DUID 00:04:b3:a3:1d:bd:1c:51:b3:31:90:57:55:31:74:bf:f9:06 forked to background, child pid [ 13.616427][ T4636] 8021q: adding VLAN 0 to HW filter on device bond0 4635 [ 13.626696][ T4636] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller syzkaller login: [ 69.893727][ T72] cfg80211: failed to load regulatory.db Warning: Permanently added '10.128.0.100' (ECDSA) to the list of known hosts. 2022/12/17 21:17:52 ignoring optional flag "sandboxArg"="0" 2022/12/17 21:17:53 parsed 1 programs [ 1097.159755][ T5116] cgroup: Unknown subsys name 'net' [ 1097.285385][ T5116] cgroup: Unknown subsys name 'rlimit' 2022/12/17 21:18:00 executed programs: 0 [ 1104.718006][ T5116] kmemleak: 7 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 1104.780553][ T5129] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 1104.787750][ T5129] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 1104.794943][ T5129] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 1104.802252][ T44] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 1104.809578][ T44] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 1104.816691][ T44] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 1104.852342][ T5128] chnl_net:caif_netlink_parms(): no params data found [ 1104.869551][ T5128] bridge0: port 1(bridge_slave_0) entered blocking state [ 1104.876941][ T5128] bridge0: port 1(bridge_slave_0) entered disabled state [ 1104.884421][ T5128] device bridge_slave_0 entered promiscuous mode [ 1104.891422][ T5128] bridge0: port 2(bridge_slave_1) entered blocking state [ 1104.898637][ T5128] bridge0: port 2(bridge_slave_1) entered disabled state [ 1104.906020][ T5128] device bridge_slave_1 entered promiscuous mode [ 1104.916441][ T5128] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1104.926342][ T5128] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1104.939142][ T5128] team0: Port device team_slave_0 added [ 1104.945506][ T5128] team0: Port device team_slave_1 added [ 1104.955459][ T5128] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1104.962399][ T5128] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1104.988511][ T5128] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1104.999641][ T5128] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1105.006730][ T5128] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1105.032636][ T5128] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1105.049138][ T5128] device hsr_slave_0 entered promiscuous mode [ 1105.055509][ T5128] device hsr_slave_1 entered promiscuous mode [ 1105.081930][ T5128] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1105.089584][ T5128] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1105.097315][ T5128] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1105.105027][ T5128] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1105.115858][ T5128] bridge0: port 2(bridge_slave_1) entered blocking state [ 1105.122901][ T5128] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1105.130149][ T5128] bridge0: port 1(bridge_slave_0) entered blocking state [ 1105.137194][ T5128] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1105.155213][ T5128] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1105.163987][ T5118] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 1105.171782][ T5118] bridge0: port 1(bridge_slave_0) entered disabled state [ 1105.179580][ T5118] bridge0: port 2(bridge_slave_1) entered disabled state [ 1105.187111][ T5118] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 1105.195831][ T5128] 8021q: adding VLAN 0 to HW filter on device team0 [ 1105.204006][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 1105.212165][ T19] bridge0: port 1(bridge_slave_0) entered blocking state [ 1105.219206][ T19] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1105.227911][ T5137] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 1105.236132][ T5137] bridge0: port 2(bridge_slave_1) entered blocking state [ 1105.243194][ T5137] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1105.254480][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 1105.264543][ T5140] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 1105.273691][ T5138] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 1105.282342][ T5128] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 1105.316129][ T5128] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1105.323701][ T5138] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1105.331071][ T5138] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 1105.341400][ T5140] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 1105.353512][ T5128] device veth0_vlan entered promiscuous mode [ 1105.360926][ T5128] device veth1_vlan entered promiscuous mode [ 1105.367537][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 1105.375590][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 