Warning: Permanently added '[localhost]:51445' (ED25519) to the list of known hosts.
2025/07/03 02:06:42 ignoring optional flag "sandboxArg"="0"
2025/07/03 02:06:43 parsed 1 programs
[   81.632483][ T1470] cfg80211: failed to load regulatory.db
[   82.824726][   T40] kauditd_printk_skb: 26 callbacks suppressed
[   82.824744][   T40] audit: type=1400 audit(1751508405.975:116): avc:  denied  { unlink } for  pid=6236 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   83.832171][ T6236] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   85.882792][ T5295] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   85.886866][ T5295] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   85.890378][ T5295] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   85.894584][ T5295] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   85.898311][ T5295] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   86.327533][   T40] audit: type=1401 audit(1751508409.475:117): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
[   87.138674][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   87.141881][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.156992][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   87.159725][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.434431][ T6307] chnl_net:caif_netlink_parms(): no params data found
[   87.514297][ T6307] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.517291][ T6307] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.520079][ T6307] bridge_slave_0: entered allmulticast mode
[   87.524335][ T6307] bridge_slave_0: entered promiscuous mode
[   87.529765][ T6307] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.535372][ T6307] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.538429][ T6307] bridge_slave_1: entered allmulticast mode
[   87.542366][ T6307] bridge_slave_1: entered promiscuous mode
[   87.608166][ T6307] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   87.623056][ T6307] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   87.653176][ T6307] team0: Port device team_slave_0 added
[   87.656341][ T6307] team0: Port device team_slave_1 added
[   87.702242][ T6307] batman_adv: batadv0: Adding interface: batadv_slave_0
[   87.705012][ T6307] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   87.713508][ T6307] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   87.728135][ T6307] batman_adv: batadv0: Adding interface: batadv_slave_1
[   87.730310][ T6307] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   87.738494][ T6307] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   87.774889][ T6307] hsr_slave_0: entered promiscuous mode
[   87.777125][ T6307] hsr_slave_1: entered promiscuous mode
[   88.390788][ T6307] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   88.399906][ T6307] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   88.406565][ T6307] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   88.411673][ T6307] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   88.460701][ T6307] 8021q: adding VLAN 0 to HW filter on device bond0
[   88.473522][ T6307] 8021q: adding VLAN 0 to HW filter on device team0
[   88.479752][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.482481][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.490279][ T1175] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.493045][ T1175] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.642948][ T6307] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.667244][ T6307] veth0_vlan: entered promiscuous mode
[   88.674257][ T6307] veth1_vlan: entered promiscuous mode
[   88.697047][ T6307] veth0_macvtap: entered promiscuous mode
[   88.701136][ T6307] veth1_macvtap: entered promiscuous mode
[   88.709441][ T6307] batman_adv: batadv0: Interface activated: batadv_slave_0
[   88.716596][ T6307] batman_adv: batadv0: Interface activated: batadv_slave_1
[   88.722130][ T6307] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   88.724848][ T6307] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   88.727681][ T6307] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   88.730393][ T6307] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   88.854789][   T81] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.922599][   T81] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.986168][   T81] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.081394][   T81] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/07/03 02:06:52 executed programs: 0
[   89.583671][ T6017] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   89.588201][ T6017] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   89.592553][ T6017] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   89.596094][ T6017] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   89.599115][ T6017] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   89.734185][ T6406] chnl_net:caif_netlink_parms(): no params data found
[   89.829568][ T6406] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.832549][ T6406] bridge0: port 1(bridge_slave_0) entered disabled state
[   89.835621][ T6406] bridge_slave_0: entered allmulticast mode
[   89.838977][ T6406] bridge_slave_0: entered promiscuous mode
[   89.845039][ T6406] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.847829][ T6406] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.850532][ T6406] bridge_slave_1: entered allmulticast mode
[   89.855958][ T6406] bridge_slave_1: entered promiscuous mode
[   89.913087][ T6406] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   89.918810][ T6406] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   89.965006][ T6406] team0: Port device team_slave_0 added
[   89.969080][ T6406] team0: Port device team_slave_1 added
[   89.998832][ T6406] batman_adv: batadv0: Adding interface: batadv_slave_0
