[ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.183' (ECDSA) to the list of known hosts. 2020/08/26 14:26:07 fuzzer started 2020/08/26 14:26:08 dialing manager at 10.128.0.105:41231 2020/08/26 14:26:08 syscalls: 3327 2020/08/26 14:26:08 code coverage: enabled 2020/08/26 14:26:08 comparison tracing: enabled 2020/08/26 14:26:08 extra coverage: enabled 2020/08/26 14:26:08 setuid sandbox: enabled 2020/08/26 14:26:08 namespace sandbox: enabled 2020/08/26 14:26:08 Android sandbox: /sys/fs/selinux/policy does not exist 2020/08/26 14:26:08 fault injection: enabled 2020/08/26 14:26:08 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2020/08/26 14:26:08 net packet injection: enabled 2020/08/26 14:26:08 net device setup: enabled 2020/08/26 14:26:08 concurrency sanitizer: enabled 2020/08/26 14:26:08 devlink PCI setup: PCI device 0000:00:10.0 is not available 2020/08/26 14:26:08 USB emulation: enabled 2020/08/26 14:26:08 hci packet injection: enabled 2020/08/26 14:26:11 suppressing KCSAN reports in functions: 'ext4_writepages' 'generic_write_end' 'find_get_pages_range_tag' '__ext4_update_other_inode_time' 'exit_mm' 'futex_wait_queue_me' 'ext4_free_inodes_count' 'complete_signal' 'kauditd_thread' 'dd_has_work' 'blk_mq_sched_dispatch_requests' 'generic_file_buffered_read' 'ext4_free_inode' 'do_syslog' 'snd_rawmidi_poll' 'blk_mq_rq_ctx_init' '__delayacct_blkio_end' '__mod_timer' 'step_into' 'xas_clear_mark' 'n_tty_receive_buf_common' 'ondemand_readahead' '__ext4_new_inode' 'expire_timers' 'drop_nlink' 'blk_mq_dispatch_rq_list' '__filemap_fdatawrite_range' '__send_signal' 'do_sys_poll' 'shmem_unlink' 'get_signal' 'lookup_fast' 'alloc_pid' 'do_nanosleep' 'ext4_mark_iloc_dirty' 'pcpu_alloc' '__add_to_page_cache_locked' 'dput' 'wbt_issue' 'snd_rawmidi_transmit' '__xa_clear_mark' 'wbt_done' 'ext4_mb_good_group' 'audit_log_start' '__delete_from_page_cache' 'do_select' 14:27:49 executing program 0: syz_read_part_table(0x0, 0x1d4, &(0x7f0000000200)=[{&(0x7f0000000080)="030005000314af00031400000000000000000f0000000000000000000500000000204200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}]) 14:27:49 executing program 1: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mount(&(0x7f0000000140)=@filename='./file0\x00', &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)='selinuxfs\x00', 0x0, 0x0) 14:27:49 executing program 2: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000180)="1f5583624999c4665398664c3fd64362f39caf1701d25c2fd6d42bce84c2e238b5eae719fd6321452d791cc0576c8624862bd395fea6432d69e5cc27d7b0ca298f52e4be0721915e61ca9791d9da035fcb03", 0x52}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x3c) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x1f, r0, 0x0, 0x0) 14:27:49 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='comm\x00') write$binfmt_aout(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='\n'], 0x4) r1 = socket$inet6(0xa, 0x2, 0x0) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = syz_open_procfs(0x0, &(0x7f0000000500)='status\x00') read$FUSE(r3, 0x0, 0x0) 14:27:49 executing program 4: r0 = syz_open_dev$usbfs(&(0x7f0000000040)='/dev/bus/usb/00#/00#\x00', 0x100000000001, 0x68001) ioctl$USBDEVFS_IOCTL(r0, 0x8038550a, &(0x7f0000000080)=@usbdevfs_driver={0x0, 0x0, 0x0}) 14:27:50 executing program 5: r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0) ftruncate(r0, 0x208200) r1 = open(&(0x7f0000000400)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x17ffffe, 0x12, r1, 0x80000) read(r1, &(0x7f0000000180)=""/19, 0xfffffe47) syzkaller login: [ 136.434202][ T8715] IPVS: ftp: loaded support on port[0] = 21 [ 136.503899][ T8715] chnl_net:caif_netlink_parms(): no params data found [ 136.535033][ T8715] bridge0: port 1(bridge_slave_0) entered blocking state [ 136.551396][ T8715] bridge0: port 1(bridge_slave_0) entered disabled state [ 136.567114][ T8715] device bridge_slave_0 entered promiscuous mode [ 136.586049][ T8717] IPVS: ftp: loaded support on port[0] = 21 [ 136.596332][ T8715] bridge0: port 2(bridge_slave_1) entered blocking state [ 136.608788][ T8715] bridge0: port 2(bridge_slave_1) entered disabled state [ 136.625344][ T8715] device bridge_slave_1 entered promiscuous mode [ 136.657862][ T8715] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 136.679433][ T8715] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 136.709520][ T8715] team0: Port device team_slave_0 added [ 136.736849][ T8719] IPVS: ftp: loaded support on port[0] = 21 [ 136.744477][ T8715] team0: Port device team_slave_1 added [ 136.767395][ T8715] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 136.796752][ T8715] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 136.837870][ T8715] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 136.856744][ T8715] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 136.872051][ T8715] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 136.917526][ T8715] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 136.983520][ T8721] IPVS: ftp: loaded support on port[0] = 21 [ 137.004349][ T8715] device hsr_slave_0 entered promiscuous mode [ 137.012248][ T8715] device hsr_slave_1 entered promiscuous mode [ 137.059041][ T8717] chnl_net:caif_netlink_parms(): no params data found [ 137.114114][ T8723] IPVS: ftp: loaded support on port[0] = 21 [ 137.226017][ T8715] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 137.268609][ T8719] chnl_net:caif_netlink_parms(): no params data found [ 137.296122][ T8715] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 137.319551][ T8725] IPVS: ftp: loaded support on port[0] = 21 [ 137.345471][ T8715] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 137.357453][ T8715] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 137.382069][ T8717] bridge0: port 1(bridge_slave_0) entered blocking state [ 137.394190][ T8717] bridge0: port 1(bridge_slave_0) entered disabled state [ 137.406991][ T8717] device bridge_slave_0 entered promiscuous mode [ 137.421637][ T8721] chnl_net:caif_netlink_parms(): no params data found [ 137.457451][ T8717] bridge0: port 2(bridge_slave_1) entered blocking state [ 137.466792][ T8717] bridge0: port 2(bridge_slave_1) entered disabled state [ 137.477802][ T8717] device bridge_slave_1 entered promiscuous mode [ 137.509527][ T8719] bridge0: port 1(bridge_slave_0) entered blocking state [ 137.524217][ T8719] bridge0: port 1(bridge_slave_0) entered disabled state [ 137.534875][ T8719] device bridge_slave_0 entered promiscuous mode [ 137.556233][ T8715] bridge0: port 2(bridge_slave_1) entered blocking state [ 137.564434][ T8715] bridge0: port 2(bridge_slave_1) entered forwarding state [ 137.573196][ T8715] bridge0: port 1(bridge_slave_0) entered