[ 51.846317][ T39] audit: type=1400 audit(1648402306.839:74): avc: denied { write } for pid=3631 comm="sh" path="pipe:[29843]" dev="pipefs" ino=29843 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:initrc_t tclass=fifo_file permissive=1
Warning: Permanently added '[localhost]:17477' (ECDSA) to the list of known hosts.
executing program
[ 54.599881][ T39] audit: type=1400 audit(1648402309.619:75): avc: denied { execute } for pid=3669 comm="sh" name="syz-executor574807897" dev="sda1" ino=1136 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[ 54.626000][ T39] audit: type=1400 audit(1648402309.619:76): avc: denied { execute_no_trans } for pid=3669 comm="sh" path="/syz-executor574807897" dev="sda1" ino=1136 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[ 54.651865][ T39] audit: type=1400 audit(1648402309.639:77): avc: denied { execmem } for pid=3669 comm="syz-executor574" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 54.673498][ T39] audit: type=1400 audit(1648402309.639:78): avc: denied { read write } for pid=3669 comm="syz-executor574" name="raw-gadget" dev="devtmpfs" ino=760 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 54.703234][ T39] audit: type=1400 audit(1648402309.639:79): avc: denied { open } for pid=3669 comm="syz-executor574" path="/dev/raw-gadget" dev="devtmpfs" ino=760 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 54.732233][ T39] audit: type=1400 audit(1648402309.639:80): avc: denied { ioctl } for pid=3669 comm="syz-executor574" path="/dev/raw-gadget" dev="devtmpfs" ino=760 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 54.891322][ T3087] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[ 55.251317][ T3087] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 55.263909][ T3087] usb 5-1: New USB device found, idVendor=12cf, idProduct=7111, bcdDevice=44.11
[ 55.274989][ T3087] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 55.295206][ T3087] usb 5-1: config 0 descriptor??
[ 55.551257][ T3087] radio-si470x 5-1:0.0: DeviceID=0x0000 ChipID=0x0000
[ 55.559733][ T3087] radio-si470x 5-1:0.0: This driver is known to work with firmware version 12, but the device has firmware version 0.
[ 55.771176][ T3087] radio-si470x 5-1:0.0: software version 0, hardware version 0
[ 55.780749][ T3087] radio-si470x 5-1:0.0: This driver is known to work with hardware version 1, but the device has hardware version 0.
[ 55.793992][ T3087] radio-si470x 5-1:0.0: If you have some trouble using this driver, please report to V4L ML at linux-media@vger.kernel.org
[ 55.981138][ T3087] radio-si470x 5-1:0.0: si470x_set_report: usb_control_msg returned -71
[ 56.011012][ C1] radio-si470x 5-1:0.0: non-zero urb status (-71)
[ 56.018677][ T3087] radio-si470x 5-1:0.0: si470x_set_report: usb_control_msg returned -71
[ 56.030600][ T3087] radio-si470x: probe of 5-1:0.0 failed with error -22
[ 56.038038][ C1] ==================================================================
[ 56.038047][ C1] BUG: KASAN: use-after-free in si470x_int_in_callback.cold+0x96/0xbf
[ 56.038330][ C1] Read of size 8 at addr ffff88801bbe0b48 by task kworker/1:2/3087
[ 56.038343][ C1]
[ 56.038364][ C1] CPU: 1 PID: 3087 Comm: kworker/1:2 Not tainted 5.17.0-syzkaller-11138-gf022814633e1 #0
