Warning: Permanently added '10.128.0.242' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 21.591612][ T83] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 21.681759][ T83] usb 1-1: Using ep0 maxpacket: 32 [ 21.802188][ T83] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 21.971629][ T83] usb 1-1: New USB device found, idVendor=eb1a, idProduct=a316, bcdDevice=5c.26 [ 21.980687][ T83] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 21.988839][ T83] usb 1-1: Product: syz [ 21.993025][ T83] usb 1-1: Manufacturer: syz [ 21.997593][ T83] usb 1-1: SerialNumber: syz [ 22.003869][ T83] usb 1-1: config 0 descriptor?? [ 22.043186][ T83] em28xx 1-1:0.0: New device syz syz @ 480 Mbps (eb1a:a316, interface 0, class 0) [ 22.052496][ T83] em28xx 1-1:0.0: Video interface 0 found: executing program [ 22.281665][ T83] em28xx 1-1:0.0: unknown em28xx chip ID (0) [ 22.501606][ T83] em28xx 1-1:0.0: reading from i2c device at 0xa0 failed (error=-5) [ 22.509700][ T83] em28xx 1-1:0.0: board has no eeprom [ 22.622029][ T83] em28xx 1-1:0.0: Identified as Kworld PlusTV HD Hybrid 330 (card=57) [ 22.630402][ T83] em28xx 1-1:0.0: analog set to bulk mode. [ 22.638388][ T83] usb 1-1: USB disconnect, device number 2 [ 22.647525][ T83] em28xx 1-1:0.0: Disconnecting em28xx [ 22.653317][ T103] em28xx 1-1:0.0: Registering V4L2 extension [ 22.667336][ T103] em28xx 1-1:0.0: Config register raw data: 0xffffffed [ 22.674265][ T103] em28xx 1-1:0.0: AC97 chip type couldn't be determined [ 22.681185][ T103] em28xx 1-1:0.0: No AC97 audio processor [ 22.688133][ T103] usb 1-1: Decoder not found [ 22.692762][ T103] em28xx 1-1:0.0: failed to create media graph [ 22.698919][ T103] em28xx 1-1:0.0: V4L2 device video0 deregistered [ 22.706440][ T103] em28xx 1-1:0.0: Binding DVB extension [ 22.712063][ T103] em28xx 1-1:0.0: no endpoint for DVB mode and transfer type 0 [ 22.719584][ T103] em28xx 1-1:0.0: failed to pre-allocate USB transfer buffers for DVB. [ 22.727843][ T103] em28xx 1-1:0.0: Remote control support is not available for this card. [ 22.736424][ T83] em28xx 1-1:0.0: Closing input extension [ 22.744089][ T83] em28xx 1-1:0.0: Freeing device [ 23.101564][ T83] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 23.191597][ T83] usb 1-1: Using ep0 maxpacket: 32 [ 23.312040][ T83] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 23.481655][ T83] usb 1-1: New USB device found, idVendor=eb1a, idProduct=a316, bcdDevice=5c.26 [ 23.490686][ T83] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 23.498729][ T83] usb 1-1: Product: syz [ 23.502908][ T83] usb 1-1: Manufacturer: syz [ 23.507478][ T83] usb 1-1: SerialNumber: syz [ 23.513552][ T83] usb 1-1: config 0 descriptor?? [ 23.552997][ T83] em28xx 1-1:0.0: New device syz syz @ 480 Mbps (eb1a:a316, interface 0, class 0) [ 23.562240][ T83] em28xx 1-1:0.0: Video interface 0 found: executing program [ 23.791692][ T83] em28xx 1-1:0.0: unknown em28xx chip ID (0) [ 24.011600][ T83] em28xx 1-1:0.0: reading from i2c device at 0xa0 failed (error=-5) [ 24.019595][ T83] em28xx 1-1:0.0: board has no eeprom [ 24.132000][ T83] em28xx 1-1:0.0: Identified as Kworld PlusTV HD Hybrid 330 (card=57) [ 24.140169][ T83] em28xx 1-1:0.0: analog set to bulk mode. [ 24.147756][ T83] usb 1-1: USB disconnect, device number 3 [ 24.154215][ T83] em28xx 1-1:0.0: Disconnecting em28xx [ 24.159710][ T103] em28xx 1-1:0.0: Registering V4L2 extension [ 24.173381][ T103] em28xx 1-1:0.0: Config register raw data: 0xffffffed [ 24.180254][ T103] em28xx 1-1:0.0: AC97 chip type couldn't be determined [ 24.187224][ T103] em28xx 1-1:0.0: No AC97 audio processor [ 24.193447][ T103] usb 1-1: Decoder not found [ 24.198034][ T103] em28xx 1-1:0.0: failed to create media graph [ 24.204233][ T103] em28xx 1-1:0.0: V4L2 device video0 deregistered [ 24.211056][ T103] em28xx 1-1:0.0: Binding DVB extension [ 24.216876][ T103] em28xx 1-1:0.0: no endpoint for DVB mode and transfer type 0 [ 24.224449][ T103] em28xx 1-1:0.0: failed to pre-allocate USB transfer buffers for DVB. [ 24.232709][ T103] em28xx 1-1:0.0: Remote control support is not available for this card. [ 24.241115][ T83] em28xx 1-1:0.0: Closing input extension [ 24.247729][ T83] em28xx 1-1:0.0: Freeing device [ 24.601590][ T83] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 24.691636][ T83] usb 1-1: Using ep0 maxpacket: 32 [ 24.812161][ T83] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 24.981626][ T83] usb 1-1: New USB device found, idVendor=eb1a, idProduct=a316, bcdDevice=5c.26 [ 24.990668][ T83] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 24.998683][ T83] usb 1-1: Product: syz [ 25.002856][ T83] usb 1-1: Manufacturer: syz [ 25.007431][ T83] usb 1-1: SerialNumber: syz [ 25.013192][ T83] usb 1-1: config 0 descriptor?? [ 25.062848][ T83] em28xx 1-1:0.0: New device syz syz @ 480 Mbps (eb1a:a316, interface 0, class 0) [ 25.072085][ T83] em28xx 1-1:0.0: Video interface 0 found: executing program [ 25.311734][ T83] em28xx 1-1:0.0: unknown em28xx chip ID (0) [ 25.531603][ T83] em28xx 1-1:0.0: reading from i2c device at 0xa0 failed (error=-5) [ 25.539606][ T83] em28xx 1-1:0.0: board has no eeprom [ 25.652051][ T83] em28xx 1-1:0.0: Identified as Kworld PlusTV HD Hybrid 330 (card=57) [ 25.660229][ T83] em28xx 1-1:0.0: analog set to bulk mode. [ 25.667790][ T83] usb 1-1: USB disconnect, device number 4 [ 25.674334][ T83] em28xx 1-1:0.0: Disconnecting em28xx [ 25.680006][ T103] em28xx 1-1:0.0: Registering V4L2 extension [ 25.694587][ T103] em28xx 1-1:0.0: Config register raw data: 0xffffffed [ 25.701437][ T103] em28xx 1-1:0.0: AC97 chip type couldn't be determined [ 25.708419][ T103] em28xx 1-1:0.0: No AC97 audio processor [ 25.714816][ T103] usb 1-1: Decoder not found [ 25.719802][ T103] em28xx 1-1:0.0: failed to create media graph [ 25.726263][ T103] em28xx 1-1:0.0: V4L2 device video0 deregistered [ 25.733215][ T103] em28xx 1-1:0.0: Binding DVB extension [ 25.738762][ T103] em28xx 1-1:0.0: no endpoint for DVB mode and transfer type 0 [ 25.746350][ T103] em28xx 1-1:0.0: failed to pre-allocate USB transfer