[ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.51' (ECDSA) to the list of known hosts. 2021/01/13 22:56:05 fuzzer started 2021/01/13 22:56:05 dialing manager at 10.128.0.26:43403 2021/01/13 22:56:05 syscalls: 3495 2021/01/13 22:56:05 code coverage: enabled 2021/01/13 22:56:05 comparison tracing: enabled 2021/01/13 22:56:05 extra coverage: enabled 2021/01/13 22:56:05 setuid sandbox: enabled 2021/01/13 22:56:05 namespace sandbox: enabled 2021/01/13 22:56:05 Android sandbox: /sys/fs/selinux/policy does not exist 2021/01/13 22:56:05 fault injection: enabled 2021/01/13 22:56:05 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2021/01/13 22:56:05 net packet injection: enabled 2021/01/13 22:56:05 net device setup: enabled 2021/01/13 22:56:05 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2021/01/13 22:56:05 devlink PCI setup: PCI device 0000:00:10.0 is not available 2021/01/13 22:56:05 USB emulation: enabled 2021/01/13 22:56:05 hci packet injection: enabled 2021/01/13 22:56:05 wifi device emulation: enabled 2021/01/13 22:56:05 fetching corpus: 0, signal 0/0 (executing program) 2021/01/13 22:56:05 fetching corpus: 1, signal 140/140 (executing program) 2021/01/13 22:56:05 fetching corpus: 1, signal 140/140 (executing program) 2021/01/13 22:56:07 starting 6 fuzzer processes 22:56:07 executing program 0: r0 = socket$phonet_pipe(0x23, 0x5, 0x2) connect$phonet_pipe(r0, &(0x7f0000000180)={0x23, 0x0, 0x1}, 0x10) 22:56:07 executing program 1: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_sctp_SCTP_AUTH_KEY(r0, 0x84, 0x65, &(0x7f00000002c0), 0x8) 22:56:08 executing program 2: ioctl$PPPIOCSACTIVE(0xffffffffffffffff, 0x40107446, &(0x7f0000000100)={0x8, &(0x7f00000000c0)=[{0x400, 0x9, 0x9, 0x8000}, {0x4, 0x6a, 0x1f, 0x8040}, {0xfffa, 0xff, 0x20, 0x10000}, {0x4476, 0x26, 0x44}, {0x3, 0x4, 0x5, 0x6}, {0x5, 0x76, 0x80, 0x6}, {0xfff0, 0x6, 0x6, 0x4}, {0xffff, 0x80, 0x0, 0x6}]}) r0 = socket$inet6_udp(0xa, 0x2, 0x0) openat$ppp(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ppp\x00', 0x20000, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8914, &(0x7f0000000080)={'veth0_vlan\x00', 0x0}) r1 = socket(0x2, 0xa, 0x0) setsockopt$XDP_TX_RING(r1, 0x11b, 0x3, 0x0, 0x0) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000000)={0x6, 0x7, 'syz0\x00'}, &(0x7f0000000040)=0x28) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r2, 0x8983, &(0x7f0000000200)={0x0, 'geneve1\x00', {}, 0xd9c}) ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f00000001c0)={'geneve1\x00', &(0x7f0000000180)=ANY=[@ANYBLOB="47000000ff000000030000000700000005a8c000080000000900000008000000000000000700000000040000"]}) 22:56:08 executing program 3: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)) r0 = socket$isdn_base(0x22, 0x3, 0x0) ioctl$IMGETCOUNT(r0, 0x80044943, &(0x7f0000000180)) 22:56:08 executing program 4: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000000)={'wg0\x00', 0x0}) bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0x20, 0x7, 0x3, 0x0, 0x1, 0x0, [], r1}, 0x40) 22:56:08 executing program 5: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_sctp_SCTP_AUTH_KEY(r0, 0x84, 0xc, &(0x7f00000002c0), 0x8) syzkaller login: [ 51.229884][ T8465] IPVS: ftp: loaded support on port[0] = 21 [ 51.391004][ T8465] chnl_net:caif_netlink_parms(): no params data found [ 51.507574][ T8465] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.517410][ T8465] bridge0: port 1(bridge_slave_0) entered disabled state [ 51.525797][ T8465] device bridge_slave_0 entered promiscuous mode [ 51.535155][ T8465] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.542260][ T8465] bridge0: port 2(bridge_slave_1) entered disabled state [ 51.551010][ T8465] device bridge_slave_1 entered promiscuous mode [ 51.566676][ T8467] IPVS: ftp: loaded support on port[0] = 21 [ 51.576139][ T8465] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 51.587320][ T8465] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 51.611211][ T8465] team0: Port device team_slave_0 added [ 51.620091][ T8465] team0: Port device team_slave_1 added [ 51.644184][ T8465] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 51.678538][ T8465] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 51.706486][ T8465] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 51.728994][ T8465] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 51.736697][ T8465] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 51.766838][ T8465] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 51.800352][ T8465] device hsr_slave_0 entered promiscuous mode [ 51.807591][ T8465] device hsr_slave_1 entered promiscuous mode [ 51.837892][ T8469] IPVS: ftp: loaded support on port[0] = 21 [ 51.878196][ T8471] IPVS: ftp: loaded support on port[0] = 21 [ 52.177042][ T8467] chnl_net:caif_netlink_parms(): no params data found [ 52.179672][ T8473] IPVS: ftp: loaded support on port[0] = 21 [ 52.440800][ T8471] chnl_net:caif_netlink_parms(): no params data found [ 52.443013][ T8486] IPVS: ftp: loaded support on port[0] = 21 [ 52.502354][ T8465] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 52.537626][ T8469] chnl_net:caif_netlink_parms(): no params data found [ 52.552675][ T8465] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 52.563722][ T8467] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.573818][ T8467] bridge0: port 1(bridge_slave_0) entered disabled state [ 52.582650][ T8467] device bridge_slave_0 entered promiscuous mode [ 52.593111][ T8467] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.600873][ T8467] bridge0: port 2(bridge_slave_1) entered disabled state [ 52.610108][ T8467] device bridge_slave_1 entered promiscuous mode [ 52.629135][ T8465] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 52.638762][ T8465] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 52.693906][ T8467] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 52.743361][ T8467] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 52.797884][ T8467] team0: Port device team_slave_0 added [ 52.816086][ T8467] team0: Port device team_slave_1 added [ 52.840205][ T8467] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 52.850914][ T8467] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 52.878826][ T8467] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 52.908314][ T8471] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.918637][ T8471] bridge0: port 1(bridge_slave_0) entered disabled state [ 52.927193][ T8471] device bridge_slave_0 entered promiscuous mode [ 52.936314][ T8471] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.943373][ T8471] bridge0: port 2(bridge_slave_1) entered disabled state [ 52.952253][ T8471] device bridge_slave_1 entered promiscuous mode [ 52.966683][ T8467] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 52.973746][ T8467] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 52.999933][ T8467] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 53.041719][ T8469] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.049256][ T8469] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.058399][ T8469] device bridge_slave_0 entered promiscuous mode [ 53.067823][ T8469] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.075803][ T8469] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.083484][ T8469] device bridge_slave_1 entered promiscuous mode [ 53.106007][ T8471] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 53.117464][ T8471] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 53.186100][ T8471] team0: Port device team_slave_0 added [ 53.193994][ T8469] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 53.245329][ T2996] Bluetooth: hci0: command 0x0409 tx timeout [ 53.282473][ T8471] team0: Port device team_slave_1 added [ 53.292235][ T8469] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 53.307033][ T8473] chnl_net:caif_netlink_parms(): no params data found [ 53.324523][ T8467] device hsr_slave_0 entered promiscuous mode [ 53.331658][ T8467] device hsr_slave_1 entered promiscuous mode [ 53.342438][ T8467] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 53.351063][ T8467] Cannot create hsr debugfs directory [ 53.385683][ T8469] team0: Port device team_slave_0 added [ 53.416507][ T8471] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 53.423482][ T8471] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 53.449906][ T8471] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 53.463253][ T8486] chnl_net:caif_netlink_parms(): no params data found [ 53.473366][ T8469] team0: Port device team_slave_1 added [ 53.484714][ T3125] Bluetooth: hci1: command 0x0409 tx timeout [ 53.517298][ T8471] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 53.524293][ T8471] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 53.550262][ T8471] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 53.626716][ T8469] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 53.633699][ T8469] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 53.665873][ T8469] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 53.688470][ T8469] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 53.698550][ T8469] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 53.724906][ T52] Bluetooth: hci2: command 0x0409 tx timeout [ 53.730305][ T8469] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 53.751185][ T8465] 8021q: adding VLAN 0 to HW filter on device bond0 [ 