DUID 00:04:f2:44:87:71:f8:0d:58:ee:4a:2e:c3:89:cb:7d:08:0c forked to background, child pid 3209 [ 12.696645][ T3210] 8021q: adding VLAN 0 to HW filter on device bond0 [ 12.700406][ T3210] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller syzkaller login: [ 69.881402][ T154] cfg80211: failed to load regulatory.db Warning: Permanently added '10.128.1.61' (ECDSA) to the list of known hosts. 2022/11/22 15:11:06 ignoring optional flag "sandboxArg"="0" 2022/11/22 15:11:06 parsed 1 programs [ 1101.861374][ T3700] cgroup: Unknown subsys name 'net' [ 1101.953642][ T3700] cgroup: Unknown subsys name 'rlimit' 2022/11/22 15:11:13 executed programs: 0 [ 1109.189504][ T3700] kmemleak: 8 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 1109.250199][ T3712] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 1109.257253][ T3711] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 1109.264480][ T3711] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 1109.271889][ T3711] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 1109.279245][ T3711] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 1109.286335][ T3711] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 1109.293618][ T3710] Bluetooth: hci0: HCI_REQ-0x0c1a [ 1109.326143][ T3710] chnl_net:caif_netlink_parms(): no params data found [ 1109.343448][ T3710] bridge0: port 1(bridge_slave_0) entered blocking state [ 1109.350505][ T3710] bridge0: port 1(bridge_slave_0) entered disabled state [ 1109.357889][ T3710] device bridge_slave_0 entered promiscuous mode [ 1109.364846][ T3710] bridge0: port 2(bridge_slave_1) entered blocking state [ 1109.371991][ T3710] bridge0: port 2(bridge_slave_1) entered disabled state [ 1109.379277][ T3710] device bridge_slave_1 entered promiscuous mode [ 1109.389966][ T3710] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1109.399733][ T3710] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1109.412741][ T3710] team0: Port device team_slave_0 added [ 1109.418784][ T3710] team0: Port device team_slave_1 added [ 1109.427967][ T3710] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1109.435027][ T3710] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1109.460987][ T3710] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1109.472191][ T3710] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1109.479112][ T3710] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1109.505096][ T3710] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1109.521840][ T3710] device hsr_slave_0 entered promiscuous mode [ 1109.528043][ T3710] device hsr_slave_1 entered promiscuous mode [ 1109.552934][ T3710] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1109.560364][ T3710] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1109.567820][ T3710] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1109.575266][ T3710] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1109.585788][ T3710] bridge0: port 2(bridge_slave_1) entered blocking state [ 1109.592849][ T3710] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1109.600081][ T3710] bridge0: port 1(bridge_slave_0) entered blocking state [ 1109.607124][ T3710] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1109.624717][ T3710] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1109.633305][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 1109.641446][ T24] bridge0: port 1(bridge_slave_0) entered disabled state [ 1109.648665][ T24] bridge0: port 2(bridge_slave_1) entered disabled state [ 1109.656285][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 1109.664764][ T3710] 8021q: adding VLAN 0 to HW filter on device team0 [ 1109.672800][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 1109.681058][ T3701] bridge0: port 1(bridge_slave_0) entered blocking state [ 1109.688096][ T3701] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1109.702138][ T3710] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 1109.712515][ T3710] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 1109.723857][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 1109.732059][ T3701] bridge0: port 2(bridge_slave_1) entered blocking state [ 1109.739173][ T3701] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1109.746828][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 1109.754986][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 1109.763080][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 1109.771146][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 1109.779131][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 1109.786534][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 1109.819871][ T3710] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1109.827668][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1109.835475][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 1109.849284][ T3710] device veth0_vlan entered promiscuous mode [ 1109.855969][ T3719] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 1109.864537][ T3719] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 1109.872615][ T3719] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 1109.880014][ T3719] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 1109.888621][ T3710] device veth1_vlan entered promiscuous mode [ 1109.895192][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 1109.906893][ T3710] device veth0_macvtap entered promiscuous mode [ 1109.913827][ T3719] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 1109.921580][ T3719] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 1109.929811][ T3719] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 1109.938277][ T3710] device veth1_macvtap entered promiscuous mode [ 1109.948035][ T3710] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1109.955516][ T3719] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 1109.965122][ T3710] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1109.972436][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 1109.981699][ T3710] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1109.990465][ T3710] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1109.999321][ T3710] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1110.008332][ T3710] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1110.027992][ T3723] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1110.035999][ T3723] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1110.042073][ T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1110.043974][ T3719] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 1110.051735][ T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1110.065891][ T3701] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1110.341056][ T3719] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 1110.890811][ T3719] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1110.899882][ T3719] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1110.908102][ T3719] usb 1-1: Product: syz [ 1110.912329][ T3719] usb 1-1: Manufacturer: syz [ 1110.916965][ T3719] usb 1-1: SerialNumber: syz [ 1110.961040][ T3719] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1111.320733][ T3711] Bluetooth: hci0: command 0x0409 tx timeout [ 1111.590906][ T3719] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1111.791290][ T3720] usb 1-1: USB disconnect, device number 2 [ 1112.600759][ T3719] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive [ 1112.607743][ T3719] ath9k_htc: Failed to initialize the device [ 1112.614805][ T3720] usb 1-1: ath9k_htc: USB layer deinitialized [ 1113.400742][ T3711] Bluetooth: hci0: command 0x041b tx timeout [ 1114.361758][ T1254] ieee802154 phy0 wpan0: encryption failed: -22 [ 1114.368056][ T1254] ieee802154 phy1 wpan1: encryption failed: -22 [ 1115.480863][ T3711] Bluetooth: hci0: command 0x040f tx timeout 2022/11/22 15:11:21 executed programs: 1 [ 1117.560722][ T3711] Bluetooth: hci0: command 0x0419 tx timeout [ 1117.820725][ T3719] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 1118.340823][ T3719] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1118.349871][ T3719] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1118.358046][ T3719] usb 1-1: Product: syz [ 1118.362302][ T3719] usb 1-1: Manufacturer: syz [ 1118.366892][ T3719] usb 1-1: SerialNumber: syz [ 1118.411023][ T3719] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1118.970772][ T3719] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1119.171179][ T3720] usb 1-1: USB disconnect, device number 3 [ 1120.040857][ T3719] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive [ 1120.047747][ T3719] ath9k_htc: Failed to initialize the device [ 1120.053801][ T3720] usb 1-1: ath9k_htc: USB layer deinitialized [ 1120.400726][ T3720] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 1120.920915][ T3720] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1120.929994][ T3720] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1120.938194][ T3720] usb 1-1: Product: syz [ 1120.942402][ T3720] usb 1-1: Manufacturer: syz [ 1120.946985][ T3720] usb 1-1: SerialNumber: syz [ 1120.990971][ T3720] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1121.550773][ T3720] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1121.751962][ T19] usb 1-1: USB disconnect, device number 4 [ 1122.600734][ T3720] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive [ 1122.607700][ T3720] ath9k_htc: Failed to initialize the device [ 1122.614644][ T19] usb 1-1: ath9k_htc: USB layer deinitialized [ 1123.341988][ T3736] kmemleak: 7 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 1127.421245][ T3736] kmemleak: 7 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 1129.576955][ T3736] kmemleak: 7 new suspected memory leaks (see /sys/kernel/debug/kmemleak) BUG: memory leak unreferenced object 0xffff888114d84540 (size 192): comm "kworker/1:3", pid 3719, jiffies 4295048427 (age 18.030s) hex dump (first 32 bytes): 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 58 45 d8 14 81 88 ff ff ........XE...... backtrace: [] __kmalloc+0x46/0x120 [] usb_alloc_urb+0xa0/0xb0 [] ath9k_hif_usb_alloc_urbs+0x141/0x640 [] ath9k_hif_usb_firmware_cb+0x88/0x1f0 [] request_firmware_work_func+0x47/0x90 [] process_one_work+0x2ba/0x5f0 [] worker_thread+0x59/0x5b0 [] kthread+0x125/0x160 [] ret_from_fork+0x1f/0x30 BUG: memory leak unreferenced object 0xffff888114d84480 (size 192): comm "kworker/1:3", pid 3719, jiffies 4295048427 (age 18.030s) hex dump (first 32 bytes): 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 98 44 d8 14 81 88 ff ff .........D...... backtrace: [] __kmalloc+0x46/0x120 [] usb_alloc_urb+0xa0/0xb0 [] ath9k_hif_usb_alloc_urbs+0x141/0x640 [] ath9k_hif_usb_firmware_cb+0x88/0x1f0 [] request_firmware_work_func+0x47/0x90 [] process_one_work+0x2ba/0x5f0 [] worker_thread+0x59/0x5b0 [] kthread+0x125/0x160 [] ret_from_fork+0x1f/0x30 BUG: memory leak unreferenced object 0xffff888114d843c0 (size 192): comm "kworker/1:3", pid 3719, jiffies 4295048427 (age 18.030s) hex dump (first 32 bytes): 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 d8 43 d8 14 81 88 ff ff .........C...... backtrace: [] __kmalloc+0x46/0x120 [] usb_alloc_urb+0xa0/0xb0 [] ath9k_hif_usb_alloc_urbs+0x141/0x640 [] ath9k_hif_usb_firmware_cb+0x88/0x1f0 [] request_firmware_work_func+0x47/0x90 [] process_one_work+0x2ba/0x5f0 [] worker_thread+0x59/0x5b0 [] kthread+0x125/0x160 [] ret_from_fork+0x1f/0x30 BUG: memory leak unreferenced object 0xffff888114d84300 (size 192): comm "kworker/1:3", pid 3719, jiffies 4295048427 (age 18.030s) hex dump (first 32 bytes): 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 18 43 d8 14 81 88 ff ff .........C...... backtrace: [] __kmalloc+0x46/0x120 [] usb_alloc_urb+0xa0/0xb0 [] ath9k_hif_usb_alloc_urbs+0x141/0x640 [] ath9k_hif_usb_firmware_cb+0x88/0x1f0 [] request_firmware_work_func+0x47/0x90 [] process_one_work+0x2ba/0x5f0 [] worker_thread+0x59/0x5b0 [] kthread+0x125/0x160 [] ret_from_fork+0x1f/0x30 BUG: memory leak unreferenced object 0xffff888114d84240 (size 192): comm "kworker/1:3", pid 3719, jiffies 4295048427 (age 18.030s) hex dump (first 32 bytes): 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 58 42 d8 14 81 88 ff ff ........XB...... backtrace: [] __kmalloc+0x46/0x120 [] usb_alloc_urb+0xa0/0xb0 [] ath9k_hif_usb_alloc_urbs+0x141/0x640 [] ath9k_hif_usb_firmware_cb+0x88/0x1f0 [] request_firmware_work_func+0x47/0x90 [] process_one_work+0x2ba/0x5f0 [] worker_thread+0x59/0x5b0 [] kthread+0x125/0x160 [] ret_from_fork+0x1f/0x30