Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.255' (ECDSA) to the list of known hosts. 2020/05/23 05:13:41 fuzzer started 2020/05/23 05:13:42 dialing manager at 10.128.0.26:38661 2020/05/23 05:13:42 syscalls: 3055 2020/05/23 05:13:42 code coverage: enabled 2020/05/23 05:13:42 comparison tracing: enabled 2020/05/23 05:13:42 extra coverage: enabled 2020/05/23 05:13:42 setuid sandbox: enabled 2020/05/23 05:13:42 namespace sandbox: enabled 2020/05/23 05:13:42 Android sandbox: /sys/fs/selinux/policy does not exist 2020/05/23 05:13:42 fault injection: enabled 2020/05/23 05:13:42 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2020/05/23 05:13:42 net packet injection: enabled 2020/05/23 05:13:42 net device setup: enabled 2020/05/23 05:13:42 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2020/05/23 05:13:42 devlink PCI setup: PCI device 0000:00:10.0 is not available 2020/05/23 05:13:42 USB emulation: enabled 05:15:45 executing program 0: syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = open(&(0x7f0000000040)='./bus\x00', 0xc007e, 0x0) write$binfmt_aout(r1, &(0x7f0000000100)=ANY=[], 0x49f) sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe) syzkaller login: [ 181.151194][ T6824] IPVS: ftp: loaded support on port[0] = 21 05:15:46 executing program 1: r0 = syz_open_dev$binderN(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000000c0)={0x1c, 0x0, &(0x7f0000001780)=[@free_buffer, @request_death], 0x0, 0x0, 0x0}) [ 181.310208][ T6824] chnl_net:caif_netlink_parms(): no params data found [ 181.446053][ T6824] bridge0: port 1(bridge_slave_0) entered blocking state [ 181.454905][ T6824] bridge0: port 1(bridge_slave_0) entered disabled state [ 181.466291][ T6824] device bridge_slave_0 entered promiscuous mode [ 181.489229][ T6824] bridge0: port 2(bridge_slave_1) entered blocking state [ 181.496337][ T6824] bridge0: port 2(bridge_slave_1) entered disabled state [ 181.508228][ T6824] device bridge_slave_1 entered promiscuous mode [ 181.534144][ T6954] IPVS: ftp: loaded support on port[0] = 21 [ 181.562135][ T6824] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 181.594139][ T6824] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link 05:15:46 executing program 2: r0 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video2\x00', 0x2, 0x0) ioctl$VIDIOC_QUERYCAP(r0, 0x80685600, &(0x7f00000001c0)) [ 181.656308][ T6824] team0: Port device team_slave_0 added [ 181.671581][ T6824] team0: Port device team_slave_1 added [ 181.713011][ T6824] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 181.738114][ T6824] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 181.787796][ T6824] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 181.821632][ T6824] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 181.837417][ T6824] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 181.886889][ T6824] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active 05:15:46 executing program 3: setresgid(0x0, 0xee01, 0x0) setgroups(0x0, 0x0) r0 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r1) shmget$private(0x400000000000000, 0x12000, 0x1800, &(0x7f0000fee000/0x12000)=nil) [ 182.055035][ T6824] device hsr_slave_0 entered promiscuous mode [ 182.127537][ T6824] device hsr_slave_1 entered promiscuous mode [ 182.205541][ T7002] IPVS: ftp: loaded support on port[0] = 21 [ 182.248723][ T6954] chnl_net:caif_netlink_parms(): no params data found 05:15:47 executing program 4: mkdir(&(0x7f0000000280)='./file0\x00', 0x0) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000300)={&(0x7f00000001c0)='./file0\x00'}, 0x10) [ 182.312830][ T7087] IPVS: ftp: loaded support on port[0] = 21 [ 182.439572][ T6954] bridge0: port 1(bridge_slave_0) entered blocking state [ 182.469569][ T6954] bridge0: port 1(bridge_slave_0) entered disabled state [ 182.490770][ T6954] device bridge_slave_0 entered promiscuous mode [ 182.569698][ T6954] bridge0: port 2(bridge_slave_1) entered blocking state [ 182.576985][ T6954] bridge0: port 2(bridge_slave_1) entered disabled state [ 182.590799][ T6954] device bridge_slave_1 entered promiscuous mode 05:15:47 executing program 5: mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000140)='cifs\x00', 0x0, &(0x7f0000000000)='GPLmd5san1^$-lo-,md5sum\x00T\xa9e:\xfcIW2\x7fq;a\xfdNY\x1f\x1c/\xb1#\xca\xcb\xf8\x14\xd2\xda\x85Rd\xff\x80\xbe\x9a\x04\xbd\xdd\x8e\xec\xa1\b\x16\x03\xb6\xde\x9e{Vs\x80\fI\xf1\"b/\xc4C\xa5\x06\xf6\xd4\x9d\xe2\f0\x15\xc1nHL+\xf8\x9a\xadW1\x9c\x86\x8f\xe6\xeb\x17') getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) keyctl$chown(0x4, 0x0, 0x0, 0x0) fchownat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) [ 182.756266][ T6954] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 182.812474][ T6954] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 182.860259][ T7215] IPVS: ftp: loaded support on port[0] = 21 [ 182.948110][ T6824] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 182.951759][ T7278] IPVS: ftp: loaded support on port[0] = 21 [ 182.995531][ T6824] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 183.052649][ T6824] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 183.112697][ T7002] chnl_net:caif_netlink_parms(): no params data found [ 183.135161][ T6954] team0: Port device team_slave_0 added [ 183.146393][ T6954] team0: Port device team_slave_1 added [ 183.153336][ T6824] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 183.227213][ T6954] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 183.234269][ T6954] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 183.262528][ T6954] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 183.274753][ T7087] chnl_net:caif_netlink_parms(): no params data found [ 183.304364][ T6954] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 183.311849][ T6954] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 183.340534][ T6954] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 183.491062][ T6954] device hsr_slave_0 entered promiscuous mode [ 183.547468][ T6954] device hsr_slave_1 entered promiscuous mode [ 183.598187][ T6954] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 183.608784][ T6954] Cannot create hsr debugfs directory [ 183.680837][ T7002] bridge0: port 1(bridge_slave_0) entered blocking state [ 183.690631][ T7002] bridge0: port 1(bridge_slave_0) entered disabled state [ 183.699873][ T7002] device bridge_slave_0 entered promiscuous mode [ 183.726576][ T7087] bridge0: port 1(bridge_slave_0) entered blocking state [ 183.735239][ T7087] bridge0: port 1(bridge_slave_0) entered disabled state [ 183.744297][ T7087] device bridge_slave_0 entered promiscuous mode [ 183.752377][ T7002] bridge0: port 2(bridge_slave_1) entered blocking state [ 183.759732][ T7002] bridge0: port 2(bridge_slave_1) entered disabled state [ 183.768587][ T7002] device bridge_slave_1 entered promiscuous mode [ 183.833658][ T7087] bridge0: port 2(bridge_slave_1) entered blocking state [ 183.852862][ T7087] bridge0: port 2(bridge_slave_1) entered disabled state [ 183.870542][ T7087] device bridge_slave_1 entered promiscuous mode [ 183.954733][ T7002] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 183.966333][ T7215] chnl_net:caif_netlink_parms(): no params data found [ 184.009592][ T7087] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 184.029240][ T7002] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 184.057266][ T7278] chnl_net:caif_netlink_parms(): no params data found [ 184.077695][ T7087] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 184.146873][ T7002] team0: Port device team_slave_0 added [ 184.166533][ T7002] team0: Port device team_slave_1 added [ 184.208771][ T7087] team0: Port device team_slave_0 added [ 184.254251][ T7002] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 184.261819][ T7002] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 184.289935][ T7002] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 184.303525][ T7087] team0: Port device team_slave_1 added [ 184.336764][ T7002] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 184.346309][ T7002] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 184.372850][ T7002] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 184.395840][ T7087] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 184.403733][ T7087] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 184.429790][ T7087] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 184.444988][ T7215] bridge0: port 