Warning: Permanently added '[localhost]:34855' (ED25519) to the list of known hosts.
[ 50.252143][ T40] audit: type=1400 audit(1769534655.148:62): avc: denied { execute } for pid=5921 comm="sh" name="syz-execprog" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[ 50.259820][ T40] audit: type=1400 audit(1769534655.148:63): avc: denied { execute_no_trans } for pid=5921 comm="sh" path="/syz-execprog" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
2026/01/27 17:24:16 parsed 1 programs
[ 51.590066][ T40] audit: type=1400 audit(1769534656.488:64): avc: denied { node_bind } for pid=5921 comm="syz-execprog" saddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[ 53.634076][ T40] audit: type=1400 audit(1769534658.528:65): avc: denied { mounton } for pid=5933 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2023 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[ 53.644529][ T5933] cgroup: Unknown subsys name 'net'
[ 53.646472][ T40] audit: type=1400 audit(1769534658.538:66): avc: denied { mount } for pid=5933 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 53.653419][ T40] audit: type=1400 audit(1769534658.548:67): avc: denied { unmount } for pid=5933 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 53.778353][ T5933] cgroup: Unknown subsys name 'cpuset'
[ 53.782963][ T5933] cgroup: Unknown subsys name 'rlimit'
[ 53.966378][ T40] audit: type=1400 audit(1769534658.868:68): avc: denied { setattr } for pid=5933 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 53.975697][ T40] audit: type=1400 audit(1769534658.868:69): avc: denied { create } for pid=5933 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 53.983799][ T40] audit: type=1400 audit(1769534658.868:70): avc: denied { write } for pid=5933 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 54.001782][ T40] audit: type=1400 audit(1769534658.868:71): avc: denied { read } for pid=5933 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 54.016428][ T5938] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped).
Setting up swapspace version 1, size = 127995904 bytes
[ 54.864045][ T5933] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 56.542693][ T40] kauditd_printk_skb: 10 callbacks suppressed
[ 56.542705][ T40] audit: type=1400 audit(1769534661.438:82): avc: denied { execmem } for pid=5942 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 56.600791][ T40] audit: type=1400 audit(1769534661.498:83): avc: denied { read } for pid=5943 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 56.607968][ T40] audit: type=1400 audit(1769534661.508:84): avc: denied { open } for pid=5943 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 56.615230][ T40] audit: type=1400 audit(1769534661.508:85): avc: denied { mounton } for pid=5943 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[ 56.646778][ T40] audit: type=1400 audit(1769534661.548:86): avc: denied { mount } for pid=5943 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[ 56.653666][ T40] audit: type=1400 audit(1769534661.548:87): avc: denied { mounton } for pid=5943 comm="syz-executor" path="/syzkaller.MSI0Yy/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[ 56.661556][ T40] audit: type=1400 audit(1769534661.548:88): avc: denied { mount } for pid=5943 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[ 56.668571][ T40] audit: type=1400 audit(1769534661.548:89): avc: denied { mounton } for pid=5943 comm="syz-executor" path="/syzkaller.MSI0Yy/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[ 56.677074][ T40] audit: type=1400 audit(1769534661.548:90): avc: denied { mounton } for pid=5943 comm="syz-executor" path="/syzkaller.MSI0Yy/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=7277 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[ 56.685426][ T40] audit: type=1400 audit(1769534661.548:91): avc: denied { unmount } for pid=5943 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[ 56.695217][ T5943] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 57.779407][ T5980] chnl_net:caif_netlink_parms(): no params data found
[ 57.850383][ T5980] bridge0: port 1(bridge_slave_0) entered blocking state
[ 57.852692][ T5980] bridge0: port 1(bridge_slave_0) entered disabled state
[ 57.855053][ T5980] bridge_slave_0: entered allmulticast mode
[ 57.858372][ T5980] bridge_slave_0: entered promiscuous mode
[ 57.862369][ T5980] bridge0: port 2(bridge_slave_1) entered blocking state
[ 57.864801][ T5980] bridge0: port 2(bridge_slave_1) entered disabled state
[ 57.867243][ T5980] bridge_slave_1: entered allmulticast mode
[ 57.870413][ T5980] bridge_slave_1: entered promiscuous mode
[ 57.886388][ T5980] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 57.891129][ T5980] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 57.907259][ T5980] team0: Port device team_slave_0 added
[ 57.910369][ T5980] team0: Port device team_slave_1 added
[ 57.923370][ T5980] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 57.926564][ T5980] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 57.934550][ T5980] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 57.939499][ T5980] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 57.941725][ T5980] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 57.949978][ T5980] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 58.000028][ T5980] hsr_slave_0: entered promiscuous mode
