Warning: Permanently added '[localhost]:62161' (ECDSA) to the list of known hosts. 2020/10/16 07:33:42 fuzzer started 2020/10/16 07:33:43 dialing manager at 10.0.2.10:34087 2020/10/16 07:33:43 syscalls: 3440 2020/10/16 07:33:43 code coverage: enabled 2020/10/16 07:33:43 comparison tracing: enabled 2020/10/16 07:33:43 extra coverage: enabled 2020/10/16 07:33:43 setuid sandbox: enabled 2020/10/16 07:33:43 namespace sandbox: enabled 2020/10/16 07:33:43 Android sandbox: /sys/fs/selinux/policy does not exist 2020/10/16 07:33:43 fault injection: enabled 2020/10/16 07:33:43 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2020/10/16 07:33:43 net packet injection: enabled 2020/10/16 07:33:43 net device setup: enabled 2020/10/16 07:33:43 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2020/10/16 07:33:43 devlink PCI setup: PCI device 0000:00:10.0 is not available 2020/10/16 07:33:43 USB emulation: enabled 2020/10/16 07:33:43 hci packet injection: enabled 2020/10/16 07:33:43 wifi device emulation: enabled 07:34:59 executing program 0: r0 = openat$ptp0(0xffffff9c, &(0x7f0000000000)='/dev/ptp0\x00', 0x0, 0x0) ioctl$PTP_PIN_SETFUNC(r0, 0x40603d07, &(0x7f0000000040)) 07:35:00 executing program 1: pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = memfd_create(&(0x7f0000000240)='\xac\x00U\xd8\xdfmqq\x16\'\xe3\x83\xab\xf9\x1fW\xff~\xb7T\xd3\xc1S\xdf\x03K5S\xa4\xab>l=\xc2k\xd6y\x92\x009\xa0\xa9\xa2\xdb\x86\xf9\xaa\xa0\x8e\xcbG5a\xfa\x97\x83\xf6Tk\xaa\xca\\Wzy\x1e\xf1\xe6\x8acFF\x04\xa0\x1a|\xfaHL\t\xe3\xe7\xdf}\xd7\xa6c\xd7\xe0j\x049d\x8ds\x01', 0x0) splice(r1, &(0x7f0000000000)=0xfffffffffffffffc, r0, 0x0, 0x5, 0x0) 07:35:00 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$EBT_SO_GET_INIT_ENTRIES(r0, 0x0, 0x19, 0x0, &(0x7f0000000340)) 07:35:00 executing program 3: r0 = openat$drirender128(0xffffff9c, &(0x7f0000000000)='/dev/dri/renderD128\x00', 0x0, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, &(0x7f0000000040)) syzkaller login: [ 193.410874][ T8684] IPVS: ftp: loaded support on port[0] = 21 [ 193.411218][ T8687] IPVS: ftp: loaded support on port[0] = 21 [ 193.411239][ T8685] IPVS: ftp: loaded support on port[0] = 21 [ 193.835655][ T8689] IPVS: ftp: loaded support on port[0] = 21 [ 194.229522][ T8685] chnl_net:caif_netlink_parms(): no params data found [ 194.300142][ T8684] chnl_net:caif_netlink_parms(): no params data found [ 194.338903][ T8687] chnl_net:caif_netlink_parms(): no params data found [ 194.611492][ T8684] bridge0: port 1(bridge_slave_0) entered blocking state [ 194.621303][ T8684] bridge0: port 1(bridge_slave_0) entered disabled state [ 194.635659][ T8684] device bridge_slave_0 entered promiscuous mode [ 194.657586][ T8684] bridge0: port 2(bridge_slave_1) entered blocking state [ 194.670219][ T8684] bridge0: port 2(bridge_slave_1) entered disabled state [ 194.682936][ T8684] device bridge_slave_1 entered promiscuous mode [ 194.721279][ T8687] bridge0: port 1(bridge_slave_0) entered blocking state [ 194.743592][ T8687] bridge0: port 1(bridge_slave_0) entered disabled state [ 194.758326][ T8687] device bridge_slave_0 entered promiscuous mode [ 194.792735][ T8684] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 194.816712][ T8685] bridge0: port 1(bridge_slave_0) entered blocking state [ 194.835369][ T8685] bridge0: port 1(bridge_slave_0) entered disabled state [ 194.854051][ T8685] device bridge_slave_0 entered promiscuous mode [ 194.877847][ T8687] bridge0: port 2(bridge_slave_1) entered blocking state [ 194.899148][ T8687] bridge0: port 2(bridge_slave_1) entered disabled state [ 194.917745][ T8687] device bridge_slave_1 entered promiscuous mode [ 194.949661][ T8689] chnl_net:caif_netlink_parms(): no params data found [ 194.979636][ T8684] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 195.026618][ T8685] bridge0: port 2(bridge_slave_1) entered blocking state [ 195.054984][ T8685] bridge0: port 2(bridge_slave_1) entered disabled state [ 195.081929][ T8685] device bridge_slave_1 entered promiscuous mode [ 195.097457][ T1245] Bluetooth: hci0: command 0x0409 tx timeout [ 195.135476][ T8685] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 195.178252][ T2799] Bluetooth: hci1: command 0x0409 tx timeout [ 195.206047][ T8685] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 195.256135][ T8687] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 195.296544][ T8684] team0: Port device team_slave_0 added [ 195.316207][ T8684] team0: Port device team_slave_1 added [ 195.335241][ T1245] Bluetooth: hci2: command 0x0409 tx timeout [ 195.336437][ T8687] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 195.381616][ T8685] team0: Port device team_slave_0 added [ 195.425617][ T8685] team0: Port device team_slave_1 added [ 195.454104][ T8684] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 195.505678][ T8684] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 195.596200][ T8684] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 195.642535][ T8684] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 195.664945][ T8684] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 