Warning: Permanently added '10.128.0.94' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [ 42.181284][ T12] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[ 42.421551][ T12] usb 1-1: Using ep0 maxpacket: 8
[ 42.541267][ T12] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 42.552274][ T12] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 42.562193][ T12] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[ 42.572329][ T12] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 42.582177][ T12] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
[ 42.751213][ T12] usb 1-1: New USB device found, idVendor=0dba, idProduct=1000, bcdDevice= 0.40
[ 42.760239][ T12] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 42.769221][ T12] usb 1-1: Product: syz
[ 42.773949][ T12] usb 1-1: Manufacturer: syz
[ 42.778518][ T12] usb 1-1: SerialNumber: syz
[ 42.861152][ T12] cdc_ether: probe of 1-1:1.0 failed with error -22
[ 43.041013][ C0] ==================================================================
[ 43.049195][ C0] BUG: KASAN: slab-out-of-bounds in snd_usb_mixer_interrupt+0xaa7/0xc30
[ 43.057492][ C0] Write of size 4 at addr ffff8880a39c5ae0 by task swapper/0/0
[ 43.065000][ C0]
[ 43.067302][ C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 5.7.0-syzkaller #0
[ 43.074810][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 43.084876][ C0] Call Trace:
[ 43.088132][ C0]
[ 43.090955][ C0] dump_stack+0x1e9/0x30e
[ 43.095256][ C0] print_address_description+0x66/0x5a0
[ 43.100779][ C0] ? vprintk_emit+0x342/0x3c0
[ 43.105425][ C0] ? printk+0x62/0x83
[ 43.109385][ C0] ? vprintk_emit+0x339/0x3c0
[ 43.114031][ C0] kasan_report+0x132/0x1d0
[ 43.118521][ C0] ? snd_usb_mixer_interrupt+0xaa7/0xc30
[ 43.124147][ C0] snd_usb_mixer_interrupt+0xaa7/0xc30
[ 43.129583][ C0] __usb_hcd_giveback_urb+0x333/0x4b0
[ 43.134928][ C0] dummy_timer+0x75c/0x3ff0
[ 43.139467][ C0] ? rcu_read_lock_sched_held+0x2f/0xa0
[ 43.144982][ C0] ? dummy_free_streams+0x320/0x320
[ 43.150149][ C0] call_timer_fn+0x91/0x160
[ 43.154625][ C0] ? dummy_free_streams+0x320/0x320
[ 43.159790][ C0] __run_timers+0x776/0x970
[ 43.164267][ C0] ? check_preemption_disabled+0x40/0x240
[ 43.169955][ C0] ? check_preemption_disabled+0x40/0x240
[ 43.175641][ C0] ? debug_smp_processor_id+0x5/0x20
[ 43.180898][ C0] run_timer_softirq+0x46/0x80
[ 43.185629][ C0] __do_softirq+0x268/0x80c
[ 43.190126][ C0] ? irq_exit+0x223/0x230
[ 43.194438][ C0] irq_exit+0x223/0x230
[ 43.198562][ C0] smp_apic_timer_interrupt+0x113/0x280
[ 43.204076][ C0] apic_timer_interrupt+0xf/0x20
[ 43.208994][ C0]
[ 43.211904][ C0] RIP: 0010:native_safe_halt+0xe/0x10
[ 43.217268][ C0] Code: 80 e1 07 80 c1 03 38 c1 7c bc 48 89 df e8 9a 17 9b f9 eb b2 cc cc cc cc cc cc cc cc e9 07 00 00 00 0f 00 2d 56 46 4a 00 fb f4 90 e9 07 00 00 00 0f 00 2d 46 46 4a 00 f4 c3 cc cc 41 56 53 65
[ 43.236851][ C0] RSP: 0018:ffffffff89207d48 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13
[ 43.245227][ C0] RAX: 1ffffffff12577b9 RBX: 0000000000000000 RCX: ffffffffffffffff
[ 43.253179][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff89282364
[ 43.261119][ C0] RBP: 1ffff1104351204e R08: ffffffff817a4660 R09: fffffbfff1250361
[ 43.269119][ C0] R10: fffffbfff1250361 R11: 0000000000000000 R12: 0000000000000001
[ 43.277072][ C0] R13: dffffc0000000000 R14: dffffc0000000000 R15: ffff88821a890270
[ 43.285017][ C0] ? trace_hardirqs_on+0x30/0x80
[ 43.289927][ C0] acpi_safe_halt+0x87/0xe0
[ 43.294399][ C0] acpi_idle_enter+0x3f4/0xac0
[ 43.299145][ C0] cpuidle_enter_state+0x2d7/0x7b0
