Warning: Permanently added '[localhost]:34889' (ED25519) to the list of known hosts.
2025/07/03 01:54:33 ignoring optional flag "sandboxArg"="0"
2025/07/03 01:54:33 parsed 1 programs
[   82.352071][   T40] kauditd_printk_skb: 25 callbacks suppressed
[   82.352083][   T40] audit: type=1400 audit(1751507676.116:115): avc:  denied  { unlink } for  pid=6208 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   83.590328][ T6208] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   85.664543][ T6275] chnl_net:caif_netlink_parms(): no params data found
[   85.744599][ T6275] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.746951][ T6275] bridge0: port 1(bridge_slave_0) entered disabled state
[   85.749799][ T6275] bridge_slave_0: entered allmulticast mode
[   85.752639][ T6275] bridge_slave_0: entered promiscuous mode
[   85.757590][ T6275] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.760256][ T6275] bridge0: port 2(bridge_slave_1) entered disabled state
[   85.763016][ T6275] bridge_slave_1: entered allmulticast mode
[   85.767558][ T6275] bridge_slave_1: entered promiscuous mode
[   85.804531][ T6275] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   85.808998][ T6275] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   85.869837][ T6275] team0: Port device team_slave_0 added
[   85.877713][ T6275] team0: Port device team_slave_1 added
[   85.908733][ T6275] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.911043][ T6275] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.918909][ T6275] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   85.924018][ T6275] batman_adv: batadv0: Adding interface: batadv_slave_1
[   85.926930][ T6275] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.937658][ T6275] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   85.998505][ T6275] hsr_slave_0: entered promiscuous mode
[   86.000828][ T6275] hsr_slave_1: entered promiscuous mode
[   86.472452][ T2297] cfg80211: failed to load regulatory.db
[   86.720850][ T6275] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   86.725488][ T6275] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   86.729754][ T6275] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   86.734696][ T6275] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   86.783770][ T6275] 8021q: adding VLAN 0 to HW filter on device bond0
[   86.794441][ T6275] 8021q: adding VLAN 0 to HW filter on device team0
[   86.799759][   T91] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.801984][   T91] bridge0: port 1(bridge_slave_0) entered forwarding state
[   86.810146][ T1149] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.813042][ T1149] bridge0: port 2(bridge_slave_1) entered forwarding state
[   86.974655][ T6275] 8021q: adding VLAN 0 to HW filter on device batadv0
[   87.004695][ T6275] veth0_vlan: entered promiscuous mode
[   87.012069][ T6275] veth1_vlan: entered promiscuous mode
[   87.034875][ T6275] veth0_macvtap: entered promiscuous mode
[   87.038509][ T6275] veth1_macvtap: entered promiscuous mode
[   87.052410][ T6275] batman_adv: batadv0: Interface activated: batadv_slave_0
[   87.061306][ T6275] batman_adv: batadv0: Interface activated: batadv_slave_1
[   87.067494][ T6275] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   87.075100][ T6275] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   87.078690][ T6275] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   87.082264][ T6275] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   87.162400][ T1143] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   87.211809][   T40] audit: type=1401 audit(1751507680.976:116): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
