Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.60' (ECDSA) to the list of known hosts. 2021/01/13 20:39:37 fuzzer started 2021/01/13 20:39:37 dialing manager at 10.128.0.26:43403 2021/01/13 20:39:37 syscalls: 3495 2021/01/13 20:39:37 code coverage: enabled 2021/01/13 20:39:37 comparison tracing: enabled 2021/01/13 20:39:37 extra coverage: enabled 2021/01/13 20:39:37 setuid sandbox: enabled 2021/01/13 20:39:37 namespace sandbox: enabled 2021/01/13 20:39:37 Android sandbox: /sys/fs/selinux/policy does not exist 2021/01/13 20:39:37 fault injection: enabled 2021/01/13 20:39:37 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2021/01/13 20:39:37 net packet injection: enabled 2021/01/13 20:39:37 net device setup: enabled 2021/01/13 20:39:37 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2021/01/13 20:39:37 devlink PCI setup: PCI device 0000:00:10.0 is not available 2021/01/13 20:39:37 USB emulation: enabled 2021/01/13 20:39:37 hci packet injection: enabled 2021/01/13 20:39:37 wifi device emulation: enabled 2021/01/13 20:39:37 fetching corpus: 0, signal 0/0 (executing program) 2021/01/13 20:39:37 fetching corpus: 1, signal 140/140 (executing program) 2021/01/13 20:39:37 fetching corpus: 1, signal 140/140 (executing program) 2021/01/13 20:39:40 starting 6 fuzzer processes 20:39:40 executing program 0: r0 = add_key$fscrypt_v1(&(0x7f0000000240)='logon\x00', &(0x7f0000000280)={'fscrypt:'}, &(0x7f0000000340)={0x0, "044746e4a9c1ca2b2faf94811fdf0d064a2dfbf068b5d12cb2b2cf46a0f108e79e59502c28b9f36c90b5239a7c6e7fc377b15d30bba13e2e229a64550aff8b88"}, 0x48, 0xffffffffffffffff) keyctl$revoke(0x3, r0) 20:39:40 executing program 1: keyctl$assume_authority(0x6, 0x0) 20:39:40 executing program 2: add_key(&(0x7f0000000100)='logon\x00', &(0x7f0000000140)={'syz', 0x3}, &(0x7f0000000180)='^', 0x1, 0xfffffffffffffffc) 20:39:40 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/packet\x00') ioctl$sock_SIOCADDRT(r0, 0x402c5828, &(0x7f00000006c0)={0x0, @vsock={0x28, 0x0, 0x0, @my=0x0}, @sco={0x1f, @fixed}, @tipc}) 20:39:41 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4008ae89, &(0x7f0000001a40)={"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"}) 20:39:41 executing program 5: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r0, &(0x7f0000000080)=[{&(0x7f0000000100)="8e0ee8189b0729f69b334a", 0xf895}], 0x1) syzkaller login: [ 56.446963][ T8487] IPVS: ftp: loaded support on port[0] = 21 [ 56.708521][ T8487] chnl_net:caif_netlink_parms(): no params data found [ 56.728083][ T8489] IPVS: ftp: loaded support on port[0] = 21 [ 56.789686][ T8487] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.797915][ T8487] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.808052][ T8487] device bridge_slave_0 entered promiscuous mode [ 56.819158][ T8487] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.826716][ T8487] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.837338][ T8487] device bridge_slave_1 entered promiscuous mode [ 56.878538][ T8487] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 56.905662][ T8487] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 56.934175][ T8491] IPVS: ftp: loaded support on port[0] = 21 [ 56.986636][ T8487] team0: Port device team_slave_0 added [ 56.995515][ T8487] team0: Port device team_slave_1 added [ 57.027971][ T8487] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 57.037558][ T8487] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 57.075249][ T8487] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 57.128799][ T8487] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 57.141441][ T8487] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 57.175065][ T8487] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 57.208563][ T8493] IPVS: ftp: loaded support on port[0] = 21 [ 57.248868][ T8487] device hsr_slave_0 entered promiscuous mode [ 57.256147][ T8487] device hsr_slave_1 entered promiscuous mode [ 57.372905][ T8489] chnl_net:caif_netlink_parms(): no params data found [ 57.569636][ T8491] chnl_net:caif_netlink_parms(): no params data found [ 57.582813][ T8495] IPVS: ftp: loaded support on port[0] = 21 [ 57.669438][ T8508] IPVS: ftp: loaded support on port[0] = 21 [ 57.851363][ T8489] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.858456][ T8489] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.872179][ T8489] device bridge_slave_0 entered promiscuous mode [ 57.881247][ T8489] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.888395][ T8489] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.897966][ T8489] device bridge_slave_1 entered promiscuous mode [ 57.948608][ T8491] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.959303][ T8491] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.968948][ T8491] device bridge_slave_0 entered promiscuous mode [ 57.978442][ T8489] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.992553][ T8487] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 58.009073][ T8491] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.017914][ T8491] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.026554][ T8491] device bridge_slave_1 entered promiscuous mode [ 58.044441][ T8489] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.058549][ T8487] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 58.069698][ T8487] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 58.096850][ T8493] chnl_net:caif_netlink_parms(): no