Warning: Permanently added '10.128.0.221' (ECDSA) to the list of known hosts.
2023/06/22 03:54:31 ignoring optional flag "sandboxArg"="0"
2023/06/22 03:54:31 parsed 1 programs
2023/06/22 03:54:32 executed programs: 0
[   74.353119][    T9] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   74.592938][    T9] usb 1-1: Using ep0 maxpacket: 16
[   74.712987][    T9] usb 1-1: config 0 has an invalid interface number: 138 but max is 1
[   74.721315][    T9] usb 1-1: config 0 has no interface number 1
[   74.727818][    T9] usb 1-1: config 0 interface 138 altsetting 9 has an invalid endpoint with address 0x0, skipping
[   74.738469][    T9] usb 1-1: config 0 interface 138 has no altsetting 0
[   74.903170][    T9] usb 1-1: New USB device found, idVendor=11ba, idProduct=1003, bcdDevice=3b.05
[   74.912319][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   74.920339][    T9] usb 1-1: Product: syz
[   74.924519][    T9] usb 1-1: Manufacturer: syz
[   74.929134][    T9] usb 1-1: SerialNumber: syz
[   74.939580][    T9] usb 1-1: config 0 descriptor??
[   74.995639][    T9] pvrusb2: Hardware description: OnAir Creator Hybrid USB tuner
[   75.003766][    T9] usb 1-1: selecting invalid altsetting 0
[   75.013248][    T9] pvrusb2: Hardware description: OnAir Creator Hybrid USB tuner
[   75.226032][  T876] pvrusb2: Invalid read control endpoint
[   75.232005][  T876] ------------[ cut here ]------------
[   75.237686][  T876] URB ffff88810e3cbb00 submitted while active
[   75.244479][  T876] WARNING: CPU: 1 PID: 876 at drivers/usb/core/urb.c:379 usb_submit_urb+0x14ec/0x1880
[   75.255436][  T876] Modules linked in:
[   75.259619][  T876] CPU: 1 PID: 876 Comm: pvrusb2-context Not tainted 6.4.0-rc5-syzkaller-00265-ge4cf7f195d60 #0
[   75.270650][  T876] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023
[   75.281169][  T876] RIP: 0010:usb_submit_urb+0x14ec/0x1880
[   75.287373][  T876] Code: 89 de e8 87 9f 5a fd 84 db 0f 85 a3 f3 ff ff e8 9a a3 5a fd 4c 89 fe 48 c7 c7 00 42 cc 86 c6 05 8d 6d 0b 05 01 e8 44 c1 25 fd <0f> 0b e9 81 f3 ff ff 48 89 7c 24 40 e8 73 a3 5a fd 48 8b 7c 24 40
[   75.308544][  T876] RSP: 0018:ffffc900026cef10 EFLAGS: 00010286
[   75.314754][  T876] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[   75.323769][  T876] RDX: ffff888108b9ba00 RSI: ffffffff81164617 RDI: 0000000000000001
[   75.333071][  T876] RBP: 00000000c0008200 R08: 0000000000000001 R09: 0000000000000000
[   75.343676][  T876] R10: 0000000000000001 R11: 0000000000000001 R12: ffff888109e68000
[   75.352214][  T876] R13: 0000000000000005 R14: 00000000fffffff0 R15: ffff88810e3cbb00
[   75.360605][  T876] FS:  0000000000000000(0000) GS:ffff8881f6700000(0000) knlGS:0000000000000000
[   75.370810][  T876] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   75.377655][  T876] CR2: 00000000200010c0 CR3: 0000000107bdd000 CR4: 00000000003506e0
