program: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff) r1 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4) r2 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_tx_ring(r2, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c) mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x11, r2, 0x0) sendmmsg$inet(r1, &(0x7f0000003240)=[{{&(0x7f0000000100)={0x2, 0x4e23, @empty}, 0x10, &(0x7f00000016c0)=[{&(0x7f0000001540)="94", 0xffe3}], 0x1}}], 0x1, 0x4000800) r3 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(r3, 0x0, 0x480a4) ioctl$VHOST_VDPA_GET_VRING_GROUP(r3, 0xc008af7b, &(0x7f00000002c0)={0x0, 0xedf}) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000001c0)={&(0x7f00000029c0)={0x548, r0, 0x0, 0x70bd2c, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_FRAME={0x4df, 0x33, @probe_request={{{0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1}, {0x7}, @device_a, @device_b, @initial, {0x6, 0x9}}, @void, @val={0x1, 0x0, [{0x1b}, {0x12, 0x1}, {0x0, 0x1}, {0x60}, {0x2d, 0x1}, {0x5, 0x1}, {0x2, 0x1}]}, @val={0x3, 0x1, 0xb5}, @val={0x2d, 0xfffffd66, {0x1, 0x2, 0x0, 0x0, {0x4, 0x8, 0x0, 0x4, 0x0, 0x0, 0x1, 0x2}, 0x6, 0x0, 0x1}}, @void, [{0xdd, 0x50, "7b8df59b88ae15cf721b3bec90e66043980543adaeb3e9a4b08c7843a03debce0b0cb2794a89d17adb09aa12527cfe8fe6c325076b1720fd8b60f3ac67d39132691d65c18cd1f57ff4d9da7affb67558"}, {0xdd, 0x49, "b85dbf4d36c3cf95cbf5625f9a28b2dd01c172c678fd4696798142fd407eeaffa899e30bf63d8bd72b4435130d94c0de7e06f40a3924ac66d6d920c72f19e5de3248c50bf23267abb4"}, {0xdd, 0xc9, "151569315c436fed7500c6b0c5b374cc4c2d417d8b5d589728d0d931664cbdd28f9e3cf20352a481a5a32a580ec567320c3dbe2849218675c0d55777d48e764b639c6b9de240250a41e6d121674b6ea5ec5560bc2174497271a837c814d4f2e570d97cf87d192c9d43122468fd1ee653f701f56ae43fd4b70d29e13704b7698f7d4a83deceddb1257f3b06ff05078ce71bb3118cdbc27a09c41a48bc022a04ac75a747b5e173a9bff7a91ae3c6a571a514e91ebb2d6f0ff04370bcd4659889adb6b545a1957d93c8f4"}, {0xdd, 0xc2, "431ca96191b92ed5dee1613773f87da10bfe45651034366292c8ab594b8b788cc49789ddd1c5f0748d0322717f8a1fb1cfc47d4d82302b4d4b61d1bf59b1e5aa0e08e58b199b5da6a6082b1e919013bd6988781bbac660efa6a3c541638791cf31c73dfd1fb040789aa556afca4cb03f5cda2c1e956be8e084e6cd984e1d34bf44abcdd68558a7fc3df07c9b2014e8c6648d1232cd0f7bfedba05f8b5d7891d6075309028e1363cd596abb504aa9061aa00ec400620f3a81c6158f5b44017a40d4d7"}, {0xdd, 0xdc, "475aeb8628864d4e326f5395b6dec8deae58552f1ba8c46fe21dfdd1069451b447c1daa12ec54090fddd006b9e54f221a1dfb943db85de635eaba8654cf8cd45bbf8f250486738788069b4298107786d9e6ca81f68b2dc137ca290f488fcd44cd35a3dceaae8a9e4ac7f25f49728bc47ef2bb2015ef9a16558659ab0863ad6b78d6ee3aa0bae08822947b1a070677fb4cc785f6718cfa41bd8268d3eac85b899a5c508888aaebb7eef5ebd1467da4a91e08fbe7f8eaf8fd476b387187da25b377b491b294af1c0cbb5c8e92dc0bde2ecee8a0440acddf29ce7c5ae79"}, {0xdd, 0x81, "600f8d075b3338885b37a9f823c52599a1cb056720fdec60f3740115df0741d13d203884a24d8b4f309c784ecf4a23b5722fe43c2cac32c8332053d79f045bcb1d3f6a79c9798d1a6da6aa32d1c4ec042a31403ef4cdcb0853b465da1e51f24cf3160bc3f9179392084596af60cedb7618c89ac7cf016ee6737f806ebcb569222b"}, {0xdd, 