./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2151623580
<...>
Warning: Permanently added '10.128.10.1' (ED25519) to the list of known hosts.
execve("./syz-executor2151623580", ["./syz-executor2151623580"], 0x7fff3bc7b430 /* 10 vars */) = 0
brk(NULL) = 0x555584897000
brk(0x555584897e00) = 0x555584897e00
arch_prctl(ARCH_SET_FS, 0x555584897480) = 0
set_tid_address(0x555584897750) = 5854
set_robust_list(0x555584897760, 24) = 0
rseq(0x555584897da0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor2151623580", 4096) = 28
getrandom("\xf0\x5e\x6e\x9b\x34\x16\x8b\x0f", 8, GRND_NONBLOCK) = 8
brk(NULL) = 0x555584897e00
brk(0x5555848b8e00) = 0x5555848b8e00
brk(0x5555848b9000) = 0x5555848b9000
mprotect(0x7f8e9dbd0000, 16384, PROT_READ) = 0
mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000
mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000
mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000
rt_sigaction(SIGRTMIN, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0
rt_sigaction(SIGRT_1, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0
rt_sigaction(SIGSEGV, {sa_handler=0x7f8e9db28950, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7f8e9db306b0}, NULL, 8) = 0
rt_sigaction(SIGBUS, {sa_handler=0x7f8e9db28950, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7f8e9db306b0}, NULL, 8) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5855 attached
, child_tidptr=0x555584897750) = 5855
[pid 5855] set_robust_list(0x555584897760, 24) = 0
[pid 5855] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5855] setpgid(0, 0) = 0
[pid 5855] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5855] write(3, "1000", 4) = 4
[pid 5855] close(3) = 0
executing program
[pid 5855] write(1, "executing program\n", 18) = 18
[pid 5855] openat(AT_FDCWD, "/dev/raw-gadget", O_RDWR) = 3
[pid 5855] ioctl(3, USB_RAW_IOCTL_INIT, 0x7fff5be4c010) = 0
[pid 5855] ioctl(3, UI_DEV_CREATE or USB_RAW_IOCTL_RUN, 0) = 0
[pid 5855] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fff5be4c010) = 0
[pid 5855] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fff5be4c010) = 0
[pid 5855] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fff5be4c010) = 0
[pid 5855] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fff5be4c010) = 0
[pid 5855] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7fff5be4b000) = 18
[pid 5855] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fff5be4c010) = 0
[ 77.497414][ T43] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[pid 5855] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fff5be4c010) = 0
[pid 5855] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fff5be4c010) = 0
[pid 5855] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7fff5be4b000) = 18
[pid 5855] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fff5be4c010) = 0
[pid 5855] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7fff5be4b000) = 9
[pid 5855] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fff5be4c010) = 0
[pid 5855] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7fff5be4b000) = 36
[pid 5855] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fff5be4c010) = 0
[pid 5855] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7fff5be4b000) = 4
[pid 5855] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fff5be4c010) = 0
[pid 5855] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7fff5be4b000) = 8
[ 77.680829][ T43] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[ 77.691169][ T43] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0
[ 77.701176][ T43] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 202
[pid 5855] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fff5be4c010) = 0
[pid 5855] ioctl(3, USB_RAW_IOCTL_VBUS_DRAW, 0) = 0
[pid 5855] ioctl(3, USB_RAW_IOCTL_CONFIGURE, 0) = 0
[pid 5855] ioctl(3, USB_RAW_IOCTL_EP_ENABLE, 0x7f8e9dbd63ec) = -1 EINVAL (Invalid argument)
[ 77.744288][ T43] usb 1-1: New USB device found, idVendor=2040, idProduct=2000, bcdDevice=65.72
[ 77.753415][ T43] usb 1-1: New USB device strings: Mfr=151, Product=0, SerialNumber=0
[ 77.762664][ T43] usb 1-1: Manufacturer: syz
[ 77.770156][ T43] usb 1-1: config 0 descriptor??