[ 56.038379][ C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[ 56.038400][ C1] Workqueue: usb_hub_wq hub_event
[ 56.038454][ C1] Call Trace:
[ 56.038505][ C1]
[ 56.038510][ C1] dump_stack_lvl+0xcd/0x134
[ 56.038698][ C1] print_address_description.constprop.0.cold+0xeb/0x467
[ 56.038802][ C1] ? si470x_int_in_callback.cold+0x96/0xbf
[ 56.038821][ C1] kasan_report.cold+0xf4/0x1c6
[ 56.038838][ C1] ? si470x_int_in_callback.cold+0x96/0xbf
[ 56.038855][ C1] si470x_int_in_callback.cold+0x96/0xbf
[ 56.038874][ C1] ? rwlock_bug.part.0+0x90/0x90
[ 56.039138][ C1] ? si470x_fops_read+0x790/0x790
[ 56.039263][ C1] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 56.039370][ C1] ? usb_hcd_unmap_urb_for_dma+0x105/0x6d0
[ 56.039384][ C1] ? dummy_timer+0x11e7/0x32b0
[ 56.039497][ C1] __usb_hcd_giveback_urb+0x2b0/0x5c0
[ 56.039513][ C1] usb_hcd_giveback_urb+0x367/0x410
[ 56.039528][ C1] dummy_timer+0x11f9/0x32b0
[ 56.039545][ C1] ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 56.039563][ C1] ? dummy_dequeue+0x500/0x500
[ 56.039579][ C1] ? dummy_dequeue+0x500/0x500
[ 56.039594][ C1] call_timer_fn+0x1a5/0x6b0
[ 56.039613][ C1] ? timer_fixup_activate+0x350/0x350
[ 56.039628][ C1] ? _raw_spin_unlock_irq+0x1f/0x40
[ 56.039738][ C1] ? dummy_dequeue+0x500/0x500
[ 56.039753][ C1] __run_timers.part.0+0x67c/0xa30
[ 56.039769][ C1] ? call_timer_fn+0x6b0/0x6b0
[ 56.039783][ C1] run_timer_softirq+0xb3/0x1d0
[ 56.039797][ C1] __do_softirq+0x29b/0x9c2
[ 56.039815][ C1] __irq_exit_rcu+0x123/0x180
[ 56.039913][ C1] irq_exit_rcu+0x5/0x20
[ 56.039929][ C1] sysvec_apic_timer_interrupt+0x93/0xc0
[ 56.039959][ C1]
[ 56.039963][ C1]
[ 56.039968][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 56.039986][ C1] RIP: 0010:__sanitizer_cov_trace_pc+0x0/0x60
[ 56.040063][ C1] Code: 48 89 ef 5d e9 51 8e 4a 00 5d be 03 00 00 00 e9 96 3b 74 02 66 0f 1f 44 00 00 48 8b be a8 01 00 00 e8 b4 ff ff ff 31 c0 c3 90 <65> 8b 05 69 3d 8a 7e 89 c1 48 8b 34 24 81 e1 00 01 00 00 65 48 8b
[ 56.040083][ C1] RSP: 0018:ffffc9000382ef48 EFLAGS: 00000293
[ 56.040113][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 56.040123][ C1] RDX: ffff88801898a2c0 RSI: ffffffff815f0b08 RDI: 0000000000000003
[ 56.040132][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffffff90026907
[ 56.040141][ C1] R10: ffffffff815f0afe R11: 0000000000000000 R12: ffffffff84e15fb0
[ 56.040151][ C1] R13: 0000000000000200 R14: ffffc9000382efa8 R15: dffffc0000000000
[ 56.040162][ C1] ? loopback_xmit+0x730/0x730
[ 56.040366][ C1] ? console_unlock+0x81e/0xdd0
[ 56.040391][ C1] ? console_unlock+0x828/0xdd0
[ 56.040407][ C1] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 56.040426][ C1] console_unlock+0x82e/0xdd0
[ 56.040442][ C1] ? devkmsg_read+0x730/0x730
[ 56.040457][ C1] ? lock_release+0x720/0x720
[ 56.040473][ C1] ? vprintk+0x80/0x90
[ 56.040488][ C1] ? vprintk+0x80/0x90
[ 56.040502][ C1] vprintk_emit+0x1b4/0x5f0
[ 56.040518][ C1] vprintk+0x80/0x90
[ 56.040532][ C1] _printk+0xba/0xed
[ 56.040566][ C1] ? record_print_text.cold+0x16/0x16
[ 56.040582][ C1] ? __sanitizer_cov_trace_cmp4+0x1c/0x70
[ 56.040599][ C1] ? __pm_runtime_suspend+0xce/0x2d0
