DUID 00:04:08:6f:95:b8:7a:da:47:d5:ae:28:d8:4d:e4:58:2e:6d
forked to background, child pid 3172
[   27.137196][ T3173] 8021q: adding VLAN 0 to HW filter on device bond0
[   27.148796][ T3173] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.1.29' (ECDSA) to the list of known hosts.
2022/03/18 08:55:55 fuzzer started
2022/03/18 08:55:55 connecting to host at 10.128.0.169:34613
2022/03/18 08:55:55 checking machine...
2022/03/18 08:55:55 checking revisions...
2022/03/18 08:55:55 testing simple program...
syzkaller login: [   44.642852][ T3601] cgroup: Unknown subsys name 'net'
[   44.758573][ T3601] cgroup: Unknown subsys name 'rlimit'
[   45.965407][ T3605] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   45.973314][ T3605] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   45.980752][ T3605] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   45.988527][ T3607] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   45.996299][ T3607] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   46.003893][ T3607] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   46.091507][ T3603] chnl_net:caif_netlink_parms(): no params data found
[   46.134453][ T3603] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.142186][ T3603] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.149982][ T3603] device bridge_slave_0 entered promiscuous mode
[   46.159072][ T3603] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.166510][ T3603] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.174351][ T3603] device bridge_slave_1 entered promiscuous mode
[   46.194772][ T3603] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.205678][ T3603] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.228600][ T3603] team0: Port device team_slave_0 added
[   46.235908][ T3603] team0: Port device team_slave_1 added
[   46.253372][ T3603] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.260316][ T3603] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.286434][ T3603] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.298815][ T3603] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.305823][ T3603] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.332035][ T3603] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.357411][ T3603] device hsr_slave_0 entered promiscuous mode
[   46.364640][ T3603] device hsr_slave_1 entered promiscuous mode
[   46.443131][ T3603] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   46.454107][ T3603] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   46.463190][ T3603] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   46.473130][ T3603] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   46.491491][ T3603] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.498688][ T3603] bridge0: port 2(bridge_slave_1) entered forwarding state
[   46.506554][ T3603] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.513735][ T3603] bridge0: port 1(bridge_slave_0) entered forwarding state
[   46.560127][ T3603] 8021q: adding VLAN 0 to HW filter on device bond0
[   46.573032][ T3614] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   46.582888][ T3614] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.591114][ T3614] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.599679][ T3614] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   46.613636][ T3603] 8021q: adding VLAN 0 to HW filter on device team0
[   46.624552][ T3258] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   46.634031][ T3258] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.641083][ T3258] bridge0: port 1(bridge_slave_0) entered forwarding state
[   46.652417][ T3258] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   46.660806][ T3258] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.667961][ T3258] bridge0: port 2(bridge_slave_1) entered forwarding state
[   46.694705][ T3258] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   46.703614][ T3258] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   46.712612][ T3258] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   46.720852][ T3258] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   46.729761][ T3258] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   46.740274][ T3603] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   46.757877][ T3258] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   46.765384][ T3258] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   46.778841][ T3603] 8021q: adding VLAN 0 to HW filter on device batadv0
[   46.892156][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   46.901658][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   46.910364][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   46.919262][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   46.929465][ T3603] device veth0_vlan entered promiscuous mode
[   46.940040][ T3603] device veth1_vlan entered promiscuous mode
[   46.959389][ T3258] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   46.967603][ T3258] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   46.976418][ T3258] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   46.987218][ T3603] device veth0_macvtap entered promiscuous mode
[   46.996333][ T3603] device veth1_macvtap entered promiscuous mode
[   47.011420][ T3603] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.019155][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   47.029598][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   47.040863][ T3603] batman_adv: batadv0: Interface activated: batadv_slave_1
