[info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 14.649214][ C1] random: crng init done [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.10.8' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program syzkaller login: [ 113.078571][ T21] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 113.086272][ T102] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 113.093826][ T1775] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 113.101322][ T1778] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 113.108507][ T12] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 113.108840][ T17] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 113.348504][ T12] usb 3-1: Using ep0 maxpacket: 8 [ 113.358521][ T102] usb 6-1: Using ep0 maxpacket: 8 [ 113.363677][ T1775] usb 5-1: Using ep0 maxpacket: 8 [ 113.368754][ T1778] usb 2-1: Using ep0 maxpacket: 8 [ 113.373819][ T21] usb 4-1: Using ep0 maxpacket: 8 [ 113.379003][ T17] usb 1-1: Using ep0 maxpacket: 8 [ 113.488542][ T12] usb 3-1: config 0 has an invalid interface number: 28 but max is 0 [ 113.488549][ T1778] usb 2-1: config 0 has an invalid interface number: 28 but max is 0 [ 113.488572][ T12] usb 3-1: config 0 has no interface number 0 [ 113.496697][ T1778] usb 2-1: config 0 has no interface number 0 [ 113.505184][ T12] usb 3-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 113.511113][ T1775] usb 5-1: config 0 has an invalid interface number: 28 but max is 0 [ 113.517164][ T12] usb 3-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 113.517176][ T12] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 113.528098][ T1775] usb 5-1: config 0 has no interface number 0 [ 113.537732][ T12] usb 3-1: config 0 descriptor?? [ 113.545515][ T21] usb 4-1: config 0 has an invalid interface number: 28 but max is 0 [ 113.545529][ T21] usb 4-1: config 0 has no interface number 0 [ 113.545576][ T21] usb 4-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 113.589611][ T21] usb 4-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 113.598680][ T21] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 113.606698][ T102] usb 6-1: config 0 has an invalid interface number: 28 but max is 0 [ 113.608213][ T12] ldusb 3-1:0.28: LD USB Device #0 now attached to major 180 minor 0 [ 113.614833][ T102] usb 6-1: config 0 has no interface number 0 [ 113.615659][ T17] usb 1-1: config 0 has an invalid interface number: 28 but max is 0 [ 113.637210][ T17] usb 1-1: config 0 has no interface number 0 [ 113.643367][ T102] usb 6-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 113.654266][ T102] usb 6-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 113.663409][ T102] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 113.671441][ T1778] usb 2-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 113.682346][ T1778] usb 2-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 113.691443][ T1778] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 113.699478][ T17] usb 1-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 113.710415][ T17] usb 1-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 113.719492][ T17] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 113.727497][ T1775] usb 5-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 113.738393][ T1775] usb 5-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 113.747432][ T1775] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 113.756081][ T102] usb 6-1: config 0 descriptor?? [ 113.761789][ T1778] usb 2-1: config 0 descriptor?? [ 113.767507][ T17] usb 1-1: config 0 descriptor?? [ 113.773658][ T21] usb 4-1: config 0 descriptor?? [ 113.779175][ T1775] usb 5-1: config 0 descriptor?? [ 113.800818][ T12] usb 3-1: USB disconnect, device number 2 [ 113.802530][ T102] ldusb 6-1:0.28: LD USB Device #1 now attached to major 180 minor 1 [ 113.815132][ T1778] ldusb 2-1:0.28: LD USB Device #2 now attached to major 180 minor 2 [ 113.825921][ T17] ldusb 1-1:0.28: LD USB Device #3 now attached to major 180 minor 3 [ 113.829140][ T12] ldusb 3-1:0.28: LD USB Device #0 now disconnected [ 113.834200][ T21] ldusb 4-1:0.28: LD USB Device #4 now attached to major 180 minor 4 [ 113.849653][ T1775] ldusb 5-1:0.28: LD USB Device #0 now attached to major 180 minor 0 executing program [ 114.000454][ T21] usb 6-1: USB disconnect, device number 2 [ 114.007399][ T1785] usb 2-1: USB disconnect, device number 2 [ 114.007613][ T21] ldusb 6-1:0.28: LD USB Device #1 now disconnected [ 114.021063][ T1785] ldusb 2-1:0.28: LD USB Device #2 now disconnected [ 114.030816][ T1775] usb 1-1: USB disconnect, device number 2 [ 114.037263][ T102] usb 5-1: USB disconnect, device number 2 [ 114.038581][ C0] ldusb 5-1:0.28: usb_submit_urb failed (-19) [ 114.052247][ T102] ldusb 5-1:0.28: LD USB Device #0 now disconnected [ 114.059109][ T1775] ldusb 1-1:0.28: LD USB Device #3 now disconnected [ 114.068327][ T17] usb 4-1: USB disconnect, device number 2 [ 114.077737][ T17] ldusb 4-1:0.28: LD USB Device #4 now disconnected executing program executing program executing program executing program executing program [ 114.408588][ T12] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 114.568513][ T21] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 114.608601][ T1785] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 114.618621][ T1775] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 