[   87.237454][ T5294] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   87.243094][ T5294] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   87.245764][ T5294] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   87.252040][ T1143] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   87.252531][ T5294] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   87.258915][ T5294] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   87.313879][ T1143] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   87.385435][ T1143] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   87.768467][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   87.771004][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.787187][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   87.790637][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/07/03 01:54:42 executed programs: 0
[   88.379449][ T5294] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   88.382455][ T5294] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   88.385406][ T5294] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   88.388279][ T5294] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   88.393386][ T5294] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   88.485407][ T6439] chnl_net:caif_netlink_parms(): no params data found
[   88.545693][ T6439] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.548008][ T6439] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.550700][ T6439] bridge_slave_0: entered allmulticast mode
[   88.554305][ T6439] bridge_slave_0: entered promiscuous mode
[   88.561775][ T6439] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.564845][ T6439] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.567858][ T6439] bridge_slave_1: entered allmulticast mode
[   88.573191][ T6439] bridge_slave_1: entered promiscuous mode
[   88.632665][ T6439] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   88.639711][ T6439] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   88.695988][ T6439] team0: Port device team_slave_0 added
[   88.701410][ T6439] team0: Port device team_slave_1 added
[   88.757910][ T6439] batman_adv: batadv0: Adding interface: batadv_slave_0
[   88.760887][ T6439] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   88.772531][ T6439] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   88.783238][ T6439] batman_adv: batadv0: Adding interface: batadv_slave_1
[   88.786138][ T6439] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   88.798248][ T6439] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   88.868044][ T6439] hsr_slave_0: entered promiscuous mode
[   88.871485][ T6439] hsr_slave_1: entered promiscuous mode
[   88.874263][ T6439] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   88.877297][ T6439] Cannot create hsr debugfs directory
[   90.469746][   T63] Bluetooth: hci0: command tx timeout
[   90.692012][ T1143] bridge_slave_1: left allmulticast mode
[   90.694339][ T1143] bridge_slave_1: left promiscuous mode
[   90.697054][ T1143] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.704646][ T1143] bridge_slave_0: left allmulticast mode
[   90.707112][ T1143] bridge_slave_0: left promiscuous mode
[   90.709956][ T1143] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.873513][ T1143] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   90.877848][ T1143] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   90.884708][ T1143] bond0 (unregistering): Released all slaves
[   91.023595][ T1143] hsr_slave_0: left promiscuous mode
[   91.026315][ T1143] hsr_slave_1: left promiscuous mode
[   91.028980][ T1143] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   91.032233][ T1143] batman_adv: batadv0: Removing interface: batadv_slave_0
[   91.035943][ T1143] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   91.038923][ T1143] batman_adv: batadv0: Removing interface: batadv_slave_1
[   91.056402][ T1143] veth1_macvtap: left promiscuous mode
[   91.058363][ T1143] veth0_macvtap: left promiscuous mode
[   91.061664][ T1143] veth1_vlan: left promiscuous mode
