Warning: Permanently added '10.128.1.5' (ED25519) to the list of known hosts. 2024/05/10 03:10:39 fuzzer started 2024/05/10 03:10:40 dialing manager at 10.128.0.169:30012 syzkaller login: [ 179.300417][ T5043] cgroup: Unknown subsys name 'net' [ 179.468413][ T5043] cgroup: Unknown subsys name 'rlimit' [ 224.211541][ T1219] ieee802154 phy0 wpan0: encryption failed: -22 [ 224.219385][ T1219] ieee802154 phy1 wpan1: encryption failed: -22 2024/05/10 03:11:34 code coverage: enabled 2024/05/10 03:11:34 comparison tracing: enabled 2024/05/10 03:11:34 extra coverage: enabled 2024/05/10 03:11:34 delay kcov mmap: enabled 2024/05/10 03:11:34 setuid sandbox: enabled 2024/05/10 03:11:34 namespace sandbox: enabled 2024/05/10 03:11:34 Android sandbox: /sys/fs/selinux/policy does not exist 2024/05/10 03:11:34 fault injection: enabled 2024/05/10 03:11:34 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2024/05/10 03:11:34 net packet injection: enabled 2024/05/10 03:11:34 net device setup: enabled 2024/05/10 03:11:34 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2024/05/10 03:11:34 devlink PCI setup: PCI device 0000:00:10.0 is not available 2024/05/10 03:11:34 NIC VF setup: PCI device 0000:00:11.0 is not available 2024/05/10 03:11:34 USB emulation: enabled 2024/05/10 03:11:34 hci packet injection: enabled 2024/05/10 03:11:34 wifi device emulation: enabled 2024/05/10 03:11:34 802.15.4 emulation: enabled 2024/05/10 03:11:34 swap file: enabled 2024/05/10 03:11:34 starting 5 executor processes [ 232.839072][ T5043] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 235.791805][ T5061] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 235.809707][ T5061] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 235.828663][ T5061] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 235.899603][ T5061] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 235.927822][ T5061] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 235.954723][ T5061] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 236.073235][ T5061] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 236.092373][ T5061] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 236.109940][ T5061] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 236.152359][ T50] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 236.165822][ T5071] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 236.174509][ T5069] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 236.185017][ T5069] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 236.208583][ T5069] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 236.230713][ T5072] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 236.248018][ T5072] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 236.258194][ T50] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 236.268479][ T50] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 236.282006][ T50] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 236.291469][ T50] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 236.312907][ T50] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 236.317951][ T5069] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 236.325193][ T50] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 236.344075][ T50] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 236.467203][ T5061] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 236.476887][ T5061] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 236.491228][ T5061] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 236.505134][ T5061] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 236.609482][ T5061] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 236.621995][ T5061] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 237.845041][ T5064] chnl_net:caif_netlink_parms(): no params data found [ 238.070339][ T5061] Bluetooth: hci0: command tx timeout [ 238.100383][ T5068] chnl_net:caif_netlink_parms(): no params data found [ 238.272977][ T5060] chnl_net:caif_netlink_parms(): no params data found [ 238.311352][ T5061] Bluetooth: hci1: command tx timeout [ 238.607424][ T5061] Bluetooth: hci2: command tx timeout [ 238.613077][ T5061] Bluetooth: hci3: command tx timeout [ 238.655989][ T5067] chnl_net:caif_netlink_parms(): no params data found [ 238.757145][ T4427] Bluetooth: hci4: command tx timeout [ 238.873107][ T5073] chnl_net:caif_netlink_parms(): no params data found [ 239.275846][ T5068] bridge0: port 1(bridge_slave_0) entered blocking state [ 239.284164][ T5068] bridge0: port 1(bridge_slave_0) entered disabled state [ 239.292149][ T5068] bridge_slave_0: entered allmulticast mode [ 239.302079][ T5068] bridge_slave_0: entered promiscuous mode [ 239.503101][ T5064] bridge0: port 1(bridge_slave_0) entered blocking state [ 239.511239][ T5064] bridge0: port 1(bridge_slave_0) entered disabled state [ 239.519164][ T5064] bridge_slave_0: entered allmulticast mode [ 239.528486][ T5064] bridge_slave_0: entered promiscuous mode [ 239.542515][ T5068] bridge0: port 2(bridge_slave_1) entered blocking state [ 239.553176][ T5068] bridge0: port 2(bridge_slave_1) entered disabled state [ 239.561154][ T5068] bridge_slave_1: entered allmulticast mode [ 239.570431][ T5068] bridge_slave_1: entered promiscuous mode [ 239.607461][ T5060] bridge0: port 1(bridge_slave_0) entered blocking state [ 239.615235][ T5060] bridge0: port 1(bridge_slave_0) entered disabled state [ 239.623387][ T5060] bridge_slave_0: entered allmulticast mode [ 239.632719][ T5060] bridge_slave_0: entered promiscuous mode [ 239.663476][ T5064] bridge0: port 2(bridge_slave_1) entered blocking state [ 239.675510][ T5064] bridge0: port 2(bridge_slave_1) entered disabled state [ 239.684350][ T5064] bridge_slave_1: entered allmulticast mode [ 239.693853][ T5064] bridge_slave_1: entered promiscuous mode [ 239.875431][ T5060] bridge0: port 2(bridge_slave_1) entered blocking state [ 239.886087][ T5060] bridge0: port 2(bridge_slave_1) entered disabled state [ 239.894042][ T5060] bridge_slave_1: entered allmulticast mode [ 239.905999][ T5060] bridge_slave_1: entered promiscuous mode [ 240.118457][ T4427] Bluetooth: hci0: command tx timeout [ 240.142721][ T5064] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 240.172057][ T5068] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 240.346283][ T5068] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 240.367291][ T4427] Bluetooth: hci1: command tx timeout [ 240.369259][ T5064] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 240.430923][ T5060] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 240.441626][ T5067] bridge0: port 1(bridge_slave_0) entered blocking state [ 240.449562][ T5067] bridge0: port 1(bridge_slave_0) entered disabled state [ 240.457592][ T5067] bridge_slave_0: entered allmulticast mode [ 240.467209][ T5067] bridge_slave_0: entered promiscuous mode [ 240.479789][ T5073] bridge0: port 1(bridge_slave_0) entered blocking state [ 240.487653][ T5073] bridge0: port 1(bridge_slave_0) entered disabled state [ 240.495568][ T5073] bridge_slave_0: entered allmulticast mode [ 240.505035][ T5073] bridge_slave_0: entered promiscuous mode [ 240.631027][ T5073] bridge0: port 2(bridge_slave_1) entered blocking state [ 240.639104][ T5073] bridge0: port 2(bridge_slave_1) entered disabled state [ 240.647053][ T5073] bridge_slave_1: entered allmulticast mode [ 240.656329][ T5073] bridge_slave_1: entered promiscuous mode [ 240.675303][ T5060] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 240.684782][ T4427] Bluetooth: hci3: command tx timeout [ 240.685460][ T5061] Bluetooth: hci2: command tx timeout [ 240.703979][ T5067] bridge0: port 2(bridge_slave_1) entered blocking state [ 240.712008][ T5067] bridge0: port 2(bridge_slave_1) entered disabled state [ 240.719818][ T5067] bridge_slave_1: entered allmulticast mode [ 240.729020][ T5067] bridge_slave_1: entered promiscuous mode [ 240.774849][ T5064] team0: Port device team_slave_0 added [ 240.788652][ T5068] team0: Port device team_slave_0 added [ 240.837270][ T5061] Bluetooth: hci4: command tx timeout [ 240.931220][ T5068] team0: Port device team_slave_1 added [ 240.952008][ T5067] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 240.968236][ T5064] team0: Port device team_slave_1 added [ 240.987758][ T5067] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 241.211464][ T5073] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 241.229502][ T5060] team0: Port device team_slave_0 added [ 241.246371][ T5073] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 241.335320][ T5067] team0: Port device team_slave_0 added [ 241.345340][ T5064] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 241.352802][ T5064] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 241.379221][ T5064] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 241.435196][ T5060] team0: Port device team_slave_1 added [ 241.478242][ T5068] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 241.485457][ T5068] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 241.511883][ T5068] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 241.531937][ T5067] team0: Port device team_slave_1 added [ 241.543322][ T5064] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 241.550827][ T5064] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 241.577359][ T5064] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 241.692565][ T5068] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 241.699923][ T5068] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 241.726282][ T5068] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 241.745710][ T5073] team0: Port device team_slave_0 added [ 241.818472][ T5060] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 241.825666][ T5060] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 241.853046][ T5060] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 241.894783][ T5073] team0: Port device team_slave_1 added [ 241.951440][ T5067] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 241.958874][ T5067] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 241.987853][ T5067] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 242.003540][ T5060] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 242.011173][ T5060] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 242.037755][ T5060] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 242.120595][ T5067] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 242.127983][ T5067] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 242.154331][ T5067] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 242.196934][ T5061] Bluetooth: hci0: command tx timeout [ 242.211060][ T5073] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 242.218533][ T5073] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 242.245060][ T5073] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 242.408817][ T5073] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 242.416048][ T5073] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 242.442473][ T5061] Bluetooth: hci1: command tx timeout [ 242.448550][ T5073] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 242.521012][ T5068] hsr_slave_0: entered promiscuous mode [ 242.530620][ T5068] hsr_slave_1: entered promiscuous mode [ 242.562593][ T5064] hsr_slave_0: entered promiscuous mode [ 242.573587][ T5064] hsr_slave_1: entered promiscuous mode [ 242.582649][ T5064] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 242.591038][ T5064] Cannot create hsr debugfs directory [ 242.708850][ T5067] hsr_slave_0: entered promiscuous mode [ 242.718693][ T5067] hsr_slave_1: entered promiscuous mode [ 242.727568][ T5067] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 242.735366][ T5067] Cannot create hsr debugfs directory [ 242.760202][ T5061] Bluetooth: hci2: command tx timeout [ 242.766912][ T5061] Bluetooth: hci3: command tx timeout [ 242.919922][ T5061] Bluetooth: hci4: command tx timeout [ 242.946218][ T5060] hsr_slave_0: entered promiscuous mode [ 242.956836][ T5060] hsr_slave_1: entered promiscuous mode [ 242.964991][ T5060] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 242.972888][ T5060] Cannot create hsr debugfs directory [ 243.235703][ T5073] hsr_slave_0: entered promiscuous mode [ 243.247109][ T5073] hsr_slave_1: entered promiscuous mode [ 243.255713][ T5073] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 243.263694][ T5073] Cannot create hsr debugfs directory [ 244.243244][ T5068] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 244.288295][ T5061] Bluetooth: hci0: command tx timeout [ 244.316312][ T5068] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 244.352861][ T5068] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 244.386884][ T5068] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 244.507142][ T5067] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 244.534378][ T5061] Bluetooth: hci1: command tx timeout [ 244.558816][ T5067] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 244.603179][ T5067] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 244.644368][ T5067] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 244.741294][ T5064] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 244.806963][ T5064] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 244.844377][ T5061] Bluetooth: hci3: command tx timeout [ 244.848617][ T4427] Bluetooth: hci2: command tx timeout [ 244.910247][ T5064] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 244.939443][ T5064] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 245.086331][ T4427] Bluetooth: hci4: command tx timeout [ 245.100062][ T5073] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 245.124280][ T5073] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 