114.626169][ T102] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 114.633724][ T17] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 114.658588][ T12] usb 3-1: Using ep0 maxpacket: 8 [ 114.778642][ T12] usb 3-1: config 0 has an invalid interface number: 28 but max is 0 [ 114.786723][ T12] usb 3-1: config 0 has no interface number 0 [ 114.792914][ T12] usb 3-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 114.803783][ T12] usb 3-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 114.812841][ T12] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 114.818507][ T21] usb 6-1: Using ep0 maxpacket: 8 [ 114.822005][ T12] usb 3-1: config 0 descriptor?? [ 114.868615][ T1785] usb 2-1: Using ep0 maxpacket: 8 [ 114.876389][ T12] ldusb 3-1:0.28: LD USB Device #0 now attached to major 180 minor 0 [ 114.878878][ T1775] usb 1-1: Using ep0 maxpacket: 8 [ 114.889624][ T102] usb 5-1: Using ep0 maxpacket: 8 [ 114.894750][ T17] usb 4-1: Using ep0 maxpacket: 8 [ 114.968599][ T21] usb 6-1: config 0 has an invalid interface number: 28 but max is 0 [ 114.976725][ T21] usb 6-1: config 0 has no interface number 0 [ 114.982878][ T21] usb 6-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 114.988616][ T1785] usb 2-1: config 0 has an invalid interface number: 28 but max is 0 [ 114.993872][ T21] usb 6-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 115.001885][ T1785] usb 2-1: config 0 has no interface number 0 [ 115.010913][ T21] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 115.017351][ T1785] usb 2-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 115.032674][ T21] usb 6-1: config 0 descriptor?? [ 115.035885][ T1785] usb 2-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 115.049933][ T1785] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 115.058705][ T1785] usb 2-1: config 0 descriptor?? [ 115.058877][ T102] usb 5-1: config 0 has an invalid interface number: 28 but max is 0 [ 115.071875][ T102] usb 5-1: config 0 has no interface number 0 [ 115.074144][ T12] usb 3-1: USB disconnect, device number 3 [ 115.077992][ T17] usb 4-1: config 0 has an invalid interface number: 28 but max is 0 [ 115.092045][ T17] usb 4-1: config 0 has no interface number 0 [ 115.092459][ T12] ldusb 3-1:0.28: LD USB Device #0 now disconnected [ 115.098148][ T1775] usb 1-1: config 0 has an invalid interface number: 28 but max is 0 [ 115.107740][ T1785] ldusb 2-1:0.28: LD USB Device #0 now attached to major 180 minor 0 [ 115.112834][ T1775] usb 1-1: config 0 has no interface number 0 [ 115.127529][ T21] ldusb 6-1:0.28: LD USB Device #1 now attached to major 180 minor 1 [ 115.136068][ T102] usb 5-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 115.147011][ T102] usb 5-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 115.156124][ T102] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 115.165548][ T17] usb 4-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 115.176478][ T17] usb 4-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 115.185590][ T17] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 115.193786][ T1775] usb 1-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 115.204679][ T1775] usb 1-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 115.213787][ T1775] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 115.222780][ T102] usb 5-1: config 0 descriptor?? [ 115.229798][ T17] usb 4-1: config 0 descriptor?? [ 115.235141][ T1775] usb 1-1: config 0 descriptor?? executing program [ 115.260900][ T102] ldusb 5-1:0.28: LD USB Device #2 now attached to major 180 minor 2 [ 115.284054][ T17] ldusb 4-1:0.28: LD USB Device #3 now attached to major 180 minor 3 [ 115.292767][ T1775] ldusb 1-1:0.28: LD USB Device #4 now attached to major 180 minor 4 [ 115.301953][ T1785] usb 6-1: USB disconnect, device number 3 [ 115.310000][ T1775] usb 2-1: USB disconnect, device number 3 [ 115.320047][ T1785] ldusb 6-1:0.28: LD USB Device #1 now disconnected [ 115.330158][ T1775] ldusb 2-1:0.28: LD USB Device #0 now disconnected [ 115.459911][ T17] usb 5-1: USB disconnect, device number 3 [ 115.466551][ T17] ldusb 5-1:0.28: LD USB Device #2 now disconnected [ 115.479634][ T102] usb 4-1: USB disconnect, device number 3 [ 115.486371][ T102] ldusb 4-1:0.28: LD USB Device #3 now disconnected [ 115.486876][ T1797] usb 1-1: USB disconnect, device number 3 executing program executing program [ 115.503854][ T1797] ldusb 1-1:0.28: LD USB Device #4 now disconnected executing program executing program executing program [ 115.658524][ T12] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 115.878741][ T1785] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 115.908514][ T12] usb 3-1: Using ep0 maxpacket: 8 [ 115.909592][ T1775] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 115.938567][ T17] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 116.028608][ T12] usb 3-1: config 0 has an invalid interface number: 28 but max is 0 [ 116.036669][ T12] usb 3-1: config 0 has no interface number 0 [ 116.042867][ T12] usb 3-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 116.053770][ T12] usb 3-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 116.062820][ T12] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 116.071872][ T12] usb 3-1: config 0 descriptor?? [ 116.078554][ T1797] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 