params data found [ 58.115008][ T8487] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 58.158218][ T8491] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.187433][ T8489] team0: Port device team_slave_0 added [ 58.195430][ T8491] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.266223][ T8489] team0: Port device team_slave_1 added [ 58.406098][ T8491] team0: Port device team_slave_0 added [ 58.421943][ T36] Bluetooth: hci0: command 0x0409 tx timeout [ 58.447835][ T8495] chnl_net:caif_netlink_parms(): no params data found [ 58.486031][ T8491] team0: Port device team_slave_1 added [ 58.566459][ T8489] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 58.575727][ T8489] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 58.604466][ T8489] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 58.642740][ T8493] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.649810][ T8493] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.660058][ T36] Bluetooth: hci1: command 0x0409 tx timeout [ 58.660736][ T8493] device bridge_slave_0 entered promiscuous mode [ 58.678553][ T8493] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.686049][ T8493] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.694319][ T8493] device bridge_slave_1 entered promiscuous mode [ 58.720553][ T8489] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 58.727517][ T8489] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 58.754852][ T8489] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 58.803194][ T8491] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 58.811394][ T8491] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 58.837786][ T8491] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 58.874448][ T8489] device hsr_slave_0 entered promiscuous mode [ 58.881644][ T8489] device hsr_slave_1 entered promiscuous mode [ 58.888650][ T8489] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 58.897009][ T8489] Cannot create hsr debugfs directory [ 58.904754][ T8493] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.914062][ T2994] Bluetooth: hci2: command 0x0409 tx timeout [ 58.925681][ T8493] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.936337][ T8508] chnl_net:caif_netlink_parms(): no params data found [ 58.952824][ T8491] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 58.960287][ T8491] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 58.987763][ T8491] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 59.019532][ T8491] device hsr_slave_0 entered promiscuous mode [ 59.027513][ T8491] device hsr_slave_1 entered promiscuous mode [ 59.036909][ T8491] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 59.044727][ T8491] Cannot create hsr debugfs directory [ 59.135495][ T8493] team0: Port device team_slave_0 added [ 59.144194][ T5] Bluetooth: hci3: command 0x0409 tx timeout [ 59.144729][ T8493] team0: Port device team_slave_1 added [ 59.163958][ T8487] 8021q: adding VLAN 0 to HW filter on device bond0 [ 59.179161][ T8495] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.187472][ T8495] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.195772][ T8495] device bridge_slave_0 entered promiscuous mode [ 59.241430][ T8493] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 59.248410][ T8493] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 59.276769][ T8493] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 59.289179][ T8495] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.296381][ T8495] bridge0: port 2(bridge_slave_1) entered disabled state [ 59.304880][ T8495] device bridge_slave_1 entered promiscuous mode [ 59.346745][ T8493] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 59.354480][ T8493] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 59.379863][ T17] Bluetooth: hci4: command 0x0409 tx timeout [ 59.381037][ T8493] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 59.413863][ T8508] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.421132][ T8508] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.429023][ T8508] device bridge_slave_0 entered promiscuous mode [ 59.462609][ T8493] device hsr_slave_0 entered promiscuous mode [ 59.469376][ T8493] device hsr_slave_1 entered promiscuous mode [ 59.478213][ T8493] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 59.485949][ T8493] Cannot create hsr debugfs directory [ 59.493414][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 59.504164][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 59.514156][ T8508] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.521897][ T8508] bridge0: port 2(bridge_slave_1) entered disabled state [ 59.529650][ T8508] device bridge_slave_1 entered promiscuous mode [ 59.545999][ T8495] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 59.560600][ T8495] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 59.583834][ T8487] 8021q: adding VLAN 0 to HW filter on device team0 [ 59.594954][ T8495] team0: Port device team_slave_0 added [ 59.616935][ T8495] team0: Port device team_slave_1 added [ 59.622673][ T36] Bluetooth: hci5: command 0x0409 tx timeout [ 59.653050][ T8508] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 59.686484][ T8508] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 59.754420][ T2994] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 59.764933][ T2994] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 59.774477][ T2994] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.781800][ T2994] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.792549][ T2994] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 59.801389][ T2994] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 59.810435][ T2994] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.817862][ T2994] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.825916][ T2994] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 59.835178][ T2994] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 59.846955][ T2994] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 59.859099][ T8495] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 59.867752][ T8495] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 59.895807][ T8495] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 59.914903][ T8508] team0: Port device team_slave_0 added [ 59.923388][ T8508] team0: Port device team_slave_1 added [ 59.961205][ T8495] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 59.968171][ T8495] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 59.995297][ T8495] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 60.009991][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 60.018583][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 60.055511][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 60.068711][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 60.077932][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 60.097984][ T8508] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 60.106479][ T8508] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 60.134824][ T8508] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 60.154662][ T8508] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 60.161984][ T8508] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 60.188304][ T8508] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 60.224907][ T8495] device hsr_slave_0 entered promiscuous mode [ 60.235267][ T8495] device hsr_slave_1 entered promiscuous mode [ 60.244190][ T8495] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 60.253317][ T8495] Cannot create hsr debugfs directory [ 60.274872][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 60.283285][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 60.292795][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 60.301777][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 60.316606][ T8487] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 60.327681][ T8508] device hsr_slave_0 entered promiscuous mode [ 60.335821][ T8508] device hsr_slave_1 entered promiscuous mode [ 60.344179][ T8508] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 60.352237][ T8508] Cannot create hsr debugfs directory [ 60.475217][ T8487] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 60.484246][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 60.493415][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 60.510828][ T36] Bluetooth: hci0: command 0x041b tx timeout [ 60.518177][ T8489] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 60.564116][ T8489] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 60.573842][ T8489] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 60.595659][ T8489] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 60.720478][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 60.730334][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 60.749136][ T36] Bluetooth: hci1: command 0x041b tx timeout [ 60.771042][ T8493] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 60.791050][ T8487] device veth0_vlan entered promiscuous mode [ 60.802246][ T8491] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 60.817536][ T8491] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 60.828545][ T8493] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 60.838632][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 60.847127][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 60.858305][ T8487] device veth1_vlan entered promiscuous mode [ 60.867378][ T8491] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 60.882689][ T8493] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 60.895375][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 60.903894][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 60.912254][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 60.941410][ T8491] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 60.950932][ T8493] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 60.988639][ T17] Bluetooth: hci2: command 0x041b tx timeout [ 60.990095][ T9615] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 61.015926][ T9615] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 61.025915][ T9615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 61.058399][ T8487] device veth0_macvtap entered promiscuous mode [ 61.078043][ T8508] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 61.116477][ T8487] device veth1_macvtap entered promiscuous mode [ 61.124899][ T8508] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 61.145147][ T8508] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 61.196384][ T8508] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 61.218408][ T8489] 8021q: adding VLAN 0 to HW filter on device bond0 [ 61.225438][ T5] Bluetooth: hci3: command 0x041b tx timeout [ 61.237570][ T8487] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 