Debian GNU/Linux 9 syzkaller ttyS0

syzkaller login: [   33.463417][ T4416] cgroup: Unknown subsys name 'perf_event'
[   33.470651][ T4416] cgroup: Unknown subsys name 'net_cls'
[   37.507856][ T4401] can: request_module (can-proto-0) failed.
[   37.520013][ T4401] can: request_module (can-proto-2) failed.
[   37.531561][ T4401] can: request_module (can-proto-0) failed.
[   37.543994][ T4401] can: request_module (can-proto-7) failed.
[   37.556043][ T4401] can: request_module (can-proto-0) failed.
[   37.568004][ T4401] can: request_module (can-proto-1) failed.
Warning: Permanently added '10.128.0.231' (ECDSA) to the list of known hosts.
2021/01/08 14:11:23 parsed 1 programs
2021/01/08 14:11:25 executed programs: 0
[   47.293200][ T5021] cgroup: Unknown subsys name 'perf_event'
[   47.299857][ T5021] cgroup: Unknown subsys name 'net_cls'
[   47.348856][ T5023] cgroup: Unknown subsys name 'perf_event'
[   47.364894][ T5023] cgroup: Unknown subsys name 'net_cls'
[   47.454528][ T5035] cgroup: Unknown subsys name 'perf_event'
[   47.461660][ T5035] cgroup: Unknown subsys name 'net_cls'
[   47.476118][ T5041] cgroup: Unknown subsys name 'perf_event'
[   47.477376][ T5039] cgroup: Unknown subsys name 'perf_event'
[   47.487636][ T5041] cgroup: Unknown subsys name 'net_cls'
[   47.502773][ T5043] cgroup: Unknown subsys name 'perf_event'
[   47.535533][ T5039] cgroup: Unknown subsys name 'net_cls'
[   47.544743][ T5043] cgroup: Unknown subsys name 'net_cls'
[   59.358613][   T32] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   59.618630][   T32] usb 4-1: Using ep0 maxpacket: 16
[   59.669713][   T55] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   59.748755][   T32] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   59.766057][   T32] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   59.777581][   T32] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[   59.787550][   T32] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[   59.797320][   T32] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   59.878758][ T7720] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   59.899367][   T32] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[   59.908766][   T32] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[   59.916785][   T32] usb 4-1: Manufacturer: syz
[   59.928687][   T55] usb 5-1: Using ep0 maxpacket: 16
[   59.955184][   T32] usb 4-1: config 0 descriptor??
[   59.960773][ T7719] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   59.968672][ T7751] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   60.048646][   T55] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   60.059456][   T55] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   60.070557][   T55] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[   60.080506][   T55] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[   60.090224][   T55] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   60.128509][ T7760] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   60.148935][ T7720] usb 1-1: Using ep0 maxpacket: 16
[   60.178604][   T55] usb 5-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[   60.187697][   T55] usb 5-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[   60.195867][   T55] usb 5-1: Manufacturer: syz
[   60.202812][   T55] usb 5-1: config 0 descriptor??