1(bridge_slave_0) entered blocking state [ 184.453372][ T7215] bridge0: port 1(bridge_slave_0) entered disabled state [ 184.463146][ T7215] device bridge_slave_0 entered promiscuous mode [ 184.506357][ T7087] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 184.520575][ T7087] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 184.551863][ T7087] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 184.575335][ T7215] bridge0: port 2(bridge_slave_1) entered blocking state [ 184.582968][ T7215] bridge0: port 2(bridge_slave_1) entered disabled state [ 184.594907][ T7215] device bridge_slave_1 entered promiscuous mode [ 184.676843][ T6954] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 184.740959][ T7215] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 184.755279][ T6824] 8021q: adding VLAN 0 to HW filter on device bond0 [ 184.829857][ T7087] device hsr_slave_0 entered promiscuous mode [ 184.867566][ T7087] device hsr_slave_1 entered promiscuous mode [ 184.907211][ T7087] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 184.915006][ T7087] Cannot create hsr debugfs directory [ 184.922167][ T7278] bridge0: port 1(bridge_slave_0) entered blocking state [ 184.929976][ T7278] bridge0: port 1(bridge_slave_0) entered disabled state [ 184.939015][ T7278] device bridge_slave_0 entered promiscuous mode [ 184.980965][ T7002] device hsr_slave_0 entered promiscuous mode [ 185.027412][ T7002] device hsr_slave_1 entered promiscuous mode [ 185.067169][ T7002] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 185.074833][ T7002] Cannot create hsr debugfs directory [ 185.095079][ T6954] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 185.163769][ T7215] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 185.191558][ T7278] bridge0: port 2(bridge_slave_1) entered blocking state [ 185.199152][ T7278] bridge0: port 2(bridge_slave_1) entered disabled state [ 185.209980][ T7278] device bridge_slave_1 entered promiscuous mode [ 185.232774][ T6954] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 185.284895][ T6954] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 185.352050][ T7278] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 185.372256][ T6824] 8021q: adding VLAN 0 to HW filter on device team0 [ 185.395702][ T7215] team0: Port device team_slave_0 added [ 185.403888][ T7278] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 185.422103][ T2677] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 185.431265][ T2677] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 185.461366][ T7215] team0: Port device team_slave_1 added [ 185.481667][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 185.491477][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 185.500889][ T23] bridge0: port 1(bridge_slave_0) entered blocking state [ 185.508294][ T23] bridge0: port 1(bridge_slave_0) entered forwarding state [ 185.561164][ T7278] team0: Port device team_slave_0 added [ 185.571495][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 185.582726][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 185.592747][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 185.601890][ T23] bridge0: port 2(bridge_slave_1) entered blocking state [ 185.609158][ T23] bridge0: port 2(bridge_slave_1) entered forwarding state [ 185.618241][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 185.642453][ T7215] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 185.650031][ T7215] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 185.676690][ T7215] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 185.692131][ T7215] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 185.699570][ T7215] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 185.727291][ T7215] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 185.754585][ T7278] team0: Port device team_slave_1 added [ 185.773360][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 185.831747][ T7278] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 185.839129][ T7278] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 185.867640][ T7278] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 185.909901][ T7215] device hsr_slave_0 entered promiscuous mode [ 185.947593][ T7215] device hsr_slave_1 entered promiscuous mode [ 185.997130][ T7215] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 186.005045][ T7215] Cannot create hsr debugfs directory [ 186.012432][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 186.022312][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 186.031450][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 186.040902][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 186.057195][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 186.065135][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 186.074470][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 186.095328][ T7278] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 186.103243][ T7278] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 186.132234][ T7278] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 186.195070][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 186.204069][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 186.218723][ T6824] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 186.271527][ T7278] device hsr_slave_0 entered promiscuous mode [ 186.328178][ T7278] device hsr_slave_1 entered promiscuous mode [ 186.368037][ T7278] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 186.375824][ T7278] Cannot create hsr debugfs directory [ 186.521397][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 186.530593][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 186.586291][ T6824] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 186.614968][ T7002] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 186.643240][ T7002] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 186.693771][ T6954] 8021q: adding VLAN 0 to HW filter on device bond0 [ 186.719953][ T7002] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 186.771850][ T7002] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 186.913090][ T6954] 8021q: adding VLAN 0 to HW filter on device team0 [ 186.921124][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 186.930887][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 186.939420][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 186.949244][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 186.964616][ T7087] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 187.005376][ T7087] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 187.040502][ T7087] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 187.121434][ T7087] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 187.192962][ T2677] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 187.208254][ T2677] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 187.218143][ T2677] bridge0: port 1(bridge_slave_0) entered blocking state [ 187.225231][ T2677] bridge0: port 1(bridge_slave_0) entered forwarding state [ 187.233977][ T2677] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 187.242668][ T2677] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 187.256299][ T7215] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 187.319409][ T7215] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 187.372079][ T6824] device veth0_vlan entered promiscuous mode [ 187.383453][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 187.392828][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 187.401327][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 187.410757][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 187.420618][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 187.430168][ T23] bridge0: port 2(bridge_slave_1) entered blocking state [ 187.437341][ T23] bridge0: port 2(bridge_slave_1) entered forwarding state [ 187.449639][ T7215] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 187.519704][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 187.535082][ T6824] device veth1_vlan entered promiscuous mode [ 187.547737][ T7215] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 187.655319][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 187.667652][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 187.677704][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 187.718623][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 187.732328][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 