116.078679][ T102] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 116.111836][ T12] ldusb 3-1:0.28: LD USB Device #0 now attached to major 180 minor 0 [ 116.120244][ T1785] usb 6-1: Using ep0 maxpacket: 8 [ 116.168858][ T1775] usb 2-1: Using ep0 maxpacket: 8 [ 116.188563][ T17] usb 5-1: Using ep0 maxpacket: 8 [ 116.238560][ T1785] usb 6-1: config 0 has an invalid interface number: 28 but max is 0 [ 116.246678][ T1785] usb 6-1: config 0 has no interface number 0 [ 116.252864][ T1785] usb 6-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 116.263744][ T1785] usb 6-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 116.272845][ T1785] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 116.281584][ T1785] usb 6-1: config 0 descriptor?? [ 116.289022][ T1775] usb 2-1: config 0 has an invalid interface number: 28 but max is 0 [ 116.297172][ T1775] usb 2-1: config 0 has no interface number 0 [ 116.303328][ T1775] usb 2-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 116.309556][ T12] usb 3-1: USB disconnect, device number 4 [ 116.314289][ T1775] usb 2-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 116.329122][ T1775] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 116.330492][ T1797] usb 1-1: Using ep0 maxpacket: 8 [ 116.337350][ T17] usb 5-1: config 0 has an invalid interface number: 28 but max is 0 [ 116.350218][ T17] usb 5-1: config 0 has no interface number 0 [ 116.351002][ T1785] ldusb 6-1:0.28: LD USB Device #1 now attached to major 180 minor 1 [ 116.356323][ T17] usb 5-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 116.356359][ T17] usb 5-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 116.356380][ T17] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 116.365203][ T12] ldusb 3-1:0.28: LD USB Device #0 now disconnected [ 116.375367][ T102] usb 4-1: Using ep0 maxpacket: 8 [ 116.392787][ T17] usb 5-1: config 0 descriptor?? [ 116.409694][ T1775] usb 2-1: config 0 descriptor?? [ 116.450874][ T1775] ldusb 2-1:0.28: LD USB Device #0 now attached to major 180 minor 0 [ 116.461068][ T17] ldusb 5-1:0.28: LD USB Device #2 now attached to major 180 minor 2 [ 116.478619][ T1797] usb 1-1: config 0 has an invalid interface number: 28 but max is 0 [ 116.486797][ T1797] usb 1-1: config 0 has no interface number 0 [ 116.492998][ T1797] usb 1-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 116.503912][ T1797] usb 1-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 116.508629][ T102] usb 4-1: config 0 has an invalid interface number: 28 but max is 0 [ 116.513153][ T1797] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 116.521129][ T102] usb 4-1: config 0 has no interface number 0 [ 116.532091][ T1797] usb 1-1: config 0 descriptor?? [ 116.540532][ T1785] usb 6-1: USB disconnect, device number 4 executing program [ 116.544017][ T102] usb 4-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 116.547444][ T1785] ldusb 6-1:0.28: LD USB Device #1 now disconnected [ 116.557309][ T102] usb 4-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 116.573024][ T102] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 116.582077][ T102] usb 4-1: config 0 descriptor?? [ 116.590251][ T1797] ldusb 1-1:0.28: LD USB Device #1 now attached to major 180 minor 1 [ 116.620752][ T102] ldusb 4-1:0.28: LD USB Device #3 now attached to major 180 minor 3 [ 116.649663][ T102] usb 2-1: USB disconnect, device number 4 [ 116.656151][ T1797] usb 5-1: USB disconnect, device number 4 [ 116.662955][ T102] ldusb 2-1:0.28: LD USB Device #0 now disconnected [ 116.663258][ T1797] ldusb 5-1:0.28: LD USB Device #2 now disconnected executing program executing program executing program [ 116.789524][ T17] usb 1-1: USB disconnect, device number 4 [ 116.796398][ T17] ldusb 1-1:0.28: LD USB Device #1 now disconnected [ 116.819462][ T1775] usb 4-1: USB disconnect, device number 4 [ 116.826380][ T1775] ldusb 4-1:0.28: LD USB Device #3 now disconnected executing program executing program [ 116.968520][ T12] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 117.148499][ T1785] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 117.208516][ T12] usb 3-1: Using ep0 maxpacket: 8 [ 117.248518][ T102] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 117.248567][ T1797] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 117.338561][ T12] usb 3-1: config 0 has an invalid interface number: 28 but max is 0 [ 117.346681][ T12] usb 3-1: config 0 has no interface number 0 [ 117.352928][ T12] usb 3-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 117.363826][ T12] usb 3-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 117.372928][ T12] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 117.382021][ T12] usb 3-1: config 0 descriptor?? [ 117.388642][ T17] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 117.408551][ T1785] usb 6-1: Using ep0 maxpacket: 8 [ 117.418803][ T1775] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 117.423094][ T12] ldusb 3-1:0.28: LD USB Device #0 now attached to major 180 minor 0 [ 117.488877][ T102] usb 2-1: Using ep0 maxpacket: 8 [ 117.498610][ T1797] usb 5-1: Using ep0 maxpacket: 8 [ 117.528543][ T1785] usb 6-1: config 0 has an invalid interface number: 28 but max is 0 [ 117.536622][ T1785] usb 6-1: config 0 has no interface number 0 [ 117.542963][ T1785] usb 