[ 56.040667][ C1] ? usb_probe_interface+0x3bf/0x7f0
[ 56.040685][ C1] ? really_probe+0x25c/0xcc0
[ 56.040710][ C1] really_probe.cold+0x6d/0x280
[ 56.040866][ C1] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 56.040915][ C1] __driver_probe_device+0x338/0x4d0
[ 56.040944][ C1] driver_probe_device+0x4c/0x1a0
[ 56.040974][ C1] __device_attach_driver+0x20b/0x2f0
[ 56.041002][ C1] ? driver_allows_async_probing+0x150/0x150
[ 56.041032][ C1] bus_for_each_drv+0x15f/0x1e0
[ 56.041057][ C1] ? bus_for_each_dev+0x1d0/0x1d0
[ 56.041079][ C1] ? _raw_spin_unlock_irqrestore+0x50/0x70
[ 56.041094][ C1] ? lockdep_hardirqs_on+0x79/0x100
[ 56.041112][ C1] ? _raw_spin_unlock_irqrestore+0x3d/0x70
[ 56.041127][ C1] __device_attach+0x228/0x4a0
[ 56.041144][ C1] ? device_driver_attach+0x210/0x210
[ 56.041161][ C1] ? kobject_uevent_env+0x2ac/0x1660
[ 56.041343][ C1] bus_probe_device+0x1e4/0x290
[ 56.041360][ C1] device_add+0xb83/0x1e20
[ 56.041375][ C1] ? mark_held_locks+0x9f/0xe0
[ 56.041392][ C1] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0
[ 56.041409][ C1] ? _raw_spin_unlock_irqrestore+0x50/0x70
[ 56.041423][ C1] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 56.041441][ C1] usb_set_configuration+0x101e/0x1900
[ 56.041461][ C1] usb_generic_driver_probe+0xba/0x100
[ 56.041493][ C1] usb_probe_device+0xd9/0x2c0
[ 56.041522][ C1] ? usb_driver_release_interface+0x180/0x180
[ 56.041539][ C1] really_probe+0x245/0xcc0
[ 56.041556][ C1] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 56.041574][ C1] __driver_probe_device+0x338/0x4d0
[ 56.041591][ C1] driver_probe_device+0x4c/0x1a0
[ 56.041608][ C1] __device_attach_driver+0x20b/0x2f0
[ 56.041626][ C1] ? driver_allows_async_probing+0x150/0x150
[ 56.041644][ C1] bus_for_each_drv+0x15f/0x1e0
[ 56.041678][ C1] ? bus_for_each_dev+0x1d0/0x1d0
[ 56.041693][ C1] ? _raw_spin_unlock_irqrestore+0x50/0x70
[ 56.041707][ C1] ? lockdep_hardirqs_on+0x79/0x100
[ 56.041724][ C1] ? _raw_spin_unlock_irqrestore+0x3d/0x70
[ 56.041740][ C1] __device_attach+0x228/0x4a0
[ 56.041756][ C1] ? device_driver_attach+0x210/0x210
[ 56.041773][ C1] ? kobject_uevent_env+0x2ac/0x1660
[ 56.041789][ C1] bus_probe_device+0x1e4/0x290
[ 56.041806][ C1] device_add+0xb83/0x1e20
[ 56.041821][ C1] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0
[ 56.041837][ C1] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 56.041855][ C1] usb_new_device.cold+0x641/0x1091
[ 56.041931][ C1] ? hub_disconnect+0x510/0x510
[ 56.041944][ C1] ? rwlock_bug.part.0+0x90/0x90
[ 56.041960][ C1] ? _raw_spin_unlock_irq+0x1f/0x40
[ 56.041973][ C1] hub_event+0x25c6/0x4680
[ 56.041988][ C1] ? hub_port_debounce+0x3c0/0x3c0
[ 56.042009][ C1] ? lock_release+0x720/0x720
[ 56.042023][ C1] ? lock_downgrade+0x6e0/0x6e0
[ 56.042038][ C1] ? do_raw_spin_lock+0x120/0x2a0
[ 56.042054][ C1] process_one_work+0x996/0x1610
[ 56.042082][ C1] ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[ 56.042096][ C1] ? rwlock_bug.part.0+0x90/0x90
[ 56.042111][ C1] ? _raw_spin_lock_irq+0x41/0x50
[ 56.042125][ C1] worker_thread+0x665/0x1080
[ 56.042138][ C1] ? __kthread_parkme+0x15f/0x220
[ 56.042162][ C1] ? process_one_work+0x1610/0x1610
[ 56.042175][ C1] kthread+0x2e9/0x3a0