245.208097][ T5073] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 245.311306][ T5073] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 245.340317][ T5060] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 245.434281][ T5060] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 245.482342][ T5060] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 245.584432][ T5060] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 246.079519][ T5068] 8021q: adding VLAN 0 to HW filter on device bond0 [ 246.186137][ T5067] 8021q: adding VLAN 0 to HW filter on device bond0 [ 246.381509][ T5068] 8021q: adding VLAN 0 to HW filter on device team0 [ 246.454487][ T5067] 8021q: adding VLAN 0 to HW filter on device team0 [ 246.579138][ T4675] bridge0: port 1(bridge_slave_0) entered blocking state [ 246.587085][ T4675] bridge0: port 1(bridge_slave_0) entered forwarding state [ 246.630640][ T4675] bridge0: port 2(bridge_slave_1) entered blocking state [ 246.639039][ T4675] bridge0: port 2(bridge_slave_1) entered forwarding state [ 246.724638][ T5064] 8021q: adding VLAN 0 to HW filter on device bond0 [ 246.820329][ T5073] 8021q: adding VLAN 0 to HW filter on device bond0 [ 246.858388][ T4675] bridge0: port 1(bridge_slave_0) entered blocking state [ 246.865988][ T4675] bridge0: port 1(bridge_slave_0) entered forwarding state [ 246.893242][ T4675] bridge0: port 2(bridge_slave_1) entered blocking state [ 246.901060][ T4675] bridge0: port 2(bridge_slave_1) entered forwarding state [ 247.035339][ T5064] 8021q: adding VLAN 0 to HW filter on device team0 [ 247.245872][ T5073] 8021q: adding VLAN 0 to HW filter on device team0 [ 247.320936][ T4675] bridge0: port 1(bridge_slave_0) entered blocking state [ 247.328805][ T4675] bridge0: port 1(bridge_slave_0) entered forwarding state [ 247.475784][ T4675] bridge0: port 2(bridge_slave_1) entered blocking state [ 247.483738][ T4675] bridge0: port 2(bridge_slave_1) entered forwarding state [ 247.507079][ T4675] bridge0: port 1(bridge_slave_0) entered blocking state [ 247.514661][ T4675] bridge0: port 1(bridge_slave_0) entered forwarding state [ 247.648687][ T5060] 8021q: adding VLAN 0 to HW filter on device bond0 [ 247.713566][ T5114] bridge0: port 2(bridge_slave_1) entered blocking state [ 247.721492][ T5114] bridge0: port 2(bridge_slave_1) entered forwarding state [ 247.973657][ T5064] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 248.156472][ T5060] 8021q: adding VLAN 0 to HW filter on device team0 [ 248.172997][ T5073] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 248.270819][ T5114] bridge0: port 1(bridge_slave_0) entered blocking state [ 248.278831][ T5114] bridge0: port 1(bridge_slave_0) entered forwarding state [ 248.439387][ T5114] bridge0: port 2(bridge_slave_1) entered blocking state [ 248.447332][ T5114] bridge0: port 2(bridge_slave_1) entered forwarding state [ 248.764331][ T5060] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 249.928298][ T5067] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 250.193153][ T5068] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 250.275227][ T5064] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 250.544559][ T5073] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 250.720003][ T5067] veth0_vlan: entered promiscuous mode [ 250.823427][ T5068] veth0_vlan: entered promiscuous mode [ 250.923196][ T5067] veth1_vlan: entered promiscuous mode [ 250.984705][ T5060] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 250.995215][ T5068] veth1_vlan: entered promiscuous mode [ 251.091327][ T5064] veth0_vlan: entered promiscuous mode [ 251.242621][ T5064] veth1_vlan: entered promiscuous mode [ 251.470191][ T5067] veth0_macvtap: entered promiscuous mode [ 251.608269][ T5068] veth0_macvtap: entered promiscuous mode [ 251.675187][ T5067] veth1_macvtap: entered promiscuous mode [ 251.738604][ T5068] veth1_macvtap: entered promiscuous mode [ 251.766599][ T5064] veth0_macvtap: entered promiscuous mode [ 251.819350][ T5060] veth0_vlan: entered promiscuous mode [ 251.847600][ T5064] veth1_macvtap: entered promiscuous mode [ 251.898786][ T5067] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 252.019773][ T5067] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 252.063539][ T5068] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 252.075045][ T5068] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 252.091030][ T5068] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 252.144020][ T5067] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 252.153333][ T5067] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 252.163860][ T5067] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 252.173038][ T5067] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 252.204199][ T5060] veth1_vlan: entered promiscuous mode [ 252.232351][ T5064] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 252.244695][ T5064] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 252.254973][ T5064] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 252.266805][ T5064] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 252.282413][ T5064] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 252.306138][ T5068] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 252.316971][ T5068] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 252.332275][ T5068] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 252.391724][ T5068] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 252.401095][ T5068] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 252.410349][ T5068] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 252.419589][ T5068] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 252.475494][ T5064] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 252.488224][ T5064] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 252.499616][ T5064] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 252.510437][ T5064] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 252.528666][ T5064] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 252.717277][ T5064] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 252.726383][ T5064] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 252.735838][ T5064] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 252.745126][ T5064] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 252.791363][ T5060] veth0_macvtap: entered promiscuous mode [ 252.881486][ T5060] veth1_macvtap: entered promiscuous mode [ 253.156086][ T5060] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 253.169354][ T5060] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 253.179588][ T5060] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 253.190379][ T5060] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 253.200640][ T5060] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 253.211432][ T5060] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 253.227086][ T5060] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 253.534021][ T5060] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 253.547323][ T5060] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 253.558333][ T5060] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 253.569601][ T5060] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 253.579727][ T5060] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 253.590489][ T5060] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 253.606294][ T5060] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 253.825106][ T5073] veth0_vlan: entered promiscuous mode [ 253.936243][ T5060] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 253.947057][ T5060] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 253.956123][ T5060] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 253.967160][ T5060] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 253.997666][ T5073] veth1_vlan: entered promiscuous mode [ 254.339642][ T5073] veth0_macvtap: entered promiscuous mode [ 254.439741][ T5073] veth1_macvtap: entered promiscuous mode [ 254.665694][ T5073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 254.677627][ T5073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 254.688012][ T5073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 254.698868][ T5073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 254.709084][ T5073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 254.719972][ T5073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 254.730162][ T5073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 254.741039][ T5073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 254.757023][ T5073] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 255.046376][ T5073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 255.059039][ T5073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 255.069895][ T5073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 255.085279][ T5073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 255.097071][ T5073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 255.107853][ T5073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 255.117966][ T5073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 