195.733443][ T8684] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 195.767991][ T2562] Bluetooth: hci3: command 0x0409 tx timeout [ 195.866280][ T8687] team0: Port device team_slave_0 added [ 195.916225][ T8687] team0: Port device team_slave_1 added [ 195.947856][ T8685] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 195.961159][ T8685] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 196.005247][ T8685] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 196.035340][ T8684] device hsr_slave_0 entered promiscuous mode [ 196.046124][ T8684] device hsr_slave_1 entered promiscuous mode [ 196.057059][ T8689] bridge0: port 1(bridge_slave_0) entered blocking state [ 196.066802][ T8689] bridge0: port 1(bridge_slave_0) entered disabled state [ 196.077327][ T8689] device bridge_slave_0 entered promiscuous mode [ 196.091832][ T8689] bridge0: port 2(bridge_slave_1) entered blocking state [ 196.100514][ T8689] bridge0: port 2(bridge_slave_1) entered disabled state [ 196.109932][ T8689] device bridge_slave_1 entered promiscuous mode [ 196.121136][ T8685] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 196.132247][ T8685] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 196.168561][ T8685] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 196.193213][ T8687] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 196.202879][ T8687] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 196.242062][ T8687] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 196.270359][ T8687] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 196.287846][ T8687] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 196.338196][ T8687] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 196.400891][ T8689] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 196.432206][ T8689] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 196.455071][ T8685] device hsr_slave_0 entered promiscuous mode [ 196.468238][ T8685] device hsr_slave_1 entered promiscuous mode [ 196.481711][ T8685] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 196.495132][ T8685] Cannot create hsr debugfs directory [ 196.507910][ T8687] device hsr_slave_0 entered promiscuous mode [ 196.516742][ T8687] device hsr_slave_1 entered promiscuous mode [ 196.526399][ T8687] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 196.537355][ T8687] Cannot create hsr debugfs directory [ 196.587991][ T8689] team0: Port device team_slave_0 added [ 196.607766][ T8689] team0: Port device team_slave_1 added [ 196.659563][ T8689] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 196.671064][ T8689] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 196.709973][ T8689] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 196.757786][ T8689] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 196.769214][ T8689] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 196.802638][ T8689] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 196.910905][ T8689] device hsr_slave_0 entered promiscuous mode [ 196.925479][ T8689] device hsr_slave_1 entered promiscuous mode [ 196.934184][ T8689] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 196.943074][ T8689] Cannot create hsr debugfs directory [ 197.060053][ T8684] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 197.083223][ T8684] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 197.096376][ T8684] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 197.117682][ T8684] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 197.175137][ T2562] Bluetooth: hci0: command 0x041b tx timeout [ 197.186402][ T8685] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 197.206572][ T8685] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 197.218432][ T8685] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 197.237156][ T8685] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 197.258147][ T2799] Bluetooth: hci1: command 0x041b tx timeout [ 197.324244][ T8687] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 197.352758][ T8687] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 197.391374][ T8687] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 197.408885][ T8687] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 197.414901][ T23] Bluetooth: hci2: command 0x041b tx timeout [ 197.446219][ T8689] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 197.467707][ T8689] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 197.480471][ T8689] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 197.492226][ T8689] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 197.578007][ T8685] 8021q: adding VLAN 0 to HW filter on device bond0 [ 197.626467][ T8684] 8021q: adding VLAN 0 to HW filter on device bond0 [ 197.639104][ T2562] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 197.662093][ T2562] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 197.681175][ T8685] 8021q: adding VLAN 0 to HW filter on device team0 [ 197.703356][ T1245] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 197.716667][ T1245] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 