6-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 117.553834][ T1785] usb 6-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 117.562929][ T1785] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 117.571720][ T1785] usb 6-1: config 0 descriptor?? [ 117.610774][ T1785] ldusb 6-1:0.28: LD USB Device #1 now attached to major 180 minor 1 [ 117.619169][ T1797] usb 5-1: config 0 has an invalid interface number: 28 but max is 0 [ 117.626834][ T21] usb 3-1: USB disconnect, device number 5 [ 117.627315][ T1797] usb 5-1: config 0 has no interface number 0 [ 117.633456][ T102] usb 2-1: config 0 has an invalid interface number: 28 but max is 0 [ 117.639261][ C1] ldusb 3-1:0.28: usb_submit_urb failed (-19) [ 117.641211][ T1797] usb 5-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 117.647336][ T102] usb 2-1: config 0 has no interface number 0 [ 117.655556][ T102] usb 2-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 117.664392][ T1797] usb 5-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 117.664408][ T1797] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 117.665898][ T1797] usb 5-1: config 0 descriptor?? [ 117.670520][ T102] usb 2-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 117.670536][ T102] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 117.670646][ T17] usb 1-1: Using ep0 maxpacket: 8 [ 117.725607][ T1797] ldusb 5-1:0.28: LD USB Device #2 now attached to major 180 minor 2 [ 117.733709][ T1775] usb 4-1: Using ep0 maxpacket: 8 [ 117.741885][ T102] usb 2-1: config 0 descriptor?? [ 117.747149][ T21] ldusb 3-1:0.28: LD USB Device #0 now disconnected executing program [ 117.791244][ T102] ldusb 2-1:0.28: LD USB Device #0 now attached to major 180 minor 0 [ 117.809761][ T102] usb 6-1: USB disconnect, device number 5 [ 117.816597][ T102] ldusb 6-1:0.28: LD USB Device #1 now disconnected [ 117.888600][ T17] usb 1-1: config 0 has an invalid interface number: 28 but max is 0 [ 117.896717][ T17] usb 1-1: config 0 has no interface number 0 [ 117.902894][ T1775] usb 4-1: config 0 has an invalid interface number: 28 but max is 0 [ 117.911024][ T1775] usb 4-1: config 0 has no interface number 0 [ 117.917179][ T17] usb 1-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 117.928098][ T17] usb 1-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 117.937171][ T17] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 117.945402][ T1775] usb 4-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 117.946298][ T1797] usb 5-1: USB disconnect, device number 5 [ 117.956319][ T1775] usb 4-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 117.963938][ T1797] ldusb 5-1:0.28: LD USB Device #2 now disconnected [ 117.971216][ T1775] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 executing program [ 117.973528][ T1775] usb 4-1: config 0 descriptor?? [ 117.993872][ T17] usb 1-1: config 0 descriptor?? [ 117.996711][ T1785] usb 2-1: USB disconnect, device number 5 [ 118.009513][ T1785] ldusb 2-1:0.28: LD USB Device #0 now disconnected [ 118.043967][ T1775] ldusb 4-1:0.28: LD USB Device #1 now attached to major 180 minor 1 [ 118.052375][ T17] ldusb 1-1:0.28: LD USB Device #0 now attached to major 180 minor 0 executing program executing program [ 118.218537][ T21] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 118.240026][ T12] usb 1-1: USB disconnect, device number 5 [ 118.242526][ T17] usb 4-1: USB disconnect, device number 5 [ 118.253157][ T17] ldusb 4-1:0.28: LD USB Device #1 now disconnected [ 118.269619][ T12] ldusb 1-1:0.28: LD USB Device #0 now disconnected executing program executing program [ 118.399054][ T102] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 118.468588][ T21] usb 3-1: Using ep0 maxpacket: 8 [ 118.518524][ T1797] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 118.588547][ T21] usb 3-1: config 0 has an invalid interface number: 28 but max is 0 [ 118.596653][ T21] usb 3-1: config 0 has no interface number 0 [ 118.602896][ T21] usb 3-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 118.608506][ T1785] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 118.613793][ T21] usb 3-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 118.613808][ T21] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 118.615069][ T21] usb 3-1: config 0 descriptor?? [ 118.668538][ T102] usb 6-1: Using ep0 maxpacket: 8 [ 118.681972][ T21] ldusb 3-1:0.28: LD USB Device #0 now attached to major 180 minor 0 [ 118.778511][ T1797] usb 5-1: Using ep0 maxpacket: 8 [ 118.788565][ T102] usb 6-1: config 0 has an invalid interface number: 28 but max is 0 [ 118.796678][ T102] usb 6-1: config 0 has no interface number 0 [ 118.802838][ T102] usb 6-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 118.813734][ T102] usb 6-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 118.822785][ T102] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 118.832116][ T102] usb 6-1: config 0 descriptor?? [ 118.838531][ T17] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 118.838635][ T12] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 118.872343][ T102] ldusb 6-1:0.28: LD USB Device #1 now attached to major 180 minor 1 [ 118.884340][ T102] usb 3-1: USB disconnect, device number 6 [ 118.898816][ T1797] usb 5-1: config 0 has an invalid interface number: 28 but max is 0 [ 118.906885][ T1797] usb 5-1: config 0 has no interface number 0 [ 