[   10.214996][ T2658] 8021q: adding VLAN 0 to HW filter on device bond0
[   10.218026][ T2658] eql: remember to turn off Van-Jacobson compression on your slave devices
[   10.246996][  T998] gvnic 0000:00:00.0 enp0s0: Device link is up.
[   10.253659][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): enp0s0: link becomes ready
Starting sshd: OK

syzkaller
syzkaller login: [   69.604583][ T1753] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.0.150' (ECDSA) to the list of known hosts.
1970/01/01 00:26:30 ignoring optional flag "sandboxArg"="0"
1970/01/01 00:26:31 parsed 1 programs
[ 1591.183829][ T3165] cgroup: Unknown subsys name 'net'
[ 1591.495663][ T3165] cgroup: Unknown subsys name 'rlimit'
1970/01/01 00:26:31 executed programs: 0
[ 1591.722268][ T3174] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1591.724896][ T3174] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1591.726914][ T3174] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1591.729140][ T3174] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1591.731196][ T3174] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1591.733099][ T3174] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1591.735928][ T3172] Bluetooth: hci0: HCI_REQ-0x0c1a
[ 1591.786354][ T3172] chnl_net:caif_netlink_parms(): no params data found
[ 1591.803719][ T3172] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1591.807267][ T3172] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1591.809554][ T3172] device bridge_slave_0 entered promiscuous mode
[ 1591.812515][ T3172] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1591.814440][ T3172] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1591.816626][ T3172] device bridge_slave_1 entered promiscuous mode
[ 1591.824723][ T3172] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1591.828136][ T3172] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1591.837321][ T3172] team0: Port device team_slave_0 added
[ 1591.839599][ T3172] team0: Port device team_slave_1 added
[ 1591.846384][ T3172] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1591.848170][ T3172] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1591.856014][ T3172] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1591.859795][ T3172] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1591.861485][ T3172] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1591.868187][ T3172] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1591.924834][ T3172] device hsr_slave_0 entered promiscuous mode
[ 1591.963995][ T3172] device hsr_slave_1 entered promiscuous mode
[ 1592.036007][ T3172] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1592.075041][ T3172] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1592.114765][ T3172] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1592.155014][ T3172] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1592.212018][ T3172] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1592.213905][ T3172] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1592.215946][ T3172] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1592.217743][ T3172] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1592.237209][ T3172] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1592.241570][ T2567] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1592.246741][ T2567] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1592.249264][ T2567] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1592.251719][ T2567] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 1592.256667][ T3172] 8021q: adding VLAN 0 to HW filter on device team0
[ 1592.262052][ T3181] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1592.264904][ T3181] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1592.266778][ T3181] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1592.268788][ T3181] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1592.270999][ T3181] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1592.272853][ T3181] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1592.283084][ T3181] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1592.285745][ T3181] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1592.288004][ T3181] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1592.290367][ T3181] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1592.294556][ T3166] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1592.297567][ T3172] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1592.354374][ T3172] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1592.364086][ T3185] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1592.366012][ T3185] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1592.368021][ T3185] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1592.373263][ T3185] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1592.375811][ T3185] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1592.378019][ T3185] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1592.380909][ T3172] device veth0_vlan entered promiscuous mode
[ 1592.384970][ T3172] device veth1_vlan entered promiscuous mode
[ 1592.392946][ T3166] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1592.395384][ T3166] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1592.397602][ T3166] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1592.400779][ T3172] device veth0_macvtap entered promiscuous mode
[ 1592.403612][ T3172] device veth1_macvtap entered promiscuous mode
[ 1592.410655][ T3172] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1592.412585][ T3185] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1592.415269][ T3185] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1592.418980][ T3172] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1592.421876][ T3172] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1592.425289][ T3172] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1592.427481][ T3172] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1592.429659][ T3172] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1592.432667][ T3166] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1592.455267][ T3147] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1592.457319][ T3147] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1592.463454][ T3181] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1592.467335][ T3190] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1592.469318][ T3190] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1592.471786][ T3181] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1593.774061][ T3174] Bluetooth: hci0: command 0x0409 tx timeout
[ 1595.844042][ T3174] Bluetooth: hci0: command 0x041b tx timeout
[ 1597.924351][ T3174] Bluetooth: hci0: command 0x040f tx timeout
[ 1600.003888][ T3174] Bluetooth: hci0: command 0x0419 tx timeout
[ 1600.484322][ T1385] ieee802154 phy0 wpan0: encryption failed: -22
[ 1600.486110][ T1385] ieee802154 phy1 wpan1: encryption failed: -22
[ 1661.924222][ T1385] ieee802154 phy0 wpan0: encryption failed: -22
[ 1661.925947][ T1385] ieee802154 phy1 wpan1: encryption failed: -22
[ 1715.203827][   T45] Bluetooth: hci0: command 0x0406 tx timeout
[ 1723.364113][ T1385] ieee802154 phy0 wpan0: encryption failed: -22
[ 1723.365937][ T1385] ieee802154 phy1 wpan1: encryption failed: -22
[ 1758.563906][   T27] INFO: task syz-executor.0:3172 blocked for more than 143 seconds.
