[   84.086797][ T4706] check 0 16 65575 40, 0 1500
[   87.093663][  T779] cfg80211: failed to load regulatory.db
[   87.447205][ T4706] MAXPLEN
[   87.451007][ T4706] check 0 16 65575 40, 0 1500
[   87.513320][ T4706] MAXPLEN
[   87.516388][ T4706] check 0 16 65575 40, 0 1500
[   87.580168][ T4706] MAXPLEN
[   87.583577][ T4706] check 0 16 65575 40, 0 1500
[   88.083469][ T4706] MAXPLEN
[   88.086449][ T4706] check 0 16 65575 40, 0 1500
[   91.448478][ T4706] MAXPLEN
[   91.451437][ T4706] check 0 16 65575 40, 0 1500
[   91.513569][ T4706] MAXPLEN
[   91.516514][ T4706] check 0 16 65575 40, 0 1500
[   91.580164][ T4706] MAXPLEN
[   91.583218][ T4706] check 0 16 65575 40, 0 1500
[   92.084759][ T4706] MAXPLEN
[   92.087707][ T4706] check 0 16 65575 40, 0 1500
Warning: Permanently added '10.128.1.15' (ED25519) to the list of known hosts.
2023/09/18 10:32:09 ignoring optional flag "sandboxArg"="0"
2023/09/18 10:32:09 parsed 1 programs
2023/09/18 10:32:11 executed programs: 0
[   97.910386][ T5383] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   97.969816][ T5040] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   97.978058][ T5040] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   97.985815][ T5040] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   97.993469][ T5040] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   98.000707][ T5040] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   98.140658][ T5389] chnl_net:caif_netlink_parms(): no params data found
[   98.209549][ T5389] bridge0: port 1(bridge_slave_0) entered blocking state
[   98.217030][ T5389] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.224676][ T5389] bridge_slave_0: entered allmulticast mode
[   98.231558][ T5389] bridge_slave_0: entered promiscuous mode
[   98.240964][ T5389] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.248155][ T5389] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.255566][ T5389] bridge_slave_1: entered allmulticast mode
[   98.262544][ T5389] bridge_slave_1: entered promiscuous mode
[   98.292503][ T5389] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   98.305453][ T5389] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   98.337259][ T5389] team0: Port device team_slave_0 added
[   98.345542][ T5389] team0: Port device team_slave_1 added
[   98.373504][ T5389] batman_adv: batadv0: Adding interface: batadv_slave_0
[   98.380730][ T5389] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   98.407460][ T5389] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   98.419878][ T5389] batman_adv: batadv0: Adding interface: batadv_slave_1
[   98.427044][ T5389] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   98.454589][ T5389] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   98.498472][ T5389] hsr_slave_0: entered promiscuous mode
[   98.505261][ T5389] hsr_slave_1: entered promiscuous mode
[   99.383078][ T5389] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   99.397070][ T5389] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   99.409366][ T5389] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   99.423366][ T5389] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   99.560688][ T5389] 8021q: adding VLAN 0 to HW filter on device bond0
