Warning: Permanently added '10.128.0.48' (ED25519) to the list of known hosts.
executing program
[   47.994921][   T29] audit: type=1400 audit(1726342572.014:80): avc:  denied  { execmem } for  pid=2648 comm="syz-executor636" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   48.014969][   T29] audit: type=1400 audit(1726342572.024:81): avc:  denied  { read write } for  pid=2649 comm="syz-executor636" name="raw-gadget" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   48.038950][   T29] audit: type=1400 audit(1726342572.024:82): avc:  denied  { open } for  pid=2649 comm="syz-executor636" path="/dev/raw-gadget" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   48.062732][   T29] audit: type=1400 audit(1726342572.024:83): avc:  denied  { ioctl } for  pid=2649 comm="syz-executor636" path="/dev/raw-gadget" dev="devtmpfs" ino=140 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   48.278996][   T24] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   48.471481][   T24] usb 1-1: config 9 has an invalid interface number: 50 but max is 1
[   48.479821][   T24] usb 1-1: config 9 contains an unexpected descriptor of type 0x2, skipping
[   48.488538][   T24] usb 1-1: config 9 has an invalid interface number: 50 but max is 1
[   48.496715][   T24] usb 1-1: config 9 has 1 interface, different from the descriptor's value: 2
[   48.505641][   T24] usb 1-1: config 9 has no interface number 0
[   48.511819][   T24] usb 1-1: config 9 interface 50 altsetting 7 has an invalid descriptor for endpoint zero, skipping
[   48.522651][   T24] usb 1-1: config 9 interface 50 altsetting 7 endpoint 0x9 has invalid wMaxPacketSize 0
[   48.532464][   T24] usb 1-1: config 9 interface 50 altsetting 7 endpoint 0xA has invalid maxpacket 1023, setting to 64
[   48.543396][   T24] usb 1-1: config 9 interface 50 altsetting 7 has an endpoint descriptor with address 0x9B, changing to 0x8B
[   48.555011][   T24] usb 1-1: config 9 interface 50 altsetting 7 endpoint 0x8B has an invalid bInterval 182, changing to 11
[   48.566278][   T24] usb 1-1: config 9 interface 50 altsetting 7 endpoint 0x8B has invalid maxpacket 24995, setting to 1024
[   48.577545][   T24] usb 1-1: config 9 interface 50 altsetting 7 endpoint 0x6 has invalid maxpacket 512, setting to 64
[   48.588385][   T24] usb 1-1: config 9 interface 50 altsetting 7 endpoint 0x5 has invalid maxpacket 1023, setting to 64
[   48.599423][   T24] usb 1-1: config 9 interface 50 altsetting 7 has an invalid descriptor for endpoint zero, skipping
[   48.610322][   T24] usb 1-1: config 9 interface 50 altsetting 7 has a duplicate endpoint with address 0x5, skipping
[   48.621011][   T24] usb 1-1: config 9 interface 50 altsetting 7 has an invalid descriptor for endpoint zero, skipping
[   48.631837][   T24] usb 1-1: config 9 interface 50 altsetting 7 has a duplicate endpoint with address 0x9, skipping
[   48.642490][   T24] usb 1-1: config 9 interface 50 altsetting 7 endpoint 0xD has invalid wMaxPacketSize 0
[   48.652273][   T24] usb 1-1: config 9 interface 50 altsetting 7 bulk endpoint 0xD has invalid maxpacket 0
[   48.662061][   T24] usb 1-1: config 9 interface 50 altsetting 7 has an invalid descriptor for endpoint zero, skipping
[   48.672979][   T24] usb 1-1: config 9 interface 50 altsetting 7 has an invalid descriptor for endpoint zero, skipping
