[ 53.557799][ T11] bridge0: port 1(bridge_slave_0) entered disabled state
[ 53.605335][ T11] device veth1_macvtap left promiscuous mode
[ 53.605443][ T11] device veth0_macvtap left promiscuous mode
[ 53.605530][ T11] device veth1_vlan left promiscuous mode
[ 53.606256][ T11] device veth0_vlan left promiscuous mode
[ 53.752502][ T11] team0 (unregistering): Port device team_slave_1 removed
[ 53.756495][ T11] team0 (unregistering): Port device team_slave_0 removed
[ 53.775965][ T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 53.791387][ T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 53.836743][ T11] bond0 (unregistering): Released all slaves
Warning: Permanently added '10.128.1.10' (ECDSA) to the list of known hosts.
2022/05/26 22:21:39 parsed 1 programs
[ 66.626377][ T4016] cgroup: Unknown subsys name 'net'
[ 66.633131][ T4016] cgroup: Unknown subsys name 'rlimit'
2022/05/26 22:21:39 executed programs: 0
[ 70.087988][ T3648] Bluetooth: hci0: Opcode 0x c03 failed: -110
[ 71.531779][ T41] cfg80211: failed to load regulatory.db
[ 72.173919][ T3648] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 72.175862][ T3648] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 72.176511][ T3648] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 72.177369][ T3648] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 72.177586][ T3648] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 72.177703][ T3648] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 72.255631][ T4108] chnl_net:caif_netlink_parms(): no params data found
[ 72.288374][ T4108] bridge0: port 1(bridge_slave_0) entered blocking state
[ 72.288472][ T4108] bridge0: port 1(bridge_slave_0) entered disabled state
[ 72.289443][ T4108] device bridge_slave_0 entered promiscuous mode
[ 72.291064][ T4108] bridge0: port 2(bridge_slave_1) entered blocking state
[ 72.291148][ T4108] bridge0: port 2(bridge_slave_1) entered disabled state
[ 72.291672][ T4108] device bridge_slave_1 entered promiscuous mode
[ 72.318576][ T4108] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 72.320709][ T4108] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 72.357476][ T4108] team0: Port device team_slave_0 added
[ 72.360123][ T4108] team0: Port device team_slave_1 added
[ 72.379275][ T4108] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 72.379280][ T4108] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 72.379284][ T4108] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 72.382019][ T4108] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 72.382024][ T4108] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 72.382028][ T4108] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 72.483185][ T4108] device hsr_slave_0 entered promiscuous mode
[ 72.483718][ T4108] device hsr_slave_1 entered promiscuous mode
[ 72.545645][ T4108] bridge0: port 2(bridge_slave_1) entered blocking state
[ 72.545663][ T4108] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 72.545731][ T4108] bridge0: port 1(bridge_slave_0) entered blocking state
[ 72.545750][ T4108] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 72.587141][ T4108] 8021q: adding VLAN 0 to HW filter on device bond0
[ 72.594216][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 72.604052][ T41] bridge0: port 1(bridge_slave_0) entered disabled state
[ 72.604556][ T41] bridge0: port 2(bridge_slave_1) entered disabled state
[ 72.604958][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 72.610581][ T4108] 8021q: adding VLAN 0 to HW filter on device team0
[ 72.616005][ T3666] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 72.616285][ T3666] bridge0: port 1(bridge_slave_0) entered blocking state
[ 72.616310][ T3666] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 72.621964][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 72.622256][ T41] bridge0: port 2(bridge_slave_1) entered blocking state
