./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2559177444

<...>
syzkaller login: [  105.373920][  T123] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.0.46' (ECDSA) to the list of known hosts.
execve("./syz-executor2559177444", ["./syz-executor2559177444"], 0x7ffcded80320 /* 10 vars */) = 0
brk(NULL)                               = 0x555556214000
brk(0x555556214c40)                     = 0x555556214c40
arch_prctl(ARCH_SET_FS, 0x555556214300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor2559177444", 4096) = 28
brk(0x555556235c40)                     = 0x555556235c40
brk(0x555556236000)                     = 0x555556236000
mprotect(0x7fe30b721000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555562145d0) = 3487
./strace-static-x86_64: Process 3487 attached
[pid  3487] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  3487] setpgid(0, 0)               = 0
[pid  3487] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  3487] write(3, "1000", 4)         = 4
[pid  3487] close(3)                    = 0
[pid  3487] openat(AT_FDCWD, "/dev/raw-gadget", O_RDWR) = 3
[pid  3487] ioctl(3, USB_RAW_IOCTL_INIT, 0x7ffdf96f8f00) = 0
[pid  3487] ioctl(3, UI_DEV_CREATE or USB_RAW_IOCTL_RUN, 0) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f00) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f00) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffdf96f7ef0) = 18
[  112.752126][   T28] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[pid  3487] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f00) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffdf96f7ef0) = 18
[pid  3487] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f00) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffdf96f7ef0) = 9
[pid  3487] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f00) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffdf96f7ef0) = 36
[pid  3487] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f00) = 0
[  113.142418][   T28] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  113.152411][   T28] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffdf96f7ef0) = 4
[pid  3487] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f00) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffdf96f7ef0) = 8
[pid  3487] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f00) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffdf96f7ef0) = 8
[pid  3487] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f00) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffdf96f7ef0) = 8
[pid  3487] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f00) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_VBUS_DRAW, 0) = 0
[  113.342436][   T28] usb 1-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  113.351633][   T28] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  113.359942][   T28] usb 1-1: Product: syz
[  113.364340][   T28] usb 1-1: Manufacturer: syz
[  113.369079][   T28] usb 1-1: SerialNumber: syz
[  113.377304][   T28] usb 1-1: config 0 descriptor??
[pid  3487] ioctl(3, USB_RAW_IOCTL_CONFIGURE, 0) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP_ENABLE, 0x7fe30b72746c) = -1 EINVAL (Invalid argument)
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP_ENABLE, 0x7fe30b72747c) = -1 EINVAL (Invalid argument)
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP0_READ, 0x7ffdf96f7ef0) = 0
[  113.408689][ T3487] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  113.417304][ T3487] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[pid  3487] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f20) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP_DISABLE, 0) = -1 EINVAL (Invalid argument)
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP_DISABLE, 0) = -1 EINVAL (Invalid argument)
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP_ENABLE, 0x7fe30b72746c) = -1 EINVAL (Invalid argument)
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP_ENABLE, 0x7fe30b72747c) = -1 EINVAL (Invalid argument)
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP0_READ, 0x7ffdf96f7f10) = 0
[  113.661932][ T3487] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  113.670390][ T3487] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[pid  3487] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f20) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP0_READ, 0x7ffdf96f7f10) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f20) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffdf96f7f10) = 6
[  114.152609][   T28] dm9601: No valid MAC address in EEPROM, using 82:f8:f1:92:1b:33
[pid  3487] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f20) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP0_READ, 0x7ffdf96f7f10) = 6
[pid  3487] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f20) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffdf96f7f10) = 1
[pid  3487] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f20) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP0_READ, 0x7ffdf96f7f10) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f20) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP0_READ, 0x7ffdf96f7f10) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f20) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP0_READ, 0x7ffdf96f7f10) = 8
[pid  3487] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f20) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP0_READ, 0x7ffdf96f7f10) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f20) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP0_READ, 0x7ffdf96f7f10) = 2
[pid  3487] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f20) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP0_READ, 0x7ffdf96f7f10) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f20) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP0_READ, 0x7ffdf96f7f10) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f20) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffdf96f7f10) = 1
[pid  3487] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f20) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffdf96f7f10) = 1
[pid  3487] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f20) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffdf96f7f10) = 1
[pid  3487] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f20) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffdf96f7f10) = 1
[pid  3487] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f20) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffdf96f7f10) = 1
[pid  3487] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f20) = 0
[pid  3487] ioctl(3, USB_RAW_IOCTL_EP0_WRITE <unfinished ...>
[pid  3486] kill(-3487, SIGKILL)        = 0
[pid  3487] <... ioctl resumed> <unfinished ...>) = ?