blocking state [ 137.583925][ T8715] bridge0: port 1(bridge_slave_0) entered forwarding state [ 137.600993][ T5099] bridge0: port 1(bridge_slave_0) entered disabled state [ 137.611897][ T5099] bridge0: port 2(bridge_slave_1) entered disabled state [ 137.641098][ T8719] bridge0: port 2(bridge_slave_1) entered blocking state [ 137.649503][ T8719] bridge0: port 2(bridge_slave_1) entered disabled state [ 137.662452][ T8719] device bridge_slave_1 entered promiscuous mode [ 137.687349][ T8723] chnl_net:caif_netlink_parms(): no params data found [ 137.703515][ T8717] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 137.730670][ T8721] bridge0: port 1(bridge_slave_0) entered blocking state [ 137.740041][ T8721] bridge0: port 1(bridge_slave_0) entered disabled state [ 137.751773][ T8721] device bridge_slave_0 entered promiscuous mode [ 137.763134][ T8717] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 137.779613][ T8719] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 137.802127][ T8721] bridge0: port 2(bridge_slave_1) entered blocking state [ 137.815881][ T8721] bridge0: port 2(bridge_slave_1) entered disabled state [ 137.834580][ T8721] device bridge_slave_1 entered promiscuous mode [ 137.870473][ T8719] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 137.897628][ T8725] chnl_net:caif_netlink_parms(): no params data found [ 137.916324][ T8719] team0: Port device team_slave_0 added [ 137.926024][ T8717] team0: Port device team_slave_0 added [ 137.950477][ T8719] team0: Port device team_slave_1 added [ 137.970092][ T8721] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 137.993620][ T8717] team0: Port device team_slave_1 added [ 138.008972][ T8719] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 138.018526][ T8719] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 138.056066][ T8719] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 138.076668][ T8721] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 138.098278][ T8723] bridge0: port 1(bridge_slave_0) entered blocking state [ 138.107234][ T8723] bridge0: port 1(bridge_slave_0) entered disabled state [ 138.116853][ T8723] device bridge_slave_0 entered promiscuous mode [ 138.125583][ T8719] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 138.133490][ T8719] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 138.164346][ T8719] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 138.184036][ T8717] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 138.193664][ T8717] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 138.233294][ T8717] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 138.255432][ T8723] bridge0: port 2(bridge_slave_1) entered blocking state [ 138.272357][ T8723] bridge0: port 2(bridge_slave_1) entered disabled state [ 138.287566][ T8723] device bridge_slave_1 entered promiscuous mode [ 138.308731][ T8717] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 138.317070][ T8717] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 138.353363][ T8717] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 138.378216][ T8715] 8021q: adding VLAN 0 to HW filter on device bond0 [ 138.391975][ T8721] team0: Port device team_slave_0 added [ 138.415481][ T8725] bridge0: port 1(bridge_slave_0) entered blocking state [ 138.429477][ T8725] bridge0: port 1(bridge_slave_0) entered disabled state [ 138.442257][ T8725] device bridge_slave_0 entered promiscuous mode [ 138.452255][ T8721] team0: Port device team_slave_1 added [ 138.462492][ T5072] Bluetooth: hci0: command 0x0409 tx timeout [ 138.478625][ T8719] device hsr_slave_0 entered promiscuous mode [ 138.490039][ T8719] device hsr_slave_1 entered promiscuous mode [ 138.504361][ T8719] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 138.516312][ T8719] Cannot create hsr debugfs directory [ 138.527569][ T8717] device hsr_slave_0 entered promiscuous mode [ 138.538843][ T8717] device hsr_slave_1 entered promiscuous mode [ 138.549452][ T8717] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 138.560333][ T8717] Cannot create hsr debugfs directory [ 138.572108][ T8725] bridge0: port 2(bridge_slave_1) entered blocking state [ 138.583587][ T8725] bridge0: port 2(bridge_slave_1) entered disabled state [ 138.597905][ T8725] device bridge_slave_1 entered promiscuous mode [ 138.610830][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 138.628102][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 138.642312][ T8723] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 138.655703][ T5099] Bluetooth: hci1: command 0x0409 tx timeout [ 138.659947][ T8723] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 138.709038][ T8725] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 138.726940][ T8725] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 138.745043][ T8721] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 138.758820][ T8721] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 138.793831][ T49] Bluetooth: hci2: command 0x0409 tx timeout [ 138.800915][ T8721] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 138.818600][ T8723] team0: Port device team_slave_0 added [ 138.827877][ T8715] 8021q: adding VLAN 0 to HW filter on device team0 [ 138.845584][ T8721] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 138.854773][ T8721] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 138.890765][ T8721] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 138.905630][ T8723] team0: Port device team_slave_1 added [ 138.924287][ T8723] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 138.931706][ T8723] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 138.963755][ T49] Bluetooth: hci3: command 0x0409 tx timeout [ 138.971825][ T8723] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 138.997204][ T5072] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 139.009122][ T5072] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 139.019851][ T5072] bridge0: port 1(bridge_slave_0) entered blocking state [ 139.029312][ T5072] bridge0: port 1(bridge_slave_0) entered forwarding state [ 139.042669][ T8725] team0: Port device team_slave_0 added [ 139.054497][ T8725] team0: Port device team_slave_1 added [ 139.063570][ T8723] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 139.078396][ T8723] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 139.078401][ T8723] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 139.120802][ T3396] Bluetooth: hci4: command 0x0409 tx timeout [ 139.146165][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 139.161442][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 139.172783][ T17] bridge0: port 2(bridge_slave_1) entered blocking state [ 