Warning: Permanently added '10.128.1.135' (ED25519) to the list of known hosts. 2024/04/20 03:59:15 fuzzer started 2024/04/20 03:59:15 dialing manager at 10.128.0.169:30006 [ 74.169203][ T5069] cgroup: Unknown subsys name 'net' [ 74.308928][ T5069] cgroup: Unknown subsys name 'rlimit' 2024/04/20 03:59:17 code coverage: enabled 2024/04/20 03:59:17 comparison tracing: enabled 2024/04/20 03:59:17 extra coverage: enabled 2024/04/20 03:59:17 delay kcov mmap: enabled 2024/04/20 03:59:17 setuid sandbox: enabled 2024/04/20 03:59:17 namespace sandbox: enabled 2024/04/20 03:59:17 Android sandbox: /sys/fs/selinux/policy does not exist 2024/04/20 03:59:17 fault injection: enabled 2024/04/20 03:59:17 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2024/04/20 03:59:17 net packet injection: enabled 2024/04/20 03:59:17 net device setup: enabled 2024/04/20 03:59:17 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2024/04/20 03:59:17 devlink PCI setup: PCI device 0000:00:10.0 is not available 2024/04/20 03:59:17 NIC VF setup: PCI device 0000:00:11.0 is not available 2024/04/20 03:59:17 USB emulation: enabled 2024/04/20 03:59:17 hci packet injection: enabled 2024/04/20 03:59:17 wifi device emulation: enabled 2024/04/20 03:59:17 802.15.4 emulation: enabled 2024/04/20 03:59:17 swap file: enabled [ 76.091203][ T5069] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k 2024/04/20 03:59:18 starting 5 executor processes [ 77.023483][ T5086] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 77.041456][ T5088] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 77.050991][ T5090] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 77.069112][ T5090] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 77.073395][ T5094] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 77.077963][ T5090] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 77.092236][ T5094] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 77.093096][ T5088] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 77.100450][ T5094] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 77.112825][ T5088] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 77.122083][ T5094] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 77.122110][ T5088] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 77.131399][ T5094] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 77.144609][ T5094] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 77.153090][ T5094] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 77.162862][ T5094] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 77.172475][ T5094] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 77.180201][ T5094] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 77.191473][ T5086] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 77.209923][ T5093] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 77.220734][ T5093] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 77.229155][ T5093] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 77.238751][ T5097] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 77.248832][ T5093] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 77.256006][ T5097] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 77.269769][ T5093] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 77.277924][ T5097] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 77.288190][ T5093] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 77.295320][ T5097] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 77.305463][ T5093] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 77.878780][ T5083] chnl_net:caif_netlink_parms(): no params data found [ 77.909034][ T5082] chnl_net:caif_netlink_parms(): no params data found [ 78.073687][ T5096] chnl_net:caif_netlink_parms(): no params data found [ 78.192030][ T5092] chnl_net:caif_netlink_parms(): no params data found [ 78.207563][ T5087] chnl_net:caif_netlink_parms(): no params data found [ 78.234851][ T5082] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.242800][ T5082] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.251636][ T5082] bridge_slave_0: entered allmulticast mode [ 78.259535][ T5082] bridge_slave_0: entered promiscuous mode [ 78.268114][ T5083] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.275308][ T5083] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.283083][ T5083] bridge_slave_0: entered allmulticast mode [ 78.290968][ T5083] bridge_slave_0: entered promiscuous mode [ 78.301981][ T5083] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.309483][ T5083] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.316903][ T5083] bridge_slave_1: entered