Warning: Permanently added '10.128.0.210' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program syzkaller login: [ 41.240337][ T25] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 41.260852][ T134] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 41.280114][ T7] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 41.281132][ T20] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 41.295502][ T3621] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 41.303178][ T3623] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 41.520156][ T7] usb 5-1: Using ep0 maxpacket: 16 [ 41.530256][ T134] usb 6-1: Using ep0 maxpacket: 16 [ 41.535486][ T25] usb 4-1: Using ep0 maxpacket: 16 [ 41.580124][ T3621] usb 2-1: Using ep0 maxpacket: 16 [ 41.610294][ T3623] usb 3-1: Using ep0 maxpacket: 16 [ 41.616375][ T20] usb 1-1: Using ep0 maxpacket: 16 [ 41.640232][ T7] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid maxpacket 34528, setting to 1024 [ 41.660792][ T134] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid maxpacket 34528, setting to 1024 [ 41.680506][ T25] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid maxpacket 34528, setting to 1024 [ 41.740428][ T3621] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid maxpacket 34528, setting to 1024 [ 41.770411][ T3623] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid maxpacket 34528, setting to 1024 [ 41.782341][ T20] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid maxpacket 34528, setting to 1024 [ 41.810629][ T7] usb 5-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=b6.8f [ 41.819961][ T7] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 41.828077][ T7] usb 5-1: Product: syz [ 41.832297][ T7] usb 5-1: Manufacturer: syz [ 41.836917][ T7] usb 5-1: SerialNumber: syz [ 41.844930][ T7] usb 5-1: config 0 descriptor?? [ 41.871286][ T3625] raw-gadget gadget: fail, usb_ep_enable returned -22 [ 41.890443][ T134] usb 6-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=b6.8f [ 41.893758][ T7] cm109 5-1:0.0: invalid payload size 1024, expected 4 [ 41.899608][ T25] usb 4-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=b6.8f [ 41.916070][ T134] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 41.918867][ T7] input: CM109 USB driver as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input5 [ 41.924485][ T25] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 41.942317][ T134] usb 6-1: Product: syz [ 41.946666][ T134] usb 6-1: Manufacturer: syz [ 41.951876][ T3621] usb 2-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=b6.8f [ 41.961512][ T134] usb 6-1: SerialNumber: syz [ 41.966254][ T3621] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 41.975692][ T25] usb 4-1: Product: syz [ 41.982681][ T134] usb 6-1: config 0 descriptor?? [ 41.987737][ T3621] usb 2-1: Product: syz [ 41.992900][ T25] usb 4-1: Manufacturer: syz [ 41.997579][ T3621] usb 2-1: Manufacturer: syz [ 42.002229][ T3621] usb 2-1: SerialNumber: syz [ 42.008368][ T25] usb 4-1: SerialNumber: syz [ 42.013288][ T3616] raw-gadget gadget: fail, usb_ep_enable returned -22 [ 42.013295][ T20] usb 