[pid 5855] ioctl(3, USB_RAW_IOCTL_EP_ENABLE, 0x7f8e9dbd63fc) = -1 EINVAL (Invalid argument)
[pid 5855] ioctl(3, USB_RAW_IOCTL_EP0_READ, 0x7fff5be4b000) = 0
[ 77.820131][ T5855] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 77.841212][ T43] smsusb:smsusb_probe: board id=9, interface number 0
[ 77.851172][ T43] smsusb:siano_media_device_register: media controller created
[ 77.860966][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 77.868406][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 77.875682][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 77.883023][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 77.890261][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 77.897497][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 77.904838][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 77.912902][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 77.920378][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 77.927658][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 77.934904][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 77.942150][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 77.949571][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 77.956858][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 77.964296][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 77.972125][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 77.979478][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 77.987171][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 77.994784][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.002089][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.009321][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.016536][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.023738][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.030966][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.038589][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.045924][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.053192][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.060438][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.067762][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.075083][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.082320][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.090255][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.097742][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.105062][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.112323][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.119574][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.126813][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.134142][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.141630][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.148891][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.156106][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.163310][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.170512][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.177735][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.184939][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.192527][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.199895][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.207151][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.214386][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[pid 5855] exit_group(0) = ?
[pid 5855] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5855, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 78.221686][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.228898][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.236103][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.243593][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.250920][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.258236][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555584897750) = 5861
./strace-static-x86_64: Process 5861 attached
[ 78.265541][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.272856][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.280115][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.287368][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.295014][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.302276][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.309494][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