53.764229][ T8471] device hsr_slave_0 entered promiscuous mode [ 53.773526][ T8471] device hsr_slave_1 entered promiscuous mode [ 53.781771][ T8471] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 53.790175][ T8471] Cannot create hsr debugfs directory [ 53.874195][ T8465] 8021q: adding VLAN 0 to HW filter on device team0 [ 53.896701][ T9185] Bluetooth: hci3: command 0x0409 tx timeout [ 53.938678][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 53.963661][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 53.985787][ T8469] device hsr_slave_0 entered promiscuous mode [ 53.993673][ T8469] device hsr_slave_1 entered promiscuous mode [ 54.003678][ T8469] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 54.012346][ T8469] Cannot create hsr debugfs directory [ 54.032281][ T8473] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.041177][ T8473] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.051407][ T8473] device bridge_slave_0 entered promiscuous mode [ 54.067973][ T8473] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.076687][ T8473] bridge0: port 2(bridge_slave_1) entered disabled state [ 54.085854][ T8473] device bridge_slave_1 entered promiscuous mode [ 54.126015][ T9390] Bluetooth: hci4: command 0x0409 tx timeout [ 54.133012][ T52] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 54.147627][ T52] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 54.156183][ T52] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.163423][ T52] bridge0: port 1(bridge_slave_0) entered forwarding state [ 54.178897][ T9390] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 54.190647][ T8486] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.198941][ T8486] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.207537][ T8486] device bridge_slave_0 entered promiscuous mode [ 54.226049][ T8473] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 54.240109][ T8473] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 54.256934][ T3125] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 54.266353][ T3125] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 54.276181][ T3125] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.283595][ T3125] bridge0: port 2(bridge_slave_1) entered forwarding state [ 54.292351][ T8486] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.305361][ T8486] bridge0: port 2(bridge_slave_1) entered disabled state [ 54.313070][ T8486] device bridge_slave_1 entered promiscuous mode [ 54.373417][ T8486] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 54.373820][ T9539] Bluetooth: hci5: command 0x0409 tx timeout [ 54.407407][ T9390] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 54.429687][ T8486] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 54.448964][ T8473] team0: Port device team_slave_0 added [ 54.458231][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 54.498906][ T8473] team0: Port device team_slave_1 added [ 54.550843][ T9539] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 54.559913][ T9539] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 54.587725][ T8486] team0: Port device team_slave_0 added [ 54.608829][ T9390] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 54.617970][ T9390] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 54.628110][ T9390] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 54.638737][ T9390] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 54.647650][ T9390] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 54.656903][ T9390] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 54.666530][ T9390] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 54.676059][ T8473] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 54.683003][ T8473] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 54.709171][ T8473] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 54.722517][ T8486] team0: Port device team_slave_1 added [ 54.744785][ T8486] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 54.751782][ T8486] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 54.778274][ T8486] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 54.793295][ T8467] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 54.809369][ T8473] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 54.822082][ T8473] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 54.849317][ T8473] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 54.862303][ T8465] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 54.875864][ T8486] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 54.882803][ T8486] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 54.910878][ T8486] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 