
[[36minfo[39;49m] Using makefile-style concurrent boot in runlevel 2.
[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   15.053135][    C1] random: crng init done
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.15.211' (ECDSA) to the list of known hosts.
2019/09/03 12:58:01 fuzzer started
2019/09/03 12:58:02 dialing manager at 10.128.0.105:43075
2019/09/03 12:58:02 syscalls: 84
2019/09/03 12:58:02 code coverage: enabled
2019/09/03 12:58:02 comparison tracing: enabled
2019/09/03 12:58:02 extra coverage: enabled
2019/09/03 12:58:02 setuid sandbox: enabled
2019/09/03 12:58:02 namespace sandbox: enabled
2019/09/03 12:58:02 Android sandbox: /sys/fs/selinux/policy does not exist
2019/09/03 12:58:02 fault injection: enabled
2019/09/03 12:58:02 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2019/09/03 12:58:02 net packet injection: /dev/net/tun can't be opened (open /dev/net/tun: no such device)
2019/09/03 12:58:02 net device setup: enabled
12:58:03 executing program 0:
syz_usb_connect(0x0, 0xcf, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000f270c820711f0633898b000000010902bd00010000000009043f0000fafaf000092406000078828a9605240002000d240f0101800000010108000139241303bdf210f1c4bcb3cd8dad6e6a838065b3ccc88255f31f831e84ff2efdedfc1da30fae018999d0c50634ff4fce84aa052148090f62361524127f00a317a88b045e4f01a607c0ffcb7e392a07240af301050105240102d908241c01001e02000a24060000140ca5548e05240009000d240f018100000085000100100c241b0400000008c101010906241afdff03"], 0x0)

12:58:03 executing program 2:
r0 = syz_open_dev$hidraw(&(0x7f0000000040)='/dev/hidraw#\x00', 0x0, 0x0)
ioctl$HIDIOCGRAWINFO(r0, 0x80084803, &(0x7f0000000080)=""/15)
r1 = syz_open_dev$hidraw(&(0x7f0000000000)='/dev/../raw#\x00', 0x0, 0x0)
ioctl$HIDIOCAPPLICATION(r1, 0xc020660b, 0x712d3c)

12:58:03 executing program 5:
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x74, 0x1a, 0xde, 0x8, 0x586, 0x341f, 0xe797, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x5c, 0x0, 0x2, 0xff, 0xff, 0xff, 0x0, [], [{{0x9, 0x5, 0x8a}}, {{0x9, 0x5, 0x5}}]}}]}}]}}, 0x0)
syz_usb_control_io(r0, &(0x7f0000000240)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000880)={0xac, &(0x7f0000000280)={0x0, 0x0, 0x3, "e0b2fb"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000680)={0x40, 0xf, 0x6}, 0x0, &(0x7f0000000700)={0x40, 0x17, 0x2}, 0x0, 0x0, 0x0, &(0x7f0000000800)={0x40, 0x1e, 0x1}})
syz_usb_control_io(r0, &(0x7f00000039c0)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000004200)={0xb4, &(0x7f0000003a00)={0x0, 0x0, 0x1, "d4"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

12:58:03 executing program 3:
r0 = syz_usb_connect$hid(0x0, 0x33, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000000406d041cc340000000000109022100010000a0000904000001030101000621000000000905810300000000009b31da2227118ff6ec8a86"], 0x0)
syz_usb_ep_write(r0, 0x0, 0x38, 0x0)

12:58:03 executing program 4:
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x7d, 0xce, 0xbb, 0x8, 0xfe6, 0x9700, 0x8948, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0xa3, 0x0, 0x2, 0x5d, 0xb9, 0x16, 0x0, [], [{{0x9, 0x5, 0x7, 0x2}}, {{0x9, 0x5, 0x8c, 0x2}}]}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x24, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000500)={0x2c, &(0x7f0000000280)=ANY=[], 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, &(0x7f0000000200)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, &(0x7f0000000800)={0x14, 0x0, &(0x7f00000007c0)={0x0, 0x3, 0x2, @string={0x2}}}, &(0x7f0000000b40)={0x34, &(0x7f0000000840)={0x0, 0x16, 0x37, "1e74050495fc4a868dfdfe41851d84ebc7bc56a371bf71a47645e117277d74937755c33b914b5fc23dc9b5dd13317965c4b0fd222bf6b2"}, &(0x7f0000000940)={0x0, 0xa, 0x1}, &(0x7f0000000980)={0x0, 0x8, 0x1, 0x401}, 0x0, 0x0, 0x0})