187.741794][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 187.751425][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 187.761176][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 187.769815][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 187.781158][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 187.795434][ T7278] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 187.870960][ T7278] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 187.945270][ T7278] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 188.004391][ T7278] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 188.073274][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 188.081851][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 188.094294][ T6954] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 188.117819][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 188.126674][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 188.182935][ T6824] device veth0_macvtap entered promiscuous mode [ 188.221828][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 188.230786][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 188.238832][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 188.261119][ T6824] device veth1_macvtap entered promiscuous mode [ 188.281113][ T7002] 8021q: adding VLAN 0 to HW filter on device bond0 [ 188.293427][ T7087] 8021q: adding VLAN 0 to HW filter on device bond0 [ 188.317966][ T6954] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 188.360411][ T6824] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 188.373402][ T6824] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 188.392701][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 188.403726][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 188.412325][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 188.422451][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 188.431746][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 188.442431][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 188.452221][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 188.464356][ T7002] 8021q: adding VLAN 0 to HW filter on device team0 [ 188.493073][ T7215] 8021q: adding VLAN 0 to HW filter on device bond0 [ 188.553793][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 188.562167][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 188.570637][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 188.580047][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 188.589372][ T2497] bridge0: port 1(bridge_slave_0) entered blocking state [ 188.596522][ T2497] bridge0: port 1(bridge_slave_0) entered forwarding state [ 188.608241][ T7087] 8021q: adding VLAN 0 to HW filter on device team0 [ 188.635821][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 188.648143][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 188.655844][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 188.666563][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 188.677691][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 188.686183][ T2557] bridge0: port 2(bridge_slave_1) entered blocking state [ 188.693334][ T2557] bridge0: port 2(bridge_slave_1) entered forwarding state [ 188.704074][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 188.713856][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 188.728703][ T7215] 8021q: adding VLAN 0 to HW filter on device team0 [ 188.737454][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 188.746181][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 188.755254][ T3316] bridge0: port 1(bridge_slave_0) entered blocking state [ 188.762733][ T3316] bridge0: port 1(bridge_slave_0) entered forwarding state [ 188.848709][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 188.858295][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 188.869198][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 188.877974][ T3316] bridge0: port 2(bridge_slave_1) entered blocking state [ 188.885014][ T3316] bridge0: port 2(bridge_slave_1) entered forwarding state [ 188.894021][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 188.903527][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 188.913124][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 188.922540][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 188.932078][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 188.941589][ T3316] bridge0: port 1(bridge_slave_0) entered blocking state [ 188.949469][ T3316] bridge0: port 1(bridge_slave_0) entered forwarding state [ 188.957730][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 188.970909][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 189.078859][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 189.098731][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 189.118143][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 189.134496][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 189.143582][ T2557] bridge0: port 2(bridge_slave_1) entered blocking state [ 189.151449][ T2557] bridge0: port 2(bridge_slave_1) entered forwarding state [ 189.168088][ T8079] FAT-fs (loop0): bogus number of FAT sectors [ 189.170368][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 189.175915][ T8079] FAT-fs (loop0): Can't find a valid FAT filesystem [ 189.188313][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 189.207485][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 189.278658][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 189.290699][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 189.299715][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 189.309227][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 189.318258][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 189.328387][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 189.338572][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 189.348260][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 189.358087][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 189.366987][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 189.380253][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 189.390577][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 189.400928][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 189.413867][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 189.453844][ T7087] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 189.497180][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 189.512735][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 189.535089][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 189.546038][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 189.602919][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 189.631774][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 189.664717][ T6954] device veth0_vlan entered promiscuous mode [ 189.690111][ T7278] 8021q: adding VLAN 0 to HW filter on device bond0 [ 189.718387][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 189.730073][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 189.741579][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 189.751893][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 189.769825][ T7002] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 189.794971][ T7215] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 189.809309][ T7215] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 189.825978][ T6954] device veth1_vlan entered promiscuous mode [ 189.841817][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 189.858079][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 189.865903][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 189.877640][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 189.888303][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 189.920167][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 189.942173][ T8084] FAT-fs (loop0): bogus number of FAT sectors [ 189.947076][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 189.954346][ T8084] FAT-fs (loop0): Can't find a valid FAT filesystem [ 189.955811][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 189.972954][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 189.986585][ T7278] 8021q: adding VLAN 0 to HW filter on device team0 05:15:54 executing program 0: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, 