allmulticast mode [ 78.325794][ T5083] bridge_slave_1: entered promiscuous mode [ 78.367795][ T5082] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.375129][ T5082] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.382941][ T5082] bridge_slave_1: entered allmulticast mode [ 78.390329][ T5082] bridge_slave_1: entered promiscuous mode [ 78.435060][ T5083] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.496658][ T5083] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 78.546390][ T5082] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.559743][ T5082] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 78.598045][ T5083] team0: Port device team_slave_0 added [ 78.605071][ T5096] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.612880][ T5096] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.620729][ T5096] bridge_slave_0: entered allmulticast mode [ 78.630547][ T5096] bridge_slave_0: entered promiscuous mode [ 78.674672][ T5082] team0: Port device team_slave_0 added [ 78.691329][ T5082] team0: Port device team_slave_1 added [ 78.699635][ T5083] team0: Port device team_slave_1 added [ 78.719504][ T5096] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.726759][ T5096] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.734465][ T5096] bridge_slave_1: entered allmulticast mode [ 78.741941][ T5096] bridge_slave_1: entered promiscuous mode [ 78.821311][ T5082] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 78.828609][ T5082] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 78.855221][ T5082] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 78.937295][ T5083] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 78.946591][ T5083] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 78.974391][ T5083] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 78.988585][ T5082] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 78.995834][ T5082] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 79.025590][ T5082] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 79.043477][ T5096] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 79.060020][ T5096] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 79.070404][ T5092] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.080001][ T5092] bridge0: port 1(bridge_slave_0) entered disabled state [ 79.087345][ T5092] bridge_slave_0: entered allmulticast mode [ 79.096781][ T5092] bridge_slave_0: entered promiscuous mode [ 79.106342][ T5092] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.113923][ T5092] bridge0: port 2(bridge_slave_1) entered disabled state [ 79.121287][ T5092] bridge_slave_1: entered allmulticast mode [ 79.128723][ T5092] bridge_slave_1: entered promiscuous mode [ 79.136567][ T5087] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.145605][ T5087] bridge0: port 1(bridge_slave_0) entered disabled state [ 79.153573][ T5087] bridge_slave_0: entered allmulticast mode [ 79.162211][ T5087] bridge_slave_0: entered promiscuous mode [ 79.170245][ T5083] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 79.177429][ T5083] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 79.203892][ T5083] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 79.219338][ T5097] Bluetooth: hci1: command tx timeout [ 79.282144][ T5087] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.289823][ T5097] Bluetooth: hci2: command tx timeout [ 79.289847][ T5090] Bluetooth: hci0: command tx timeout [ 79.296263][ T5087] bridge0: port 2(bridge_slave_1) entered disabled state [ 79.308923][ T5087] bridge_slave_1: entered allmulticast mode [ 79.317340][ T5087] bridge_slave_1: entered promiscuous mode [ 79.358303][ T5096] team0: Port device team_slave_0 added [ 79.368470][ T5097] Bluetooth: hci3: command tx timeout [ 79.374274][ T5097] Bluetooth: hci4: command tx timeout [ 79.380865][ T5096] team0: Port device team_slave_1 added [ 79.391822][ T5092] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 79.405264][ T5092] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 79.417588][ T5087] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 79.509275][ T5087] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 79.550061][ T5082] hsr_slave_0: entered promiscuous mode [ 79.556767][ T5082] hsr_slave_1: entered promiscuous mode [ 79.564817][ T5096] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 79.572586][ T5096] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 79.599517][ T5096] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 79.619120][ T5083] hsr_slave_0: entered promiscuous mode [ 79.627009][ T5083] hsr_slave_1: entered promiscuous mode [ 79.633904][ T5083] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 