Warning: Permanently added '[localhost]:39026' (ECDSA) to the list of known hosts. 2020/08/22 05:34:02 fuzzer started 2020/08/22 05:34:03 dialing manager at 10.0.2.10:43001 2020/08/22 05:34:03 syscalls: 3317 2020/08/22 05:34:03 code coverage: enabled 2020/08/22 05:34:03 comparison tracing: enabled 2020/08/22 05:34:03 extra coverage: enabled 2020/08/22 05:34:03 setuid sandbox: enabled 2020/08/22 05:34:03 namespace sandbox: enabled 2020/08/22 05:34:03 Android sandbox: /sys/fs/selinux/policy does not exist 2020/08/22 05:34:03 fault injection: enabled 2020/08/22 05:34:03 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2020/08/22 05:34:03 net packet injection: enabled 2020/08/22 05:34:03 net device setup: enabled 2020/08/22 05:34:03 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2020/08/22 05:34:03 devlink PCI setup: PCI device 0000:00:10.0 is not available 2020/08/22 05:34:03 USB emulation: enabled 2020/08/22 05:34:03 hci packet injection: enabled syzkaller login: [ 193.941979][ C2] hrtimer: interrupt took 67401131 ns 05:35:00 executing program 0: 05:35:00 executing program 1: 05:35:01 executing program 2: 05:35:02 executing program 3: [ 202.174547][ T8482] IPVS: ftp: loaded support on port[0] = 21 [ 202.175225][ T8480] IPVS: ftp: loaded support on port[0] = 21 [ 202.353924][ T8484] IPVS: ftp: loaded support on port[0] = 21 [ 202.890715][ T8482] chnl_net:caif_netlink_parms(): no params data found [ 202.932465][ T8484] chnl_net:caif_netlink_parms(): no params data found [ 203.000786][ T8480] chnl_net:caif_netlink_parms(): no params data found [ 203.147900][ T8484] bridge0: port 1(bridge_slave_0) entered blocking state [ 203.161049][ T8484] bridge0: port 1(bridge_slave_0) entered disabled state [ 203.188528][ T8484] device bridge_slave_0 entered promiscuous mode [ 203.216200][ T8484] bridge0: port 2(bridge_slave_1) entered blocking state [ 203.231707][ T8484] bridge0: port 2(bridge_slave_1) entered disabled state [ 203.251319][ T8484] device bridge_slave_1 entered promiscuous mode [ 203.281227][ T8482] bridge0: port 1(bridge_slave_0) entered blocking state [ 203.296620][ T8482] bridge0: port 1(bridge_slave_0) entered disabled state [ 203.312398][ T8482] device bridge_slave_0 entered promiscuous mode [ 203.325833][ T8482] bridge0: port 2(bridge_slave_1) entered blocking state [ 203.339469][ T8482] bridge0: port 2(bridge_slave_1) entered disabled state [ 203.352785][ T8482] device bridge_slave_1 entered promiscuous mode [ 203.391240][ T8480] bridge0: port 1(bridge_slave_0) entered blocking state [ 203.406671][ T8480] bridge0: port 1(bridge_slave_0) entered disabled state [ 203.421913][ T8480] device bridge_slave_0 entered promiscuous mode [ 203.439791][ T8484] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 203.468999][ T8484] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 203.469319][ T8494] IPVS: ftp: loaded support on port[0] = 21 [ 203.482042][ T8480] bridge0: port 2(bridge_slave_1) entered blocking state [ 203.501629][ T8480] bridge0: port 2(bridge_slave_1) entered disabled state [ 203.517116][ T8480] device bridge_slave_1 entered promiscuous mode [ 203.529229][ T8482] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 203.541262][ T39] Bluetooth: hci0: command 0x0409 tx timeout [ 203.553116][ T8482] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 203.555211][ T39] Bluetooth: hci1: command 0x0409 tx timeout [ 203.648817][ T8484] team0: Port device team_slave_0 added [ 203.667972][ T8484] team0: Port device team_slave_1 added [ 203.696427][ T8480] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 203.719651][ T8480] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 203.766415][ T8482] team0: Port device team_slave_0 added [ 203.837786][ T8482] team0: Port device team_slave_1 added [ 203.876599][ T8484] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 203.900357][ T8484] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 203.998929][ T8484] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 204.068369][ T8484] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 204.097029][ T8484] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 204.184595][ T8484] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 204.225604][ T8480] team0: Port device team_slave_0 added [ 204.243194][ T8480] team0: Port device team_slave_1 added [ 204.302478][ T8480] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 204.335606][ T39] Bluetooth: hci2: command 0x0409 tx timeout [ 204.350417][ T8480] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 204.496111][ T8480] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 204.526807][ T8482] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 204.538140][ T8482] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 204.571527][ T8482] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 204.592953][ T8482] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 204.604849][ T8482] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 204.647793][ T8482] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 204.669499][ T8480] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 204.682921][ T8480] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 204.727873][ T8480] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 204.774983][ T8484] device hsr_slave_0 entered