1105.383238][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 1105.390649][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 1105.402730][ T5128] device veth0_macvtap entered promiscuous mode [ 1105.409431][ T5138] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 1105.417448][ T5138] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 1105.425638][ T5138] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 1105.434271][ T5128] device veth1_macvtap entered promiscuous mode [ 1105.443258][ T5128] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1105.450542][ T5140] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 1105.460251][ T5128] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1105.467947][ T5138] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 1105.477071][ T5128] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1105.486067][ T5128] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1105.495012][ T5128] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1105.503818][ T5128] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1105.525035][ T5143] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1105.532848][ T5143] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1105.541831][ T5138] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 1105.551593][ T5143] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1105.559513][ T5143] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1105.566965][ T5138] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1105.591742][ T5147] loop0: detected capacity change from 0 to 2331 [ 1105.598898][ T5147] ntfs3: loop0: Different NTFS' sector size (1024) and media sector size (512) [ 1105.608027][ T5147] ntfs3: loop0: RAW NTFS volume: Filesystem size 0.00 Gb > volume size 0.00 Gb. Mount in read-only [ 1105.620751][ T5147] syz-executor.0: attempt to access beyond end of device [ 1105.620751][ T5147] loop0: rw=0, sector=2560, nr_sectors = 8 limit=2331 [ 1106.853102][ T4380] Bluetooth: hci0: command 0x0409 tx timeout [ 1108.933151][ T44] Bluetooth: hci0: command 0x041b tx timeout [ 1111.013139][ T4380] Bluetooth: hci0: command 0x040f tx timeout 2022/12/17 21:18:06 executed programs: 1 [ 1111.091571][ T5151] loop0: detected capacity change from 0 to 2331 [ 1111.098904][ T5151] ntfs3: loop0: Different NTFS' sector size (1024) and media sector size (512) [ 1111.107917][ T5151] ntfs3: loop0: RAW NTFS volume: Filesystem size 0.00 Gb > volume size 0.00 Gb. Mount in read-only [ 1111.119927][ T5151] syz-executor.0: attempt to access beyond end of device [ 1111.119927][ T5151] loop0: rw=0, sector=2560, nr_sectors = 8 limit=2331 [ 1111.191750][ T5153] loop0: detected capacity change from 0 to 2331 [ 1111.198637][ T5153] ntfs3: loop0: Different NTFS' sector size (1024) and media sector size (512) [ 1111.207631][ T5153] ntfs3: loop0: RAW NTFS volume: Filesystem size 0.00 Gb > volume size 0.00 Gb. Mount in read-only [ 1111.220394][ T5153] syz-executor.0: attempt to access beyond end of device [ 1111.220394][ T5153] loop0: rw=0, sector=2560, nr_sectors = 8 limit=2331 [ 1112.424224][ T5154] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 1113.093074][ T4380] Bluetooth: hci0: command 0x0419 tx timeout [ 1114.373620][ T1208] ieee802154 phy0 wpan0: encryption failed: -22 [ 1114.379903][ T1208] ieee802154 phy1 wpan1: encryption failed: -22 [ 1118.787260][ T5154] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) BUG: memory leak unreferenced object 0xffff8881154d3ce0 (size 32): comm "syz-executor.0", pid 5147, jiffies 4295047826 (age 13.240s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 c0 ff c0 ff 00 00 00 00 ................ backtrace: [] kmalloc_trace+0x20/0x90 [] ntfs_init_fs_context+0x22/0x1e0 [] alloc_fs_context+0x225/0x3b0 [] path_mount+0x6f3/0x10d0 [] __x64_sys_mount+0x18e/0x1d0 [] do_syscall_64+0x35/0xb0 [] entry_SYSCALL_64_after_hwframe+0x63/0xcd BUG: memory leak unreferenced object 0xffff8881156c4d00 (size 32): comm "syz-executor.0", pid 5151, jiffies 4295048376 (age 7.740s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 c0 ff c0 ff 00 00 00 00 ................ backtrace: [] kmalloc_trace+0x20/0x90 [] ntfs_init_fs_context+0x22/0x1e0 [] alloc_fs_context+0x225/0x3b0 [] path_mount+0x6f3/0x10d0 [] __x64_sys_mount+0x18e/0x1d0 [] do_syscall_64+0x35/0xb0 [] entry_SYSCALL_64_after_hwframe+0x63/0xcd BUG: memory leak unreferenced object 0xffff8881156c4020 (size 32): comm "syz-executor.0", pid 5153, jiffies 4295048386 (age 7.640s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 c0 ff c0 ff 00 00 00 00 ................ backtrace: [] kmalloc_trace+0x20/0x90 [] ntfs_init_fs_context+0x22/0x1e0 [] alloc_fs_context+0x225/0x3b0 [] path_mount+0x6f3/0x10d0 [] __x64_sys_mount+0x18e/0x1d0 [] do_syscall_64+0x35/0xb0 [] entry_SYSCALL_64_after_hwframe+0x63/0xcd