no interfaces have a carrier forked to background, child pid 3173 [ 22.744131][ T3174] 8021q: adding VLAN 0 to HW filter on device bond0 [ 22.755093][ T3174] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller Warning: Permanently added '10.128.10.48' (ECDSA) to the list of known hosts. syzkaller login: [ 38.321107][ T3595] chnl_net:caif_netlink_parms(): no params data found [ 38.357365][ T3595] bridge0: port 1(bridge_slave_0) entered blocking state [ 38.364948][ T3595] bridge0: port 1(bridge_slave_0) entered disabled state [ 38.372703][ T3595] device bridge_slave_0 entered promiscuous mode [ 38.381034][ T3595] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.388282][ T3595] bridge0: port 2(bridge_slave_1) entered disabled state [ 38.395807][ T3595] device bridge_slave_1 entered promiscuous mode [ 38.413837][ T3595] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 38.424795][ T3595] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 38.444993][ T3595] team0: Port device team_slave_0 added [ 38.452099][ T3595] team0: Port device team_slave_1 added [ 38.468763][ T3595] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 38.475865][ T3595] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 38.502123][ T3595] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 38.514641][ T3595] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 38.521697][ T3595] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 38.547792][ T3595] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 38.571889][ T3595] device hsr_slave_0 entered promiscuous mode [ 38.578918][ T3595] device hsr_slave_1 entered promiscuous mode [ 38.651183][ T3595] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 38.662594][ T3595] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 38.672052][ T3595] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 38.681187][ T3595] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 38.701299][ T3595] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.708566][ T3595] bridge0: port 2(bridge_slave_1) entered forwarding state [ 38.716356][ T3595] bridge0: port 1(bridge_slave_0) entered blocking state [ 38.723516][ T3595] bridge0: port 1(bridge_slave_0) entered forwarding state [ 38.762411][ T3595] 8021q: adding VLAN 0 to HW filter on device bond0 [ 38.774714][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 38.784440][ T7] bridge0: port 1(bridge_slave_0) entered disabled state [ 38.793451][ T7] bridge0: port 2(bridge_slave_1) entered disabled state [ 38.802746][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 38.814638][ T3595] 8021q: adding VLAN 0 to HW filter on device team0 [ 38.824648][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 38.833451][ T25] bridge0: port 1(bridge_slave_0) entered blocking state [ 38.840564][ T25] bridge0: port 1(bridge_slave_0) entered forwarding state [ 38.851962][ T3601] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 38.860346][ T3601] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.867368][ T3601] bridge0: port 2(bridge_slave_1) entered forwarding state [ 38.889400][ T3601] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 38.898093][ T3601] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 38.906381][ T3601] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 38.914966][ T3601] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 38.926418][ T3602] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 38.935998][ T3595] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 38.951327][ T3602] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 38.959057][ T3602] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 38.972321][ T3595] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 39.087471][ T3595] device veth0_vlan entered promiscuous mode [ 39.094608][ T3601] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 39.103853][ T3601] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 39.113773][ T3601] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 39.122014][ T3601] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 39.134120][ T3595] device veth1_vlan entered promiscuous mode [ 39.150326][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 39.158752][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 39.169072][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 39.179869][ T3595] device veth0_macvtap entered promiscuous mode [ 39.189192][ T3595] device veth1_macvtap entered promiscuous mode [ 39.202506][ T3595] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 39.210168][ T3601] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 39.219687][ T3601] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 39.231162][ T3595] batman_adv: batadv0: Interface activated: batadv_slave_1 executing program [ 39.239499][ T3601] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 39.250415][ T3595] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.259720][ T3595] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.268705][ T3595] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.277390][ T3595] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.392506][ T10] general protection fault, probably for non-canonical address 0xdffffc0000000001: 0000 [#1] PREEMPT SMP KASAN [ 39.405050][ T10] KASAN: null-ptr-deref in range [0x0000000000000008-0x000000000000000f] [ 39.413537][ T10] CPU: 0 PID: 10 Comm: kworker/u4:1 Not tainted 5.17.0-rc6-syzkaller-00066-g5859a2b19911 #0 [ 39.423582][ T10] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 39.433618][ T10] Workqueue: pencrypt_parallel padata_parallel_worker [ 39.440388][ T10] RIP: 0010:scatterwalk_copychunks+0x4db/0x6a0 [ 39.446536][ T10] Code: ff df 80 3c 02 00 0f 85 b4 01 00 00 49 8d 44 24 08 4d 89 26 48 89 c2 48 89 44 24 18 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <0f> b6 04 02 84 c0 74 08 3c 03 0f 8e 77 01 00 00 48 b8 00 00 00 00 [ 39.466125][ T10] RSP: 0018:ffffc90000cf7628 EFLAGS: 00010212 [ 39.472171][ T10] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 39.480297][ T10] RDX: 0000000000000001 RSI: ffffffff83dc6bc0 RDI: 0000000000000003 [ 39.488336][ T10] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffffff8ffc4a1f [ 39.496302][ T10] R10: ffffffff83dc6b71 R11: 0000000000000000 R12: 0000000000000000 [ 39.504257][ T10] R13: 0000000000000001 R14: ffffc90000cf7888 R15: 0000000000000000 [ 39.512211][ T10] FS: 0000000000000000(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000 [ 39.521136][ T10] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 39.527704][ T10] CR2: 00007f859e8a8300 CR3: 000000007e80f000 CR4: 0000000000350ef0 [ 39.535659][ T10] Call Trace: [ 39.538916][ T10] [ 39.541855][ T10] skcipher_walk_next+0x7af/0x1660 [ 39.546965][ T10] skcipher_walk_first+0xf8/0x3c0 [ 39.551979][ T10] skcipher_walk_aead_common+0x7a5/0xbc0 [ 39.557604][ T10] gcmaes_crypt_by_sg+0x31d/0x890 [ 39.562615][ T10] ? aes_set_key+0x30/0x30 [ 39.567010][ T10] ? mark_lock.part.0+0xee/0x1910 [ 39.572025][ T10] ? ret_from_fork+0x1f/0x30 [ 39.576602][ T10] ? arch_stack_walk+0x7d/0xe0 [ 39.581356][ T10] ? lock_chain_count+0x20/0x20 [ 39.586284][ T10] ? add_lock_to_list.constprop.0+0x185/0x370 [ 39.592334][ T10] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 39.598391][ T10] ? __lock_acquire+0x1666/0x56c0 [ 39.603411][ T10] gcmaes_encrypt+0xe2/0x230 [ 39.607992][ T10] ? helper_rfc4106_decrypt+0x370/0x370 [ 39.613523][ T10] generic_gcmaes_encrypt+0x12e/0x190 [ 39.618878][ T10] ? gcmaes_encrypt+0x230/0x230 [ 39.623988][ T10] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 39.630344][ T10] crypto_aead_encrypt+0xaa/0xf0 [ 39.635565][ T10] crypto_aead_encrypt+0xaa/0xf0 [ 39.640490][ T10] pcrypt_aead_enc+0x13/0x70 [ 39.645071][ T10] padata_parallel_worker+0x60/0xb0 [ 39.650251][ T10] process_one_work+0x9ac/0x1650 [ 39.655175][ T10] ? pwq_dec_nr_in_flight+0x2a0/0x2a0 [ 39.660530][ T10] ? rwlock_bug.part.0+0x90/0x90 [ 39.665453][ T10] ? _raw_spin_lock_irq+0x41/0x50 [ 39.670480][ T10] worker_thread+0x657/0x1110 [ 39.675143][ T10] ? process_one_work+0x1650/0x1650 [ 39.680353][ T10] kthread+0x2e9/0x3a0 [ 39.684410][ T10] ? kthread_complete_and_exit+0x40/0x40 [ 39.690031][ T10] ret_from_fork+0x1f/0x30 [ 39.694441][ T10] [ 39.697462][ T10] Modules linked in: [ 39.701864][ T10] ---[ end trace 0000000000000000 ]--- [ 39.707396][ T10] RIP: 0010:scatterwalk_copychunks+0x4db/0x6a0 [ 39.713619][ T10] Code: ff df 80 3c 02 00 0f 85 b4 01 00 00 49 8d 44 24 08 4d 89 26 48 89 c2 48 89 44 24 18 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <0f> b6 04 02 84 c0 74 08 3c 03 0f 8e 77 01 00 00 48 b8 00 00 00 00 [ 39.733282][ T10] RSP: 0018:ffffc90000cf7628 EFLAGS: 00010212 [ 39.739631][ T10] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 39.747644][ T10] RDX: 0000000000000001 RSI: ffffffff83dc6bc0 RDI: 0000000000000003 [ 39.755625][ T10] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffffff8ffc4a1f [ 39.763634][ T10] R10: ffffffff83dc6b71 R11: 0000000000000000 R12: 0000000000000000 [ 39.771626][ T10] R13: 0000000000000001 R14: ffffc90000cf7888 R15: 0000000000000000 [ 39.779620][ T10] FS: 0000000000000000(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000 [ 39.788578][ T10] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 39.795147][ T10] CR2: 00007f859e8a8300 CR3: 000000000b88e000 CR4: 0000000000350ef0 [ 39.803177][ T10] Kernel panic - not syncing: Fatal exception in interrupt [ 39.811061][ T10] Kernel Offset: disabled [ 39.815405][ T10] Rebooting in 86400 seconds..