promiscuous mode [ 204.797947][ T8484] device hsr_slave_1 entered promiscuous mode [ 204.883639][ T8480] device hsr_slave_0 entered promiscuous mode [ 204.902232][ T8480] device hsr_slave_1 entered promiscuous mode [ 204.914779][ T8480] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 204.934003][ T8480] Cannot create hsr debugfs directory [ 205.023611][ T8482] device hsr_slave_0 entered promiscuous mode [ 205.037748][ T8482] device hsr_slave_1 entered promiscuous mode [ 205.056460][ T8482] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 205.080573][ T8482] Cannot create hsr debugfs directory [ 205.160579][ T8494] chnl_net:caif_netlink_parms(): no params data found [ 205.220281][ T3100] Bluetooth: hci3: command 0x0409 tx timeout [ 205.319056][ T8494] bridge0: port 1(bridge_slave_0) entered blocking state [ 205.335692][ T8494] bridge0: port 1(bridge_slave_0) entered disabled state [ 205.353254][ T8494] device bridge_slave_0 entered promiscuous mode [ 205.407978][ T8494] bridge0: port 2(bridge_slave_1) entered blocking state [ 205.421754][ T8494] bridge0: port 2(bridge_slave_1) entered disabled state [ 205.439519][ T8494] device bridge_slave_1 entered promiscuous mode [ 205.517158][ T8494] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 205.546126][ T8494] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 205.589153][ T8494] team0: Port device team_slave_0 added [ 205.598400][ T8484] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 205.615255][ T8494] team0: Port device team_slave_1 added [ 205.620427][ T3100] Bluetooth: hci1: command 0x041b tx timeout [ 205.637918][ T3100] Bluetooth: hci0: command 0x041b tx timeout [ 205.646281][ T8494] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 205.667091][ T8494] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 205.702191][ T8494] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 205.716228][ T8484] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 205.738232][ T8484] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 205.750871][ T8494] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 205.759333][ T8494] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 205.792435][ T8494] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 205.826501][ T8484] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 205.866833][ T8494] device hsr_slave_0 entered promiscuous mode [ 205.876462][ T8494] device hsr_slave_1 entered promiscuous mode [ 205.885384][ T8494] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 205.895959][ T8494] Cannot create hsr debugfs directory [ 205.918448][ T8480] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 205.937703][ T8480] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 205.964346][ T8480] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 205.995909][ T8482] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 206.006157][ T8480] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 206.023625][ T8482] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 206.050297][ T8482] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 206.073934][ T8482] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 206.171450][ T8494] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 206.185906][ T8494] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 206.207239][ T8494] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 206.222944][ T8494] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 206.345249][ T8484] 8021q: adding VLAN 0 to HW filter on device bond0 [ 206.413421][ T8511] Bluetooth: hci2: command 0x041b tx timeout [ 206.463720][ T8480] 8021q: adding VLAN 0 to HW filter on device bond0 [ 206.518409][ T3192] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 206.532021][ T3192] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 206.549419][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 206.560334][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 206.577776][ T8480] 8021q: adding VLAN 0 to HW filter on device team0 [ 206.591896][ T8484] 8021q: adding VLAN 0 to HW filter on device team0 [ 206.612462][ T8482] 8021q: adding VLAN 0 to HW filter on device bond0 [ 206.621885][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 206.635530][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 206.646805][ T28] bridge0: port 1(bridge_slave_0) entered blocking state [ 206.656708][ T28] bridge0: port 1(bridge_slave_0) entered forwarding state [ 206.675252][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 206.700721][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 206.714116][ T28] bridge0: port 1(bridge_slave_0) entered blocking state [ 206.723712][ T28] bridge0: port 1(bridge_slave_0) entered forwarding state [ 206.736235][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 206.746632][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 206.770197][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 206.784126][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 206.797020][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 206.807453][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 206.822042][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 206.837011][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 206.850918][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 