[   90.002451][ T6406] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.010236][ T6406] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   90.014608][ T6406] batman_adv: batadv0: Adding interface: batadv_slave_1
[   90.016770][ T6406] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.025272][ T6406] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   90.079802][ T6406] hsr_slave_0: entered promiscuous mode
[   90.083083][ T6406] hsr_slave_1: entered promiscuous mode
[   90.085639][ T6406] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   90.088252][ T6406] Cannot create hsr debugfs directory
[   91.631221][ T5295] Bluetooth: hci0: command tx timeout
[   91.811515][   T81] bridge_slave_1: left allmulticast mode
[   91.813334][   T81] bridge_slave_1: left promiscuous mode
[   91.815276][   T81] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.818894][   T81] bridge_slave_0: left allmulticast mode
[   91.820700][   T81] bridge_slave_0: left promiscuous mode
[   91.823047][   T81] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.996007][   T81] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   92.000089][   T81] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   92.004373][   T81] bond0 (unregistering): Released all slaves
[   92.116827][   T81] hsr_slave_0: left promiscuous mode
[   92.119532][   T81] hsr_slave_1: left promiscuous mode
[   92.121543][   T81] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   92.124205][   T81] batman_adv: batadv0: Removing interface: batadv_slave_0
[   92.127559][   T81] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   92.130407][   T81] batman_adv: batadv0: Removing interface: batadv_slave_1
[   92.143838][   T81] veth1_macvtap: left promiscuous mode
[   92.146016][   T81] veth0_macvtap: left promiscuous mode
[   92.148193][   T81] veth1_vlan: left promiscuous mode
[   92.149870][   T81] veth0_vlan: left promiscuous mode
[   92.587625][   T81] team0 (unregistering): Port device team_slave_1 removed
[   92.628543][   T81] team0 (unregistering): Port device team_slave_0 removed
[   93.373261][ T6406] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   93.377438][ T6406] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   93.385522][ T6406] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   93.390621][ T6406] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   93.438723][ T6406] 8021q: adding VLAN 0 to HW filter on device bond0
[   93.451624][ T6406] 8021q: adding VLAN 0 to HW filter on device team0
[   93.458449][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.461538][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   93.468223][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.471574][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   93.685420][ T6406] 8021q: adding VLAN 0 to HW filter on device batadv0
[   93.708098][ T6406] veth0_vlan: entered promiscuous mode
[   93.711080][ T5295] Bluetooth: hci0: command tx timeout
[   93.723562][ T6406] veth1_vlan: entered promiscuous mode
[   93.741779][ T6406] veth0_macvtap: entered promiscuous mode
[   93.745558][ T6406] veth1_macvtap: entered promiscuous mode
[   93.754737][ T6406] batman_adv: batadv0: Interface activated: batadv_slave_0
[   93.761555][ T6406] batman_adv: batadv0: Interface activated: batadv_slave_1
[   93.766232][ T6406] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   93.769022][ T6406] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   93.773467][ T6406] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   93.776167][ T6406] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   93.814576][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   93.817069][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   93.833364][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   93.836727][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   93.872018][   T40] audit: type=1400 audit(1751508417.025:118): avc:  denied  { map_create } for  pid=6525 comm="syz.0.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   93.882315][   T40] audit: type=1400 audit(1751508417.025:119): avc:  denied  { perfmon } for  pid=6525 comm="syz.0.16" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   93.888710][   T40] audit: type=1400 audit(1751508417.025:120): avc:  denied  { map_read map_write } for  pid=6525 comm="syz.0.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   93.895184][   T40] audit: type=1400 audit(1751508417.025:121): avc:  denied  { read write } for  pid=6525 comm="syz.0.16" name="raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   93.902477][   T40] audit: type=1400 audit(1751508417.025:122): avc:  denied  { open } for  pid=6525 comm="syz.0.16" path="/dev/raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   93.909790][   T40] audit: type=1400 audit(1751508417.025:123): avc:  denied  { ioctl } for  pid=6525 comm="syz.0.16" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   94.121117][ T1470] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   94.271114][ T1470] usb 5-1: Using ep0 maxpacket: 8
[   94.275665][ T1470] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[   94.278774][ T1470] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
[   94.282050][ T1470] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A
[   94.285652][ T1470] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 255, changing to 11
[   94.289876][ T1470] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid maxpacket 59391, setting to 1024
[   94.297497][ T1470] usb 5-1: New USB device found, idVendor=187f, idProduct=0200, bcdDevice=6b.ad
[   94.301228][ T1470] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   94.304348][ T1470] usb 5-1: Product: syz
[   94.306099][ T1470] usb 5-1: Manufacturer: syz
[   94.308063][ T1470] usb 5-1: SerialNumber: syz
[   94.313271][ T1470] usb 5-1: config 0 descriptor??
