[ OK ] Started OpenBSD Secure Shell server. [ OK ] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.146' (ECDSA) to the list of known hosts. 2021/01/13 22:23:20 fuzzer started 2021/01/13 22:23:20 dialing manager at 10.128.0.26:43403 2021/01/13 22:23:20 syscalls: 3495 2021/01/13 22:23:20 code coverage: enabled 2021/01/13 22:23:20 comparison tracing: enabled 2021/01/13 22:23:20 extra coverage: enabled 2021/01/13 22:23:20 setuid sandbox: enabled 2021/01/13 22:23:20 namespace sandbox: enabled 2021/01/13 22:23:20 Android sandbox: /sys/fs/selinux/policy does not exist 2021/01/13 22:23:20 fault injection: enabled 2021/01/13 22:23:20 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2021/01/13 22:23:20 net packet injection: enabled 2021/01/13 22:23:20 net device setup: enabled 2021/01/13 22:23:20 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2021/01/13 22:23:20 devlink PCI setup: PCI device 0000:00:10.0 is not available 2021/01/13 22:23:20 USB emulation: enabled 2021/01/13 22:23:20 hci packet injection: enabled 2021/01/13 22:23:20 wifi device emulation: enabled 2021/01/13 22:23:20 fetching corpus: 0, signal 0/0 (executing program) 2021/01/13 22:23:20 fetching corpus: 1, signal 140/140 (executing program) 2021/01/13 22:23:20 fetching corpus: 1, signal 140/140 (executing program) 2021/01/13 22:23:22 starting 6 fuzzer processes 22:23:22 executing program 0: syz_emit_ethernet(0x380, &(0x7f0000000080)={@local, @empty, @val, {@ipv6}}, 0x0) 22:23:23 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_mreqn(r0, 0x0, 0x9, &(0x7f0000000040)={@rand_addr, @multicast2}, 0xc) 22:23:23 executing program 2: r0 = socket$inet6_tcp(0x1c, 0x1, 0x0) sendto$inet6(r0, &(0x7f0000000340)="a0", 0x1, 0x0, &(0x7f00000001c0)={0x1c, 0x1c, 0x1}, 0x1c) 22:23:23 executing program 3: syz_emit_ethernet(0x2a, &(0x7f00000046c0)={@local, @empty, @val, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x0, @local, @empty, @random="48e130230266", @local={0xac, 0x14, 0x0}}}}}, 0x0) 22:23:23 executing program 4: mlock(&(0x7f0000ffe000/0x2000)=nil, 0x2000) munlockall() 22:23:23 executing program 5: getgroups(0x45, &(0x7f0000000000)) syzkaller login: [ 46.383003][ T8467] IPVS: ftp: loaded support on port[0] = 21 [ 46.516806][ T8467] chnl_net:caif_netlink_parms(): no params data found [ 46.639248][ T8469] IPVS: ftp: loaded support on port[0] = 21 [ 46.644169][ T8467] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.656619][ T8467] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.665768][ T8467] device bridge_slave_0 entered promiscuous mode [ 46.675308][ T8467] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.683705][ T8467] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.691861][ T8467] device bridge_slave_1 entered promiscuous mode [ 46.717411][ T8467] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.757725][ T8467] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.805012][ T8467] team0: Port device team_slave_0 added [ 46.814307][ T8467] team0: Port device team_slave_1 added [ 46.833776][ T8471] IPVS: ftp: loaded support on port[0] = 21 [ 46.880372][ T8467] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.887320][ T8467] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.913346][ T8467] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.928049][ T8467] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.935722][ T8467] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.962392][ T8467] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 47.034952][ T8467] device hsr_slave_0 entered promiscuous mode [ 47.042978][ T8467] device hsr_slave_1 entered promiscuous mode [ 47.085658][ T8473] IPVS: ftp: loaded support on port[0] = 21 [ 47.233766][ T8471] chnl_net:caif_netlink_parms(): no params data found [ 47.265733][ T8469] chnl_net:caif_netlink_parms(): no params data found [ 47.286108][ T8475] IPVS: ftp: loaded support on port[0] = 21 [ 47.475275][ T8477] IPVS: ftp: loaded support on port[0] = 21 [ 47.532594][ T8471] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.541565][ T8471] bridge0: port 1(bridge_slave_0) entered disabled state [ 47.551099][ T8471] device bridge_slave_0 entered promiscuous mode [ 47.594493][ T8469] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.613149][ T8469] bridge0: port 1(bridge_slave_0) entered disabled state [ 47.623198][ T8469] device bridge_slave_0 entered promiscuous mode [ 47.631513][ T8471] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.640874][ T8471] bridge0: port 2(bridge_slave_1) entered disabled state [ 47.650043][ T8471] device bridge_slave_1 entered promiscuous mode [ 47.673245][ T8471] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 47.684860][ T8471] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 47.708533][ T8471] team0: Port device team_slave_0 