./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2797281787 <...> Warning: Permanently added '10.128.15.194' (ED25519) to the list of known hosts. execve("./syz-executor2797281787", ["./syz-executor2797281787"], 0x7ffdd72a17c0 /* 10 vars */) = 0 brk(NULL) = 0x555594939000 brk(0x555594939d00) = 0x555594939d00 arch_prctl(ARCH_SET_FS, 0x555594939380) = 0 set_tid_address(0x555594939650) = 5842 set_robust_list(0x555594939660, 24) = 0 rseq(0x555594939ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor2797281787", 4096) = 28 getrandom("\x1e\x2b\x21\xc4\x0e\xa0\x2e\x2c", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555594939d00 brk(0x55559495ad00) = 0x55559495ad00 brk(0x55559495b000) = 0x55559495b000 mprotect(0x7f79554c1000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5843 attached , child_tidptr=0x555594939650) = 5843 [pid 5843] set_robust_list(0x555594939660, 24 [pid 5842] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5843] <... set_robust_list resumed>) = 0 [pid 5843] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5844 attached ./strace-static-x86_64: Process 5845 attached [pid 5844] set_robust_list(0x555594939660, 24 [pid 5843] <... clone resumed>, child_tidptr=0x555594939650) = 5845 [pid 5842] <... clone resumed>, child_tidptr=0x555594939650) = 5844 [pid 5845] set_robust_list(0x555594939660, 24 [pid 5844] <... set_robust_list resumed>) = 0 [pid 5842] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5845] <... set_robust_list resumed>) = 0 [pid 5844] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5846 attached [pid 5845] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5845] setpgid(0, 0) = 0 ./strace-static-x86_64: Process 5847 attached [pid 5846] set_robust_list(0x555594939660, 24 [pid 5845] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5842] <... clone resumed>, child_tidptr=0x555594939650) = 5846 [pid 5844] <... clone resumed>, child_tidptr=0x555594939650) = 5847 [pid 5842] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5847] set_robust_list(0x555594939660, 24 [pid 5846] <... set_robust_list resumed>) = 0 [pid 5845] <... openat resumed>) = 3 [pid 5845] write(3, "1000", 4./strace-static-x86_64: Process 5848 attached [pid 5847] <... set_robust_list resumed>) = 0 [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5845] <... write resumed>) = 4 [pid 5842] <... clone resumed>, child_tidptr=0x555594939650) = 5848 [pid 5848] set_robust_list(0x555594939660, 24 [pid 5847] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5842] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5849 attached [pid 5848] <... set_robust_list resumed>) = 0 [pid 5847] <... prctl resumed>) = 0 [pid 5845] close(3./strace-static-x86_64: Process 5850 attached [pid 5849] set_robust_list(0x555594939660, 24 [pid 5848] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5847] setpgid(0, 0 [pid 5846] <... clone resumed>, child_tidptr=0x555594939650) = 5849 [pid 5845] <... close resumed>) = 0 [pid 5842] <... clone resumed>, child_tidptr=0x555594939650) = 5850 [pid 5850] set_robust_list(0x555594939660, 24 [pid 5849] <... set_robust_list resumed>) = 0 executing program [pid 5847] <... setpgid resumed>) = 0 [pid 5845] write(1, "executing program\n", 18 [pid 5850] <... set_robust_list resumed>) = 0 [pid 5849] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5850] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5847] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5845] <... write resumed>) = 18 [pid 5849] <... prctl resumed>) = 0 [pid 5849] setpgid(0, 0 [pid 5845] openat(AT_FDCWD, "/dev/raw-gadget", O_RDWR [pid 5847] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5852 attached ./strace-static-x86_64: Process 5851 attached [pid 5849] <... setpgid resumed>) = 0 [pid 5851] set_robust_list(0x555594939660, 24 [pid 5852] set_robust_list(0x555594939660, 24 [pid 5851] <... set_robust_list resumed>) = 0 [pid 5849] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5848] <... clone resumed>, child_tidptr=0x555594939650) = 5851 [pid 5847] write(3, "1000", 4 [pid 5845] <... openat resumed>) = 3 [pid 5852] <... set_robust_list resumed>) = 0 [pid 5851] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5850] <... clone resumed>, child_tidptr=0x555594939650) = 5852 [pid 5847] <... write resumed>) = 4 [pid 5852] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5847] close(3 [pid 5852] setpgid(0, 0 [pid 5851] <... prctl resumed>) = 0 [pid 5849] <... openat resumed>) = 3 [pid 5847] <... close resumed>) = 0 executing program [pid 5852] <... setpgid resumed>) = 0 [pid 5851] setpgid(0, 0 [pid 5849] write(3, "1000", 4 [pid 5847] write(1, "executing program\n", 18 [pid 5845] ioctl(3, USB_RAW_IOCTL_INIT [pid 5847] <... write resumed>) = 18 [pid 5852] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5849] <... write resumed>) = 4 [pid 5847] openat(AT_FDCWD, "/dev/raw-gadget", O_RDWR [pid 5851] <... setpgid resumed>) = 0 [pid 5849] close(3executing program [pid 5847] <... openat resumed>) = 3 [pid 5845] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5851] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5849] <... close resumed>) = 0 [pid 5852] <... openat resumed>) = 3 [pid 5849] write(1, "executing program\n", 18 [pid 5847] ioctl(3, USB_RAW_IOCTL_INIT [pid 5845] ioctl(3, UI_DEV_CREATE or USB_RAW_IOCTL_RUN [pid 5852] write(3, "1000", 4 [pid 5851] <... openat resumed>) = 3 [pid 5849] <... write resumed>) = 18 [pid 5847] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5847] ioctl(3, UI_DEV_CREATE or USB_RAW_IOCTL_RUN [pid 5849] openat(AT_FDCWD, "/dev/raw-gadget", O_RDWR [pid 5852] <... write resumed>) = 4 [pid 5851] write(3, "1000", 4 [pid 5845] <... ioctl resumed>, 0) = 0 [pid 5847] <... ioctl resumed>, 0) = 0 [pid 5852] close(3 [pid 5851] <... write resumed>) = 4 [pid 5849] <... openat resumed>) = 3 [pid 5847] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5845] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5852] <... close resumed>) = 0 [pid 5851] close(3 [pid 5849] ioctl(3, USB_RAW_IOCTL_INIT [pid 5847] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5845] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5849] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5849] ioctl(3, UI_DEV_CREATE or USB_RAW_IOCTL_RUN [pid 5845] ioctl(3, USB_RAW_IOCTL_EVENT_FETCHexecuting program [pid 5852] write(1, "executing program\n", 18 [pid 5851] <... close resumed>) = 0 [pid 5847] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5852] <... write resumed>) = 18 executing program [pid 5851] write(1, "executing program\n", 18 [pid 5852] openat(AT_FDCWD, "/dev/raw-gadget", O_RDWR [pid 5851] <... write resumed>) = 18 [pid 5851] openat(AT_FDCWD, "/dev/raw-gadget", O_RDWR [pid 5852] <... openat resumed>) = 3 [pid 5852] ioctl(3, USB_RAW_IOCTL_INIT [pid 5851] <... openat resumed>) = 3 [pid 5852] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5851] ioctl(3, USB_RAW_IOCTL_INIT [pid 5852] ioctl(3, UI_DEV_CREATE or USB_RAW_IOCTL_RUN [pid 5851] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5851] ioctl(3, UI_DEV_CREATE or USB_RAW_IOCTL_RUN [pid 5852] <... ioctl resumed>, 0) = 0 [pid 5849] <... ioctl resumed>, 0) = 0 [pid 5851] <... ioctl resumed>, 0) = 0 [pid 5849] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5852] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffc00283760) = 0 [pid 5852] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5851] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffc00283760) = 0 [pid 5851] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5849] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5849] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5847] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5845] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5845] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5847] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5849] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5849] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5851] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5852] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5851] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5852] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5847] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5845] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5847] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5845] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5849] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5849] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5852] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5852] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5851] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5851] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5845] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5845] ioctl(3, USB_RAW_IOCTL_EP0_WRITE [pid 5847] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5847] ioctl(3, USB_RAW_IOCTL_EP0_WRITE [pid 5845] <... ioctl resumed>, 0x7ffc00282750) = 18 [pid 5849] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5851] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5847] <... ioctl resumed>, 0x7ffc00282750) = 18 [pid 5845] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5851] ioctl(3, USB_RAW_IOCTL_EP0_WRITE [pid 5849] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffc00282750) = 18 [pid 5849] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffc00283760) = 0 [pid 5849] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5852] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5851] <... ioctl resumed>, 0x7ffc00282750) = 18 [pid 5847] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5845] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5852] ioctl(3, USB_RAW_IOCTL_EP0_WRITE [pid 5851] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5852] <... ioctl resumed>, 0x7ffc00282750) = 18 [pid 5851] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5847] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5845] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5852] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5851] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5847] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5852] <... ioctl resumed>, 0x7ffc00283760) = 0 [ 90.791750][ T49] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 90.801543][ T9] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 90.811655][ T839] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 90.821500][ T5855] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 90.829372][ T10] usb 5-1: new high-speed USB device number 2 using dummy_hcd [pid 5852] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5847] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5845] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5847] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5845] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5851] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5852] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5851] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5849] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5849] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5852] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5845] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5845] ioctl(3, USB_RAW_IOCTL_EP0_WRITE [pid 5847] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5845] <... ioctl resumed>, 0x7ffc00282750) = 18 [pid 5849] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5847] ioctl(3, USB_RAW_IOCTL_EP0_WRITE [pid 5845] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5849] ioctl(3, USB_RAW_IOCTL_EP0_WRITE [pid 5847] <... ioctl resumed>, 0x7ffc00282750) = 18 [pid 5845] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5849] <... ioctl resumed>, 0x7ffc00282750) = 18 [pid 5849] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffc00283760) = 0 [pid 5849] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffc00282750) = 9 [pid 5849] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffc00283760) = 0 [pid 5849] ioctl(3, USB_RAW_IOCTL_EP0_WRITE [pid 5852] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5851] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5847] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5845] ioctl(3, USB_RAW_IOCTL_EP0_WRITE [pid 5852] ioctl(3, USB_RAW_IOCTL_EP0_WRITE [pid 5849] <... ioctl resumed>, 0x7ffc00282750) = 18 [pid 5852] <... ioctl resumed>, 0x7ffc00282750) = 18 [ 90.961547][ T49] usb 1-1: Using ep0 maxpacket: 32 [ 90.961694][ T9] usb 2-1: Using ep0 maxpacket: 32 [ 90.981525][ T839] usb 3-1: Using ep0 maxpacket: 32 [ 90.991503][ T5855] usb 4-1: Using ep0 maxpacket: 32 [ 90.996784][ T10] usb 5-1: Using ep0 maxpacket: 32 [pid 5852] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffc00283760) = 0 [pid 5852] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffc00282750) = 9 [pid 5852] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffc00283760) = 0 [pid 5852] ioctl(3, USB_RAW_IOCTL_EP0_WRITE [pid 5851] ioctl(3, USB_RAW_IOCTL_EP0_WRITE [pid 5849] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5847] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5845] <... ioctl