buffers for DVB. [ 25.754793][ T103] em28xx 1-1:0.0: Remote control support is not available for this card. [ 25.763261][ T83] em28xx 1-1:0.0: Closing input extension [ 25.769917][ T83] em28xx 1-1:0.0: Freeing device [ 26.121582][ T83] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 26.211661][ T83] usb 1-1: Using ep0 maxpacket: 32 [ 26.332252][ T83] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 26.501751][ T83] usb 1-1: New USB device found, idVendor=eb1a, idProduct=a316, bcdDevice=5c.26 [ 26.510805][ T83] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 26.518830][ T83] usb 1-1: Product: syz [ 26.523017][ T83] usb 1-1: Manufacturer: syz [ 26.527593][ T83] usb 1-1: SerialNumber: syz [ 26.533523][ T83] usb 1-1: config 0 descriptor?? [ 26.573166][ T83] em28xx 1-1:0.0: New device syz syz @ 480 Mbps (eb1a:a316, interface 0, class 0) [ 26.582481][ T83] em28xx 1-1:0.0: Video interface 0 found: executing program [ 26.811687][ T83] em28xx 1-1:0.0: unknown em28xx chip ID (0) [ 27.031630][ T83] em28xx 1-1:0.0: reading from i2c device at 0xa0 failed (error=-5) [ 27.039634][ T83] em28xx 1-1:0.0: board has no eeprom [ 27.151625][ T83] em28xx 1-1:0.0: Identified as Kworld PlusTV HD Hybrid 330 (card=57) [ 27.159998][ T83] em28xx 1-1:0.0: analog set to bulk mode. [ 27.166496][ T103] em28xx 1-1:0.0: Registering V4L2 extension [ 27.181928][ T83] usb 1-1: USB disconnect, device number 5 [ 27.188343][ T83] em28xx 1-1:0.0: Disconnecting em28xx [ 27.194315][ T103] em28xx 1-1:0.0: reading from i2c device at 0xb8 failed (error=-5) [ 27.206650][ T103] em28xx 1-1:0.0: Config register raw data: 0xffffffed [ 27.213874][ T103] em28xx 1-1:0.0: AC97 chip type couldn't be determined [ 27.220805][ T103] em28xx 1-1:0.0: No AC97 audio processor [ 27.227540][ T103] usb 1-1: Decoder not found [ 27.232169][ T103] em28xx 1-1:0.0: failed to create media graph [ 27.238438][ T103] em28xx 1-1:0.0: V4L2 device video0 deregistered [ 27.245963][ T103] em28xx 1-1:0.0: Binding DVB extension [ 27.251719][ T103] em28xx 1-1:0.0: no endpoint for DVB mode and transfer type 0 [ 27.259376][ T103] em28xx 1-1:0.0: failed to pre-allocate USB transfer buffers for DVB. [ 27.267794][ T103] em28xx 1-1:0.0: Remote control support is not available for this card. [ 27.276275][ T83] em28xx 1-1:0.0: Closing input extension [ 27.282916][ T83] em28xx 1-1:0.0: Freeing device [ 27.631602][ T83] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 27.721651][ T83] usb 1-1: Using ep0 maxpacket: 32 [ 27.842165][ T83] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 28.011684][ T83] usb 1-1: New USB device found, idVendor=eb1a, idProduct=a316, bcdDevice=5c.26 [ 28.020907][ T83] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 28.029187][ T83] usb 1-1: Product: syz [ 28.033370][ T83] usb 1-1: Manufacturer: syz [ 28.037960][ T83] usb 1-1: SerialNumber: syz [ 28.043944][ T83] usb 1-1: config 0 descriptor?? [ 28.103363][ T83] em28xx 1-1:0.0: New device syz syz @ 480 Mbps (eb1a:a316, interface 0, class 0) [ 28.112853][ T83] em28xx 