Warning: Permanently added '10.128.0.252' (ED25519) to the list of known hosts. 2024/05/22 11:40:17 ignoring optional flag "sandboxArg"="0" 2024/05/22 11:40:17 parsed 1 programs [ 48.735656][ T2967] cgroup: Unknown subsys name 'net' [ 48.880170][ T2967] cgroup: Unknown subsys name 'rlimit' [ 50.514671][ T2979] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 52.496174][ T3018] veth0_vlan: entered promiscuous mode 2024/05/22 11:40:21 executed programs: 0 [ 52.950764][ T34] veth0_vlan: left promiscuous mode [ 54.361836][ T3197] veth0_vlan: entered promiscuous mode [ 54.986693][ T2998] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 55.346667][ T2998] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 55.357715][ T2998] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 55.367540][ T2998] usb 1-1: New USB device found, idVendor=0b05, idProduct=19b6, bcdDevice= 0.00 [ 55.376603][ T2998] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 55.385445][ T2998] usb 1-1: config 0 descriptor?? [ 55.868149][ T2998] ================================================================== [ 55.876265][ T2998] BUG: KASAN: slab-out-of-bounds in asus_report_fixup+0x489/0xad0 [ 55.884241][ T2998] Read of size 1 at addr ffff888114ed5325 by task kworker/0:3/2998 [ 55.892110][ T2998] [ 55.894506][ T2998] CPU: 0 PID: 2998 Comm: kworker/0:3 Not tainted 6.8.0-syzkaller #0 [ 55.902487][ T2998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 55.912621][ T2998] Workqueue: usb_hub_wq hub_event [ 55.917631][ T2998] Call Trace: [ 55.920895][ T2998] [ 55.923806][ T2998] dump_stack_lvl+0x108/0x280 [ 55.928492][ T2998] ? __pfx_dump_stack_lvl+0x10/0x10 [ 55.933677][ T2998] ? __pfx__printk+0x10/0x10 [ 55.938252][ T2998] ? _printk+0xce/0x120 [ 55.942395][ T2998] ? __virt_addr_valid+0x141/0x260 [ 55.947495][ T2998] ? __virt_addr_valid+0x219/0x260 [ 55.952669][ T2998] print_report+0x169/0x550 [ 55.957149][ T2998] ? __virt_addr_valid+0x141/0x260 [ 55.962312][ T2998] ? __virt_addr_valid+0x219/0x260 [ 55.967515][ T2998] ? asus_report_fixup+0x489/0xad0 [ 55.972629][ T2998] kasan_report+0x143/0x180 [ 55.977124][ T2998] ? asus_report_fixup+0x489/0xad0 [ 55.982239][ T2998] asus_report_fixup+0x489/0xad0 [ 55.987163][ T2998] ? __asan_memcpy+0x40/0x70 [ 55.991755][ T2998] hid_open_report+0x1e3/0x1660 [ 55.996597][ T2998] ? _raw_spin_unlock_irqrestore+0xcf/0x130 [ 56.002484][ T2998] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 56.008833][ T2998] ? __pfx_hid_open_report+0x10/0x10 [ 56.014115][ T2998] asus_probe+0x6f2/0xa50 [ 56.018428][ T2998] ? __pfx_asus_probe+0x10/0x10 [ 56.023268][ T2998] ? devres_open_group+0x2ea/0x350 [ 56.028363][ T2998] hid_device_probe+0x269/0x430 [ 56.033202][ T2998] really_probe+0x2e9/0xa60 [ 56.037789][ T2998] __driver_probe_device+0x138/0x350 [ 56.043078][ T2998] ? hid_match_device+0x312/0x610 [ 56.048268][ T2998] driver_probe_device+0x4b/0x3a0 [ 56.053297][ T2998] __device_attach_driver+0x2d0/0x400 [ 56.058650][ T2998] ? __pfx___device_attach_driver+0x10/0x10 [ 56.064512][ T2998] bus_for_each_drv+0x215/0x280 [ 56.069338][ T2998] ? __pfx___device_attach_driver+0x10/0x10 [ 56.075217][ T2998] ? __pfx_bus_for_each_drv+0x10/0x10 [ 56.080590][ T2998] __device_attach+0x248/0x430 [ 56.085339][ T2998] ? __pfx_lock_release+0x10/0x10 [ 56.090354][ T2998] ? __pfx___device_attach+0x10/0x10 [ 56.095709][ T2998] ? do_raw_spin_unlock+0x13c/0x8b0 [ 56.100887][ T2998] bus_probe_device+0x12e/0x210 [ 56.105719][ T2998] device_add+0x554/0x9b0 [ 56.110127][ T2998] hid_add_device+0x2cf/0x430 [ 56.114870][ T2998] usbhid_probe+0x984/0xcb0 [ 56.119436][ T2998] usb_probe_interface+0x4a7/0x9b0 [ 56.124543][ T2998] really_probe+0x2e9/0xa60 [ 56.129025][ T2998] __driver_probe_device+0x138/0x350 [ 56.134301][ T2998] driver_probe_device+0x4b/0x3a0 [ 56.139313][ T2998] __device_attach_driver+0x2d0/0x400 [ 56.144659][ T2998] ? __pfx___device_attach_driver+0x10/0x10 [ 56.150539][ T2998] bus_for_each_drv+0x215/0x280 [ 56.155629][ T2998] ? __pfx___device_attach_driver+0x10/0x10 [ 56.163591][ T2998] ? __pfx_bus_for_each_drv+0x10/0x10 [ 56.169044][ T2998] __device_attach+0x248/0x430 [ 56.173893][ T2998] ? __pfx_lock_release+0x10/0x10 [ 56.179135][ T2998] ? __pfx___device_attach+0x10/0x10 [ 56.184420][ T2998] ? do_raw_spin_unlock+0x13c/0x8b0 [ 56.189604][ T2998] bus_probe_device+0x12e/0x210 [ 56.194434][ T2998] device_add+0x554/0x9b0 [ 56.198833][ T2998] usb_set_configuration+0x17f8/0x1dc0 [ 56.204378][ T2998] usb_generic_driver_probe+0x65/0x100 [ 56.209821][ T2998] usb_probe_device+0xd5/0x240 [ 56.214563][ T2998] really_probe+0x2e9/0xa60 [ 56.219043][ T2998] __driver_probe_device+0x138/0x350 [ 56.224312][ T2998] driver_probe_device+0x4b/0x3a0 [ 56.229314][ T2998] __device_attach_driver+0x2d0/0x400 [ 56.234838][ T2998] ? __pfx___device_attach_driver+0x10/0x10 [ 56.240716][ T2998] bus_for_each_drv+0x215/0x280 [ 56.245542][ T2998] ? __pfx___device_attach_driver+0x10/0x10 [ 56.251405][ T2998] ? __pfx_bus_for_each_drv+0x10/0x10 [ 56.256762][ T2998] __device_attach+0x248/0x430 [ 56.261511][ T2998] ? __pfx_lock_release+0x10/0x10 [ 56.266512][ T2998] ? __pfx___device_attach+0x10/0x10 [ 56.271767][ T2998] ? do_raw_spin_unlock+0x13c/0x8b0 [ 56.276941][ T2998] bus_probe_device+0x12e/0x210 [ 56.281892][ T2998] device_add+0x554/0x9b0 [ 56.286289][ T2998] usb_new_device+0xc78/0x17e0 [ 56.291028][ T2998] ? __pfx_usb_new_device+0x10/0x10 [ 56.296289][ T2998] ? do_raw_spin_unlock+0x13c/0x8b0 [ 56.301477][ T2998] hub_event+0x22f4/0x4190 [ 56.305886][ T2998] ? __pfx_hub_event+0x10/0x10 [ 56.310671][ T2998] ? __pfx_lock_acquire+0x10/0x10 [ 56.315690][ T2998] ? do_raw_spin_unlock+0x13c/0x8b0 [ 56.320873][ T2998] ? kick_pool+0x70/0x550 [ 56.325173][ T2998] ? process_scheduled_works+0x833/0x12f0 [ 56.330985][ T2998] process_scheduled_works+0x8b6/0x12f0 [ 56.336528][ T2998] ? __pfx_process_scheduled_works+0x10/0x10 [ 56.342489][ T2998] ? assign_work+0x23f/0x350 [ 56.347054][ T2998] worker_thread+0x869/0xca0 [ 56.351726][ T2998] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 56.358030][ T2998] ? _raw_spin_unlock_irqrestore+0xcf/0x130 [ 56.363898][ T2998] ? __pfx_worker_thread+0x10/0x10 [ 56.369109][ T2998] kthread+0x268/0x2c0 [ 56.373156][ T2998] ? __pfx_worker_thread+0x10/0x10 [ 56.378332][ T2998] ? __pfx_kthread+0x10/0x10 [ 56.383418][ T2998] ret_from_fork+0x32/0x60 [ 56.387807][ T2998] ? __pfx_kthread+0x10/0x10 [ 56.392369][ T2998] ret_from_fork_asm+0x1a/0x30 [ 56.397110][ T2998] [ 56.400110][ T2998] [ 56.402420][ T2998] Allocated by task 2998: [ 56.406745][ T2998] kasan_save_track+0x3f/0x80 [ 56.411412][ T2998] __kasan_kmalloc+0x98/0xb0 [ 56.415994][ T2998] __kmalloc_node_track_caller+0x22f/0x4b0 [ 56.421786][ T2998] kmemdup+0x23/0x50 [ 56.425661][ T2998] hid_open_report+0x156/0x1660 [ 56.430498][ T2998] asus_probe+0x6f2/0xa50 [ 56.434820][ T2998] hid_device_probe+0x269/0x430 [ 56.439658][ T2998] really_probe+0x2e9/0xa60 [ 56.444166][ T2998] __driver_probe_device+0x138/0x350 [ 56.449539][ T2998] driver_probe_device+0x4b/0x3a0 [ 56.454551][ T2998] __device_attach_driver+0x2d0/0x400 [ 56.459899][ T2998] bus_for_each_drv+0x215/0x280 [ 56.464826][ T2998] __device_attach+0x248/0x430 [ 56.469824][ T2998] bus_probe_device+0x12e/0x210 [ 56.474741][ T2998] device_add+0x554/0x9b0 [ 56.479066][ T2998] hid_add_device+0x2cf/0x430 [ 56.483733][ T2998] usbhid_probe+0x984/0xcb0 [ 56.488309][ T2998] usb_probe_interface+0x4a7/0x9b0 [ 56.493527][ T2998] really_probe+0x2e9/0xa60 [ 56.498014][ T2998] __driver_probe_device+0x138/0x350 [ 56.503485][ T2998] driver_probe_device+0x4b/0x3a0 [ 56.508594][ T2998] __device_attach_driver+0x2d0/0x400 [ 56.514125][ T2998] bus_for_each_drv+0x215/0x280 [ 56.519067][ T2998] __device_attach+0x248/0x430 [ 56.523910][ T2998] bus_probe_device+0x12e/0x210 [ 56.528837][ T2998] device_add+0x554/0x9b0 [ 56.533430][ T2998] usb_set_configuration+0x17f8/0x1dc0 [ 56.539409][ T2998] usb_generic_driver_probe+0x65/0x100 [ 56.544864][ T2998] usb_probe_device+0xd5/0x240 [ 56.549719][ T2998] really_probe+0x2e9/0xa60 [ 56.554300][ T2998] __driver_probe_device+0x138/0x350 [ 56.559563][ T2998] driver_probe_device+0x4b/0x3a0 [ 56.564597][ T2998] __device_attach_driver+0x2d0/0x400 [ 56.569954][ T2998] bus_for_each_drv+0x215/0x280 [ 56.574788][ T2998] __device_attach+0x248/0x430 [ 56.579544][ T2998] bus_probe_device+0x12e/0x210 [ 56.584396][ T2998] device_add+0x554/0x9b0 [ 56.588728][ T2998] usb_new_device+0xc78/0x17e0 [ 56.593674][ T2998] hub_event+0x22f4/0x4190 [ 56.598072][ T2998] process_scheduled_works+0x8b6/0x12f0 [ 56.603855][ T2998] worker_thread+0x869/0xca0 [ 56.608573][ T2998] kthread+0x268/0x2c0 [ 56.612617][ T2998] ret_from_fork+0x32/0x60 [ 56.617181][ T2998] ret_from_fork_asm+0x1a/0x30 [ 56.621929][ T2998] [ 56.624317][ T2998] The buggy address belongs to the object at ffff888114ed5320 [ 56.624317][ T2998] which belongs to the cache kmalloc-8 of size 8 [ 56.637997][ T2998] The buggy address is located 0 bytes to the right of [ 56.637997][ T2998] allocated 5-byte region [ffff888114ed5320, ffff888114ed5325) [ 56.652316][ T2998] [ 56.654625][ T2998] The buggy address belongs to the physical page: [ 56.661016][ T2998] page:ffffea000453b540 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x114ed5 [ 56.671222][ T2998] flags: 0x100000000000800(slab|node=0|zone=2) [ 56.677350][ T2998] page_type: 0xffffffff() [ 56.681655][ T2998] raw: 0100000000000800 ffff888100041280 dead000000000100 dead000000000122 [ 56.690396][ T2998] raw: 0000000000000000 0000000080800080 00000001ffffffff 0000000000000000 [ 56.698971][ T2998] page dumped because: kasan: bad access detected [ 56.705379][ T2998] page_owner tracks the page as allocated [ 56.711174][ T2998] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY), pid 1, tgid 1 (swapper/0), ts 5560142432, free_ts 0 [ 56.727839][ T2998] post_alloc_hook+0x10f/0x130 [ 56.732760][ T2998] get_page_from_freelist+0x345c/0x3600 [ 56.738282][ T2998] __alloc_pages+0x256/0x650 [ 56.742845][ T2998] alloc_slab_page+0x5f/0x160 [ 56.747586][ T2998] new_slab+0x70/0x270 [ 56.751630][ T2998] ___slab_alloc+0xb0d/0x1040 [ 56.756290][ T2998] kmalloc_trace+0x254/0x3a0 [ 56.760860][ T2998] add_sysfs_param+0x592/0x880 [ 56.765595][ T2998] kernel_add_sysfs_param+0x81/0xe0 [ 56.770834][ T2998] param_sysfs_builtin+0x149/0x1c0 [ 56.775955][ T2998] param_sysfs_builtin_init+0x22/0x30 [ 56.781317][ T2998] do_one_initcall+0x196/0x4d0 [ 56.786149][ T2998] do_initcall_level+0x11e/0x1e0 [ 56.791064][ T2998] do_initcalls+0x3e/0x70 [ 56.795371][ T2998] kernel_init_freeable+0x365/0x4c0 [ 56.800741][ T2998] kernel_init+0x18/0x1a0 [ 56.805143][ T2998] page_owner free stack trace missing [ 56.810484][ T2998] [ 56.812784][ T2998] Memory state around the buggy address: [ 56.818417][ T2998] ffff888114ed5200: fa fc fc fc fa fc fc fc fa fc fc fc fa fc fc fc [ 56.826539][ T2998] ffff888114ed5280: fa fc fc fc fa fc fc fc fa fc fc fc fa fc fc fc [ 56.834582][ T2998] >ffff888114ed5300: fa fc fc fc 05 fc fc fc 05 fc fc fc fa fc fc fc [ 56.842702][ T2998] ^ [ 56.847861][ T2998] ffff888114ed5380: fa fc fc fc fa fc fc fc 00 fc fc fc 07 fc fc fc [ 56.855901][ T2998] ffff888114ed5400: 07 fc fc fc fa fc fc fc 00 fc fc fc 00 fc fc fc [ 56.864023][ T2998] ================================================================== [ 56.872541][ T2998] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 56.880072][ T2998] Kernel Offset: disabled [ 56.884462][ T2998] Rebooting in 86400 seconds..