[   99.589976][ T5389] 8021q: adding VLAN 0 to HW filter on device team0
[   99.607981][   T23] bridge0: port 1(bridge_slave_0) entered blocking state
[   99.615232][   T23] bridge0: port 1(bridge_slave_0) entered forwarding state
[   99.638195][   T23] bridge0: port 2(bridge_slave_1) entered blocking state
[   99.645547][   T23] bridge0: port 2(bridge_slave_1) entered forwarding state
[   99.712742][ T5389] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   99.926338][ T5389] 8021q: adding VLAN 0 to HW filter on device batadv0
[   99.998892][ T5389] veth0_vlan: entered promiscuous mode
[  100.016306][ T5389] veth1_vlan: entered promiscuous mode
[  100.052862][ T5040] Bluetooth: hci0: command 0x0409 tx timeout
[  100.062357][ T5389] veth0_macvtap: entered promiscuous mode
[  100.076662][ T5389] veth1_macvtap: entered promiscuous mode
[  100.109358][ T5389] batman_adv: batadv0: Interface activated: batadv_slave_0
[  100.130092][ T5389] batman_adv: batadv0: Interface activated: batadv_slave_1
[  100.147146][ T5389] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  100.156987][ T5389] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  100.168662][ T5389] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  100.177646][ T5389] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  100.210476][    C1] MAXPLEN
[  100.213492][    C1] check 0 204 65575 40, 8 65536
[  100.286254][   T23] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  100.294372][   T23] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  100.348984][   T23] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  100.358678][   T23] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  100.473841][   T28] audit: type=1804 audit(1695033134.087:2): pid=5455 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir998481626/syzkaller.5Trsyo/0/cgroup.controllers" dev="sda1" ino=1939 res=1 errno=0
[  100.506171][ T5455] l2tp_ip6_sendmsg()
[  100.510131][ T5455] MAXPLEN
[  100.515142][ T5455] check 0 4100 65575 40, 4 65536
[  100.524303][ T5455] l2tp_ip6_sendmsg()
[  100.528340][ T5455] MAXPLEN
[  100.531296][ T5455] check 4100 4100 65575 40, 0 65536
[  100.543355][ T5455] ------------[ cut here ]------------
[  100.549167][ T5455] WARNING: CPU: 0 PID: 5455 at net/ipv6/ip6_output.c:1812 __ip6_append_data.isra.0+0x1c6d/0x4900
[  100.560402][ T5455] Modules linked in:
[  100.564959][ T5455] CPU: 0 PID: 5455 Comm: syz-executor.0 Not tainted 6.5.0-syzkaller-11938-g65d6e954e378-dirty #0
[  100.576111][ T5455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[  100.586700][ T5455] RIP: 0010:__ip6_append_data.isra.0+0x1c6d/0x4900
[  100.593634][ T5455] Code: c4 f6 ff ff e8 84 d4 97 f8 49 8d 44 24 ff 48 89 44 24 68 49 8d 6c 24 07 e9 ab f6 ff ff 4c 8b b4 24 90 01 00 00 e8 63 d4 97 f8 <0f> 0b 48 8b 44 24 10 45 89 f4 48 8d 98 74 02 00 00 e8 4d d4 97 f8
[  100.613704][ T5455] RSP: 0018:ffffc90004f373b8 EFLAGS: 00010293
[  100.619806][ T5455] RAX: 0000000000000000 RBX: 0000000000001004 RCX: 0000000000000000
[  100.628202][ T5455] RDX: ffff888019e8bb80 RSI: ffffffff88efcf9d RDI: 0000000000000006
[  100.636334][ T5455] RBP: 0000000000001000 R08: 0000000000000006 R09: 0000000000001004