[pid  3486] kill(3487, SIGKILL)         = 0
[pid  3487] +++ killed by SIGKILL +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=3487, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=6} ---
restart_syscall(<... resuming interrupted kill ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555562145d0) = 3489
./strace-static-x86_64: Process 3489 attached
[pid  3489] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  3489] setpgid(0, 0)               = 0
[pid  3489] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  3489] write(3, "1000", 4)         = 4
[pid  3489] close(3)                    = 0
[pid  3489] openat(AT_FDCWD, "/dev/raw-gadget", O_RDWR) = 3
[pid  3489] ioctl(3, USB_RAW_IOCTL_INIT, 0x7ffdf96f8f00) = 0
[pid  3489] ioctl(3, UI_DEV_CREATE or USB_RAW_IOCTL_RUN, 0) = 0
[pid  3489] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffdf96f8f00) = 0
[  117.532537][   T28] =====================================================
[  117.539682][   T28] BUG: KMSAN: uninit-value in mii_nway_restart+0x117/0x1d0
[  117.547394][   T28]  mii_nway_restart+0x117/0x1d0
[  117.552478][   T28]  dm9601_bind+0xa17/0xb50
[  117.557060][   T28]  usbnet_probe+0xebb/0x3cc0
[  117.561815][   T28]  usb_probe_interface+0xc4b/0x11f0
[  117.567243][   T28]  really_probe+0x499/0xf50
[  117.571848][   T28]  __driver_probe_device+0x2fa/0x3d0
[  117.577406][   T28]  driver_probe_device+0x72/0x7a0
[  117.582663][   T28]  __device_attach_driver+0x6f1/0x890
[  117.588185][   T28]  bus_for_each_drv+0x1fc/0x360
[  117.593314][   T28]  __device_attach+0x42a/0x720
[  117.598195][   T28]  device_initial_probe+0x2e/0x40
[  117.603476][   T28]  bus_probe_device+0x13c/0x3b0
[  117.608461][   T28]  device_add+0x1d4b/0x26c0
[  117.613234][   T28]  usb_set_configuration+0x30f8/0x37e0
[  117.618853][   T28]  usb_generic_driver_probe+0x105/0x290
[  117.624690][   T28]  usb_probe_device+0x288/0x490
[  117.629703][   T28]  really_probe+0x499/0xf50
[  117.634446][   T28]  __driver_probe_device+0x2fa/0x3d0
[  117.639871][   T28]  driver_probe_device+0x72/0x7a0
[  117.645258][   T28]  __device_attach_driver+0x6f1/0x890
[  117.650769][   T28]  bus_for_each_drv+0x1fc/0x360
[  117.655867][   T28]  __device_attach+0x42a/0x720
[  117.660776][   T28]  device_initial_probe+0x2e/0x40
[  117.666085][   T28]  bus_probe_device+0x13c/0x3b0
[  117.671073][   T28]  device_add+0x1d4b/0x26c0
[  117.675824][   T28]  usb_new_device+0x17a1/0x2360
[  117.680807][   T28]  hub_event+0x5559/0x8050
[  117.685458][   T28]  process_one_work+0xb27/0x13e0
[  117.690545][   T28]  worker_thread+0x1076/0x1d60
[  117.695541][   T28]  kthread+0x31b/0x430
[  117.699719][   T28]  ret_from_fork+0x1f/0x30
[  117.704361][   T28] 
[  117.706832][   T28] Local variable res created at:
[  117.712155][   T28]  dm9601_mdio_read+0x49/0xf0
[  117.716994][   T28]  mii_nway_restart+0x84/0x1d0
[  117.722026][   T28] 
[  117.724406][   T28] CPU: 0 PID: 28 Comm: kworker/0:1 Not tainted 5.19.0-syzkaller-32655-g1b070a5d1a2c #0
[  117.734218][   T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022
[  117.744447][   T28] Workqueue: usb_hub_wq hub_event
[  117.749567][   T28] =====================================================
[  117.756675][   T28] Disabling lock debugging due to kernel taint
[  117.763056][   T28] Kernel panic - not syncing: kmsan.panic set ...