[   94.316601][ T6526] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   94.323633][ T1470] smsusb:smsusb_probe: board id=2, interface number 0
[   94.330148][ T1470] smsusb:siano_media_device_register: media controller created
[   94.335210][ T1470] ------------[ cut here ]------------
[   94.337524][ T1470] usb 5-1: BOGUS urb xfer, pipe 3 != type 1
[   94.340569][ T1470] WARNING: CPU: 0 PID: 1470 at drivers/usb/core/urb.c:503 usb_submit_urb+0xe4a/0x1790
[   94.344366][ T1470] Modules linked in:
[   94.346119][ T1470] CPU: 0 UID: 0 PID: 1470 Comm: kworker/0:3 Not tainted 6.16.0-rc4-syzkaller-gb4911fb0b060 #0 PREEMPT(full) 
[   94.352214][ T1470] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   94.356585][ T1470] Workqueue: usb_hub_wq hub_event
[   94.358604][ T1470] RIP: 0010:usb_submit_urb+0xe4a/0x1790
[   94.360910][ T1470] Code: 84 67 02 00 00 e8 16 41 86 fa 4c 89 ef e8 ce ba d5 fe 45 89 e0 89 e9 4c 89 f2 48 89 c6 48 c7 c7 c0 1e 73 8c e8 37 01 45 fa 90 <0f> 0b 90 90 e9 ea f8 ff ff e8 e8 40 86 fa 49 81 c4 c8 05 00 00 e9
[   94.368815][ T1470] RSP: 0018:ffffc90006f8ed70 EFLAGS: 00010282
[   94.371420][ T1470] RAX: 0000000000000000 RBX: ffff888022e2a600 RCX: ffffffff817ae278
[   94.374518][ T1470] RDX: ffff88802a45c880 RSI: ffffffff817ae285 RDI: 0000000000000001
[   94.377820][ T1470] RBP: 0000000000000003 R08: 0000000000000001 R09: 0000000000000000
[   94.381223][ T1470] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000001
[   94.384510][ T1470] R13: ffff88802c0df0b0 R14: ffff888106ab2f80 R15: 00000000c0450280
[   94.387822][ T1470] FS:  0000000000000000(0000) GS:ffff8880d6752000(0000) knlGS:0000000000000000
[   94.391439][ T1470] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   94.393559][ T1470] CR2: 00007f4729972720 CR3: 0000000032bad000 CR4: 0000000000352ef0
[   94.396057][ T1470] Call Trace:
[   94.397145][ T1470]  <TASK>
[   94.398094][ T1470]  ? __kmalloc_noprof+0x221/0x510
[   94.399704][ T1470]  smsusb_submit_urb+0x288/0x410
[   94.401309][ T1470]  ? usb_init_urb+0x38/0x130
[   94.402740][ T1470]  smsusb_init_device+0x855/0xe00
[   94.404482][ T1470]  ? __pfx_smsusb_init_device+0x10/0x10
[   94.406169][ T1470]  ? __pfx_smsusb_sendrequest+0x10/0x10
[   94.407931][ T1470]  ? usb_clear_halt+0x61/0x160
[   94.409427][ T1470]  smsusb_probe+0x5d3/0x1090
[   94.410894][ T1470]  ? __pfx_smsusb_probe+0x10/0x10
[   94.412542][ T1470]  ? mark_held_locks+0x49/0x80
[   94.414475][ T1470]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   94.416935][ T1470]  ? __pm_runtime_set_status+0x13c/0xa80
[   94.419313][ T1470]  usb_probe_interface+0x300/0x9c0
[   94.421329][ T1470]  ? __pfx_usb_probe_interface+0x10/0x10
[   94.423649][ T1470]  really_probe+0x241/0xa90
[   94.425559][ T1470]  __driver_probe_device+0x1de/0x440
[   94.427811][ T1470]  driver_probe_device+0x4c/0x1b0
[   94.429933][ T1470]  __device_attach_driver+0x1df/0x310
[   94.432470][ T1470]  ? __pfx___device_attach_driver+0x10/0x10
[   94.434750][ T1470]  bus_for_each_drv+0x159/0x1e0
[   94.436705][ T1470]  ? __pfx_bus_for_each_drv+0x10/0x10
[   94.438965][ T1470]  ? lockdep_hardirqs_on+0x7c/0x110
