Warning: Permanently added '10.128.1.112' (ECDSA) to the list of known hosts.
2022/12/28 14:41:31 ignoring optional flag "sandboxArg"="0"
2022/12/28 14:41:32 parsed 1 programs
[   71.143714][ T5456] cgroup: Unknown subsys name 'net'
[   71.155293][ T5456] cgroup: Unknown subsys name 'rlimit'
2022/12/28 14:41:32 executed programs: 0
[   74.822952][ T5045] Bluetooth: hci0: Opcode 0x c03 failed: -110
[   76.344470][ T2502] cfg80211: failed to load regulatory.db
[   78.983036][ T5045] Bluetooth: hci0: Opcode 0x c03 failed: -110
[   83.142989][ T5045] Bluetooth: hci0: Opcode 0x c03 failed: -110
[   87.303009][ T5045] Bluetooth: hci0: Opcode 0x c03 failed: -110
[   89.388577][ T4368] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   89.396714][ T4368] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   89.404788][ T4368] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   89.412857][ T4368] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   89.420208][ T4368] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   89.427500][ T4368] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   89.496390][ T5510] chnl_net:caif_netlink_parms(): no params data found
[   89.532949][ T5510] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.540053][ T5510] bridge0: port 1(bridge_slave_0) entered disabled state
[   89.547943][ T5510] device bridge_slave_0 entered promiscuous mode
[   89.555770][ T5510] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.562996][ T5510] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.570578][ T5510] device bridge_slave_1 entered promiscuous mode
[   89.589468][ T5510] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   89.600576][ T5510] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   89.621197][ T5510] team0: Port device team_slave_0 added
[   89.628951][ T5510] team0: Port device team_slave_1 added
[   89.645285][ T5510] batman_adv: batadv0: Adding interface: batadv_slave_0
[   89.652236][ T5510] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   89.679434][ T5510] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   89.691606][ T5510] batman_adv: batadv0: Adding interface: batadv_slave_1
[   89.700204][ T5510] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   89.726855][ T5510] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   89.752971][ T5510] device hsr_slave_0 entered promiscuous mode
[   89.759841][ T5510] device hsr_slave_1 entered promiscuous mode
[   89.816117][ T5510] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.823203][ T5510] bridge0: port 2(bridge_slave_1) entered forwarding state
[   89.830535][ T5510] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.837624][ T5510] bridge0: port 1(bridge_slave_0) entered forwarding state
[   89.875767][ T5510] 8021q: adding VLAN 0 to HW filter on device bond0
[   89.888775][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   89.897460][   T26] bridge0: port 1(bridge_slave_0) entered disabled state
[   89.905372][   T26] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.914144][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   89.926582][ T5510] 8021q: adding VLAN 0 to HW filter on device team0
[   89.937362][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   89.945762][   T26] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.953462][   T26] bridge0: port 1(bridge_slave_0) entered forwarding state
[   89.963849][ T5056] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   89.974885][ T5056] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.982004][ T5056] bridge0: port 2(bridge_slave_1) entered forwarding state
[   90.005876][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   90.014745][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   90.025023][ T5510] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   90.032927][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   90.050173][ T2502] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   90.057751][ T2502] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   90.068305][ T5510] 8021q: adding VLAN 0 to HW filter on device batadv0