[   48.683796][   T24] usb 1-1: config 9 interface 50 altsetting 7 has a duplicate endpoint with address 0x3, skipping
[   48.694527][   T24] usb 1-1: config 9 interface 50 altsetting 7 has 16 endpoint descriptors, different from the interface descriptor's value: 15
[   48.707698][   T24] usb 1-1: config 9 interface 50 has no altsetting 0
[   48.714449][   T24] usb 1-1: config 9 interface 50 has no altsetting 1
[   48.723852][   T24] usb 1-1: New USB device found, idVendor=01c0, idProduct=b26f, bcdDevice=e0.84
[   48.732951][   T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   48.740991][   T24] usb 1-1: Product: syz
[   48.745180][   T24] usb 1-1: Manufacturer: syz
[   48.749829][   T24] usb 1-1: SerialNumber: syz
executing program
[   48.988365][   T24] ------------[ cut here ]------------
[   48.994073][   T24] UBSAN: array-index-out-of-bounds in drivers/hid/usbhid/hid-core.c:1025:18
[   49.002848][   T24] index 1 is out of range for type 'hid_class_descriptor [1]'
[   49.010402][   T24] CPU: 1 UID: 0 PID: 24 Comm: kworker/1:0 Not tainted 6.11.0-rc7-syzkaller-00152-g68d4209158f4 #0
[   49.021055][   T24] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   49.031148][   T24] Workqueue: usb_hub_wq hub_event
[   49.036231][   T24] Call Trace:
[   49.039519][   T24]  <TASK>
[   49.042455][   T24]  dump_stack_lvl+0x16c/0x1f0
[   49.047154][   T24]  __ubsan_handle_out_of_bounds+0x110/0x150
[   49.053082][   T24]  usbhid_parse+0x94e/0xa20
[   49.057614][   T24]  ? __pfx_usbhid_parse+0x10/0x10
[   49.062663][   T24]  hid_add_device+0x18b/0xa70
[   49.067359][   T24]  ? lockdep_init_map_type+0x16d/0x7d0
[   49.072841][   T24]  ? __pfx_hid_add_device+0x10/0x10
[   49.078054][   T24]  ? lockdep_init_map_type+0x16d/0x7d0
[   49.083540][   T24]  ? __raw_spin_lock_init+0x3a/0x110
[   49.088875][   T24]  usbhid_probe+0xd3b/0x1410
[   49.093505][   T24]  usb_probe_interface+0x309/0x9d0
[   49.098649][   T24]  ? __pfx_usb_probe_interface+0x10/0x10
[   49.104349][   T24]  really_probe+0x23e/0xa90
[   49.108879][   T24]  __driver_probe_device+0x1de/0x440
[   49.114190][   T24]  driver_probe_device+0x4c/0x1b0
[   49.119237][   T24]  __device_attach_driver+0x1df/0x310
[   49.124634][   T24]  ? __pfx___device_attach_driver+0x10/0x10
[   49.130546][   T24]  bus_for_each_drv+0x157/0x1e0
[   49.135418][   T24]  ? __pfx_bus_for_each_drv+0x10/0x10
[   49.140806][   T24]  ? lockdep_hardirqs_on+0x7c/0x110
[   49.146021][   T24]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   49.151863][   T24]  __device_attach+0x1e8/0x4b0
[   49.156648][   T24]  ? __pfx___device_attach+0x10/0x10
[   49.161954][   T24]  ? do_raw_spin_unlock+0x172/0x230
[   49.167183][   T24]  bus_probe_device+0x17f/0x1c0
[   49.172056][   T24]  device_add+0x114b/0x1a70
[   49.176585][   T24]  ? __pfx_device_add+0x10/0x10
[   49.181462][   T24]  ? kfree+0x10b/0x380
[   49.185562][   T24]  usb_set_configuration+0x10cb/0x1c50
[   49.191070][   T24]  ? __pfx_usb_generic_driver_probe+0x10/0x10
[   49.197179][   T24]  usb_generic_driver_probe+0xb1/0x110
[   49.202665][   T24]  usb_probe_device+0xec/0x3e0
[   49.207442][   T24]  ? __pfx_usb_probe_device+0x10/0x10
[   49.212827][   T24]  really_probe+0x23e/0xa90
