Warning: Permanently added '10.128.0.188' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program [ 511.295097][ T83] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 511.295106][ T12] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 511.310239][ T102] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 511.325048][ T1802] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 511.332632][ T1805] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 511.340633][ T17] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 511.415283][ T12] usb 1-1: Using ep0 maxpacket: 32 [ 511.415289][ T83] usb 6-1: Using ep0 maxpacket: 32 [ 511.425590][ T102] usb 4-1: Using ep0 maxpacket: 32 [ 511.434979][ T1802] usb 3-1: Using ep0 maxpacket: 32 [ 511.440205][ T17] usb 5-1: Using ep0 maxpacket: 32 [ 511.445406][ T1805] usb 2-1: Using ep0 maxpacket: 32 [ 511.534893][ T83] usb 6-1: New USB device found, idVendor=0af0, idProduct=d257, bcdDevice=4e.87 [ 511.544030][ T83] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 511.557713][ T102] usb 4-1: New USB device found, idVendor=0af0, idProduct=d257, bcdDevice=4e.87 [ 511.558377][ T83] usb 6-1: config 0 descriptor?? [ 511.566798][ T102] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 511.566990][ T12] usb 1-1: New USB device found, idVendor=0af0, idProduct=d257, bcdDevice=4e.87 [ 511.571942][ T1802] usb 3-1: New USB device found, idVendor=0af0, idProduct=d257, bcdDevice=4e.87 [ 511.579942][ T12] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 511.588973][ T1802] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 511.602859][ T102] usb 4-1: config 0 descriptor?? [ 511.606218][ T17] usb 5-1: New USB device found, idVendor=0af0, idProduct=d257, bcdDevice=4e.87 [ 511.619764][ T12] usb 1-1: config 0 descriptor?? [ 511.628627][ T17] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 511.628843][ T1805] usb 2-1: New USB device found, idVendor=0af0, idProduct=d257, bcdDevice=4e.87 [ 511.650746][ T1805] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 511.660600][ T1805] usb 2-1: config 0 descriptor?? [ 511.666295][ T17] usb 5-1: config 0 descriptor?? [ 511.679969][ T1802] usb 3-1: config 0 descriptor?? [ 511.866189][ T102] hso 4-1:0.0: Failed to find BULK IN ep [ 511.895812][ T12] hso 1-1:0.0: Failed to find BULK IN ep [ 511.908017][ T83] hso 6-1:0.0: Failed to find BULK IN ep [ 511.926557][ T1805] sysfs: cannot create duplicate filename '/class/tty/ttyHS0' [ 511.934023][ T1805] CPU: 1 PID: 1805 Comm: kworker/1:3 Not tainted 5.6.0-rc3-syzkaller #0 [ 511.942330][ T1805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 511.952500][ T1805] Workqueue: usb_hub_wq hub_event [ 511.957521][ T1805] Call Trace: [ 511.961437][ T1805] dump_stack+0xef/0x16e [ 511.965711][ T1805] sysfs_warn_dup.cold+0x1c/0x2d [ 511.970641][ T1805] sysfs_do_create_link_sd.isra.0+0x119/0x130 [ 511.976747][ T1805] sysfs_create_link+0x61/0xc0 [ 511.981627][ T1805] device_add+0x756/0x1bf0 [ 511.986076][ T1805] ? lockdep_init_map+0x1b0/0x5e0 [ 511.991087][ T1805] ? device_link_remove+0x110/0x110 [ 511.996299][ T1805] ? __init_waitqueue_head+0x31/0x90 [ 512.001733][ T1805] tty_register_device_attr+0x341/0x6f0 [ 512.007381][ T1805] ? hung_up_tty_compat_ioctl+0x40/0x40 [ 512.012906][ T1805] ? mark_held_locks+0x9f/0xe0 [ 512.017675][ T1805] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 512.023462][ T1805] ? tty_port_register_device_attr+0xb9/0x110 [ 512.029602][ T1805] hso_serial_common_create+0x113/0x710 [ 512.035226][ T1805] ? kasan_unpoison_shadow+0x30/0x40 [ 512.040507][ T1805] hso_probe+0xc93/0x1b7b [ 512.044842][ T1805] usb_probe_interface+0x310/0x800 [ 512.049950][ T1805] ? usb_probe_device+0x230/0x230 [ 512.054980][ T1805] really_probe+0x290/0xac0 [ 512.059466][ T1805] driver_probe_device+0x223/0x350 [ 512.064576][ T1805] __device_attach_driver+0x1d1/0x290 [ 512.069945][ T1805] ? driver_allows_async_probing+0x160/0x160 executing program [ 512.075931][ T1805] bus_for_each_drv+0x162/0x1e0 [ 512.080821][ T1805] ? bus_rescan_devices+0x20/0x20 [ 512.085839][ T1805] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 512.091625][ T1805] ? lockdep_hardirqs_on+0x382/0x580 [ 512.096686][ T12] usb 1-1: USB disconnect, device number 2 [ 512.096901][ T1805] __device_attach+0x217/0x390 [ 512.107437][ T1805] ? device_bind_driver+0xd0/0xd0 [ 512.112467][ T1805] bus_probe_device+0x1e4/0x290 [ 512.117321][ T1805] device_add+0x1459/0x1bf0 [ 512.121867][ T1805] ? wait_for_completion+0x3c0/0x3c0 executing program [ 512.127142][ T1805] ? device_link_remove+0x110/0x110 [ 512.132348][ T1805] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 512.138160][ T1805] usb_set_configuration+0xe47/0x17d0 [ 512.143521][ T1805] usb_generic_driver_probe+0x9d/0xe0 [ 512.148928][ T1805] usb_probe_device+0xd9/0x230 [ 512.153686][ T1805] ? usb_suspend+0x5f0/0x5f0 [ 512.158274][ T1805] really_probe+0x290/0xac0 [ 512.162995][ T1805] driver_probe_device+0x223/0x350 [ 512.168089][ T1805] __device_attach_driver+0x1d1/0x290 [ 512.173451][ T1805] ? driver_allows_async_probing+0x160/0x160 [ 512.179427][ T1805] bus_for_each_drv+0x162/0x1e0 [ 512.184272][ T1805] ? bus_rescan_devices+0x20/0x20 [ 512.189343][ T1805] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 512.195178][ T1805] ? lockdep_hardirqs_on+0x382/0x580 [ 512.200456][ T1805] __device_attach+0x217/0x390 [ 512.205207][ T1805] ? device_bind_driver+0xd0/0xd0 [ 512.210213][ T1805] bus_probe_device+0x1e4/0x290 [ 512.215057][ T1805] device_add+0x1459/0x1bf0 [ 512.219552][ T1805] ? device_link_remove+0x110/0x110 [ 512.224729][ T1805] usb_new_device.cold+0x540/0xcd0 [ 512.229846][ T1805] hub_event+0x21cb/0x4300 [ 512.234267][ T1805] ? hub_port_debounce+0x350/0x350 [ 512.239369][ T1805] ? find_held_lock+0x2d/0x110 [ 512.244174][ T1805] ? mark_held_locks+0xe0/0xe0 [ 512.248985][ T1805] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 512.254556][ T1805] ? rcu_read_lock_bh_held+0xb0/0xb0 [ 512.260564][ T1805] process_one_work+0x94b/0x1620 [ 512.265486][ T1805] ? __wake_up_common+0x650/0x650 [ 512.270539][ T1805] ? pwq_dec_nr_in_flight+0x310/0x310 executing program executing program