139.182919][ T17] bridge0: port 2(bridge_slave_1) entered forwarding state [ 139.197520][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 139.213081][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 139.247082][ T8717] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 139.259570][ T8717] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 139.275020][ T8717] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 139.287479][ T17] Bluetooth: hci5: command 0x0409 tx timeout [ 139.304264][ T8717] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 139.326555][ T8721] device hsr_slave_0 entered promiscuous mode [ 139.339588][ T8721] device hsr_slave_1 entered promiscuous mode [ 139.349969][ T8721] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 139.366947][ T8721] Cannot create hsr debugfs directory [ 139.382419][ T8725] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 139.395770][ T8725] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 139.434690][ T8725] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 139.449031][ T8725] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 139.460668][ T8725] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 139.495633][ T8725] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 139.517166][ T8723] device hsr_slave_0 entered promiscuous mode [ 139.542340][ T8723] device hsr_slave_1 entered promiscuous mode [ 139.557010][ T8723] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 139.569013][ T8723] Cannot create hsr debugfs directory [ 139.579338][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 139.592264][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 139.606003][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 139.644328][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 139.667456][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 139.710730][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 139.734484][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 139.781152][ T8725] device hsr_slave_0 entered promiscuous mode [ 139.791743][ T8725] device hsr_slave_1 entered promiscuous mode [ 139.805006][ T8725] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 139.820711][ T8725] Cannot create hsr debugfs directory [ 139.853738][ T8715] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 139.871961][ T8715] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 139.892281][ T8719] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 139.906200][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 139.930122][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 139.963011][ T8719] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 139.999902][ T8715] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 140.014050][ T8721] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 140.032103][ T8721] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 140.044631][ T8719] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 140.059216][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 140.077968][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 140.101524][ T8721] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 140.117773][ T8721] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 140.132507][ T8719] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 140.152895][ T8717] 8021q: adding VLAN 0 to HW filter on device bond0 [ 140.178959][ T8717] 8021q: adding VLAN 0 to HW filter on device team0 [ 140.202340][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 140.217458][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 140.247625][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 140.265396][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 140.277061][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 140.293128][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 140.313983][ T17] bridge0: port 1(bridge_slave_0) entered blocking state [ 140.327829][ T17] bridge0: port 1(bridge_slave_0) entered forwarding state [ 140.340421][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 140.353652][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 140.367233][ T17] bridge0: port 2(bridge_slave_1) entered blocking state [ 140.379870][ T17] bridge0: port 2(bridge_slave_1) entered forwarding state [ 140.390009][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 140.409083][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 140.422537][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 140.436746][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 140.463163][ T8723] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 140.488277][ T8723] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 140.508906][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 140.519572][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 140.531312][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 140.542596][ T5072] Bluetooth: hci0: command 0x041b tx timeout [ 140.547690][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 140.568136][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 140.577536][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 140.593472][ T8725] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 140.606228][ T8725] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 140.628460][ T8723] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 140.646471][ T8715] device veth0_vlan entered promiscuous mode [ 140.661581][ T8725] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 140.675820][ T8725] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 140.700580][ T5] Bluetooth: hci1: command 0x041b tx timeout [ 140.711330][ T8723] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 140.730376][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 140.745552][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 140.764468][ T8715] device veth1_vlan entered promiscuous mode [ 140.783978][ T8717] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 140.801728][ T8717] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 140.828037][ T8721] 8021q: adding VLAN 0 to HW filter on device bond0 [ 140.841543][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 140.860256][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 140.879141][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 140.895306][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 140.912503][ T12] Bluetooth: hci2: command 0x041b tx timeout [ 140.945950][ T8721] 8021q: adding VLAN 0 to HW filter on device team0 [ 140.958497][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 140.972373][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 