[ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty2. [ OK ] Started Getty on tty1. [ OK ] Started Serial Getty on ttyS0. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.10.33' (ECDSA) to the list of known hosts. 2020/08/02 09:34:21 fuzzer started 2020/08/02 09:34:21 dialing manager at 10.128.0.26:46491 2020/08/02 09:34:21 syscalls: 3273 2020/08/02 09:34:21 code coverage: enabled 2020/08/02 09:34:21 comparison tracing: enabled 2020/08/02 09:34:21 extra coverage: enabled 2020/08/02 09:34:21 setuid sandbox: enabled 2020/08/02 09:34:21 namespace sandbox: enabled 2020/08/02 09:34:21 Android sandbox: /sys/fs/selinux/policy does not exist 2020/08/02 09:34:21 fault injection: enabled 2020/08/02 09:34:21 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2020/08/02 09:34:21 net packet injection: enabled 2020/08/02 09:34:21 net device setup: enabled 2020/08/02 09:34:21 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2020/08/02 09:34:21 devlink PCI setup: PCI device 0000:00:10.0 is not available 2020/08/02 09:34:21 USB emulation: enabled 2020/08/02 09:34:21 hci packet injection: enabled 09:36:14 executing program 0: syz_emit_ethernet(0x46, 0x0, 0x0) r0 = open(&(0x7f0000000180)='./bus\x00', 0x151042, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/diskstats\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x4000000000010046) syzkaller login: [ 173.931845][ T6873] IPVS: ftp: loaded support on port[0] = 21 09:36:15 executing program 1: r0 = socket(0x200000000000011, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge0\x00', 0x0}) bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1}, 0x14) getsockname$packet(r0, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000000)=@newlink={0x2c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_ADDRESS={0xa, 0x1, @random="ff0e35359447"}]}, 0x2c}}, 0x0) [ 174.078836][ T6873] chnl_net:caif_netlink_parms(): no params data found [ 174.183310][ T6873] bridge0: port 1(bridge_slave_0) entered blocking state [ 174.200834][ T6873] bridge0: port 1(bridge_slave_0) entered disabled state [ 174.220553][ T6873] device bridge_slave_0 entered promiscuous mode [ 174.240843][ T6873] bridge0: port 2(bridge_slave_1) entered blocking state [ 174.248025][ T6873] bridge0: port 2(bridge_slave_1) entered disabled state [ 174.271248][ T6873] device bridge_slave_1 entered promiscuous mode [ 174.313192][ T6873] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 174.340612][ T6873] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 174.379276][ T7003] IPVS: ftp: loaded support on port[0] = 21 [ 174.387072][ T6873] team0: Port device team_slave_0 added [ 174.415387][ T6873] team0: Port device team_slave_1 added 09:36:15 executing program 2: r0 = socket(0x200000000000011, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge0\x00', 0x0}) bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1}, 0x14) getsockname$packet(r0, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000040)=@newlink={0x2c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_ADDRESS={0xa, 0x1, @random}]}, 0x2c}}, 0x0) [ 174.479643][ T6873] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 174.486634][ T6873] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 174.514868][ T6873] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 174.532977][ T6873] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 174.541748][ T6873] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 174.567838][ T6873] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 174.685490][ T6873] device hsr_slave_0 entered promiscuous mode [ 174.750804][ T6873] device hsr_slave_1 entered promiscuous mode 09:36:15 executing program 3: r0 = memfd_create(&(0x7f0000000780)='\x97&\x89\\\xd0\xe7\xca\x16ZO\x94:\xe1\x01\xe5`iq@Nse;\xa8Fpj\x0e\x04!\xd5\xc5YBz\x94\xaf\x13\xe9\xd2\x0f\xc2G\x86\x06\x00\xf1/V\x8cvS\xa6K&u\x9dX\xcc\r\x12\x11\x99\xe7\xce\xaeA\xb8-E\xa1\xf8\xe4~IS\xc1\x04\xf78\xf1\'\xdfv\x90\xbc\xd1\xda\x88j\x16\xeb>\x8c\xa1\x03\xf3\xaf\xfd\xf4&a?\xcaG\n\x02j\x9b}\xc6G\x86\xb2\xdeY\x17yX $\xfcU\x9d\x02\x00\x00\x00\x00\x00\x00\x00_\x7f\xf4tW.\x81\n\xf3\v\x8d\x12pa\x91\x9b\x8cxd\x06\xa7k\n\x86\xc3\xb6\x910\xf2\x03\x00\xaf\xe1jd\xda\x1f\x8bVrd\xa4\xb34\xfcUj\x1ad:#\x96\xf9\xd3\x1c]ImZlU=.\x18)\xcf\x1am\xd5\xe0\xdb\xdc\xd7\x8e\xe0\xa3\x82\xec\x9b\xfb\xc9\x81\x9c\xdc\xb7\x0f\xdd\xd3\xd7\xbe\x89\x7f3\x1d\x1c@\x8eu\x85\xces\x89\x95&3FX\xb1\xaf\xa6\x96\xa2\x13\x1f-\b\xcf1J\xd9\x13Q\x94R/\xdf\x1e\x9e\xe57\xda{\xe1D\x00\x00\x00\x00H\xe6\x0f\xe0]\xef\x8b\xcdk\xfe\xf6\xcc+rp\xd5\b~\xf6\xa2\x87\xed<\xc2bO\x88\x03n% ', 0x0) fcntl$setlease(r0, 0x400, 0x0) fcntl$getflags(r0, 0x401) [ 174.864602][ T7100] IPVS: ftp: loaded support on port[0] = 21 [ 174.887315][ T7003] chnl_net:caif_netlink_parms(): no params data found [ 175.116091][ T7194] IPVS: ftp: loaded support on port[0] = 21 [ 175.223930][ T7003] bridge0: port 1(bridge_slave_0) entered blocking state [ 175.238330][ T7003] bridge0: port 1(bridge_slave_0) entered disabled state [ 175.247789][ T7003] device bridge_slave_0 entered promiscuous mode [ 175.304237][ T7003] bridge0: port 2(bridge_slave_1) entered blocking state [ 175.312670][ T7003] bridge0: port 2(bridge_slave_1) entered disabled state [ 175.321979][ T7003] device bridge_slave_1 entered promiscuous mode 09:36:16 executing program 4: r0 = socket(0x200000000000011, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge0\x00', 0x0}) bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1}, 0x14) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) getsockname$packet(r0, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000000)=@newlink={0x2c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r4}, [@IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x2c}}, 0x0) [ 175.386574][ T7100] chnl_net:caif_netlink_parms(): no params data found [ 175.416131][ T7003] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 175.436354][ T7003] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 175.540450][ T7003] team0: Port device team_slave_0 added [ 175.609349][ T7003] team0: Port device team_slave_1 added [ 175.692295][ T6873] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 175.746121][ T6873] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 175.796936][ T7194] chnl_net:caif_netlink_parms(): no params data found [ 175.820426][ T7003] batman_adv: batadv0: Adding interface: batadv_slave_0 09:36:16 executing program 5: r0 = socket(0x200000000000011, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge0\x00', 0x0}) bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1}, 0x14) getsockname$packet(r0, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000000)=@newlink={0x2c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x2c}}, 0x0) [ 175.827412][ T7003] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 175.862506][ T7003] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 175.879904][ T6873] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 175.950546][ T7448] IPVS: ftp: loaded support on port[0] = 21 [ 175.971300][ T7100] bridge0: port 1(bridge_slave_0) entered blocking state [ 175.988409][ T7100] bridge0: port 1(bridge_slave_0) entered disabled state [ 175.998494][ T7100] device bridge_slave_0 entered promiscuous mode [ 176.007736][ T7003] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 176.016080][ T7003] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 176.042697][ T7003] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 176.054215][ T6873] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 176.130708][ T7100] bridge0: port 2(bridge_slave_1) entered blocking state [ 176.137792][ T7100] bridge0: port 2(bridge_slave_1) entered disabled state [ 176.146655][ T7100] device bridge_slave_1 entered promiscuous mode [ 176.205157][ T7100] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 176.223328][ T7471] IPVS: ftp: loaded support on port[0] = 21 [ 176.264107][ T7100] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 