[ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.10.51' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 47.370565][ T17] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 47.890466][ T17] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 47.899491][ T17] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 47.907930][ T17] usb 1-1: Product: syz [ 47.912481][ T17] usb 1-1: Manufacturer: syz [ 47.917050][ T17] usb 1-1: SerialNumber: syz [ 47.960662][ T17] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 48.610289][ T17] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 48.810922][ T3856] usb 1-1: USB disconnect, device number 2 [ 49.640072][ T17] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive [ 49.646969][ T17] ath9k_htc: Failed to initialize the device [ 49.653581][ T3856] usb 1-1: ath9k_htc: USB layer deinitialized [ 54.580719][ T8515] kmemleak: 24 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 56.544237][ T8515] kmemleak: 8 new suspected memory leaks (see /sys/kernel/debug/kmemleak) BUG: memory leak unreferenced object 0xffff88810dab58e0 (size 32): comm "syz-executor925", pid 8516, jiffies 4294941962 (age 9.500s) hex dump (first 32 bytes): 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<0000000044325bf9>] gadget_bind+0x223/0x340 [<0000000008c4ef74>] udc_bind_to_driver+0x62/0x150 [<00000000186f94f6>] usb_gadget_probe_driver+0x1c7/0x230 [<00000000e6d7ee07>] raw_ioctl+0x5da/0xf30 [<00000000e7f6279e>] __x64_sys_ioctl+0xfc/0x140 [<00000000de02c63f>] do_syscall_64+0x2d/0x70 [<00000000bc110b5f>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff8881104ff520 (size 32): comm "softirq", pid 0, jiffies 4294941991 (age 9.210s) hex dump (first 32 bytes): 02 00 00 00 08 00 00 00 80 06 00 01 00 00 40 00 ..............@. 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<0000000001c82dfa>] gadget_setup+0xf6/0x220 [<00000000b0494086>] dummy_timer+0xb9f/0x14c0 [<00000000f4e73a14>] call_timer_fn+0x38/0x200 [<000000000077e4be>] __run_timers.part.0+0x319/0x400 [<00000000cc9faa77>] run_timer_softirq+0x3d/0x80 [<000000006bf9ae85>] __do_softirq+0xcc/0x2c2 [<00000000da6221d6>] asm_call_irq_on_stack+0xf/0x20 [<0000000098db5820>] do_softirq_own_stack+0x32/0x40 [<000000003bc96956>] irq_exit_rcu+0x91/0xc0 [<0000000094111ad0>] sysvec_apic_timer_interrupt+0x36/0x80 [<00000000708c817d>] asm_sysvec_apic_timer_interrupt+0x12/0x20 [<000000003ce3f518>] acpi_idle_do_entry+0xc3/0xd0 [<0000000080318930>] acpi_idle_enter+0x128/0x1f0 [<000000009ec2af99>] cpuidle_enter_state+0xc9/0x650 [<00000000a922aada>] cpuidle_enter+0x29/0x40 [<0000000097e374a0>] do_idle+0x1c8/0x250 BUG: memory leak unreferenced object 0xffff8881096399a0 (size 32): comm "softirq", pid 0, jiffies 4294942015 (age 8.970s) hex dump (first 32 bytes): 02 00 00 00 08 00 00 00 80 06 00 01 00 00 12 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<0000000001c82dfa>] gadget_setup+0xf6/0x220 [<00000000b0494086>] dummy_timer+0xb9f/0x14c0 [<00000000f4e73a14>] call_timer_fn+0x38/0x200 [<000000000077e4be>] __run_timers.part.0+0x319/0x400 [<00000000cc9faa77>] run_timer_softirq+0x3d/0x80 [<000000006bf9ae85>] __do_softirq+0xcc/0x2c2 [<00000000da6221d6>] asm_call_irq_on_stack+0xf/0x20 [<0000000098db5820>] do_softirq_own_stack+0x32/0x40 [<000000003bc96956>] irq_exit_rcu+0x91/0xc0 [<0000000094111ad0>] sysvec_apic_timer_interrupt+0x36/0x80 [<00000000708c817d>] asm_sysvec_apic_timer_interrupt+0x12/0x20 [<000000003ce3f518>] acpi_idle_do_entry+0xc3/0xd0 [<0000000080318930>] acpi_idle_enter+0x128/0x1f0 [<000000009ec2af99>] cpuidle_enter_state+0xc9/0x650 [<00000000a922aada>] cpuidle_enter+0x29/0x40 [<0000000097e374a0>] do_idle+0x1c8/0x250