Warning: Permanently added '10.128.0.194' (ECDSA) to the list of known hosts. 2020/07/16 00:52:59 parsed 1 programs 2020/07/16 00:52:59 executed programs: 0 [ 28.070302][ T507] cgroup: Unknown subsys name 'perf_event' [ 28.070308][ T506] cgroup: Unknown subsys name 'perf_event' [ 28.070769][ T506] cgroup: Unknown subsys name 'net_cls' [ 28.077668][ T510] cgroup: Unknown subsys name 'perf_event' [ 28.087878][ T507] cgroup: Unknown subsys name 'net_cls' [ 28.096139][ T513] cgroup: Unknown subsys name 'perf_event' [ 28.108929][ T513] cgroup: Unknown subsys name 'net_cls' [ 28.116467][ T510] cgroup: Unknown subsys name 'net_cls' [ 28.120770][ T518] cgroup: Unknown subsys name 'perf_event' [ 28.123880][ T515] cgroup: Unknown subsys name 'perf_event' [ 28.133861][ T518] cgroup: Unknown subsys name 'net_cls' [ 28.140610][ T515] cgroup: Unknown subsys name 'net_cls' [ 35.296238][ T141] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 35.426001][ T17] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 35.486009][ T21] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 35.496102][ T370] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 35.516054][ T3205] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 35.536092][ T3219] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 35.565922][ T141] usb 1-1: Using ep0 maxpacket: 16 [ 35.685903][ T17] usb 3-1: Using ep0 maxpacket: 16 [ 35.691133][ T141] usb 1-1: config 53 has an invalid interface number: 236 but max is 1 [ 35.699504][ T141] usb 1-1: config 53 has an invalid interface number: 168 but max is 1 [ 35.707783][ T141] usb 1-1: config 53 has no interface number 0 [ 35.713917][ T141] usb 1-1: config 53 has no interface number 1 [ 35.720293][ T141] usb 1-1: config 53 interface 236 altsetting 163 endpoint 0xE has an invalid bInterval 89, changing to 7 [ 35.731644][ T141] usb 1-1: config 53 interface 236 altsetting 163 endpoint 0xF has invalid maxpacket 512, setting to 64 [ 35.735939][ T370] usb 6-1: Using ep0 maxpacket: 16 [ 35.742887][ T141] usb 1-1: config 53 interface 236 altsetting 163 has an invalid endpoint with address 0x80, skipping [ 35.758895][ T141] usb 1-1: config 53 interface 236 altsetting 163 endpoint 0xA has invalid wMaxPacketSize 0 [ 35.769078][ T141] usb 1-1: config 53 interface 236 altsetting 163 endpoint 0x4 has invalid maxpacket 1024, setting to 64 [ 35.780317][ T141] usb 1-1: config 53 interface 236 altsetting 163 endpoint 0x2 has invalid maxpacket 1024, setting to 64 [ 35.791834][ T141] usb 1-1: config 53 interface 168 altsetting 1 endpoint 0xB has invalid maxpacket 512, setting to 64 [ 35.802832][ T141] usb 1-1: config 53 interface 168 altsetting 1 endpoint 0x8 has invalid maxpacket 1024, setting to 64 [ 35.813953][ T141] usb 1-1: config 53 interface 168 altsetting 1 has an invalid endpoint with address 0x0, skipping [ 35.824687][ T141] usb 1-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0xF, skipping [ 35.835537][ T141] usb 1-1: config 53 interface 168 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64 [ 35.846498][ T141] usb 1-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0x3, skipping [ 35.857297][ T141] usb 1-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0xD, skipping [ 35.865826][ T370] usb 6-1: config 53 has an invalid interface number: 236 but max is 1 [ 35.868102][ T141] usb 1-1: config 