DUID 00:04:f2:44:87:71:f8:0d:58:ee:4a:2e:c3:89:cb:7d:08:0c forked to background, child pid 3171 [ 12.402486][ T3172] 8021q: adding VLAN 0 to HW filter on device bond0 [ 12.406181][ T3172] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller syzkaller login: [ 69.870575][ T43] cfg80211: failed to load regulatory.db Warning: Permanently added '10.128.1.90' (ECDSA) to the list of known hosts. 2022/04/29 23:44:06 parsed 1 programs [ 1114.503598][ T3665] cgroup: Unknown subsys name 'net' [ 1114.662127][ T3665] cgroup: Unknown subsys name 'rlimit' 2022/04/29 23:44:14 executed programs: 0 [ 1122.990909][ T3673] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 1122.998059][ T3673] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 1123.005114][ T3673] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 1123.012282][ T3672] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 1123.019369][ T3672] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 1123.026451][ T3672] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 1123.055635][ T3671] chnl_net:caif_netlink_parms(): no params data found [ 1123.072573][ T3671] bridge0: port 1(bridge_slave_0) entered blocking state [ 1123.079674][ T3671] bridge0: port 1(bridge_slave_0) entered disabled state [ 1123.087107][ T3671] device bridge_slave_0 entered promiscuous mode [ 1123.094106][ T3671] bridge0: port 2(bridge_slave_1) entered blocking state [ 1123.101296][ T3671] bridge0: port 2(bridge_slave_1) entered disabled state [ 1123.108557][ T3671] device bridge_slave_1 entered promiscuous mode [ 1123.119082][ T3671] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1123.128890][ T3671] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1123.141762][ T3671] team0: Port device team_slave_0 added [ 1123.147821][ T3671] team0: Port device team_slave_1 added [ 1123.157035][ T3671] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1123.164046][ T3671] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1123.189963][ T3671] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1123.201018][ T3671] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1123.207935][ T3671] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1123.233857][ T3671] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1123.248983][ T3671] device hsr_slave_0 entered promiscuous mode [ 1123.255309][ T3671] device hsr_slave_1 entered promiscuous mode [ 1123.280915][ T3671] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1123.288343][ T3671] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1123.295835][ T3671] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1123.303417][ T3671] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1123.313497][ T3671] bridge0: port 2(bridge_slave_1) entered blocking state [ 1123.320552][ T3671] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1123.327770][ T3671] bridge0: port 1(bridge_slave_0) entered blocking state [ 1123.334817][ T3671] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1123.351055][ T3671] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1123.358992][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 1123.366713][ T6] bridge0: port 1(bridge_slave_0) entered disabled state [ 1123.374867][ T6] bridge0: port 2(bridge_slave_1) entered disabled state [ 1123.382529][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 1123.391481][ T3671] 8021q: adding VLAN 0 to HW filter on device team0 [ 1123.400435][ T3679] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 1123.408546][ T3679] bridge0: port 1(bridge_slave_0) entered blocking state [ 1123.415583][ T3679] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1123.422952][ T3679] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 1123.431246][ T3679] bridge0: port 2(bridge_slave_1) entered blocking state [ 1123.438262][ T3679] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1123.448950][ T3683] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 1123.457094][ T3683] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 1123.465497][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 1123.475701][ T3671] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 1123.486067][ T3671] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 1123.497117][ T3683] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 1123.505219][ T3683] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 1123.513486][ T3683] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 1123.523142][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1123.530504][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 1123.539288][ T3671] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1123.570814][ T2510] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 1123.580854][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 1123.588834][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 1123.596389][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 1123.604602][ T3671] device veth0_vlan entered promiscuous mode [ 1123.611952][ T3671] device veth1_vlan entered promiscuous mode [ 1123.621446][ T3683] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 1123.629136][ T3683] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 1123.637016][ T3683] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 