Warning: Permanently added '10.128.0.237' (ED25519) to the list of known hosts. 2024/12/09 15:04:07 ignoring optional flag "sandboxArg"="0" 2024/12/09 15:04:07 ignoring optional flag "type"="gce" 2024/12/09 15:04:07 parsed 1 programs [ 94.561192][ T29] audit: type=1400 audit(1733756650.665:125): avc: denied { unlink } for pid=3982 comm="syz-executor" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 94.652485][ T3982] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 96.290784][ T29] audit: type=1400 audit(1733756652.395:126): avc: denied { create } for pid=4011 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 96.555956][ T29] audit: type=1401 audit(1733756652.655:127): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768" 2024/12/09 15:04:23 executed programs: 0 2024/12/09 15:04:59 executed programs: 10 [ 143.003365][ T29] audit: type=1400 audit(1733756699.105:128): avc: denied { read write } for pid=6790 comm="syz.2.17" name="raw-gadget" dev="devtmpfs" ino=236 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 143.027037][ T29] audit: type=1400 audit(1733756699.105:129): avc: denied { open } for pid=6790 comm="syz.2.17" path="/dev/raw-gadget" dev="devtmpfs" ino=236 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 143.050523][ T29] audit: type=1400 audit(1733756699.105:130): avc: denied { ioctl } for pid=6790 comm="syz.2.17" path="/dev/raw-gadget" dev="devtmpfs" ino=236 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 143.238130][ T9] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 143.328097][ T1117] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 143.431717][ T9] usb 3-1: Using ep0 maxpacket: 16 [ 143.449803][ T9] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83 [ 143.461752][ T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 56, changing to 7 [ 143.472823][ T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid maxpacket 57832, setting to 1024 [ 143.487889][ T1117] usb 4-1: Using ep0 maxpacket: 16 [ 143.497045][ T1117] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83 [ 143.509427][ T1117] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 56, changing to 7 [ 143.520751][ T1117] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid maxpacket 57832, setting to 1024 [ 143.535569][ T9] usb 3-1: New USB device found, idVendor=2040, idProduct=0265, bcdDevice=4e.d1 [ 143.544995][ T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 143.553259][ T9] usb 3-1: Product: syz [ 143.557470][ T9] usb 3-1: Manufacturer: syz [ 143.561477][ T1117] usb 4-1: New USB device found, idVendor=2040, idProduct=0265, bcdDevice=4e.d1 [ 143.562296][ T9] usb 3-1: SerialNumber: syz [ 143.571263][ T1117] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 143.571299][ T1117] usb 4-1: Product: syz [ 143.586138][ T9] usb 3-1: config 0 descriptor?? [ 143.588197][ T1117] usb 4-1: Manufacturer: syz [ 143.597936][ T1117] usb 4-1: SerialNumber: syz [ 143.615473][ T1117] usb 4-1: config 0 descriptor?? [ 143.617085][ T9] em28xx 3-1:0.0: New device syz syz @ 480 Mbps (2040:0265, interface 0, class 0) [ 143.630055][ T9] em28xx 3-1:0.0: Audio interface 0 found (Vendor Class) [ 143.655268][ T1117] em28xx 4-1:0.0: New device syz syz @ 480 Mbps (2040:0265, interface 0, class 0) [ 143.665088][ T1117] em28xx 4-1:0.0: Audio interface 0 found (Vendor Class) [ 143.727879][ T36] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 143.858715][ T9] em28xx 3-1:0.0: unknown em28xx chip ID (0) [ 143.866843][ T9] em28xx 3-1:0.0: Config register raw data: 0xfffffffb [ 143.874669][ T9] em28xx 3-1:0.0: AC97 chip type couldn't be determined [ 