53 interface 236 has no altsetting 0 [ 35.876375][ T370] usb 6-1: config 53 has an invalid interface number: 168 but max is 1 [ 35.883174][ T141] usb 1-1: config 53 interface 168 has no altsetting 0 [ 35.891418][ T370] usb 6-1: config 53 has no interface number 0 [ 35.891433][ T370] usb 6-1: config 53 has no interface number 1 [ 35.898451][ T21] usb 5-1: Using ep0 maxpacket: 16 [ 35.909313][ T370] usb 6-1: config 53 interface 236 altsetting 163 endpoint 0xE has an invalid bInterval 89, changing to 7 [ 35.910716][ T3205] usb 2-1: Using ep0 maxpacket: 16 [ 35.915827][ T370] usb 6-1: config 53 interface 236 altsetting 163 endpoint 0xF has invalid maxpacket 512, setting to 64 [ 35.927250][ T3219] usb 4-1: Using ep0 maxpacket: 16 [ 35.932182][ T370] usb 6-1: config 53 interface 236 altsetting 163 has an invalid endpoint with address 0x80, skipping [ 35.932222][ T370] usb 6-1: config 53 interface 236 altsetting 163 endpoint 0xA has invalid wMaxPacketSize 0 [ 35.969484][ T370] usb 6-1: config 53 interface 236 altsetting 163 endpoint 0x4 has invalid maxpacket 1024, setting to 64 [ 35.975727][ T17] usb 3-1: config 53 has an invalid interface number: 236 but max is 1 [ 35.980745][ T370] usb 6-1: config 53 interface 236 altsetting 163 endpoint 0x2 has invalid maxpacket 1024, setting to 64 [ 35.989122][ T17] usb 3-1: config 53 has an invalid interface number: 168 but max is 1 [ 36.002645][ T370] usb 6-1: config 53 interface 168 altsetting 1 endpoint 0xB has invalid maxpacket 512, setting to 64 [ 36.008394][ T17] usb 3-1: config 53 has no interface number 0 [ 36.008409][ T17] usb 3-1: config 53 has no interface number 1 [ 36.009101][ T17] usb 3-1: config 53 interface 236 altsetting 163 endpoint 0xE has an invalid bInterval 89, changing to 7 [ 36.019495][ T370] usb 6-1: config 53 interface 168 altsetting 1 endpoint 0x8 has invalid maxpacket 1024, setting to 64 [ 36.025544][ T17] usb 3-1: config 53 interface 236 altsetting 163 endpoint 0xF has invalid maxpacket 512, setting to 64 [ 36.031692][ T370] usb 6-1: config 53 interface 168 altsetting 1 has an invalid endpoint with address 0x0, skipping [ 36.031710][ T370] usb 6-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0xF, skipping [ 36.031731][ T370] usb 6-1: config 53 interface 168 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64 [ 36.031749][ T370] usb 6-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0x3, skipping [ 36.031766][ T370] usb 6-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0xD, skipping [ 36.031782][ T370] usb 6-1: config 53 interface 236 has no altsetting 0 [ 36.031797][ T370] usb 6-1: config 53 interface 168 has no altsetting 0 [ 36.132678][ T17] usb 3-1: config 53 interface 236 altsetting 163 has an invalid endpoint with address 0x80, skipping [ 36.143643][ T17] usb 3-1: config 53 interface 236 altsetting 163 endpoint 0xA has invalid wMaxPacketSize 0 [ 36.153751][ T17] usb 3-1: config 53 interface 236 altsetting 163 endpoint 0x4 has invalid maxpacket 1024, setting to 64 [ 36.164999][ T17] usb 3-1: config 53 interface 236 altsetting 163 endpoint 0x2 has invalid maxpacket 1024, setting to 64 [ 36.176749][ T17] usb 3-1: config 53 interface 168 altsetting 1 endpoint 0xB has invalid maxpacket 512, setting to 64 [ 36.187734][ T17] usb 3-1: config 53 interface 168 altsetting 1 endpoint 0x8 has invalid maxpacket 1024, setting