[ 56.042190][ C1] ? kthread_complete_and_exit+0x40/0x40
[ 56.042207][ C1] ret_from_fork+0x1f/0x30
[ 56.042290][ C1]
[ 56.042295][ C1]
[ 56.042300][ C1] Allocated by task 3087:
[ 56.042338][ C1] kasan_save_stack+0x1e/0x40
[ 56.042505][ C1] __kasan_kmalloc+0xa6/0xd0
[ 56.042519][ C1] kmem_cache_alloc_trace+0x1ea/0x4a0
[ 56.042533][ C1] si470x_usb_driver_probe+0x51/0xf90
[ 56.042550][ C1] usb_probe_interface+0x315/0x7f0
[ 56.042565][ C1] really_probe+0x245/0xcc0
[ 56.042579][ C1] __driver_probe_device+0x338/0x4d0
[ 56.042594][ C1] driver_probe_device+0x4c/0x1a0
[ 56.042609][ C1] __device_attach_driver+0x20b/0x2f0
[ 56.042625][ C1] bus_for_each_drv+0x15f/0x1e0
[ 56.042639][ C1] __device_attach+0x228/0x4a0
[ 56.042653][ C1] bus_probe_device+0x1e4/0x290
[ 56.042673][ C1] device_add+0xb83/0x1e20
[ 56.042686][ C1] usb_set_configuration+0x101e/0x1900
[ 56.042701][ C1] usb_generic_driver_probe+0xba/0x100
[ 56.042716][ C1] usb_probe_device+0xd9/0x2c0
[ 56.042730][ C1] really_probe+0x245/0xcc0
[ 56.042744][ C1] __driver_probe_device+0x338/0x4d0
[ 56.042759][ C1] driver_probe_device+0x4c/0x1a0
[ 56.042774][ C1] __device_attach_driver+0x20b/0x2f0
[ 56.042790][ C1] bus_for_each_drv+0x15f/0x1e0
[ 56.042804][ C1] __device_attach+0x228/0x4a0
[ 56.042819][ C1] bus_probe_device+0x1e4/0x290
[ 56.042833][ C1] device_add+0xb83/0x1e20
[ 56.042846][ C1] usb_new_device.cold+0x641/0x1091
[ 56.042858][ C1] hub_event+0x25c6/0x4680
[ 56.042869][ C1] process_one_work+0x996/0x1610
[ 56.042881][ C1] worker_thread+0x665/0x1080
[ 56.042892][ C1] kthread+0x2e9/0x3a0
[ 56.042905][ C1] ret_from_fork+0x1f/0x30
[ 56.042919][ C1]
[ 56.042932][ C1] Freed by task 3087:
[ 56.042938][ C1] kasan_save_stack+0x1e/0x40
[ 56.042952][ C1] kasan_set_track+0x21/0x30
[ 56.042966][ C1] kasan_set_free_info+0x20/0x30
[ 56.042978][ C1] ____kasan_slab_free+0x13d/0x180
[ 56.042992][ C1] kfree+0xfb/0x2c0
[ 56.043004][ C1] si470x_usb_driver_probe+0xb3d/0xf90
[ 56.043019][ C1] usb_probe_interface+0x315/0x7f0
[ 56.043033][ C1] really_probe+0x245/0xcc0
[ 56.043048][ C1] __driver_probe_device+0x338/0x4d0
[ 56.043063][ C1] driver_probe_device+0x4c/0x1a0
[ 56.043078][ C1] __device_attach_driver+0x20b/0x2f0
[ 56.043093][ C1] bus_for_each_drv+0x15f/0x1e0
[ 56.043107][ C1] __device_attach+0x228/0x4a0
[ 56.043121][ C1] bus_probe_device+0x1e4/0x290
[ 56.043136][ C1] device_add+0xb83/0x1e20
[ 56.043149][ C1] usb_set_configuration+0x101e/0x1900
[ 56.043163][ C1] usb_generic_driver_probe+0xba/0x100
[ 56.043177][ C1] usb_probe_device+0xd9/0x2c0
[ 56.043191][ C1] really_probe+0x245/0xcc0
[ 56.043222][ C1] __driver_probe_device+0x338/0x4d0
[ 56.043239][ C1] driver_probe_device+0x4c/0x1a0
[ 56.043254][ C1] __device_attach_driver+0x20b/0x2f0
[ 56.043270][ C1] bus_for_each_drv+0x15f/0x1e0
[ 56.043284][ C1] __device_attach+0x228/0x4a0
[ 56.043298][ C1] bus_probe_device+0x1e4/0x290
[ 56.043313][ C1] device_add+0xb83/0x1e20
[ 56.043325][ C1] usb_new_device.cold+0x641/0x1091
[ 56.043337][ C1] hub_event+0x25c6/0x4680
[ 56.043348][ C1] process_one_work+0x996/0x1610
[ 56.043359][ C1] worker_thread+0x665/0x1080
[ 56.043370][ C1] kthread+0x2e9/0x3a0
[ 56.043384][ C1] ret_from_fork+0x1f/0x30
[ 56.043397][ C1]
[ 56.043399][ C1] The buggy address belongs to the object at ffff88801bbe0000