54.922591][ T8467] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 54.944866][ T8467] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 54.969765][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 54.977892][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 55.001483][ T8465] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 55.016289][ T8467] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 55.051066][ T8486] device hsr_slave_0 entered promiscuous mode [ 55.059649][ T8486] device hsr_slave_1 entered promiscuous mode [ 55.069699][ T8486] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 55.079975][ T8486] Cannot create hsr debugfs directory [ 55.098821][ T8473] device hsr_slave_0 entered promiscuous mode [ 55.108525][ T8473] device hsr_slave_1 entered promiscuous mode [ 55.116473][ T8473] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 55.124028][ T8473] Cannot create hsr debugfs directory [ 55.166615][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 55.176627][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 55.199288][ T8469] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 55.230088][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 55.239953][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 55.252970][ T8465] device veth0_vlan entered promiscuous mode [ 55.265945][ T8469] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 55.288486][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 55.299077][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 55.324811][ T9539] Bluetooth: hci0: command 0x041b tx timeout [ 55.338657][ T8469] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 55.378736][ T8471] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 55.392761][ T8469] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 55.402608][ T8465] device veth1_vlan entered promiscuous mode [ 55.422877][ T8471] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 55.479534][ T8471] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 55.490815][ T8471] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 55.508244][ T8467] 8021q: adding VLAN 0 to HW filter on device bond0 [ 55.564744][ T9539] Bluetooth: hci1: command 0x041b tx timeout [ 55.581206][ T8465] device veth0_macvtap entered promiscuous mode [ 55.598284][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 55.610959][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 55.621368][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 55.630957][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 55.639385][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 55.649200][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 55.690324][ T8465] device veth1_macvtap entered promiscuous mode [ 55.700278][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 55.713940][ T8467] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.768960][ T9539] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 55.783155][ T9539] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 55.792243][ T9539] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.799353][ T9539] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.808425][ T9539] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 55.817146][ T9539] Bluetooth: hci2: command 0x041b tx timeout [ 55.828119][ T8486] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 55.845950][ T8486] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 55.865845][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 55.875342][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 55.884307][ T2996] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.891379][ T2996] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.900458][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 55.928906][ T8486] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 55.957398][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 55.967154][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 55.977185][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 55.987775][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 55.997444][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 56.007161][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 56.016235][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 56.027796][ T8465] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 56.027991][ T2996] Bluetooth: hci3: command 0x041b tx timeout [ 56.041858][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 56.049753][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 56.058285][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 56.066773][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 