1-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=b6.8f [ 42.029873][ T3623] usb 3-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=b6.8f [ 42.040766][ T134] cm109 6-1:0.0: invalid payload size 1024, expected 4 [ 42.048823][ T134] input: CM109 USB driver as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/input/input6 [ 42.059322][ T3623] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 42.068150][ T25] usb 4-1: config 0 descriptor?? [ 42.073888][ T3621] usb 2-1: config 0 descriptor?? [ 42.079037][ T20] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 42.087178][ T3623] usb 3-1: Product: syz [ 42.091598][ T3615] raw-gadget gadget: fail, usb_ep_enable returned -22 [ 42.092380][ T3623] usb 3-1: Manufacturer: syz [ 42.098694][ T3618] raw-gadget gadget: fail, usb_ep_enable returned -22 [ 42.103044][ T20] usb 1-1: Product: syz [ 42.117308][ T3621] cm109 2-1:0.0: invalid payload size 1024, expected 4 [ 42.125894][ T25] cm109 4-1:0.0: invalid payload size 1024, expected 4 [ 42.132976][ T3623] usb 3-1: SerialNumber: syz [ 42.139177][ T3621] input: CM109 USB driver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input7 [ 42.150245][ T25] input: CM109 USB driver as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input8 [ 42.150244][ C0] cm109 5-1:0.0: cm109_urb_irq_callback: urb status -71 [ 42.160293][ T20] usb 1-1: Manufacturer: syz [ 42.174286][ T3623] usb 3-1: config 0 descriptor?? [ 42.186669][ T20] usb 1-1: SerialNumber: syz [ 42.192057][ T3622] raw-gadget gadget: fail, usb_ep_enable returned -22 [ 42.211981][ T3623] cm109 3-1:0.0: invalid payload size 1024, expected 4 [ 42.219648][ T3623] input: CM109 USB driver as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input9 [ 42.241742][ T20] usb 1-1: config 0 descriptor?? [ 42.270138][ C1] cm109 6-1:0.0: cm109_urb_irq_callback: urb status -71 [ 42.277989][ T3620] raw-gadget gadget: fail, usb_ep_enable returned -22 [ 42.305621][ T20] cm109 1-1:0.0: invalid payload size 1024, expected 4 [ 42.323997][ T20] input: CM109 USB driver as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input10 [ 42.343228][ T7] usb 5-1: USB disconnect, device number 2 [ 42.350278][ C0] cm109 5-1:0.0: cm109_urb_ctl_callback: urb status -71 [ 42.357243][ C0] cm109 5-1:0.0: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19 [ 42.360097][ C1] cm109 2-1:0.0: cm109_urb_irq_callback: urb status -71 executing program [ 42.373286][ C1] ------------[ cut here ]------------ [ 42.378746][ C1] URB 000000004b7e1811 submitted while active [ 42.385267][ C1] WARNING: CPU: 1 PID: 3619 at drivers/usb/core/urb.c:378 usb_submit_urb+0x14e2/0x18a0 [ 42.394942][ C1] Modules linked in: [ 42.398843][ C1] CPU: 1 PID: 3619 Comm: udevd Not tainted 5.16.0-rc6-syzkaller #0 [ 42.407136][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 42.417624][ C1] RIP: 0010:usb_submit_urb+0x14e2/0x18a0 [ 42.423662][ C1] Code: 89 de e8 a1 66 10 fc 84 db 0f 85 a9 f3 ff ff e8 b4 62 10 fc 4c 89 fe 48 c7 c7 20 58 4a 8a c6 05 a9 8e 15 08 01 e8 8b 90 9a 03 <0f> 0b e9 87 f3 ff ff 41 be ed ff ff ff e9 7c f3 ff ff e8 87 62 10 [ 42.444102][ C1] RSP: 