Warning: Permanently added '10.128.1.52' (ED25519) to the list of known hosts.
2024/02/07 15:58:16 ignoring optional flag "sandboxArg"="0"
2024/02/07 15:58:16 parsed 1 programs
[  105.118656][   T28] kauditd_printk_skb: 74 callbacks suppressed
[  105.118673][   T28] audit: type=1400 audit(1707321496.865:199): avc:  denied  { getattr } for  pid=5407 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  105.150908][   T28] audit: type=1400 audit(1707321496.865:200): avc:  denied  { read } for  pid=5407 comm="syz-execprog" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  105.173328][   T28] audit: type=1400 audit(1707321496.865:201): avc:  denied  { open } for  pid=5407 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
2024/02/07 15:58:16 executed programs: 0
[  105.203252][   T28] audit: type=1400 audit(1707321496.945:202): avc:  denied  { mounton } for  pid=5412 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[  105.233568][   T28] audit: type=1400 audit(1707321496.945:203): avc:  denied  { mount } for  pid=5412 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[  105.288295][   T28] audit: type=1400 audit(1707321496.945:204): avc:  denied  { setattr } for  pid=5412 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=732 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  105.333940][ T5065] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  105.342622][ T5065] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  105.351640][ T5065] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  105.360146][ T5065] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  105.368771][ T5065] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  105.376317][ T5065] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  105.395076][   T28] audit: type=1400 audit(1707321497.135:205): avc:  denied  { mounton } for  pid=5417 comm="syz-executor.0" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  105.559603][ T5417] chnl_net:caif_netlink_parms(): no params data found
[  105.642126][ T5417] bridge0: port 1(bridge_slave_0) entered blocking state
[  105.649499][ T5417] bridge0: port 1(bridge_slave_0) entered disabled state
[  105.656954][ T5417] bridge_slave_0: entered allmulticast mode
[  105.664480][ T5417] bridge_slave_0: entered promiscuous mode
[  105.673138][ T5417] bridge0: port 2(bridge_slave_1) entered blocking state
[  105.680464][ T5417] bridge0: port 2(bridge_slave_1) entered disabled state
[  105.687903][ T5417] bridge_slave_1: entered allmulticast mode
[  105.695145][ T5417] bridge_slave_1: entered promiscuous mode
[  105.726898][ T5417] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  105.740609][ T5417] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  105.774299][ T5417] team0: Port device team_slave_0 added
[  105.783345][ T5417] team0: Port device team_slave_1 added
[  105.813346][ T5417] batman_adv: batadv0: Adding interface: batadv_slave_0
[  105.820532][ T5417] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  105.846751][ T5417] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  105.860271][ T5417] batman_adv: batadv0: Adding interface: batadv_slave_1
[  105.867530][ T5417] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  105.893493][ T5417] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  105.937452][ T5417] hsr_slave_0: entered promiscuous mode
[  105.944076][ T5417] hsr_slave_1: entered promiscuous mode
[  106.706556][ T5417] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  106.719894][ T5417] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  106.736483][ T5417] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  106.753542][ T5417] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  106.894462][ T5417] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.929927][ T5417] 8021q: adding VLAN 0 to HW filter on device team0
