[   71.424986][ T1382] ieee802154 phy0 wpan0: encryption failed: -22
[   71.427331][ T1382] ieee802154 phy1 wpan1: encryption failed: -22
Warning: Permanently added '[localhost]:5270' (ED25519) to the list of known hosts.
2024/10/17 20:37:03 ignoring optional flag "sandboxArg"="0"
2024/10/17 20:37:03 ignoring optional flag "type"="qemu"
2024/10/17 20:37:04 parsed 1 programs
[   77.423880][   T39] audit: type=1400 audit(1729197426.443:141): avc:  denied  { unlink } for  pid=5605 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   78.668224][ T5605] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   81.144119][ T5430] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   81.147393][ T5430] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   81.150443][ T5430] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   81.154276][ T5430] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   81.162514][ T5430] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   81.165321][ T5430] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   81.328670][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.331451][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   81.341327][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.344263][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   81.432360][   T39] audit: type=1401 audit(1729197430.453:142): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
[   81.550809][ T5692] chnl_net:caif_netlink_parms(): no params data found
[   81.611878][ T5692] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.614556][ T5692] bridge0: port 1(bridge_slave_0) entered disabled state
[   81.616873][ T5692] bridge_slave_0: entered allmulticast mode
[   81.620108][ T5692] bridge_slave_0: entered promiscuous mode
[   81.624449][ T5692] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.626945][ T5692] bridge0: port 2(bridge_slave_1) entered disabled state
[   81.629399][ T5692] bridge_slave_1: entered allmulticast mode
[   81.632312][ T5692] bridge_slave_1: entered promiscuous mode
[   81.662848][ T5692] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   81.667476][ T5692] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   81.668856][    T9] cfg80211: failed to load regulatory.db
[   81.715319][ T5692] team0: Port device team_slave_0 added
[   81.723205][ T5692] team0: Port device team_slave_1 added
[   81.751983][ T5692] batman_adv: batadv0: Adding interface: batadv_slave_0
[   81.754348][ T5692] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   81.763846][ T5692] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   81.769062][ T5692] batman_adv: batadv0: Adding interface: batadv_slave_1
[   81.771523][ T5692] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   81.781938][ T5692] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   81.846441][ T5692] hsr_slave_0: entered promiscuous mode
[   81.848500][ T5692] hsr_slave_1: entered promiscuous mode
[   82.482787][ T5692] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   82.486776][ T5692] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   82.490534][ T5692] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   82.494693][ T5692] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   82.538646][ T5692] 8021q: adding VLAN 0 to HW filter on device bond0
[   82.547278][ T5692] 8021q: adding VLAN 0 to HW filter on device team0
[   82.552831][ T1009] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.555764][ T1009] bridge0: port 1(bridge_slave_0) entered forwarding state
[   82.563767][  T104] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.565726][  T104] bridge0: port 2(bridge_slave_1) entered forwarding state
[   82.585920][ T5692] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   82.684339][ T5692] 8021q: adding VLAN 0 to HW filter on device batadv0
[   82.707933][ T5692] veth0_vlan: entered promiscuous mode
[   82.714915][ T5692] veth1_vlan: entered promiscuous mode
[   82.733097][ T5692] veth0_macvtap: entered promiscuous mode
[   82.738274][ T5692] veth1_macvtap: entered promiscuous mode
[   82.749495][ T5692] batman_adv: batadv0: Interface activated: batadv_slave_0
[   82.756800][ T5692] batman_adv: batadv0: Interface activated: batadv_slave_1
[   82.763487][ T5692] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   82.766679][ T5692] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   82.769730][ T5692] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.773002][ T5692] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   82.865145][  T104] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.936902][  T104] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.036204][  T104] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.134082][  T104] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2024/10/17 20:37:12 executed programs: 0
[   83.424449][ T5430] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   83.428201][ T5430] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   83.431599][ T5430] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   83.435230][ T5430] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   83.438364][ T5430] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   83.441192][ T5430] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   83.546068][ T5793] chnl_net:caif_netlink_parms(): no params data found
[   83.632142][ T5793] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.634922][ T5793] bridge0: port 1(bridge_slave_0) entered disabled state
[   83.637628][ T5793] bridge_slave_0: entered allmulticast mode
[   83.640876][ T5793] bridge_slave_0: entered promiscuous mode
[   83.645266][ T5793] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.647933][ T5793] bridge0: port 2(bridge_slave_1) entered disabled state
[   83.650901][ T5793] bridge_slave_1: entered allmulticast mode
[   83.654252][ T5793] bridge_slave_1: entered promiscuous mode