255.128799][ T5073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 255.144447][ T5073] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 255.259331][ T5073] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 255.268618][ T5073] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 255.278164][ T5073] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 255.287431][ T5073] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 259.840275][ T2818] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 259.849681][ T2818] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 260.170615][ T2818] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 260.178701][ T2818] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 260.293494][ T3303] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 260.303665][ T3303] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 260.473454][ T2818] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 260.482929][ T2818] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 260.600831][ T4338] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 260.610596][ T4338] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 260.660833][ T4338] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 260.669158][ T4338] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 executing program 3: socket$inet_tcp(0x2, 0x1, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000500)={0xa, 0x2, 0x0, @empty}, 0x1c) listen(r0, 0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = mq_open(&(0x7f0000000040)='{\\\x00', 0x42, 0x0, 0x0) ioctl$AUTOFS_IOC_PROTOSUBVER(r1, 0x5450, 0x0) executing program 1: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000008007b8af8ff00000000bfa200000000000007020000f8ffffffb703000007ec0000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='ext4_es_find_extent_range_enter\x00'}, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='ext4_es_find_extent_range_enter\x00', r1}, 0x10) mkdir(&(0x7f0000000540)='./file0\x00', 0x0) executing program 0: r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB], &(0x7f0000000040)='syzkaller\x00'}, 0x90) syz_emit_ethernet(0x2a, &(0x7f0000000000)={@remote, @dev, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast}, @address_request}}}}, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x1f4, 0xd50, 0x6558, &(0x7f0000000000)="ff", 0x0, 0x6, 0x300, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffff80fe}, 0x69) executing program 3: r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020217b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000380)=ANY=[@ANYBLOB="54010000100013070000000000000000ac1414aa000000000000000000000000fe8000"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000000003200000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000048000200656362286369706865725f6e756c6c29000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001c001c0044"], 0x154}}, 0x0) executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000540), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000880)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000000000000010000001c00048005000300020000000500080005000000050003000700000008000100ffffffff0800020002"], 0x40}}, 0x0) executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) r1 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setreuid(0x0, r2) bind$netlink(r0, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc) [ 261.886040][ T4410] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 261.895216][ T4410] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 262.318109][ T3980] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 262.326213][ T3980] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 262.339041][ T5255] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list executing program 0: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_merged\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9, 0x12, r0, 0x0) ftruncate(r0, 0x8979) r1 = socket$inet_mptcp(0x2, 0x1, 0x106) getsockopt$inet_mptcp_buf(r1, 0x11c, 0x4, 0x0, &(0x7f00000000c0)) executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff) r2 = socket(0x1, 0x1, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="0107000000000000000007000000080003"], 0x1c}}, 0x0) executing program 3: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0) ioctl$EVIOCSFF(r0, 0x40304580, &(0x7f0000001080)={0x0, 0x0, 0x0, {}, {}, @ramp}) r1 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, 0x0, 0x0) r2 = signalfd4(r1, &(0x7f0000000200)={[0x7fffffffffffffff]}, 