1-1:0.0: Video interface 0 found: executing program [ 28.341695][ T83] em28xx 1-1:0.0: unknown em28xx chip ID (0) [ 28.571609][ T83] em28xx 1-1:0.0: reading from i2c device at 0xa0 failed (error=-5) [ 28.579734][ T83] em28xx 1-1:0.0: board has no eeprom [ 28.692085][ T83] em28xx 1-1:0.0: Identified as Kworld PlusTV HD Hybrid 330 (card=57) [ 28.700402][ T83] em28xx 1-1:0.0: analog set to bulk mode. [ 28.706641][ T103] em28xx 1-1:0.0: Registering V4L2 extension [ 28.714428][ T83] usb 1-1: USB disconnect, device number 6 [ 28.721163][ T83] em28xx 1-1:0.0: Disconnecting em28xx [ 28.737730][ T103] em28xx 1-1:0.0: Config register raw data: 0xffffffed [ 28.744619][ T103] em28xx 1-1:0.0: AC97 chip type couldn't be determined [ 28.751684][ T103] em28xx 1-1:0.0: No AC97 audio processor [ 28.758106][ T103] usb 1-1: Decoder not found [ 28.762779][ T103] em28xx 1-1:0.0: failed to create media graph [ 28.768946][ T103] em28xx 1-1:0.0: V4L2 device video0 deregistered [ 28.776236][ T103] em28xx 1-1:0.0: Binding DVB extension [ 28.781894][ T103] em28xx 1-1:0.0: no endpoint for DVB mode and transfer type 0 [ 28.789458][ T103] em28xx 1-1:0.0: failed to pre-allocate USB transfer buffers for DVB. [ 28.797903][ T103] em28xx 1-1:0.0: Remote control support is not available for this card. [ 28.806517][ T83] em28xx 1-1:0.0: Closing input extension [ 28.813156][ T83] em28xx 1-1:0.0: Freeing device [ 29.161620][ T83] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 29.251693][ T83] usb 1-1: Using ep0 maxpacket: 32 [ 29.372055][ T83] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 29.541675][ T83] usb 1-1: New USB device found, idVendor=eb1a, idProduct=a316, bcdDevice=5c.26 [ 29.550769][ T83] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 29.558799][ T83] usb 1-1: Product: syz [ 29.563160][ T83] usb 1-1: Manufacturer: syz [ 29.567740][ T83] usb 1-1: SerialNumber: syz [ 29.573649][ T83] usb 1-1: config 0 descriptor?? [ 29.612905][ T83] em28xx 1-1:0.0: New device syz syz @ 480 Mbps (eb1a:a316, interface 0, class 0) [ 29.622321][ T83] em28xx 1-1:0.0: Video interface 0 found: executing program [ 29.851846][ T83] em28xx 1-1:0.0: unknown em28xx chip ID (0) [ 30.071639][ T83] em28xx 1-1:0.0: reading from i2c device at 0xa0 failed (error=-5) [ 30.079670][ T83] em28xx 1-1:0.0: board has no eeprom [ 30.192008][ T83] em28xx 1-1:0.0: Identified as Kworld PlusTV HD Hybrid 330 (card=57) [ 30.200343][ T83] em28xx 1-1:0.0: analog set to bulk mode. [ 30.206682][ T103] em28xx 1-1:0.0: Registering V4L2 extension [ 30.214531][ T83] usb 1-1: USB disconnect, device number 7 [ 30.228414][ T103] em28xx 1-1:0.0: reading from i2c device at 0xb8 failed (error=-19) [ 30.237161][ T83] em28xx 1-1:0.0: Disconnecting em28xx [ 30.246876][ T103] em28xx 1-1:0.0: Config register raw data: 0xffffffed [ 30.253966][ T103] em28xx 1-1:0.0: AC97 chip type couldn't be determined [ 30.260888][ T103] em28xx 1-1:0.0: No AC97 audio processor [ 30.267326][ T103] usb 1-1: Decoder not found [ 30.271993][ T103] em28xx 1-1:0.0: failed to