[   49.217356][   T24]  __driver_probe_device+0x1de/0x440
[   49.222662][   T24]  ? usb_driver_applicable+0x1c7/0x220
[   49.228140][   T24]  driver_probe_device+0x4c/0x1b0
[   49.233188][   T24]  __device_attach_driver+0x1df/0x310
[   49.238578][   T24]  ? __pfx___device_attach_driver+0x10/0x10
[   49.244502][   T24]  bus_for_each_drv+0x157/0x1e0
[   49.249372][   T24]  ? __pfx_bus_for_each_drv+0x10/0x10
[   49.254758][   T24]  ? lockdep_hardirqs_on+0x7c/0x110
[   49.259972][   T24]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   49.265812][   T24]  __device_attach+0x1e8/0x4b0
[   49.270599][   T24]  ? __pfx___device_attach+0x10/0x10
[   49.275905][   T24]  ? do_raw_spin_unlock+0x172/0x230
[   49.281138][   T24]  bus_probe_device+0x17f/0x1c0
[   49.286012][   T24]  device_add+0x114b/0x1a70
[   49.290543][   T24]  ? __pfx_device_add+0x10/0x10
[   49.295418][   T24]  ? add_device_randomness+0xb8/0xf0
[   49.300733][   T24]  usb_new_device+0xd90/0x1a10
[   49.305537][   T24]  ? __pfx_usb_new_device+0x10/0x10
[   49.310771][   T24]  hub_event+0x2e58/0x4f40
[   49.315250][   T24]  ? __pfx_hub_event+0x10/0x10
[   49.320046][   T24]  ? __pfx_lock_acquire+0x10/0x10
[   49.325089][   T24]  ? __pfx_lock_release+0x10/0x10
[   49.330150][   T24]  process_one_work+0x9c5/0x1b40
[   49.335128][   T24]  ? __pfx_hcd_resume_work+0x10/0x10
[   49.340430][   T24]  ? __pfx_process_one_work+0x10/0x10
[   49.345835][   T24]  ? assign_work+0x1a0/0x250
[   49.350452][   T24]  worker_thread+0x6c8/0xed0
[   49.355090][   T24]  ? __pfx_worker_thread+0x10/0x10
[   49.360225][   T24]  kthread+0x2c1/0x3a0
[   49.364312][   T24]  ? _raw_spin_unlock_irq+0x23/0x50
[   49.369540][   T24]  ? __pfx_kthread+0x10/0x10
[   49.374144][   T24]  ret_from_fork+0x45/0x80
[   49.378583][   T24]  ? __pfx_kthread+0x10/0x10
[   49.383212][   T24]  ret_from_fork_asm+0x1a/0x30
[   49.388017][   T24]  </TASK>
[   49.391184][   T24] ---[ end trace ]---
[   49.395205][   T24] Kernel panic - not syncing: UBSAN: panic_on_warn set ...
[   49.402431][   T24] CPU: 1 UID: 0 PID: 24 Comm: kworker/1:0 Not tainted 6.11.0-rc7-syzkaller-00152-g68d4209158f4 #0
[   49.413055][   T24] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   49.423118][   T24] Workqueue: usb_hub_wq hub_event
[   49.428177][   T24] Call Trace:
[   49.431462][   T24]  <TASK>
[   49.434396][   T24]  dump_stack_lvl+0x3d/0x1f0
[   49.439004][   T24]  panic+0x6dc/0x7c0
[   49.442918][   T24]  ? mark_held_locks+0x9f/0xe0
[   49.447697][   T24]  ? __pfx_panic+0x10/0x10
[   49.452143][   T24]  ? __pfx__printk+0x10/0x10
[   49.456759][   T24]  ? check_panic_on_warn+0x1f/0xb0
[   49.461897][   T24]  check_panic_on_warn+0xab/0xb0
[   49.466890][   T24]  __ubsan_handle_out_of_bounds+0x137/0x150
[   49.472817][   T24]  usbhid_parse+0x94e/0xa20
[   49.477357][   T24]  ? __pfx_usbhid_parse+0x10/0x10
[   49.482402][   T24]  hid_add_device+0x18b/0xa70
[   49.487097][   T24]  ? lockdep_init_map_type+0x16d/0x7d0
[   49.492578][   T24]  ? __pfx_hid_add_device+0x10/0x10
[   49.497790][   T24]  ? lockdep_init_map_type+0x16d/0x7d0
[   49.503270][   T24]  ? __raw_spin_lock_init+0x3a/0x110
[   49.508588][   T24]  usbhid_probe+0xd3b/0x1410
[   49.513240][   T24]  usb_probe_interface+0x309/0x9d0