[  100.645247][ T5455] R10: 0000000000001000 R11: 0000000000000001 R12: 0000000000000001
[  100.654466][ T5455] R13: dffffc0000000000 R14: 0000000000001004 R15: ffff888027b1d640
[  100.662563][ T5455] FS:  00007feae40ff6c0(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[  100.671576][ T5455] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  100.678235][ T5455] CR2: 00007f0f01e4e378 CR3: 000000007d467000 CR4: 00000000003506f0
[  100.686280][ T5455] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  100.694838][ T5455] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  100.703131][ T5455] Call Trace:
[  100.706530][ T5455]  <TASK>
[  100.709474][ T5455]  ? show_regs+0x8f/0xa0
[  100.713782][ T5455]  ? __warn+0xe6/0x380
[  100.717896][ T5455]  ? __ip6_append_data.isra.0+0x1c6d/0x4900
[  100.723870][ T5455]  ? report_bug+0x3bc/0x580
[  100.728425][ T5455]  ? handle_bug+0x3c/0x70
[  100.732845][ T5455]  ? exc_invalid_op+0x17/0x40
[  100.737566][ T5455]  ? asm_exc_invalid_op+0x1a/0x20
[  100.742647][ T5455]  ? __ip6_append_data.isra.0+0x1c6d/0x4900
[  100.748603][ T5455]  ? __ip6_append_data.isra.0+0x1c6d/0x4900
[  100.754677][ T5455]  ? __ip6_append_data.isra.0+0x1c6d/0x4900
[  100.760701][ T5455]  ? xfrm_expand_policies.constprop.0+0x6b0/0x6b0
[  100.767201][ T5455]  ? ip_frag_init+0x320/0x320
[  100.771929][ T5455]  ? ip6_dst_lookup+0x60/0x60
[  100.776693][ T5455]  ? rcu_is_watching+0x12/0xb0
[  100.781497][ T5455]  ip6_append_data+0x1e6/0x510
[  100.786852][ T5455]  ? ip_frag_init+0x320/0x320
[  100.791572][ T5455]  l2tp_ip6_sendmsg+0xe0c/0x1ce0
[  100.796608][ T5455]  ? l2tp_ip6_open+0x210/0x210
[  100.801406][ T5455]  ? do_syscall_64+0x38/0xb0
[  100.806618][ T5455]  ? entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  100.812736][ T5455]  ? kasan_save_stack+0x43/0x50
[  100.817755][ T5455]  ? kasan_save_stack+0x33/0x50
[  100.822655][ T5455]  ? kasan_set_track+0x25/0x30
[  100.827596][ T5455]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  100.833603][ T5455]  ? inet_sendmsg+0x9d/0xe0
[  100.838228][ T5455]  inet_sendmsg+0x9d/0xe0
[  100.842603][ T5455]  ? inet_send_prepare+0x540/0x540
[  100.847791][ T5455]  sock_sendmsg+0xd9/0x180
[  100.852253][ T5455]  splice_to_socket+0xade/0x1010
[  100.857424][ T5455]  ? splice_from_pipe+0x130/0x130
[  100.862522][ T5455]  ? __phys_addr+0xc6/0x140
[  100.867110][ T5455]  ? security_file_permission+0xdc/0x100
[  100.872842][ T5455]  ? splice_from_pipe+0x130/0x130
[  100.877915][ T5455]  direct_splice_actor+0x118/0x180
[  100.883116][ T5455]  splice_direct_to_actor+0x347/0xa30
[  100.888526][ T5455]  ? folio_flags.constprop.0+0x150/0x150
[  100.894343][ T5455]  ? vfs_splice_read+0x3b0/0x3b0
[  100.899493][ T5455]  ? bpf_lsm_file_permission+0x9/0x10
[  100.904942][ T5455]  ? security_file_permission+0x94/0x100
[  100.910709][ T5455]  do_splice_direct+0x1af/0x280
[  100.915648][ T5455]  ? splice_direct_to_actor+0xa30/0xa30
[  100.921406][ T5455]  ? propagate_umount+0x1af0/0x1af0
[  100.927340][ T5455]  ? bpf_lsm_file_permission+0x9/0x10
[  100.932753][ T5455]  ? security_file_permission+0x94/0x100
[  100.938664][ T5455]  do_sendfile+0xb88/0x1390
[  100.943359][ T5455]  ? rcu_is_watching+0x12/0xb0