0x8, 0x80800) setsockopt$packet_fanout_data(r2, 0x107, 0x16, &(0x7f00000004c0)={0x0, &(0x7f0000000480)}, 0x10) socket$inet_udp(0x2, 0x2, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r3, &(0x7f0000000240)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x3c}}, 0x10) sendmmsg$inet(r3, &(0x7f0000000ec0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000940)=[{&(0x7f0000000580)="1fdefa76cc6f846bf5a6f3b74b198be5210d7013d7c72653914b2d", 0x1b}, {0x0}, {&(0x7f0000000680)="672733c5976ca6c31adb6c24db79c83e9b45d13a8e1ea257366fb3bfa967046e07eece84a260fa004d3fc2b710bbd0b1421980ddc2dfed1b54290769b373e99fbfcdaaf00ddbab81d104994815c477e3cb64d14282eec0e67db26a5ef94dc7a9c740d7e24b53c4b889c8ae93b3fb971ed3a457b112ff61055569604c6232a3c6f9e064f57b9131499992d33412244750adf6e7a3e1bc4db5c02e1bddf4517245abcbb615f1d5ed6ba966ba86992a0a6d170ec160d68df28491389f9f292524216e554ad60419161754391a108b", 0xcd}, {&(0x7f0000000fc0)="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", 0x136}, {&(0x7f0000000840)="bd1e34630b4ca292f82b84c4a2dda6012b5a520087c998", 0x17}, {&(0x7f0000000880)="4da150f029e9613e2b8b1926b973b6ad8f02db2564ae101a31fda0a100884a3abceec83fb42f37acbce48d3985354bdc363938f2622001de5e38cd3af42397b5a4d10974959a35967140bffefc66033b023220430645f0bc8d30a586453126d6ce1a1510fb9a43ec66576977f6588373e73f955955b43a2f2f7de1227f4ae40c57076c9f", 0x84}], 0x6}}, {{0x0, 0x0, &(0x7f0000000e40)=[{&(0x7f0000000b80)="084ffd3da07c337a96aebe60f2612ff7407a38d633d775039b5f7e2f63598b654a09e75576e5f726dfed393f1cdbf39f6800f8364110bed3da6f1ad60deb2a53bbcc7206e6a68a35f19208f1e31e536be6448883988f808b128200809c160133c8fed7ce570b96b9d214ddc03e22a4556ff9e748980354f98fb128a38a5891d09b16604a82ce39ede9d279dbe565b5610f1b284160c0dbb2b034c254c3", 0x9d}, {&(0x7f0000000b00)="de1c9ef2adac68171410bc2102735b1eea0d317b28dbf47a3bdd344ecc95619d76c429592722b3f288675290fb8052f9e3dab25724", 0x35}], 0x2}}], 0x3, 0x2000c044) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="18010000007b00000000000000000000850000007b00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f00000002c0)='netlink_extack\x00', r4}, 0x10) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r5, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=@deltaction={0x24, 0x31, 0x1, 0x0, 0x0, {}, [@TCA_ACT_TAB={0x10, 0x1, [{0xc, 0x1, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}]}]}, 0x24}}, 0x0) sendto$inet(r3, &(0x7f0000000c80)="e8", 0x6200, 0x0, 0x0, 0x0) dup3(r3, r1, 0x0) bind$inet(0xffffffffffffffff, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x4, &(0x7f0000000180)={0x2, 0x4e22, @broadcast}, 0x10) socket$nl_route(0x10, 0x3, 0x0) socket(0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240), 0x48}}, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000300)='/proc/asound/timers\x00', 0x0, 0x0) executing program 2: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) sendmsg(r0, &(0x7f0000000240)={&(0x7f0000000080)=@l2tp6={0xa, 0x0, 0x0, @private1}, 0x80, &(0x7f0000000200)=[{&(0x7f0000000100)='e', 0x1}], 0x1, &(0x7f0000000ac0)=[{0x10}, {0x10, 0x84, 0x7}], 0x20}, 0x0) executing program 1: socket$pppl2tp(0x18, 0x1, 0x1) socket$inet6_udp(0xa, 0x2, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/input/handlers\x00', 0x0, 0x0) r1 = socket$vsock_stream(0x28, 0x1, 0x0) bind$vsock_stream(r1, &(0x7f0000000440), 0x10) listen(r1, 0x0) r2 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r2, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10) writev(r2, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x1}], 0x1) close_range(r0, 0xffffffffffffffff, 0x0) executing program 0: open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_open_pts(0xffffffffffffffff, 0x0) ioctl$TIOCCONS(0xffffffffffffffff, 0x80047462) select(0x0, 0x0, 0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) setsockopt(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r0 = socket(0x2, 0x3, 0xfe) r1 = socket(0x2, 0x2, 0x0) r2 = dup(r1) setsockopt$inet_opts(r2, 0x0, 0x22, &(0x7f0000000040)="fd0cc085", 0x4) dup2(r2, r0) syz_emit_ethernet(0x138, &(0x7f0000000000)=ANY=[@ANYBLOB="ff02"], 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) connect$unix(r0, &(0x7f0000000000), 0x10) write(r1, 0x0, 0x0) [ 263.439813][ T2803] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 263.448238][ T2803] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 executing program 2: r0 = socket$tipc(0x1e, 0x2, 0x0) ppoll(&(0x7f0000000200)=[{r0}], 0x1, 0x0, 0x0, 0x0) [ 263.791040][ T5123] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 263.799953][ T5123] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 