118.913159][ T1785] usb 2-1: Using ep0 maxpacket: 8 [ 118.913846][ T102] ldusb 3-1:0.28: LD USB Device #0 now disconnected [ 118.920132][ T1797] usb 5-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 118.935999][ T1797] usb 5-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 118.945077][ T1797] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 118.954116][ T1797] usb 5-1: config 0 descriptor?? [ 119.000952][ T1797] ldusb 5-1:0.28: LD USB Device #0 now attached to major 180 minor 0 [ 119.058567][ T1785] usb 2-1: config 0 has an invalid interface number: 28 but max is 0 [ 119.066684][ T1785] usb 2-1: config 0 has no interface number 0 [ 119.073262][ T1785] usb 2-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 119.073990][ T21] usb 6-1: USB disconnect, device number 6 [ 119.084201][ T1785] usb 2-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 119.091153][ T17] usb 4-1: Using ep0 maxpacket: 8 executing program [ 119.099097][ T1785] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 119.108384][ T21] ldusb 6-1:0.28: LD USB Device #1 now disconnected [ 119.119328][ T1785] usb 2-1: config 0 descriptor?? [ 119.148687][ T12] usb 1-1: Using ep0 maxpacket: 8 [ 119.173061][ T1785] ldusb 2-1:0.28: LD USB Device #1 now attached to major 180 minor 1 [ 119.199611][ T1785] usb 5-1: USB disconnect, device number 6 [ 119.209137][ T1785] ldusb 5-1:0.28: LD USB Device #0 now disconnected [ 119.218623][ T17] usb 4-1: config 0 has an invalid interface number: 28 but max is 0 [ 119.226773][ T17] usb 4-1: config 0 has no interface number 0 [ 119.233141][ T17] usb 4-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 119.244074][ T17] usb 4-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 119.253208][ T17] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 119.262381][ T17] usb 4-1: config 0 descriptor?? executing program [ 119.268661][ T12] usb 1-1: config 0 has an invalid interface number: 28 but max is 0 [ 119.276794][ T12] usb 1-1: config 0 has no interface number 0 [ 119.284482][ T12] usb 1-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 119.295431][ T12] usb 1-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 119.304483][ T12] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 119.315405][ T12] usb 1-1: config 0 descriptor?? [ 119.321786][ T17] ldusb 4-1:0.28: LD USB Device #0 now attached to major 180 minor 0 [ 119.360549][ T12] ldusb 1-1:0.28: LD USB Device #2 now attached to major 180 minor 2 executing program [ 119.372585][ T17] usb 2-1: USB disconnect, device number 6 [ 119.384510][ T17] ldusb 2-1:0.28: LD USB Device #1 now disconnected [ 119.499641][ T1775] usb 4-1: USB disconnect, device number 6 [ 119.508780][ T102] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 119.516685][ T1775] ldusb 4-1:0.28: LD USB Device #0 now disconnected executing program [ 119.561507][ T12] usb 1-1: USB disconnect, device number 6 [ 119.570144][ T12] ldusb 1-1:0.28: LD USB Device #2 now disconnected executing program [ 119.678547][ T21] usb 6-1: new high-speed USB device number 7 using dummy_hcd executing program [ 119.748511][ T102] usb 3-1: Using ep0 maxpacket: 8 [ 119.818526][ T1785] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 119.868892][ T102] usb 3-1: config 0 has an invalid interface number: 28 but max is 0 [ 119.877010][ T102] usb 3-1: config 0 has no interface number 0 [ 119.883207][ T102] usb 3-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 119.894099][ T102] usb 3-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 119.903146][ T102] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 119.912430][ T102] usb 3-1: config 0 descriptor?? [ 119.938548][ T21] usb 6-1: Using ep0 maxpacket: 8 [ 119.948601][ T17] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 119.959836][ T102] ldusb 3-1:0.28: LD USB Device #0 now attached to major 180 minor 0 [ 120.058597][ T21] usb 6-1: config 0 has an invalid interface number: 28 but max is 0 [ 120.066708][ T21] usb 6-1: config 0 has no interface number 0 [ 120.072860][ T1775] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 120.080631][ T21] usb 6-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 120.088519][ T1785] usb 5-1: Using ep0 maxpacket: 8 [ 120.091520][ T21] usb 6-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 120.091539][ T21] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 120.114407][ T21] usb 6-1: config 0 descriptor?? [ 120.149622][ T1797] usb 3-1: USB disconnect, device number 7 [ 120.162499][ T21] ldusb 6-1:0.28: LD USB Device #1 now attached to major 180 minor 1 [ 120.168530][ T12] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 120.179362][ T1797] ldusb 3-1:0.28: LD USB Device #0 now disconnected [ 120.198528][ T17] usb 2-1: Using ep0 maxpacket: 8 [ 120.238595][ T1785] usb 5-1: config 0 has an invalid interface number: 28 but max is 0 [ 120.246701][ T1785] usb 5-1: config 0 has no interface number 0 [ 120.253078][ T1785] usb 5-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 120.264042][ T1785] usb 5-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 120.273160][ T1785] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 120.281847][ T1785] usb 5-1: config 0 descriptor?? executing program [ 120.320566][ T1785] ldusb 5-1:0.28: LD USB Device #0 now attached to major 180 minor 0 [ 120.328765][ T17] usb 2-1: config 0 has