206.863458][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 206.877349][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 206.898789][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 206.913755][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 206.927847][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 206.940806][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 206.953397][ T39] bridge0: port 2(bridge_slave_1) entered blocking state [ 206.965441][ T39] bridge0: port 2(bridge_slave_1) entered forwarding state [ 206.983942][ T8494] 8021q: adding VLAN 0 to HW filter on device bond0 [ 206.997334][ T8511] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 207.009488][ T8511] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 207.020185][ T8511] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 207.031001][ T8511] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 207.055683][ T8482] 8021q: adding VLAN 0 to HW filter on device team0 [ 207.068531][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 207.081840][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 207.097832][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 207.108008][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 207.117369][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 207.130633][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 207.148224][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 207.183093][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 207.208308][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 207.230919][ T8494] 8021q: adding VLAN 0 to HW filter on device team0 [ 207.253994][ T8484] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 207.275775][ T8517] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 207.296491][ T8517] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 207.319639][ T8517] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 207.360572][ T8517] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 207.387444][ T8517] bridge0: port 1(bridge_slave_0) entered blocking state [ 207.405295][ T8517] bridge0: port 1(bridge_slave_0) entered forwarding state [ 207.419549][ T8517] Bluetooth: hci3: command 0x041b tx timeout [ 207.431434][ T8517] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 207.444279][ T8517] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 207.465418][ T8517] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 207.479665][ T8517] bridge0: port 2(bridge_slave_1) entered blocking state [ 207.502921][ T8517] bridge0: port 2(bridge_slave_1) entered forwarding state [ 207.520337][ T8517] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 207.541369][ T8517] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 207.571175][ T8511] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 207.590945][ T8511] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 207.609143][ T8511] bridge0: port 1(bridge_slave_0) entered blocking state [ 207.623878][ T8511] bridge0: port 1(bridge_slave_0) entered forwarding state [ 207.640622][ T8511] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 207.659581][ T8511] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 207.677996][ T8511] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 207.690249][ T3100] Bluetooth: hci0: command 0x040f tx timeout [ 207.707271][ T8511] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 207.723563][ T3100] Bluetooth: hci1: command 0x040f tx timeout [ 207.768127][ T8511] bridge0: port 2(bridge_slave_1) entered blocking state [ 207.790664][ T8511] bridge0: port 2(bridge_slave_1) entered forwarding state [ 207.814108][ T8511] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 207.841557][ T8511] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 207.864582][ T8511] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 207.882064][ T8511] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 207.913217][ T8480] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 207.942575][ T8480] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 207.969193][ T8511] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 207.991640][ T8511] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 208.015398][ T8511] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 208.048907][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 208.071579][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 208.096754][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 208.125610][ T8482] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 208.147331][ T8482] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 208.182357][ T8484] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 208.194950][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 208.213247][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 208.227847][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 208.241732][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 208.254612][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 208.267223][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 208.280879][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 208.297490][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 208.309797][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 