140.987699][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 141.005687][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 141.019827][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 141.038644][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 141.053250][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 141.065220][ T12] Bluetooth: hci3: command 0x041b tx timeout [ 141.067350][ T8715] device veth0_macvtap entered promiscuous mode [ 141.090055][ T8717] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 141.110599][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 141.119494][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 141.132546][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 141.152910][ T49] bridge0: port 1(bridge_slave_0) entered blocking state [ 141.162399][ T49] bridge0: port 1(bridge_slave_0) entered forwarding state [ 141.171205][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 141.180656][ T5072] Bluetooth: hci4: command 0x041b tx timeout [ 141.180836][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 141.197146][ T49] bridge0: port 2(bridge_slave_1) entered blocking state [ 141.206622][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state [ 141.215529][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 141.232087][ T8715] device veth1_macvtap entered promiscuous mode [ 141.249956][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 141.258524][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 141.267302][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 141.303932][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 141.313381][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 141.322742][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 141.331316][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 141.340266][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 141.350289][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 141.350579][ T3396] Bluetooth: hci5: command 0x041b tx timeout [ 141.363479][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 141.376863][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 141.386555][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 141.394542][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 141.402688][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 141.418825][ T8719] 8021q: adding VLAN 0 to HW filter on device bond0 [ 141.429793][ T8717] device veth0_vlan entered promiscuous mode [ 141.439520][ T8725] 8021q: adding VLAN 0 to HW filter on device bond0 [ 141.452910][ T3396] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 141.461504][ T3396] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 141.469855][ T3396] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 141.478152][ T3396] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 141.498378][ T8719] 8021q: adding VLAN 0 to HW filter on device team0 [ 141.507627][ T8721] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 141.517333][ T8715] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 141.526903][ T5072] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 141.535317][ T5072] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 141.543342][ T5072] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 141.553073][ T5072] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 141.562432][ T8717] device veth1_vlan entered promiscuous mode [ 141.586254][ T8725] 8021q: adding VLAN 0 to HW filter on device team0 [ 141.596259][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 141.605666][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 141.615644][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 141.624834][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 141.631891][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 141.640329][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 141.651700][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 141.660845][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 141.668009][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 141.676967][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 141.686137][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 141.696225][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 141.704475][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 141.714208][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 141.724912][ T8723] 8021q: adding VLAN 0 to HW filter on device bond0 [ 141.743492][ T8715] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 141.759725][ T8715] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 141.769140][ T8715] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 141.780162][ T8715] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 141.789552][ T8715] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 141.802021][ T3396] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 141.812393][ T3396] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 141.820882][ T3396] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 141.829279][ T3396] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 141.839375][ T3396] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 141.847795][ T3396] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 141.857614][ T3396] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 141.867607][ T3396] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 141.877991][ T3396] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 141.886660][ T3396] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 141.896579][ T3396] bridge0: port 1(bridge_slave_0) entered blocking state [ 141.904225][ T3396] bridge0: port 1(bridge_slave_0) entered forwarding state [ 141.914052][ T3396] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 141.922694][ T3396] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 141.932383][ T3396] bridge0: port 2(bridge_slave_1) entered blocking state [ 141.939504][ T3396] bridge0: port 2(bridge_slave_1) entered forwarding state [ 141.947447][ T3396] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 141.957653][ T3396] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 141.965840][ T3396] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 141.980573][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 141.992344][ T5072] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 142.004226][ T5072] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 142.016686][ T8719] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 142.028598][ T8719] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 142.053573][ T8719] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 