[ 58.002301][ T5980] hsr_slave_1: entered promiscuous mode
[ 58.107492][ T5980] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 58.113564][ T5980] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 58.118262][ T5980] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 58.123097][ T5980] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 58.141242][ T5980] bridge0: port 2(bridge_slave_1) entered blocking state
[ 58.143609][ T5980] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 58.146446][ T5980] bridge0: port 1(bridge_slave_0) entered blocking state
[ 58.148764][ T5980] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 58.182478][ T5980] 8021q: adding VLAN 0 to HW filter on device bond0
[ 58.190964][ T1254] bridge0: port 1(bridge_slave_0) entered disabled state
[ 58.194359][ T1254] bridge0: port 2(bridge_slave_1) entered disabled state
[ 58.203700][ T5980] 8021q: adding VLAN 0 to HW filter on device team0
[ 58.210468][ T93] bridge0: port 1(bridge_slave_0) entered blocking state
[ 58.213551][ T93] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 58.220015][ T1254] bridge0: port 2(bridge_slave_1) entered blocking state
[ 58.222433][ T1254] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 58.353622][ T5980] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 58.375132][ T5980] veth0_vlan: entered promiscuous mode
[ 58.381383][ T5980] veth1_vlan: entered promiscuous mode
[ 58.412476][ T5980] veth0_macvtap: entered promiscuous mode
[ 58.419013][ T5980] veth1_macvtap: entered promiscuous mode
[ 58.433248][ T5980] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 58.440923][ T5980] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 58.448404][ T1145] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 58.452252][ T1145] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 58.457942][ T1145] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 58.461435][ T1145] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 58.551194][ T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 58.638724][ T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 58.656183][ T1145] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 58.659206][ T1145] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 58.682198][ T1254] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 58.684756][ T1254] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 58.723658][ T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 58.824747][ T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 59.388935][ T6028] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 59.392244][ T6028] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 59.395173][ T6028] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 59.399020][ T6028] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 59.401708][ T6028] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
2026/01/27 17:24:24 executed programs: 0
[ 59.797537][ T5291] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 59.801669][ T5291] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 59.805420][ T5291] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 59.809245][ T5291] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 59.812252][ T5291] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 59.958359][ T6037] chnl_net:caif_netlink_parms(): no params data found
[ 59.998313][ T6037] bridge0: port 1(bridge_slave_0) entered blocking state
[ 60.000631][ T6037] bridge0: port 1(bridge_slave_0) entered disabled state
[ 60.002927][ T6037] bridge_slave_0: entered allmulticast mode
[ 60.005528][ T6037] bridge_slave_0: entered promiscuous mode
[ 60.008511][ T6037] bridge0: port 2(bridge_slave_1) entered blocking state
[ 60.010801][ T6037] bridge0: port 2(bridge_slave_1) entered disabled state
[ 60.013042][ T6037] bridge_slave_1: entered allmulticast mode
[ 60.015726][ T6037] bridge_slave_1: entered promiscuous mode
[ 60.031860][ T6037] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 60.036459][ T6037] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 60.052110][ T6037] team0: Port device team_slave_0 added
[ 60.055206][ T6037] team0: Port device team_slave_1 added
[ 60.068159][ T6037] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 60.070359][ T6037] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 60.078643][ T6037] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 60.082830][ T6037] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 60.085002][ T6037] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 60.093027][ T6037] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 60.116843][ T6037] hsr_slave_0: entered promiscuous mode
[ 60.119546][ T6037] hsr_slave_1: entered promiscuous mode
[ 60.121629][ T6037] debugfs: 'hsr0' already exists in 'hsr'
[ 60.123507][ T6037] Cannot create hsr debugfs directory
[ 61.846305][ T6028] Bluetooth: hci0: command tx timeout
[ 62.064237][ T12] bridge_slave_1: left allmulticast mode
[ 62.066408][ T12] bridge_slave_1: left promiscuous mode