197.727879][ T1245] bridge0: port 1(bridge_slave_0) entered blocking state [ 197.736951][ T1245] bridge0: port 1(bridge_slave_0) entered forwarding state [ 197.774171][ T8687] 8021q: adding VLAN 0 to HW filter on device bond0 [ 197.792708][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 197.805499][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 197.821169][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 197.839480][ T23] bridge0: port 2(bridge_slave_1) entered blocking state [ 197.849215][ T23] bridge0: port 2(bridge_slave_1) entered forwarding state [ 197.861783][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 197.872682][ T23] Bluetooth: hci3: command 0x041b tx timeout [ 197.882180][ T8684] 8021q: adding VLAN 0 to HW filter on device team0 [ 197.899218][ T2912] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 197.912243][ T2912] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 197.926430][ T2912] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 197.957426][ T1245] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 197.968501][ T1245] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 197.979362][ T1245] bridge0: port 1(bridge_slave_0) entered blocking state [ 197.988113][ T1245] bridge0: port 1(bridge_slave_0) entered forwarding state [ 198.000856][ T1245] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 198.013516][ T1245] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 198.025564][ T1245] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 198.037491][ T1245] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 198.048680][ T1245] bridge0: port 2(bridge_slave_1) entered blocking state [ 198.062933][ T1245] bridge0: port 2(bridge_slave_1) entered forwarding state [ 198.074835][ T1245] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 198.088144][ T1245] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 198.101271][ T1245] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 198.115164][ T1245] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 198.128524][ T1245] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 198.144327][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 198.155253][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 198.165532][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 198.177245][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 198.192140][ T8687] 8021q: adding VLAN 0 to HW filter on device team0 [ 198.209729][ T8718] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 198.229819][ T2799] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 198.240570][ T2799] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 198.257274][ T2799] bridge0: port 1(bridge_slave_0) entered blocking state [ 198.270497][ T2799] bridge0: port 1(bridge_slave_0) entered forwarding state [ 198.305780][ T2799] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 198.317820][ T2799] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 198.329419][ T2799] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 198.340272][ T2799] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 198.352998][ T2799] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 198.364472][ T2799] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 198.382565][ T8685] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 198.419739][ T8689] 8021q: adding VLAN 0 to HW filter on device bond0 [ 198.467946][ T2562] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 198.505843][ T2562] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 198.522860][ T2562] bridge0: port 2(bridge_slave_1) entered blocking state [ 198.536550][ T2562] bridge0: port 2(bridge_slave_1) entered forwarding state [ 198.550221][ T2562] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 198.571935][ T2562] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 198.607297][ T2562] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 198.645994][ T2562] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 198.676908][ T2562] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 198.715314][ T2562] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 198.765743][ T8689] 8021q: adding VLAN 0 to HW filter on device team0 [ 198.805507][ T2912] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 198.835761][ T2912] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 198.890339][ T2912] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 198.928482][ T2912] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 198.971933][ T2912] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 199.010076][ T2912] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 199.049558][ T2912] bridge0: port 1(bridge_slave_0) entered blocking state [ 199.078647][ T2912] bridge0: port 1(bridge_slave_0) entered forwarding state [ 199.107683][ T2912] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 199.141500][ T2912] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 199.176901][ T2912] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 199.210255][ T2912] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 