0018:ffffc90000dc09d0 EFLAGS: 00010082 [ 42.450205][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 42.450266][ C1] RDX: ffff88807e0c9d00 RSI: ffffffff815f12d8 RDI: fffff520001b812c [ 42.450285][ C1] RBP: ffff8880121cdcd0 R08: 0000000000000000 R09: 0000000000000000 [ 42.450298][ C1] R10: ffffffff815eb07e R11: 0000000000000000 R12: 0000000000000046 [ 42.450309][ C1] R13: ffff88801e6e1058 R14: 00000000fffffff0 R15: ffff888013ff9500 [ 42.450323][ C1] FS: 00007fe71e129840(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000 [ 42.450345][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 42.450359][ C1] CR2: 00007fe71e290150 CR3: 000000006f807000 CR4: 0000000000350ee0 [ 42.450372][ C1] Call Trace: [ 42.450379][ C1] <IRQ> [ 42.450387][ C1] ? _raw_spin_unlock_irqrestore+0x3d/0x70 [ 42.450442][ C1] cm109_urb_irq_callback+0x44c/0xaa0 [ 42.450464][ C1] ? dummy_timer+0x11e7/0x32b0 [ 42.450487][ C1] __usb_hcd_giveback_urb+0x2b0/0x5c0 [ 42.450514][ C1] usb_hcd_giveback_urb+0x367/0x410 [ 42.450539][ C1] dummy_timer+0x11f9/0x32b0 [ 42.450566][ C1] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 42.450606][ C1] ? dummy_dequeue+0x500/0x500 [ 42.450630][ C1] ? dummy_dequeue+0x500/0x500 [ 42.450647][ C1] call_timer_fn+0x1a5/0x6b0 [ 42.450665][ C1] ? add_timer_on+0x4a0/0x4a0 [ 42.450680][ C1] ? lock_downgrade+0x6e0/0x6e0 [ 42.450705][ C1] ? _raw_spin_unlock_irq+0x1f/0x40 [ 42.450727][ C1] ? dummy_dequeue+0x500/0x500 [ 42.450749][ C1] __run_timers.part.0+0x675/0xa20 [ 42.450773][ C1] ? call_timer_fn+0x6b0/0x6b0 [ 42.450793][ C1] ? kvm_sched_clock_read+0x14/0x40 [ 42.450814][ C1] ? sched_clock_cpu+0x15/0x1f0 [ 42.450836][ C1] run_timer_softirq+0xb3/0x1d0 [ 42.450854][ C1] __do_softirq+0x29b/0x9c2 [ 42.450876][ C1] __irq_exit_rcu+0x123/0x180 [ 42.450897][ C1] irq_exit_rcu+0x5/0x20 [ 42.450916][ C1] sysvec_apic_timer_interrupt+0x93/0xc0 [ 42.450937][ C1] </IRQ> [ 42.450942][ C1] <TASK> [ 42.450948][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 42.450971][ C1] RIP: 0010:__kasan_check_write+0x4/0x10 [ 42.450996][ C1] Code: 5d 41 5c 41 5d c3 c3 e9 10 77 45 07 cc cc cc cc cc cc cc cc cc cc 48 8b 0c 24 89 f6 31 d2 e9 f3 f9 ff ff 0f 1f 00 48 8b 0c 24 <89> f6 ba 01 00 00 00 e9 e0 f9 ff ff 55 53 48 8b 07 48 89 fb 48 85 [ 42.451012][ C1] RSP: 0018:ffffc9000281fd48 EFLAGS: 00000293 [ 42.451028][ C1] RAX: 0000000000000000 RBX: 0000000000000fe0 RCX: ffffffff83fdd28d [ 42.451040][ C1] RDX: ffff88807e0c9d00 RSI: 0000000000000fe0 RDI: ffff88801e5fa220 [ 42.451051][ C1] RBP: 00007ffc1276e3f8 R08: 00007fffffffefff R09: 0000000000000000 [ 42.451063][ C1] R10: ffffffff83fdd26b R11: 0000000000000000 R12: 00007ffc1276e3f8 [ 42.451074][ C1] R13: ffff88801e5fa220 R14: ffff88801e5fa220 R15: ffffffff8d918388 [ 42.451089][ C1] ? strncpy_from_user+0x7b/0x3e0 [ 42.451109][ C1] ? strncpy_from_user+0x9d/0x3e0 [ 42.451137][ C1] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 42.451159][ C1] strncpy_from_user+0x9d/0x3e0 [ 42.451180][ C1] getname_flags.part.0+0x95/0x4f0 [ 42.451204][ C1] getname_flags+0x9a/0xe0 [ 42.451224][ C1] user_path_at_empty+0x2b/0x60 [ 42.451245][ C1] do_readlinkat+0xcd/0x2f0 [ 42.451268][ C1] ? cp_compat_stat+0x910/0x910 [ 42.451297][ C1] __x64_sys_readlink+0x74/0xb0 [ 42.451317][ C1] ? syscall_enter_from_user_mode+0x21/0x70 [ 42.451338][ C1] do_syscall_64+0x35/0xb0 [ 42.451354][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 42.451375][ C1] RIP: 0033:0x7fe71e282277 [ 42.451392][ C1] Code: 73 01 c3 48 8b 0d 01 dc 0c 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 59 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d d1 db 0c 00 f7 d8 64 89 01 48 [ 42.451407][ C1] RSP: 002b:00007ffc1276df08 EFLAGS: 00000246 ORIG_RAX: 0000000000000059 [ 42.451424][ C1] RAX: ffffffffffffffda RBX: 00007ffc1276df18 RCX: 00007fe71e282277 [ 42.451435][ C1] RDX: 0000000000000400 RSI: 00007ffc1276df18 RDI: 00007ffc1276e3f8 [ 42.451447][ C1] RBP: 0000000000000400 R08: 0000000003ffffff R09: 00007fe71e350a60 [ 42.451458][ C1] R10: 0000562766ea5560 R11: 0000000000000246 R12: 00007ffc1276e3f8 [ 42.451469][ C1] R13: 00007ffc1276e368 R14: 0000562766e7c910 R15: 00005627658a0a7c [ 42.451491][ C1] </TASK> [ 42.451499][ C1] Kernel panic - not syncing: panic_on_warn set ... [ 42.451507][ C1] CPU: 1 PID: 3619 Comm: udevd Not tainted 5.16.0-rc6-syzkaller #0 [ 42.451526][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 42.451536][ C1] Call Trace: [ 42.451540][ C1] <IRQ> [ 42.451546][ C1] dump_stack_lvl+0xcd/0x134 [ 42.451568][ C1] panic+0x2b0/0x6dd [ 42.451589][ C1] ? __warn_printk+0xf3/0xf3 [ 42.451615][ C1] ? __warn.cold+0x1a/0x44 [ 42.451637][ C1] ? usb_submit_urb+0x14e2/0x18a0 [ 42.451654][ C1] __warn.cold+0x35/0x44 [ 42.451673][ C1] ? wake_up_klogd.part.0+0x8e/0xd0 [ 42.451693][ C1] ? usb_submit_urb+0x14e2/0x18a0 [ 42.451710][ C1] report_bug+0x1bd/0x210 [ 42.451732][ C1] handle_bug+0x3c/0x60 [ 42.451748][ C1] exc_invalid_op+0x14/0x40 [ 42.451765][ C1] asm_exc_invalid_op+0x12/0x20 [ 42.451785][ C1] RIP: 0010:usb_submit_urb+0x14e2/0x18a0 [ 42.451802][ C1] Code: 89 de e8 a1 66 10 fc 84 db 0f 85 a9 f3 ff ff e8 b4 62 10 fc 4c 89 fe 48 c7 c7 20 58 4a 8a c6 05 a9 8e 15 08 01 e8 8b 90 9a 03 <0f> 0b e9 87 f3 ff ff 41 be ed ff ff ff e9 7c f3 ff ff e8 87 62 10 [ 42.451818][ C1] RSP: 0018:ffffc90000dc09d0 EFLAGS: 00010082 [ 42.451831][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 42.451842][ C1] RDX: ffff88807e0c9d00 RSI: ffffffff815f12d8 RDI: fffff520001b812c [ 42.451853][ C1] RBP: ffff8880121cdcd0 R08: 0000000000000000 R09: 0000000000000000 [ 42.451864][ C1] R10: ffffffff815eb07e R11: 0000000000000000 R12: 0000000000000046 [ 42.451875][ C1] R13: ffff88801e6e1058 R14: 00000000fffffff0 R15: ffff888013ff9500 [ 42.451890][ C1] ? wake_up_klogd.part.0+0x8e/0xd0 [ 42.451911][ C1] ? vprintk+0x88/0x90 [ 42.451933][ C1] ? _raw_spin_unlock_irqrestore+0x3d/0x70 [ 42.451958][ C1] cm109_urb_irq_callback+0x44c/0xaa0 [ 42.451974][ C1] ? dummy_timer+0x11e7/0x32b0 [ 42.451995][ C1] __usb_hcd_giveback_urb+0x2b0/0x5c0 [ 42.452017][ C1] usb_hcd_giveback_urb+0x367/0x410 [ 42.452036][ C1] dummy_timer+0x11f9/0x32b0 [ 42.452055][ C1] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 42.452084][ C1] ? dummy_dequeue+0x500/0x500 [ 42.452102][ C1] ? dummy_dequeue+0x500/0x500 [ 42.452120][ C1] call_timer_fn+0x1a5/0x6b0 [ 42.452134][ C1] ? add_timer_on+0x4a0/0x4a0 [ 42.452146][ C1] ? lock_downgrade+0x6e0/0x6e0 [ 42.452165][ C1] ? _raw_spin_unlock_irq+0x1f/0x40 [ 42.452181][ C1] ? dummy_dequeue+0x500/0x500 [ 42.452196][ C1] __run_timers.part.0+0x675/0xa20 [ 42.452214][ C1] ? call_timer_fn+0x6b0/0x6b0 [ 42.452230][ C1] ? kvm_sched_clock_read+0x14/0x40 [ 42.452246][ C1] ? sched_clock_cpu+0x15/0x1f0 [ 42.452263][ C1] run_timer_softirq+0xb3/0x1d0 [ 42.452277][ C1] __do_softirq+0x29b/0x9c2 [ 42.452294][ C1] __irq_exit_rcu+0x123/0x180 [ 42.452310][ C1] irq_exit_rcu+0x5/0x20 [ 42.452325][ C1] sysvec_apic_timer_interrupt+0x93/0xc0 [ 42.452340][ C1] </IRQ> [ 42.452344][ C1] <TASK> [ 42.452349][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 42.452366][ C1] RIP: 0010:__kasan_check_write+0x4/0x10 [ 42.452384][ C1] Code: 5d 41 5c 41 5d c3 c3 e9 10 77 45 07 cc cc cc cc cc cc cc cc cc cc 48 8b 0c 24 89 f6 31 d2 e9 f3 f9 ff ff 0f 1f 00 48 8b 0c 24 <89> f6 ba 01 00 00 00 e9 e0 f9 ff ff 55 53 48 8b 07 48 89 fb 48 85 [ 42.452396][ C1] RSP: 0018:ffffc9000281fd48 EFLAGS: 00000293 [ 42.452407][ C1] RAX: 0000000000000000 RBX: 0000000000000fe0 RCX: ffffffff83fdd28d [ 42.452416][ C1] RDX: ffff88807e0c9d00 RSI: 0000000000000fe0 RDI: ffff88801e5fa220 [ 42.452426][ C1] RBP: 00007ffc1276e3f8 R08: 00007fffffffefff R09: 0000000000000000 [ 42.452435][ C1] R10: ffffffff83fdd26b R11: 0000000000000000 R12: 00007ffc1276e3f8 [ 42.452444][ C1] R13: ffff88801e5fa220 R14: ffff88801e5fa220 R15: ffffffff8d918388 [ 42.452456][ C1] ? strncpy_from_user+0x7b/0x3e0 [ 42.452470][ C1] ? strncpy_from_user+0x9d/0x3e0 [ 42.452487][ C1] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 42.452504][ C1] strncpy_from_user+0x9d/0x3e0 [ 42.452520][ C1] getname_flags.part.0+0x95/0x4f0 [ 42.452538][ C1] getname_flags+0x9a/0xe0 [ 42.452554][ C1] user_path_at_empty+0x2b/0x60 [ 42.452570][ C1] do_readlinkat+0xcd/0x2f0 [ 42.452588][ C1] ? cp_compat_stat+0x910/0x910 [ 42.452611][ C1] __x64_sys_readlink+0x74/0xb0 [ 42.452627][ C1] ? syscall_enter_from_user_mode+0x21/0x70 [ 42.452643][ C1] do_syscall_64+0x35/0xb0 [ 42.452656][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 42.452672][ C1] RIP: 0033:0x7fe71e282277 [ 42.452683][ C1] Code: 73 01 c3 48 8b 0d 01 dc 0c 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 59 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d d1 db 0c 00 f7 d8 64 89 01 48 [ 42.452696][ C1] RSP: 002b:00007ffc1276df08 EFLAGS: 00000246 ORIG_RAX: 0000000000000059 [ 42.452709][ C1] RAX: ffffffffffffffda RBX: 00007ffc1276df18 RCX: 00007fe71e282277 [ 42.452721][ C1] RDX: 0000000000000400 RSI: 00007ffc1276df18 RDI: 00007ffc1276e3f8 [ 42.452731][ C1] RBP: 0000000000000400 R08: 0000000003ffffff R09: 00007fe71e350a60 [ 42.452741][ C1] R10: 0000562766ea5560 R11: 0000000000000246 R12: 00007ffc1276e3f8 [ 42.452750][ C1] R13: 00007ffc1276e368 R14: 0000562766e7c910 R15: 00005627658a0a7c [ 42.452768][ C1] </TASK> [ 43.544100][ C1] Shutting down cpus with NMI [ 43.545164][ C1] Kernel Offset: disabled [ 44.471641][ C1] Rebooting in 86400 seconds..