[   91.063981][ T1143] veth0_vlan: left promiscuous mode
[   91.439225][ T1143] team0 (unregistering): Port device team_slave_1 removed
[   91.483665][ T1143] team0 (unregistering): Port device team_slave_0 removed
[   92.186553][ T6439] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   92.191374][ T6439] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   92.195547][ T6439] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   92.199541][ T6439] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   92.241079][ T6439] 8021q: adding VLAN 0 to HW filter on device bond0
[   92.250081][ T6439] 8021q: adding VLAN 0 to HW filter on device team0
[   92.255238][   T91] bridge0: port 1(bridge_slave_0) entered blocking state
[   92.258407][   T91] bridge0: port 1(bridge_slave_0) entered forwarding state
[   92.264969][   T91] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.267626][   T91] bridge0: port 2(bridge_slave_1) entered forwarding state
[   92.549198][   T63] Bluetooth: hci0: command tx timeout
[   92.552872][ T6439] 8021q: adding VLAN 0 to HW filter on device batadv0
[   92.576876][ T6439] veth0_vlan: entered promiscuous mode
[   92.581532][ T6439] veth1_vlan: entered promiscuous mode
[   92.600881][ T6439] veth0_macvtap: entered promiscuous mode
[   92.606789][ T6439] veth1_macvtap: entered promiscuous mode
[   92.625425][ T6439] batman_adv: batadv0: Interface activated: batadv_slave_0
[   92.635679][ T6439] batman_adv: batadv0: Interface activated: batadv_slave_1
[   92.644068][ T6439] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   92.647896][ T6439] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   92.651615][ T6439] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   92.654868][ T6439] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   92.744035][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.747161][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.767572][ T1149] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.771696][ T1149] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.800750][   T40] audit: type=1400 audit(1751507686.566:117): avc:  denied  { read write } for  pid=6528 comm="syz.0.15" name="raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   92.811700][   T40] audit: type=1400 audit(1751507686.566:118): avc:  denied  { open } for  pid=6528 comm="syz.0.15" path="/dev/raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   92.819203][   T40] audit: type=1400 audit(1751507686.566:119): avc:  denied  { ioctl } for  pid=6528 comm="syz.0.15" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   93.039276][ T2297] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   93.191129][ T2297] usb 5-1: unable to get BOS descriptor or descriptor too short
[   93.195124][ T2297] usb 5-1: config 131 interface 0 altsetting 67 endpoint 0x3 has invalid maxpacket 512, setting to 64
[   93.198526][ T2297] usb 5-1: config 131 interface 0 has no altsetting 0
[   93.203762][ T2297] usb 5-1: New USB device found, idVendor=2040, idProduct=200a, bcdDevice=27.2a
[   93.207913][ T2297] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   93.211497][ T2297] usb 5-1: Product: syz
[   93.213185][ T2297] usb 5-1: Manufacturer: syz
[   93.215170][ T2297] usb 5-1: SerialNumber: syz
[   93.425717][ T2297] smsusb:smsusb_probe: board id=9, interface number 0
[   93.432721][ T2297] smsusb:siano_media_device_register: media controller created
[   93.436723][ T2297] ------------[ cut here ]------------
[   93.438747][ T2297] usb 5-1: BOGUS urb xfer, pipe 3 != type 1
[   93.441593][ T2297] WARNING: CPU: 3 PID: 2297 at drivers/usb/core/urb.c:503 usb_submit_urb+0xe4a/0x1790
[   93.445169][ T2297] Modules linked in:
[   93.446747][ T2297] CPU: 3 UID: 0 PID: 2297 Comm: kworker/3:2 Not tainted 6.16.0-rc4-syzkaller-gb4911fb0b060 #0 PREEMPT(full) 
[   93.452237][ T2297] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   93.455780][ T2297] Workqueue: usb_hub_wq hub_event
