Warning: Permanently added '[localhost]:48324' (ED25519) to the list of known hosts.
2025/08/30 17:30:03 parsed 1 programs
[ 101.076849][ T40] audit: type=1400 audit(1756575006.767:116): avc: denied { unlink } for pid=6263 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 102.767949][ T6263] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 104.747163][ T40] audit: type=1401 audit(1756575010.427:117): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
[ 104.910634][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 104.913477][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 104.963921][ T71] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 104.966587][ T71] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 105.054709][ T63] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 105.058481][ T63] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 105.061835][ T63] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 105.067654][ T63] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 105.072299][ T63] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 105.744335][ T6315] chnl_net:caif_netlink_parms(): no params data found
[ 105.955433][ T6315] bridge0: port 1(bridge_slave_0) entered blocking state
[ 105.957903][ T6315] bridge0: port 1(bridge_slave_0) entered disabled state
[ 105.960334][ T6315] bridge_slave_0: entered allmulticast mode
[ 105.964686][ T6315] bridge_slave_0: entered promiscuous mode
[ 105.974702][ T6315] bridge0: port 2(bridge_slave_1) entered blocking state
[ 105.978017][ T6315] bridge0: port 2(bridge_slave_1) entered disabled state
[ 105.983366][ T6315] bridge_slave_1: entered allmulticast mode
[ 105.987663][ T6315] bridge_slave_1: entered promiscuous mode
[ 106.042869][ T6315] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 106.053041][ T6315] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 106.116745][ T6315] team0: Port device team_slave_0 added
[ 106.122596][ T6315] team0: Port device team_slave_1 added
[ 106.169277][ T6315] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 106.172199][ T6315] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 106.181523][ T6315] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 106.186425][ T6315] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 106.188890][ T6315] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 106.198869][ T6315] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 106.252399][ T6315] hsr_slave_0: entered promiscuous mode
[ 106.256135][ T6315] hsr_slave_1: entered promiscuous mode
[ 107.033611][ T6315] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 107.041873][ T6315] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 107.049321][ T6315] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 107.057051][ T6315] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 107.132655][ T6315] 8021q: adding VLAN 0 to HW filter on device bond0
[ 107.148305][ T6315] 8021q: adding VLAN 0 to HW filter on device team0
[ 107.155882][ T71] bridge0: port 1(bridge_slave_0) entered blocking state
[ 107.158995][ T71] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 107.169755][ T71] bridge0: port 2(bridge_slave_1) entered blocking state
[ 107.172909][ T71] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 107.317845][ T6315] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 107.350760][ T6315] veth0_vlan: entered promiscuous mode
[ 107.358486][ T6315] veth1_vlan: entered promiscuous mode
[ 107.379938][ T6315] veth0_macvtap: entered promiscuous mode
[ 107.385526][ T6315] veth1_macvtap: entered promiscuous mode
[ 107.399596][ T6315] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 107.418717][ T6315] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 107.430078][ T61] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 107.433726][ T61] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 107.441203][ T61] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 107.444820][ T61] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
2025/08/30 17:30:13 executed programs: 0
[ 107.535594][ T63] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 107.539714][ T63] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 107.542837][ T63] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 107.545863][ T63] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 107.550736][ T63] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 107.593645][ T6061] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 107.597679][ T6061] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 107.605492][ T6061] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 107.611561][ T6404] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 107.614015][ T6407] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 107.619980][ T6407] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 107.619998][ T6408] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 107.624891][ T6407] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 107.626118][ T6408] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 107.628767][ T6404] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 107.631318][ T6408] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 107.636984][ T6404] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 107.639307][ T6408] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 107.643539][ T6408] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 107.646431][ T6408] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 107.952030][ T6394] chnl_net:caif_netlink_parms(): no params data found
[ 107.990340][ T61] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 108.115482][ T61] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 108.145134][ T6401] chnl_net:caif_netlink_parms(): no params data found
[ 108.158788][ T6402] chnl_net:caif_netlink_parms(): no params data found
[ 108.204232][ T6400] chnl_net:caif_netlink_parms(): no params data found
[ 108.284669][ T6394] bridge0: port 1(bridge_slave_0) entered blocking state
[ 108.287405][ T6394] bridge0: port 1(bridge_slave_0) entered disabled state
[ 108.290077][ T6394] bridge_slave_0: entered allmulticast mode
[ 108.294496][ T6394] bridge_slave_0: entered promiscuous mode
[ 108.365141][ T6394] bridge0: port 2(bridge_slave_1) entered blocking state