176.322185][ T7003] device hsr_slave_0 entered promiscuous mode [ 176.369664][ T7003] device hsr_slave_1 entered promiscuous mode [ 176.419226][ T7003] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 176.426965][ T7003] Cannot create hsr debugfs directory [ 176.465856][ T7194] bridge0: port 1(bridge_slave_0) entered blocking state [ 176.475121][ T7194] bridge0: port 1(bridge_slave_0) entered disabled state [ 176.483689][ T7194] device bridge_slave_0 entered promiscuous mode [ 176.503727][ T7100] team0: Port device team_slave_0 added [ 176.535119][ T7194] bridge0: port 2(bridge_slave_1) entered blocking state [ 176.543199][ T7194] bridge0: port 2(bridge_slave_1) entered disabled state [ 176.552751][ T7194] device bridge_slave_1 entered promiscuous mode [ 176.568610][ T7100] team0: Port device team_slave_1 added [ 176.671140][ T7194] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 176.688351][ T7194] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 176.708174][ T7100] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 176.718491][ T7100] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 176.746654][ T7100] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 176.764613][ T7100] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 176.773062][ T7100] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 176.801232][ T7100] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 176.856412][ T7194] team0: Port device team_slave_0 added [ 176.942745][ T7100] device hsr_slave_0 entered promiscuous mode [ 177.001692][ T7100] device hsr_slave_1 entered promiscuous mode [ 177.049195][ T7100] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 177.056783][ T7100] Cannot create hsr debugfs directory [ 177.084871][ T7194] team0: Port device team_slave_1 added [ 177.231554][ T7194] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 177.238564][ T7194] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 177.266487][ T7194] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 177.302519][ T7448] chnl_net:caif_netlink_parms(): no params data found [ 177.322019][ T7194] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 177.333787][ T7194] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 177.363203][ T7194] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 177.385288][ T6873] 8021q: adding VLAN 0 to HW filter on device bond0 [ 177.412334][ T7471] chnl_net:caif_netlink_parms(): no params data found [ 177.547065][ T7194] device hsr_slave_0 entered promiscuous mode [ 177.600233][ T7194] device hsr_slave_1 entered promiscuous mode [ 177.639181][ T7194] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 177.646770][ T7194] Cannot create hsr debugfs directory [ 177.740318][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 177.749583][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 177.762818][ T6873] 8021q: adding VLAN 0 to HW filter on device team0 [ 177.794237][ T7448] bridge0: port 1(bridge_slave_0) entered blocking state [ 177.804830][ T7448] bridge0: port 1(bridge_slave_0) entered disabled state [ 177.813376][ T7448] device bridge_slave_0 entered promiscuous mode [ 177.825414][ T7448] bridge0: port 2(bridge_slave_1) entered blocking state [ 177.832613][ T7448] bridge0: port 2(bridge_slave_1) entered disabled state [ 177.841709][ T7448] device bridge_slave_1 entered promiscuous mode [ 177.853291][ T7003] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 177.905485][ T7003] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 177.995304][ T7003] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 178.067575][ T7003] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 178.121028][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 178.133177][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 178.142936][ T2746] bridge0: port 1(bridge_slave_0) entered blocking state [ 178.150253][ T2746] bridge0: port 1(bridge_slave_0) entered forwarding state [ 178.187950][ T7448] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 178.202649][ T7448] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 178.225745][ T7471] bridge0: port 1(bridge_slave_0) entered blocking state [ 178.233416][ T7471] bridge0: port 1(bridge_slave_0) entered disabled state [ 178.242482][ T7471] device bridge_slave_0 entered promiscuous mode [ 178.261531][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 178.272161][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 178.282636][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 178.292975][ T5] bridge0: port 2(bridge_slave_1) entered blocking state [ 178.300138][ T5] bridge0: port 2(bridge_slave_1) entered forwarding state [ 178.307732][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 178.316681][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 178.325675][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 178.335419][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 178.351576][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 178.383303][ T7471] bridge0: port 2(bridge_slave_1) entered blocking state [ 178.394055][ T7471] bridge0: port 2(bridge_slave_1) entered disabled state [ 178.402958][ T7471] device bridge_slave_1 entered promiscuous mode [ 178.444157][ T7448] team0: Port device team_slave_0 added [ 178.451189][ T2585] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 178.464968][ T2585] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 178.491428][ T7471] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 178.510524][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 178.518868][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 178.529591][ T7448] team0: Port device team_slave_1 added [ 178.555832][ T7471] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 178.586693][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 178.596295][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 178.635527][ T7471] team0: Port device team_slave_0 added [ 178.648475][ T7471] team0: Port device team_slave_1 added [ 178.664694][ T7448] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 178.674878][ T7448] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 178.703558][ T7448] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 178.720281][ T7448] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 178.727264][ T7448] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 178.753972][ T7448] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 178.768319][ T7100] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 178.831810][ T6873] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 178.871890][ T7100] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 178.911964][ T7100] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 178.973102][ T7471] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 178.980332][ T7471] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 179.007585][ T7471] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 179.028062][ T7471] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 179.036327][ T7471] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 179.064219][ T7471] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 179.079212][ T7100] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 179.173264][ T7448] device hsr_slave_0 entered promiscuous mode [ 179.239651][ T7448] device hsr_slave_1 entered promiscuous mode [ 179.299252][ T7448] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 179.306843][ T7448] Cannot create hsr debugfs directory [ 179.339313][ T7194] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 179.440908][ T7194] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 179.532904][ T7471] device hsr_slave_0 entered promiscuous mode [ 179.589431][ T7471] device hsr_slave_1 entered promiscuous mode [ 179.639223][ T7471] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 179.646804][ T7471] Cannot create hsr debugfs directory [ 179.670165][ T2585] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 179.678197][ T2585] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 179.688395][ T7194] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 179.727974][ T6873] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 179.766207][ T7194] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 179.843702][ T7003] 8021q: adding VLAN 0 to HW filter on device bond0 [ 179.912432][ T7003] 8021q: adding VLAN 0 to HW filter on device team0 [ 179.928223][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 179.937397][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 179.945286][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 179.954492][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 180.015351][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 180.024680][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 180.036602][ T2746] bridge0: port 1(bridge_slave_0) entered blocking state [ 180.043812][ T2746] bridge0: port 1(bridge_slave_0) entered forwarding state [ 180.082636][ T7448] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 180.133809][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 180.141775][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 180.151203][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 180.161101][ T5] bridge0: port 2(bridge_slave_1) entered blocking state [ 180.168224][ T5] bridge0: port 2(bridge_slave_1) entered forwarding state [ 180.176946][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 180.186116][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 180.215270][ T6873] device veth0_vlan entered promiscuous mode [ 180.230993][ T7448] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 180.274847][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 180.283159][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 180.291797][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 180.307457][ T6873] device veth1_vlan entered promiscuous mode [ 180.329201][ T7448] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 180.383025][ T7448] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 180.450075][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 180.461630][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 180.516393][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 180.525731][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 180.535330][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 180.544486][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 180.574992][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 180.615588][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 180.624451][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 180.634168][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 180.645756][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 180.655555][ T7003] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 180.672490][ T7100] 8021q: adding VLAN 0 to HW filter on device bond0 [ 180.682912][ T7471] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 180.732769][ T7471] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 180.804461][ T7471] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 180.894220][ T7471] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 180.955779][ T6873] device veth0_macvtap entered promiscuous mode [ 180.980649][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 180.992642][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 181.001549][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 181.044047][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 181.055075][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 181.065273][ T6873] device veth1_macvtap entered promiscuous mode [ 181.085384][ T7100] 8021q: adding VLAN 0 to HW filter on device team0 [ 181.138344][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 181.146773][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 181.156746][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 181.165642][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 181.172787][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 181.184057][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 181.233141][ T7003] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 181.243469][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 181.252734][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 181.262088][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 181.269239][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 181.276829][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 181.285234][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 181.293958][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 181.316005][ T6873] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 181.336330][ T7448] 8021q: adding VLAN 0 to HW filter on device bond0 [ 181.352210][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 181.364761][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 181.384021][ T6873] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 181.398349][ T7194] 8021q: adding VLAN 0 to HW filter on device bond0 [ 181.422939][ T7448] 8021q: adding VLAN 0 to HW filter on device team0 [ 181.435218][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 181.450056][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 181.458710][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 181.472582][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 181.482863][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 181.496691][ T6873] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.511954][ T6873] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.525147][ T6873] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.533977][ T6873] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.571872][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 181.584801][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 181.594731][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 181.604620][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 181.613578][ T2746] bridge0: port 1(bridge_slave_0) entered blocking state [ 181.620703][ T2746] bridge0: port 1(bridge_slave_0) entered forwarding state [ 181.628526][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 181.637978][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 181.646772][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 181.656001][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 181.689486][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 181.697492][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 181.706907][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 181.716400][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 181.725899][ T2746] bridge0: port 2(bridge_slave_1) entered blocking state [ 181.733083][ T2746] bridge0: port 2(bridge_slave_1) entered forwarding state [ 181.747179][ T7194] 8021q: adding VLAN 0 to HW filter on device team0 [ 181.864832][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 181.876593][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 181.885595][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 181.895597][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 181.911828][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 181.938573][ T7003] device veth0_vlan entered promiscuous mode [ 181.945960][ T2585] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 181.960152][ T2585] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 181.968579][ T2585] bridge0: port 1(bridge_slave_0) entered blocking state [ 181.978014][ T2585] bridge0: port 1(bridge_slave_0) entered forwarding state [ 181.986469][ T2585] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 181.995508][ T2585] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 182.004297][ T2585] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 182.013228][ T2585] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 182.022187][ T2585] bridge0: port 2(bridge_slave_1) entered blocking state [ 182.029320][ T2585] bridge0: port 2(bridge_slave_1) entered forwarding state [ 182.128253][ T7003] device veth1_vlan entered promiscuous mode [ 182.136440][ T7100] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 182.151146][ T7100] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 182.162870][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 182.172606][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 182.181255][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 182.189119][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 182.201529][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 182.210465][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 182.218768][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 182.227883][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 182.237526][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 182.246654][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 182.255712][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 182.268893][ T7471] 8021q: adding VLAN 0 to HW filter on device bond0 [ 182.309462][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 182.318007][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 182.326683][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 182.336073][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 182.345818][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 182.355204][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 182.365908][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 182.374951][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 182.384705][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 182.419619][ T7471] 8021q: adding VLAN 0 to HW filter on device team0 [ 182.427330][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 182.436841][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 182.445669][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 182.456068][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 182.465184][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 182.472851][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 182.481523][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 182.490495][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 182.505386][ T7100] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 182.545658][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 182.556853][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 182.566280][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 182.580000][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 182.590549][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 182.599329][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 182.607714][ T17] bridge0: port 1(bridge_slave_0) entered blocking state [ 182.614857][ T17] bridge0: port 1(bridge_slave_0) entered forwarding state [ 182.623568][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 182.633433][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 182.642421][ T17] bridge0: port 2(bridge_slave_1) entered blocking state [ 182.650146][ T17] bridge0: port 2(bridge_slave_1) entered forwarding state [ 182.659417][ T7194] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 182.668700][ T7448] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 182.697115][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 182.705432][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 182.714570][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 182.731669][ T7003] device veth0_macvtap entered promiscuous mode [ 182.774742][ T7003] device veth1_macvtap entered promiscuous mode [ 182.785298][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 182.795674][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 182.807693][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 182.816472][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 182.825367][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 182.834270][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 182.843723][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 182.852758][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 182.877341][ T7100] device veth0_vlan entered promiscuous mode [ 182.903916][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 182.915446][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 182.927131][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 182.937138][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 182.947438][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 182.958441][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 182.969513][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 182.977847][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 182.990587][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 182.998879][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 183.010043][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 183.025789][ T7471] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 183.041364][ T7471] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 183.065170][ T7194] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 183.073070][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 183.082126][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 183.091161][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 183.102801][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 183.115512][ T7100] device veth1_vlan entered promiscuous mode [ 183.133491][ T7448] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 183.160825][ T7003] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 183.197791][ T7003] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! 09:36:24 executing program 0: [ 183.305718][ T7003] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 183.384159][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 183.410140][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 183.418467][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready 09:36:24 executing program 0: [ 183.478788][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready 09:36:24 executing program 0: [ 183.538070][ T7003] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 09:36:24 executing program 0: [ 183.627687][ T7003] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 183.641670][ T7003] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 183.692781][ T8129] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 183.705051][ T8129] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 183.714072][ T8129] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 183.730489][ T8129] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready 09:36:24 executing program 0: [ 183.749825][ T8129] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 183.762783][ T8129] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 183.777084][ T7471] 8021q: adding VLAN 0 to HW filter on device batadv0 09:36:24 executing program 0: [ 183.865518][ T7003] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.879877][ T7003] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.888614][ T7003] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 09:36:25 executing program 0: [ 183.969393][ T7003] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 184.008122][ T7194] device veth0_vlan entered promiscuous mode [ 184.036226][ T7100] device veth0_macvtap entered promiscuous mode [ 184.053540][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 184.081100][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 184.113895][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 184.134043][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 184.158063][ T7100] device veth1_macvtap entered promiscuous mode [ 