Warning: Permanently added '10.128.0.54' (ED25519) to the list of known hosts.
2023/07/17 05:43:03 ignoring optional flag "sandboxArg"="0"
2023/07/17 05:43:03 parsed 1 programs
2023/07/17 05:43:03 executed programs: 0
[ 42.198857][ T25] kauditd_printk_skb: 86 callbacks suppressed
[ 42.198861][ T25] audit: type=1400 audit(1689572583.929:177): avc: denied { getattr } for pid=3022 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 42.222003][ T2418] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 42.229646][ T25] audit: type=1400 audit(1689572583.929:178): avc: denied { read } for pid=3022 comm="syz-execprog" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 42.236984][ T2418] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 42.237038][ T2418] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 42.258463][ T25] audit: type=1400 audit(1689572583.929:179): avc: denied { open } for pid=3022 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 42.265887][ T2418] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 42.272598][ T25] audit: type=1400 audit(1689572583.949:180): avc: denied { mounton } for pid=3027 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[ 42.296759][ T2418] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 42.303606][ T25] audit: type=1400 audit(1689572583.949:181): avc: denied { mount } for pid=3027 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[ 42.329083][ T2418] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 42.335892][ T25] audit: type=1400 audit(1689572583.949:182): avc: denied { ioctl } for pid=3031 comm="syz-executor.0" path="socket:[24087]" dev="sockfs" ino=24087 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 42.393363][ T25] audit: type=1400 audit(1689572584.099:183): avc: denied { mounton } for pid=3031 comm="syz-executor.0" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[ 42.449485][ T3031] chnl_net:caif_netlink_parms(): no params data found
[ 42.463400][ T3031] bridge0: port 1(bridge_slave_0) entered blocking state
[ 42.470505][ T3031] bridge0: port 1(bridge_slave_0) entered disabled state
[ 42.477997][ T3031] bridge_slave_0: entered allmulticast mode
[ 42.484450][ T3031] bridge_slave_0: entered promiscuous mode
[ 42.491258][ T3031] bridge0: port 2(bridge_slave_1) entered blocking state
[ 42.499099][ T3031] bridge0: port 2(bridge_slave_1) entered disabled state
[ 42.506299][ T3031] bridge_slave_1: entered allmulticast mode
[ 42.512543][ T3031] bridge_slave_1: entered promiscuous mode
[ 42.521301][ T3031] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 42.531027][ T3031] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 42.558678][ T3031] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 42.565989][ T3031] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 42.592899][ T3031] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 42.604830][ T3031] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 42.611840][ T3031] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 42.638790][ T3031] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 42.686861][ T25] audit: type=1400 audit(1689572584.419:184): avc: denied { write } for pid=3031 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 42.689062][ T3031] bridge0: port 2(bridge_slave_1) entered blocking state
[ 42.709705][ T25] audit: type=1400 audit(1689572584.419:185): avc: denied { read } for pid=3031 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 42.717164][ T3031] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 42.717199][ T3031] bridge0: port 1(bridge_slave_0) entered blocking state
[ 42.717207][ T3031] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 42.934423][ T3031] 8021q: adding VLAN 0 to HW filter on device bond0
[ 42.943591][ T847] bridge0: port 1(bridge_slave_0) entered disabled state
[ 42.951505][ T847] bridge0: port 2(bridge_slave_1) entered disabled state
[ 42.975379][ T8] bridge0: port 1(bridge_slave_0) entered blocking state
[ 42.982623][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 42.990063][ T8] bridge0: port 2(bridge_slave_1) entered blocking state
[ 42.997458][ T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 43.071152][ T3031] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 43.101145][ T3031] veth0_vlan: entered promiscuous mode
[ 43.226055][ T3031] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 43.234596][ T3031] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 43.284912][ T25] audit: type=1400 audit(1689572585.019:186): avc: denied { mounton } for pid=3031 comm="syz-executor.0" path="/dev/binderfs" dev="devtmpfs" ino=1001 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[ 43.612386][ T847] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[ 43.862327][ T847] usb 1-1: Using ep0 maxpacket: 16
[ 43.992621][ T847] usb 1-1: config index 0 descriptor too short (expected 57892, got 36)
[ 44.001130][ T847] usb 1-1: config 0 has an invalid interface number: 0 but max is -1
[ 44.009582][ T847] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 0
[ 44.018515][ T847] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 1024
[ 44.028691][ T847] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x1 has an invalid bInterval 215, changing to 11
[ 44.039957][ T847] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid maxpacket 17967, setting to 1024
[ 44.242459][ T847] usb 1-1: New USB device found, idVendor=1435, idProduct=0826, bcdDevice=1c.50
[ 44.251742][ T847] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 44.260583][ T847] usb 1-1: Product: syz
[ 44.264779][ T847] usb 1-1: Manufacturer: syz
[ 44.269504][ T847] usb 1-1: SerialNumber: syz
[ 44.274596][ T847] usb 1-1: config 0 descriptor??
