./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2755411275 <...> [ 34.160124][ T3212] 8021q: adding VLAN 0 to HW filter on device bond0 [ 34.171608][ T3212] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller syzkaller login: [ 41.997470][ T26] kauditd_printk_skb: 37 callbacks suppressed [ 41.997485][ T26] audit: type=1400 audit(1669128332.499:73): avc: denied { transition } for pid=3421 comm="sshd" path="/bin/sh" dev="sda1" ino=73 scontext=system_u:system_r:initrc_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 42.034328][ T26] audit: type=1400 audit(1669128332.529:74): avc: denied { write } for pid=3421 comm="sh" path="pipe:[29070]" dev="pipefs" ino=29070 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:initrc_t tclass=fifo_file permissive=1 Warning: Permanently added '10.128.1.104' (ECDSA) to the list of known hosts. execve("./syz-executor2755411275", ["./syz-executor2755411275"], 0x7ffcd1b8fe40 /* 10 vars */) = 0 brk(NULL) = 0x555555cba000 brk(0x555555cbac40) = 0x555555cbac40 arch_prctl(ARCH_SET_FS, 0x555555cba300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor2755411275", 4096) = 28 brk(0x555555cdbc40) = 0x555555cdbc40 brk(0x555555cdc000) = 0x555555cdc000 mprotect(0x7f3d8e900000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 unshare(CLONE_NEWPID) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555cba5d0) = 3637 ./strace-static-x86_64: Process 3637 attached [pid 3637] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy) [pid 3637] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3637] setsid() = 1 [pid 3637] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0 [pid 3637] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0 [pid 3637] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0 [pid 3637] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0 [pid 3637] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0 [pid 3637] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0 [pid 3637] unshare(CLONE_NEWNS) = 0 [pid 3637] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0 [pid 3637] unshare(CLONE_NEWIPC) = 0 [pid 3637] unshare(CLONE_NEWCGROUP) = 0 [pid 3637] unshare(CLONE_NEWUTS) = 0 [pid 3637] unshare(CLONE_SYSVSEM) = 0 [pid 3637] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3 [pid 3637] write(3, "16777216", 8) = 8 [pid 3637] close(3) = 0 [pid 3637] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3 [pid 3637] write(3, "536870912", 9) = 9 [pid 3637] close(3) = 0 [pid 3637] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3 [pid 3637] write(3, "1024", 4) = 4 [pid 3637] close(3) = 0 [pid 3637] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3 [pid 3637] write(3, "8192", 4) = 4 [pid 3637] close(3) = 0 [pid 3637] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3 [pid 3637] write(3, "1024", 4) = 4 [pid 3637] close(3) = 0 [pid 3637] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3 [pid 3637] write(3, "1024", 4) = 4 [pid 3637] close(3) = 0 [pid 