[ 62.069004][ T12] bridge0: port 2(bridge_slave_1) entered disabled state
[ 62.075398][ T12] bridge_slave_0: left allmulticast mode
[ 62.078970][ T12] bridge_slave_0: left promiscuous mode
[ 62.081588][ T12] bridge0: port 1(bridge_slave_0) entered disabled state
[ 62.090029][ T40] kauditd_printk_skb: 20 callbacks suppressed
[ 62.090040][ T40] audit: type=1400 audit(1769534666.988:112): avc: denied { create } for pid=6046 comm="dhcpcd-run-hook" name="resolv.conf.eth2.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 62.099953][ T40] audit: type=1400 audit(1769534666.988:113): avc: denied { write } for pid=6046 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf.eth2.link" dev="tmpfs" ino=2088 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 62.108690][ T40] audit: type=1400 audit(1769534666.988:114): avc: denied { append } for pid=6046 comm="dhcpcd-run-hook" name="resolv.conf.eth2.link" dev="tmpfs" ino=2088 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 62.130285][ T40] audit: type=1400 audit(1769534667.028:115): avc: denied { unlink } for pid=6049 comm="rm" name="resolv.conf.eth2.link" dev="tmpfs" ino=2088 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 62.324616][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 62.329279][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 62.333081][ T12] bond0 (unregistering): Released all slaves
[ 62.460386][ T12] hsr_slave_0: left promiscuous mode
[ 62.463065][ T12] hsr_slave_1: left promiscuous mode
[ 62.465451][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 62.469169][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 62.472537][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 62.475608][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 62.487696][ T12] veth1_macvtap: left promiscuous mode
[ 62.490177][ T12] veth0_macvtap: left promiscuous mode
[ 62.492696][ T12] veth1_vlan: left promiscuous mode
[ 62.494858][ T12] veth0_vlan: left promiscuous mode
[ 62.724586][ T12] team0 (unregistering): Port device team_slave_1 removed
[ 62.742115][ T12] team0 (unregistering): Port device team_slave_0 removed
[ 63.178018][ T6037] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 63.182725][ T6037] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 63.187098][ T6037] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 63.191740][ T6037] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 63.237971][ T6037] 8021q: adding VLAN 0 to HW filter on device bond0
[ 63.247411][ T6037] 8021q: adding VLAN 0 to HW filter on device team0
[ 63.253242][ T1145] bridge0: port 1(bridge_slave_0) entered blocking state
[ 63.256416][ T1145] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 63.263781][ T1254] bridge0: port 2(bridge_slave_1) entered blocking state
[ 63.266200][ T1254] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 63.393794][ T6037] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 63.414936][ T6037] veth0_vlan: entered promiscuous mode
[ 63.420212][ T6037] veth1_vlan: entered promiscuous mode
[ 63.434117][ T6037] veth0_macvtap: entered promiscuous mode
[ 63.439794][ T6037] veth1_macvtap: entered promiscuous mode
[ 63.448010][ T6037] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 63.452354][ T6037] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 63.609245][ T1145] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 63.615889][ T1145] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 63.619608][ T1145] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 63.624069][ T1145] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 63.657693][ T1145] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 63.660932][ T1145] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 63.674770][ T1145] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 63.678486][ T1145] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 63.715615][ T40] audit: type=1400 audit(1769534668.608:116): avc: denied { read write } for pid=6078 comm="syz.0.17" name="raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 63.724344][ T40] audit: type=1400 audit(1769534668.608:117): avc: denied { open } for pid=6078 comm="syz.0.17" path="/dev/raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 63.735107][ T40] audit: type=1400 audit(1769534668.608:118): avc: denied { ioctl } for pid=6078 comm="syz.0.17" path="/dev/raw-gadget" dev="devtmpfs" ino=849 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 63.927113][ T6028] Bluetooth: hci0: command tx timeout
[ 63.985612][ T5284] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[ 64.145570][ T5284] usb 5-1: Using ep0 maxpacket: 16
[ 64.150386][ T5284] usb 5-1: config 0 has an invalid interface number: 8 but max is 0
[ 64.153229][ T5284] usb 5-1: config 0 has no interface number 0
[ 64.155185][ T5284] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 64.167103][ T5284] usb 5-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[ 64.171058][ T5284] usb 5-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[ 64.174466][ T5284] usb 5-1: Product: syz
[ 64.177065][ T5284] usb 5-1: SerialNumber: syz
[ 64.181449][ T5284] usb 5-1: config 0 descriptor??