208.323913][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 208.337851][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 208.351924][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 208.384091][ T8480] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 208.403422][ T8511] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 208.420445][ T8511] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 208.474643][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 208.490161][ T3192] Bluetooth: hci2: command 0x040f tx timeout [ 208.496841][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 208.527838][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 208.546027][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 208.566534][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 208.585921][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 208.627116][ T8494] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 208.668852][ T8482] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 208.692205][ T3192] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 208.714109][ T3192] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 208.729153][ T3192] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 208.742732][ T3192] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 208.789858][ T8480] device veth0_vlan entered promiscuous mode [ 208.805295][ T8494] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 208.816313][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 208.827020][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 208.841054][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 208.856841][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 208.868590][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 208.883507][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 208.914236][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 208.941980][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 208.971264][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 208.999297][ T1234] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 209.039389][ T8484] device veth0_vlan entered promiscuous mode [ 209.084750][ T8480] device veth1_vlan entered promiscuous mode [ 209.113103][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 209.127114][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 209.162123][ T8482] device veth0_vlan entered promiscuous mode [ 209.175415][ T8484] device veth1_vlan entered promiscuous mode [ 209.193222][ T3192] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 209.215500][ T3192] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 209.243720][ T3192] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 209.260300][ T3192] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 209.291944][ T2468] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 209.303094][ T2468] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 209.314709][ T2468] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 209.334104][ T2468] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 209.356031][ T8482] device veth1_vlan entered promiscuous mode [ 209.390169][ T8480] device veth0_macvtap entered promiscuous mode [ 209.402245][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 209.416029][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 209.431401][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 209.446214][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 209.450250][ T8511] Bluetooth: hci3: command 0x040f tx timeout [ 209.464280][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 209.499632][ T8484] device veth0_macvtap entered promiscuous mode [ 209.513594][ T8494] device veth0_vlan entered promiscuous mode [ 209.524039][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 209.535882][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 209.546889][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 209.559838][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 209.578096][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 209.597502][ T8484] device veth1_macvtap entered promiscuous mode [ 209.611843][ T8480] device veth1_macvtap entered promiscuous mode [ 209.649605][ T8494] device veth1_vlan entered promiscuous mode [ 209.661723][ T8511] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 209.676057][ T8511] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 209.689746][ T8511] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 209.703860][ T8511] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 209.717063][ T8511] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 209.743482][ T8482] device veth0_macvtap entered promiscuous mode [ 209.766529][ T8484] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 209.778722][ T3100] Bluetooth: hci1: command 0x0419 tx timeout [ 209.792488][ T3100] Bluetooth: hci0: command 0x0419 tx timeout [ 209.799755][ T8482] device veth1_macvtap entered promiscuous mode [ 209.841870][ T8480] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 209.888052][ T8480] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 209.968283][ T8480] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 209.985672][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 209.998353][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 