[   90.313378][ T5056] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   90.321934][ T5056] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   90.331195][ T5056] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   90.339425][ T5056] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   90.347206][ T5510] device veth0_vlan entered promiscuous mode
[   90.358343][ T5510] device veth1_vlan entered promiscuous mode
[   90.377841][ T5056] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   90.386646][ T5056] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   90.394721][ T5056] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   90.405556][ T5510] device veth0_macvtap entered promiscuous mode
[   90.416344][ T5510] device veth1_macvtap entered promiscuous mode
[   90.431700][ T5510] batman_adv: batadv0: Interface activated: batadv_slave_0
[   90.439463][ T5056] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   90.448870][ T5056] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   90.459431][ T5510] batman_adv: batadv0: Interface activated: batadv_slave_1
[   90.472206][ T5056] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   90.519096][ T3501] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.536267][ T3501] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.545221][  T931] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.547160][ T5056] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   90.553523][  T931] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.570699][ T2502] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   90.882955][ T5056] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   91.122856][ T5056] usb 1-1: Using ep0 maxpacket: 8
[   91.242953][ T5056] usb 1-1: config 0 has an invalid interface number: 119 but max is 0
[   91.251380][ T5056] usb 1-1: config 0 contains an unexpected descriptor of type 0x2, skipping
[   91.261012][ T5056] usb 1-1: config 0 has no interface number 0
[   91.267415][ T5056] usb 1-1: config 0 interface 119 altsetting 0 bulk endpoint 0xF has invalid maxpacket 8
[   91.278193][ T5056] usb 1-1: config 0 interface 119 altsetting 0 endpoint 0x6 has invalid maxpacket 1024, setting to 64
[   91.289362][ T5056] usb 1-1: config 0 interface 119 altsetting 0 endpoint 0x83 has invalid maxpacket 29939, setting to 1024
[   91.300779][ T5056] usb 1-1: config 0 interface 119 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 1024
[   91.311113][ T5056] usb 1-1: config 0 interface 119 altsetting 0 has an invalid endpoint with address 0xBD, skipping
[   91.322067][ T5056] usb 1-1: config 0 interface 119 altsetting 0 has a duplicate endpoint with address 0xF, skipping
[   91.332912][ T5056] usb 1-1: config 0 interface 119 altsetting 0 endpoint 0x8 has an invalid bInterval 244, changing to 11
[   91.344491][ T5056] usb 1-1: config 0 interface 119 altsetting 0 has an invalid endpoint with address 0x0, skipping
[   91.355450][ T5056] usb 1-1: config 0 interface 119 altsetting 0 endpoint 0x4 has invalid maxpacket 512, setting to 64
[   91.366939][ T5056] usb 1-1: config 0 interface 119 altsetting 0 endpoint 0x2 has an invalid bInterval 31, changing to 7
[   91.378047][ T5056] usb 1-1: config 0 interface 119 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   91.389384][ T5056] usb 1-1: config 0 interface 119 altsetting 0 has a duplicate endpoint with address 0x6, skipping
[   91.400205][ T5056] usb 1-1: config 0 interface 119 altsetting 0 has 14 endpoint descriptors, different from the interface descriptor's value: 13
[   91.463201][ T4368] Bluetooth: hci0: command 0x0409 tx timeout
[   91.574162][ T5056] usb 1-1: New USB device found, idVendor=cace, idProduct=0300, bcdDevice=31.25
[   91.583405][ T5056] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   91.591440][ T5056] usb 1-1: Product: syz
[   91.596582][ T5056] usb 1-1: Manufacturer: syz
[   91.601241][ T5056] usb 1-1: SerialNumber: syz
[   91.610270][ T5056] usb 1-1: config 0 descriptor??
