[   14.860010][ T5644] 8021q: adding VLAN 0 to HW filter on device bond0
[   14.864298][ T5644] eql: remember to turn off Van-Jacobson compression on your slave devices
[   14.912944][  T539] gvnic 0000:00:00.0 enp0s0: Device link is up.
[   14.918840][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): enp0s0: link becomes ready
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.1.143' (ECDSA) to the list of known hosts.
syzkaller login: [   34.686744][ T5969] chnl_net:caif_netlink_parms(): no params data found
[   34.715004][ T5969] bridge0: port 1(bridge_slave_0) entered blocking state
[   34.716625][ T5969] bridge0: port 1(bridge_slave_0) entered disabled state
[   34.718367][ T5969] bridge_slave_0: entered allmulticast mode
[   34.720130][ T5969] bridge_slave_0: entered promiscuous mode
[   34.723466][ T5969] bridge0: port 2(bridge_slave_1) entered blocking state
[   34.724991][ T5969] bridge0: port 2(bridge_slave_1) entered disabled state
[   34.726548][ T5969] bridge_slave_1: entered allmulticast mode
[   34.728239][ T5969] bridge_slave_1: entered promiscuous mode
[   34.740477][ T5969] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   34.743957][ T5969] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   34.755119][ T5969] team0: Port device team_slave_0 added
[   34.758268][ T5969] team0: Port device team_slave_1 added
[   34.768052][ T5969] batman_adv: batadv0: Adding interface: batadv_slave_0
[   34.769522][ T5969] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   34.775274][ T5969] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   34.779046][ T5969] batman_adv: batadv0: Adding interface: batadv_slave_1
[   34.780521][ T5969] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   34.786215][ T5969] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   34.853284][ T5969] hsr_slave_0: entered promiscuous mode
[   34.891789][ T5969] hsr_slave_1: entered promiscuous mode
[   35.007570][ T5969] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   35.053685][ T5969] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   35.104090][ T5969] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   35.143187][ T5969] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   35.196192][ T5969] bridge0: port 2(bridge_slave_1) entered blocking state
[   35.197727][ T5969] bridge0: port 2(bridge_slave_1) entered forwarding state
[   35.199586][ T5969] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.201200][ T5969] bridge0: port 1(bridge_slave_0) entered forwarding state
[   35.230812][ T5969] 8021q: adding VLAN 0 to HW filter on device bond0
[   35.238565][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   35.242082][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[   35.244734][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[   35.246979][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   35.252860][ T5969] 8021q: adding VLAN 0 to HW filter on device team0
[   35.258032][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   35.260018][   T24] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.261571][   T24] bridge0: port 1(bridge_slave_0) entered forwarding state
[   35.267225][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   35.269356][   T24] bridge0: port 2(bridge_slave_1) entered blocking state
[   35.270816][   T24] bridge0: port 2(bridge_slave_1) entered forwarding state
[   35.280839][ T5979] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   35.283287][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   35.287903][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   35.295113][ T5979] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   35.297026][ T5979] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   35.300669][ T5969] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   35.310504][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   35.312175][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   35.317293][ T5969] 8021q: adding VLAN 0 to HW filter on device batadv0
[   35.328386][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   35.340081][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   35.343255][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   35.345029][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   35.347937][ T5969] veth0_vlan: entered promiscuous mode
[   35.352825][ T5969] veth1_vlan: entered promiscuous mode
[   35.362829][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   35.364765][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   35.366898][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   35.370730][ T5969] veth0_macvtap: entered promiscuous mode
[   35.375636][ T5969] veth1_macvtap: entered promiscuous mode
[   35.385691][ T5969] batman_adv: batadv0: Interface activated: batadv_slave_0
[   35.387386][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   35.390159][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   35.394223][ T5969] batman_adv: batadv0: Interface activated: batadv_slave_1
[   35.397259][ T5969] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   35.399030][ T5969] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   35.400860][ T5969] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   35.404403][ T5969] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   35.407259][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
executing program
[   35.434874][ T5969] ------------[ cut here ]------------