[ 56.043399][ C1] which belongs to the cache kmalloc-4k of size 4096
[ 56.043410][ C1] The buggy address is located 2888 bytes inside of
[ 56.043410][ C1] 4096-byte region [ffff88801bbe0000, ffff88801bbe1000)
[ 56.043423][ C1]
[ 56.043425][ C1] The buggy address belongs to the physical page:
[ 56.043432][ C1] page:ffffea00006ef800 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1bbe0
[ 56.043474][ C1] head:ffffea00006ef800 order:1 compound_mapcount:0 compound_pincount:0
[ 56.043494][ C1] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[ 56.043545][ C1] raw: 00fff00000010200 ffffea00007eb088 ffffea00008fca08 ffff888010c40900
[ 56.043581][ C1] raw: 0000000000000000 ffff88801bbe0000 0000000100000001 0000000000000000
[ 56.043590][ C1] page dumped because: kasan: bad access detected
[ 56.043604][ C1] page_owner tracks the page as allocated
[ 56.043608][ C1] page last allocated via order 1, migratetype Unmovable, gfp_mask 0x242040(__GFP_IO|__GFP_NOWARN|__GFP_COMP|__GFP_THISNODE), pid 3623, tgid 3623 (dhcpcd-run-hook), ts 51613336308, free_ts 51063685552
[ 56.043640][ C1] get_page_from_freelist+0xba2/0x3df0
[ 56.043667][ C1] __alloc_pages+0x1b2/0x500
[ 56.043679][ C1] cache_grow_begin+0x75/0x350
[ 56.043692][ C1] cache_alloc_refill+0x27f/0x380
[ 56.043706][ C1] __kmalloc+0x3b3/0x4d0
[ 56.043718][ C1] tomoyo_realpath_from_path+0xc3/0x620
[ 56.043841][ C1] tomoyo_path_perm+0x21b/0x400
[ 56.043860][ C1] security_inode_getattr+0xcf/0x140
[ 56.043886][ C1] vfs_statx+0x16a/0x390
[ 56.043931][ C1] vfs_fstatat+0x8c/0xb0
[ 56.043942][ C1] __do_sys_newfstatat+0x91/0x110
[ 56.043962][ C1] do_syscall_64+0x35/0xb0
[ 56.043976][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 56.043990][ C1] page last free stack trace:
[ 56.043994][ C1] free_pcp_prepare+0x549/0xd20
[ 56.044006][ C1] free_unref_page+0x19/0x690
[ 56.044051][ C1] slabs_destroy+0x89/0xc0
[ 56.044066][ C1] ___cache_free+0x34e/0x670
[ 56.044079][ C1] qlist_free_all+0x4f/0x1b0
[ 56.044091][ C1] kasan_quarantine_reduce+0x180/0x200
[ 56.044104][ C1] __kasan_slab_alloc+0x97/0xb0
[ 56.044118][ C1] kmem_cache_alloc_node+0x2ea/0x590
[ 56.044132][ C1] __alloc_skb+0x215/0x340
[ 56.044274][ C1] netlink_sendmsg+0x98f/0xe00
[ 56.044340][ C1] sock_sendmsg+0xcf/0x120
[ 56.044354][ C1] ____sys_sendmsg+0x6e2/0x800
[ 56.044365][ C1] ___sys_sendmsg+0xf3/0x170
[ 56.044378][ C1] __sys_sendmsg+0xe5/0x1b0
[ 56.044389][ C1] do_syscall_64+0x35/0xb0
[ 56.044402][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 56.044416][ C1]
[ 56.044418][ C1] Memory state around the buggy address:
[ 56.044425][ C1] ffff88801bbe0a00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 56.044434][ C1] ffff88801bbe0a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 56.044444][ C1] >ffff88801bbe0b00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 56.044450][ C1] ^
[ 56.044457][ C1] ffff88801bbe0b80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 56.044465][ C1] ffff88801bbe0c00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 56.044472][ C1] ==================================================================
[ 56.044478][ C1] Kernel panic - not syncing: panic_on_warn set ...
