forked to background, child pid 3175
[   11.580917][ T3176] 8021q: adding VLAN 0 to HW filter on device bond0
[   11.583431][ T3176] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: [   11.695739][ T3260] ssh-keygen (3260) used greatest stack depth: 10768 bytes left
OK

syzkaller
syzkaller login: [   69.869604][    T6] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.0.186' (ECDSA) to the list of known hosts.
2022/05/28 20:24:24 parsed 1 programs
[ 1114.699996][ T3660] cgroup: Unknown subsys name 'net'
[ 1114.791480][ T3660] cgroup: Unknown subsys name 'rlimit'
2022/05/28 20:24:32 executed programs: 0
[ 1123.309967][ T3670] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1123.310033][ T3670] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1123.310108][ T3670] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1123.310243][ T3670] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1123.310335][ T3670] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1123.310389][ T3670] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1123.341858][ T3668] chnl_net:caif_netlink_parms(): no params data found
[ 1123.369485][ T3668] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1123.369568][ T3668] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1123.369847][ T3668] device bridge_slave_0 entered promiscuous mode
[ 1123.370314][ T3668] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1123.370336][ T3668] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1123.370532][ T3668] device bridge_slave_1 entered promiscuous mode
[ 1123.374212][ T3668] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1123.374741][ T3668] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1123.378082][ T3668] team0: Port device team_slave_0 added
[ 1123.378522][ T3668] team0: Port device team_slave_1 added
[ 1123.407203][ T3668] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1123.407212][ T3668] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1123.407231][ T3668] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1123.407718][ T3668] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1123.407726][ T3668] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1123.407745][ T3668] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1123.444519][ T3668] device hsr_slave_0 entered promiscuous mode
[ 1123.449208][ T3668] device hsr_slave_1 entered promiscuous mode
[ 1123.552450][ T3668] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1123.553033][ T3668] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1123.553546][ T3668] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1123.554071][ T3668] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1123.557502][ T3668] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1123.557520][ T3668] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1123.557562][ T3668] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1123.557579][ T3668] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1123.572184][ T3668] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1123.574277][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1123.579699][ T3661] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1123.579955][ T3661] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1123.593844][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 1123.623315][ T3668] 8021q: adding VLAN 0 to HW filter on device team0
[ 1123.637014][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1123.637261][ T3661] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1123.637289][ T3661] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1123.637484][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1123.637700][ T3661] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1123.637725][ T3661] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1123.638267][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1123.638660][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1123.639428][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1123.639704][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1123.644937][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1123.645995][ T3668] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1123.649677][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1123.649711][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1123.651417][ T3668] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1123.686238][ T3668] device veth0_vlan entered promiscuous mode
[ 1123.687611][ T3668] device veth1_vlan entered promiscuous mode
[ 1123.689148][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1123.689473][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1123.689834][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1123.690068][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1123.690295][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1123.690530][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1123.694445][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1123.695375][ T3668] device veth0_macvtap entered promiscuous mode
[ 1123.696318][ T3668] device veth1_macvtap entered promiscuous mode
[ 1123.700294][ T3668] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1123.700320][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1123.702331][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1123.703756][ T3668] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1123.703850][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1123.704800][ T3668] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1123.704829][ T3668] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1123.704854][ T3668] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1123.704880][ T3668] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1123.746900][   T44] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1123.746912][   T44] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1123.747009][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1123.753702][   T44] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1123.753713][   T44] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1123.753804][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1124.900567][    C0] vcan0: j1939_tp_rxtimer: 0xffff8881121b5800: rx timeout, send abort
[ 1124.900615][    C0] vcan0: j1939_tp_rxtimer: 0xffff8881120cee00: rx timeout, send abort
[ 1124.900854][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff8881121b5800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[ 1124.900877][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff8881120cee00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[ 1125.389658][    T6] Bluetooth: hci0: command 0x0409 tx timeout
[ 1127.468984][    T6] Bluetooth: hci0: command 0x041b tx timeout
[ 1129.548978][ T3661] Bluetooth: hci0: command 0x040f tx timeout
[ 1130.335340][ T3688] kmemleak: 71 new suspected memory leaks (see /sys/kernel/debug/kmemleak)
[ 1131.628964][    T6] Bluetooth: hci0: command 0x0419 tx timeout
BUG: memory leak
unreferenced object 0xffff888112343800 (size 240):
  comm "syz-executor.0", pid 3687, jiffies 4295049659 (age 8.740s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 a6 0f 81 88 ff ff 00 7c 22 12 81 88 ff ff  .........|".....
  backtrace:
    [<ffffffff83855bf6>] __alloc_skb+0x216/0x290
    [<ffffffff8385b60a>] alloc_skb_with_frags+0x6a/0x340
    [<ffffffff8384d633>] sock_alloc_send_pskb+0x353/0x3c0
    [<ffffffff83e53a42>] j1939_sk_sendmsg+0x2d2/0x810
    [<ffffffff83843796>] sock_sendmsg+0x56/0x80
    [<ffffffff8384a59f>] sock_no_sendpage+0x8f/0xc0
    [<ffffffff83843f5c>] kernel_sendpage+0xdc/0x310
    [<ffffffff838441d0>] sock_sendpage+0x40/0x50
    [<ffffffff81634262>] pipe_to_sendpage+0xa2/0x110
    [<ffffffff81635f82>] __splice_from_pipe+0x1e2/0x330
    [<ffffffff8163681f>] generic_splice_sendpage+0x6f/0xa0
    [<ffffffff8163431b>] direct_splice_actor+0x4b/0x70
    [<ffffffff81634933>] splice_direct_to_actor+0x153/0x350
    [<ffffffff81634c18>] do_splice_direct+0xe8/0x150
    [<ffffffff815d1f17>] do_sendfile+0x587/0x7f0
    [<ffffffff815d5602>] __x64_sys_sendfile64+0xe2/0x100

