Warning: Permanently added '10.128.0.220' (ECDSA) to the list of known hosts. 2020/07/16 03:51:27 parsed 1 programs 2020/07/16 03:51:27 executed programs: 0 [ 31.874434][ T470] cgroup: Unknown subsys name 'perf_event' [ 31.879597][ T468] cgroup: Unknown subsys name 'perf_event' [ 31.881400][ T472] cgroup: Unknown subsys name 'perf_event' [ 31.889164][ T468] cgroup: Unknown subsys name 'net_cls' [ 31.898776][ T473] cgroup: Unknown subsys name 'perf_event' [ 31.905232][ T477] cgroup: Unknown subsys name 'perf_event' [ 31.905582][ T470] cgroup: Unknown subsys name 'net_cls' [ 31.911403][ T477] cgroup: Unknown subsys name 'net_cls' [ 31.918719][ T476] cgroup: Unknown subsys name 'perf_event' [ 31.929087][ T473] cgroup: Unknown subsys name 'net_cls' [ 31.935491][ T476] cgroup: Unknown subsys name 'net_cls' [ 31.942479][ T472] cgroup: Unknown subsys name 'net_cls' [ 39.238990][ T69] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 39.288978][ T21] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 39.338991][ T3165] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 39.348967][ T68] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 39.369038][ T12] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 39.389270][ T3178] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 39.478946][ T69] usb 6-1: Using ep0 maxpacket: 16 [ 39.528972][ T21] usb 1-1: Using ep0 maxpacket: 16 [ 39.579010][ T3165] usb 4-1: Using ep0 maxpacket: 16 [ 39.598946][ T68] usb 5-1: Using ep0 maxpacket: 16 [ 39.599061][ T69] usb 6-1: config 53 has an invalid interface number: 236 but max is 1 [ 39.612672][ T69] usb 6-1: config 53 has an invalid interface number: 168 but max is 1 [ 39.618877][ T12] usb 3-1: Using ep0 maxpacket: 16 [ 39.621052][ T69] usb 6-1: config 53 has no interface number 0 [ 39.632443][ T69] usb 6-1: config 53 has no interface number 1 [ 39.640712][ T69] usb 6-1: config 53 interface 236 altsetting 163 endpoint 0xE has an invalid bInterval 89, changing to 7 [ 39.652224][ T69] usb 6-1: config 53 interface 236 altsetting 163 endpoint 0xF has invalid maxpacket 512, setting to 64 [ 39.658871][ T3178] usb 2-1: Using ep0 maxpacket: 16 [ 39.663903][ T69] usb 6-1: config 53 interface 236 altsetting 163 has an invalid endpoint with address 0x80, skipping [ 39.679893][ T69] usb 6-1: config 53 interface 236 altsetting 163 endpoint 0xA has invalid wMaxPacketSize 0 [ 39.690017][ T69] usb 6-1: config 53 interface 236 altsetting 163 endpoint 0x4 has invalid maxpacket 1024, setting to 64 [ 39.701461][ T69] usb 6-1: config 53 interface 236 altsetting 163 endpoint 0x2 has invalid maxpacket 1024, setting to 64 [ 39.712856][ T21] usb 1-1: config 53 has an invalid interface number: 236 but max is 1 [ 39.721643][ T21] usb 1-1: config 53 has an invalid interface number: 168 but max is 1 [ 39.729250][ T68] usb 5-1: config 53 has an invalid interface number: 236 but max is 1 [ 39.730736][ T21] usb 1-1: config 53 has no interface number 0 [ 39.739158][ T68] usb 5-1: config 53 has an invalid interface number: 168 but max is 1 [ 39.745296][ T21] usb 1-1: config 53 has no interface number 1 [ 39.753535][ T68] usb 5-1: config 53 has no interface number 0 [ 39.759830][ T69] usb 6-1: config 53 interface 168 altsetting 1 endpoint 0xB has invalid maxpacket 512, setting to 64 [ 39.766439][ T68] usb 5-1: config 53 has no interface number 1 [ 39.777397][ T69] usb 6-1: config 53 interface 168 altsetting 1 endpoint 0x8 has invalid