0x0) bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff}, 0x6) [ 190.070193][ T7087] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 190.198656][ T7002] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 190.208710][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 190.216377][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 190.236136][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 190.246424][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 190.262944][ T2557] bridge0: port 1(bridge_slave_0) entered blocking state [ 190.270129][ T2557] bridge0: port 1(bridge_slave_0) entered forwarding state [ 190.286201][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 05:15:55 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$fou(&(0x7f0000001080)='fou\x00') sendmsg$FOU_CMD_ADD(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)={0x1c, r1, 0x1, 0x0, 0x0, {}, [@FOU_ATTR_PORT={0x6, 0x1, 0x4e23}]}, 0x1c}}, 0x0) [ 190.298392][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 190.313905][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 190.335864][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 190.357272][ T2557] bridge0: port 2(bridge_slave_1) entered blocking state [ 190.366183][ T2557] bridge0: port 2(bridge_slave_1) entered forwarding state 05:15:55 executing program 0: r0 = socket$unix(0x1, 0x5, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000040)=@security={'security\x00', 0xe, 0x4, 0x700, 0xffffffff, 0x468, 0x468, 0x368, 0xffffffff, 0xffffffff, 0x630, 0x630, 0x630, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@private2, @private1, [], [], 'ip6erspan0\x00', 'vlan0\x00', {}, {}, 0x84}, 0x0, 0x328, 0x368, 0x0, {}, [@common=@inet=@sctp={{0x148, 'sctp\x00'}}, @common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @local, @local, @dev, @private0, @mcast1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @mcast1, @ipv4={[], [], @local}, @local, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @initdev={0xfe, 0x88, [], 0x0, 0x0}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @initdev={0xfe, 0x88, [], 0x0, 0x0}]}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0x0, 0xd8, 0x100, 0x0, {}, [@common=@unspec=@realm={{0x30, 'realm\x00'}}]}, @common=@unspec=@NFQUEUE1={0x28, 'NFQUEUE\x00'}}, {{@uncond, 0x0, 0x168, 0x1c8, 0x0, {}, [@common=@srh1={{0x90, 'srh\x00'}, {0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @local, @dev}}, @common=@frag={{0x30, 'frag\x00'}}]}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv6=@mcast1}}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x760) [ 190.418526][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 190.453625][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 190.463980][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 190.474017][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 190.504931][ T7215] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 190.514171][ T8101] x_tables: duplicate underflow at hook 2 [ 190.527990][ T6954] device veth0_macvtap entered promiscuous mode [ 190.555665][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 190.566586][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 190.585325][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 190.598526][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 190.608518][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready 05:15:55 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000480)=@filter={'filter\x00', 0xe, 0x2, 0x250, [0x0, 0x20000100, 0x20000130, 0x20000280], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"/592]}, 0x2c8) [ 190.617949][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 190.629292][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 190.654526][ T6954] device veth1_macvtap entered promiscuous mode [ 190.678098][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 190.698653][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 190.724851][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 190.742837][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 190.755275][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 190.764916][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 190.775144][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 190.810432][ T7087] device veth0_vlan entered promiscuous mode [ 190.817475][ T8111] xt_cluster: node mask cannot exceed total number of nodes [ 190.857255][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 190.875107][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 190.895155][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 190.895714][ T8111] xt_cluster: node mask cannot exceed total number of nodes [ 190.910782][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 190.924105][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 190.935219][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready 05:15:55 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={0xffffffffffffffff}, 0x13f}}, 0x20) write$RDMA_USER_CM_CMD_DISCONNECT(r0, &(0x7f0000000000)={0xa, 0x4, 0xfa00, {r1}}, 0xc) [ 190.955797][ T7002] device veth0_vlan entered promiscuous mode [ 190.972178][ T7278] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 190.984035][ T6954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 190.997269][ T6954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 191.012182][ T6954] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 191.027165][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 191.035848][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready 05:15:55 executing program 0: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x0, 0x0) ioctl$SOUND_MIXER_READ_RECSRC(r2, 0x80044dff, &(0x7f0000000140)) [ 191.067881][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 191.083652][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 191.095671][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 191.116067][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 191.133055][ T7087] device veth1_vlan entered promiscuous mode [ 191.152325][ T7002] device veth1_vlan entered promiscuous mode [ 191.179844][ T6954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 191.201289][ T6954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 191.220646][ T6954] batman_adv: batadv0: Interface activated: batadv_slave_1 05:15:56 executing program 0: r0 = socket$phonet_pipe(0x23, 0x5, 0x2) setsockopt$PNPIPE_ENCAP(r0, 0x113, 0x1, &(0x7f0000000040)=0x1, 0x4) [ 191.254821][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 191.264376][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 191.274391][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 191.297145][ T2497] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 191.358700][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 191.366342][ T3316] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 191.432090][ T7278] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 191.508205][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 191.517466][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 191.526256][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 191.535622][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 191.547713][ T7087] device veth0_macvtap entered promiscuous mode [ 191.563170][ T7002] device veth0_macvtap entered promiscuous mode [ 191.625684][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 191.636557][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 191.653101][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 191.664213][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 191.675067][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 191.703858][ T7002] device veth1_macvtap entered promiscuous mode [ 191.721505][ T7087] device veth1_macvtap entered promiscuous mode [ 191.789688][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 191.804803][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 191.827885][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 191.836144][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 191.852241][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 191.876747][ T7215] device veth0_vlan entered promiscuous mode 05:15:56 executing program 1: r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) setsockopt$nfc_llcp_NFC_LLCP_MIUX(r0, 0x118, 0x1, &(0x7f0000000080)=0x4000, 0x4) [ 191.963735][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 