Warning: Permanently added '[localhost]:60839' (ED25519) to the list of known hosts.
[ 60.410161][ T40] audit: type=1400 audit(1768940787.180:62): avc: denied { execute } for pid=5929 comm="sh" name="syz-execprog" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[ 60.419525][ T40] audit: type=1400 audit(1768940787.180:63): avc: denied { execute_no_trans } for pid=5929 comm="sh" path="/syz-execprog" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
2026/01/20 20:26:28 parsed 1 programs
[ 61.726900][ T40] audit: type=1400 audit(1768940788.500:64): avc: denied { node_bind } for pid=5929 comm="syz-execprog" saddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[ 63.595202][ T40] audit: type=1400 audit(1768940790.370:65): avc: denied { mounton } for pid=5940 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2023 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[ 63.604067][ T40] audit: type=1400 audit(1768940790.380:66): avc: denied { mount } for pid=5940 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 63.606792][ T5940] cgroup: Unknown subsys name 'net'
[ 63.615665][ T40] audit: type=1400 audit(1768940790.390:67): avc: denied { unmount } for pid=5940 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 63.807811][ T5940] cgroup: Unknown subsys name 'cpuset'
[ 63.815226][ T5940] cgroup: Unknown subsys name 'rlimit'
[ 63.971568][ T40] audit: type=1400 audit(1768940790.740:68): avc: denied { setattr } for pid=5940 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 63.978922][ T40] audit: type=1400 audit(1768940790.740:69): avc: denied { create } for pid=5940 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 63.987507][ T40] audit: type=1400 audit(1768940790.740:70): avc: denied { write } for pid=5940 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 63.996539][ T40] audit: type=1400 audit(1768940790.740:71): avc: denied { read } for pid=5940 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 64.049621][ T5943] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped).
Setting up swapspace version 1, size = 127995904 bytes
[ 64.746563][ T5940] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 66.608021][ T40] kauditd_printk_skb: 10 callbacks suppressed
[ 66.608031][ T40] audit: type=1400 audit(1768940793.380:82): avc: denied { execmem } for pid=5950 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 66.619520][ T40] audit: type=1400 audit(1768940793.390:83): avc: denied { read } for pid=5951 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 66.643713][ T40] audit: type=1400 audit(1768940793.400:84): avc: denied { open } for pid=5951 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 66.651326][ T40] audit: type=1400 audit(1768940793.400:85): avc: denied { mounton } for pid=5951 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[ 66.690239][ T40] audit: type=1400 audit(1768940793.460:86): avc: denied { mount } for pid=5951 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[ 66.697653][ T40] audit: type=1400 audit(1768940793.460:87): avc: denied { mounton } for pid=5951 comm="syz-executor" path="/syzkaller.otXXLq/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[ 66.705747][ T40] audit: type=1400 audit(1768940793.460:88): avc: denied { mount } for pid=5951 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[ 66.712819][ T40] audit: type=1400 audit(1768940793.470:89): avc: denied { mounton } for pid=5951 comm="syz-executor" path="/syzkaller.otXXLq/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[ 66.723115][ T40] audit: type=1400 audit(1768940793.470:90): avc: denied { mounton } for pid=5951 comm="syz-executor" path="/syzkaller.otXXLq/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=7291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[ 66.732812][ T40] audit: type=1400 audit(1768940793.470:91): avc: denied { unmount } for pid=5951 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[ 66.742472][ T5951] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 67.472500][ T5292] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 67.477144][ T5292] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 67.480564][ T5292] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 67.484658][ T5292] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 67.487437][ T5292] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 68.355016][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 68.358640][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 68.382048][ T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 68.384685][ T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 68.969770][ T6023] chnl_net:caif_netlink_parms(): no params data found
[ 69.055480][ T6023] bridge0: port 1(bridge_slave_0) entered blocking state
[ 69.058938][ T6023] bridge0: port 1(bridge_slave_0) entered disabled state
[ 69.061701][ T6023] bridge_slave_0: entered allmulticast mode
[ 69.065057][ T6023] bridge_slave_0: entered promiscuous mode