[   49.518391][   T24]  ? __pfx_usb_probe_interface+0x10/0x10
[   49.524041][   T24]  really_probe+0x23e/0xa90
[   49.528579][   T24]  __driver_probe_device+0x1de/0x440
[   49.533920][   T24]  driver_probe_device+0x4c/0x1b0
[   49.538989][   T24]  __device_attach_driver+0x1df/0x310
[   49.544466][   T24]  ? __pfx___device_attach_driver+0x10/0x10
[   49.550376][   T24]  bus_for_each_drv+0x157/0x1e0
[   49.555260][   T24]  ? __pfx_bus_for_each_drv+0x10/0x10
[   49.560661][   T24]  ? lockdep_hardirqs_on+0x7c/0x110
[   49.565891][   T24]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   49.571742][   T24]  __device_attach+0x1e8/0x4b0
[   49.576545][   T24]  ? __pfx___device_attach+0x10/0x10
[   49.581891][   T24]  ? do_raw_spin_unlock+0x172/0x230
[   49.587145][   T24]  bus_probe_device+0x17f/0x1c0
[   49.592024][   T24]  device_add+0x114b/0x1a70
[   49.596575][   T24]  ? __pfx_device_add+0x10/0x10
[   49.601460][   T24]  ? kfree+0x10b/0x380
[   49.605565][   T24]  usb_set_configuration+0x10cb/0x1c50
[   49.611093][   T24]  ? __pfx_usb_generic_driver_probe+0x10/0x10
[   49.617257][   T24]  usb_generic_driver_probe+0xb1/0x110
[   49.622755][   T24]  usb_probe_device+0xec/0x3e0
[   49.627543][   T24]  ? __pfx_usb_probe_device+0x10/0x10
[   49.632947][   T24]  really_probe+0x23e/0xa90
[   49.637526][   T24]  __driver_probe_device+0x1de/0x440
[   49.642862][   T24]  ? usb_driver_applicable+0x1c7/0x220
[   49.648343][   T24]  driver_probe_device+0x4c/0x1b0
[   49.653481][   T24]  __device_attach_driver+0x1df/0x310
[   49.658874][   T24]  ? __pfx___device_attach_driver+0x10/0x10
[   49.664784][   T24]  bus_for_each_drv+0x157/0x1e0
[   49.669758][   T24]  ? __pfx_bus_for_each_drv+0x10/0x10
[   49.675167][   T24]  ? lockdep_hardirqs_on+0x7c/0x110
[   49.680413][   T24]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   49.686257][   T24]  __device_attach+0x1e8/0x4b0
[   49.691044][   T24]  ? __pfx___device_attach+0x10/0x10
[   49.696385][   T24]  ? do_raw_spin_unlock+0x172/0x230
[   49.701624][   T24]  bus_probe_device+0x17f/0x1c0
[   49.706495][   T24]  device_add+0x114b/0x1a70
[   49.711032][   T24]  ? __pfx_device_add+0x10/0x10
[   49.715916][   T24]  ? add_device_randomness+0xb8/0xf0
[   49.721232][   T24]  usb_new_device+0xd90/0x1a10
[   49.726034][   T24]  ? __pfx_usb_new_device+0x10/0x10
[   49.731378][   T24]  hub_event+0x2e58/0x4f40
[   49.735855][   T24]  ? __pfx_hub_event+0x10/0x10
[   49.740651][   T24]  ? __pfx_lock_acquire+0x10/0x10
[   49.745708][   T24]  ? __pfx_lock_release+0x10/0x10
[   49.750769][   T24]  process_one_work+0x9c5/0x1b40
[   49.755741][   T24]  ? __pfx_hcd_resume_work+0x10/0x10
[   49.761040][   T24]  ? __pfx_process_one_work+0x10/0x10
[   49.766531][   T24]  ? assign_work+0x1a0/0x250
[   49.771146][   T24]  worker_thread+0x6c8/0xed0
[   49.775783][   T24]  ? __pfx_worker_thread+0x10/0x10
[   49.780919][   T24]  kthread+0x2c1/0x3a0
[   49.785018][   T24]  ? _raw_spin_unlock_irq+0x23/0x50
[   49.790280][   T24]  ? __pfx_kthread+0x10/0x10
[   49.794886][   T24]  ret_from_fork+0x45/0x80
[   49.799346][   T24]  ? __pfx_kthread+0x10/0x10
[   49.803954][   T24]  ret_from_fork_asm+0x1a/0x30
[   49.808784][   T24]  </TASK>
[   49.812264][   T24] Kernel Offset: disabled
[   49.816652][   T24] Rebooting in 86400 seconds..