[  106.946080][  T781] bridge0: port 1(bridge_slave_0) entered blocking state
[  106.953474][  T781] bridge0: port 1(bridge_slave_0) entered forwarding state
[  106.983732][  T781] bridge0: port 2(bridge_slave_1) entered blocking state
[  106.991035][  T781] bridge0: port 2(bridge_slave_1) entered forwarding state
[  107.125053][   T28] audit: type=1400 audit(1707321498.865:206): avc:  denied  { sys_module } for  pid=5417 comm="syz-executor.0" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  107.297257][ T5417] 8021q: adding VLAN 0 to HW filter on device batadv0
[  107.372627][ T5417] veth0_vlan: entered promiscuous mode
[  107.392317][ T5417] veth1_vlan: entered promiscuous mode
[  107.449547][ T5417] veth0_macvtap: entered promiscuous mode
[  107.463879][ T5417] veth1_macvtap: entered promiscuous mode
[  107.473179][ T4454] Bluetooth: hci0: command 0x0409 tx timeout
[  107.505801][ T5417] batman_adv: batadv0: Interface activated: batadv_slave_0
[  107.534086][ T5417] batman_adv: batadv0: Interface activated: batadv_slave_1
[  107.554456][ T5417] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  107.563324][ T5417] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  107.576988][ T5417] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  107.586240][ T5417] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  107.741408][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  107.761825][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  107.826381][ T1043] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  107.835768][ T1043] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  107.854813][   T28] audit: type=1400 audit(1707321499.595:207): avc:  denied  { mounton } for  pid=5417 comm="syz-executor.0" path="/dev/binderfs" dev="devtmpfs" ino=2323 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[  107.984508][   T28] audit: type=1400 audit(1707321499.725:208): avc:  denied  { read write } for  pid=5480 comm="syz-executor.0" name="raw-gadget" dev="devtmpfs" ino=732 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  108.263201][  T781] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  108.629768][  T781] usb 1-1: config 0 has an invalid interface number: 72 but max is 0
[  108.647010][  T781] usb 1-1: config 0 contains an unexpected descriptor of type 0x2, skipping
[  108.669968][  T781] usb 1-1: config 0 has an invalid interface association descriptor of length 2, skipping
[  108.698207][  T781] usb 1-1: config 0 has an invalid interface association descriptor of length 2, skipping
[  108.711975][  T781] usb 1-1: config 0 contains an unexpected descriptor of type 0x1, skipping
[  108.721607][  T781] usb 1-1: config 0 has no interface number 0
[  108.727752][  T781] usb 1-1: config 0 interface 72 altsetting 0 has an invalid endpoint with address 0x80, skipping
[  108.751847][  T781] usb 1-1: config 0 interface 72 altsetting 0 endpoint 0xA has invalid maxpacket 1023, setting to 64
[  108.765226][  T781] usb 1-1: config 0 interface 72 altsetting 0 endpoint 0x4 has invalid maxpacket 512, setting to 64
[  108.776501][  T781] usb 1-1: config 0 interface 72 altsetting 0 has a duplicate endpoint with address 0xC, skipping
[  108.798388][  T781] usb 1-1: config 0 interface 72 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 8
[  108.808409][  T781] usb 1-1: config 0 interface 72 altsetting 0 has a duplicate endpoint with address 0x4, skipping
[  108.824830][  T781] usb 1-1: config 0 interface 72 altsetting 0 has a duplicate endpoint with address 0xC, skipping
[  108.835710][  T781] usb 1-1: config 0 interface 72 altsetting 0 has a duplicate endpoint with address 0x3, skipping
[  108.847857][  T781] usb 1-1: config 0 interface 72 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 8