[ 72.622279][ T41] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 72.640318][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 72.640836][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 72.643921][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 72.651068][ T3666] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 72.655850][ T2968] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 72.660289][ T4108] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 72.672766][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 72.672838][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 72.681277][ T4108] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 72.881124][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 72.890792][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 72.891189][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 72.891512][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 72.894742][ T4108] device veth0_vlan entered promiscuous mode
[ 72.900604][ T4108] device veth1_vlan entered promiscuous mode
[ 72.917216][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 72.917588][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 72.918173][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 72.922702][ T4108] device veth0_macvtap entered promiscuous mode
[ 72.925614][ T4108] device veth1_macvtap entered promiscuous mode
[ 72.938544][ T4108] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 72.938614][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 72.939357][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 72.943471][ T4108] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 72.943684][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 73.018209][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 73.018218][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 73.020210][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 73.042701][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 73.042710][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 73.044166][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 73.408063][ T41] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[ 73.667869][ T41] usb 1-1: Using ep0 maxpacket: 8
[ 73.788041][ T41] usb 1-1: config 0 has an invalid interface number: 119 but max is 0
[ 73.788057][ T41] usb 1-1: config 0 contains an unexpected descriptor of type 0x2, skipping
[ 73.788063][ T41] usb 1-1: config 0 has no interface number 0
[ 73.788400][ T41] usb 1-1: config 0 interface 119 altsetting 0 bulk endpoint 0xF has invalid maxpacket 8
[ 73.788409][ T41] usb 1-1: config 0 interface 119 altsetting 0 endpoint 0x6 has invalid maxpacket 1024, setting to 64
[ 73.788416][ T41] usb 1-1: config 0 interface 119 altsetting 0 endpoint 0x83 has invalid maxpacket 29939, setting to 1024
[ 73.788422][ T41] usb 1-1: config 0 interface 119 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 1024
[ 73.788428][ T41] usb 1-1: config 0 interface 119 altsetting 0 has an invalid endpoint with address 0xBD, skipping
[ 73.788433][ T41] usb 1-1: config 0 interface 119 altsetting 0 has a duplicate endpoint with address 0xF, skipping
[ 73.788440][ T41] usb 1-1: config 0 interface 119 altsetting 0 endpoint 0x8 has an invalid bInterval 244, changing to 11
[ 73.788446][ T41] usb 1-1: config 0 interface 119 altsetting 0 has an invalid endpoint with address 0x0, skipping
[ 73.788451][ T41] usb 1-1: config 0 interface 119 altsetting 0 endpoint 0x4 has invalid maxpacket 512, setting to 64
[ 73.788456][ T41] usb 1-1: config 0 interface 119 altsetting 0 endpoint 0x2 has an invalid bInterval 31, changing to 7
[ 73.788462][ T41] usb 1-1: config 0 interface 119 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[ 73.788469][ T41] usb 1-1: config 0 interface 119 altsetting 0 has a duplicate endpoint with address 0x6, skipping
[ 73.788474][ T41] usb 1-1: config 0 interface 119 altsetting 0 has 14 endpoint descriptors, different from the interface descriptor's value: 13
[ 73.988079][ T41] usb 1-1: New USB device found, idVendor=cace, idProduct=0300, bcdDevice=31.25
[ 73.988087][ T41] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 73.988091][ T41] usb 1-1: Product: syz
[ 73.988094][ T41] usb 1-1: Manufacturer: syz
[ 73.988096][ T41] usb 1-1: SerialNumber: syz
[ 73.992041][ T41] usb 1-1: config 0 descriptor??
