[   76.267074][ T1424] ieee802154 phy0 wpan0: encryption failed: -22
[   76.269164][ T1424] ieee802154 phy1 wpan1: encryption failed: -22
Warning: Permanently added '[localhost]:47369' (ED25519) to the list of known hosts.
2025/11/30 04:20:26 parsed 1 programs
[   85.474747][   T40] audit: type=1400 audit(1764476428.977:115): avc:  denied  { unlink } for  pid=6165 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   86.505516][   T24] cfg80211: failed to load regulatory.db
[   86.810047][ T6165] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   88.708156][   T40] audit: type=1401 audit(1764476432.207:116): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
[   89.121906][   T64] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   89.125097][   T64] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   89.127842][   T64] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   89.131815][   T64] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   89.135045][   T64] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   89.362148][ T1146] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.365175][ T1146] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.377618][ T1146] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.380481][ T1146] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.120233][ T6235] chnl_net:caif_netlink_parms(): no params data found
[   90.221892][ T6235] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.224430][ T6235] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.226719][ T6235] bridge_slave_0: entered allmulticast mode
[   90.229428][ T6235] bridge_slave_0: entered promiscuous mode
[   90.288428][ T6235] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.291403][ T6235] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.294672][ T6235] bridge_slave_1: entered allmulticast mode
[   90.297862][ T6235] bridge_slave_1: entered promiscuous mode
[   90.341322][ T6235] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   90.346999][ T6235] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   90.385380][ T6235] team0: Port device team_slave_0 added
[   90.388619][ T6235] team0: Port device team_slave_1 added
[   90.434176][ T6235] batman_adv: batadv0: Adding interface: batadv_slave_0
[   90.436399][ T6235] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   90.445167][ T6235] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   90.449543][ T6235] batman_adv: batadv0: Adding interface: batadv_slave_1
[   90.451726][ T6235] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   90.460105][ T6235] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   90.503776][ T6235] hsr_slave_0: entered promiscuous mode
[   90.507002][ T6235] hsr_slave_1: entered promiscuous mode
[   90.987618][ T6235] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   90.993033][ T6235] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   90.997964][ T6235] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   91.002468][ T6235] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   91.028358][ T6235] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.031422][ T6235] bridge0: port 2(bridge_slave_1) entered forwarding state
[   91.034641][ T6235] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.037494][ T6235] bridge0: port 1(bridge_slave_0) entered forwarding state