[  117.769534][   T28] CPU: 0 PID: 28 Comm: kworker/0:1 Tainted: G    B             5.19.0-syzkaller-32655-g1b070a5d1a2c #0
[  117.780718][   T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022
[  117.790923][   T28] Workqueue: usb_hub_wq hub_event
[  117.796072][   T28] Call Trace:
[  117.799440][   T28]  <TASK>
[  117.802429][   T28]  dump_stack_lvl+0x1c8/0x256
[  117.807240][   T28]  dump_stack+0x1a/0x1c
[  117.811585][   T28]  panic+0x4d3/0xc69
[  117.815600][   T28]  kmsan_report+0x2cc/0x2d0
[  117.820232][   T28]  ? __msan_warning+0x92/0x110
[  117.825251][   T28]  ? mii_nway_restart+0x117/0x1d0
[  117.830405][   T28]  ? dm9601_bind+0xa17/0xb50
[  117.835417][   T28]  ? usbnet_probe+0xebb/0x3cc0
[  117.840295][   T28]  ? usb_probe_interface+0xc4b/0x11f0
[  117.845939][   T28]  ? really_probe+0x499/0xf50
[  117.850784][   T28]  ? __driver_probe_device+0x2fa/0x3d0
[  117.856339][   T28]  ? driver_probe_device+0x72/0x7a0
[  117.861660][   T28]  ? __device_attach_driver+0x6f1/0x890
[  117.867329][   T28]  ? bus_for_each_drv+0x1fc/0x360
[  117.872497][   T28]  ? __device_attach+0x42a/0x720
[  117.877646][   T28]  ? device_initial_probe+0x2e/0x40
[  117.882940][   T28]  ? bus_probe_device+0x13c/0x3b0
[  117.888341][   T28]  ? device_add+0x1d4b/0x26c0
[  117.893175][   T28]  ? usb_set_configuration+0x30f8/0x37e0
[  117.898921][   T28]  ? usb_generic_driver_probe+0x105/0x290
[  117.904748][   T28]  ? usb_probe_device+0x288/0x490
[  117.909908][   T28]  ? really_probe+0x499/0xf50
[  117.914725][   T28]  ? __driver_probe_device+0x2fa/0x3d0
[  117.920299][   T28]  ? driver_probe_device+0x72/0x7a0
[  117.925638][   T28]  ? __device_attach_driver+0x6f1/0x890
[  117.931308][   T28]  ? bus_for_each_drv+0x1fc/0x360
[  117.936452][   T28]  ? __device_attach+0x42a/0x720
[  117.941514][   T28]  ? device_initial_probe+0x2e/0x40
[  117.946797][   T28]  ? bus_probe_device+0x13c/0x3b0
[  117.951912][   T28]  ? device_add+0x1d4b/0x26c0
[  117.956755][   T28]  ? usb_new_device+0x17a1/0x2360
[  117.961877][   T28]  ? hub_event+0x5559/0x8050
[  117.966590][   T28]  ? process_one_work+0xb27/0x13e0
[  117.971833][   T28]  ? worker_thread+0x1076/0x1d60
[  117.976890][   T28]  ? kthread+0x31b/0x430
[  117.981247][   T28]  ? ret_from_fork+0x1f/0x30
[  117.985947][   T28]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  117.992175][   T28]  ? kmsan_get_shadow_origin_ptr+0x49/0xa0
[  117.998140][   T28]  ? mutex_unlock+0x24/0x40
[  118.002726][   T28]  ? kmsan_get_shadow_origin_ptr+0x49/0xa0
[  118.008679][   T28]  __msan_warning+0x92/0x110
[  118.013407][   T28]  mii_nway_restart+0x117/0x1d0
[  118.018389][   T28]  dm9601_bind+0xa17/0xb50
[  118.022966][   T28]  ? eem_linkcmd_complete+0x50/0x50