maxpacket 1024, setting to 64 [ 39.784234][ T12] usb 3-1: config 53 has an invalid interface number: 236 but max is 1 [ 39.794666][ T69] usb 6-1: config 53 interface 168 altsetting 1 has an invalid endpoint with address 0x0, skipping [ 39.794685][ T69] usb 6-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0xF, skipping [ 39.794704][ T69] usb 6-1: config 53 interface 168 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64 [ 39.794722][ T69] usb 6-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0x3, skipping [ 39.794739][ T69] usb 6-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0xD, skipping [ 39.794755][ T69] usb 6-1: config 53 interface 236 has no altsetting 0 [ 39.794770][ T69] usb 6-1: config 53 interface 168 has no altsetting 0 [ 39.794882][ T21] usb 1-1: config 53 interface 236 altsetting 163 endpoint 0xE has an invalid bInterval 89, changing to 7 [ 39.803069][ T12] usb 3-1: config 53 has an invalid interface number: 168 but max is 1 [ 39.803084][ T12] usb 3-1: config 53 has no interface number 0 [ 39.803097][ T12] usb 3-1: config 53 has no interface number 1 [ 39.804045][ T12] usb 3-1: config 53 interface 236 altsetting 163 endpoint 0xE has an invalid bInterval 89, changing to 7 [ 39.814450][ T21] usb 1-1: config 53 interface 236 altsetting 163 endpoint 0xF has invalid maxpacket 512, setting to 64 [ 39.814473][ T21] usb 1-1: config 53 interface 236 altsetting 163 has an invalid endpoint with address 0x80, skipping [ 39.825278][ T12] usb 3-1: config 53 interface 236 altsetting 163 endpoint 0xF has invalid maxpacket 512, setting to 64 [ 39.836177][ T21] usb 1-1: config 53 interface 236 altsetting 163 endpoint 0xA has invalid wMaxPacketSize 0 [ 39.846967][ T12] usb 3-1: config 53 interface 236 altsetting 163 has an invalid endpoint with address 0x80, skipping [ 39.857746][ T21] usb 1-1: config 53 interface 236 altsetting 163 endpoint 0x4 has invalid maxpacket 1024, setting to 64 [ 39.864606][ T12] usb 3-1: config 53 interface 236 altsetting 163 endpoint 0xA has invalid wMaxPacketSize 0 [ 39.871456][ T21] usb 1-1: config 53 interface 236 altsetting 163 endpoint 0x2 has invalid maxpacket 1024, setting to 64 [ 39.871522][ T3165] usb 4-1: config 53 has an invalid interface number: 236 but max is 1 [ 39.882874][ T12] usb 3-1: config 53 interface 236 altsetting 163 endpoint 0x4 has invalid maxpacket 1024, setting to 64 [ 39.891110][ T3165] usb 4-1: config 53 has an invalid interface number: 168 but max is 1 [ 39.897248][ T12] usb 3-1: config 53 interface 236 altsetting 163 endpoint 0x2 has invalid maxpacket 1024, setting to 64 [ 39.903393][ T3165] usb 4-1: config 53 has no interface number 0 [ 39.903408][ T3165] usb 4-1: config 53 has no interface number 1 [ 39.915304][ T68] usb 5-1: config 53 interface 236 altsetting 163 endpoint 0xE has an invalid bInterval 89, changing to 7 [ 39.943516][ T3165] usb 4-1: config 53 interface 236 altsetting 163 endpoint 0xE has an invalid bInterval 89, changing to 7 [ 39.947990][ T68] usb 5-1: config 53 interface 236 altsetting 163 endpoint 0xF has invalid maxpacket 512, setting to 64 [ 39.958548][ T3165] usb 4-1: config 53 interface 236 altsetting 163 endpoint 0xF has invalid maxpacket 512, setting to 64 [ 39.969822][ T68] usb 5-1: config 53 interface 236 altsetting 163 has an invalid endpoint with address 0x80, skipping [ 39.969840][ T68] usb 5-1: config 53 interface 236 altsetting 163 endpoint 0xA has invalid wMaxPacketSize 0 [ 39.969860][ T68] usb 5-1: config 53 interface 236 altsetting 163 endpoint 0x4 has invalid maxpacket 1024, setting to 64 [ 39.969878][ T68] usb 5-1: config 53 interface 236 altsetting 163 endpoint 0x2 has invalid maxpacket 1024, setting to 64 [ 39.970197][ T3178] usb 2-1: config 53 has an invalid interface number: 236 but max is 1 [ 39.982419][ T3165] usb 4-1: config 53 interface 236 altsetting 163 has an invalid endpoint with address 0x80, skipping [ 39.982436][ T3165] usb 4-1: config 53 interface 236 altsetting 163 endpoint 0xA has invalid wMaxPacketSize 0 [ 39.982457][ T3165] usb 4-1: config 53 interface 236 altsetting 163 endpoint 0x4 has invalid maxpacket 1024, setting to 64 [ 39.992603][ T3178] usb 2-1: config 53 has an invalid interface number: 168 but max is 1 [ 39.992621][ T3178] usb 2-1: config 53 has no interface number 0 [ 40.003830][ T3165] usb 4-1: config 53 interface 236 altsetting 163 endpoint 0x2 has invalid maxpacket 1024, setting to 64 [ 40.012229][ T3178] usb 2-1: config 53 has no interface number 1 [ 40.012933][ T3178] usb 2-1: config 53 interface 236 altsetting 163 endpoint 0xE has an invalid bInterval 89, changing to 7 [ 40.031439][ T21] usb 1-1: config 53 interface 168 altsetting 1 endpoint 0xB has invalid maxpacket 512, setting to 64 [ 40.031834][ T3178] usb 2-1: config 53 interface 236 altsetting 163 endpoint 0xF has invalid maxpacket 512, setting to 64 [ 40.044485][ T21] usb 1-1: config 53 interface 168 altsetting 1 endpoint 0x8 has invalid maxpacket 1024, setting to 64 [ 40.050702][ T3178] usb 2-1: config 53 interface 236 altsetting 163 has an invalid endpoint with address 0x80, skipping [ 40.050719][ T3178] usb 2-1: config 53 interface 236 altsetting 163 endpoint 0xA has invalid wMaxPacketSize 0 [ 40.050738][ T3178] usb 2-1: config 53 interface 236 altsetting 163 endpoint 0x4 has invalid maxpacket 1024, setting to 64 [ 40.050756][ T3178] usb 2-1: config 53 interface 236 altsetting 163 endpoint 0x2 has invalid maxpacket 1024, setting to 64 [ 40.054375][ T68] usb 5-1: config 53 interface 168 altsetting 1 endpoint 0xB has invalid maxpacket 512, setting to 64 [ 40.056915][ T21] usb 1-1: config 53 interface 168 altsetting 1 has an invalid endpoint with address 0x0, skipping [ 40.056932][ T21] usb 1-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0xF, skipping [ 40.056952][ T21] usb 1-1: config 53 interface 168 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64 [ 40.068268][ T68] usb 5-1: config 53 interface 168 altsetting 1 endpoint 0x8 has invalid maxpacket 1024, setting to 64 [ 40.079911][ T21] usb 1-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0x3, skipping [ 40.091466][ T68] usb 5-1: config 53 interface 168 altsetting 1 has an invalid endpoint with address 0x0, skipping [ 40.102585][ T21] usb 1-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0xD, skipping [ 40.113521][ T68] usb 5-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0xF, skipping [ 40.123574][ T21] usb 1-1: config 53 interface 236 has no altsetting 0 [ 40.123588][ T21] usb 1-1: config 53 interface 168 has no altsetting 0 [ 40.123866][ T3165] usb 4-1: config 53 interface 168 altsetting 1 endpoint 0xB has invalid maxpacket 512, setting to 64 [ 40.134910][ T68] usb 5-1: config 53 interface 168 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64 [ 40.134928][ T68] usb 5-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0x3, skipping [ 40.134944][ T68] usb 