to 64 [ 36.195972][ T370] usb 6-1: New USB device found, idVendor=0bda, idProduct=8712, bcdDevice=bc.bf [ 36.198915][ T17] usb 3-1: config 53 interface 168 altsetting 1 has an invalid endpoint with address 0x0, skipping [ 36.207838][ T370] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 36.218527][ T17] usb 3-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0xF, skipping [ 36.226491][ T370] usb 6-1: Product: syz [ 36.237265][ T17] usb 3-1: config 53 interface 168 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64 [ 36.241369][ T370] usb 6-1: Manufacturer: syz [ 36.252290][ T17] usb 3-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0x3, skipping [ 36.252310][ T17] usb 3-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0xD, skipping [ 36.256890][ T370] usb 6-1: SerialNumber: syz [ 36.283267][ T17] usb 3-1: config 53 interface 236 has no altsetting 0 [ 36.290145][ T17] usb 3-1: config 53 interface 168 has no altsetting 0 [ 36.297140][ T3205] usb 2-1: config 53 has an invalid interface number: 236 but max is 1 [ 36.305371][ T3205] usb 2-1: config 53 has an invalid interface number: 168 but max is 1 [ 36.313657][ T3205] usb 2-1: config 53 has no interface number 0 [ 36.319907][ T3205] usb 2-1: config 53 has no interface number 1 [ 36.326130][ T3219] usb 4-1: config 53 has an invalid interface number: 236 but max is 1 [ 36.334357][ T3219] usb 4-1: config 53 has an invalid interface number: 168 but max is 1 [ 36.342689][ T3219] usb 4-1: config 53 has no interface number 0 [ 36.348895][ T3219] usb 4-1: config 53 has no interface number 1 [ 36.355085][ T21] usb 5-1: config 53 has an invalid interface number: 236 but max is 1 [ 36.363378][ T21] usb 5-1: config 53 has an invalid interface number: 168 but max is 1 [ 36.371657][ T21] usb 5-1: config 53 has no interface number 0 [ 36.377862][ T21] usb 5-1: config 53 has no interface number 1 [ 36.384048][ T141] usb 1-1: New USB device found, idVendor=0bda, idProduct=8712, bcdDevice=bc.bf [ 36.393107][ T141] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 36.401120][ T141] usb 1-1: Product: syz [ 36.405264][ T141] usb 1-1: Manufacturer: syz [ 36.409880][ T141] usb 1-1: SerialNumber: syz [ 36.414589][ T3219] usb 4-1: config 53 interface 236 altsetting 163 endpoint 0xE has an invalid bInterval 89, changing to 7 [ 36.426125][ T3219] usb 4-1: config 53 interface 236 altsetting 163 endpoint 0xF has invalid maxpacket 512, setting to 64 [ 36.437318][ T3219] usb 4-1: config 53 interface 236 altsetting 163 has an invalid endpoint with address 0x80, skipping [ 36.448337][ T3219] usb 4-1: config 53 interface 236 altsetting 163 endpoint 0xA has invalid wMaxPacketSize 0 [ 36.458488][ T3219] usb 4-1: config 53 interface 236 altsetting 163 endpoint 0x4 has invalid maxpacket 1024, setting to 64 [ 36.469728][ T3219] usb 4-1: config 53 interface 236 altsetting 163 endpoint 0x2 has invalid maxpacket 1024, setting to 64 [ 36.481065][ T3205] usb 2-1: config 53 interface 236 altsetting 163 endpoint 0xE has an invalid bInterval 89, changing to 7 [ 36.492402][ T3205] usb 2-1: config 53 interface 236 altsetting 163 endpoint 0xF has invalid maxpacket 512, setting to 64 [ 36.503620][ T3205] usb 2-1: config 53 interface 236 altsetting 163 has an invalid endpoint with address 0x80, skipping [ 36.514599][ T3205] usb 2-1: config 53 interface 236 altsetting 