142.062896][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 142.072626][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 142.081283][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 142.089356][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 142.099280][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 142.107652][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 142.117715][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 142.126599][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 142.136202][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 142.145342][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 142.154257][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 142.162118][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 142.170339][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 142.183672][ T8723] 8021q: adding VLAN 0 to HW filter on device team0 [ 142.199506][ T8721] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 142.209650][ T8717] device veth0_macvtap entered promiscuous mode [ 142.217795][ T5072] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 142.228531][ T5072] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 142.250923][ T5072] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 142.259185][ T5072] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 142.268743][ T5072] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 142.283799][ T8725] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 142.313920][ T8717] device veth1_macvtap entered promiscuous mode [ 142.340737][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 142.348777][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 142.370871][T10025] ldm_validate_privheads(): Disk read failed. [ 142.370948][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 142.377149][T10025] loop0: p2 < > [ 142.389307][T10025] loop0: partition table partially beyond EOD, truncated [ 142.396248][ T5] bridge0: port 1(bridge_slave_0) entered blocking state [ 142.397312][T10025] loop0: p2 size 2 extends beyond EOD, truncated [ 142.403612][ T5] bridge0: port 1(bridge_slave_0) entered forwarding state [ 142.410879][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 142.426618][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 142.435188][ T5] bridge0: port 2(bridge_slave_1) entered blocking state [ 142.442367][ T5] bridge0: port 2(bridge_slave_1) entered forwarding state [ 142.450310][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 142.459176][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 142.469396][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 142.505848][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 142.515602][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 142.524938][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 142.534279][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 142.537391][T10025] ldm_validate_privheads(): Disk read failed. [ 142.543288][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 142.553785][T10025] loop0: p2 < > [ 142.556897][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 142.560650][T10025] loop0: partition table partially beyond EOD, truncated [ 142.568647][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 142.577082][T10025] loop0: p2 size 2 extends beyond EOD, truncated [ 142.584011][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 142.598520][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 142.606875][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready 14:27:56 executing program 0: syz_read_part_table(0x0, 0x1d4, &(0x7f0000000200)=[{&(0x7f0000000080)="030005000314af00031400000000000000000f0000000000000000000500000000204200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}]) [ 142.621499][ T8723] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 142.636032][ T8717] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 142.647645][ T5072] Bluetooth: hci0: command 0x040f tx timeout [ 142.654269][ T8717] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 142.665518][ T8717] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 142.683090][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 142.698568][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 142.721693][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 142.740718][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 142.748428][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 142.756542][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 142.765076][T10039] ldm_validate_privheads(): Disk read failed. [ 142.765679][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 142.788142][ T8725] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 142.791919][ T49] Bluetooth: hci1: command 0x040f tx timeout [ 142.798653][ T8717] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 142.802260][T10039] loop0: p2 < > [ 142.815796][ T8717] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 142.817173][T10039] loop0: partition table partially beyond EOD, truncated [ 142.827286][ T8717] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 142.833824][T10039] loop0: p2 size 2 extends beyond EOD, truncated [ 142.852665][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready 14:27:56 executing program 0: [ 142.871671][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 142.897828][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 142.906217][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 142.917435][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 142.939500][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 142.947840][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready 14:27:57 executing program 0: [ 142.971218][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 142.979899][ T5] Bluetooth: hci2: command 0x040f tx timeout [ 142.986519][ T8717] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 143.010420][ T8717] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 14:27:57 executing program 0: [ 143.036913][ T8717] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 143.051131][ T8717] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 143.066632][ T8721] device veth0_vlan entered promiscuous mode [ 143.079734][ T8719] device veth0_vlan entered promiscuous mode 14:27:57 executing program 0: 14:27:57 executing program 0: [ 143.089826][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 143.109911][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 143.122848][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 14:27:57 executing program 0: [ 143.152550][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 