[   75.385715][  T876] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   75.394187][  T876] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   75.402361][  T876] Call Trace:
[   75.406300][  T876]  <TASK>
[   75.409708][  T876]  ? __warn+0xe6/0x390
[   75.414143][  T876]  ? usb_submit_urb+0x14ec/0x1880
[   75.419746][  T876]  ? report_bug+0x2da/0x500
[   75.424934][  T876]  ? handle_bug+0x3c/0x70
[   75.430540][  T876]  ? exc_invalid_op+0x18/0x50
[   75.431366][    T9] usb 1-1: USB disconnect, device number 2
[   75.435744][  T876]  ? asm_exc_invalid_op+0x1a/0x20
[   75.448054][  T876]  ? __warn_printk+0x187/0x310
[   75.453879][  T876]  ? usb_submit_urb+0x14ec/0x1880
[   75.459735][  T876]  ? lockdep_init_map_type+0x21e/0x810
[   75.465419][  T876]  ? pvr2_ctl_write_complete+0xe0/0xe0
[   75.470940][  T876]  ? init_timer_on_stack_key+0xdc/0x110
[   75.476745][  T876]  pvr2_send_request_ex+0x7c2/0x2230
[   75.482330][  T876]  ? pvr2_hdw_render_useless.part.0+0x2d0/0x2d0
[   75.489108][  T876]  ? pvr2_ctl_write_complete+0xe0/0xe0
[   75.494727][  T876]  ? stack_trace_save+0x90/0xc0
[   75.499599][  T876]  ? filter_irq_stacks+0x90/0x90
[   75.504697][  T876]  pvr2_send_request+0x39/0x50
[   75.509691][  T876]  pvr2_i2c_read+0x200/0x6c0
[   75.514383][  T876]  pvr2_i2c_basic_op+0xb6/0xf0
[   75.519553][  T876]  pvr2_i2c_xfer+0x405/0xfc0
[   75.524399][  T876]  ? pvr2_i2c_write+0x4b0/0x4b0
[   75.529472][  T876]  __i2c_transfer+0x639/0x1f70
[   75.534584][  T876]  i2c_smbus_xfer_emulated+0x2f6/0x11e0
[   75.540539][  T876]  ? __ww_mutex_lock.constprop.0+0x14c0/0x2f30
[   75.546958][  T876]  ? lock_downgrade+0x690/0x690
[   75.551957][  T876]  ? i2c_smbus_msg_pec.isra.0+0x140/0x140
[   75.557743][  T876]  ? mark_held_locks+0x9f/0xe0
[   75.562621][  T876]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[   75.568503][  T876]  ? lockdep_hardirqs_on+0x7d/0x100
[   75.573765][  T876]  ? _raw_spin_unlock_irqrestore+0x41/0x70
[   75.579618][  T876]  ? rt_mutex_slowlock.constprop.0+0x1f0/0x630
[   75.585955][  T876]  ? task_blocks_on_rt_mutex.constprop.0.isra.0+0xf50/0xf50
[   75.593331][  T876]  __i2c_smbus_xfer+0x508/0xe50
[   75.598201][  T876]  i2c_smbus_xfer+0x104/0x380
[   75.602958][  T876]  i2c_smbus_read_byte_data+0x10b/0x1c0
[   75.608543][  T876]  ? i2c_smbus_write_byte+0xe0/0xe0
[   75.613900][  T876]  ? find_held_lock+0x2d/0x110
[   75.618884][  T876]  saa711x_probe+0x1f4/0x1f70
[   75.623765][  T876]  ? saa711x_s_std+0x70/0x70
[   75.628432][  T876]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[   75.634719][  T876]  ? lockdep_hardirqs_on+0x7d/0x100
[   75.639960][  T876]  ? _raw_spin_unlock_irqrestore+0x41/0x70
[   75.645926][  T876]  ? devres_open_group+0x3b0/0x550
[   75.651133][  T876]  ? saa711x_s_std+0x70/0x70
[   75.655843][  T876]  i2c_device_probe+0x4ca/0xb60
