[info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.10.24' (ECDSA) to the list of known hosts. 2019/09/23 13:25:31 fuzzer started 2019/09/23 13:25:32 dialing manager at 10.128.0.105:39541 2019/09/23 13:25:32 syscalls: 2425 2019/09/23 13:25:32 code coverage: CONFIG_KCOV is not enabled 2019/09/23 13:25:32 comparison tracing: CONFIG_KCOV is not enabled 2019/09/23 13:25:32 extra coverage: CONFIG_KCOV is not enabled 2019/09/23 13:25:32 setuid sandbox: enabled 2019/09/23 13:25:32 namespace sandbox: enabled 2019/09/23 13:25:32 Android sandbox: /sys/fs/selinux/policy does not exist 2019/09/23 13:25:32 fault injection: kernel does not have systematic fault injection support 2019/09/23 13:25:32 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/09/23 13:25:32 net packet injection: enabled 2019/09/23 13:25:32 net device setup: enabled 13:25:33 executing program 0: seccomp(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0xffffff7f7fffdffe}]}) request_key(0x0, 0x0, 0x0, 0x0) 13:25:33 executing program 2: seccomp(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0xffffff7f7fffdffe}]}) ioperm(0x0, 0x7, 0x0) 13:25:33 executing program 5: seccomp(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0xffffff7f7fffdffe}]}) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f00000000c0)='proc\x00', 0x0, 0x0) 13:25:33 executing program 3: close(0xffffffffffffffff) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clock_gettime(0x0, 0x0) futex(&(0x7f0000000040), 0x0, 0x0, &(0x7f0000000200), &(0x7f0000000240), 0x1) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='stat\t\xc0\xd2\xfe\xbc\xf9\xdf-\xea\xc8\xc1w\xff\x17\x12H\xe9\x11\x93Q0I\xf81U\ro}\xe6l\xf67\xbd\xbf\x13\x11\x92\f\x8a&\xed\xa4\xdc\xc3x?\x9d\xb5\x11k4\xd3\x1b\x05\x12\xa5`\x8a\xaf\xf0\x1eyR4\f\xd6\xfd\x00\x00\x00\x00', 0x275a, 0x0) fallocate(r0, 0x0, 0x0, 0x110001) ioctl$VT_GETMODE(0xffffffffffffffff, 0x5601, 0x0) 13:25:33 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001400)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) seccomp(0x1, 0x0, &(0x7f0000000080)={0x2, &(0x7f0000000000)=[{0x74}, {0x6, 0x0, 0x0, 0xffffff7f7ffffffd}]}) 13:25:33 executing program 1: r0 = socket$inet(0x10, 0x3, 0xc) sendmsg(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f00000004c0)="24000000020607031dfffd94200a0009000100061d04000c1baba20400ff7e2e9ed166b8", 0x24}], 0x1}, 0x0) syzkaller login: [ 36.020336] IPv6: ADDRCONF(NETDEV_CHANGE): nr2: link becomes ready [ 36.029399] IPv6: ADDRCONF(NETDEV_CHANGE): nr0: link becomes ready [ 36.036116] IPv6: ADDRCONF(NETDEV_CHANGE): nr5: link becomes ready [ 36.044093] IPv6: ADDRCONF(NETDEV_CHANGE): nr4: link becomes ready [ 36.050719] IPv6: ADDRCONF(NETDEV_CHANGE): nr3: link becomes ready [ 36.057711] IPv6: ADDRCONF(NETDEV_CHANGE): nr1: link becomes ready [ 36.066528] IPVS: Creating netns size=2712 id=1 [ 36.071496] IPVS: ftp: loaded support on port[0] = 21 [ 36.083912] IPVS: Creating netns size=2712 id=2 [ 36.088753] IPVS: ftp: loaded support on port[0] = 21 [ 36.103738] chnl_net:caif_netlink_parms(): no params data found [ 36.111593] IPVS: Creating netns size=2712 id=3 [ 36.112485] kobject: 'ip6gretap0' (ffff8800ae0de538): kobject_add_internal: parent: 'net', set: 'devices' [ 36.112714] kobject: 'ip6gretap0' (ffff8800ae0de538): kobject_uevent_env [ 36.112719] kobject: 'ip6gretap0' (ffff8800ae0de538): fill_kobj_path: path = '/devices/virtual/net/ip6gretap0' [ 