[ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.250' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 56.529457][ T3169] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 56.889565][ T3169] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 56.900899][ T3169] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 56.911123][ T3169] usb 1-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.40 [ 56.920225][ T3169] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 56.934578][ T3169] usb 1-1: config 0 descriptor?? [ 57.425240][ T3169] cm6533_jd 0003:0D8C:0022.0001: No inputs registered, leaving [ 57.440664][ T3169] cm6533_jd 0003:0D8C:0022.0001: hiddev0,hidraw0: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.0-1/input0 [ 57.689759][ T8434] ------------[ cut here ]------------ [ 57.695504][ T8434] usb 1-1: BOGUS control dir, pipe 80000280 doesn't match bRequestType a1 [ 57.704435][ T8434] WARNING: CPU: 0 PID: 8434 at drivers/usb/core/urb.c:410 usb_submit_urb+0x149d/0x18a0 [ 57.714065][ T8434] Modules linked in: [ 57.718008][ T8434] CPU: 0 PID: 8434 Comm: syz-executor752 Not tainted 5.14.0-rc6-syzkaller #0 [ 57.726848][ T8434] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 57.736886][ T8434] RIP: 0010:usb_submit_urb+0x149d/0x18a0 [ 57.742530][ T8434] Code: 7c 24 40 e8 45 64 1f fc 48 8b 7c 24 40 e8 4b fc 0b ff 45 89 e8 44 89 f1 4c 89 e2 48 89 c6 48 c7 c7 e0 b2 27 8a e8 01 fc 91 03 <0f> 0b e9 a5 ee ff ff e8 17 64 1f fc 0f b6 1d 19 ca 01 08 31 ff 41 [ 57.762590][ T8434] RSP: 0018:ffffc90000effbd0 EFLAGS: 00010082 [ 57.768896][ T8434] RAX: 0000000000000000 RBX: ffff888027944058 RCX: 0000000000000000 [ 57.776933][ T8434] RDX: ffff8880235db880 RSI: ffffffff815d85c5 RDI: fffff520001dff6c [ 57.784888][ T8434] RBP: ffff888021618140 R08: 0000000000000000 R09: 0000000000000000 [ 57.794739][ T8434] R10: ffffffff815d23fe R11: 0000000000000000 R12: ffff888018aff118 [ 57.802963][ T8434] R13: 00000000000000a1 R14: 0000000080000280 R15: ffff888021900400 [ 57.811090][ T8434] FS: 000000000223d300(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000 [ 57.820522][ T8434] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 57.827088][ T8434] CR2: 00005614a6c2a160 CR3: 00000000222ca000 CR4: 0000000000350ef0 [ 57.835565][ T8434] Call Trace: [ 57.839287][ T8434] hid_submit_ctrl+0x6ec/0xd80 [ 57.844142][ T8434] usbhid_restart_ctrl_queue.isra.0+0x244/0x3a0 [ 57.850391][ T8434] __usbhid_submit_report+0x6f0/0xd50 [ 57.855768][ T8434] usbhid_init_reports+0xd7/0x3b0 [ 57.860879][ T8434] hiddev_ioctl+0xb27/0x1630 [ 57.865452][ T8434] ? hiddev_ioctl_string.constprop.0.isra.0+0x1f0/0x1f0 [ 57.872912][ T8434] ? find_held_lock+0x2d/0x110 [ 57.877664][ T8434] ? __context_tracking_exit+0xb8/0xe0 [ 57.883108][ T8434] ? lock_downgrade+0x6e0/0x6e0 [ 57.888203][ T8434] ? lock_downgrade+0x6e0/0x6e0 [ 57.893127][ T8434] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 57.899350][ T8434] ? hiddev_ioctl_string.constprop.0.isra.0+0x1f0/0x1f0 [ 57.906269][ T8434] __x64_sys_ioctl+0x193/0x200 [ 57.911019][ T8434] do_syscall_64+0x35/0xb0 [ 57.915604][ T8434] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 57.921478][ T8434] RIP: 0033:0x444619 [ 57.925441][ T8434] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 57.945464][ T8434] RSP: 002b:00007ffe70eb96d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 57.953882][ T8434] RAX: ffffffffffffffda RBX: 00000000004004a0 RCX: 0000000000444619 [ 57.961835][ T8434] RDX: 0000000000000000 RSI: 0000000000004805 RDI: 0000000000000004 [ 57.970305][ T8434] RBP: 0000000000403ea0 R08: 0000000000000001 R09: 00000000004004a0 [ 57.978344][ T8434] R10: 000000000000001f R11: 0000000000000246 R12: 0000000000403f30 [ 57.986451][ T8434] R13: 0000000000000000 R14: 00000000004b2018 R15: 00000000004004a0 [ 57.994414][ T8434] Kernel panic - not syncing: panic_on_warn set ... [ 58.000974][ T8434] CPU: 0 PID: 8434 Comm: syz-executor752 Not tainted 5.14.0-rc6-syzkaller #0 [ 58.009710][ T8434] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 58.019747][ T8434] Call Trace: [ 58.023007][ T8434] dump_stack_lvl+0xcd/0x134 [ 58.027584][ T8434] panic+0x306/0x73d [ 58.031633][ T8434] ? __warn_printk+0xf3/0xf3 [ 58.036209][ T8434] ? __warn.cold+0x1a/0x44 [ 58.040605][ T8434] ? usb_submit_urb+0x149d/0x18a0 [ 58.045636][ T8434] __warn.cold+0x35/0x44 [ 58.049855][ T8434] ? usb_submit_urb+0x149d/0x18a0 [ 58.054861][ T8434] report_bug+0x1bd/0x210 [ 58.059175][ T8434] handle_bug+0x3c/0x60 [ 58.063316][ T8434] exc_invalid_op+0x14/0x40 [ 58.067902][ T8434] asm_exc_invalid_op+0x12/0x20 [ 58.072820][ T8434] RIP: 0010:usb_submit_urb+0x149d/0x18a0 [ 58.078435][ T8434] Code: 7c 24 40 e8 45 64 1f fc 48 8b 7c 24 40 e8 4b fc 0b ff 45 89 e8 44 89 f1 4c 89 e2 48 89 c6 48 c7 c7 e0 b2 27 8a e8 01 fc 91 03 <0f> 0b e9 a5 ee ff ff e8 17 64 1f fc 0f b6 1d 19 ca 01 08 31 ff 41 [ 58.098106][ T8434] RSP: 0018:ffffc90000effbd0 EFLAGS: 00010082 [ 58.104154][ T8434] RAX: 0000000000000000 RBX: ffff888027944058 RCX: 0000000000000000 [ 58.112104][ T8434] RDX: ffff8880235db880 RSI: ffffffff815d85c5 RDI: fffff520001dff6c [ 58.120054][ T8434] RBP: ffff888021618140 R08: 0000000000000000 R09: 0000000000000000 [ 58.128004][ T8434] R10: ffffffff815d23fe R11: 0000000000000000 R12: ffff888018aff118 [ 58.137429][ T8434] R13: 00000000000000a1 R14: 0000000080000280 R15: ffff888021900400 [ 58.145730][ T8434] ? wake_up_klogd.part.0+0x8e/0xd0 [ 58.150913][ T8434] ? vprintk+0x95/0x260 [ 58.155232][ T8434] hid_submit_ctrl+0x6ec/0xd80 [ 58.160066][ T8434] usbhid_restart_ctrl_queue.isra.0+0x244/0x3a0 [ 58.166379][ T8434] __usbhid_submit_report+0x6f0/0xd50 [ 58.171730][ T8434] usbhid_init_reports+0xd7/0x3b0 [ 58.176737][ T8434] hiddev_ioctl+0xb27/0x1630 [ 58.181303][ T8434] ? hiddev_ioctl_string.constprop.0.isra.0+0x1f0/0x1f0 [ 58.188221][ T8434] ? find_held_lock+0x2d/0x110 [ 58.193575][ T8434] ? __context_tracking_exit+0xb8/0xe0 [ 58.199016][ T8434] ? lock_downgrade+0x6e0/0x6e0 [ 58.203845][ T8434] ? lock_downgrade+0x6e0/0x6e0 [ 58.208767][ T8434] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 58.214985][ T8434] ? hiddev_ioctl_string.constprop.0.isra.0+0x1f0/0x1f0 [ 58.221899][ T8434] __x64_sys_ioctl+0x193/0x200 [ 58.226645][ T8434] do_syscall_64+0x35/0xb0 [ 58.231043][ T8434] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 58.237002][ T8434] RIP: 0033:0x444619 [ 58.240877][ T8434] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 58.260640][ T8434] RSP: 002b:00007ffe70eb96d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 58.269032][ T8434] RAX: ffffffffffffffda RBX: 00000000004004a0 RCX: 0000000000444619 [ 58.276984][ T8434] RDX: 0000000000000000 RSI: 0000000000004805 RDI: 0000000000000004 [ 58.285049][ T8434] RBP: 0000000000403ea0 R08: 0000000000000001 R09: 00000000004004a0 [ 58.293000][ T8434] R10: 000000000000001f R11: 0000000000000246 R12: 0000000000403f30 [ 58.301048][ T8434] R13: 0000000000000000 R14: 00000000004b2018 R15: 00000000004004a0 [ 58.316220][ T8434] Kernel Offset: disabled [ 58.320689][ T8434] Rebooting in 86400 seconds..