143.877871][ T36] usb 1-1: Using ep0 maxpacket: 16 [ 143.881703][ T9] em28xx 3-1:0.0: No AC97 audio processor [ 143.886868][ T6821] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 143.893650][ T9] em28xx 3-1:0.0: We currently don't support analog TV or stream capture on dual tuners. [ 143.903100][ T36] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83 [ 143.922067][ T36] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 56, changing to 7 [ 143.933417][ T36] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid maxpacket 57832, setting to 1024 [ 143.937879][ T3005] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 143.945695][ T1117] em28xx 4-1:0.0: unknown em28xx chip ID (0) [ 143.959045][ T1117] em28xx 4-1:0.0: Config register raw data: 0xfffffffb [ 143.966548][ T1117] em28xx 4-1:0.0: AC97 chip type couldn't be determined [ 143.973724][ T1117] em28xx 4-1:0.0: No AC97 audio processor [ 143.978281][ T9] em28xx 3-1:0.0: unknown em28xx chip ID (0) [ 143.980298][ T1117] em28xx 4-1:0.0: We currently don't support analog TV or stream capture on dual tuners. [ 143.986285][ T9] em28xx 3-1:0.0: Config register raw data: 0xfffffffb [ 143.995621][ T36] usb 1-1: New USB device found, idVendor=2040, idProduct=0265, bcdDevice=4e.d1 [ 144.003738][ T9] em28xx 3-1:0.0: AC97 chip type couldn't be determined [ 144.011561][ T36] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 144.018611][ T9] em28xx 3-1:0.0: No AC97 audio processor [ 144.026537][ T36] usb 1-1: Product: syz [ 144.036674][ T36] usb 1-1: Manufacturer: syz [ 144.041357][ T36] usb 1-1: SerialNumber: syz [ 144.050122][ T36] usb 1-1: config 0 descriptor?? [ 144.058218][ T6821] usb 5-1: Using ep0 maxpacket: 16 [ 144.067166][ T36] em28xx 1-1:0.0: New device syz syz @ 480 Mbps (2040:0265, interface 0, class 0) [ 144.076593][ T36] em28xx 1-1:0.0: Audio interface 0 found (Vendor Class) [ 144.085516][ T6821] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83 [ 144.097162][ T6821] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 56, changing to 7 [ 144.108475][ T6821] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid maxpacket 57832, setting to 1024 [ 144.120031][ T1117] em28xx 4-1:0.0: unknown em28xx chip ID (0) [ 144.126979][ T1117] em28xx 4-1:0.0: Config register raw data: 0xfffffffb [ 144.134491][ T1117] em28xx 4-1:0.0: AC97 chip type couldn't be determined [ 144.141671][ T1117] em28xx 4-1:0.0: No AC97 audio processor [ 144.235317][ T3005] usb 2-1: Using ep0 maxpacket: 16 [ 144.242265][ T3005] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83 [ 144.253978][ T3005] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 56, changing to 7 [ 144.265075][ T3005] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid maxpacket 57832, setting to 1024 [ 144.288086][ T9] usb 3-1: USB disconnect, device number 2 [ 144.295093][ T9] em28xx 3-1:0.0: Disconnecting em28xx #2 [ 144.301009][ T9] em28xx 3-1:0.0: Disconnecting em28xx [ 144.320253][ T9] em28xx 3-1:0.0: Freeing device [ 144.325343][ T9] em28xx 3-1:0.0: Freeing device [ 144.342199][ T3005] usb 2-1: New USB device found, idVendor=2040, idProduct=0265, bcdDevice=4e.d1 [ 144.351617][ T3005] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 144.359956][ T3005] usb 2-1: Product: syz [ 144.364176][ T3005] usb 2-1: Manufacturer: syz [ 144.364216][ T6821] usb 5-1: New USB device found, idVendor=2040, idProduct=0265, bcdDevice=4e.d1 [ 144.368997][ T3005] usb 2-1: SerialNumber: syz [ 144.377929][ T6821] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 144.390727][ T6821] usb 5-1: Product: syz [ 144.394947][ T6821] usb 5-1: Manufacturer: syz [ 