[   83.678213][ T5793] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   83.684384][ T5793] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   83.717164][ T5793] team0: Port device team_slave_0 added
[   83.722712][ T5793] team0: Port device team_slave_1 added
[   83.753380][ T5793] batman_adv: batadv0: Adding interface: batadv_slave_0
[   83.755978][ T5793] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   83.765510][ T5793] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   83.770707][ T5793] batman_adv: batadv0: Adding interface: batadv_slave_1
[   83.773311][ T5793] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   83.782054][ T5793] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   83.820043][ T5793] hsr_slave_0: entered promiscuous mode
[   83.823508][ T5793] hsr_slave_1: entered promiscuous mode
[   83.826447][ T5793] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   83.829029][ T5793] Cannot create hsr debugfs directory
[   85.511860][ T4787] Bluetooth: hci0: command tx timeout
[   86.085191][  T104] bridge_slave_1: left allmulticast mode
[   86.087197][  T104] bridge_slave_1: left promiscuous mode
[   86.088740][  T104] bridge0: port 2(bridge_slave_1) entered disabled state
[   86.091552][  T104] bridge_slave_0: left allmulticast mode
[   86.093992][  T104] bridge_slave_0: left promiscuous mode
[   86.096161][  T104] bridge0: port 1(bridge_slave_0) entered disabled state
[   86.338959][  T104] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   86.344061][  T104] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   86.348479][  T104] bond0 (unregistering): Released all slaves
[   86.487279][  T104] hsr_slave_0: left promiscuous mode
[   86.489814][  T104] hsr_slave_1: left promiscuous mode
[   86.492491][  T104] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   86.495072][  T104] batman_adv: batadv0: Removing interface: batadv_slave_0
[   86.498197][  T104] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   86.500800][  T104] batman_adv: batadv0: Removing interface: batadv_slave_1
[   86.521098][  T104] veth1_macvtap: left promiscuous mode
[   86.523823][  T104] veth0_macvtap: left promiscuous mode
[   86.525935][  T104] veth1_vlan: left promiscuous mode
[   86.528067][  T104] veth0_vlan: left promiscuous mode
[   87.026749][  T104] team0 (unregistering): Port device team_slave_1 removed
[   87.081368][  T104] team0 (unregistering): Port device team_slave_0 removed
[   87.581938][ T4787] Bluetooth: hci0: command tx timeout
[   87.809042][ T5793] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   87.819525][ T5793] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   87.833702][ T5793] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   87.842331][ T5793] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   87.878828][ T5793] 8021q: adding VLAN 0 to HW filter on device bond0
[   87.890691][ T5793] 8021q: adding VLAN 0 to HW filter on device team0
[   87.897899][   T45] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.900564][   T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[   87.908641][   T45] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.911087][   T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.017556][ T5793] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.109767][ T5793] veth0_vlan: entered promiscuous mode
[   88.118572][ T5793] veth1_vlan: entered promiscuous mode
[   88.139739][ T5793] veth0_macvtap: entered promiscuous mode
[   88.144379][ T5793] veth1_macvtap: entered promiscuous mode
[   88.153087][ T5793] batman_adv: batadv0: Interface activated: batadv_slave_0
[   88.159038][ T5793] batman_adv: batadv0: Interface activated: batadv_slave_1
[   88.171512][ T5793] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   88.175184][ T5793] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   88.178607][ T5793] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   88.182856][ T5793] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   88.273410][   T65] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.276192][   T65] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   88.286442][   T65] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.289230][   T65] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   88.315872][   T39] audit: type=1400 audit(1729197437.333:143): avc:  denied  { read write } for  pid=5895 comm="syz.0.15" name="raw-gadget" dev="devtmpfs" ino=761 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   88.323736][   T39] audit: type=1400 audit(1729197437.333:144): avc:  denied  { open } for  pid=5895 comm="syz.0.15" path="/dev/raw-gadget" dev="devtmpfs" ino=761 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   88.331082][   T39] audit: type=1400 audit(1729197437.333:145): avc:  denied  { ioctl } for  pid=5895 comm="syz.0.15" path="/dev/raw-gadget" dev="devtmpfs" ino=761 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   88.552107][ T5493] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   88.705505][ T5493] usb 5-1: config 0 has an invalid interface number: 10 but max is 0
[   88.707629][ T5493] usb 5-1: config 0 has no interface number 0
[   88.709627][ T5493] usb 5-1: config 0 interface 10 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[   88.712756][ T5493] usb 5-1: config 0 interface 10 altsetting 0 endpoint 0x81 has invalid maxpacket 21669, setting to 1024
[   88.716590][ T5493] usb 5-1: config 0 interface 10 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 1024
[   88.720499][ T5493] usb 5-1: config 0 interface 10 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[   88.726484][ T5493] usb 5-1: New USB device found, idVendor=05ac, idProduct=024e, bcdDevice=d4.d7
[   88.729195][ T5493] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   88.732280][ T5493] usb 5-1: Product: syz
[   88.733686][ T5493] usb 5-1: Manufacturer: syz
[   88.735406][ T5493] usb 5-1: SerialNumber: syz
[   88.739015][ T5493] usb 5-1: config 0 descriptor??