[   94.441242][ T1470]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   94.443701][ T1470]  __device_attach+0x1e4/0x4b0
[   94.445728][ T1470]  ? __pfx___device_attach+0x10/0x10
[   94.447919][ T1470]  ? do_raw_spin_unlock+0x172/0x230
[   94.450099][ T1470]  bus_probe_device+0x17f/0x1c0
[   94.452207][ T1470]  device_add+0x1148/0x1a70
[   94.454070][ T1470]  ? __pfx_device_add+0x10/0x10
[   94.456046][ T1470]  ? preempt_schedule_thunk+0x16/0x30
[   94.458238][ T1470]  usb_set_configuration+0x1187/0x1e20
[   94.460457][ T1470]  ? __pfx_usb_generic_driver_probe+0x10/0x10
[   94.463025][ T1470]  usb_generic_driver_probe+0xb1/0x110
[   94.465075][ T1470]  usb_probe_device+0xec/0x3e0
[   94.466977][ T1470]  ? __pfx_usb_probe_device+0x10/0x10
[   94.469049][ T1470]  really_probe+0x241/0xa90
[   94.470907][ T1470]  __driver_probe_device+0x1de/0x440
[   94.473107][ T1470]  ? usb_driver_applicable+0x1c7/0x220
[   94.475296][ T1470]  driver_probe_device+0x4c/0x1b0
[   94.477334][ T1470]  __device_attach_driver+0x1df/0x310
[   94.479552][ T1470]  ? __pfx___device_attach_driver+0x10/0x10
[   94.482052][ T1470]  bus_for_each_drv+0x159/0x1e0
[   94.483953][ T1470]  ? __pfx_bus_for_each_drv+0x10/0x10
[   94.486077][ T1470]  ? lockdep_hardirqs_on+0x7c/0x110
[   94.488216][ T1470]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   94.490558][ T1470]  __device_attach+0x1e4/0x4b0
[   94.492557][ T1470]  ? __pfx___device_attach+0x10/0x10
[   94.494227][ T1470]  ? do_raw_spin_unlock+0x172/0x230
[   94.495833][ T1470]  bus_probe_device+0x17f/0x1c0
[   94.497433][ T1470]  device_add+0x1148/0x1a70
[   94.499406][ T1470]  ? __pfx_device_add+0x10/0x10
[   94.501581][ T1470]  ? add_device_randomness+0xb7/0xf0
[   94.503866][ T1470]  ? __usb_get_extra_descriptor+0x158/0x1c0
[   94.506339][ T1470]  usb_new_device+0xd07/0x1a20
[   94.508428][ T1470]  ? do_raw_spin_lock+0x12c/0x2b0
[   94.510534][ T1470]  ? __pfx_usb_new_device+0x10/0x10
[   94.513045][ T1470]  ? mark_held_locks+0x49/0x80
[   94.515097][ T1470]  hub_event+0x2eb7/0x4fa0
[   94.517055][ T1470]  ? __pfx_hub_event+0x10/0x10
[   94.519113][ T1470]  ? assoc_array_gc+0x1260/0x15b0
[   94.521353][ T1470]  ? rcu_is_watching+0x12/0xc0
[   94.523412][ T1470]  process_one_work+0x9cf/0x1b70
[   94.525353][ T1470]  ? __pfx_free_obj_work+0x10/0x10
[   94.527561][ T1470]  ? __pfx_process_one_work+0x10/0x10
[   94.529809][ T1470]  ? assign_work+0x1a0/0x250
[   94.531834][ T1470]  worker_thread+0x6c8/0xf10
[   94.533720][ T1470]  ? __kthread_parkme+0x19e/0x250
[   94.535773][ T1470]  ? __pfx_worker_thread+0x10/0x10
[   94.537794][ T1470]  kthread+0x3c2/0x780
[   94.539390][ T1470]  ? __pfx_kthread+0x10/0x10
[   94.540847][ T1470]  ? rcu_is_watching+0x12/0xc0
[   94.542476][ T1470]  ? __pfx_kthread+0x10/0x10
[   94.544256][ T1470]  ret_from_fork+0x5d4/0x6f0
[   94.545947][ T1470]  ? __pfx_kthread+0x10/0x10
[   94.547573][ T1470]  ret_from_fork_asm+0x1a/0x30
[   94.549132][ T1470]  </TASK>
[   94.550157][ T1470] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   94.552540][ T1470] CPU: 0 UID: 0 PID: 1470 Comm: kworker/0:3 Not tainted 6.16.0-rc4-syzkaller-gb4911fb0b060 #0 PREEMPT(full) 
