Warning: Permanently added '10.128.1.174' (ED25519) to the list of known hosts. executing program [ 50.289929][ T29] audit: type=1400 audit(1725598565.956:80): avc: denied { execmem } for pid=2648 comm="syz-executor251" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 50.310416][ T29] audit: type=1400 audit(1725598565.966:81): avc: denied { read write } for pid=2649 comm="syz-executor251" name="raw-gadget" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 50.334551][ T29] audit: type=1400 audit(1725598565.966:82): avc: denied { open } for pid=2649 comm="syz-executor251" path="/dev/raw-gadget" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 50.358436][ T29] audit: type=1400 audit(1725598565.966:83): avc: denied { ioctl } for pid=2649 comm="syz-executor251" path="/dev/raw-gadget" dev="devtmpfs" ino=140 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 50.571935][ T9] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 50.761666][ T9] usb 1-1: Using ep0 maxpacket: 8 [ 50.769356][ T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 50.779256][ T9] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 50.789081][ T9] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A [ 50.800711][ T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 66, changing to 7 [ 50.811991][ T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid maxpacket 41605, setting to 1024 [ 50.826038][ T9] usb 1-1: New USB device found, idVendor=187f, idProduct=0200, bcdDevice=6b.ad [ 50.835142][ T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 50.843278][ T9] usb 1-1: Product: syz [ 50.847503][ T9] usb 1-1: Manufacturer: syz [ 50.852272][ T9] usb 1-1: SerialNumber: syz [ 50.861328][ T9] usb 1-1: config 0 descriptor?? [ 50.873928][ T9] smsusb:smsusb_probe: board id=2, interface number 0 [ 50.885195][ T9] smsusb:siano_media_device_register: media controller created [ 50.896251][ T9] smsusb:smsusb_start_streaming: smsusb_submit_urb(...) failed [ 50.904021][ T9] smsusb:smsusb_init_device: smsusb_start_streaming(...) failed [ 50.913951][ T9] ------------[ cut here ]------------ [ 50.919435][ T9] WARNING: CPU: 0 PID: 9 at mm/slub.c:4556 free_large_kmalloc+0xda/0x140 [ 50.927948][ T9] Modules linked in: [ 50.931966][ T9] CPU: 0 UID: 0 PID: 9 Comm: kworker/0:1 Not tainted 6.11.0-rc6-syzkaller-g9c0c11bb87b0 #0 [ 50.942135][ T9] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 50.952378][ T9] Workqueue: usb_hub_wq hub_event [ 50.957553][ T9] RIP: 0010:free_large_kmalloc+0xda/0x140 [ 50.963381][ T9] Code: 56 fb 8b 43 34 85 c0 75 c7 48 c7 c6 50 8c 78 88 48 89 df e8 18 0f f3 ff 90 0f 0b 48 89 df 5b 5d 41 5c 41 5d e9 07 20 e7 ff 90 <0f> 0b 90 80 3d 78 cf a2 08 00 74 28 48 8b 74 24 20 48 89 ef e8 2d [ 50.983069][ T9] RSP: 0018:ffffc9000009ee20 EFLAGS: 00010246 [ 50.989174][ T9] RAX: 0200000000000000 RBX: ffffea0004991880 RCX: ffffffff811692ac [ 50.997231][ T9] RDX: ffff888101698000 RSI: ffff888126462000 RDI: ffffea0004991880 [ 51.005376][ T9] RBP: ffff888126462000 R08: 0000000000000007 R09: 0000000000000000 [ 51.013460][ T9] R10: 0000000000000000 R11: 0000000000000000 R12: ffff888104f8f000 [ 51.021478][ T9] R13: ffff888104f8d000 R14: dffffc0000000000 R15: ffff888104f8f0f0 [ 51.029550][ T9] FS: 