[   91.065333][ T1153] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.069426][ T1153] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.085799][ T6235] 8021q: adding VLAN 0 to HW filter on device bond0
[   91.098141][ T6235] 8021q: adding VLAN 0 to HW filter on device team0
[   91.104743][  T103] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.107101][  T103] bridge0: port 1(bridge_slave_0) entered forwarding state
[   91.113030][ T1153] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.115516][ T1153] bridge0: port 2(bridge_slave_1) entered forwarding state
[   91.238721][ T6235] 8021q: adding VLAN 0 to HW filter on device batadv0
[   91.267569][ T6235] veth0_vlan: entered promiscuous mode
[   91.274915][ T6235] veth1_vlan: entered promiscuous mode
[   91.288937][ T6235] veth0_macvtap: entered promiscuous mode
[   91.294482][ T6235] veth1_macvtap: entered promiscuous mode
[   91.302433][ T6235] batman_adv: batadv0: Interface activated: batadv_slave_0
[   91.310603][ T6235] batman_adv: batadv0: Interface activated: batadv_slave_1
[   91.317677][ T1153] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.321113][ T1153] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.333537][ T1153] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.336412][ T1153] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   91.440285][ T1153] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/11/30 04:20:35 executed programs: 0
[   91.520563][ T1153] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.527838][ T5972] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   91.532174][ T5972] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   91.536808][ T5972] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   91.540378][ T5972] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   91.544563][ T5972] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   91.595817][ T1153] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.681703][ T1153] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.692579][ T6298] chnl_net:caif_netlink_parms(): no params data found
[   91.795938][ T6298] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.799022][ T6298] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.801864][ T6298] bridge_slave_0: entered allmulticast mode
[   91.806358][ T6298] bridge_slave_0: entered promiscuous mode
[   91.810394][ T6298] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.812898][ T6298] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.815304][ T6298] bridge_slave_1: entered allmulticast mode
[   91.818234][ T6298] bridge_slave_1: entered promiscuous mode
[   91.854221][ T6298] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   91.859957][ T6298] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   91.913685][ T6298] team0: Port device team_slave_0 added
[   91.918280][ T6298] team0: Port device team_slave_1 added
[   91.953519][ T6298] batman_adv: batadv0: Adding interface: batadv_slave_0
[   91.956559][ T6298] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   91.965390][ T6298] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   91.971536][ T6298] batman_adv: batadv0: Adding interface: batadv_slave_1
[   91.974793][ T6298] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   91.985503][ T6298] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   92.029603][ T6298] hsr_slave_0: entered promiscuous mode
[   92.031970][ T6298] hsr_slave_1: entered promiscuous mode