[ 108.367636][ T6394] bridge0: port 2(bridge_slave_1) entered disabled state
[ 108.370136][ T6394] bridge_slave_1: entered allmulticast mode
[ 108.373716][ T6394] bridge_slave_1: entered promiscuous mode
[ 108.494170][ T6394] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 108.498551][ T6402] bridge0: port 1(bridge_slave_0) entered blocking state
[ 108.502275][ T6402] bridge0: port 1(bridge_slave_0) entered disabled state
[ 108.505257][ T6402] bridge_slave_0: entered allmulticast mode
[ 108.509347][ T6402] bridge_slave_0: entered promiscuous mode
[ 108.513842][ T6402] bridge0: port 2(bridge_slave_1) entered blocking state
[ 108.516665][ T6402] bridge0: port 2(bridge_slave_1) entered disabled state
[ 108.519511][ T6402] bridge_slave_1: entered allmulticast mode
[ 108.524062][ T6402] bridge_slave_1: entered promiscuous mode
[ 108.560939][ T6394] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 108.673879][ T6400] bridge0: port 1(bridge_slave_0) entered blocking state
[ 108.676887][ T6400] bridge0: port 1(bridge_slave_0) entered disabled state
[ 108.680423][ T6400] bridge_slave_0: entered allmulticast mode
[ 108.685571][ T6400] bridge_slave_0: entered promiscuous mode
[ 108.705392][ T6402] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 108.708977][ T6401] bridge0: port 1(bridge_slave_0) entered blocking state
[ 108.712286][ T6401] bridge0: port 1(bridge_slave_0) entered disabled state
[ 108.715446][ T6401] bridge_slave_0: entered allmulticast mode
[ 108.718670][ T6401] bridge_slave_0: entered promiscuous mode
[ 108.722445][ T6401] bridge0: port 2(bridge_slave_1) entered blocking state
[ 108.725362][ T6401] bridge0: port 2(bridge_slave_1) entered disabled state
[ 108.728145][ T6401] bridge_slave_1: entered allmulticast mode
[ 108.731443][ T6401] bridge_slave_1: entered promiscuous mode
[ 108.737242][ T6400] bridge0: port 2(bridge_slave_1) entered blocking state
[ 108.740462][ T6400] bridge0: port 2(bridge_slave_1) entered disabled state
[ 108.745715][ T6400] bridge_slave_1: entered allmulticast mode
[ 108.750842][ T6400] bridge_slave_1: entered promiscuous mode
[ 108.755550][ T6394] team0: Port device team_slave_0 added
[ 108.760914][ T6402] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 108.863494][ T6394] team0: Port device team_slave_1 added
[ 108.923729][ T6401] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 108.934045][ T6400] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 108.959693][ T6402] team0: Port device team_slave_0 added
[ 108.967623][ T6402] team0: Port device team_slave_1 added
[ 109.000023][ T6401] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 109.005668][ T6400] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 109.088281][ T6394] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 109.090909][ T6394] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 109.099158][ T6394] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 109.106197][ T6394] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 109.109320][ T6394] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 109.119505][ T6394] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 109.124714][ T6402] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 109.127858][ T6402] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 109.137184][ T6402] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 109.198878][ T6400] team0: Port device team_slave_0 added
[ 109.226648][ T6402] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 109.229811][ T6402] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 109.243877][ T6402] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 109.251239][ T6401] team0: Port device team_slave_0 added
[ 109.256432][ T6400] team0: Port device team_slave_1 added
[ 109.293624][ T6401] team0: Port device team_slave_1 added
[ 109.360039][ T6400] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 109.362487][ T6400] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 109.375572][ T6400] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 109.380841][ T6400] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 109.383019][ T6400] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 109.394764][ T6400] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 109.418605][ T6401] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 109.420846][ T6401] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 109.429994][ T6401] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 109.461188][ T6394] hsr_slave_0: entered promiscuous mode
[ 109.463830][ T6394] hsr_slave_1: entered promiscuous mode
[ 109.466015][ T6394] debugfs: 'hsr0' already exists in 'hsr'
[ 109.468600][ T6394] Cannot create hsr debugfs directory
[ 109.526415][ T6401] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 109.529698][ T6401] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 109.540699][ T6401] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 109.550529][ T6402] hsr_slave_0: entered promiscuous mode
[ 109.554081][ T6402] hsr_slave_1: entered promiscuous mode
[ 109.556169][ T6402] debugfs: 'hsr0' already exists in 'hsr'
[ 109.557976][ T6402] Cannot create hsr debugfs directory
[ 109.621041][ T6061] Bluetooth: hci0: command tx timeout
[ 109.661363][ T6400] hsr_slave_0: entered promiscuous mode
[ 109.663909][ T6400] hsr_slave_1: entered promiscuous mode
[ 109.666242][ T6400] debugfs: 'hsr0' already exists in 'hsr'
[ 109.668578][ T6400] Cannot create hsr debugfs directory
[ 109.690987][ T6061] Bluetooth: hci3: command tx timeout
[ 109.690999][ T6408] Bluetooth: hci2: command tx timeout
[ 109.702860][ T6061] Bluetooth: hci1: command tx timeout
[ 109.907084][ T6401] hsr_slave_0: entered promiscuous mode
[ 109.913388][ T6401] hsr_slave_1: entered promiscuous mode
[ 109.916573][ T6401] debugfs: 'hsr0' already exists in 'hsr'
[ 109.919070][ T6401] Cannot create hsr debugfs directory
