[ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.112' (ECDSA) to the list of known hosts. 2021/01/13 21:55:16 fuzzer started 2021/01/13 21:55:16 dialing manager at 10.128.0.26:43403 2021/01/13 21:55:16 syscalls: 3495 2021/01/13 21:55:16 code coverage: enabled 2021/01/13 21:55:16 comparison tracing: enabled 2021/01/13 21:55:16 extra coverage: enabled 2021/01/13 21:55:16 setuid sandbox: enabled 2021/01/13 21:55:16 namespace sandbox: enabled 2021/01/13 21:55:16 Android sandbox: /sys/fs/selinux/policy does not exist 2021/01/13 21:55:16 fault injection: enabled 2021/01/13 21:55:16 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2021/01/13 21:55:16 net packet injection: enabled 2021/01/13 21:55:16 net device setup: enabled 2021/01/13 21:55:16 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2021/01/13 21:55:16 devlink PCI setup: PCI device 0000:00:10.0 is not available 2021/01/13 21:55:16 USB emulation: enabled 2021/01/13 21:55:16 hci packet injection: enabled 2021/01/13 21:55:16 wifi device emulation: enabled 2021/01/13 21:55:16 fetching corpus: 0, signal 0/0 (executing program) 2021/01/13 21:55:16 fetching corpus: 1, signal 140/140 (executing program) 2021/01/13 21:55:16 fetching corpus: 1, signal 140/140 (executing program) 2021/01/13 21:55:18 starting 6 fuzzer processes 21:55:18 executing program 0: openat$mice(0xffffffffffffff9c, &(0x7f0000000180)='/dev/input/mice\x00', 0x24000) 21:55:19 executing program 1: r0 = eventfd2(0x386c97ae, 0x0) read$eventfd(r0, &(0x7f0000000080), 0x8) 21:55:19 executing program 2: r0 = socket$l2tp6(0x2, 0x2, 0x73) getsockname$l2tp6(r0, &(0x7f0000000000), &(0x7f0000000040)=0xfffffffffffffe5a) 21:55:19 executing program 3: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000480)='/dev/mixer\x00', 0x0, 0x0) mmap$dsp(&(0x7f0000ff5000/0x8000)=nil, 0x8000, 0x4, 0x2010, r0, 0x0) 21:55:19 executing program 4: syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f00000000c0)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep1(0xffffffffffffffff, 0x82, 0x0, 0x0) 21:55:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, 0x0) syzkaller login: [ 53.540075][ T8478] IPVS: ftp: loaded support on port[0] = 21 [ 53.701360][ T8478] chnl_net:caif_netlink_parms(): no params data found [ 53.777363][ T8480] IPVS: ftp: loaded support on port[0] = 21 [ 53.836491][ T8478] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.843938][ T8478] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.851914][ T8478] device bridge_slave_0 entered promiscuous mode [ 53.865501][ T8478] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.872649][ T8478] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.882439][ T8478] device bridge_slave_1 entered promiscuous mode [ 53.966069][ T8482] IPVS: ftp: loaded support on port[0] = 21 [ 54.018219][ T8478] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 54.078291][ T8478] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 54.118517][ T8478] team0: Port device team_slave_0 added [ 54.135451][ T8480] chnl_net:caif_netlink_parms(): no params data found [ 54.151830][ T8478] team0: Port device team_slave_1 added [ 54.252368][ T8484] IPVS: ftp: loaded support on port[0] = 21 [ 54.270353][ T8478] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 54.278224][ T8478] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 54.304201][ T8478] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 54.337298][ T8478] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 54.345082][ T8478] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 54.372577][ T8478] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 54.453901][ T8480] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.461106][ T8480] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.472083][ T8480] device bridge_slave_0 entered promiscuous mode [ 54.481915][ T8480] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.490046][ T8480] bridge0: port 2(bridge_slave_1) entered disabled state [ 54.500656][ T8480] device bridge_slave_1 entered promiscuous mode [ 54.620315][ T8486] IPVS: ftp: loaded support on port[0] = 21 [ 54.674842][ T8478] device hsr_slave_0 entered promiscuous mode [ 54.693347][ T8478] device hsr_slave_1 entered promiscuous mode [ 54.717458][ T8482] chnl_net:caif_netlink_parms(): no params data found [ 54.811062][ T8480] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 54.884271][ T8480] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 54.887414][ T8499] IPVS: ftp: loaded support on port[0] = 21 [ 55.032260][ T8480] team0: Port device team_slave_0 added [ 55.050490][ T8484] chnl_net:caif_netlink_parms(): no params data found [ 55.091450][ T8480] team0: Port device team_slave_1 added [ 55.234695][ T8480] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 55.241811][ T8480] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 55.269651][ T8480] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 55.281881][ T8482] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.289680][ T8482] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.299024][ T8482] device bridge_slave_0 entered