Warning: Permanently added '[localhost]:9603' (ED25519) to the list of known hosts.
2025/07/03 02:18:53 ignoring optional flag "sandboxArg"="0"
2025/07/03 02:18:54 parsed 1 programs
[   81.339248][  T840] cfg80211: failed to load regulatory.db
[   81.988052][   T40] audit: type=1400 audit(1751509136.619:117): avc:  denied  { unlink } for  pid=6216 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   83.007871][ T6216] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   84.850855][ T6282] chnl_net:caif_netlink_parms(): no params data found
[   84.944174][ T6282] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.947264][ T6282] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.950535][ T6282] bridge_slave_0: entered allmulticast mode
[   84.953145][ T6282] bridge_slave_0: entered promiscuous mode
[   85.006494][ T6282] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.009137][ T6282] bridge0: port 2(bridge_slave_1) entered disabled state
[   85.011727][ T6282] bridge_slave_1: entered allmulticast mode
[   85.014561][ T6282] bridge_slave_1: entered promiscuous mode
[   85.070553][ T6282] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   85.077379][ T6282] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   85.111075][ T6282] team0: Port device team_slave_0 added
[   85.114643][ T6282] team0: Port device team_slave_1 added
[   85.154643][ T6282] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.156911][ T6282] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.167250][ T6282] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   85.172333][ T6282] batman_adv: batadv0: Adding interface: batadv_slave_1
[   85.174672][ T6282] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.184077][ T6282] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   85.223485][ T6282] hsr_slave_0: entered promiscuous mode
[   85.225781][ T6282] hsr_slave_1: entered promiscuous mode
[   85.793155][ T6282] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   85.800957][ T6282] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   85.807762][ T6282] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   85.814501][ T6282] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   85.883640][ T6282] 8021q: adding VLAN 0 to HW filter on device bond0
[   85.895673][ T6282] 8021q: adding VLAN 0 to HW filter on device team0
[   85.904292][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.907297][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   85.915159][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.918051][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[   86.064655][ T6282] 8021q: adding VLAN 0 to HW filter on device batadv0
[   86.088652][ T6282] veth0_vlan: entered promiscuous mode
[   86.093766][ T6282] veth1_vlan: entered promiscuous mode
[   86.111253][ T6282] veth0_macvtap: entered promiscuous mode
[   86.117039][ T6282] veth1_macvtap: entered promiscuous mode
[   86.133109][ T6282] batman_adv: batadv0: Interface activated: batadv_slave_0
[   86.142623][ T6282] batman_adv: batadv0: Interface activated: batadv_slave_1
[   86.149198][ T6282] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   86.152808][ T6282] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   86.156386][ T6282] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   86.160398][ T6282] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   86.240642][   T63] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   86.244844][   T63] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   86.251466][   T63] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   86.255662][   T63] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   86.259258][   T63] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   86.277769][   T80] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   86.361544][   T80] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   86.441890][   T80] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   86.478728][ T1258] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.481219][ T1258] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   86.495067][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.497477][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   86.508832][   T80] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   87.296315][   T40] audit: type=1401 audit(1751509141.929:118): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
2025/07/03 02:19:02 executed programs: 0
[   88.276932][ T5295] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   88.281046][ T5295] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   88.284881][ T5295] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   88.291623][ T5295] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   88.294649][ T5295] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   88.402706][ T6468] chnl_net:caif_netlink_parms(): no params data found
[   88.490376][ T6468] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.493407][ T6468] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.496583][ T6468] bridge_slave_0: entered allmulticast mode
[   88.500544][ T6468] bridge_slave_0: entered promiscuous mode
[   88.504975][ T6468] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.507271][ T6468] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.510429][ T6468] bridge_slave_1: entered allmulticast mode
[   88.513549][ T6468] bridge_slave_1: entered promiscuous mode
[   88.569294][ T6468] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   88.573905][ T6468] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   88.610249][ T6468] team0: Port device team_slave_0 added
