DUID 00:04:bf:e1:a4:b2:b1:2b:3d:59:87:c9:47:74:aa:d6:f6:6a
forked to background, child pid 3176
[   27.495615][ T3177] 8021q: adding VLAN 0 to HW filter on device bond0
[   27.507270][ T3177] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.1.35' (ECDSA) to the list of known hosts.
2022/03/16 05:10:14 fuzzer started
2022/03/16 05:10:14 connecting to host at 10.128.0.169:43305
2022/03/16 05:10:14 checking machine...
2022/03/16 05:10:14 checking revisions...
2022/03/16 05:10:14 testing simple program...
syzkaller login: [   49.514716][ T3597] cgroup: Unknown subsys name 'net'
[   49.645208][ T3597] cgroup: Unknown subsys name 'rlimit'
[   50.859259][ T3603] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   50.868229][ T3603] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   50.876053][ T3603] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   50.884050][ T3603] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   50.891752][ T3603] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   50.899512][ T3603] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   50.987051][ T3599] chnl_net:caif_netlink_parms(): no params data found
[   51.030040][ T3599] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.037586][ T3599] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.045794][ T3599] device bridge_slave_0 entered promiscuous mode
[   51.055549][ T3599] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.063252][ T3599] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.071334][ T3599] device bridge_slave_1 entered promiscuous mode
[   51.095636][ T3599] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   51.106868][ T3599] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   51.130198][ T3599] team0: Port device team_slave_0 added
[   51.137538][ T3599] team0: Port device team_slave_1 added
[   51.155584][ T3599] batman_adv: batadv0: Adding interface: batadv_slave_0
[   51.162672][ T3599] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   51.189413][ T3599] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   51.202378][ T3599] batman_adv: batadv0: Adding interface: batadv_slave_1
[   51.209702][ T3599] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   51.235731][ T3599] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   51.261194][ T3599] device hsr_slave_0 entered promiscuous mode
[   51.268393][ T3599] device hsr_slave_1 entered promiscuous mode
[   51.347098][ T3599] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   51.357354][ T3599] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   51.366536][ T3599] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   51.375609][ T3599] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   51.396407][ T3599] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.403596][ T3599] bridge0: port 2(bridge_slave_1) entered forwarding state
[   51.411605][ T3599] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.418749][ T3599] bridge0: port 1(bridge_slave_0) entered forwarding state
[   51.467421][ T3599] 8021q: adding VLAN 0 to HW filter on device bond0
[   51.480877][  T918] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   51.491757][  T918] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.501826][  T918] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.510827][  T918] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   51.523383][ T3599] 8021q: adding VLAN 0 to HW filter on device team0
[   51.534912][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   51.543527][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.550764][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[   51.571948][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   51.580940][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.588005][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[   51.596890][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   51.606133][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   51.621929][  T918] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   51.633786][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   51.647014][ T3609] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   51.657914][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   51.675380][  T918] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   51.683746][  T918] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   51.696057][ T3599] 8021q: adding VLAN 0 to HW filter on device batadv0
[   51.801879][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   51.816011][ T3599] device veth0_vlan entered promiscuous mode
[   51.824047][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   51.834377][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   51.842322][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   51.854410][ T3599] device veth1_vlan entered promiscuous mode
[   51.872754][ T3599] device veth0_macvtap entered promiscuous mode
[   51.882423][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   51.890720][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   51.899747][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   51.908228][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   51.918294][ T3599] device veth1_macvtap entered promiscuous mode
[   51.934732][ T3599] batman_adv: batadv0: Interface activated: batadv_slave_0