199.255048][ T8718] Bluetooth: hci0: command 0x040f tx timeout [ 199.257013][ T8684] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 199.320542][ T2912] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 199.334887][ T2799] Bluetooth: hci1: command 0x040f tx timeout [ 199.342944][ T2912] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 199.385898][ T2912] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 199.401629][ T2912] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 199.423308][ T2562] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 199.445687][ T2562] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 199.457653][ T2562] bridge0: port 2(bridge_slave_1) entered blocking state [ 199.467662][ T2562] bridge0: port 2(bridge_slave_1) entered forwarding state [ 199.495968][ T2799] Bluetooth: hci2: command 0x040f tx timeout [ 199.497807][ T8687] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 199.521678][ T8687] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 199.546910][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 199.558077][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 199.577955][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 199.596210][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 199.608662][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 199.629390][ T8685] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 199.655162][ T8720] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 199.665933][ T8720] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 199.676836][ T8720] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 199.696143][ T8720] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 199.707870][ T8720] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 199.718436][ T8720] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 199.739100][ T8720] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 199.749380][ T8720] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 199.760382][ T8720] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 199.783089][ T8684] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 199.819002][ T8685] device veth0_vlan entered promiscuous mode [ 199.830038][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 199.843069][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 199.854948][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 199.869581][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 199.880653][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 199.893767][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 199.910228][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 199.922583][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 199.935103][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 199.946457][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 199.961042][ T28] Bluetooth: hci3: command 0x040f tx timeout [ 199.968906][ T8687] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 199.998021][ T8689] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 200.010520][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 200.025423][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 200.037315][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 200.047974][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 200.076611][ T8685] device veth1_vlan entered promiscuous mode [ 200.096225][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 200.112618][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 200.138054][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 200.161623][ T8684] device veth0_vlan entered promiscuous mode [ 200.177162][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 200.192780][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 200.233554][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 200.245557][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 200.259492][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 200.273542][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 200.289117][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 200.312208][ T8687] device veth0_vlan entered promiscuous mode [ 200.322944][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 200.335247][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 200.360200][ T8684] device veth1_vlan entered promiscuous mode [ 200.381239][ T8687] device veth1_vlan entered promiscuous mode [ 200.391220][ T8717] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 200.403204][ T8717] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 200.415245][ T8717] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 200.426816][ T8717] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 200.461090][ T8689] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 200.480902][ T2799] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 200.495160][ T2799] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 200.513256][ T2799] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 200.533972][ T2799] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 200.553025][ T2799] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 200.577695][ T2799] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 200.611563][ T8687] device veth0_macvtap entered promiscuous mode [ 200.630578][ T2799] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 200.655582][ T2799] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 200.675781][ T2799] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 200.696278][ T8684] device veth0_macvtap entered promiscuous mode [ 200.711054][ T8685] device veth0_macvtap entered promiscuous mode [ 200.730465][ T8687] device veth1_macvtap entered promiscuous mode [ 200.759824][ T8684] device veth1_macvtap entered promiscuous mode [ 200.773419][ T8685] device veth1_macvtap entered promiscuous mode [ 200.799577][ T8720] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 200.814350][ T8720] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 200.852791][ T8687] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 200.871228][ T2799] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 200.882865][ T2799] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 200.909434][ T8684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 200.927966][ T8684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 200.945908][ T8684] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 200.957232][ T8717] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 200.972293][ T8717] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 200.985495][ T8717] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 201.017254][ T8717] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 201.052138][ T8717] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 201.068044][ T8717] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 201.091136][ T8689] device veth0_vlan entered promiscuous mode [ 201.102924][ T8687] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 201.117265][ T8685] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 201.132257][ T8685] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.148936][ T8685] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 201.171147][ T8685] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.228809][ T8685] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 201.270406][ T2562] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 201.303555][ T2562] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 201.331551][ T2562] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 201.364143][ T2562] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 201.401885][ T2562] Bluetooth: hci0: command 0x0419 tx timeout [ 201.403218][ T8684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 201.422812][ T2562] Bluetooth: hci1: command 0x0419 tx timeout [ 201.451626][ T8684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.473724][ T8684] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 201.487512][ T8687] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 201.503950][ T8687] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 201.517247][ T8687] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 201.536676][ T8687] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 201.560988][ T8685] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 201.575234][ T2799] Bluetooth: hci2: command 0x0419 tx timeout [ 201.577761][ T8685] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.614741][ T8685] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 201.632542][ T8685] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 201.653909][ T8685] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 201.676855][ T8720] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 201.694015][ T8720] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 201.711059][ T8720] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 201.725328][ T8720] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 201.746980][ T8684] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 201.758942][ T8684] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 201.775003][ T8684] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 201.793894][ T8684] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 201.821864][ T8689] device veth1_vlan entered promiscuous mode [ 201.837550][ T8685] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 201.856588][ T8685] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 201.879467][ T8685] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 201.899305][ T8685] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 201.987145][ T2799] Bluetooth: hci3: command 0x0419 tx timeout [ 202.097716][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 202.119818][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 202.153148][ T8689] device veth0_macvtap entered promiscuous mode [ 202.221647][ T8689] device veth1_macvtap entered promiscuous mode [ 202.225949][ T2456] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 202.248224][ T8689] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 