[   88.613892][ T6468] team0: Port device team_slave_1 added
[   88.643278][ T6468] batman_adv: batadv0: Adding interface: batadv_slave_0
[   88.645496][ T6468] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   88.655440][ T6468] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   88.659635][ T6468] batman_adv: batadv0: Adding interface: batadv_slave_1
[   88.661711][ T6468] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   88.670127][ T6468] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   88.707060][ T6468] hsr_slave_0: entered promiscuous mode
[   88.709848][ T6468] hsr_slave_1: entered promiscuous mode
[   88.711965][ T6468] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   88.714310][ T6468] Cannot create hsr debugfs directory
[   88.986714][   T80] bridge_slave_1: left allmulticast mode
[   88.989553][   T80] bridge_slave_1: left promiscuous mode
[   88.992074][   T80] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.997584][   T80] bridge_slave_0: left allmulticast mode
[   89.000580][   T80] bridge_slave_0: left promiscuous mode
[   89.003089][   T80] bridge0: port 1(bridge_slave_0) entered disabled state
[   89.242631][   T80] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   89.249277][   T80] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   89.254115][   T80] bond0 (unregistering): Released all slaves
[   89.392948][   T80] hsr_slave_0: left promiscuous mode
[   89.395248][   T80] hsr_slave_1: left promiscuous mode
[   89.397783][   T80] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   89.400251][   T80] batman_adv: batadv0: Removing interface: batadv_slave_0
[   89.403417][   T80] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   89.406134][   T80] batman_adv: batadv0: Removing interface: batadv_slave_1
[   89.428884][   T80] veth1_macvtap: left promiscuous mode
[   89.431302][   T80] veth0_macvtap: left promiscuous mode
[   89.433762][   T80] veth1_vlan: left promiscuous mode
[   89.436045][   T80] veth0_vlan: left promiscuous mode
[   89.835757][   T80] team0 (unregistering): Port device team_slave_1 removed
[   89.880243][   T80] team0 (unregistering): Port device team_slave_0 removed
[   90.378866][   T63] Bluetooth: hci0: command tx timeout
[   90.609732][ T6468] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   90.615958][ T6468] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   90.625959][ T6468] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   90.632696][ T6468] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   90.684194][ T6468] 8021q: adding VLAN 0 to HW filter on device bond0
[   90.694651][ T6468] 8021q: adding VLAN 0 to HW filter on device team0
[   90.703848][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.706099][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   90.723320][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.726186][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[   91.099955][ T6468] 8021q: adding VLAN 0 to HW filter on device batadv0
[   91.123788][ T6468] veth0_vlan: entered promiscuous mode
[   91.128960][ T6468] veth1_vlan: entered promiscuous mode
[   91.144970][ T6468] veth0_macvtap: entered promiscuous mode
[   91.148890][ T6468] veth1_macvtap: entered promiscuous mode
[   91.174063][ T6468] batman_adv: batadv0: Interface activated: batadv_slave_0
[   91.184116][ T6468] batman_adv: batadv0: Interface activated: batadv_slave_1
[   91.189697][ T6468] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.192450][ T6468] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.195194][ T6468] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.197946][ T6468] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   91.276847][ T1258] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.279983][ T1258] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.301523][ T1258] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.304600][ T1258] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.332315][   T40] audit: type=1400 audit(1751509145.969:119): avc:  denied  { read write } for  pid=6544 comm="syz.0.16" name="raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   91.341810][   T40] audit: type=1400 audit(1751509145.969:120): avc:  denied  { open } for  pid=6544 comm="syz.0.16" path="/dev/raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   91.351108][   T40] audit: type=1400 audit(1751509145.969:121): avc:  denied  { ioctl } for  pid=6544 comm="syz.0.16" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   91.578888][ T5986] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   91.728120][ T5986] usb 5-1: Using ep0 maxpacket: 32
[   91.733260][ T5986] usb 5-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[   91.737338][ T5986] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xD has invalid wMaxPacketSize 0
[   91.741110][ T5986] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xA9, changing to 0x89
[   91.745152][ T5986] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x89 has an invalid bInterval 255, changing to 11
[   91.749743][ T5986] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 59391, setting to 1024
[   91.754305][ T5986] usb 5-1: config 0 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 4
[   91.763265][ T5986] usb 5-1: New USB device found, idVendor=2040, idProduct=5500, bcdDevice=a9.c8
[   91.767026][ T5986] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   91.770332][ T5986] usb 5-1: Product: syz
[   91.772074][ T5986] usb 5-1: Manufacturer: syz
[   91.773819][ T5986] usb 5-1: SerialNumber: syz
[   91.778931][ T5986] usb 5-1: config 0 descriptor??