[ 74.011777][ T4127] raw-gadget gadget: fail, usb_ep_enable returned -22
[ 74.207876][ T41] usb 1-1: reset high-speed USB device number 2 using dummy_hcd
[ 74.248757][ T6] Bluetooth: hci0: command 0x0409 tx timeout
2022/05/26 22:21:47 executed programs: 1
[ 75.157875][ T41] usb 1-1: device descriptor read/64, error -71
[ 75.427896][ T41] usb 1-1: reset high-speed USB device number 2 using dummy_hcd
[ 75.668151][ T41] usb 1-1: Using ep0 maxpacket: 8
[ 75.808161][ T4129] raw-gadget gadget: fail, usb_ep_enable returned -22
[ 75.853025][ T41] usb 1-1: driver API: 1.9.9 2016-02-15 [1-1]
[ 75.853038][ T41] usb 1-1: firmware API: 1.9.6 2012-07-07
[ 75.853312][ T41] ------------[ cut here ]------------
[ 75.853316][ T41] usb 1-1: BOGUS urb xfer, pipe 1 != type 3
[ 75.853426][ T41] WARNING: CPU: 1 PID: 41 at drivers/usb/core/urb.c:502 usb_submit_urb+0xb07/0x1680
[ 75.889015][ T41] Modules linked in:
[ 75.893935][ T41] CPU: 1 PID: 41 Comm: kworker/1:1 Not tainted 5.18.0-syzkaller #0
[ 75.902671][ T41] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 75.914209][ T41] Workqueue: events request_firmware_work_func
[ 75.921333][ T41] RIP: 0010:usb_submit_urb+0xb07/0x1680
[ 75.927591][ T41] Code: 4c 24 18 89 4c 24 08 44 89 04 24 e8 33 f6 19 ff 44 8b 04 24 4c 89 e2 48 c7 c7 a0 1d 84 89 8b 4c 24 08 48 89 c6 e8 3c 59 50 03 <0f> 0b 4c 8b 4c 24 18 e9 c0 fa ff ff 48 8d 7b 1c 48 ba 00 00 00 00
[ 75.949937][ T41] RSP: 0018:ffffc90000b27ba8 EFLAGS: 00010286
[ 75.957375][ T41] RAX: 0000000000000000 RBX: ffff88807786c000 RCX: 0000000000000000
[ 75.966559][ T41] RDX: 0000000000000001 RSI: 0000000000000004 RDI: fffff52000164f67
[ 75.976015][ T41] RBP: ffff8881451c0300 R08: 0000000000000001 R09: ffff8880b9f279ab
[ 75.985302][ T41] R10: ffffed10173e4f35 R11: 0000000000002000 R12: ffff88801db4f2f8
[ 75.994634][ T41] R13: 000000000000000e R14: 0000000000000002 R15: 0000000000000000
[ 76.005076][ T41] FS: 0000000000000000(0000) GS:ffff8880b9f00000(0000) knlGS:0000000000000000
[ 76.016223][ T41] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 76.024848][ T41] CR2: 0000559945b99020 CR3: 000000007768a000 CR4: 00000000003506e0
[ 76.033328][ T41] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 76.043032][ T41] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 76.048086][ T14] usb 1-1: USB disconnect, device number 2
[ 76.051313][ T41] Call Trace:
[ 76.060730][ T41]
[ 76.063703][ T41] ? _raw_spin_unlock_irqrestore+0x50/0x70
[ 76.069885][ T41] ? lockdep_hardirqs_on_prepare+0x17b/0x400
[ 76.076222][ T41] ? _raw_spin_unlock_irqrestore+0x50/0x70
[ 76.082447][ T41] carl9170_usb_send_rx_irq_urb+0x266/0x340
[ 76.088656][ T41] carl9170_usb_firmware_step2+0x188/0x230
[ 76.094807][ T41] ? carl9170_usb_resume+0x130/0x130
[ 76.100150][ T41] request_firmware_work_func+0x126/0x230
[ 76.106090][ T41] ? request_partial_firmware_into_buf+0x90/0x90
[ 76.112686][ T41] process_one_work+0x841/0x13a0
[ 76.118063][ T41] ? lock_release+0x780/0x780
[ 76.123242][ T41] ? pwq_dec_nr_in_flight+0x230/0x230
[ 76.128876][ T41] ? rwlock_bug.part.0+0x90/0x90
[ 76.134071][ T41] ? _raw_spin_lock_irq+0x41/0x50
[ 76.139259][ T41] worker_thread+0x598/0xec0
[ 76.143947][ T41] ? __kthread_parkme+0xc1/0x1f0
[ 76.149276][ T41] ? process_one_work+0x13a0/0x13a0
[ 76.154886][ T41] kthread+0x299/0x340
[ 76.159026][ T41] ? kthread_complete_and_exit+0x20/0x20
[ 76.164857][ T41] ret_from_fork+0x1f/0x30
[ 76.169958][ T41]
[ 76.173003][ T41] Kernel panic - not syncing: panic_on_warn set ...