[   93.457695][ T2297] RIP: 0010:usb_submit_urb+0xe4a/0x1790
[   93.460169][ T2297] Code: 84 67 02 00 00 e8 16 41 86 fa 4c 89 ef e8 ce ba d5 fe 45 89 e0 89 e9 4c 89 f2 48 89 c6 48 c7 c7 c0 1e 73 8c e8 37 01 45 fa 90 <0f> 0b 90 90 e9 ea f8 ff ff e8 e8 40 86 fa 49 81 c4 c8 05 00 00 e9
[   93.467521][ T2297] RSP: 0018:ffffc9000d46ed70 EFLAGS: 00010282
[   93.469514][ T2297] RAX: 0000000000000000 RBX: ffff88810a3f1200 RCX: ffffffff817ae278
[   93.471965][ T2297] RDX: ffff88802c9ca440 RSI: ffffffff817ae285 RDI: 0000000000000001
[   93.474893][ T2297] RBP: 0000000000000003 R08: 0000000000000001 R09: 0000000000000000
[   93.478077][ T2297] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000001
[   93.481518][ T2297] R13: ffff88803352c0b0 R14: ffff888051be3d40 R15: 00000000c0428280
[   93.484778][ T2297] FS:  0000000000000000(0000) GS:ffff8880d6a52000(0000) knlGS:0000000000000000
[   93.488101][ T2297] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   93.490234][ T2297] CR2: 00005636716d94e8 CR3: 0000000024fdf000 CR4: 0000000000352ef0
[   93.492662][ T2297] Call Trace:
[   93.494003][ T2297]  <TASK>
[   93.495278][ T2297]  ? __kmalloc_noprof+0x221/0x510
[   93.497323][ T2297]  smsusb_submit_urb+0x288/0x410
[   93.498898][ T2297]  ? usb_init_urb+0x38/0x130
[   93.500479][ T2297]  smsusb_init_device+0x855/0xe00
[   93.502071][ T2297]  ? __pfx_smsusb_init_device+0x10/0x10
[   93.503970][ T2297]  ? __pfx_smsusb_sendrequest+0x10/0x10
[   93.505711][ T2297]  ? usb_clear_halt+0xb5/0x160
[   93.507189][ T2297]  smsusb_probe+0x5d3/0x1090
[   93.509513][ T2297]  ? __pfx_smsusb_probe+0x10/0x10
[   93.511655][ T2297]  ? mark_held_locks+0x49/0x80
[   93.513642][ T2297]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   93.515477][ T2297]  ? __pm_runtime_set_status+0x13c/0xa80
[   93.517280][ T2297]  usb_probe_interface+0x300/0x9c0
[   93.519539][ T2297]  ? __pfx_usb_probe_interface+0x10/0x10
[   93.521872][ T2297]  really_probe+0x241/0xa90
[   93.523669][ T2297]  __driver_probe_device+0x1de/0x440
[   93.525876][ T2297]  driver_probe_device+0x4c/0x1b0
[   93.527880][ T2297]  __device_attach_driver+0x1df/0x310
[   93.529674][ T2297]  ? __pfx___device_attach_driver+0x10/0x10
[   93.531531][ T2297]  bus_for_each_drv+0x159/0x1e0
[   93.533040][ T2297]  ? __pfx_bus_for_each_drv+0x10/0x10
[   93.535003][ T2297]  ? lockdep_hardirqs_on+0x7c/0x110
[   93.537070][ T2297]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   93.539048][ T2297]  __device_attach+0x1e4/0x4b0
[   93.540639][ T2297]  ? __pfx___device_attach+0x10/0x10
[   93.542271][ T2297]  ? do_raw_spin_unlock+0x172/0x230
[   93.544116][ T2297]  bus_probe_device+0x17f/0x1c0
[   93.546069][ T2297]  device_add+0x1148/0x1a70
[   93.547864][ T2297]  ? __pfx_device_add+0x10/0x10
[   93.549480][ T2297]  ? mark_held_locks+0x49/0x80
[   93.551009][ T2297]  usb_set_configuration+0x1187/0x1e20
[   93.552729][ T2297]  ? __pfx_usb_generic_driver_probe+0x10/0x10
[   93.554890][ T2297]  usb_generic_driver_probe+0xb1/0x110
[   93.556636][ T2297]  usb_probe_device+0xec/0x3e0
[   93.558292][ T2297]  ? __pfx_usb_probe_device+0x10/0x10
[   93.560625][ T2297]  really_probe+0x241/0xa90
[   93.562533][ T2297]  __driver_probe_device+0x1de/0x440
[   93.564385][ T2297]  ? usb_driver_applicable+0x1c7/0x220
[   93.566424][ T2297]  driver_probe_device+0x4c/0x1b0
[   93.568098][ T2297]  __device_attach_driver+0x1df/0x310
[   93.570476][ T2297]  ? __pfx___device_attach_driver+0x10/0x10
[   93.572942][ T2297]  bus_for_each_drv+0x159/0x1e0
[   93.574628][ T2297]  ? __pfx_bus_for_each_drv+0x10/0x10
[   93.576888][ T2297]  ? lockdep_hardirqs_on+0x7c/0x110
[   93.578872][ T2297]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   93.580614][ T2297]  __device_attach+0x1e4/0x4b0
[   93.582238][ T2297]  ? __pfx___device_attach+0x10/0x10
[   93.583976][ T2297]  ? do_raw_spin_unlock+0x172/0x230