[ 69.069882][ T6023] bridge0: port 2(bridge_slave_1) entered blocking state
[ 69.072929][ T6023] bridge0: port 2(bridge_slave_1) entered disabled state
[ 69.076262][ T6023] bridge_slave_1: entered allmulticast mode
[ 69.079286][ T6023] bridge_slave_1: entered promiscuous mode
[ 69.095313][ T6023] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 69.099968][ T6023] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 69.131238][ T6023] team0: Port device team_slave_0 added
[ 69.135701][ T6023] team0: Port device team_slave_1 added
[ 69.150438][ T6023] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 69.152665][ T6023] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 69.160775][ T6023] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 69.165670][ T6023] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 69.167845][ T6023] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 69.176874][ T6023] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 69.212259][ T6023] hsr_slave_0: entered promiscuous mode
[ 69.214985][ T6023] hsr_slave_1: entered promiscuous mode
[ 69.392948][ T6023] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 69.401663][ T6023] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 69.407964][ T6023] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 69.414347][ T6023] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 69.496155][ T6023] 8021q: adding VLAN 0 to HW filter on device bond0
[ 69.523347][ T6023] 8021q: adding VLAN 0 to HW filter on device team0
[ 69.533453][ T46] bridge0: port 1(bridge_slave_0) entered blocking state
[ 69.536844][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 69.546000][ T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 69.548745][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 69.704806][ T6023] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 69.741010][ T6023] veth0_vlan: entered promiscuous mode
[ 69.747262][ T6023] veth1_vlan: entered promiscuous mode
[ 69.763353][ T6023] veth0_macvtap: entered promiscuous mode
[ 69.769572][ T6023] veth1_macvtap: entered promiscuous mode
[ 69.782391][ T6023] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 69.790613][ T6023] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 69.800036][ T46] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 69.802965][ T46] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 69.806908][ T46] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 69.809535][ T46] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 69.895565][ T46] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 69.964573][ T46] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 70.095169][ T46] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 70.152645][ T46] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2026/01/20 20:26:37 executed programs: 0
[ 70.356918][ T64] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 70.360251][ T64] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 70.362937][ T64] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 70.366290][ T64] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 70.369363][ T64] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 70.469130][ T6049] chnl_net:caif_netlink_parms(): no params data found
[ 70.538034][ T6049] bridge0: port 1(bridge_slave_0) entered blocking state
[ 70.541074][ T6049] bridge0: port 1(bridge_slave_0) entered disabled state
[ 70.544423][ T6049] bridge_slave_0: entered allmulticast mode
[ 70.548262][ T6049] bridge_slave_0: entered promiscuous mode
[ 70.553189][ T6049] bridge0: port 2(bridge_slave_1) entered blocking state
[ 70.556285][ T6049] bridge0: port 2(bridge_slave_1) entered disabled state
[ 70.559064][ T6049] bridge_slave_1: entered allmulticast mode
[ 70.562870][ T6049] bridge_slave_1: entered promiscuous mode
[ 70.589391][ T6049] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 70.596196][ T6049] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 70.622142][ T6049] team0: Port device team_slave_0 added
[ 70.627083][ T6049] team0: Port device team_slave_1 added
[ 70.650692][ T6049] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 70.653447][ T6049] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 70.663985][ T6049] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 70.670401][ T6049] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 70.673316][ T6049] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 70.683660][ T6049] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 70.716045][ T6049] hsr_slave_0: entered promiscuous mode
[ 70.719168][ T6049] hsr_slave_1: entered promiscuous mode
[ 70.722067][ T6049] debugfs: 'hsr0' already exists in 'hsr'
[ 70.724721][ T6049] Cannot create hsr debugfs directory
[ 72.416328][ T64] Bluetooth: hci0: command tx timeout
[ 72.945870][ T46] bridge_slave_1: left allmulticast mode
[ 72.948423][ T46] bridge_slave_1: left promiscuous mode
[ 72.951393][ T46] bridge0: port 2(bridge_slave_1) entered disabled state