[ 44.302432][ T3208] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 44.309735][ T3208] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 44.392544][ T2748] Bluetooth: hci0: command 0x0409 tx timeout
[ 44.562711][ T847] ------------[ cut here ]------------
[ 44.568281][ T847] usb 1-1: BOGUS urb xfer, pipe 3 != type 1
[ 44.574428][ T847] WARNING: CPU: 1 PID: 847 at drivers/usb/core/urb.c:504 usb_submit_urb+0x442/0x690
[ 44.584169][ C1] usb 1-1: RX USB error -71.
[ 44.589085][ T847] Modules linked in:
[ 44.593068][ T847] CPU: 1 PID: 847 Comm: kworker/1:2 Not tainted 6.5.0-rc2-syzkaller #0
[ 44.601457][ T847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023
[ 44.611517][ C1] usb 1-1: RX USB error -71.
[ 44.616103][ T847] Workqueue: usb_hub_wq hub_event
[ 44.621109][ T847] RIP: 0010:usb_submit_urb+0x442/0x690
[ 44.627108][ C1] usb 1-1: RX USB error -71.
[ 44.631744][ T847] Code: 48 89 54 24 10 44 89 44 24 0c e8 f9 b8 c8 ff 44 8b 44 24 0c 89 d9 48 c7 c7 70 da 70 83 48 8b 54 24 10 48 89 c6 e8 2e 00 16 ff <0f> 0b 41 80 fe 01 41 8b 4d 5c 0f 85 85 fd ff ff 89 cb 81 e3 86 03
[ 44.651363][ C1] usb 1-1: RX USB error -71.
[ 44.656089][ T847] RSP: 0018:ffffc900016bb770 EFLAGS: 00010286
[ 44.662342][ C1] usb 1-1: RX USB error -71.
[ 44.667553][ T847] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000000000
[ 44.676267][ T847] RDX: 0000000000000002 RSI: ffffc900016bb618 RDI: 00000000ffffffff
[ 44.684693][ C1] usb 1-1: RX USB error -71.
[ 44.689804][ T847] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffffff83ab2960
[ 44.697964][ T847] R10: ffffc900016bb610 R11: ffffffff83b929a8 R12: ffff888175d15000
[ 44.706599][ C1] usb 1-1: RX USB error -71.
[ 44.711745][ T847] R13: ffff888113c12480 R14: 0000000000000003 R15: 00000000ffffff01
[ 44.719841][ T847] FS: 0000000000000000(0000) GS:ffff888237d00000(0000) knlGS:0000000000000000
[ 44.728862][ C1] usb 1-1: RX USB error -71.
[ 44.734085][ T847] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 44.740813][ T847] CR2: 000055a5fc941018 CR3: 0000000003a5a000 CR4: 00000000003506e0
[ 44.749032][ C1] usb 1-1: RX USB error -71.
[ 44.753760][ T847] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 44.762255][ T847] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 44.770375][ C1] usb 1-1: RX USB error -71.
[ 44.775000][ T847] Call Trace:
[ 44.778445][ T847]
[ 44.781446][ T847] ? __warn+0x7f/0x180
[ 44.785705][ C1] usb 1-1: RX USB error -71.
[ 44.790672][ T847] ? usb_submit_urb+0x442/0x690
[ 44.795652][ T847] ? report_bug+0x18d/0x1c0
[ 44.800143][ T847] ? handle_bug+0x3c/0x60
[ 44.804480][ C1] usb 1-1: RX USB error -71.
[ 44.809084][ T847] ? exc_invalid_op+0x17/0x60
[ 44.814333][ T847] ? asm_exc_invalid_op+0x1a/0x20
[ 44.819433][ T847] ? usb_submit_urb+0x442/0x690
[ 44.824832][ C1] usb 1-1: RX USB error -71.
[ 44.829782][ T847] ? __kmem_cache_alloc_node+0x14a/0x3a0
[ 44.835772][ T847] ar5523_cmd+0xf6/0x1f0
[ 44.840117][ T847] ar5523_probe+0x899/0x1370
[ 44.844799][ C1] usb 1-1: RX USB error -71.
[ 44.849733][ T847] usb_probe_interface+0xe7/0x2c0
[ 44.855195][ T847] really_probe+0xb6/0x3c0
[ 44.859610][ T847] ? driver_probe_device+0x90/0x90
[ 44.864735][ C1] usb 1-1: RX USB error -71.
[ 44.869359][ T847] __driver_probe_device+0x73/0x150
[ 44.874675][ T847] driver_probe_device+0x1a/0x90
[ 44.879590][ T847] __device_attach_driver+0x75/0xf0
[ 44.885744][ C1] usb 1-1: RX USB error -71.