executing program
[pid 5861] set_robust_list(0x555584897760, 24) = 0
[pid 5861] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5861] setpgid(0, 0) = 0
[pid 5861] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5861] write(3, "1000", 4) = 4
[pid 5861] close(3) = 0
[pid 5861] write(1, "executing program\n", 18) = 18
[pid 5861] openat(AT_FDCWD, "/dev/raw-gadget", O_RDWR) = 3
[pid 5861] ioctl(3, USB_RAW_IOCTL_INIT, 0x7fff5be4c010) = 0
[pid 5861] ioctl(3, UI_DEV_CREATE or USB_RAW_IOCTL_RUN, 0) = 0
[pid 5861] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fff5be4c010) = 0
[ 78.316730][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.323960][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.331386][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.338683][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.346975][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.354304][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.361647][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.369023][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.376269][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.383508][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.390744][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.398784][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.406035][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.413333][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.420540][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.427740][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.434978][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.442201][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.449687][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.456970][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.464246][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.471578][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.478804][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.486067][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.493307][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.500539][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.508121][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.515409][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.522665][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.529911][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.537151][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.544483][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.551722][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.558962][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.566401][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.573849][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.581071][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.588299][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.595591][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.602797][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.610348][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.617558][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.625095][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.632366][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.639582][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.646790][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.654087][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.661295][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.668500][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.675703][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.683210][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.690493][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.697732][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.705052][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.712280][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.719532][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.726940][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.734211][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.741736][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.749033][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.756266][