143.160314][ T5] Bluetooth: hci3: command 0x040f tx timeout [ 143.168265][ T8723] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 143.185480][ T8719] device veth1_vlan entered promiscuous mode [ 143.206671][ T8721] device veth1_vlan entered promiscuous mode [ 143.260565][ T12] Bluetooth: hci4: command 0x040f tx timeout [ 143.289414][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 143.298744][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 143.310434][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 143.319782][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 143.337810][ T8725] device veth0_vlan entered promiscuous mode [ 143.362721][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 143.371455][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 143.382567][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 143.391009][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 143.399533][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 143.413116][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 143.431108][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 143.438679][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 143.453316][ T49] Bluetooth: hci5: command 0x040f tx timeout 14:27:57 executing program 1: [ 143.459376][ T8721] device veth0_macvtap entered promiscuous mode [ 143.473275][ T8719] device veth0_macvtap entered promiscuous mode [ 143.492118][ T8725] device veth1_vlan entered promiscuous mode [ 143.539854][ T8721] device veth1_macvtap entered promiscuous mode [ 143.553374][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 143.564303][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 143.573364][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 143.583739][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 143.593901][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 143.621340][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 143.636807][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 143.652735][ T8719] device veth1_macvtap entered promiscuous mode [ 143.689701][ T8723] device veth0_vlan entered promiscuous mode [ 143.696627][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 143.717850][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 143.726809][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 143.735619][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 143.744630][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 143.754105][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 143.762172][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 143.772077][ T8725] device veth0_macvtap entered promiscuous mode [ 143.778990][ T8719] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 143.797456][ T8719] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 143.807796][ T8719] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 143.818365][ T8719] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 143.829814][ T8719] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 143.844157][ T8723] device veth1_vlan entered promiscuous mode [ 143.851979][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 143.859923][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 143.868018][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 143.876735][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 143.886492][ T8721] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 143.897630][ T8721] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 143.908406][ T8721] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 143.920525][ T8721] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 143.930982][ T8721] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 143.942021][ T8721] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 143.953050][ T8721] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 143.963226][ T8725] device veth1_macvtap entered promiscuous mode [ 143.973259][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 143.983637][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 143.993249][ T8719] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 144.004306][ T8719] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 144.015331][ T8719] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 144.026232][ T8719] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 144.037797][ T8719] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 144.053428][ T8721] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 144.064318][ T8721] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 144.075388][ T8721] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 144.086275][ T8721] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 144.096765][ T8721] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 144.107417][ T8721] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 144.118589][ T8721] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 144.126945][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 144.135821][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 144.145035][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 144.153718][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 144.166489][ T8719] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 144.179227][ T8719] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 144.188151][ T8719] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 144.198187][ T8719] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 144.215238][ T8725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 144.227299][ T8725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 144.237318][ T8725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 144.248089][ T8725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 144.258172][ T8725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 144.268714][ T8725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 144.279324][ T8725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 144.294096][ T8725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 144.305190][ T8725] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 144.315997][ T8721] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 144.326791][ T8721] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 144.336695][ T8721] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 144.347656][ T8721] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 144.361773][ T3396] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 144.370685][ T3396] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 144.379285][ T3396] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 