[ 44.890320][ T847] bus_for_each_drv+0x90/0xe0
[ 44.895223][ T847] __device_attach+0xaf/0x1b0
[ 44.900093][ T847] bus_probe_device+0x90/0xa0
[ 44.904779][ C1] usb 1-1: RX USB error -71.
[ 44.909354][ T847] device_add+0x6be/0x8d0
[ 44.913859][ T847] ? __mutex_unlock_slowpath+0x35/0x280
[ 44.919478][ T847] usb_set_configuration+0x687/0x9f0
[ 44.925042][ C1] usb 1-1: RX USB error -71.
[ 44.929843][ T847] ? preempt_count_add+0x42/0x90
[ 44.935379][ T847] ? kernfs_add_one+0x13a/0x170
[ 44.940471][ T847] usb_generic_driver_probe+0x53/0x90
[ 44.945878][ C1] usb 1-1: RX USB error -71.
[ 44.950542][ T847] usb_probe_device+0x33/0xf0
[ 44.956098][ T847] really_probe+0xb6/0x3c0
[ 44.960711][ T847] ? driver_probe_device+0x90/0x90
[ 44.966096][ C1] usb 1-1: RX USB error -71.
[ 44.970859][ T847] __driver_probe_device+0x73/0x150
[ 44.976333][ T847] driver_probe_device+0x1a/0x90
[ 44.982948][ C1] usb 1-1: RX USB error -71.
[ 44.987728][ T847] __device_attach_driver+0x75/0xf0
[ 44.993572][ T847] bus_for_each_drv+0x90/0xe0
[ 44.998574][ T847] __device_attach+0xaf/0x1b0
[ 45.003963][ C1] usb 1-1: RX USB error -71.
[ 45.008718][ T847] bus_probe_device+0x90/0xa0
[ 45.013607][ T847] device_add+0x6be/0x8d0
[ 45.018034][ T847] ? do_raw_spin_unlock+0x53/0xa0
[ 45.023605][ C1] usb 1-1: RX USB error -71.
[ 45.028581][ T847] usb_new_device+0x2c5/0x650
[ 45.033627][ T847] hub_event+0x1318/0x1c70
[ 45.038117][ T847] process_one_work+0x2b1/0x580
[ 45.043159][ C1] usb 1-1: RX USB error -71.
[ 45.047935][ T847] worker_thread+0x4e/0x3a0
[ 45.052600][ T847] ? _raw_spin_unlock_irqrestore+0x3c/0x60
[ 45.058609][ T847] ? rescuer_thread+0x390/0x390
[ 45.063472][ C1] usb 1-1: RX USB error -71.
[ 45.068139][ T847] kthread+0xf2/0x120
[ 45.072092][ T847] ? kthread_complete_and_exit+0x20/0x20
[ 45.077809][ T847] ret_from_fork+0x2c/0x40
[ 45.082310][ C1] usb 1-1: RX USB error -71.
[ 45.086968][ T847] ? kthread_complete_and_exit+0x20/0x20
[ 45.092794][ T847] ret_from_fork_asm+0x11/0x20
[ 45.097602][ T847] RIP: 0000:0x0
[ 45.101043][ T847] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[ 45.108722][ C1] usb 1-1: RX USB error -71.
[ 45.113376][ T847] RSP: 0000:0000000000000000 EFLAGS: 00000000 ORIG_RAX: 0000000000000000
[ 45.121943][ T847] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 45.130115][ C1] usb 1-1: RX USB error -71.
[ 45.134905][ T847] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 45.143147][ C1] usb 1-1: RX USB error -71.
[ 45.147837][ T847] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 45.156178][ T847] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 45.164334][ C1] usb 1-1: RX USB error -71.