202.249395][ T2456] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 202.268033][ T8689] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 202.268043][ T8689] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 202.268047][ T8689] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 202.268054][ T8689] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 202.268059][ T8689] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 202.269450][ T8689] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 202.416475][ T2456] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 202.417068][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 202.428615][ T2456] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 202.457953][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 202.476041][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 202.490061][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 202.508794][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 202.524066][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 202.551879][ T8713] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 202.588874][ T2456] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 202.597226][ T8689] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 202.609249][ T8713] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 202.629126][ T2456] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 202.668487][ T8689] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 202.728464][ T8689] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 202.752607][ T8689] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 202.781072][ T8689] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 202.804714][ T8689] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 202.825908][ T8689] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 202.846604][ T8720] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 202.866476][ T8720] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 202.883800][ T8720] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 202.899004][ T8720] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 202.941075][ T8689] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 202.980524][ T8689] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 203.005983][ T8689] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 203.022488][ T8689] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 203.089091][ T8724] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 203.091016][ T8684] cgroup: cgroup: disabling cgroup2 socket matching due to net_prio or net_cls activation [ 203.107296][ T2456] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 203.107891][ T8724] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 203.166472][ T2456] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 203.203560][ T8718] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 203.235364][ T8718] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 07:35:11 executing program 0: r0 = openat$ptp0(0xffffff9c, &(0x7f0000000000)='/dev/ptp0\x00', 0x0, 0x0) ioctl$PTP_PIN_SETFUNC(r0, 0x40603d07, &(0x7f0000000040)) [ 203.381362][ T8] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 203.442625][ T8] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 07:35:12 executing program 1: pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = memfd_create(&(0x7f0000000240)='\xac\x00U\xd8\xdfmqq\x16\'\xe3\x83\xab\xf9\x1fW\xff~\xb7T\xd3\xc1S\xdf\x03K5S\xa4\xab>l=\xc2k\xd6y\x92\x009\xa0\xa9\xa2\xdb\x86\xf9\xaa\xa0\x8e\xcbG5a\xfa\x97\x83\xf6Tk\xaa\xca\\Wzy\x1e\xf1\xe6\x8acFF\x04\xa0\x1a|\xfaHL\t\xe3\xe7\xdf}\xd7\xa6c\xd7\xe0j\x049d\x8ds\x01', 0x0) splice(r1, &(0x7f0000000000)=0xfffffffffffffffc, r0, 0x0, 0x5, 0x0) 07:35:12 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000400)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000440)) [ 203.466041][ T8724] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 07:35:12 executing program 0: r0 = openat$ptp0(0xffffff9c, &(0x7f0000000000)='/dev/ptp0\x00', 0x0, 0x0) ioctl$PTP_PIN_SETFUNC(r0, 0x40603d07, &(0x7f0000000040)) [ 203.507214][ T1245] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 203.533287][ T8724] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 07:35:12 executing program 0: r0 = openat$ptp0(0xffffff9c, &(0x7f0000000000)='/dev/ptp0\x00', 0x0, 0x0) ioctl$PTP_PIN_SETFUNC(r0, 0x40603d07, &(0x7f0000000040)) 07:35:12 executing program 1: pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = memfd_create(&(0x7f0000000240)='\xac\x00U\xd8\xdfmqq\x16\'\xe3\x83\xab\xf9\x1fW\xff~\xb7T\xd3\xc1S\xdf\x03K5S\xa4\xab>l=\xc2k\xd6y\x92\x009\xa0\xa9\xa2\xdb\x86\xf9\xaa\xa0\x8e\xcbG5a\xfa\x97\x83\xf6Tk\xaa\xca\\Wzy\x1e\xf1\xe6\x8acFF\x04\xa0\x1a|\xfaHL\t\xe3\xe7\xdf}\xd7\xa6c\xd7\xe0j\x049d\x8ds\x01', 0x0) splice(r1, &(0x7f0000000000)=0xfffffffffffffffc, r0, 0x0, 0x5, 0x0) [ 203.553711][ T1245] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 07:35:12 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000400)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000440)) 