[  100.948246][ T5455]  ? vfs_iocb_iter_write+0x4c0/0x4c0
[  100.953714][ T5455]  ? __sys_connect+0xed/0x170
[  100.958431][ T5455]  ? xfd_validate_state+0x5d/0x180
[  100.963713][ T5455]  ? restore_fpregs_from_fpstate+0xc1/0x1d0
[  100.969734][ T5455]  __x64_sys_sendfile64+0x1d6/0x220
[  100.975021][ T5455]  ? __ia32_sys_sendfile+0x220/0x220
[  100.980346][ T5455]  ? rcu_is_watching+0x12/0xb0
[  100.985204][ T5455]  ? trace_irq_enable.constprop.0+0xd0/0x100
[  100.991225][ T5455]  do_syscall_64+0x38/0xb0
[  100.995742][ T5455]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  101.001687][ T5455] RIP: 0033:0x7feae347cae9
[  101.006284][ T5455] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  101.026485][ T5455] RSP: 002b:00007feae40ff0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  101.034981][ T5455] RAX: ffffffffffffffda RBX: 00007feae359bf80 RCX: 00007feae347cae9
[  101.043005][ T5455] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[  101.051188][ T5455] RBP: 00007feae34c847a R08: 0000000000000000 R09: 0000000000000000
[  101.059236][ T5455] R10: 000000010000a006 R11: 0000000000000246 R12: 0000000000000000
[  101.067297][ T5455] R13: 000000000000000b R14: 00007feae359bf80 R15: 00007ffc444d03c8
[  101.075655][ T5455]  </TASK>
[  101.078703][ T5455] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  101.087817][ T5455] CPU: 0 PID: 5455 Comm: syz-executor.0 Not tainted 6.5.0-syzkaller-11938-g65d6e954e378-dirty #0
[  101.098353][ T5455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[  101.108611][ T5455] Call Trace:
[  101.112004][ T5455]  <TASK>
[  101.114949][ T5455]  dump_stack_lvl+0xd9/0x1b0
[  101.119585][ T5455]  panic+0x6a6/0x750
[  101.123581][ T5455]  ? panic_smp_self_stop+0xa0/0xa0
[  101.128736][ T5455]  ? __ip6_append_data.isra.0+0x1c6d/0x4900
[  101.134747][ T5455]  check_panic_on_warn+0xab/0xb0
[  101.139809][ T5455]  __warn+0xf2/0x380
[  101.143742][ T5455]  ? __ip6_append_data.isra.0+0x1c6d/0x4900
[  101.149671][ T5455]  report_bug+0x3bc/0x580
[  101.154124][ T5455]  handle_bug+0x3c/0x70
[  101.159029][ T5455]  exc_invalid_op+0x17/0x40
[  101.163553][ T5455]  asm_exc_invalid_op+0x1a/0x20
[  101.168622][ T5455] RIP: 0010:__ip6_append_data.isra.0+0x1c6d/0x4900
[  101.175322][ T5455] Code: c4 f6 ff ff e8 84 d4 97 f8 49 8d 44 24 ff 48 89 44 24 68 49 8d 6c 24 07 e9 ab f6 ff ff 4c 8b b4 24 90 01 00 00 e8 63 d4 97 f8 <0f> 0b 48 8b 44 24 10 45 89 f4 48 8d 98 74 02 00 00 e8 4d d4 97 f8
[  101.195208][ T5455] RSP: 0018:ffffc90004f373b8 EFLAGS: 00010293
[  101.201293][ T5455] RAX: 0000000000000000 RBX: 0000000000001004 RCX: 0000000000000000
[  101.210142][ T5455] RDX: ffff888019e8bb80 RSI: ffffffff88efcf9d RDI: 0000000000000006
[  101.220398][ T5455] RBP: 0000000000001000 R08: 0000000000000006 R09: 0000000000001004
[  101.228462][ T5455] R10: 0000000000001000 R11: 0000000000000001 R12: 0000000000000001
[  101.236702][ T5455] R13: dffffc0000000000 R14: 0000000000001004 R15: ffff888027b1d640
[  101.244788][ T5455]  ? __ip6_append_data.isra.0+0x1c6d/0x4900
[  101.250709][ T5455]  ? __ip6_append_data.isra.0+0x1c6d/0x4900
[  101.256725][ T5455]  ? xfrm_expand_policies.constprop.0+0x6b0/0x6b0
[  101.263438][ T5455]  ? ip_frag_init+0x320/0x320
[  101.268139][ T5455]  ? ip6_dst_lookup+0x60/0x60