[   93.586031][ T2297]  bus_probe_device+0x17f/0x1c0
[   93.588112][ T2297]  device_add+0x1148/0x1a70
[   93.589790][ T2297]  ? __pfx_device_add+0x10/0x10
[   93.591394][ T2297]  ? add_device_randomness+0xb7/0xf0
[   93.593021][ T2297]  ? __usb_get_extra_descriptor+0x158/0x1c0
[   93.595214][ T2297]  usb_new_device+0xd07/0x1a20
[   93.596719][ T2297]  ? do_raw_spin_lock+0x12c/0x2b0
[   93.598467][ T2297]  ? __pfx_usb_new_device+0x10/0x10
[   93.600221][ T2297]  ? mark_held_locks+0x49/0x80
[   93.601704][ T2297]  hub_event+0x2eb7/0x4fa0
[   93.603152][ T2297]  ? __pfx_hub_event+0x10/0x10
[   93.605031][ T2297]  ? assoc_array_gc+0x1260/0x15b0
[   93.606566][ T2297]  ? rcu_is_watching+0x12/0xc0
[   93.608041][ T2297]  process_one_work+0x9cf/0x1b70
[   93.609710][ T2297]  ? __pfx_hcd_resume_work+0x10/0x10
[   93.611365][ T2297]  ? __pfx_process_one_work+0x10/0x10
[   93.613047][ T2297]  ? assign_work+0x1a0/0x250
[   93.614969][ T2297]  worker_thread+0x6c8/0xf10
[   93.616475][ T2297]  ? __kthread_parkme+0x19e/0x250
[   93.618064][ T2297]  ? __pfx_worker_thread+0x10/0x10
[   93.619734][ T2297]  kthread+0x3c2/0x780
[   93.621009][ T2297]  ? __pfx_kthread+0x10/0x10
[   93.622452][ T2297]  ? rcu_is_watching+0x12/0xc0
[   93.624289][ T2297]  ? __pfx_kthread+0x10/0x10
[   93.625951][ T2297]  ret_from_fork+0x5d4/0x6f0
[   93.627409][ T2297]  ? __pfx_kthread+0x10/0x10
[   93.628892][ T2297]  ret_from_fork_asm+0x1a/0x30
[   93.630466][ T2297]  </TASK>
[   93.631456][ T2297] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   93.633886][ T2297] CPU: 3 UID: 0 PID: 2297 Comm: kworker/3:2 Not tainted 6.16.0-rc4-syzkaller-gb4911fb0b060 #0 PREEMPT(full) 
[   93.637768][ T2297] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   93.641023][ T2297] Workqueue: usb_hub_wq hub_event
[   93.642558][ T2297] Call Trace:
[   93.643651][ T2297]  <TASK>
[   93.644882][ T2297]  dump_stack_lvl+0x3d/0x1f0
[   93.646482][ T2297]  panic+0x71c/0x800
[   93.647744][ T2297]  ? __pfx_panic+0x10/0x10
[   93.649183][ T2297]  ? show_trace_log_lvl+0x29b/0x3e0
[   93.650840][ T2297]  ? check_panic_on_warn+0x1f/0xb0
[   93.652466][ T2297]  ? usb_submit_urb+0xe4a/0x1790
[   93.654363][ T2297]  check_panic_on_warn+0xab/0xb0
[   93.656243][ T2297]  __warn+0xf6/0x3c0
[   93.657482][ T2297]  ? __pfx_vprintk_emit+0x10/0x10
[   93.659095][ T2297]  ? usb_submit_urb+0xe4a/0x1790
[   93.660654][ T2297]  report_bug+0x3c3/0x580
[   93.661962][ T2297]  ? usb_submit_urb+0xe4a/0x1790
[   93.663461][ T2297]  handle_bug+0x184/0x210
[   93.665099][ T2297]  exc_invalid_op+0x17/0x50
[   93.667021][ T2297]  asm_exc_invalid_op+0x1a/0x20
[   93.669096][ T2297] RIP: 0010:usb_submit_urb+0xe4a/0x1790
[   93.671420][ T2297] Code: 84 67 02 00 00 e8 16 41 86 fa 4c 89 ef e8 ce ba d5 fe 45 89 e0 89 e9 4c 89 f2 48 89 c6 48 c7 c7 c0 1e 73 8c e8 37 01 45 fa 90 <0f> 0b 90 90 e9 ea f8 ff ff e8 e8 40 86 fa 49 81 c4 c8 05 00 00 e9
[   93.678781][ T2297] RSP: 0018:ffffc9000d46ed70 EFLAGS: 00010282
[   93.681343][ T2297] RAX: 0000000000000000 RBX: ffff88810a3f1200 RCX: ffffffff817ae278
[   93.684372][ T2297] RDX: ffff88802c9ca440 RSI: ffffffff817ae285 RDI: 0000000000000001
[   93.687019][ T2297] RBP: 0000000000000003 R08: 0000000000000001 R09: 0000000000000000
[   93.689504][ T2297] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000001
[   93.691936][ T2297] R13: ffff88803352c0b0 R14: ffff888051be3d40 R15: 00000000c0428280
[   93.694411][ T2297]  ? __warn_printk+0x198/0x350
[   93.695931][ T2297]  ? __warn_printk+0x1a5/0x350
[   93.697925][ T2297]  ? __kmalloc_noprof+0x221/0x510
[   93.700057][ T2297]  smsusb_submit_urb+0x288/0x410
[   93.702097][ T2297]  ? usb_init_urb+0x38/0x130
[   93.703751][ T2297]  smsusb_init_device+0x855/0xe00
[   93.705264][ T2297]  ? __pfx_smsusb_init_device+0x10/0x10
[   93.707171][ T2297]  ? __pfx_smsusb_sendrequest+0x10/0x10
[   93.709420][ T2297]  ? usb_clear_halt+0xb5/0x160