07:35:12 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000400)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000440)) 07:35:12 executing program 1: pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = memfd_create(&(0x7f0000000240)='\xac\x00U\xd8\xdfmqq\x16\'\xe3\x83\xab\xf9\x1fW\xff~\xb7T\xd3\xc1S\xdf\x03K5S\xa4\xab>l=\xc2k\xd6y\x92\x009\xa0\xa9\xa2\xdb\x86\xf9\xaa\xa0\x8e\xcbG5a\xfa\x97\x83\xf6Tk\xaa\xca\\Wzy\x1e\xf1\xe6\x8acFF\x04\xa0\x1a|\xfaHL\t\xe3\xe7\xdf}\xd7\xa6c\xd7\xe0j\x049d\x8ds\x01', 0x0) splice(r1, &(0x7f0000000000)=0xfffffffffffffffc, r0, 0x0, 0x5, 0x0) 07:35:12 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000400)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000440)) 07:35:12 executing program 0: r0 = socket$kcm(0x29, 0x2, 0x0) getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, 0x0, 0x0) 07:35:12 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x18, 0x1e, 0x119, 0x0, 0x0, {0x2}, [@nested={0x4, 0x2}]}, 0x18}}, 0x0) 07:35:12 executing program 0: r0 = socket$kcm(0x29, 0x2, 0x0) getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, 0x0, 0x0) 07:35:12 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000400)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000440)) 07:35:12 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000400)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000440)) 07:35:12 executing program 1: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000002c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) getrlimit(0x0, &(0x7f0000000000)) 07:35:12 executing program 2: syz_open_dev$sndmidi(&(0x7f0000000000)='/dev/snd/midiC#D#\x00', 0x2, 0xc800) 07:35:12 executing program 0: r0 = socket$kcm(0x29, 0x2, 0x0) getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, 0x0, 0x0) 07:35:12 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000400)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000440)) 07:35:12 executing program 2: r0 = openat$capi20(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/capi20\x00', 0x0, 0x0) ioctl$CAPI_CLR_FLAGS(r0, 0x80044325, &(0x7f0000000200)) 07:35:12 executing program 0: r0 = socket$kcm(0x29, 0x2, 0x0) getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, 0x0, 0x0) 07:35:12 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)="2e0000003400052ba4abd32b8018007a0300fc60100002400c000200053582c137153e370900018001491d00d1bd", 0x2e}], 0x1, 0x0, 0x0, 0x4c}, 0x0) 07:35:12 executing program 3: r0 = syz_io_uring_setup(0x3ecf, &(0x7f0000000000), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000100), &(0x7f0000000140)) r1 = syz_io_uring_setup(0x71c7, &(0x7f0000000180), &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f0000000200)) r2 = openat$full(0xffffff9c, &(0x7f00000005c0)='/dev/full\x00', 0x0, 0x0) io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000240)=[r2, r0], 0x2) 07:35:12 executing program 1: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000002c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) getrlimit(0x0, &(0x7f0000000000)) 07:35:12 executing program 0: r0 = syz_open_dev$swradio(&(0x7f0000000040)='/dev/swradio#\x00', 0x0, 0x2) ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f0000000080)={0x0, 0xc, 0x4, 0x0, 0x0, {0x0, 0xea60}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "60a2d016"}, 0x0, 0x0, @fd}) 07:35:12 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)="2e0000003400052ba4abd32b8018007a0300fc60100002400c000200053582c137153e370900018001491d00d1bd", 0x2e}], 0x1, 0x0, 0x0, 0x4c}, 0x0) 07:35:12 executing program 0: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000002c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) getrlimit(0x0, &(0x7f0000000000)) 07:35:12 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)="2e0000003400052ba4abd32b8018007a0300fc60100002400c000200053582c137153e370900018001491d00d1bd", 0x2e}], 0x1, 0x0, 0x0, 0x4c}, 0x0) 07:35:12 executing program 1: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000002c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) getrlimit(0x0, &(0x7f0000000000)) 07:35:12 executing program 3: r0 = syz_io_uring_setup(0x3ecf, &(0x7f0000000000), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000100), &(0x7f0000000140)) r1 = syz_io_uring_setup(0x71c7, &(0x7f0000000180), &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080), &(0x7f0000000200)) r2 = openat$full(0xffffff9c, &(0x7f00000005c0)='/dev/full\x00', 0x0, 0x0) io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000240)=[r2, r0], 0x2) 07:35:13 executing program 1: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000002c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) getrlimit(0x0, &(0x7f0000000000)) 07:35:13 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)="2e0000003400052ba4abd32b8018007a0300fc60100002400c000200053582c137153e370900018001491d00d1bd", 0x2e}], 0x1, 0x0, 0x0, 0x4c}, 0x0) 07:35:13 executing program 0: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000002c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) getrlimit(0x0, &(0x7f0000000000)) 