[   15.386722][ T3895] 8021q: adding VLAN 0 to HW filter on device bond0
[   15.390345][ T3895] eql: remember to turn off Van-Jacobson compression on your slave devices
[   15.436011][   T39] gvnic 0000:00:00.0 enp0s0: Device link is up.
[   15.442980][ T1510] IPv6: ADDRCONF(NETDEV_CHANGE): enp0s0: link becomes ready
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.0.23' (ED25519) to the list of known hosts.
syzkaller login: [   36.022512][ T4221] chnl_net:caif_netlink_parms(): no params data found
[   36.054617][ T4221] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.056633][ T4221] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.059105][ T4221] device bridge_slave_0 entered promiscuous mode
[   36.063319][ T4221] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.065200][ T4221] bridge0: port 2(bridge_slave_1) entered disabled state
[   36.067664][ T4221] device bridge_slave_1 entered promiscuous mode
[   36.081300][ T4221] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   36.085452][ T4221] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   36.098572][ T4221] team0: Port device team_slave_0 added
[   36.101574][ T4221] team0: Port device team_slave_1 added
[   36.113826][ T4221] batman_adv: batadv0: Adding interface: batadv_slave_0
[   36.115694][ T4221] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.122580][ T4221] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   36.127060][ T4221] batman_adv: batadv0: Adding interface: batadv_slave_1
[   36.128940][ T4221] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.136114][ T4221] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   36.205224][ T4221] device hsr_slave_0 entered promiscuous mode
[   36.242409][ T4221] device hsr_slave_1 entered promiscuous mode
[   36.366983][ T4221] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   36.424861][ T4221] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   36.464253][ T4221] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   36.504947][ T4221] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   36.558163][ T4221] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.560082][ T4221] bridge0: port 2(bridge_slave_1) entered forwarding state
[   36.562389][ T4221] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.564212][ T4221] bridge0: port 1(bridge_slave_0) entered forwarding state
[   36.601399][ T4221] 8021q: adding VLAN 0 to HW filter on device bond0
[   36.608646][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   36.612946][   T24] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.616074][   T24] bridge0: port 2(bridge_slave_1) entered disabled state
[   36.618941][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   36.628074][ T4221] 8021q: adding VLAN 0 to HW filter on device team0
[   36.633717][ T1510] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   36.636187][ T1510] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.638005][ T1510] bridge0: port 1(bridge_slave_0) entered forwarding state
[   36.644047][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   36.646507][   T24] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.648604][   T24] bridge0: port 2(bridge_slave_1) entered forwarding state
[   36.660979][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   36.665228][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   36.673334][ T1510] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   36.675915][ T1510] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   36.681966][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   36.686996][ T4221] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   36.699355][ T1510] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   36.701361][ T1510] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   36.711642][ T4221] 8021q: adding VLAN 0 to HW filter on device batadv0
[   36.727791][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   36.736497][ T1510] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   36.739029][ T1510] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   36.741428][ T1510] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   36.746893][ T4221] device veth0_vlan entered promiscuous mode
[   36.753476][ T4221] device veth1_vlan entered promiscuous mode
[   36.766634][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   36.769064][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   36.772920][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   36.777392][ T4221] device veth0_macvtap entered promiscuous mode
[   36.782789][ T4221] device veth1_macvtap entered promiscuous mode
[   36.793279][ T4221] batman_adv: batadv0: Interface activated: batadv_slave_0
[   36.795442][ T1510] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   36.798691][ T1510] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   36.805354][ T4221] batman_adv: batadv0: Interface activated: batadv_slave_1
[   36.809236][ T4221] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   36.811614][ T4221] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   36.816052][ T4221] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   36.818403][ T4221] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   36.822364][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
executing program
[   36.847167][ T4221] skb len=11601 headroom=168 headlen=11601 tailroom=4295