create media graph [ 30.278161][ T103] em28xx 1-1:0.0: V4L2 device video0 deregistered [ 30.285749][ T103] em28xx 1-1:0.0: Binding DVB extension [ 30.285991][ T1825] ================================================================== [ 30.293640][ T103] em28xx 1-1:0.0: no endpoint for DVB mode and transfer type 0 [ 30.299553][ T1825] BUG: KASAN: use-after-free in v4l2_fh_init+0x279/0x2c0 [ 30.299568][ T1825] Read of size 8 at addr ffff8881cc970870 by task v4l_id/1825 [ 30.307131][ T103] em28xx 1-1:0.0: failed to pre-allocate USB transfer buffers for DVB. [ 30.314094][ T1825] [ 30.314110][ T1825] CPU: 0 PID: 1825 Comm: v4l_id Not tainted 5.6.0-rc3-syzkaller #0 [ 30.314117][ T1825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 30.314121][ T1825] Call Trace: [ 30.314135][ T1825] dump_stack+0xef/0x16e [ 30.314151][ T1825] ? v4l2_fh_init+0x279/0x2c0 [ 30.321637][ T103] em28xx 1-1:0.0: Remote control support is not available for this card. [ 30.329818][ T1825] ? v4l2_fh_init+0x279/0x2c0 [ 30.329841][ T1825] print_address_description.constprop.0.cold+0xd3/0x314 [ 30.333151][ T83] em28xx 1-1:0.0: Closing input extension [ 30.340171][ T1825] ? v4l2_fh_init+0x279/0x2c0 [ 30.392927][ T1825] ? v4l2_fh_init+0x279/0x2c0 [ 30.397600][ T1825] __kasan_report.cold+0x37/0x77 [ 30.402661][ T1825] ? v4l2_fh_init+0x279/0x2c0 [ 30.407625][ T1825] kasan_report+0xe/0x20 [ 30.411862][ T1825] v4l2_fh_init+0x279/0x2c0 [ 30.416527][ T1825] v4l2_fh_open+0x88/0xc0 [ 30.420852][ T1825] em28xx_v4l2_open+0x11a/0x570 [ 30.425710][ T1825] v4l2_open+0x20f/0x3d0 [ 30.430072][ T1825] ? v4l2_release+0x390/0x390 [ 30.434750][ T1825] chrdev_open+0x219/0x5c0 [ 30.439166][ T1825] ? cdev_put.part.0+0x50/0x50 [ 30.443938][ T1825] do_dentry_open+0x494/0x1120 [ 30.448703][ T1825] ? cdev_put.part.0+0x50/0x50 [ 30.453672][ T1825] ? chmod_common+0x3c0/0x3c0 [ 30.458352][ T1825] ? inode_permission+0xbe/0x3a0 [ 30.463399][ T1825] path_openat+0x1222/0x32a0 [ 30.467998][ T1825] ? path_mountpoint.isra.0+0x370/0x370 [ 30.473545][ T1825] ? __lock_acquire+0x145e/0x3b60 [ 30.478574][ T1825] do_filp_open+0x192/0x260 [ 30.483075][ T1825] ? may_open_dev+0xf0/0xf0 [ 30.487720][ T1825] ? __alloc_fd+0x46d/0x600 [ 30.492224][ T1825] ? do_raw_spin_lock+0x129/0x290 [ 30.497365][ T1825] ? _raw_spin_unlock+0x1a/0x30 [ 30.502345][ T1825] ? __alloc_fd+0x46d/0x600 [ 30.506887][ T1825] do_sys_openat2+0x54c/0x740 [ 30.511565][ T1825] ? file_open_root+0x3d0/0x3d0 [ 30.516525][ T1825] ? up_read+0x1ab/0x750 [ 30.520771][ T1825] do_sys_open+0xc3/0x140 [ 30.525233][ T1825] ? filp_open+0x70/0x70 [ 30.529654][ T1825] ? trace_hardirqs_off_caller+0x55/0x200 [ 30.535376][ T1825] do_syscall_64+0xb6/0x5a0 [ 30.539980][ T1825] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 30.545992][ T1825] RIP: 0033:0x7fcde46bb120 [ 30.550412][ T1825] Code: 48 8b 15 1b 4d 2b 00 f7 d8 64 89 02 83 c8 ff c3 90 90 90 90 90 90 90 90 90 90 83 3d d5 a4 2b 00 00 75 10 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 5e 8c 01 00 48 89 04 24 [ 30.570340][ T1825] RSP: 