[ 64.191675][ T5284] cm109 5-1:0.8: invalid payload size 208, expected 4
[ 64.194989][ T5284] input: CM109 USB driver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.8/input/input5
[ 64.598989][ C2] cm109 5-1:0.8: cm109_urb_irq_callback: urb status -71
[ 64.601277][ C2] ------------[ cut here ]------------
[ 64.603098][ C2] URB ffff888024fb1c00 submitted while active
[ 64.605028][ C2] WARNING: drivers/usb/core/urb.c:380 at usb_submit_urb+0x15fa/0x1910, CPU#2: syz.0.17/6078
[ 64.608229][ C2] Modules linked in:
[ 64.609516][ C2] CPU: 2 UID: 0 PID: 6078 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)
[ 64.612366][ C2] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 64.615515][ C2] RIP: 0010:usb_submit_urb+0x15fd/0x1910
[ 64.617304][ C2] Code: 00 48 8b 04 24 48 8b 90 b0 00 00 00 e9 73 ff ff ff bb ed ff ff ff e9 be f2 ff ff e8 ad e3 c8 fa 48 8d 3d e6 bc 85 09 48 89 de <67> 48 0f b9 3a bb f0 ff ff ff e9 a0 f2 ff ff c7 44 24 30 00 00 00
[ 64.623505][ C2] RSP: 0018:ffffc90000648ab8 EFLAGS: 00010046
[ 64.625435][ C2] RAX: 0000000000000000 RBX: ffff888024fb1c00 RCX: ffffffff87c070a0
[ 64.627957][ C2] RDX: ffff8880271d8000 RSI: ffff888024fb1c00 RDI: ffffffff90c3d4a0
[ 64.630509][ C2] RBP: ffff88802596a058 R08: 0000000000000001 R09: 0000000000000000
[ 64.633018][ C2] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000001
[ 64.635522][ C2] R13: ffff88802596a057 R14: ffff888035735a40 R15: 000000000000000f
[ 64.638055][ C2] FS: 00005555902d9500(0000) GS:ffff8880d67db000(0000) knlGS:0000000000000000
[ 64.640889][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 64.643008][ C2] CR2: 0000200000001000 CR3: 000000003150f000 CR4: 0000000000352ef0
[ 64.645536][ C2] Call Trace:
[ 64.646606][ C2]
[ 64.647583][ C2] cm109_urb_irq_callback+0x479/0xa90
[ 64.649301][ C2] ? do_raw_spin_lock+0x128/0x260
[ 64.650939][ C2] __usb_hcd_giveback_urb+0x38d/0x610
[ 64.652663][ C2] usb_hcd_giveback_urb+0x3ca/0x4a0
[ 64.654303][ C2] dummy_timer+0xd85/0x3670
[ 64.655765][ C2] ? do_raw_spin_lock+0x128/0x260
[ 64.657411][ C2] ? find_held_lock+0x2b/0x80
[ 64.658938][ C2] ? debug_object_deactivate+0x2e4/0x3b0
[ 64.660724][ C2] ? debug_object_deactivate+0x2e4/0x3b0
[ 64.662517][ C2] ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 64.664392][ C2] ? debug_object_deactivate+0x2e4/0x3b0
[ 64.666185][ C2] ? __pfx_dummy_timer+0x10/0x10
[ 64.667809][ C2] ? mark_held_locks+0x40/0x70
[ 64.669338][ C2] ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 64.671202][ C2] ? __pfx_dummy_timer+0x10/0x10
[ 64.672771][ C2] __hrtimer_run_queues+0x516/0x990
[ 64.674400][ C2] ? __pfx___hrtimer_run_queues+0x10/0x10
[ 64.676220][ C2] ? ktime_get_update_offsets_now+0x2cd/0x4d0
[ 64.678154][ C2] hrtimer_run_softirq+0x17d/0x350
[ 64.679810][ C2] handle_softirqs+0x1ea/0x910
[ 64.681354][ C2] ? __pfx_handle_softirqs+0x10/0x10
[ 64.683078][ C2] __irq_exit_rcu+0xef/0x150
[ 64.684573][ C2] irq_exit_rcu+0x9/0x30
[ 64.685951][ C2] sysvec_apic_timer_interrupt+0xa3/0xc0
