kasan: CONFIG_KASAN_INLINE enabled kasan: GPF could be caused by NULL-ptr deref or user memory access general protection fault: 0000 [#1] SMP KASAN CPU: 1 PID: 31293 Comm: syz-executor1 Not tainted 4.19.0-rc2-next-20180904+ #55 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 RIP: 0010:usb_find_alt_setting+0x38/0x310 drivers/usb/core/usb.c:231 Code: 89 fb 48 83 ec 10 48 89 7d c8 89 55 d4 89 75 d0 e8 6d 18 09 fd 48 8d 7b 04 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 04 02 48 89 fa 83 e2 07 38 d0 7f 08 84 c0 0f 85 86 02 00 00 RSP: 0018:ffff88005dc4f4a8 EFLAGS: 00010247 RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffc90003296000 RDX: 0000000000000000 RSI: ffffffff8473be03 RDI: 0000000000000004 RBP: ffff88005dc4f4e0 R08: ffff88018acb0180 R09: ffffed000bb89eb2 R10: ffffed000bb89eb4 R11: ffff88005dc4f5a7 R12: 0000000000000000 R13: ffff8801ce561740 R14: ffff8801b4217500 R15: 0000000000000000 FS: 00007f196ac27700(0000) GS:ffff8801db100000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000001b2f422000 CR3: 000000018a748000 CR4: 00000000001426e0 Call Trace: check_ctrlrecip+0x1e6/0x320 drivers/usb/core/devio.c:828 proc_control+0x151/0xef0 drivers/usb/core/devio.c:1074 usbdev_do_ioctl+0x1eb4/0x3b30 drivers/usb/core/devio.c:2394 usbdev_ioctl+0x25/0x30 drivers/usb/core/devio.c:2551 vfs_ioctl fs/ioctl.c:46 [inline] file_ioctl fs/ioctl.c:501 [inline] do_vfs_ioctl+0x1de/0x1720 fs/ioctl.c:685 ksys_ioctl+0xa9/0xd0 fs/ioctl.c:702 __do_sys_ioctl fs/ioctl.c:709 [inline] __se_sys_ioctl fs/ioctl.c:707 [inline] __x64_sys_ioctl+0x73/0xb0 fs/ioctl.c:707 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x457099 Code: fd b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 RSP: 002b:00007f196ac26c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 00007f196ac276d4 RCX: 0000000000457099 RDX: 00000000200001c0 RSI: 00000000c0185500 RDI: 0000000000000003 RBP: 00000000009300a0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff R13: 00000000004cebc0 R14: 00000000004c503e R15: 0000000000000000 Modules linked in: Dumping ftrace buffer: --------------------------------- CPU:1 [LOST 1529 EVENTS] syz-exec-10020 1...2 265601970us : 0: u00000000133d5133 syz-exec-10020 1...2 265602050us : 0: u00000000133d5133 syz-exec-10020 1...2 265602111us : 0: u00000000133d5133 syz-exec-10020 1...2 265602191us : 0: u00000000133d5133 syz-exec-10020 1...2 265602272us : 0: u00000000133d5133 syz-exec-10020 1...2 265602451us : 0: u00000000133d5133 syz-exec-10020 1...2 265602531us : 0: u00000000133d5133 syz-exec-10020 1...2 265602700us : 0: u00000000133d5133 syz-exec-10020 1...2 265602762us : 0: u00000000133d5133 syz-exec-10020 1...2 265602860us : 0: u00000000133d5133 syz-exec-10020 1...2 265602922us : 0: u00000000133d5133 syz-exec-10020 1...2 265603041us : 0: u00000000133d5133 syz-exec-10020 1...2 265603120us : 0: u00000000133d5133 syz-exec-10020 1...2 265603180us : 0: u00000000133d5133 syz-exec-10020 1...2 265603240us : 0: u00000000133d5133 syz-exec-10020 1...2 265603301us : 0: u00000000133d5133 