144.399769][ T6821] usb 5-1: SerialNumber: syz [ 144.433724][ T6821] usb 5-1: config 0 descriptor?? [ 144.441195][ T1117] usb 4-1: USB disconnect, device number 2 [ 144.451322][ T6821] em28xx 5-1:0.0: New device syz syz @ 480 Mbps (2040:0265, interface 0, class 0) [ 144.451790][ T3005] usb 2-1: config 0 descriptor?? [ 144.460717][ T6821] em28xx 5-1:0.0: Audio interface 0 found (Vendor Class) [ 144.479581][ T3005] em28xx 2-1:0.0: New device syz syz @ 480 Mbps (2040:0265, interface 0, class 0) [ 144.483724][ T36] em28xx 1-1:0.0: unknown em28xx chip ID (0) [ 144.489107][ T3005] em28xx 2-1:0.0: Audio interface 0 found (Vendor Class) [ 144.500166][ T1117] em28xx 4-1:0.0: Disconnecting em28xx #3 [ 144.508401][ T1117] em28xx 4-1:0.0: Disconnecting em28xx [ 144.514445][ T36] em28xx 1-1:0.0: Config register raw data: 0xfffffffb [ 144.522411][ T1117] list_del corruption. next->prev should be ffff88811a044250, but was 0000000000000000. (next=ffff888109bd4250) [ 144.535134][ T1117] ------------[ cut here ]------------ [ 144.541370][ T1117] kernel BUG at lib/list_debug.c:65! [ 144.546832][ T1117] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI [ 144.553827][ T1117] CPU: 1 UID: 0 PID: 1117 Comm: kworker/1:2 Not tainted 6.13.0-rc1-syzkaller-00013-gd8d936c51388 #0 [ 144.564621][ T1117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 144.574797][ T1117] Workqueue: usb_hub_wq hub_event [ 144.579921][ T1117] RIP: 0010:__list_del_entry_valid_or_report+0x141/0x1c0 [ 144.587001][ T1117] Code: db fe 90 0f 0b 48 89 c2 48 c7 c7 a0 18 47 87 e8 75 b1 db fe 90 0f 0b 48 89 d1 48 c7 c7 20 19 47 87 48 89 c2 e8 60 b1 db fe 90 <0f> 0b 48 89 34 24 e8 b4 55 56 ff 48 8b 34 24 e9 d5 fe ff ff 48 89 [ 144.606658][ T1117] RSP: 0018:ffffc90001d9f6f0 EFLAGS: 00010282 [ 144.612764][ T1117] RAX: 000000000000006d RBX: ffffffff89e26640 RCX: ffffffff813aca19 [ 144.620772][ T1117] RDX: 0000000000000000 RSI: ffffffff813b73e6 RDI: 0000000000000005 [ 144.628761][ T1117] RBP: ffff88811a044250 R08: 0000000000000005 R09: 0000000000000000 [ 144.636842][ T1117] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 144.644931][ T1117] R13: ffff88811a044000 R14: ffffffff89e40768 R15: ffff88812bc00000 [ 144.652947][ T1117] FS: 0000000000000000(0000) GS:ffff8881f5900000(0000) knlGS:0000000000000000 [ 144.661910][ T1117] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 144.668620][ T1117] CR2: 00007ffd1cded2c8 CR3: 0000000116a3c000 CR4: 00000000003506f0 [ 144.676633][ T1117] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 144.684637][ T1117] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 144.692632][ T1117] Call Trace: [ 144.695923][ T1117] [ 144.698863][ T1117] ? die+0x31/0x80 [ 144.702609][ T1117] ? do_trap+0x232/0x430 [ 144.706868][ T1117] ? __list_del_entry_valid_or_report+0x141/0x1c0 [ 144.713321][ T1117] ? __list_del_entry_valid_or_report+0x141/0x1c0 [ 144.719771][ T1117] ? do_error_trap+0xf4/0x230 [ 144.724484][ T1117] ? __list_del_entry_valid_or_report+0x141/0x1c0 [ 144.731036][ T1117] ? handle_invalid_op+0x34/0x40 [ 144.736039][ T1117] ? __list_del_entry_valid_or_report+0x141/0x1c0 [ 144.742500][ T1117] ? exc_invalid_op+0x2e/0x50 [ 144.747225][ T1117] ? asm_exc_invalid_op+0x1a/0x20 [ 144.748150][ T3005] em28xx 2-1:0.0: unknown em28xx chip ID (0) [ 144.752282][ T1117] ? __wake_up_klogd.part.0+0x99/0xf0 [ 144.752332][ T1117] ? vprintk+0x86/0xa0 [ 144.758859][ T3005] em28xx 2-1:0.0: Config register raw data: 0xfffffffb [ 144.763724][ T1117] ? __list_del_entry_valid_or_report+0x141/0x1c0 [ 144.768557][ T3005] em28xx 2-1:0.0: AC97 chip type couldn't be determined [ 144.774622][ T1117] em28xx_close_extension+0x10e/0x2b0 [ 144.781081][ T3005] em28xx 2-1:0.0: No AC97 audio processor [ 144.787987][ T1117] em28xx_usb_disconnect+0x19d/0x610 [ 144.804497][ T1117] usb_unbind_interface+0x1e2/0x960 [ 144.809850][ T1117] ? kernfs_find_ns+0x2ee/0x3f0 [ 144.814758][ T1117] ? __pfx_usb_unbind_interface+0x10/0x10 [ 144.820524][ T1117] device_remove+0x122/0x170 [ 144.825143][ T1117] device_release_driver_internal+0x44a/0x610 [ 144.831288][ T1117] bus_remove_device+0x22f/0x420 [ 144.836293][ T1117] device_del+0x396/0x9f0 [ 144.840924][ T1117] ? __pfx_device_del+0x10/0x10 [ 144.845833][ T1117] ? kobject_put+0x210/0x5a0 [ 144.850493][ T1117] usb_disable_device+0x36c/0x7f0 [ 144.855625][ T1117] usb_disconnect+0x2e1/0x920 [ 144.860366][ T1117] hub_event+0x1bed/0x4f40 [ 144.864849][ T1117] ? lock_acquire+0x2f/0xb0 [ 144.869410][ T1117] ? __pfx_hub_event+0x10/0x10 [ 144.874214][ T1117] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 144.879880][ T1117] ? rcu_is_watching+0x12/0xc0 [ 144.884686][ T1117] ? trace_lock_acquire+0x14e/0x1f0 [ 144.889927][ T1117] ? process_one_work+0x921/0x1ba0 [ 144.895078][ T1117] ? lock_acquire+0x2f/0xb0 [ 144.899164][ T9] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 144.899591][ T1117] ? process_one_work+0x921/0x1ba0 [ 144.912179][ T1117] process_one_work+0x9c5/0x1ba0 [ 144.917143][ T1117] ? __pfx_hub_event+0x10/0x10 [ 144.921937][ T1117] ? __pfx_process_one_work+0x10/0x10 [ 144.927330][ T1117] ? rcu_is_watching+0x12/0xc0 [ 144.932128][ T1117] ? assign_work+0x1a0/0x250 [ 144.936911][ T1117] worker_thread+0x6c8/0xf00 [ 144.941789][ T1117] ? __kthread_parkme+0x148/0x220 [ 144.946844][ T1117] ? __pfx_worker_thread+0x10/0x10 [ 144.951992][ T1117] kthread+0x2c1/0x3a0 [ 144.956095][ T1117] ? _raw_spin_unlock_irq+0x23/0x50 [ 144.961325][ T1117] ? __pfx_kthread+0x10/0x10 [ 144.965943][ T1117] ret_from_fork+0x45/0x80 [ 144.970407][ T1117] ? __pfx_kthread+0x10/0x10 [ 144.975025][ T1117] ret_from_fork_asm+0x1a/0x30 [ 144.979822][ T1117] [ 144.982862][ T1117] Modules linked in: [ 144.987029][ T1117] ---[ end trace 0000000000000000 ]--- [ 144.992581][ T1117] RIP: 0010:__list_del_entry_valid_or_report+0x141/0x1c0 [ 144.999709][ T1117] Code: db fe 90 0f 0b 48 89 c2 48 c7 c7 a0 18 47 87 e8 75 b1 db fe 90 0f 0b 48 89 d1 48 c7 c7 20 19 47 87 48 89 c2 e8 60 b1 db fe 90 <0f> 0b 48 89 34 24 e8 b4 55 56 ff 48 8b 34 24 e9 d5 fe ff ff 48 89 [ 145.019427][ T1117] RSP: 0018:ffffc90001d9f6f0 EFLAGS: 00010282 [ 145.025523][ T1117] RAX: 000000000000006d RBX: ffffffff89e26640 RCX: ffffffff813aca19 [ 145.033559][ T1117] RDX: 0000000000000000 RSI: ffffffff813b73e6 RDI: 0000000000000005 [ 145.041613][ T1117] RBP: ffff88811a044250 R08: 0000000000000005 R09: 0000000000000000 [ 145.049637][ T1117] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 145.057679][ T1117] R13: ffff88811a044000 R14: ffffffff89e40768 R15: ffff88812bc00000 [ 145.058023][ T9] usb 3-1: Using ep0 maxpacket: 16 [ 145.065705][ T1117] FS: 0000000000000000(0000) GS:ffff8881f5900000(0000) knlGS:0000000000000000 [ 145.065741][ T1117] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 145.072812][ T9] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83 [ 145.080280][ T1117] CR2: 00007ffd1cded2c8 CR3: 0000000116a3c000 CR4: 00000000003506f0 [ 145.080308][ T1117] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 145.086945][ T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 56, changing to 7 [ 145.098396][ T1117] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 145.098426][ T1117] Kernel panic - not syncing: Fatal exception [ 145.106706][ T1117] Kernel Offset: disabled