no interfaces have a carrier
forked to background, child pid 3173
[   21.597322][ T3174] 8021q: adding VLAN 0 to HW filter on device bond0
[   21.606775][ T3174] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
syzkaller login: [   75.786662][  T916] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.1.115' (ECDSA) to the list of known hosts.
[  491.688819][ T3624] chnl_net:caif_netlink_parms(): no params data found
[  491.725554][ T3624] bridge0: port 1(bridge_slave_0) entered blocking state
[  491.732894][ T3624] bridge0: port 1(bridge_slave_0) entered disabled state
[  491.740730][ T3624] device bridge_slave_0 entered promiscuous mode
[  491.749152][ T3624] bridge0: port 2(bridge_slave_1) entered blocking state
[  491.756397][ T3624] bridge0: port 2(bridge_slave_1) entered disabled state
[  491.764320][ T3624] device bridge_slave_1 entered promiscuous mode
[  491.781390][ T3624] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  491.792031][ T3624] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  491.812001][ T3624] team0: Port device team_slave_0 added
[  491.818890][ T3624] team0: Port device team_slave_1 added
[  491.833579][ T3624] batman_adv: batadv0: Adding interface: batadv_slave_0
[  491.840627][ T3624] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  491.867158][ T3624] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  491.880287][ T3624] batman_adv: batadv0: Adding interface: batadv_slave_1
[  491.887282][ T3624] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  491.913275][ T3624] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  491.936342][ T3624] device hsr_slave_0 entered promiscuous mode
[  491.942928][ T3624] device hsr_slave_1 entered promiscuous mode
[  492.010620][ T3624] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  492.020951][ T3624] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  492.029443][ T3624] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  492.038585][ T3624] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  492.057294][ T3624] bridge0: port 2(bridge_slave_1) entered blocking state
[  492.064443][ T3624] bridge0: port 2(bridge_slave_1) entered forwarding state
[  492.072035][ T3624] bridge0: port 1(bridge_slave_0) entered blocking state
[  492.079231][ T3624] bridge0: port 1(bridge_slave_0) entered forwarding state
[  492.114504][ T3624] 8021q: adding VLAN 0 to HW filter on device bond0
[  492.128282][ T3629] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  492.137415][ T3629] bridge0: port 1(bridge_slave_0) entered disabled state
[  492.146198][ T3629] bridge0: port 2(bridge_slave_1) entered disabled state
[  492.153946][ T3629] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  492.167273][ T3624] 8021q: adding VLAN 0 to HW filter on device team0
[  492.185658][ T3635] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  492.194976][ T3635] bridge0: port 1(bridge_slave_0) entered blocking state
[  492.202075][ T3635] bridge0: port 1(bridge_slave_0) entered forwarding state
[  492.210578][ T3635] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  492.220036][ T3635] bridge0: port 2(bridge_slave_1) entered blocking state
[  492.227118][ T3635] bridge0: port 2(bridge_slave_1) entered forwarding state
[  492.235346][ T3635] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  492.246517][ T3635] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  492.254475][ T3635] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  492.267290][ T3624] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  492.280211][ T3624] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  492.292366][ T3635] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  492.300755][ T3635] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  492.309178][ T3635] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  492.326439][ T3624] 8021q: adding VLAN 0 to HW filter on device batadv0
[  492.333429][ T3629] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  492.341018][ T3629] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  492.451123][ T3624] device veth0_vlan entered promiscuous mode
[  492.458286][ T3629] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  492.467147][ T3629] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  492.475794][ T3629] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  492.483383][ T3629] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  492.497293][ T3624] device veth1_vlan entered promiscuous mode
[  492.512613][ T3624] device veth0_macvtap entered promiscuous mode
[  492.520422][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  492.528502][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  492.536973][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  492.545927][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  492.556723][ T3624] device veth1_macvtap entered promiscuous mode
[  492.570048][ T3624] batman_adv: batadv0: Interface activated: batadv_slave_0
[  492.577528][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  492.590115][ T3624] batman_adv: batadv0: Interface activated: batadv_slave_1
executing program
[  492.597680][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  492.608402][ T3624] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  492.617825][ T3624] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  492.627409][ T3624] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  492.636657][ T3624] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  492.669555][ T3643] netlink: 'syz-executor297': attribute type 4 has an invalid length.
