DUID 00:04:85:ad:28:d6:f5:42:cf:cc:58:a6:f5:13:34:2e:bc:29
forked to background, child pid 3179
[   12.439333][ T3180] 8021q: adding VLAN 0 to HW filter on device bond0
[   12.442852][ T3180] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
syzkaller login: [   69.893324][  T143] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.0.88' (ECDSA) to the list of known hosts.
2022/08/20 15:35:58 ignoring optional flag "sandboxArg"="0"
2022/08/20 15:35:58 parsed 1 programs
[ 1113.074252][ T3672] cgroup: Unknown subsys name 'net'
[ 1113.204761][ T3672] cgroup: Unknown subsys name 'rlimit'
2022/08/20 15:36:06 executed programs: 0
[ 1120.641027][ T3672] kmemleak: 8 new suspected memory leaks (see /sys/kernel/debug/kmemleak)
[ 1121.733743][ T3681] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1121.740962][ T3683] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1121.748035][ T3681] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1121.755292][ T3681] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1121.762419][ T3681] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1121.769437][ T3681] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1121.798693][ T3680] chnl_net:caif_netlink_parms(): no params data found
[ 1121.816385][ T3680] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1121.823493][ T3680] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1121.830774][ T3680] device bridge_slave_0 entered promiscuous mode
[ 1121.837809][ T3680] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1121.845080][ T3680] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1121.852405][ T3680] device bridge_slave_1 entered promiscuous mode
[ 1121.862904][ T3680] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1121.872782][ T3680] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1121.885723][ T3680] team0: Port device team_slave_0 added
[ 1121.891822][ T3680] team0: Port device team_slave_1 added
[ 1121.901436][ T3680] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1121.908464][ T3680] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1121.934507][ T3680] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1121.946432][ T3680] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1121.953445][ T3680] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1121.979469][ T3680] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1121.995025][ T3680] device hsr_slave_0 entered promiscuous mode
[ 1122.001265][ T3680] device hsr_slave_1 entered promiscuous mode
[ 1122.027832][ T3680] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1122.035429][ T3680] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1122.042968][ T3680] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1122.050335][ T3680] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1122.061131][ T3680] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1122.068203][ T3680] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1122.075559][ T3680] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1122.082617][ T3680] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1122.100873][ T3680] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1122.109380][ T3688] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1122.117363][ T3688] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1122.124969][ T3688] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1122.132390][ T3688] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 1122.143214][ T3680] 8021q: adding VLAN 0 to HW filter on device team0
[ 1122.153540][  T140] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1122.161748][  T140] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1122.168834][  T140] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1122.176317][  T140] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1122.184569][  T140] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1122.191583][  T140] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1122.200779][ T3688] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1122.209032][ T3688] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1122.219959][ T3680] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1122.230531][ T3680] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1122.243291][  T140] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1122.251531][  T140] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1122.259646][  T140] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1122.267857][  T140] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1122.277716][ T3688] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1122.285102][ T3688] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1122.294823][ T3680] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1122.330030][ T3680] device veth0_vlan entered promiscuous mode
[ 1122.336880][ T3693] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1122.345583][ T3693] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1122.353630][ T3693] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1122.361000][ T3693] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1122.371049][ T3680] device veth1_vlan entered promiscuous mode
[ 1122.381324][ T3680] device veth0_macvtap entered promiscuous mode
[ 1122.388023][  T140] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1122.395831][  T140] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1122.403736][  T140] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1122.411809][  T140] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1122.420589][ T3680] device veth1_macvtap entered promiscuous mode
[ 1122.430107][ T3680] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1122.437369][  T140] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1122.447077][ T3680] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1122.454926][  T140] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1122.463826][ T3680] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1122.472508][ T3680] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1122.481368][ T3680] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1122.490190][ T3680] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1122.515725][ T3701] syz-executor.0 uses obsolete (PF_INET,SOCK_PACKET)
[ 1123.813031][ T3693] Bluetooth: hci0: command 0x0409 tx timeout
[ 1125.892646][ T3693] Bluetooth: hci0: command 0x041b tx timeout
2022/08/20 15:36:13 executed programs: 1
[ 1127.972676][ T3693] Bluetooth: hci0: command 0x040f tx timeout
[ 1130.052628][ T3693] Bluetooth: hci0: command 0x0419 tx timeout
2022/08/20 15:36:18 executed programs: 3
2022/08/20 15:36:24 executed programs: 5
2022/08/20 15:36:29 executed programs: 7
2022/08/20 15:36:35 executed programs: 9
[ 1154.841212][ T3723] kmemleak: 4 new suspected memory leaks (see /sys/kernel/debug/kmemleak)
[ 1157.015622][ T3723] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak)
BUG: memory leak
unreferenced object 0xffff88810e3afe00 (size 240):
  comm "syz-executor.0", pid 3680, jiffies 4295049468 (age 35.050s)
  hex dump (first 32 bytes):
    a0 54 6b 13 81 88 ff ff a0 54 6b 13 81 88 ff ff  .Tk......Tk.....