[   60.228480][ T7719] usb 6-1: Using ep0 maxpacket: 16
[   60.233782][ T7751] usb 3-1: Using ep0 maxpacket: 16
[   60.258832][   T32] rc_core: IR keymap rc-hauppauge not found
[   60.265274][   T32] Registered IR keymap rc-empty
[   60.270932][   T32] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[   60.278974][ T7720] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   60.291321][ T7720] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   60.305868][ T7720] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[   60.316483][ T7720] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[   60.326381][ T7720] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   60.339758][   T32] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[   60.369291][   T32] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[   60.383746][   T32] input: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input5
[   60.404253][ T7760] usb 2-1: Using ep0 maxpacket: 16
[   60.409496][ T7751] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   60.419937][ T7719] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   60.430575][ T7720] usb 1-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[   60.439721][ T7720] usb 1-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[   60.447763][ T7720] usb 1-1: Manufacturer: syz
[   60.455270][ T7751] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   60.466408][ T7751] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[   60.476358][ T7751] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[   60.486195][ T7751] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   60.500390][   T32] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[   60.507955][ T7719] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   60.519030][    C1] ================================================================================
[   60.519116][    C1] UBSAN: shift-out-of-bounds in drivers/media/rc/mceusb.c:704:13
[   60.519139][    C1] shift exponent 230 is too large for 32-bit type 'unsigned int'
[   60.519158][    C1] CPU: 1 PID: 7719 Comm: kworker/1:3 Not tainted 5.11.0-rc2-syzkaller #0
[   60.519187][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   60.519206][    C1] Workqueue: usb_hub_wq hub_event
[   60.519238][    C1] Call Trace:
[   60.519246][    C1]  <IRQ>
[   60.519254][    C1]  dump_stack+0x107/0x163
[   60.519284][    C1]  ubsan_epilogue+0xb/0x5a
[   60.519311][    C1]  __ubsan_handle_shift_out_of_bounds.cold+0xb1/0x181
[   60.519346][    C1]  ? lockdep_hardirqs_on_prepare+0x3f0/0x3f0
[   60.519378][    C1]  mceusb_dev_printdata.cold+0x19/0x1e
[   60.519412][    C1]  ? kcov_remote_start+0xb6/0x400
[   60.519438][    C1]  mceusb_dev_recv+0x3cb/0x1990
[   60.519467][    C1]  ? mceusb_tx_ir+0x760/0x760
[   60.519493][    C1]  __usb_hcd_giveback_urb+0x2b0/0x5c0
[   60.519524][    C1]  usb_hcd_giveback_urb+0x38c/0x430
[   60.519552][    C1]  dummy_timer+0x11f4/0x32a0
[   60.519587][    C1]  ? lock_chain_count+0x20/0x20
[   60.519616][    C1]  ? dummy_dequeue+0x4c0/0x4c0
[   60.519648][    C1]  ? dummy_dequeue+0x4c0/0x4c0
[   60.519681][    C1]  call_timer_fn+0x1a5/0x690
[   60.519713][    C1]  ? timer_fixup_init+0x60/0x60
[   60.519739][    C1]  ? lockdep_hardirqs_on_prepare+0x129/0x3f0
[   60.519773][    C1]  ? dummy_dequeue+0x4c0/0x4c0
[   60.519800][    C1]  __run_timers.part.0+0x692/0xa50
[   60.519828][    C1]  ? call_timer_fn+0x690/0x690
[   60.519854][    C1]  ? lapic_next_event+0x4d/0x80
[   60.519879][    C1]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   60.519907][    C1]  ? clockevents_program_event+0x12b/0x3b0
[   60.519934][    C1]  ? mark_held_locks+0x9f/0xe0
[   60.519962][    C1]  run_timer_softirq+0x80/0x120
[   60.519992][    C1]  __do_softirq+0x1b7/0x9c5