[ 76.179687][ T41] CPU: 1 PID: 41 Comm: kworker/1:1 Not tainted 5.18.0-syzkaller #0
[ 76.187822][ T41] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 76.197988][ T41] Workqueue: events request_firmware_work_func
[ 76.204420][ T41] Call Trace:
[ 76.207984][ T41]
[ 76.211102][ T41] dump_stack_lvl+0x57/0x7d
[ 76.215862][ T41] panic+0x227/0x466
[ 76.219873][ T41] ? panic_print_sys_info.part.0+0x69/0x69
[ 76.225962][ T41] ? usb_submit_urb+0xb07/0x1680
[ 76.232325][ T41] __warn.cold+0x150/0x1de
[ 76.236832][ T41] ? irq_work_claim+0x16/0x60
[ 76.243083][ T41] ? usb_submit_urb+0xb07/0x1680
[ 76.248230][ T41] report_bug+0x15a/0x1c0
[ 76.252818][ T41] ? vprintk_emit+0xf5/0x440
[ 76.257572][ T41] handle_bug+0x3c/0x60
[ 76.262171][ T41] exc_invalid_op+0x14/0x40
[ 76.267692][ T41] asm_exc_invalid_op+0x1b/0x20
[ 76.272979][ T41] RIP: 0010:usb_submit_urb+0xb07/0x1680
[ 76.279303][ T41] Code: 4c 24 18 89 4c 24 08 44 89 04 24 e8 33 f6 19 ff 44 8b 04 24 4c 89 e2 48 c7 c7 a0 1d 84 89 8b 4c 24 08 48 89 c6 e8 3c 59 50 03 <0f> 0b 4c 8b 4c 24 18 e9 c0 fa ff ff 48 8d 7b 1c 48 ba 00 00 00 00
[ 76.300591][ T41] RSP: 0018:ffffc90000b27ba8 EFLAGS: 00010286
[ 76.306822][ T41] RAX: 0000000000000000 RBX: ffff88807786c000 RCX: 0000000000000000
[ 76.315235][ T41] RDX: 0000000000000001 RSI: 0000000000000004 RDI: fffff52000164f67
[ 76.323478][ T41] RBP: ffff8881451c0300 R08: 0000000000000001 R09: ffff8880b9f279ab
[ 76.332057][ T41] R10: ffffed10173e4f35 R11: 0000000000002000 R12: ffff88801db4f2f8
[ 76.340511][ T41] R13: 000000000000000e R14: 0000000000000002 R15: 0000000000000000
[ 76.349502][ T41] ? usb_submit_urb+0xb07/0x1680
[ 76.355319][ T41] ? _raw_spin_unlock_irqrestore+0x50/0x70
[ 76.361320][ T41] ? lockdep_hardirqs_on_prepare+0x17b/0x400
[ 76.368537][ T41] ? _raw_spin_unlock_irqrestore+0x50/0x70
[ 76.374881][ T41] carl9170_usb_send_rx_irq_urb+0x266/0x340
[ 76.381950][ T41] carl9170_usb_firmware_step2+0x188/0x230
[ 76.388151][ T41] ? carl9170_usb_resume+0x130/0x130
[ 76.393759][ T41] request_firmware_work_func+0x126/0x230
[ 76.400190][ T41] ? request_partial_firmware_into_buf+0x90/0x90
[ 76.406874][ T41] process_one_work+0x841/0x13a0
[ 76.412129][ T41] ? lock_release+0x780/0x780
[ 76.417498][ T41] ? pwq_dec_nr_in_flight+0x230/0x230
[ 76.423217][ T41] ? rwlock_bug.part.0+0x90/0x90
[ 76.428666][ T41] ? _raw_spin_lock_irq+0x41/0x50
[ 76.434159][ T41] worker_thread+0x598/0xec0
[ 76.438857][ T41] ? __kthread_parkme+0xc1/0x1f0
[ 76.444717][ T41] ? process_one_work+0x13a0/0x13a0
[ 76.449902][ T41] kthread+0x299/0x340
[ 76.454247][ T41] ? kthread_complete_and_exit+0x20/0x20
[ 76.460256][ T41] ret_from_fork+0x1f/0x30
[ 76.464942][ T41]
[ 76.468366][ T41] Kernel Offset: disabled
[ 76.472994][ T41] Rebooting in 86400 seconds..