[   94.556278][ T1470] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   94.560739][ T1470] Workqueue: usb_hub_wq hub_event
[   94.562885][ T1470] Call Trace:
[   94.564310][ T1470]  <TASK>
[   94.565580][ T1470]  dump_stack_lvl+0x3d/0x1f0
[   94.567697][ T1470]  panic+0x71c/0x800
[   94.569396][ T1470]  ? __pfx_panic+0x10/0x10
[   94.571300][ T1470]  ? show_trace_log_lvl+0x29b/0x3e0
[   94.573455][ T1470]  ? check_panic_on_warn+0x1f/0xb0
[   94.575084][ T1470]  ? usb_submit_urb+0xe4a/0x1790
[   94.577124][ T1470]  check_panic_on_warn+0xab/0xb0
[   94.579194][ T1470]  __warn+0xf6/0x3c0
[   94.580795][ T1470]  ? __pfx_vprintk_emit+0x10/0x10
[   94.582552][ T1470]  ? usb_submit_urb+0xe4a/0x1790
[   94.584470][ T1470]  report_bug+0x3c3/0x580
[   94.586237][ T1470]  ? usb_submit_urb+0xe4a/0x1790
[   94.588359][ T1470]  handle_bug+0x184/0x210
[   94.589773][ T1470]  exc_invalid_op+0x17/0x50
[   94.591229][ T1470]  asm_exc_invalid_op+0x1a/0x20
[   94.592786][ T1470] RIP: 0010:usb_submit_urb+0xe4a/0x1790
[   94.594555][ T1470] Code: 84 67 02 00 00 e8 16 41 86 fa 4c 89 ef e8 ce ba d5 fe 45 89 e0 89 e9 4c 89 f2 48 89 c6 48 c7 c7 c0 1e 73 8c e8 37 01 45 fa 90 <0f> 0b 90 90 e9 ea f8 ff ff e8 e8 40 86 fa 49 81 c4 c8 05 00 00 e9
[   94.600532][ T1470] RSP: 0018:ffffc90006f8ed70 EFLAGS: 00010282
[   94.602453][ T1470] RAX: 0000000000000000 RBX: ffff888022e2a600 RCX: ffffffff817ae278
[   94.604914][ T1470] RDX: ffff88802a45c880 RSI: ffffffff817ae285 RDI: 0000000000000001
[   94.607497][ T1470] RBP: 0000000000000003 R08: 0000000000000001 R09: 0000000000000000
[   94.609959][ T1470] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000001
[   94.612430][ T1470] R13: ffff88802c0df0b0 R14: ffff888106ab2f80 R15: 00000000c0450280
[   94.614898][ T1470]  ? __warn_printk+0x198/0x350
[   94.616436][ T1470]  ? __warn_printk+0x1a5/0x350
[   94.617954][ T1470]  ? __kmalloc_noprof+0x221/0x510
[   94.619559][ T1470]  smsusb_submit_urb+0x288/0x410
[   94.621136][ T1470]  ? usb_init_urb+0x38/0x130
[   94.622588][ T1470]  smsusb_init_device+0x855/0xe00
[   94.624195][ T1470]  ? __pfx_smsusb_init_device+0x10/0x10
[   94.626298][ T1470]  ? __pfx_smsusb_sendrequest+0x10/0x10
[   94.628490][ T1470]  ? usb_clear_halt+0x61/0x160
[   94.630004][ T1470]  smsusb_probe+0x5d3/0x1090
[   94.631475][ T1470]  ? __pfx_smsusb_probe+0x10/0x10
[   94.633073][ T1470]  ? mark_held_locks+0x49/0x80
[   94.634942][ T1470]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   94.636805][ T1470]  ? __pm_runtime_set_status+0x13c/0xa80
[   94.638570][ T1470]  usb_probe_interface+0x300/0x9c0
[   94.640195][ T1470]  ? __pfx_usb_probe_interface+0x10/0x10
[   94.641941][ T1470]  really_probe+0x241/0xa90
[   94.643389][ T1470]  __driver_probe_device+0x1de/0x440
[   94.645036][ T1470]  driver_probe_device+0x4c/0x1b0
[   94.646631][ T1470]  __device_attach_driver+0x1df/0x310
[   94.648343][ T1470]  ? __pfx___device_attach_driver+0x10/0x10
[   94.650181][ T1470]  bus_for_each_drv+0x159/0x1e0
[   94.651724][ T1470]  ? __pfx_bus_for_each_drv+0x10/0x10