[ 72.959141][ T46] bridge_slave_0: left allmulticast mode
[ 72.961456][ T46] bridge_slave_0: left promiscuous mode
[ 72.965093][ T46] bridge0: port 1(bridge_slave_0) entered disabled state
[ 73.244059][ T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 73.249517][ T46] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 73.255218][ T46] bond0 (unregistering): Released all slaves
[ 73.336128][ T40] kauditd_printk_skb: 20 callbacks suppressed
[ 73.336146][ T40] audit: type=1400 audit(1768940800.100:112): avc: denied { create } for pid=6059 comm="dhcpcd-run-hook" name="resolv.conf.eth2.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 73.346428][ T40] audit: type=1400 audit(1768940800.120:113): avc: denied { write } for pid=6059 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf.eth2.link" dev="tmpfs" ino=2102 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 73.356462][ T40] audit: type=1400 audit(1768940800.120:114): avc: denied { append } for pid=6059 comm="dhcpcd-run-hook" name="resolv.conf.eth2.link" dev="tmpfs" ino=2102 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 73.415973][ T40] audit: type=1400 audit(1768940800.190:115): avc: denied { unlink } for pid=6062 comm="rm" name="resolv.conf.eth2.link" dev="tmpfs" ino=2102 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 73.432553][ T46] hsr_slave_0: left promiscuous mode
[ 73.435673][ T46] hsr_slave_1: left promiscuous mode
[ 73.438236][ T46] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 73.440975][ T46] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 73.445503][ T46] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 73.448275][ T46] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 73.459723][ T46] veth1_macvtap: left promiscuous mode
[ 73.461963][ T46] veth0_macvtap: left promiscuous mode
[ 73.464714][ T46] veth1_vlan: left promiscuous mode
[ 73.466829][ T46] veth0_vlan: left promiscuous mode
[ 73.753733][ T46] team0 (unregistering): Port device team_slave_1 removed
[ 73.783011][ T46] team0 (unregistering): Port device team_slave_0 removed
[ 74.409138][ T6049] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 74.420260][ T6049] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 74.426945][ T6049] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 74.431728][ T6049] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 74.476361][ T6049] 8021q: adding VLAN 0 to HW filter on device bond0
[ 74.489586][ T6049] 8021q: adding VLAN 0 to HW filter on device team0
[ 74.494586][ T64] Bluetooth: hci0: command tx timeout
[ 74.496167][ T226] bridge0: port 1(bridge_slave_0) entered blocking state
[ 74.499556][ T226] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 74.508077][ T1144] bridge0: port 2(bridge_slave_1) entered blocking state
[ 74.510440][ T1144] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 74.677111][ T6049] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 74.697741][ T6049] veth0_vlan: entered promiscuous mode
[ 74.702885][ T6049] veth1_vlan: entered promiscuous mode
[ 74.723840][ T6049] veth0_macvtap: entered promiscuous mode
[ 74.728846][ T6049] veth1_macvtap: entered promiscuous mode
[ 74.737813][ T6049] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 74.744354][ T6049] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 74.754455][ T226] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.758039][ T226] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.762418][ T226] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.766516][ T226] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.810136][ T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 74.813375][ T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 74.829840][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 74.833314][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 74.875696][ T40] audit: type=1400 audit(1768940801.650:116): avc: denied { read write } for pid=6093 comm="syz.0.17" name="raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 74.886250][ T40] audit: type=1400 audit(1768940801.650:117): avc: denied { open } for pid=6093 comm="syz.0.17" path="/dev/raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 74.895635][ T40] audit: type=1400 audit(1768940801.650:118): avc: denied { ioctl } for pid=6093 comm="syz.0.17" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 75.123643][ T54] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[ 75.283693][ T54] usb 5-1: Using ep0 maxpacket: 16
[ 75.287979][ T54] usb 5-1: config 0 has an invalid interface number: 8 but max is 0
[ 75.291568][ T54] usb 5-1: config 0 has no interface number 0
[ 75.294480][ T54] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 75.301783][ T54] usb 5-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[ 75.304794][ T54] usb 5-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[ 75.307467][ T54] usb 5-1: Product: syz
[ 75.308768][ T54] usb 5-1: SerialNumber: syz
[ 75.315113][ T54] usb 5-1: config 0 descriptor??