an invalid interface number: 28 but max is 0 [ 120.336925][ T17] usb 2-1: config 0 has no interface number 0 [ 120.343481][ T17] usb 2-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 120.355624][ T17] usb 2-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 120.364795][ T17] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 120.372909][ T1775] usb 4-1: Using ep0 maxpacket: 8 [ 120.379260][ T17] usb 2-1: config 0 descriptor?? [ 120.379297][ T1785] usb 6-1: USB disconnect, device number 7 [ 120.391789][ T1785] ldusb 6-1:0.28: LD USB Device #1 now disconnected [ 120.408683][ T12] usb 1-1: Using ep0 maxpacket: 8 [ 120.421971][ T17] ldusb 2-1:0.28: LD USB Device #1 now attached to major 180 minor 1 [ 120.488560][ T1775] usb 4-1: config 0 has an invalid interface number: 28 but max is 0 [ 120.496682][ T1775] usb 4-1: config 0 has no interface number 0 [ 120.502836][ T1775] usb 4-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 120.513735][ T1775] usb 4-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 120.522801][ T1775] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 120.532001][ T1817] usb 5-1: USB disconnect, device number 7 [ 120.538006][ T1775] usb 4-1: config 0 descriptor?? [ 120.548665][ T12] usb 1-1: config 0 has an invalid interface number: 28 but max is 0 [ 120.556738][ T12] usb 1-1: config 0 has no interface number 0 [ 120.563262][ T12] usb 1-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 120.574178][ T12] usb 1-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 120.583255][ T12] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 120.583776][ T1775] sysfs: cannot create duplicate filename '/class/usbmisc/ldusb0' [ 120.591526][ T1817] ldusb 5-1:0.28: LD USB Device #0 now disconnected [ 120.599161][ T1775] CPU: 1 PID: 1775 Comm: kworker/1:3 Not tainted 5.3.0-rc2+ #25 [ 120.599173][ T1775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 120.613594][ T12] usb 1-1: config 0 descriptor?? [ 120.623399][ T1775] Workqueue: usb_hub_wq hub_event [ 120.623408][ T1775] Call Trace: executing program [ 120.623423][ T1775] dump_stack+0xca/0x13e [ 120.623435][ T1775] sysfs_warn_dup.cold+0x1c/0x29 [ 120.623446][ T1775] sysfs_do_create_link_sd.isra.0+0x10f/0x130 [ 120.623456][ T1775] sysfs_create_link+0x61/0xc0 [ 120.623467][ T1775] device_add+0x788/0x16f0 [ 120.623477][ T1775] ? uevent_store+0x50/0x50 [ 120.623490][ T1775] ? rcu_read_lock_sched_held+0x113/0x130 [ 120.623505][ T1775] ? kfree+0x28c/0x2f0 [ 120.640393][ T1888] usb 2-1: USB disconnect, device number 7 [ 120.640929][ T1775] device_create_groups_vargs+0x203/0x280 executing program [ 120.640941][ T1775] device_create+0xdf/0x120 [ 120.640952][ T1775] ? device_create_vargs+0x50/0x50 [ 120.640964][ T1775] ? down_write+0xe0/0x150 [ 120.640974][ T1775] ? __down_timeout+0x2d0/0x2d0 [ 120.640986][ T1775] usb_register_dev+0x279/0x6a0 [ 120.641002][ T1775] ? usb_open+0x270/0x270 [ 120.649134][ T1888] ldusb 2-1:0.28: LD USB Device #1 now disconnected [ 120.651980][ T1775] ? kasan_unpoison_shadow+0x30/0x40 [ 120.651990][ T1775] ? memset+0x20/0x40 [ 120.652002][ T1775] ld_usb_probe+0x6f7/0xa65 [ 120.652013][ T1775] usb_probe_interface+0x305/0x7a0 [ 120.652024][ T1775] ? usb_probe_device+0x100/0x100 [ 120.652035][ T1775] really_probe+0x281/0x650 [ 120.652052][ T1775] driver_probe_device+0x101/0x1b0 [ 120.754793][ T1775] __device_attach_driver+0x1c2/0x220 [ 120.760138][ T1775] ? driver_allows_async_probing+0x160/0x160 [ 120.766091][ T1775] bus_for_each_drv+0x15c/0x1e0 [ 120.770930][ T1775] ? bus_rescan_devices+0x20/0x20 [ 120.775943][ T1775] ? _raw_spin_unlock_irqrestore+0x3e/0x50 [ 120.781744][ T1775] ? lockdep_hardirqs_on+0x379/0x580 [ 120.787004][ T1775] __device_attach+0x217/0x360 [ 120.791751][ T1775] ? device_bind_driver+0xd0/0xd0 [ 120.796770][ T1775] ? kobject_uevent_env+0x29e/0x1160 [ 120.802045][ T1775] ? kobject_uevent_env+0x2a8/0x1160 [ 120.807322][ T1775] bus_probe_device+0x1e4/0x290 [ 120.812150][ T1775] ? blocking_notifier_call_chain+0x54/0xa0 [ 120.818021][ T1775] device_add+0xae6/0x16f0 [ 120.822449][ T1775] ? uevent_store+0x50/0x50 [ 120.826952][ T1775] ? _raw_spin_unlock_irqrestore+0x3e/0x50 [ 120.832766][ T1775] usb_set_configuration+0xdf6/0x1670 [ 120.838135][ T1775] generic_probe+0x9d/0xd5 [ 120.842538][ T1775] usb_probe_device+0x99/0x100 [ 120.847291][ T1775] ? usb_suspend+0x620/0x620 [ 120.851863][ T1775] really_probe+0x281/0x650 [ 120.856344][ T1775] driver_probe_device+0x101/0x1b0 [ 120.861508][ T1775] __device_attach_driver+0x1c2/0x220 [ 120.866862][ T1775] ? driver_allows_async_probing+0x160/0x160 [ 120.872833][ T1775] bus_for_each_drv+0x15c/0x1e0 [ 120.877673][ T1775] ? bus_rescan_devices+0x20/0x20 [ 120.882709][ T1775] ? _raw_spin_unlock_irqrestore+0x3e/0x50 [ 120.888495][ T1775] ? lockdep_hardirqs_on+0x379/0x580 [ 120.893771][ T1775] __device_attach+0x217/0x360 [ 120.898512][ T1775] ? device_bind_driver+0xd0/0xd0 [ 120.903516][ T1775] ? kobject_uevent_env+0x29e/0x1160 [ 120.908785][ T1775] ? kobject_uevent_env+0x2a8/0x1160 [ 120.914061][ T1775] bus_probe_device+0x1e4/0x290 [ 120.918914][ T1775] ? blocking_notifier_call_chain+0x54/0xa0 [ 120.924795][ T1775] device_add+0xae6/0x16f0 [ 120.929205][ T1775] ? uevent_store+0x50/0x50 [ 120.933688][ T1775] usb_new_device.cold+0x6a4/0xe79 [ 120.938785][ T1775] hub_event+0x1b5c/0x3640 [ 120.943179][ T1775] ? hub_port_debounce+0x260/0x260 [ 120.948270][ T1775] process_one_work+0x92b/0x1530 [ 120.953183][ T1775] ? pwq_dec_nr_in_flight+0x310/0x310 [ 120.958581][ T1775] ? do_raw_spin_lock+0x11a/0x280 [ 120.963615][ T1775] worker_thread+0x96/0xe20 [ 120.968127][ T1775] ? process_one_work+0x1530/0x1530 [ 120.973310][ T1775] kthread+0x318/0x420 [ 120.977375][ T1775] ? kthread_create_on_node+0xf0/0xf0 [ 120.982720][ T1775] ret_from_fork+0x24/0x30 executing program [ 120.990591][ T1775] ldusb 4-1:0.28: Not able to get a minor for this device. [ 121.008672][ T1775] ldusb: probe of 4-1:0.28 failed with error -17 [ 121.016779][ T1775] usb 4-1: USB disconnect, device number 7 [ 121.022267][ T12] ldusb 1-1:0.28: LD USB Device #0 now attached to major 180 minor 0 [ 121.068561][ T1797] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 121.189725][ T1878] ================================================================== [ 121.197853][ T1878] BUG: KASAN: use-after-free in __mutex_lock+0xf23/0x1360 [ 121.204942][ T1878] Read of size 8 at addr ffff8881d21fc2d8 by task syz-executor834/1878 [ 121.213147][ T1878] [ 121.215457][ T1878] CPU: 0 PID: 1878 Comm: syz-executor834 Not tainted 5.3.0-rc2+ #25 [ 121.223411][ T1878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 121.233441][ T1878] Call Trace: [ 121.236723][ T1878] dump_stack+0xca/0x13e [ 121.240971][ T1878] ? __mutex_lock+0xf23/0x1360 [ 121.245741][ T1878] ? __mutex_lock+0xf23/0x1360 [ 121.250493][ T1878] print_address_description+0x6a/0x32c [ 121.256076][ T1878] ? __mutex_lock+0xf23/0x1360 [ 121.260836][ T1878] ? __mutex_lock+0xf23/0x1360 [ 121.265591][ T1878] __kasan_report.cold+0x1a/0x33 [ 121.270520][ T1878] ? __mutex_lock+0xf23/0x1360 [ 121.275273][ T1878] kasan_report+0xe/0x12 [ 121.279493][ T1878] __mutex_lock+0xf23/0x1360 [ 121.284086][ T1878] ? ld_usb_release+0xb1/0x400 [ 121.288826][ T1878] ? mutex_trylock+0x2c0/0x2c0 [ 121.293567][ T1878] ? do_futex+0x165/0x1b80 [ 121.297971][ T1878] ? mark_lock+0xbc/0x1130 [ 121.302365][ T1878] ? ld_usb_disconnect+0x180/0x180 [ 121.307477][ T1878] ? ld_usb_release+0xb1/0x400 [ 121.312220][ T1878] ld_usb_release+0xb1/0x400 [ 121.316787][ T1878] ? ld_usb_disconnect+0x180/0x180 [ 121.321881][ T1878] ? locks_remove_file+0x2fa/0x560 [ 121.326988][ T1878] ? task_work_run+0x112/0x1c0 [ 121.331735][ T1878] ? fcntl_setlk+0xc30/0xc30 [ 121.336307][ T1878] ? ld_usb_disconnect+0x180/0x180 [ 121.341401][ T1878] __fput+0x2d7/0x840 [ 121.345357][ T1878] task_work_run+0x13f/0x1c0 [ 121.349921][ T1878] exit_to_usermode_loop+0x1d2/0x200 [ 121.355187][ T1878] do_syscall_64+0x45f/0x580 [ 121.359754][ T1878] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 121.365636][ T1878] RIP: 0033:0x406b31 [ 121.369507][ T1878] Code: 75 14 b8 03 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 04 19 00 00 c3 48 83 ec 08 e8 6a fc ff ff 48 89 04 24 b8 03 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 b3 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 121.389093][ T1878] RSP: 002b:00007ffcf13bd080 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 121.397475][ T1878] RAX: 0000000000000000 RBX: 0000000000000005 RCX: 0000000000406b31 [ 121.405421][ T1878] RDX: fffffffffffffff7 RSI: 0000000000000080 RDI: 0000000000000004 [ 121.413364][ T1878] RBP: 0000000000000159 R08: 0000000000000020 R09: 0000000000000020 [ 121.421326][ T1878] R10: 00007ffcf13bd0b0 R11: 0000000000000293 R12: 000000000001d884 [ 121.429581][ T1878] R13: 0000000000000004 R14: 00000000006e39ec R15: 0000000000000064 [ 121.437526][ T1878] [ 121.439844][ T1878] Allocated by task 1775: [ 121.444150][ T1878] save_stack+0x1b/0x80 [ 121.448298][ T1878] __kasan_kmalloc.constprop.0+0xbf/0xd0 [ 121.453942][ T1878] ld_usb_probe+0x6e/0xa65 [ 121.458384][ T1878] usb_probe_interface+0x305/0x7a0 [ 121.463487][ T1878] really_probe+0x281/0x650 [ 121.467967][ T1878] driver_probe_device+0x101/0x1b0 [ 121.473076][ T1878] __device_attach_driver+0x1c2/0x220 [ 121.478429][ T1878] bus_for_each_drv+0x15c/0x1e0 [ 121.483263][ T1878] __device_attach+0x217/0x360 [ 121.488009][ T1878] bus_probe_device+0x1e4/0x290 [ 121.492832][ T1878] device_add+0xae6/0x16f0 [ 121.497222][ T1878] usb_set_configuration+0xdf6/0x1670 [ 121.502567][ T1878] generic_probe+0x9d/0xd5 [ 121.506961][ T1878] usb_probe_device+0x99/0x100 [ 121.511704][ T1878] really_probe+0x281/0x650 [ 121.516183][ T1878] driver_probe_device+0x101/0x1b0 [ 121.521275][ T1878] __device_attach_driver+0x1c2/0x220 [ 121.526634][ T1878] bus_for_each_drv+0x15c/0x1e0 [ 121.531463][ T1878] __device_attach+0x217/0x360 [ 121.536208][ T1878] bus_probe_device+0x1e4/0x290 [ 121.541034][ T1878] device_add+0xae6/0x16f0 [ 121.545429][ T1878] usb_new_device.cold+0x6a4/0xe79 [ 121.550513][ T1878] hub_event+0x1b5c/0x3640 [ 121.554911][ T1878] process_one_work+0x92b/0x1530 [ 121.559828][ T1878] worker_thread+0x96/0xe20 [ 121.564305][ T1878] kthread+0x318/0x420 [ 121.568353][ T1878] ret_from_fork+0x24/0x30 [ 121.572747][ T1878] [ 121.575072][ T1878] Freed by task 1775: [ 121.579049][ T1878] save_stack+0x1b/0x80 [ 121.583209][ T1878] __kasan_slab_free+0x130/0x180 [ 121.588138][ T1878] kfree+0xe4/0x2f0 [ 121.591929][ T1878] ld_usb_probe+0x728/0xa65 [ 121.596414][ T1878] usb_probe_interface+0x305/0x7a0 [ 121.601505][ T1878] really_probe+0x281/0x650 [ 121.605983][ T1878] driver_probe_device+0x101/0x1b0 [ 