[ 109.934902][ T61] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 110.015629][ T61] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 110.687973][ T6394] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 110.695316][ T6394] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 110.702303][ T6394] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 110.714919][ T6394] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 110.786927][ T6402] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 110.795855][ T6402] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 110.802974][ T6402] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 110.809479][ T6402] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 110.875137][ T6400] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 110.884201][ T6400] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 110.889039][ T6400] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 110.894978][ T6400] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 110.909553][ T6394] 8021q: adding VLAN 0 to HW filter on device bond0
[ 110.940690][ T6394] 8021q: adding VLAN 0 to HW filter on device team0
[ 110.953369][ T1144] bridge0: port 1(bridge_slave_0) entered blocking state
[ 110.955698][ T1144] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 110.967177][ T1145] bridge0: port 2(bridge_slave_1) entered blocking state
[ 110.970397][ T1145] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 111.019162][ T6402] 8021q: adding VLAN 0 to HW filter on device bond0
[ 111.038193][ T6394] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 111.042450][ T6394] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 111.079813][ T6402] 8021q: adding VLAN 0 to HW filter on device team0
[ 111.108170][ T1145] bridge0: port 1(bridge_slave_0) entered blocking state
[ 111.111392][ T1145] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 111.128175][ T6400] 8021q: adding VLAN 0 to HW filter on device bond0
[ 111.137520][ T1153] bridge0: port 2(bridge_slave_1) entered blocking state
[ 111.140902][ T1153] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 111.191013][ T61] bridge_slave_1: left allmulticast mode
[ 111.193203][ T61] bridge_slave_1: left promiscuous mode
[ 111.195282][ T61] bridge0: port 2(bridge_slave_1) entered disabled state
[ 111.206455][ T61] bridge_slave_0: left allmulticast mode
[ 111.208993][ T61] bridge_slave_0: left promiscuous mode
[ 111.215798][ T61] bridge0: port 1(bridge_slave_0) entered disabled state
[ 111.490222][ T61] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 111.496829][ T61] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 111.503188][ T61] bond0 (unregistering): Released all slaves
[ 111.579718][ T6400] 8021q: adding VLAN 0 to HW filter on device team0
[ 111.616274][ T1153] bridge0: port 1(bridge_slave_0) entered blocking state
[ 111.620167][ T1153] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 111.638667][ T1153] bridge0: port 2(bridge_slave_1) entered blocking state
[ 111.643484][ T1153] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 111.701030][ T6061] Bluetooth: hci0: command tx timeout
[ 111.727875][ T61] hsr_slave_0: left promiscuous mode
[ 111.730352][ T61] hsr_slave_1: left promiscuous mode
[ 111.732663][ T61] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 111.735275][ T61] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 111.739308][ T61] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 111.742719][ T61] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 111.762455][ T61] veth1_macvtap: left promiscuous mode
[ 111.764695][ T61] veth0_macvtap: left promiscuous mode
[ 111.766700][ T61] veth1_vlan: left promiscuous mode
[ 111.768753][ T61] veth0_vlan: left promiscuous mode
[ 111.770924][ T6061] Bluetooth: hci3: command tx timeout
[ 111.771464][ T63] Bluetooth: hci2: command tx timeout
[ 111.773219][ T6408] Bluetooth: hci1: command tx timeout
[ 112.385950][ T61] team0 (unregistering): Port device team_slave_1 removed
[ 112.453607][ T61] team0 (unregistering): Port device team_slave_0 removed
[ 112.909953][ T6394] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 112.977319][ T6394] veth0_vlan: entered promiscuous mode
[ 113.012061][ T6394] veth1_vlan: entered promiscuous mode
[ 113.059111][ T6394] veth0_macvtap: entered promiscuous mode
[ 113.067181][ T6394] veth1_macvtap: entered promiscuous mode
[ 113.117725][ T6402] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 113.133952][ T6400] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 113.155740][ T6394] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 113.163890][ T6401] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 113.170290][ T6401] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 113.181266][ T6394] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 113.193915][ T6401] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 113.204359][ T6401] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 113.222313][ T71] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 113.238360][ T71] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 113.241812][ T71] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 113.257318][ T71] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 113.293770][ T6402] veth0_vlan: entered promiscuous mode
[ 113.339110][ T6402] veth1_vlan: entered promiscuous mode
[ 113.352633][ T6400] veth0_vlan: entered promiscuous mode
[ 113.358233][ T71] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.365333][ T71] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 113.405759][ T1153] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.408033][ T6400] veth1_vlan: entered promiscuous mode
[ 113.408754][ T1153] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 113.422360][ T6402] veth0_macvtap: entered promiscuous mode
[ 113.428978][ T6402] veth1_macvtap: entered promiscuous mode
2025/08/30 17:30:19 executed programs: 8
[ 113.453295][ T40] audit: type=1400 audit(1756575019.137:118): avc: denied { read write } for pid=6572 comm="syz.0.16" name="raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 113.458074][ T6400] veth0_macvtap: entered promiscuous mode
[ 113.461942][ T40] audit: type=1400 audit(1756575019.137:119): avc: denied { open } for pid=6572 comm="syz.0.16" path="/dev/raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 113.468381][ T6400] veth1_macvtap: entered promiscuous mode
[ 113.472124][ T40] audit: type=1400 audit(1756575019.137:120): avc: denied { ioctl } for pid=6572 comm="syz.0.16" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 113.479865][ T6402] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 113.486292][ T6402] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 113.500312][ T6401] 8021q: adding VLAN 0 to HW filter on device bond0