[   92.034295][ T6298] debugfs: 'hsr0' already exists in 'hsr'
[   92.036227][ T6298] Cannot create hsr debugfs directory
[   93.623054][ T5972] Bluetooth: hci0: command tx timeout
[   94.795295][ T1153] bridge_slave_1: left allmulticast mode
[   94.797930][ T1153] bridge_slave_1: left promiscuous mode
[   94.800481][ T1153] bridge0: port 2(bridge_slave_1) entered disabled state
[   94.806277][ T1153] bridge_slave_0: left allmulticast mode
[   94.808678][ T1153] bridge_slave_0: left promiscuous mode
[   94.811835][ T1153] bridge0: port 1(bridge_slave_0) entered disabled state
[   95.066348][ T1153] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   95.070373][ T1153] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   95.074109][ T1153] bond0 (unregistering): Released all slaves
[   95.222620][ T1153] hsr_slave_0: left promiscuous mode
[   95.226835][ T1153] hsr_slave_1: left promiscuous mode
[   95.229489][ T1153] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   95.232470][ T1153] batman_adv: batadv0: Removing interface: batadv_slave_0
[   95.237034][ T1153] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   95.240233][ T1153] batman_adv: batadv0: Removing interface: batadv_slave_1
[   95.259913][ T1153] veth1_macvtap: left promiscuous mode
[   95.262206][ T1153] veth0_macvtap: left promiscuous mode
[   95.266779][ T1153] veth1_vlan: left promiscuous mode
[   95.268599][ T1153] veth0_vlan: left promiscuous mode
[   95.683994][ T1153] team0 (unregistering): Port device team_slave_1 removed
[   95.704148][ T5972] Bluetooth: hci0: command tx timeout
[   95.727215][ T1153] team0 (unregistering): Port device team_slave_0 removed
[   96.512158][ T6298] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   96.524848][ T6298] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   96.529355][ T6298] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   96.539009][ T6298] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   96.602063][ T6298] 8021q: adding VLAN 0 to HW filter on device bond0
[   96.615132][ T6298] 8021q: adding VLAN 0 to HW filter on device team0
[   96.621281][ T1284] bridge0: port 1(bridge_slave_0) entered blocking state
[   96.624714][ T1284] bridge0: port 1(bridge_slave_0) entered forwarding state
[   96.635895][ T1284] bridge0: port 2(bridge_slave_1) entered blocking state
[   96.639448][ T1284] bridge0: port 2(bridge_slave_1) entered forwarding state
[   96.819818][ T6298] 8021q: adding VLAN 0 to HW filter on device batadv0
[   96.853400][ T6298] veth0_vlan: entered promiscuous mode
[   96.861086][ T6298] veth1_vlan: entered promiscuous mode
[   96.885175][ T6298] veth0_macvtap: entered promiscuous mode
[   96.891488][ T6298] veth1_macvtap: entered promiscuous mode
[   96.906112][ T6298] batman_adv: batadv0: Interface activated: batadv_slave_0
[   96.914403][ T6298] batman_adv: batadv0: Interface activated: batadv_slave_1
[   96.921428][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   96.925506][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   96.929681][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   96.934328][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   96.963398][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.966611][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.986739][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.989921][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/11/30 04:20:40 executed programs: 2
