Warning: Permanently added '10.128.1.62' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program syzkaller login: [ 38.314163][ T103] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 38.314171][ T95] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 38.324461][ T94] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 38.344201][ T1808] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 38.351822][ T17] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 38.359359][ T78] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 38.404316][ T103] usb 1-1: Using ep0 maxpacket: 32 [ 38.424199][ T94] usb 4-1: Using ep0 maxpacket: 32 [ 38.434411][ T95] usb 6-1: Using ep0 maxpacket: 32 [ 38.439654][ T1808] usb 2-1: Using ep0 maxpacket: 32 [ 38.454378][ T78] usb 5-1: Using ep0 maxpacket: 32 [ 38.459639][ T17] usb 3-1: Using ep0 maxpacket: 32 [ 38.534264][ T103] usb 1-1: New USB device found, idVendor=0af0, idProduct=d257, bcdDevice=4e.87 [ 38.543452][ T103] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 38.553610][ T103] usb 1-1: config 0 descriptor?? [ 38.556700][ T95] usb 6-1: New USB device found, idVendor=0af0, idProduct=d257, bcdDevice=4e.87 [ 38.559533][ T94] usb 4-1: New USB device found, idVendor=0af0, idProduct=d257, bcdDevice=4e.87 [ 38.567806][ T95] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 38.576775][ T94] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 38.585037][ T1808] usb 2-1: New USB device found, idVendor=0af0, idProduct=d257, bcdDevice=4e.87 [ 38.596323][ T94] usb 4-1: config 0 descriptor?? [ 38.601894][ T1808] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 38.615078][ T78] usb 5-1: New USB device found, idVendor=0af0, idProduct=d257, bcdDevice=4e.87 [ 38.624233][ T78] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 38.632260][ T17] usb 3-1: New USB device found, idVendor=0af0, idProduct=d257, bcdDevice=4e.87 [ 38.641381][ T17] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 38.659070][ T78] usb 5-1: config 0 descriptor?? [ 38.668724][ T17] usb 3-1: config 0 descriptor?? [ 38.675363][ T95] usb 6-1: config 0 descriptor?? [ 38.681564][ T1808] usb 2-1: config 0 descriptor?? [ 38.845411][ T103] hso 1-1:0.0: Failed to find BULK IN ep [ 38.875302][ T94] hso 4-1:0.0: Failed to find BULK IN ep [ 38.925505][ T17] hso 3-1:0.0: Failed to find BULK IN ep [ 38.935289][ T95] sysfs: cannot create duplicate filename '/class/tty/ttyHS0' [ 38.942788][ T95] CPU: 1 PID: 95 Comm: kworker/1:2 Not tainted 5.6.0-rc3-syzkaller #0 [ 38.951011][ T95] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 38.961091][ T95] Workqueue: usb_hub_wq hub_event [ 38.966101][ T95] Call Trace: [ 38.969394][ T95] dump_stack+0xef/0x16e [ 38.973643][ T95] sysfs_warn_dup.cold+0x1c/0x2d [ 38.978617][ T95] sysfs_do_create_link_sd.isra.0+0x119/0x130 [ 38.984671][ T95] sysfs_create_link+0x61/0xc0 [ 38.989437][ T95] device_add+0x756/0x1bf0 [ 38.993857][ T95] ? lockdep_init_map+0x1b0/0x5e0 [ 38.998902][ T95] ? device_link_remove+0x110/0x110 [ 39.004097][ T95] ? __init_waitqueue_head+0x31/0x90 [ 39.009384][ T95] tty_register_device_attr+0x341/0x6f0 [ 39.014917][ T95] ? hung_up_tty_compat_ioctl+0x40/0x40 [ 39.020449][ T95] ? mark_held_locks+0x9f/0xe0 [ 39.025236][ T95] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 39.031061][ T95] ? tty_port_register_device_attr+0xb9/0x110 [ 39.037128][ T95] hso_serial_common_create+0x113/0x710 [ 39.042661][ T95] ? kasan_unpoison_shadow+0x30/0x40 [ 39.047943][ T95] hso_probe+0xc93/0x1b7b [ 39.052276][ T95] usb_probe_interface+0x310/0x800 [ 39.057383][ T95] ? usb_probe_device+0x230/0x230 [ 39.062432][ T95] really_probe+0x290/0xac0 [ 39.067014][ T95] driver_probe_device+0x223/0x350 [ 39.072126][ T95] __device_attach_driver+0x1d1/0x290 [ 39.077500][ T95] ? driver_allows_async_probing+0x160/0x160 [ 39.083475][ T95] bus_for_each_drv+0x162/0x1e0 [ 39.088321][ T95] ? bus_rescan_devices+0x20/0x20 [ 39.093389][ T95] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 39.099226][ T95] ? lockdep_hardirqs_on+0x382/0x580 [ 39.104503][ T95] __device_attach+0x217/0x390 [ 39.109270][ T95] ? device_bind_driver+0xd0/0xd0 [ 39.114279][ T95] bus_probe_device+0x1e4/0x290 [ 39.119124][ T95] device_add+0x1459/0x1bf0 executing program [ 39.123671][ T95] ? wait_for_completion+0x3c0/0x3c0 [ 39.128967][ T95] ? device_link_remove+0x110/0x110 [ 39.134171][ T95] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 39.139991][ T95] usb_set_configuration+0xe47/0x17d0 [ 39.145359][ T95] usb_generic_driver_probe+0x9d/0xe0 [ 39.150714][ T95] usb_probe_device+0xd9/0x230 [ 39.155467][ T95] ? usb_suspend+0x5f0/0x5f0 [ 39.160082][ T95] really_probe+0x290/0xac0 [ 39.164592][ T95] driver_probe_device+0x223/0x350 [ 39.169687][ T95] __device_attach_driver+0x1d1/0x290 [ 39.175051][ T95] ? driver_allows_async_probing+0x160/0x160 [ 39.181033][ T95] bus_for_each_drv+0x162/0x1e0 [ 39.185873][ T95] ? bus_rescan_devices+0x20/0x20 [ 39.190881][ T95] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 39.196671][ T95] ? lockdep_hardirqs_on+0x382/0x580 [ 39.201975][ T95] __device_attach+0x217/0x390 [ 39.206724][ T95] ? device_bind_driver+0xd0/0xd0 [ 39.211732][ T95] bus_probe_device+0x1e4/0x290 [ 39.216576][ T95] device_add+0x1459/0x1bf0 [ 39.221102][ T95] ? device_link_remove+0x110/0x110 [ 39.226303][ T95] usb_new_device.cold+0x540/0xcd0 [ 39.231443][ T95] hub_event+0x21cb/0x4300 [ 39.235843][ T95] ? hub_port_debounce+0x350/0x350 [ 39.240936][ T95] ? find_held_lock+0x2d/0x110 [ 39.245728][ T95] ? mark_held_locks+0xe0/0xe0 [ 39.250491][ T95] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 39.256143][ T95] ? rcu_read_lock_bh_held+0xb0/0xb0 [ 39.261417][ T95] process_one_work+0x94b/0x1620 [ 39.266356][ T95] ? pwq_dec_nr_in_flight+0x310/0x310 [ 39.271738][ T95] ? do_raw_spin_lock+0x129/0x290 executing program executing program executing program executing program [ 