163 endpoint 0xA has invalid wMaxPacketSize 0 [ 36.524757][ T3205] usb 2-1: config 53 interface 236 altsetting 163 endpoint 0x4 has invalid maxpacket 1024, setting to 64 [ 36.535981][ T3205] usb 2-1: config 53 interface 236 altsetting 163 endpoint 0x2 has invalid maxpacket 1024, setting to 64 [ 36.547306][ T21] usb 5-1: config 53 interface 236 altsetting 163 endpoint 0xE has an invalid bInterval 89, changing to 7 [ 36.558642][ T21] usb 5-1: config 53 interface 236 altsetting 163 endpoint 0xF has invalid maxpacket 512, setting to 64 [ 36.569841][ T21] usb 5-1: config 53 interface 236 altsetting 163 has an invalid endpoint with address 0x80, skipping [ 36.577851][ T370] r8712u: register rtl8712_netdev_ops to netdev_ops [ 36.580837][ T21] usb 5-1: config 53 interface 236 altsetting 163 endpoint 0xA has invalid wMaxPacketSize 0 [ 36.587409][ T370] usb 6-1: r8712u: USB_SPEED_HIGH with 6 endpoints [ 36.597549][ T21] usb 5-1: config 53 interface 236 altsetting 163 endpoint 0x4 has invalid maxpacket 1024, setting to 64 [ 36.615196][ T21] usb 5-1: config 53 interface 236 altsetting 163 endpoint 0x2 has invalid maxpacket 1024, setting to 64 [ 36.627085][ T3219] usb 4-1: config 53 interface 168 altsetting 1 endpoint 0xB has invalid maxpacket 512, setting to 64 [ 36.638083][ T3219] usb 4-1: config 53 interface 168 altsetting 1 endpoint 0x8 has invalid maxpacket 1024, setting to 64 [ 36.645863][ T370] usb 6-1: r8712u: Boot from EFUSE: Autoload Failed [ 36.649200][ T3219] usb 4-1: config 53 interface 168 altsetting 1 has an invalid endpoint with address 0x0, skipping [ 36.655721][ T370] usb 6-1: r8712u: MAC Address from efuse = 00:e0:4c:87:00:00 [ 36.666373][ T3219] usb 4-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0xF, skipping [ 36.673796][ T370] usb 6-1: r8712u: Loading firmware from "rtlwifi/rtl8712u.bin" [ 36.684602][ T3219] usb 4-1: config 53 interface 168 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64 [ 36.703200][ T3219] usb 4-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0x3, skipping [ 36.714009][ T3219] usb 4-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0xD, skipping [ 36.724818][ T3219] usb 4-1: config 53 interface 236 has no altsetting 0 [ 36.731716][ T3219] usb 4-1: config 53 interface 168 has no altsetting 0 [ 36.739773][ T17] usb 3-1: New USB device found, idVendor=0bda, idProduct=8712, bcdDevice=bc.bf [ 36.739988][ T370] r8712u: register rtl8712_netdev_ops to netdev_ops [ 36.748842][ T17] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 36.748857][ T17] usb 3-1: Product: syz [ 36.748870][ T17] usb 3-1: Manufacturer: syz [ 36.748882][ T17] usb 3-1: SerialNumber: syz [ 36.751524][ T3205] usb 2-1: config 53 interface 168 altsetting 1 endpoint 0xB has invalid maxpacket 512, setting to 64 [ 36.755514][ T370] usb 6-1: r8712u: USB_SPEED_HIGH with 5 endpoints [ 36.759702][ T12] usb 6-1: Direct firmware load for rtlwifi/rtl8712u.bin failed with error -2 [ 36.763553][ T3205] usb 2-1: config 53 interface 168 altsetting 1 endpoint 0x8 has invalid maxpacket 1024, setting to 64 [ 36.763573][ T3205] usb 2-1: config 53 interface 168 altsetting 1 has an invalid endpoint with address 0x0, skipping [ 36.763591][ T3205] usb 2-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0xF, skipping [ 36.763611][ T3205] usb 2-1: config 53 interface 168 