[   97.028173][   T40] audit: type=1400 audit(1764476440.527:117): avc:  denied  { read write } for  pid=6367 comm="syz.0.15" name="raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   97.038556][   T40] audit: type=1400 audit(1764476440.527:118): avc:  denied  { open } for  pid=6367 comm="syz.0.15" path="/dev/raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   97.048213][   T40] audit: type=1400 audit(1764476440.527:119): avc:  denied  { ioctl } for  pid=6367 comm="syz.0.15" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   97.272824][ T1339] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   97.425217][ T1339] usb 5-1: unable to get BOS descriptor or descriptor too short
[   97.429074][ T1339] usb 5-1: config 131 interface 0 altsetting 67 endpoint 0x3 has invalid maxpacket 512, setting to 64
[   97.432935][ T1339] usb 5-1: config 131 interface 0 has no altsetting 0
[   97.437756][ T1339] usb 5-1: New USB device found, idVendor=2040, idProduct=200a, bcdDevice=27.2a
[   97.441538][ T1339] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   97.444945][ T1339] usb 5-1: Product: syz
[   97.446410][ T1339] usb 5-1: Manufacturer: syz
[   97.448000][ T1339] usb 5-1: SerialNumber: syz
[   97.661671][ T1339] smsusb:smsusb_probe: board id=9, interface number 0
[   97.668218][ T1339] smsusb:siano_media_device_register: media controller created
[   97.671804][ T1339] usb 5-1: BOGUS urb xfer, pipe 3 != type 1
[   97.674225][ T1339] smsusb:smsusb_start_streaming: smsusb_submit_urb(...) failed
[   97.677494][ T1339] smsusb:smsusb_init_device: smsusb_start_streaming(...) failed
[   97.681649][ T1339] ------------[ cut here ]------------
[   97.684152][ T1339] WARNING: CPU: 0 PID: 1339 at mm/slub.c:6760 free_large_kmalloc+0x114/0x180
[   97.687942][ T1339] Modules linked in:
[   97.689725][ T1339] CPU: 0 UID: 0 PID: 1339 Comm: kworker/0:3 Not tainted syzkaller #0 PREEMPT(full) 
[   97.693773][ T1339] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   97.698167][ T1339] Workqueue: usb_hub_wq hub_event
[   97.700214][ T1339] RIP: 0010:free_large_kmalloc+0x114/0x180
[   97.703025][ T1339] Code: 00 00 00 48 89 df e8 db 43 14 00 e8 16 41 ab ff 9c 58 f6 c4 02 75 6f fb eb 83 48 c7 c6 60 86 b4 8d e8 a0 5e ed ff 90 0f 0b 90 <0f> 0b 90 48 c7 c6 03 86 a1 8d 48 89 df 5b 5d 41 5c 41 5d e9 84 5e
[   97.712167][ T1339] RSP: 0018:ffffc90006796da0 EFLAGS: 00010202
[   97.714447][ T1339] RAX: 00fff00000000000 RBX: ffffea000146b880 RCX: ffffffff816dd2ee
[   97.717249][ T1339] RDX: 00000000000000ff RSI: ffff888051ae2000 RDI: ffffea000146b880
[   97.720021][ T1339] RBP: ffff888051ae2000 R08: 0000000000000007 R09: 0000000000000000
[   97.723406][ T1339] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88802de24000
[   97.726589][ T1339] R13: ffff888036050000 R14: dffffc0000000000 R15: ffff88802de240f0
[   97.729706][ T1339] FS:  0000000000000000(0000) GS:ffff8880d6a05000(0000) knlGS:0000000000000000
[   97.733296][ T1339] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   97.735979][ T1339] CR2: 000055b5167ec898 CR3: 000000004f763000 CR4: 0000000000352ef0
[   97.739372][ T1339] Call Trace:
[   97.740846][ T1339]  <TASK>
[   97.742059][ T1339]  usb_free_urb.part.0+0xe5/0x100
[   97.744236][ T1339]  usb_free_urb+0x1f/0x30
[   97.746159][ T1339]  smsusb_term_device+0x108/0x1e0
[   97.748529][ T1339]  smsusb_init_device+0xaa0/0xe00
