Warning: Permanently added '10.128.0.176' (ECDSA) to the list of known hosts. 1970/01/01 00:00:41 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:00:41 parsed 1 programs [ 41.846078][ T5971] cgroup: Unknown subsys name 'net' [ 42.137351][ T5971] cgroup: Unknown subsys name 'rlimit' [ 42.299396][ T5970] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=5970 'syz-execprog' 1970/01/01 00:00:42 executed programs: 0 [ 42.342361][ T48] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 42.344779][ T48] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 42.346980][ T48] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 42.349252][ T48] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 42.351446][ T48] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 42.353456][ T48] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 42.436003][ T5978] chnl_net:caif_netlink_parms(): no params data found [ 42.465875][ T5978] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.467569][ T5978] bridge0: port 1(bridge_slave_0) entered disabled state [ 42.469275][ T5978] bridge_slave_0: entered allmulticast mode [ 42.471308][ T5978] bridge_slave_0: entered promiscuous mode [ 42.474813][ T5978] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.476458][ T5978] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.478261][ T5978] bridge_slave_1: entered allmulticast mode [ 42.480199][ T5978] bridge_slave_1: entered promiscuous mode [ 42.492478][ T5978] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 42.496321][ T5978] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 42.508010][ T5978] team0: Port device team_slave_0 added [ 42.510866][ T5978] team0: Port device team_slave_1 added [ 42.522022][ T5978] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 42.523711][ T5978] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 42.529972][ T5978] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 42.534430][ T5978] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 42.535958][ T5978] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 42.541946][ T5978] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 42.605774][ T5978] hsr_slave_0: entered promiscuous mode [ 42.644265][ T5978] hsr_slave_1: entered promiscuous mode [ 42.759993][ T5978] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 42.796093][ T5978] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 42.845602][ T5978] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 42.895489][ T5978] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 42.946748][ T5978] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.948555][ T5978] bridge0: port 2(bridge_slave_1) entered forwarding state [ 42.950694][ T5978] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.952364][ T5978] bridge0: port 1(bridge_slave_0) entered forwarding state [ 42.983586][ T5978] 8021q: adding VLAN 0 to HW filter on device bond0 [ 42.990542][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 42.994600][ T24] bridge0: port 1(bridge_slave_0) entered disabled state [ 42.997478][ T24] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.999985][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 43.005971][ T5978] 8021q: adding VLAN 0 to HW filter on device team0 [ 43.015767][ T1601] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 43.018322][ T1601] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.019871][ T1601] bridge0: port 1(bridge_slave_0) entered forwarding state [ 43.021922][ T1601] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 43.024350][ T1601] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.025908][ T1601] bridge0: port 2(bridge_slave_1) entered forwarding state [ 43.037581][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 43.041158][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 43.043326][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 43.048574][ T5978] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 43.051311][ T5978] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 43.054232][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 43.056646][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 43.135061][ T5978] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 43.137911][ T5987] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 43.139586][ T5987] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 43.150378][ T1601] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 43.159791][ T5987] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 43.162025][ T5987] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 43.165407][ T5987] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 43.169129][ T5978] veth0_vlan: entered promiscuous mode [ 43.175235][ T5978] veth1_vlan: entered promiscuous mode [ 43.187046][ T1601] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 43.189305][ T1601] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 43.191904][ T1601] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 43.196542][ T5978] veth0_macvtap: entered promiscuous mode [ 43.200028][ T5978] veth1_macvtap: entered promiscuous mode [ 43.208922][ T5978] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 43.210900][ T1601] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 43.214742][ T1601] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 43.219016][ T5978] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 43.222037][ T5987] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 43.224882][ T5978] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 43.227074][ T5978] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 43.229177][ T5978] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 43.231238][ T5978] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 43.268790][ T10] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 43.274464][ T10] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 43.277820][ T5987] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 43.283008][ T39] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 43.284925][ T39] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 43.288874][ T5987] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 43.774949][ T5987] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 44.134244][ T5987] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 44.136830][ T5987] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 8192, setting to 1024 [ 44.139387][ T5987] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024 [ 44.294388][ T5987] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 44.296561][ T5987] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 44.298460][ T5987] usb 1-1: Product: syz [ 44.299420][ T5987] usb 1-1: Manufacturer: syz [ 44.300471][ T5987] usb 1-1: SerialNumber: syz [ 44.414976][ T48] Bluetooth: hci0: command 0x0409 tx timeout [ 45.783972][ T5987] cdc_ncm 1-1:1.0: MAC-Address: 42:42:42:42:42:42 [ 45.785663][ T5987] cdc_ncm 1-1:1.0: dwNtbInMaxSize=9 is too small. Using 2048 [ 45.787762][ T5987] cdc_ncm 1-1:1.0: setting rx_max = 2048 [ 46.008849][ T5987] cdc_ncm 1-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.0-1, CDC NCM (NO ZLP), 42:42:42:42:42:42 [ 46.314605][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): usb0: link becomes ready [ 46.494863][ T5545] Bluetooth: hci0: command 0x041b tx timeout [ 46.509059][ T5642] skbuff: skb_over_panic: text:ffff80000db33558 len:428 put:172 head:ffff0000c2c66100 data:ffff0000c2c66100 tail:0x1ac end:0x140 dev: [ 46.513022][ T5642] ------------[ cut here ]------------ [ 46.514344][ T5642] kernel BUG at net/core/skbuff.c:200! [ 46.515803][ T5642] Internal error: Oops - BUG: 00000000f2000800 [#1] PREEMPT SMP [ 46.516148][ T5987] usb 1-1: USB disconnect, device number 2 [ 46.517628][ T5642] Modules linked in: [ 46.519853][ T5642] CPU: 0 PID: 5642 Comm: dhcpcd Not tainted 6.4.0-rc3-syzkaller-geb0f1697d729 #0 [ 46.522149][ T5642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/28/2023 [ 46.524529][ T5642] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 46.526439][ T5642] pc : skb_over_panic+0x13c/0x140 [ 46.527603][ T5642] lr : skb_over_panic+0x13c/0x140 [ 46.528758][ T5642] sp : ffff800020cf6ce0 [ 46.529668][ T5642] x29: ffff800020cf6cf0 x28: ffff0000dce10b40 x27: dfff800000000000 [ 46.531592][ T5642] x26: ffff0000dce10b50 x25: 00000000000001ac x24: ffff0000c2c66100 [ 46.533558][ T5642] x23: ffff0000c2c66100 x22: 00000000000001ac x21: 0000000000000140 [ 46.535480][ T5642] x20: 00000000000000ac x19: ffff80000db33558 x18: ffff800020cf6340 [ 46.537337][ T5642] x17: 0000000000000000 x16: ffff8000124340b0 x15: 0000000000000605 [ 46.539250][ T5642] x14: 0000000000000000 x13: 0000000000000001 x12: 0000000000000001 [ 46.541203][ T5642] x11: 0000000000000604 x10: 0000000000000000 x9 : 1eee255e7785d700 [ 46.543129][ T5642] x8 : 1eee255e7785d700 x7 : 0000000000000001 x6 : 0000000000000001 [ 46.545103][ T5642] x5 : ffff800020cf65f8 x4 : ffff800015f9e800 x3 : ffff80000aa946e4 [ 46.547139][ T5642] x2 : 0000000000000001 x1 : 0000000100000604 x0 : 0000000000000089 [ 46.549121][ T5642] Call trace: [ 46.549803][ T5642] skb_over_panic+0x13c/0x140 [ 46.551084][ T5642] skb_put+0x128/0x1b8 [ 46.552126][ T5642] cdc_ncm_fill_tx_frame+0xdf0/0x30e0 [ 46.553519][ T5642] cdc_ncm_tx_fixup+0xac/0x110 [ 46.554702][ T5642] usbnet_start_xmit+0x100/0x1a20 [ 46.556015][ T5642] dev_hard_start_xmit+0x240/0x8ac [ 46.557332][ T5642] sch_direct_xmit+0x234/0x548 [ 46.558472][ T5642] __dev_queue_xmit+0x147c/0x3318 [ 46.559642][ T5642] lapbeth_data_transmit+0x1e0/0x298 [ 46.560951][ T5642] lapb_data_transmit+0x8c/0xb0 [ 46.562076][ T5642] lapb_transmit_buffer+0x178/0x204 [ 46.563359][ T5642] lapb_send_control+0x220/0x320 [ 46.564618][ T5642] lapb_establish_data_link+0x94/0xec [ 46.565988][ T5642] lapb_device_event+0x348/0x4e0 [ 46.567209][ T5642] notifier_call_chain+0x1a4/0x510 [ 46.568494][ T5642] raw_notifier_call_chain+0x3c/0x50 [ 46.569804][ T5642] __dev_notify_flags+0x2bc/0x544 [ 46.571064][ T5642] dev_change_flags+0xd0/0x15c [ 46.572273][ T5642] devinet_ioctl+0x858/0x17e4 [ 46.573426][ T5642] inet_ioctl+0x2ac/0x4d8 [ 46.574519][ T5642] sock_do_ioctl+0x134/0x2dc [ 46.575661][ T5642] sock_ioctl+0x4ec/0x858 [ 46.576787][ T5642] __arm64_sys_ioctl+0x14c/0x1c8 [ 46.578044][ T5642] invoke_syscall+0x98/0x2c0 [ 46.579220][ T5642] el0_svc_common+0x138/0x258 [ 46.580380][ T5642] do_el0_svc+0x64/0x198 [ 46.581404][ T5642] el0_svc+0x4c/0x15c [ 46.582399][ T5642] el0t_64_sync_handler+0x84/0xf0 [ 46.583722][ T5642] el0t_64_sync+0x190/0x194 [ 46.584852][ T5642] Code: aa1803e6 aa1903e7 a90023f5 9477281a (d4210000) [ 46.586578][ T5642] ---[ end trace 0000000000000000 ]--- [ 46.928859][ T5642] Kernel panic - not syncing: Oops - BUG: Fatal exception in interrupt [ 46.930609][ T5642] SMP: stopping secondary CPUs [ 46.931791][ T5642] Kernel Offset: disabled [ 46.932854][ T5642] CPU features: 0x000000,40e00804,64017203 [ 46.934298][ T5642] Memory Limit: none [ 47.276371][ T5642] Rebooting in 86400 seconds..