syz-exec-10020 1...2 265603521us : 0: u00000000133d5133 syz-exec-10020 1...2 265603601us : 0: u00000000133d5133 syz-exec-10020 1...2 265603710us : 0: u00000000133d5133 syz-exec-10020 1...2 265603771us : 0: u00000000133d5133 syz-exec-10020 1...2 265603851us : 0: u00000000133d5133 syz-exec-10020 1...2 265603931us : 0: u00000000133d5133 syz-exec-10020 1...2 265604011us : 0: u00000000133d5133 syz-exec-10020 1...2 265604110us : 0: u00000000133d5133 syz-exec-10020 1...2 265604191us : 0: u00000000133d5133 syz-exec-10020 1...2 265604271us : 0: u00000000133d5133 syz-exec-10020 1...2 265604330us : 0: u00000000133d5133 syz-exec-10020 1...2 265604551us : 0: u00000000133d5133 syz-exec-10020 1...2 265604611us : 0: u00000000133d5133 syz-exec-10020 1...2 265604691us : 0: u00000000133d5133 syz-exec-10020 1...2 265604732us : 0: u00000000133d5133 syz-exec-10020 1...2 265604771us : 0: u00000000133d5133 syz-exec-10020 1...2 265604811us : 0: u00000000133d5133 syz-exec-10020 1...2 265604871us : 0: u00000000133d5133 syz-exec-10020 1...2 265604950us : 0: u00000000133d5133 syz-exec-10020 1...2 265605010us : 0: u00000000133d5133 syz-exec-10020 1...2 265605069us : 0: u00000000133d5133 syz-exec-10020 1...2 265605111us : 0: u00000000133d5133 syz-exec-10020 1...2 265605170us : 0: u00000000133d5133 syz-exec-10020 1...2 265605231us : 0: u00000000133d5133 syz-exec-10020 1...2 265605330us : 0: u00000000133d5133 syz-exec-10020 1...2 265605571us : 0: u00000000133d5133 syz-exec-10020 1...2 265605671us : 0: u00000000133d5133 syz-exec-10020 1...2 265605751us : 0: u00000000133d5133 syz-exec-10020 1...2 265605830us : 0: u00000000133d5133 syz-exec-10020 1...2 265605891us : 0: u00000000133d5133 syz-exec-10020 1...2 265605991us : 0: u00000000133d5133 syz-exec-10020 1...2 265606052us : 0: u00000000133d5133 syz-exec-10020 1...2 265606131us : 0: u00000000133d5133 syz-exec-10020 1...2 265606191us : 0: u00000000133d5133 syz-exec-10020 1...2 265606271us : 0: u00000000133d5133 syz-exec-10020 1...2 265606491us : 0: u00000000133d5133 syz-exec-10020 1...2 265606570us : 0: u00000000133d5133 syz-exec-10020 1...2 265606652us : 0: u00000000133d5133 syz-exec-10020 1...2 265606730us : 0: u00000000133d5133 syz-exec-10020 1...2 265606790us : 0: u00000000133d5133 syz-exec-10020 1...2 265606850us : 0: u00000000133d5133 syz-exec-10020 1...2 265606912us : 0: u00000000133d5133 syz-exec-10020 1...2 265606970us : 0: u00000000133d5133 syz-exec-10020 1...2 265607031us : 0: u00000000133d5133 syz-exec-10020 1...2 265607091us : 0: u00000000133d5133 syz-exec-10020 1...2 265607151us : 0: u00000000133d5133 syz-exec-10020 1...2 265607211us : 0: u00000000133d5133 syz-exec-10020 1...2 265607271us : 0: u00000000133d5133 syz-exec-10020 1...2 265607331us : 0: u00000000133d5133 syz-exec-10020 1...2 265607712us : 0: u00000000133d5133 syz-exec-10020 1...2 265607831us : 0: u00000000133d5133 syz-exec-10020 1...2 265607950us : 0: u00000000133d5133 syz-exec-10020 1...2 265608091us : 0: u00000000133d5133 syz-exec-10020 1...2 265608191us : 0: u00000000133d5133 syz-exec-10020 