[   47.050580][ T3258] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   47.060909][ T3603] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.071255][ T3603] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   47.080573][ T3603] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   47.090740][ T3603] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   47.122494][ T3258] ------------[ cut here ]------------
[   47.128167][ T3258] WARNING: CPU: 0 PID: 3258 at net/core/dev.c:4268 __napi_schedule+0xe2/0x440
[   47.137067][ T3258] Modules linked in:
[   47.143205][ T3258] CPU: 0 PID: 3258 Comm: kworker/0:3 Not tainted 5.17.0-rc8-next-20220318-syzkaller #0
[   47.152857][ T3258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   47.163186][ T3258] Workqueue: wg-crypt-wg0 wg_packet_decrypt_worker
[   47.169714][ T3258] RIP: 0010:__napi_schedule+0xe2/0x440
[   47.175194][ T3258] Code: 74 4a e8 11 61 3c fa 31 ff 65 44 8b 25 d7 27 c6 78 41 81 e4 00 ff 0f 00 44 89 e6 e8 18 63 3c fa 45 85 e4 75 07 e8 ee 60 3c fa <0f> 0b e8 e7 60 3c fa 65 44 8b 25 f7 31 c6 78 31 ff 44 89 e6 e8 f5
[   47.187014][ T1190] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.194898][ T3258] RSP: 0018:ffffc9000344fc78 EFLAGS: 00010093
[   47.194940][ T3258] RAX: 0000000000000000 RBX: ffff88801f998748 RCX: 0000000000000000
[   47.194954][ T3258] RDX: ffff88801c4cd7c0 RSI: ffffffff873c4802 RDI: 0000000000000003
[   47.194968][ T3258] RBP: 0000000000000200 R08: 0000000000000000 R09: 0000000000000001
[   47.194981][ T3258] R10: ffffffff873c47f8 R11: 0000000000000000 R12: 0000000000000000
[   47.194995][ T3258] R13: ffff8880b9c00000 R14: 000000000003b100 R15: ffff88814c818ec0
[   47.195009][ T3258] FS:  0000000000000000(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000
[   47.195032][ T3258] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   47.195048][ T3258] CR2: 00007f0dc8949300 CR3: 000000006e882000 CR4: 00000000003506f0
[   47.210527][    T8] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.216990][ T3258] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   47.217007][ T3258] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   47.217021][ T3258] Call Trace:
[   47.217028][ T3258]  <TASK>
[   47.217042][ T3258]  wg_packet_decrypt_worker+0x408/0x5d0
[   47.217080][ T3258]  process_one_work+0x996/0x1610
[   47.217112][ T3258]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[   47.217142][ T3258]  ? rwlock_bug.part.0+0x90/0x90
[   47.226159][ T1190] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.233241][ T3258]  ? _raw_spin_lock_irq+0x41/0x50
[   47.233287][ T3258]  worker_thread+0x665/0x1080
[   47.233321][ T3258]  ? __kthread_parkme+0x15f/0x220
[   47.233353][ T3258]  ? process_one_work+0x1610/0x1610
[   47.242134][    T8] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.249540][ T3258]  kthread+0x2e9/0x3a0
[   47.260730][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   47.265036][ T3258]  ? kthread_complete_and_exit+0x40/0x40
[   47.265083][ T3258]  ret_from_fork+0x1f/0x30
[   47.265127][ T3258]  </TASK>
[   47.278483][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   47.280850][ T3258] Kernel panic - not syncing: panic_on_warn set ...
[   47.280862][ T3258] CPU: 0 PID: 3258 Comm: kworker/0:3 Not tainted 5.17.0-rc8-next-20220318-syzkaller #0
[   47.280885][ T3258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   47.280899][ T3258] Workqueue: wg-crypt-wg0 wg_packet_decrypt_worker
[   47.280926][ T3258] Call Trace:
[   47.280933][ T3258]  <TASK>
[   47.280941][ T3258]  dump_stack_lvl+0xcd/0x134
[   47.280966][ T3258]  panic+0x2d7/0x636
[   47.280993][ T3258]  ? panic_print_sys_info.part.0+0x10b/0x10b
[   47.281030][ T3258]  ? __warn.cold+0x1d1/0x2c5
[   47.281060][ T3258]  ? __napi_schedule+0xe2/0x440
[   47.281087][ T3258]  __warn.cold+0x1e2/0x2c5
[   47.281114][ T3258]  ? __napi_schedule+0xe2/0x440
[   47.281140][ T3258]  report_bug+0x1bd/0x210
[   47.281171][ T3258]  handle_bug+0x3c/0x60
[   47.281191][ T3258]  exc_invalid_op+0x14/0x40
[   47.281211][ T3258]  asm_exc_invalid_op+0x12/0x20
[   47.281241][ T3258] RIP: 0010:__napi_schedule+0xe2/0x440
[   47.281269][ T3258] Code: 74 4a e8 11 61 3c fa 31 ff 65 44 8b 25 d7 27 c6 78 41 81 e4 00 ff 0f 00 44 89 e6 e8 18 63 3c fa 45 85 e4 75 07 e8 ee 60 3c fa <0f> 0b e8 e7 60 3c fa 65 44 8b 25 f7 31 c6 78 31 ff 44 89 e6 e8 f5
[   47.281288][ T3258] RSP: 0018:ffffc9000344fc78 EFLAGS: 00010093
[   47.281306][ T3258] RAX: 0000000000000000 RBX: ffff88801f998748 RCX: 0000000000000000
[   47.281320][ T3258] RDX: ffff88801c4cd7c0 RSI: ffffffff873c4802 RDI: 0000000000000003
[   47.281333][ T3258] RBP: 0000000000000200 R08: 0000000000000000 R09: 0000000000000001
[   47.281346][ T3258] R10: ffffffff873c47f8 R11: 0000000000000000 R12: 0000000000000000
[   47.281360][ T3258] R13: ffff8880b9c00000 R14: 000000000003b100 R15: ffff88814c818ec0
[   47.281380][ T3258]  ? __napi_schedule+0xd8/0x440
[   47.281408][ T3258]  ? __napi_schedule+0xe2/0x440
[   47.281439][ T3258]  ? __napi_schedule+0xe2/0x440
[   47.281467][ T3258]  wg_packet_decrypt_worker+0x408/0x5d0
[   47.281499][ T3258]  process_one_work+0x996/0x1610
[   47.281531][ T3258]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[   47.281558][ T3258]  ? rwlock_bug.part.0+0x90/0x90
[   47.281587][ T3258]  ? _raw_spin_lock_irq+0x41/0x50
[   47.281623][ T3258]  worker_thread+0x665/0x1080
[   47.281655][ T3258]  ? __kthread_parkme+0x15f/0x220
[   47.281692][ T3258]  ? process_one_work+0x1610/0x1610
[   47.281716][ T3258]  kthread+0x2e9/0x3a0
[   47.281745][ T3258]  ? kthread_complete_and_exit+0x40/0x40
[   47.281781][ T3258]  ret_from_fork+0x1f/0x30
[   47.281825][ T3258]  </TASK>
[   47.289115][ T3258] Kernel Offset: disabled
[   47.627656][ T3258] Rebooting in 86400 seconds..