[   91.634402][ T5535] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   91.802919][ T5056] usb 1-1: reset high-speed USB device number 2 using dummy_hcd
2022/12/28 14:41:53 executed programs: 1
[   92.752886][ T5056] usb 1-1: device descriptor read/64, error -71
[   93.023559][ T5056] usb 1-1: reset high-speed USB device number 2 using dummy_hcd
[   93.272855][ T5056] usb 1-1: Using ep0 maxpacket: 8
[   93.413846][ T5539] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   93.464233][ T5056] usb 1-1: driver   API: 1.9.9 2016-02-15 [1-1]
[   93.470773][ T5056] usb 1-1: firmware API: 1.9.6 2012-07-07
[   93.477318][ T5056] ------------[ cut here ]------------
[   93.483015][ T5056] usb 1-1: BOGUS urb xfer, pipe 1 != type 3
[   93.489103][ T5056] WARNING: CPU: 0 PID: 5056 at drivers/usb/core/urb.c:505 usb_submit_urb+0xb0e/0x1660
[   93.498942][ T5056] Modules linked in:
[   93.502970][ T5056] CPU: 0 PID: 5056 Comm: kworker/0:3 Not tainted 6.2.0-rc1-syzkaller #0
[   93.511425][ T5056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[   93.521704][ T5056] Workqueue: events request_firmware_work_func
[   93.528000][ T5056] RIP: 0010:usb_submit_urb+0xb0e/0x1660
[   93.533688][ T5056] Code: 8a 4c 89 e8 48 c1 e8 03 8a 04 18 84 c0 0f 85 82 07 00 00 45 8b 45 00 48 c7 c7 e0 86 51 8a 4c 89 f2 89 e9 31 c0 e8 a2 60 b0 fb <0f> 0b 48 8b 14 24 8d 42 fe 83 f8 02 73 20 8b 4c 24 18 89 c8 c1 e0
[   93.553483][ T5056] RSP: 0018:ffffc900038afa08 EFLAGS: 00010246
[   93.559611][ T5056] RAX: adb984b034532b00 RBX: dffffc0000000000 RCX: 0000000000000001
[   93.563545][ T4368] Bluetooth: hci0: command 0x041b tx timeout
[   93.567703][ T5056] RDX: 1ffff92000715ef8 RSI: ffffffff8a092240 RDI: 0000000000000001
[   93.581791][ T5056] RBP: 0000000000000001 R08: dffffc0000000000 R09: fffff52000715efd
[   93.589808][ T5056] R10: fffff52000715efd R11: 1ffff92000715efc R12: ffff888028095b00
[   93.597821][ T5056] R13: ffffffff8a5184c8 R14: ffff88801a849c80 R15: 0000000000000cc0
[   93.605880][ T5056] FS:  0000000000000000(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000
[   93.614862][ T5056] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   93.621443][ T5056] CR2: 00005655412be510 CR3: 000000001ea4c000 CR4: 00000000003506f0
[   93.630921][ T5056] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   93.644477][ T5056] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   93.652471][ T5056] Call Trace:
[   93.655838][ T5056]  <TASK>
[   93.658778][ T5056]  carl9170_usb_init_device+0x23e/0x7c0
[   93.664594][ T5056]  carl9170_usb_firmware_step2+0x8a/0x210
[   93.670331][ T5056]  request_firmware_work_func+0x193/0x270
[   93.676674][ T5056]  ? carl9170_usb_tasklet+0x240/0x240
[   93.682072][ T5056]  ? request_firmware_nowait+0x3f0/0x3f0
[   93.687790][ T5056]  process_one_work+0x794/0xc10
[   93.692648][ T5056]  ? worker_detach_from_pool+0x240/0x240
[   93.698501][ T5056]  ? _raw_spin_lock_irqsave+0x120/0x120
[   93.704270][ T5056]  ? wq_worker_sleeping+0x19/0x200
[   93.709385][ T5056]  worker_thread+0x8ff/0xfe0