[ 64.687772][ C2]
[ 64.688732][ C2]
[ 64.689698][ C2] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 64.691616][ C2] RIP: 0010:_raw_spin_unlock_irqrestore+0x31/0x80
[ 64.693649][ C2] Code: f5 53 48 8b 74 24 10 48 89 fb 48 83 c7 18 e8 a6 8c 69 f6 48 89 df e8 8e da 69 f6 f7 c5 00 02 00 00 75 23 9c 58 f6 c4 02 75 37 01 00 00 00 e8 45 29 5a f6 65 8b 05 3e ba 6a 08 85 c0 74 16 5b
[ 64.699810][ C2] RSP: 0018:ffffc9000478fb00 EFLAGS: 00000246
[ 64.701747][ C2] RAX: 0000000000000002 RBX: ffffffff8f99c380 RCX: 0000000000000040
[ 64.704276][ C2] RDX: 0000000000000000 RSI: ffffffff8dc454ef RDI: ffffffff8bfa35a0
[ 64.706789][ C2] RBP: 0000000000000293 R08: 0000000000000001 R09: 0000000000000000
[ 64.709309][ C2] R10: 0000000000000001 R11: 0000000000000002 R12: 1ffff920008f1f68
[ 64.711830][ C2] R13: ffff88802bfc023c R14: ffff888103376e00 R15: ffff888103376e18
[ 64.714323][ C2] usb_hcd_poll_rh_status+0x5c4/0x7e0
[ 64.716053][ C2] ? __pfx_usb_hcd_poll_rh_status+0x10/0x10
[ 64.717984][ C2] ? mark_held_locks+0x40/0x70
[ 64.719524][ C2] ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 64.721390][ C2] dummy_pullup+0x1f6/0x280
[ 64.722945][ C2] ? __pfx_dummy_pullup+0x10/0x10
[ 64.724556][ C2] usb_gadget_disconnect_locked+0x142/0x4b0
[ 64.726431][ C2] gadget_unbind_driver+0xd8/0x4f0
[ 64.728125][ C2] ? kernfs_remove_by_name_ns+0x9f/0xf0
[ 64.729882][ C2] ? __pfx_gadget_unbind_driver+0x10/0x10
[ 64.731744][ C2] device_remove+0xcb/0x180
[ 64.733219][ C2] device_release_driver_internal+0x42e/0x600
[ 64.735163][ C2] driver_detach+0xd8/0x1b0
[ 64.736608][ C2] bus_remove_driver+0x13b/0x2e0
[ 64.738220][ C2] driver_unregister+0x76/0xb0
[ 64.739767][ C2] usb_gadget_unregister_driver+0x49/0x70
[ 64.741593][ C2] raw_release+0x19b/0x260
[ 64.743065][ C2] ? __pfx_raw_release+0x10/0x10
[ 64.744658][ C2] __fput+0x3ff/0xb40
[ 64.745970][ C2] task_work_run+0x150/0x240
[ 64.747507][ C2] ? __pfx_task_work_run+0x10/0x10
[ 64.749192][ C2] exit_to_user_mode_loop+0x100/0x4b0
[ 64.750945][ C2] ? rcu_is_watching+0x12/0xc0
[ 64.752488][ C2] do_syscall_64+0x4fe/0xf80
[ 64.753990][ C2] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 64.755875][ C2] RIP: 0033:0x7f9c17b9aeb9
[ 64.757322][ C2] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 64.763362][ C2] RSP: 002b:00007ffe88c80798 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 64.766008][ C2] RAX: 0000000000000000 RBX: 00007ffe88c80880 RCX: 00007f9c17b9aeb9
[ 64.768527][ C2] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[ 64.771045][ C2] RBP: 000000000000f878 R08: 0000000000000001 R09: 0000000000000000
[ 64.773552][ C2] R10: 0000001b2d420000 R11: 0000000000000246 R12: 0000000000000000
[ 64.776059][ C2] R13: 00007f9c17e15fac R14: 00007f9c17e15fa8 R15: 00007f9c17e15fa0
[ 64.778537][ C2]
[ 64.779562][ C2] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 64.781868][ C2] CPU: 2 UID: 0 PID: 6078 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)