[ 75.320458][ T54] cm109 5-1:0.8: invalid payload size 105, expected 4
[ 75.324590][ T54] input: CM109 USB driver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.8/input/input5
[ 75.724755][ C2] cm109 5-1:0.8: cm109_urb_irq_callback: urb status -71
[ 75.727002][ C2] ------------[ cut here ]------------
[ 75.728794][ C2] URB ffff888026145400 submitted while active
[ 75.730767][ C2] WARNING: drivers/usb/core/urb.c:380 at usb_submit_urb+0x15a0/0x1970, CPU#2: syz.0.17/6093
[ 75.733941][ C2] Modules linked in:
[ 75.735273][ C2] CPU: 2 UID: 0 PID: 6093 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)
[ 75.738136][ C2] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 75.741514][ C2] RIP: 0010:usb_submit_urb+0x15a3/0x1970
[ 75.743303][ C2] Code: 4b 03 00 00 48 8b 04 24 48 8b 90 b0 00 00 00 eb 91 bb ed ff ff ff e9 07 f3 ff ff e8 e7 42 a8 fa 48 8d 3d 30 cd 7d 09 48 89 de <67> 48 0f b9 3a bb f0 ff ff ff e9 e9 f2 ff ff e8 c9 42 a8 fa 0f 1f
[ 75.749207][ C2] RSP: 0018:ffffc90000648a90 EFLAGS: 00010046
[ 75.751203][ C2] RAX: 0000000000000000 RBX: ffff888026145400 RCX: ffffffff87a182d4
[ 75.753940][ C2] RDX: ffff8880273a0000 RSI: ffff888026145400 RDI: ffffffff909489e0
[ 75.756463][ C2] RBP: ffff8880392ff058 R08: 0000000000000001 R09: 0000000000000000
[ 75.758982][ C2] R10: 0000000000000001 R11: ffff8880273a0b30 R12: 0000000000000001
[ 75.761528][ C2] R13: ffff8880392ff057 R14: ffff88802c2f0fe0 R15: 000000000000000f
[ 75.764067][ C2] FS: 0000555584e26500(0000) GS:ffff8880d6af1000(0000) knlGS:0000000000000000
[ 75.766834][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 75.768915][ C2] CR2: 0000556e1ec401a0 CR3: 0000000053b58000 CR4: 0000000000352ef0
[ 75.771441][ C2] Call Trace:
[ 75.772526][ C2]
[ 75.773419][ C2] ? find_held_lock+0x2b/0x80
[ 75.774932][ C2] ? __pfx____ratelimit+0x10/0x10
[ 75.776505][ C2] cm109_urb_irq_callback+0x2ed/0xbb0
[ 75.778197][ C2] ? do_raw_spin_lock+0x12c/0x2b0
[ 75.779863][ C2] __usb_hcd_giveback_urb+0x38b/0x610
[ 75.781568][ C2] usb_hcd_giveback_urb+0x39b/0x450
[ 75.783218][ C2] dummy_timer+0x1809/0x3ad0
[ 75.784713][ C2] ? do_raw_spin_lock+0x12c/0x2b0
[ 75.786385][ C2] ? debug_object_deactivate+0x1ec/0x3a0
[ 75.788236][ C2] ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 75.790109][ C2] ? debug_object_deactivate+0x1ec/0x3a0
[ 75.791894][ C2] ? __pfx_debug_object_deactivate+0x10/0x10
[ 75.794017][ C2] ? __pfx_dummy_timer+0x10/0x10
[ 75.795857][ C2] ? __pfx_dummy_timer+0x10/0x10
[ 75.797448][ C2] ? mark_held_locks+0x49/0x80
[ 75.799009][ C2] ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 75.800911][ C2] ? __pfx_dummy_timer+0x10/0x10
[ 75.802498][ C2] __hrtimer_run_queues+0x202/0xc40
[ 75.804212][ C2] ? __pfx___hrtimer_run_queues+0x10/0x10
[ 75.806189][ C2] ? read_tsc+0x9/0x20
[ 75.807532][ C2] hrtimer_run_softirq+0x17d/0x350
[ 75.809186][ C2] handle_softirqs+0x219/0x950
[ 75.810769][ C2] ? __pfx_handle_softirqs+0x10/0x10
[ 75.812456][ C2] __irq_exit_rcu+0x109/0x170
[ 75.813999][ C2] irq_exit_rcu+0x9/0x30