[   93.714099][ T5056]  kthread+0x228/0x2a0
[   93.718172][ T5056]  ? rcu_lock_release+0x20/0x20
[   93.723880][ T5056]  ? kthread_blkcg+0xa0/0xa0
[   93.728478][ T5056]  ret_from_fork+0x1f/0x30
[   93.732989][ T5056]  </TASK>
[   93.736011][ T5056] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   93.743275][ T5056] CPU: 0 PID: 5056 Comm: kworker/0:3 Not tainted 6.2.0-rc1-syzkaller #0
[   93.751579][ T5056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[   93.761630][ T5056] Workqueue: events request_firmware_work_func
[   93.767773][ T5056] Call Trace:
[   93.771037][ T5056]  <TASK>
[   93.773952][ T5056]  dump_stack_lvl+0x163/0x220
[   93.778613][ T5056]  ? nf_tcp_handle_invalid+0x4e0/0x4e0
[   93.784052][ T5056]  ? panic+0x540/0x540
[   93.788190][ T5056]  ? panic+0xfc/0x540
[   93.792165][ T5056]  panic+0x228/0x540
[   93.796044][ T5056]  ? memcpy_page_flushcache+0xe0/0xe0
[   93.801403][ T5056]  ? ret_from_fork+0x1f/0x30
[   93.805996][ T5056]  ? usb_submit_urb+0xb0e/0x1660
[   93.810932][ T5056]  __warn+0x1ea/0x250
[   93.814912][ T5056]  ? usb_submit_urb+0xb0e/0x1660
[   93.819842][ T5056]  report_bug+0x107/0x280
[   93.824167][ T5056]  handle_bug+0x3d/0x70
[   93.828308][ T5056]  exc_invalid_op+0x16/0x40
[   93.832795][ T5056]  asm_exc_invalid_op+0x16/0x20
[   93.837634][ T5056] RIP: 0010:usb_submit_urb+0xb0e/0x1660
[   93.843165][ T5056] Code: 8a 4c 89 e8 48 c1 e8 03 8a 04 18 84 c0 0f 85 82 07 00 00 45 8b 45 00 48 c7 c7 e0 86 51 8a 4c 89 f2 89 e9 31 c0 e8 a2 60 b0 fb <0f> 0b 48 8b 14 24 8d 42 fe 83 f8 02 73 20 8b 4c 24 18 89 c8 c1 e0
[   93.862755][ T5056] RSP: 0018:ffffc900038afa08 EFLAGS: 00010246
[   93.868812][ T5056] RAX: adb984b034532b00 RBX: dffffc0000000000 RCX: 0000000000000001
[   93.876766][ T5056] RDX: 1ffff92000715ef8 RSI: ffffffff8a092240 RDI: 0000000000000001
[   93.884719][ T5056] RBP: 0000000000000001 R08: dffffc0000000000 R09: fffff52000715efd
[   93.892668][ T5056] R10: fffff52000715efd R11: 1ffff92000715efc R12: ffff888028095b00
[   93.900793][ T5056] R13: ffffffff8a5184c8 R14: ffff88801a849c80 R15: 0000000000000cc0
[   93.908930][ T5056]  ? usb_submit_urb+0xb0e/0x1660
[   93.913858][ T5056]  carl9170_usb_init_device+0x23e/0x7c0
[   93.919497][ T5056]  carl9170_usb_firmware_step2+0x8a/0x210
[   93.925215][ T5056]  request_firmware_work_func+0x193/0x270
[   93.930931][ T5056]  ? carl9170_usb_tasklet+0x240/0x240
[   93.936309][ T5056]  ? request_firmware_nowait+0x3f0/0x3f0
[   93.942029][ T5056]  process_one_work+0x794/0xc10
[   93.946908][ T5056]  ? worker_detach_from_pool+0x240/0x240
[   93.952526][ T5056]  ? _raw_spin_lock_irqsave+0x120/0x120
[   93.958051][ T5056]  ? wq_worker_sleeping+0x19/0x200
[   93.963143][ T5056]  worker_thread+0x8ff/0xfe0
[   93.967735][ T5056]  kthread+0x228/0x2a0
[   93.971784][ T5056]  ? rcu_lock_release+0x20/0x20
[   93.976611][ T5056]  ? kthread_blkcg+0xa0/0xa0
[   93.981181][ T5056]  ret_from_fork+0x1f/0x30
[   93.985608][ T5056]  </TASK>
[   93.988685][ T5056] Kernel Offset: disabled
[   93.993086][ T5056] Rebooting in 86400 seconds..