[   91.783273][ T6545] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   91.995546][ T5986] smsusb:smsusb_probe: board id=8, interface number 0
[   92.000620][ T5986] smsusb:siano_media_device_register: media controller created
[   92.004783][ T5986] ------------[ cut here ]------------
[   92.006491][ T5986] usb 5-1: BOGUS urb xfer, pipe 3 != type 1
[   92.009071][ T5986] WARNING: CPU: 1 PID: 5986 at drivers/usb/core/urb.c:503 usb_submit_urb+0xe4a/0x1790
[   92.012045][ T5986] Modules linked in:
[   92.013346][ T5986] CPU: 1 UID: 0 PID: 5986 Comm: kworker/1:3 Not tainted 6.16.0-rc4-syzkaller-gb4911fb0b060 #0 PREEMPT(full) 
[   92.019584][ T5986] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   92.023727][ T5986] Workqueue: usb_hub_wq hub_event
[   92.025692][ T5986] RIP: 0010:usb_submit_urb+0xe4a/0x1790
[   92.027921][ T5986] Code: 84 67 02 00 00 e8 16 41 86 fa 4c 89 ef e8 ce ba d5 fe 45 89 e0 89 e9 4c 89 f2 48 89 c6 48 c7 c7 c0 1e 73 8c e8 37 01 45 fa 90 <0f> 0b 90 90 e9 ea f8 ff ff e8 e8 40 86 fa 49 81 c4 c8 05 00 00 e9
[   92.035545][ T5986] RSP: 0018:ffffc90003beed70 EFLAGS: 00010282
[   92.037933][ T5986] RAX: 0000000000000000 RBX: ffff888047a45100 RCX: ffffffff817ae278
[   92.041128][ T5986] RDX: ffff88802d4ac880 RSI: ffffffff817ae285 RDI: 0000000000000001
[   92.044184][ T5986] RBP: 0000000000000003 R08: 0000000000000001 R09: 0000000000000000
[   92.047271][ T5986] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000001
[   92.050431][ T5986] R13: ffff8880221520b0 R14: ffff88802538afc0 R15: 00000000c0448280
[   92.053530][ T5986] FS:  0000000000000000(0000) GS:ffff8880d6852000(0000) knlGS:0000000000000000
[   92.056995][ T5986] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   92.059692][ T5986] CR2: 00005556170d42f8 CR3: 0000000024afd000 CR4: 0000000000352ef0
[   92.062744][ T5986] Call Trace:
[   92.064085][ T5986]  <TASK>
[   92.065267][ T5986]  ? __kmalloc_noprof+0x221/0x510
[   92.067245][ T5986]  smsusb_submit_urb+0x288/0x410
[   92.069328][ T5986]  ? usb_init_urb+0x38/0x130
[   92.071107][ T5986]  smsusb_init_device+0x855/0xe00
[   92.072979][ T5986]  ? __pfx_smsusb_init_device+0x10/0x10
[   92.074522][ T5986]  ? __pfx_smsusb_sendrequest+0x10/0x10
[   92.076267][ T5986]  ? usb_clear_halt+0x61/0x160
[   92.078224][ T5986]  smsusb_probe+0x5d3/0x1090
[   92.080029][ T5986]  ? __pfx_smsusb_probe+0x10/0x10
[   92.082002][ T5986]  ? mark_held_locks+0x49/0x80
[   92.083903][ T5986]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   92.086191][ T5986]  ? __pm_runtime_set_status+0x13c/0xa80
[   92.088501][ T5986]  usb_probe_interface+0x300/0x9c0
[   92.090447][ T5986]  ? __pfx_usb_probe_interface+0x10/0x10
[   92.092649][ T5986]  really_probe+0x241/0xa90
[   92.094508][ T5986]  __driver_probe_device+0x1de/0x440
[   92.096592][ T5986]  driver_probe_device+0x4c/0x1b0
[   92.098673][ T5986]  __device_attach_driver+0x1df/0x310
[   92.100748][ T5986]  ? __pfx___device_attach_driver+0x10/0x10
[   92.103054][ T5986]  bus_for_each_drv+0x159/0x1e0
[   92.105009][ T5986]  ? __pfx_bus_for_each_drv+0x10/0x10
[   92.107120][ T5986]  ? lockdep_hardirqs_on+0x7c/0x110