79.642476][ T5083] Cannot create hsr debugfs directory [ 79.681516][ T5087] team0: Port device team_slave_0 added [ 79.688453][ T5096] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 79.695657][ T5096] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 79.722248][ T5096] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 79.760529][ T5092] team0: Port device team_slave_0 added [ 79.791361][ T5087] team0: Port device team_slave_1 added [ 79.845765][ T5092] team0: Port device team_slave_1 added [ 79.897313][ T5087] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 79.904495][ T5087] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 79.935385][ T5087] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 79.965567][ T5096] hsr_slave_0: entered promiscuous mode [ 79.972817][ T5096] hsr_slave_1: entered promiscuous mode [ 79.979718][ T5096] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 79.987343][ T5096] Cannot create hsr debugfs directory [ 80.016652][ T5092] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 80.028089][ T5092] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 80.055598][ T5092] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 80.075214][ T5092] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 80.082358][ T5092] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 80.109555][ T5092] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 80.139622][ T5087] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 80.146708][ T5087] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 80.173140][ T5087] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 80.336049][ T5092] hsr_slave_0: entered promiscuous mode [ 80.343084][ T5092] hsr_slave_1: entered promiscuous mode [ 80.349618][ T5092] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 80.357220][ T5092] Cannot create hsr debugfs directory [ 80.406506][ T5087] hsr_slave_0: entered promiscuous mode [ 80.414018][ T5087] hsr_slave_1: entered promiscuous mode [ 80.421407][ T5087] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 80.430116][ T5087] Cannot create hsr debugfs directory [ 80.801233][ T5083] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 80.814811][ T5083] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 80.857701][ T5083] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 80.870798][ T5083] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 80.984823][ T5082] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 81.002547][ T5082] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 81.027023][ T5082] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 81.042413][ T5082] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 81.153006][ T5092] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 81.175844][ T5092] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 81.189556][ T5092] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 81.223430][ T5083] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.231765][ T5092] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 81.288513][ T5097] Bluetooth: hci1: command tx timeout [ 81.297205][ T5083] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.366257][ T5132] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.374081][ T5132] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.384981][ T5097] Bluetooth: hci0: command tx timeout [ 81.384991][ T5090] Bluetooth: hci2: command tx timeout [ 81.403180][ T5087] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 81.414727][ T5087] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 81.436675][ T5087] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 81.447762][ T5087] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 81.454892][ T5097] Bluetooth: hci3: command tx timeout [ 81.458526][ T5097] Bluetooth: hci4: command tx timeout [ 81.473626][ T5134] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.480920][ T5134] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.622011][ T5096] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 81.637078][ T5096] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 81.681215][ T5096] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 81.695954][ T5096] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 81.742458][ T5082] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.854078][ T5082] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.921153][ T5092] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.935809][ T5134] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.943905][ T5134] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.971205][ T5134] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.981171][ T5134] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.083419][ T5092] 8021q: adding VLAN 0 to HW filter on device team0 [ 82.116091][ T5087] 8021q: adding VLAN 0 to HW filter on device bond0 [ 82.136603][ T5133] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.143962][ T5133] bridge0: port 1(bridge_slave_0) entered forwarding state [ 82.158799][ T5133] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.166292][ T5133] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.233262][ T5083] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 82.320069][ T5087] 8021q: adding VLAN 0 to HW filter on device team0 [ 82.380443][ T5096] 8021q: adding VLAN 0 to HW filter on device bond0 [ 82.436791][ T5133] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.444344][ T5133] bridge0: port 1(bridge_slave_0) entered forwarding state [ 82.503658][ T5083] veth0_vlan: entered promiscuous mode [ 82.582160][ T5133] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.589617][ T5133] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.624276][ T5083] veth1_vlan: entered promiscuous mode [ 82.696228][ T5096] 8021q: adding VLAN 0 to HW filter on device team0 [ 82.777639][ T5133] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.784981][ T5133] bridge0: port 1(bridge_slave_0) entered forwarding state [ 82.830021][ T5134] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.837253][ T5134] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.876235][ T5082] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.089858][ T5083] veth0_macvtap: entered promiscuous mode [ 83.172572][ T5083] veth1_macvtap: entered promiscuous mode [ 83.279838][ T5083] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 83.293751][ T5082] veth0_vlan: entered promiscuous mode [ 83.344573][ T5092] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.367030][ T5083] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 83.388886][ T5097] Bluetooth: hci1: command tx timeout [ 83.448360][ T5097] Bluetooth: hci0: command tx timeout [ 83.449127][ T5090] Bluetooth: hci2: command tx timeout [ 83.477716][ T5083] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.489944][ T5083] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.506847][ T5083] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.516828][ T5083] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.530453][ T5090] Bluetooth: hci4: command tx timeout [ 83.530463][ T5097] Bluetooth: hci3: command tx timeout [ 83.562129][ T5096] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.574433][ T5082] veth1_vlan: entered promiscuous mode [ 83.783085][ T5087] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.803563][ T5082] veth0_macvtap: entered promiscuous mode [ 83.817681][ T5092] veth0_vlan: entered promiscuous mode [ 83.876839][ T5082] veth1_macvtap: entered promiscuous mode [ 83.892905][ T1038] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.922612][ T1038] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.930033][ T5092] veth1_vlan: entered promiscuous mode [ 84.017103][ T5138] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.039274][ T5138] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.057235][ T5082] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.069954][ T5082] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.084518][ T5082] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 84.153299][ T5087] veth0_vlan: entered promiscuous mode [ 84.166539][ T5082] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.178721][ T5082] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.193405][ T5082] batman_adv: batadv0: Interface activated: batadv_slave_1 executing program 3: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x9}, 0x48) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000000)={r0, 0x0, 0x0}, 0x20) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x1, 0x4, 0x1, 0x0, r0}, 0x48) bpf$MAP_DELETE_ELEM(0x2, &(0x7f00000003c0)={r1, &(0x7f0000000300), 0x20000000}, 0x20) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000001b00)={r1, &(0x7f0000001a40), 0x0}, 0x20) [ 84.214173][ T5092] veth0_macvtap: entered promiscuous mode [ 84.229759][ T5092] veth1_macvtap: entered promiscuous mode [ 84.242925][ T5082] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.267652][ T5082] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.284157][ T5082] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.293151][ T5082] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000002c0)='ext4_fc_commit_start\x00', r1}, 0x10) write$cgroup_subtree(r0, &(0x7f0000000d00)={[{0x0, 'net'}]}, 0x5) [ 84.375692][ T5087] veth1_vlan: entered promiscuous mode [ 84.442766][ T5096] veth0_vlan: entered promiscuous mode [ 84.482967][ T5092] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.506636][ T5092] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.517374][ T5092] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.530309][ T5092] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.543423][ T5092] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 84.563199][ T5096] veth1_vlan: entered promiscuous mode executing program 3: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x3b) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000540)={{r0}, &(0x7f00000004c0), &(0x7f0000000500)}, 0x20) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='ext4_writepages_result\x00', r1}, 0x10) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='blkio.bfq.sectors_recursive\x00', 0x275a, 0x0) write$cgroup_int(r2, &(0x7f0000000100), 0x1001) ioctl$SIOCSIFHWADDR(r2, 0x4030582b, &(0x7f0000000280)={'lo\x00', @link_local={0x1, 0x80, 0xc2, 0xc, 0x8}}) [ 84.595950][ T5092] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.618613][ T5092] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! executing program 3: bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x5}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f00000007c0)='skb_copy_datagram_iovec\x00'}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000001f40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r2, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0) recvmsg$unix(r1, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdc8}, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x0, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0}, 0x90) bpf$PROG_LOAD(0x5, 0x0, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000700)='mm_lru_insertion\x00', r3}, 0x10) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r4, &(0x7f0000000180), 0x2000) [ 84.639413][ T5092] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.657924][ T5092] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.675962][ T5092] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.755151][ T5092] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.784534][ T5092] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.805111][ T5092] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.807863][ T5176] syz-executor.3[5176] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 84.814150][ T5176] syz-executor.3[5176] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 84.829922][ T5092] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.833580][ T5176] syz-executor.3[5176] is installing a program with bpf_probe_write_user helper that may corrupt user memory! executing program 3: close(0xffffffffffffffff) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xedeaead, 0x8001}, 0x0, 0xc8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r2) recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000640)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce81020329080000000000000000875a65969ff57b00000000000000000000000000ac1414aa"], 0xfdef) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r3}, 0x0, &(0x7f00000002c0)}, 0x20) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.time_recursive\x00', 0x275a, 0x0) write$cgroup_pid(r4, &(0x7f0000000340), 0x12) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000001089a8317a20000000", @ANYRES64=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000e40)={&(0x7f0000000000)='ext4_fc_track_range\x00', r5}, 0x10) write$cgroup_int(0xffffffffffffffff, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000700)='ext4_fc_track_range\x00'}, 0x10) ioctl$SIOCSIFHWADDR(r4, 0x4030582b, &(0x7f0000000280)={'lo\x00', @link_local={0x1, 0x80, 0xc2, 0xc}}) [ 84.863137][ T5176] syz-executor.3[5176] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 84.948412][ T5087] veth0_macvtap: entered promiscuous mode executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000f0018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='mm_page_alloc\x00', r1}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000400)='ext4_sync_file_exit\x00', r2}, 0x10) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r3, &(0x7f0000000180), 0x2000) [ 85.051831][ T5087] veth1_macvtap: entered promiscuous mode executing program 3: openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x2, 0x4, 0x2}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r1}, &(0x7f0000000040), &(0x7f0000000140)=r0}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffd}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000880)='sched_switch\x00', r2}, 