1...2 265608290us : 0: u00000000133d5133 syz-exec-10020 1.N.2 265608451us : 0: u00000000133d5133 syz-exec-10020 1...2 265608466us : 0: u00000000133d5133 syz-exec-10020 1...2 265608471us : 0: u00000000133d5133 syz-exec-10020 1...2 265608690us : 0: u00000000133d5133 syz-exec-10020 1...2 265608810us : 0: u00000000133d5133 syz-exec-10020 1...2 265608891us : 0: u00000000133d5133 syz-exec-10020 1...2 265609010us : 0: u00000000133d5133 syz-exec-10020 1...2 265609072us : 0: u00000000133d5133 syz-exec-10020 1...2 265609132us : 0: u00000000133d5133 syz-exec-10020 1...2 265609240us : 0: u00000000133d5133 syz-exec-10020 1...2 265609300us : 0: u00000000133d5133 syz-exec-10020 1.N.2 265609841us : 0: u00000000133d5133 syz-exec-10020 1...2 265610061us : 0: u00000000133d5133 syz-exec-10020 1...2 265610141us : 0: u00000000133d5133 syz-exec-10020 1...2 265610220us : 0: u00000000133d5133 syz-exec-10020 1...2 265610282us : 0: u00000000133d5133 syz-exec-10020 1.N.2 265610436us : 0: u00000000133d5133 syz-exec-10020 1...2 265610450us : 0: u00000000133d5133 syz-exec-10020 1...2 265610455us : 0: u00000000133d5133 syz-exec-10020 1...2 265610540us : 0: u00000000133d5133 syz-exec-10020 1...2 265610620us : 0: u00000000133d5133 syz-exec-10020 1...2 265610690us : 0: u00000000133d5133 syz-exec-10020 1...2 265610771us : 0: u00000000133d5133 syz-exec-10020 1...2 265610850us : 0: u00000000133d5133 syz-exec-10020 1...2 265610912us : 0: u00000000133d5133 syz-exec-10020 1...2 265611010us : 0: u00000000133d5133 syz-exec-10020 1...2 265611089us : 0: u00000000133d5133 syz-exec-10020 1...2 265611150us : 0: u00000000133d5133 syz-exec-10020 1...2 265611191us : 0: u00000000133d5133 syz-exec-10020 1...2 265611251us : 0: u00000000133d5133 syz-exec-10020 1...2 265611309us : 0: u00000000133d5133 syz-exec-10020 1.N.2 265611615us : 0: u00000000133d5133 syz-exec-10020 1...2 265611760us : 0: u00000000133d5133 syz-exec-10020 1...2 265611821us : 0: u00000000133d5133 syz-exec-10020 1...2 265611880us : 0: u00000000133d5133 syz-exec-10020 1...2 265611961us : 0: u00000000133d5133 syz-exec-10020 1...2 265612021us : 0: u00000000133d5133 syz-exec-10020 1...2 265612121us : 0: u00000000133d5133 syz-exec-10020 1...2 265612221us : 0: u00000000133d5133 syz-exec-10020 1...2 265612302us : 0: u00000000133d5133 syz-exec-10020 1.N.2 265612611us : 0: u00000000133d5133 syz-exec-10020 1...2 265612792us : 0: u00000000133d5133 syz-exec-10020 1...2 265612890us : 0: u00000000133d5133 syz-exec-10020 1...2 265612971us : 0: u00000000133d5133 syz-exec-10020 1...2 265613051us : 0: u00000000133d5133 syz-exec-10020 1...2 265613130us : 0: u00000000133d5133 syz-exec-10020 1...2 265613212us : 0: u00000000133d5133 syz-exec-10020 1...2 265613311us : 0: u00000000133d5133 syz-exec-10020 1...2 265613599us : 0: u00000000133d5133 syz-exec-10020 1...2 265613669us : 0: u00000000133d5133 syz-exec-10020 1...2 265613676us : 0: u00000000133d5133 syz-exec-10020 1...2 265613681us : 0: u00000000133d5133 syz-exec-10020 1...2 265613686us : 0: u00000000133d5133 syz-exec-10020 1...2 