[   75.660829][  T876]  ? i2c_device_remove+0x230/0x230
[   75.666030][  T876]  ? sysfs_create_link+0x6b/0xc0
[   75.671006][  T876]  ? i2c_device_remove+0x230/0x230
[   75.676530][  T876]  really_probe+0x240/0xca0
[   75.681341][  T876]  __driver_probe_device+0x1df/0x4b0
[   75.686809][  T876]  driver_probe_device+0x4c/0x1a0
[   75.692232][  T876]  __device_attach_driver+0x1d4/0x2e0
[   75.697946][  T876]  bus_for_each_drv+0x149/0x1d0
[   75.702915][  T876]  ? driver_probe_device+0x1a0/0x1a0
[   75.708754][  T876]  ? bus_for_each_dev+0x1c0/0x1c0
[   75.713992][  T876]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[   75.720114][  T876]  ? lockdep_hardirqs_on+0x7d/0x100
[   75.725961][  T876]  ? _raw_spin_unlock_irqrestore+0x41/0x70
[   75.732691][  T876]  __device_attach+0x1e4/0x4b0
[   75.738142][  T876]  ? device_driver_attach+0x210/0x210
[   75.743663][  T876]  ? do_raw_spin_unlock+0x175/0x230
[   75.748893][  T876]  bus_probe_device+0x17c/0x1c0
[   75.753802][  T876]  device_add+0x112d/0x1a40
[   75.758442][  T876]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[   75.765729][  T876]  ? __init_waitqueue_head+0xca/0x150
[   75.771160][  T876]  i2c_new_client_device+0x61f/0xbd0
[   75.776573][  T876]  v4l2_i2c_new_subdev_board+0xb3/0x2c0
[   75.782261][  T876]  v4l2_i2c_new_subdev+0x118/0x1a0
[   75.787662][  T876]  ? v4l2_i2c_new_subdev_board+0x2c0/0x2c0
[   75.793679][  T876]  ? find_held_lock+0x2d/0x110
[   75.798483][  T876]  pvr2_hdw_initialize+0xd34/0x4320
[   75.804224][  T876]  ? pvr2_hdw_gpio_chg_dir+0x220/0x220
[   75.809736][  T876]  ? __mutex_unlock_slowpath+0x157/0x5e0
[   75.815434][  T876]  ? bit_wait_timeout+0x160/0x160
[   75.820836][  T876]  ? lock_downgrade+0x690/0x690
[   75.826758][  T876]  ? _raw_spin_lock_irqsave+0x52/0x60
[   75.832272][  T876]  pvr2_context_thread_func+0x254/0x8e0
[   75.838103][  T876]  ? pvr2_context_destroy+0x270/0x270
[   75.843892][  T876]  ? prepare_to_swait_exclusive+0x240/0x240
[   75.850061][  T876]  ? __kthread_parkme+0x163/0x220
[   75.855246][  T876]  ? pvr2_context_destroy+0x270/0x270
[   75.860877][  T876]  kthread+0x344/0x440
[   75.865023][  T876]  ? kthread_complete_and_exit+0x40/0x40
[   75.870780][  T876]  ret_from_fork+0x1f/0x30
[   75.875441][  T876]  </TASK>
2023/06/22 03:54:43 executed programs: 1
[   75.878648][  T876] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   75.886024][  T876] CPU: 1 PID: 876 Comm: pvrusb2-context Not tainted 6.4.0-rc5-syzkaller-00265-ge4cf7f195d60 #0
[   75.896571][  T876] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023
[   75.906723][  T876] Call Trace:
[   75.910196][  T876]  <TASK>
[   75.913146][  T876]  dump_stack_lvl+0xd9/0x150
[   75.917899][  T876]  panic+0x686/0x730
[   75.921835][  T876]  ? panic_smp_self_stop+0xa0/0xa0
[   75.927165][  T876]  ? show_trace_log_lvl+0x284/0x390
[   75.932764][  T876]  ? usb_submit_urb+0x14ec/0x1880