3637] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3 [pid 3637] write(3, "1024 1048576 500 1024", 21) = 21 [pid 3637] close(3) = 0 [pid 3637] getpid() = 1 [pid 3637] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1< 0b e9 58 f8 ff ff e8 1e 14 90 fb 48 81 c5 c0 05 00 00 e9 84 f7 [ 57.738553][ C0] usb 1-1: RX USB error -71. [ 57.743565][ T3643] RSP: 0018:ffffc90003476f28 EFLAGS: 00010282 [ 57.749891][ T3643] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000000 [ 57.757940][ C0] usb 1-1: RX USB error -71. [ 57.762831][ T3643] RDX: ffff88804ba04280 RSI: ffffffff8164973c RDI: fffff5200068edd7 [ 57.771123][ T3643] RBP: ffff88801ca15250 R08: 0000000000000005 R09: 0000000000000000 [ 57.779187][ C0] usb 1-1: RX USB error -71. [ 57.784176][ T3643] R10: 0000000080000000 R11: 0000000000000000 R12: 0000000000000003 [ 57.792401][ T3643] R13: ffff88802878bd40 R14: 0000000000000003 R15: ffff88801cfa8b00 [ 57.800504][ C0] usb 1-1: RX USB error -71. [ 57.805517][ T3643] FS: 0000000000000000(0000) GS:ffff8880b9a00000(0000) knlGS:0000000000000000 [ 57.814666][ C0] usb 1-1: RX USB error -71. [ 57.819355][ T3643] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 57.826213][ T3643] CR2: 0000556c1df31ae0 CR3: 000000007dbcd000 CR4: 00000000003506f0 [ 57.834190][ T3643] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 57.834433][ C0] usb 1-1: RX USB error -71. [ 57.847295][ T3643] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 57.855382][ C0] usb 1-1: RX USB error -71. [ 57.860118][ T3643] Call Trace: [ 57.863398][ T3643] [ 57.866406][ T3643] ar5523_cmd+0x41b/0x780 [ 57.870765][ T3643] ar5523_probe+0x14b0/0x1d10 [ 57.875567][ C0] usb 1-1: RX USB error -71. [ 57.880285][ T3643] ? ar5523_disconnect+0x3e0/0x3e0 [ 57.887340][ T3643] ? _raw_spin_unlock_irqrestore+0x54/0x70 [ 57.895525][ C0] usb 1-1: RX USB error -71. [ 57.901250][ T3643] ? lockdep_hardirqs_on+0x7d/0x100 [ 57.906584][ T3643] ? _raw_spin_unlock_irqrestore+0x41/0x70 [ 57.912411][ T3643] ? __pm_runtime_set_status+0x4bc/0xc80 [ 57.918144][ C0] usb 1-1: RX USB error -71. [ 57.922796][ T3643] usb_probe_interface+0x30f/0x7f0 [ 57.928048][ T3643] ? usb_match_dynamic_id+0x1a0/0x1a0 [ 57.933440][ T3643] really_probe+0x249/0xb90 [ 57.938045][ C0] usb 1-1: RX USB error -71. [ 57.942879][ T3643] __driver_probe_device+0x1df/0x4d0 [ 57.948236][ T3643] ? usb_match_id.part.0+0x15d/0x1b0 [ 57.953553][ T3643] driver_probe_device+0x4c/0x1a0 [ 57.958773][ C0] usb 1-1: RX USB error -71. [ 57.963435][ T3643] __device_attach_driver+0x1d4/0x2e0 [ 57.969046][ T3643] ? driver_allows_async_probing+0x180/0x180 [ 57.975100][ C0] usb 1-1: RX USB error -71. [ 57.979725][ T3643] bus_for_each_drv+0x163/0x1e0 [ 57.984643][ T3643] ? bus_for_each_dev+0x1d0/0x1d0 [ 57.989689][ T3643] ? _raw_spin_unlock_irqrestore+0x54/0x70 [ 57.995596][ C0] usb 1-1: RX USB error -71. [ 58.000298][ T3643] ? lockdep_hardirqs_on+0x7d/0x100 [ 58.005597][ T3643] ? _raw_spin_unlock_irqrestore+0x41/0x70 [ 58.011428][ T3643] __device_attach+0x1e4/0x530 [ 