[ 43.304225][ C0] cpuidle_enter+0x59/0x90
[ 43.308624][ C0] do_idle+0x49c/0x650
[ 43.312672][ C0] cpu_startup_entry+0x15/0x20
[ 43.317404][ C0] ? time_init+0x33/0x33
[ 43.321625][ C0] start_kernel+0x674/0x777
[ 43.326109][ C0] secondary_startup_64+0xa4/0xb0
[ 43.331116][ C0]
[ 43.333414][ C0] Allocated by task 12:
[ 43.337546][ C0] __kasan_kmalloc+0x103/0x140
[ 43.342275][ C0] kmem_cache_alloc_trace+0x234/0x300
[ 43.347614][ C0] snd_usb_mixer_apply_create_quirk+0x1333/0x4fc0
[ 43.353993][ C0] snd_usb_create_mixer+0x22d8/0x2e90
[ 43.359331][ C0] create_composite_quirk+0x221/0x510
[ 43.364668][ C0] usb_audio_probe+0xc3d/0x2500
[ 43.369484][ C0] usb_probe_interface+0x614/0xac0
[ 43.374561][ C0] really_probe+0x761/0xf60
[ 43.379031][ C0] driver_probe_device+0xe6/0x230
[ 43.384039][ C0] bus_for_each_drv+0x108/0x170
[ 43.388871][ C0] __device_attach+0x20c/0x3a0
[ 43.393604][ C0] bus_probe_device+0xb8/0x1f0
[ 43.398332][ C0] device_add+0x1828/0x1ba0
[ 43.402800][ C0] usb_set_configuration+0x19d2/0x1f20
[ 43.408242][ C0] usb_generic_driver_probe+0x82/0x140
[ 43.413717][ C0] usb_probe_device+0x12d/0x1d0
[ 43.418542][ C0] really_probe+0x761/0xf60
[ 43.423029][ C0] driver_probe_device+0xe6/0x230
[ 43.428025][ C0] bus_for_each_drv+0x108/0x170
[ 43.432867][ C0] __device_attach+0x20c/0x3a0
[ 43.437601][ C0] bus_probe_device+0xb8/0x1f0
[ 43.442344][ C0] device_add+0x1828/0x1ba0
[ 43.446814][ C0] usb_new_device+0xcc3/0x1650
[ 43.451557][ C0] hub_event+0x2823/0x4cb0
[ 43.455947][ C0] process_one_work+0x76e/0xfd0
[ 43.460763][ C0] worker_thread+0xa7f/0x1450
[ 43.465404][ C0] kthread+0x353/0x380
[ 43.469440][ C0] ret_from_fork+0x24/0x30
[ 43.473844][ C0]
[ 43.476145][ C0] Freed by task 4844:
[ 43.480097][ C0] __kasan_slab_free+0x114/0x170
[ 43.485041][ C0] kfree+0x10a/0x220
[ 43.488924][ C0] tomoyo_path_perm+0x59b/0x740
[ 43.493739][ C0] security_inode_getattr+0xc0/0x140
[ 43.498992][ C0] __x64_sys_newfstat+0x97/0x150
[ 43.503897][ C0] do_syscall_64+0xf3/0x1b0
[ 43.508367][ C0] entry_SYSCALL_64_after_hwframe+0x49/0xb3
[ 43.514221][ C0]
[ 43.516518][ C0] The buggy address belongs to the object at ffff8880a39c5a80
[ 43.516518][ C0] which belongs to the cache kmalloc-64 of size 64
[ 43.530361][ C0] The buggy address is located 32 bytes to the right of
[ 43.530361][ C0] 64-byte region [ffff8880a39c5a80, ffff8880a39c5ac0)
[ 43.543939][ C0] The buggy address belongs to the page:
[ 43.549552][ C0] page:ffffea00028e7140 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0
[ 43.558620][ C0] flags: 0xfffe0000000200(slab)
[ 43.563435][ C0] raw: 00fffe0000000200 ffffea000299a688 ffffea00028e3948 ffff8880aa400380
[ 43.571998][ C0] raw: 0000000000000000 ffff8880a39c5000 0000000100000020 0000000000000000
[ 43.580545][ C0] page dumped because: kasan: bad access detected
[ 43.586936][ C0]
[ 43.589248][ C0] Memory state around the buggy address:
[ 43.594843][ C0] ffff8880a39c5980: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[ 43.602869][ C0] ffff8880a39c5a00: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc
[ 43.610898][ C0] >ffff8880a39c5a80: 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc fc
[ 43.618937][ C0] ^
[ 43.626113][ C0] ffff8880a39c5b00: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[ 43.634153][ C0] ffff8880a39c5b80: 00 00 00 00 01 fc fc fc fc fc fc fc fc fc fc fc
[ 43.642177][ C0] ==================================================================
[ 43.650202][ C0] Disabling lock debugging due to kernel taint
[ 43.656332][ C0] Kernel panic - not syncing: panic_on_warn set ...