265613691us : 0: u00000000133d5133 syz-exec-10020 1...2 265613752us : 0: u00000000133d5133 syz-exec-10020 1...2 265613831us : 0: u00000000133d5133 syz-exec-10020 1...2 265613890us : 0: u00000000133d5133 syz-exec-10020 1...2 265613952us : 0: u00000000133d5133 syz-exec-10020 1...2 265614011us : 0: u00000000133d5133 syz-exec-10020 1...2 265614070us : 0: u00000000133d5133 syz-exec-10020 1...2 265614130us : 0: u00000000133d5133 syz-exec-10020 1...2 265614171us : 0: u00000000133d5133 syz-exec-10020 1...2 265614231us : 0: u00000000133d5133 syz-exec-10020 1...2 265614290us : 0: u00000000133d5133 syz-exec-10020 1.N.2 265614591us : 0: u00000000133d5133 syz-exec-10020 1...2 265614724us : 0: u00000000133d5133 syz-exec-10020 1...2 265614730us : 0: u00000000133d5133 syz-exec-10020 1...2 265614735us : 0: u00000000133d5133 syz-exec-10020 1...2 265614740us : 0: u00000000133d5133 syz-exec-10020 1...2 265614802us : 0: u00000000133d5133 syz-exec-10020 1...2 265614882us : 0: u00000000133d5133 syz-exec-10020 1...2 265614980us : 0: u00000000133d5133 syz-exec-10020 1...2 265615041us : 0: u00000000133d5133 syz-exec-10020 1...2 265615121us : 0: u00000000133d5133 syz-exec-10020 1...2 265615200us : 0: u00000000133d5133 syz-exec-10020 1...2 265615261us : 0: u00000000133d5133 syz-exec-10020 1.p.2 265615341us : 0: u00000000133d5133 syz-exec-10020 1...2 265615690us : 0: u00000000133d5133 syz-exec-10020 1...2 265615750us : 0: u00000000133d5133 syz-exec-10020 1...2 265615791us : 0: u00000000133d5133 syz-exec-10020 1...2 265615851us : 0: u00000000133d5133 syz-exec-10020 1...2 265615930us : 0: u00000000133d5133 syz-exec-10020 1...2 265615990us : 0: u00000000133d5133 syz-exec-10020 1...2 265616050us : 0: u00000000133d5133 syz-exec-10020 1...2 265616110us : 0: u00000000133d5133 syz-exec-10020 1...2 265616170us : 0: u00000000133d5133 syz-exec-10020 1...2 265616230us : 0: u00000000133d5133 syz-exec-10020 1...2 265616272us : 0: u00000000133d5133 syz-exec-10020 1.N.2 265616331us : 0: u00000000133d5133 syz-exec-10020 1...2 265616661us : 0: u00000000133d5133 syz-exec-10020 1...2 265616668us : 0: u00000000133d5133 syz-exec-10020 1...2 265616673us : 0: u00000000133d5133 --------------------------------- ---[ end trace 4edf402d2e3a53ba ]--- RIP: 0010:usb_find_alt_setting+0x38/0x310 drivers/usb/core/usb.c:231 Code: 89 fb 48 83 ec 10 48 89 7d c8 89 55 d4 89 75 d0 e8 6d 18 09 fd 48 8d 7b 04 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 04 02 48 89 fa 83 e2 07 38 d0 7f 08 84 c0 0f 85 86 02 00 00 RSP: 0018:ffff88005dc4f4a8 EFLAGS: 00010247 RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffc90003296000 RDX: 0000000000000000 RSI: ffffffff8473be03 RDI: 0000000000000004 RBP: ffff88005dc4f4e0 R08: ffff88018acb0180 R09: ffffed000bb89eb2 R10: ffffed000bb89eb4 R11: ffff88005dc4f5a7 R12: 0000000000000000 R13: ffff8801ce561740 R14: ffff8801b4217500 R15: 0000000000000000 FS: 00007f196ac27700(0000) GS:ffff8801db100000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000001b2f422000 CR3: 000000018a748000 CR4: 00000000001426e0