executing program [ 512.275890][ T1805] worker_thread+0x96/0xe20 [ 512.280400][ T1805] ? process_one_work+0x1620/0x1620 [ 512.285613][ T1805] kthread+0x318/0x420 [ 512.289664][ T1805] ? kthread_create_on_node+0xf0/0xf0 [ 512.295031][ T1805] ret_from_fork+0x24/0x30 [ 512.301782][ T1802] sysfs: cannot create duplicate filename '/class/tty/ttyHS0' [ 512.309852][ T1802] CPU: 1 PID: 1802 Comm: kworker/1:1 Not tainted 5.6.0-rc3-syzkaller #0 [ 512.319140][ T1802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 512.329196][ T1802] Workqueue: usb_hub_wq hub_event [ 512.334212][ T1802] Call Trace: [ 512.337491][ T1802] dump_stack+0xef/0x16e [ 512.341732][ T1802] sysfs_warn_dup.cold+0x1c/0x2d [ 512.346647][ T1802] sysfs_do_create_link_sd.isra.0+0x119/0x130 [ 512.352692][ T1802] sysfs_create_link+0x61/0xc0 [ 512.357539][ T1802] device_add+0x756/0x1bf0 [ 512.361941][ T1802] ? lockdep_init_map+0x1b0/0x5e0 [ 512.366944][ T1802] ? device_link_remove+0x110/0x110 [ 512.372120][ T1802] ? __init_waitqueue_head+0x31/0x90 [ 512.377383][ T1802] tty_register_device_attr+0x341/0x6f0 [ 512.382930][ T1802] ? hung_up_tty_compat_ioctl+0x40/0x40 [ 512.388473][ T1802] ? mark_held_locks+0x9f/0xe0 [ 512.393219][ T1802] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 512.399013][ T1802] ? tty_port_register_device_attr+0xb9/0x110 [ 512.405060][ T1802] hso_serial_common_create+0x113/0x710 [ 512.410595][ T1802] ? kasan_unpoison_shadow+0x30/0x40 [ 512.415873][ T1802] hso_probe+0xc93/0x1b7b [ 512.420244][ T1802] usb_probe_interface+0x310/0x800 [ 512.425345][ T1802] ? usb_probe_device+0x230/0x230 [ 512.430383][ T1802] really_probe+0x290/0xac0 [ 512.434884][ T1802] driver_probe_device+0x223/0x350 [ 512.439978][ T1802] __device_attach_driver+0x1d1/0x290 [ 512.445332][ T1802] ? driver_allows_async_probing+0x160/0x160 [ 512.451309][ T1802] bus_for_each_drv+0x162/0x1e0 [ 512.456143][ T1802] ? bus_rescan_devices+0x20/0x20 [ 512.461174][ T1802] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 512.466977][ T1802] ? lockdep_hardirqs_on+0x382/0x580 [ 512.472268][ T1802] __device_attach+0x217/0x390 executing program [ 512.477036][ T1802] ? device_bind_driver+0xd0/0xd0 [ 512.482052][ T1802] bus_probe_device+0x1e4/0x290 [ 512.486884][ T1802] device_add+0x1459/0x1bf0 [ 512.491419][ T1802] ? wait_for_completion+0x3c0/0x3c0 [ 512.496688][ T1802] ? device_link_remove+0x110/0x110 [ 512.501875][ T1802] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 512.507683][ T1802] usb_set_configuration+0xe47/0x17d0 [ 512.513053][ T1802] usb_generic_driver_probe+0x9d/0xe0 [ 512.518412][ T1802] usb_probe_device+0xd9/0x230 [ 512.523765][ T1802] ? usb_suspend+0x5f0/0x5f0 [ 512.528437][ T1802] really_probe+0x290/0xac0 [ 512.532933][ T1802] driver_probe_device+0x223/0x350 [ 512.538033][ T1802] __device_attach_driver+0x1d1/0x290 [ 512.543423][ T1802] ? driver_allows_async_probing+0x160/0x160 [ 512.549400][ T1802] bus_for_each_drv+0x162/0x1e0 [ 512.554235][ T1802] ? bus_rescan_devices+0x20/0x20 [ 512.559236][ T1802] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 