Warning: Permanently added '10.128.0.90' (ED25519) to the list of known hosts.
executing program
[   46.437603][   T29] audit: type=1400 audit(1726438262.899:80): avc:  denied  { execmem } for  pid=2648 comm="syz-executor102" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   46.457591][   T29] audit: type=1400 audit(1726438262.899:81): avc:  denied  { read write } for  pid=2649 comm="syz-executor102" name="raw-gadget" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   46.481475][   T29] audit: type=1400 audit(1726438262.899:82): avc:  denied  { open } for  pid=2649 comm="syz-executor102" path="/dev/raw-gadget" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   46.505204][   T29] audit: type=1400 audit(1726438262.899:83): avc:  denied  { ioctl } for  pid=2649 comm="syz-executor102" path="/dev/raw-gadget" dev="devtmpfs" ino=140 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   46.717146][   T42] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   46.907104][   T42] usb 1-1: Using ep0 maxpacket: 16
[   46.915059][   T42] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[   46.926967][   T42] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 56, changing to 7
[   46.938002][   T42] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid maxpacket 57832, setting to 1024
[   46.954116][   T42] usb 1-1: New USB device found, idVendor=2040, idProduct=0265, bcdDevice=4e.d1
[   46.963365][   T42] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   46.971462][   T42] usb 1-1: Product: syz
[   46.975656][   T42] usb 1-1: Manufacturer: syz
[   46.980312][   T42] usb 1-1: SerialNumber: syz
[   46.989765][   T42] usb 1-1: config 0 descriptor??
[   47.002393][   T42] em28xx 1-1:0.0: New device syz syz @ 480 Mbps (2040:0265, interface 0, class 0)
[   47.011746][   T42] em28xx 1-1:0.0: Audio interface 0 found (Vendor Class)
executing program
[   47.267462][   T42] em28xx 1-1:0.0: unknown em28xx chip ID (0)
[   47.274328][   T42] em28xx 1-1:0.0: Config register raw data: 0xfffffffb
[   47.281968][   T42] em28xx 1-1:0.0: AC97 chip type couldn't be determined
[   47.289144][   T42] em28xx 1-1:0.0: No AC97 audio processor
[   47.294958][   T42] em28xx 1-1:0.0: We currently don't support analog TV or stream capture on dual tuners.
[   47.367486][   T42] em28xx 1-1:0.0: unknown em28xx chip ID (0)
[   47.373983][   T42] em28xx 1-1:0.0: Config register raw data: 0xfffffffb
[   47.381586][   T42] em28xx 1-1:0.0: AC97 chip type couldn't be determined
[   47.388597][   T42] em28xx 1-1:0.0: No AC97 audio processor
[   47.604116][   T42] usb 1-1: USB disconnect, device number 2
[   47.611437][   T42] em28xx 1-1:0.0: Disconnecting em28xx #1
[   47.617285][   T42] em28xx 1-1:0.0: Disconnecting em28xx
[   47.627238][   T42] em28xx 1-1:0.0: Freeing device
[   47.632269][   T42] em28xx 1-1:0.0: Freeing device
[   47.987345][   T42] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   48.167067][   T42] usb 1-1: Using ep0 maxpacket: 16
[   48.174060][   T42] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[   48.185681][   T42] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 56, changing to 7
[   48.196755][   T42] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid maxpacket 57832, setting to 1024
[   48.210845][   T42] usb 1-1: New USB device found, idVendor=2040, idProduct=0265, bcdDevice=4e.d1
[   48.219972][   T42] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   48.228049][   T42] usb 1-1: Product: syz
[   48.232269][   T42] usb 1-1: Manufacturer: syz
[   48.236872][   T42] usb 1-1: SerialNumber: syz
[   48.244927][   T42] usb 1-1: config 0 descriptor??
[   48.254374][   T42] em28xx 1-1:0.0: New device syz syz @ 480 Mbps (2040:0265, interface 0, class 0)
[   48.263739][   T42] em28xx 1-1:0.0: Audio interface 0 found (Vendor Class)
executing program
[   48.517536][   T42] em28xx 1-1:0.0: unknown em28xx chip ID (0)
[   48.524250][   T42] em28xx 1-1:0.0: Config register raw data: 0xfffffffb
[   48.531912][   T42] em28xx 1-1:0.0: AC97 chip type couldn't be determined
[   48.538947][   T42] em28xx 1-1:0.0: No AC97 audio processor
[   48.544689][   T42] list_add corruption. prev->next should be next (ffffffff89df38a0), but was 0000000000000000. (prev=ffff88811384c250).
[   48.558012][   T42] ------------[ cut here ]------------
[   48.563500][   T42] kernel BUG at lib/list_debug.c:32!