[   88.742817][ T5896] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   88.747160][ T5493] input: bcm5974 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.10/input/input5
[   88.752356][   T39] audit: type=1400 audit(1729197437.773:146): avc:  denied  { read } for  pid=4822 comm="acpid" name="mouse2" dev="devtmpfs" ino=2389 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   88.760320][   T39] audit: type=1400 audit(1729197437.773:147): avc:  denied  { open } for  pid=4822 comm="acpid" path="/dev/input/mouse2" dev="devtmpfs" ino=2389 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   89.147767][ T4822] ------------[ cut here ]------------
[   89.149831][ T4822] usb 5-1: BOGUS urb xfer, pipe 1 != type 3
[   89.152575][ T4822] WARNING: CPU: 1 PID: 4822 at drivers/usb/core/urb.c:503 usb_submit_urb+0xe4b/0x1730
[   89.155961][ T4822] Modules linked in:
[   89.157419][ T4822] CPU: 1 UID: 0 PID: 4822 Comm: acpid Not tainted 6.12.0-rc3-syzkaller-g6efbea77b390 #0
[   89.162562][ T4822] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   89.165841][ T4822] RIP: 0010:usb_submit_urb+0xe4b/0x1730
[   89.167482][ T4822] Code: 84 3c 02 00 00 e8 c5 8e b6 fa 4c 89 ef e8 ed 62 db fe 45 89 e0 89 e9 4c 89 f2 48 89 c6 48 c7 c7 c0 63 2d 8c e8 56 7b 77 fa 90 <0f> 0b 90 90 e9 e9 f8 ff ff e8 97 8e b6 fa 49 81 c4 c0 05 00 00 e9
[   89.172771][ T4822] RSP: 0018:ffffc90005d2f7c0 EFLAGS: 00010286
[   89.174410][ T4822] RAX: 0000000000000000 RBX: ffff888025627c00 RCX: ffffffff814e71a9
[   89.176933][ T4822] RDX: ffff88802e638000 RSI: ffffffff814e71b6 RDI: 0000000000000001
[   89.179811][ T4822] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[   89.182553][ T4822] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000003
[   89.184784][ T4822] R13: ffff888048a2c0a8 R14: ffff88802fe9b6e0 R15: ffff888025627c7c
[   89.186976][ T4822] FS:  00007f909c906740(0000) GS:ffff88806a700000(0000) knlGS:0000000000000000
[   89.189482][ T4822] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   89.191284][ T4822] CR2: 000055fab4753600 CR3: 000000002bf04000 CR4: 0000000000352ef0
[   89.193522][ T4822] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   89.195724][ T4822] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   89.198076][ T4822] Call Trace:
[   89.199149][ T4822]  <TASK>
[   89.200059][ T4822]  ? __warn+0xea/0x3d0
[   89.201197][ T4822]  ? usb_submit_urb+0xe4b/0x1730
[   89.203059][ T4822]  ? report_bug+0x3c0/0x580
[   89.204783][ T4822]  ? handle_bug+0x54/0xa0
[   89.206631][ T4822]  ? exc_invalid_op+0x17/0x50
[   89.208904][ T4822]  ? asm_exc_invalid_op+0x1a/0x20
[   89.211290][ T4822]  ? __warn_printk+0x199/0x350
[   89.213154][ T4822]  ? __warn_printk+0x1a6/0x350
[   89.214782][ T4822]  ? usb_submit_urb+0xe4b/0x1730
[   89.216436][ T4822]  bcm5974_start_traffic+0xb8/0x180
[   89.217958][ T4822]  bcm5974_open+0xb3/0x190
[   89.219146][ T4822]  input_open_device+0x1c9/0x320
[   89.220568][ T4822]  ? __pfx_bcm5974_open+0x10/0x10
[   89.222016][ T4822]  mousedev_open_device+0xe0/0x140
[   89.223401][ T4822]  mousedev_open+0x2ff/0x580
[   89.224960][ T4822]  ? __pfx_mousedev_open+0x10/0x10
[   89.226625][ T4822]  chrdev_open+0x237/0x6a0
[   89.228196][ T4822]  ? __pfx_chrdev_open+0x10/0x10