210.012440][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 210.023938][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 210.037738][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 210.059006][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 210.072124][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 210.095581][ T8484] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 210.114124][ T2468] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 210.125657][ T2468] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 210.141769][ T8480] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 210.154711][ T8480] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 210.169080][ T8480] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 210.185544][ T8484] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 210.200831][ T8484] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 210.215589][ T8484] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 210.229466][ T8484] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 210.252543][ T2468] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 210.266131][ T2468] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 210.286290][ T8480] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 210.304955][ T8480] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 210.319562][ T8480] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 210.335984][ T8480] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 210.358277][ T8482] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 210.374720][ T8482] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 210.395656][ T8482] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 210.412397][ T8482] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 210.427232][ T8482] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 210.443210][ T3192] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 210.464561][ T3192] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 210.493210][ T8494] device veth0_macvtap entered promiscuous mode [ 210.529466][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 210.546730][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 210.565760][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 210.571367][ T8517] Bluetooth: hci2: command 0x0419 tx timeout [ 210.621678][ T8482] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 210.647492][ T8482] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 210.660936][ T8482] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 210.677518][ T8482] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 210.694320][ T8482] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 210.707353][ T8494] device veth1_macvtap entered promiscuous mode [ 210.727442][ T8517] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 210.745574][ T8517] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 210.760622][ T8517] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 210.781686][ T8482] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 210.796747][ T8482] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 210.815456][ T8482] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 210.830291][ T8482] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 210.907784][ T8494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 210.941237][ T8494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 210.964637][ T8494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 210.982774][ T8494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 211.000217][ T8494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 211.020771][ T8494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 211.042732][ T8494] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 211.093393][ T8518] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 211.113264][ T8518] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 211.135336][ T8494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 211.137881][ T8484] cgroup: cgroup: disabling cgroup2 socket matching due to net_prio or net_cls activation [ 211.161137][ T8494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 211.244493][ T8494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 211.284685][ T8494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 211.331316][ T8494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 05:35:12 executing program 2: [ 211.381127][ T8494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 211.418026][ T8494] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 211.456627][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready 05:35:12 executing program 2: [ 211.491555][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 211.530626][ T8520] Bluetooth: hci3: command 0x0419 tx timeout 05:35:12 executing program 0: 05:35:12 executing program 2: [ 211.545653][ T8494] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 211.581002][ T8494] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 05:35:12 executing program 0: [ 211.612122][ T8494] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 211.631465][ T8494] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 05:35:12 executing program 1: 05:35:12 executing program 2: 05:35:13 executing program 3: 05:35:13 executing program 0: 05:35:13 executing