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64 [ 36.772678][ T12] usb 6-1: r8712u: Firmware request failed [ 36.776950][ T3205] usb 2-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0x3, skipping [ 36.776967][ T3205] usb 2-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0xD, skipping [ 36.776982][ T3205] usb 2-1: config 53 interface 236 has no altsetting 0 [ 36.776996][ T3205] usb 2-1: config 53 interface 168 has no altsetting 0 [ 36.781885][ T21] usb 5-1: config 53 interface 168 altsetting 1 endpoint 0xB has invalid maxpacket 512, setting to 64 [ 36.835292][ T370] usb 6-1: r8712u: Boot from EFUSE: Autoload Failed [ 36.835905][ T21] usb 5-1: config 53 interface 168 altsetting 1 endpoint 0x8 has invalid maxpacket 1024, setting to 64 [ 36.846878][ T370] usb 6-1: r8712u: MAC Address from efuse = 00:e0:4c:87:00:00 [ 36.852613][ T21] usb 5-1: config 53 interface 168 altsetting 1 has an invalid endpoint with address 0x0, skipping [ 36.863386][ T370] usb 6-1: r8712u: Loading firmware from "rtlwifi/rtl8712u.bin" [ 36.874171][ T21] usb 5-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0xF, skipping [ 36.890913][ T370] usb 6-1: USB disconnect, device number 2 [ 36.898811][ T21] usb 5-1: config 53 interface 168 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64 [ 36.898830][ T21] usb 5-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0x3, skipping [ 36.898847][ T21] usb 5-1: config 53 interface 168 altsetting 1 has a duplicate endpoint with address 0xD, skipping [ 36.898864][ T21] usb 5-1: config 53 interface 236 has no altsetting 0 [ 36.917655][ T12] usb 6-1: Direct firmware load for rtlwifi/rtl8712u.bin failed with error -2 [ 36.923928][ T21] usb 5-1: config 53 interface 168 has no altsetting 0 [ 36.942758][ T12] usb 6-1: r8712u: Firmware request failed [ 37.027370][ T370] ================================================================== [ 37.035546][ T370] BUG: KASAN: use-after-free in __mutex_lock+0xfc2/0x10a0 [ 37.042651][ T370] Read of size 8 at addr ffff8881d8dc6210 by task kworker/0:3/370 [ 37.050434][ T370] [ 37.052746][ T370] CPU: 0 PID: 370 Comm: kworker/0:3 Not tainted 5.8.0-rc5-syzkaller #0 [ 37.060953][ T370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 37.070993][ T370] Workqueue: usb_hub_wq hub_event [ 37.075988][ T370] Call Trace: [ 37.079260][ T370] dump_stack+0xf6/0x16e [ 37.083478][ T370] ? __mutex_lock+0xfc2/0x10a0 [ 37.088223][ T370] ? __mutex_lock+0xfc2/0x10a0 [ 37.092971][ T370] print_address_description.constprop.0+0x1a/0x210 [ 37.099533][ T370] ? vprintk_func+0x93/0x133 [ 37.104095][ T370] ? __mutex_lock+0xfc2/0x10a0 [ 37.108834][ T370] kasan_report.cold+0x37/0x7c [ 37.113576][ T370] ? __mutex_lock+0xfc2/0x10a0 [ 37.118312][ T370] __mutex_lock+0xfc2/0x10a0 [ 37.122878][ T370] ? trace_hardirqs_on+0x5f/0x200 [ 37.127878][ T370] ? device_release_driver+0x1c/0x40 [ 37.133136][ T370] ? mutex_lock_io_nested+0xf50/0xf50 [ 37.138531][ T370] ? slab_free_freelist_hook+0x53/0x140 [ 37.144052][ T370] ? kfree_const+0x51/0x60 [ 37.148442][ T370] ? kfree_const+0x51/0x60 [ 37.152842][ T370] ? kfree+0xbc/0x2c0 [ 37.156804][ T370] ? system_root_device_release+0x20/0x20 [ 37.162502][ T370] ? kfree_const+0x51/0x60 [ 37.166903][ T370] ? kobject_put+0x26f/0x540 [ 37.171480][ T370] device_release_driver+0x1c/0x40 [ 37.176569][ T370] bus_remove_device+0x2eb/0x5a0 [ 37.181483][ T370] device_del+0x47c/0xd20 [ 37.185790][ T370] ? device_link_add_missing_supplier_links+0x370/0x370 [ 37.192700][ T370] ? kobject_put+0x26f/0x540 [ 37.197263][ T370] usb_disconnect.cold+0x4aa/0x780 [ 37.202350][ T370] hub_event+0x1c93/0x4390 [ 37.206751][ T370] ? hub_port_debounce+0x3b0/0x3b0 [ 37.211870][ T370] ? perf_trace_workqueue_execute_start+0x250/0x390 [ 37.218431][ T370] ? lock_release+0x7e0/0x7e0 [ 37.223083][ T370] ? lock_downgrade+0x730/0x730 [ 37.227923][ T370] ? do_raw_spin_lock+0x120/0x260 [ 37.232951][ T370] ? _raw_spin_unlock_irq+0x1f/0x30 [ 37.238141][ T370] ? lockdep_hardirqs_on_prepare+0x370/0x550 [ 37.244108][ T370] process_one_work+0x94c/0x15f0 [ 37.249072][ T370] ? lock_release+0x7e0/0x7e0 [ 37.253727][ T370] ? pwq_dec_nr_in_flight+0x2d0/0x2d0 [ 37.259085][ T370] ? rwlock_bug.part.0+0x90/0x90 [ 37.263995][ T370] worker_thread+0x82b/0x1120 [ 37.268648][ T370] ? __kthread_parkme+0x118/0x1d0 [ 37.273779][ T370] ? process_one_work+0x15f0/0x15f0 [ 37.278961][ T370] kthread+0x392/0x470 [ 37.283006][ T370] ? kthread_create_worker_on_cpu+0xf0/0xf0 [ 37.288872][ T370] ? kthread_create_worker_on_cpu+0xf0/0xf0 [ 37.294750][ T370] ret_from_fork+0x1f/0x30 [ 37.299152][ T370] [ 37.301474][ T370] Allocated by task 370: [ 37.305698][ T370] save_stack+0x1b/0x40 [ 37.309838][ T370] __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 37.315451][ T370] usb_alloc_dev+0x51/0xf67 [ 37.319938][ T370] hub_event+0x1dff/0x4390 [ 37.324329][ T370] process_one_work+0x94c/0x15f0 [ 37.329248][ T370] worker_thread+0x64c/0x1120 [ 37.333901][ T370] kthread+0x392/0x470 [ 37.337955][ T370] ret_from_fork+0x1f/0x30 [ 37.342358][ T370] [ 37.344672][ T370] Freed by task 370: [ 37.348545][ T370] save_stack+0x1b/0x40 [ 37.352687][ T370] __kasan_slab_free+0x116/0x160 [ 37.357609][ T370] slab_free_freelist_hook+0x53/0x140 [ 37.362961][ T370] kfree+0xbc/0x2c0 [ 37.366759][ T370] device_release+0x71/0x200 [ 37.371342][ T370] kobject_put+0x245/0x540 [ 37.375753][ T370] put_device+0x1b/0x30 [ 37.379891][ T370] klist_put+0x10f/0x1d0 [ 37.384109][ T370] bus_remove_device+0x43e/0x5a0 [ 37.389026][ T370] device_del+0x47c/0xd20 [ 37.393336][ T370] usb_disconnect.cold+0x4aa/0x780 [ 37.398431][ T370] hub_event+0x1c93/0x4390 [ 37.402821][ T370] process_one_work+0x94c/0x15f0 [ 37.407739][ T370] worker_thread+0x82b/0x1120 [ 37.412401][ T370] kthread+0x392/0x470 [ 37.416447][ T370] ret_from_fork+0x1f/0x30 [ 37.420833][ T370] [ 37.423137][ T370] The buggy address belongs to the object at ffff8881d8dc6000 [ 37.423137][ T370] which belongs to the cache kmalloc-2k of size 2048 [ 37.437176][ T370] The buggy address is located 528 bytes inside of [ 37.437176][ T370] 2048-byte region [ffff8881d8dc6000, ffff8881d8dc6800) [ 37.450505][ T370] The buggy address belongs to the page: [ 37.456116][ T370] page:ffffea0007637000 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 head:ffffea0007637000 order:3 compound_mapcount:0 compound_pincount:0 [ 37.471273][ T370] flags: 0x200000000010200(slab|head) [ 37.476630][ T370] raw: 0200000000010200 dead000000000100 dead000000000122 ffff8881da00c000 [ 37.485212][ T370] raw: 0000000000000000 0000000000080008 00000001ffffffff 0000000000000000 [ 37.493776][ T370] page dumped because: kasan: bad access detected [ 37.500160][ T370] [ 37.502466][ T370] Memory state around the buggy address: [ 37.508079][ T370] ffff8881d8dc6100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 37.516138][ T370] ffff8881d8dc6180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 37.524191][ T370] >ffff8881d8dc6200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 37.532224][ T370] ^ [ 37.536788][ T370] ffff8881d8dc6280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 37.544837][ T370] ffff8881d8dc6300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 37.552876][ T370] ================================================================== [ 37.560907][ T370] Disabling lock debugging due to kernel taint [ 37.567199][ T370] Kernel panic - not syncing: panic_on_warn set ... [ 37.573786][ T370] CPU: 0 PID: 370 Comm: kworker/0:3 Tainted: G B 5.8.0-rc5-syzkaller #0 [ 37.583396][ T370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 37.593453][ T370] Workqueue: usb_hub_wq hub_event [ 37.598458][ T370] Call Trace: [ 37.601726][ T370] dump_stack+0xf6/0x16e [ 37.605943][ T370] ? __mutex_lock+0xf30/0x10a0 [ 37.610694][ T370] panic+0x2aa/0x6e1 [ 37.614570][ T370] ? __warn_printk+0xf3/0xf3 [ 37.619131][ T370] ? __mutex_lock+0xfc2/0x10a0 [ 37.623876][ T370] ? trace_hardirqs_on+0x55/0x200 [ 37.628879][ T370] ? __mutex_lock+0xfc2/0x10a0 [ 37.633618][ T370] ? __mutex_lock+0xfc2/0x10a0 [ 37.638357][ T370] end_report+0x4d/0x53 [ 37.642504][ T370] kasan_report.cold+0x72/0x7c [ 37.647245][ T370] ? __mutex_lock+0xfc2/0x10a0 [ 37.651981][ T370] __mutex_lock+0xfc2/0x10a0 [ 37.656547][ T370] ? trace_hardirqs_on+0x5f/0x200 [ 37.661552][ T370] ? device_release_driver+0x1c/0x40 [ 37.666816][ T370] ? mutex_lock_io_nested+0xf50/0xf50 [ 37.672163][ T370] ? slab_free_freelist_hook+0x53/0x140 [ 37.677679][ T370] ? kfree_const+0x51/0x60 [ 37.682067][ T370] ? kfree_const+0x51/0x60 [ 37.686453][ T370] ? kfree+0xbc/0x2c0 [ 37.690408][ T370] ? system_root_device_release+0x20/0x20 [ 37.696095][ T370] ? kfree_const+0x51/0x60 [ 37.700482][ T370] ? kobject_put+0x26f/0x540 [ 37.705147][ T370] device_release_driver+0x1c/0x40 [ 37.710238][ T370] bus_remove_device+0x2eb/0x5a0 [ 37.715158][ T370] device_del+0x47c/0xd20 [ 37.719474][ T370] ? device_link_add_missing_supplier_links+0x370/0x370 [ 37.726387][ T370] ? kobject_put+0x26f/0x540 [ 37.730958][ T370] usb_disconnect.cold+0x4aa/0x780 [ 37.736059][ T370] hub_event+0x1c93/0x4390 [ 37.740461][ T370] ? hub_port_debounce+0x3b0/0x3b0 [ 37.745548][ T370] ? perf_trace_workqueue_execute_start+0x250/0x390 [ 37.752106][ T370] ? lock_release+0x7e0/0x7e0 [ 37.756753][ T370] ? lock_downgrade+0x730/0x730 [ 37.761575][ T370] ? do_raw_spin_lock+0x120/0x260 [ 37.766573][ T370] ? _raw_spin_unlock_irq+0x1f/0x30 [ 37.771743][ T370] ? lockdep_hardirqs_on_prepare+0x370/0x550 [ 37.777690][ T370] process_one_work+0x94c/0x15f0 [ 37.782629][ T370] ? lock_release+0x7e0/0x7e0 [ 37.787276][ T370] ? pwq_dec_nr_in_flight+0x2d0/0x2d0 [ 37.792621][ T370] ? rwlock_bug.part.0+0x90/0x90 [ 37.797531][ T370] worker_thread+0x82b/0x1120 [ 37.802179][ T370] ? __kthread_parkme+0x118/0x1d0 [ 37.807173][ T370] ? process_one_work+0x15f0/0x15f0 [ 37.812342][ T370] kthread+0x392/0x470 [ 37.816395][ T370] ? kthread_create_worker_on_cpu+0xf0/0xf0 [ 37.822269][ T370] ? kthread_create_worker_on_cpu+0xf0/0xf0 [ 37.828132][ T370] ret_from_fork+0x1f/0x30 [ 37.833109][ T370] Kernel Offset: disabled [ 37.837413][ T370] Rebooting in 86400 seconds..