58.016275][ C0] usb 1-1: RX USB error -71. [ 58.020929][ T3643] ? device_driver_attach+0x210/0x210 [ 58.026445][ T3643] ? kobject_uevent_env+0x2a8/0x1620 [ 58.031747][ T3643] bus_probe_device+0x1e8/0x2a0 [ 58.036733][ C0] usb 1-1: RX USB error -71. [ 58.041400][ T3643] device_add+0xbd9/0x1e90 [ 58.045877][ T3643] ? __kmem_cache_free+0x182/0x3b0 [ 58.051023][ T3643] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 58.057392][ C0] usb 1-1: RX USB error -71. [ 58.062270][ T3643] ? lockdep_hardirqs_on+0x7d/0x100 [ 58.067565][ T3643] ? __phys_addr+0xc8/0x140 [ 58.072086][ T3643] usb_set_configuration+0x101d/0x1900 [ 58.077747][ C0] usb 1-1: RX USB error -71. [ 58.082393][ T3643] usb_generic_driver_probe+0xbe/0x100 [ 58.088064][ T3643] usb_probe_device+0xd8/0x2c0 [ 58.092855][ T3643] ? usb_driver_release_interface+0x190/0x190 [ 58.099003][ C0] usb 1-1: RX USB error -71. [ 58.103666][ T3643] really_probe+0x249/0xb90 [ 58.108225][ T3643] __driver_probe_device+0x1df/0x4d0 [ 58.113622][ T3643] driver_probe_device+0x4c/0x1a0 [ 58.118750][ C0] usb 1-1: RX USB error -71. [ 58.123528][ T3643] __device_attach_driver+0x1d4/0x2e0 [ 58.128950][ T3643] ? driver_allows_async_probing+0x180/0x180 [ 58.135033][ C0] usb 1-1: RX USB error -71. [ 58.139730][ T3643] bus_for_each_drv+0x163/0x1e0 [ 58.144751][ T3643] ? bus_for_each_dev+0x1d0/0x1d0 [ 58.149808][ T3643] ? _raw_spin_unlock_irqrestore+0x54/0x70 [ 58.155740][ C0] usb 1-1: RX USB error -71. [ 58.160397][ T3643] ? lockdep_hardirqs_on+0x7d/0x100 [ 58.165643][ T3643] ? _raw_spin_unlock_irqrestore+0x41/0x70 [ 58.171477][ T3643] __device_attach+0x1e4/0x530 [ 58.176359][ C0] usb 1-1: RX USB error -71. [ 58.181129][ T3643] ? device_driver_attach+0x210/0x210 [ 58.186578][ T3643] ? kobject_uevent_env+0x2a8/0x1620 [ 58.191877][ T3643] bus_probe_device+0x1e8/0x2a0 [ 58.196830][ C0] usb 1-1: RX USB error -71. [ 58.201487][ T3643] device_add+0xbd9/0x1e90 [ 58.206061][ T3643] ? lockdep_hardirqs_on+0x7d/0x100 [ 58.211289][ T3643] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 58.217621][ C0] usb 1-1: RX USB error -71. [ 58.222289][ T3643] ? add_device_randomness+0xb8/0xe0 [ 58.227626][ T3643] ? __phys_addr+0xc8/0x140 [ 58.232144][ T3643] usb_new_device.cold+0x685/0x10ad [ 58.237443][ C0] usb 1-1: RX USB error -71. [ 58.242155][ T3643] ? hub_disconnect+0x510/0x510 [ 58.247101][ T3643] ? rwlock_bug.part.0+0x90/0x90 [ 58.252180][ T3643] ? _raw_spin_unlock_irq+0x23/0x50 [ 58.257458][ C0] usb 1-1: RX USB error -71. [ 58.262109][ T3643] hub_event+0x26cb/0x45d0 [ 58.266658][ T3643] ? hub_port_debounce+0x3b0/0x3b0 [ 58.271786][ T3643] ? lock_release+0x810/0x810 [ 58.276561][ C0] usb 1-1: RX USB error -71. [ 58.281213][ T3643] ? lock_downgrade+0x6e0/0x6e0 [ 58.286146][ T3643] process_one_work+0x9bf/0x1710 [ 58.291103][ T3643] ? pwq_dec_nr_in_flight+0x2a0/0x2a0 [ 58.296588][ C0] usb 1-1: RX USB error -71. [ 58.301378][ T3643] ? rwlock_bug.part.0+0x90/0x90 [ 58.306388][ T3643] ? _raw_spin_lock_irq+0x45/0x50 [ 58.311431][ T3643] worker_thread+0x669/0x1090 [ 58.316206][ C0] usb 1-1: RX USB error -71. [ 58.320851][ T3643] ? __kthread_parkme+0x163/0x220 [ 58.326052][ T3643] ? process_one_work+0x1710/0x1710 [ 58.331265][ T3643] kthread+0x2e8/0x3a0 [ 58.335411][ C0] usb 1-1: RX USB error -71. [ 58.340099][ T3643] ? kthread_complete_and_exit+0x40/0x40 [ 58.345795][ T3643] ret_from_fork+0x1f/0x30 [ 58.350236][ T3643] [ 58.353255][ T3643] Kernel panic - not syncing: panic_on_warn set ... [ 58.359831][ T3643] CPU: 0 PID: 3643 Comm: kworker/0:4 Not tainted 6.1.0-rc6-syzkaller #0 [ 58.368155][ T3643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 58.378208][ T3643] Workqueue: usb_hub_wq hub_event [ 58.383230][ T3643] Call Trace: [ 58.386501][ T3643] [ 58.389423][ T3643] dump_stack_lvl+0xd1/0x138 [ 58.394033][ T3643] panic+0x2cc/0x626 [ 58.397917][ T3643] ? panic_print_sys_info.part.0+0x110/0x110 [ 58.403886][ T3643] ? __warn.cold+0x24b/0x350 [ 58.408494][ T3643] ? usb_submit_urb+0xed6/0x1880 [ 58.413538][ T3643] __warn.cold+0x25c/0x350 [ 58.417983][ T3643] ? usb_submit_urb+0xed6/0x1880 [ 58.422928][ T3643] report_bug+0x1c0/0x210 [ 58.427266][ T3643] handle_bug+0x3c/0x70 [ 58.431426][ T3643] exc_invalid_op+0x18/0x50 [ 58.435934][ T3643] asm_exc_invalid_op+0x1a/0x20 [ 58.440807][ T3643] RIP: 0010:usb_submit_urb+0xed6/0x1880 [ 58.446357][ T3643] Code: 7c 24 18 e8 4c 14 90 fb 48 8b 7c 24 18 e8 72 ef 00 ff 41 89 d8 44 89 e1 4c 89 ea 48 89 c6 48 c7 c7 00 a0 fa 8a e8 55 87 bb 03 <0f> 0b e9 58 f8 ff ff e8 1e 14 90 fb 48 81 c5 c0 05 00 00 e9 84 f7 [ 58.466240][ T3643] RSP: 0018:ffffc90003476f28 EFLAGS: 00010282 [ 58.472314][ T3643] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000000 [ 58.480292][ T3643] RDX: ffff88804ba04280 RSI: ffffffff8164973c RDI: fffff5200068edd7 [ 58.488268][ T3643] RBP: ffff88801ca15250 R08: 0000000000000005 R09: 0000000000000000 [ 58.496243][ T3643] R10: 0000000080000000 R11: 0000000000000000 R12: 0000000000000003 [ 58.504220][ T3643] R13: ffff88802878bd40 R14: 0000000000000003 R15: ffff88801cfa8b00 [ 58.512203][ T3643] ? vprintk+0x8c/0xa0 [ 58.516290][ T3643] ? usb_submit_urb+0xed6/0x1880 [ 58.521237][ T3643] ar5523_cmd+0x41b/0x780 [ 58.525579][ T3643] ar5523_probe+0x14b0/0x1d10 [ 58.530272][ T3643] ? ar5523_disconnect+0x3e0/0x3e0 [ 58.535393][ T3643] ? _raw_spin_unlock_irqrestore+0x54/0x70 [ 58.541221][ T3643] ? lockdep_hardirqs_on+0x7d/0x100 [ 58.546433][ T3643] ? _raw_spin_unlock_irqrestore+0x41/0x70 [ 58.552249][ T3643] ? __pm_runtime_set_status+0x4bc/0xc80 [ 58.557893][ T3643] usb_probe_interface+0x30f/0x7f0 [ 58.563016][ T3643] ? usb_match_dynamic_id+0x1a0/0x1a0 [ 58.568402][ T3643] really_probe+0x249/0xb90 [ 58.572917][ T3643] __driver_probe_device+0x1df/0x4d0 [ 58.578255][ T3643] ? usb_match_id.part.0+0x15d/0x1b0 [ 58.583560][ T3643] driver_probe_device+0x4c/0x1a0 [ 58.588608][ T3643] __device_attach_driver+0x1d4/0x2e0 [ 58.593989][ T3643] ? driver_allows_async_probing+0x180/0x180 [ 58.600057][ T3643] bus_for_each_drv+0x163/0x1e0 [ 