[   48.568900][   T42] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI
[   48.575890][   T42] CPU: 0 UID: 0 PID: 42 Comm: kworker/0:2 Not tainted 6.11.0-rc7-syzkaller-00152-g68d4209158f4 #0
[   48.586501][   T42] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   48.596735][   T42] Workqueue: usb_hub_wq hub_event
[   48.601811][   T42] RIP: 0010:__list_add_valid_or_report+0xbe/0x100
[   48.608249][   T42] Code: e1 fe 90 0f 0b 48 89 d9 48 c7 c7 c0 9b 46 87 e8 98 b2 e1 fe 90 0f 0b 48 89 f1 48 c7 c7 40 9c 46 87 48 89 de e8 83 b2 e1 fe 90 <0f> 0b 48 89 f2 48 89 d9 48 89 ee 48 c7 c7 c0 9c 46 87 e8 6b b2 e1
[   48.627868][   T42] RSP: 0018:ffffc900004d6f08 EFLAGS: 00010286
[   48.633941][   T42] RAX: 0000000000000075 RBX: ffffffff89df38a0 RCX: ffffffff813560b9
[   48.641929][   T42] RDX: 0000000000000000 RSI: ffffffff8135f4f6 RDI: 0000000000000005
[   48.649936][   T42] RBP: ffff888113ab0250 R08: 0000000000000005 R09: 0000000000000000
[   48.657937][   T42] R10: 0000000080000000 R11: 0000000000000001 R12: ffff888113ab0250
[   48.665918][   T42] R13: ffff888113ab0000 R14: ffff888113ab19d4 R15: ffff88811367c800
[   48.673902][   T42] FS:  0000000000000000(0000) GS:ffff8881f5800000(0000) knlGS:0000000000000000
[   48.682844][   T42] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   48.689442][   T42] CR2: 00005555928f3ca8 CR3: 0000000115d20000 CR4: 00000000003506f0
[   48.697427][   T42] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   48.705419][   T42] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   48.713410][   T42] Call Trace:
[   48.716747][   T42]  <TASK>
[   48.719719][   T42]  ? show_regs+0x8c/0xa0
[   48.724002][   T42]  ? die+0x36/0xa0
[   48.727749][   T42]  ? do_trap+0x232/0x430
[   48.732015][   T42]  ? __list_add_valid_or_report+0xbe/0x100
[   48.737851][   T42]  ? __list_add_valid_or_report+0xbe/0x100
[   48.743680][   T42]  ? do_error_trap+0xf4/0x230
[   48.748464][   T42]  ? __list_add_valid_or_report+0xbe/0x100
[   48.754295][   T42]  ? handle_invalid_op+0x34/0x40
[   48.759248][   T42]  ? __list_add_valid_or_report+0xbe/0x100
[   48.765082][   T42]  ? exc_invalid_op+0x2e/0x50
[   48.769777][   T42]  ? asm_exc_invalid_op+0x1a/0x20
[   48.774825][   T42]  ? __wake_up_klogd.part.0+0x99/0xf0
[   48.780234][   T42]  ? vprintk+0x86/0xa0
[   48.784313][   T42]  ? __list_add_valid_or_report+0xbe/0x100
[   48.790185][   T42]  ? __list_add_valid_or_report+0xbd/0x100
[   48.796044][   T42]  em28xx_init_extension+0x48/0x200
[   48.801275][   T42]  em28xx_init_dev.constprop.0+0x197b/0x3090
[   48.807285][   T42]  ? __pfx_em28xx_init_dev.constprop.0+0x10/0x10
[   48.813640][   T42]  ? lockdep_init_map_type+0x16d/0x7d0
[   48.819138][   T42]  ? lockdep_init_map_type+0x16d/0x7d0
[   48.824626][   T42]  ? __raw_spin_lock_init+0x3a/0x110
[   48.829944][   T42]  em28xx_usb_probe+0x10db/0x3730
[   48.834998][   T42]  usb_probe_interface+0x309/0x9d0
[   48.840133][   T42]  ? __pfx_usb_probe_interface+0x10/0x10
[   48.845807][   T42]  really_probe+0x23e/0xa90
[   48.850328][   T42]  __driver_probe_device+0x1de/0x440
[   48.855632][   T42]  driver_probe_device+0x4c/0x1b0
[   48.860696][   T42]  __device_attach_driver+0x1df/0x310
[   48.866133][   T42]  ? __pfx___device_attach_driver+0x10/0x10
[   48.872047][   T42]  bus_for_each_drv+0x157/0x1e0
[   48.876912][   T42]  ? __pfx_bus_for_each_drv+0x10/0x10
[   48.882300][   T42]  ? lockdep_hardirqs_on+0x7c/0x110
[   48.887515][   T42]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   48.893376][   T42]  __device_attach+0x1e8/0x4b0
[   48.898160][   T42]  ? __pfx___device_attach+0x10/0x10
[   48.903471][   T42]  ? do_raw_spin_unlock+0x172/0x230
[   48.908695][   T42]  bus_probe_device+0x17f/0x1c0
[   48.913559][   T42]  device_add+0x114b/0x1a70
[   48.918082][   T42]  ? __pfx_device_add+0x10/0x10