[   92.108853][ T5986]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   92.111096][ T5986]  __device_attach+0x1e4/0x4b0
[   92.113001][ T5986]  ? __pfx___device_attach+0x10/0x10
[   92.115111][ T5986]  ? do_raw_spin_unlock+0x172/0x230
[   92.117158][ T5986]  bus_probe_device+0x17f/0x1c0
[   92.119133][ T5986]  device_add+0x1148/0x1a70
[   92.120910][ T5986]  ? __pfx_device_add+0x10/0x10
[   92.122849][ T5986]  ? usb_cache_string+0xf2/0x150
[   92.124831][ T5986]  usb_set_configuration+0x1187/0x1e20
[   92.126949][ T5986]  ? __pfx_usb_generic_driver_probe+0x10/0x10
[   92.129426][ T5986]  usb_generic_driver_probe+0xb1/0x110
[   92.131521][ T5986]  usb_probe_device+0xec/0x3e0
[   92.133413][ T5986]  ? __pfx_usb_probe_device+0x10/0x10
[   92.135527][ T5986]  really_probe+0x241/0xa90
[   92.137301][ T5986]  __driver_probe_device+0x1de/0x440
[   92.139561][ T5986]  ? usb_driver_applicable+0x1c7/0x220
[   92.141678][ T5986]  driver_probe_device+0x4c/0x1b0
[   92.143666][ T5986]  __device_attach_driver+0x1df/0x310
[   92.145764][ T5986]  ? __pfx___device_attach_driver+0x10/0x10
[   92.147887][ T5986]  bus_for_each_drv+0x159/0x1e0
[   92.149863][ T5986]  ? __pfx_bus_for_each_drv+0x10/0x10
[   92.151934][ T5986]  ? lockdep_hardirqs_on+0x7c/0x110
[   92.153988][ T5986]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   92.156259][ T5986]  __device_attach+0x1e4/0x4b0
[   92.158219][ T5986]  ? __pfx___device_attach+0x10/0x10
[   92.160288][ T5986]  ? do_raw_spin_unlock+0x172/0x230
[   92.162326][ T5986]  bus_probe_device+0x17f/0x1c0
[   92.164293][ T5986]  device_add+0x1148/0x1a70
[   92.166121][ T5986]  ? __pfx_device_add+0x10/0x10
[   92.168114][ T5986]  ? add_device_randomness+0xb7/0xf0
[   92.170141][ T5986]  ? __usb_get_extra_descriptor+0x158/0x1c0
[   92.172455][ T5986]  usb_new_device+0xd07/0x1a20
[   92.174382][ T5986]  ? do_raw_spin_lock+0x12c/0x2b0
[   92.176363][ T5986]  ? __pfx_usb_new_device+0x10/0x10
[   92.178484][ T5986]  ? mark_held_locks+0x49/0x80
[   92.180387][ T5986]  hub_event+0x2eb7/0x4fa0
[   92.182147][ T5986]  ? __pfx_hub_event+0x10/0x10
[   92.184029][ T5986]  ? assoc_array_gc+0x1260/0x15b0
[   92.186022][ T5986]  ? rcu_is_watching+0x12/0xc0
[   92.187916][ T5986]  process_one_work+0x9cf/0x1b70
[   92.189941][ T5986]  ? __pfx_free_obj_work+0x10/0x10
[   92.191911][ T5986]  ? __pfx_process_one_work+0x10/0x10
[   92.194026][ T5986]  ? assign_work+0x1a0/0x250
[   92.195852][ T5986]  worker_thread+0x6c8/0xf10
[   92.197675][ T5986]  ? __kthread_parkme+0x19e/0x250
[   92.199767][ T5986]  ? __pfx_worker_thread+0x10/0x10
[   92.201768][ T5986]  kthread+0x3c2/0x780
[   92.203396][ T5986]  ? __pfx_kthread+0x10/0x10
[   92.205249][ T5986]  ? rcu_is_watching+0x12/0xc0
[   92.207167][ T5986]  ? __pfx_kthread+0x10/0x10
[   92.209097][ T5986]  ret_from_fork+0x5d4/0x6f0
[   92.210911][ T5986]  ? __pfx_kthread+0x10/0x10
[   92.212752][ T5986]  ret_from_fork_asm+0x1a/0x30
[   92.214664][ T5986]  </TASK>
[   92.215929][ T5986] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   92.218756][ T5986] CPU: 1 UID: 0 PID: 5986 Comm: kworker/1:3 Not tainted 6.16.0-rc4-syzkaller-gb4911fb0b060 #0 PREEMPT(full) 