    00 80 58 02 81 88 ff ff 00 00 00 00 00 00 00 00  ..X.............
  backtrace:
    [<ffffffff83876a1b>] napi_skb_cache_get+0x6b/0x90
    [<ffffffff83876b26>] __alloc_skb+0x96/0x270
    [<ffffffff83876d6c>] __napi_alloc_skb+0x6c/0x170
    [<ffffffff838f9c6c>] napi_get_frags+0x3c/0x80
    [<ffffffff838a6c75>] netif_napi_add_weight+0x1b5/0x3c0
    [<ffffffff83940023>] gro_cells_init+0xa3/0x130
    [<ffffffff82a58891>] geneve_init+0xe1/0x180
    [<ffffffff838b1d94>] register_netdevice+0x1c4/0x960
    [<ffffffff82a57573>] geneve_configure+0x383/0x4a0
    [<ffffffff82a590a5>] geneve_newlink+0xa5/0x140
    [<ffffffff838c9ae8>] __rtnl_newlink+0xa58/0xdc0
    [<ffffffff838c9e99>] rtnl_newlink+0x49/0x70
    [<ffffffff838c4ebc>] rtnetlink_rcv_msg+0x21c/0x5d0
    [<ffffffff83a13dc7>] netlink_rcv_skb+0x87/0x1d0
    [<ffffffff83a12f37>] netlink_unicast+0x397/0x4c0
    [<ffffffff83a133f6>] netlink_sendmsg+0x396/0x710

BUG: memory leak
unreferenced object 0xffff88810e3c2a00 (size 240):
  comm "syz-executor.0", pid 3680, jiffies 4295049468 (age 35.050s)
  hex dump (first 32 bytes):
    a0 74 6a 13 81 88 ff ff a0 74 6a 13 81 88 ff ff  .tj......tj.....
    00 80 58 02 81 88 ff ff 00 00 00 00 00 00 00 00  ..X.............
  backtrace:
    [<ffffffff83876a1b>] napi_skb_cache_get+0x6b/0x90
    [<ffffffff83876b26>] __alloc_skb+0x96/0x270
    [<ffffffff83876d6c>] __napi_alloc_skb+0x6c/0x170
    [<ffffffff838f9c6c>] napi_get_frags+0x3c/0x80
    [<ffffffff838a6c75>] netif_napi_add_weight+0x1b5/0x3c0
    [<ffffffff83940023>] gro_cells_init+0xa3/0x130
    [<ffffffff82a58891>] geneve_init+0xe1/0x180
    [<ffffffff838b1d94>] register_netdevice+0x1c4/0x960
    [<ffffffff82a57573>] geneve_configure+0x383/0x4a0
    [<ffffffff82a590a5>] geneve_newlink+0xa5/0x140
    [<ffffffff838c9ae8>] __rtnl_newlink+0xa58/0xdc0
    [<ffffffff838c9e99>] rtnl_newlink+0x49/0x70
    [<ffffffff838c4ebc>] rtnetlink_rcv_msg+0x21c/0x5d0
    [<ffffffff83a13dc7>] netlink_rcv_skb+0x87/0x1d0
    [<ffffffff83a12f37>] netlink_unicast+0x397/0x4c0
    [<ffffffff83a133f6>] netlink_sendmsg+0x396/0x710

BUG: memory leak
unreferenced object 0xffff88810e3afc00 (size 240):
  comm "syz-executor.0", pid 3680, jiffies 4295049468 (age 35.050s)
  hex dump (first 32 bytes):
    a0 54 f3 0e 81 88 ff ff a0 54 f3 0e 81 88 ff ff  .T.......T......
    00 c0 a1 11 81 88 ff ff 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<ffffffff83876a1b>] napi_skb_cache_get+0x6b/0x90
    [<ffffffff83876b26>] __alloc_skb+0x96/0x270
    [<ffffffff83876d6c>] __napi_alloc_skb+0x6c/0x170
    [<ffffffff838f9c6c>] napi_get_frags+0x3c/0x80
    [<ffffffff838a6c75>] netif_napi_add_weight+0x1b5/0x3c0
    [<ffffffff83940023>] gro_cells_init+0xa3/0x130
    [<ffffffff82a58891>] geneve_init+0xe1/0x180
    [<ffffffff838b1d94>] register_netdevice+0x1c4/0x960
    [<ffffffff82a57573>] geneve_configure+0x383/0x4a0
    [<ffffffff82a590a5>] geneve_newlink+0xa5/0x140
    [<ffffffff838c9ae8>] __rtnl_newlink+0xa58/0xdc0
    [<ffffffff838c9e99>] rtnl_newlink+0x49/0x70
    [<ffffffff838c4ebc>] rtnetlink_rcv_msg+0x21c/0x5d0
    [<ffffffff83a13dc7>] netlink_rcv_skb+0x87/0x1d0
    [<ffffffff83a12f37>] netlink_unicast+0x397/0x4c0
    [<ffffffff83a133f6>] netlink_sendmsg+0x396/0x710