184.189361][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 184.190074][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 184.211837][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 184.222816][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 184.236977][ T7194] device veth1_vlan entered promiscuous mode [ 184.349261][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 184.357534][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 184.371310][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 184.382585][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 184.447124][ T7100] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 184.466241][ T7100] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 184.477534][ T7100] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 184.490923][ T7100] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 184.504393][ T7100] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 184.526848][ T2585] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 184.537065][ T2585] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 184.561937][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 184.571305][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 184.580415][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 184.593775][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 184.606715][ T7100] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 184.625957][ T7100] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 184.636039][ T7100] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 184.646809][ T7100] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 184.658453][ T7100] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 184.670552][ T7194] device veth0_macvtap entered promiscuous mode [ 184.684332][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 184.692493][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 184.701860][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 184.710776][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 184.724415][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 184.735683][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 184.748564][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 184.758494][ T7448] device veth0_vlan entered promiscuous mode [ 184.768608][ T7194] device veth1_macvtap entered promiscuous mode [ 184.789510][ T7100] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 184.798250][ T7100] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 184.808306][ T7100] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 184.822135][ T7100] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 184.847524][ T7448] device veth1_vlan entered promiscuous mode [ 184.866344][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 184.875279][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 184.884818][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 184.893818][ T2746] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 184.909644][ T7471] device veth0_vlan entered promiscuous mode [ 184.924668][ T7194] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 184.936288][ T7194] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 184.946651][ T7194] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 184.958744][ T7194] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 184.969407][ T7194] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 184.980027][ T7194] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 184.991745][ T7194] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 185.014589][ T7471] device veth1_vlan entered promiscuous mode [ 185.023488][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 185.032368][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 185.042638][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 185.122749][ T7194] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 185.134943][ T7194] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.144852][ T7194] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 185.155372][ T7194] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.165622][ T7194] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 185.177724][ T7194] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.189822][ T7194] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 185.209437][ T7194] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 185.218176][ T7194] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 185.227784][ T7194] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 185.238953][ T7194] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 185.281188][ T2585] Bluetooth: hci0: command 0x0409 tx timeout [ 185.351871][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 185.361013][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 185.370351][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 185.379789][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 185.388265][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 185.421547][ T7448] device veth0_macvtap entered promiscuous mode [ 185.463390][ T7471] device veth0_macvtap entered promiscuous mode [ 185.540713][ T7448] device veth1_macvtap entered promiscuous mode [ 185.548377][ T2585] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 185.565755][ T2585] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 185.574206][ T2585] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 185.591429][ T2585] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 185.671918][ T7471] device veth1_macvtap entered promiscuous mode [ 185.699262][ T2585] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 185.708877][ T2585] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready 09:36:26 executing program 1: syz_emit_vhci(&(0x7f0000002c00)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x0, 0x4}}, 0x3) [ 185.729346][ T7448] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 185.743732][ T7448] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.755634][ T7448] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 185.767007][ T7448] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.784400][ T7448] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 185.795774][ T7448] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.806323][ T7448] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 185.817525][ T7448] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.835895][ T7448] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 185.838677][ T8133] Bluetooth: Frame is too short (len 2) [ 185.852068][ T8133] Bluetooth: Frame is too short (len 2) [ 185.908594][ T7471] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 185.941648][ T7471] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.958487][ T7471] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 185.995260][ T7471] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 186.006905][ T7471] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 186.019245][ T7471] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 186.030533][ T7471] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 186.041603][ T7471] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 186.052428][ T7471] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 186.062979][ T7471] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 186.074197][ T7471] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 186.089624][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 186.100549][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 186.110166][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 186.118713][ T7472] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 186.131589][ T7448] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 186.143525][ T7448] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 186.153469][ T7448] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 186.164497][ T7448] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 186.174425][ T7448] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 186.184977][ T7448] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 186.196614][ T7448] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 186.207425][ T7448] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 186.218641][ T7448] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 186.229212][ T7471] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 186.241491][ T7471] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 186.251555][ T7471] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 186.262187][ T7471] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 186.272549][ T7471] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 186.283169][ T7471] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 186.293423][ T7471] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 186.306141][ T7471] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 186.317031][ T7471] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 186.330573][ T7471] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 186.332402][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!! [ 186.342247][ T7471] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 186.406853][ T2585] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 186.416060][ T2585] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 186.425613][ T2585] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 186.435030][ T2585] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 186.448134][ T7448] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 186.463910][ T7448] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 186.475469][ T7448] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 186.487003][ T7448] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 186.514489][ T7471] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 186.524072][ T7471] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 186.534229][ T7471] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 186.543197][ T7471] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 09:36:27 executing program 2: syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="040f0400000604"], 0x7) [ 187.359696][ T7939] Bluetooth: hci0: command 0x041b tx timeout 09:36:28 executing program 3: [ 187.520065][ T7939] Bluetooth: hci1: command 0x0409 tx timeout 09:36:29 executing program 4: syz_emit_vhci(&(0x7f0000000300)=@HCI_EVENT_PKT={0x4, @hci_ev_si_device={{0x1, 0x4}}}, 0x7) 09:36:29 executing program 5: syz_emit_vhci(&(0x7f0000000000)=ANY=[], 0xf) 09:36:29 executing program 0: syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="040fac158b0604"], 0x7) 09:36:29 executing program 1: syz_emit_vhci(&(0x7f00000010c0)=@HCI_EVENT_PKT={0x4, @hci_ev_disconn_complete={{0x5, 0x4}, {0x81}}}, 0x7) 09:36:29 executing program 2: syz_emit_vhci(&(0x7f0000003dc0)=@HCI_EVENT_PKT={0x4, @hci_ev_le_meta={{0x3e, 0x6}, @hci_ev_le_phy_update_complete={{}, {0x7}}}}, 0x9) 09:36:29 executing program 3: syz_emit_vhci(&(0x7f00000027c0)=@HCI_EVENT_PKT={0x4, @hci_ev_key_refresh_complete={{0x30, 0x3}}}, 0x6) 09:36:29 executing program 4: syz_emit_vhci(&(0x7f00000002c0)=@HCI_EVENT_PKT={0x4, @hci_ev_auth_complete={{0x6, 0x3}, {0x6}}}, 0x6) 09:36:29 executing program 0: syz_emit_vhci(&(0x7f0000001540)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x8, 0x0, 0x200d}}}, 0x7) 09:36:29 executing program 1: syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x5}, @hci_rp_read_inq_rsp_tx_power={{0x7}, {0x6, 0x2c}}}}, 0x8) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, "9e2ba7d23041232a917dce09072a1eb509d08decaa67f2da4aa8e0b032ae6cd0228774dfca4c9f7585e00740c71b8435b530517f219414b561a77ccc5552d5b7679584f111bf2e191db324e7093078792797042c2bd41f3f614e0037bb0db6fdb9a498e8d2999b3e5e64fa0a06af0874c40d638a9a45a7b1e97d28e07b29b521282c7fdecde486422607b4c21b5f13c144b86937cdccc38a13a7c0f41c4a6b7e9edb96ecbd975c846d3da945d1ba58ee339f1561f18a1bce04ca7331494478cf68276b327d33e0ae91217b5fa20b26cd"}, 0xd1) 09:36:29 executing program 5: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040e07000320"], 0xa) 09:36:29 executing program 3: syz_emit_vhci(&(0x7f0000000c80)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0xc}, @hci_rp_le_read_supported_states={{}, {0xc4, "b30fa781c2b3020e"}}}}, 0xf) 09:36:29 executing program 4: syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x0, 0xc}, @l2cap_cid_le_signaling={{0x8}, [@l2cap_le_credits={{0x16, 0x0, 0x4}}]}}, 0x11) 09:36:29 executing program 2: syz_emit_vhci(&(0x7f0000000680)=@HCI_EVENT_PKT={0x4, @hci_ev_le_meta={{0x3e, 0x13}, @hci_ev_le_conn_complete={{}, {0x0, 0xc8, 0x0, 0x0, @fixed}}}}, 0x16) [ 188.462080][ T8133] Bluetooth: hci1: SCO packet for unknown connection handle 2974 [ 188.476516][ T8133] debugfs: Directory '200' with parent 'hci2' already present! [ 188.486972][ T8133] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:200' [ 188.496806][ T8133] CPU: 0 PID: 8133 Comm: kworker/u5:1 Not tainted 5.8.0-rc7-next-20200731-syzkaller #0 09:36:29 executing program 2: syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_conn_complete={{0x3, 0xb}, {0x0, 0xc8, @none, 0x1}}}, 0xe) syz_emit_vhci(&(0x7f0000000180)=@HCI_EVENT_PKT={0x4, @hci_ev_phy_link_complete={{0x40, 0x2}}}, 0x5) [ 188.506446][ T8133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 188.516519][ T8133] Workqueue: hci2 hci_rx_work [ 188.521226][ T8133] Call Trace: [ 188.524525][ T8133] dump_stack+0x18f/0x20d [ 188.528877][ T8133] sysfs_warn_dup.cold+0x1c/0x2d [ 188.534182][ T8133] sysfs_create_dir_ns+0x233/0x290 [ 188.539568][ T8133] ? sysfs_create_mount_point+0xb0/0xb0 [ 188.545125][ T8133] ? rwlock_bug.part.0+0x90/0x90 [ 188.550078][ T8133] ? do_raw_spin_unlock+0x171/0x230 [ 188.555298][ T8133] kobject_add_internal+0x2c3/0x940 09:36:29 executing program 4: syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_num_comp_pkts={{0x13, 0x1}}}, 0x4) [ 188.560514][ T8133] kobject_add+0x150/0x1c0 [ 188.564937][ T8133] ? kset_create_and_add+0x190/0x190 [ 188.570242][ T8133] ? lockdep_init_map_waits+0x26a/0x8a0 [ 188.575806][ T8133] ? __raw_spin_lock_init+0x34/0x100 [ 188.581097][ T8133] ? device_add+0x33b/0x1c40 [ 188.585704][ T8133] device_add+0x35a/0x1c40 [ 188.590135][ T8133] ? devlink_add_symlinks+0x450/0x450 [ 188.595520][ T8133] ? hci_debugfs_create_conn+0x179/0x1f0 [ 188.601607][ T8133] ? hci_debugfs_create_le+0x850/0x850 [ 188.607091][ T8133] hci_conn_add_sysfs+0x84/0xe0 09:36:29 executing program 2: 09:36:29 executing program 4: [ 188.611955][ T8133] le_conn_complete_evt+0xc09/0x1740 [ 188.617286][ T8133] ? hci_remote_ext_features_evt.isra.0+0xd30/0xd30 [ 188.624078][ T8133] hci_le_meta_evt+0xe55/0x3fd0 [ 188.628948][ T8133] ? mark_lock+0xbc/0x1710 [ 188.633372][ T8133] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 188.639556][ T8133] ? hci_key_refresh_complete_evt.isra.0+0x10b0/0x10b0 [ 188.646523][ T8133] ? mark_lock+0xbc/0x1710 [ 188.651815][ T8133] ? __lock_acquire+0x16cb/0x5640 [ 188.656954][ T8133] ? __lock_acquire+0x16cb/0x5640 09:36:29 executing program 2: [ 188.662011][ T8133] hci_event_packet+0x2e25/0x87a8 [ 188.667080][ T8133] ? lockdep_hardirqs_on_prepare+0x530/0x530 [ 188.673102][ T8133] ? __lock_acquire+0x16cb/0x5640 [ 188.678177][ T8133] ? hci_cmd_complete_evt+0xc6d0/0xc6d0 [ 188.683735][ T8133] ? lock_acquire+0x1f1/0xad0 [ 188.688420][ T8133] ? skb_dequeue+0x1c/0x180 [ 188.692941][ T8133] ? find_held_lock+0x2d/0x110 [ 188.698165][ T8133] ? mark_lock+0xbc/0x1710 [ 188.702599][ T8133] ? mark_held_locks+0x9f/0xe0 [ 188.707381][ T8133] ? _raw_spin_unlock_irqrestore+0x62/0xe0 09:36:29 executing program 4: [ 188.713205][ T8133] ? lockdep_hardirqs_on_prepare+0x354/0x530 [ 188.719196][ T8133] ? trace_hardirqs_on+0x5f/0x220 [ 188.724237][ T8133] ? lockdep_hardirqs_on+0x76/0xf0 [ 188.729366][ T8133] hci_rx_work+0x22e/0xb50 [ 188.733804][ T8133] process_one_work+0x94c/0x1670 [ 188.739134][ T8133] ? lock_release+0x8e0/0x8e0 [ 188.743827][ T8133] ? pwq_dec_nr_in_flight+0x2d0/0x2d0 [ 188.749225][ T8133] ? rwlock_bug.part.0+0x90/0x90 [ 188.754175][ T8133] ? lockdep_hardirqs_off+0x7e/0xb0 [ 188.759412][ T8133] worker_thread+0x64c/0x1120 [ 188.764126][ T8133] ? process_one_work+0x1670/0x1670 [ 188.770028][ T8133] kthread+0x3b5/0x4a0 [ 188.774200][ T8133] ? __kthread_bind_mask+0xc0/0xc0 [ 188.779319][ T8133] ? __kthread_bind_mask+0xc0/0xc0 [ 188.784441][ T8133] ret_from_fork+0x1f/0x30 09:36:29 executing program 0: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x5}, @hci_rp_le_read_resolv_list_size={{}, {0x5}}}}, 0x8) [ 188.805531][ T8133] kobject_add_internal failed for hci2:200 with -EEXIST, don't try to register things with the same name in the same directory. [ 188.818828][ T8133] Bluetooth: hci2: failed to register connection device [ 188.826326][ T8133] debugfs: Directory '200' with parent 'hci2' already present! [ 188.834101][ T8133] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:200' [ 188.843706][ T8133] CPU: 0 PID: 8133 Comm: kworker/u5:1 Not tainted 5.8.0-rc7-next-20200731-syzkaller #0 [ 188.853351][ T8133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 09:36:29 executing program 1: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040e058d102007"], 0x8) 09:36:29 executing program 4: syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000001500)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x3, 0x0, 0xe0}, @l2cap_cid_signaling={{0xdc}, [@l2cap_conf_rsp={{0x5, 0x9, 0xd2}, {0x81, 0x11, 0x100, [{0x0, 0xca, "6d22e856f75ff7af95fadd29eafe0dc6448b555df53238955450eeed84242ba9b31f65c90ac0b6954f23641cb83b1beb86acb2f54e86990182aefd7965a448ee7aa4859cc283967440b2e3f3aa38e0b8ced4a2cdeb188919bff8ca51e193ac0f2d3b6e0aad50ba644d6e92d2dc3eab5ee5cec27786bea7ca27c018d8cfa33e8dff32b8dcd33d1baf3079889fe6e31eee9e3129ad3fba2a8c60b62f5c21b4bac5340db14a1b3c6227c88663579f9dde6099c24dd6857807569bcf7b7552746a553592d8c7a860aaa52ab1"}]}}, @l2cap_info_req={{0xa, 0x6, 0x2}, {0x3}}]}}, 0xe5) 09:36:29 executing program 2: 09:36:29 executing program 3: syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0xfc}, @hci_rp_read_local_name={{}, {0x98, "bce45ea30b206cf3d8055486452bd8b4e11c0b6d069cba7d08c07f9e9c04e7a28201b7012d4b6576d4c7cf344e347f85b1a1898037cbf81d5c5e912615e137ac85db28364c3337ff9dcf4862b15d1233ea2b96f9fdcb7b6b35546287a583588b28a268b7d0374d6c7ebd63b72f1b13b0413aa59736e7107c9c47cae9d102ec6f2ede7d12336f47343d3b84c41a6b38364fa85767481e369fb6f5769de44cc6b3400c3fe623de4f076a646673563ea9f9e70861b35959ffa311fb4c0cc3e9a2d7669e65b92505efd7acde35afb27debc2e315fbbeee66b01139a8f9cbee70e36d0e245d2b2dd0c6aba0b96f058160c944b23a1bbb109c1759"}}}}, 0xff) 09:36:29 executing program 5: syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_link_key_notify={{0x18, 0x17}, {@any, "054ae4d6ed40c6bfc0418bfd89a06ee8", 0x5}}}, 0x1a) [ 188.863419][ T8133] Workqueue: hci2 hci_rx_work [ 188.868109][ T8133] Call Trace: [ 188.871407][ T8133] dump_stack+0x18f/0x20d [ 188.875751][ T8133] sysfs_warn_dup.cold+0x1c/0x2d [ 188.880704][ T8133] sysfs_create_dir_ns+0x233/0x290 [ 188.885824][ T8133] ? sysfs_create_mount_point+0xb0/0xb0 [ 188.891388][ T8133] ? rwlock_bug.part.0+0x90/0x90 [ 188.896368][ T8133] ? do_raw_spin_unlock+0x171/0x230 [ 188.901600][ T8133] kobject_add_internal+0x2c3/0x940 [ 188.906809][ T8133] kobject_add+0x150/0x1c0 [ 188.911237][ T8133] ? kset_create_and_add+0x190/0x190 [ 188.916564][ T8133] ? lockdep_init_map_waits+0x26a/0x8a0 [ 188.922119][ T8133] ? __raw_spin_lock_init+0x34/0x100 [ 188.927412][ T8133] ? device_add+0x33b/0x1c40 [ 188.932022][ T8133] device_add+0x35a/0x1c40 [ 188.936640][ T8133] ? devlink_add_symlinks+0x450/0x450 [ 188.944026][ T8133] ? hci_debugfs_create_conn+0x179/0x1f0 [ 188.949679][ T8133] ? hci_debugfs_create_le+0x850/0x850 [ 188.955157][ T8133] hci_conn_add_sysfs+0x84/0xe0 09:36:30 executing program 2: syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x5}, @hci_rp_read_inq_rsp_tx_power}}, 0x8) [ 188.960021][ T8133] le_conn_complete_evt+0xc09/0x1740 [ 188.969327][ T8133] ? hci_remote_ext_features_evt.isra.0+0xd30/0xd30 [ 188.975932][ T8133] ? debug_check_no_obj_freed+0x20c/0x41c [ 188.981675][ T8133] hci_le_meta_evt+0xe55/0x3fd0 [ 188.986540][ T8133] ? mark_lock+0xbc/0x1710 [ 188.991045][ T8133] ? hci_key_refresh_complete_evt.isra.0+0x10b0/0x10b0 [ 188.997934][ T8133] ? mark_lock+0xbc/0x1710 [ 189.002381][ T8133] ? lock_is_held_type+0xbb/0xf0 [ 189.007333][ T8133] ? __lock_acquire+0x16cb/0x5640 [ 189.012374][ T8133] hci_event_packet+0x2e25/0x87a8 [ 189.017414][ T8133] ? lockdep_hardirqs_on_prepare+0x530/0x530 [ 189.023405][ T8133] ? __lock_acquire+0x16cb/0x5640 [ 189.028439][ T8133] ? hci_cmd_complete_evt+0xc6d0/0xc6d0 [ 189.034032][ T8133] ? lock_acquire+0x1f1/0xad0 [ 189.038812][ T8133] ? skb_dequeue+0x1c/0x180 [ 189.043331][ T8133] ? find_held_lock+0x2d/0x110 [ 189.048126][ T8133] ? mark_lock+0xbc/0x1710 [ 189.052567][ T8133] ? mark_held_locks+0x9f/0xe0 [ 189.057342][ T8133] ? _raw_spin_unlock_irqrestore+0x62/0xe0 [ 189.063157][ T8133] ? lockdep_hardirqs_on_prepare+0x354/0x530 [ 189.069497][ T8133] ? trace_hardirqs_on+0x5f/0x220 [ 189.074531][ T8133] ? lockdep_hardirqs_on+0x76/0xf0 [ 189.079654][ T8133] hci_rx_work+0x22e/0xb50 [ 189.084099][ T8133] process_one_work+0x94c/0x1670 [ 189.089341][ T8133] ? lock_release+0x8e0/0x8e0 [ 189.094027][ T8133] ? pwq_dec_nr_in_flight+0x2d0/0x2d0 [ 189.099433][ T8133] ? rwlock_bug.part.0+0x90/0x90 [ 189.104395][ T8133] ? lockdep_hardirqs_off+0x7e/0xb0 [ 189.109610][ T8133] worker_thread+0x64c/0x1120 [ 189.114311][ T8133] ? process_one_work+0x1670/0x1670 [ 189.119527][ T8133] kthread+0x3b5/0x4a0 [ 189.123605][ T8133] ? __kthread_bind_mask+0xc0/0xc0 [ 189.128728][ T8133] ? __kthread_bind_mask+0xc0/0xc0 [ 189.133856][ T8133] ret_from_fork+0x1f/0x30 [ 189.142489][ T8133] kobject_add_internal failed for hci2:200 with -EEXIST, don't try to register things with the same name in the same directory. [ 189.155909][ T8133] Bluetooth: hci2: failed to register connection device [ 189.163082][ T8133] general protection fault, probably for non-canonical address 0xdffffc0000000002: 0000 [#1] PREEMPT SMP KASAN [ 189.175932][ T8133] KASAN: null-ptr-deref in range [0x0000000000000010-0x0000000000000017] [ 189.184345][ T8133] CPU: 0 PID: 8133 Comm: kworker/u5:1 Not tainted 5.8.0-rc7-next-20200731-syzkaller #0 [ 189.196247][ T8133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 189.206315][ T8133] Workqueue: hci2 hci_rx_work [ 189.211022][ T8133] RIP: 0010:hci_phy_link_complete_evt.isra.0+0x23e/0x790 [ 189.218043][ T8133] Code: 48 c1 ea 03 80 3c 02 00 0f 85 3e 05 00 00 48 8b 9d 30 09 00 00 48 b8 00 00 00 00 00 fc ff df 48 8d 7b 10 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 da 04 00 00 48 b8 00 00 00 00 00 fc ff df 48 8b [ 189.238020][ T8133] RSP: 0018:ffffc90016a0fa38 EFLAGS: 00010202 [ 189.244818][ T8133] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffff8722a583 [ 189.252791][ T8133] RDX: 0000000000000002 RSI: ffffffff8722a590 RDI: 0000000000000010 [ 189.260763][ T8133] RBP: ffff888093078000 R08: 0000000000000001 R09: ffff88804ef8c988 [ 189.268914][ T8133] R10: 0000000000000000 R11: 0000000000000178 R12: dffffc0000000000 [ 189.276888][ T8133] R13: ffff8880546b9138 R14: ffff888093c4740b R15: 00000000000000c8 [ 189.284893][ T8133] FS: 0000000000000000(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000 [ 189.293828][ T8133] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 189.300419][ T8133] CR2: 0000000000743b94 CR3: 00000000a85f6000 CR4: 00000000001506f0 09:36:30 executing program 5: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x6}, @hci_rp_read_def_link_policy={{}, {0x5}}}}, 0x9) 09:36:30 executing program 4: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @inquiry_info_with_rssi_and_pscan_mode={{0x22, 0x79}, {0x8, [{@fixed={[], 0x12}, 0x2, 0x3f, 0x9, "a73cd2", 0x5, 0x8}, {@fixed={[], 0x10}, 0x50, 0x0, 0x3, "c8d1d4", 0x9, 