa8000000000000008000f0fffeffe809000000fff5dd0000000a0001000a0a0c00410400000000fcff", 0x58}], 0x1) 14:11:50 executing program 4: r0 = getpgrp(0x0) r1 = gettid() rt_sigprocmask(0x0, &(0x7f0000032ff8)={0xffffffffffffff7f}, 0x0, 0x8) rt_tgsigqueueinfo(r0, r1, 0xb, &(0x7f0000000000)={0x0, 0x0, 0x2}) r2 = signalfd4(0xffffffffffffffff, &(0x7f0000000ff8)={0xfffffffffffffdb0}, 0x8, 0x0) read(r2, &(0x7f0000481000)=""/128, 0x80) syzkaller login: [ 40.209860] IPv6: ADDRCONF(NETDEV_CHANGE): nr0: link becomes ready [ 40.218311] IPv6: ADDRCONF(NETDEV_CHANGE): nr5: link becomes ready [ 40.225072] IPv6: ADDRCONF(NETDEV_CHANGE): nr3: link becomes ready [ 40.231896] IPv6: ADDRCONF(NETDEV_CHANGE): nr2: link becomes ready [ 40.238794] IPv6: ADDRCONF(NETDEV_CHANGE): nr1: link becomes ready [ 40.245910] IPv6: ADDRCONF(NETDEV_CHANGE): nr4: link becomes ready [ 40.255129] IPVS: Creating netns size=2712 id=1 [ 40.260078] IPVS: ftp: loaded support on port[0] = 21 [ 40.270877] IPVS: Creating netns size=2712 id=2 [ 40.275832] IPVS: ftp: loaded support on port[0] = 21 [ 40.293189] chnl_net:caif_netlink_parms(): no params data found [ 40.300235] ------------[ cut here ]------------ [ 40.305014] WARNING: CPU: 0 PID: 5735 at net/batman-adv/main.c:750 batadv_tvlv_container_remove+0x7b/0x80() [ 40.314954] Kernel panic - not syncing: panic_on_warn set ... [ 40.314954] [ 40.322434] CPU: 0 PID: 5735 Comm: syz-executor.3 Not tainted 4.4.194 #0 [ 40.330041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 40.339370] 0000000000000082 ffff8800b184f870 ffffffff818a6f22 0000000000000000 [ 40.347367] ffffffff82e96378 ffffffff8300ac2f ffff8800b184f8e8 ffffffff8126f9bc [ 40.355376] ffff880000000008 ffff8800b184f8f8 ffff8800b184f898 ffffffff81274e1f [ 40.363743] Call Trace: [ 40.366302] [] dump_stack+0xa1/0xdf [ 40.371608] [] panic+0xd2/0x225 [ 40.376516] [] ? printk+0x48/0x4a [ 40.381593] [] warn_slowpath_common.cold+0x16/0x16 [ 40.388140] [] warn_slowpath_null+0x15/0x20 [ 40.394081] [] batadv_tvlv_container_remove+0x7b/0x80 [ 40.400893] [] batadv_tvlv_container_register+0xb3/0x120 [ 40.408060] [] batadv_dat_tvlv_container_update+0x26/0x40 [ 40.415219] [] batadv_dat_init+0x6a/0x80 [ 40.421956] [] batadv_mesh_init+0x239/0x290 [ 40.428683] [] batadv_softif_init_late+0x271/0x2c0 [ 40.435398] [] register_netdevice+0xfa/0x450 [ 40.441440] [] rtnl_newlink+0x8a5/0x910 [ 40.447054] [] ? rtnl_newlink+0x17d/0x910 [ 40.453010] [] rtnetlink_rcv_msg+0x170/0x1e0 [ 40.459237] [] ? trace_hardirqs_on+0xd/0x10 [ 40.465447] [] ? mutex_lock_nested+0x30a/0x5a0 [ 40.471752] [] ? rtnetlink_rcv+0x17/0x30 [ 40.477530] [] ? rtnetlink_rcv+0x30/0x30 [ 40.483332] [] netlink_rcv_skb+0x31/0xc0 [ 40.489035] [] rtnetlink_rcv+0x26/0x30 [ 40.494606] [] netlink_unicast+0x168/0x210 [ 40.500556] [] netlink_sendmsg+0x1f1/0x390 [ 40.506518] [] sock_sendmsg+0x35/0x40 [ 40.511937] [] SYSC_sendto+0xed/0x160 [ 40.517388] [] ? sock_alloc_file+0x8c/0x120 [ 40.523344] [] ? fd_install+0x22/0x30 [ 40.528769] [] ? lockdep_sys_exit_thunk+0x12/0x14 [ 40.535250] [] SyS_sendto+0x9/0x10 [ 40.540421] [] entry_SYSCALL_64_fastpath+0x1c/0x7c [ 40.548180] Kernel Offset: disabled [ 40.551820] Rebooting in 86400 seconds..