program 2: 05:35:13 executing program 1: 05:35:13 executing program 0: 05:35:13 executing program 2: 05:35:13 executing program 2: 05:35:13 executing program 1: 05:35:13 executing program 3: 05:35:13 executing program 0: 05:35:13 executing program 1: 05:35:13 executing program 0: 05:35:13 executing program 0: 05:35:13 executing program 3: 05:35:13 executing program 2: 05:35:13 executing program 1: 05:35:13 executing program 1: 05:35:13 executing program 2: 05:35:13 executing program 3: 05:35:13 executing program 0: 05:35:13 executing program 3: 05:35:13 executing program 1: 05:35:13 executing program 0: 05:35:13 executing program 2: 05:35:13 executing program 3: 05:35:13 executing program 1: 05:35:13 executing program 3: 05:35:13 executing program 0: 05:35:13 executing program 1: 05:35:13 executing program 0: 05:35:13 executing program 2: 05:35:13 executing program 2: 05:35:13 executing program 1: 05:35:13 executing program 3: 05:35:13 executing program 2: 05:35:13 executing program 0: 05:35:13 executing program 3: 05:35:13 executing program 1: 05:35:13 executing program 1: 05:35:13 executing program 2: 05:35:13 executing program 1: 05:35:13 executing program 3: 05:35:13 executing program 0: 05:35:13 executing program 2: 05:35:13 executing program 0: 05:35:13 executing program 3: 05:35:13 executing program 0: 05:35:13 executing program 1: 05:35:13 executing program 3: 05:35:13 executing program 2: 05:35:13 executing program 0: 05:35:13 executing program 1: 05:35:13 executing program 2: 05:35:13 executing program 3: 05:35:13 executing program 1: 05:35:13 executing program 0: 05:35:13 executing program 2: 05:35:13 executing program 1: 05:35:13 executing program 0: 05:35:13 executing program 3: 05:35:13 executing program 2: 05:35:13 executing program 1: 05:35:13 executing program 0: 05:35:13 executing program 3: 05:35:13 executing program 2: 05:35:13 executing program 0: 05:35:13 executing program 1: 05:35:13 executing program 3: 05:35:13 executing program 1: 05:35:13 executing program 2: 05:35:14 executing program 1: 05:35:14 executing program 0: 05:35:14 executing program 3: 05:35:14 executing program 1: 05:35:14 executing program 2: 05:35:14 executing program 0: 05:35:14 executing program 3: 05:35:14 executing program 2: 05:35:14 executing program 3: 05:35:14 executing program 1: 05:35:14 executing program 0: 05:35:14 executing program 2: 05:35:14 executing program 2: r0 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000040)='asymmetric\x00', &(0x7f0000000340)=@secondary='builtin_and_secondary_trusted\x00') add_key$fscrypt_provisioning(&(0x7f0000000040)='fscrypt-provisioning\x00', 0x0, &(0x7f0000000100)={0x1, 0x0, "afe1fddd179f477d47cf340d6c4b9605"}, 0x18, r0) 05:35:14 executing program 0: r0 = syz_io_uring_setup(0x87, &(0x7f0000000180), &(0x7f0000ee7000/0x2000)=nil, &(0x7f00006d4000/0x4000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x7}, 0x0) r3 = socket$unix(0x1, 0x2, 0x0) r4 = socket$unix(0x1, 0x1, 0x0) r5 = dup2(r4, r3) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x1f44f1b97ab7fb6c}, 0x5) io_uring_enter(r0, 0x450c, 0x0, 0x0, 0x0, 0x0) 05:35:14 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x14) pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$inet_udp(0x2, 0x2, 0x0) close(r3) writev(r2, &(0x7f0000000040)=[{&(0x7f0000000200)="390000001100090468fe0700000000000700ff3f0800000045000e070000001419001a00", 0x24}], 0x1) write$binfmt_misc(r2, &(0x7f0000000080)=ANY=[@ANYRES32=r3], 0x1c) splice(r1, 0x0, r3, 0x0, 0x19404, 0x0) r4 = socket(0x11, 0x800000003, 0x0) r5 = socket(0x11, 0x800000003, 0x0) bind(r5, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c58110308d9123127ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r5, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14) setsockopt$packet_add_memb(r4, 0x107, 0x1, &(0x7f0000000100)={r6, 0x5, 0x6, @local}, 0x10) ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r1, 0x89f7, &(0x7f0000000100)={'syztnl0\x00', &(0x7f0000000000)={'syztnl0\x00', r6, 0x0, 0x1, 0x40, 0x8001, 0x4, @mcast1, @mcast2, 0x8000, 0x80, 0x191b, 0x3}}) sendmsg$ETHTOOL_MSG_LINKMODES_GET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x18, 0x0, 0x0, 0x0, 0x0, {}, [@HEADER={0x4}]}, 0x18}}, 0x0) sendmsg$netlink(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)}, 0x84) 05:35:14 executing program 2: r0 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000040)='asymmetric\x00', &(0x7f0000000340)=@secondary='builtin_and_secondary_trusted\x00') add_key$fscrypt_provisioning(&(0x7f0000000040)='fscrypt-provisioning\x00', 0x0, &(0x7f0000000100)={0x1, 0x0, "afe1fddd179f477d47cf340d6c4b9605"}, 0x18, r0) 05:35:14 executing program 1: r0 = socket(0x10, 0x2, 0x0) pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$inet_udp(0x2, 0x2, 0x0) close(r3) writev(r1, &(0x7f0000000480)=[{&(0x7f0000000400)="7f884958173669ac1242f263bd8d0e52076c01e622ecb650b541aae29d0aeaa17b9cfa8f377df43df9d7a5d55d914fa4da283c916027b87a88fa9af0f1ff905ee7c48bd3daa5ff2f", 0x48}, {&(0x7f0000000600)="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", 0xa5}, {&(0x7f0000000200)="94ecddac4cec58e0aacc56f52a9286c0dfb1b780eeff1c", 0x17}], 0x43) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f0000000100)={0x0, @in6={{0xa, 0x0, 0x0, @remote}}}, &(0x7f0000000040)=0x100) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, &(0x7f0000000300)={0x0, 