512.565035][ T1802] ? lockdep_hardirqs_on+0x382/0x580 [ 512.570297][ T1802] __device_attach+0x217/0x390 [ 512.575040][ T1802] ? device_bind_driver+0xd0/0xd0 [ 512.580039][ T1802] bus_probe_device+0x1e4/0x290 [ 512.584867][ T1802] device_add+0x1459/0x1bf0 [ 512.589348][ T1802] ? device_link_remove+0x110/0x110 [ 512.594524][ T1802] usb_new_device.cold+0x540/0xcd0 [ 512.599619][ T1802] hub_event+0x21cb/0x4300 [ 512.604022][ T1802] ? hub_port_debounce+0x350/0x350 [ 512.609117][ T1802] ? find_held_lock+0x2d/0x110 [ 512.613917][ T1802] ? mark_held_locks+0xe0/0xe0 [ 512.618671][ T1802] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 512.624204][ T1802] ? rcu_read_lock_bh_held+0xb0/0xb0 [ 512.629479][ T1802] process_one_work+0x94b/0x1620 [ 512.634405][ T1802] ? __wake_up_common+0x650/0x650 [ 512.639432][ T1802] ? pwq_dec_nr_in_flight+0x310/0x310 [ 512.644789][ T1802] worker_thread+0x96/0xe20 [ 512.649281][ T1802] ? process_one_work+0x1620/0x1620 [ 512.654463][ T1802] kthread+0x318/0x420 [ 512.658523][ T1802] ? kthread_create_on_node+0xf0/0xf0 [ 512.663876][ T1802] ret_from_fork+0x24/0x30 [ 512.669726][ T17] hso 5-1:0.0: Failed to find BULK IN ep [ 512.675932][ T1802] hso 3-1:0.0: Failed to find BULK IN ep [ 512.684171][ T1802] ================================================================== [ 512.692360][ T1802] BUG: KASAN: use-after-free in __mutex_lock+0xf1e/0x1360 [ 512.699462][ T1802] Read of size 8 at addr ffff8881cd5cc158 by task kworker/1:1/1802 [ 512.707326][ T1802] [ 512.709642][ T1802] CPU: 1 PID: 1802 Comm: kworker/1:1 Not tainted 5.6.0-rc3-syzkaller #0 [ 512.717942][ T1802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 512.727983][ T1802] Workqueue: usb_hub_wq hub_event [ 512.732990][ T1802] Call Trace: [ 512.736265][ T1802] dump_stack+0xef/0x16e [ 512.740492][ T1802] ? __mutex_lock+0xf1e/0x1360 [ 512.745256][ T1802] ? __mutex_lock+0xf1e/0x1360 [ 512.750017][ T1802] print_address_description.constprop.0.cold+0xd3/0x314 [ 512.757020][ T1802] ? __mutex_lock+0xf1e/0x1360 [ 512.761762][ T1802] ? __mutex_lock+0xf1e/0x1360 [ 512.767312][ T1802] __kasan_report.cold+0x37/0x77 [ 512.772234][ T1802] ? __mutex_lock+0xf1e/0x1360 [ 512.777007][ T1802] kasan_report+0xe/0x20 [ 512.781246][ T1802] __mutex_lock+0xf1e/0x1360 [ 512.785844][ T1802] ? device_del+0x9e/0xd30 [ 512.790239][ T1802] ? klist_put+0xfa/0x170 [ 512.794557][ T1802] ? mutex_trylock+0x2c0/0x2c0 [ 512.799301][ T1802] ? lock_downgrade+0x6e0/0x6e0 [ 512.804140][ T1802] ? do_raw_spin_lock+0x129/0x290 [ 512.809148][ T1802] ? rwlock_bug.part.0+0x90/0x90 [ 512.814075][ T1802] ? do_raw_spin_unlock+0x148/0x220 [ 512.819257][ T1802] ? class_create_release+0x80/0x80 [ 512.824449][ T1802] ? _raw_spin_unlock+0x1a/0x30 [ 512.829305][ T1802] ? device_del+0x9e/0xd30 [ 512.833712][ T1802] device_del+0x9e/0xd30 [ 512.837939][ T1802] ? class_find_device+0x164/0x220 [ 512.843046][ T1802] ? device_create_with_groups+0x120/0x120 [ 512.848829][ T1802] device_unregister+0x22/0xc0 [ 512.853635][ T1802] device_destroy+0x96/0xd0 [ 512.858155][ T1802] ? root_device_unregister+0x60/0x60 [ 512.863561][ T1802] ? hso_serial_common_create+0x3a3/0x710 [ 512.869273][ T1802] tty_unregister_device+0x7e/0x1a0 [ 512.874453][ T1802] hso_probe.cold+0x6e/0x14c [ 512.879037][ T1802] usb_probe_interface+0x310/0x800 [ 512.884143][ T1802] ? usb_probe_device+0x230/0x230 [ 512.889161][ T1802] really_probe+0x290/0xac0 [ 512.893672][ T1802] driver_probe_device+0x223/0x350 [ 512.898779][ T1802] __device_attach_driver+0x1d1/0x290 [ 512.904143][ T1802] ? driver_allows_async_probing+0x160/0x160 [ 512.910733][ T1802] bus_for_each_drv+0x162/0x1e0 [ 512.915577][ T1802] ? bus_rescan_devices+0x20/0x20 [ 512.920581][ T1802] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 512.926364][ T1802] ? lockdep_hardirqs_on+0x382/0x580 [ 512.931642][ T1802] __device_attach+0x217/0x390 [ 512.936391][ T1802] ? device_bind_driver+0xd0/0xd0 [ 512.941399][ T1802] bus_probe_device+0x1e4/0x290 [ 512.946240][ T1802] device_add+0x1459/0x1bf0 [ 512.950733][ T1802] ? wait_for_completion+0x3c0/0x3c0 [ 512.955997][ T1802] ? device_link_remove+0x110/0x110 [ 512.961183][ T1802] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 512.966990][ T1802] usb_set_configuration+0xe47/0x17d0 [ 512.972499][ T1802] usb_generic_driver_probe+0x9d/0xe0 [ 512.977859][ T1802] usb_probe_device+0xd9/0x230 [ 512.982610][ T1802] ? usb_suspend+0x5f0/0x5f0 [ 512.987182][ T1802] really_probe+0x290/0xac0 [ 512.991667][ T1802] driver_probe_device+0x223/0x350 [ 512.996772][ T1802] __device_attach_driver+0x1d1/0x290 [ 513.002176][ T1802] ? driver_allows_async_probing+0x160/0x160 [ 513.008144][ T1802] bus_for_each_drv+0x162/0x1e0 [ 513.013036][ T1802] ? bus_rescan_devices+0x20/0x20 [ 513.018073][ T1802] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 513.023861][ T1802] ? lockdep_hardirqs_on+0x382/0x580 [ 513.029130][ T1802] __device_attach+0x217/0x390 [ 513.033877][ T1802] ? device_bind_driver+0xd0/0xd0 [ 513.039075][ T1802] bus_probe_device+0x1e4/0x290 [ 513.043965][ T1802] device_add+0x1459/0x1bf0 [ 513.048454][ T1802] ? device_link_remove+0x110/0x110 [ 513.053640][ T1802] usb_new_device.cold+0x540/0xcd0 [ 513.058736][ T1802] hub_event+0x21cb/0x4300 [ 513.063138][ T1802] ? hub_port_debounce+0x350/0x350 [ 513.068237][ T1802] ? find_held_lock+0x2d/0x110 [ 513.072994][ T1802] ? mark_held_locks+0xe0/0xe0 [ 513.077744][ T1802] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 513.083320][ T1802] ? rcu_read_lock_bh_held+0xb0/0xb0 [ 513.088587][ T1802] process_one_work+0x94b/0x1620 [ 513.093515][ T1802] ? __wake_up_common+0x650/0x650 [ 513.098536][ T1802] ? pwq_dec_nr_in_flight+0x310/0x310 [ 513.103953][ T1802] worker_thread+0x96/0xe20 [ 513.109396][ T1802] ? process_one_work+0x1620/0x1620 [ 513.114576][ T1802] kthread+0x318/0x420 [ 513.118625][ T1802] ? kthread_create_on_node+0xf0/0xf0 [ 513.124093][ T1802] ret_from_fork+0x24/0x30 [ 513.128491][ T1802] [ 513.130801][ T1802] Allocated by task 17: [ 513.134959][ T1802] save_stack+0x1b/0x80 [ 513.139121][ T1802] __kasan_kmalloc.constprop.0+0xbf/0xd0 [ 513.144741][ T1802] tty_register_device_attr+0x1b6/0x6f0 [ 