[ 75.815379][ C2] sysvec_apic_timer_interrupt+0xa4/0xc0
[ 75.817156][ C2]
[ 75.818123][ C2]
[ 75.819027][ C2] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 75.820854][ C2] RIP: 0010:_raw_spin_unlock_irqrestore+0x31/0x80
[ 75.822912][ C2] Code: f5 53 48 8b 74 24 10 48 89 fb 48 83 c7 18 e8 a6 64 1e f6 48 89 df e8 5e b7 1e f6 f7 c5 00 02 00 00 75 23 9c 58 f6 c4 02 75 37 01 00 00 00 e8 d5 b6 0e f6 65 8b 05 9e 4b 37 08 85 c0 74 16 5b
[ 75.828947][ C2] RSP: 0018:ffffc90003ecfaf8 EFLAGS: 00000246
[ 75.831097][ C2] RAX: 0000000000000002 RBX: ffffffff8f704e60 RCX: 0000000000000006
[ 75.833787][ C2] RDX: 0000000000000000 RSI: ffffffff8dacf3d9 RDI: ffffffff8bf2b280
[ 75.836323][ C2] RBP: 0000000000000293 R08: 0000000000000001 R09: 0000000000000001
[ 75.839073][ C2] R10: ffffffff9088cbd7 R11: 0000000000000002 R12: 1ffff920007d9f67
[ 75.841571][ C2] R13: ffff88810698623c R14: ffff888106854f00 R15: ffff888106854f18
[ 75.844093][ C2] usb_hcd_poll_rh_status+0x570/0x7e0
[ 75.845826][ C2] ? __pfx_usb_hcd_poll_rh_status+0x10/0x10
[ 75.847735][ C2] ? mark_held_locks+0x49/0x80
[ 75.849272][ C2] ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 75.851179][ C2] dummy_pullup+0x20c/0x270
[ 75.852609][ C2] ? __pfx_dummy_pullup+0x10/0x10
[ 75.854192][ C2] usb_gadget_disconnect_locked+0x142/0x4b0
[ 75.856103][ C2] gadget_unbind_driver+0xdd/0x510
[ 75.857742][ C2] ? kernfs_remove_by_name_ns+0xbe/0x100
[ 75.859647][ C2] ? __pfx_gadget_unbind_driver+0x10/0x10
[ 75.861546][ C2] device_remove+0xcb/0x170
[ 75.863110][ C2] device_release_driver_internal+0x44b/0x620
[ 75.865474][ C2] driver_detach+0xd8/0x1b0
[ 75.866978][ C2] ? __pfx_raw_release+0x10/0x10
[ 75.868582][ C2] bus_remove_driver+0x13b/0x2e0
[ 75.870210][ C2] driver_unregister+0x76/0xb0
[ 75.871770][ C2] usb_gadget_unregister_driver+0x49/0x70
[ 75.873592][ C2] raw_release+0x1ae/0x2b0
[ 75.875095][ C2] __fput+0x402/0xb70
[ 75.876401][ C2] task_work_run+0x150/0x240
[ 75.877950][ C2] ? __pfx_task_work_run+0x10/0x10
[ 75.879645][ C2] ? __do_sys_close_range+0x278/0x730
[ 75.881403][ C2] exit_to_user_mode_loop+0xfb/0x540
[ 75.883136][ C2] do_syscall_64+0x4ee/0xf80
[ 75.884639][ C2] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 75.886535][ C2] RIP: 0033:0x7efea178f7c9
[ 75.887989][ C2] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 75.894169][ C2] RSP: 002b:00007ffd88ccc5d8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 75.896865][ C2] RAX: 0000000000000000 RBX: 0000000000012409 RCX: 00007efea178f7c9
[ 75.899537][ C2] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[ 75.902181][ C2] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000588ccc8cf
[ 75.904806][ C2] R10: 0000001b2e020000 R11: 0000000000000246 R12: 00007efea19e5fac
[ 75.907459][ C2] R13: 00007efea19e5fa0 R14: ffffffffffffffff R15: 0000000000000003
[ 75.910114][ C2]
[ 75.911146][ C2] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 75.913616][ C2] CPU: 2 UID: 0 PID: 6093 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)