[   60.520023][    C1]  asm_call_irq_on_stack+0xf/0x20
[   60.520055][    C1]  </IRQ>
[   60.520064][    C1]  do_softirq_own_stack+0x80/0xa0
[   60.520095][    C1]  __irq_exit_rcu+0x119/0x1b0
[   60.520127][    C1]  irq_exit_rcu+0x5/0x10
[   60.520155][    C1]  sysvec_apic_timer_interrupt+0x43/0xa0
[   60.520185][    C1]  asm_sysvec_apic_timer_interrupt+0x12/0x20
[   60.520215][    C1] RIP: 0010:console_unlock+0x809/0xbf0
[   60.520247][    C1] Code: 00 95 58 87 e8 e8 9b fd ff e8 a3 3f 00 00 31 ff 4c 89 ee e8 99 92 16 00 4d 85 ed 0f 85 23 02 00 00 e8 9b 8a 16 00 ff 34 24 9d <8b> 5c 24 34 31 ff 89 de e8 0a 92 16 00 85 db 0f 84 98 f9 ff ff e8
[   60.520274][    C1] RSP: 0018:ffffc90000c472e0 EFLAGS: 00000293
[   60.520306][    C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[   60.520323][    C1] RDX: ffff8881011e3380 RSI: ffffffff8129c995 RDI: ffffffff8129cbbd
[   60.520342][    C1] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffffff8a0305e7
[   60.520360][    C1] R10: fffffbfff14060bc R11: 0000000000000000 R12: ffffffff82cd28c0
[   60.520379][    C1] R13: 0000000000000200 R14: dffffc0000000000 R15: ffffc90000c47340
[   60.520397][    C1]  ? netconsole_netdev_event+0x340/0x340
[   60.520429][    C1]  ? console_unlock+0x805/0xbf0
[   60.520458][    C1]  ? console_unlock+0xa2d/0xbf0
[   60.520489][    C1]  ? devkmsg_read+0x750/0x750
[   60.520518][    C1]  ? lock_release+0x6e0/0x6e0
[   60.520546][    C1]  ? dev_vprintk_emit+0x36e/0x3b2
[   60.520578][    C1]  vprintk_emit+0x191/0x3e0
[   60.520621][    C1]  dev_vprintk_emit+0x36e/0x3b2
[   60.520651][    C1]  ? dev_attr_show.cold+0x3a/0x3a
[   60.520680][    C1]  dev_printk_emit+0xba/0xf1
[   60.520709][    C1]  ? dev_vprintk_emit+0x3b2/0x3b2
[   60.520738][    C1]  ? _raw_spin_unlock_irq+0x1f/0x30
[   60.520770][    C1]  ? lock_chain_count+0x20/0x20
[   60.520798][    C1]  ? lock_acquire+0x288/0x710
[   60.520825][    C1]  __dev_printk+0xcf/0xf5
[   60.520853][    C1]  _dev_warn+0xd7/0x109
[   60.520881][    C1]  ? dev_err_probe.cold+0x21/0x21
[   60.520910][    C1]  ? rcu_read_lock_sched_held+0x3a/0x70
[   60.520939][    C1]  ? unpoison_range+0x3a/0x60
[   60.520966][    C1]  usb_get_configuration.cold+0x36b/0x14bb
[   60.521000][    C1]  ? usb_destroy_configuration+0x710/0x710
[   60.521034][    C1]  ? usb_new_device+0xee/0x7a0
[   60.521056][    C1]  ? mark_held_locks+0x9f/0xe0
[   60.521079][    C1]  ? lockdep_hardirqs_on_prepare+0x286/0x3f0
[   60.521103][    C1]  usb_new_device+0x42c/0x7a0
[   60.521123][    C1]  ? __mutex_unlock_slowpath+0xe2/0x610
[   60.521157][    C1]  ? hub_disconnect+0x510/0x510
[   60.521183][    C1]  ? rwlock_bug.part.0+0x90/0x90
[   60.521214][    C1]  ? lockdep_hardirqs_on_prepare+0x286/0x3f0
[   60.521244][    C1]  hub_event+0x2348/0x42d0
[   60.521270][    C1]  ? hub_port_debounce+0x3b0/0x3b0
[   60.521296][    C1]  ? mark_held_locks+0xc1/0xe0
[   60.521322][    C1]  ? init_rescuer+0x280/0x350
[   60.521352][    C1]  ? lock_release+0x6e0/0x6e0
[   60.521381][    C1]  ? lock_downgrade+0x6d0/0x6d0
[   60.521407][    C1]  ? do_raw_spin_lock+0x120/0x2b0
[   60.521433][    C1]  process_one_work+0x98d/0x15c0
[   60.521464][    C1]  ? pwq_dec_nr_in_flight+0x320/0x320
[   60.521496][    C1]  ? rwlock_bug.part.0+0x90/0x90
[   60.521526][    C1]  worker_thread+0x64c/0x1120
[   60.521558][    C1]  ? process_one_work+0x15c0/0x15c0
[   60.521589][    C1]  kthread+0x38c/0x460
[   60.521614][    C1]  ? _raw_spin_unlock_irq+0x1f/0x30
[   60.521639][    C1]  ? kthread_create_worker_on_cpu+0xf0/0xf0
[   60.521668][    C1]  ret_from_fork+0x1f/0x30
[   60.521694][    C1] ================================================================================
[   60.521707][    C1] Kernel panic - not syncing: panic_on_warn set ...
