DUID 00:04:bf:e1:a4:b2:b1:2b:3d:59:87:c9:47:74:aa:d6:f6:6a
forked to background, child pid 3178
[   27.740746][ T3179] 8021q: adding VLAN 0 to HW filter on device bond0
[   27.752049][ T3179] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.0.149' (ECDSA) to the list of known hosts.
2022/03/17 10:12:06 fuzzer started
2022/03/17 10:12:07 connecting to host at 10.128.0.169:37535
2022/03/17 10:12:07 checking machine...
2022/03/17 10:12:07 checking revisions...
2022/03/17 10:12:07 testing simple program...
syzkaller login: [   49.239862][ T3599] cgroup: Unknown subsys name 'net'
[   49.350641][ T3599] cgroup: Unknown subsys name 'rlimit'
[   50.564067][ T3605] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   50.572896][ T3605] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   50.581437][ T3605] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   50.589621][ T3605] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   50.597546][ T3605] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   50.605574][ T3605] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   50.699293][ T3601] chnl_net:caif_netlink_parms(): no params data found
[   50.742589][ T3601] bridge0: port 1(bridge_slave_0) entered blocking state
[   50.750627][ T3601] bridge0: port 1(bridge_slave_0) entered disabled state
[   50.758883][ T3601] device bridge_slave_0 entered promiscuous mode
[   50.768034][ T3601] bridge0: port 2(bridge_slave_1) entered blocking state
[   50.775311][ T3601] bridge0: port 2(bridge_slave_1) entered disabled state
[   50.782996][ T3601] device bridge_slave_1 entered promiscuous mode
[   50.805310][ T3601] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   50.816387][ T3601] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   50.838947][ T3601] team0: Port device team_slave_0 added
[   50.846877][ T3601] team0: Port device team_slave_1 added
[   50.865707][ T3601] batman_adv: batadv0: Adding interface: batadv_slave_0
[   50.872659][ T3601] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   50.900075][ T3601] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   50.913449][ T3601] batman_adv: batadv0: Adding interface: batadv_slave_1
[   50.920411][ T3601] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   50.947097][ T3601] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   50.974389][ T3601] device hsr_slave_0 entered promiscuous mode
[   50.981168][ T3601] device hsr_slave_1 entered promiscuous mode
[   51.061097][ T3601] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   51.072492][ T3601] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   51.082495][ T3601] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   51.091682][ T3601] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   51.112391][ T3601] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.119755][ T3601] bridge0: port 2(bridge_slave_1) entered forwarding state
[   51.127610][ T3601] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.134750][ T3601] bridge0: port 1(bridge_slave_0) entered forwarding state
[   51.181423][ T3601] 8021q: adding VLAN 0 to HW filter on device bond0
[   51.193643][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   51.203219][   T21] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.215509][   T21] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.226692][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   51.239150][ T3601] 8021q: adding VLAN 0 to HW filter on device team0
[   51.250534][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   51.259338][    T6] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.266479][    T6] bridge0: port 1(bridge_slave_0) entered forwarding state
[   51.288238][ T3614] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   51.297041][ T3614] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.304171][ T3614] bridge0: port 2(bridge_slave_1) entered forwarding state
[   51.312699][ T3614] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   51.322522][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   51.334025][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   51.350039][ T3601] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   51.361221][ T3601] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   51.374339][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   51.383187][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   51.391859][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   51.409198][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   51.416778][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   51.429758][ T3601] 8021q: adding VLAN 0 to HW filter on device batadv0
[   51.536474][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   51.550184][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   51.559688][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   51.568489][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   51.578211][ T3601] device veth0_vlan entered promiscuous mode
[   51.589163][ T3601] device veth1_vlan entered promiscuous mode
[   51.608134][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   51.616281][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   51.625272][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   51.637330][ T3601] device veth0_macvtap entered promiscuous mode
[   51.646083][ T3601] device veth1_macvtap entered promiscuous mode
[   51.662585][ T3601] batman_adv: batadv0: Interface activated: batadv_slave_0