[ 56.044484][ C1] CPU: 1 PID: 3087 Comm: kworker/1:2 Not tainted 5.17.0-syzkaller-11138-gf022814633e1 #0
[ 56.044499][ C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[ 56.044509][ C1] Workqueue: usb_hub_wq hub_event
[ 56.044523][ C1] Call Trace:
[ 56.044529][ C1]
[ 56.044533][ C1] dump_stack_lvl+0xcd/0x134
[ 56.044551][ C1] panic+0x2d7/0x636
[ 56.044612][ C1] ? panic_print_sys_info.part.0+0x10b/0x10b
[ 56.044631][ C1] ? si470x_int_in_callback.cold+0x96/0xbf
[ 56.044650][ C1] end_report.part.0+0x3f/0x7c
[ 56.044682][ C1] kasan_report.cold+0x93/0x1c6
[ 56.044698][ C1] ? si470x_int_in_callback.cold+0x96/0xbf
[ 56.044715][ C1] si470x_int_in_callback.cold+0x96/0xbf
[ 56.044733][ C1] ? rwlock_bug.part.0+0x90/0x90
[ 56.044749][ C1] ? si470x_fops_read+0x790/0x790
[ 56.044764][ C1] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 56.044782][ C1] ? usb_hcd_unmap_urb_for_dma+0x105/0x6d0
[ 56.044796][ C1] ? dummy_timer+0x11e7/0x32b0
[ 56.044813][ C1] __usb_hcd_giveback_urb+0x2b0/0x5c0
[ 56.044828][ C1] usb_hcd_giveback_urb+0x367/0x410
[ 56.044849][ C1] dummy_timer+0x11f9/0x32b0
[ 56.044865][ C1] ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 56.044883][ C1] ? dummy_dequeue+0x500/0x500
[ 56.044898][ C1] ? dummy_dequeue+0x500/0x500
[ 56.044913][ C1] call_timer_fn+0x1a5/0x6b0
[ 56.044926][ C1] ? timer_fixup_activate+0x350/0x350
[ 56.044940][ C1] ? _raw_spin_unlock_irq+0x1f/0x40
[ 56.044953][ C1] ? dummy_dequeue+0x500/0x500
[ 56.044968][ C1] __run_timers.part.0+0x67c/0xa30
[ 56.044982][ C1] ? call_timer_fn+0x6b0/0x6b0
[ 56.044995][ C1] run_timer_softirq+0xb3/0x1d0
[ 56.045008][ C1] __do_softirq+0x29b/0x9c2
[ 56.045023][ C1] __irq_exit_rcu+0x123/0x180
[ 56.045040][ C1] irq_exit_rcu+0x5/0x20
[ 56.045055][ C1] sysvec_apic_timer_interrupt+0x93/0xc0
[ 56.045073][ C1]
[ 56.045077][ C1]
[ 56.045081][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 56.045096][ C1] RIP: 0010:__sanitizer_cov_trace_pc+0x0/0x60
[ 56.045114][ C1] Code: 48 89 ef 5d e9 51 8e 4a 00 5d be 03 00 00 00 e9 96 3b 74 02 66 0f 1f 44 00 00 48 8b be a8 01 00 00 e8 b4 ff ff ff 31 c0 c3 90 <65> 8b 05 69 3d 8a 7e 89 c1 48 8b 34 24 81 e1 00 01 00 00 65 48 8b
[ 56.045126][ C1] RSP: 0018:ffffc9000382ef48 EFLAGS: 00000293
[ 56.045137][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 56.045146][ C1] RDX: ffff88801898a2c0 RSI: ffffffff815f0b08 RDI: 0000000000000003
[ 56.045154][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffffff90026907
[ 56.045163][ C1] R10: ffffffff815f0afe R11: 0000000000000000 R12: ffffffff84e15fb0
[ 56.045171][ C1] R13: 0000000000000200 R14: ffffc9000382efa8 R15: dffffc0000000000
[ 56.045180][ C1] ? loopback_xmit+0x730/0x730
[ 56.045193][ C1] ? console_unlock+0x81e/0xdd0
[ 56.045209][ C1] ? console_unlock+0x828/0xdd0
[ 56.045225][ C1] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 56.045241][ C1] console_unlock+0x82e/0xdd0
[ 56.045257][ C1] ? devkmsg_read+0x730/0x730
[ 56.045271][ C1] ? lock_release+0x720/0x720
[ 56.045285][ C1] ? vprintk+0x80/0x90
[ 56.045306][ C1] ? vprintk+0x80/0x90
[ 56.045320][ C1] vprintk_emit+0x1b4/0x5f0
[ 56.045335][ C1] vprintk+0x80/0x90
[ 56.045349][ C1] _printk+0xba/0xed
[ 56.045364][ C1] ? record_print_text.cold+0x16/0x16
[ 56.045380][ C1] ? __sanitizer_cov_trace_cmp4+0x1c/0x70
[ 56.045396][ C1] ? __pm_runtime_suspend+0xce/0x2d0
[ 56.045414][ C1] ? usb_probe_interface+0x3bf/0x7f0