promiscuous mode [ 55.314232][ T8482] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.321668][ T8482] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.330427][ T8482] device bridge_slave_1 entered promiscuous mode [ 55.361439][ T8480] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 55.368882][ T8480] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 55.396704][ T8480] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 55.421497][ T8482] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 55.459622][ T8482] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 55.473642][ T3187] Bluetooth: hci0: command 0x0409 tx timeout [ 55.503740][ T8482] team0: Port device team_slave_0 added [ 55.509869][ T8484] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.519857][ T8484] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.529250][ T8484] device bridge_slave_0 entered promiscuous mode [ 55.566326][ T8480] device hsr_slave_0 entered promiscuous mode [ 55.576570][ T8480] device hsr_slave_1 entered promiscuous mode [ 55.583755][ T8480] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 55.591548][ T8480] Cannot create hsr debugfs directory [ 55.599493][ T8482] team0: Port device team_slave_1 added [ 55.606874][ T8484] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.615201][ T8484] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.624706][ T8484] device bridge_slave_1 entered promiscuous mode [ 55.713258][ T4164] Bluetooth: hci1: command 0x0409 tx timeout [ 55.745731][ T8482] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 55.753448][ T8482] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 55.780306][ T8482] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 55.799312][ T8482] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 55.806616][ T8482] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 55.833034][ T8482] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 55.867495][ T8484] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 55.898858][ T8486] chnl_net:caif_netlink_parms(): no params data found [ 55.915939][ T8499] chnl_net:caif_netlink_parms(): no params data found [ 55.930104][ T8484] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 55.955386][ T4164] Bluetooth: hci2: command 0x0409 tx timeout [ 56.010192][ T8482] device hsr_slave_0 entered promiscuous mode [ 56.017770][ T8482] device hsr_slave_1 entered promiscuous mode [ 56.028726][ T8482] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 56.038369][ T8482] Cannot create hsr debugfs directory [ 56.050869][ T8478] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 56.069355][ T8478] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 56.094598][ T8484] team0: Port device team_slave_0 added [ 56.129460][ T8478] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 56.165192][ T8484] team0: Port device team_slave_1 added [ 56.179964][ T8478] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 56.206653][ T4164] Bluetooth: hci3: command 0x0409 tx timeout [ 56.259055][ T8484] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 56.266501][ T8484] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 56.294385][ T8484] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 56.313764][ T8499] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.321043][ T8499] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.330278][ T8499] device bridge_slave_0 entered promiscuous mode [ 56.348435][ T8499] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.356046][ T8499] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.364785][ T8499] device bridge_slave_1 entered promiscuous mode [ 56.386766][ T8484] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 56.396359][ T8484] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 56.423812][ T8484] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 56.432579][ T2997] Bluetooth: hci4: command 0x0409 tx timeout [ 56.478044][ T8499] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 56.506906][ T8486] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.514381][ T8486] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.522247][ T8486] device bridge_slave_0 entered promiscuous mode [ 56.535834][ T8499] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 56.562503][ T8484] device hsr_slave_0 entered promiscuous mode [ 56.569902][ T8484] device hsr_slave_1 entered promiscuous mode [ 56.576854][ T8484] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 56.585279][ T8484] Cannot create hsr debugfs directory [ 56.595020][ T8486] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.602229][ T8486] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.611462][ T8486] device bridge_slave_1 entered promiscuous mode [ 56.657970][ T8486] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 56.669716][ T8486] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 56.685665][ T8499] team0: Port device team_slave_0 added [ 56.739291][ T8499] team0: Port device team_slave_1 added [ 56.755862][ T2997] Bluetooth: hci5: command 0x0409 tx timeout [ 56.774333][ T8486] team0: Port device team_slave_0 added [ 56.781254][ T8480] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 56.810488][ T8486] team0: Port device team_slave_1 added [ 56.828133][ T8480] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 56.847142][ T8480] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 56.867493][ T8480] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 56.890160][ T8486] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 56.897880][ T8486] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 56.925047][ T8486] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 56.941127][ T8499] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 56.949215][ T8499] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 56.975395][ T8499] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 56.990157][ T8499] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 56.997938][ T8499] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 57.025171][ T8499] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 57.050077][ T8486] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 57.057140][ T8486] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 57.086693][ T8486] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 57.125086][ T8482] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 57.168705][ T8482] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 57.186385][ T8482] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 57.217947][ T8486] device hsr_slave_0 entered promiscuous mode [ 57.225584][ T8486] device hsr_slave_1 entered promiscuous mode [ 57.232401][ T8486] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 57.239971][ T8486] Cannot create hsr debugfs directory [ 57.255149][ T8482] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 57.275033][ T8499] device hsr_slave_0 entered promiscuous mode [ 57.281830][ T8499] device hsr_slave_1 entered promiscuous mode [ 57.289562][ T8499] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 57.298237][ T8499] Cannot create hsr debugfs directory [ 57.307185][ T8478] 8021q: adding VLAN 0 to HW filter on device bond0 [ 57.408056][ T8478] 8021q: adding VLAN 0 to HW filter on device team0 [ 57.444317][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 57.454708][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 57.497897][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 57.508815][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.518516][ T7] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.525806][ T7] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.539671][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 57.554604][ T8484] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 57.561655][ T4164] Bluetooth: hci0: command 0x041b tx timeout [ 57.605853][ T2997] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 57.615476][ T2997] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 57.624401][ T2997] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.631486][ T2997] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.640527][ T2997] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 57.657060][ T8484] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 57.711591][ T8484] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 57.738770][ T8484] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 57.772569][ T9728] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 57.781809][ T9728] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 57.797916][ T9728] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 57.807014][ T9728] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 57.820896][ T9728] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 57.829909][ T9728] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 57.838897][ T9728] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 57.855056][ T9728] Bluetooth: hci1: command 0x041b tx timeout [ 57.869983][ T8480] 8021q: adding VLAN 0 to HW filter on device bond0 [ 57.883454][ T8478] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 57.895681][ T8478] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 57.909237][ T9728] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 57.922230][ T9728] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 57.930781][ T9728] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 58.016275][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 58.025860][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 58.032435][ T2997] Bluetooth: hci2: command 0x041b tx timeout [ 58.036530][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 58.047799][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 58.061400][ T8482] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.073694][ T8486] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 58.088752][ T8486] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 58.100742][ T8486] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 58.112863][ T8480] 8021q: adding VLAN 0 to HW filter on device team0 [ 58.129975][ T8478] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 58.157679][ T8486] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 