36.112748] kobject: 'queues' (ffff8800ae505f88): kobject_add_internal: parent: 'ip6gretap0', set: '' [ 36.112753] kobject: 'queues' (ffff8800ae505f88): kobject_uevent_env [ 36.112754] kobject: 'queues' (ffff8800ae505f88): kobject_uevent_env: filter function caused the event to drop! [ 36.112757] kobject: 'rx-0' (ffff8800afd77310): kobject_add_internal: parent: 'queues', set: 'queues' [ 36.112769] kobject: 'rx-0' (ffff8800afd77310): kobject_uevent_env [ 36.112771] kobject: 'rx-0' (ffff8800afd77310): fill_kobj_path: path = '/devices/virtual/net/ip6gretap0/queues/rx-0' [ 36.112789] kobject: 'tx-0' (ffff88012a4a3818): kobject_add_internal: parent: 'queues', set: 'queues' [ 36.112823] kobject: 'tx-0' (ffff88012a4a3818): kobject_uevent_env [ 36.112825] kobject: 'tx-0' (ffff88012a4a3818): fill_kobj_path: path = '/devices/virtual/net/ip6gretap0/queues/tx-0' [ 36.112960] kobject: 'batman_adv' (ffff8800aec7ca40): kobject_add_internal: parent: 'ip6gretap0', set: '' [ 36.112981] kobject: 'batman_adv' (ffff8800aec7ca40): kobject_cleanup, parent ffff8800ae0de538 [ 36.112982] kobject: 'batman_adv' (ffff8800aec7ca40): auto cleanup kobject_del [ 36.112990] kobject: 'batman_adv' (ffff8800aec7ca40): calling ktype release [ 36.112992] kobject: (ffff8800aec7ca40): dynamic_kobj_release [ 36.112993] kobject: 'batman_adv': free name [ 36.113618] ------------[ cut here ]------------ [ 36.113627] WARNING: CPU: 1 PID: 5772 at net/batman-adv/main.c:750 batadv_tvlv_container_remove+0x7b/0x80() [ 36.113643] Kernel panic - not syncing: panic_on_warn set ... [ 36.113643] [ 36.113646] CPU: 1 PID: 5772 Comm: syz-executor.2 Not tainted 4.4.194 #0 [ 36.113647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 36.113651] 0000000000000082 ffff8800b7e77870 ffffffff818a6f22 0000000000000000 [ 36.113654] ffffffff82e96378 ffffffff8300ac2f ffff8800b7e778e8 ffffffff8126f9bc [ 36.113656] ffff880000000008 ffff8800b7e778f8 ffff8800b7e77898 ffffffff81274e1f [ 36.113656] Call Trace: [ 36.113661] [] dump_stack+0xa1/0xdf [ 36.113665] [] panic+0xd2/0x225 [ 36.113668] [] ? printk+0x48/0x4a [ 36.113670] [] warn_slowpath_common.cold+0x16/0x16 [ 36.113675] [] warn_slowpath_null+0x15/0x20 [ 36.113677] [] batadv_tvlv_container_remove+0x7b/0x80 [ 36.113679] [] batadv_tvlv_container_register+0xb3/0x120 [ 36.113681] [] batadv_dat_tvlv_container_update+0x26/0x40 [ 36.113683] [] batadv_dat_init+0x6a/0x80 [ 36.113685] [] batadv_mesh_init+0x239/0x290 [ 36.113688] [] batadv_softif_init_late+0x271/0x2c0 [ 36.113694] [] register_netdevice+0xfa/0x450 [ 36.113696] [] rtnl_newlink+0x8a5/0x910 [ 36.113698] [] ? rtnl_newlink+0x17d/0x910 [ 36.113701] [] rtnetlink_rcv_msg+0x170/0x1e0 [ 36.113705] [] ? trace_hardirqs_on+0xd/0x10 [ 36.113708] [] ? mutex_lock_nested+0x30a/0x5a0 [ 36.113710] [] ? rtnetlink_rcv+0x17/0x30 [ 36.113711] [] ? rtnetlink_rcv+0x30/0x30 [ 36.113714] [] netlink_rcv_skb+0x31/0xc0 [ 36.113716] [] rtnetlink_rcv+0x26/0x30 [ 36.113717] [] netlink_unicast+0x168/0x210 [ 36.113718] [] netlink_sendmsg+0x1f1/0x390 [ 36.113722] [] sock_sendmsg+0x35/0x40 [ 36.113723] [] SYSC_sendto+0xed/0x160 [ 36.113726] [] ? sock_alloc_file+0x8c/0x120 [ 36.113731] [] ? fd_install+0x22/0x30 [ 36.113735] [] ? lockdep_sys_exit_thunk+0x12/0x14 [ 36.113737] [] SyS_sendto+0x9/0x10 [ 36.113740] [] entry_SYSCALL_64_fastpath+0x1c/0x7c [ 36.117666] Kernel Offset: disabled [ 36.515980] Rebooting in 86400 seconds..