[   35.436031][ T5969] WARNING: CPU: 1 PID: 5969 at net/core/dev.c:3268 skb_checksum_help+0x344/0x4f0
[   35.437821][ T5969] Modules linked in:
[   35.438640][ T5969] CPU: 1 PID: 5969 Comm: syz-executor199 Not tainted 6.4.0-rc4-syzkaller-g3bb1a3e1674b #0
[   35.440644][ T5969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
[   35.442677][ T5969] pstate: 20400005 (nzCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[   35.444294][ T5969] pc : skb_checksum_help+0x344/0x4f0
[   35.445487][ T5969] lr : skb_checksum_help+0x230/0x4f0
[   35.446608][ T5969] sp : ffff800096e76ae0
[   35.447504][ T5969] x29: ffff800096e76b00 x28: 0000000000000586 x27: 000000000000061f
[   35.449157][ T5969] x26: dfff800000000000 x25: 0000000000000621 x24: 0000000000005653
[   35.450888][ T5969] x23: 0000000000000586 x22: ffff0000dbf31718 x21: 0000000000000519
[   35.452646][ T5969] x20: ffff0000dbf31640 x19: ffff800090b04000 x18: ffff0001b4260028
[   35.454270][ T5969] x17: ffff800088df7210 x16: ffff80008050ac30 x15: 0000000000000000
[   35.455949][ T5969] x14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000
[   35.457648][ T5969] x11: 0000000000000200 x10: 0000000000000000 x9 : 0000000000000000
[   35.459318][ T5969] x8 : ffff0000c40e8000 x7 : ffff80008864bb44 x6 : ffff80008864bafc
[   35.461035][ T5969] x5 : ffff800096e76a70 x4 : ffff800096e76a60 x3 : 000000000000006d
[   35.462663][ T5969] x2 : 00000000000004fa x1 : 0000000000000519 x0 : 0000000000000621
[   35.464322][ T5969] Call trace:
[   35.465006][ T5969]  skb_checksum_help+0x344/0x4f0
[   35.466028][ T5969]  ip_do_fragment+0x1cc/0x1b38
[   35.466998][ T5969]  ip_fragment+0x11c/0x304
[   35.467950][ T5969]  __ip_finish_output+0x280/0x458
[   35.469041][ T5969]  ip_finish_output+0x40/0x268
[   35.470012][ T5969]  ip_output+0x330/0x49c
[   35.470901][ T5969]  ip_local_out+0x120/0x160
[   35.471836][ T5969]  iptunnel_xmit+0x424/0x8dc
[   35.472813][ T5969]  ip_tunnel_xmit+0x16ac/0x2634
[   35.473858][ T5969]  ipgre_xmit+0x5d4/0x8e0
[   35.474791][ T5969]  dev_hard_start_xmit+0x240/0x8ac
[   35.475851][ T5969]  __dev_queue_xmit+0x167c/0x3318
[   35.476900][ T5969]  packet_xmit+0x6c/0x318
[   35.477801][ T5969]  packet_sendmsg+0x376c/0x4c98
[   35.478844][ T5969]  ____sys_sendmsg+0x568/0x81c
[   35.479775][ T5969]  __sys_sendmsg+0x26c/0x33c
[   35.480740][ T5969]  __arm64_sys_sendmsg+0x80/0x94
[   35.481769][ T5969]  invoke_syscall+0x98/0x2c0
[   35.482752][ T5969]  el0_svc_common+0x138/0x244
[   35.483765][ T5969]  do_el0_svc+0x64/0x198
[   35.484675][ T5969]  el0_svc+0x4c/0x160
[   35.485537][ T5969]  el0t_64_sync_handler+0x84/0xfc
[   35.486610][ T5969]  el0t_64_sync+0x190/0x194
[   35.487612][ T5969] irq event stamp: 130801
[   35.488517][ T5969] hardirqs last  enabled at (130800): [<ffff800080996c10>] kasan_quarantine_put+0x1a0/0x1c8
[   35.490713][ T5969] hardirqs last disabled at (130801): [<ffff80008a42f9c4>] el1_dbg+0x24/0x80
[   35.492496][ T5969] softirqs last  enabled at (130448): [<ffff80008861d544>] release_sock+0x15c/0x1b0
[   35.494491][ T5969] softirqs last disabled at (130482): [<ffff8000886a1ec4>] local_bh_disable+0x10/0x34
[   35.496496][ T5969] ---[ end trace 0000000000000000 ]---
[   35.497675][ T5969] skb len=1414 headroom=168 headlen=1305 tailroom=0
[   35.497675][ T5969] mac=(168,0) net=(168,20) trans=188
[   35.497675][ T5969] shinfo(txflags=0 nr_frags=1 gso(size=0 type=0 segs=0))
[   35.497675][ T5969] csum(0x60000c7 ip_summed=3 complete_sw=0 valid=0 level=0)
[   35.497675][ T5969] hash(0x0 sw=0 l4=0) proto=0x0800 pkttype=0 iif=0
[   35.504326][ T5969] dev name=veth1_to_team feat=0x000061164fdd19e9
[   35.505662][ T5969] sk family=17 type=3 proto=0
[   35.506601][ T5969] skb linear:   00000000: 45 02 05 86 6f 5e 00 00 0f 2f a1 73 ac 14 14 20
[   35.508356][ T5969] skb linear:   00000010: ef 06 e6 3a 00 00 08 00 bd 0f 05 6e 10 89 0c 52
[   35.510076][ T5969] skb linear:   00000020: 0f 06 2c 69 fd fe 4b 88 94 30 5a f7 9f 6b 4c 11
[   35.511906][ T5969] skb linear:   00000030: 95 10 da 9f e3 c0 63 76 c3 30 76 a1 67 d5 02 61
[   35.513578][ T5969] skb linear:   00000040: a6 7a d2 9b 30 8c de 52 1a a0 c3 85 c7 3f ed 0c
[   35.515278][ T5969] skb linear:   00000050: 3a c8 16 89 86 6e 16 bd bd 00 00 00 d5 8f 00 00
[   35.517086][ T5969] skb linear:   00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   35.518879][ T5969] skb linear:   00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   35.520603][ T5969] skb linear:   00000080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   35.522388][ T5969] skb linear:   00000090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   35.524040][ T5969] skb linear:   000000a0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   35.525873][ T5969] skb linear:   000000b0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   35.527592][ T5969] skb linear:   000000c0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   35.529335][ T5969] skb linear:   000000d0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   35.531141][ T5969] skb linear:   000000e0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   35.532934][ T5969] skb linear:   000000f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   35.534683][ T5969] skb linear:   00000100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   35.536639][ T5969] skb linear:   00000110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   35.538494][ T5969] skb linear:   00000120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00