144.388585][ T3396] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 144.398826][ T8725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 144.410247][ T8725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 144.420366][ T8725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 144.431301][ T8725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 144.441628][ T8725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 144.452481][ T8725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 144.463028][ T8725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 144.473902][ T8725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 144.485319][ T8725] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 144.501508][ T8725] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 144.511095][ T8725] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 144.519993][ T8725] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 144.529716][ T8725] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 144.541819][ T3396] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 144.551668][ T3396] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 144.582324][ T8723] device veth0_macvtap entered promiscuous mode [ 144.613290][ T8723] device veth1_macvtap entered promiscuous mode [ 144.657991][ T8723] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 144.672531][ T8723] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 144.683053][ T8723] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 144.693990][ T8723] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! 14:27:58 executing program 2: [ 144.704263][ T5] Bluetooth: hci0: command 0x0419 tx timeout [ 144.710836][T10082] ptrace attach of "/root/syz-executor.2"[10081] was attempted by "/root/syz-executor.2"[10082] [ 144.720246][ T28] audit: type=1804 audit(1598452078.749:2): pid=10084 uid=0 auid=0 ses=4 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir142261336/syzkaller.LWiKsY/0/bus" dev="sda1" ino=15763 res=1 errno=0 [ 144.723237][ T8723] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 144.783527][ T8723] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 144.797979][ T28] audit: type=1804 audit(1598452078.829:3): pid=10088 uid=0 auid=0 ses=4 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir142261336/syzkaller.LWiKsY/0/bus" dev="sda1" ino=15763 res=1 errno=0 [ 144.825839][ T8723] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 144.830470][ T28] audit: type=1804 audit(1598452078.829:4): pid=10088 uid=0 auid=0 ses=4 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir142261336/syzkaller.LWiKsY/0/bus" dev="sda1" ino=15763 res=1 errno=0 [ 144.860397][ T12] Bluetooth: hci1: command 0x0419 tx timeout [ 144.870305][ T8723] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 144.890810][ T8723] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 144.920517][ T8723] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 144.932913][ T8723] batman_adv: batadv0: Interface activated: batadv_slave_0 14:27:59 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='comm\x00') write$binfmt_aout(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='\n'], 0x4) r1 = socket$inet6(0xa, 0x2, 0x0) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = syz_open_procfs(0x0, &(0x7f0000000500)='status\x00') read$FUSE(r3, 0x0, 0x0) [ 144.945738][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 144.956079][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 144.990876][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 144.999679][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 145.011217][ T8723] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 145.022295][ T12] Bluetooth: hci2: command 0x0419 tx timeout [ 145.040295][ T8723] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 145.050129][ T8723] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 145.060724][ T8723] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 145.080317][ T8723] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 145.093248][ T8723] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 145.106378][ T8723] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 145.120329][ T8723] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 145.130154][ T8723] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 145.141666][ T8723] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 145.153625][ T8723] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 145.165104][ T3396] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 145.175536][ T3396] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 145.180509][ T5] Bluetooth: hci3: command 0x0419 tx timeout [ 145.187175][ T8723] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 145.199085][ T8723] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 145.208475][ T8723] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 145.217746][ T8723] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 14:27:59 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDMKTONE(r0, 0x4b45, 0x0) 14:27:59 executing program 0: 14:27:59 executing program 1: 14:27:59 executing program 2: 14:27:59 executing program 5: 14:27:59 executing program 3: 14:27:59 executing program 1: perf_event_open(&(0x7f0000000380)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0) io_setup(0xb, &(0x7f0000000080)=0x0) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x200a00}]) fallocate(r0, 0x0, 0x0, 0x200a00) 14:27:59 executing program 0: bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000900)=ANY=[@ANYBLOB="870000006d00000025000000000000009500000000000000afcd48d6494d614dcc6fab5335ec470db2c61612ba392176dd296361c72a559e5fd52b300d84228e1d69ba7ea94c500dc4ef2fad96ed406f21caf593836d9ea2cfb0e60436e054258c4686b066707de94a4f4d5fc79c987d669f2b1faca0f9d9924be41a9169bdfaf16d1c0b153911b8dd7f165789c691de6eee84309e7a23c19a39484809539fca4e0b6ec015a7d55545a34effa077faa55c59e88254f54077f799bf1683537a8ea0244d35b213bda80cc172afd80e361bedd8b8cc57255a5e3d77ac463920e231b7ae0da8616d2b7958f91f5d822175ed60ab386d94af98af1da2b5952eb1585535f7a35dfc72c81256a55a25f8fe3b28d7e53c78fbfe5ab0255f347160ec8343e1494d3a63e57a15cf10453f6c0b973b81a484ebad04859d928365a7ea3fab8b4b380a00d72bc0480f949c479757306720399379d9271cf555c14d56b51c2298237bebfc08e0d5976a942b846970cfd98b9d4139f132a902e5111f2cc5e46ac1c60a9b10c074bfbcd4b09012175484135f0e519f0b1c4aaa026d570ecb5e8cddbed65ff76ff61c5552417fd703f7f14d8b78a602ca3cdf6a662d8b8595356c9b2492aaf1264d4ef4a410c882834867bcd2b6e559d17879570c8ad943e392957b4fa13201bafe4f0f6ea5a6c957ad98a0c548552b571bed5647223c78a996ec13eaa60580ae7b813071cbb17d9f37282462f0e9c147c0d497c61433c6ccc35601eef97ee611be8c97f4151ffdf6f7820549cb799c6e924966a7f90bf8fd1e75ee76bd72346cfbb5567e54d3504723177d356c4604b7a492ececa253cbc8edc8be05cc85451c6a14507434eb54b6f43caea5c4bf690441974b155f5adc6825a3a3d5b754df23175e2ce8b03bf3e3c033e54e4ba9f0b452fcebde1d9d3d35a152a9ec9a7a291c7e603755e0f209150a07682c4e14e3a83558df6f3fc97f1730a136bdee07e98cb984b2e2304a1b63afefdb636e56bbaae4e62136574bc6371a0bb2be1a962aae9c1258da6ef5df4bff90f43e7e08ccffb4e36f1e94c18ce30c01c82b08a7c91194d3d23ce2c737116f08dec994e09327929622406afdca87fb753fe80560a200"/827], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195}, 