[ 113.512982][ T61] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 113.517479][ T61] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 113.521679][ T6400] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 113.531560][ T61] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 113.537377][ T61] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 113.543980][ T6401] 8021q: adding VLAN 0 to HW filter on device team0
[ 113.556319][ T6400] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 113.568686][ T61] bridge0: port 1(bridge_slave_0) entered blocking state
[ 113.572817][ T61] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 113.583636][ T61] bridge0: port 2(bridge_slave_1) entered blocking state
[ 113.586818][ T61] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 113.594724][ T71] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 113.599653][ T71] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 113.614474][ T71] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 113.618249][ T71] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 113.673111][ T1145] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.678043][ T1145] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 113.701420][ T24] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[ 113.744950][ T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.748607][ T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 113.758355][ T71] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.768213][ T71] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 113.771098][ T63] Bluetooth: hci0: command tx timeout
[ 113.780255][ T1145] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.784439][ T1145] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 113.850789][ T63] Bluetooth: hci1: command tx timeout
[ 113.850929][ T6408] Bluetooth: hci3: command tx timeout
[ 113.855260][ T24] usb 5-1: Using ep0 maxpacket: 16
[ 113.862459][ T6408] Bluetooth: hci2: command tx timeout
[ 113.862733][ T24] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[ 113.869571][ T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 56, changing to 7
[ 113.874339][ T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid maxpacket 57832, setting to 1024
[ 113.883222][ T24] usb 5-1: New USB device found, idVendor=2040, idProduct=0265, bcdDevice=4e.d1
[ 113.887005][ T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 113.891672][ T24] usb 5-1: Product: syz
[ 113.893863][ T24] usb 5-1: Manufacturer: syz
[ 113.895817][ T24] usb 5-1: SerialNumber: syz
[ 113.902354][ T24] usb 5-1: config 0 descriptor??
[ 113.902845][ T6401] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 113.912321][ T24] em28xx 5-1:0.0: New device syz syz @ 480 Mbps (2040:0265, interface 0, class 0)
[ 113.916612][ T24] em28xx 5-1:0.0: Audio interface 0 found (Vendor Class)
[ 113.931912][ T6401] veth0_vlan: entered promiscuous mode
[ 113.949926][ T6401] veth1_vlan: entered promiscuous mode
[ 113.984623][ T6401] veth0_macvtap: entered promiscuous mode
[ 113.989149][ T6401] veth1_macvtap: entered promiscuous mode
[ 114.000021][ T6401] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 114.008667][ T6401] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 114.017340][ T1144] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 114.020158][ T1144] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 114.025856][ T1144] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 114.031686][ T1144] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 114.070857][ T5991] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[ 114.070975][ T6117] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[ 114.083664][ T1153] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 114.089972][ T1153] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 114.109101][ T1153] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 114.112953][ T1153] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 114.164281][ T24] em28xx 5-1:0.0: unknown em28xx chip ID (0)
[ 114.167444][ T24] em28xx 5-1:0.0: Config register raw data: 0xfffffffb
[ 114.172666][ T24] em28xx 5-1:0.0: AC97 chip type couldn't be determined
[ 114.175513][ T24] em28xx 5-1:0.0: No AC97 audio processor
[ 114.177992][ T24] em28xx 5-1:0.0: We currently don't support analog TV or stream capture on dual tuners.
[ 114.241596][ T5991] usb 8-1: Using ep0 maxpacket: 16
[ 114.242972][ T24] em28xx 5-1:0.0: unknown em28xx chip ID (0)
[ 114.246152][ T5991] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[ 114.247648][ T24] em28xx 5-1:0.0: Config register raw data: 0xfffffffb
[ 114.250690][ T6117] usb 6-1: Using ep0 maxpacket: 16
[ 114.251757][ T5991] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 56, changing to 7
[ 114.251784][ T5991] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid maxpacket 57832, setting to 1024
[ 114.253660][ T6117] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[ 114.254962][ T5991] usb 8-1: New USB device found, idVendor=2040, idProduct=0265, bcdDevice=4e.d1
[ 114.255516][ T24] em28xx 5-1:0.0: AC97 chip type couldn't be determined
[ 114.255534][ T24] em28xx 5-1:0.0: No AC97 audio processor
[ 114.257338][ T6117] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 56, changing to 7
[ 114.265010][ T5991] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 114.267767][ T6117] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid maxpacket 57832, setting to 1024
[ 114.272650][ T5991] usb 8-1: Product: syz
[ 114.272669][ T5991] usb 8-1: Manufacturer: syz
[ 114.280940][ T6117] usb 6-1: New USB device found, idVendor=2040, idProduct=0265, bcdDevice=4e.d1
[ 114.281734][ T5991] usb 8-1: SerialNumber: syz
[ 114.286785][ T6117] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 114.295286][ T5991] usb 8-1: config 0 descriptor??
[ 114.296102][ T6117] usb 6-1: Product: syz
[ 114.303920][ T5991] em28xx 8-1:0.0: New device syz syz @ 480 Mbps (2040:0265, interface 0, class 0)
[ 114.306139][ T6117] usb 6-1: Manufacturer: syz
[ 114.307559][ T5991] em28xx 8-1:0.0: Audio interface 0 found (Vendor Class)
[ 114.309231][ T6117] usb 6-1: SerialNumber: syz
[ 114.322743][ T6117] usb 6-1: config 0 descriptor??