12:58:03 executing program 1:
syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x2, 0x0)
r0 = syz_open_dev$hidraw(0x0, 0x0, 0x200000000002406)
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f0000000180)={0x0, 0x0, 0x0, {0x0, 0x1}, {0x7f, 0x2}, @rumble})
write$hidraw(r0, &(0x7f0000000040)="06", 0xff68)

syzkaller login: [   28.315539][ T1740] cgroup1: Unknown subsys name 'perf_event'
[   28.332307][ T1740] cgroup1: Unknown subsys name 'net_cls'
[   28.393960][ T1743] cgroup1: Unknown subsys name 'perf_event'
[   28.400654][ T1743] cgroup1: Unknown subsys name 'net_cls'
[   28.422515][ T1745] cgroup1: Unknown subsys name 'perf_event'
[   28.433286][ T1747] cgroup1: Unknown subsys name 'perf_event'
[   28.442394][ T1745] cgroup1: Unknown subsys name 'net_cls'
[   28.450567][ T1747] cgroup1: Unknown subsys name 'net_cls'
[   28.458043][ T1750] cgroup1: Unknown subsys name 'perf_event'
[   28.467831][ T1750] cgroup1: Unknown subsys name 'net_cls'
[   28.488352][ T1759] cgroup1: Unknown subsys name 'perf_event'
[   28.494978][ T1759] cgroup1: Unknown subsys name 'net_cls'
12:58:06 executing program 2:
syz_usb_connect(0x0, 0x24, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)