[   48.922951][   T42]  ? mark_held_locks+0x9f/0xe0
[   48.927736][   T42]  usb_set_configuration+0x10cb/0x1c50
[   48.933229][   T42]  ? __pfx_usb_generic_driver_probe+0x10/0x10
[   48.939315][   T42]  usb_generic_driver_probe+0xb1/0x110
[   48.944794][   T42]  usb_probe_device+0xec/0x3e0
[   48.949562][   T42]  ? __pfx_usb_probe_device+0x10/0x10
[   48.954969][   T42]  really_probe+0x23e/0xa90
[   48.959870][   T42]  __driver_probe_device+0x1de/0x440
[   48.965192][   T42]  ? usb_driver_applicable+0x1c7/0x220
[   48.970672][   T42]  driver_probe_device+0x4c/0x1b0
[   48.975723][   T42]  __device_attach_driver+0x1df/0x310
[   48.981125][   T42]  ? __pfx___device_attach_driver+0x10/0x10
[   48.987061][   T42]  bus_for_each_drv+0x157/0x1e0
[   48.991930][   T42]  ? __pfx_bus_for_each_drv+0x10/0x10
[   48.997314][   T42]  ? lockdep_hardirqs_on+0x7c/0x110
[   49.002530][   T42]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   49.008453][   T42]  __device_attach+0x1e8/0x4b0
[   49.013236][   T42]  ? __pfx___device_attach+0x10/0x10
[   49.018547][   T42]  ? do_raw_spin_unlock+0x172/0x230
[   49.023791][   T42]  bus_probe_device+0x17f/0x1c0
[   49.028676][   T42]  device_add+0x114b/0x1a70
[   49.033294][   T42]  ? __pfx_device_add+0x10/0x10
[   49.038209][   T42]  ? add_device_randomness+0xb8/0xf0
[   49.043520][   T42]  usb_new_device+0xd90/0x1a10
[   49.048327][   T42]  ? __pfx_usb_new_device+0x10/0x10
[   49.053662][   T42]  hub_event+0x2e58/0x4f40
[   49.058143][   T42]  ? __pfx_hub_event+0x10/0x10
[   49.062936][   T42]  ? __pfx_lock_acquire+0x10/0x10
[   49.067977][   T42]  ? __pfx_lock_release+0x10/0x10
[   49.073023][   T42]  process_one_work+0x9c5/0x1b40
[   49.077996][   T42]  ? __pfx_hub_event+0x10/0x10
[   49.082882][   T42]  ? __pfx_process_one_work+0x10/0x10
[   49.088287][   T42]  ? assign_work+0x1a0/0x250
[   49.092901][   T42]  worker_thread+0x6c8/0xed0
[   49.097627][   T42]  ? __kthread_parkme+0x148/0x220
[   49.102685][   T42]  ? __pfx_worker_thread+0x10/0x10
[   49.107818][   T42]  kthread+0x2c1/0x3a0
[   49.111898][   T42]  ? _raw_spin_unlock_irq+0x23/0x50
[   49.117127][   T42]  ? __pfx_kthread+0x10/0x10
[   49.121832][   T42]  ret_from_fork+0x45/0x80
[   49.126294][   T42]  ? __pfx_kthread+0x10/0x10
[   49.130897][   T42]  ret_from_fork_asm+0x1a/0x30
[   49.135709][   T42]  </TASK>
[   49.138727][   T42] Modules linked in:
[   49.142708][   T42] ---[ end trace 0000000000000000 ]---
[   49.148221][   T42] RIP: 0010:__list_add_valid_or_report+0xbe/0x100
[   49.154702][   T42] Code: e1 fe 90 0f 0b 48 89 d9 48 c7 c7 c0 9b 46 87 e8 98 b2 e1 fe 90 0f 0b 48 89 f1 48 c7 c7 40 9c 46 87 48 89 de e8 83 b2 e1 fe 90 <0f> 0b 48 89 f2 48 89 d9 48 89 ee 48 c7 c7 c0 9c 46 87 e8 6b b2 e1
[   49.174465][   T42] RSP: 0018:ffffc900004d6f08 EFLAGS: 00010286
[   49.180574][   T42] RAX: 0000000000000075 RBX: ffffffff89df38a0 RCX: ffffffff813560b9
[   49.188596][   T42] RDX: 0000000000000000 RSI: ffffffff8135f4f6 RDI: 0000000000000005
[   49.196684][   T42] RBP: ffff888113ab0250 R08: 0000000000000005 R09: 0000000000000000
[   49.204719][   T42] R10: 0000000080000000 R11: 0000000000000001 R12: ffff888113ab0250
[   49.212761][   T42] R13: ffff888113ab0000 R14: ffff888113ab19d4 R15: ffff88811367c800
[   49.220777][   T42] FS:  0000000000000000(0000) GS:ffff8881f5800000(0000) knlGS:0000000000000000
[   49.229778][   T42] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   49.236401][   T42] CR2: 00005555928f3ca8 CR3: 0000000115d20000 CR4: 00000000003506f0
[   49.244437][   T42] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   49.252467][   T42] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   49.260522][   T42] Kernel panic - not syncing: Fatal exception
[   49.266731][   T42] Kernel Offset: disabled
[   49.271065][   T42] Rebooting in 86400 seconds..