added [ 47.714550][ T8469] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.722288][ T8469] bridge0: port 2(bridge_slave_1) entered disabled state [ 47.730307][ T8469] device bridge_slave_1 entered promiscuous mode [ 47.777408][ T8471] team0: Port device team_slave_1 added [ 47.809561][ T8469] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 47.822534][ T8469] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 47.854781][ T8471] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 47.861954][ T8471] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.888078][ T8471] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 47.901694][ T8471] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 47.908696][ T8471] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.934679][ T8471] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 47.957702][ T8469] team0: Port device team_slave_0 added [ 47.972365][ T8467] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 47.981438][ T8473] chnl_net:caif_netlink_parms(): no params data found [ 48.003674][ T8469] team0: Port device team_slave_1 added [ 48.023756][ T8467] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 48.048607][ T8471] device hsr_slave_0 entered promiscuous mode [ 48.055122][ T8471] device hsr_slave_1 entered promiscuous mode [ 48.064157][ T8471] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 48.072336][ T8471] Cannot create hsr debugfs directory [ 48.080481][ T8469] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 48.087414][ T8469] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 48.113820][ T8469] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 48.125271][ T8467] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 48.167497][ T8469] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 48.175933][ T8469] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 48.207030][ T8469] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 48.235341][ T8469] device hsr_slave_0 entered promiscuous mode [ 48.243012][ T8469] device hsr_slave_1 entered promiscuous mode [ 48.253197][ T8469] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 48.262148][ T8469] Cannot create hsr debugfs directory [ 48.280454][ T8467] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 48.383823][ T8475] chnl_net:caif_netlink_parms(): no params data found [ 48.399007][ T56] Bluetooth: hci0: command 0x0409 tx timeout [ 48.453846][ T8473] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.462168][ T8473] bridge0: port 1(bridge_slave_0) entered disabled state [ 48.470922][ T8473] device bridge_slave_0 entered promiscuous mode [ 48.487389][ T8477] chnl_net:caif_netlink_parms(): no params data found [ 48.511612][ T8473] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.521764][ T8473] bridge0: port 2(bridge_slave_1) entered disabled state [ 48.530407][ T8473] device bridge_slave_1 entered promiscuous mode [ 48.617461][ T8473] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 48.638638][ T3126] Bluetooth: hci1: command 0x0409 tx timeout [ 48.680366][ T8473] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 48.693257][ T8467] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.751293][ T8475] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.759995][ T8475] bridge0: port 1(bridge_slave_0) entered disabled state [ 48.767631][ T8475] device bridge_slave_0 entered promiscuous mode [ 48.795400][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 48.798126][ T56] Bluetooth: hci2: command 0x0409 tx timeout [ 48.804558][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 48.823615][ T8467] 8021q: adding VLAN 0 to HW filter on device team0 [ 48.831877][ T8475] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.839923][ T8475] bridge0: port 2(bridge_slave_1) entered disabled state [ 48.847601][ T8475] device bridge_slave_1 entered promiscuous mode [ 48.872991][ T8473] team0: Port device team_slave_0 added [ 48.890855][ T8477] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.898591][ T8477] bridge0: port 1(bridge_slave_0) entered disabled state [ 48.906188][ T8477] device bridge_slave_0 entered promiscuous mode [ 48.919677][ T8473] team0: Port device team_slave_1 added [ 48.952691][ T8475] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 48.967531][ T8477] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.975606][ T8477] bridge0: port 2(bridge_slave_1) entered disabled state [ 48.983788][ T8477] device bridge_slave_1 entered promiscuous mode [ 48.995252][ T3126] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 49.003991][ T3126] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 49.012871][ T3126] bridge0: port 1(bridge_slave_0) entered blocking state [ 49.020171][ T3126] bridge0: port 1(bridge_slave_0) entered forwarding state [ 49.037076][ T8471] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 49.038663][ T9551] Bluetooth: hci3: command 0x0409 tx timeout [ 49.063169][ T8475] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 49.093458][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 49.101894][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 49.111826][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 49.120664][ T56] bridge0: port 2(bridge_slave_1) entered blocking state [ 49.127703][ T56] bridge0: port 2(bridge_slave_1) entered forwarding state [ 49.136458][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 49.160498][ T8473] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 49.167455][ T8473] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 49.195217][ T8473] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 49.206479][ T7] Bluetooth: hci4: command 0x0409 tx timeout [ 49.210418][ T8473] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 49.223865][ T8473] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 49.251104][ T8473] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 49.263851][ T8471] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 49.281473][ T8477] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 49.292551][ T8475] team0: Port device team_slave_0 added [ 49.301054][ T8469] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 49.310740][ T8469] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 49.324762][ T8469] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 49.334615][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 49.343263][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 49.352535][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 49.361025][ T8471] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 49.368172][ T7] Bluetooth: hci5: command 0x0409 tx timeout [ 49.376899][ T8471] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 49.389535][ T8477] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 49.405610][ T8475] team0: Port device team_slave_1 added [ 49.415785][ T8469] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 49.431930][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 49.440103][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 49.448895][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 49.474959][ T8467] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 49.495257][ T8467] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 49.518220][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 49.526878][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 49.536877][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 49.545247][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 49.556769][ T8477] team0: Port device team_slave_0 added [ 49.568974][ T8475] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 49.576509][ T8475] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 49.603581][ T8475] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 49.619806][ T8473] device hsr_slave_0 entered promiscuous mode [ 49.626448][ T8473] device hsr_slave_1 entered promiscuous mode [ 49.634056][ T8473] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 49.643207][ T8473] Cannot create hsr debugfs directory [ 49.674561][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 49.691241][ T8477] team0: Port device team_slave_1 added [ 49.697115][ T8475] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 49.706843][ T8475] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 49.734146][ T8475] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 49.833628][ T8467] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 49.844005][ T8477] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 49.852448][ T8477] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 49.879687][ T8477] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 49.912445][ T8475] device hsr_slave_0 entered promiscuous mode [ 49.920814][ T8475] device hsr_slave_1 entered promiscuous mode [ 49.927248][ T8475] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 49.936230][ T8475] Cannot create hsr debugfs directory [ 49.943009][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 49.951454][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 50.007325][ T8477] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 50.014800][ T8477] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 50.042754][ T8477] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 50.102475][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 50.115481][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 50.156121][ T8477] device hsr_slave_0 entered promiscuous mode [ 50.163423][ T8477] device hsr_slave_1 entered promiscuous mode [ 50.174772][ T8477] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 