[ 114.327164][ T6117] em28xx 6-1:0.0: New device syz syz @ 480 Mbps (2040:0265, interface 0, class 0)
[ 114.330388][ T6117] em28xx 6-1:0.0: Audio interface 0 found (Vendor Class)
[ 114.370695][ T6574] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[ 114.472645][ T24] usb 5-1: USB disconnect, device number 2
[ 114.476501][ T24] em28xx 5-1:0.0: Disconnecting em28xx #1
[ 114.479011][ T24] em28xx 5-1:0.0: Disconnecting em28xx
[ 114.486189][ T24] em28xx 5-1:0.0: Freeing device
[ 114.488522][ T24] em28xx 5-1:0.0: Freeing device
[ 114.531506][ T6574] usb 7-1: Using ep0 maxpacket: 16
[ 114.535586][ T6574] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[ 114.543537][ T6574] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 56, changing to 7
[ 114.548326][ T6574] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid maxpacket 57832, setting to 1024
[ 114.555429][ T6574] usb 7-1: New USB device found, idVendor=2040, idProduct=0265, bcdDevice=4e.d1
[ 114.560033][ T6574] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 114.564378][ T6574] usb 7-1: Product: syz
[ 114.566196][ T6574] usb 7-1: Manufacturer: syz
[ 114.568356][ T6574] usb 7-1: SerialNumber: syz
[ 114.573376][ T6574] usb 7-1: config 0 descriptor??
[ 114.576339][ T5991] em28xx 8-1:0.0: unknown em28xx chip ID (0)
[ 114.579043][ T5991] em28xx 8-1:0.0: Config register raw data: 0xfffffffb
[ 114.582157][ T5991] em28xx 8-1:0.0: AC97 chip type couldn't be determined
[ 114.584061][ T6574] em28xx 7-1:0.0: New device syz syz @ 480 Mbps (2040:0265, interface 0, class 0)
[ 114.585192][ T5991] em28xx 8-1:0.0: No AC97 audio processor
[ 114.589227][ T6574] em28xx 7-1:0.0: Audio interface 0 found (Vendor Class)
[ 114.591309][ T6117] em28xx 6-1:0.0: unknown em28xx chip ID (0)
[ 114.591608][ T6117] em28xx 6-1:0.0: Config register raw data: 0xfffffffb
[ 114.591903][ T6117] em28xx 6-1:0.0: AC97 chip type couldn't be determined
[ 114.592049][ T5991] ==================================================================
[ 114.592061][ T5991] BUG: KASAN: use-after-free in __list_add_valid_or_report+0x151/0x190
[ 114.592091][ T5991] Read of size 8 at addr ffff88803b974250 by task kworker/0:3/5991
[ 114.592106][ T5991]
[ 114.592117][ T5991] CPU: 0 UID: 0 PID: 5991 Comm: kworker/0:3 Not tainted syzkaller #0 PREEMPT(full)
[ 114.592144][ T5991] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 114.592158][ T5991] Workqueue: usb_hub_wq hub_event
[ 114.592183][ T5991] Call Trace:
[ 114.592190][ T5991]
[ 114.592197][ T5991] dump_stack_lvl+0x116/0x1f0
[ 114.592219][ T5991] print_report+0xcd/0x630
[ 114.592241][ T5991] ? __virt_addr_valid+0x81/0x610
[ 114.592266][ T5991] ? __phys_addr+0xe8/0x180
[ 114.592288][ T5991] ? __list_add_valid_or_report+0x151/0x190
[ 114.592314][ T5991] kasan_report+0xe0/0x110
[ 114.592335][ T5991] ? __list_add_valid_or_report+0x151/0x190
[ 114.592364][ T5991] __list_add_valid_or_report+0x151/0x190
[ 114.592391][ T5991] em28xx_init_extension+0x48/0x200
[ 114.592420][ T5991] em28xx_init_dev.constprop.0+0x1a10/0x3170
[ 114.592491][ T5991] ? __pfx_em28xx_init_dev.constprop.0+0x10/0x10
[ 114.592527][ T5991] ? rcu_is_watching+0x12/0xc0
[ 114.592551][ T5991] ? lockdep_init_map_type+0x5c/0x280
[ 114.592570][ T5991] ? lockdep_init_map_type+0x5c/0x280
[ 114.592588][ T5991] em28xx_usb_probe+0x1285/0x3770
[ 114.592624][ T5991] usb_probe_interface+0x300/0xa40
[ 114.592652][ T5991] ? __pfx_usb_probe_interface+0x10/0x10
[ 114.592679][ T5991] really_probe+0x241/0xa90
[ 114.592709][ T5991] __driver_probe_device+0x1de/0x440
[ 114.592731][ T5991] driver_probe_device+0x4c/0x1b0
[ 114.592752][ T5991] __device_attach_driver+0x1df/0x310
[ 114.592774][ T5991] ? __pfx___device_attach_driver+0x10/0x10