[   97.750808][ T1339]  ? __pfx_smsusb_init_device+0x10/0x10
[   97.753301][ T1339]  ? __pfx_smsusb_sendrequest+0x10/0x10
[   97.755608][ T1339]  ? usb_clear_halt+0xb5/0x160
[   97.757653][ T1339]  smsusb_probe+0x5d3/0x1090
[   97.759478][ T1339]  ? __pfx_smsusb_probe+0x10/0x10
[   97.761216][ T1339]  ? mark_held_locks+0x49/0x80
[   97.763282][ T1339]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   97.765716][ T1339]  ? __pm_runtime_set_status+0x13c/0xa80
[   97.768223][ T1339]  usb_probe_interface+0x303/0xa40
[   97.770605][ T1339]  ? __pfx_usb_probe_interface+0x10/0x10
[   97.773436][ T1339]  really_probe+0x241/0xa90
[   97.775552][ T1339]  __driver_probe_device+0x1de/0x440
[   97.777624][ T1339]  driver_probe_device+0x4c/0x1b0
[   97.779965][ T1339]  __device_attach_driver+0x1df/0x310
[   97.782140][ T1339]  ? __pfx___device_attach_driver+0x10/0x10
[   97.782942][ T5972] Bluetooth: hci0: command tx timeout
[   97.785043][ T1339]  bus_for_each_drv+0x159/0x1e0
[   97.789137][ T1339]  ? __pfx_bus_for_each_drv+0x10/0x10
[   97.791413][ T1339]  ? lockdep_hardirqs_on+0x7c/0x110
[   97.793515][ T1339]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   97.795912][ T1339]  __device_attach+0x1e4/0x4b0
[   97.797887][ T1339]  ? __pfx___device_attach+0x10/0x10
[   97.800159][ T1339]  ? do_raw_spin_unlock+0x172/0x230
[   97.802239][ T1339]  bus_probe_device+0x17f/0x1c0
[   97.804226][ T1339]  device_add+0x1148/0x1aa0
[   97.806034][ T1339]  ? __pfx_device_add+0x10/0x10
[   97.808043][ T1339]  ? mark_held_locks+0x49/0x80
[   97.810058][ T1339]  usb_set_configuration+0x1187/0x1e20
[   97.812373][ T1339]  ? __pfx_usb_generic_driver_probe+0x10/0x10
[   97.814996][ T1339]  usb_generic_driver_probe+0xb1/0x110
[   97.817311][ T1339]  usb_probe_device+0xef/0x3e0
[   97.819381][ T1339]  ? __pfx_usb_probe_device+0x10/0x10
[   97.821632][ T1339]  really_probe+0x241/0xa90
[   97.823707][ T1339]  __driver_probe_device+0x1de/0x440
[   97.825920][ T1339]  ? usb_driver_applicable+0x1c7/0x220
[   97.828154][ T1339]  driver_probe_device+0x4c/0x1b0
[   97.830037][ T1339]  __device_attach_driver+0x1df/0x310
[   97.832223][ T1339]  ? __pfx___device_attach_driver+0x10/0x10
[   97.834686][ T1339]  bus_for_each_drv+0x159/0x1e0
[   97.836714][ T1339]  ? __pfx_bus_for_each_drv+0x10/0x10
[   97.838869][ T1339]  ? lockdep_hardirqs_on+0x7c/0x110
[   97.840979][ T1339]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   97.843237][ T1339]  __device_attach+0x1e4/0x4b0
[   97.844929][ T1339]  ? __pfx___device_attach+0x10/0x10
[   97.846910][ T1339]  ? do_raw_spin_unlock+0x172/0x230
[   97.848848][ T1339]  bus_probe_device+0x17f/0x1c0
[   97.850786][ T1339]  device_add+0x1148/0x1aa0
[   97.852584][ T1339]  ? __pfx_device_add+0x10/0x10
[   97.854656][ T1339]  ? add_device_randomness+0xb7/0xf0
[   97.856759][ T1339]  ? __usb_get_extra_descriptor+0x158/0x1c0
[   97.859296][ T1339]  usb_new_device+0xd07/0x1a60
[   97.861262][ T1339]  ? do_raw_spin_lock+0x12c/0x2b0
[   97.863704][ T1339]  ? __pfx_usb_new_device+0x10/0x10
[   97.865700][ T1339]  ? mark_held_locks+0x49/0x80
[   97.867562][ T1339]  hub_event+0x2f34/0x4fe0
[   97.869452][ T1339]  ? __pfx_hub_event+0x10/0x10
[   97.871411][ T1339]  ? interval_tree_remove+0x800/0xee0
[   97.873665][ T1339]  ? rcu_is_watching+0x12/0xc0
[   97.875713][ T1339]  process_one_work+0x9cf/0x1b70
[   97.877764][ T1339]  ? __pfx_mld_ifc_work+0x10/0x10