[ 45.169175][ T847] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 45.177536][ T847]
[ 45.180624][ T847] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 45.188245][ T847] CPU: 1 PID: 847 Comm: kworker/1:2 Not tainted 6.5.0-rc2-syzkaller #0
[ 45.196889][ T847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023
[ 45.207444][ T847] Workqueue: usb_hub_wq hub_event
[ 45.212982][ T847] Call Trace:
[ 45.216706][ T847]
[ 45.220017][ T847] dump_stack_lvl+0x3d/0x60
[ 45.224682][ T847] panic+0x2eb/0x320
[ 45.228748][ T847] ? usb_submit_urb+0x442/0x690
[ 45.233755][ T847] check_panic_on_warn+0x3b/0x50
[ 45.239153][ T847] __warn+0x8b/0x180
[ 45.243199][ T847] ? usb_submit_urb+0x442/0x690
[ 45.248034][ T847] report_bug+0x18d/0x1c0
[ 45.252500][ T847] handle_bug+0x3c/0x60
[ 45.257018][ T847] exc_invalid_op+0x17/0x60
[ 45.261581][ T847] asm_exc_invalid_op+0x1a/0x20
[ 45.266674][ T847] RIP: 0010:usb_submit_urb+0x442/0x690
[ 45.272108][ T847] Code: 48 89 54 24 10 44 89 44 24 0c e8 f9 b8 c8 ff 44 8b 44 24 0c 89 d9 48 c7 c7 70 da 70 83 48 8b 54 24 10 48 89 c6 e8 2e 00 16 ff <0f> 0b 41 80 fe 01 41 8b 4d 5c 0f 85 85 fd ff ff 89 cb 81 e3 86 03
[ 45.293396][ T847] RSP: 0018:ffffc900016bb770 EFLAGS: 00010286
[ 45.299640][ T847] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000000000
[ 45.307581][ T847] RDX: 0000000000000002 RSI: ffffc900016bb618 RDI: 00000000ffffffff
[ 45.315723][ T847] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffffff83ab2960
[ 45.324114][ T847] R10: ffffc900016bb610 R11: ffffffff83b929a8 R12: ffff888175d15000
[ 45.332495][ T847] R13: ffff888113c12480 R14: 0000000000000003 R15: 00000000ffffff01
[ 45.340785][ T847] ? __kmem_cache_alloc_node+0x14a/0x3a0
[ 45.346411][ T847] ar5523_cmd+0xf6/0x1f0
[ 45.350728][ T847] ar5523_probe+0x899/0x1370
[ 45.355394][ T847] usb_probe_interface+0xe7/0x2c0
[ 45.360397][ T847] really_probe+0xb6/0x3c0
[ 45.364784][ T847] ? driver_probe_device+0x90/0x90
[ 45.369877][ T847] __driver_probe_device+0x73/0x150
[ 45.375053][ T847] driver_probe_device+0x1a/0x90
[ 45.379960][ T847] __device_attach_driver+0x75/0xf0
[ 45.385124][ T847] bus_for_each_drv+0x90/0xe0
[ 45.389791][ T847] __device_attach+0xaf/0x1b0
[ 45.394454][ T847] bus_probe_device+0x90/0xa0
[ 45.399302][ T847] device_add+0x6be/0x8d0
[ 45.403877][ T847] ? __mutex_unlock_slowpath+0x35/0x280
[ 45.409494][ T847] usb_set_configuration+0x687/0x9f0
[ 45.414773][ T847] ? preempt_count_add+0x42/0x90
[ 45.419862][ T847] ? kernfs_add_one+0x13a/0x170
[ 45.424767][ T847] usb_generic_driver_probe+0x53/0x90
[ 45.430195][ T847] usb_probe_device+0x33/0xf0
[ 45.434845][ T847] really_probe+0xb6/0x3c0
[ 45.439278][ T847] ? driver_probe_device+0x90/0x90
[ 45.444360][ T847] __driver_probe_device+0x73/0x150
[ 45.449611][ T847] driver_probe_device+0x1a/0x90
[ 45.454515][ T847] __device_attach_driver+0x75/0xf0
[ 45.459692][ T847] bus_for_each_drv+0x90/0xe0
[ 45.464644][ T847] __device_attach+0xaf/0x1b0
[ 45.469380][ T847] bus_probe_device+0x90/0xa0
[ 45.474026][ T847] device_add+0x6be/0x8d0
[ 45.478408][ T847] ? do_raw_spin_unlock+0x53/0xa0
[ 45.483667][ T847] usb_new_device+0x2c5/0x650
[ 45.488329][ T847] hub_event+0x1318/0x1c70
[ 45.493079][ T847] process_one_work+0x2b1/0x580
[ 45.498008][ T847] worker_thread+0x4e/0x3a0
[ 45.502585][ T847] ? _raw_spin_unlock_irqrestore+0x3c/0x60
[ 45.508484][ T847] ? rescuer_thread+0x390/0x390
[ 45.513536][ T847] kthread+0xf2/0x120
[ 45.517925][ T847] ? kthread_complete_and_exit+0x20/0x20
[ 45.523616][ T847] ret_from_fork+0x2c/0x40
[ 45.528004][ T847] ? kthread_complete_and_exit+0x20/0x20
[ 45.533957][ T847] ret_from_fork_asm+0x11/0x20
[ 45.538871][ T847] RIP: 0000:0x0
[ 45.542353][ T847] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[ 45.549882][ T847] RSP: 0000:0000000000000000 EFLAGS: 00000000 ORIG_RAX: 0000000000000000
[ 45.558535][ T847] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 45.566479][ T847] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 45.575025][ T847] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 45.583148][ T847] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 45.591307][ T847] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 45.599349][ T847]
[ 45.602694][ T847] Kernel Offset: disabled
[ 45.607078][ T847] Rebooting in 86400 seconds..