[   60.521718][    C1] CPU: 1 PID: 7719 Comm: kworker/1:3 Not tainted 5.11.0-rc2-syzkaller #0
[   60.521745][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   60.521766][    C1] Workqueue: usb_hub_wq hub_event
[   60.521791][    C1] Call Trace:
[   60.521799][    C1]  <IRQ>
[   60.521807][    C1]  dump_stack+0x107/0x163
[   60.521833][    C1]  panic+0x343/0x77f
[   60.521858][    C1]  ? __warn_printk+0xf3/0xf3
[   60.521881][    C1]  ? ret_from_fork+0x1f/0x30
[   60.521904][    C1]  ? ubsan_epilogue+0x3e/0x5a
[   60.521927][    C1]  ubsan_epilogue+0x54/0x5a
[   60.521952][    C1]  __ubsan_handle_shift_out_of_bounds.cold+0xb1/0x181
[   60.521979][    C1]  ? lockdep_hardirqs_on_prepare+0x3f0/0x3f0
[   60.522009][    C1]  mceusb_dev_printdata.cold+0x19/0x1e
[   60.522038][    C1]  ? kcov_remote_start+0xb6/0x400
[   60.522069][    C1]  mceusb_dev_recv+0x3cb/0x1990
[   60.522115][    C1]  ? mceusb_tx_ir+0x760/0x760
[   60.522141][    C1]  __usb_hcd_giveback_urb+0x2b0/0x5c0
[   60.522168][    C1]  usb_hcd_giveback_urb+0x38c/0x430
[   60.522196][    C1]  dummy_timer+0x11f4/0x32a0
[   60.522229][    C1]  ? lock_chain_count+0x20/0x20
[   60.522258][    C1]  ? dummy_dequeue+0x4c0/0x4c0
[   60.522291][    C1]  ? dummy_dequeue+0x4c0/0x4c0
[   60.522321][    C1]  call_timer_fn+0x1a5/0x690
[   60.522353][    C1]  ? timer_fixup_init+0x60/0x60
[   60.522385][    C1]  ? lockdep_hardirqs_on_prepare+0x129/0x3f0
[   60.522418][    C1]  ? dummy_dequeue+0x4c0/0x4c0
[   60.522451][    C1]  __run_timers.part.0+0x692/0xa50
[   60.522485][    C1]  ? call_timer_fn+0x690/0x690
[   60.522516][    C1]  ? lapic_next_event+0x4d/0x80
[   60.522541][    C1]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   60.522569][    C1]  ? clockevents_program_event+0x12b/0x3b0
[   60.522595][    C1]  ? mark_held_locks+0x9f/0xe0
[   60.522622][    C1]  run_timer_softirq+0x80/0x120
[   60.522654][    C1]  __do_softirq+0x1b7/0x9c5
[   60.522683][    C1]  asm_call_irq_on_stack+0xf/0x20
[   60.522714][    C1]  </IRQ>
[   60.522722][    C1]  do_softirq_own_stack+0x80/0xa0
[   60.522761][    C1]  __irq_exit_rcu+0x119/0x1b0
[   60.522793][    C1]  irq_exit_rcu+0x5/0x10
[   60.522822][    C1]  sysvec_apic_timer_interrupt+0x43/0xa0
[   60.522852][    C1]  asm_sysvec_apic_timer_interrupt+0x12/0x20
[   60.522879][    C1] RIP: 0010:console_unlock+0x809/0xbf0
[   60.522910][    C1] Code: 00 95 58 87 e8 e8 9b fd ff e8 a3 3f 00 00 31 ff 4c 89 ee e8 99 92 16 00 4d 85 ed 0f 85 23 02 00 00 e8 9b 8a 16 00 ff 34 24 9d <8b> 5c 24 34 31 ff 89 de e8 0a 92 16 00 85 db 0f 84 98 f9 ff ff e8
[   60.522935][    C1] RSP: 0018:ffffc90000c472e0 EFLAGS: 00000293
[   60.522957][    C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[   60.522974][    C1] RDX: ffff8881011e3380 RSI: ffffffff8129c995 RDI: ffffffff8129cbbd