0x10) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r5}, &(0x7f00000006c0), &(0x7f0000000700)=r4}, 0x20) recvmsg$unix(r4, &(0x7f0000001900)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000001740)=""/246, 0xf6}], 0x1}, 0x0) sendmsg$inet(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000140)='U', 0x1}], 0x1}, 0x0) [ 85.106869][ T70] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.109434][ T5096] veth0_macvtap: entered promiscuous mode [ 85.124689][ T70] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.201088][ T5183] [ 85.201293][ T5133] ------------[ cut here ]------------ [ 85.203465][ T5183] ===================================================== [ 85.203474][ T5183] WARNING: HARDIRQ-safe -> HARDIRQ-unsafe lock order detected [ 85.223311][ T5183] 6.8.0-syzkaller-05236-g443574b03387 #0 Not tainted [ 85.229984][ T5183] ----------------------------------------------------- [ 85.236917][ T5183] syz-executor.3/5183 [HC0[0]:SC0[2]:HE0:SE0] is trying to acquire: [ 85.244926][ T5183] ffff888029b9a968 (&htab->buckets[i].lock){+...}-{2:2}, at: sock_hash_delete_elem+0xb0/0x300 [ 85.255963][ T5183] [ 85.255963][ T5183] and this task is already holding: [ 85.263383][ T5183] ffff8880b953e158 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140 [ 85.272890][ T5183] which would create a new lock dependency: [ 85.278810][ T5183] (&rq->__lock){-.-.}-{2:2} -> (&htab->buckets[i].lock){+...}-{2:2} [ 85.286922][ T5183] [ 85.286922][ T5183] but this new dependency connects a HARDIRQ-irq-safe lock: [ 85.296372][ T5183] (&rq->__lock){-.-.}-{2:2} [ 85.296398][ T5183] [ 85.296398][ T5183] ... which became HARDIRQ-irq-safe at: [ 85.309135][ T5183] lock_acquire+0x1e4/0x530 [ 85.313771][ T5183] _raw_spin_lock_nested+0x31/0x40 [ 85.318996][ T5183] raw_spin_rq_lock_nested+0x2a/0x140 [ 85.324473][ T5183] scheduler_tick+0xa1/0x6e0 [ 85.329180][ T5183] update_process_times+0x202/0x230 [ 85.334470][ T5183] tick_periodic+0x190/0x220 [ 85.339152][ T5183] tick_handle_periodic+0x4a/0x160 [ 85.344378][ T5183] timer_interrupt+0x5c/0x70 [ 85.349092][ T5183] __handle_irq_event_percpu+0x28c/0xa30 [ 85.354909][ T5183] handle_irq_event+0x89/0x1f0 [ 85.359785][ T5183] handle_level_irq+0x3c5/0x6e0 [ 85.364847][ T5183] __common_interrupt+0x13a/0x230 [ 85.369983][ T5183] common_interrupt+0xa5/0xd0 [ 85.374758][ T5183] asm_common_interrupt+0x26/0x40 [ 85.379895][ T5183] _raw_spin_unlock_irqrestore+0xd8/0x140 [ 85.385719][ T5183] __setup_irq+0x1277/0x1cf0 [ 85.390452][ T5183] request_threaded_irq+0x2ab/0x380 [ 85.395784][ T5183] setup_default_timer_irq+0x25/0x60 [ 85.401197][ T5183] x86_late_time_init+0x66/0xc0 [ 85.406234][ T5183] start_kernel+0x3f3/0x500 [ 85.410855][ T5183] x86_64_start_reservations+0x2a/0x30 [ 85.416441][ T5183] x86_64_start_kernel+0x99/0xa0 [ 85.421475][ T5183] common_startup_64+0x13e/0x147 [ 85.426506][ T5183] [ 85.426506][ T5183] to a HARDIRQ-irq-unsafe lock: [ 85.433522][ T5183] (&htab->buckets[i].lock){+...}-{2:2} [ 85.433549][ T5183] [ 85.433549][ T5183] ... which became HARDIRQ-irq-unsafe at: [ 85.446986][ T5183] ... [ 85.446997][ T5183] lock_acquire+0x1e4/0x530 [ 85.454189][ T5183] _raw_spin_lock_bh+0x35/0x50 [ 85.459168][ T5183] sock_hash_update_common+0x20c/0xa30 [ 85.464843][ T5183] sock_map_update_elem_sys+0x5a4/0x910 [ 85.470512][ T5183] map_update_elem+0x53a/0x6f0 [ 85.475373][ T5183] __sys_bpf+0x76f/0x810 [ 85.479729][ T5183] __x64_sys_bpf+0x7c/0x90 [ 85.484240][ T5183] do_syscall_64+0xfb/0x240 [ 85.488853][ T5183] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 85.494858][ T5183] [ 85.494858][ T5183] other info that might help us debug this: [ 85.494858][ T5183] [ 85.505092][ T5183] Possible interrupt unsafe locking scenario: [ 85.505092][ T5183] [ 85.513413][ T5183] CPU0 CPU1 [ 85.518813][ T5183] ---- ---- [ 85.524214][ T5183] lock(&htab->buckets[i].lock); [ 85.529267][ T5183] local_irq_disable(); [ 85.536019][ T5183] lock(&rq->__lock); [ 85.542723][ T5183] lock(&htab->buckets[i].lock); [ 85.550296][ T5183] [ 85.553750][ T5183] lock(&rq->__lock); [ 85.558004][ T5183] [ 85.558004][ T5183] *** DEADLOCK *** [ 85.558004][ T5183] [ 85.566206][ T5183] 2 locks held by syz-executor.3/5183: [ 85.571665][ T5183] #0: ffff8880b953e158 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140 [ 85.581610][ T5183] #1: ffffffff8e131920 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run4+0x16e/0x490 [ 85.591070][ T5183] [ 85.591070][ T5183] the dependencies between HARDIRQ-irq-safe lock and the holding lock: [ 85.601478][ T5183] -> (&rq->__lock){-.-.