56.075673][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 56.086139][ T8486] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 56.106083][ T8473] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 56.118586][ T8467] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 56.130808][ T8465] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 56.142804][ T8465] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.155169][ T8465] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.163858][ T8465] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.181262][ T8465] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.195126][ T8473] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 56.204377][ T2996] Bluetooth: hci4: command 0x041b tx timeout [ 56.205958][ T8473] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 56.221432][ T9390] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 56.231471][ T9390] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 56.262606][ T8473] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 56.277805][ T8469] 8021q: adding VLAN 0 to HW filter on device bond0 [ 56.295098][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 56.302506][ T2996] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 56.341119][ T9539] ================================================================================ [ 56.350539][ T9539] UBSAN: object-size-mismatch in ./include/linux/skbuff.h:2021:28 [ 56.358428][ T9539] member access within address 000000005f34de2b with insufficient space [ 56.366882][ T9539] for an object of type 'struct sk_buff' [ 56.372513][ T9539] CPU: 1 PID: 9539 Comm: kworker/1:4 Not tainted 5.10.0-syzkaller #0 [ 56.380555][ T9539] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 56.390613][ T9539] Workqueue: ipv6_addrconf addrconf_dad_work [ 56.396576][ T9539] Call Trace: [ 56.399847][ T9539] dump_stack+0x137/0x1be [ 56.404159][ T9539] ? wake_up_klogd+0xb2/0xf0 [ 56.408733][ T9539] ubsan_type_mismatch_common+0x1e2/0x390 [ 56.414431][ T9539] __ubsan_handle_type_mismatch_v1+0x41/0x50 [ 56.420389][ T9539] wg_xmit+0x45d/0xdf0 [ 56.424451][ T9539] netdev_start_xmit+0x7b/0x140 [ 56.429282][ T9539] dev_hard_start_xmit+0x182/0x2e0 [ 56.434377][ T9539] __dev_queue_xmit+0x1229/0x1e60 [ 56.439391][ T9539] ip6_finish_output2+0xe8d/0x11e0 [ 56.444498][ T9539] ? __ip6_finish_output+0x26b/0x390 [ 56.449783][ T9539] ndisc_send_skb+0x85b/0xc70 [ 56.454458][ T9539] addrconf_dad_completed+0x5ef/0x990 [ 56.459813][ T9539] addrconf_dad_work+0xb92/0x1480 [ 56.464821][ T9539] ? rcu_read_lock_sched_held+0x62/0x100 [ 56.470430][ T9539] process_one_work+0x471/0x830 [ 56.475281][ T9539] worker_thread+0x757/0xb10 [ 56.479864][ T9539] ? __kthread_parkme+0x148/0x190 [ 56.484866][ T9539] ? pr_cont_work+0x100/0x100 [ 56.489516][ T9539] kthread+0x39a/0x3c0 [ 56.493556][ T9539] ? pr_cont_work+0x100/0x100 [ 56.498208][ T9539] ? __list_add+0xc0/0xc0 [ 56.502516][ T9539] ret_from_fork+0x1f/0x30 [ 56.506995][ T9539] ================================================================================ [ 56.516318][ T9539] Kernel panic - not syncing: panic_on_warn set ... [ 56.522911][ T9539] CPU: 1 PID: 9539 Comm: kworker/1:4 Not tainted 5.10.0-syzkaller #0 [ 56.530976][ T9539] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 56.541033][ T9539] Workqueue: ipv6_addrconf addrconf_dad_work [ 56.546998][ T9539] Call Trace: [ 56.550448][ T9539] dump_stack+0x137/0x1be [ 56.554763][ T9539] ? panic+0x226/0x830 [ 56.558814][ T9539] panic+0x2e3/0x830 [ 56.562718][ T9539] ? ubsan_type_mismatch_common+0x206/0x390 [ 56.568598][ T9539] ubsan_type_mismatch_common+0x388/0x390 [ 56.574307][ T9539] __ubsan_handle_type_mismatch_v1+0x41/0x50 [ 56.580273][ T9539] wg_xmit+0x45d/0xdf0 [ 56.584352][ T9539] netdev_start_xmit+0x7b/0x140 [ 56.589186][ T9539] dev_hard_start_xmit+0x182/0x2e0 [ 56.594283][ T9539] __dev_queue_xmit+0x1229/0x1e60 [ 56.599313][ T9539] ip6_finish_output2+0xe8d/0x11e0 [ 56.604410][ T9539] ? __ip6_finish_output+0x26b/0x390 [ 56.609679][ T9539] ndisc_send_skb+0x85b/0xc70 [ 56.614352][ T9539] addrconf_dad_completed+0x5ef/0x990 [ 56.619729][ T9539] addrconf_dad_work+0xb92/0x1480 [ 56.624738][ T9539] ? rcu_read_lock_sched_held+0x62/0x100 [ 56.630367][ T9539] process_one_work+0x471/0x830 [ 56.635217][ T9539] worker_thread+0x757/0xb10 [ 56.639790][ T9539] ? __kthread_parkme+0x148/0x190 [ 56.644808][ T9539] ? pr_cont_work+0x100/0x100 [ 56.649461][ T9539] kthread+0x39a/0x3c0 [ 56.653520][ T9539] ? pr_cont_work+0x100/0x100 [ 56.658171][ T9539] ? __list_add+0xc0/0xc0 [ 56.662481][ T9539] ret_from_fork+0x1f/0x30 [ 56.667888][ T9539] Kernel Offset: disabled [ 56.672311][ T9539] Rebooting in 86400 seconds..