[ 114.592794][ T5991] bus_for_each_drv+0x159/0x1e0
[ 114.592823][ T5991] ? __pfx_bus_for_each_drv+0x10/0x10
[ 114.592852][ T5991] ? lockdep_hardirqs_on+0x7c/0x110
[ 114.592873][ T5991] ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 114.592895][ T5991] __device_attach+0x1e4/0x4b0
[ 114.592916][ T5991] ? __pfx___device_attach+0x10/0x10
[ 114.592937][ T5991] ? do_raw_spin_unlock+0x172/0x230
[ 114.592960][ T5991] bus_probe_device+0x17f/0x1c0
[ 114.592978][ T5991] device_add+0x1148/0x1aa0
[ 114.593004][ T5991] ? __pfx_device_add+0x10/0x10
[ 114.593026][ T5991] ? preempt_schedule_thunk+0x16/0x30
[ 114.593057][ T5991] usb_set_configuration+0x1187/0x1e20
[ 114.593088][ T5991] ? __pfx_usb_generic_driver_probe+0x10/0x10
[ 114.593109][ T5991] usb_generic_driver_probe+0xb1/0x110
[ 114.593124][ T5991] usb_probe_device+0xef/0x3e0
[ 114.593141][ T5991] ? __pfx_usb_probe_device+0x10/0x10
[ 114.593158][ T5991] really_probe+0x241/0xa90
[ 114.593172][ T5991] __driver_probe_device+0x1de/0x440
[ 114.593186][ T5991] ? usb_driver_applicable+0x1c7/0x220
[ 114.593205][ T5991] driver_probe_device+0x4c/0x1b0
[ 114.593220][ T5991] __device_attach_driver+0x1df/0x310
[ 114.593235][ T5991] ? __pfx___device_attach_driver+0x10/0x10
[ 114.593249][ T5991] bus_for_each_drv+0x159/0x1e0
[ 114.593269][ T5991] ? __pfx_bus_for_each_drv+0x10/0x10
[ 114.593289][ T5991] ? lockdep_hardirqs_on+0x7c/0x110
[ 114.593306][ T5991] ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 114.593326][ T5991] __device_attach+0x1e4/0x4b0
[ 114.593340][ T5991] ? __pfx___device_attach+0x10/0x10
[ 114.593354][ T5991] ? do_raw_spin_unlock+0x172/0x230
[ 114.593373][ T5991] bus_probe_device+0x17f/0x1c0
[ 114.593392][ T5991] device_add+0x1148/0x1aa0
[ 114.593415][ T5991] ? __pfx_device_add+0x10/0x10
[ 114.593440][ T5991] ? add_device_randomness+0xb7/0xf0
[ 114.593467][ T5991] ? __usb_get_extra_descriptor+0x158/0x1c0
[ 114.593500][ T5991] usb_new_device+0xd07/0x1a60
[ 114.593525][ T5991] ? do_raw_spin_lock+0x12c/0x2b0
[ 114.593545][ T5991] ? __pfx_usb_new_device+0x10/0x10
[ 114.593568][ T5991] ? mark_held_locks+0x49/0x80
[ 114.593591][ T5991] hub_event+0x2f34/0x4fe0
[ 114.593613][ T5991] ? __pfx_hub_event+0x10/0x10
[ 114.593629][ T5991] ? iowrite16be+0x50/0x90
[ 114.593645][ T5991] ? rcu_is_watching+0x12/0xc0
[ 114.593662][ T5991] process_one_work+0x9cf/0x1b70
[ 114.593681][ T5991] ? __pfx_hcd_resume_work+0x10/0x10
[ 114.593707][ T5991] ? __pfx_process_one_work+0x10/0x10
[ 114.593730][ T5991] ? assign_work+0x1a0/0x250
[ 114.593750][ T5991] worker_thread+0x6c8/0xf10
[ 114.593773][ T5991] ? __kthread_parkme+0x19e/0x250
[ 114.593800][ T5991] ? __pfx_worker_thread+0x10/0x10
[ 114.593821][ T5991] kthread+0x3c5/0x780
[ 114.593839][ T5991] ? __pfx_kthread+0x10/0x10
[ 114.593858][ T5991] ? rcu_is_watching+0x12/0xc0
[ 114.593881][ T5991] ? __pfx_kthread+0x10/0x10
[ 114.593901][ T5991] ret_from_fork+0x5d4/0x6f0
[ 114.593919][ T5991] ? __pfx_kthread+0x10/0x10
[ 114.593937][ T5991] ret_from_fork_asm+0x1a/0x30
[ 114.593964][ T5991]
[ 114.593972][ T5991]
[ 114.593978][ T5991] The buggy address belongs to the physical page:
[ 114.593989][ T5991] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88803b9756c0 pfn:0x3b974
[ 114.594008][ T5991] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 114.594035][ T5991] raw: 00fff00000000000 ffffea0001431108 ffff88806a640140 0000000000000000
[ 114.594052][ T5991] raw: ffff88803b9756c0 0000000000000000 00000000ffffffff 0000000000000000
[ 114.594062][ T5991] page dumped because: kasan: bad access detected
[ 114.594072][ T5991] page_owner tracks the page as freed
[ 114.594077][ T5991] page last allocated via order 2, migratetype Unmovable, gfp_mask 0x40cc0(GFP_KERNEL|__GFP_COMP), pid 24, tgid 24 (kworker/2:0), ts 114183271842, free_ts 114488491387