[   60.522993][    C1] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffffff8a0305e7
[   60.523011][    C1] R10: fffffbfff14060bc R11: 0000000000000000 R12: ffffffff82cd28c0
[   60.523030][    C1] R13: 0000000000000200 R14: dffffc0000000000 R15: ffffc90000c47340
[   60.523048][    C1]  ? netconsole_netdev_event+0x340/0x340
[   60.523082][    C1]  ? console_unlock+0x805/0xbf0
[   60.523112][    C1]  ? console_unlock+0xa2d/0xbf0
[   60.523143][    C1]  ? devkmsg_read+0x750/0x750
[   60.523171][    C1]  ? lock_release+0x6e0/0x6e0
[   60.523212][    C1]  ? dev_vprintk_emit+0x36e/0x3b2
[   60.523241][    C1]  vprintk_emit+0x191/0x3e0
[   60.523270][    C1]  dev_vprintk_emit+0x36e/0x3b2
[   60.523299][    C1]  ? dev_attr_show.cold+0x3a/0x3a
[   60.523328][    C1]  dev_printk_emit+0xba/0xf1
[   60.523356][    C1]  ? dev_vprintk_emit+0x3b2/0x3b2
[   60.523383][    C1]  ? _raw_spin_unlock_irq+0x1f/0x30
[   60.523410][    C1]  ? lock_chain_count+0x20/0x20
[   60.523447][    C1]  ? lock_acquire+0x288/0x710
[   60.523492][    C1]  __dev_printk+0xcf/0xf5
[   60.523516][    C1]  _dev_warn+0xd7/0x109
[   60.523543][    C1]  ? dev_err_probe.cold+0x21/0x21
[   60.523571][    C1]  ? rcu_read_lock_sched_held+0x3a/0x70
[   60.523600][    C1]  ? unpoison_range+0x3a/0x60
[   60.523627][    C1]  usb_get_configuration.cold+0x36b/0x14bb
[   60.523663][    C1]  ? usb_destroy_configuration+0x710/0x710
[   60.523699][    C1]  ? usb_new_device+0xee/0x7a0
[   60.523726][    C1]  ? mark_held_locks+0x9f/0xe0
[   60.523761][    C1]  ? lockdep_hardirqs_on_prepare+0x286/0x3f0
[   60.523791][    C1]  usb_new_device+0x42c/0x7a0
[   60.523817][    C1]  ? __mutex_unlock_slowpath+0xe2/0x610
[   60.523867][    C1]  ? hub_disconnect+0x510/0x510
[   60.523894][    C1]  ? rwlock_bug.part.0+0x90/0x90
[   60.523925][    C1]  ? lockdep_hardirqs_on_prepare+0x286/0x3f0
[   60.523957][    C1]  hub_event+0x2348/0x42d0
[   60.523985][    C1]  ? hub_port_debounce+0x3b0/0x3b0
[   60.524012][    C1]  ? mark_held_locks+0xc1/0xe0
[   60.524040][    C1]  ? init_rescuer+0x280/0x350
[   60.524072][    C1]  ? lock_release+0x6e0/0x6e0
[   60.524100][    C1]  ? lock_downgrade+0x6d0/0x6d0
[   60.524127][    C1]  ? do_raw_spin_lock+0x120/0x2b0
[   60.524159][    C1]  process_one_work+0x98d/0x15c0
[   60.524192][    C1]  ? pwq_dec_nr_in_flight+0x320/0x320
[   60.524226][    C1]  ? rwlock_bug.part.0+0x90/0x90
[   60.524257][    C1]  worker_thread+0x64c/0x1120
[   60.524289][    C1]  ? process_one_work+0x15c0/0x15c0
[   60.524322][    C1]  kthread+0x38c/0x460
[   60.524348][    C1]  ? _raw_spin_unlock_irq+0x1f/0x30
[   60.524376][    C1]  ? kthread_create_worker_on_cpu+0xf0/0xf0
[   60.524408][    C1]  ret_from_fork+0x1f/0x30
[   60.525523][    C1] Kernel Offset: disabled
[   61.569890][    C1] Rebooting in 86400 seconds..