191.992832][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 192.014714][ T7087] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 192.028874][ T7087] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 192.040823][ T7087] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 192.052310][ T7087] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 192.065799][ T7087] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 192.077116][ T7002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 192.104859][ T7002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 192.121986][ T7002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 192.134493][ T7002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 192.145801][ T7002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 192.164884][ T7002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 192.197131][ T7002] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 192.205677][ T7215] device veth1_vlan entered promiscuous mode [ 192.245946][ T2677] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 192.255310][ T2677] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 192.267400][ T2677] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 192.276219][ T2677] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 192.289667][ T7087] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 192.302832][ T7087] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 192.314264][ T7087] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 192.325435][ T7087] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 192.338231][ T7087] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 192.374972][ T7002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 192.386518][ T7002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 192.399366][ T7002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 192.410445][ T7002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 192.421030][ T7002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 192.431552][ T7002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 192.443586][ T7002] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 192.453481][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 192.466389][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 192.476174][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 192.490090][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 192.501400][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 192.512603][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 192.541017][ T7278] device veth0_vlan entered promiscuous mode [ 192.552547][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 192.561874][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 192.666045][ T7278] device veth1_vlan entered promiscuous mode [ 192.676993][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 192.694657][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 192.703536][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 192.719946][ T7215] device veth0_macvtap entered promiscuous mode [ 192.851472][ T7215] device veth1_macvtap entered promiscuous mode [ 192.937759][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 192.946365][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 192.962092][ T8163] hugetlbfs: syz-executor.3 (8163): Using mlock ulimits for SHM_HUGETLB is deprecated [ 192.972077][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 192.972768][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 192.991515][ T2557] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 193.043974][ T7278] device veth0_macvtap entered promiscuous mode [ 193.071264][ T7215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 193.083612][ T7215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 193.096925][ T7215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 193.108059][ T7215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 193.124588][ T7215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 193.135727][ T7215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 193.147666][ T7215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 193.159389][ T7215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 193.173030][ T7215] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 193.190089][ T7278] device veth1_macvtap entered promiscuous mode 05:15:58 executing program 2: r0 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video2\x00', 0x2, 0x0) ioctl$VIDIOC_QUERYCAP(r0, 0x80685600, &(0x7f00000001c0)) 05:15:58 executing program 0: openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpu.stat\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000040)=ANY=[], 0xfea7) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0) mbind(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x2, &(0x7f0000000000), 0x52, 0x0) [ 193.208018][ T2677] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 193.216369][ T2677] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 193.239389][ T2677] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 193.277346][ T7215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 193.319022][ T7215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 193.341334][ T7215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 193.352512][ T7215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 193.363237][ T7215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 193.374199][ T7215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 193.385072][ T7215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 193.396995][ T7215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 193.430217][ T7215] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 193.456068][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 193.467578][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 193.493946][ T7278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 193.505875][ T7278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 193.519730][ T7278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 193.531358][ T7278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 193.543110][ T7278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 193.554243][ T7278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 193.565302][ T7278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 193.577766][ T7278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 193.603612][ T7278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 193.636915][ T7278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 193.651284][ T7278] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 193.663858][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 193.673555][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 193.685473][ T7278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 193.696430][ T7278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 193.707395][ T7278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 193.718228][ T7278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 193.728207][ T7278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 193.739079][ T7278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 193.749157][ T7278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 193.760954][ T7278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 193.770984][ T7278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 193.782214][ T7278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 193.793895][ T7278] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 193.852636][ T2677] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 193.862338][ T2677] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready 05:15:59 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x280, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}) [ 194.248010][ T8187] CIFS: Attempting to mount (null) [ 194.259674][ T8187] CIFS VFS: Device name not specified. [ 194.270585][ C0] hrtimer: interrupt took 30233 ns [ 194.272633][ T8187] CIFS VFS: Malformed UNC in devname. 