[   97.879925][ T1339]  ? __pfx_process_one_work+0x10/0x10
[   97.882478][ T1339]  ? assign_work+0x1a0/0x250
[   97.884753][ T1339]  worker_thread+0x6c8/0xf10
[   97.886726][ T1339]  ? __kthread_parkme+0x19e/0x250
[   97.888875][ T1339]  ? __pfx_worker_thread+0x10/0x10
[   97.891093][ T1339]  kthread+0x3c5/0x780
[   97.892901][ T1339]  ? __pfx_kthread+0x10/0x10
[   97.894878][ T1339]  ? rcu_is_watching+0x12/0xc0
[   97.896879][ T1339]  ? __pfx_kthread+0x10/0x10
[   97.898849][ T1339]  ret_from_fork+0x675/0x7d0
[   97.900786][ T1339]  ? __pfx_kthread+0x10/0x10
[   97.902975][ T1339]  ret_from_fork_asm+0x1a/0x30
[   97.905143][ T1339]  </TASK>
[   97.906443][ T1339] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   97.909227][ T1339] CPU: 0 UID: 0 PID: 1339 Comm: kworker/0:3 Not tainted syzkaller #0 PREEMPT(full) 
[   97.913091][ T1339] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   97.917455][ T1339] Workqueue: usb_hub_wq hub_event
[   97.919592][ T1339] Call Trace:
[   97.921074][ T1339]  <TASK>
[   97.922424][ T1339]  dump_stack_lvl+0x3d/0x1f0
[   97.924366][ T1339]  vpanic+0x640/0x6f0
[   97.925897][ T1339]  ? free_large_kmalloc+0x114/0x180
[   97.927831][ T1339]  panic+0xca/0xd0
[   97.929422][ T1339]  ? __pfx_panic+0x10/0x10
[   97.931262][ T1339]  ? check_panic_on_warn+0x1f/0xb0
[   97.933371][ T1339]  check_panic_on_warn+0xab/0xb0
[   97.935493][ T1339]  __warn+0xf6/0x3c0
[   97.937112][ T1339]  ? free_large_kmalloc+0x114/0x180
[   97.939423][ T1339]  report_bug+0x3c3/0x580
[   97.941229][ T1339]  ? free_large_kmalloc+0x114/0x180
[   97.943464][ T1339]  handle_bug+0x184/0x210
[   97.945315][ T1339]  exc_invalid_op+0x17/0x50
[   97.947256][ T1339]  asm_exc_invalid_op+0x1a/0x20
[   97.949241][ T1339] RIP: 0010:free_large_kmalloc+0x114/0x180
[   97.951609][ T1339] Code: 00 00 00 48 89 df e8 db 43 14 00 e8 16 41 ab ff 9c 58 f6 c4 02 75 6f fb eb 83 48 c7 c6 60 86 b4 8d e8 a0 5e ed ff 90 0f 0b 90 <0f> 0b 90 48 c7 c6 03 86 a1 8d 48 89 df 5b 5d 41 5c 41 5d e9 84 5e
[   97.958478][ T1339] RSP: 0018:ffffc90006796da0 EFLAGS: 00010202
[   97.960453][ T1339] RAX: 00fff00000000000 RBX: ffffea000146b880 RCX: ffffffff816dd2ee
[   97.963070][ T1339] RDX: 00000000000000ff RSI: ffff888051ae2000 RDI: ffffea000146b880
[   97.965546][ T1339] RBP: ffff888051ae2000 R08: 0000000000000007 R09: 0000000000000000
[   97.968620][ T1339] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88802de24000
[   97.971765][ T1339] R13: ffff888036050000 R14: dffffc0000000000 R15: ffff88802de240f0
[   97.975077][ T1339]  ? __phys_addr+0xde/0x180
[   97.976992][ T1339]  usb_free_urb.part.0+0xe5/0x100
[   97.978886][ T1339]  usb_free_urb+0x1f/0x30
[   97.980732][ T1339]  smsusb_term_device+0x108/0x1e0
[   97.982872][ T1339]  smsusb_init_device+0xaa0/0xe00
[   97.985103][ T1339]  ? __pfx_smsusb_init_device+0x10/0x10
[   97.987426][ T1339]  ? __pfx_smsusb_sendrequest+0x10/0x10
[   97.989787][ T1339]  ? usb_clear_halt+0xb5/0x160
[   97.991825][ T1339]  smsusb_probe+0x5d3/0x1090
[   97.993778][ T1339]  ? __pfx_smsusb_probe+0x10/0x10
[   97.996030][ T1339]  ? mark_held_locks+0x49/0x80
[   97.998068][ T1339]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   98.000529][ T1339]  ? __pm_runtime_set_status+0x13c/0xa80
[   98.002823][ T1339]  usb_probe_interface+0x303/0xa40
[   98.004989][ T1339]  ? __pfx_usb_probe_interface+0x10/0x10
[   98.007404][ T1339]  really_probe+0x241/0xa90
[   98.009337][ T1339]  __driver_probe_device+0x1de/0x440
