[ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.1.59' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 36.790608][ T7] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 37.149950][ T7] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 37.160911][ T7] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 37.170989][ T7] usb 1-1: New USB device found, idVendor=05ac, idProduct=0265, bcdDevice= 0.40 [ 37.180084][ T7] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 37.192334][ T7] usb 1-1: config 0 descriptor?? executing program [ 37.872322][ T7] usb 1-1: USB disconnect, device number 2 [ 37.881343][ T7] general protection fault, probably for non-canonical address 0xdffffc000000002b: 0000 [#1] SMP KASAN [ 37.892360][ T7] KASAN: null-ptr-deref in range [0x0000000000000158-0x000000000000015f] [ 37.900757][ T7] CPU: 0 PID: 7 Comm: kworker/0:1 Not tainted 5.12.0-syzkaller #0 [ 37.908547][ T7] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 37.918623][ T7] Workqueue: usb_hub_wq hub_event [ 37.923629][ T7] RIP: 0010:timer_is_static_object+0x20/0x90 [ 37.929582][ T7] Code: 84 00 00 00 00 00 0f 1f 40 00 41 54 53 48 89 fb e8 d5 86 10 00 48 8d 7b 08 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 75 4f 45 31 e4 48 83 7b 08 00 74 0c e8 ab 86 10 00 44 [ 37.949179][ T7] RSP: 0018:ffffc9000007f330 EFLAGS: 00010006 [ 37.955234][ T7] RAX: dffffc0000000000 RBX: 0000000000000150 RCX: 0000000000000000 [ 37.963179][ T7] RDX: 000000000000002b RSI: ffffffff8130663b RDI: 0000000000000158 [ 37.971122][ T7] RBP: 0000000000000002 R08: 0000000000000000 R09: ffffffff8a5c35ab [ 37.979066][ T7] R10: fffffbfff14b86b5 R11: 0000000000000000 R12: dffffc0000000000 [ 37.987008][ T7] R13: ffffffff86090c00 R14: 0000000000000150 R15: 1ffff9200000fe6b [ 37.995081][ T7] FS: 0000000000000000(0000) GS:ffff8881f6a00000(0000) knlGS:0000000000000000 [ 38.003984][ T7] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 38.010541][ T7] CR2: 00000000004ba438 CR3: 00000001097bb000 CR4: 00000000001506f0 [ 38.018497][ T7] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 38.026439][ T7] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 38.034470][ T7] Call Trace: [ 38.037721][ T7] debug_object_assert_init+0x1df/0x2e0 [ 38.043241][ T7] ? debug_object_free+0x350/0x350 [ 38.048345][ T7] ? __lock_acquire+0x16a7/0x5230 [ 38.053361][ T7] del_timer+0x6d/0x110 [ 38.057501][ T7] ? detach_if_pending+0x430/0x430 [ 38.062610][ T7] try_to_grab_pending+0x6d/0xd0 [ 38.067524][ T7] __cancel_work_timer+0xa6/0x570 [ 38.072547][ T7] ? try_to_grab_pending+0xd0/0xd0 [ 38.077650][ T7] ? mark_held_locks+0x9f/0xe0 [ 38.082386][ T7] ? lockdep_hardirqs_on_prepare+0x273/0x3e0 [ 38.088345][ T7] ? _raw_spin_unlock_irqrestore+0x42/0x50 [ 38.094139][ T7] ? trace_hardirqs_on+0x5b/0x1a0 [ 38.099139][ T7] magicmouse_remove+0x3a/0x50 [ 38.103885][ T7] hid_device_remove+0xed/0x240 [ 38.108711][ T7] ? magicmouse_raw_event+0x1020/0x1020 [ 38.114229][ T7] ? hid_register_report+0x3b0/0x3b0 [ 38.119499][ T7] __device_release_driver+0x3bd/0x6f0 [ 38.124958][ T7] device_release_driver+0x26/0x40 [ 38.130044][ T7] bus_remove_device+0x2eb/0x5a0 [ 38.134956][ T7] device_del+0x502/0xd40 [ 38.139271][ T7] ? __device_links_queue_sync_state+0x3f0/0x3f0 [ 38.145570][ T7] ? mark_held_locks+0x9f/0xe0 [ 38.150321][ T7] ? rwlock_bug.part.0+0x90/0x90 [ 38.155230][ T7] hid_destroy_device+0xe1/0x150 [ 38.160142][ T7] usbhid_disconnect+0x9f/0xe0 [ 38.164896][ T7] usb_unbind_interface+0x1d8/0x8d0 [ 38.170065][ T7] ? __sanitizer_cov_trace_cmp4+0x1c/0x70 [ 38.175759][ T7] ? kernfs_remove_by_name_ns+0x62/0xb0 [ 38.181279][ T7] ? usb_unbind_device+0x1a0/0x1a0 [ 38.186381][ T7] __device_release_driver+0x3bd/0x6f0 [ 38.191922][ T7] device_release_driver+0x26/0x40 [ 38.197011][ T7] bus_remove_device+0x2eb/0x5a0 [ 38.201922][ T7] device_del+0x502/0xd40 [ 38.206238][ T7] ? __device_links_queue_sync_state+0x3f0/0x3f0 [ 38.212540][ T7] ? kobject_put+0x1f3/0x540 [ 38.217109][ T7] usb_disable_device+0x35b/0x7b0 [ 38.222122][ T7] usb_disconnect.cold+0x27d/0x791 [ 38.227212][ T7] hub_event+0x1c9c/0x4320 [ 38.231602][ T7] ? hub_port_debounce+0x3c0/0x3c0 [ 38.236687][ T7] ? lockdep_unlock+0xe0/0x280 [ 38.241436][ T7] ? __x64_sys_prctl+0x131/0x150 [ 38.246350][ T7] ? lock_release+0x6f0/0x6f0 [ 38.251012][ T7] ? lock_downgrade+0x6e0/0x6e0 [ 38.255862][ T7] ? do_raw_spin_lock+0x120/0x2b0 [ 38.260860][ T7] process_one_work+0x98d/0x1580 [ 38.265770][ T7] ? pwq_dec_nr_in_flight+0x320/0x320 [ 38.271117][ T7] ? rwlock_bug.part.0+0x90/0x90 [ 38.276115][ T7] worker_thread+0x64c/0x1120 [ 38.280763][ T7] ? __kthread_parkme+0x118/0x1d0 [ 38.285780][ T7] ? process_one_work+0x1580/0x1580 [ 38.290950][ T7] kthread+0x38c/0x460 [ 38.294992][ T7] ? _raw_spin_unlock_irq+0x1f/0x30 [ 38.300173][ T7] ? __kthread_bind_mask+0xc0/0xc0 [ 38.305259][ T7] ret_from_fork+0x1f/0x30 [ 38.309649][ T7] Modules linked in: [ 38.313521][ T7] ---[ end trace 3f2c8ec737b57211 ]--- [ 38.318953][ T7] RIP: 0010:timer_is_static_object+0x20/0x90 [ 38.324915][ T7] Code: 84 00 00 00 00 00 0f 1f 40 00 41 54 53 48 89 fb e8 d5 86 10 00 48 8d 7b 08 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 75 4f 45 31 e4 48 83 7b 08 00 74 0c e8 ab 86 10 00 44 [ 38.344586][ T7] RSP: 0018:ffffc9000007f330 EFLAGS: 00010006 [ 38.350624][ T7] RAX: dffffc0000000000 RBX: 0000000000000150 RCX: 0000000000000000 [ 38.358588][ T7] RDX: 000000000000002b RSI: ffffffff8130663b RDI: 0000000000000158 [ 38.366530][ T7] RBP: 0000000000000002 R08: 0000000000000000 R09: ffffffff8a5c35ab [ 38.374477][ T7] R10: fffffbfff14b86b5 R11: 0000000000000000 R12: dffffc0000000000 [ 38.382474][ T7] R13: ffffffff86090c00 R14: 0000000000000150 R15: 1ffff9200000fe6b [ 38.390425][ T7] FS: 0000000000000000(0000) GS:ffff8881f6a00000(0000) knlGS:0000000000000000 [ 38.399332][ T7] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 38.406003][ T7] CR2: 00000000004ba438 CR3: 00000001097bb000 CR4: 00000000001506f0 [ 38.414046][ T7] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 38.422004][ T7] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 38.429974][ T7] Kernel panic - not syncing: Fatal exception [ 38.436640][ T7] Kernel Offset: disabled [ 38.440946][ T7] Rebooting in 86400 seconds..