05:15:59 executing program 0: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, 0x0) 05:15:59 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) getsockopt$inet_buf(r1, 0x0, 0x29, 0x0, 0x0) 05:15:59 executing program 4: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, 0x0) bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x2}, 0x6) 05:15:59 executing program 5: socket$nl_route(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) msgsnd(0x0, &(0x7f0000000200)={0x0, "e57471a5c9cbdb14789d95607a3ea30341aabafa29354da518e8911da21de7d4bf3a310553533ea7cda0957f1600eba5a76e6af8772024f9653a958aca613b606b55774858b6a04abe90f0ac0f539efd543148a36d655e5e32362d8843d87a5b164c36c4a84520437cdf03d4de06e0f91b3af318c54f7f887b2389d7856d548b5b254605c5ae65e9008522bc75"}, 0x95, 0x800) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x1, 0x3, 0x2, 0x2, 0x0, 0x9}, 0x0) getpeername$llc(0xffffffffffffffff, &(0x7f0000000140)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, &(0x7f0000000180)=0x10) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x9}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2, &(0x7f00000000c0)=0x8, 0x4) perf_event_open(0x0, 0x0, 0xefffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r4 = syz_open_procfs(0x0, &(0x7f0000000040)='maps\x00') r5 = syz_open_dev$tty1(0xc, 0x4, 0x1) sendfile(r5, r4, 0x0, 0x800000080004103) 05:15:59 executing program 2: r0 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video2\x00', 0x2, 0x0) ioctl$VIDIOC_QUERYCAP(r0, 0x80685600, &(0x7f00000001c0)) 05:15:59 executing program 0: r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0) preadv(r0, &(0x7f0000001500)=[{&(0x7f0000000040)=""/85, 0x55}], 0x1, 0x0) 05:15:59 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_init_net_socket$ax25(0x3, 0x3, 0x0) getsockopt$ax25_int(r2, 0x101, 0xc, &(0x7f0000000000), &(0x7f0000000040)=0x4) 05:15:59 executing program 2: r0 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video2\x00', 0x2, 0x0) ioctl$VIDIOC_QUERYCAP(r0, 0x80685600, &(0x7f00000001c0)) 05:15:59 executing program 4: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, 0x0) bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x2}, 0x6) 05:15:59 executing program 1: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000740)={r2, 0x8001a0, 0xe80, 0x5ac484bb51fa106a, &(0x7f0000000100)="4d50b441e692763513ef874588a8ff08000000000000009b1e83ff1f6b5384687e5200dd", 0x0, 0x3a, 0x0, 0xfffffffffffffefd, 0x0, &(0x7f0000000080)="40d7bd4c44aef5db22aa9b7aeb46180ba7961a989021abae24273bb5d4937c8d6c72fbdf77668cd25ec089b66f3a6356770e04fcc8ebee87b32dd1c7dd33234d9d85176eec3cc75fdc0f336661eb451aba6a283a7bca893156c4c5a7175bf93749"}, 0x28) 05:15:59 executing program 2: ioctl$VIDIOC_QUERYCAP(0xffffffffffffffff, 0x80685600, &(0x7f00000001c0)) [ 194.314805][ T8187] CIFS: Attempting to mount (null) [ 194.314842][ T8187] CIFS VFS: Device name not specified. [ 194.314849][ T8187] CIFS VFS: Malformed UNC in devname. [ 211.968487][ T0] NOHZ: local_softirq_pending 08 [ 213.890043][ T0] NOHZ: local_softirq_pending 08 [ 295.154492][ T0] NOHZ: local_softirq_pending 08 [ 297.074638][ T0] NOHZ: local_softirq_pending 08 [ 316.272193][ T0] NOHZ: local_softirq_pending 08 [ 336.110413][ T0] NOHZ: local_softirq_pending 08 [ 350.184975][ T1146] INFO: task syz-executor.3:8185 can't die for more than 143 seconds. [ 350.184996][ T1146] syz-executor.3 R running task 27160 8185 7087 0x00004006 [ 350.185021][ T1146] Call Trace: [ 350.185126][ T1146] ? mark_held_locks+0x9f/0xe0 [ 350.185153][ T1146] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 350.185168][ T1146] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 350.185272][ T1146] ? retint_kernel+0x2b/0x2b [ 350.185295][ T1146] ? trace_hardirqs_on_caller+0x64/0x240 [ 350.185314][ T1146] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 350.185330][ T1146] ? preempt_schedule_irq+0xee/0x150 [ 350.185346][ T1146] ? retint_kernel+0x2b/0x2b [ 350.185440][ T1146] ? vga16fb_fillrect+0x9da/0x1960 [ 350.185481][ T1146] ? __sanitizer_cov_trace_cmp4+0x4/0x20 [ 350.185498][ T1146] ? vga16fb_fillrect+0x9c6/0x1960 [ 350.185520][ T1146] ? bit_clear_margins+0x2d5/0x4a0 [ 350.185535][ T1146] ? bit_bmove+0x210/0x210 [ 350.185584][ T1146] ? fb_set_cmap+0x118/0x510 [ 350.185602][ T1146] ? fbcon_clear_margins+0x1de/0x240 [ 350.185618][ T1146] ? fbcon_switch+0xcde/0x16f0 [ 350.185638][ T1146] ? fbcon_set_def_font+0x370/0x370 [ 350.185652][ T1146] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 350.185747][ T1146] ? hide_cursor+0x85/0x280 [ 350.185787][ T1146] ? is_console_locked+0x5/0x10 [ 350.185799][ T1146] ? fbcon_set_origin+0x26/0x50 [ 350.185818][ T1146] ? redraw_screen+0x2ae/0x770 [ 350.185830][ T1146] ? vesafb_probe.cold+0x1228/0x1228 [ 350.185847][ T1146] ? respond_string+0x290/0x290 [ 350.185864][ T1146] ? fbcon_set_palette+0x3b1/0x4a0 [ 350.185882][ T1146] ? fbcon_modechanged+0x581/0x720 [ 350.185901][ T1146] ? fbcon_set_all_vcs+0x3b3/0x460 [ 350.185921][ T1146] ? fbcon_update_vcs+0x26/0x50 [ 350.185935][ T1146] ? fb_set_var+0xb03/0xd90 [ 350.185952][ T1146] ? fb_blank+0x190/0x190 [ 350.186006][ T1146] ? _raw_spin_unlock_irqrestore+0x62/0xe0 [ 350.186021][ T1146] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 350.186043][ T1146] ? do_fb_ioctl+0x390/0x6e0 [ 350.186059][ T1146] ? fb_mmap+0x510/0x510 [ 350.186115][ T1146] ? tomoyo_execute_permission+0x470/0x470 [ 350.186131][ T1146] ? retint_kernel+0x2b/0x2b [ 350.186188][ T1146] ? __fget_files+0x30d/0x500 [ 350.186211][ T1146] ? __sanitizer_cov_trace_switch+0x45/0x70 [ 350.186260][ T1146] ? do_vfs_ioctl+0x27d/0x1090 [ 350.186288][ T1146] ? retint_kernel+0x2b/0x2b [ 350.186313][ T1146] ? fb_ioctl+0xdd/0x130 [ 350.186327][ T1146] ? do_fb_ioctl+0x6e0/0x6e0 [ 350.186341][ T1146] ? ksys_ioctl+0x11a/0x180 [ 350.186359][ T1146] ? __x64_sys_ioctl+0x6f/0xb0 [ 350.186375][ T1146] ? do_syscall_64+0xf6/0x7d0 [ 350.186393][ T1146] ? entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 350.186420][ T1146] INFO: task syz-executor.3:8223 can't die for more than 143 seconds. [ 350.186426][ T1146] syz-executor.3 D28400 8223 7087 0x00004004 [ 350.186448][ T1146] Call Trace: [ 350.186494][ T1146] ? __schedule+0x8e4/0x1f80 [ 350.186516][ T1146] ? firmware_map_remove+0x19e/0x19e [ 350.186540][ T1146] ? schedule+0xd0/0x2a0 [ 350.186556][ T1146] ? schedule_preempt_disabled+0xf/0x20 [ 350.186567][ T1146] ? __mutex_lock+0x7ab/0x13c0 [ 350.186584][ T1146] ? fb_open+0xd3/0x430 [ 350.186601][ T1146] ? mutex_trylock+0x2c0/0x2c0 [ 350.186619][ T1146] ? __mutex_unlock_slowpath+0xe2/0x660 [ 350.186656][ T1146] ? chrdev_open+0xc4/0x5c0 [ 350.186676][ T1146] ? lock_downgrade+0x840/0x840 [ 350.186731][ T1146] ? kobject_init+0x1a0/0x1a0 [ 350.186751][ T1146] ? fb_open+0xd3/0x430 [ 350.186765][ T1146] ? fb_open+0xd3/0x430 [ 350.186781][ T1146] ? get_fb_info.part.0+0x80/0x80 [ 350.186795][ T1146] ? chrdev_open+0x219/0x5c0 [ 350.186815][ T1146] ? cdev_put.part.0+0x50/0x50 [ 350.186875][ T1146] ? security_file_open+0x84/0x3d0 [ 350.186894][ T1146] ? do_dentry_open+0x503/0x1280 [ 350.186911][ T1146] ? cdev_put.part.0+0x50/0x50 [ 350.186929][ T1146] ? security_inode_permission+0xc4/0xf0 [ 350.186944][ T1146] ? chown_common+0x550/0x550 [ 350.186958][ T1146] ? inode_permission+0xab/0x500 [ 350.186980][ T1146] ? path_openat+0x1ece/0x2870 [ 350.186998][ T1146] ? _raw_spin_unlock_irq+0x1f/0x80 [ 350.187016][ T1146] ? path_lookupat.isra.0+0x530/0x530 [ 350.187031][ T1146] ? _raw_spin_unlock_irq+0x55/0x80 [ 350.187099][ T1146] ? finish_task_switch+0x147/0x750 [ 350.187121][ T1146] ? __schedule+0x8ec/0x1f80 [ 350.187139][ T1146] ? do_filp_open+0x192/0x260 [ 350.187155][ T1146] ? may_open_dev+0xf0/0xf0 [ 350.187179][ T1146] ? preempt_schedule_common+0x5e/0xc0 [ 350.187196][ T1146] ? preempt_schedule_thunk+0x16/0x18 [ 350.187216][ T1146] ? _raw_spin_unlock+0x36/0x40 [ 350.187244][ T1146] ? __alloc_fd+0x46d/0x600 [ 350.187268][ T1146] ? do_sys_openat2+0x585/0x7a0 [ 350.187285][ T1146] ? file_open_root+0x400/0x400 [ 350.187323][ T1146] ? _copy_to_user+0x126/0x160 [ 350.187356][ T1146] ? put_timespec64+0xcb/0x120 [ 350.187374][ T1146] ? ns_to_kernel_old_timeval+0x100/0x100 [ 350.187393][ T1146] ? do_sys_open+0xc3/0x140 [ 350.187411][ T1146] ? filp_open+0x70/0x70 [ 350.187431][ T1146] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 350.187447][ T1146] ? do_syscall_64+0x21/0x7d0 [ 350.187463][ T1146] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 350.187482][ T1146] ? do_syscall_64+0xf6/0x7d0 [ 350.187500][ T1146] ? entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 350.187526][ T1146] INFO: task syz-executor.3:8223 blocked for more than 143 seconds. [ 350.187536][ T1146] Not tainted 5.7.0-rc6-next-20200522-syzkaller #0 [ 350.187541][ T1146] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 