0x82, "6a9a7177f65b38a5bbf834727b94893bb07869e052ff8f45ca653c3ca566aa5822104f3c12222cca333a33f18bfc2e03613ed3a3f9f4b18acd4ad1f839e3a15741c950429c997a318c841195edcf0758d034e4fa47f67c22549e44ac1082551cc2a1ff2e1af428824b96ca248c62c9957cfa094b71b160d6f1124bd77e4995300d6b"}, {0xdd, 0x8f, "b0a42e36f1f41525c0fe34aa20749c0fed07dbc060c2454ae244a00c77adb6ada4b45def0b25d73c2601bd6b70e6d96d655bbdfa9c20a80e1a2c212ca94852dc1ce6b765b23729db993d451a2904eb92ff7db286dbc67a188eff99a9b01e16b15acf06e8e352555b2e97d2d98873d89482866a87b2a49fbd72b420ef554ebc18e3d315259b7e47d183d35b63135fe1"}]}}, @NL80211_ATTR_FRAME={0x1e, 0x33, @disassoc={{{0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x8}, @broadcast, @device_a, @random="c8764c2362a9", {0xb, 0xb}}, 0x15, @void}}, @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @chandef_params=[@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x0, 0x118, 0xd}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x26a}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0xf1}]]}, 0x548}, 0x1, 0x0, 0x0, 0x20000000}, 0x1) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000540)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_KEY(r5, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000240)={0x30, r0, 0x801, 0x0, 0xfffffffd, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "16cfa1aee1cd221d81dd6cba73"}]}, 0x30}, 0x1, 0x0, 0x0, 0x8000}, 0x0) r7 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="120100007516b7108c0d0e008f8e0018030109021b0001000000000904080001030000000905", @ANYBLOB="8fcf"], 0x0) r8 = syz_open_dev$tty1(0xc, 0x4, 0x1) r9 = dup(r8) ioctl$SNDCTL_TMR_START(r9, 0x5402) syz_usb_control_io(r7, 0x0, 0x0) write$UHID_INPUT(r9, &(0x7f0000001980)={0x9, {"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", 0x1000}}, 0x1006) recvmmsg(0xffffffffffffffff, &(0x7f0000000600)=[{{&(0x7f0000000000)=@isdn, 0x80, &(0x7f0000000500), 0x0, &(0x7f0000000580)=""/21, 0x15}, 0x4}], 0x1, 0x40000002, &(0x7f0000000640)={0x0, 0x3938700}) kexec_load(0x0, 0x1, &(0x7f0000000480)=[{0x0, 0x0, 0x0, 0x1000000}], 0x0) r10 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDGKBLED(r10, 0x4b44, &(0x7f0000000000)) r11 = socket$nl_sock_diag(0x10, 0x3, 0x4) sendmsg$SOCK_DIAG_BY_FAMILY(r11, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)={0x18, 0x14, 0xc01, 0x0, 0x0, {0x1e}, [@INET_DIAG_REQ_BYTECODE={0x4}]}, 0x18}}, 0x0) r12 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/kexec_crash_size', 0x82, 0x0) write$P9_RRENAMEAT(r12, &(0x7f0000000180)={0x30}, 0x7) syz_mount_image$ext4(&(0x7f0000000100)='ext3\x00', &(0x7f0000000080)='./file1\x00', 0x19ef0, &(0x7f0000000140), 0x6, 0x644, &(0x7f00000006c0)="$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") [ 85.064180][ T4677] Bluetooth: hci0: command tx timeout [ 85.389316][ T5314] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 85.539873][ T5314] usb 5-1: Using ep0 maxpacket: 16 [ 85.544740][ T5314] usb 5-1: config 0 has