002b:00007fff2244b378 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 30.578755][ T1825] RAX: ffffffffffffffda RBX: 00007fff2244b4d8 RCX: 00007fcde46bb120 [ 30.586731][ T1825] RDX: 00007fcde4970138 RSI: 0000000000000000 RDI: 00007fff2244bf1f [ 30.594903][ T1825] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 30.603086][ T1825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000400884 [ 30.611060][ T1825] R13: 00007fff2244b4d0 R14: 0000000000000000 R15: 0000000000000000 [ 30.619138][ T1825] [ 30.621599][ T1825] Allocated by task 103: [ 30.625851][ T1825] save_stack+0x1b/0x80 [ 30.630011][ T1825] __kasan_kmalloc.constprop.0+0xbf/0xd0 [ 30.635780][ T1825] em28xx_v4l2_init.cold+0x93/0x33eb [ 30.641072][ T1825] em28xx_init_extension+0x12f/0x1f0 [ 30.646359][ T1825] request_module_async+0x5d/0x70 [ 30.651509][ T1825] process_one_work+0x94b/0x1620 [ 30.656456][ T1825] worker_thread+0x96/0xe20 [ 30.660965][ T1825] kthread+0x318/0x420 [ 30.665098][ T1825] ret_from_fork+0x24/0x30 [ 30.669505][ T1825] [ 30.671994][ T1825] Freed by task 103: [ 30.675892][ T1825] save_stack+0x1b/0x80 [ 30.680049][ T1825] __kasan_slab_free+0x117/0x160 [ 30.685079][ T1825] kfree+0xd5/0x300 [ 30.688896][ T1825] em28xx_v4l2_init.cold+0x2d4/0x33eb [ 30.694404][ T1825] em28xx_init_extension+0x12f/0x1f0 [ 30.699701][ T1825] request_module_async+0x5d/0x70 [ 30.704735][ T1825] process_one_work+0x94b/0x1620 [ 30.709665][ T1825] worker_thread+0x96/0xe20 [ 30.714164][ T1825] kthread+0x318/0x420 [ 30.718277][ T1825] ret_from_fork+0x24/0x30 [ 30.722683][ T1825] [ 30.725012][ T1825] The buggy address belongs to the object at ffff8881cc970000 [ 30.725012][ T1825] which belongs to the cache kmalloc-8k of size 8192 [ 30.739325][ T1825] The buggy address is located 2160 bytes inside of [ 30.739325][ T1825] 8192-byte region [ffff8881cc970000, ffff8881cc972000) [ 30.752883][ T1825] The buggy address belongs to the page: [ 30.758646][ T1825] page:ffffea0007325c00 refcount:1 mapcount:0 mapping:ffff8881da00c500 index:0x0 compound_mapcount: 0 [ 30.769572][ T1825] flags: 0x200000000010200(slab|head) [ 30.775061][ T1825] raw: 0200000000010200 dead000000000100 dead000000000122 ffff8881da00c500 [ 30.783780][ T1825] raw: 0000000000000000 0000000080020002 00000001ffffffff 0000000000000000 [ 30.792355][ T1825] page dumped because: kasan: bad access detected [ 30.798771][ T1825] [ 30.801091][ T1825] Memory state around the buggy address: [ 30.806751][ T1825] ffff8881cc970700: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 30.814817][ T1825] ffff8881cc970780: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 30.822899][ T1825] >ffff8881cc970800: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 30.831079][ T1825] ^ [ 30.838793][ T1825] ffff8881cc970880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 30.846852][ T1825] ffff8881cc970900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 30.854903][ T1825] ================================================================== [ 30.863075][ T1825] Disabling lock debugging