1123.645919][ T3671] device veth0_macvtap entered promiscuous mode [ 1123.653135][ T3671] device veth1_macvtap entered promiscuous mode [ 1123.662449][ T3671] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1123.669649][ T3683] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 1123.678528][ T3683] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 1123.687458][ T3671] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1123.694971][ T3683] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 1123.703822][ T3671] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1123.712610][ T3671] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1123.721391][ T3671] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1123.730191][ T3671] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1123.750232][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1123.758027][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1123.765852][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 1123.777923][ T3688] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1123.785794][ T3688] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1123.793425][ T3683] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1124.069870][ T3681] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 1124.309906][ T3681] usb 1-1: Using ep0 maxpacket: 16 [ 1124.430112][ T3681] usb 1-1: config 0 has an invalid interface number: 239 but max is 0 [ 1124.438274][ T3681] usb 1-1: config 0 has no interface number 0 [ 1124.444472][ T3681] usb 1-1: config 0 interface 239 altsetting 0 endpoint 0xF has invalid maxpacket 1023, setting to 64 [ 1124.455486][ T3681] usb 1-1: config 0 interface 239 altsetting 0 has an invalid endpoint with address 0x1B, skipping [ 1124.466233][ T3681] usb 1-1: config 0 interface 239 altsetting 0 endpoint 0xA has invalid maxpacket 1024, setting to 64 [ 1124.629996][ T3681] usb 1-1: New USB device found, idVendor=0df6, idProduct=0059, bcdDevice=6a.a8 [ 1124.639031][ T3681] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1124.647043][ T3681] usb 1-1: Product: syz [ 1124.651211][ T3681] usb 1-1: Manufacturer: syz [ 1124.655796][ T3681] usb 1-1: SerialNumber: syz [ 1124.660938][ T3681] usb 1-1: config 0 descriptor?? [ 1124.700735][ T3681] r8712u: register rtl8712_netdev_ops to netdev_ops [ 1124.707372][ T3681] usb 1-1: r8712u: USB_SPEED_HIGH with 4 endpoints [ 1124.929917][ T3681] usb 1-1: r8712u: Boot from EEPROM: Autoload OK [ 1125.070093][ T3683] Bluetooth: hci0: command 0x0409 tx timeout [ 1127.149918][ T3683] Bluetooth: hci0: command 0x041b tx timeout [ 1129.230069][ T3683] Bluetooth: hci0: command 0x040f tx timeout 2022/04/29 23:44:23 executed programs: 1 [ 1131.309848][ T3683] Bluetooth: hci0: command 0x0419 tx timeout [ 1138.063780][ T3696] kmemleak: 8 new suspected memory leaks (see /sys/kernel/debug/kmemleak) BUG: memory leak unreferenced object 0xffff888111f02a80 (size 192): comm "kworker/0:4", pid 3681, jiffies 4295049740 (age 19.840s) hex dump (first 32 bytes): 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 98 2a f0 11 81 88 ff ff .........*...... backtrace: [] usb_alloc_urb+0xa5/0xb0 [] r8712_os_recvbuf_resource_alloc+0x1b/0x80 [] r8712_init_recv_priv+0x97/0x210 [] _r8712_init_recv_priv+0x134/0x150 [] r8712_init_drv_sw+0xa0/0x1d0 [] r871xu_drv_init.cold+0xbb/0x7a7 [] usb_probe_interface+0x177/0x370 [] really_probe.part.0+0xe7/0x310 [] __driver_probe_device+0x10c/0x1e0 [] driver_probe_device+0x2a/0x120 [] __device_attach_driver+0xf6/0x140 [] bus_for_each_drv+0xb7/0x100 [] __device_attach+0x122/0x260 [] bus_probe_device+0xc6/0xe0 [] device_add+0x5fb/0xdf0 [] usb_set_configuration+0x8f2/0xb80 BUG: memory leak unreferenced object 0xffff888111f029c0 (size 192): comm "kworker/0:4", pid 3681, jiffies 4295049740 (age 19.840s) hex dump (first 32 bytes): 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 d8 29 f0 11 81 88 ff ff .........)...... backtrace: [] usb_alloc_urb+0xa5/0xb0 [] r8712_os_recvbuf_resource_alloc+0x1b/0x80 [] r8712_init_recv_priv+0x97/0x210 [] _r8712_init_recv_priv+0x134/0x150 [] r8712_init_drv_sw+0xa0/0x1d0 [] r871xu_drv_init.cold+0xbb/0x7a7 [] usb_probe_interface+0x177/0x370 [] really_probe.part.0+0xe7/0x310 [] __driver_probe_device+0x10c/0x1e0 [] driver_probe_device+0x2a/0x120 [] __device_attach_driver+0xf6/0x140 [] bus_for_each_drv+0xb7/0x100 [] __device_attach+0x122/0x260 [] bus_probe_device+0xc6/0xe0 [] device_add+0x5fb/0xdf0 [] usb_set_configuration+0x8f2/0xb80 BUG: memory leak unreferenced object 0xffff888111f02900 (size 192): comm "kworker/0:4", pid 3681, jiffies 4295049740 (age 19.840s) hex dump (first 32 bytes): 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 18 29 f0 11 81 88 ff ff .........)...... backtrace: [] usb_alloc_urb+0xa5/0xb0 [] r8712_os_recvbuf_resource_alloc+0x1b/0x80 [] r8712_init_recv_priv+0x97/0x210 [] _r8712_init_recv_priv+0x134/0x150 [] r8712_init_drv_sw+0xa0/0x1d0 [] r871xu_drv_init.cold+0xbb/0x7a7 [] usb_probe_interface+0x177/0x370 [] really_probe.part.0+0xe7/0x310 [] __driver_probe_device+0x10c/0x1e0 [] driver_probe_device+0x2a/0x120 [] __device_attach_driver+0xf6/0x140 [] bus_for_each_drv+0xb7/0x100 [] __device_attach+0x122/0x260 [] bus_probe_device+0xc6/0xe0 [] device_add+0x5fb/0xdf0 [] usb_set_configuration+0x8f2/0xb80