[ 114.594107][ T5991] post_alloc_hook+0x1c0/0x230
[ 114.594135][ T5991] get_page_from_freelist+0x132b/0x38e0
[ 114.594152][ T5991] __alloc_frozen_pages_noprof+0x261/0x23f0
[ 114.594169][ T5991] alloc_pages_mpol+0x1fb/0x550
[ 114.594188][ T5991] ___kmalloc_large_node+0xed/0x160
[ 114.594211][ T5991] __kmalloc_large_node_noprof+0x1c/0x70
[ 114.594235][ T5991] __kmalloc_node_track_caller_noprof.cold+0x5/0x5e
[ 114.594262][ T5991] kmemdup_noprof+0x29/0x60
[ 114.594281][ T5991] em28xx_usb_probe+0x16dc/0x3770
[ 114.594307][ T5991] usb_probe_interface+0x300/0xa40
[ 114.594331][ T5991] really_probe+0x241/0xa90
[ 114.594348][ T5991] __driver_probe_device+0x1de/0x440
[ 114.594368][ T5991] driver_probe_device+0x4c/0x1b0
[ 114.594387][ T5991] __device_attach_driver+0x1df/0x310
[ 114.594406][ T5991] bus_for_each_drv+0x159/0x1e0
[ 114.594431][ T5991] __device_attach+0x1e4/0x4b0
[ 114.594450][ T5991] page last free pid 24 tgid 24 stack trace:
[ 114.594460][ T5991] __free_frozen_pages+0x7d5/0x10f0
[ 114.594485][ T5991] em28xx_usb_disconnect+0x4e0/0x610
[ 114.594510][ T5991] usb_unbind_interface+0x1dd/0x9e0
[ 114.594527][ T5991] device_remove+0x122/0x170
[ 114.594539][ T5991] device_release_driver_internal+0x44b/0x620
[ 114.594554][ T5991] bus_remove_device+0x22f/0x420
[ 114.594564][ T5991] device_del+0x396/0x9f0
[ 114.594576][ T5991] usb_disable_device+0x355/0x7d0
[ 114.594590][ T5991] usb_disconnect+0x2e1/0x9c0
[ 114.594604][ T5991] hub_event+0x1c81/0x4fe0
[ 114.594618][ T5991] process_one_work+0x9cf/0x1b70
[ 114.594630][ T5991] worker_thread+0x6c8/0xf10
[ 114.594643][ T5991] kthread+0x3c5/0x780
[ 114.594653][ T5991] ret_from_fork+0x5d4/0x6f0
[ 114.594664][ T5991] ret_from_fork_asm+0x1a/0x30
[ 114.594679][ T5991]
[ 114.594682][ T5991] Memory state around the buggy address:
[ 114.594689][ T5991] ffff88803b974100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 114.594704][ T5991] ffff88803b974180: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 114.594716][ T5991] >ffff88803b974200: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 114.594724][ T5991] ^
[ 114.594735][ T5991] ffff88803b974280: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 114.594746][ T5991] ffff88803b974300: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 114.594756][ T5991] ==================================================================
[ 114.594768][ T5991] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 114.594780][ T5991] CPU: 0 UID: 0 PID: 5991 Comm: kworker/0:3 Not tainted syzkaller #0 PREEMPT(full)
[ 114.594802][ T5991] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 114.594816][ T5991] Workqueue: usb_hub_wq hub_event
[ 114.594840][ T5991] Call Trace:
[ 114.594848][ T5991]
[ 114.594855][ T5991] dump_stack_lvl+0x3d/0x1f0
[ 114.594876][ T5991] vpanic+0x6e8/0x7a0
[ 114.594900][ T5991] ? __pfx_vpanic+0x10/0x10
[ 114.594919][ T5991] ? __pfx_vprintk_emit+0x10/0x10
[ 114.594937][ T5991] ? __list_add_valid_or_report+0x151/0x190
[ 114.594955][ T5991] panic+0xca/0xd0
[ 114.594972][ T5991] ? __pfx_panic+0x10/0x10
[ 114.594991][ T5991] ? check_panic_on_warn+0x1f/0xb0
[ 114.595001][ T5991] check_panic_on_warn+0xab/0xb0
[ 114.595012][ T5991] end_report+0x107/0x170
[ 114.595025][ T5991] kasan_report+0xee/0x110
[ 114.595038][ T5991] ? __list_add_valid_or_report+0x151/0x190
[ 114.595057][ T5991] __list_add_valid_or_report+0x151/0x190
[ 114.595080][ T5991] em28xx_init_extension+0x48/0x200
[ 114.595099][ T5991] em28xx_init_dev.constprop.0+0x1a10/0x3170
[ 114.595119][ T5991] ? __pfx_em28xx_init_dev.constprop.0+0x10/0x10
[ 114.595140][ T5991] ? rcu_is_watching+0x12/0xc0