[   89.229625][ T4822]  ? security_file_open+0x62a/0x9d0
[   89.231006][ T4822]  do_dentry_open+0x6ca/0x1530
[   89.232348][ T4822]  ? __pfx_chrdev_open+0x10/0x10
[   89.233662][ T4822]  ? inode_permission+0xdd/0x5f0
[   89.234961][ T4822]  vfs_open+0x82/0x3f0
[   89.236224][ T4822]  ? may_open+0x1f2/0x400
[   89.237643][ T4822]  path_openat+0x1e6a/0x2d60
[   89.239180][ T4822]  ? __pfx_path_openat+0x10/0x10
[   89.241052][ T4822]  ? __pfx___lock_acquire+0x10/0x10
[   89.242810][ T4822]  do_filp_open+0x1dc/0x430
[   89.243940][ T4822]  ? __pfx_do_filp_open+0x10/0x10
[   89.245101][ T4822]  ? find_held_lock+0x2d/0x110
[   89.246600][ T4822]  ? _raw_spin_unlock+0x28/0x50
[   89.247920][ T4822]  ? alloc_fd+0x2d7/0x6c0
[   89.249049][ T4822]  do_sys_openat2+0x17a/0x1e0
[   89.250283][ T4822]  ? __pfx_do_sys_openat2+0x10/0x10
[   89.251736][ T4822]  ? sigprocmask+0xf0/0x330
[   89.252940][ T4822]  __x64_sys_openat+0x175/0x210
[   89.254252][ T4822]  ? __pfx___x64_sys_openat+0x10/0x10
[   89.255721][ T4822]  ? ksys_read+0x1ad/0x260
[   89.257016][ T4822]  do_syscall_64+0xcd/0x250
[   89.258441][ T4822]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.260089][ T4822] RIP: 0033:0x7f909c9d09a4
[   89.261248][ T4822] Code: 24 20 48 8d 44 24 30 48 89 44 24 28 64 8b 04 25 18 00 00 00 85 c0 75 2c 44 89 e2 48 89 ee bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 76 60 48 8b 15 55 a4 0d 00 f7 d8 64 89 02 48 83
[   89.266286][ T4822] RSP: 002b:00007fff443123a0 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   89.268868][ T4822] RAX: ffffffffffffffda RBX: 00007fff44312688 RCX: 00007f909c9d09a4
[   89.271258][ T4822] RDX: 0000000000080800 RSI: 00007fff44312588 RDI: 00000000ffffff9c
[   89.273688][ T4822] RBP: 00007fff44312588 R08: 00000000000000f4 R09: 00007fff44312588
[   89.275885][ T4822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000080800
[   89.277958][ T4822] R13: 0000000000000020 R14: 00007fff44312688 R15: 00007fff44312588
[   89.280273][ T4822]  </TASK>
[   89.281279][ T4822] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   89.283364][ T4822] CPU: 1 UID: 0 PID: 4822 Comm: acpid Not tainted 6.12.0-rc3-syzkaller-g6efbea77b390 #0
[   89.286524][ T4822] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   89.290113][ T4822] Call Trace:
[   89.291045][ T4822]  <TASK>
[   89.292092][ T4822]  dump_stack_lvl+0x3d/0x1f0
[   89.293383][ T4822]  panic+0x71d/0x800
[   89.294414][ T4822]  ? __pfx_panic+0x10/0x10
[   89.295798][ T4822]  ? show_trace_log_lvl+0x29d/0x3d0
[   89.297577][ T4822]  ? check_panic_on_warn+0x1f/0xb0
[   89.299328][ T4822]  ? usb_submit_urb+0xe4b/0x1730
[   89.301099][ T4822]  check_panic_on_warn+0xab/0xb0
[   89.302888][ T4822]  __warn+0xf6/0x3d0
[   89.304415][ T4822]  ? usb_submit_urb+0xe4b/0x1730
[   89.306262][ T4822]  report_bug+0x3c0/0x580
[   89.307882][ T4822]  handle_bug+0x54/0xa0
[   89.309331][ T4822]  exc_invalid_op+0x17/0x50
[   89.311048][ T4822]  asm_exc_invalid_op+0x1a/0x20
[   89.313075][ T4822] RIP: 0010:usb_submit_urb+0xe4b/0x1730
[   89.315337][ T4822] Code: 84 3c 02 00 00 e8 c5 8e b6 fa 4c 89 ef e8 ed 62 db fe 45 89 e0 89 e9 4c 89 f2 48 89 c6 48 c7 c7 c0 63 2d 8c e8 56 7b 77 fa 90 <0f> 0b 90 90 e9 e9 f8 ff ff e8 97 8e b6 fa 49 81 c4 c0 05 00 00 e9