0x48) 14:27:59 executing program 2: perf_event_open(&(0x7f00000002c0)={0x2, 0x70, 0xac, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000000)) 14:27:59 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000080)='/dev/urandom\x00', 0x0, 0x0) r4 = dup(r3) syz_kvm_setup_cpu$x86(r4, r2, &(0x7f0000001000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) [ 145.340719][ T5] Bluetooth: hci4: command 0x0419 tx timeout 14:27:59 executing program 3: perf_event_open(&(0x7f00000002c0)={0x2, 0x70, 0xac, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mprotect(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mkdir(&(0x7f0000000240)='./file1\x00', 0x0) mkdir(&(0x7f0000000140)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f0000000040)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB='upperdir=./bus,workdir=./file1,lowerdir=./file0']) umount2(&(0x7f0000000480)='./bus\x00', 0x0) 14:27:59 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDMKTONE(r0, 0x4b45, 0x0) 14:27:59 executing program 0: openat$vcsa(0xffffffffffffff9c, 0x0, 0x801, 0x0) getsockopt(0xffffffffffffffff, 0x0, 0x4, &(0x7f00000002c0)=""/235, &(0x7f0000000140)=0xeb) clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) prctl$PR_GET_TIMERSLACK(0x1e) mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0) r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x2) r1 = openat$cgroup_subtree(r0, &(0x7f0000000080)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000440)=ANY=[@ANYBLOB="2d696f2073aba0c6d5311fd5d9c6685f948ca80ba54454b1201b09f74a3a68000400aea4636916a1f75af314ade960611b3e63ec51625c77be54de6a9023ed8b95faa49ac65a8369c5a2275a6145a856a89682ee33dae056097c97aa0329be210178a689c0ead79df2a543ba6ae9d73148d766ebdb056f6eb695c6e4378af56bf96eb08ce8ff38b9bb9da75d25b06dc532ba8e7eeda00d68a3cd52f81b39f5e35916506aa8c4fd15a6c6aab18a310756b26f2a23"], 0x4) write$cgroup_subtree(r1, &(0x7f0000000280)={[{0x2b, 'io'}]}, 0x4) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) [ 145.448332][T10119] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. 14:27:59 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$inet6(r0, &(0x7f0000001480)=[{{&(0x7f0000000000)={0xa, 0x4e21, 0x0, @remote}, 0x1c, 0x0, 0x0, &(0x7f00000002c0)=[@dstopts_2292={{0x18, 0x29, 0x3b}}], 0x18}}], 0x1, 0x0) [ 145.501700][ T17] Bluetooth: hci5: command 0x0419 tx timeout [ 145.533854][ T397] ================================================================== [ 145.541979][ T397] BUG: KCSAN: data-race in __wb_update_bandwidth / percpu_counter_add_batch [ 145.550634][ T397] [ 145.552953][ T397] write to 0xffff888129789940 of 8 bytes by task 21 on cpu 1: [ 145.560561][ T397] percpu_counter_add_batch+0xbd/0x130 [ 145.566107][ T397] __add_wb_stat+0x4c/0x60 [ 145.570518][ T397] __wb_writeout_inc+0x27/0x1a0 [ 145.575345][ T397] test_clear_page_writeback+0x2ef/0x480 [ 145.581916][ T397] end_page_writeback+0xa7/0x110 [ 145.588244][ T397] ext4_finish_bio+0x429/0x490 [ 145.594187][ T397] ext4_release_io_end+0x98/0x200 [ 145.600169][ T397] ext4_end_io_rsv_work+0x306/0x360 [ 145.605372][ T397] process_one_work+0x3e1/0x9a0 [ 145.610297][ T397] worker_thread+0x665/0xbe0 [ 145.614872][ T397] kthread+0x20d/0x230 [ 145.619181][ T397] ret_from_fork+0x1f/0x30 [ 145.623922][ T397] [ 145.626784][ T397] read to 0xffff888129789940 of 8 bytes by task 397 on cpu 0: [ 145.634894][ T397] __wb_update_bandwidth+0xa7/0x5d0 [ 145.640343][ T397] wb_update_bandwidth+0x59/0x80 [ 145.647069][ T397] wb_writeback+0x2f3/0x730 [ 145.651829][ T397] wb_do_writeback+0x108/0x610 [ 145.656676][ T397] wb_workfn+0xc8/0x460 [ 145.660894][ T397] process_one_work+0x3e1/0x9a0 [ 145.665718][ T397] worker_thread+0x665/0xbe0 [ 145.670451][ T397] kthread+0x20d/0x230 [ 145.674496][ T397] ret_from_fork+0x1f/0x30 [ 145.678896][ T397] [ 145.681194][ T397] Reported by Kernel Concurrency Sanitizer on: [ 145.687497][ T397] CPU: 0 PID: 397 Comm: kworker/u4:3 Not tainted 5.9.0-rc2-syzkaller #0 [ 145.695784][ T397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 145.705922][ T397] Workqueue: writeback wb_workfn (flush-8:0) [ 145.712635][ T397] ================================================================== [ 145.720671][ T397] Kernel panic - not syncing: panic_on_warn set ... [ 145.727421][ T397] CPU: 0 PID: 397 Comm: kworker/u4:3 Not tainted 5.9.0-rc2-syzkaller #0 [ 145.736544][ T397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 145.746852][ T397] Workqueue: writeback wb_workfn (flush-8:0) [ 145.752913][ T397] Call Trace: [ 145.756197][ T397] dump_stack+0x10f/0x19d [ 145.760499][ T397] panic+0x207/0x64a [ 145.764718][ T397] ? vprintk_emit+0x44a/0x4f0 [ 145.769486][ T397] kcsan_report+0x684/0x690 [ 145.774096][ T397] ? kcsan_setup_watchpoint+0x41e/0x4a0 [ 145.779816][ T397] ? __wb_update_bandwidth+0xa7/0x5d0 [ 145.785326][ T397] ? wb_update_bandwidth+0x59/0x80 [ 145.790452][ T397] ? wb_writeback+0x2f3/0x730 [ 145.795195][ T397] ? wb_do_writeback+0x108/0x610 [ 145.804467][ T397] ? wb_workfn+0xc8/0x460 [ 145.808902][ T397] ? process_one_work+0x3e1/0x9a0 [ 145.815603][ T397] ? worker_thread+0x665/0xbe0 [ 145.820372][ T397] ? kthread+0x20d/0x230 [ 145.824594][ T397] ? ret_from_fork+0x1f/0x30 [ 145.829209][ T397] kcsan_setup_watchpoint+0x41e/0x4a0 [ 145.834589][ T397] __wb_update_bandwidth+0xa7/0x5d0 [ 145.840688][ T397] wb_update_bandwidth+0x59/0x80 [ 145.847012][ T397] wb_writeback+0x2f3/0x730 [ 145.852566][ T397] wb_do_writeback+0x108/0x610 [ 145.857733][ T397] wb_workfn+0xc8/0x460 [ 145.861867][ T397] ? kvm_sched_clock_read+0x15/0x40 [ 145.867271][ T397] ? sched_clock+0xf/0x20 [ 145.871592][ T397] ? sched_clock_cpu+0x11/0x1b0 [ 145.876602][ T397] ? psi_group_change+0x1c2/0x250 [ 145.882512][ T397] process_one_work+0x3e1/0x9a0 [ 145.887913][ T397] worker_thread+0x665/0xbe0 [ 145.892571][ T397] ? process_one_work+0x9a0/0x9a0 [ 145.897765][ T397] kthread+0x20d/0x230 [ 145.901896][ T397] ? process_one_work+0x9a0/0x9a0 [ 145.906991][ T397] ? kthread_blkcg+0x80/0x80 [ 145.912014][ T397] ret_from_fork+0x1f/0x30 [ 145.918133][ T397] Kernel Offset: disabled [ 145.922883][ T397] Rebooting in 86400 seconds..