[  715.784263][   T27] INFO: task syz-executor297:3643 blocked for more than 143 seconds.
[  715.792501][   T27]       Not tainted 5.17.0-rc6-syzkaller-00046-g719fce7539cd #0
[  715.801345][   T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  715.810093][   T27] task:syz-executor297 state:D stack:23448 pid: 3643 ppid:  3624 flags:0x00000004
[  715.820460][   T27] Call Trace:
[  715.823734][   T27]  <TASK>
[  715.826689][   T27]  __schedule+0xa94/0x4910
[  715.831125][   T27]  ? io_schedule_timeout+0x180/0x180
[  715.837489][   T27]  schedule+0xd2/0x260
[  715.841562][   T27]  schedule_timeout+0x1db/0x2a0
[  715.846453][   T27]  ? usleep_range_state+0x1b0/0x1b0
[  715.851635][   T27]  ? __wait_for_common+0x2a6/0x360
[  715.857871][   T27]  ? mark_held_locks+0x9f/0xe0
[  715.862638][   T27]  ? rwlock_bug.part.0+0x90/0x90
[  715.867607][   T27]  ? _raw_spin_unlock_irq+0x1f/0x40
[  715.872807][   T27]  __wait_for_common+0x2af/0x360
[  715.877952][   T27]  ? usleep_range_state+0x1b0/0x1b0
[  715.883186][   T27]  ? __flush_work+0x53e/0xb10
[  715.887940][   T27]  ? bit_wait_io_timeout+0x160/0x160
[  715.893234][   T27]  ? _raw_spin_unlock_irq+0x1f/0x40
[  715.898549][   T27]  __flush_work+0x56c/0xb10
[  715.903049][   T27]  ? queue_delayed_work_on+0x120/0x120
[  715.908921][   T27]  ? kernel_text_address+0x39/0x80
[  715.914041][   T27]  ? flush_workqueue_prep_pwqs+0x4f0/0x4f0
[  715.920250][   T27]  ? mark_held_locks+0x9f/0xe0
[  715.925084][   T27]  __cancel_work_timer+0x3f9/0x570
[  715.930202][   T27]  ? try_to_grab_pending+0xd0/0xd0
[  715.935355][   T27]  ? lock_release+0x720/0x720
[  715.940033][   T27]  tls_sk_proto_close+0x4a7/0xaf0
[  715.945119][   T27]  ? wait_on_pending_writer+0x430/0x430
[  715.950686][   T27]  ? ip_mc_drop_socket+0x16/0x260
[  715.955827][   T27]  inet_release+0x12e/0x280
[  715.960332][   T27]  inet6_release+0x4c/0x70
[  715.964843][   T27]  __sock_release+0xcd/0x280
[  715.969573][   T27]  sock_close+0x18/0x20
[  715.973726][   T27]  __fput+0x286/0x9f0
[  715.977927][   T27]  ? __sock_release+0x280/0x280
[  715.982780][   T27]  task_work_run+0xdd/0x1a0
[  715.987366][   T27]  exit_to_user_mode_prepare+0x27e/0x290
[  715.993182][   T27]  syscall_exit_to_user_mode+0x19/0x60
[  715.998675][   T27]  do_syscall_64+0x42/0xb0
[  716.003175][   T27]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  716.009136][   T27] RIP: 0033:0x7f625c0ba753
[  716.013541][   T27] RSP: 002b:00007ffeda728478 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  716.022738][   T27] RAX: 0000000000000000 RBX: 0000000000000006 RCX: 00007f625c0ba753
[  716.030769][   T27] RDX: fffffffffffffe60 RSI: 00000000200005c0 RDI: 0000000000000005
[  716.038872][   T27] RBP: 0000000000000000 R08: 0000000000000000 R09: fffffffffffffe60
[  716.046874][   T27] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffeda728490
[  716.054969][   T27] R13: 00000000000f4240 R14: 0000000000000000 R15: 0000000000000000
[  716.062936][   T27]  </TASK>
[  716.065981][   T27] 
[  716.065981][   T27] Showing all locks held in the system:
[  716.073686][   T27] 1 lock held by khungtaskd/27:
[  716.078556][   T27]  #0: ffffffff8bb845e0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260
[  716.088477][   T27] 2 locks held by getty/3274:
[  716.093128][   T27]  #0: ffff888023114098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x22/0x80
[  716.102892][   T27]  #1: ffffc90002b632e8 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xcf0/0x1230
[  716.113044][   T27] 3 locks held by kworker/0:3/3634:
[  716.118256][   T27]  #0: ffff888010c64d38 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x890/0x1650
[  716.128998][   T27]  #1: ffffc900027efdb8 ((work_completion)(&(&sw_ctx_tx->tx_work.work)->work)){+.+.}-{0:0}, at: process_one_work+0x8c4/0x1650
[  716.142089][   T27]  #2: ffff88801897b8d8 (&ctx->tx_lock){+.+.}-{3:3}, at: tx_work_handler+0x127/0x190
[  716.151641][   T27] 1 lock held by syz-executor297/3643:
[  716.157119][   T27]  #0: ffff88807339a610 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: __sock_release+0x86/0x280
[  716.167717][   T27] 
[  716.170034][   T27] =============================================
[  716.170034][   T27] 
[  716.178583][   T27] NMI backtrace for cpu 1
[  716.182908][   T27] CPU: 1 PID: 27 Comm: khungtaskd Not tainted 5.17.0-rc6-syzkaller-00046-g719fce7539cd #0
[  716.192772][   T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  716.202818][   T27] Call Trace:
[  716.206072][   T27]  <TASK>
[  716.208978][   T27]  dump_stack_lvl+0xcd/0x134
[  716.213545][   T27]  nmi_cpu_backtrace.cold+0x47/0x144
[  716.218809][   T27]  ? lapic_can_unplug_cpu+0x80/0x80
[  716.223981][   T27]  nmi_trigger_cpumask_backtrace+0x1e6/0x230
[  716.229937][   T27]  watchdog+0xc1d/0xf50
[  716.234077][   T27]  ? proc_dohung_task_timeout_secs+0x80/0x80
[  716.240046][   T27]  kthread+0x2e9/0x3a0
[  716.244094][   T27]  ? kthread_complete_and_exit+0x40/0x40
[  716.249724][   T27]  ret_from_fork+0x1f/0x30
[  716.254121][   T27]  </TASK>
[  716.257237][   T27] Sending NMI from CPU 1 to CPUs 0:
[  716.262467][    C0] NMI backtrace for cpu 0 skipped: idling at acpi_idle_do_entry+0x1c6/0x250
[  716.263801][   T27] Kernel panic - not syncing: hung_task: blocked tasks
[  716.279480][   T27] CPU: 1 PID: 27 Comm: khungtaskd Not tainted 5.17.0-rc6-syzkaller-00046-g719fce7539cd #0
[  716.289366][   T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  716.299410][   T27] Call Trace:
[  716.302667][   T27]  <TASK>
[  716.305577][   T27]  dump_stack_lvl+0xcd/0x134
[  716.310150][   T27]  panic+0x2b0/0x6dd
[  716.314023][   T27]  ? __warn_printk+0xf3/0xf3
[  716.318594][   T27]  ? lapic_can_unplug_cpu+0x80/0x80
[  716.323867][   T27]  ? preempt_schedule_thunk+0x16/0x18
[  716.329217][   T27]  ? nmi_trigger_cpumask_backtrace+0x1c9/0x230
[  716.335355][   T27]  ? watchdog.cold+0x130/0x158
[  716.340115][   T27]  watchdog.cold+0x141/0x158
[  716.344699][   T27]  ? proc_dohung_task_timeout_secs+0x80/0x80
[  716.350663][   T27]  kthread+0x2e9/0x3a0
[  716.354724][   T27]  ? kthread_complete_and_exit+0x40/0x40
[  716.360449][   T27]  ret_from_fork+0x1f/0x30
[  716.364854][   T27]  </TASK>
[  716.368490][   T27] Kernel Offset: disabled
[  716.372818][   T27] Rebooting in 86400 seconds..