[   36.847167][ T4221] mac=(168,0) net=(168,20) trans=188
[   36.847167][ T4221] shinfo(txflags=0 nr_frags=0 gso(size=0 type=0 segs=0))
[   36.847167][ T4221] csum(0x2d0e2df9 ip_summed=3 complete_sw=0 valid=0 level=0)
[   36.847167][ T4221] hash(0x0 sw=0 l4=0) proto=0x0800 pkttype=0 iif=0
[   36.855838][ T4221] dev name=veth1_to_team feat=0x000061164fdd19e9
[   36.857465][ T4221] skb linear:   00000000: 45 02 2d 51 57 b4 00 00 0f 2f 86 92 ac 14 14 20
[   36.859712][ T4221] skb linear:   00000010: e0 00 00 01 00 00 08 00 bd 0b 2d 39 10 82 0c 52
[   36.861952][ T4221] skb linear:   00000020: 0f 06 60 11 fd fe 4b 88 94 30 5a f7 9f 6b 4c 4b
[   36.864231][ T4221] skb linear:   00000030: 95 10 1c 59 88 25 f8 01 00 e3 c0 63 76 c3 30 76
[   36.866383][ T4221] skb linear:   00000040: a1 67 d5 02 61 a6 7a 53 a0 a7 d8 4b f8 a4 a6 99
[   36.868515][ T4221] skb linear:   00000050: 9e 42 ac 8e 3b 20 2f 76 af 00 00 00 50 48 00 00
[   36.870742][ T4221] skb linear:   00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   36.872952][ T4221] skb linear:   00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   36.875100][ T4221] skb linear:   00000080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   36.877332][ T4221] skb linear:   00000090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   36.879468][ T4221] skb linear:   000000a0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   36.881649][ T4221] skb linear:   000000b0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   36.883920][ T4221] skb linear:   000000c0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   36.886122][ T4221] skb linear:   000000d0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   36.888313][ T4221] skb linear:   000000e0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   36.890448][ T4221] skb linear:   000000f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   36.892728][ T4221] skb linear:   00000100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   36.894929][ T4221] skb linear:   00000110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   36.897137][ T4221] skb linear:   00000120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   36.899426][ T4221] ------------[ cut here ]------------
[   36.900899][ T4221] offset (11601) >= skb_headlen() (11601)
[   36.903008][ T4221] WARNING: CPU: 0 PID: 4221 at net/core/dev.c:3305 skb_checksum_help+0x55c/0x64c
[   36.905315][ T4221] Modules linked in:
[   36.906325][ T4221] CPU: 0 PID: 4221 Comm: syz-executor452 Not tainted 6.1.83-syzkaller #0
[   36.908434][ T4221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[   36.910596][ T4221] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[   36.912028][ T4221] pc : skb_checksum_help+0x55c/0x64c
[   36.913014][ T4221] lr : skb_checksum_help+0x558/0x64c
[   36.913994][ T4221] sp : ffff80001dd56aa0
[   36.914909][ T4221] x29: ffff80001dd56ac0 x28: 1fffe0001b394cd8 x27: dfff800000000000
[   36.916993][ T4221] x26: 0000000000002d51 x25: 0000000000002d51 x24: 0000000000002d51
[   36.919096][ T4221] x23: ffff0000d9ca6718 x22: ffff0000d9ca66b0 x21: ffff0000d9ca6640
[   36.921304][ T4221] x20: 00000000ffffffea x19: 0000000000002d51 x18: ffff80001dd55e20
[   36.923381][ T4221] x17: 0000000000000000 x16: ffff80001209f800 x15: 0000000000000000
[   36.925524][ T4221] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001
[   36.927679][ T4221] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 3bf22d4fe57dee00
[   36.929795][ T4221] x8 : 3bf22d4fe57dee00 x7 : 0000000000000001 x6 : 0000000000000001
[   36.931860][ T4221] x5 : ffff80001dd56398 x4 : ffff800015922ae0 x3 : ffff80000834d8e0
[   36.933928][ T4221] x2 : 0000000000000001 x1 : 0000000100000200 x0 : 0000000000000000
[   36.935886][ T4221] Call trace:
[   36.936760][ T4221]  skb_checksum_help+0x55c/0x64c
[   36.938070][ T4221]  ip_do_fragment+0x1bc/0x1b14
[   36.939276][ T4221]  ip_fragment+0x11c/0x308
[   36.940399][ T4221]  __ip_finish_output+0x280/0x458
[   36.941796][ T4221]  ip_finish_output+0x40/0x268
[   36.943033][ T4221]  ip_mc_output+0x56c/0x780
[   36.944235][ T4221]  ip_local_out+0x120/0x160
[   36.945422][ T4221]  iptunnel_xmit+0x40c/0x8ec
[   36.946605][ T4221]  ip_tunnel_xmit+0x19a0/0x28bc
[   36.947854][ T4221]  ipgre_xmit+0x68c/0xa18
[   36.949032][ T4221]  dev_hard_start_xmit+0x25c/0x9a4
[   36.950402][ T4221]  __dev_queue_xmit+0x186c/0x38d8
[   36.951733][ T4221]  dev_queue_xmit+0x24/0x34
[   36.952910][ T4221]  packet_sendmsg+0x36f0/0x4cd8
[   36.954219][ T4221]  ____sys_sendmsg+0x55c/0x848
[   36.955483][ T4221]  __sys_sendmsg+0x26c/0x33c
[   36.956685][ T4221]  __arm64_sys_sendmsg+0x80/0x94
[   36.957969][ T4221]  invoke_syscall+0x98/0x2c0
[   36.959172][ T4221]  el0_svc_common+0x138/0x258
[   36.960375][ T4221]  do_el0_svc+0x64/0x218
[   36.961558][ T4221]  el0_svc+0x58/0x168
[   36.962618][ T4221]  el0t_64_sync_handler+0x84/0xf0
[   36.963918][ T4221]  el0t_64_sync+0x18c/0x190
[   36.965110][ T4221] irq event stamp: 129669
[   36.966261][ T4221] hardirqs last  enabled at (129668): [<ffff800008342cc0>] __up_console_sem+0xb4/0x100
[   36.968759][ T4221] hardirqs last disabled at (129669): [<ffff80001214d10c>] el1_dbg+0x24/0x80
[   36.971142][ T4221] softirqs last  enabled at (129248): [<ffff8000103c18a4>] release_sock+0x178/0x1cc
[   36.973562][ T4221] softirqs last disabled at (129362): [<ffff800010444570>] local_bh_disable+0x10/0x34
[   36.975998][ T4221] ---[ end trace 0000000000000000 ]---