50.182891][ T8477] Cannot create hsr debugfs directory [ 50.213170][ T8469] 8021q: adding VLAN 0 to HW filter on device bond0 [ 50.239854][ T8471] 8021q: adding VLAN 0 to HW filter on device bond0 [ 50.253641][ T9551] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 50.261947][ T9551] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 50.277152][ T8473] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 50.296092][ T8469] 8021q: adding VLAN 0 to HW filter on device team0 [ 50.304317][ T8467] device veth0_vlan entered promiscuous mode [ 50.318396][ T9551] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 50.326158][ T9551] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 50.334663][ T9551] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 50.343131][ T9551] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 50.355033][ T8473] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 50.367259][ T8473] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 50.376114][ T8473] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 50.391806][ T8467] device veth1_vlan entered promiscuous mode [ 50.433947][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 50.442276][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 50.451786][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 50.461185][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 50.469767][ T56] bridge0: port 1(bridge_slave_0) entered blocking state [ 50.476790][ T56] bridge0: port 1(bridge_slave_0) entered forwarding state [ 50.485262][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 50.487779][ T5] Bluetooth: hci0: command 0x041b tx timeout [ 50.493556][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 50.506365][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 50.514930][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 50.523523][ T56] bridge0: port 2(bridge_slave_1) entered blocking state [ 50.530671][ T56] bridge0: port 2(bridge_slave_1) entered forwarding state [ 50.541861][ T8471] 8021q: adding VLAN 0 to HW filter on device team0 [ 50.571071][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 50.579157][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 50.588421][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 50.596901][ T56] bridge0: port 1(bridge_slave_0) entered blocking state [ 50.603991][ T56] bridge0: port 1(bridge_slave_0) entered forwarding state [ 50.626301][ T8467] device veth0_macvtap entered promiscuous mode [ 50.685832][ T9551] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 50.694258][ T9551] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 50.703606][ T9551] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 50.712644][ T9551] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 50.722279][ T9551] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 50.727764][ T5] Bluetooth: hci1: command 0x041b tx timeout [ 50.731724][ T9551] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 50.745299][ T9551] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 50.754043][ T9551] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 50.762984][ T9551] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 50.772213][ T9551] bridge0: port 2(bridge_slave_1) entered blocking state [ 50.779343][ T9551] bridge0: port 2(bridge_slave_1) entered forwarding state [ 50.786897][ T9551] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 50.796923][ T9551] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 50.805832][ T9551] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 50.815068][ T9551] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 50.823880][ T9551] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 50.833142][ T9551] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 50.844442][ T8467] device veth1_macvtap entered promiscuous mode [ 50.872395][ T8469] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 50.883272][ T5] Bluetooth: hci2: command 0x041b tx timeout [ 50.890181][ T8469] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 50.904362][ T3126] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 50.914022][ T3126] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 50.922468][ T3126] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 50.930781][ T3126] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 50.939395][ T3126] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 50.948324][ T3126] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 50.956603][ T3126] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 50.965560][ T3126] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 50.974618][ T3126] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 51.022137][ T3126] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 51.032392][ T3126] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 51.041957][ T3126] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 51.052911][ T3126] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 51.061670][ T3126] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 51.070232][ T3126] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 51.078996][ T3126] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 51.097867][ T8471] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 51.114758][ T8469] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 51.121907][ T5] Bluetooth: hci3: command 0x041b tx timeout [ 51.141741][ T8467] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 51.157064][ T8467] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 51.166072][ T8477] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 51.178663][ T8477] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 51.187159][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 51.198688][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 51.207179][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 51.217096][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 51.243619][ T8467] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 51.253439][ T8467] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 51.266081][ T8467] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 51.277106][ T8467] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 51.289586][ T7] Bluetooth: hci4: command 0x041b tx timeout [ 51.300200][ T8477] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 51.309662][ T8477] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 51.350919][ T5] ================================================================================ [ 51.360336][ T5] UBSAN: object-size-mismatch in ./include/linux/skbuff.h:2021:28 [ 51.368199][ T5] member access within address 00000000e4f48a9b with insufficient space [ 51.376517][ T5] for an object of type 'struct sk_buff' [ 51.382186][ T5] CPU: 0 PID: 5 Comm: kworker/0:0 Not tainted 5.10.0-syzkaller #0 [ 51.389969][ T5] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 51.400021][ T5] Workqueue: ipv6_addrconf addrconf_dad_work [ 51.405973][ T5] Call Trace: [ 51.409238][ T5] dump_stack+0x137/0x1be [ 51.413537][ T5] ? wake_up_klogd+0xb2/0xf0 [ 51.418113][ T5] ubsan_type_mismatch_common+0x1e2/0x390 [ 51.423830][ T5] __ubsan_handle_type_mismatch_v1+0x41/0x50 [ 51.429790][ T5] wg_xmit+0x45d/0xdf0 [ 51.433843][ T5] netdev_start_xmit+0x7b/0x140 [ 51.438689][ T5] dev_hard_start_xmit+0x182/0x2e0 [ 51.443794][ T5] __dev_queue_xmit+0x1229/0x1e60 [ 51.448812][ T5] ip6_finish_output2+0xe8d/0x11e0 [ 51.453909][ T5] ? __ip6_finish_output+0x26b/0x390 [ 51.459172][ T5] ndisc_send_skb+0x85b/0xc70 [ 51.463834][ T5] addrconf_dad_completed+0x5ef/0x990 [ 51.469192][ T5] addrconf_dad_work+0xb92/0x1480 [ 51.474191][ T5] ? rcu_read_lock_sched_held+0x62/0x100 [ 51.479796][ T5] process_one_work+0x471/0x830 [ 51.484626][ T5] worker_thread+0x757/0xb10 [ 51.489203][ T5] ? pr_cont_work+0x100/0x100 [ 51.493856][ T5] kthread+0x39a/0x3c0 [ 51.497904][ T5] ? pr_cont_work+0x100/0x100 [ 51.502581][ T5] ? __list_add+0xc0/0xc0 [ 51.506885][ T5] ret_from_fork+0x1f/0x30 [ 51.511353][ T5] ================================================================================ [ 51.520659][ T5] Kernel panic - not syncing: panic_on_warn set ... [ 51.527248][ T5] CPU: 0 PID: 5 Comm: kworker/0:0 Not tainted 5.10.0-syzkaller #0 [ 51.535040][ T5] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 51.545222][ T5] Workqueue: ipv6_addrconf addrconf_dad_work [ 51.551177][ T5] Call Trace: [ 51.554451][ T5] dump_stack+0x137/0x1be [ 51.558756][ T5] ? panic+0x226/0x830 [ 51.562798][ T5] panic+0x2e3/0x830 [ 51.566667][ T5] ? ubsan_type_mismatch_common+0x206/0x390 [ 51.572543][ T5] ubsan_type_mismatch_common+0x388/0x390 [ 51.578254][ T5] __ubsan_handle_type_mismatch_v1+0x41/0x50 [ 51.584216][ T5] wg_xmit+0x45d/0xdf0 [ 51.588279][ T5] netdev_start_xmit+0x7b/0x140 [ 51.593110][ T5] dev_hard_start_xmit+0x182/0x2e0 [ 51.598216][ T5] __dev_queue_xmit+0x1229/0x1e60 [ 51.603234][ T5] ip6_finish_output2+0xe8d/0x11e0 [ 51.608323][ T5] ? __ip6_finish_output+0x26b/0x390 [ 51.613585][ T5] ndisc_send_skb+0x85b/0xc70 [ 51.618278][ T5] addrconf_dad_completed+0x5ef/0x990 [ 51.623639][ T5] addrconf_dad_work+0xb92/0x1480 [ 51.628647][ T5] ? rcu_read_lock_sched_held+0x62/0x100 [ 51.634254][ T5] process_one_work+0x471/0x830 [ 51.639086][ T5] worker_thread+0x757/0xb10 [ 51.643655][ T5] ? pr_cont_work+0x100/0x100 [ 51.648320][ T5] kthread+0x39a/0x3c0 [ 51.652376][ T5] ? pr_cont_work+0x100/0x100 [ 51.657020][ T5] ? __list_add+0xc0/0xc0 [ 51.661323][ T5] ret_from_fork+0x1f/0x30 [ 51.666620][ T5] Kernel Offset: disabled [ 51.671061][ T5] Rebooting in 86400 seconds..