0xff}, {@any, 0x7, 0x3f, 0xb, "2d6fef", 0xa52, 0x5}, {@any, 0x81, 0x60, 0x66, "b4dfbd", 0xb809, 0xcc}, {@none, 0x0, 0x0, 0x20, 'ivV', 0x80, 0x8}, {@none, 0x1f, 0x4, 0x3, "05570c", 0x1, 0x3f}, {@fixed={[], 0x11}, 0x2, 0x9, 0x0, "95f7fc", 0x0, 0x6}, {@fixed={[], 0x10}, 0x1, 0x64, 0x7f, 'Yiy', 0xf47f, 0x1f}]}}}, 0x7c) syz_emit_vhci(&(0x7f0000000100)=@HCI_EVENT_PKT={0x4, @hci_ev_conn_complete={{0x3, 0xb}, {0x0, 0xc8, @any, 0x2}}}, 0xe) syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_auth_complete={{0x6, 0x3}, {0x1}}}, 0x6) syz_emit_vhci(&(0x7f0000000180)=@HCI_EVENT_PKT={0x4, @hci_ev_io_capa_request={{0x31, 0x6}, {@fixed}}}, 0x9) syz_emit_vhci(&(0x7f0000000240)=@HCI_EVENT_PKT={0x4, @inquiry_info={{0x2, 0x1d}, {0x2, [{@fixed, 0x0, 0x0, 0x0, "3371a8"}, {@fixed, 0x0, 0x0, 0x0, "ec402f"}]}}}, 0x20) 09:36:30 executing program 2: syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_le_meta={{0x3e, 0xd}, @hci_ev_le_ltk_req}}, 0x10) syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_num_comp_pkts={{0x13, 0x1}}}, 0x4) 09:36:30 executing program 0: syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x0, 0x0, 0x2016}}}, 0x7) 09:36:30 executing program 1: syz_emit_vhci(&(0x7f0000000300)=ANY=[@ANYBLOB="043ece0d03120000aaaaaaaaaa1108ffaaaaaa12dd2e8ec1e5cf46bb1a77d3a357b74af3ce895061ddb6f8b316987eac587ddc147f9c8b6e"], 0x1d1) [ 189.308400][ T8133] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 189.316377][ T8133] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 189.324349][ T8133] Call Trace: [ 189.327653][ T8133] hci_event_packet+0x4696/0x87a8 [ 189.332689][ T8133] ? lockdep_hardirqs_on_prepare+0x530/0x530 [ 189.338675][ T8133] ? __lock_acquire+0x16cb/0x5640 [ 189.343710][ T8133] ? hci_cmd_complete_evt+0xc6d0/0xc6d0 [ 189.349270][ T8133] ? lock_acquire+0x1f1/0xad0 [ 189.353979][ T8133] ? skb_dequeue+0x1c/0x180 [ 189.358850][ T8133] ? find_held_lock+0x2d/0x110 [ 189.363647][ T8133] ? mark_lock+0xbc/0x1710 [ 189.368080][ T8133] ? mark_held_locks+0x9f/0xe0 [ 189.372843][ T8133] ? _raw_spin_unlock_irqrestore+0x62/0xe0 [ 189.378651][ T8133] ? lockdep_hardirqs_on_prepare+0x354/0x530 [ 189.384663][ T8133] ? trace_hardirqs_on+0x5f/0x220 [ 189.389691][ T8133] ? lockdep_hardirqs_on+0x76/0xf0 [ 189.394804][ T8133] hci_rx_work+0x22e/0xb50 [ 189.399262][ T8133] process_one_work+0x94c/0x1670 [ 189.404240][ T8133] ? lock_release+0x8e0/0x8e0 [ 189.408956][ T8133] ? pwq_dec_nr_in_flight+0x2d0/0x2d0 [ 189.414344][ T8133] ? rwlock_bug.part.0+0x90/0x90 [ 189.419294][ T8133] ? lockdep_hardirqs_off+0x7e/0xb0 [ 189.424499][ T8133] worker_thread+0x64c/0x1120 [ 189.429449][ T8133] ? process_one_work+0x1670/0x1670 [ 189.434653][ T8133] kthread+0x3b5/0x4a0 [ 189.438729][ T8133] ? __kthread_bind_mask+0xc0/0xc0 [ 189.443862][ T8133] ? __kthread_bind_mask+0xc0/0xc0 [ 189.449012][ T8133] ret_from_fork+0x1f/0x30 [ 189.453446][ T8133] Modules linked in: 09:36:30 executing program 3: syz_emit_vhci(&(0x7f0000000400)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x6, 0x0, 0x41c}}}, 0x7) 09:36:30 executing program 0: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="02c80043003f"], 0x48) 09:36:30 executing program 5: syz_emit_vhci(&(0x7f0000000300)=@HCI_EVENT_PKT={0x4, @hci_ev_auth_complete={{0x6, 0x3}}}, 0x6) syz_emit_vhci(&(0x7f0000000540)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_name={{0x7, 0xff}, {0x0, @fixed, "74d7129e49bcbf11f852ef2085c5c08cd722881e260775720aec01815030c13ba72cc95bb387ed57a494581dd824f2668899c502cdb189d53c4e09fa55e8fd15cd62b349ff2d7249158294e6cc874c66f39d58fd18b79f9355355682b3cb450d9ac9b442206dfb32e403e48a88f02de06f3f6e99f314cb622bd13b3e48b5a46b3e3c1e50f76f240510aa53ca84b46af5a2fba96954f5ee191bb69c44d52210d94c590ebb7f939f4f7143a29c820c1c277f659b0206cb7e1ca97d7c3dde7e1f4dd557dcdbf23f30d34a5b22c4e7ee8cda2f5e91d8007146c380ffae104c80ef7b6c8c5577803afe408c57a1ce6acfe175229ccf76c1d790d6"}}}, 0x102) [ 189.459535][ T1541] Bluetooth: hci1: advertising data len corrected 26 -> 0 09:36:30 executing program 1: syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x5}, @hci_rp_read_page_scan_type={{}, {0x4}}}}, 0x8) 09:36:30 executing program 4: syz_emit_vhci(&(0x7f0000000200)=@HCI_EVENT_PKT={0x4, @hci_ev_io_capa_reply={{0x32, 0x9}, {@none}}}, 0xc) 09:36:30 executing program 2: syz_emit_vhci(&(0x7f0000000000)=@HCI_SCODATA_PKT={0x3, "eb9f754a5c5c3e98ee4e67ca92e37c13095425a674a9f8fe40cca63f185308c4f414d51ccc203530a27c412b84c7255dfb511764b4fd2b1d465d5be8b93214a5c38ec75c6d278f9c2d655e45f5a0aa48cd7d4e421ca3375d4aa10185d19f244f99379b64fdc9a50e5062dac6501c3dadc6418d4ab108f202cbea7b99a04fd732e1afd30b4238aeba9b1c2ab6b58279e42d4668da324ddf4f1516108e68727cbc63750a7badf81054d4df3a47f932cce38455c8f2cdd2e50e6086a6ea2c1cf63b86cbb73db2b00da3246f73895f99dd1eb5cf5f95dcc0ae13795ca4347f38089f2c"}, 0xe2) syz_emit_vhci(&(0x7f0000000100)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x2, 0x3, 0x20}, @l2cap_cid_le_signaling={{0x1c}, [@l2cap_disconn_rsp={{0x7, 0x3f, 0x4}, {0x2, 0x4}}, @l2cap_disconn_rsp={{0x7, 0x8, 0x4}, {0x7ff, 0x69}}, @l2cap_ecred_conn_req={{0x17, 0xff, 0x8}, {0x3a4c, 0x401, 0x6, 0x7}}]}}, 0x25) syz_emit_vhci(&(0x7f0000000c80)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0xc}, @hci_rp_le_read_supported_states={{0x7}, {0xc4, "b30fa781c2b3020e"}}}}, 0xf) [ 189.459564][ T1541] Bluetooth: hci1: advertising data len corrected 26 -> 0 [ 189.545654][ T8133] ---[ end trace 295d0abc414b4b55 ]--- [ 189.558673][ T8133] RIP: 0010:hci_phy_link_complete_evt.isra.0+0x23e/0x790 [ 189.565778][ T8133] Code: 48 c1 ea 03 80 3c 02 00 0f 85 3e 05 00 00 48 8b 9d 30 09 00 00 48 b8 00 00 00 00 00 fc ff df 48 8d 7b 10 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 da 04 00 00 48 b8 00 00 00 00 00 fc ff df 48 8b [ 189.587232][ T8133] RSP: 0018:ffffc90016a0fa38 EFLAGS: 00010202 [ 189.594384][ T8133] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffff8722a583 [ 189.603006][ T8133] RDX: 0000000000000002 RSI: ffffffff8722a590 RDI: 0000000000000010 [ 189.615236][ T8133] RBP: ffff888093078000 R08: 0000000000000001 R09: ffff88804ef8c988 [ 189.623399][ T8133] R10: 0000000000000000 R11: 0000000000000178 R12: dffffc0000000000 [ 189.631451][ T8133] R13: ffff8880546b9138 R14: ffff888093c4740b R15: 00000000000000c8 09:36:30 executing program 3: syz_emit_vhci(&(0x7f0000000180)=@HCI_EVENT_PKT={0x4, @extended_inquiry_info={{0x2f, 0x1fd}, {0x2, [{@fixed, 0x0, 0x0, 'ww}', 0x0, 0x0, "799774ebc25c9cfabf9fd6be5a7019ba6e96deb3df954748042d3792a5d867a710c406c2710553859f52ac686cc2b0a90218933ee6f95c3980ca2a396be46a1770d29c07d4872e6cd2f585556d31792cc680b376901cb6ae37e3793ad067d5139f8a6f914818b6e39f78bd5d9b9409a106742f41a97008ffafb81cfcc14813e0020aa59187791997030a1cfcad63fd7a5dc8a6214c5253173fe9eee97fe4d7c46fbdbd7b6c4cef8fb861ec09ac28322bc887717b11ecf729c32a41f237ee756686a5834a5e61c0e0692eb36fa126a20b175a4ac4fef2055c6078bc18d6e3407867ca09cd24cf4b891bf21eb4a0426a83"}, {@none, 0x0, 0x0, "4caf92", 0x0, 0x0, "00eb1ce443514ecdd0778483dafc596bbcb7d09dc1ae13ca0c13a27f7130a3ef93d36f0c20f106ccda95586a73a48cea324fe1a40fb696822e069f371babf015b02dd9c038de7c89900c5eb4af64acd291ca64c8a0423b48304fabf50ec49b1860c01e26251ff6c400c6ca14f4ade4ac1839006c75abdc81a79cfb70711d53fd5a5705aee45634b25c5f54938d9d0b798414618589b27ff771822ccb50fc33a9d3954f96a7076b08538f7db1fb4937c672af0a3e24873040f4b18579e77fa6c295eba2395123d995494b0a57f5c2701f7c0fbc8a2c20d074deb7a8f845c78836ddef78419184bd61f5de4b79d2e6b66b"}]}}}, 0x200) [ 189.639581][ T8133] FS: 0000000000000000(0000) GS:ffff8880ae700000(0000) knlGS:0000000000000000 [ 189.648537][ T8133] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 189.655196][ T8133] CR2: 0000000000ca8660 CR3: 000000005c7d5000 CR4: 00000000001506e0 [ 189.663245][ T8133] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 189.671598][ T8133] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 189.679779][ T8133] Kernel panic - not syncing: Fatal exception [ 189.687776][ T8133] Kernel Offset: disabled [ 189.692221][ T8133] Rebooting in 86400 seconds..