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.763849][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.771099][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.778391][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.785784][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.793079][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.800795][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.808046][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.815364][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.822623][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.829865][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.837105][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.844327][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.851739][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.859001][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.866214][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.873425][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.880734][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.887953][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.895170][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.902465][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.909946][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.917323][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.924522][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.931724][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.938955][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.946165][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.953450][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.960749][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.968238][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.975535][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.982839][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.990098][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 78.997344][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 79.004580][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 79.011826][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 79.019066][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 79.026516][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 79.033915][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 79.041297][ T43] smsmdtv:smscore_sendrequest_and_wait: sendrequest returned error -22
[ 79.049832][ T43] smsmdtv:smscore_set_device_mode: mode detect failed -22
[ 79.057006][ T43] smsmdtv:smscore_start_device: set device mode failed , rc -22
[ 79.064878][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 79.072137][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 79.079362][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 79.086608][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 79.093871][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 79.101084][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 79.108307][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 79.115521][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 79.122860][ T43] smsusb:smsusb_init_device: smscore_start_device(...) failed
[ 79.132373][ T43] ------------[ cut here ]------------
[ 79.138081][ T43] WARNING: mm/slub.c:4790 at free_large_kmalloc+0x15c/0x1f0, CPU#1: kworker/1:1/43
[ 79.147529][ T43] Modules linked in:
[ 79.151496][ T43] CPU: 1 UID: 0 PID: 43 Comm: kworker/1:1 Not tainted 6.16.0-rc4-next-20250704-syzkaller #0 PREEMPT(full)
[ 79.163040][ T43] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 79.173163][ T43] Workqueue: usb_hub_wq hub_event
[ 79.178274][ T43] RIP: 0010:free_large_kmalloc+0x15c/0x1f0
[ 79.184103][ T43] Code: 44 89 f6 e8 26 1b fd ff 65 48 8b 05 ae 39 cd 10 48 3b 44 24 08 75 57 48 83 c4 10 5b 41 5c 41 5e 41 5f 5d e9 16 5f 68 09 cc 90 <0f> 0b 90 65 48 8b 05 89 39 cd 10 48 3b 44 24 08 75 32 48 89 df 48
[ 79.203852][ T43] RSP: 0018:ffffc90000b36b00 EFLAGS: 00010206
[ 79.209965][ T43] RAX: 00000000ff000000 RBX: ffffea0001c89880 RCX: 0000000000000000
[ 79.217986][ T43] RDX: 0000000000000000 RSI: ffff888072262000 RDI: ffffea0001c89880
[ 79.225966][ T43] RBP: 0000000000000100 R08: ffff88801ffd4803 R09: 1ffff11003ffa900
[ 79.233992][ T43] R10: dffffc0000000000 R11: ffffed1003ffa901 R12: 1ffff110294cc482