[  101.272827][ T5455]  ? rcu_is_watching+0x12/0xb0
[  101.277597][ T5455]  ip6_append_data+0x1e6/0x510
[  101.282462][ T5455]  ? ip_frag_init+0x320/0x320
[  101.287158][ T5455]  l2tp_ip6_sendmsg+0xe0c/0x1ce0
[  101.292160][ T5455]  ? l2tp_ip6_open+0x210/0x210
[  101.296926][ T5455]  ? do_syscall_64+0x38/0xb0
[  101.301631][ T5455]  ? entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  101.307719][ T5455]  ? kasan_save_stack+0x43/0x50
[  101.312590][ T5455]  ? kasan_save_stack+0x33/0x50
[  101.317642][ T5455]  ? kasan_set_track+0x25/0x30
[  101.322424][ T5455]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  101.328787][ T5455]  ? inet_sendmsg+0x9d/0xe0
[  101.333311][ T5455]  inet_sendmsg+0x9d/0xe0
[  101.337741][ T5455]  ? inet_send_prepare+0x540/0x540
[  101.342921][ T5455]  sock_sendmsg+0xd9/0x180
[  101.347448][ T5455]  splice_to_socket+0xade/0x1010
[  101.352412][ T5455]  ? splice_from_pipe+0x130/0x130
[  101.357692][ T5455]  ? __phys_addr+0xc6/0x140
[  101.362581][ T5455]  ? security_file_permission+0xdc/0x100
[  101.368238][ T5455]  ? splice_from_pipe+0x130/0x130
[  101.373369][ T5455]  direct_splice_actor+0x118/0x180
[  101.378759][ T5455]  splice_direct_to_actor+0x347/0xa30
[  101.384252][ T5455]  ? folio_flags.constprop.0+0x150/0x150
[  101.390138][ T5455]  ? vfs_splice_read+0x3b0/0x3b0
[  101.395282][ T5455]  ? bpf_lsm_file_permission+0x9/0x10
[  101.401320][ T5455]  ? security_file_permission+0x94/0x100
[  101.407180][ T5455]  do_splice_direct+0x1af/0x280
[  101.412219][ T5455]  ? splice_direct_to_actor+0xa30/0xa30
[  101.418780][ T5455]  ? propagate_umount+0x1af0/0x1af0
[  101.424072][ T5455]  ? bpf_lsm_file_permission+0x9/0x10
[  101.429650][ T5455]  ? security_file_permission+0x94/0x100
[  101.435659][ T5455]  do_sendfile+0xb88/0x1390
[  101.440351][ T5455]  ? rcu_is_watching+0x12/0xb0
[  101.445214][ T5455]  ? vfs_iocb_iter_write+0x4c0/0x4c0
[  101.450516][ T5455]  ? __sys_connect+0xed/0x170
[  101.455568][ T5455]  ? xfd_validate_state+0x5d/0x180
[  101.460794][ T5455]  ? restore_fpregs_from_fpstate+0xc1/0x1d0
[  101.466722][ T5455]  __x64_sys_sendfile64+0x1d6/0x220
[  101.472123][ T5455]  ? __ia32_sys_sendfile+0x220/0x220
[  101.477771][ T5455]  ? rcu_is_watching+0x12/0xb0
[  101.482562][ T5455]  ? trace_irq_enable.constprop.0+0xd0/0x100
[  101.488738][ T5455]  do_syscall_64+0x38/0xb0
[  101.493183][ T5455]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  101.499113][ T5455] RIP: 0033:0x7feae347cae9
[  101.503625][ T5455] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  101.525090][ T5455] RSP: 002b:00007feae40ff0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  101.533598][ T5455] RAX: ffffffffffffffda RBX: 00007feae359bf80 RCX: 00007feae347cae9
[  101.541766][ T5455] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[  101.549822][ T5455] RBP: 00007feae34c847a R08: 0000000000000000 R09: 0000000000000000
[  101.557794][ T5455] R10: 000000010000a006 R11: 0000000000000246 R12: 0000000000000000
[  101.565764][ T5455] R13: 000000000000000b R14: 00007feae359bf80 R15: 00007ffc444d03c8
[  101.573743][ T5455]  </TASK>
[  101.577173][ T5455] Kernel Offset: disabled
[  101.581502][ T5455] Rebooting in 86400 seconds..