58.604917][ T3643] ? bus_for_each_dev+0x1d0/0x1d0 [ 58.609957][ T3643] ? _raw_spin_unlock_irqrestore+0x54/0x70 [ 58.615774][ T3643] ? lockdep_hardirqs_on+0x7d/0x100 [ 58.620981][ T3643] ? _raw_spin_unlock_irqrestore+0x41/0x70 [ 58.626796][ T3643] __device_attach+0x1e4/0x530 [ 58.631595][ T3643] ? device_driver_attach+0x210/0x210 [ 58.636976][ T3643] ? kobject_uevent_env+0x2a8/0x1620 [ 58.642265][ T3643] bus_probe_device+0x1e8/0x2a0 [ 58.647130][ T3643] device_add+0xbd9/0x1e90 [ 58.651555][ T3643] ? __kmem_cache_free+0x182/0x3b0 [ 58.656676][ T3643] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 58.662924][ T3643] ? lockdep_hardirqs_on+0x7d/0x100 [ 58.668125][ T3643] ? __phys_addr+0xc8/0x140 [ 58.672633][ T3643] usb_set_configuration+0x101d/0x1900 [ 58.678100][ T3643] usb_generic_driver_probe+0xbe/0x100 [ 58.683563][ T3643] usb_probe_device+0xd8/0x2c0 [ 58.688331][ T3643] ? usb_driver_release_interface+0x190/0x190 [ 58.694405][ T3643] really_probe+0x249/0xb90 [ 58.698921][ T3643] __driver_probe_device+0x1df/0x4d0 [ 58.704219][ T3643] driver_probe_device+0x4c/0x1a0 [ 58.709347][ T3643] __device_attach_driver+0x1d4/0x2e0 [ 58.714723][ T3643] ? driver_allows_async_probing+0x180/0x180 [ 58.720702][ T3643] bus_for_each_drv+0x163/0x1e0 [ 58.725562][ T3643] ? bus_for_each_dev+0x1d0/0x1d0 [ 58.730594][ T3643] ? _raw_spin_unlock_irqrestore+0x54/0x70 [ 58.736408][ T3643] ? lockdep_hardirqs_on+0x7d/0x100 [ 58.741618][ T3643] ? _raw_spin_unlock_irqrestore+0x41/0x70 [ 58.747436][ T3643] __device_attach+0x1e4/0x530 [ 58.752212][ T3643] ? device_driver_attach+0x210/0x210 [ 58.757596][ T3643] ? kobject_uevent_env+0x2a8/0x1620 [ 58.762888][ T3643] bus_probe_device+0x1e8/0x2a0 [ 58.767749][ T3643] device_add+0xbd9/0x1e90 [ 58.772173][ T3643] ? lockdep_hardirqs_on+0x7d/0x100 [ 58.777374][ T3643] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 58.783626][ T3643] ? add_device_randomness+0xb8/0xe0 [ 58.788916][ T3643] ? __phys_addr+0xc8/0x140 [ 58.793434][ T3643] usb_new_device.cold+0x685/0x10ad [ 58.798641][ T3643] ? hub_disconnect+0x510/0x510 [ 58.803491][ T3643] ? rwlock_bug.part.0+0x90/0x90 [ 58.808442][ T3643] ? _raw_spin_unlock_irq+0x23/0x50 [ 58.813652][ T3643] hub_event+0x26cb/0x45d0 [ 58.818095][ T3643] ? hub_port_debounce+0x3b0/0x3b0 [ 58.823214][ T3643] ? lock_release+0x810/0x810 [ 58.827897][ T3643] ? lock_downgrade+0x6e0/0x6e0 [ 58.832757][ T3643] process_one_work+0x9bf/0x1710 [ 58.837712][ T3643] ? pwq_dec_nr_in_flight+0x2a0/0x2a0 [ 58.843087][ T3643] ? rwlock_bug.part.0+0x90/0x90 [ 58.848032][ T3643] ? _raw_spin_lock_irq+0x45/0x50 [ 58.853064][ T3643] worker_thread+0x669/0x1090 [ 58.857832][ T3643] ? __kthread_parkme+0x163/0x220 [ 58.862863][ T3643] ? process_one_work+0x1710/0x1710 [ 58.868062][ T3643] kthread+0x2e8/0x3a0 [ 58.872140][ T3643] ? kthread_complete_and_exit+0x40/0x40 [ 58.877780][ T3643] ret_from_fork+0x1f/0x30 [ 58.882203][ T3643] [ 58.885373][ T3643] Kernel Offset: disabled [ 58.889783][ T3643] Rebooting in 86400 seconds..