Warning: Permanently added '10.128.1.148' (ED25519) to the list of known hosts.
executing program
[   47.217893][   T29] audit: type=1400 audit(1748919496.079:64): avc:  denied  { execmem } for  pid=2954 comm="syz-executor613" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   47.237667][   T29] audit: type=1400 audit(1748919496.079:65): avc:  denied  { read write } for  pid=2955 comm="syz-executor613" name="raw-gadget" dev="devtmpfs" ino=236 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   47.261523][   T29] audit: type=1400 audit(1748919496.079:66): avc:  denied  { open } for  pid=2955 comm="syz-executor613" path="/dev/raw-gadget" dev="devtmpfs" ino=236 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   47.285239][   T29] audit: type=1400 audit(1748919496.079:67): avc:  denied  { ioctl } for  pid=2955 comm="syz-executor613" path="/dev/raw-gadget" dev="devtmpfs" ino=236 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   47.453458][   T42] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   47.607969][   T42] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[   47.617181][   T42] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   47.625352][   T42] usb 1-1: Product: syz
[   47.629542][   T42] usb 1-1: Manufacturer: syz
[   47.634211][   T42] usb 1-1: SerialNumber: syz
[   47.647762][   T42] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[   47.707073][   T29] audit: type=1400 audit(1748919496.569:68): avc:  denied  { firmware_load } for  pid=1119 comm="kworker/1:2" path="/lib/firmware/ath9k_htc/htc_9271-1.4.0.fw" dev="sda1" ino=313 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1
[   47.720893][ T1119] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[   47.934294][   T42] usb 1-1: USB disconnect, device number 2
[   48.763385][ T1119] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive
[   48.770851][ T1119] ath9k_htc: Failed to initialize the device
[   48.778012][   T42] usb 1-1: ath9k_htc: USB layer deinitialized
[   49.073757][   T42] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   49.227173][   T42] usb 1-1: New USB device found, idVendor=0cf3, idProduct=1002, bcdDevice= 1.08
[   49.236339][   T42] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   49.244414][   T42] usb 1-1: Product: syz
[   49.248602][   T42] usb 1-1: Manufacturer: syz
[   49.253378][   T42] usb 1-1: SerialNumber: syz
[   49.393629][   T42] usb 1-1: reset high-speed USB device number 3 using dummy_hcd
[   50.083711][   T42] usb 1-1: device descriptor read/64, error -71
[   50.381305][ T2957] usb 1-1: driver   API: 1.9.9 2016-02-15 [1-1]
[   50.387808][ T2957] usb 1-1: firmware API: 1.9.6 2012-07-07
[   50.614807][   T42] usb 1-1: USB disconnect, device number 3
[   50.622121][    C1] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000038: 0000 [#1] SMP KASAN PTI
[   50.634076][    C1] KASAN: null-ptr-deref in range [0x00000000000001c0-0x00000000000001c7]
[   50.642826][    C1] CPU: 1 UID: 0 PID: 2953 Comm: sshd-session Not tainted 6.15.0-rc6-syzkaller-00177-g882826f58b2c #0 PREEMPT(voluntary) 
[   50.655439][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   50.665511][    C1] RIP: 0010:__queue_work+0x9d/0x10f0
[   50.670832][    C1] Code: 85 db 0f 84 ae 04 00 00 e8 b0 da 33 00 49 8d 86 c0 01 00 00 48 89 c2 48 89 44 24 10 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <0f> b6 04 02 84 c0 74 08 3c 03 0f 8e e8 0c 00 00 41 8b 9e c0 01 00
[   50.690459][    C1] RSP: 0018:ffffc900001a8a60 EFLAGS: 00010002
[   50.696578][    C1] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffff8148954e
[   50.704566][    C1] RDX: 0000000000000038 RSI: ffffffff81489090 RDI: 0000000000000005
[   50.712553][    C1] RBP: ffff88811aa43bd0 R08: 0000000000000005 R09: 0000000000000000
[   50.720552][    C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000008
[   50.728533][    C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0100000000000001
[   50.736525][    C1] FS:  00007fcf007a7300(0000) GS:ffff8882692c2000(0000) knlGS:0000000000000000
[   50.745477][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   50.752072][    C1] CR2: 00007f8cdcc51af8 CR3: 000000011a150000 CR4: 00000000003506f0
[   50.760055][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   50.768122][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   50.776103][    C1] Call Trace:
[   50.779528][    C1]  <IRQ>
[   50.782389][    C1]  ? __pfx_clear_pending_if_disabled+0x10/0x10
[   50.788573][    C1]  ? carl9170_usb_submit_rx_urb+0x16d/0x180