executing program 3: r0 = eventfd2(0x0, 0x0) read(r0, &(0x7f00000002c0)=""/171, 0xab) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) writev(r0, &(0x7f0000000840)=[{&(0x7f0000000140)=' \x00\x00\x00\x00\x00\x00\x00', 0x8}, {0x0}], 0x2) executing program 4: r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r2) sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x1c, r3, 0x1, 0x0, 0x0, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r1}]}, 0x1c}}, 0x0) write$nci(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="6103200000810d"], 0xa) [ 264.578375][ T4410] nci: nci_rf_discover_ntf_packet: unsupported rf_tech_and_mode 0x81 [ 264.587659][ T4410] ===================================================== [ 264.595074][ T4410] BUG: KMSAN: uninit-value in nci_ntf_packet+0x2ac8/0x39c0 [ 264.606366][ T4410] nci_ntf_packet+0x2ac8/0x39c0 [ 264.612677][ T4410] nci_rx_work+0x288/0x5d0 [ 264.617433][ T4410] process_scheduled_works+0xa81/0x1bd0 [ 264.623252][ T4410] worker_thread+0xea5/0x1560 [ 264.628277][ T4410] kthread+0x3e2/0x540 [ 264.632586][ T4410] ret_from_fork+0x6d/0x90 [ 264.637409][ T4410] ret_from_fork_asm+0x1a/0x30 [ 264.642443][ T4410] [ 264.644888][ T4410] Uninit was created at: [ 264.649728][ T4410] kmem_cache_alloc_node+0x622/0xc90 [ 264.655283][ T4410] kmalloc_reserve+0x13d/0x4a0 [ 264.660456][ T4410] __alloc_skb+0x35b/0x7a0 [ 264.665292][ T4410] virtual_ncidev_write+0x6d/0x290 [ 264.670873][ T4410] vfs_write+0x49b/0x1520 [ 264.675460][ T4410] ksys_write+0x20f/0x4c0 [ 264.680329][ T4410] __x64_sys_write+0x93/0xe0 [ 264.685169][ T4410] x64_sys_call+0x3062/0x3b50 [ 264.690231][ T4410] do_syscall_64+0xcf/0x1e0 [ 264.695035][ T4410] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 264.705237][ T4410] [ 264.708855][ T4410] CPU: 0 PID: 4410 Comm: kworker/u8:29 Not tainted 6.9.0-rc7-syzkaller-00056-g45db3ab70092 #0 [ 264.719511][ T4410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 264.730007][ T4410] Workqueue: nfc2_nci_rx_wq nci_rx_work [ 264.735816][ T4410] ===================================================== [ 264.743687][ T4410] Disabling lock debugging due to kernel taint [ 264.750050][ T4410] Kernel panic - not syncing: kmsan.panic set ... [ 264.756605][ T4410] CPU: 0 PID: 4410 Comm: kworker/u8:29 Tainted: G B 6.9.0-rc7-syzkaller-00056-g45db3ab70092 #0 [ 264.768565][ T4410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 264.778821][ T4410] Workqueue: nfc2_nci_rx_wq nci_rx_work [ 264.784657][ T4410] Call Trace: [ 264.788079][ T4410] [ 264.791139][ T4410] dump_stack_lvl+0x216/0x2d0 [ 264.796073][ T4410] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 264.802128][ T4410] dump_stack+0x1e/0x30 [ 264.806509][ T4410] panic+0x4e2/0xcd0 [ 264.810698][ T4410] ? kmsan_get_metadata+0x51/0x1d0 [ 264.816066][ T4410] kmsan_report+0x2d5/0x2e0 [ 264.820825][ T4410] ? __msan_warning+0x95/0x120 [ 264.825883][ T4410] ? nci_ntf_packet+0x2ac8/0x39c0 [ 264.831133][ T4410] ? nci_rx_work+0x288/0x5d0 [ 264.836009][ T4410] ? process_scheduled_works+0xa81/0x1bd0 [ 264.841986][ T4410] ? worker_thread+0xea5/0x1560 [ 264.847097][ T4410] ? kthread+0x3e2/0x540 [ 264.851602][ T4410] ? ret_from_fork+0x6d/0x90 [ 264.856417][ T4410] ? ret_from_fork_asm+0x1a/0x30 [ 264.861619][ T4410] ? vprintk_emit+0xae2/0xbc0 [ 264.866608][ T4410] ? kmsan_get_metadata+0x146/0x1d0 [ 264.872050][ T4410] ? vprintk_default+0x3e/0x50 [ 264.877094][ T4410] ? vprintk+0xee/0xf0 [ 264.881377][ T4410] ? _printk+0x157/0x190 [ 264.885828][ T4410] ? kmsan_get_metadata+0x146/0x1d0 [ 264.891214][ T4410] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 264.897219][ T4410] __msan_warning+0x95/0x120 [ 264.902033][ T4410] nci_ntf_packet+0x2ac8/0x39c0 [ 264.907077][ T4410] ? kmsan_get_metadata+0x146/0x1d0 [ 264.912480][ T4410] ? kmsan_internal_set_shadow_origin+0x66/0xe0 [ 264.918975][ T4410] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 264.925385][ T4410] nci_rx_work+0x288/0x5d0 [ 264.931245][ T4410] ? __pfx_nci_rx_work+0x10/0x10 [ 264.936437][ T4410] process_scheduled_works+0xa81/0x1bd0 [ 264.942251][ T4410] worker_thread+0xea5/0x1560 [ 264.947137][ T4410] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 264.953161][ T4410] kthread+0x3e2/0x540 [ 264.957440][ T4410] ? __pfx_worker_thread+0x10/0x10 [ 264.962757][ T4410] ? __pfx_kthread+0x10/0x10 [ 264.967559][ T4410] ret_from_fork+0x6d/0x90 [ 264.972192][ T4410] ? __pfx_kthread+0x10/0x10 [ 264.976986][ T4410] ret_from_fork_asm+0x1a/0x30 [ 264.981978][ T4410] [ 264.985457][ T4410] Kernel Offset: disabled [ 264.989859][ T4410] Rebooting in 86400 seconds..