[ 56.045430][ C1] ? really_probe+0x25c/0xcc0
[ 56.045446][ C1] really_probe.cold+0x6d/0x280
[ 56.045459][ C1] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 56.045477][ C1] __driver_probe_device+0x338/0x4d0
[ 56.045493][ C1] driver_probe_device+0x4c/0x1a0
[ 56.045509][ C1] __device_attach_driver+0x20b/0x2f0
[ 56.045526][ C1] ? driver_allows_async_probing+0x150/0x150
[ 56.045544][ C1] bus_for_each_drv+0x15f/0x1e0
[ 56.045559][ C1] ? bus_for_each_dev+0x1d0/0x1d0
[ 56.045573][ C1] ? _raw_spin_unlock_irqrestore+0x50/0x70
[ 56.045587][ C1] ? lockdep_hardirqs_on+0x79/0x100
[ 56.045603][ C1] ? _raw_spin_unlock_irqrestore+0x3d/0x70
[ 56.045617][ C1] __device_attach+0x228/0x4a0
[ 56.045633][ C1] ? device_driver_attach+0x210/0x210
[ 56.045649][ C1] ? kobject_uevent_env+0x2ac/0x1660
[ 56.045670][ C1] bus_probe_device+0x1e4/0x290
[ 56.045685][ C1] device_add+0xb83/0x1e20
[ 56.045699][ C1] ? mark_held_locks+0x9f/0xe0
[ 56.045714][ C1] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0
[ 56.045730][ C1] ? _raw_spin_unlock_irqrestore+0x50/0x70
[ 56.045743][ C1] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 56.045760][ C1] usb_set_configuration+0x101e/0x1900
[ 56.045777][ C1] usb_generic_driver_probe+0xba/0x100
[ 56.045793][ C1] usb_probe_device+0xd9/0x2c0
[ 56.045808][ C1] ? usb_driver_release_interface+0x180/0x180
[ 56.045824][ C1] really_probe+0x245/0xcc0
[ 56.045840][ C1] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 56.045857][ C1] __driver_probe_device+0x338/0x4d0
[ 56.045874][ C1] driver_probe_device+0x4c/0x1a0
[ 56.045890][ C1] __device_attach_driver+0x20b/0x2f0
[ 56.045907][ C1] ? driver_allows_async_probing+0x150/0x150
[ 56.045933][ C1] bus_for_each_drv+0x15f/0x1e0
[ 56.045950][ C1] ? bus_for_each_dev+0x1d0/0x1d0
[ 56.045964][ C1] ? _raw_spin_unlock_irqrestore+0x50/0x70
[ 56.045977][ C1] ? lockdep_hardirqs_on+0x79/0x100
[ 56.045993][ C1] ? _raw_spin_unlock_irqrestore+0x3d/0x70
[ 56.046007][ C1] __device_attach+0x228/0x4a0
[ 56.046023][ C1] ? device_driver_attach+0x210/0x210
[ 56.046055][ C1] ? kobject_uevent_env+0x2ac/0x1660
[ 56.046070][ C1] bus_probe_device+0x1e4/0x290
[ 56.046086][ C1] device_add+0xb83/0x1e20
[ 56.046100][ C1] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0
[ 56.046116][ C1] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 56.046134][ C1] usb_new_device.cold+0x641/0x1091
[ 56.046148][ C1] ? hub_disconnect+0x510/0x510
[ 56.046161][ C1] ? rwlock_bug.part.0+0x90/0x90
[ 56.046176][ C1] ? _raw_spin_unlock_irq+0x1f/0x40
[ 56.046188][ C1] hub_event+0x25c6/0x4680
[ 56.046202][ C1] ? hub_port_debounce+0x3c0/0x3c0
[ 56.046215][ C1] ? lock_release+0x720/0x720
[ 56.046229][ C1] ? lock_downgrade+0x6e0/0x6e0
[ 56.046243][ C1] ? do_raw_spin_lock+0x120/0x2a0
[ 56.046259][ C1] process_one_work+0x996/0x1610
[ 56.046273][ C1] ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[ 56.046286][ C1] ? rwlock_bug.part.0+0x90/0x90
[ 56.046300][ C1] ? _raw_spin_lock_irq+0x41/0x50
[ 56.046313][ C1] worker_thread+0x665/0x1080
[ 56.046326][ C1] ? __kthread_parkme+0x15f/0x220
[ 56.046341][ C1] ? process_one_work+0x1610/0x1610
[ 56.046353][ C1] kthread+0x2e9/0x3a0
[ 56.046368][ C1] ? kthread_complete_and_exit+0x40/0x40
[ 56.046385][ C1] ret_from_fork+0x1f/0x30
[ 56.046401][ C1]
[ 56.047286][ C1] Kernel Offset: disabled
[ 58.130389][ C1] Rebooting in 86400 seconds..