07:35:13 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000200)) r2 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f00000001c0)={0xfffbffff80000013}) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000000)) epoll_pwait(r2, &(0x7f0000dc7fc4)=[{}], 0x1, 0x0, 0x0, 0x0) 07:35:13 executing program 2: sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)={0x1c, 0x0, 0x0, 0x0, 0x0, {0xa}, [@BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x1c}}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$batadv(&(0x7f00000004c0)='batadv\x00') r2 = socket$inet(0x2, 0x2, 0x0) getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000280)) sendmsg$BATADV_CMD_GET_DAT_CACHE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)={0x1c, r1, 0x994189f8028f8f1d, 0x0, 0x0, {0xa}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}]}, 0x1c}}, 0x0) [ 204.893266][ T8843] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN [ 204.894943][ T8843] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 204.894943][ T8843] CPU: 3 PID: 8843 Comm: syz-executor.3 Not tainted 5.9.0-syzkaller #0 [ 204.894943][ T8843] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014 [ 204.894943][ T8843] RIP: 0010:__do_sys_io_uring_register+0x2fd2/0x3ee0 [ 204.894943][ T8843] Code: ec 03 49 c1 ee 03 49 01 ec 49 01 ee e8 37 43 9c ff 41 80 3c 24 00 0f 85 7d 0d 00 00 4d 8b af b8 01 00 00 4c 89 e8 48 c1 e8 03 <80> 3c 28 00 0f 85 58 0d 00 00 49 8b 55 00 89 d8 c1 f8 09 48 98 4c [ 204.894943][ T8843] RSP: 0018:ffffc900010f7d48 EFLAGS: 00010246 [ 204.894943][ T8843] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffc90028805000 [ 204.894943][ T8843] RDX: 0000000000040000 RSI: ffffffff81d87ae9 RDI: 0000000000000005 [ 204.894943][ T8843] RBP: dffffc0000000000 R08: 0000000000000001 R09: ffff888027776a7f [ 204.894943][ T8843] R10: 0000000000000000 R11: 0000000000000000 R12: ffffed1005401237 [ 204.894943][ T8843] R13: 0000000000000000 R14: ffffed1005401238 R15: ffff88802a009000 [ 204.894943][ T8843] FS: 0000000000000000(0000) GS:ffff88802cf00000(0063) knlGS:00000000f55a1b40 [ 205.414529][ T8843] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 205.430231][ T8843] CR2: 0000000000413720 CR3: 000000005136a000 CR4: 0000000000350ee0 [ 205.430231][ T8843] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 205.430231][ T8843] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 205.430231][ T8843] Call Trace: [ 205.430231][ T8843] ? put_old_timespec32+0x101/0x1f0 [ 205.430231][ T8843] ? get_old_timespec32+0x1f0/0x1f0 [ 205.571742][ T8843] ? __ia32_sys_futex_time32+0x30b/0x460 [ 205.574055][ T8843] ? io_async_buf_func+0x7f0/0x7f0 [ 205.574055][ T8843] ? check_preemption_disabled+0x50/0x130 [ 205.574055][ T8843] ? check_preemption_disabled+0x50/0x130 [ 205.574055][ T8843] ? syscall_enter_from_user_mode_prepare+0x13/0x30 [ 205.574055][ T8843] __do_fast_syscall_32+0x56/0x80 [ 205.689735][ T8843] do_fast_syscall_32+0x2f/0x70 [ 205.704357][ T8843] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 205.704357][ T8843] RIP: 0023:0xf7fa7549 [ 205.704357][ T8843] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 205.766959][ T8843] RSP: 002b:00000000f55a10bc EFLAGS: 00000296 ORIG_RAX: 00000000000001ab [ 205.766959][ T8843] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000000002 [ 205.860112][ T8843] RDX: 0000000020000240 RSI: 0000000000000002 RDI: 0000000000000000 [ 205.860112][ T8843] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 205.860112][ T8843] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 205.860112][ T8843] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 205.860112][ T8843] Modules linked in: [ 206.078030][ T8843] ---[ end trace d1e30a8fe8b017b0 ]--- [ 206.121837][ T8843] RIP: 0010:__do_sys_io_uring_register+0x2fd2/0x3ee0 [ 206.161886][ T8843] Code: ec 03 49 c1 ee 03 49 01 ec 49 01 ee e8 37 43 9c ff 41 80 3c 24 00 0f 85 7d 0d 00 00 4d 8b af b8 01 00 00 4c 89 e8 48 c1 e8 03 <80> 3c 28 00 0f 85 58 0d 00 00 49 8b 55 00 89 d8 c1 f8 09 48 98 4c [ 206.233349][ T8843] RSP: 0018:ffffc900010f7d48 EFLAGS: 00010246 [ 206.256933][ T8843] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffc90028805000 [ 206.317906][ T8843] RDX: 0000000000040000 RSI: ffffffff81d87ae9 RDI: 0000000000000005 [ 206.355496][ T8843] RBP: dffffc0000000000 R08: 0000000000000001 R09: ffff888027776a7f [ 206.391297][ T8843] R10: 0000000000000000 R11: 0000000000000000 R12: ffffed1005401237 [ 206.426473][ T8843] R13: 0000000000000000 R14: ffffed1005401238 R15: ffff88802a009000 [ 206.463974][ T8843] FS: 0000000000000000(0000) GS:ffff88802cd00000(0063) knlGS:00000000f55a1b40 [ 206.491981][ T8843] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 206.509495][ T8843] CR2: 000000000815e1d0 CR3: 000000005136a000 CR4: 0000000000350ee0 [ 206.524359][ T8843] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 206.537821][ T8843] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 206.556338][ T8843] Kernel panic - not syncing: Fatal exception [ 206.565626][ T8843] Kernel Offset: disabled [ 206.565626][ T8843] Rebooting in 86400 seconds..