[ 10.251297][ T2657] 8021q: adding VLAN 0 to HW filter on device bond0 [ 10.260626][ T2657] eql: remember to turn off Van-Jacobson compression on your slave devices [ 10.289779][ T996] gvnic 0000:00:00.0 enp0s0: Device link is up. [ 10.293582][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): enp0s0: link becomes ready Starting sshd: OK syzkaller Warning: Permanently added '10.128.0.91' (ECDSA) to the list of known hosts. syzkaller login: [ 34.745899][ T3073] chnl_net:caif_netlink_parms(): no params data found [ 34.764197][ T3073] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.766116][ T3073] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.768314][ T3073] device bridge_slave_0 entered promiscuous mode [ 34.771304][ T3073] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.773290][ T3073] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.775428][ T3073] device bridge_slave_1 entered promiscuous mode [ 34.783875][ T3073] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 34.787298][ T3073] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 34.795403][ T3073] team0: Port device team_slave_0 added [ 34.797712][ T3073] team0: Port device team_slave_1 added [ 34.804604][ T3073] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 34.806393][ T3073] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 34.813295][ T3073] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 34.817365][ T3073] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 34.819147][ T3073] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 34.826068][ T3073] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 34.893711][ T3073] device hsr_slave_0 entered promiscuous mode [ 34.933828][ T3073] device hsr_slave_1 entered promiscuous mode [ 35.005545][ T3073] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 35.033792][ T3073] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 35.073989][ T3073] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 35.113680][ T3073] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 35.171597][ T3073] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.173524][ T3073] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.175654][ T3073] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.177461][ T3073] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.197166][ T3073] 8021q: adding VLAN 0 to HW filter on device bond0 [ 35.201729][ T921] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 35.206118][ T921] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.208691][ T921] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.211211][ T921] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 35.216192][ T3073] 8021q: adding VLAN 0 to HW filter on device team0 [ 35.224830][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 35.227175][ T21] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.229024][ T21] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.231126][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 35.233901][ T21] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.235762][ T21] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.244787][ T3073] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 35.247512][ T3073] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 35.253989][ T109] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 35.256715][ T109] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 35.259068][ T109] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 35.261531][ T109] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 35.264290][ T109] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 35.266365][ T109] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 35.270900][ T3080] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 35.273184][ T3080] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 35.277247][ T3073] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 35.289397][ T3073] device veth0_vlan entered promiscuous mode [ 35.294559][ T3073] device veth1_vlan entered promiscuous mode [ 35.296964][ T109] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 35.299470][ T109] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 35.301810][ T109] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 35.304429][ T109] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 35.306503][ T109] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 35.316260][ T3080] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 35.318568][ T3080] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 35.322195][ T3073] device