[   75.938173][  T876]  check_panic_on_warn+0xb1/0xc0
[   75.943564][  T876]  __warn+0xf2/0x390
[   75.947659][  T876]  ? usb_submit_urb+0x14ec/0x1880
[   75.952703][  T876]  report_bug+0x2da/0x500
[   75.957140][  T876]  handle_bug+0x3c/0x70
[   75.961430][  T876]  exc_invalid_op+0x18/0x50
[   75.966005][  T876]  asm_exc_invalid_op+0x1a/0x20
[   75.970925][  T876] RIP: 0010:usb_submit_urb+0x14ec/0x1880
[   75.977045][  T876] Code: 89 de e8 87 9f 5a fd 84 db 0f 85 a3 f3 ff ff e8 9a a3 5a fd 4c 89 fe 48 c7 c7 00 42 cc 86 c6 05 8d 6d 0b 05 01 e8 44 c1 25 fd <0f> 0b e9 81 f3 ff ff 48 89 7c 24 40 e8 73 a3 5a fd 48 8b 7c 24 40
[   75.997904][  T876] RSP: 0018:ffffc900026cef10 EFLAGS: 00010286
[   76.004092][  T876] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[   76.012095][  T876] RDX: ffff888108b9ba00 RSI: ffffffff81164617 RDI: 0000000000000001
[   76.020527][  T876] RBP: 00000000c0008200 R08: 0000000000000001 R09: 0000000000000000
[   76.028509][  T876] R10: 0000000000000001 R11: 0000000000000001 R12: ffff888109e68000
[   76.036509][  T876] R13: 0000000000000005 R14: 00000000fffffff0 R15: ffff88810e3cbb00
[   76.044518][  T876]  ? __warn_printk+0x187/0x310
[   76.049396][  T876]  ? lockdep_init_map_type+0x21e/0x810
[   76.055048][  T876]  ? pvr2_ctl_write_complete+0xe0/0xe0
[   76.060701][  T876]  ? init_timer_on_stack_key+0xdc/0x110
[   76.066373][  T876]  pvr2_send_request_ex+0x7c2/0x2230
[   76.071793][  T876]  ? pvr2_hdw_render_useless.part.0+0x2d0/0x2d0
[   76.078311][  T876]  ? pvr2_ctl_write_complete+0xe0/0xe0
[   76.083790][  T876]  ? stack_trace_save+0x90/0xc0
[   76.088951][  T876]  ? filter_irq_stacks+0x90/0x90
[   76.095155][  T876]  pvr2_send_request+0x39/0x50
[   76.100329][  T876]  pvr2_i2c_read+0x200/0x6c0
[   76.105144][  T876]  pvr2_i2c_basic_op+0xb6/0xf0
[   76.109960][  T876]  pvr2_i2c_xfer+0x405/0xfc0
[   76.114880][  T876]  ? pvr2_i2c_write+0x4b0/0x4b0
[   76.119887][  T876]  __i2c_transfer+0x639/0x1f70
[   76.124860][  T876]  i2c_smbus_xfer_emulated+0x2f6/0x11e0
[   76.130463][  T876]  ? __ww_mutex_lock.constprop.0+0x14c0/0x2f30
[   76.136906][  T876]  ? lock_downgrade+0x690/0x690
[   76.142044][  T876]  ? i2c_smbus_msg_pec.isra.0+0x140/0x140
[   76.147954][  T876]  ? mark_held_locks+0x9f/0xe0
[   76.156186][  T876]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[   76.162215][  T876]  ? lockdep_hardirqs_on+0x7d/0x100
[   76.168043][  T876]  ? _raw_spin_unlock_irqrestore+0x41/0x70
[   76.174402][  T876]  ? rt_mutex_slowlock.constprop.0+0x1f0/0x630
[   76.181140][  T876]  ? task_blocks_on_rt_mutex.constprop.0.isra.0+0xf50/0xf50
[   76.188748][  T876]  __i2c_smbus_xfer+0x508/0xe50
[   76.193650][  T876]  i2c_smbus_xfer+0x104/0x380
[   76.198392][  T876]  i2c_smbus_read_byte_data+0x10b/0x1c0
[   76.204085][  T876]  ? i2c_smbus_write_byte+0xe0/0xe0