[  108.868691][  T781] usb 1-1: config 0 interface 72 altsetting 0 endpoint 0x2 has invalid maxpacket 1023, setting to 64
[  108.884760][  T781] usb 1-1: config 0 interface 72 altsetting 0 has a duplicate endpoint with address 0x3, skipping
[  108.895893][  T781] usb 1-1: New USB device found, idVendor=0846, idProduct=9010, bcdDevice=a0.e4
[  108.910946][  T781] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  108.938726][  T781] usb 1-1: config 0 descriptor??
[  109.149176][  T781] usb 1-1: reset high-speed USB device number 2 using dummy_hcd
[  109.538341][ T4454] Bluetooth: hci0: command 0x041b tx timeout
[  110.082053][  T781] usb 1-1: device descriptor read/64, error -71
[  110.358616][  T781] usb 1-1: reset high-speed USB device number 2 using dummy_hcd
[  110.784446][ T5073] usb 1-1: driver   API: 1.9.9 2016-02-15 [1-1]
[  110.791203][ T5073] usb 1-1: firmware API: 1.9.6 2012-07-07
[  110.797562][ T5073] ------------[ cut here ]------------
[  110.804833][ T5073] usb 1-1: BOGUS urb xfer, pipe 1 != type 3
[  110.816454][ T5073] WARNING: CPU: 0 PID: 5073 at drivers/usb/core/urb.c:503 usb_submit_urb+0xe4b/0x1730
[  110.826930][ T5073] Modules linked in:
[  110.830999][ T5073] CPU: 0 PID: 5073 Comm: kworker/0:4 Not tainted 6.8.0-rc3-syzkaller-g6d280f4d760e #0
[  110.840934][ T5073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[  110.851611][ T5073] Workqueue: events request_firmware_work_func
[  110.858102][ T5073] RIP: 0010:usb_submit_urb+0xe4b/0x1730
[  110.863873][ T5073] Code: 84 3c 02 00 00 e8 d5 9a e8 fa 4c 89 ef e8 9d f1 e5 fe 45 89 e0 89 e9 4c 89 f2 48 89 c6 48 c7 c7 60 55 c6 8b e8 36 c8 ac fa 90 <0f> 0b 90 90 e9 e9 f8 ff ff e8 a7 9a e8 fa 49 81 c4 c0 05 00 00 e9
[  110.884426][ T5073] RSP: 0018:ffffc900036bfb78 EFLAGS: 00010282
[  110.890725][ T5073] RAX: 0000000000000000 RBX: ffff888028bd9440 RCX: ffffffff814f7499
[  110.899006][ T5073] RDX: ffff888027fb1dc0 RSI: ffffffff814f74a6 RDI: 0000000000000001
[  110.907024][ T5073] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[  110.915268][ T5073] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000003
[  110.923376][ T5073] R13: ffff88802f5330a8 R14: ffff88801aad57e0 R15: ffff888028bd94bc
[  110.931558][ T5073] FS:  0000000000000000(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000
[  110.940587][ T5073] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  110.947249][ T5073] CR2: 000055b3f1e77300 CR3: 000000002c3e2000 CR4: 00000000003506f0
[  110.955369][ T5073] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  110.964404][ T5073] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  110.973036][ T5073] Call Trace:
[  110.976355][ T5073]  <TASK>
[  110.979987][ T5073]  ? show_regs+0x8f/0xa0
[  110.984381][ T5073]  ? __warn+0xe6/0x390
[  110.988611][ T5073]  ? preempt_schedule_notrace+0x63/0xe0
[  110.994209][ T5073]  ? usb_submit_urb+0xe4b/0x1730
[  110.999463][ T5073]  ? report_bug+0x3c0/0x580
[  111.004078][ T5073]  ? handle_bug+0x3d/0x70
[  111.008616][ T5073]  ? exc_invalid_op+0x17/0x50
[  111.013338][ T5073]  ? asm_exc_invalid_op+0x1a/0x20
[  111.016912][ T5076] usb 1-1: USB disconnect, device number 2
[  111.018659][ T5073]  ? __warn_printk+0x199/0x350
[  111.018698][ T5073]  ? __warn_printk+0x1a6/0x350
[  111.034310][ T5073]  ? usb_submit_urb+0xe4b/0x1730
[  111.039480][ T5073]  ? usb_submit_urb+0xe4a/0x1730
[  111.044465][ T5073]  ? _raw_spin_unlock_irqrestore+0x31/0x80
[  111.050477][ T5073]  carl9170_usb_send_rx_irq_urb.constprop.0+0x273/0x340
[  111.057470][ T5073]  carl9170_usb_firmware_step2+0x175/0x330
[  111.063551][ T5073]  ? __pfx_carl9170_usb_firmware_step2+0x10/0x10
[  111.069988][ T5073]  request_firmware_work_func+0x13a/0x250
[  111.076451][ T5073]  ? __pfx_request_firmware_work_func+0x10/0x10
[  111.083032][ T5073]  process_one_work+0x889/0x15e0
[  111.088056][ T5073]  ? __pfx_lock_acquire+0x10/0x10