[   93.711345][ T2297]  smsusb_probe+0x5d3/0x1090
[   93.713186][ T2297]  ? __pfx_smsusb_probe+0x10/0x10
[   93.714739][ T2297]  ? mark_held_locks+0x49/0x80
[   93.716213][ T2297]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   93.718525][ T2297]  ? __pm_runtime_set_status+0x13c/0xa80
[   93.720801][ T2297]  usb_probe_interface+0x300/0x9c0
[   93.722847][ T2297]  ? __pfx_usb_probe_interface+0x10/0x10
[   93.724642][ T2297]  really_probe+0x241/0xa90
[   93.726063][ T2297]  __driver_probe_device+0x1de/0x440
[   93.728161][ T2297]  driver_probe_device+0x4c/0x1b0
[   93.730274][ T2297]  __device_attach_driver+0x1df/0x310
[   93.732533][ T2297]  ? __pfx___device_attach_driver+0x10/0x10
[   93.734509][ T2297]  bus_for_each_drv+0x159/0x1e0
[   93.736052][ T2297]  ? __pfx_bus_for_each_drv+0x10/0x10
[   93.738120][ T2297]  ? lockdep_hardirqs_on+0x7c/0x110
[   93.740279][ T2297]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   93.742773][ T2297]  __device_attach+0x1e4/0x4b0
[   93.744338][ T2297]  ? __pfx___device_attach+0x10/0x10
[   93.746098][ T2297]  ? do_raw_spin_unlock+0x172/0x230
[   93.748326][ T2297]  bus_probe_device+0x17f/0x1c0
[   93.750372][ T2297]  device_add+0x1148/0x1a70
[   93.752303][ T2297]  ? __pfx_device_add+0x10/0x10
[   93.754343][ T2297]  ? mark_held_locks+0x49/0x80
[   93.756375][ T2297]  usb_set_configuration+0x1187/0x1e20
[   93.758668][ T2297]  ? __pfx_usb_generic_driver_probe+0x10/0x10
[   93.761210][ T2297]  usb_generic_driver_probe+0xb1/0x110
[   93.763445][ T2297]  usb_probe_device+0xec/0x3e0
[   93.764934][ T2297]  ? __pfx_usb_probe_device+0x10/0x10
[   93.766859][ T2297]  really_probe+0x241/0xa90
[   93.768816][ T2297]  __driver_probe_device+0x1de/0x440
[   93.771019][ T2297]  ? usb_driver_applicable+0x1c7/0x220
[   93.773218][ T2297]  driver_probe_device+0x4c/0x1b0
[   93.774872][ T2297]  __device_attach_driver+0x1df/0x310
[   93.777110][ T2297]  ? __pfx___device_attach_driver+0x10/0x10
[   93.779610][ T2297]  bus_for_each_drv+0x159/0x1e0
[   93.781641][ T2297]  ? __pfx_bus_for_each_drv+0x10/0x10
[   93.783690][ T2297]  ? lockdep_hardirqs_on+0x7c/0x110
[   93.785309][ T2297]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   93.787479][ T2297]  __device_attach+0x1e4/0x4b0
[   93.789550][ T2297]  ? __pfx___device_attach+0x10/0x10
[   93.791778][ T2297]  ? do_raw_spin_unlock+0x172/0x230
[   93.793937][ T2297]  bus_probe_device+0x17f/0x1c0
[   93.795905][ T2297]  device_add+0x1148/0x1a70
[   93.797706][ T2297]  ? __pfx_device_add+0x10/0x10
[   93.799807][ T2297]  ? add_device_randomness+0xb7/0xf0
[   93.802041][ T2297]  ? __usb_get_extra_descriptor+0x158/0x1c0
[   93.804171][ T2297]  usb_new_device+0xd07/0x1a20
[   93.805669][ T2297]  ? do_raw_spin_lock+0x12c/0x2b0
[   93.807542][ T2297]  ? __pfx_usb_new_device+0x10/0x10
[   93.809773][ T2297]  ? mark_held_locks+0x49/0x80
[   93.811806][ T2297]  hub_event+0x2eb7/0x4fa0
[   93.813520][ T2297]  ? __pfx_hub_event+0x10/0x10
[   93.815010][ T2297]  ? assoc_array_gc+0x1260/0x15b0
[   93.816660][ T2297]  ? rcu_is_watching+0x12/0xc0
[   93.818183][ T2297]  process_one_work+0x9cf/0x1b70
[   93.819747][ T2297]  ? __pfx_hcd_resume_work+0x10/0x10
[   93.821384][ T2297]  ? __pfx_process_one_work+0x10/0x10
[   93.823110][ T2297]  ? assign_work+0x1a0/0x250
[   93.825081][ T2297]  worker_thread+0x6c8/0xf10
[   93.826979][ T2297]  ? __kthread_parkme+0x19e/0x250
[   93.828610][ T2297]  ? __pfx_worker_thread+0x10/0x10
[   93.830199][ T2297]  kthread+0x3c2/0x780
[   93.831502][ T2297]  ? __pfx_kthread+0x10/0x10
[   93.832978][ T2297]  ? rcu_is_watching+0x12/0xc0
[   93.834979][ T2297]  ? __pfx_kthread+0x10/0x10
[   93.836921][ T2297]  ret_from_fork+0x5d4/0x6f0
[   93.838400][ T2297]  ? __pfx_kthread+0x10/0x10
[   93.839852][ T2297]  ret_from_fork_asm+0x1a/0x30
[   93.841345][ T2297]  </TASK>
[   93.843148][ T2297] Kernel Offset: disabled
[   93.844993][ T2297] Rebooting in 86400 seconds..