[   15.785194][ T4743] dhcpcd-run-hook (4743) used greatest stack depth: 10288 bytes left
forked to background, child pid 4739
[   16.326873][ T4740] 8021q: adding VLAN 0 to HW filter on device bond0
[   16.336241][ T4740] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
syzkaller login: [   70.209593][   T23] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.0.238' (ED25519) to the list of known hosts.
2024/04/11 07:30:17 ignoring optional flag "sandboxArg"="0"
2024/04/11 07:30:17 parsed 1 programs
[  165.091544][ T5086] cgroup: Unknown subsys name 'net'
[  165.253202][ T5086] cgroup: Unknown subsys name 'rlimit'
2024/04/11 07:30:25 executed programs: 0
[  172.662915][ T5086] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  172.699589][ T5095] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  172.706958][ T5095] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  172.714083][ T5095] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  172.721404][ T5095] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  172.728646][ T5095] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  172.735735][ T5095] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  172.808992][ T5094] chnl_net:caif_netlink_parms(): no params data found
[  172.842838][ T5094] bridge0: port 1(bridge_slave_0) entered blocking state
[  172.849965][ T5094] bridge0: port 1(bridge_slave_0) entered disabled state
[  172.857039][ T5094] bridge_slave_0: entered allmulticast mode
[  172.863678][ T5094] bridge_slave_0: entered promiscuous mode
[  172.870594][ T5094] bridge0: port 2(bridge_slave_1) entered blocking state
[  172.877675][ T5094] bridge0: port 2(bridge_slave_1) entered disabled state
[  172.884826][ T5094] bridge_slave_1: entered allmulticast mode
[  172.891323][ T5094] bridge_slave_1: entered promiscuous mode
[  172.907567][ T5094] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  172.917886][ T5094] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  172.936172][ T5094] team0: Port device team_slave_0 added
[  172.943969][ T5094] team0: Port device team_slave_1 added
[  172.958809][ T5094] batman_adv: batadv0: Adding interface: batadv_slave_0
[  172.965742][ T5094] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  172.991617][ T5094] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  173.002988][ T5094] batman_adv: batadv0: Adding interface: batadv_slave_1
[  173.009959][ T5094] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  173.035911][ T5094] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  173.060303][ T5094] hsr_slave_0: entered promiscuous mode
[  173.066184][ T5094] hsr_slave_1: entered promiscuous mode
[  173.122823][ T5094] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  173.130757][ T5094] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  173.139024][ T5094] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  173.146968][ T5094] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  173.161383][ T5094] bridge0: port 2(bridge_slave_1) entered blocking state
[  173.168457][ T5094] bridge0: port 2(bridge_slave_1) entered forwarding state
[  173.175703][ T5094] bridge0: port 1(bridge_slave_0) entered blocking state
[  173.182802][ T5094] bridge0: port 1(bridge_slave_0) entered forwarding state
[  173.213818][ T5094] 8021q: adding VLAN 0 to HW filter on device bond0
[  173.224459][   T23] bridge0: port 1(bridge_slave_0) entered disabled state
[  173.231864][   T23] bridge0: port 2(bridge_slave_1) entered disabled state
[  173.242014][ T5094] 8021q: adding VLAN 0 to HW filter on device team0
[  173.259334][   T23] bridge0: port 1(bridge_slave_0) entered blocking state
[  173.266393][   T23] bridge0: port 1(bridge_slave_0) entered forwarding state
[  173.274767][   T23] bridge0: port 2(bridge_slave_1) entered blocking state
[  173.281840][   T23] bridge0: port 2(bridge_slave_1) entered forwarding state
[  173.296217][ T5094] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  173.306745][ T5094] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  173.352373][ T5094] 8021q: adding VLAN 0 to HW filter on device batadv0
[  173.374729][ T5094] veth0_vlan: entered promiscuous mode
[  173.382659][ T5094] veth1_vlan: entered promiscuous mode
[  173.398108][ T5094] veth0_macvtap: entered promiscuous mode
[  173.405873][ T5094] veth1_macvtap: entered promiscuous mode
[  173.417329][ T5094] batman_adv: batadv0: Interface activated: batadv_slave_0
[  173.428565][ T5094] batman_adv: batadv0: Interface activated: batadv_slave_1
[  173.437419][ T5094] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  173.446303][ T5094] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  173.455081][ T5094] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  173.463912][ T5094] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  173.493769][  T141] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  173.504044][  T141] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  173.517522][   T10] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  173.525408][   T10] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  174.768172][ T5095] Bluetooth: hci0: command tx timeout
[  176.848168][ T5095] Bluetooth: hci0: command tx timeout
[  178.928567][ T5095] Bluetooth: hci0: command tx timeout
[  179.343490][ T5110] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak)
[  181.008146][ T5095] Bluetooth: hci0: command tx timeout
BUG: memory leak
unreferenced object 0xffff88810d159180 (size 640):
  comm "syz-executor.0", pid 5094, jiffies 4294954509
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 01 1a 0c 01 02 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace (crc d037fcd3):
    [<ffffffff8166238c>] kmem_cache_alloc_node+0x28c/0x330
    [<ffffffff8437d1f6>] kmalloc_reserve+0xe6/0x180
    [<ffffffff84380c75>] __alloc_skb+0xd5/0x220
    [<ffffffff84abffbb>] hci_prepare_cmd+0x2b/0xb0
    [<ffffffff84ac05e7>] hci_req_add+0x57/0xe0
    [<ffffffff84a527d1>] hci_scan_req+0x41/0x70
    [<ffffffff84abf9f0>] __hci_req_sync+0x70/0x3c0
    [<ffffffff84abff47>] hci_req_sync+0x67/0xa0
    [<ffffffff84a57d73>] hci_dev_cmd+0x3f3/0x550
    [<ffffffff84a9a80c>] hci_sock_ioctl+0x3ec/0x6f0
    [<ffffffff843689c2>] sock_do_ioctl+0x82/0x1a0
    [<ffffffff8436abee>] sock_ioctl+0x14e/0x480
    [<ffffffff8173aa26>] __x64_sys_ioctl+0xf6/0x150
    [<ffffffff850d0f00>] do_syscall_64+0xa0/0x1d0
    [<ffffffff85200130>] entry_SYSCALL_64_after_hwframe+0x77/0x7f

BUG: memory leak
unreferenced object 0xffff8881015dd900 (size 240):
  comm "kworker/u9:1", pid 4482, jiffies 4294954509
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace (crc 5e51537f):
    [<ffffffff81661a61>] kmem_cache_alloc+0x271/0x310
    [<ffffffff8438815a>] skb_clone+0xaa/0x190
    [<ffffffff84a5317b>] hci_cmd_work+0x1db/0x200
    [<ffffffff812f12a0>] process_one_work+0x290/0x630
    [<ffffffff812f22cd>] worker_thread+0x2bd/0x510
    [<ffffffff8130040c>] kthread+0xfc/0x140
    [<ffffffff8115cce5>] ret_from_fork+0x45/0x60
    [<ffffffff81002efa>] ret_from_fork_asm+0x1a/0x30