[  111.093181][ T5073]  ? __pfx_process_one_work+0x10/0x10
[  111.099019][ T5073]  ? assign_work+0x1a0/0x250
[  111.103661][ T5073]  worker_thread+0x8b9/0x12a0
[  111.108463][ T5073]  ? __kthread_parkme+0x14b/0x220
[  111.113532][ T5073]  ? __pfx_worker_thread+0x10/0x10
[  111.118990][ T5073]  kthread+0x2c6/0x3b0
[  111.123105][ T5073]  ? _raw_spin_unlock_irq+0x23/0x50
[  111.128454][ T5073]  ? __pfx_kthread+0x10/0x10
[  111.133090][ T5073]  ret_from_fork+0x45/0x80
[  111.137639][ T5073]  ? __pfx_kthread+0x10/0x10
[  111.142559][ T5073]  ret_from_fork_asm+0x1b/0x30
[  111.147369][ T5073]  </TASK>
[  111.150502][ T5073] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  111.157803][ T5073] CPU: 0 PID: 5073 Comm: kworker/0:4 Not tainted 6.8.0-rc3-syzkaller-g6d280f4d760e #0
[  111.167540][ T5073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[  111.177769][ T5073] Workqueue: events request_firmware_work_func
[  111.184299][ T5073] Call Trace:
[  111.187583][ T5073]  <TASK>
[  111.190691][ T5073]  dump_stack_lvl+0xd9/0x1b0
[  111.195386][ T5073]  panic+0x6ee/0x7a0
[  111.199474][ T5073]  ? __pfx_panic+0x10/0x10
[  111.203928][ T5073]  ? show_trace_log_lvl+0x363/0x500
[  111.209170][ T5073]  ? check_panic_on_warn+0x1f/0xb0
[  111.214571][ T5073]  ? usb_submit_urb+0xe4b/0x1730
[  111.219541][ T5073]  check_panic_on_warn+0xab/0xb0
[  111.224507][ T5073]  __warn+0xf2/0x390
[  111.228543][ T5073]  ? preempt_schedule_notrace+0x63/0xe0
[  111.234220][ T5073]  ? usb_submit_urb+0xe4b/0x1730
[  111.239266][ T5073]  report_bug+0x3c0/0x580
[  111.243879][ T5073]  handle_bug+0x3d/0x70
[  111.248050][ T5073]  exc_invalid_op+0x17/0x50
[  111.252654][ T5073]  asm_exc_invalid_op+0x1a/0x20
[  111.257521][ T5073] RIP: 0010:usb_submit_urb+0xe4b/0x1730
[  111.263081][ T5073] Code: 84 3c 02 00 00 e8 d5 9a e8 fa 4c 89 ef e8 9d f1 e5 fe 45 89 e0 89 e9 4c 89 f2 48 89 c6 48 c7 c7 60 55 c6 8b e8 36 c8 ac fa 90 <0f> 0b 90 90 e9 e9 f8 ff ff e8 a7 9a e8 fa 49 81 c4 c0 05 00 00 e9
[  111.283132][ T5073] RSP: 0018:ffffc900036bfb78 EFLAGS: 00010282
[  111.289297][ T5073] RAX: 0000000000000000 RBX: ffff888028bd9440 RCX: ffffffff814f7499
[  111.297487][ T5073] RDX: ffff888027fb1dc0 RSI: ffffffff814f74a6 RDI: 0000000000000001
[  111.305683][ T5073] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[  111.313678][ T5073] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000003
[  111.321754][ T5073] R13: ffff88802f5330a8 R14: ffff88801aad57e0 R15: ffff888028bd94bc
[  111.329739][ T5073]  ? __warn_printk+0x199/0x350
[  111.334555][ T5073]  ? __warn_printk+0x1a6/0x350
[  111.339443][ T5073]  ? usb_submit_urb+0xe4a/0x1730
[  111.344500][ T5073]  ? _raw_spin_unlock_irqrestore+0x31/0x80
[  111.350333][ T5073]  carl9170_usb_send_rx_irq_urb.constprop.0+0x273/0x340
[  111.357494][ T5073]  carl9170_usb_firmware_step2+0x175/0x330
[  111.363354][ T5073]  ? __pfx_carl9170_usb_firmware_step2+0x10/0x10
[  111.370061][ T5073]  request_firmware_work_func+0x13a/0x250
[  111.375829][ T5073]  ? __pfx_request_firmware_work_func+0x10/0x10
[  111.382087][ T5073]  process_one_work+0x889/0x15e0
[  111.387043][ T5073]  ? __pfx_lock_acquire+0x10/0x10
[  111.392078][ T5073]  ? __pfx_process_one_work+0x10/0x10
[  111.397555][ T5073]  ? assign_work+0x1a0/0x250
[  111.402165][ T5073]  worker_thread+0x8b9/0x12a0
[  111.406888][ T5073]  ? __kthread_parkme+0x14b/0x220
[  111.412024][ T5073]  ? __pfx_worker_thread+0x10/0x10
[  111.417157][ T5073]  kthread+0x2c6/0x3b0
[  111.421247][ T5073]  ? _raw_spin_unlock_irq+0x23/0x50
[  111.426482][ T5073]  ? __pfx_kthread+0x10/0x10
[  111.431317][ T5073]  ret_from_fork+0x45/0x80
[  111.436300][ T5073]  ? __pfx_kthread+0x10/0x10
[  111.441272][ T5073]  ret_from_fork_asm+0x1b/0x30
[  111.446066][ T5073]  </TASK>
[  111.449297][ T5073] Kernel Offset: disabled
[  111.453766][ T5073] Rebooting in 86400 seconds..