[   94.653549][ T1470]  ? lockdep_hardirqs_on+0x7c/0x110
[   94.655641][ T1470]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   94.657998][ T1470]  __device_attach+0x1e4/0x4b0
[   94.659923][ T1470]  ? __pfx___device_attach+0x10/0x10
[   94.662014][ T1470]  ? do_raw_spin_unlock+0x172/0x230
[   94.663749][ T1470]  bus_probe_device+0x17f/0x1c0
[   94.665589][ T1470]  device_add+0x1148/0x1a70
[   94.667099][ T1470]  ? __pfx_device_add+0x10/0x10
[   94.668693][ T1470]  ? preempt_schedule_thunk+0x16/0x30
[   94.670334][ T1470]  usb_set_configuration+0x1187/0x1e20
[   94.672039][ T1470]  ? __pfx_usb_generic_driver_probe+0x10/0x10
[   94.674099][ T1470]  usb_generic_driver_probe+0xb1/0x110
[   94.675875][ T1470]  usb_probe_device+0xec/0x3e0
[   94.677401][ T1470]  ? __pfx_usb_probe_device+0x10/0x10
[   94.679081][ T1470]  really_probe+0x241/0xa90
[   94.680582][ T1470]  __driver_probe_device+0x1de/0x440
[   94.682522][ T1470]  ? usb_driver_applicable+0x1c7/0x220
[   94.684678][ T1470]  driver_probe_device+0x4c/0x1b0
[   94.686700][ T1470]  __device_attach_driver+0x1df/0x310
[   94.688841][ T1470]  ? __pfx___device_attach_driver+0x10/0x10
[   94.691129][ T1470]  bus_for_each_drv+0x159/0x1e0
[   94.693074][ T1470]  ? __pfx_bus_for_each_drv+0x10/0x10
[   94.695185][ T1470]  ? lockdep_hardirqs_on+0x7c/0x110
[   94.697254][ T1470]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   94.699572][ T1470]  __device_attach+0x1e4/0x4b0
[   94.701413][ T1470]  ? __pfx___device_attach+0x10/0x10
[   94.703516][ T1470]  ? do_raw_spin_unlock+0x172/0x230
[   94.705383][ T1470]  bus_probe_device+0x17f/0x1c0
[   94.706925][ T1470]  device_add+0x1148/0x1a70
[   94.708558][ T1470]  ? __pfx_device_add+0x10/0x10
[   94.710354][ T1470]  ? add_device_randomness+0xb7/0xf0
[   94.712025][ T1470]  ? __usb_get_extra_descriptor+0x158/0x1c0
[   94.713866][ T1470]  usb_new_device+0xd07/0x1a20
[   94.715398][ T1470]  ? do_raw_spin_lock+0x12c/0x2b0
[   94.716986][ T1470]  ? __pfx_usb_new_device+0x10/0x10
[   94.718613][ T1470]  ? mark_held_locks+0x49/0x80
[   94.720134][ T1470]  hub_event+0x2eb7/0x4fa0
[   94.721552][ T1470]  ? __pfx_hub_event+0x10/0x10
[   94.723086][ T1470]  ? assoc_array_gc+0x1260/0x15b0
[   94.724854][ T1470]  ? rcu_is_watching+0x12/0xc0
[   94.726353][ T1470]  process_one_work+0x9cf/0x1b70
[   94.727934][ T1470]  ? __pfx_free_obj_work+0x10/0x10
[   94.729536][ T1470]  ? __pfx_process_one_work+0x10/0x10
[   94.731232][ T1470]  ? assign_work+0x1a0/0x250
[   94.732695][ T1470]  worker_thread+0x6c8/0xf10
[   94.734152][ T1470]  ? __kthread_parkme+0x19e/0x250
[   94.735763][ T1470]  ? __pfx_worker_thread+0x10/0x10
[   94.737402][ T1470]  kthread+0x3c2/0x780
[   94.738700][ T1470]  ? __pfx_kthread+0x10/0x10
[   94.740150][ T1470]  ? rcu_is_watching+0x12/0xc0
[   94.741652][ T1470]  ? __pfx_kthread+0x10/0x10
[   94.743110][ T1470]  ret_from_fork+0x5d4/0x6f0
[   94.744566][ T1470]  ? __pfx_kthread+0x10/0x10
[   94.746010][ T1470]  ret_from_fork_asm+0x1a/0x30
[   94.747541][ T1470]  </TASK>
[   94.749064][ T1470] Kernel Offset: disabled
[   94.750352][ T1470] Rebooting in 86400 seconds..