[ 64.784741][ C2] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 64.787956][ C2] Call Trace:
[ 64.789032][ C2]
[ 64.789947][ C2] dump_stack_lvl+0x100/0x190
[ 64.791475][ C2] vpanic+0x20d/0x630
[ 64.792767][ C2] panic+0xd1/0xd1
[ 64.793975][ C2] ? __pfx_panic+0x10/0x10
[ 64.795415][ C2] ? check_panic_on_warn+0x1f/0x90
[ 64.797053][ C2] check_panic_on_warn.cold+0x19/0x34
[ 64.798788][ C2] ? usb_submit_urb+0x15fa/0x1910
[ 64.800460][ C2] __warn.cold+0x191/0x2f8
[ 64.801900][ C2] __report_bug+0x296/0x3d0
[ 64.803372][ C2] ? usb_submit_urb+0x15fa/0x1910
[ 64.804995][ C2] ? __pfx___report_bug+0x10/0x10
[ 64.806608][ C2] ? register_lock_class+0x187/0x560
[ 64.808325][ C2] ? cm109_urb_irq_callback+0x380/0xa90
[ 64.810093][ C2] ? dev_printk_emit+0xd2/0x10d
[ 64.811663][ C2] ? __pfx_dev_printk_emit+0x10/0x10
[ 64.813360][ C2] report_bug_entry+0xe1/0x290
[ 64.814915][ C2] ? usb_submit_urb+0x15fd/0x1910
[ 64.816527][ C2] handle_bug+0x1c9/0x2a0
[ 64.817947][ C2] exc_invalid_op+0x17/0x50
[ 64.819431][ C2] asm_exc_invalid_op+0x1a/0x20
[ 64.821034][ C2] RIP: 0010:usb_submit_urb+0x15fd/0x1910
[ 64.822852][ C2] Code: 00 48 8b 04 24 48 8b 90 b0 00 00 00 e9 73 ff ff ff bb ed ff ff ff e9 be f2 ff ff e8 ad e3 c8 fa 48 8d 3d e6 bc 85 09 48 89 de <67> 48 0f b9 3a bb f0 ff ff ff e9 a0 f2 ff ff c7 44 24 30 00 00 00
[ 64.828924][ C2] RSP: 0018:ffffc90000648ab8 EFLAGS: 00010046
[ 64.830873][ C2] RAX: 0000000000000000 RBX: ffff888024fb1c00 RCX: ffffffff87c070a0
[ 64.833307][ C2] RDX: ffff8880271d8000 RSI: ffff888024fb1c00 RDI: ffffffff90c3d4a0
[ 64.835801][ C2] RBP: ffff88802596a058 R08: 0000000000000001 R09: 0000000000000000
[ 64.838335][ C2] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000001
[ 64.840852][ C2] R13: ffff88802596a057 R14: ffff888035735a40 R15: 000000000000000f
[ 64.843381][ C2] ? cm109_urb_irq_callback+0x380/0xa90
[ 64.845143][ C2] ? usb_submit_urb+0x15f3/0x1910
[ 64.846757][ C2] cm109_urb_irq_callback+0x479/0xa90
[ 64.848487][ C2] ? do_raw_spin_lock+0x128/0x260
[ 64.850060][ C2] __usb_hcd_giveback_urb+0x38d/0x610
[ 64.851790][ C2] usb_hcd_giveback_urb+0x3ca/0x4a0
[ 64.853459][ C2] dummy_timer+0xd85/0x3670
[ 64.855029][ C2] ? do_raw_spin_lock+0x128/0x260
[ 64.856674][ C2] ? find_held_lock+0x2b/0x80
[ 64.858220][ C2] ? debug_object_deactivate+0x2e4/0x3b0
[ 64.859993][ C2] ? debug_object_deactivate+0x2e4/0x3b0
[ 64.861776][ C2] ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 64.863670][ C2] ? debug_object_deactivate+0x2e4/0x3b0
[ 64.865460][ C2] ? __pfx_dummy_timer+0x10/0x10
[ 64.867048][ C2] ? mark_held_locks+0x40/0x70
[ 64.868621][ C2] ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 64.870472][ C2] ? __pfx_dummy_timer+0x10/0x10
[ 64.872076][ C2] __hrtimer_run_queues+0x516/0x990
[ 64.873742][ C2] ? __pfx___hrtimer_run_queues+0x10/0x10
[ 64.875554][ C2] ? ktime_get_update_offsets_now+0x2cd/0x4d0
[ 64.877526][ C2] hrtimer_run_softirq+0x17d/0x350
[ 64.879150][ C2] handle_softirqs+0x1ea/0x910
[ 64.880624][ C2] ? __pfx_handle_softirqs+0x10/0x10