}-{2:2} { [ 85.606542][ T5183] IN-HARDIRQ-W at: [ 85.610525][ T5183] lock_acquire+0x1e4/0x530 [ 85.616719][ T5183] _raw_spin_lock_nested+0x31/0x40 [ 85.623510][ T5183] raw_spin_rq_lock_nested+0x2a/0x140 [ 85.630687][ T5183] scheduler_tick+0xa1/0x6e0 [ 85.636963][ T5183] update_process_times+0x202/0x230 [ 85.643847][ T5183] tick_periodic+0x190/0x220 [ 85.650118][ T5183] tick_handle_periodic+0x4a/0x160 [ 85.656913][ T5183] timer_interrupt+0x5c/0x70 [ 85.663171][ T5183] __handle_irq_event_percpu+0x28c/0xa30 [ 85.670551][ T5183] handle_irq_event+0x89/0x1f0 [ 85.676998][ T5183] handle_level_irq+0x3c5/0x6e0 [ 85.683548][ T5183] __common_interrupt+0x13a/0x230 [ 85.690252][ T5183] common_interrupt+0xa5/0xd0 [ 85.696633][ T5183] asm_common_interrupt+0x26/0x40 [ 85.703373][ T5183] _raw_spin_unlock_irqrestore+0xd8/0x140 [ 85.710760][ T5183] __setup_irq+0x1277/0x1cf0 [ 85.717031][ T5183] request_threaded_irq+0x2ab/0x380 [ 85.724019][ T5183] setup_default_timer_irq+0x25/0x60 [ 85.730965][ T5183] x86_late_time_init+0x66/0xc0 [ 85.737506][ T5183] start_kernel+0x3f3/0x500 [ 85.743690][ T5183] x86_64_start_reservations+0x2a/0x30 [ 85.750815][ T5183] x86_64_start_kernel+0x99/0xa0 [ 85.757412][ T5183] common_startup_64+0x13e/0x147 [ 85.764109][ T5183] IN-SOFTIRQ-W at: [ 85.768131][ T5183] lock_acquire+0x1e4/0x530 [ 85.774299][ T5183] _raw_spin_lock_nested+0x31/0x40 [ 85.781074][ T5183] raw_spin_rq_lock_nested+0x2a/0x140 [ 85.788116][ T5183] try_to_wake_up+0x7d3/0x1470 [ 85.794556][ T5183] kick_pool+0x41b/0x5c0 [ 85.800461][ T5183] __queue_work+0xc20/0xec0 [ 85.806669][ T5183] call_timer_fn+0x17e/0x600 [ 85.812946][ T5183] __run_timer_base+0x695/0x8e0 [ 85.819483][ T5183] run_timer_softirq+0xb7/0x170 [ 85.826025][ T5183] __do_softirq+0x2bc/0x943 [ 85.832193][ T5183] __irq_exit_rcu+0xf2/0x1c0 [ 85.838438][ T5183] irq_exit_rcu+0x9/0x30 [ 85.844410][ T5183] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 85.851725][ T5183] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 85.859380][ T5183] default_idle+0x13/0x20 [ 85.865394][ T5183] default_idle_call+0x74/0xb0 [ 85.872109][ T5183] do_idle+0x22f/0x5d0 [ 85.877864][ T5183] cpu_startup_entry+0x42/0x60 [ 85.884294][ T5183] rest_init+0x2e0/0x300 [ 85.890202][ T5183] arch_call_rest_init+0xe/0x10 [ 85.896723][ T5183] start_kernel+0x47a/0x500 [ 85.902878][ T5183] x86_64_start_reservations+0x2a/0x30 [ 85.910101][ T5183] x86_64_start_kernel+0x99/0xa0 [ 85.916810][ T5183] common_startup_64+0x13e/0x147 [ 85.923435][ T5183] INITIAL USE at: [ 85.927458][ T5183] lock_acquire+0x1e4/0x530 [ 85.933620][ T5183] _raw_spin_lock_nested+0x31/0x40 [ 85.940489][ T5183] raw_spin_rq_lock_nested+0x2a/0x140 [ 85.947493][ T5183] rq_attach_root+0xee/0x540 [ 85.953683][ T5183] sched_init+0x64e/0xc30 [ 85.959676][ T5183] start_kernel+0x1ab/0x500 [ 85.965761][ T5183] x86_64_start_reservations+0x2a/0x30 [ 85.972797][ T5183] x86_64_start_kernel+0x99/0xa0 [ 85.979330][ T5183] common_startup_64+0x13e/0x147 [ 85.985840][ T5183] } [ 85.988339][ T5183] ... key at: [] sched_init.__key+0x0/0x20 [ 85.996246][ T5183] [ 85.996246][ T5183] the dependencies between the lock to be acquired [ 85.996257][ T5183] and HARDIRQ-irq-unsafe lock: [ 86.009784][ T5183] -> (&htab->buckets[i].lock){+...}-{2:2} { [ 86.015851][ T5183] HARDIRQ-ON-W at: [ 86.019834][ T5183] lock_acquire+0x1e4/0x530 [ 86.026601][ T5183] _raw_spin_lock_bh+0x35/0x50 [ 86.033062][ T5183] sock_hash_update_common+0x20c/0xa30 [ 86.040197][ T5183] sock_map_update_elem_sys+0x5a4/0x910 [ 86.047478][ T5183] map_update_elem+0x53a/0x6f0 [ 86.054114][ T5183] __sys_bpf+0x76f/0x810 [ 86.060045][ T5183] __x64_sys_bpf+0x7c/0x90 [ 86.066132][ T5183] do_syscall_64+0xfb/0x240 [ 86.072416][ T5183] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 86.080001][ T5183] INITIAL USE at: [ 86.083908][ T5183] lock_acquire+0x1e4/0x530 [ 86.089987][ T5183] _raw_spin_lock_bh+0x35/0x50 [ 86.096324][ T5183] sock_hash_update_common+0x20c/0xa30 [ 86.103374][ T5183] sock_map_update_elem_sys+0x5a4/0x910 [ 86.110686][ T5183] map_update_elem+0x53a/0x6f0 [ 86.117026][ T5183] __sys_bpf+0x76f/0x810 [ 86.122947][ T5183] __x64_sys_bpf+0x7c/0x90 [ 86.129037][ T5183] do_syscall_64+0xfb/0x240 [ 86.135229][ T5183] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 86.142702][ T5183] } [ 86.145227][ T5183] ... key at: [] sock_hash_alloc.