[   92.223147][ T5986] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   92.227292][ T5986] Workqueue: usb_hub_wq hub_event
[   92.229277][ T5986] Call Trace:
[   92.230595][ T5986]  <TASK>
[   92.231787][ T5986]  dump_stack_lvl+0x3d/0x1f0
[   92.233248][ T5986]  panic+0x71c/0x800
[   92.234814][ T5986]  ? __pfx_panic+0x10/0x10
[   92.236592][ T5986]  ? show_trace_log_lvl+0x29b/0x3e0
[   92.238629][ T5986]  ? check_panic_on_warn+0x1f/0xb0
[   92.240663][ T5986]  ? usb_submit_urb+0xe4a/0x1790
[   92.242577][ T5986]  check_panic_on_warn+0xab/0xb0
[   92.244534][ T5986]  __warn+0xf6/0x3c0
[   92.246027][ T5986]  ? __pfx_vprintk_emit+0x10/0x10
[   92.247990][ T5986]  ? usb_submit_urb+0xe4a/0x1790
[   92.249948][ T5986]  report_bug+0x3c3/0x580
[   92.251664][ T5986]  ? usb_submit_urb+0xe4a/0x1790
[   92.253633][ T5986]  handle_bug+0x184/0x210
[   92.255363][ T5986]  exc_invalid_op+0x17/0x50
[   92.257194][ T5986]  asm_exc_invalid_op+0x1a/0x20
[   92.259094][ T5986] RIP: 0010:usb_submit_urb+0xe4a/0x1790
[   92.261263][ T5986] Code: 84 67 02 00 00 e8 16 41 86 fa 4c 89 ef e8 ce ba d5 fe 45 89 e0 89 e9 4c 89 f2 48 89 c6 48 c7 c7 c0 1e 73 8c e8 37 01 45 fa 90 <0f> 0b 90 90 e9 ea f8 ff ff e8 e8 40 86 fa 49 81 c4 c8 05 00 00 e9
[   92.268682][ T5986] RSP: 0018:ffffc90003beed70 EFLAGS: 00010282
[   92.271031][ T5986] RAX: 0000000000000000 RBX: ffff888047a45100 RCX: ffffffff817ae278
[   92.274125][ T5986] RDX: ffff88802d4ac880 RSI: ffffffff817ae285 RDI: 0000000000000001
[   92.277188][ T5986] RBP: 0000000000000003 R08: 0000000000000001 R09: 0000000000000000
[   92.280242][ T5986] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000001
[   92.283294][ T5986] R13: ffff8880221520b0 R14: ffff88802538afc0 R15: 00000000c0448280
[   92.286354][ T5986]  ? __warn_printk+0x198/0x350
[   92.288251][ T5986]  ? __warn_printk+0x1a5/0x350
[   92.290128][ T5986]  ? __kmalloc_noprof+0x221/0x510
[   92.292112][ T5986]  smsusb_submit_urb+0x288/0x410
[   92.294082][ T5986]  ? usb_init_urb+0x38/0x130
[   92.295913][ T5986]  smsusb_init_device+0x855/0xe00
[   92.297883][ T5986]  ? __pfx_smsusb_init_device+0x10/0x10
[   92.300069][ T5986]  ? __pfx_smsusb_sendrequest+0x10/0x10
[   92.302222][ T5986]  ? usb_clear_halt+0x61/0x160
[   92.304097][ T5986]  smsusb_probe+0x5d3/0x1090
[   92.305943][ T5986]  ? __pfx_smsusb_probe+0x10/0x10
[   92.307916][ T5986]  ? mark_held_locks+0x49/0x80
[   92.309806][ T5986]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   92.312083][ T5986]  ? __pm_runtime_set_status+0x13c/0xa80
[   92.314310][ T5986]  usb_probe_interface+0x300/0x9c0
[   92.316318][ T5986]  ? __pfx_usb_probe_interface+0x10/0x10
[   92.318490][ T5986]  really_probe+0x241/0xa90
[   92.320278][ T5986]  __driver_probe_device+0x1de/0x440
[   92.322333][ T5986]  driver_probe_device+0x4c/0x1b0
[   92.324366][ T5986]  __device_attach_driver+0x1df/0x310
[   92.326496][ T5986]  ? __pfx___device_attach_driver+0x10/0x10
[   92.328806][ T5986]  bus_for_each_drv+0x159/0x1e0
[   92.330721][ T5986]  ? __pfx_bus_for_each_drv+0x10/0x10