[   51.670188][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   51.679635][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   51.692418][ T3601] batman_adv: batadv0: Interface activated: batadv_slave_1
[   51.700912][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   51.711479][ T3601] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   51.720759][ T3601] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   51.730098][ T3601] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   51.739777][ T3601] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   51.774667][ T3614] ------------[ cut here ]------------
[   51.780473][ T3614] WARNING: CPU: 0 PID: 3614 at net/core/dev.c:4268 __napi_schedule+0xe2/0x440
[   51.789338][ T3614] Modules linked in:
[   51.793217][ T3614] CPU: 0 PID: 3614 Comm: kworker/0:5 Not tainted 5.17.0-rc7-syzkaller-02541-g05fc65f3f5e4 #0
[   51.803362][ T3614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   51.813419][ T3614] Workqueue: wg-crypt-wg0 wg_packet_decrypt_worker
[   51.819933][ T3614] RIP: 0010:__napi_schedule+0xe2/0x440
[   51.825424][ T3614] Code: 74 4a e8 b1 1b 47 fa 31 ff 65 44 8b 25 c7 ca d0 78 41 81 e4 00 ff 0f 00 44 89 e6 e8 18 1f 47 fa 45 85 e4 75 07 e8 8e 1b 47 fa <0f> 0b e8 87 1b 47 fa 65 44 8b 25 df d4 d0 78 31 ff 44 89 e6 e8 f5
[   51.845032][ T3614] RSP: 0018:ffffc9000457fc88 EFLAGS: 00010093
[   51.851100][ T3614] RAX: 0000000000000000 RBX: ffff88801e1c0748 RCX: 0000000000000000
[   51.859158][ T3614] RDX: ffff88807eba5700 RSI: ffffffff8731a512 RDI: 0000000000000003
[   51.867215][ T3614] RBP: 0000000000000200 R08: 0000000000000000 R09: 0000000000000001
[   51.875183][ T3614] R10: ffffffff8731a508 R11: 0000000000000000 R12: 0000000000000000
[   51.883148][ T3614] R13: ffff8880b9c00000 R14: 000000000003adc0 R15: ffff8880774ecec0
[   51.891135][ T3614] FS:  0000000000000000(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000
[   51.900065][ T3614] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   51.906656][ T3614] CR2: 00007fa00e4df300 CR3: 000000006fe22000 CR4: 00000000003506f0
[   51.914641][ T3614] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   51.922621][ T3614] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   51.930594][ T3614] Call Trace:
[   51.933865][ T3614]  <TASK>
[   51.936797][ T3614]  wg_packet_decrypt_worker+0x408/0x5d0
[   51.942368][ T3614]  process_one_work+0x9ac/0x1650
[   51.947317][ T3614]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[   51.952909][ T3614]  ? rwlock_bug.part.0+0x90/0x90
[   51.959547][ T3614]  ? _raw_spin_lock_irq+0x41/0x50
[   51.964777][ T3614]  worker_thread+0x657/0x1110
[   51.969505][ T3614]  ? process_one_work+0x1650/0x1650
[   51.974840][ T3614]  kthread+0x2e9/0x3a0
[   51.978942][ T3614]  ? kthread_complete_and_exit+0x40/0x40
[   51.984604][ T3614]  ret_from_fork+0x1f/0x30
[   51.989054][ T3614]  </TASK>
[   51.992072][ T3614] Kernel panic - not syncing: panic_on_warn set ...
[   51.998668][ T3614] CPU: 0 PID: 3614 Comm: kworker/0:5 Not tainted 5.17.0-rc7-syzkaller-02541-g05fc65f3f5e4 #0
[   52.008828][ T3614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   52.019070][ T3614] Workqueue: wg-crypt-wg0 wg_packet_decrypt_worker
[   52.025595][ T3614] Call Trace:
[   52.028867][ T3614]  <TASK>
[   52.031798][ T3614]  dump_stack_lvl+0xcd/0x134
[   52.036759][ T3614]  panic+0x2b0/0x6dd
[   52.040661][ T3614]  ? __warn_printk+0xf3/0xf3
[   52.045263][ T3614]  ? __warn.cold+0x1d1/0x2cf
[   52.049873][ T3614]  ? __napi_schedule+0xe2/0x440
[   52.054818][ T3614]  __warn.cold+0x1ec/0x2cf
[   52.059246][ T3614]  ? __napi_schedule+0xe2/0x440
[   52.064219][ T3614]  report_bug+0x1bd/0x210
[   52.068557][ T3614]  handle_bug+0x3c/0x60
[   52.072714][ T3614]  exc_invalid_op+0x14/0x40
[   52.077223][ T3614]  asm_exc_invalid_op+0x12/0x20
[   52.082073][ T3614] RIP: 0010:__napi_schedule+0xe2/0x440
[   52.087537][ T3614] Code: 74 4a e8 b1 1b 47 fa 31 ff 65 44 8b 25 c7 ca d0 78 41 81 e4 00 ff 0f 00 44 89 e6 e8 18 1f 47 fa 45 85 e4 75 07 e8 8e 1b 47 fa <0f> 0b e8 87 1b 47 fa 65 44 8b 25 df d4 d0 78 31 ff 44 89 e6 e8 f5
[   52.107586][ T3614] RSP: 0018:ffffc9000457fc88 EFLAGS: 00010093
[   52.113740][ T3614] RAX: 0000000000000000 RBX: ffff88801e1c0748 RCX: 0000000000000000
[   52.121796][ T3614] RDX: ffff88807eba5700 RSI: ffffffff8731a512 RDI: 0000000000000003
[   52.129937][ T3614] RBP: 0000000000000200 R08: 0000000000000000 R09: 0000000000000001
[   52.138001][ T3614] R10: ffffffff8731a508 R11: 0000000000000000 R12: 0000000000000000
[   52.145986][ T3614] R13: ffff8880b9c00000 R14: 000000000003adc0 R15: ffff8880774ecec0
[   52.153973][ T3614]  ? __napi_schedule+0xd8/0x440
[   52.158845][ T3614]  ? __napi_schedule+0xe2/0x440
[   52.163795][ T3614]  ? __napi_schedule+0xe2/0x440
[   52.168654][ T3614]  wg_packet_decrypt_worker+0x408/0x5d0
[   52.174214][ T3614]  process_one_work+0x9ac/0x1650
[   52.179163][ T3614]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[   52.184974][ T3614]  ? rwlock_bug.part.0+0x90/0x90
[   52.189917][ T3614]  ? _raw_spin_lock_irq+0x41/0x50
[   52.194969][ T3614]  worker_thread+0x657/0x1110
[   52.199657][ T3614]  ? process_one_work+0x1650/0x1650
[   52.204858][ T3614]  kthread+0x2e9/0x3a0
[   52.209087][ T3614]  ? kthread_complete_and_exit+0x40/0x40
[   52.214858][ T3614]  ret_from_fork+0x1f/0x30
[   52.219307][ T3614]  </TASK>
[   52.222760][ T3614] Kernel Offset: disabled
[   52.227360][ T3614] Rebooting in 86400 seconds..