Starting Network Time Synchronization... [ OK ] Started Network Time Synchronization. [ OK ] Started Raise network interfaces. [ OK ] Reached target Network. Starting Permit User Sessions... Starting OpenBSD Secure Shell server... [ OK ] Started Permit User Sessions. [ OK ] Started OpenBSD Secure Shell server. [ 11.790811][ C0] random: crng init done [ 11.792153][ C0] random: 7 urandom warning(s) missed due to ratelimiting Warning: Permanently added '10.128.0.5' (ECDSA) to the list of known hosts. executing program [* ] A start job is running for dev-ttyS0.device (8s / 1min 30s) [** ] A start job is running for dev-ttyS0.device (9s / 1min 30s) [*** ] A start job is running for dev-ttyS0.device (10s / 1min 30s) [ *** ] A start job is running for dev-ttyS0.device (10s / 1min 30s) [ *** ] A start job is running for dev-ttyS0.device (11s / 1min 30s) [ ***] A start job is running for dev-ttyS0.device (11s / 1min 30s) [ **] A start job is running for dev-ttyS0.device (12s / 1min 30s)[ 18.981958][ T207] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 19.070907][ T207] usb 1-1: Using ep0 maxpacket: 8 [ *] A start job is running for dev-ttyS0.device (13s / 1min 30s)[ 19.190097][ T207] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 111, using maximum allowed: 30 [ 19.200936][ T207] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 19.212411][ T207] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 19.222461][ T207] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 111 [ 19.235720][ T207] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 19.245012][ T207] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 19.253867][ T207] usb 1-1: config 0 descriptor?? [ 19.727076][ T207] plantronics 0003:047F:FFFF.0001: ignoring exceeding usage max [ [ 19.735546][ T207] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0 **] A start job is [ 19.745752][ T207] plantronics 0003:047F:FFFF.0001: No inputs registered, leaving running for dev-ttyS0.device (13[ 19.756618][ T207] plantronics 0003:047F:FFFF.0001: hiddev96,hidraw0: USB HID v0.00 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 s / 1min 30s)[ 19.994808][ T392] ================================================================== [ 20.002902][ T392] BUG: KASAN: slab-out-of-bounds in hiddev_ioctl_usage+0x1764/0x1830 [ 20.010949][ T392] Write of size 4 at addr ffff8881ceb48414 by task syz-executor882/392 [ 20.019159][ T392] [ 20.021465][ T392] CPU: 0 PID: 392 Comm: syz-executor882 Not tainted 5.4.30-syzkaller-00997-gfc78ab971efe #0 [ 20.032097][ T392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 20.042122][ T392] Call Trace: [ 20.045405][ T392] dump_stack+0x14a/0x1ce [ 20.049718][ T392] ? show_regs_print_info+0x12/0x12 [ 20.054894][ T392] ? printk+0xd2/0x114 [ 20.058986][ T392] print_address_description+0x93/0x620 [ 20.064516][ T392] __kasan_report+0x16d/0x1e0 [ 20.069191][ T392] ? hiddev_ioctl_usage+0x1764/0x1830 [ 20.074560][ T392] kasan_report+0x34/0x60 [ 20.078863][ T392] hiddev_ioctl_usage+0x1764/0x1830 [ 20.084032][ T392] ? usbhid_init_reports+0x28d/0x2a0 [ 20.089296][ T392] hiddev_ioctl+0x7a7/0x29a0 [ 20.093863][ T392] ? hiddev_poll+0x1c0/0x1c0 [ 20.098608][ T392] ? hiddev_poll+0x1c0/0x1c0 [ 20.103179][ T392] do_vfs_ioctl+0x770/0x1750 [ 20.107748][ T392] ? selinux_file_ioctl+0x73b/0x990 [ 20.112953][ T392] ? ioctl_preallocate+0x250/0x250 [ 20.118039][ T392] ? kmem_cache_free+0xac/0x5f0 [ 20.122883][ T392] ? __fd_install+0x113/0x260 [ 20.127530][ T392] ? do_sys_open+0x642/0x7d0 [ 20.132089][ T392] ? __fpregs_load_activate+0x2d3/0x390 [ 20.137619][ T392] ? security_file_ioctl+0xad/0xc0 [ 20.142706][ T392] __x64_sys_ioctl+0xd4/0x110 [ 20.147396][ T392] do_syscall_64+0xcb/0x150 [ 20.151878][ T392] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 20.157741][ T392] RIP: 0033:0x444ba9 [ 20.161612][ T392] Code: e8 bc af 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 1b d8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 20.181186][ T392] RSP: 002b:00007ffe30bc86b8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 20.189572][ T392] RAX: ffffffffffffffda RBX: 00000000004002e0 RCX: 0000000000444ba9 [ 20.197521][ T392] RDX: 0000000020000040 RSI: 000000004018480c RDI: 0000000000000004 [ 20.205484][ T392] RBP: 00000000006cf018 R08: 8fce4d9635172f21 R09: 00000000004002e0 [ 20.213428][ T392] R10: 000000000000000f R11: 0000000000000246 R12: 0000000000402850 [ 20.221378][ T392] R13: 00000000004028e0 R14: 0000000000000000 R15: 0000000000000000 [ 20.229327][ T392] [ 20.231627][ T392] The buggy address belongs to the page: [ 20.237233][ T392] page:ffffea00073ac000 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 compound_mapcount: 0 [ 20.248124][ T392] flags: 0x8000000000010000(head) [ 20.253125][ T392] raw: 8000000000010000 dead000000000100 dead000000000122 0000000000000000 [ 20.261682][ T392] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 20.270247][ T392] page dumped because: kasan: bad access detected [ 20.276630][ T392] [ 20.278939][ T392] Memory state around the buggy address: [ 20.284540][ T392] ffff8881ceb48300: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 20.292581][ T392] ffff8881ceb48380: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 20.300625][ T392] >ffff8881ceb48400: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 20.308669][ T392] ^ [ 20.313230][ T392] ffff8881ceb48480: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 20.321272][ T392] ffff8881ceb48500: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 20.329319][ T392] ================================================================== [ 20.337358][ T392] Disabling lock debugging due to kernel taint [ 20.3