__key+0x0/0x20 [ 86.153576][ T5183] ... acquired at: [ 86.157399][ T5183] lock_acquire+0x1e4/0x530 [ 86.162087][ T5183] _raw_spin_lock_bh+0x35/0x50 [ 86.167036][ T5183] sock_hash_delete_elem+0xb0/0x300 [ 86.172415][ T5183] bpf_prog_bc4ba9860fbb0da4+0x46/0x4a [ 86.178054][ T5183] bpf_trace_run4+0x25a/0x490 [ 86.182909][ T5183] __schedule+0x255d/0x4a20 [ 86.187854][ T5183] preempt_schedule_common+0x84/0xd0 [ 86.193326][ T5183] preempt_schedule+0xe1/0xf0 [ 86.198182][ T5183] preempt_schedule_thunk+0x1a/0x30 [ 86.203555][ T5183] try_to_wake_up+0x9a8/0x1470 [ 86.208562][ T5183] wake_up_q+0xc8/0x120 [ 86.213221][ T5183] futex_wake+0x523/0x5c0 [ 86.217728][ T5183] do_futex+0x392/0x560 [ 86.222095][ T5183] __se_sys_futex+0x3f9/0x480 [ 86.226959][ T5183] do_syscall_64+0xfb/0x240 [ 86.231647][ T5183] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 86.237749][ T5183] [ 86.240069][ T5183] [ 86.240069][ T5183] stack backtrace: [ 86.245957][ T5183] CPU: 1 PID: 5183 Comm: syz-executor.3 Not tainted 6.8.0-syzkaller-05236-g443574b03387 #0 [ 86.255963][ T5183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 86.266044][ T5183] Call Trace: [ 86.269336][ T5183] [ 86.272270][ T5183] dump_stack_lvl+0x1e7/0x2e0 [ 86.276967][ T5183] ? __pfx_dump_stack_lvl+0x10/0x10 [ 86.282179][ T5183] ? __pfx__printk+0x10/0x10 [ 86.286783][ T5183] ? print_shortest_lock_dependencies+0xf2/0x160 [ 86.293125][ T5183] validate_chain+0x4dc7/0x58e0 [ 86.297997][ T5183] ? __pfx_validate_chain+0x10/0x10 [ 86.303277][ T5183] ? __lock_acquire+0x1346/0x1fd0 [ 86.308310][ T5183] ? __pfx_validate_chain+0x10/0x10 [ 86.313520][ T5183] ? mark_lock+0x9a/0x350 [ 86.317864][ T5183] ? mark_lock+0x9a/0x350 [ 86.322206][ T5183] __lock_acquire+0x1346/0x1fd0 [ 86.327099][ T5183] lock_acquire+0x1e4/0x530 [ 86.331618][ T5183] ? sock_hash_delete_elem+0xb0/0x300 [ 86.337109][ T5183] ? __pfx_lockdep_softirqs_off+0x10/0x10 [ 86.342958][ T5183] ? __pfx_lock_acquire+0x10/0x10 [ 86.348018][ T5183] ? sock_hash_delete_elem+0xb0/0x300 [ 86.353404][ T5183] ? __pfx___local_bh_disable_ip+0x10/0x10 [ 86.359229][ T5183] ? __pfx_lock_acquire+0x10/0x10 [ 86.364388][ T5183] ? sock_hash_delete_elem+0xb0/0x300 [ 86.369782][ T5183] _raw_spin_lock_bh+0x35/0x50 [ 86.374564][ T5183] ? sock_hash_delete_elem+0xb0/0x300 [ 86.379946][ T5183] sock_hash_delete_elem+0xb0/0x300 [ 86.385159][ T5183] ? rcu_read_lock_sched_held+0x8d/0x130 [ 86.390805][ T5183] bpf_prog_bc4ba9860fbb0da4+0x46/0x4a [ 86.396276][ T5183] ? bpf_trace_run4+0x16e/0x490 [ 86.401152][ T5183] bpf_trace_run4+0x25a/0x490 [ 86.405979][ T5183] ? __pfx_bpf_trace_run4+0x10/0x10 [ 86.411374][ T5183] ? psi_task_switch+0x36d/0x770 [ 86.416354][ T5183] __schedule+0x255d/0x4a20 [ 86.420912][ T5183] ? cgroup_rstat_updated+0xd1/0x360 [ 86.426254][ T5183] ? __pfx___schedule+0x10/0x10 [ 86.431122][ T5183] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 86.437108][ T5183] ? preempt_schedule+0xe1/0xf0 [ 86.442000][ T5183] preempt_schedule_common+0x84/0xd0 [ 86.447295][ T5183] preempt_schedule+0xe1/0xf0 [ 86.452006][ T5183] ? __pfx_preempt_schedule+0x10/0x10 [ 86.457389][ T5183] ? lockdep_hardirqs_on+0x99/0x150 [ 86.462599][ T5183] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 86.468587][ T5183] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 86.474922][ T5183] preempt_schedule_thunk+0x1a/0x30 [ 86.480132][ T5183] try_to_wake_up+0x9a8/0x1470 [ 86.484907][ T5183] ? __pfx_try_to_wake_up+0x10/0x10 [ 86.490111][ T5183] ? __pfx_lock_release+0x10/0x10 [ 86.495135][ T5183] ? plist_del+0x3f1/0x410 [ 86.499566][ T5183] ? do_raw_spin_unlock+0x13c/0x8b0 [ 86.504967][ T5183] wake_up_q+0xc8/0x120 [ 86.509144][ T5183] futex_wake+0x523/0x5c0 [ 86.513487][ T5183] ? __pfx_futex_wake+0x10/0x10 [ 86.518369][ T5183] ? __pfx___might_resched+0x10/0x10 [ 86.523698][ T5183] ? __might_fault+0xaa/0x120 [ 86.528418][ T5183] ? __pfx_lock_release+0x10/0x10 [ 86.533480][ T5183] do_futex+0x392/0x560 [ 86.537672][ T5183] ? bpf_raw_tracepoint_open+0x1b1/0x210 [ 86.543323][ T5183] ? __pfx_do_futex+0x10/0x10 [ 86.548009][ T5183] ? xfd_validate_state+0x6e/0x150 [ 86.553152][ T5183] __se_sys_futex+0x3f9/0x480 [ 86.557861][ T5183] ? __pfx___se_sys_futex+0x10/0x10 [ 86.563075][ T5183] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 86.569406][ T5183] ? do_syscall_64+0x10a/0x240 [ 86.574186][ T5183] ? __x64_sys_futex+0x21/0xf0 [ 86.578959][ T5183] do_syscall_64+0xfb/0x240 [ 86.583473][ T5183] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 86.589486][ T5183] RIP: 0033:0x7f892627dea9 [ 86.593910][ T5183] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 86.613530][ T5183] RSP: 002b:00007f8926ff9178 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 86.621952][ T5183] RAX: ffffffffffffffda RBX: 00007f89263abf88 RCX: 00007f892627dea9 [ 86.629953][ T5183] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f89263abf8c [ 86.637951][ T5183] RBP: 00007f89263abf80 R08: 00007f8926ffa0b0 R09: 00007f8926ff96c0 [ 86.645947][ T5183] R10: 0000000000000007 R11: 0000000000000246 R12: 00007f89263abf8c [ 86.653948][ T5183] R13: 000000000000000b R14: 00007fff74b0b950 R15: 00007fff74b0ba38 [ 86.661940][ T5183]