[   31.631981][   T12] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   31.672168][    C0] ------------[ cut here ]------------
[   31.677797][    C0] WARNING: CPU: 0 PID: 0 at kernel/kcov.c:684 kcov_remote_start.cold+0xc/0x26
[   31.686628][    C0] Kernel panic - not syncing: panic_on_warn set ...
[   31.693207][    C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 5.3.0-rc7+ #0
[   31.700302][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   31.710343][    C0] Call Trace:
[   31.713613][    C0]  <IRQ>
[   31.716450][    C0]  dump_stack+0xca/0x13e
[   31.720682][    C0]  ? kcov_remote_stop+0x110/0x1bc
[   31.725689][    C0]  panic+0x2a3/0x6da
[   31.729560][    C0]  ? add_taint.cold+0x16/0x16
[   31.734233][    C0]  ? __probe_kernel_read+0x188/0x1d0
[   31.739500][    C0]  ? __warn.cold+0x5/0x4a
[   31.743803][    C0]  ? __warn+0xe3/0x1e0
[   31.747845][    C0]  ? kcov_remote_start.cold+0xc/0x26
[   31.753151][    C0]  __warn.cold+0x20/0x4a
[   31.757389][    C0]  ? __irq_work_queue_local+0xa3/0xe0
[   31.762755][    C0]  ? kcov_remote_start.cold+0xc/0x26
[   31.768019][    C0]  report_bug+0x262/0x2a0
[   31.772329][    C0]  do_error_trap+0x12b/0x1e0
[   31.776897][    C0]  ? kcov_remote_start.cold+0xc/0x26
[   31.782330][    C0]  do_invalid_op+0x32/0x40
[   31.787076][    C0]  ? kcov_remote_start.cold+0xc/0x26
[   31.792343][    C0]  invalid_op+0x23/0x30
[   31.796486][    C0] RIP: 0010:kcov_remote_start.cold+0xc/0x26
[   31.802443][    C0] Code: b0 f8 ff ff 48 c7 c7 d8 dd a4 86 e8 54 93 ea ff 0f 0b 5b 4c 89 e7 5d 41 5c e9 9d e7 2f 04 48 c7 c7 d8 dd a4 86 e8 3a 93 ea ff <0f> 0b e9 93 fd ff ff 48 c7 c7 d8 dd a4 86 e8 27 93 ea ff 0f 0b e9
[   31.822023][    C0] RSP: 0018:ffff8881db209ae8 EFLAGS: 00010082
[   31.828070][    C0] RAX: 0000000000000024 RBX: ffff8881d55ef700 RCX: 0000000000000000
[   31.836026][    C0] RDX: 0000000000000000 RSI: ffffffff81288ddd RDI: ffffed103b64134f
[   31.843986][    C0] RBP: ffff8881d55ef700 R08: 0000000000000024 R09: ffffed103b645d58
[   31.851934][    C0] R10: ffffed103b645d57 R11: ffff8881db22eabf R12: ffff8881c9b4f488
[   31.859882][    C0] R13: ffff8881d76cc238 R14: dffffc0000000000 R15: ffff8881b14f8400
[   31.867838][    C0]  ? vprintk_func+0x7d/0x113
[   31.872406][    C0]  ? kcov_remote_start.cold+0xc/0x26
[   31.877667][    C0]  dummy_timer+0x125f/0x301a
[   31.882267][    C0]  ? lock_acquire+0x127/0x320
[   31.886918][    C0]  ? dummy_udc_probe+0x930/0x930
[   31.891836][    C0]  call_timer_fn+0x179/0x650
[   31.896407][    C0]  ? dummy_udc_probe+0x930/0x930
[   31.901321][    C0]  ? msleep_interruptible+0x130/0x130
[   31.906665][    C0]  ? do_raw_spin_lock+0x11a/0x280
[   31.911663][    C0]  ? _raw_spin_unlock_irq+0x24/0x30
[   31.916847][    C0]  ? dummy_udc_probe+0x930/0x930
[   31.921771][    C0]  run_timer_softirq+0x5cc/0x14b0
[   31.926775][    C0]  ? add_timer+0x7a0/0x7a0
[   31.931222][    C0]  ? ktime_get+0x162/0x1c0
[   31.935617][    C0]  ? lapic_next_event+0x4d/0x80
[   31.940453][    C0]  __do_softirq+0x221/0x912
[   31.944934][    C0]  irq_exit+0x178/0x1a0
[   31.949072][    C0]  smp_apic_timer_interrupt+0x12f/0x500
[   31.954612][    C0]  apic_timer_interrupt+0xf/0x20
[   31.959529][    C0]  </IRQ>
[   31.962458][    C0] RIP: 0010:default_idle+0x28/0x2e0
[   31.967633][    C0] Code: 90 90 41 56 41 55 65 44 8b 2d 54 d8 93 7a 41 54 55 53 0f 1f 44 00 00 e8 46 49 d5 fb e9 07 00 00 00 0f 00 2d ea 7d 54 00 fb f4 <65> 44 8b 2d 30 d8 93 7a 0f 1f 44 00 00 5b 5d 41 5c 41 5d 41 5e c3
[   31.987211][    C0] RSP: 0018:ffffffff86c07da8 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
[   31.995605][    C0] RAX: 0000000000000007 RBX: ffffffff86c2b200 RCX: 0000000000000000
[   32.003648][    C0] RDX: 0000000000000000 RSI: 0000000000000006 RDI: ffffffff86c2ba44
[   32.011602][    C0] RBP: fffffbfff0d85640 R08: ffffffff86c2b200 R09: 0000000000000000
[   32.019551][    C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[   32.027512][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   32.035475][    C0]  ? default_idle+0x1a/0x2e0
[   32.040045][    C0]  do_idle+0x3c2/0x4f0
[   32.044099][    C0]  ? arch_cpu_idle_exit+0x40/0x40
[   32.049111][    C0]  cpu_startup_entry+0x14/0x20
[   32.053853][    C0]  start_kernel+0x838/0x872
[   32.058348][    C0]  ? mem_encrypt_init+0x5/0x5
[   32.063009][    C0]  ? x86_family+0x3d/0x50
[   32.067351][    C0]  ? load_ucode_bsp+0x23d/0x27d
[   32.072176][    C0]  secondary_startup_64+0xa4/0xb0
[   32.077856][    C0] Kernel Offset: disabled
[   32.082205][    C0] Rebooting in 86400 seconds..