121.611083][ T1878] __device_attach_driver+0x1c2/0x220 [ 121.616451][ T1878] bus_for_each_drv+0x15c/0x1e0 [ 121.621291][ T1878] __device_attach+0x217/0x360 [ 121.626088][ T1878] bus_probe_device+0x1e4/0x290 [ 121.630911][ T1878] device_add+0xae6/0x16f0 [ 121.635303][ T1878] usb_set_configuration+0xdf6/0x1670 [ 121.640648][ T1878] generic_probe+0x9d/0xd5 [ 121.645064][ T1878] usb_probe_device+0x99/0x100 [ 121.649806][ T1878] really_probe+0x281/0x650 [ 121.654285][ T1878] driver_probe_device+0x101/0x1b0 [ 121.659379][ T1878] __device_attach_driver+0x1c2/0x220 [ 121.664727][ T1878] bus_for_each_drv+0x15c/0x1e0 [ 121.669563][ T1878] __device_attach+0x217/0x360 [ 121.674332][ T1878] bus_probe_device+0x1e4/0x290 [ 121.679195][ T1878] device_add+0xae6/0x16f0 [ 121.683604][ T1878] usb_new_device.cold+0x6a4/0xe79 [ 121.688689][ T1878] hub_event+0x1b5c/0x3640 [ 121.693093][ T1878] process_one_work+0x92b/0x1530 [ 121.698018][ T1878] worker_thread+0x96/0xe20 [ 121.702519][ T1878] kthread+0x318/0x420 [ 121.706560][ T1878] ret_from_fork+0x24/0x30 [ 121.710946][ T1878] [ 121.713252][ T1878] The buggy address belongs to the object at ffff8881d21fc280 [ 121.713252][ T1878] which belongs to the cache kmalloc-512 of size 512 [ 121.727292][ T1878] The buggy address is located 88 bytes inside of [ 121.727292][ T1878] 512-byte region [ffff8881d21fc280, ffff8881d21fc480) [ 121.740455][ T1878] The buggy address belongs to the page: [ 121.746060][ T1878] page:ffffea0007487f00 refcount:1 mapcount:0 mapping:ffff8881da002500 index:0x0 compound_mapcount: 0 [ 121.756982][ T1878] flags: 0x200000000010200(slab|head) [ 121.762330][ T1878] raw: 0200000000010200 ffffea000739fc80 0000000900000009 ffff8881da002500 [ 121.770909][ T1878] raw: 0000000000000000 00000000000c000c 00000001ffffffff 0000000000000000 [ 121.779466][ T1878] page dumped because: kasan: bad access detected [ 121.785848][ T1878] [ 121.788160][ T1878] Memory state around the buggy address: [ 121.793777][ T1878] ffff8881d21fc180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 121.801814][ T1878] ffff8881d21fc200: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 121.809857][ T1878] >ffff8881d21fc280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 121.817896][ T1878] ^ [ 121.824802][ T1878] ffff8881d21fc300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 121.832837][ T1878] ffff8881d21fc380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 121.840870][ T1878] ================================================================== [ 121.848901][ T1878] Disabling lock debugging due to kernel taint [ 121.855211][ T1878] Kernel panic - not syncing: panic_on_warn set ... [ 121.860347][ T1775] usb 1-1: USB disconnect, device number 7 [ 121.861819][ T1878] CPU: 0 PID: 1878 Comm: syz-executor834 Tainted: G B 5.3.0-rc2+ #25 [ 121.861825][ T1878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 121.861829][ T1878] Call Trace: [ 121.861844][ T1878] dump_stack+0xca/0x13e [ 121.861859][ T1878] panic+0x2a3/0x6da [ 121.898382][ T1878] ? add_taint.cold+0x16/0x16 [ 121.903037][ T1878] ? retint_kernel+0x10/0x10 [ 121.907617][ T1878] ? trace_hardirqs_on+0x55/0x1e0 [ 121.912615][ T1878] ? __mutex_lock+0xf23/0x1360 [ 121.917359][ T1878] ? ld_usb_disconnect+0x180/0x180 [ 121.922442][ T1878] end_report+0x43/0x49 [ 121.926571][ T1878] ? __mutex_lock+0xf23/0x1360 [ 121.931306][ T1878] __kasan_report.cold+0xd/0x33 [ 121.936128][ T1878] ? __mutex_lock+0xf23/0x1360 [ 121.940862][ T1878] kasan_report+0xe/0x12 [ 121.945093][ T1878] __mutex_lock+0xf23/0x1360 [ 121.949659][ T1878] ? ld_usb_release+0xb1/0x400 [ 121.954394][ T1878] ? mutex_trylock+0x2c0/0x2c0 [ 121.959133][ T1878] ? do_futex+0x165/0x1b80 [ 121.963541][ T1878] ? mark_lock+0xbc/0x1130 [ 121.967933][ T1878] ? ld_usb_disconnect+0x180/0x180 [ 121.973029][ T1878] ? ld_usb_release+0xb1/0x400 [ 121.977767][ T1878] ld_usb_release+0xb1/0x400 [ 121.982340][ T1878] ? ld_usb_disconnect+0x180/0x180 [ 121.987427][ T1878] ? locks_remove_file+0x2fa/0x560 [ 121.992525][ T1878] ? task_work_run+0x112/0x1c0 [ 121.997275][ T1878] ? fcntl_setlk+0xc30/0xc30 [ 122.001836][ T1878] ? ld_usb_disconnect+0x180/0x180 [ 122.006925][ T1878] __fput+0x2d7/0x840 [ 122.010888][ T1878] task_work_run+0x13f/0x1c0 [ 122.015450][ T1878] exit_to_usermode_loop+0x1d2/0x200 [ 122.020712][ T1878] do_syscall_64+0x45f/0x580 [ 122.025298][ T1878] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 122.031163][ T1878] RIP: 0033:0x406b31 [ 122.035032][ T1878] Code: 75 14 b8 03 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 04 19 00 00 c3 48 83 ec 08 e8 6a fc ff ff 48 89 04 24 b8 03 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 b3 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 122.054610][ T1878] RSP: 002b:00007ffcf13bd080 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 122.063012][ T1878] RAX: 0000000000000000 RBX: 0000000000000005 RCX: 0000000000406b31 [ 122.070975][ T1878] RDX: fffffffffffffff7 RSI: 0000000000000080 RDI: 0000000000000004 [ 122.078940][ T1878] RBP: 0000000000000159 R08: 0000000000000020 R09: 0000000000000020 [ 122.086888][ T1878] R10: 00007ffcf13bd0b0 R11: 0000000000000293 R12: 000000000001d884 [ 122.094833][ T1878] R13: 0000000000000004 R14: 00000000006e39ec R15: 0000000000000064 [ 122.103092][ T1878] Kernel Offset: disabled [ 122.107404][ T1878] Rebooting in 86400 seconds..