forked to background, child pid 3048 no interfaces have a carrier [ 64.017858][ T3049] 8021q: adding VLAN 0 to HW filter on device bond0 [ 64.063657][ T3049] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller syzkaller login: [ 95.133069][ T33] cfg80211: failed to load regulatory.db Warning: Permanently added '10.128.10.38' (ECDSA) to the list of known hosts. 2022/03/09 00:50:55 parsed 1 programs [ 200.668423][ T3489] cgroup: Unknown subsys name 'net' [ 200.803484][ T3489] cgroup: Unknown subsys name 'rlimit' 2022/03/09 00:50:56 executed programs: 0 [ 202.336057][ T3502] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 202.344112][ T3502] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 202.352184][ T3502] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 202.361215][ T3502] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 202.370186][ T3502] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 202.378093][ T3502] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 202.521097][ T3508] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 202.528798][ T3508] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 202.537033][ T3508] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 202.546582][ T3510] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 202.554633][ T3510] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 202.562915][ T3510] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 202.573184][ T3511] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 202.580608][ T3508] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 202.588278][ T3508] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 202.600371][ T3511] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 202.610077][ T3511] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 202.619542][ T3511] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 202.622764][ T3510] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 202.629456][ T3505] chnl_net:caif_netlink_parms(): no params data found [ 202.634074][ T3510] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 202.654191][ T3510] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 202.661740][ T3510] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 202.694122][ T3510] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 202.694783][ T43] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 202.701392][ T3510] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 202.739144][ T3504] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 202.749399][ T3504] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 202.754861][ T3516] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 202.766707][ T3516] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 202.767906][ T3504] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 202.774654][ T3516] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 202.790614][ T3504] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 202.799142][ T3504] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 202.810462][ T3504] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 202.820185][ T3504] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 202.844807][ T3504] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 203.331473][ T3505] bridge0: port 1(bridge_slave_0) entered blocking state [ 203.338969][ T3505] bridge0: port 1(bridge_slave_0) entered disabled state [ 203.348231][ T3505] device bridge_slave_0 entered promiscuous mode [ 203.366318][ T3505] bridge0: port 2(bridge_slave_1) entered blocking state [ 203.373722][ T3505] bridge0: port 2(bridge_slave_1) entered disabled state [ 203.383160][ T3505] device bridge_slave_1 entered promiscuous mode [ 203.417021][ T3518] chnl_net:caif_netlink_parms(): no params data found [ 203.508952][ T3505] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 203.590465][ T3505] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 203.690818][ T3505] team0: Port device team_slave_0 added [ 203.720907][ T3505] team0: Port device team_slave_1 added [ 203.864261][ T3505] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 203.871321][ T3505] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 203.897581][ T3505] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 203.909283][ T3515] chnl_net:caif_netlink_parms(): no params data found [ 203.968205][ T3505] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 203.975616][ T3505] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 204.002169][ T3505] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 204.139805][ T3520] chnl_net:caif_netlink_parms(): no params data found [ 204.161510][ T3505] device hsr_slave_0 entered promiscuous mode [ 204.170190][ T3505] device hsr_slave_1 entered promiscuous mode [ 204.358122][ T3518] bridge0: port 1(bridge_slave_0) entered blocking state [ 204.365983][ T3518] bridge0: port 1(bridge_slave_0) entered disabled state [ 204.375285][ T3518] device bridge_slave_0 entered promiscuous mode [ 204.390427][ T3518] bridge0: port 2(bridge_slave_1) entered blocking state [ 204.397788][ T3518] bridge0: port 2(bridge_slave_1) entered disabled state [ 204.407174][ T3518] device bridge_slave_1 entered promiscuous mode [ 204.411999][ T33] Bluetooth: hci0: command 0x0409 tx timeout [ 204.417850][ T3517] chnl_net:caif_netlink_parms(): no params data found [ 204.593457][ T3518] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 204.638615][ T3518] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 204.732556][ T1018] Bluetooth: hci2: command 0x0409 tx timeout [ 204.735888][ T33] Bluetooth: hci3: command 0x0409 tx timeout [ 204.745385][ T3522] chnl_net:caif_netlink_parms(): no params data found [ 204.771931][ T33] Bluetooth: hci1: command 0x0409 tx timeout [ 204.781868][ T51] ===================================================== [ 204.788900][ T51] BUG: KMSAN: uninit-value in string+0x3cf/0x6f0 [ 204.795266][ T51] string+0x3cf/0x6f0 [ 204.799283][ T51] vsnprintf+0x2222/0x3650 [ 204.803739][ T51] sprintf+0x214/0x260 [ 204.807842][ T51] batadv_mcast_mla_update+0x4f5b/0x5790 [ 204.813520][ T51] process_one_work+0xdb6/0x1820 [ 204.818523][ T51] worker_thread+0x10b3/0x21e0 [ 204.823330][ T51] kthread+0x3c7/0x500 [ 204.827444][ T51] ret_from_fork+0x1f/0x30 [ 204.831898][ T51] [ 204.834228][ T51] Local variable vfork created at: [ 204.839339][ T51] kernel_clone+0x77/0x1130 [ 204.843853][ T51] kernel_thread+0x17a/0x240 [ 204.848449][ T51] [ 204.850762][ T51] CPU: 0 PID: 51 Comm: kworker/u4:2 Not tainted 5.17.0-rc4-syzkaller #0 [ 204.859097][ T51] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 204.869159][ T51] Workqueue: bat_events batadv_mcast_mla_update [ 204.875429][ T51] ===================================================== [ 204.882350][ T51] Disabling lock debugging due to kernel taint [ 204.889172][ T51] Kernel panic - not syncing: kmsan.panic set ... [ 204.892135][ T3157] Bluetooth: hci4: command 0x0409 tx timeout [ 204.895605][ T51] CPU: 0 PID: 51 Comm: kworker/u4:2 Tainted: G B 5.17.0-rc4-syzkaller #0 [ 204.911361][ T51] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 204.921550][ T51] Workqueue: bat_events batadv_mcast_mla_update [ 204.927819][ T51] Call Trace: [ 204.931093][ T51] [ 204.934026][ T51] dump_stack_lvl+0x1ff/0x28e [ 204.938732][ T51] dump_stack+0x25/0x28 [ 204.942905][ T51] panic+0x487/0xe1f [ 204.946821][ T51] ? add_taint+0x181/0x210 [ 204.951252][ T51] ? _raw_spin_unlock_irqrestore+0x78/0xb0 [ 204.957079][ T51] kmsan_report+0x2e6/0x2f0 [ 204.961624][ T51] ? kmsan_internal_poison_memory+0x45/0xa0 [ 204.967547][ T51] ? ret_from_fork+0x1f/0x30 [ 204.972160][ T51] ? kmsan_get_metadata+0x33/0x220 [ 204.977320][ T51] ? __msan_warning+0xb8/0x130 [ 204.982107][ T51] ? string+0x3cf/0x6f0 [ 204.986275][ T51] ? vsnprintf+0x2222/0x3650 [ 204.990869][ T51] ? sprintf+0x214/0x260 [ 204.995119][ T51] ? batadv_mcast_mla_update+0x4f5b/0x5790 [ 205.000968][ T51] ? process_one_work+0xdb6/0x1820 [ 205.006101][ T51] ? worker_thread+0x10b3/0x21e0 [ 205.011063][ T51] ? kthread+0x3c7/0x500 [ 205.015322][ T51] ? ret_from_fork+0x1f/0x30 [ 205.019954][ T51] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 205.025811][ T51] ? should_fail+0x75/0x9c0 [ 205.030345][ T51] ? memcg_slab_post_alloc_hook+0x34/0xb90 [ 205.036180][ T51] ? kmsan_get_metadata+0x33/0x220 [ 205.041337][ T51] ? __stack_depot_save+0x21/0x4d0 [ 205.046475][ T51] ? kmsan_get_metadata+0x33/0x220 [ 205.051718][ T51] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 205.058015][ T51] ? kmsan_get_metadata+0x33/0x220 [ 205.063166][ T51] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 205.069031][ T51] __msan_warning+0xb8/0x130 [ 205.073657][ T51] string+0x3cf/0x6f0 [ 205.077669][ T51] ? kmsan_get_metadata+0x33/0x220 [ 205.082826][ T51] vsnprintf+0x2222/0x3650 [ 205.087272][ T51] sprintf+0x214/0x260 [ 205.091373][ T51] batadv_mcast_mla_update+0x4f5b/0x5790 [ 205.097047][ T51] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 205.102904][ T51] ? batadv_mcast_tvlv_ogm_handler+0x690/0x690 [ 205.109079][ T51] process_one_work+0xdb6/0x1820 [ 205.114047][ T51] worker_thread+0x10b3/0x21e0 [ 205.118855][ T51] kthread+0x3c7/0x500 [ 205.122964][ T51] ? worker_clr_flags+0x370/0x370 [ 205.128007][ T51] ? kthread_blkcg+0x120/0x120 [ 205.132813][ T51] ret_from_fork+0x1f/0x30 [ 205.137275][ T51] [ 205.140499][ T51] Kernel Offset: disabled [ 205.144833][ T51] Rebooting in 86400 seconds..