due to kernel taint [ 30.869287][ T1825] Kernel panic - not syncing: panic_on_warn set ... [ 30.875872][ T1825] CPU: 0 PID: 1825 Comm: v4l_id Tainted: G B 5.6.0-rc3-syzkaller #0 [ 30.885269][ T1825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 30.895437][ T1825] Call Trace: [ 30.899039][ T1825] dump_stack+0xef/0x16e [ 30.903294][ T1825] panic+0x2aa/0x6e1 [ 30.907189][ T1825] ? add_taint.cold+0x16/0x16 [ 30.911959][ T1825] ? retint_kernel+0x10/0x10 [ 30.916538][ T1825] ? trace_hardirqs_on+0x55/0x200 [ 30.921678][ T1825] ? v4l2_fh_init+0x279/0x2c0 [ 30.926344][ T1825] end_report+0x43/0x49 [ 30.930487][ T1825] ? v4l2_fh_init+0x279/0x2c0 [ 30.935279][ T1825] __kasan_report.cold+0x55/0x77 [ 30.940206][ T1825] ? v4l2_fh_init+0x279/0x2c0 [ 30.945007][ T1825] kasan_report+0xe/0x20 [ 30.949238][ T1825] v4l2_fh_init+0x279/0x2c0 [ 30.953729][ T1825] v4l2_fh_open+0x88/0xc0 [ 30.958052][ T1825] em28xx_v4l2_open+0x11a/0x570 [ 30.962894][ T1825] v4l2_open+0x20f/0x3d0 [ 30.967129][ T1825] ? v4l2_release+0x390/0x390 [ 30.971801][ T1825] chrdev_open+0x219/0x5c0 [ 30.976209][ T1825] ? cdev_put.part.0+0x50/0x50 [ 30.980965][ T1825] do_dentry_open+0x494/0x1120 [ 30.985719][ T1825] ? cdev_put.part.0+0x50/0x50 [ 30.990474][ T1825] ? chmod_common+0x3c0/0x3c0 [ 30.995252][ T1825] ? inode_permission+0xbe/0x3a0 [ 31.000216][ T1825] path_openat+0x1222/0x32a0 [ 31.004805][ T1825] ? path_mountpoint.isra.0+0x370/0x370 [ 31.010357][ T1825] ? __lock_acquire+0x145e/0x3b60 [ 31.015378][ T1825] do_filp_open+0x192/0x260 [ 31.020107][ T1825] ? may_open_dev+0xf0/0xf0 [ 31.024752][ T1825] ? __alloc_fd+0x46d/0x600 [ 31.029293][ T1825] ? do_raw_spin_lock+0x129/0x290 [ 31.034568][ T1825] ? _raw_spin_unlock+0x1a/0x30 [ 31.039409][ T1825] ? __alloc_fd+0x46d/0x600 [ 31.043906][ T1825] do_sys_openat2+0x54c/0x740 [ 31.048679][ T1825] ? file_open_root+0x3d0/0x3d0 [ 31.053521][ T1825] ? up_read+0x1ab/0x750 [ 31.057753][ T1825] do_sys_open+0xc3/0x140 [ 31.062181][ T1825] ? filp_open+0x70/0x70 [ 31.066443][ T1825] ? trace_hardirqs_off_caller+0x55/0x200 [ 31.072150][ T1825] do_syscall_64+0xb6/0x5a0 [ 31.076720][ T1825] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 31.082598][ T1825] RIP: 0033:0x7fcde46bb120 [ 31.087003][ T1825] Code: 48 8b 15 1b 4d 2b 00 f7 d8 64 89 02 83 c8 ff c3 90 90 90 90 90 90 90 90 90 90 83 3d d5 a4 2b 00 00 75 10 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 5e 8c 01 00 48 89 04 24 [ 31.106759][ T1825] RSP: 002b:00007fff2244b378 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 31.115264][ T1825] RAX: ffffffffffffffda RBX: 00007fff2244b4d8 RCX: 00007fcde46bb120 [ 31.123223][ T1825] RDX: 00007fcde4970138 RSI: 0000000000000000 RDI: 00007fff2244bf1f [ 31.131180][ T1825] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 31.139140][ T1825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000400884 [ 31.147099][ T1825] R13: 00007fff2244b4d0 R14: 0000000000000000 R15: 0000000000000000 [ 31.156119][ T1825] Kernel Offset: disabled [ 31.160451][ T1825] Rebooting in 86400 seconds..