[   92.332839][ T5986]  ? lockdep_hardirqs_on+0x7c/0x110
[   92.334885][ T5986]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   92.337148][ T5986]  __device_attach+0x1e4/0x4b0
[   92.339030][ T5986]  ? __pfx___device_attach+0x10/0x10
[   92.341116][ T5986]  ? do_raw_spin_unlock+0x172/0x230
[   92.343040][ T5986]  bus_probe_device+0x17f/0x1c0
[   92.344673][ T5986]  device_add+0x1148/0x1a70
[   92.346203][ T5986]  ? __pfx_device_add+0x10/0x10
[   92.347825][ T5986]  ? usb_cache_string+0xf2/0x150
[   92.349382][ T5986]  usb_set_configuration+0x1187/0x1e20
[   92.351073][ T5986]  ? __pfx_usb_generic_driver_probe+0x10/0x10
[   92.352978][ T5986]  usb_generic_driver_probe+0xb1/0x110
[   92.354690][ T5986]  usb_probe_device+0xec/0x3e0
[   92.356216][ T5986]  ? __pfx_usb_probe_device+0x10/0x10
[   92.357872][ T5986]  really_probe+0x241/0xa90
[   92.359282][ T5986]  __driver_probe_device+0x1de/0x440
[   92.360924][ T5986]  ? usb_driver_applicable+0x1c7/0x220
[   92.362603][ T5986]  driver_probe_device+0x4c/0x1b0
[   92.364194][ T5986]  __device_attach_driver+0x1df/0x310
[   92.365877][ T5986]  ? __pfx___device_attach_driver+0x10/0x10
[   92.367711][ T5986]  bus_for_each_drv+0x159/0x1e0
[   92.369227][ T5986]  ? __pfx_bus_for_each_drv+0x10/0x10
[   92.370878][ T5986]  ? lockdep_hardirqs_on+0x7c/0x110
[   92.372487][ T5986]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   92.374336][ T5986]  __device_attach+0x1e4/0x4b0
[   92.375862][ T5986]  ? __pfx___device_attach+0x10/0x10
[   92.377501][ T5986]  ? do_raw_spin_unlock+0x172/0x230
[   92.379108][ T5986]  bus_probe_device+0x17f/0x1c0
[   92.380640][ T5986]  device_add+0x1148/0x1a70
[   92.382073][ T5986]  ? __pfx_device_add+0x10/0x10
[   92.383609][ T5986]  ? add_device_randomness+0xb7/0xf0
[   92.385275][ T5986]  ? __usb_get_extra_descriptor+0x158/0x1c0
[   92.387112][ T5986]  usb_new_device+0xd07/0x1a20
[   92.388623][ T5986]  ? do_raw_spin_lock+0x12c/0x2b0
[   92.390190][ T5986]  ? __pfx_usb_new_device+0x10/0x10
[   92.391815][ T5986]  ? mark_held_locks+0x49/0x80
[   92.393322][ T5986]  hub_event+0x2eb7/0x4fa0
[   92.394745][ T5986]  ? __pfx_hub_event+0x10/0x10
[   92.396247][ T5986]  ? assoc_array_gc+0x1260/0x15b0
[   92.397825][ T5986]  ? rcu_is_watching+0x12/0xc0
[   92.399292][ T5986]  process_one_work+0x9cf/0x1b70
[   92.400804][ T5986]  ? __pfx_free_obj_work+0x10/0x10
[   92.402392][ T5986]  ? __pfx_process_one_work+0x10/0x10
[   92.404089][ T5986]  ? assign_work+0x1a0/0x250
[   92.405533][ T5986]  worker_thread+0x6c8/0xf10
[   92.407005][ T5986]  ? __kthread_parkme+0x19e/0x250
[   92.408531][ T5986]  ? __pfx_worker_thread+0x10/0x10
[   92.410076][ T5986]  kthread+0x3c2/0x780
[   92.411347][ T5986]  ? __pfx_kthread+0x10/0x10
[   92.412798][ T5986]  ? rcu_is_watching+0x12/0xc0
[   92.414306][ T5986]  ? __pfx_kthread+0x10/0x10
[   92.415743][ T5986]  ret_from_fork+0x5d4/0x6f0
[   92.417158][ T5986]  ? __pfx_kthread+0x10/0x10
[   92.418599][ T5986]  ret_from_fork_asm+0x1a/0x30
[   92.420106][ T5986]  </TASK>
[   92.421727][ T5986] Kernel Offset: disabled
[   92.423056][ T5986] Rebooting in 86400 seconds..