[ 79.242028][ T43] R13: ffff888031c05000 R14: ffff88801ffd4860 R15: dffffc0000000000
[ 79.250136][ T43] FS: 0000000000000000(0000) GS:ffff8881258af000(0000) knlGS:0000000000000000
[ 79.259130][ T43] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 79.265708][ T43] CR2: 000055b050dfcf00 CR3: 0000000072d22000 CR4: 00000000003526f0
[ 79.273800][ T43] Call Trace:
[ 79.277133][ T43]
[ 79.280074][ T43] usb_free_urb+0xd0/0x120
[ 79.284574][ T43] smsusb_term_device+0x1d6/0x3b0
[ 79.289747][ T43] smsusb_probe+0x1a04/0x2060
[ 79.294449][ T43] ? __pfx_smsusb_probe+0x10/0x10
[ 79.299525][ T43] ? __pfx_smsusb_sendrequest+0x10/0x10
[ 79.305104][ T43] ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 79.311056][ T43] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 79.317467][ T43] ? __pm_runtime_set_status+0x785/0xa50
[ 79.323116][ T43] usb_probe_interface+0x634/0xbf0
[ 79.328279][ T43] ? __pfx_usb_probe_interface+0x10/0x10
[ 79.333931][ T43] really_probe+0x26a/0x9a0
[ 79.338499][ T43] __driver_probe_device+0x18c/0x2f0
[ 79.343794][ T43] driver_probe_device+0x4f/0x430
[ 79.348887][ T43] __device_attach_driver+0x2ce/0x530
[ 79.354314][ T43] bus_for_each_drv+0x251/0x2e0
[ 79.359218][ T43] ? __pfx___device_attach_driver+0x10/0x10
[ 79.365209][ T43] ? __pfx_bus_for_each_drv+0x10/0x10
[ 79.370623][ T43] __device_attach+0x2b8/0x400
[ 79.375404][ T43] ? __pfx___device_attach+0x10/0x10
[ 79.380784][ T43] ? do_raw_spin_unlock+0x122/0x240
[ 79.386031][ T43] bus_probe_device+0x185/0x260
[ 79.390979][ T43] device_add+0x7b6/0xb50
[ 79.395325][ T43] usb_set_configuration+0x1a87/0x20e0
[ 79.400874][ T43] usb_generic_driver_probe+0x8d/0x150
[ 79.406432][ T43] usb_probe_device+0x1c4/0x390
[ 79.411318][ T43] ? __pfx_usb_probe_device+0x10/0x10
[ 79.416757][ T43] really_probe+0x26a/0x9a0
[ 79.421348][ T43] __driver_probe_device+0x18c/0x2f0
[ 79.426652][ T43] driver_probe_device+0x4f/0x430
[ 79.431735][ T43] __device_attach_driver+0x2ce/0x530
[ 79.437196][ T43] bus_for_each_drv+0x251/0x2e0
[ 79.442052][ T43] ? __pfx___device_attach_driver+0x10/0x10
[ 79.448003][ T43] ? __pfx_bus_for_each_drv+0x10/0x10
[ 79.453397][ T43] __device_attach+0x2b8/0x400
[ 79.458237][ T43] ? __pfx___device_attach+0x10/0x10
[ 79.463544][ T43] ? do_raw_spin_unlock+0x122/0x240
[ 79.468814][ T43] bus_probe_device+0x185/0x260
[ 79.473677][ T43] device_add+0x7b6/0xb50
[ 79.478045][ T43] usb_new_device+0xa39/0x16f0
[ 79.482844][ T43] ? __pfx_usb_new_device+0x10/0x10
[ 79.488111][ T43] ? _raw_spin_unlock_irq+0x23/0x50
[ 79.493317][ T43] ? lockdep_hardirqs_on+0x9c/0x150
[ 79.498564][ T43] hub_event+0x2941/0x4a00
[ 79.503018][ T43] ? __pfx_hub_event+0x10/0x10
[ 79.507828][ T43] ? process_scheduled_works+0x9ef/0x17b0
[ 79.513569][ T43] ? _raw_spin_unlock_irq+0x23/0x50
[ 79.518816][ T43] ? process_scheduled_works+0x9ef/0x17b0
[ 79.524558][ T43] ? process_scheduled_works+0x9ef/0x17b0
[ 79.530316][ T43] process_scheduled_works+0xae1/0x17b0
[ 79.535914][ T43] ? __pfx_process_scheduled_works+0x10/0x10
[ 79.542048][ T43] worker_thread+0x8a0/0xda0
[ 79.546664][ T43] kthread+0x70e/0x8a0
[ 79.550777][ T43] ? __pfx_worker_thread+0x10/0x10
[ 79.555900][ T43] ? __pfx_kthread+0x10/0x10
[ 79.560542][ T43] ? _raw_spin_unlock_irq+0x23/0x50
[ 79.565748][ T43] ? lockdep_hardirqs_on+0x9c/0x150
[ 79.571005][ T43] ? __pfx_kthread+0x10/0x10
[ 79.575611][ T43] ret_from_fork+0x3fc/0x770
[ 79.580242][ T43] ? __pfx_ret_from_fork+0x10/0x10
[ 79.585389][ T43] ? __switch_to_asm+0x39/0x70
[ 79.590345][ T43] ? __switch_to_asm+0x33/0x70
[ 79.595127][ T43] ? __pfx_kthread+0x10/0x10
[ 79.599811][ T43] ret_from_fork_asm+0x1a/0x30
[ 79.604614][ T43]
[ 79.607685][ T43] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 79.614978][ T43] CPU: 1 UID: 0 PID: 43 Comm: kworker/1:1 Not tainted 6.16.0-rc4-next-20250704-syzkaller #0 PREEMPT(full)
[ 79.626328][ T43] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 79.636381][ T43] Workqueue: usb_hub_wq hub_event
[ 79.641398][ T43] Call Trace:
[ 79.644658][ T43]
[ 79.647607][ T43] dump_stack_lvl+0x99/0x250
[ 79.652379][ T43] ? __asan_memcpy+0x40/0x70
[ 79.656963][ T43] ? __pfx_dump_stack_lvl+0x10/0x10
[ 79.662152][ T43] ? __pfx__printk+0x10/0x10
[ 79.666741][ T43] panic+0x2db/0x790
[ 79.670621][ T43] ? __pfx_panic+0x10/0x10
[ 79.675028][ T43] ? ret_from_fork_asm+0x1a/0x30
[ 79.679955][ T43] __warn+0x334/0x4c0
[ 79.683921][ T43] ? free_large_kmalloc+0x15c/0x1f0
[ 79.689110][ T43] ? free_large_kmalloc+0x15c/0x1f0