[   51.942895][ T3609] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   51.956026][ T3599] batman_adv: batadv0: Interface activated: batadv_slave_1
[   51.963888][ T3609] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   51.976351][ T3599] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   51.985920][ T3599] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   51.995247][ T3599] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   52.004873][ T3599] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   52.036024][ T3609] ------------[ cut here ]------------
[   52.041672][ T3609] WARNING: CPU: 0 PID: 3609 at net/core/dev.c:4268 __napi_schedule+0xe2/0x440
[   52.051265][ T3609] Modules linked in:
[   52.055201][ T3609] CPU: 0 PID: 3609 Comm: kworker/0:4 Not tainted 5.17.0-rc7-syzkaller-02492-g9f01cfbf2922 #0
[   52.065556][ T3609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   52.065588][ T3609] Workqueue: wg-crypt-wg0 wg_packet_decrypt_worker
[   52.065625][ T3609] RIP: 0010:__napi_schedule+0xe2/0x440
[   52.065663][ T3609] Code: 74 4a e8 01 20 47 fa 31 ff 65 44 8b 25 17 cf d0 78 41 81 e4 00 ff 0f 00 44 89 e6 e8 68 23 47 fa 45 85 e4 75 07 e8 de 1f 47 fa <0f> 0b e8 d7 1f 47 fa 65 44 8b 25 2f d9 d0 78 31 ff 44 89 e6 e8 45
[   52.065684][ T3609] RSP: 0018:ffffc900040afc88 EFLAGS: 00010093
[   52.065704][ T3609] RAX: 0000000000000000 RBX: ffff88801e990748 RCX: 0000000000000000
[   52.065719][ T3609] RDX: ffff88801b4a1d00 RSI: ffffffff8731a0c2 RDI: 0000000000000003
[   52.065736][ T3609] RBP: 0000000000000200 R08: 0000000000000000 R09: 0000000000000001
[   52.065751][ T3609] R10: ffffffff8731a0b8 R11: 0000000000000000 R12: 0000000000000000
[   52.065766][ T3609] R13: ffff8880b9c00000 R14: 000000000003adc0 R15: ffff88801970cec0
[   52.065783][ T3609] FS:  0000000000000000(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000
[   52.162859][ T3609] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   52.169447][ T3609] CR2: 00007fc8b69e1300 CR3: 0000000070f30000 CR4: 00000000003506f0
[   52.177526][ T3609] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   52.185494][ T3609] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   52.193557][ T3609] Call Trace:
[   52.196828][ T3609]  <TASK>
[   52.199843][ T3609]  wg_packet_decrypt_worker+0x408/0x5d0
[   52.205411][ T3609]  process_one_work+0x9ac/0x1650
[   52.210357][ T3609]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[   52.215735][ T3609]  ? rwlock_bug.part.0+0x90/0x90
[   52.220675][ T3609]  ? _raw_spin_lock_irq+0x41/0x50
[   52.225720][ T3609]  worker_thread+0x657/0x1110
[   52.230409][ T3609]  ? process_one_work+0x1650/0x1650
[   52.235784][ T3609]  kthread+0x2e9/0x3a0
[   52.239867][ T3609]  ? kthread_complete_and_exit+0x40/0x40
[   52.245507][ T3609]  ret_from_fork+0x1f/0x30
[   52.249957][ T3609]  </TASK>
[   52.252972][ T3609] Kernel panic - not syncing: panic_on_warn set ...
[   52.259554][ T3609] CPU: 0 PID: 3609 Comm: kworker/0:4 Not tainted 5.17.0-rc7-syzkaller-02492-g9f01cfbf2922 #0
[   52.269703][ T3609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   52.279759][ T3609] Workqueue: wg-crypt-wg0 wg_packet_decrypt_worker
[   52.286274][ T3609] Call Trace:
[   52.289633][ T3609]  <TASK>
[   52.292558][ T3609]  dump_stack_lvl+0xcd/0x134
[   52.297152][ T3609]  panic+0x2b0/0x6dd
[   52.301054][ T3609]  ? __warn_printk+0xf3/0xf3
[   52.305654][ T3609]  ? __warn.cold+0x1d1/0x2cf
[   52.310248][ T3609]  ? __napi_schedule+0xe2/0x440
[   52.315101][ T3609]  __warn.cold+0x1ec/0x2cf
[   52.319524][ T3609]  ? __napi_schedule+0xe2/0x440
[   52.324379][ T3609]  report_bug+0x1bd/0x210
[   52.328799][ T3609]  handle_bug+0x3c/0x60
[   52.333053][ T3609]  exc_invalid_op+0x14/0x40
[   52.337568][ T3609]  asm_exc_invalid_op+0x12/0x20
[   52.342433][ T3609] RIP: 0010:__napi_schedule+0xe2/0x440
[   52.347899][ T3609] Code: 74 4a e8 01 20 47 fa 31 ff 65 44 8b 25 17 cf d0 78 41 81 e4 00 ff 0f 00 44 89 e6 e8 68 23 47 fa 45 85 e4 75 07 e8 de 1f 47 fa <0f> 0b e8 d7 1f 47 fa 65 44 8b 25 2f d9 d0 78 31 ff 44 89 e6 e8 45
[   52.367504][ T3609] RSP: 0018:ffffc900040afc88 EFLAGS: 00010093
[   52.373567][ T3609] RAX: 0000000000000000 RBX: ffff88801e990748 RCX: 0000000000000000
[   52.381531][ T3609] RDX: ffff88801b4a1d00 RSI: ffffffff8731a0c2 RDI: 0000000000000003
[   52.389501][ T3609] RBP: 0000000000000200 R08: 0000000000000000 R09: 0000000000000001
[   52.397468][ T3609] R10: ffffffff8731a0b8 R11: 0000000000000000 R12: 0000000000000000
[   52.405437][ T3609] R13: ffff8880b9c00000 R14: 000000000003adc0 R15: ffff88801970cec0
[   52.413413][ T3609]  ? __napi_schedule+0xd8/0x440
[   52.418275][ T3609]  ? __napi_schedule+0xe2/0x440
[   52.423132][ T3609]  ? __napi_schedule+0xe2/0x440
[   52.427986][ T3609]  wg_packet_decrypt_worker+0x408/0x5d0
[   52.433547][ T3609]  process_one_work+0x9ac/0x1650
[   52.438495][ T3609]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[   52.443871][ T3609]  ? rwlock_bug.part.0+0x90/0x90
[   52.448811][ T3609]  ? _raw_spin_lock_irq+0x41/0x50
[   52.453848][ T3609]  worker_thread+0x657/0x1110
[   52.458536][ T3609]  ? process_one_work+0x1650/0x1650
[   52.463736][ T3609]  kthread+0x2e9/0x3a0
[   52.467809][ T3609]  ? kthread_complete_and_exit+0x40/0x40
[   52.473452][ T3609]  ret_from_fork+0x1f/0x30
[   52.477888][ T3609]  </TASK>
[   52.481305][ T3609] Kernel Offset: disabled
[   52.485705][ T3609] Rebooting in 86400 seconds..