61.277774][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 61.286976][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 61.298338][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 61.321108][ T8489] 8021q: adding VLAN 0 to HW filter on device team0 [ 61.340311][ T8487] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 61.350773][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 61.358502][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 61.369167][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 61.378507][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 61.388087][ T8495] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 61.404384][ T8495] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 61.426024][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 61.438459][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 61.448632][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.456924][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 61.466664][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 61.476162][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 61.485690][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.493477][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 61.505261][ T8495] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 61.512850][ T3074] Bluetooth: hci4: command 0x041b tx timeout [ 61.526943][ T8487] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.541414][ T8487] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.552227][ T8487] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.562121][ T8487] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.577724][ T8158] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 61.595457][ T8493] 8021q: adding VLAN 0 to HW filter on device bond0 [ 61.604727][ T8495] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 61.642574][ T8158] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 61.657198][ T8158] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 61.672563][ T9615] ================================================================================ [ 61.682574][ T9615] UBSAN: object-size-mismatch in ./include/linux/skbuff.h:2021:28 [ 61.690448][ T9615] member access within address 00000000f0ecddb8 with insufficient space [ 61.698777][ T9615] for an object of type 'struct sk_buff' [ 61.704506][ T9615] CPU: 0 PID: 9615 Comm: kworker/0:4 Not tainted 5.10.0-syzkaller #0 [ 61.712679][ T9615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 61.723111][ T9615] Workqueue: ipv6_addrconf addrconf_dad_work [ 61.729094][ T9615] Call Trace: [ 61.732387][ T9615] dump_stack+0x137/0x1be [ 61.736721][ T9615] ? wake_up_klogd+0xb2/0xf0 [ 61.741406][ T9615] ubsan_type_mismatch_common+0x1e2/0x390 [ 61.747215][ T9615] __ubsan_handle_type_mismatch_v1+0x41/0x50 [ 61.753367][ T9615] wg_xmit+0x45d/0xdf0 [ 61.757469][ T9615] netdev_start_xmit+0x7b/0x140 [ 61.763042][ T9615] dev_hard_start_xmit+0x182/0x2e0 [ 61.768420][ T9615] __dev_queue_xmit+0x1229/0x1e60 [ 61.774329][ T9615] ip6_finish_output2+0xe8d/0x11e0 [ 61.780753][ T9615] ? __ip6_finish_output+0x26b/0x390 [ 61.786339][ T9615] ndisc_send_skb+0x85b/0xc70 [ 61.792098][ T9615] addrconf_dad_completed+0x5ef/0x990 [ 61.798348][ T9615] addrconf_dad_work+0xb92/0x1480 [ 61.803390][ T9615] ? rcu_read_lock_sched_held+0x62/0x100 [ 61.809022][ T9615] process_one_work+0x471/0x830 [ 61.814230][ T9615] worker_thread+0x757/0xb10 [ 61.818844][ T9615] ? __kthread_parkme+0x148/0x190 [ 61.824218][ T9615] ? pr_cont_work+0x100/0x100 [ 61.828908][ T9615] kthread+0x39a/0x3c0 [ 61.833403][ T9615] ? pr_cont_work+0x100/0x100 [ 61.838075][ T9615] ? __list_add+0xc0/0xc0 [ 61.842750][ T9615] ret_from_fork+0x1f/0x30 [ 61.847529][ T9615] ================================================================================ [ 61.856936][ T9615] Kernel panic - not syncing: panic_on_warn set ... [ 61.863713][ T9615] CPU: 0 PID: 9615 Comm: kworker/0:4 Not tainted 5.10.0-syzkaller #0 [ 61.871766][ T9615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 61.882517][ T9615] Workqueue: ipv6_addrconf addrconf_dad_work [ 61.888506][ T9615] Call Trace: [ 61.891797][ T9615] dump_stack+0x137/0x1be [ 61.896133][ T9615] ? panic+0x226/0x830 [ 61.900199][ T9615] panic+0x2e3/0x830 [ 61.904096][ T9615] ? ubsan_type_mismatch_common+0x206/0x390 [ 61.910073][ T9615] ubsan_type_mismatch_common+0x388/0x390 [ 61.915781][ T9615] __ubsan_handle_type_mismatch_v1+0x41/0x50 [ 61.921942][ T9615] wg_xmit+0x45d/0xdf0 [ 61.926042][ T9615] netdev_start_xmit+0x7b/0x140 [ 61.930897][ T9615] dev_hard_start_xmit+0x182/0x2e0 [ 61.936005][ T9615] __dev_queue_xmit+0x1229/0x1e60 [ 61.941062][ T9615] ip6_finish_output2+0xe8d/0x11e0 [ 61.946180][ T9615] ? __ip6_finish_output+0x26b/0x390 [ 61.951462][ T9615] ndisc_send_skb+0x85b/0xc70 [ 61.956515][ T9615] addrconf_dad_completed+0x5ef/0x990 [ 61.962009][ T9615] addrconf_dad_work+0xb92/0x1480 [ 61.967030][ T9615] ? rcu_read_lock_sched_held+0x62/0x100 [ 61.972744][ T9615] process_one_work+0x471/0x830 [ 61.977602][ T9615] worker_thread+0x757/0xb10 [ 61.982203][ T9615] ? __kthread_parkme+0x148/0x190 [ 61.987230][ T9615] ? pr_cont_work+0x100/0x100 [ 61.991896][ T9615] kthread+0x39a/0x3c0 [ 61.995949][ T9615] ? pr_cont_work+0x100/0x100 [ 62.000638][ T9615] ? __list_add+0xc0/0xc0 [ 62.004981][ T9615] ret_from_fork+0x1f/0x30 [ 62.010307][ T9615] Kernel Offset: disabled [ 62.014741][ T9615] Rebooting in 86400 seconds..