[ 79.694381][ T43] report_bug+0x2be/0x4f0
[ 79.698783][ T43] ? free_large_kmalloc+0x15c/0x1f0
[ 79.703973][ T43] ? free_large_kmalloc+0x15c/0x1f0
[ 79.709179][ T43] ? free_large_kmalloc+0x15e/0x1f0
[ 79.714365][ T43] handle_bug+0x84/0x160
[ 79.718682][ T43] exc_invalid_op+0x1a/0x50
[ 79.723173][ T43] asm_exc_invalid_op+0x1a/0x20
[ 79.728004][ T43] RIP: 0010:free_large_kmalloc+0x15c/0x1f0
[ 79.733796][ T43] Code: 44 89 f6 e8 26 1b fd ff 65 48 8b 05 ae 39 cd 10 48 3b 44 24 08 75 57 48 83 c4 10 5b 41 5c 41 5e 41 5f 5d e9 16 5f 68 09 cc 90 <0f> 0b 90 65 48 8b 05 89 39 cd 10 48 3b 44 24 08 75 32 48 89 df 48
[ 79.753403][ T43] RSP: 0018:ffffc90000b36b00 EFLAGS: 00010206
[ 79.759467][ T43] RAX: 00000000ff000000 RBX: ffffea0001c89880 RCX: 0000000000000000
[ 79.767426][ T43] RDX: 0000000000000000 RSI: ffff888072262000 RDI: ffffea0001c89880
[ 79.775383][ T43] RBP: 0000000000000100 R08: ffff88801ffd4803 R09: 1ffff11003ffa900
[ 79.783342][ T43] R10: dffffc0000000000 R11: ffffed1003ffa901 R12: 1ffff110294cc482
[ 79.791302][ T43] R13: ffff888031c05000 R14: ffff88801ffd4860 R15: dffffc0000000000
[ 79.799291][ T43] usb_free_urb+0xd0/0x120
[ 79.803715][ T43] smsusb_term_device+0x1d6/0x3b0
[ 79.808744][ T43] smsusb_probe+0x1a04/0x2060
[ 79.813422][ T43] ? __pfx_smsusb_probe+0x10/0x10
[ 79.818437][ T43] ? __pfx_smsusb_sendrequest+0x10/0x10
[ 79.823977][ T43] ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 79.829883][ T43] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 79.836234][ T43] ? __pm_runtime_set_status+0x785/0xa50
[ 79.841865][ T43] usb_probe_interface+0x634/0xbf0
[ 79.846980][ T43] ? __pfx_usb_probe_interface+0x10/0x10
[ 79.852600][ T43] really_probe+0x26a/0x9a0
[ 79.857100][ T43] __driver_probe_device+0x18c/0x2f0
[ 79.862374][ T43] driver_probe_device+0x4f/0x430
[ 79.867389][ T43] __device_attach_driver+0x2ce/0x530
[ 79.872752][ T43] bus_for_each_drv+0x251/0x2e0
[ 79.877598][ T43] ? __pfx___device_attach_driver+0x10/0x10
[ 79.883480][ T43] ? __pfx_bus_for_each_drv+0x10/0x10
[ 79.888852][ T43] __device_attach+0x2b8/0x400
[ 79.893628][ T43] ? __pfx___device_attach+0x10/0x10
[ 79.898924][ T43] ? do_raw_spin_unlock+0x122/0x240
[ 79.904133][ T43] bus_probe_device+0x185/0x260
[ 79.908986][ T43] device_add+0x7b6/0xb50
[ 79.913311][ T43] usb_set_configuration+0x1a87/0x20e0
[ 79.918787][ T43] usb_generic_driver_probe+0x8d/0x150
[ 79.924240][ T43] usb_probe_device+0x1c4/0x390
[ 79.929086][ T43] ? __pfx_usb_probe_device+0x10/0x10
[ 79.934445][ T43] really_probe+0x26a/0x9a0
[ 79.938944][ T43] __driver_probe_device+0x18c/0x2f0
[ 79.944222][ T43] driver_probe_device+0x4f/0x430
[ 79.949236][ T43] __device_attach_driver+0x2ce/0x530
[ 79.954602][ T43] bus_for_each_drv+0x251/0x2e0
[ 79.959457][ T43] ? __pfx___device_attach_driver+0x10/0x10
[ 79.965341][ T43] ? __pfx_bus_for_each_drv+0x10/0x10
[ 79.970714][ T43] __device_attach+0x2b8/0x400
[ 79.975483][ T43] ? __pfx___device_attach+0x10/0x10
[ 79.980765][ T43] ? do_raw_spin_unlock+0x122/0x240
[ 79.985964][ T43] bus_probe_device+0x185/0x260
[ 79.990815][ T43] device_add+0x7b6/0xb50
[ 79.995137][ T43] usb_new_device+0xa39/0x16f0
[ 79.999913][ T43] ? __pfx_usb_new_device+0x10/0x10
[ 80.005108][ T43] ? _raw_spin_unlock_irq+0x23/0x50
[ 80.010293][ T43] ? lockdep_hardirqs_on+0x9c/0x150
[ 80.015479][ T43] hub_event+0x2941/0x4a00
[ 80.019930][ T43] ? __pfx_hub_event+0x10/0x10
[ 80.024681][ T43] ? process_scheduled_works+0x9ef/0x17b0
[ 80.030401][ T43] ? _raw_spin_unlock_irq+0x23/0x50
[ 80.035587][ T43] ? process_scheduled_works+0x9ef/0x17b0
[ 80.041299][ T43] ? process_scheduled_works+0x9ef/0x17b0
[ 80.047012][ T43] process_scheduled_works+0xae1/0x17b0
[ 80.052606][ T43] ? __pfx_process_scheduled_works+0x10/0x10
[ 80.058616][ T43] worker_thread+0x8a0/0xda0
[ 80.063244][ T43] kthread+0x70e/0x8a0
[ 80.067317][ T43] ? __pfx_worker_thread+0x10/0x10
[ 80.072420][ T43] ? __pfx_kthread+0x10/0x10
[ 80.077010][ T43] ? _raw_spin_unlock_irq+0x23/0x50
[ 80.082205][ T43] ? lockdep_hardirqs_on+0x9c/0x150
[ 80.087391][ T43] ? __pfx_kthread+0x10/0x10
[ 80.091982][ T43] ret_from_fork+0x3fc/0x770
[ 80.096569][ T43] ? __pfx_ret_from_fork+0x10/0x10
[ 80.101679][ T43] ? __switch_to_asm+0x39/0x70
[ 80.106435][ T43] ? __switch_to_asm+0x33/0x70
[ 80.111192][ T43] ? __pfx_kthread+0x10/0x10
[ 80.115795][ T43] ret_from_fork_asm+0x1a/0x30
[ 80.120577][ T43]
[ 80.123863][ T43] Kernel Offset: disabled
[ 80.128180][ T43] Rebooting in 86400 seconds..