0x6f}, &(0x7f0000000340)=0x8) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, &(0x7f00000003c0)={r4, 0x9}, &(0x7f0000000380)=0xffffffffffffff36) write$binfmt_misc(r2, &(0x7f0000000080)=ANY=[], 0x1c) r5 = socket$inet6_sctp(0xa, 0x5, 0x84) r6 = socket$inet6_sctp(0xa, 0x1, 0x84) shutdown(r6, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000002c0)=[@in6={0xa, 0x0, 0x0, @private0}]}, &(0x7f0000000180)=0x10) r7 = dup3(r6, r5, 0x0) getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x17) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r6, 0x84, 0x70, &(0x7f0000000100)={r8, @in6={{0xa, 0x0, 0x0, @remote}}}, &(0x7f0000000040)=0x100) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r2, 0x84, 0x7c, &(0x7f0000000000)={r8, 0x4b, 0x8}, 0x8) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000500)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000010000167bcdb90000000000000000000", @ANYRES32=r9, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=r9, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], 0x48}}, 0x0) [ 213.188292][ T8696] BUG: kernel NULL pointer dereference, address: 0000000000000000 [ 213.190058][ T8696] #PF: supervisor instruction fetch in kernel mode [ 213.190058][ T8696] #PF: error_code(0x0010) - not-present page [ 213.190058][ T8696] PGD 62bc4067 P4D 62bc4067 PUD 60283067 PMD 0 [ 213.190058][ T8696] Oops: 0010 [#1] PREEMPT SMP KASAN [ 213.190058][ T8696] CPU: 0 PID: 8696 Comm: io_wqe_worker-0 Not tainted 5.8.0-syzkaller #0 [ 213.290073][ T8696] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014 [ 213.310566][ T8696] RIP: 0010:0x0 [ 213.330642][ T8696] Code: Bad RIP value. [ 213.330642][ T8696] RSP: 0018:ffffc900057ef8f0 EFLAGS: 00010246 [ 213.364642][ T8696] RAX: 1ffffffff109f1b6 RBX: dffffc0000000000 RCX: ffff888062f86188 [ 213.371936][ T0] NOHZ: local_softirq_pending 08 [ 213.364642][ T8696] RDX: 000000007ab7fb6c RSI: 0000000000000000 RDI: ffff88802a5f3a40 [ 213.364642][ T8696] RBP: 0000000000000000 R08: 0000000000000001 R09: ffff888060b324c8 [ 213.404159][ T8696] R10: 0000000000000000 R11: 0000000000000000 R12: ffffc900057efa28 [ 213.464557][ T8696] R13: ffffffff884f8da0 R14: 000000007ab7fb6c R15: 0000000000000000 [ 213.479498][ T8696] FS: 0000000000000000(0000) GS:ffff88802ce00000(0000) knlGS:0000000000000000 [ 213.497800][ T8696] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 213.497800][ T8696] CR2: ffffffffffffffd6 CR3: 0000000060594000 CR4: 0000000000350ef0 [ 213.497800][ T8696] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 213.497800][ T8696] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 213.497800][ T8696] Call Trace: [ 213.497800][ T8696] loop_rw_iter.part.0+0xf3/0x450 [ 213.497800][ T8696] io_iter_do_read+0x10a/0x150 [ 213.497800][ T8696] io_read+0x2d9/0xb60 [ 213.640245][ T8696] ? kiocb_done+0x220/0x220 [ 213.640245][ T8696] ? mark_lock+0xbc/0x1710 [ 213.640245][ T8696] ? lock_repin_lock+0x460/0x460 [ 213.640245][ T8696] ? __lock_acquire+0x16cb/0x5640 [ 213.640245][ T8696] io_issue_sqe+0x61a/0x60d0 [ 213.710128][ T8696] ? lockdep_hardirqs_on_prepare+0x530/0x530 [ 213.710128][ T8696] ? lockdep_hardirqs_on+0x76/0xf0 [ 213.710128][ T8696] ? kthread_use_mm+0x1dc/0x430 [ 213.754430][ T8696] ? io_uring_setup+0x28c0/0x28c0 [ 213.754430][ T8696] ? lock_downgrade+0x830/0x830 [ 213.780178][ T8696] ? kthread_use_mm+0x19b/0x430 [ 213.780178][ T8696] ? io_wq_submit_work+0x183/0x3d0 [ 213.780178][ T8696] io_wq_submit_work+0x183/0x3d0 [ 213.780178][ T8696] io_worker_handle_work+0xa45/0x13f0 [ 213.850341][ T8696] io_wqe_worker+0xbf0/0x10e0 [ 213.850341][ T8696] ? io_worker_handle_work+0x13f0/0x13f0 [ 213.850341][ T8696] ? lockdep_hardirqs_on+0x76/0xf0 [ 213.850341][ T8696] ? __kthread_parkme+0x13f/0x1e0 [ 213.930396][ T8696] ? io_worker_handle_work+0x13f0/0x13f0 [ 213.930396][ T8696] kthread+0x3b5/0x4a0 [ 213.930396][ T8696] ? __kthread_bind_mask+0xc0/0xc0 [ 213.930396][ T8696] ? __kthread_bind_mask+0xc0/0xc0 [ 213.930396][ T8696] ret_from_fork+0x1f/0x30 [ 213.930396][ T8696] Modules linked in: [ 213.930396][ T8696] CR2: 0000000000000000 [ 213.930396][ T8696] ---[ end trace 679c4b7e5eb2315e ]--- [ 214.055612][ T8696] RIP: 0010:0x0 [ 214.055612][ T8696] Code: Bad RIP value. [ 214.055612][ T8696] RSP: 0018:ffffc900057ef8f0 EFLAGS: 00010246 [ 214.055612][ T8696] RAX: 1ffffffff109f1b6 RBX: dffffc0000000000 RCX: ffff888062f86188 [ 214.120113][ T8696] RDX: 000000007ab7fb6c RSI: 0000000000000000 RDI: ffff88802a5f3a40 [ 214.120113][ T8696] RBP: 0000000000000000 R08: 0000000000000001 R09: ffff888060b324c8 [ 214.120113][ T8696] R10: 0000000000000000 R11: 0000000000000000 R12: ffffc900057efa28 [ 214.190265][ T8696] R13: ffffffff884f8da0 R14: 000000007ab7fb6c R15: 0000000000000000 [ 214.190265][ T8696] FS: 0000000000000000(0000) GS:ffff88802ce00000(0000) knlGS:0000000000000000 [ 214.190265][ T8696] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 214.190265][ T8696] CR2: ffffffffffffffd6 CR3: 0000000060594000 CR4: 0000000000350ef0 [ 214.190265][ T8696] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 214.190265][ T8696] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 214.320082][ T8696] Kernel panic - not syncing: Fatal exception [ 214.320082][ T8696] Kernel Offset: disabled [ 214.320082][ T8696] Rebooting in 86400 seconds..