BUG: memory leak
unreferenced object 0xffff888112343900 (size 240):
  comm "syz-executor.0", pid 3687, jiffies 4295049659 (age 8.740s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 a6 0f 81 88 ff ff 00 7c 22 12 81 88 ff ff  .........|".....
  backtrace:
    [<ffffffff83855bf6>] __alloc_skb+0x216/0x290
    [<ffffffff8385b60a>] alloc_skb_with_frags+0x6a/0x340
    [<ffffffff8384d633>] sock_alloc_send_pskb+0x353/0x3c0
    [<ffffffff83e53a42>] j1939_sk_sendmsg+0x2d2/0x810
    [<ffffffff83843796>] sock_sendmsg+0x56/0x80
    [<ffffffff8384a59f>] sock_no_sendpage+0x8f/0xc0
    [<ffffffff83843f5c>] kernel_sendpage+0xdc/0x310
    [<ffffffff838441d0>] sock_sendpage+0x40/0x50
    [<ffffffff81634262>] pipe_to_sendpage+0xa2/0x110
    [<ffffffff81635f82>] __splice_from_pipe+0x1e2/0x330
    [<ffffffff8163681f>] generic_splice_sendpage+0x6f/0xa0
    [<ffffffff8163431b>] direct_splice_actor+0x4b/0x70
    [<ffffffff81634933>] splice_direct_to_actor+0x153/0x350
    [<ffffffff81634c18>] do_splice_direct+0xe8/0x150
    [<ffffffff815d1f17>] do_sendfile+0x587/0x7f0
    [<ffffffff815d5602>] __x64_sys_sendfile64+0xe2/0x100

BUG: memory leak
unreferenced object 0xffff88811221b400 (size 1024):
  comm "syz-executor.0", pid 3687, jiffies 4295049659 (age 8.740s)
  hex dump (first 32 bytes):
    0e 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<ffffffff83855ac3>] __alloc_skb+0xe3/0x290
    [<ffffffff8385b60a>] alloc_skb_with_frags+0x6a/0x340
    [<ffffffff8384d633>] sock_alloc_send_pskb+0x353/0x3c0
    [<ffffffff83e53a42>] j1939_sk_sendmsg+0x2d2/0x810
    [<ffffffff83843796>] sock_sendmsg+0x56/0x80
    [<ffffffff8384a59f>] sock_no_sendpage+0x8f/0xc0
    [<ffffffff83843f5c>] kernel_sendpage+0xdc/0x310
    [<ffffffff838441d0>] sock_sendpage+0x40/0x50
    [<ffffffff81634262>] pipe_to_sendpage+0xa2/0x110
    [<ffffffff81635f82>] __splice_from_pipe+0x1e2/0x330
    [<ffffffff8163681f>] generic_splice_sendpage+0x6f/0xa0
    [<ffffffff8163431b>] direct_splice_actor+0x4b/0x70
    [<ffffffff81634933>] splice_direct_to_actor+0x153/0x350
    [<ffffffff81634c18>] do_splice_direct+0xe8/0x150
    [<ffffffff815d1f17>] do_sendfile+0x587/0x7f0
    [<ffffffff815d5602>] __x64_sys_sendfile64+0xe2/0x100