513.150290][ T1802] hso_serial_common_create+0x113/0x710 [ 513.155897][ T1802] hso_probe+0xc93/0x1b7b [ 513.160343][ T1802] usb_probe_interface+0x310/0x800 [ 513.165585][ T1802] really_probe+0x290/0xac0 [ 513.170080][ T1802] driver_probe_device+0x223/0x350 [ 513.175189][ T1802] __device_attach_driver+0x1d1/0x290 [ 513.180676][ T1802] bus_for_each_drv+0x162/0x1e0 [ 513.185552][ T1802] __device_attach+0x217/0x390 [ 513.190313][ T1802] bus_probe_device+0x1e4/0x290 [ 513.195159][ T1802] device_add+0x1459/0x1bf0 [ 513.199644][ T1802] usb_set_configuration+0xe47/0x17d0 [ 513.204995][ T1802] usb_generic_driver_probe+0x9d/0xe0 [ 513.210354][ T1802] usb_probe_device+0xd9/0x230 [ 513.215110][ T1802] really_probe+0x290/0xac0 [ 513.219633][ T1802] driver_probe_device+0x223/0x350 [ 513.224726][ T1802] __device_attach_driver+0x1d1/0x290 [ 513.230100][ T1802] bus_for_each_drv+0x162/0x1e0 [ 513.234945][ T1802] __device_attach+0x217/0x390 [ 513.239687][ T1802] bus_probe_device+0x1e4/0x290 [ 513.244514][ T1802] device_add+0x1459/0x1bf0 [ 513.249139][ T1802] usb_new_device.cold+0x540/0xcd0 [ 513.254277][ T1802] hub_event+0x21cb/0x4300 [ 513.258680][ T1802] process_one_work+0x94b/0x1620 [ 513.263609][ T1802] worker_thread+0x96/0xe20 [ 513.268146][ T1802] kthread+0x318/0x420 [ 513.272196][ T1802] ret_from_fork+0x24/0x30 [ 513.276584][ T1802] [ 513.278904][ T1802] Freed by task 17: [ 513.282703][ T1802] save_stack+0x1b/0x80 [ 513.286847][ T1802] __kasan_slab_free+0x117/0x160 [ 513.291775][ T1802] kfree+0xd5/0x300 [ 513.295563][ T1802] device_release+0x71/0x200 [ 513.300144][ T1802] kobject_put+0x256/0x550 [ 513.304537][ T1802] device_unregister+0x34/0xc0 [ 513.309287][ T1802] device_destroy+0x96/0xd0 [ 513.313794][ T1802] tty_unregister_device+0x7e/0x1a0 [ 513.319057][ T1802] hso_probe.cold+0x6e/0x14c [ 513.323635][ T1802] usb_probe_interface+0x310/0x800 [ 513.328746][ T1802] really_probe+0x290/0xac0 [ 513.333231][ T1802] driver_probe_device+0x223/0x350 [ 513.338317][ T1802] __device_attach_driver+0x1d1/0x290 [ 513.343675][ T1802] bus_for_each_drv+0x162/0x1e0 [ 513.348512][ T1802] __device_attach+0x217/0x390 [ 513.353250][ T1802] bus_probe_device+0x1e4/0x290 [ 513.358081][ T1802] device_add+0x1459/0x1bf0 [ 513.362564][ T1802] usb_set_configuration+0xe47/0x17d0 [ 513.367913][ T1802] usb_generic_driver_probe+0x9d/0xe0 [ 513.373289][ T1802] usb_probe_device+0xd9/0x230 [ 513.378125][ T1802] really_probe+0x290/0xac0 [ 513.382605][ T1802] driver_probe_device+0x223/0x350 [ 513.387701][ T1802] __device_attach_driver+0x1d1/0x290 [ 513.393062][ T1802] bus_for_each_drv+0x162/0x1e0 [ 513.397888][ T1802] __device_attach+0x217/0x390 [ 513.402636][ T1802] bus_probe_device+0x1e4/0x290 [ 513.407475][ T1802] device_add+0x1459/0x1bf0 [ 513.411981][ T1802] usb_new_device.cold+0x540/0xcd0 [ 513.417111][ T1802] hub_event+0x21cb/0x4300 [ 513.421523][ T1802] process_one_work+0x94b/0x1620 [ 513.426461][ T1802] worker_thread+0x96/0xe20 [ 513.430959][ T1802] kthread+0x318/0x420 [ 513.435006][ T1802] ret_from_fork+0x24/0x30 [ 513.439395][ T1802] [ 513.441711][ T1802] The buggy address belongs to the object at ffff8881cd5cc000 [ 513.441711][ T1802] which belongs to the cache kmalloc-2k of size 2048 [ 513.456695][ T1802] The buggy address is located 344 bytes inside of [ 513.456695][ T1802] 2048-byte region [ffff8881cd5cc000, ffff8881cd5cc800) [ 513.470029][ T1802] The buggy address belongs to the page: [ 513.475651][ T1802] page:ffffea0007357200 refcount:1 mapcount:0 mapping:ffff8881da00c000 index:0x0 compound_mapcount: 0 [ 513.486594][ T1802] flags: 0x200000000010200(slab|head) [ 513.491958][ T1802] raw: 0200000000010200 dead000000000100 dead000000000122 ffff8881da00c000 [ 513.500528][ T1802] raw: 0000000000000000 0000000000080008 00000001ffffffff 0000000000000000 [ 513.509128][ T1802] page dumped because: kasan: bad access detected [ 513.515520][ T1802] [ 513.517828][ T1802] Memory state around the buggy address: [ 513.523440][ T1802] ffff8881cd5cc000: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 513.531537][ T1802] ffff8881cd5cc080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 513.539601][ T1802] >ffff8881cd5cc100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 513.547778][ T1802] ^ [ 513.555538][ T1802] ffff8881cd5cc180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 513.563593][ T1802] ffff8881cd5cc200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 513.571629][ T1802] ================================================================== [ 513.579668][ T1802] Disabling lock debugging due to kernel taint [ 513.585899][ T1802] Kernel panic - not syncing: panic_on_warn set ... [ 513.592488][ T1802] CPU: 1 PID: 1802 Comm: kworker/1:1 Tainted: G B 5.6.0-rc3-syzkaller #0 [ 513.602175][ T1802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 513.612214][ T1802] Workqueue: usb_hub_wq hub_event [ 513.617217][ T1802] Call Trace: [ 513.620509][ T1802] dump_stack+0xef/0x16e [ 513.624805][ T1802] panic+0x2aa/0x6e1 [ 513.628685][ T1802] ? add_taint.cold+0x16/0x16 [ 513.633351][ T1802] ? retint_kernel+0x10/0x10 [ 513.637973][ T1802] ? trace_hardirqs_on+0x55/0x200 [ 513.642987][ T1802] ? __mutex_lock+0xf1e/0x1360 [ 513.647729][ T1802] end_report+0x43/0x49 [ 513.651871][ T1802] ? __mutex_lock+0xf1e/0x1360 [ 513.656614][ T1802] __kasan_report.cold+0x55/0x77 [ 513.661527][ T1802] ? __mutex_lock+0xf1e/0x1360 [ 513.666277][ T1802] kasan_report+0xe/0x20 [ 513.670499][ T1802] __mutex_lock+0xf1e/0x1360 [ 513.675086][ T1802] ? device_del+0x9e/0xd30 [ 513.679478][ T1802] ? klist_put+0xfa/0x170 [ 513.683783][ T1802] ? mutex_trylock+0x2c0/0x2c0 [ 513.688529][ T1802] ? lock_downgrade+0x6e0/0x6e0 [ 513.693357][ T1802] ? do_raw_spin_lock+0x129/0x290 [ 513.698425][ T1802] ? rwlock_bug.part.0+0x90/0x90 [ 513.703364][ T1802] ? do_raw_spin_unlock+0x148/0x220 [ 513.708548][ T1802] ? class_create_release+0x80/0x80 [ 513.713730][ T1802] ? _raw_spin_unlock+0x1a/0x30 [ 513.718572][ T1802] ? device_del+0x9e/0xd30 [ 513.722968][ T1802] device_del+0x9e/0xd30 [ 513.727189][ T1802] ? class_find_device+0x164/0x220 [ 513.732281][ T1802] ? device_create_with_groups+0x120/0x120 [ 