[ 75.916566][ C2] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 75.919839][ C2] Call Trace:
[ 75.920843][ C2]
[ 75.921783][ C2] dump_stack_lvl+0x3d/0x1f0
[ 75.923471][ C2] vpanic+0x640/0x6f0
[ 75.924914][ C2] ? usb_submit_urb+0x15a0/0x1970
[ 75.926721][ C2] panic+0xca/0xd0
[ 75.928137][ C2] ? __pfx_panic+0x10/0x10
[ 75.929888][ C2] ? check_panic_on_warn+0x1f/0xb0
[ 75.931565][ C2] check_panic_on_warn+0xab/0xb0
[ 75.933091][ C2] __warn+0x108/0x3c0
[ 75.934434][ C2] __report_bug+0x2a0/0x520
[ 75.936073][ C2] ? usb_submit_urb+0x15a0/0x1970
[ 75.937768][ C2] ? __pfx___report_bug+0x10/0x10
[ 75.939526][ C2] ? __pfx_dev_printk_emit+0x10/0x10
[ 75.941817][ C2] ? cm109_urb_irq_callback+0x1f4/0xbb0
[ 75.944259][ C2] report_bug_entry+0xe1/0x290
[ 75.945804][ C2] ? usb_submit_urb+0x15a3/0x1970
[ 75.947388][ C2] handle_bug+0x18a/0x260
[ 75.948729][ C2] exc_invalid_op+0x17/0x50
[ 75.950352][ C2] asm_exc_invalid_op+0x1a/0x20
[ 75.952394][ C2] RIP: 0010:usb_submit_urb+0x15a3/0x1970
[ 75.954751][ C2] Code: 4b 03 00 00 48 8b 04 24 48 8b 90 b0 00 00 00 eb 91 bb ed ff ff ff e9 07 f3 ff ff e8 e7 42 a8 fa 48 8d 3d 30 cd 7d 09 48 89 de <67> 48 0f b9 3a bb f0 ff ff ff e9 e9 f2 ff ff e8 c9 42 a8 fa 0f 1f
[ 75.960938][ C2] RSP: 0018:ffffc90000648a90 EFLAGS: 00010046
[ 75.962889][ C2] RAX: 0000000000000000 RBX: ffff888026145400 RCX: ffffffff87a182d4
[ 75.965620][ C2] RDX: ffff8880273a0000 RSI: ffff888026145400 RDI: ffffffff909489e0
[ 75.968678][ C2] RBP: ffff8880392ff058 R08: 0000000000000001 R09: 0000000000000000
[ 75.971514][ C2] R10: 0000000000000001 R11: ffff8880273a0b30 R12: 0000000000000001
[ 75.974132][ C2] R13: ffff8880392ff057 R14: ffff88802c2f0fe0 R15: 000000000000000f
[ 75.976626][ C2] ? cm109_urb_irq_callback+0x1f4/0xbb0
[ 75.978393][ C2] ? find_held_lock+0x2b/0x80
[ 75.979978][ C2] ? __pfx____ratelimit+0x10/0x10
[ 75.981552][ C2] cm109_urb_irq_callback+0x2ed/0xbb0
[ 75.983192][ C2] ? do_raw_spin_lock+0x12c/0x2b0
[ 75.984742][ C2] __usb_hcd_giveback_urb+0x38b/0x610
[ 75.986446][ C2] usb_hcd_giveback_urb+0x39b/0x450
[ 75.988155][ C2] dummy_timer+0x1809/0x3ad0
[ 75.989621][ C2] ? do_raw_spin_lock+0x12c/0x2b0
[ 75.991515][ C2] ? debug_object_deactivate+0x1ec/0x3a0
[ 75.993193][ C2] ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 75.995014][ C2] ? debug_object_deactivate+0x1ec/0x3a0
[ 75.996782][ C2] ? __pfx_debug_object_deactivate+0x10/0x10
[ 75.998623][ C2] ? __pfx_dummy_timer+0x10/0x10
[ 76.000208][ C2] ? __pfx_dummy_timer+0x10/0x10
[ 76.001726][ C2] ? mark_held_locks+0x49/0x80
[ 76.003485][ C2] ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 76.005282][ C2] ? __pfx_dummy_timer+0x10/0x10
[ 76.006790][ C2] __hrtimer_run_queues+0x202/0xc40
[ 76.008391][ C2] ? __pfx___hrtimer_run_queues+0x10/0x10
[ 76.010261][ C2] ? read_tsc+0x9/0x20
[ 76.011938][ C2] hrtimer_run_softirq+0x17d/0x350
[ 76.013623][ C2] handle_softirqs+0x219/0x950
[ 76.015078][ C2] ? __pfx_handle_softirqs+0x10/0x10