VM DIAGNOSIS:
17:32:01 Registers:
info registers vcpu 0
RAX=0000000000000007 RBX=0000000000000340 RCX=0000000000000340 RDX=0000000000000000
RSI=ffffffff812c0f2f RDI=0000000000000003 RBP=0000000000000000 RSP=ffffc90000007f68
R8 =0000000000000000 R9 =0000000000000001 R10=ffffffff812f8448 R11=0000000000000000
R12=0000000000000001 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff812c0f48 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802ca00000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007ffed1644bf0 CR3=000000001b09a000 CR4=00150ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0a0a0a0a0a0a0a0a0a0a0a0a0a0a0a0a XMM01=0000ffff000000000000000000000000
XMM02=0000ffff000000000000000000000000 XMM03=3d3d3d3d3d3d3d3d3d3d3d3d3d3d3d3d
XMM04=616964656d2d78756e696c207461204c XMM05=657361656c70202c7265766972642073
XMM06=7420656d6f73206576616820756f7920 XMM07=69732d6f69646172205d373830335420
XMM08=303300003d3d3d3d3d3d3d3d3d3d3d3d XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000028aac85b RBX=0000002528aac7f5 RCX=0000000000000001 RDX=0000000000000025
RSI=0000000000000103 RDI=0000000000000000 RBP=0000002528958292 RSP=ffffc90000748820
R8 =0000000000000000 R9 =0000000000000000 R10=ffffffff891a4223 R11=0000000000000000
R12=0000000000000001 R13=0000000000231870 R14=0000000000000047 R15=0000000000000047
RIP=ffffffff841458a7 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802cb00000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007f83e8ac23f8 CR3=000000001843a000 CR4=00150ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=000000000000ff000000000000000000
XMM02=00ff000000000000000000000000ff00 XMM03=3a302e303a312d35207830373469732d
XMM04=746e6f6373203030353578303d646d63 XMM05=00000000000000000000000000000000
XMM06=666e6d63732030223535653020226d63 XMM07=69732d6f69646172205d373830335420
XMM08=2500656c6f736e6f632f7665642f000a XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 2
RAX=0000000000000007 RBX=0000000000000340 RCX=0000000000000340 RDX=0000000000000000
RSI=ffffffff812c0f2f RDI=0000000000000003 RBP=0000000000000002 RSP=ffffc900007a0f68
R8 =0000000000000000 R9 =0000000000000001 R10=ffffffff812f8448 R11=0000000000000000
R12=0000000000000001 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff812c0f48 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00000000
FS =0000 0000000000000000 ffffffff 00000000
GS =0000 ffff88802cc00000 ffffffff 00000000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe000008f000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=0000556d521bc130 CR3=000000000ba8e000 CR4=00150ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=25252525252525252525252525252525 XMM01=0000ff0000000000ff0000000000ff00
XMM02=0000ff0000000000ff0000000000ff00 XMM03=00000000000000000000000000000000
XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000000000000000000000000000
XMM06=0d0c0f0e09080b0a0504070601000302 XMM07=0e0d0c0f0a09080b0605040702010003
XMM08=5245004c415441460054454955510029 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 3
RAX=0000000000000007 RBX=0000000000000340 RCX=0000000000000340 RDX=0000000000000000
RSI=ffffffff812c0f2f RDI=0000000000000003 RBP=0000000000000003 RSP=ffffc900007f8f68
R8 =0000000000000000 R9 =0000000000000001 R10=ffffffff812f8448 R11=0000000000000000
R12=0000000000000001 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff812c0f48 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00000000
FS =0000 0000000000000000 ffffffff 00000000
GS =0000 ffff88802cd00000 ffffffff 00000000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe00000d6000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=000056467aee6600 CR3=000000001843a000 CR4=00150ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=000000000000ff000000ff0000000000
XMM02=00ff000000000000000000000000ff00 XMM03=3d3d3d3d3d3d3d3d3d3d3d3d3d3d3d3d
XMM04=746e6f6373203030353578303d646d63 XMM05=00000000000000000000000000000000
XMM06=666e6d63732030223535653020226d63 XMM07=69732d6f69646172205d373830335420
XMM08=2500656c6f736e6f632f7665642f000a XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000