5-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0xD, skipping [ 40.134959][ T68] usb 5-1: config 53 interface 236 has no altsetting 0 [ 40.134974][ T68] usb 5-1: config 53 interface 168 has no altsetting 0 [ 40.144023][ T12] usb 3-1: config 53 interface 168 altsetting 1 endpoint 0xB has invalid maxpacket 512, setting to 64 [ 40.147748][ T3165] usb 4-1: config 53 interface 168 altsetting 1 endpoint 0x8 has invalid maxpacket 1024, setting to 64 [ 40.157744][ T12] usb 3-1: config 53 interface 168 altsetting 1 endpoint 0x8 has invalid maxpacket 1024, setting to 64 [ 40.157765][ T12] usb 3-1: config 53 interface 168 altsetting 1 has an invalid endpoint with address 0x0, skipping [ 40.168724][ T3165] usb 4-1: config 53 interface 168 altsetting 1 has an invalid endpoint with address 0x0, skipping [ 40.179226][ T12] usb 3-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0xF, skipping [ 40.191989][ T3165] usb 4-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0xF, skipping [ 40.192010][ T3165] usb 4-1: config 53 interface 168 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64 [ 40.200248][ T12] usb 3-1: config 53 interface 168 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64 [ 40.206388][ T3165] usb 4-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0x3, skipping [ 40.217590][ T12] usb 3-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0x3, skipping [ 40.224177][ T3165] usb 4-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0xD, skipping [ 40.235481][ T12] usb 3-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0xD, skipping [ 40.246419][ T3165] usb 4-1: config 53 interface 236 has no altsetting 0 [ 40.257519][ T12] usb 3-1: config 53 interface 236 has no altsetting 0 [ 40.268716][ T3165] usb 4-1: config 53 interface 168 has no altsetting 0 [ 40.279648][ T12] usb 3-1: config 53 interface 168 has no altsetting 0 [ 40.389103][ T69] usb 6-1: New USB device found, idVendor=0bda, idProduct=8712, bcdDevice=bc.bf [ 40.399189][ T3178] usb 2-1: config 53 interface 168 altsetting 1 endpoint 0xB has invalid maxpacket 512, setting to 64 [ 40.409835][ T69] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 40.416628][ T3178] usb 2-1: config 53 interface 168 altsetting 1 endpoint 0x8 has invalid maxpacket 1024, setting to 64 [ 40.423484][ T69] usb 6-1: Product: syz [ 40.434427][ T3178] usb 2-1: config 53 interface 168 altsetting 1 has an invalid endpoint with address 0x0, skipping [ 40.434446][ T3178] usb 2-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0xF, skipping [ 40.445381][ T69] usb 6-1: Manufacturer: syz [ 40.456139][ T3178] usb 2-1: config 53 interface 168 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64 [ 40.466882][ T69] usb 6-1: SerialNumber: syz [ 40.473914][ T3178] usb 2-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0x3, skipping [ 40.518944][ T21] usb 1-1: New USB device found, idVendor=0bda, idProduct=8712, bcdDevice=bc.bf [ 40.524854][ T3178] usb 2-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0xD, skipping [ 40.524871][ T3178] usb 2-1: config 53 interface 236 has no altsetting 0 [ 40.524888][ T3178] usb 2-1: config 53 interface 168 has no altsetting 0 [ 40.535721][ T21] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 40.718995][ T3178] usb 2-1: New USB device found, idVendor=0bda, idProduct=8712, bcdDevice=bc.bf [ 40.719496][ T21] usb 1-1: Product: syz [ 40.719509][ T21] usb 1-1: Manufacturer: syz [ 40.719525][ T21] usb 1-1: SerialNumber: syz [ 40.731119][ T3178] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 40.735775][ T3165] usb 4-1: New USB device found, idVendor=0bda, idProduct=8712, bcdDevice=bc.bf [ 40.746470][ T3178] usb 2-1: Product: syz [ 40.755482][ T3165] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 40.755498][ T3165] usb 4-1: Product: syz [ 40.766245][ T3178] usb 2-1: Manufacturer: syz [ 40.766259][ T3178] usb 2-1: SerialNumber: syz [ 40.773320][ T3165] usb 4-1: Manufacturer: syz [ 40.773336][ T3165] usb 4-1: SerialNumber: syz [ 40.780866][ T68] usb 5-1: New USB device found, idVendor=0bda, idProduct=8712, bcdDevice=bc.bf [ 40.861372][ T69] r8712u: register rtl8712_netdev_ops to netdev_ops [ 40.863392][ T68] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 40.872525][ T69] usb 6-1: r8712u: USB_SPEED_HIGH with 6 endpoints [ 40.879108][ T68] usb 5-1: Product: syz [ 40.879121][ T68] usb 5-1: Manufacturer: syz [ 40.879133][ T68] usb 5-1: SerialNumber: syz [ 40.884809][ T12] usb 3-1: New USB device found, idVendor=0bda, idProduct=8712, bcdDevice=bc.bf [ 40.916024][ T12] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 40.924053][ T12] usb 3-1: Product: syz [ 40.928213][ T12] usb 3-1: Manufacturer: syz [ 40.928911][ T69] usb 6-1: r8712u: Boot from EFUSE: Autoload Failed [ 40.932867][ T12] usb 3-1: SerialNumber: syz [ 40.939499][ T69] usb 6-1: r8712u: MAC Address from efuse = 00:e0:4c:87:00:00 [ 40.951614][ T69] usb 6-1: r8712u: Loading firmware from "rtlwifi/rtl8712u.bin" [ 41.000388][ T3179] usb 6-1: Direct firmware load for rtlwifi/rtl8712u.bin failed with error -2 [ 41.009487][ T3179] usb 6-1: r8712u: Firmware request failed [ 41.020824][ T69] r8712u: register rtl8712_netdev_ops to netdev_ops [ 41.027469][ T69] usb 6-1: r8712u: USB_SPEED_HIGH with 5 endpoints [ 41.068816][ T69] usb 6-1: r8712u: Boot from EFUSE: Autoload Failed [ 41.075476][ T69] usb 6-1: r8712u: MAC Address from efuse = 00:e0:4c:87:00:00 [ 41.083084][ T69] usb 6-1: r8712u: Loading firmware from "rtlwifi/rtl8712u.bin" [ 41.093771][ T69] usb 6-1: USB disconnect, device number 2 [ 41.106697][ T3179] usb 6-1: Direct firmware load for rtlwifi/rtl8712u.bin failed with error -2 [ 41.116227][ T3179] usb 6-1: r8712u: Firmware request failed [ 41.127923][ T69] ================================================================== [ 41.136110][ T69] BUG: KASAN: use-after-free in __mutex_lock+0xfc2/0x10a0 [ 41.143196][ T69] Read of size 8 at addr ffff8881da399210 by task kworker/1:2/69 [ 41.150891][ T69] [ 41.153200][ T69] CPU: 1 PID: 69 Comm: kworker/1:2 Not tainted 5.8.0-rc5-syzkaller #0 [ 41.161340][ T69] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 41.171466][ T69] Workqueue: usb_hub_wq hub_event [ 41.177156][ T69] Call Trace: [ 41.180424][ T69] dump_stack+0xf6/0x16e [ 41.184654][ T69] ? __mutex_lock+0xfc2/0x10a0 [ 41.189405][ T69] ? __mutex_lock+0xfc2/0x10a0 [ 41.194187][ T69] print_address_description.constprop.0+0x1a/0x210 [ 41.200747][ T69] ? vprintk_func+0x93/0x133 [ 41.205311][ T69] ? __mutex_lock+0xfc2/0x10a0 [ 41.210054][ T69] kasan_report.cold+0x37/0x7c [ 41.214791][ T69] ? __mutex_lock+0xfc2/0x10a0 [ 41.219543][ T69] __mutex_lock+0xfc2/0x10a0 [ 41.224120][ T69] ? trace_hardirqs_on+0x5f/0x200 [ 41.229136][ T69] ? device_release_driver+0x1c/0x40 [ 41.234557][ T69] ? mutex_lock_io_nested+0xf50/0xf50 [ 41.239929][ T69] ? slab_free_freelist_hook+0x53/0x140 [ 41.245476][ T69] ? kfree_const+0x51/0x60 [ 41.249985][ T69] ? kfree_const+0x51/0x60 [ 41.254375][ T69] ? kfree+0xbc/0x2c0 [ 41.258341][ T69] ? system_root_device_release+0x20/0x20 [ 41.264048][ T69] ? kfree_const+0x51/0x60 [ 41.268470][ T69] ? kobject_put+0x26f/0x540 [ 41.273074][ T69] device_release_driver+0x1c/0x40 [ 41.278168][ T69] bus_remove_device+0x2eb/0x5a0 [ 41.283266][ T69] device_del+0x47c/0xd20 [ 41.287588][ T69] ? device_link_add_missing_supplier_links+0x370/0x370 [ 41.294514][ T69] ? kobject_put+0x26f/0x540 [ 41.299256][ T69] usb_disconnect.cold+0x4aa/0x780 [ 41.304375][ T69] hub_event+0x1c93/0x4390 [ 41.308771][ T69] ? hub_port_debounce+0x3b0/0x3b0 [ 41.313867][ T69] ? perf_trace_workqueue_execute_start+0x250/0x390 [ 41.320615][ T69] ? lock_release+0x7e0/0x7e0 [ 41.325268][ T69] ? lock_downgrade+0x730/0x730 [ 41.330181][ T69] ? do_raw_spin_lock+0x120/0x260 [ 41.335184][ T69] ? _raw_spin_unlock_irq+0x1f/0x30 [ 41.340391][ T69] ? lockdep_hardirqs_on_prepare+0x370/0x550 [ 41.346369][ T69] process_one_work+0x94c/0x15f0 [ 41.351285][ T69] ? lock_release+0x7e0/0x7e0 [ 41.355936][ T69] ? pwq_dec_nr_in_flight+0x2d0/0x2d0 [ 41.361283][ T69] ? rwlock_bug.part.0+0x90/0x90 [ 41.366197][ T69] worker_thread+0x82b/0x1120 [ 41.370850][ T69] ? __kthread_parkme+0x118/0x1d0 [ 41.375858][ T69] ? process_one_work+0x15f0/0x15f0 [ 41.381043][ T69] kthread+0x392/0x470 [ 41.385097][ T69] ? kthread_create_worker_on_cpu+0xf0/0xf0 [ 41.390970][ T69] ? kthread_create_worker_on_cpu+0xf0/0xf0 [ 41.396931][ T69] ret_from_fork+0x1f/0x30 [ 41.401340][ T69] [ 41.403642][ T69] Allocated by task 69: [ 41.407777][ T69] save_stack+0x1b/0x40 [ 41.411916][ T69] __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 41.417530][ T69] usb_alloc_dev+0x51/0xf67 [ 41.422009][ T69] hub_event+0x1dff/0x4390 [ 41.426401][ T69] process_one_work+0x94c/0x15f0 [ 41.431312][ T69] worker_thread+0x64c/0x1120 [ 41.435961][ T69] kthread+0x392/0x470 [ 41.440005][ T69] ret_from_fork+0x1f/0x30 [ 41.444390][ T69] [ 41.446693][ T69] Freed by task 69: [ 41.450510][ T69] save_stack+0x1b/0x40 [ 41.454648][ T69] __kasan_slab_free+0x116/0x160 [ 41.459577][ T69] slab_free_freelist_hook+0x53/0x140 [ 41.464924][ T69] kfree+0xbc/0x2c0 [ 41.468882][ T69] device_release+0x71/0x200 [ 41.473444][ T69] kobject_put+0x245/0x540 [ 41.477849][ T69] put_device+0x1b/0x30 [ 41.482008][ T69] klist_put+0x10f/0x1d0 [ 41.486242][ T69] bus_remove_device+0x43e/0x5a0 [ 41.491283][ T69] device_del+0x47c/0xd20 [ 41.496039][ T69] usb_disconnect.cold+0x4aa/0x780 [ 41.501132][ T69] hub_event+0x1c93/0x4390 [ 41.505550][ T69] process_one_work+0x94c/0x15f0 [ 41.510462][ T69] worker_thread+0x82b/0x1120 [ 41.515114][ T69] kthread+0x392/0x470 [ 41.519167][ T69] ret_from_fork+0x1f/0x30 [ 41.523551][ T69] [ 41.525862][ T69] The buggy address belongs to the object at ffff8881da399000 [ 41.525862][ T69] which belongs to the cache kmalloc-2k of size 2048 [ 41.539976][ T69] The buggy address is located 528 bytes inside of [ 41.539976][ T69] 2048-byte region [ffff8881da399000, ffff8881da399800) [ 41.553414][ T69] The buggy address belongs to the page: [ 41.559078][ T69] page:ffffea000768e600 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 head:ffffea000768e600 order:3 compound_mapcount:0 compound_pincount:0 [ 41.574249][ T69] flags: 0x200000000010200(slab|head) [ 41.579714][ T69] raw: 0200000000010200 dead000000000100 dead000000000122 ffff8881da00c000 [ 41.588630][ T69] raw: 0000000000000000 0000000000080008 00000001ffffffff 0000000000000000 [ 41.597221][ T69] page dumped because: kasan: bad access detected [ 41.603613][ T69] [ 41.605921][ T69] Memory state around the buggy address: [ 41.611545][ T69] ffff8881da399100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 41.619586][ T69] ffff8881da399180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 41.627658][ T69] >ffff8881da399200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 41.635705][ T69] ^ [ 41.640302][ T69] ffff8881da399280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 41.648355][ T69] ffff8881da399300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 41.656403][ T69] ================================================================== [ 41.664875][ T69] Disabling lock debugging due to kernel taint [ 41.671224][ T69] Kernel panic - not syncing: panic_on_warn set ... [ 41.677816][ T69] CPU: 1 PID: 69 Comm: kworker/1:2 Tainted: G B 5.8.0-rc5-syzkaller #0 [ 41.687376][ T69] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 41.697445][ T69] Workqueue: usb_hub_wq hub_event [ 41.702459][ T69] Call Trace: [ 41.705745][ T69] dump_stack+0xf6/0x16e [ 41.709988][ T69] ? __mutex_lock+0xf30/0x10a0 [ 41.714766][ T69] panic+0x2aa/0x6e1 [ 41.718652][ T69] ? __warn_printk+0xf3/0xf3 [ 41.723226][ T69] ? __mutex_lock+0xfc2/0x10a0 [ 41.727970][ T69] ? trace_hardirqs_on+0x55/0x200 [ 41.732971][ T69] ? __mutex_lock+0xfc2/0x10a0 [ 41.737709][ T69] ? __mutex_lock+0xfc2/0x10a0 [ 41.742451][ T69] end_report+0x4d/0x53 [ 41.746604][ T69] kasan_report.cold+0x72/0x7c [ 41.751344][ T69] ? __mutex_lock+0xfc2/0x10a0 [ 41.756085][ T69] __mutex_lock+0xfc2/0x10a0 [ 41.760650][ T69] ? trace_hardirqs_on+0x5f/0x200 [ 41.765653][ T69] ? device_release_driver+0x1c/0x40 [ 41.770912][ T69] ? mutex_lock_io_nested+0xf50/0xf50 [ 41.776306][ T69] ? slab_free_freelist_hook+0x53/0x140 [ 41.781841][ T69] ? kfree_const+0x51/0x60 [ 41.786244][ T69] ? kfree_const+0x51/0x60 [ 41.790650][ T69] ? kfree+0xbc/0x2c0 [ 41.794842][ T69] ? system_root_device_release+0x20/0x20 [ 41.800552][ T69] ? kfree_const+0x51/0x60 [ 41.804973][ T69] ? kobject_put+0x26f/0x540 [ 41.809550][ T69] device_release_driver+0x1c/0x40 [ 41.814638][ T69] bus_remove_device+0x2eb/0x5a0 [ 41.819620][ T69] device_del+0x47c/0xd20 [ 41.823942][ T69] ? device_link_add_missing_supplier_links+0x370/0x370 [ 41.830859][ T69] ? kobject_put+0x26f/0x540 [ 41.835430][ T69] usb_disconnect.cold+0x4aa/0x780 [ 41.840524][ T69] hub_event+0x1c93/0x4390 [ 41.844940][ T69] ? hub_port_debounce+0x3b0/0x3b0 [ 41.850037][ T69] ? perf_trace_workqueue_execute_start+0x250/0x390 [ 41.856602][ T69] ? lock_release+0x7e0/0x7e0 [ 41.861267][ T69] ? lock_downgrade+0x730/0x730 [ 41.866128][ T69] ? do_raw_spin_lock+0x120/0x260 [ 41.871137][ T69] ? _raw_spin_unlock_irq+0x1f/0x30 [ 41.876409][ T69] ? lockdep_hardirqs_on_prepare+0x370/0x550 [ 41.882378][ T69] process_one_work+0x94c/0x15f0 [ 41.887385][ T69] ? lock_release+0x7e0/0x7e0 [ 41.892036][ T69] ? pwq_dec_nr_in_flight+0x2d0/0x2d0 [ 41.897513][ T69] ? rwlock_bug.part.0+0x90/0x90 [ 41.902434][ T69] worker_thread+0x82b/0x1120 [ 41.907100][ T69] ? __kthread_parkme+0x118/0x1d0 [ 41.912102][ T69] ? process_one_work+0x15f0/0x15f0 [ 41.917282][ T69] kthread+0x392/0x470 [ 41.921332][ T69] ? kthread_create_worker_on_cpu+0xf0/0xf0 [ 41.927308][ T69] ? kthread_create_worker_on_cpu+0xf0/0xf0 [ 41.933214][ T69] ret_from_fork+0x1f/0x30 [ 41.938406][ T69] Kernel Offset: disabled [ 41.942899][ T69] Rebooting in 86400 seconds..