[ 76.016843][ C2] __irq_exit_rcu+0x109/0x170
[ 76.018426][ C2] irq_exit_rcu+0x9/0x30
[ 76.019882][ C2] sysvec_apic_timer_interrupt+0xa4/0xc0
[ 76.021577][ C2]
[ 76.022640][ C2]
[ 76.023683][ C2] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 76.025859][ C2] RIP: 0010:_raw_spin_unlock_irqrestore+0x31/0x80
[ 76.028163][ C2] Code: f5 53 48 8b 74 24 10 48 89 fb 48 83 c7 18 e8 a6 64 1e f6 48 89 df e8 5e b7 1e f6 f7 c5 00 02 00 00 75 23 9c 58 f6 c4 02 75 37 01 00 00 00 e8 d5 b6 0e f6 65 8b 05 9e 4b 37 08 85 c0 74 16 5b
[ 76.034738][ C2] RSP: 0018:ffffc90003ecfaf8 EFLAGS: 00000246
[ 76.036850][ C2] RAX: 0000000000000002 RBX: ffffffff8f704e60 RCX: 0000000000000006
[ 76.039611][ C2] RDX: 0000000000000000 RSI: ffffffff8dacf3d9 RDI: ffffffff8bf2b280
[ 76.042233][ C2] RBP: 0000000000000293 R08: 0000000000000001 R09: 0000000000000001
[ 76.044720][ C2] R10: ffffffff9088cbd7 R11: 0000000000000002 R12: 1ffff920007d9f67
[ 76.047182][ C2] R13: ffff88810698623c R14: ffff888106854f00 R15: ffff888106854f18
[ 76.049975][ C2] usb_hcd_poll_rh_status+0x570/0x7e0
[ 76.052256][ C2] ? __pfx_usb_hcd_poll_rh_status+0x10/0x10
[ 76.054823][ C2] ? mark_held_locks+0x49/0x80
[ 76.056571][ C2] ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 76.058406][ C2] dummy_pullup+0x20c/0x270
[ 76.059877][ C2] ? __pfx_dummy_pullup+0x10/0x10
[ 76.061652][ C2] usb_gadget_disconnect_locked+0x142/0x4b0
[ 76.063499][ C2] gadget_unbind_driver+0xdd/0x510
[ 76.065043][ C2] ? kernfs_remove_by_name_ns+0xbe/0x100
[ 76.066888][ C2] ? __pfx_gadget_unbind_driver+0x10/0x10
[ 76.068642][ C2] device_remove+0xcb/0x170
[ 76.070144][ C2] device_release_driver_internal+0x44b/0x620
[ 76.072214][ C2] driver_detach+0xd8/0x1b0
[ 76.073792][ C2] ? __pfx_raw_release+0x10/0x10
[ 76.075634][ C2] bus_remove_driver+0x13b/0x2e0
[ 76.077340][ C2] driver_unregister+0x76/0xb0
[ 76.078881][ C2] usb_gadget_unregister_driver+0x49/0x70
[ 76.080867][ C2] raw_release+0x1ae/0x2b0
[ 76.082335][ C2] __fput+0x402/0xb70
[ 76.083776][ C2] task_work_run+0x150/0x240
[ 76.085381][ C2] ? __pfx_task_work_run+0x10/0x10
[ 76.087031][ C2] ? __do_sys_close_range+0x278/0x730
[ 76.088939][ C2] exit_to_user_mode_loop+0xfb/0x540
[ 76.090990][ C2] do_syscall_64+0x4ee/0xf80
[ 76.092523][ C2] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 76.094379][ C2] RIP: 0033:0x7efea178f7c9
[ 76.095920][ C2] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 76.102175][ C2] RSP: 002b:00007ffd88ccc5d8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 76.104931][ C2] RAX: 0000000000000000 RBX: 0000000000012409 RCX: 00007efea178f7c9
[ 76.107633][ C2] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[ 76.110298][ C2] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000588ccc8cf
[ 76.112744][ C2] R10: 0000001b2e020000 R11: 0000000000000246 R12: 00007efea19e5fac
[ 76.115392][ C2] R13: 00007efea19e5fa0 R14: ffffffffffffffff R15: 0000000000000003
[ 76.118031][ C2]
[ 76.120000][ C2] Kernel Offset: disabled
[ 76.121397][ C2] Rebooting in 86400 seconds..