58.178975][ T8482] 8021q: adding VLAN 0 to HW filter on device team0 [ 58.220558][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 58.229129][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 58.238333][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 58.247639][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 58.257014][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 58.266431][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 58.272463][ T2997] Bluetooth: hci3: command 0x041b tx timeout [ 58.275601][ T7] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.287636][ T7] bridge0: port 1(bridge_slave_0) entered forwarding state [ 58.296400][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 58.305759][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 58.314471][ T7] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.321516][ T7] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.364608][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 58.373774][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 58.383652][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 58.394253][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 58.403500][ T5] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.410576][ T5] bridge0: port 1(bridge_slave_0) entered forwarding state [ 58.419936][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 58.429155][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 58.438488][ T5] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.445663][ T5] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.453810][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 58.463052][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 58.471198][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 58.480219][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 58.489591][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 58.499002][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 58.509123][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 58.512255][ T2997] Bluetooth: hci4: command 0x041b tx timeout [ 58.517696][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 58.531197][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 58.539485][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 58.549503][ T8478] device veth0_vlan entered promiscuous mode [ 58.559079][ T8499] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 58.571665][ T8499] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 58.581398][ T8499] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 58.591775][ T8499] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 58.608160][ T8484] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.633903][ T2997] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 58.643061][ T2997] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 58.651661][ T2997] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 58.674557][ T2997] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 58.688556][ T2997] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 58.697189][ T2997] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 58.711242][ T2997] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 58.720508][ T2997] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 58.729885][ T2997] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 58.738729][ T2997] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 58.758048][ T8478] device veth1_vlan entered promiscuous mode [ 58.780385][ T8482] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 58.795932][ T9728] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 58.804368][ T9728] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 58.813276][ T9728] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 58.822598][ T9728] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 58.830966][ T9728] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 58.840452][ T9728] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 58.849641][ T9728] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 58.858629][ T9728] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 58.867434][ T9728] Bluetooth: hci5: command 0x041b tx timeout [ 58.908974][ T8480] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 58.924496][ T8484] 8021q: adding VLAN 0 to HW filter on device team0 [ 58.931733][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 58.940588][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 58.975064][ T8478] device veth0_macvtap entered promiscuous mode [ 59.015767][ T8478] device veth1_macvtap entered promiscuous mode [ 59.024833][ T2997] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 59.035335][ T2997] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 59.045249][ T2997] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 59.054698][ T2997] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 59.064378][ T2997] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 59.075024][ T2997] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.082180][ T2997] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.089793][ T2997] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 59.098964][ T2997] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 59.108027][ T2997] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.115205][ T2997] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.123576][ T2997] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 59.131563][ T2997] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 59.139452][ T2997] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 59.147190][ T2997] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 59.155707][ T2997] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 59.164268][ T2997] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 59.185573][ T8482] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 59.197051][ T9728] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 59.224942][ T8478] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 59.245393][ T8478] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 59.255271][ T8486] 8021q: adding VLAN 0 to HW filter on device bond0 [ 59.269830][ T8480] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 59.282675][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 59.291245][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 59.300752][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 59.309729][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 59.319515][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 59.328596][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 59.337698][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 59.364476][ T8478] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.374136][ T8478] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.390407][ T8478] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.403539][ T8478] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.436106][ T5] ================================================================================ [ 59.445656][ T5] UBSAN: object-size-mismatch in ./include/linux/skbuff.h:2021:28 [ 59.453732][ T5] member access within address 000000001aa33d98 with insufficient space [ 59.462162][ T5] for an object of type 'struct sk_buff' [ 59.467820][ T5] CPU: 0 PID: 5 Comm: kworker/0:0 Not tainted 5.10.0-syzkaller #0 [ 59.475702][ T5] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 59.485798][ T5] Workqueue: ipv6_addrconf addrconf_dad_work [ 59.491781][ T5] Call Trace: [ 59.495068][ T5] dump_stack+0x137/0x1be [ 59.499393][ T5] ? wake_up_klogd+0xb2/0xf0 [ 59.503993][ T5] ubsan_type_mismatch_common+0x1e2/0x390 [ 59.509822][ T5] __ubsan_handle_type_mismatch_v1+0x41/0x50 [ 59.515801][ T5] wg_xmit+0x45d/0xdf0 [ 59.519910][ T5] netdev_start_xmit+0x7b/0x140 [ 59.524776][ T5] dev_hard_start_xmit+0x182/0x2e0 [ 59.530001][ T5] __dev_queue_xmit+0x1229/0x1e60 [ 59.535060][ T5] ip6_finish_output2+0xe8d/0x11e0 [ 59.540284][ T5] ? __ip6_finish_output+0x26b/0x390 [ 59.545661][ T5] ndisc_send_skb+0x85b/0xc70 [ 59.550365][ T5] addrconf_dad_completed+0x5ef/0x990 [ 59.555750][ T5] addrconf_dad_work+0xb92/0x1480 [ 59.560799][ T5] ? rcu_read_lock_sched_held+0x62/0x100 [ 59.566464][ T5] process_one_work+0x471/0x830 [ 59.571323][ T5] worker_thread+0x757/0xb10 [ 59.575917][ T5] ? pr_cont_work+0x100/0x100 [ 59.580574][ T5] kthread+0x39a/0x3c0 [ 59.585378][ T5] ? pr_cont_work+0x100/0x100 [ 59.590223][ T5] ? __list_add+0xc0/0xc0 [ 59.594647][ T5] ret_from_fork+0x1f/0x30 [ 59.599150][ T5] ================================================================================ [ 59.608480][ T5] Kernel panic - not syncing: panic_on_warn set ... [ 59.615081][ T5] CPU: 0 PID: 5 Comm: kworker/0:0 Not tainted 5.10.0-syzkaller #0 [ 59.622887][ T5] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 59.632187][ T4164] Bluetooth: hci0: command 0x040f tx timeout [ 59.633069][ T5] Workqueue: ipv6_addrconf addrconf_dad_work [ 59.645020][ T5] Call Trace: [ 59.648323][ T5] dump_stack+0x137/0x1be [ 59.652663][ T5] ? panic+0x226/0x830 [ 59.657004][ T5] panic+0x2e3/0x830 [ 59.660909][ T5] ? ubsan_type_mismatch_common+0x206/0x390 [ 59.666811][ T5] ubsan_type_mismatch_common+0x388/0x390 [ 59.672557][ T5] __ubsan_handle_type_mismatch_v1+0x41/0x50 [ 59.678559][ T5] wg_xmit+0x45d/0xdf0 [ 59.682697][ T5] netdev_start_xmit+0x7b/0x140 [ 59.687560][ T5] dev_hard_start_xmit+0x182/0x2e0 [ 59.692706][ T5] __dev_queue_xmit+0x1229/0x1e60 [ 59.697776][ T5] ip6_finish_output2+0xe8d/0x11e0 [ 59.702919][ T5] ? __ip6_finish_output+0x26b/0x390 [ 59.708303][ T5] ndisc_send_skb+0x85b/0xc70 [ 59.713027][ T5] addrconf_dad_completed+0x5ef/0x990 [ 59.718464][ T5] addrconf_dad_work+0xb92/0x1480 [ 59.723606][ T5] ? rcu_read_lock_sched_held+0x62/0x100 [ 59.729253][ T5] process_one_work+0x471/0x830 [ 59.734143][ T5] worker_thread+0x757/0xb10 [ 59.738771][ T5] ? pr_cont_work+0x100/0x100 [ 59.743468][ T5] kthread+0x39a/0x3c0 [ 59.747806][ T5] ? pr_cont_work+0x100/0x100 [ 59.752493][ T5] ? __list_add+0xc0/0xc0 [ 59.756846][ T5] ret_from_fork+0x1f/0x30 [ 59.762409][ T5] Kernel Offset: disabled [ 59.766958][ T5] Rebooting in 86400 seconds..