an invalid interface number: 8 but max is 0 [ 85.548133][ T5314] usb 5-1: config 0 has no interface number 0 [ 85.554311][ T5314] usb 5-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 85.558370][ T5314] usb 5-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 85.562310][ T5314] usb 5-1: Product: syz [ 85.564213][ T5314] usb 5-1: SerialNumber: syz [ 85.578822][ T5314] usb 5-1: config 0 descriptor?? [ 85.587263][ T5314] cm109 5-1:0.8: invalid payload size 772, expected 4 [ 85.600222][ T5314] input: CM109 USB driver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.8/input/input5 [ 86.130048][ T5339] loop0: detected capacity change from 0 to 1024 [ 86.175250][ T5339] ======================================================= [ 86.175250][ T5339] WARNING: The mand mount option has been deprecated and [ 86.175250][ T5339] and is ignored by this kernel. Remove the mand [ 86.175250][ T5339] option from the mount to silence this warning. [ 86.175250][ T5339] ======================================================= [ 86.344959][ C0] cm109 5-1:0.8: cm109_urb_irq_callback: urb status -71 [ 86.348011][ C0] ------------[ cut here ]------------ [ 86.350516][ C0] URB ffff888035d00500 submitted while active [ 86.353154][ C0] WARNING: drivers/usb/core/urb.c:380 at usb_submit_urb+0x7b/0x18d0, CPU#0: syz.0.0/5337 [ 86.357430][ C0] Modules linked in: [ 86.359232][ C0] CPU: 0 UID: 0 PID: 5337 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 86.363038][ C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 86.367698][ C0] RIP: 0010:usb_submit_urb+0x7e/0x18d0 [ 86.370195][ C0] Code: 89 f0 48 c1 e8 03 42 80 3c 38 00 74 08 4c 89 f7 e8 17 aa 28 fb 49 83 3e 00 74 40 e8 6c ff c0 fa 48 8d 3d b5 02 8f 08 48 89 de <67> 48 0f b9 3a b8 f0 ff ff ff eb 11 e8 51 ff c0 fa eb 05 e8 4a ff [ 86.378723][ C0] RSP: 0018:ffffc90000007978 EFLAGS: 00010046 [ 86.381414][ C0] RAX: ffffffff870007f4 RBX: ffff888035d00500 RCX: ffff888000ae4980 [ 86.384823][ C0] RDX: 0000000000000100 RSI: ffff888035d00500 RDI: ffffffff8f8f0ab0 [ 86.388289][ C0] RBP: 000000000000000f R08: 0000000000000003 R09: 0000000000000004 [ 86.391677][ C0] R10: dffffc0000000000 R11: fffff52000000f30 R12: 0000000000000820 [ 86.395130][ C0] R13: ffff888041520830 R14: ffff888035d00508 R15: dffffc0000000000 [ 86.398669][ C0] FS: 000055556ef53500(0000) GS:ffff88808d414000(0000) knlGS:0000000000000000 [ 86.402571][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 86.405325][ C0] CR2: 000055f71986dd30 CR3: 000000001f912000 CR4: 0000000000352ef0 [ 86.408680][ C0] Call Trace: [ 86.410214][ C0] [ 86.411514][ C0] ? _raw_spin_unlock_irqrestore+0x4c/0x80 [ 86.414065][ C0] ? ___ratelimit+0x5a0/0x900 [ 86.416062][ C0] cm109_urb_irq_callback+0x709/0xcd0 [ 86.418403][ C0] __usb_hcd_giveback_urb+0x376/0x540 [ 86.420697][ C0] dummy_timer+0x85f/0x45b0 [ 86.422689][ C0] ? __lock_acquire+0x6b6/0x2cf0 [ 86.424960][ C0] ? do_raw_spin_lock+0x121/0x290 [ 86.427234][ C0] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 86.429584][ C0] ? __pfx_dummy_timer+0x10/0x10 [ 86.431871][ C0] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 86.434156][ C0] ? __pfx_dummy_timer+0x10/0x10 [ 86.436280][ C0] ? __pfx_dummy_timer+0x10/0x10 [ 86.438354][ C0] __hrtimer_run_queues+0x51c/0xc30 [ 86.440450][ C0] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 86.443055][ C0] hrtimer_run_softirq+0x187/0x2b0 [ 86.445353][ C0] handle_softirqs+0x22b/0x7c0 [ 86.447457][ C0] ? __irq_exit_rcu+0x60/0x150 [ 86.449621][ C0] __irq_exit_rcu+0x60/0x150 [ 86.451737][ C0] irq_exit_rcu+0x9/0x30 [ 86.453626][ C0] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 86.456070][ C0] [ 86.457360][ C0] [ 86.458763][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 86.461420][ C0] RIP: 0010:_raw_spin_unlock_irqrestore+0x47/0x80 [ 86.464195][ C0] Code: f7 e8 cd 5a 40 f6 f7 c3 00 02 00 00 74 05 e8 c0 96 6a f6 9c 58 a9 00 02 00 00 75 27 f7 c3 00 02 00 00 74 01 fb bf 01 00 00 00 04 75 32 f6 65 8b 05 0d 88 22 07 85 c0 74 18 5b 41 5e c3 cc cc [ 86.472720][ C0] RSP: 0018:ffffc9000b507a68 EFLAGS: 00000206 [ 86.475407][ C0] RAX: 0000000000000006 RBX: 0000000000000202 RCX: 0000000000000001 [ 86.478810][ C0] RDX: 0000000000000006 RSI: ffffffff8d798759 RDI: 0000000000000001 [ 86.482316][ C0] RBP: ffffc9000b507b48 R08: ffffffff8f824677 R09: 1ffffffff1f048ce [ 86.485806][ C0] R10: dffffc0000000000 R11: fffffbfff1f048cf R12: ffff888000e31318 [ 86.489204][ C0] R13: ffff888000e31300 R14: ffffffff8ebd7ea0 R15: 0000000000000001 [ 86.492677][ C0] usb_hcd_poll_rh_status+0x406/0x620 [ 86.495065][ C0] ? __pfx_usb_hcd_poll_rh_status+0x10/0x10 [ 86.497763][ C0] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 86.500725][ C0] dummy_pullup+0x19b/0x200 [ 86.502891][ C0] ? __pfx_dummy_pullup+0x10/0x10 [ 86.505108][ C0] usb_gadget_disconnect_locked+0x143/0x490 [ 86.507803][ C0] gadget_unbind_driver+0xc7/0x460 [ 86.510217][ C0] ? __pfx_gadget_unbind_driver+0x10/0x10 [ 86.512777][ C0] device_release_driver_internal+0x46f/0x800 [ 86.515515][ C0] driver_detach+0x1f3/0x2d0 [ 86.517355][ C0] bus_remove_driver+0x226/0x320 [ 86.519398][ C0] usb_gadget_unregister_driver+0x4e/0x70 [ 86.521559][ C0] raw_release+0xd7/0x260 [ 86.523580][ C0] ? __pfx_raw_release+0x10/0x10 [ 86.525879][ C0] __fput+0x44c/0xa70 [ 86.527694][ C0] task_work_run+0x1d4/0x260 [ 86.529734][ C0] ? __pfx_task_work_run+0x10/0x10 [ 86.532047][ C0] exit_to_user_mode_loop+0xef/0x4e0 [ 86.534333][ C0] ? rcu_is_watching+0x15/0xb0 [ 86.536323][ C0] do_syscall_64+0x2c1/0xf80 [ 86.538098][ C0] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 86.540725][ C0] ? clear_bhb_loop+0x60/0xb0 [ 86.542775][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 86.545241][ C0] RIP: 0033:0x7fb85c78f7c9 [ 86.547373][ C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 86.555520][ C0] RSP: 002b:00007ffddffc8478 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 86.559232][ C0] RAX: 0000000000000000 RBX: 00007fb85c9e7da0 RCX: 00007fb85c78f7c9 [ 86.562633][ C0] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003 [ 86.566199][ C0] RBP: 00007fb85c9e7da0 R08: 000000000001da24 R09: 0000001edffc876f [ 86.569724][ C0] R10: 0000000000de23a8 R11: 0000000000000246 R12: 0000000000015c59 [ 86.573228][ C0] R13: 00007fb85c9e6090 R14: ffffffffffffffff R15: 00007ffddffc8590 [ 86.576850][ C0] [ 86.578237][ C0] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 86.581464][ C0] CPU: 0 UID: 0 PID: 5337 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 86.585510][ C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 86.590147][ C0] Call Trace: [ 86.591651][ C0] [ 86.592967][ C0] vpanic+0x1e0/0x670 [ 86.594807][ C0] panic+0xb9/0xc0 [ 86.596524][ C0] ? __pfx_panic+0x10/0x10 [ 86.598553][ C0] __warn+0x317/0x4b0 [ 86.600308][ C0] ? usb_submit_urb+0x7b/0x18d0 [ 86.602465][ C0] ? usb_submit_urb+0x7b/0x18d0 [ 86.604661][ C0] __report_bug+0x288/0x500 [ 86.606684][ C0] ? __pfx_dev_vprintk_emit+0x10/0x10 [ 86.609098][ C0] ? usb_submit_urb+0x7b/0x18d0 [ 86.611323][ C0] ? __pfx___report_bug+0x10/0x10 [ 86.613633][ C0] ? mark_lock+0x180/0x190 [ 86.615778][ C0] ? dev_printk_emit+0xe0/0x130 [ 86.617992][ C0] ? __lock_acquire+0x6b6/0x2cf0 [ 86.620366][ C0] report_bug_entry+0x19a/0x290 [ 86.622638][ C0] ? usb_submit_urb+0x7e/0x18d0 [ 86.624877][ C0] ? usb_submit_urb+0x83/0x18d0 [ 86.626972][ C0] handle_bug+0xca/0x200 [ 86.628877][ C0] exc_invalid_op+0x1a/0x50 [ 86.630908][ C0] asm_exc_invalid_op+0x1a/0x20 [ 86.633103][ C0] RIP: 0010:usb_submit_urb+0x7e/0x18d0 [ 86.635429][ C0] Code: 89 f0 48 c1 e8 03 42 80 3c 38 00 74 08 4c 89 f7 e8 17 aa 28 fb 49 83 3e 00 74 40 e8 6c ff c0 fa 48 8d 3d b5 02 8f 08 48 89 de <67> 48 0f b9 3a b8 f0 ff ff ff eb 11 e8 51 ff c0 fa eb 05 e8 4a ff [ 86.644135][ C0] RSP: 0018:ffffc90000007978 EFLAGS: 00010046 [ 86.647078][ C0] RAX: ffffffff870007f4 RBX: ffff888035d00500 RCX: ffff888000ae4980 [ 86.650706][ C0] RDX: 0000000000000100 RSI: ffff888035d00500 RDI: ffffffff8f8f0ab0 [ 86.654314][ C0] RBP: 000000000000000f R08: 0000000000000003 R09: 0000000000000004 [ 86.658530][ C0] R10: dffffc0000000000 R11: fffff52000000f30 R12: 0000000000000820 [ 86.662267][ C0] R13: ffff888041520830 R14: ffff888035d00508 R15: dffffc0000000000 [ 86.665772][ C0] ? usb_submit_urb+0x74/0x18d0 [ 86.667978][ C0] ? usb_submit_urb+0x74/0x18d0 [ 86.670036][ C0] ? _raw_spin_unlock_irqrestore+0x4c/0x80 [ 86.673108][ C0] ? ___ratelimit+0x5a0/0x900 [ 86.675271][ C0] cm109_urb_irq_callback+0x709/0xcd0 [ 86.677650][ C0] __usb_hcd_giveback_urb+0x376/0x540 [ 86.680033][ C0] dummy_timer+0x85f/0x45b0 [ 86.682068][ C0] ? __lock_acquire+0x6b6/0x2cf0 [ 86.684101][ C0] ? do_raw_spin_lock+0x121/0x290 [ 86.686285][ C0] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 86.688541][ C0] ? __pfx_dummy_timer+0x10/0x10 [ 86.690818][ C0] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 86.693220][ C0] ? __pfx_dummy_timer+0x10/0x10 [ 86.695434][ C0] ? __pfx_dummy_timer+0x10/0x10 [ 86.697761][ C0] __hrtimer_run_queues+0x51c/0xc30 [ 86.700392][ C0] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 86.702992][ C0] hrtimer_run_softirq+0x187/0x2b0 [ 86.705198][ C0] handle_softirqs+0x22b/0x7c0 [ 86.707646][ C0] ? __irq_exit_rcu+0x60/0x150 [ 86.709698][ C0] __irq_exit_rcu+0x60/0x150 [ 86.711761][ C0] irq_exit_rcu+0x9/0x30 [ 86.713664][ C0] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 86.716316][ C0] [ 86.717718][ C0] [ 86.719042][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 86.721495][ C0] RIP: 0010:_raw_spin_unlock_irqrestore+0x47/0x80 [ 86.724100][ C0] Code: f7 e8 cd 5a 40 f6 f7 c3 00 02 00 00 74 05 e8 c0 96 6a f6 9c 58 a9 00 02 00 00 75 27 f7 c3 00 02 00 00 74 01 fb bf 01 00 00 00 04 75 32 f6 65 8b 05 0d 88 22 07 85 c0 74 18 5b 41 5e c3 cc cc [ 86.732616][ C0] RSP: 0018:ffffc9000b507a68 EFLAGS: 00000206 [ 86.735392][ C0] RAX: 0000000000000006 RBX: 0000000000000202 RCX: 0000000000000001 [ 86.738852][ C0] RDX: 0000000000000006 RSI: ffffffff8d798759 RDI: 0000000000000001 [ 86.742447][ C0] RBP: ffffc9000b507b48 R08: ffffffff8f824677 R09: 1ffffffff1f048ce [ 86.745784][ C0] R10: dffffc0000000000 R11: fffffbfff1f048cf R12: ffff888000e31318 [ 86.749145][ C0] R13: ffff888000e31300 R14: ffffffff8ebd7ea0 R15: 0000000000000001 [ 86.752826][ C0] usb_hcd_poll_rh_status+0x406/0x620 [ 86.755279][ C0] ? __pfx_usb_hcd_poll_rh_status+0x10/0x10 [ 86.757993][ C0] ? _raw_spin_unlock_irqrestore+0x30/0x80 [ 86.760640][ C0] dummy_pullup+0x19b/0x200 [ 86.763219][ C0] ? __pfx_dummy_pullup+0x10/0x10 [ 86.765858][ C0] usb_gadget_disconnect_locked+0x143/0x490 [ 86.768807][ C0] gadget_unbind_driver+0xc7/0x460 [ 86.771525][ C0] ? __pfx_gadget_unbind_driver+0x10/0x10 [ 86.774650][ C0] device_release_driver_internal+0x46f/0x800 [ 86.777574][ C0] driver_detach+0x1f3/0x2d0 [ 86.779599][ C0] bus_remove_driver+0x226/0x320 [ 86.781700][ C0] usb_gadget_unregister_driver+0x4e/0x70 [ 86.784700][ C0] raw_release+0xd7/0x260 [ 86.787034][ C0] ? __pfx_raw_release+0x10/0x10 [ 86.789427][ C0] __fput+0x44c/0xa70 [ 86.791357][ C0] task_work_run+0x1d4/0x260 [ 86.793486][ C0] ? __pfx_task_work_run+0x10/0x10 [ 86.795791][ C0] exit_to_user_mode_loop+0xef/0x4e0 [ 86.798190][ C0] ? rcu_is_watching+0x15/0xb0 [ 86.800479][ C0] do_syscall_64+0x2c1/0xf80 [ 86.802558][ C0] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 86.804953][ C0] ? clear_bhb_loop+0x60/0xb0 [ 86.806735][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 86.808930][ C0] RIP: 0033:0x7fb85c78f7c9 [ 86.810629][ C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 86.819076][ C0] RSP: 002b:00007ffddffc8478 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 86.822975][ C0] RAX: 0000000000000000 RBX: 00007fb85c9e7da0 RCX: 00007fb85c78f7c9 [ 86.826451][ C0] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003 [ 86.829839][ C0] RBP: 00007fb85c9e7da0 R08: 000000000001da24 R09: 0000001edffc876f [ 86.833316][ C0] R10: 0000000000de23a8 R11: 0000000000000246 R12: 0000000000015c59 [ 86.836747][ C0] R13: 00007fb85c9e6090 R14: ffffffffffffffff R15: 00007ffddffc8590 [ 86.840290][ C0] [ 86.842020][ C0] Kernel Offset: disabled [ 86.843956][ C0] Rebooting in 86400 seconds..