[   98.011715][ T1339]  driver_probe_device+0x4c/0x1b0
[   98.013840][ T1339]  __device_attach_driver+0x1df/0x310
[   98.016169][ T1339]  ? __pfx___device_attach_driver+0x10/0x10
[   98.018722][ T1339]  bus_for_each_drv+0x159/0x1e0
[   98.020811][ T1339]  ? __pfx_bus_for_each_drv+0x10/0x10
[   98.023079][ T1339]  ? lockdep_hardirqs_on+0x7c/0x110
[   98.025266][ T1339]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   98.027780][ T1339]  __device_attach+0x1e4/0x4b0
[   98.029864][ T1339]  ? __pfx___device_attach+0x10/0x10
[   98.032120][ T1339]  ? do_raw_spin_unlock+0x172/0x230
[   98.034323][ T1339]  bus_probe_device+0x17f/0x1c0
[   98.036386][ T1339]  device_add+0x1148/0x1aa0
[   98.038385][ T1339]  ? __pfx_device_add+0x10/0x10
[   98.040469][ T1339]  ? mark_held_locks+0x49/0x80
[   98.042551][ T1339]  usb_set_configuration+0x1187/0x1e20
[   98.044882][ T1339]  ? __pfx_usb_generic_driver_probe+0x10/0x10
[   98.047460][ T1339]  usb_generic_driver_probe+0xb1/0x110
[   98.049745][ T1339]  usb_probe_device+0xef/0x3e0
[   98.051795][ T1339]  ? __pfx_usb_probe_device+0x10/0x10
[   98.054075][ T1339]  really_probe+0x241/0xa90
[   98.056015][ T1339]  __driver_probe_device+0x1de/0x440
[   98.058128][ T1339]  ? usb_driver_applicable+0x1c7/0x220
[   98.060440][ T1339]  driver_probe_device+0x4c/0x1b0
[   98.062573][ T1339]  __device_attach_driver+0x1df/0x310
[   98.064836][ T1339]  ? __pfx___device_attach_driver+0x10/0x10
[   98.067306][ T1339]  bus_for_each_drv+0x159/0x1e0
[   98.069395][ T1339]  ? __pfx_bus_for_each_drv+0x10/0x10
[   98.071696][ T1339]  ? lockdep_hardirqs_on+0x7c/0x110
[   98.073885][ T1339]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   98.076356][ T1339]  __device_attach+0x1e4/0x4b0
[   98.078409][ T1339]  ? __pfx___device_attach+0x10/0x10
[   98.080625][ T1339]  ? do_raw_spin_unlock+0x172/0x230
[   98.082637][ T1339]  bus_probe_device+0x17f/0x1c0
[   98.084176][ T1339]  device_add+0x1148/0x1aa0
[   98.085611][ T1339]  ? __pfx_device_add+0x10/0x10
[   98.087114][ T1339]  ? add_device_randomness+0xb7/0xf0
[   98.088763][ T1339]  ? __usb_get_extra_descriptor+0x158/0x1c0
[   98.090649][ T1339]  usb_new_device+0xd07/0x1a60
[   98.092312][ T1339]  ? do_raw_spin_lock+0x12c/0x2b0
[   98.094347][ T1339]  ? __pfx_usb_new_device+0x10/0x10
[   98.096541][ T1339]  ? mark_held_locks+0x49/0x80
[   98.098568][ T1339]  hub_event+0x2f34/0x4fe0
[   98.100497][ T1339]  ? __pfx_hub_event+0x10/0x10
[   98.102561][ T1339]  ? interval_tree_remove+0x800/0xee0
[   98.104806][ T1339]  ? rcu_is_watching+0x12/0xc0
[   98.106864][ T1339]  process_one_work+0x9cf/0x1b70
[   98.108960][ T1339]  ? __pfx_mld_ifc_work+0x10/0x10
[   98.111102][ T1339]  ? __pfx_process_one_work+0x10/0x10
[   98.113312][ T1339]  ? assign_work+0x1a0/0x250
[   98.115233][ T1339]  worker_thread+0x6c8/0xf10
[   98.117206][ T1339]  ? __kthread_parkme+0x19e/0x250
[   98.119373][ T1339]  ? __pfx_worker_thread+0x10/0x10
[   98.121528][ T1339]  kthread+0x3c5/0x780
[   98.123289][ T1339]  ? __pfx_kthread+0x10/0x10
[   98.125238][ T1339]  ? rcu_is_watching+0x12/0xc0
[   98.127315][ T1339]  ? __pfx_kthread+0x10/0x10
[   98.129304][ T1339]  ret_from_fork+0x675/0x7d0
[   98.131276][ T1339]  ? __pfx_kthread+0x10/0x10
[   98.133226][ T1339]  ret_from_fork_asm+0x1a/0x30
[   98.135227][ T1339]  </TASK>
[   98.137206][ T1339] Kernel Offset: disabled
[   98.139031][ T1339] Rebooting in 86400 seconds..