DUID 00:04:b3:a3:1d:bd:1c:51:b3:31:90:57:55:31:74:bf:f9:06 forked to background, child pid 4634 [ 12.781889][ T4635] 8021q: adding VLAN 0 to HW filter on device bond0 [ 12.785164][ T4635] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller syzkaller login: [ 69.869895][ T24] cfg80211: failed to load regulatory.db Warning: Permanently added '10.128.10.49' (ECDSA) to the list of known hosts. 2022/12/30 07:38:22 ignoring optional flag "sandboxArg"="0" 2022/12/30 07:38:22 parsed 1 programs [ 1109.986176][ T5128] cgroup: Unknown subsys name 'net' [ 1110.081438][ T5128] cgroup: Unknown subsys name 'rlimit' 2022/12/30 07:38:29 executed programs: 0 [ 1117.191319][ T5136] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 1117.198369][ T5136] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 1117.205441][ T5136] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 1117.212771][ T5136] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 1117.219918][ T5136] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 1117.226918][ T44] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 1117.263759][ T5135] chnl_net:caif_netlink_parms(): no params data found [ 1117.280967][ T5135] bridge0: port 1(bridge_slave_0) entered blocking state [ 1117.288016][ T5135] bridge0: port 1(bridge_slave_0) entered disabled state [ 1117.295519][ T5135] device bridge_slave_0 entered promiscuous mode [ 1117.302653][ T5135] bridge0: port 2(bridge_slave_1) entered blocking state [ 1117.309899][ T5135] bridge0: port 2(bridge_slave_1) entered disabled state [ 1117.317176][ T5135] device bridge_slave_1 entered promiscuous mode [ 1117.327498][ T5135] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1117.337390][ T5135] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1117.350537][ T5135] team0: Port device team_slave_0 added [ 1117.356616][ T5135] team0: Port device team_slave_1 added [ 1117.366306][ T5135] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1117.373322][ T5135] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1117.399297][ T5135] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1117.410326][ T5135] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1117.417245][ T5135] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1117.443365][ T5135] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1117.459815][ T5135] device hsr_slave_0 entered promiscuous mode [ 1117.466052][ T5135] device hsr_slave_1 entered promiscuous mode [ 1117.493425][ T5135] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1117.500890][ T5135] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1117.508313][ T5135] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1117.515808][ T5135] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1117.526436][ T5135] bridge0: port 2(bridge_slave_1) entered blocking state [ 1117.533503][ T5135] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1117.540741][ T5135] bridge0: port 1(bridge_slave_0) entered blocking state [ 1117.547758][ T5135] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1117.566131][ T5135] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1117.574546][ T72] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 1117.582526][ T72] bridge0: port 1(bridge_slave_0) entered disabled state [ 1117.590453][ T72] bridge0: port 2(bridge_slave_1) entered disabled state [ 1117.597835][ T72] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 1117.606544][ T5135] 8021q: adding VLAN 0 to HW filter on device team0 [ 1117.614677][ T5130] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 1117.622945][ T5130] bridge0: port 1(bridge_slave_0) entered blocking state [ 1117.629987][ T5130] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1117.638439][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 1117.646764][ T6] bridge0: port 2(bridge_slave_1) entered blocking state [ 1117.653831][ T6] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1117.664466][ T5130] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 1117.675264][ T5135] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 1117.685667][ T5135] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 1117.697042][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 1117.705104][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 1117.713419][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 1117.745155][ T5135] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1117.752108][ T5145] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1117.759458][ T5145] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 1117.774280][ T5135] device veth0_vlan entered promiscuous mode [ 1117.781410][ T5145] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 1117.790046][ T5145] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 1117.798103][ T5145] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 1117.805787][ T5145] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 1117.814339][ T5135] device veth1_vlan entered promiscuous mode [ 1117.823809][ T5130] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 1117.831619][ T5130] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 1117.839545][ T5130] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 1117.848390][ T5135] device veth0_macvtap entered promiscuous mode [ 1117.855654][ T5135] device veth1_macvtap entered promiscuous mode [ 1117.864923][ T5135] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1117.872222][ T5145] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 1117.880995][ T5145] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 1117.890068][ T5135] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1117.897344][ T5145] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 1117.906545][ T5135] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1117.915989][ T5135] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1117.924788][ T5135] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1117.933598][ T5135] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1117.953941][ T25] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1117.964507][ T25] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1117.967810][ T951] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1117.972485][ T5145] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 1117.980421][ T951] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1117.994572][ T5130] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1118.279169][ T5145] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 1118.799195][ T5145] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1118.808241][ T5145] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1118.816826][ T5145] usb 1-1: Product: syz [ 1118.821040][ T5145] usb 1-1: Manufacturer: syz [ 1118.825650][ T5145] usb 1-1: SerialNumber: syz [ 1118.889560][ T5145] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1119.309161][ T44] Bluetooth: hci0: command 0x0409 tx timeout [ 1119.539169][ T5145] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1119.960111][ T5130] usb 1-1: USB disconnect, device number 2 [ 1120.589168][ T5145] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive [ 1120.596065][ T5145] ath9k_htc: Failed to initialize the device [ 1120.602539][ T5130] usb 1-1: ath9k_htc: USB layer deinitialized [ 1121.389166][ T44] Bluetooth: hci0: command 0x041b tx timeout [ 1123.469264][ T44] Bluetooth: hci0: command 0x040f tx timeout 2022/12/30 07:38:38 executed programs: 1 [ 1125.549162][ T44] Bluetooth: hci0: command 0x0419 tx timeout [ 1125.869148][ T5145] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 1126.389164][ T5145] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1126.398220][ T5145] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1126.406344][ T5145] usb 1-1: Product: syz [ 1126.410582][ T5145] usb 1-1: Manufacturer: syz [ 1126.415169][ T5145] usb 1-1: SerialNumber: syz [ 1126.459409][ T5145] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1127.029191][ T5145] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1127.451847][ T5129] usb 1-1: USB disconnect, device number 3 [ 1128.109170][ T5145] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive [ 1128.116048][ T5145] ath9k_htc: Failed to initialize the device [ 1128.122189][ T5129] usb 1-1: ath9k_htc: USB layer deinitialized [ 1128.489161][ T5129] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 1129.009191][ T5129] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1129.018235][ T5129] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1129.026295][ T5129] usb 1-1: Product: syz [ 1129.030503][ T5129] usb 1-1: Manufacturer: syz [ 1129.035079][ T5129] usb 1-1: SerialNumber: syz [ 1129.079392][ T5129] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1129.649184][ T5129] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1130.069598][ T5145] usb 1-1: USB disconnect, device number 4 [ 1130.669170][ T5129] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive [ 1130.676069][ T5129] ath9k_htc: Failed to initialize the device [ 1130.682458][ T5145] usb 1-1: ath9k_htc: USB layer deinitialized 2022/12/30 07:38:48 executed programs: 3 [ 1135.999145][ T5129] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 1136.549251][ T5129] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1136.558399][ T5129] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1136.566607][ T5129] usb 1-1: Product: syz [ 1136.570854][ T5129] usb 1-1: Manufacturer: syz [ 1136.575440][ T5129] usb 1-1: SerialNumber: syz [ 1136.619489][ T5129] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1137.179163][ T72] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1137.599394][ T5130] usb 1-1: USB disconnect, device number 5 [ 1138.189197][ T72] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive [ 1138.196071][ T72] ath9k_htc: Failed to initialize the device [ 1138.202247][ T5130] usb 1-1: ath9k_htc: USB layer deinitialized [ 1138.569133][ T5130] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 1139.089248][ T5130] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1139.098269][ T5130] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1139.106385][ T5130] usb 1-1: Product: syz [ 1139.110606][ T5130] usb 1-1: Manufacturer: syz [ 1139.115175][ T5130] usb 1-1: SerialNumber: syz [ 1139.159588][ T5130] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1139.719149][ T4720] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1140.139439][ T5130] usb 1-1: USB disconnect, device number 6 [ 1140.749149][ T4720] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive [ 1140.756061][ T4720] ath9k_htc: Failed to initialize the device [ 1140.762443][ T5130] usb 1-1: ath9k_htc: USB layer deinitialized [ 1141.686623][ T5170] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) BUG: memory leak unreferenced object 0xffff88810bb8da00 (size 240): comm "softirq", pid 0, jiffies 4295049994 (age 20.580s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [] __build_skb+0x21/0x60 [] __netdev_alloc_skb+0x14e/0x220 [] ath9k_hif_usb_rx_cb+0x1d0/0x660 [] __usb_hcd_giveback_urb+0xfc/0x230 [] usb_hcd_giveback_urb+0x1ab/0x1c0 [] dummy_timer+0x8e4/0x14c0 [] call_timer_fn+0x33/0x1f0 [] expire_timers+0xff/0x1d0 [] run_timer_softirq+0x129/0x2f0 [] __do_softirq+0xeb/0x2ef BUG: memory leak unreferenced object 0xffff88810a473900 (size 240): comm "softirq", pid 0, jiffies 4295050256 (age 17.960s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [] __build_skb+0x21/0x60 [] __netdev_alloc_skb+0x14e/0x220 [] ath9k_hif_usb_rx_cb+0x1d0/0x660 [] __usb_hcd_giveback_urb+0xfc/0x230 [] usb_hcd_giveback_urb+0x1ab/0x1c0 [] dummy_timer+0x8e4/0x14c0 [] call_timer_fn+0x33/0x1f0 [] expire_timers+0xff/0x1d0 [] run_timer_softirq+0x129/0x2f0 [] __do_softirq+0xeb/0x2ef