[ 1758.566016][   T27]       Not tainted 6.1.0-rc8-syzkaller-33330-ga5541c0811a0 #0
[ 1758.567898][   T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1758.570097][   T27] task:syz-executor.0  state:D stack:0     pid:3172  ppid:1      flags:0x00000001
[ 1758.572448][   T27] Call trace:
[ 1758.573296][   T27]  __switch_to+0x180/0x298
[ 1758.574717][   T27]  __schedule+0x408/0x594
[ 1758.575805][   T27]  schedule+0x64/0xa4
[ 1758.576823][   T27]  schedule_preempt_disabled+0x18/0x2c
[ 1758.578191][   T27]  __mutex_lock_common+0x788/0xca8
[ 1758.579520][   T27]  mutex_lock_nested+0x38/0x44
[ 1758.580694][   T27]  fuse_lock_inode+0x50/0x70
[ 1758.581890][   T27]  fuse_lookup+0x74/0x274
[ 1758.583019][   T27]  __lookup_slow+0x14c/0x204
[ 1758.584233][   T27]  lookup_slow+0x44/0x68
[ 1758.585347][   T27]  link_path_walk+0x474/0x628
[ 1758.586634][   T27]  path_openat+0xb8/0x11c4
[ 1758.587722][   T27]  do_filp_open+0xdc/0x1b8
[ 1758.588825][   T27]  do_sys_openat2+0xb8/0x22c
[ 1758.589978][   T27]  __arm64_sys_openat+0xb0/0xe0
[ 1758.591232][   T27]  el0_svc_common+0x138/0x220
[ 1758.592388][   T27]  do_el0_svc+0x48/0x140
[ 1758.593464][   T27]  el0_svc+0x58/0x150
[ 1758.594507][   T27]  el0t_64_sync_handler+0x84/0xf0
[ 1758.595773][   T27]  el0t_64_sync+0x190/0x194
[ 1758.596967][   T27] INFO: task syz-executor.0:3193 blocked for more than 143 seconds.
[ 1758.598968][   T27]       Not tainted 6.1.0-rc8-syzkaller-33330-ga5541c0811a0 #0
[ 1758.600921][   T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1758.603159][   T27] task:syz-executor.0  state:D stack:0     pid:3193  ppid:3172   flags:0x00000009
[ 1758.605584][   T27] Call trace:
[ 1758.606460][   T27]  __switch_to+0x180/0x298
[ 1758.607597][   T27]  __schedule+0x408/0x594
[ 1758.608665][   T27]  schedule+0x64/0xa4
[ 1758.609666][   T27]  request_wait_answer+0x1c0/0x3a8
[ 1758.610956][   T27]  __fuse_request_send+0x1f8/0x264
[ 1758.612251][   T27]  fuse_simple_request+0x354/0x40c
[ 1758.613495][   T27]  fuse_lookup_name+0x104/0x324
[ 1758.614809][   T27]  fuse_lookup+0x90/0x274
[ 1758.615923][   T27]  __lookup_slow+0x14c/0x204
[ 1758.617084][   T27]  lookup_slow+0x44/0x68
[ 1758.618211][   T27]  link_path_walk+0x474/0x628
[ 1758.619380][   T27]  path_openat+0xb8/0x11c4
[ 1758.620447][   T27]  do_filp_open+0xdc/0x1b8
[ 1758.621543][   T27]  do_sys_openat2+0xb8/0x22c
[ 1758.622728][   T27]  __arm64_sys_openat+0xb0/0xe0
[ 1758.624021][   T27]  el0_svc_common+0x138/0x220
[ 1758.625212][   T27]  do_el0_svc+0x48/0x140
[ 1758.626319][   T27]  el0_svc+0x58/0x150
[ 1758.627355][   T27]  el0t_64_sync_handler+0x84/0xf0
[ 1758.628625][   T27]  el0t_64_sync+0x190/0x194
[ 1758.629774][   T27] 
[ 1758.629774][   T27] Showing all locks held in the system:
[ 1758.631800][   T27] 1 lock held by rcu_tasks_kthre/11:
[ 1758.633175][   T27]  #0: ffff80000d4a4768 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x3c/0x450
[ 1758.636231][   T27] 1 lock held by rcu_tasks_trace/12:
[ 1758.637579][   T27]  #0: ffff80000d4a4db8 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x3c/0x450
[ 1758.640367][   T27] 1 lock held by khungtaskd/27:
[ 1758.641574][   T27]  #0: ffff80000d4a4640 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x4/0x48
[ 1758.643976][   T27] 1 lock held by klogd/2593:
[ 1758.645185][   T27]  #0: ffff0001fefeee98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0xa4/0x594
[ 1758.647479][   T27] 2 locks held by getty/2755:
[ 1758.648722][   T27]  #0: ffff0000c7d96098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x28/0x58
[ 1758.651237][   T27]  #1: ffff80000f6be2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x19c/0x89c
[ 1758.653844][   T27] 3 locks held by kworker/u4:1/3147:
[ 1758.655177][   T27]  #0: ffff0001fefeee98 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2c/0x44
[ 1758.657686][   T27]  #1: ffff0001fefddb88 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x23c/0x380
[ 1758.660609][   T27]  #2: ffff0001fefde758 (&base->lock){-.-.}-{2:2}, at: __mod_timer+0x120/0x6d8
[ 1758.662971][   T27] 2 locks held by syz-executor.0/3172:
[ 1758.664403][   T27]  #0: ffff0000ca978150 (&type->i_mutex_dir_key#8){++++}-{3:3}, at: lookup_slow+0x34/0x68
[ 1758.666874][   T27]  #1: ffff0000ca9785b8 (&fi->mutex){+.+.}-{3:3}, at: fuse_lock_inode+0x50/0x70
[ 1758.669217][   T27] 2 locks held by syz-executor.0/3193:
[ 1758.670558][   T27]  #0: ffff0000ca978150 (&type->i_mutex_dir_key#8){++++}-{3:3}, at: lookup_slow+0x34/0x68
[ 1758.673061][   T27]  #1: ffff0000ca9785b8 (&fi->mutex){+.+.}-{3:3}, at: fuse_lock_inode+0x50/0x70
[ 1758.675458][   T27] 
[ 1758.676050][   T27] =============================================
[ 1758.676050][   T27] 
[ 1758.678210][   T27] Kernel panic - not syncing: hung_task: blocked tasks
[ 1758.679898][   T27] CPU: 0 PID: 27 Comm: khungtaskd Not tainted 6.1.0-rc8-syzkaller-33330-ga5541c0811a0 #0
[ 1758.682467][   T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 1758.685061][   T27] Call trace:
[ 1758.685894][   T27]  dump_backtrace+0x1c4/0x1f0
[ 1758.687084][   T27]  show_stack+0x2c/0x3c
[ 1758.688169][   T27]  dump_stack_lvl+0x104/0x16c
[ 1758.689409][   T27]  dump_stack+0x1c/0x58
[ 1758.690527][   T27]  panic+0x218/0x508
[ 1758.691569][   T27]  hung_task_panic+0x0/0x2c
[ 1758.692747][   T27]  kthread+0x12c/0x158
[ 1758.693806][   T27]  ret_from_fork+0x10/0x20
[ 1758.694923][   T27] SMP: stopping secondary CPUs
[ 1758.696146][   T27] Kernel Offset: disabled
[ 1758.697307][   T27] CPU features: 0x00000,040e0108,4c017203
[ 1758.698788][   T27] Memory Limit: none
[ 1758.927374][   T27] Rebooting in 86400 seconds..