[ 114.595154][ T5991] ? lockdep_init_map_type+0x5c/0x280
[ 114.595165][ T5991] ? lockdep_init_map_type+0x5c/0x280
[ 114.595176][ T5991] em28xx_usb_probe+0x1285/0x3770
[ 114.595201][ T5991] usb_probe_interface+0x300/0xa40
[ 114.595226][ T5991] ? __pfx_usb_probe_interface+0x10/0x10
[ 114.595243][ T5991] really_probe+0x241/0xa90
[ 114.595256][ T5991] __driver_probe_device+0x1de/0x440
[ 114.595269][ T5991] driver_probe_device+0x4c/0x1b0
[ 114.595282][ T5991] __device_attach_driver+0x1df/0x310
[ 114.935511][ T5991] ? __pfx___device_attach_driver+0x10/0x10
[ 114.937470][ T5991] bus_for_each_drv+0x159/0x1e0
[ 114.939132][ T5991] ? __pfx_bus_for_each_drv+0x10/0x10
[ 114.940936][ T5991] ? lockdep_hardirqs_on+0x7c/0x110
[ 114.942527][ T5991] ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 114.944441][ T5991] __device_attach+0x1e4/0x4b0
[ 114.946217][ T5991] ? __pfx___device_attach+0x10/0x10
[ 114.947893][ T5991] ? do_raw_spin_unlock+0x172/0x230
[ 114.949601][ T5991] bus_probe_device+0x17f/0x1c0
[ 114.951511][ T5991] device_add+0x1148/0x1aa0
[ 114.953142][ T5991] ? __pfx_device_add+0x10/0x10
[ 114.954931][ T5991] ? preempt_schedule_thunk+0x16/0x30
[ 114.956982][ T5991] usb_set_configuration+0x1187/0x1e20
[ 114.958903][ T5991] ? __pfx_usb_generic_driver_probe+0x10/0x10
[ 114.961118][ T5991] usb_generic_driver_probe+0xb1/0x110
[ 114.962901][ T5991] usb_probe_device+0xef/0x3e0
[ 114.964488][ T5991] ? __pfx_usb_probe_device+0x10/0x10
[ 114.966215][ T5991] really_probe+0x241/0xa90
[ 114.967726][ T5991] __driver_probe_device+0x1de/0x440
[ 114.969513][ T5991] ? usb_driver_applicable+0x1c7/0x220
[ 114.971874][ T5991] driver_probe_device+0x4c/0x1b0
[ 114.974076][ T5991] __device_attach_driver+0x1df/0x310
[ 114.976053][ T5991] ? __pfx___device_attach_driver+0x10/0x10
[ 114.977984][ T5991] bus_for_each_drv+0x159/0x1e0
[ 114.979823][ T5991] ? __pfx_bus_for_each_drv+0x10/0x10
[ 114.981604][ T5991] ? lockdep_hardirqs_on+0x7c/0x110
[ 114.983351][ T5991] ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 114.985264][ T5991] __device_attach+0x1e4/0x4b0
[ 114.986829][ T5991] ? __pfx___device_attach+0x10/0x10
[ 114.988571][ T5991] ? do_raw_spin_unlock+0x172/0x230
[ 114.990152][ T5991] bus_probe_device+0x17f/0x1c0
[ 114.991905][ T5991] device_add+0x1148/0x1aa0
[ 114.993611][ T5991] ? __pfx_device_add+0x10/0x10
[ 114.995150][ T5991] ? add_device_randomness+0xb7/0xf0
[ 114.996838][ T5991] ? __usb_get_extra_descriptor+0x158/0x1c0
[ 114.998829][ T5991] usb_new_device+0xd07/0x1a60
[ 115.000371][ T5991] ? do_raw_spin_lock+0x12c/0x2b0
[ 115.002167][ T5991] ? __pfx_usb_new_device+0x10/0x10
[ 115.004207][ T5991] ? mark_held_locks+0x49/0x80
[ 115.006148][ T5991] hub_event+0x2f34/0x4fe0
[ 115.007916][ T5991] ? __pfx_hub_event+0x10/0x10
[ 115.009520][ T5991] ? iowrite16be+0x50/0x90
[ 115.011023][ T5991] ? rcu_is_watching+0x12/0xc0
[ 115.012654][ T5991] process_one_work+0x9cf/0x1b70
[ 115.014276][ T5991] ? __pfx_hcd_resume_work+0x10/0x10
[ 115.015986][ T5991] ? __pfx_process_one_work+0x10/0x10
[ 115.017857][ T5991] ? assign_work+0x1a0/0x250
[ 115.019360][ T5991] worker_thread+0x6c8/0xf10
[ 115.020811][ T5991] ? __kthread_parkme+0x19e/0x250
[ 115.022335][ T5991] ? __pfx_worker_thread+0x10/0x10
[ 115.024026][ T5991] kthread+0x3c5/0x780
[ 115.025339][ T5991] ? __pfx_kthread+0x10/0x10
[ 115.026836][ T5991] ? rcu_is_watching+0x12/0xc0
[ 115.028713][ T5991] ? __pfx_kthread+0x10/0x10
[ 115.030480][ T5991] ret_from_fork+0x5d4/0x6f0
[ 115.032167][ T5991] ? __pfx_kthread+0x10/0x10
[ 115.033799][ T5991] ret_from_fork_asm+0x1a/0x30
[ 115.035365][ T5991]
[ 116.146323][ T5991] Shutting down cpus with NMI
[ 116.148855][ T5991] Kernel Offset: disabled
[ 116.150264][ T5991] Rebooting in 86400 seconds..