[ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Load/Save RF Kill Switch Status. [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.23' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 24.998661][ T83] usb 1-1: new full-speed USB device number 2 using dummy_hcd [ 25.397776][ T83] usb 1-1: unable to get BOS descriptor or descriptor too short [ 25.437824][ T83] usb 1-1: not running at top speed; connect to a high speed hub [ 25.517696][ T83] usb 1-1: config 255 has an invalid interface number: 165 but max is 0 [ 25.526072][ T83] usb 1-1: config 255 has no interface number 0 [ 25.532734][ T83] usb 1-1: config 255 interface 165 altsetting 3 endpoint 0x7 has invalid maxpacket 512, setting to 64 [ 25.543990][ T83] usb 1-1: config 255 interface 165 altsetting 3 endpoint 0xA has invalid maxpacket 1024, setting to 64 [ 25.555172][ T83] usb 1-1: config 255 interface 165 altsetting 3 endpoint 0x9 has invalid wMaxPacketSize 0 [ 25.565321][ T83] usb 1-1: config 255 interface 165 altsetting 3 has an invalid endpoint with address 0x80, skipping [ 25.576236][ T83] usb 1-1: config 255 interface 165 altsetting 3 endpoint 0x5 has invalid maxpacket 495, setting to 64 [ 25.587313][ T83] usb 1-1: config 255 interface 165 altsetting 3 endpoint 0x3 has invalid maxpacket 1024, setting to 64 [ 25.598498][ T83] usb 1-1: config 255 interface 165 altsetting 3 endpoint 0x4 has invalid maxpacket 1023, setting to 64 [ 25.610102][ T83] usb 1-1: config 255 interface 165 altsetting 3 has a duplicate endpoint with address 0x8, skipping [ 25.621022][ T83] usb 1-1: config 255 interface 165 altsetting 3 has a duplicate endpoint with address 0x5, skipping [ 25.631902][ T83] usb 1-1: config 255 interface 165 has no altsetting 0 [ 25.877398][ T83] usb 1-1: string descriptor 0 read error: -22 [ 25.883627][ T83] usb 1-1: New USB device found, idVendor=07ca, idProduct=b800, bcdDevice=17.a9 [ 25.892714][ T83] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 25.939447][ T83] ------------[ cut here ]------------ [ 25.944953][ T83] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 25.951087][ T83] WARNING: CPU: 1 PID: 83 at drivers/usb/core/urb.c:478 usb_submit_urb+0x1188/0x1460 [ 25.961051][ T83] Kernel panic - not syncing: panic_on_warn set ... [ 25.967627][ T83] CPU: 1 PID: 83 Comm: kworker/1:2 Not tainted 5.7.0-rc1-syzkaller #0 [ 25.975762][ T83] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 25.985822][ T83] Workqueue: usb_hub_wq hub_event [ 25.990821][ T83] Call Trace: [ 25.994102][ T83] dump_stack+0xef/0x16e [ 25.998522][ T83] ? usb_submit_urb+0x10f0/0x1460 [ 26.003533][ T83] panic+0x2aa/0x6e1 [ 26.008020][ T83] ? add_taint.cold+0x16/0x16 [ 26.012800][ T83] ? __probe_kernel_read+0x188/0x1d0 [ 26.018060][ T83] ? __warn.cold+0x14/0x30 [ 26.022454][ T83] ? __warn+0xd5/0x1c8 [ 26.026498][ T83] ? usb_submit_urb+0x1188/0x1460 [ 26.031594][ T83] __warn.cold+0x2f/0x30 [ 26.036601][ T83] ? usb_submit_urb+0x1188/0x1460 [ 26.041604][ T83] report_bug+0x27b/0x2f0 [ 26.046207][ T83] do_error_trap+0x12b/0x1e0 [ 26.051055][ T83] ? usb_submit_urb+0x1188/0x1460 [ 26.056068][ T83] do_invalid_op+0x32/0x40 [ 26.060477][ T83] ? usb_submit_urb+0x1188/0x1460 [ 26.065491][ T83] invalid_op+0x23/0x30 [ 26.069625][ T83] RIP: 0010:usb_submit_urb+0x1188/0x1460 [ 26.075233][ T83] Code: 4d 85 ed 74 46 e8 38 c2 d2 fd 4c 89 f7 e8 70 ac 16 ff 41 89 d8 44 89 e1 4c 89 ea 48 89 c6 48 c7 c7 00 52 3d 86 e8 40 96 a6 fd <0f> 0b e9 20 f4 ff ff e8 0c c2 d2 fd 0f 1f 44 00 00 e8 02 c2 d2 fd [ 26.094825][ T83] RSP: 0018:ffff8881d8b26f48 EFLAGS: 00010286 [ 26.102518][ T83] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000000000 [ 26.112163][ T83] RDX: 0000000000000000 RSI: ffffffff812a2d8d RDI: ffffed103b164ddb [ 26.120219][ T83] RBP: ffff8881cd0ef8f0 R08: ffff8881d8d94a40 R09: ffffed103b666292 [ 26.129306][ T83] R10: ffff8881db33148f R11: ffffed103b666291 R12: 0000000000000001 [ 26.137353][ T83] R13: ffff8881d98b3e40 R14: ffff8881cd26b0a0 R15: ffff8881d9701900 [ 26.145341][ T83] ? vprintk_func+0x7d/0x113 [ 26.149929][ T83] ? usb_submit_urb+0x1188/0x1460 [ 26.155062][ T83] ? lockdep_init_map_waits+0x222/0x7c0 [ 26.161496][ T83] usb_start_wait_urb+0x101/0x4c0 [ 26.166615][ T83] ? sg_clean+0x230/0x230 [ 26.172790][ T83] ? kasan_unpoison_shadow+0x30/0x40 [ 26.178591][ T83] ? memset+0x20/0x40 [ 26.183965][ T83] usb_bulk_msg+0x228/0x550 [ 26.188463][ T83] amradio_send_cmd+0x2e4/0x840 [ 26.193307][ T83] ? usb_si4713_probe+0xd33/0xd33 [ 26.198588][ T83] ? read_word_at_a_time+0xe/0x20 [ 26.203777][ T83] ? strscpy+0x97/0x2a0 [ 26.208095][ T83] usb_amradio_probe+0x43c/0x6ef [ 26.213109][ T83] usb_probe_interface+0x310/0x800 [ 26.218724][ T83] ? usb_probe_device+0x230/0x230 [ 26.224299][ T83] really_probe+0x290/0xac0 [ 26.229312][ T83] driver_probe_device+0x223/0x350 [ 26.234404][ T83] __device_attach_driver+0x1d1/0x290 [ 26.239758][ T83] ? driver_allows_async_probing+0x160/0x160 [ 26.245717][ T83] bus_for_each_drv+0x162/0x1e0 [ 26.250575][ T83] ? bus_rescan_devices+0x20/0x20 [ 26.255670][ T83] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 26.261476][ T83] ? lockdep_hardirqs_on+0x3c7/0x5d0 [ 26.266830][ T83] __device_attach+0x21a/0x390 [ 26.272114][ T83] ? device_bind_driver+0xd0/0xd0 [ 26.277220][ T83] bus_probe_device+0x1e4/0x290 [ 26.282051][ T83] device_add+0x1367/0x1c20 [ 26.286706][ T83] ? wait_for_completion+0x280/0x280 [ 26.291985][ T83] ? device_link_remove+0x110/0x110 [ 26.297339][ T83] usb_set_configuration+0xed4/0x1850 [ 26.302974][ T83] usb_generic_driver_probe+0x9d/0xe0 [ 26.309119][ T83] usb_probe_device+0xd9/0x230 [ 26.313891][ T83] ? usb_suspend+0x600/0x600 [ 26.318572][ T83] really_probe+0x290/0xac0 [ 26.324345][ T83] driver_probe_device+0x223/0x350 [ 26.331090][ T83] __device_attach_driver+0x1d1/0x290 [ 26.336447][ T83] ? driver_allows_async_probing+0x160/0x160 [ 26.342930][ T83] bus_for_each_drv+0x162/0x1e0 [ 26.347946][ T83] ? bus_rescan_devices+0x20/0x20 [ 26.352979][ T83] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 26.358767][ T83] ? lockdep_hardirqs_on+0x3c7/0x5d0 [ 26.364232][ T83] __device_attach+0x21a/0x390 [ 26.369071][ T83] ? device_bind_driver+0xd0/0xd0 [ 26.374078][ T83] bus_probe_device+0x1e4/0x290 [ 26.379517][ T83] device_add+0x1367/0x1c20 [ 26.384001][ T83] ? device_link_remove+0x110/0x110 [ 26.389277][ T83] usb_new_device.cold+0x552/0xf6e [ 26.394367][ T83] ? hub_disconnect+0x4a0/0x4a0 [ 26.399207][ T83] ? mark_held_locks+0x9f/0xe0 [ 26.403950][ T83] ? __kasan_slab_free+0x12e/0x160 [ 26.409037][ T83] ? _raw_spin_unlock_irq+0x1f/0x30 [ 26.414211][ T83] hub_event+0x226d/0x43c0 [ 26.418613][ T83] ? hub_port_debounce+0x350/0x350 [ 26.423710][ T83] ? umh_clean_and_save_pid+0x1/0xd0 [ 26.428974][ T83] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 26.434498][ T83] ? rcu_read_lock_bh_held+0xb0/0xb0 [ 26.439763][ T83] ? _raw_spin_unlock_irq+0x1f/0x30 [ 26.444938][ T83] process_one_work+0x965/0x1630 [ 26.449855][ T83] ? lock_release+0x720/0x720 [ 26.454523][ T83] ? pwq_dec_nr_in_flight+0x310/0x310 [ 26.459881][ T83] ? rwlock_bug.part.0+0x90/0x90 [ 26.464796][ T83] worker_thread+0x96/0xe20 [ 26.469277][ T83] ? process_one_work+0x1630/0x1630 [ 26.474453][ T83] kthread+0x326/0x430 [ 26.478504][ T83] ? kthread_create_on_node+0xf0/0xf0 [ 26.484582][ T83] ret_from_fork+0x24/0x30 [ 26.489685][ T83] Kernel Offset: disabled [ 26.494033][ T83] Rebooting in 86400 seconds..