veth0_macvtap entered promiscuous mode [ 35.327152][ T3073] device veth1_macvtap entered promiscuous mode [ 35.334664][ T3073] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 35.336613][ T3080] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 35.339311][ T3080] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 35.343683][ T3073] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 35.345766][ T109] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 35.349553][ T3073] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.351937][ T3073] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.354564][ T3073] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.356781][ T3073] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 executing program [ 35.394098][ T13] Unable to handle kernel NULL pointer dereference at virtual address 000000000000000b [ 35.396564][ T13] Mem abort info: [ 35.397502][ T13] ESR = 0x0000000096000004 [ 35.398675][ T13] EC = 0x25: DABT (current EL), IL = 32 bits [ 35.400302][ T13] SET = 0, FnV = 0 [ 35.401228][ T13] EA = 0, S1PTW = 0 [ 35.402314][ T13] FSC = 0x04: level 0 translation fault [ 35.403839][ T13] Data abort info: [ 35.404795][ T13] ISV = 0, ISS = 0x00000004 [ 35.405990][ T13] CM = 0, WnR = 0 [ 35.406955][ T13] user pgtable: 4k pages, 48-bit VAs, pgdp=000000010d1b7000 [ 35.408769][ T13] [000000000000000b] pgd=0000000000000000, p4d=0000000000000000 [ 35.410719][ T13] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP [ 35.412611][ T13] Modules linked in: [ 35.413634][ T13] CPU: 0 PID: 13 Comm: kworker/0:1 Not tainted 6.1.0-rc8-syzkaller-33330-ga5541c0811a0 #0 [ 35.416178][ T13] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/30/2022 [ 35.419041][ T13] Workqueue: mld mld_ifc_work [ 35.420350][ T13] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 35.422411][ T13] pc : em_cmp_match+0x30/0x264 [ 35.423620][ T13] lr : em_cmp_match+0x24/0x264 [ 35.424874][ T13] sp : ffff80000f2c3250 [ 35.425979][ T13] x29: ffff80000f2c3250 x28: 0000000000000000 x27: 0000000000000000 [ 35.428100][ T13] x26: ffff80000f2c32a8 x25: ffff0000cc6fbd80 x24: 0000000000000001 [ 35.430216][ T13] x23: 0000000000000000 x22: 0000000000000000 x21: 0000000000000000 [ 35.432343][ T13] x20: ffff0000cc6fbd80 x19: ffff0000c998f700 x18: 00000000000000c0 [ 35.434463][ T13] x17: ffff80000dda8198 x16: ffff80000dbe6158 x15: ffff0000c0310000 [ 35.436542][ T13] x14: 0000000000000000 x13: 000000000000001f x12: ffff0000c0310000 [ 35.438703][ T13] x11: ff8080000b40e1e0 x10: 0000000000000000 x9 : ffff80000b40e1e0 [ 35.440987][ T13] x8 : ffff0000c0310000 x7 : ffff80000b26471c x6 : 0000000000000000 [ 35.443173][ T13] x5 : ffff80000e0d3c80 x4 : 0000000000000000 x3 : ffff80000f2c3458 [ 35.445216][ T13] x2 : 0000000000000000 x1 : ffff80000d893c70 x0 : ffff0000c998f700 [ 35.447372][ T13] Call trace: [ 35.448214][ T13] em_cmp_match+0x30/0x264 [ 35.449434][ T13] __tcf_em_tree_match+0xb0/0x340 [ 35.450736][ T13] basic_classify+0xa8/0x1d4 [ 35.451939][ T13] tcf_classify+0x11c/0x4ac [ 35.453171][ T13] prio_enqueue+0xd8/0x38c [ 35.454333][ T13] __dev_xmit_skb+0x1b8/0x928 [ 35.455561][ T13] __dev_queue_xmit+0x414/0xdb8 [ 35.456835][ T13] ip_finish_output2+0x670/0x818 [ 35.458206][ T13] __ip_finish_output+0x108/0x29c [ 35.459625][ T13] ip_finish_output+0x168/0x188 [ 35.460896][ T13] ip_output+0x1d4/0x234 [ 35.461992][ T13] ip_local_out+0xc0/0xf0 [ 35.463109][ T13] iptunnel_xmit+0x194/0x314 [ 35.464294][ T13] udp_tunnel_xmit_skb+0x108/0x140 [ 35.465616][ T13] geneve_xmit+0x16ac/0x1aac [ 35.466920][ T13] dev_hard_start_xmit+0xd4/0x1ec [ 35.468338][ T13] __dev_queue_xmit+0x83c/0xdb8 [ 35.469614][ T13] neigh_resolve_output+0x350/0x3bc [ 35.470988][ T13] ip6_finish_output2+0x704/0xbec [ 35.472380][ T13] ip6_finish_output+0x448/0x4c4 [ 35.473756][ T13] ip6_output+0x180/0x2dc [ 35.474912][ T13] mld_sendpack+0x514/0x924 [ 35.476133][ T13] mld_send_cr+0x4e8/0x5a8 [ 35.477325][ T13] mld_ifc_work+0x38/0x290 [ 35.478445][ T13] process_one_work+0x2d8/0x504 [ 35.479759][ T13] worker_thread+0x340/0x610 [ 35.480968][ T13] kthread+0x12c/0x158 [ 35.482020][ T13] ret_from_fork+0x10/0x20 [ 35.483167][ T13] Code: 973a6212 f9400695 b0012421 9131c021 (39402ea8) [ 35.484995][ T13] ---[ end trace 0000000000000000 ]--- [ 35.735996][ T13] Kernel panic - not syncing: Oops: Fatal exception in interrupt [ 35.737943][ T13] SMP: stopping secondary CPUs [ 35.739146][ T13] Kernel Offset: disabled [ 35.740285][ T13] CPU features: 0x00000,040e0108,4c017203 [ 35.741760][ T13] Memory Limit: none [ 35.992917][ T13] Rebooting in 86400 seconds..