[ 43.662898][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G B 5.7.0-syzkaller #0
[ 43.671790][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 43.681821][ C0] Call Trace:
[ 43.685075][ C0]
[ 43.687897][ C0] dump_stack+0x1e9/0x30e
[ 43.692194][ C0] panic+0x264/0x7a0
[ 43.696054][ C0] ? trace_hardirqs_off+0x16/0x70
[ 43.701067][ C0] kasan_report+0x1c9/0x1d0
[ 43.705545][ C0] ? snd_usb_mixer_interrupt+0xaa7/0xc30
[ 43.711145][ C0] snd_usb_mixer_interrupt+0xaa7/0xc30
[ 43.716586][ C0] __usb_hcd_giveback_urb+0x333/0x4b0
[ 43.721942][ C0] dummy_timer+0x75c/0x3ff0
[ 43.726436][ C0] ? rcu_read_lock_sched_held+0x2f/0xa0
[ 43.731948][ C0] ? dummy_free_streams+0x320/0x320
[ 43.737111][ C0] call_timer_fn+0x91/0x160
[ 43.741581][ C0] ? dummy_free_streams+0x320/0x320
[ 43.746741][ C0] __run_timers+0x776/0x970
[ 43.751213][ C0] ? check_preemption_disabled+0x40/0x240
[ 43.756899][ C0] ? check_preemption_disabled+0x40/0x240
[ 43.762599][ C0] ? debug_smp_processor_id+0x5/0x20
[ 43.767849][ C0] run_timer_softirq+0x46/0x80
[ 43.772598][ C0] __do_softirq+0x268/0x80c
[ 43.777070][ C0] ? irq_exit+0x223/0x230
[ 43.781368][ C0] irq_exit+0x223/0x230
[ 43.785487][ C0] smp_apic_timer_interrupt+0x113/0x280
[ 43.790996][ C0] apic_timer_interrupt+0xf/0x20
[ 43.795910][ C0]
[ 43.798820][ C0] RIP: 0010:native_safe_halt+0xe/0x10
[ 43.804169][ C0] Code: 80 e1 07 80 c1 03 38 c1 7c bc 48 89 df e8 9a 17 9b f9 eb b2 cc cc cc cc cc cc cc cc e9 07 00 00 00 0f 00 2d 56 46 4a 00 fb f4 90 e9 07 00 00 00 0f 00 2d 46 46 4a 00 f4 c3 cc cc 41 56 53 65
[ 43.823738][ C0] RSP: 0018:ffffffff89207d48 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13
[ 43.832112][ C0] RAX: 1ffffffff12577b9 RBX: 0000000000000000 RCX: ffffffffffffffff
[ 43.840048][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff89282364
[ 43.847984][ C0] RBP: 1ffff1104351204e R08: ffffffff817a4660 R09: fffffbfff1250361
[ 43.855921][ C0] R10: fffffbfff1250361 R11: 0000000000000000 R12: 0000000000000001
[ 43.863862][ C0] R13: dffffc0000000000 R14: dffffc0000000000 R15: ffff88821a890270
[ 43.871806][ C0] ? trace_hardirqs_on+0x30/0x80
[ 43.876711][ C0] acpi_safe_halt+0x87/0xe0
[ 43.881180][ C0] acpi_idle_enter+0x3f4/0xac0
[ 43.885929][ C0] cpuidle_enter_state+0x2d7/0x7b0
[ 43.891005][ C0] cpuidle_enter+0x59/0x90
[ 43.895387][ C0] do_idle+0x49c/0x650
[ 43.899436][ C0] cpu_startup_entry+0x15/0x20
[ 43.904177][ C0] ? time_init+0x33/0x33
[ 43.908385][ C0] start_kernel+0x674/0x777
[ 43.912855][ C0] secondary_startup_64+0xa4/0xb0
[ 43.918937][ C0] Kernel Offset: disabled
[ 43.923245][ C0] Rebooting in 86400 seconds..