513.738065][ T1802] device_unregister+0x22/0xc0 [ 513.742820][ T1802] device_destroy+0x96/0xd0 [ 513.747323][ T1802] ? root_device_unregister+0x60/0x60 [ 513.752681][ T1802] ? hso_serial_common_create+0x3a3/0x710 [ 513.758387][ T1802] tty_unregister_device+0x7e/0x1a0 [ 513.763609][ T1802] hso_probe.cold+0x6e/0x14c [ 513.768183][ T1802] usb_probe_interface+0x310/0x800 [ 513.773295][ T1802] ? usb_probe_device+0x230/0x230 [ 513.778310][ T1802] really_probe+0x290/0xac0 [ 513.782847][ T1802] driver_probe_device+0x223/0x350 [ 513.787942][ T1802] __device_attach_driver+0x1d1/0x290 [ 513.793299][ T1802] ? driver_allows_async_probing+0x160/0x160 [ 513.799322][ T1802] bus_for_each_drv+0x162/0x1e0 [ 513.804158][ T1802] ? bus_rescan_devices+0x20/0x20 [ 513.809218][ T1802] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 513.815005][ T1802] ? lockdep_hardirqs_on+0x382/0x580 [ 513.820313][ T1802] __device_attach+0x217/0x390 [ 513.825055][ T1802] ? device_bind_driver+0xd0/0xd0 [ 513.830089][ T1802] bus_probe_device+0x1e4/0x290 [ 513.834996][ T1802] device_add+0x1459/0x1bf0 [ 513.839501][ T1802] ? wait_for_completion+0x3c0/0x3c0 [ 513.844776][ T1802] ? device_link_remove+0x110/0x110 [ 513.850059][ T1802] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 513.855857][ T1802] usb_set_configuration+0xe47/0x17d0 [ 513.861212][ T1802] usb_generic_driver_probe+0x9d/0xe0 [ 513.866562][ T1802] usb_probe_device+0xd9/0x230 [ 513.871314][ T1802] ? usb_suspend+0x5f0/0x5f0 [ 513.875894][ T1802] really_probe+0x290/0xac0 [ 513.880385][ T1802] driver_probe_device+0x223/0x350 [ 513.885475][ T1802] __device_attach_driver+0x1d1/0x290 [ 513.890831][ T1802] ? driver_allows_async_probing+0x160/0x160 [ 513.896866][ T1802] bus_for_each_drv+0x162/0x1e0 [ 513.901710][ T1802] ? bus_rescan_devices+0x20/0x20 [ 513.906778][ T1802] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 513.912573][ T1802] ? lockdep_hardirqs_on+0x382/0x580 [ 513.917840][ T1802] __device_attach+0x217/0x390 [ 513.922610][ T1802] ? device_bind_driver+0xd0/0xd0 [ 513.927666][ T1802] bus_probe_device+0x1e4/0x290 [ 513.932505][ T1802] device_add+0x1459/0x1bf0 [ 513.937012][ T1802] ? device_link_remove+0x110/0x110 [ 513.942232][ T1802] usb_new_device.cold+0x540/0xcd0 [ 513.947384][ T1802] hub_event+0x21cb/0x4300 [ 513.951782][ T1802] ? hub_port_debounce+0x350/0x350 [ 513.957043][ T1802] ? find_held_lock+0x2d/0x110 [ 513.962475][ T1802] ? mark_held_locks+0xe0/0xe0 [ 513.967215][ T1802] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 513.972796][ T1802] ? rcu_read_lock_bh_held+0xb0/0xb0 [ 513.978176][ T1802] process_one_work+0x94b/0x1620 [ 513.983099][ T1802] ? __wake_up_common+0x650/0x650 [ 513.988110][ T1802] ? pwq_dec_nr_in_flight+0x310/0x310 [ 513.993468][ T1802] worker_thread+0x96/0xe20 [ 513.997953][ T1802] ? process_one_work+0x1620/0x1620 [ 514.003153][ T1802] kthread+0x318/0x420 [ 514.007199][ T1802] ? kthread_create_on_node+0xf0/0xf0 [ 514.012552][ T1802] ret_from_fork+0x24/0x30 [ 514.017555][ T1802] Kernel Offset: disabled [ 514.021875][ T1802] Rebooting in 86400 seconds..