[ 64.882243][ C2] __irq_exit_rcu+0xef/0x150
[ 64.883762][ C2] irq_exit_rcu+0x9/0x30
[ 64.885125][ C2] sysvec_apic_timer_interrupt+0xa3/0xc0
[ 64.886931][ C2]
[ 64.887922][ C2]
[ 64.888889][ C2] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 64.890791][ C2] RIP: 0010:_raw_spin_unlock_irqrestore+0x31/0x80
[ 64.892789][ C2] Code: f5 53 48 8b 74 24 10 48 89 fb 48 83 c7 18 e8 a6 8c 69 f6 48 89 df e8 8e da 69 f6 f7 c5 00 02 00 00 75 23 9c 58 f6 c4 02 75 37 01 00 00 00 e8 45 29 5a f6 65 8b 05 3e ba 6a 08 85 c0 74 16 5b
[ 64.898901][ C2] RSP: 0018:ffffc9000478fb00 EFLAGS: 00000246
[ 64.900847][ C2] RAX: 0000000000000002 RBX: ffffffff8f99c380 RCX: 0000000000000040
[ 64.903343][ C2] RDX: 0000000000000000 RSI: ffffffff8dc454ef RDI: ffffffff8bfa35a0
[ 64.905797][ C2] RBP: 0000000000000293 R08: 0000000000000001 R09: 0000000000000000
[ 64.908347][ C2] R10: 0000000000000001 R11: 0000000000000002 R12: 1ffff920008f1f68
[ 64.910872][ C2] R13: ffff88802bfc023c R14: ffff888103376e00 R15: ffff888103376e18
[ 64.913384][ C2] usb_hcd_poll_rh_status+0x5c4/0x7e0
[ 64.915246][ C2] ? __pfx_usb_hcd_poll_rh_status+0x10/0x10
[ 64.917171][ C2] ? mark_held_locks+0x40/0x70
[ 64.918711][ C2] ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 64.920579][ C2] dummy_pullup+0x1f6/0x280
[ 64.922045][ C2] ? __pfx_dummy_pullup+0x10/0x10
[ 64.923668][ C2] usb_gadget_disconnect_locked+0x142/0x4b0
[ 64.925539][ C2] gadget_unbind_driver+0xd8/0x4f0
[ 64.927206][ C2] ? kernfs_remove_by_name_ns+0x9f/0xf0
[ 64.928964][ C2] ? __pfx_gadget_unbind_driver+0x10/0x10
[ 64.930821][ C2] device_remove+0xcb/0x180
[ 64.932283][ C2] device_release_driver_internal+0x42e/0x600
[ 64.934236][ C2] driver_detach+0xd8/0x1b0
[ 64.935707][ C2] bus_remove_driver+0x13b/0x2e0
[ 64.937335][ C2] driver_unregister+0x76/0xb0
[ 64.938904][ C2] usb_gadget_unregister_driver+0x49/0x70
[ 64.940722][ C2] raw_release+0x19b/0x260
[ 64.942166][ C2] ? __pfx_raw_release+0x10/0x10
[ 64.943781][ C2] __fput+0x3ff/0xb40
[ 64.945087][ C2] task_work_run+0x150/0x240
[ 64.946578][ C2] ? __pfx_task_work_run+0x10/0x10
[ 64.948264][ C2] exit_to_user_mode_loop+0x100/0x4b0
[ 64.949985][ C2] ? rcu_is_watching+0x12/0xc0
[ 64.951489][ C2] do_syscall_64+0x4fe/0xf80
[ 64.952991][ C2] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 64.954890][ C2] RIP: 0033:0x7f9c17b9aeb9
[ 64.956326][ C2] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 64.962417][ C2] RSP: 002b:00007ffe88c80798 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 64.965084][ C2] RAX: 0000000000000000 RBX: 00007ffe88c80880 RCX: 00007f9c17b9aeb9
[ 64.967627][ C2] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[ 64.970150][ C2] RBP: 000000000000f878 R08: 0000000000000001 R09: 0000000000000000
[ 64.972654][ C2] R10: 0000001b2d420000 R11: 0000000000000246 R12: 0000000000000000
[ 64.975177][ C2] R13: 00007f9c17e15fac R14: 00007f9c17e15fa8 R15: 00007f9c17e15fa0
[ 64.977691][ C2]
[ 64.979546][ C2] Kernel Offset: disabled
[ 64.980949][ C2] Rebooting in 86400 seconds..