[   50.794524][    C1]  queue_work_on+0x15f/0x1f0
[   50.799131][    C1]  ieee80211_queue_work+0x113/0x180
[   50.804344][    C1]  carl9170_usb_rx_complete+0x275/0x2b0
[   50.809934][    C1]  __usb_hcd_giveback_urb+0x38a/0x6e0
[   50.815341][    C1]  usb_hcd_giveback_urb+0x39b/0x450
[   50.820566][    C1]  dummy_timer+0x180e/0x3a20
[   50.825188][    C1]  ? do_raw_spin_lock+0x12c/0x2b0
[   50.830243][    C1]  ? find_held_lock+0x2b/0x80
[   50.834929][    C1]  ? do_raw_spin_unlock+0x172/0x230
[   50.840183][    C1]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   50.846007][    C1]  ? debug_object_deactivate+0x1ec/0x3a0
[   50.851665][    C1]  ? __pfx_debug_object_deactivate+0x10/0x10
[   50.857666][    C1]  ? __pfx_dummy_timer+0x10/0x10
[   50.862634][    C1]  ? __pfx_dummy_timer+0x10/0x10
[   50.867580][    C1]  ? mark_held_locks+0x49/0x80
[   50.872364][    C1]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   50.878203][    C1]  ? __pfx_dummy_timer+0x10/0x10
[   50.883173][    C1]  __hrtimer_run_queues+0x1ff/0xad0
[   50.888419][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[   50.894178][    C1]  ? read_tsc+0x9/0x20
[   50.898271][    C1]  hrtimer_run_softirq+0x17d/0x350
[   50.903407][    C1]  handle_softirqs+0x205/0x8d0
[   50.908186][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[   50.913488][    C1]  ? tcp_sendmsg+0x20/0x50
[   50.917923][    C1]  do_softirq+0xb2/0xf0
[   50.922092][    C1]  </IRQ>
[   50.925028][    C1]  <TASK>
[   50.927960][    C1]  __local_bh_enable_ip+0x100/0x120
[   50.933182][    C1]  tcp_sendmsg+0x20/0x50
[   50.937463][    C1]  ? __pfx_tcp_sendmsg+0x10/0x10
[   50.942422][    C1]  inet_sendmsg+0xb9/0x140
[   50.946870][    C1]  sock_write_iter+0x4aa/0x5b0
[   50.951677][    C1]  ? __pfx_sock_write_iter+0x10/0x10
[   50.956988][    C1]  ? security_file_permission+0x21/0x80
[   50.962559][    C1]  vfs_write+0x5ba/0x1180
[   50.966912][    C1]  ? __pfx_sock_write_iter+0x10/0x10
[   50.972217][    C1]  ? __pfx_vfs_write+0x10/0x10
[   50.977024][    C1]  ? _raw_spin_unlock_irq+0x2e/0x50
[   50.982239][    C1]  ? sigprocmask+0xef/0x330
[   50.986772][    C1]  ksys_write+0x205/0x240
[   50.991119][    C1]  ? __pfx_ksys_write+0x10/0x10
[   50.995988][    C1]  ? rcu_is_watching+0x12/0xc0
[   51.000769][    C1]  do_syscall_64+0xcd/0x260
[   51.005301][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   51.011205][    C1] RIP: 0033:0x7fcf0089b407
[   51.015660][    C1] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff
[   51.035286][    C1] RSP: 002b:00007ffe1a75c8c0 EFLAGS: 00000202 ORIG_RAX: 0000000000000001
[   51.043714][    C1] RAX: ffffffffffffffda RBX: 00007fcf007a7300 RCX: 00007fcf0089b407
[   51.051691][    C1] RDX: 0000000000000034 RSI: 0000555ccef6f140 RDI: 0000000000000004
[   51.059670][    C1] RBP: 0000555ccef72c70 R08: 0000000000000000 R09: 0000000000000000
[   51.067647][    C1] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000001
[   51.075650][    C1] R13: 00007ffe1a75ca10 R14: 0000000000000000 R15: 0000000000000004
[   51.083637][    C1]  </TASK>
[   51.086665][    C1] Modules linked in:
[   51.090572][    C1] ---[ end trace 0000000000000000 ]---
[   51.096027][    C1] RIP: 0010:__queue_work+0x9d/0x10f0
[   51.101329][    C1] Code: 85 db 0f 84 ae 04 00 00 e8 b0 da 33 00 49 8d 86 c0 01 00 00 48 89 c2 48 89 44 24 10 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <0f> b6 04 02 84 c0 74 08 3c 03 0f 8e e8 0c 00 00 41 8b 9e c0 01 00
[   51.120951][    C1] RSP: 0018:ffffc900001a8a60 EFLAGS: 00010002
[   51.127034][    C1] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffff8148954e
[   51.135017][    C1] RDX: 0000000000000038 RSI: ffffffff81489090 RDI: 0000000000000005
[   51.142994][    C1] RBP: ffff88811aa43bd0 R08: 0000000000000005 R09: 0000000000000000
[   51.150970][    C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000008
[   51.158953][    C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0100000000000001
[   51.166935][    C1] FS:  00007fcf007a7300(0000) GS:ffff8882692c2000(0000) knlGS:0000000000000000
[   51.175877][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   51.182487][    C1] CR2: 00007f8cdcc51af8 CR3: 000000011a150000 CR4: 00000000003506f0
[   51.190469][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   51.198445][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   51.206425][    C1] Kernel panic - not syncing: Fatal exception in interrupt
[   51.213865][    C1] Kernel Offset: disabled
[   51.218210][    C1] Rebooting in 86400 seconds..