[   76.209524][  T876]  ? find_held_lock+0x2d/0x110
[   76.214332][  T876]  saa711x_probe+0x1f4/0x1f70
[   76.219081][  T876]  ? saa711x_s_std+0x70/0x70
[   76.224077][  T876]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[   76.230017][  T876]  ? lockdep_hardirqs_on+0x7d/0x100
[   76.235337][  T876]  ? _raw_spin_unlock_irqrestore+0x41/0x70
[   76.241253][  T876]  ? devres_open_group+0x3b0/0x550
[   76.246565][  T876]  ? saa711x_s_std+0x70/0x70
[   76.251183][  T876]  i2c_device_probe+0x4ca/0xb60
[   76.256174][  T876]  ? i2c_device_remove+0x230/0x230
[   76.261333][  T876]  ? sysfs_create_link+0x6b/0xc0
[   76.266329][  T876]  ? i2c_device_remove+0x230/0x230
[   76.271490][  T876]  really_probe+0x240/0xca0
[   76.276021][  T876]  __driver_probe_device+0x1df/0x4b0
[   76.281497][  T876]  driver_probe_device+0x4c/0x1a0
[   76.286565][  T876]  __device_attach_driver+0x1d4/0x2e0
[   76.291948][  T876]  bus_for_each_drv+0x149/0x1d0
[   76.296867][  T876]  ? driver_probe_device+0x1a0/0x1a0
[   76.302179][  T876]  ? bus_for_each_dev+0x1c0/0x1c0
[   76.307330][  T876]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[   76.313251][  T876]  ? lockdep_hardirqs_on+0x7d/0x100
[   76.318477][  T876]  ? _raw_spin_unlock_irqrestore+0x41/0x70
[   76.324528][  T876]  __device_attach+0x1e4/0x4b0
[   76.329481][  T876]  ? device_driver_attach+0x210/0x210
[   76.334965][  T876]  ? do_raw_spin_unlock+0x175/0x230
[   76.340736][  T876]  bus_probe_device+0x17c/0x1c0
[   76.345704][  T876]  device_add+0x112d/0x1a40
[   76.350233][  T876]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[   76.357122][  T876]  ? __init_waitqueue_head+0xca/0x150
[   76.362616][  T876]  i2c_new_client_device+0x61f/0xbd0
[   76.368029][  T876]  v4l2_i2c_new_subdev_board+0xb3/0x2c0
[   76.374040][  T876]  v4l2_i2c_new_subdev+0x118/0x1a0
[   76.379170][  T876]  ? v4l2_i2c_new_subdev_board+0x2c0/0x2c0
[   76.385084][  T876]  ? find_held_lock+0x2d/0x110
[   76.390067][  T876]  pvr2_hdw_initialize+0xd34/0x4320
[   76.395491][  T876]  ? pvr2_hdw_gpio_chg_dir+0x220/0x220
[   76.401157][  T876]  ? __mutex_unlock_slowpath+0x157/0x5e0
[   76.406903][  T876]  ? bit_wait_timeout+0x160/0x160
[   76.412062][  T876]  ? lock_downgrade+0x690/0x690
[   76.417048][  T876]  ? _raw_spin_lock_irqsave+0x52/0x60
[   76.424134][  T876]  pvr2_context_thread_func+0x254/0x8e0
[   76.429830][  T876]  ? pvr2_context_destroy+0x270/0x270
[   76.435330][  T876]  ? prepare_to_swait_exclusive+0x240/0x240
[   76.441711][  T876]  ? __kthread_parkme+0x163/0x220
[   76.446959][  T876]  ? pvr2_context_destroy+0x270/0x270
[   76.452381][  T876]  kthread+0x344/0x440
[   76.456845][  T876]  ? kthread_complete_and_exit+0x40/0x40
[   76.462905][  T876]  ret_from_fork+0x1f/0x30
[   76.467471][  T876]  </TASK>
[   76.470865][  T876] Kernel Offset: disabled
[   76.475500][  T876] Rebooting in 86400 seconds..