39.276752][ T95] worker_thread+0x96/0xe20 [ 39.281240][ T95] ? process_one_work+0x1620/0x1620 [ 39.286455][ T95] kthread+0x318/0x420 [ 39.290563][ T95] ? kthread_create_on_node+0xf0/0xf0 [ 39.295920][ T95] ret_from_fork+0x24/0x30 [ 39.303146][ T1808] sysfs: cannot create duplicate filename '/class/tty/ttyHS0' [ 39.310731][ T1808] CPU: 1 PID: 1808 Comm: kworker/1:3 Not tainted 5.6.0-rc3-syzkaller #0 [ 39.319056][ T1808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 39.329119][ T1808] Workqueue: usb_hub_wq hub_event [ 39.334143][ T1808] Call Trace: [ 39.337502][ T1808] dump_stack+0xef/0x16e [ 39.341870][ T1808] sysfs_warn_dup.cold+0x1c/0x2d [ 39.346792][ T1808] sysfs_do_create_link_sd.isra.0+0x119/0x130 [ 39.352853][ T1808] sysfs_create_link+0x61/0xc0 [ 39.357603][ T1808] device_add+0x756/0x1bf0 [ 39.362051][ T1808] ? lockdep_init_map+0x1b0/0x5e0 [ 39.367063][ T1808] ? device_link_remove+0x110/0x110 [ 39.372282][ T1808] ? __init_waitqueue_head+0x31/0x90 [ 39.377565][ T1808] tty_register_device_attr+0x341/0x6f0 [ 39.383119][ T1808] ? hung_up_tty_compat_ioctl+0x40/0x40 [ 39.388670][ T1808] ? mark_held_locks+0x9f/0xe0 [ 39.393461][ T1808] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 39.399285][ T1808] ? tty_port_register_device_attr+0xb9/0x110 [ 39.405338][ T1808] hso_serial_common_create+0x113/0x710 [ 39.410903][ T1808] ? kasan_unpoison_shadow+0x30/0x40 [ 39.416183][ T1808] hso_probe+0xc93/0x1b7b [ 39.420513][ T1808] usb_probe_interface+0x310/0x800 [ 39.425619][ T1808] ? usb_probe_device+0x230/0x230 [ 39.430659][ T1808] really_probe+0x290/0xac0 [ 39.435159][ T1808] driver_probe_device+0x223/0x350 [ 39.440294][ T1808] __device_attach_driver+0x1d1/0x290 [ 39.445690][ T1808] ? driver_allows_async_probing+0x160/0x160 [ 39.451664][ T1808] bus_for_each_drv+0x162/0x1e0 [ 39.456561][ T1808] ? bus_rescan_devices+0x20/0x20 [ 39.461574][ T1808] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 39.467399][ T1808] ? lockdep_hardirqs_on+0x382/0x580 [ 39.472685][ T1808] __device_attach+0x217/0x390 executing program [ 39.477464][ T1808] ? device_bind_driver+0xd0/0xd0 [ 39.482473][ T1808] bus_probe_device+0x1e4/0x290 [ 39.487347][ T1808] device_add+0x1459/0x1bf0 [ 39.491869][ T1808] ? wait_for_completion+0x3c0/0x3c0 [ 39.497259][ T1808] ? device_link_remove+0x110/0x110 [ 39.502459][ T1808] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 39.508273][ T1808] usb_set_configuration+0xe47/0x17d0 [ 39.513647][ T1808] usb_generic_driver_probe+0x9d/0xe0 [ 39.519004][ T1808] usb_probe_device+0xd9/0x230 [ 39.523754][ T1808] ? usb_suspend+0x5f0/0x5f0 [ 39.528458][ T1808] really_probe+0x290/0xac0 [ 39.533389][ T1808] driver_probe_device+0x223/0x350 [ 39.538501][ T1808] __device_attach_driver+0x1d1/0x290 [ 39.543862][ T1808] ? driver_allows_async_probing+0x160/0x160 [ 39.549829][ T1808] bus_for_each_drv+0x162/0x1e0 [ 39.554701][ T1808] ? bus_rescan_devices+0x20/0x20 [ 39.559719][ T1808] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 39.565707][ T1808] ? lockdep_hardirqs_on+0x382/0x580 [ 39.570987][ T1808] __device_attach+0x217/0x390 [ 39.575734][ T1808] ? device_bind_driver+0xd0/0xd0 [ 39.580745][ T1808] bus_probe_device+0x1e4/0x290 [ 39.585580][ T1808] device_add+0x1459/0x1bf0 [ 39.590069][ T1808] ? device_link_remove+0x110/0x110 [ 39.595276][ T1808] usb_new_device.cold+0x540/0xcd0 [ 39.600375][ T1808] hub_event+0x21cb/0x4300 [ 39.604779][ T1808] ? hub_port_debounce+0x350/0x350 [ 39.609933][ T1808] ? find_held_lock+0x2d/0x110 [ 39.614702][ T1808] ? mark_held_locks+0xe0/0xe0 [ 39.619468][ T1808] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 39.625103][ T1808] ? rcu_read_lock_bh_held+0xb0/0xb0 [ 39.630385][ T1808] process_one_work+0x94b/0x1620 [ 39.635352][ T1808] ? __wake_up_common+0x650/0x650 [ 39.640376][ T1808] ? pwq_dec_nr_in_flight+0x310/0x310 [ 39.645751][ T1808] worker_thread+0x96/0xe20 [ 39.650243][ T1808] ? process_one_work+0x1620/0x1620 [ 39.655483][ T1808] kthread+0x318/0x420 [ 39.659547][ T1808] ? kthread_create_on_node+0xf0/0xf0 [ 39.664920][ T1808] ret_from_fork+0x24/0x30 [ 39.669898][ T78] hso 5-1:0.0: Failed to find BULK IN ep [ 39.676281][ T17] usb 3-1: USB disconnect, device number 2 [ 39.685245][ T95] hso 6-1:0.0: Failed to find BULK IN ep [ 39.696136][ T78] usb 5-1: USB disconnect, device number 2 [ 39.703029][ T95] ================================================================== [ 39.711232][ T95] BUG: KASAN: use-after-free in __mutex_lock+0xf1e/0x1360 [ 39.718337][ T95] Read of size 8 at addr ffff8881cd67a158 by task kworker/1:2/95 [ 39.726049][ T95] [ 39.728366][ T95] CPU: 1 PID: 95 Comm: kworker/1:2 Not tainted 5.6.0-rc3-syzkaller #0 [ 39.736493][ T95] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 39.746541][ T95] Workqueue: usb_hub_wq hub_event [ 39.751549][ T95] Call Trace: [ 39.754839][ T95] dump_stack+0xef/0x16e [ 39.759078][ T95] ? __mutex_lock+0xf1e/0x1360 [ 39.763839][ T95] ? __mutex_lock+0xf1e/0x1360 [ 39.768607][ T95] print_address_description.constprop.0.cold+0xd3/0x314 [ 39.775629][ T95] ? __mutex_lock+0xf1e/0x1360 [ 39.780416][ T95] ? __mutex_lock+0xf1e/0x1360 [ 39.785170][ T95] __kasan_report.cold+0x37/0x77 [ 39.790102][ T95] ? __mutex_lock+0xf1e/0x1360 [ 39.794864][ T95] kasan_report+0xe/0x20 [ 39.799128][ T95] __mutex_lock+0xf1e/0x1360 [ 39.803732][ T95] ? device_del+0x9e/0xd30 [ 39.808153][ T95] ? klist_put+0xfa/0x170 [ 39.812480][ T95] ? mutex_trylock+0x2c0/0x2c0 [ 39.817232][ T95] ? lock_downgrade+0x6e0/0x6e0 [ 39.822079][ T95] ? do_raw_spin_lock+0x129/0x290 [ 39.827103][ T95] ? rwlock_bug.part.0+0x90/0x90 [ 39.832029][ T95] ? do_raw_spin_unlock+0x148/0x220 [ 39.837215][ T95] ? class_create_release+0x80/0x80 [ 39.842411][ T95] ? _raw_spin_unlock+0x1a/0x30 [ 39.847249][ T95] ? device_del+0x9e/0xd30 [ 39.851651][ T95] device_del+0x9e/0xd30 [ 39.855879][ T95] ? class_find_device+0x164/0x220 [ 39.860976][ T95] ? device_create_with_groups+0x120/0x120 [ 39.866769][ T95] device_unregister+0x22/0xc0 [ 39.871573][ T95] device_destroy+0x96/0xd0 [ 39.876084][ T95] ? root_device_unregister+0x60/0x60 [ 39.881469][ T95] ? hso_serial_common_create+0x3a3/0x710 [ 39.887182][ T95] tty_unregister_device+0x7e/0x1a0 [ 39.892400][ T95] hso_probe.cold+0x6e/0x14c [ 39.897053][ T95] usb_probe_interface+0x310/0x800 [ 39.902196][ T95] ? usb_probe_device+0x230/0x230 [ 39.907234][ T95] really_probe+0x290/0xac0 [ 39.911730][ T95] driver_probe_device+0x223/0x350 [ 39.916859][ T95] __device_attach_driver+0x1d1/0x290 [ 39.922233][ T95] ? driver_allows_async_probing+0x160/0x160 [ 39.928225][ T95] bus_for_each_drv+0x162/0x1e0 [ 39.933071][ T95] ? bus_rescan_devices+0x20/0x20 [ 39.938082][ T95] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 39.943899][ T95] ? lockdep_hardirqs_on+0x382/0x580 [ 39.949227][ T95] __device_attach+0x217/0x390 [ 39.953987][ T95] ? device_bind_driver+0xd0/0xd0 [ 39.959012][ T95] bus_probe_device+0x1e4/0x290 [ 39.963854][ T95] device_add+0x1459/0x1bf0 [ 39.968365][ T95] ? wait_for_completion+0x3c0/0x3c0 [ 39.973690][ T95] ? device_link_remove+0x110/0x110 [ 39.978884][ T95] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 39.984732][ T95] usb_set_configuration+0xe47/0x17d0 [ 39.990110][ T95] usb_generic_driver_probe+0x9d/0xe0 [ 39.995530][ T95] usb_probe_device+0xd9/0x230 [ 40.000306][ T95] ? usb_suspend+0x5f0/0x5f0 [ 40.004910][ T95] really_probe+0x290/0xac0 [ 40.009431][ T95] driver_probe_device+0x223/0x350 [ 40.014573][ T95] __device_attach_driver+0x1d1/0x290 [ 40.019930][ T95] ? driver_allows_async_probing+0x160/0x160 [ 40.025948][ T95] bus_for_each_drv+0x162/0x1e0 [ 40.030797][ T95] ? bus_rescan_devices+0x20/0x20 [ 40.035820][ T95] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 40.041642][ T95] ? lockdep_hardirqs_on+0x382/0x580 [ 40.046912][ T95] __device_attach+0x217/0x390 [ 40.051701][ T95] ? device_bind_driver+0xd0/0xd0 [ 40.056719][ T95] bus_probe_device+0x1e4/0x290 [ 40.061576][ T95] device_add+0x1459/0x1bf0 [ 40.066065][ T95] ? device_link_remove+0x110/0x110 [ 40.071292][ T95] usb_new_device.cold+0x540/0xcd0 [ 40.076448][ T95] hub_event+0x21cb/0x4300 [ 40.080861][ T95] ? hub_port_debounce+0x350/0x350 [ 40.085959][ T95] ? find_held_lock+0x2d/0x110 [ 40.090714][ T95] ? mark_held_locks+0xe0/0xe0 [ 40.095486][ T95] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 40.101043][ T95] ? rcu_read_lock_bh_held+0xb0/0xb0 [ 40.106351][ T95] process_one_work+0x94b/0x1620 [ 40.111281][ T95] ? pwq_dec_nr_in_flight+0x310/0x310 [ 40.116641][ T95] ? do_raw_spin_lock+0x129/0x290 [ 40.121650][ T95] worker_thread+0x96/0xe20 [ 40.126135][ T95] ? process_one_work+0x1620/0x1620 [ 40.131329][ T95] kthread+0x318/0x420 [ 40.135398][ T95] ? kthread_create_on_node+0xf0/0xf0 [ 40.140874][ T95] ret_from_fork+0x24/0x30 [ 40.145294][ T95] [ 40.147650][ T95] Allocated by task 78: [ 40.151806][ T95] save_stack+0x1b/0x80 [ 40.156006][ T95] __kasan_kmalloc.constprop.0+0xbf/0xd0 [ 40.161625][ T95] tty_register_device_attr+0x1b6/0x6f0 [ 40.167155][ T95] hso_serial_common_create+0x113/0x710 [ 40.172682][ T95] hso_probe+0xc93/0x1b7b [ 40.177008][ T95] usb_probe_interface+0x310/0x800 [ 40.182107][ T95] really_probe+0x290/0xac0 [ 40.186594][ T95] driver_probe_device+0x223/0x350 [ 40.191689][ T95] __device_attach_driver+0x1d1/0x290 [ 40.197062][ T95] bus_for_each_drv+0x162/0x1e0 [ 40.201910][ T95] __device_attach+0x217/0x390 [ 40.206658][ T95] bus_probe_device+0x1e4/0x290 [ 40.211510][ T95] device_add+0x1459/0x1bf0 [ 40.215999][ T95] usb_set_configuration+0xe47/0x17d0 [ 40.221367][ T95] usb_generic_driver_probe+0x9d/0xe0 [ 40.226722][ T95] usb_probe_device+0xd9/0x230 [ 40.231466][ T95] really_probe+0x290/0xac0 [ 40.235948][ T95] driver_probe_device+0x223/0x350 [ 40.241034][ T95] __device_attach_driver+0x1d1/0x290 [ 40.246397][ T95] bus_for_each_drv+0x162/0x1e0 [ 40.251256][ T95] __device_attach+0x217/0x390 [ 40.255994][ T95] bus_probe_device+0x1e4/0x290 [ 40.260827][ T95] device_add+0x1459/0x1bf0 [ 40.265333][ T95] usb_new_device.cold+0x540/0xcd0 [ 40.270435][ T95] hub_event+0x21cb/0x4300 [ 40.274866][ T95] process_one_work+0x94b/0x1620 [ 40.279791][ T95] worker_thread+0x96/0xe20 [ 40.284282][ T95] kthread+0x318/0x420 [ 40.288337][ T95] ret_from_fork+0x24/0x30 [ 40.292827][ T95] [ 40.295140][ T95] Freed by task 78: [ 40.298934][ T95] save_stack+0x1b/0x80 [ 40.303137][ T95] __kasan_slab_free+0x117/0x160 [ 40.308069][ T95] kfree+0xd5/0x300 [ 40.311867][ T95] device_release+0x71/0x200 [ 40.316490][ T95] kobject_put+0x256/0x550 [ 40.320938][ T95] device_unregister+0x34/0xc0 [ 40.325713][ T95] device_destroy+0x96/0xd0 [ 40.330238][ T95] tty_unregister_device+0x7e/0x1a0 [ 40.335426][ T95] hso_probe.cold+0x6e/0x14c [ 40.340024][ T95] usb_probe_interface+0x310/0x800 [ 40.345134][ T95] really_probe+0x290/0xac0 [ 40.349617][ T95] driver_probe_device+0x223/0x350 [ 40.354713][ T95] __device_attach_driver+0x1d1/0x290 [ 40.360067][ T95] bus_for_each_drv+0x162/0x1e0 [ 40.364905][ T95] __device_attach+0x217/0x390 [ 40.369665][ T95] bus_probe_device+0x1e4/0x290 [ 40.374530][ T95] device_add+0x1459/0x1bf0 [ 40.379018][ T95] usb_set_configuration+0xe47/0x17d0 [ 40.384373][ T95] usb_generic_driver_probe+0x9d/0xe0 [ 40.389728][ T95] usb_probe_device+0xd9/0x230 [ 40.394479][ T95] really_probe+0x290/0xac0 [ 40.398970][ T95] driver_probe_device+0x223/0x350 [ 40.404079][ T95] __device_attach_driver+0x1d1/0x290 [ 40.409442][ T95] bus_for_each_drv+0x162/0x1e0 [ 40.414326][ T95] __device_attach+0x217/0x390 [ 40.419111][ T95] bus_probe_device+0x1e4/0x290 [ 40.423946][ T95] device_add+0x1459/0x1bf0 [ 40.428459][ T95] usb_new_device.cold+0x540/0xcd0 [ 40.433566][ T95] hub_event+0x21cb/0x4300 [ 40.437969][ T95] process_one_work+0x94b/0x1620 [ 40.442897][ T95] worker_thread+0x96/0xe20 [ 40.447457][ T95] kthread+0x318/0x420 [ 40.451511][ T95] ret_from_fork+0x24/0x30 [ 40.455904][ T95] [ 40.458219][ T95] The buggy address belongs to the object at ffff8881cd67a000 [ 40.458219][ T95] which belongs to the cache kmalloc-2k of size 2048 [ 40.472255][ T95] The buggy address is located 344 bytes inside of [ 40.472255][ T95] 2048-byte region [ffff8881cd67a000, ffff8881cd67a800) [ 40.485886][ T95] The buggy address belongs to the page: [ 40.491513][ T95] page:ffffea0007359e00 refcount:1 mapcount:0 mapping:ffff8881da00c000 index:0x0 compound_mapcount: 0 [ 40.502517][ T95] flags: 0x200000000010200(slab|head) [ 40.507894][ T95] raw: 0200000000010200 dead000000000100 dead000000000122 ffff8881da00c000 [ 40.516480][ T95] raw: 0000000000000000 0000000080080008 00000001ffffffff 0000000000000000 [ 40.525050][ T95] page dumped because: kasan: bad access detected [ 40.531452][ T95] [ 40.533763][ T95] Memory state around the buggy address: [ 40.539376][ T95] ffff8881cd67a000: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 40.547416][ T95] ffff8881cd67a080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 40.555501][ T95] >ffff8881cd67a100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 40.563551][ T95] ^ [ 40.570597][ T95] ffff8881cd67a180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 40.578652][ T95] ffff8881cd67a200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 40.586715][ T95] ================================================================== [ 40.594772][ T95] Disabling lock debugging due to kernel taint [ 40.600993][ T95] Kernel panic - not syncing: panic_on_warn set ... [ 40.607580][ T95] CPU: 1 PID: 95 Comm: kworker/1:2 Tainted: G B 5.6.0-rc3-syzkaller #0 [ 40.617134][ T95] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 40.627179][ T95] Workqueue: usb_hub_wq hub_event [ 40.632220][ T95] Call Trace: [ 40.635494][ T95] dump_stack+0xef/0x16e [ 40.639724][ T95] panic+0x2aa/0x6e1 [ 40.643645][ T95] ? add_taint.cold+0x16/0x16 [ 40.648307][ T95] ? retint_kernel+0x10/0x10 [ 40.652890][ T95] ? trace_hardirqs_on+0x55/0x200 [ 40.657915][ T95] ? __mutex_lock+0xf1e/0x1360 [ 40.662704][ T95] end_report+0x43/0x49 [ 40.666842][ T95] ? __mutex_lock+0xf1e/0x1360 [ 40.671621][ T95] __kasan_report.cold+0x55/0x77 [ 40.676564][ T95] ? __mutex_lock+0xf1e/0x1360 [ 40.681311][ T95] kasan_report+0xe/0x20 [ 40.685537][ T95] __mutex_lock+0xf1e/0x1360 [ 40.690115][ T95] ? device_del+0x9e/0xd30 [ 40.694557][ T95] ? klist_put+0xfa/0x170 [ 40.698865][ T95] ? mutex_trylock+0x2c0/0x2c0 [ 40.703610][ T95] ? lock_downgrade+0x6e0/0x6e0 [ 40.708442][ T95] ? do_raw_spin_lock+0x129/0x290 [ 40.713466][ T95] ? rwlock_bug.part.0+0x90/0x90 [ 40.718385][ T95] ? do_raw_spin_unlock+0x148/0x220 [ 40.723598][ T95] ? class_create_release+0x80/0x80 [ 40.728786][ T95] ? _raw_spin_unlock+0x1a/0x30 [ 40.733628][ T95] ? device_del+0x9e/0xd30 [ 40.738062][ T95] device_del+0x9e/0xd30 [ 40.742306][ T95] ? class_find_device+0x164/0x220 [ 40.747399][ T95] ? device_create_with_groups+0x120/0x120 [ 40.753253][ T95] device_unregister+0x22/0xc0 [ 40.758039][ T95] device_destroy+0x96/0xd0 [ 40.762530][ T95] ? root_device_unregister+0x60/0x60 [ 40.767883][ T95] ? hso_serial_common_create+0x3a3/0x710 [ 40.773584][ T95] tty_unregister_device+0x7e/0x1a0 [ 40.778781][ T95] hso_probe.cold+0x6e/0x14c [ 40.783357][ T95] usb_probe_interface+0x310/0x800 [ 40.788460][ T95] ? usb_probe_device+0x230/0x230 [ 40.793476][ T95] really_probe+0x290/0xac0 [ 40.797960][ T95] driver_probe_device+0x223/0x350 [ 40.803075][ T95] __device_attach_driver+0x1d1/0x290 [ 40.808433][ T95] ? driver_allows_async_probing+0x160/0x160 [ 40.814418][ T95] bus_for_each_drv+0x162/0x1e0 [ 40.819271][ T95] ? bus_rescan_devices+0x20/0x20 [ 40.824282][ T95] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 40.830075][ T95] ? lockdep_hardirqs_on+0x382/0x580 [ 40.835341][ T95] __device_attach+0x217/0x390 [ 40.840086][ T95] ? device_bind_driver+0xd0/0xd0 [ 40.845139][ T95] bus_probe_device+0x1e4/0x290 [ 40.850017][ T95] device_add+0x1459/0x1bf0 [ 40.854551][ T95] ? wait_for_completion+0x3c0/0x3c0 [ 40.859816][ T95] ? device_link_remove+0x110/0x110 [ 40.865009][ T95] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 40.870807][ T95] usb_set_configuration+0xe47/0x17d0 [ 40.876175][ T95] usb_generic_driver_probe+0x9d/0xe0 [ 40.881589][ T95] usb_probe_device+0xd9/0x230 [ 40.886345][ T95] ? usb_suspend+0x5f0/0x5f0 [ 40.890920][ T95] really_probe+0x290/0xac0 [ 40.895421][ T95] driver_probe_device+0x223/0x350 [ 40.900510][ T95] __device_attach_driver+0x1d1/0x290 [ 40.905915][ T95] ? driver_allows_async_probing+0x160/0x160 [ 40.911896][ T95] bus_for_each_drv+0x162/0x1e0 [ 40.916749][ T95] ? bus_rescan_devices+0x20/0x20 [ 40.921785][ T95] ? _raw_spin_unlock_irqrestore+0x39/0x40 [ 40.927650][ T95] ? lockdep_hardirqs_on+0x382/0x580 [ 40.932969][ T95] __device_attach+0x217/0x390 [ 40.937750][ T95] ? device_bind_driver+0xd0/0xd0 [ 40.942770][ T95] bus_probe_device+0x1e4/0x290 [ 40.947645][ T95] device_add+0x1459/0x1bf0 [ 40.952132][ T95] ? device_link_remove+0x110/0x110 [ 40.957318][ T95] usb_new_device.cold+0x540/0xcd0 [ 40.962453][ T95] hub_event+0x21cb/0x4300 [ 40.966913][ T95] ? hub_port_debounce+0x350/0x350 [ 40.972023][ T95] ? find_held_lock+0x2d/0x110 [ 40.976769][ T95] ? mark_held_locks+0xe0/0xe0 [ 40.981520][ T95] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 40.987083][ T95] ? rcu_read_lock_bh_held+0xb0/0xb0 [ 40.992350][ T95] process_one_work+0x94b/0x1620 [ 40.997310][ T95] ? pwq_dec_nr_in_flight+0x310/0x310 [ 41.002663][ T95] ? do_raw_spin_lock+0x129/0x290 [ 41.007677][ T95] worker_thread+0x96/0xe20 [ 41.012177][ T95] ? process_one_work+0x1620/0x1620 [ 41.017369][ T95] kthread+0x318/0x420 [ 41.021420][ T95] ? kthread_create_on_node+0xf0/0xf0 [ 41.026778][ T95] ret_from_fork+0x24/0x30 [ 41.031785][ T95] Kernel Offset: disabled [ 41.036144][ T95] Rebooting in 86400 seconds..