[  118.028280][   T28]  usbnet_probe+0xebb/0x3cc0
[  118.033025][   T28]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  118.039221][   T28]  ? usbnet_disconnect+0x690/0x690
[  118.044486][   T28]  usb_probe_interface+0xc4b/0x11f0
[  118.049807][   T28]  ? usb_register_driver+0x5f0/0x5f0
[  118.055195][   T28]  really_probe+0x499/0xf50
[  118.059796][   T28]  __driver_probe_device+0x2fa/0x3d0
[  118.065217][   T28]  driver_probe_device+0x72/0x7a0
[  118.070430][   T28]  ? kmsan_get_shadow_origin_ptr+0x49/0xa0
[  118.076340][   T28]  __device_attach_driver+0x6f1/0x890
[  118.081829][   T28]  ? kmsan_report+0x270/0x2d0
[  118.086652][   T28]  bus_for_each_drv+0x1fc/0x360
[  118.091625][   T28]  ? deferred_probe_work_func+0x4d0/0x4d0
[  118.097472][   T28]  __device_attach+0x42a/0x720
[  118.102352][   T28]  device_initial_probe+0x2e/0x40
[  118.107527][   T28]  bus_probe_device+0x13c/0x3b0
[  118.112540][   T28]  device_add+0x1d4b/0x26c0
[  118.117212][   T28]  usb_set_configuration+0x30f8/0x37e0
[  118.122842][   T28]  usb_generic_driver_probe+0x105/0x290
[  118.128495][   T28]  ? kmsan_get_shadow_origin_ptr+0x49/0xa0
[  118.134405][   T28]  ? usb_choose_configuration+0xdc0/0xdc0
[  118.140230][   T28]  ? usb_choose_configuration+0xdc0/0xdc0
[  118.146111][   T28]  usb_probe_device+0x288/0x490
[  118.151118][   T28]  ? usb_register_device_driver+0x440/0x440
[  118.157130][   T28]  really_probe+0x499/0xf50
[  118.161762][   T28]  __driver_probe_device+0x2fa/0x3d0
[  118.167208][   T28]  driver_probe_device+0x72/0x7a0
[  118.172474][   T28]  ? kmsan_get_shadow_origin_ptr+0x49/0xa0
[  118.178471][   T28]  __device_attach_driver+0x6f1/0x890
[  118.184009][   T28]  ? kmsan_report+0x270/0x2d0
[  118.188841][   T28]  bus_for_each_drv+0x1fc/0x360
[  118.193800][   T28]  ? deferred_probe_work_func+0x4d0/0x4d0
[  118.199700][   T28]  __device_attach+0x42a/0x720
[  118.204714][   T28]  device_initial_probe+0x2e/0x40
[  118.209871][   T28]  bus_probe_device+0x13c/0x3b0
[  118.214870][   T28]  device_add+0x1d4b/0x26c0
[  118.219537][   T28]  usb_new_device+0x17a1/0x2360
[  118.224530][   T28]  hub_event+0x5559/0x8050
[  118.229128][   T28]  ? kmsan_get_shadow_origin_ptr+0x49/0xa0
[  118.235035][   T28]  ? led_work+0x730/0x730
[  118.239525][   T28]  ? led_work+0x730/0x730
[  118.243998][   T28]  process_one_work+0xb27/0x13e0
[  118.249129][   T28]  worker_thread+0x1076/0x1d60
[  118.254055][   T28]  kthread+0x31b/0x430
[  118.258295][   T28]  ? worker_clr_flags+0x2b0/0x2b0
[  118.263420][   T28]  ? kthread_blkcg+0x120/0x120
[  118.268289][   T28]  ret_from_fork+0x1f/0x30
[  118.272870][   T28]  </TASK>
[  118.276132][   T28] Kernel Offset: disabled
[  118.280508][   T28] Rebooting in 86400 seconds..