[   89.321980][ T4822] RSP: 0018:ffffc90005d2f7c0 EFLAGS: 00010286
[   89.323955][ T4822] RAX: 0000000000000000 RBX: ffff888025627c00 RCX: ffffffff814e71a9
[   89.326598][ T4822] RDX: ffff88802e638000 RSI: ffffffff814e71b6 RDI: 0000000000000001
[   89.329229][ T4822] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[   89.331784][ T4822] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000003
[   89.334316][ T4822] R13: ffff888048a2c0a8 R14: ffff88802fe9b6e0 R15: ffff888025627c7c
[   89.336881][ T4822]  ? __warn_printk+0x199/0x350
[   89.338468][ T4822]  ? __warn_printk+0x1a6/0x350
[   89.340038][ T4822]  bcm5974_start_traffic+0xb8/0x180
[   89.341761][ T4822]  bcm5974_open+0xb3/0x190
[   89.343343][ T4822]  input_open_device+0x1c9/0x320
[   89.345143][ T4822]  ? __pfx_bcm5974_open+0x10/0x10
[   89.346823][ T4822]  mousedev_open_device+0xe0/0x140
[   89.348545][ T4822]  mousedev_open+0x2ff/0x580
[   89.350096][ T4822]  ? __pfx_mousedev_open+0x10/0x10
[   89.351897][ T4822]  chrdev_open+0x237/0x6a0
[   89.353411][ T4822]  ? __pfx_chrdev_open+0x10/0x10
[   89.355132][ T4822]  ? security_file_open+0x62a/0x9d0
[   89.356895][ T4822]  do_dentry_open+0x6ca/0x1530
[   89.358537][ T4822]  ? __pfx_chrdev_open+0x10/0x10
[   89.360207][ T4822]  ? inode_permission+0xdd/0x5f0
[   89.361871][ T4822]  vfs_open+0x82/0x3f0
[   89.363206][ T4822]  ? may_open+0x1f2/0x400
[   89.364489][ T4822]  path_openat+0x1e6a/0x2d60
[   89.365999][ T4822]  ? __pfx_path_openat+0x10/0x10
[   89.367691][ T4822]  ? __pfx___lock_acquire+0x10/0x10
[   89.369432][ T4822]  do_filp_open+0x1dc/0x430
[   89.370985][ T4822]  ? __pfx_do_filp_open+0x10/0x10
[   89.372800][ T4822]  ? find_held_lock+0x2d/0x110
[   89.374612][ T4822]  ? _raw_spin_unlock+0x28/0x50
[   89.376388][ T4822]  ? alloc_fd+0x2d7/0x6c0
[   89.377894][ T4822]  do_sys_openat2+0x17a/0x1e0
[   89.379534][ T4822]  ? __pfx_do_sys_openat2+0x10/0x10
[   89.381371][ T4822]  ? sigprocmask+0xf0/0x330
[   89.382940][ T4822]  __x64_sys_openat+0x175/0x210
[   89.384536][ T4822]  ? __pfx___x64_sys_openat+0x10/0x10
[   89.386342][ T4822]  ? ksys_read+0x1ad/0x260
[   89.387959][ T4822]  do_syscall_64+0xcd/0x250
[   89.389656][ T4822]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.391735][ T4822] RIP: 0033:0x7f909c9d09a4
[   89.393244][ T4822] Code: 24 20 48 8d 44 24 30 48 89 44 24 28 64 8b 04 25 18 00 00 00 85 c0 75 2c 44 89 e2 48 89 ee bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 76 60 48 8b 15 55 a4 0d 00 f7 d8 64 89 02 48 83
[   89.398869][ T4822] RSP: 002b:00007fff443123a0 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   89.401571][ T4822] RAX: ffffffffffffffda RBX: 00007fff44312688 RCX: 00007f909c9d09a4
[   89.404206][ T4822] RDX: 0000000000080800 RSI: 00007fff44312588 RDI: 00000000ffffff9c
[   89.407054][ T4822] RBP: 00007fff44312588 R08: 00000000000000f4 R09: 00007fff44312588
[   89.409833][ T4822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000080800
[   89.412777][ T4822] R13: 0000000000000020 R14: 00007fff44312688 R15: 00007fff44312588
[   89.415821][ T4822]  </TASK>
[   89.417455][ T4822] Kernel Offset: disabled
[   89.418948][ T4822] Rebooting in 86400 seconds..