350.187547][ T1146] syz-executor.3 D28400 8223 7087 0x00004004 [ 350.187567][ T1146] Call Trace: [ 350.187585][ T1146] ? __schedule+0x8e4/0x1f80 [ 350.187606][ T1146] ? firmware_map_remove+0x19e/0x19e [ 350.187631][ T1146] ? schedule+0xd0/0x2a0 [ 350.187646][ T1146] ? schedule_preempt_disabled+0xf/0x20 [ 350.187657][ T1146] ? __mutex_lock+0x7ab/0x13c0 [ 350.187674][ T1146] ? fb_open+0xd3/0x430 [ 350.187691][ T1146] ? mutex_trylock+0x2c0/0x2c0 [ 350.187724][ T1146] ? __mutex_unlock_slowpath+0xe2/0x660 [ 350.187738][ T1146] ? chrdev_open+0xc4/0x5c0 [ 350.187761][ T1146] ? lock_downgrade+0x840/0x840 [ 350.187774][ T1146] ? kobject_init+0x1a0/0x1a0 [ 350.187794][ T1146] ? fb_open+0xd3/0x430 [ 350.187807][ T1146] ? fb_open+0xd3/0x430 [ 350.187824][ T1146] ? get_fb_info.part.0+0x80/0x80 [ 350.187837][ T1146] ? chrdev_open+0x219/0x5c0 [ 350.187853][ T1146] ? cdev_put.part.0+0x50/0x50 [ 350.187870][ T1146] ? security_file_open+0x84/0x3d0 [ 350.187888][ T1146] ? do_dentry_open+0x503/0x1280 [ 350.187905][ T1146] ? cdev_put.part.0+0x50/0x50 [ 350.187923][ T1146] ? security_inode_permission+0xc4/0xf0 [ 350.187937][ T1146] ? chown_common+0x550/0x550 [ 350.187951][ T1146] ? inode_permission+0xab/0x500 [ 350.187984][ T1146] ? path_openat+0x1ece/0x2870 [ 350.188003][ T1146] ? _raw_spin_unlock_irq+0x1f/0x80 [ 350.188021][ T1146] ? path_lookupat.isra.0+0x530/0x530 [ 350.188035][ T1146] ? _raw_spin_unlock_irq+0x55/0x80 [ 350.188049][ T1146] ? finish_task_switch+0x147/0x750 [ 350.188070][ T1146] ? __schedule+0x8ec/0x1f80 [ 350.188088][ T1146] ? do_filp_open+0x192/0x260 [ 350.188109][ T1146] ? may_open_dev+0xf0/0xf0 [ 350.188133][ T1146] ? preempt_schedule_common+0x5e/0xc0 [ 350.188151][ T1146] ? preempt_schedule_thunk+0x16/0x18 [ 350.188171][ T1146] ? _raw_spin_unlock+0x36/0x40 [ 350.188183][ T1146] ? __alloc_fd+0x46d/0x600 [ 350.188206][ T1146] ? do_sys_openat2+0x585/0x7a0 [ 350.188223][ T1146] ? file_open_root+0x400/0x400 [ 350.188236][ T1146] ? _copy_to_user+0x126/0x160 [ 350.188252][ T1146] ? put_timespec64+0xcb/0x120 [ 350.188266][ T1146] ? ns_to_kernel_old_timeval+0x100/0x100 [ 350.188285][ T1146] ? do_sys_open+0xc3/0x140 [ 350.188299][ T1146] ? filp_open+0x70/0x70 [ 350.188316][ T1146] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 350.188332][ T1146] ? do_syscall_64+0x21/0x7d0 [ 350.188347][ T1146] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 350.188367][ T1146] ? do_syscall_64+0xf6/0x7d0 [ 350.188384][ T1146] ? entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 350.188411][ T1146] INFO: task syz-executor.5:8206 can't die for more than 143 seconds. [ 350.188417][ T1146] syz-executor.5 D27304 8206 7278 0x80000004 [ 350.188439][ T1146] Call Trace: [ 350.188457][ T1146] ? __schedule+0x8e4/0x1f80 [ 350.188478][ T1146] ? firmware_map_remove+0x19e/0x19e [ 350.188496][ T1146] ? __lock_acquire+0x2224/0x48a0 [ 350.188515][ T1146] ? schedule+0xd0/0x2a0 [ 350.188531][ T1146] ? schedule_timeout+0x55b/0x850 [ 350.188546][ T1146] ? usleep_range+0x160/0x160 [ 350.188557][ T1146] ? __down+0x16e/0x2c0 [ 350.188579][ T1146] ? mark_held_locks+0x9f/0xe0 [ 350.188595][ T1146] ? _raw_spin_unlock_irq+0x1f/0x80 [ 350.188609][ T1146] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 350.188628][ T1146] ? __down+0x176/0x2c0 [ 350.188644][ T1146] ? __up.isra.0+0x190/0x190 [ 350.188670][ T1146] ? down+0x57/0x80 [ 350.188683][ T1146] ? console_lock+0x25/0x80 [ 350.188696][ T1146] ? do_con_write.part.0+0x95/0x1dc0 [ 350.188712][ T1146] ? __mutex_lock+0x458/0x13c0 [ 350.188749][ T1146] ? n_tty_write+0x50c/0xf90 [ 350.188762][ T1146] ? mark_lock+0x11f/0xdd0 [ 350.188779][ T1146] ? mutex_trylock+0x2c0/0x2c0 [ 350.188791][ T1146] ? n_tty_write+0x1de/0xf90 [ 350.188804][ T1146] ? do_con_trol+0x5d80/0x5d80 [ 350.188823][ T1146] ? mark_held_locks+0x9f/0xe0 [ 350.188840][ T1146] ? _raw_spin_unlock_irqrestore+0x62/0xe0 [ 350.188857][ T1146] ? con_write+0x41/0xe0 [ 350.188871][ T1146] ? n_tty_write+0x3f0/0xf90 [ 350.188898][ T1146] ? n_tty_read+0x1b30/0x1b30 [ 350.188913][ T1146] ? mark_held_locks+0x9f/0xe0 [ 350.188953][ T1146] ? prepare_to_wait_exclusive+0x2c0/0x2c0 [ 350.188987][ T1146] ? __phys_addr+0x9a/0x110 [ 350.189001][ T1146] ? __phys_addr_symbol+0x2c/0x70 [ 350.189032][ T1146] ? __might_fault+0x50/0x1d0 [ 350.189077][ T1146] ? tty_write+0x495/0x800 [ 350.189090][ T1146] ? n_tty_read+0x1b30/0x1b30 [ 350.189118][ T1146] ? hung_up_tty_compat_ioctl+0x40/0x40 [ 350.189131][ T1146] ? __vfs_write+0x76/0x100 [ 350.189150][ T1146] ? __kernel_write+0x11c/0x3a0 [ 350.189190][ T1146] ? write_pipe_buf+0x153/0x1e0 [ 350.189205][ T1146] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 350.189221][ T1146] ? do_splice_direct+0x280/0x280 [ 350.189237][ T1146] ? splice_from_pipe_next.part.0+0x29c/0x350 [ 350.189259][ T1146] ? __splice_from_pipe+0x3e6/0x7b0 [ 350.189279][ T1146] ? do_splice_direct+0x280/0x280 [ 350.189297][ T1146] ? do_splice_direct+0x280/0x280 [ 350.189310][ T1146] ? splice_from_pipe+0xd9/0x140 [ 350.189325][ T1146] ? splice_shrink_spd+0xc0/0xc0 [ 350.189347][ T1146] ? security_file_permission+0x8c/0x460 [ 350.189367][ T1146] ? default_file_splice_write+0x37/0x90 [ 350.189379][ T1146] ? generic_splice_sendpage+0x40/0x40 [ 350.189396][ T1146] ? direct_splice_actor+0x115/0x160 [ 350.189415][ T1146] ? splice_direct_to_actor+0x38c/0x980 [ 350.189435][ T1146] ? generic_pipe_buf_nosteal+0x10/0x10 [ 350.189455][ T1146] ? do_splice_to+0x160/0x160 [ 350.189481][ T1146] ? do_splice_direct+0x1b4/0x280 [ 350.189498][ T1146] ? splice_direct_to_actor+0x980/0x980 [ 350.189526][ T1146] ? do_sendfile+0x555/0xc50 [ 350.189548][ T1146] ? do_compat_pwritev64+0x1b0/0x1b0 [ 350.189563][ T1146] ? put_timespec64+0xcb/0x120 [ 350.189577][ T1146] ? ns_to_kernel_old_timeval+0x100/0x100 [ 350.189617][ T1146] ? __x64_sys_futex+0x380/0x4f0 [ 350.189636][ T1146] ? __x64_sys_sendfile64+0x1cc/0x210 [ 350.189650][ T1146] ? __ia32_sys_sendfile+0x220/0x220 [ 350.189664][ T1146] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 350.189680][ T1146] ? do_syscall_64+0x21/0x7d0 [ 350.189695][ T1146] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 350.189715][ T1146] ? do_syscall_64+0xf6/0x7d0 [ 350.189732][ T1146] ? entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 350.189758][ T1146] INFO: task syz-executor.5:8206 blocked for more than 143 seconds. [ 350.189766][ T1146] Not tainted 5.7.0-rc6-next-20200522-syzkaller #0 [ 350.189772][ T1146] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 350.189778][ T1146] syz-executor.5 D27304 8206 7278 0x80000004 [ 350.189797][ T1146] Call Trace: [ 350.189815][ T1146] ? __schedule+0x8e4/0x1f80 [ 350.189837][ T1146] ? firmware_map_remove+0x19e/0x19e [ 350.189855][ T1146] ? __lock_acquire+0x2224/0x48a0 [ 350.189874][ T1146] ? schedule+0xd0/0x2a0 [ 350.189889][ T1146] ? schedule_timeout+0x55b/0x850 [ 350.189904][ T1146] ? usleep_range+0x160/0x160 [ 350.189915][ T1146] ? __down+0x16e/0x2c0 [ 350.189937][ T1146] ? mark_held_locks+0x9f/0xe0 [ 350.189953][ T1146] ? _raw_spin_unlock_irq+0x1f/0x80 [ 350.189968][ T1146] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 350.189987][ T1146] ? __down+0x176/0x2c0 [ 350.190002][ T1146] ? __up.isra.0+0x190/0x190 [ 350.190029][ T1146] ? down+0x57/0x80 [ 350.190041][ T1146] ? console_lock+0x25/0x80 [ 350.190054][ T1146] ? do_con_write.part.0+0x95/0x1dc0 [ 350.190070][ T1146] ? __mutex_lock+0x458/0x13c0 [ 350.190085][ T1146] ? n_tty_write+0x50c/0xf90 [ 350.190102][ T1146] ? mark_lock+0x11f/0xdd0 [ 350.190119][ T1146] ? mutex_trylock+0x2c0/0x2c0 [ 350.190132][ T1146] ? n_tty_write+0x1de/0xf90 [ 350.190144][ T1146] ? do_con_trol+0x5d80/0x5d80 [ 350.190165][ T1146] ? mark_held_locks+0x9f/0xe0 [ 350.190181][ T1146] ? _raw_spin_unlock_irqrestore+0x62/0xe0 [ 350.190198][ T1146] ? con_write+0x41/0xe0 [ 350.190212][ T1146] ? n_tty_write+0x3f0/0xf90 [ 350.190240][ T1146] ? n_tty_read+0x1b30/0x1b30 [ 350.190255][ T1146] ? mark_held_locks+0x9f/0xe0 [ 350.190274][ T1146] ? prepare_to_wait_exclusive+0x2c0/0x2c0 [ 350.190290][ T1146] ? __phys_addr+0x9a/0x110 [ 350.190303][ T1146] ? __phys_addr_symbol+0x2c/0x70 [ 350.190316][ T1146] ? __might_fault+0x50/0x1d0 [ 350.190336][ T1146] ? tty_write+0x495/0x800 [ 350.190349][ T1146] ? n_tty_read+0x1b30/0x1b30 [ 350.190371][ T1146] ? hung_up_tty_compat_ioctl+0x40/0x40 [ 350.190385][ T1146] ? __vfs_write+0x76/0x100 [ 350.190403][ T1146] ? __kernel_write+0x11c/0x3a0 [ 350.190422][ T1146] ? write_pipe_buf+0x153/0x1e0 [ 350.190436][ T1146] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 350.190452][ T1146] ? do_splice_direct+0x280/0x280 [ 350.190468][ T1146] ? splice_from_pipe_next.part.0+0x29c/0x350 [ 350.190490][ T1146] ? __splice_from_pipe+0x3e6/0x7b0 [ 350.190510][ T1146] ? do_splice_direct+0x280/0x280 [ 350.190528][ T1146] ? do_splice_direct+0x280/0x280 [ 350.190541][ T1146] ? splice_from_pipe+0xd9/0x140 [ 350.190556][ T1146] ? splice_shrink_spd+0xc0/0xc0 [ 350.190577][ T1146] ? security_file_permission+0x8c/0x460 [ 350.190596][ T1146] ? default_file_splice_write+0x37/0x90 [ 350.190608][ T1146] ? generic_splice_sendpage+0x40/0x40 [ 350.190625][ T1146] ? direct_splice_actor+0x115/0x160 [ 350.190644][ T1146] ? splice_direct_to_actor+0x38c/0x980 [ 350.190665][ T1146] ? generic_pipe_buf_nosteal+0x10/0x10 [ 350.190684][ T1146] ? do_splice_to+0x160/0x160 [ 350.190709][ T1146] ? do_splice_direct+0x1b4/0x280 [ 350.190726][ T1146] ? splice_direct_to_actor+0x980/0x980 [ 350.190754][ T1146] ? do_sendfile+0x555/0xc50 [ 350.190777][ T1146] ? do_compat_pwritev64+0x1b0/0x1b0 [ 350.190792][ T1146] ? put_timespec64+0xcb/0x120 [ 350.190806][ T1146] ? ns_to_kernel_old_timeval+0x100/0x100 [ 350.190821][ T1146] ? __x64_sys_futex+0x380/0x4f0 [ 350.190839][ T1146] ? __x64_sys_sendfile64+0x1cc/0x210 [ 350.190854][ T1146] ? __ia32_sys_sendfile+0x220/0x220 [ 350.190868][ T1146] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 350.190884][ T1146] ? do_syscall_64+0x21/0x7d0 [ 350.190899][ T1146] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 350.190918][ T1146] ? do_syscall_64+0xf6/0x7d0 [ 350.190936][ T1146] ? entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 350.190961][ T1146] [ 350.190961][ T1146] Showing all locks held in the system: [ 350.190975][ T1146] 1 lock held by khungtaskd/1146: [ 350.190981][ T1146] #0: ffffffff89bc0380 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260 [ 350.191048][ T1146] 1 lock held by in:imklog/6487: [ 350.191053][ T1146] #0: ffff8880a808cb30 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0xe9/0x100 [ 350.191092][ T1146] 2 locks held by syz-executor.3/8185: [ 350.191106][ T1146] 1 lock held by syz-executor.3/8223: [ 350.191111][ T1146] #0: ffff88821882b078 (&fb_info->lock){+.+.}-{3:3}, at: fb_open+0xd3/0x430 [ 350.191143][ T1146] 4 locks held by syz-executor.5/8206: [ 350.191147][ T1146] #0: ffff88809368c098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x22/0x80 [ 350.191174][ T1146] #1: ffff88809368c130 (&tty->atomic_write_lock){+.+.}-{3:3}, at: tty_write_lock+0x1e/0x80 [ 350.191202][ T1146] #2: ffff88809368c2e8 (&tty->termios_rwsem){++++}-{3:3}, at: n_tty_write+0x1b2/0xf90 [ 350.191228][ T1146] #3: ffffc90000fc4378 (&ldata->output_lock){+.+.}-{3:3}, at: n_tty_write+0x50c/0xf90 [ 350.191255][ T1146] [ 350.191260][ T1146] ============================================= [ 350.191260][ T1146] [ 350.191267][ T1146] NMI backtrace for cpu 1 [ 350.191281][ T1146] CPU: 1 PID: 1146 Comm: khungtaskd Not tainted 5.7.0-rc6-next-20200522-syzkaller #0 [ 350.191289][ T1146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 350.191293][ T1146] Call Trace: [ 350.191309][ T1146] dump_stack+0x18f/0x20d [ 350.191353][ T1146] nmi_cpu_backtrace.cold+0x70/0xb1 [ 350.191389][ T1146] ? lapic_can_unplug_cpu.cold+0x3b/0x3b [ 350.191404][ T1146] nmi_trigger_cpumask_backtrace+0x1e6/0x221 [ 350.191419][ T1146] watchdog+0xfa3/0x14f0 [ 350.191436][ T1146] ? reset_hung_task_detector+0x30/0x30 [ 350.191471][ T1146] kthread+0x3b5/0x4a0 [ 350.191484][ T1146] ? kthread_mod_delayed_work+0x1a0/0x1a0 [ 350.191497][ T1146] ? kthread_mod_delayed_work+0x1a0/0x1a0 [ 350.191512][ T1146] ret_from_fork+0x24/0x30 [ 350.191536][ T1146] Sending NMI from CPU 1 to CPUs 0: [ 350.192077][ C0] NMI backtrace for cpu 0 [ 350.192084][ C0] CPU: 0 PID: 8185 Comm: syz-executor.3 Not tainted 5.7.0-rc6-next-20200522-syzkaller #0 [ 350.192090][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 350.192094][ C0] RIP: 0010:__sanitizer_cov_trace_pc+0x36/0x60 [ 350.192106][ C0] Code: 58 77 8e 7e f7 c2 00 01 ff 00 48 8b 34 24 74 0f 80 e6 01 74 35 8b 90 0c 14 00 00 85 d2 74 2b 8b 90 e8 13 00 00 83 fa 02 75 20 <48> 8b 88 f0 13 00 00 8b 80 ec 13 00 00 48 8b 11 48 83 c2 01 48 39 [ 350.192110][ C0] RSP: 0018:ffffc90017007538 EFLAGS: 00000246 [ 350.192118][ C0] RAX: ffff888058336000 RBX: 0000000000000050 RCX: ffffffff83c8eb7a [ 350.192123][ C0] RDX: 0000000000000002 RSI: ffffffff83c8eb66 RDI: 0000000000000004 [ 350.192128][ C0] RBP: 000000000000002e R08: ffff888058336000 R09: ffffed1043102954 [ 350.192133][ C0] R10: ffff888218814a9f R11: ffffed1043102953 R12: ffff8880000a002e [ 350.192138][ C0] R13: ffff8880000a0000 R14: 0000000000000000 R15: 00000000f06904e8 [ 350.192143][ C0] FS: 00007f3cdee2a700(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000 [ 350.192147][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 350.192152][ C0] CR2: 00007fff13afc908 CR3: 00000000967ac000 CR4: 00000000001406f0 [ 350.192157][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 350.192162][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 350.192165][ C0] Call Trace: [ 350.192168][ C0] vga16fb_fillrect+0x9c6/0x1960 [ 350.192171][ C0] bit_clear_margins+0x2d5/0x4a0 [ 350.192175][ C0] ? bit_bmove+0x210/0x210 [ 350.192178][ C0] ? fb_set_cmap+0x118/0x510 [ 350.192181][ C0] fbcon_clear_margins+0x1de/0x240 [ 350.192185][ C0] fbcon_switch+0xcde/0x16f0 [ 350.192188][ C0] ? fbcon_set_def_font+0x370/0x370 [ 350.192192][ C0] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 350.192195][ C0] ? hide_cursor+0x85/0x280 [ 350.192198][ C0] ? is_console_locked+0x5/0x10 [ 350.192202][ C0] ? fbcon_set_origin+0x26/0x50 [ 350.192205][ C0] redraw_screen+0x2ae/0x770 [ 350.192209][ C0] ? vesafb_probe.cold+0x1228/0x1228 [ 350.192212][ C0] ? respond_string+0x290/0x290 [ 350.192216][ C0] ? fbcon_set_palette+0x3b1/0x4a0 [ 350.192219][ C0] fbcon_modechanged+0x581/0x720 [ 350.192222][ C0] fbcon_set_all_vcs+0x3b3/0x460 [ 350.192226][ C0] fbcon_update_vcs+0x26/0x50 [ 350.192229][ C0] fb_set_var+0xb03/0xd90 [ 350.192232][ C0] ? fb_blank+0x190/0x190 [ 350.192236][ C0] ? _raw_spin_unlock_irqrestore+0x62/0xe0 [ 350.192240][ C0] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 350.192243][ C0] do_fb_ioctl+0x390/0x6e0 [ 350.192246][ C0] ? fb_mmap+0x510/0x510 [ 350.192250][ C0] ? tomoyo_execute_permission+0x470/0x470 [ 350.192254][ C0] ? retint_kernel+0x2b/0x2b [ 350.192257][ C0] ? __fget_files+0x30d/0x500 [ 350.192261][ C0] ? __sanitizer_cov_trace_switch+0x45/0x70 [ 350.192264][ C0] ? do_vfs_ioctl+0x27d/0x1090 [ 350.192267][ C0] ? retint_kernel+0x2b/0x2b [ 350.192270][ C0] fb_ioctl+0xdd/0x130 [ 350.192273][ C0] ? do_fb_ioctl+0x6e0/0x6e0 [ 350.192276][ C0] ksys_ioctl+0x11a/0x180 [ 350.192280][ C0] __x64_sys_ioctl+0x6f/0xb0 [ 350.192283][ C0] do_syscall_64+0xf6/0x7d0 [ 350.192287][ C0] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 350.192289][ C0] RIP: 0033:0x45ca29 [ 350.192301][ C0] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 350.192305][ C0] RSP: 002b:00007f3cdee29c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 350.192314][ C0] RAX: ffffffffffffffda RBX: 00000000004e4ac0 RCX: 000000000045ca29 [ 350.192319][ C0] RDX: 0000000020000000 RSI: 0000000000004601 RDI: 0000000000000004 [ 350.192324][ C0] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 350.192329][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 350.192334][ C0] R13: 00000000000002f2 R14: 00000000004c56c8 R15: 00007f3cdee2a6d4 [ 350.234799][ T1146] Kernel panic - not syncing: hung_task: blocked tasks [ 350.234818][ T1146] CPU: 1 PID: 1146 Comm: khungtaskd Not tainted 5.7.0-rc6-next-20200522-syzkaller #0 [ 350.234826][ T1146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 350.234831][ T1146] Call Trace: [ 350.234853][ T1146] dump_stack+0x18f/0x20d [ 350.234960][ T1146] panic+0x2e3/0x75c [ 350.234975][ T1146] ? __warn_printk+0xf3/0xf3 [ 350.234992][ T1146] ? lapic_can_unplug_cpu.cold+0x3b/0x3b [ 350.235007][ T1146] ? preempt_schedule_thunk+0x16/0x18 [ 350.235023][ T1146] ? watchdog.cold+0x10b/0x28b [ 350.235034][ T1146] ? watchdog+0xde5/0x14f0 [ 350.235051][ T1146] watchdog.cold+0x11c/0x28b [ 350.235068][ T1146] ? reset_hung_task_detector+0x30/0x30 [ 350.235084][ T1146] kthread+0x3b5/0x4a0 [ 350.235097][ T1146] ? kthread_mod_delayed_work+0x1a0/0x1a0 [ 350.235109][ T1146] ? kthread_mod_delayed_work+0x1a0/0x1a0 [ 350.235127][ T1146] ret_from_fork+0x24/0x30 [ 350.236987][ T1146] Kernel Offset: disabled