0000000000000000(0000) GS:ffff8881f5800000(0000) knlGS:0000000000000000 [ 51.038557][ T9] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 51.045213][ T9] CR2: 0000563c4b87ad40 CR3: 0000000120f48000 CR4: 00000000003506f0 [ 51.053290][ T9] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 51.061333][ T9] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 51.069389][ T9] Call Trace: [ 51.072757][ T9] [ 51.075740][ T9] ? show_regs+0x8c/0xa0 [ 51.080079][ T9] ? __warn+0xe5/0x3c0 [ 51.084265][ T9] ? free_large_kmalloc+0xda/0x140 [ 51.089440][ T9] ? report_bug+0x3c0/0x580 [ 51.094032][ T9] ? handle_bug+0x3d/0x70 [ 51.098418][ T9] ? exc_invalid_op+0x17/0x50 [ 51.103178][ T9] ? asm_exc_invalid_op+0x1a/0x20 [ 51.108353][ T9] ? __phys_addr+0xbc/0x150 [ 51.113125][ T9] ? free_large_kmalloc+0xda/0x140 [ 51.118305][ T9] usb_free_urb.part.0+0xe5/0x100 [ 51.123406][ T9] usb_free_urb+0x1f/0x30 [ 51.127787][ T9] smsusb_term_device+0x108/0x1e0 [ 51.132916][ T9] smsusb_init_device+0xaa2/0xe10 [ 51.138006][ T9] ? __pfx_smsusb_init_device+0x10/0x10 [ 51.143647][ T9] ? kfree+0x226/0x380 [ 51.147819][ T9] ? __pfx_smsusb_sendrequest+0x10/0x10 [ 51.153460][ T9] ? usb_clear_halt+0x61/0x160 [ 51.158320][ T9] smsusb_probe+0x5e2/0x10b0 [ 51.162999][ T9] ? __pfx_smsusb_probe+0x10/0x10 [ 51.168090][ T9] ? mark_held_locks+0x9f/0xe0 [ 51.173034][ T9] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 51.178912][ T9] ? __pm_runtime_set_status+0x13c/0x9a0 [ 51.184647][ T9] usb_probe_interface+0x309/0x9d0 [ 51.189822][ T9] ? __pfx_usb_probe_interface+0x10/0x10 [ 51.195575][ T9] really_probe+0x23e/0xa90 [ 51.200137][ T9] __driver_probe_device+0x1de/0x440 [ 51.205518][ T9] driver_probe_device+0x4c/0x1b0 [ 51.210629][ T9] __device_attach_driver+0x1df/0x310 [ 51.216113][ T9] ? __pfx___device_attach_driver+0x10/0x10 [ 51.222101][ T9] bus_for_each_drv+0x157/0x1e0 [ 51.227159][ T9] ? __pfx_bus_for_each_drv+0x10/0x10 [ 51.232620][ T9] ? lockdep_hardirqs_on+0x7c/0x110 [ 51.237904][ T9] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 51.243825][ T9] __device_attach+0x1e8/0x4b0 [ 51.248646][ T9] ? __pfx___device_attach+0x10/0x10 [ 51.254020][ T9] ? do_raw_spin_unlock+0x172/0x230 [ 51.259305][ T9] bus_probe_device+0x17f/0x1c0 [ 51.264243][ T9] device_add+0x114b/0x1a70 [ 51.268812][ T9] ? __pfx_device_add+0x10/0x10 [ 51.273757][ T9] ? mark_held_locks+0x9f/0xe0 [ 51.278607][ T9] usb_set_configuration+0x10cb/0x1c50 [ 51.284212][ T9] ? __pfx_usb_generic_driver_probe+0x10/0x10 [ 51.290449][ T9] usb_generic_driver_probe+0xb1/0x110 [ 51.296007][ T9] usb_probe_device+0xec/0x3e0 [ 51.300835][ T9] ? __pfx_usb_probe_device+0x10/0x10 [ 51.306300][ T9] really_probe+0x23e/0xa90 [ 51.310875][ T9] __driver_probe_device+0x1de/0x440 [ 51.316242][ T9] ? usb_driver_applicable+0x1c7/0x220 [ 51.321841][ T9] driver_probe_device+0x4c/0x1b0 [ 51.326925][ T9] __device_attach_driver+0x1df/0x310 [ 51.332410][ T9] ? __pfx___device_attach_driver+0x10/0x10 [ 51.338357][ T9] bus_for_each_drv+0x157/0x1e0 [ 51.343284][ T9] ? __pfx_bus_for_each_drv+0x10/0x10 [ 51.348732][ T9] ? lockdep_hardirqs_on+0x7c/0x110 [ 51.354032][ T9] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 51.359912][ T9] __device_attach+0x1e8/0x4b0 [ 51.364765][ T9] ? __pfx___device_attach+0x10/0x10 [ 51.370111][ T9] ? do_raw_spin_unlock+0x172/0x230 [ 51.375414][ T9] bus_probe_device+0x17f/0x1c0 [ 51.380345][ T9] device_add+0x114b/0x1a70 [ 51.384945][ T9] ? __pfx_device_add+0x10/0x10 [ 51.389881][ T9] ? add_device_randomness+0xb8/0xf0 [ 51.395269][ T9] usb_new_device+0xd90/0x1a10 [ 51.400110][ T9] ? __pfx_usb_new_device+0x10/0x10 [ 51.405413][ T9] hub_event+0x2e58/0x4f40 [ 51.409927][ T9] ? __pfx_hub_event+0x10/0x10 [ 51.414806][ T9] ? __pfx_lock_acquire+0x10/0x10 [ 51.419896][ T9] ? __pfx_lock_release+0x10/0x10 [ 51.425071][ T9] process_one_work+0x9c5/0x1b40 [ 51.430102][ T9] ? __pfx_hcd_resume_work+0x10/0x10 [ 51.435507][ T9] ? __pfx_process_one_work+0x10/0x10 [ 51.441046][ T9] ? assign_work+0x1a0/0x250 [ 51.445768][ T9] worker_thread+0x6c8/0xed0 [ 51.450435][ T9] ? __kthread_parkme+0x148/0x220 [ 51.455546][ T9] ? __pfx_worker_thread+0x10/0x10 [ 51.460721][ T9] kthread+0x2c1/0x3a0 [ 51.464878][ T9] ? _raw_spin_unlock_irq+0x23/0x50 [ 51.470161][ T9] ? __pfx_kthread+0x10/0x10 [ 51.474901][ T9] ret_from_fork+0x45/0x80 [ 51.479471][ T9] ? __pfx_kthread+0x10/0x10 [ 51.484203][ T9] ret_from_fork_asm+0x1a/0x30 [ 51.489065][ T9] [ 51.492160][ T9] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 51.499558][ T9] CPU: 0 UID: 0 PID: 9 Comm: kworker/0:1 Not tainted 6.11.0-rc6-syzkaller-g9c0c11bb87b0 #0 [ 51.509657][ T9] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 51.519912][ T9] Workqueue: usb_hub_wq hub_event [ 51.524962][ T9] Call Trace: [ 51.528253][ T9] [ 51.531289][ T9] dump_stack_lvl+0x3d/0x1f0 [ 51.535908][ T9] panic+0x6dc/0x7c0 [ 51.539834][ T9] ? __pfx_panic+0x10/0x10 [ 51.544369][ T9] ? show_trace_log_lvl+0x363/0x500 [ 51.549635][ T9] ? check_panic_on_warn+0x1f/0xb0 [ 51.554787][ T9] ? free_large_kmalloc+0xda/0x140 [ 51.560104][ T9] check_panic_on_warn+0xab/0xb0 [ 51.565089][ T9] __warn+0xf1/0x3c0 [ 51.569025][ T9] ? free_large_kmalloc+0xda/0x140 [ 51.574170][ T9] report_bug+0x3c0/0x580 [ 51.578543][ T9] handle_bug+0x3d/0x70 [ 51.582786][ T9] exc_invalid_op+0x17/0x50 [ 51.587356][ T9] asm_exc_invalid_op+0x1a/0x20 [ 51.592244][ T9] RIP: 0010:free_large_kmalloc+0xda/0x140 [ 51.598013][ T9] Code: 56 fb 8b 43 34 85 c0 75 c7 48 c7 c6 50 8c 78 88 48 89 df e8 18 0f f3 ff 90 0f 0b 48 89 df 5b 5d 41 5c 41 5d e9 07 20 e7 ff 90 <0f> 0b 90 80 3d 78 cf a2 08 00 74 28 48 8b 74 24 20 48 89 ef e8 2d [ 51.617734][ T9] RSP: 0018:ffffc9000009ee20 EFLAGS: 00010246 [ 51.623857][ T9] RAX: 0200000000000000 RBX: ffffea0004991880 RCX: ffffffff811692ac [ 51.631874][ T9] RDX: ffff888101698000 RSI: ffff888126462000 RDI: ffffea0004991880 [ 51.639863][ T9] RBP: ffff888126462000 R08: 0000000000000007 R09: 0000000000000000 [ 51.647852][ T9] R10: 0000000000000000 R11: 0000000000000000 R12: ffff888104f8f000 [ 51.655860][ T9] R13: ffff888104f8d000 R14: dffffc0000000000 R15: ffff888104f8f0f0 [ 51.664036][ T9] ? __phys_addr+0xbc/0x150 [ 51.668579][ T9] usb_free_urb.part.0+0xe5/0x100 [ 51.673638][ T9] usb_free_urb+0x1f/0x30 [ 51.677994][ T9] smsusb_term_device+0x108/0x1e0 [ 51.683095][ T9] smsusb_init_device+0xaa2/0xe10 [ 51.688167][ T9] ? __pfx_smsusb_init_device+0x10/0x10 [ 51.693734][ T9] ? kfree+0x226/0x380 [ 51.697834][ T9] ? __pfx_smsusb_sendrequest+0x10/0x10 [ 51.703411][ T9] ? usb_clear_halt+0x61/0x160 [ 51.708230][ T9] smsusb_probe+0x5e2/0x10b0 [ 51.712946][ T9] ? __pfx_smsusb_probe+0x10/0x10 [ 51.717997][ T9] ? mark_held_locks+0x9f/0xe0 [ 51.722788][ T9] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 51.728638][ T9] ? __pm_runtime_set_status+0x13c/0x9a0 [ 51.734306][ T9] usb_probe_interface+0x309/0x9d0 [ 51.739447][ T9] ? __pfx_usb_probe_interface+0x10/0x10 [ 51.745109][ T9] really_probe+0x23e/0xa90 [ 51.749733][ T9] __driver_probe_device+0x1de/0x440 [ 51.755055][ T9] driver_probe_device+0x4c/0x1b0 [ 51.760110][ T9] __device_attach_driver+0x1df/0x310 [ 51.765516][ T9] ? __pfx___device_attach_driver+0x10/0x10 [ 51.771562][ T9] bus_for_each_drv+0x157/0x1e0 [ 51.776461][ T9] ? __pfx_bus_for_each_drv+0x10/0x10 [ 51.781862][ T9] ? lockdep_hardirqs_on+0x7c/0x110 [ 51.787101][ T9] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 51.792956][ T9] __device_attach+0x1e8/0x4b0 [ 51.797746][ T9] ? __pfx___device_attach+0x10/0x10 [ 51.803096][ T9] ? do_raw_spin_unlock+0x172/0x230 [ 51.808331][ T9] bus_probe_device+0x17f/0x1c0 [ 51.813231][ T9] device_add+0x114b/0x1a70 [ 51.817785][ T9] ? __pfx_device_add+0x10/0x10 [ 51.822664][ T9] ? mark_held_locks+0x9f/0xe0 [ 51.827468][ T9] usb_set_configuration+0x10cb/0x1c50 [ 51.832987][ T9] ? __pfx_usb_generic_driver_probe+0x10/0x10 [ 51.839108][ T9] usb_generic_driver_probe+0xb1/0x110 [ 51.844600][ T9] usb_probe_device+0xec/0x3e0 [ 51.849386][ T9] ? __pfx_usb_probe_device+0x10/0x10 [ 51.854803][ T9] really_probe+0x23e/0xa90 [ 51.859340][ T9] __driver_probe_device+0x1de/0x440 [ 51.864654][ T9] ? usb_driver_applicable+0x1c7/0x220 [ 51.870136][ T9] driver_probe_device+0x4c/0x1b0 [ 51.875185][ T9] __device_attach_driver+0x1df/0x310 [ 51.880582][ T9] ? __pfx___device_attach_driver+0x10/0x10 [ 51.886504][ T9] bus_for_each_drv+0x157/0x1e0 [ 51.891383][ T9] ? __pfx_bus_for_each_drv+0x10/0x10 [ 51.896776][ T9] ? lockdep_hardirqs_on+0x7c/0x110 [ 51.902098][ T9] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 51.907953][ T9] __device_attach+0x1e8/0x4b0 [ 51.912747][ T9] ? __pfx___device_attach+0x10/0x10 [ 51.918062][ T9] ? do_raw_spin_unlock+0x172/0x230 [ 51.923299][ T9] bus_probe_device+0x17f/0x1c0 [ 51.928282][ T9] device_add+0x114b/0x1a70 [ 51.932822][ T9] ? __pfx_device_add+0x10/0x10 [ 51.937704][ T9] ? add_device_randomness+0xb8/0xf0 [ 51.943286][ T9] usb_new_device+0xd90/0x1a10 [ 51.948115][ T9] ? __pfx_usb_new_device+0x10/0x10 [ 51.953367][ T9] hub_event+0x2e58/0x4f40 [ 51.957837][ T9] ? __pfx_hub_event+0x10/0x10 [ 51.962647][ T9] ? __pfx_lock_acquire+0x10/0x10 [ 51.967736][ T9] ? __pfx_lock_release+0x10/0x10 [ 51.972916][ T9] process_one_work+0x9c5/0x1b40 [ 51.977993][ T9] ? __pfx_hcd_resume_work+0x10/0x10 [ 51.983304][ T9] ? __pfx_process_one_work+0x10/0x10 [ 51.988823][ T9] ? assign_work+0x1a0/0x250 [ 51.993447][ T9] worker_thread+0x6c8/0xed0 [ 51.998092][ T9] ? __kthread_parkme+0x148/0x220 [ 52.003177][ T9] ? __pfx_worker_thread+0x10/0x10 [ 52.008322][ T9] kthread+0x2c1/0x3a0 [ 52.012550][ T9] ? _raw_spin_unlock_irq+0x23/0x50 [ 52.017785][ T9] ? __pfx_kthread+0x10/0x10 [ 52.022396][ T9] ret_from_fork+0x45/0x80 [ 52.026844][ T9] ? __pfx_kthread+0x10/0x10 [ 52.031452][ T9] ret_from_fork_asm+0x1a/0x30 [ 52.036267][ T9] [ 52.039659][ T9] Kernel Offset: disabled [ 52.044047][ T9] Rebooting in 86400 seconds..