resumed>, 0x7ffc00282750) = 9 [pid 5852] <... ioctl resumed>, 0x7ffc00282750) = 18 [pid 5852] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5847] ioctl(3, USB_RAW_IOCTL_EP0_WRITE [pid 5845] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffc00283760) = 0 [pid 5847] <... ioctl resumed>, 0x7ffc00282750) = 9 [pid 5845] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffc00282750) = 18 [pid 5847] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5845] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5847] <... ioctl resumed>, 0x7ffc00283760) = 0 [ 91.009397][ T839] usb 3-1: New USB device found, idVendor=2040, idProduct=c603, bcdDevice= 1.8e [ 91.014884][ T10] usb 5-1: New USB device found, idVendor=2040, idProduct=c603, bcdDevice= 1.8e [ 91.020587][ T839] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 91.030072][ T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 91.042699][ T839] usb 3-1: config 0 descriptor?? [ 91.052036][ T49] usb 1-1: New USB device found, idVendor=2040, idProduct=c603, bcdDevice= 1.8e [pid 5847] ioctl(3, USB_RAW_IOCTL_EP0_WRITE [pid 5851] <... ioctl resumed>, 0x7ffc00282750) = 18 [pid 5849] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5847] <... ioctl resumed>, 0x7ffc00282750) = 18 [pid 5851] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5849] ioctl(3, USB_RAW_IOCTL_VBUS_DRAW [pid 5847] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5851] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5849] <... ioctl resumed>, 0) = 0 [pid 5851] ioctl(3, USB_RAW_IOCTL_EP0_WRITE [pid 5849] ioctl(3, USB_RAW_IOCTL_CONFIGURE [pid 5852] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5851] <... ioctl resumed>, 0x7ffc00282750) = 9 [pid 5849] <... ioctl resumed>, 0) = 0 [pid 5851] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [ 91.063179][ T49] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 91.071847][ T9] usb 2-1: New USB device found, idVendor=2040, idProduct=c603, bcdDevice= 1.8e [ 91.083989][ T10] usb 5-1: config 0 descriptor?? [ 91.089299][ T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 91.095433][ T49] usb 1-1: config 0 descriptor?? [ 91.105161][ T9] usb 2-1: config 0 descriptor?? [pid 5849] ioctl(3, USB_RAW_IOCTL_EP0_READ [pid 5852] ioctl(3, USB_RAW_IOCTL_VBUS_DRAW [pid 5851] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5849] <... ioctl resumed>, 0x7ffc00282750) = 0 [pid 5851] ioctl(3, USB_RAW_IOCTL_EP0_WRITE [pid 5852] <... ioctl resumed>, 0) = 0 [pid 5851] <... ioctl resumed>, 0x7ffc00282750) = 18 [pid 5845] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5845] ioctl(3, USB_RAW_IOCTL_VBUS_DRAW, 0) = 0 [pid 5845] ioctl(3, USB_RAW_IOCTL_CONFIGURE, 0) = 0 [pid 5845] ioctl(3, USB_RAW_IOCTL_EP0_READ [pid 5852] ioctl(3, USB_RAW_IOCTL_CONFIGURE [pid 5851] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH [pid 5847] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5845] <... ioctl resumed>, 0x7ffc00282750) = 0 [pid 5852] <... ioctl resumed>, 0) = 0 [pid 5851] <... ioctl resumed>, 0x7ffc00283760) = 0 [pid 5847] ioctl(3, USB_RAW_IOCTL_VBUS_DRAW [ 91.110340][ T5855] usb 4-1: New USB device found, idVendor=2040, idProduct=c603, bcdDevice= 1.8e [ 91.111353][ T839] usb 3-1: dvb_usb_v2: found a 'Hauppauge 126xxx ATSC+' in warm state [ 91.120195][ T5855] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 91.135652][ T49] usb 1-1: dvb_usb_v2: found a 'Hauppauge 126xxx ATSC+' in warm state [ 91.142668][ T5855] usb 4-1: config 0 descriptor?? [pid 5852] ioctl(3, USB_RAW_IOCTL_EP0_READ [pid 5851] ioctl(3, USB_RAW_IOCTL_VBUS_DRAW [pid 5847] <... ioctl resumed>, 0) = 0 [pid 5852] <... ioctl resumed>, 0x7ffc00282750) = 0 [pid 5851] <... ioctl resumed>, 0) = 0 [pid 5847] ioctl(3, USB_RAW_IOCTL_CONFIGURE [pid 5851] ioctl(3, USB_RAW_IOCTL_CONFIGURE, 0) = 0 [pid 5847] <... ioctl resumed>, 0) = 0 [pid 5851] ioctl(3, USB_RAW_IOCTL_EP0_READ [pid 5847] ioctl(3, USB_RAW_IOCTL_EP0_READ, 0x7ffc00282750) = 0 [pid 5851] <... ioctl resumed>, 0x7ffc00282750) = 0 [ 91.163142][ T10] usb 5-1: dvb_usb_v2: found a 'Hauppauge 126xxx ATSC+' in warm state [ 91.175622][ T839] usb 3-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 91.177652][ T9] usb 2-1: dvb_usb_v2: found a 'Hauppauge 126xxx ATSC+' in warm state [ 91.187379][ T49] usb 1-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 91.198658][ T5855] usb 4-1: dvb_usb_v2: found a 'Hauppauge 126xxx ATSC+' in warm state [ 91.218596][ T839] dvbdev: DVB: registering new adapter (Hauppauge 126xxx ATSC+) [ 91.223480][ T10] usb 5-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 91.243104][ T49] dvbdev: DVB: registering new adapter (Hauppauge 126xxx ATSC+) [ 91.251513][ T839] usb 3-1: media controller created [ 91.260448][ T49] usb 1-1: media controller created [ 91.263613][ T5855] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 91.280964][ T9] usb 2-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 91.299954][ T839] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 91.311056][ T10] dvbdev: DVB: registering new adapter (Hauppauge 126xxx ATSC+) [pid 5849] openat(AT_FDCWD, "/dev/i2c-1", O_RDWR|O_APPEND) = 4 [ 91.318869][ T10] usb 5-1: media controller created [ 91.318899][ T5855] dvbdev: DVB: registering new adapter (Hauppauge 126xxx ATSC+) [ 91.320794][ T5849] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000019: 0000 [#1] SMP KASAN PTI [ 91.331827][ T5849] KASAN: null-ptr-deref in range [0x00000000000000c8-0x00000000000000cf] [ 91.331865][ T5849] CPU: 1 UID: 0 PID: 5849 Comm: syz-executor279 Not tainted 6.15.0-rc2-syzkaller #0 PREEMPT(full) [ 91.331889][ T5849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 91.331902][ T5849] RIP: 0010:__mutex_lock+0x15d/0x10c0 [ 91.331959][ T5849] Code: c0 80 f6 73 9a 48 c1 e8 03 42 0f b6 04 38 84 c0 0f 85 07 0e 00 00 83 3d 40 ba 41 0e 00 75 21 49 8d 7e 60 48 89 f8 48 c1 e8 03 <42> 80 3c 38 00 74 05 e8 17 52 fb f5 4d 39 76 60 0f 85 81 0d 00 00 [ 91.344150][ T5855] usb 4-1: media controller created [ 91.352215][ T5849] RSP: 0018:ffffc90004206f80 EFLAGS: 00010202 [ 91.352239][ T5849] RAX: 0000000000000019 RBX: ffffc90004207040 RCX: ffffffff9a73f603 [ 91.352255][ T5849] RDX: ffff888035f65a00 RSI: ffffffff8e4fde18 RDI: 00000000000000c8 [ 91.362951][ T9] dvbdev: DVB: registering new adapter (Hauppauge 126xxx ATSC+) [ 91.372951][ T5849] RBP: ffffc90004207118 R08: ffffc90004207087 R09: 0000000000000000 [ 91.372968][ T5849] R10: ffffc90004207060 R11: fffff52000840e11 R12: 0000000000000000 [ 91.389663][ T9] usb 2-1: media controller created [ 91.397937][ T5849] R13: ffffc90004207048 R14: 0000000000000068 R15: dffffc0000000000 [pid 5849] read(4, [pid 5845] openat(AT_FDCWD, "/dev/i2c-1", O_RDWR|O_APPEND) = 4 [pid 5845] read(4, [pid 5852] openat(AT_FDCWD, "/dev/i2c-1", O_RDWR|O_APPEND) = 4 [ 91.397955][ T5849] FS: 0000555594939380(0000) GS:ffff888125093000(0000) knlGS:0000000000000000 [ 91.397972][ T5849] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 91.397992][ T5849] CR2: 00007f79554c50f0 CR3: 000000007cfd2000 CR4: 00000000003526f0 [ 91.414830][ T9] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 91.417291][ T5849] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 91.433078][ T9] usb 2-1: selecting invalid altsetting 1 [ 91.440856][ T5849] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 91.448931][ T9] set interface failed [ 91.454035][ T5849] Call Trace: [ 91.454047][ T5849] [ 91.454058][ T5849] ? __mutex_lock+0x380/0x10c0 [ 91.454094][ T5849] ? __lock_acquire+0xad5/0xd80 [ 91.454118][ T5849] ? dvb_usbv2_generic_write+0x26/0x50 [ 91.505007][ T9] usb 2-1: dvb_usb_v2: usb_bulk_msg() failed=-22 [ 91.507772][ T5849] ? __pfx___mutex_lock+0x10/0x10 [ 91.531414][ T9] error writing reg: 0xff, val: 0x00 [ 91.535674][ T5849] ? __pfx___mutex_lock+0x10/0x10 [ 91.563141][ T5849] ? trace_contention_end+0x3c/0x120 [ 91.568554][ T5849] ? __mutex_lock+0x380/0x10c0 [ 91.573365][ T5849] dvb_usbv2_generic_write+0x26/0x50 [ 91.578698][ T5849] mxl111sf_ctrl_msg+0x172/0x2e0 [ 91.583668][ T5849] mxl111sf_write_reg+0xda/0x1f0 [ 91.588620][ T5849] ? __pfx_mxl111sf_write_reg+0x10/0x10 [ 91.594181][ T5849] ? trace_tlb_flush+0x3e/0x140 [ 91.599044][ T5849] ? flush_tlb_func+0x19b/0x7a0 [ 91.603906][ T5849] mxl111sf_i2c_xfer+0x923/0x8aa0 [ 91.608969][ T5849] ? smp_call_function_many_cond+0x260a/0x2d40 [ 91.615156][ T5849] ? rcu_is_watching+0x15/0xb0 [ 91.620055][ T5849] ? is_bpf_text_address+0x26/0x2a0 [ 91.625284][ T5849] ? __pfx_mxl111sf_i2c_xfer+0x10/0x10 [ 91.630769][ T5849] ? arch_stack_walk+0xff/0x150 [ 91.635650][ T5849] ? stack_trace_save+0x11a/0x1d0 [ 91.640726][ T5849] ? __kernel_text_address+0xd/0x40 [ 91.645941][ T5849] ? __pfx_stack_trace_save+0x10/0x10 [ 91.651337][ T5849] ? check_noncircular+0xee/0x160 [ 91.656378][ T5849] ? lockdep_unlock+0x8d/0x120 [ 91.661146][ T5849] ? validate_chain+0x8a7/0x24e0 [ 91.666099][ T5849] ? __lock_acquire+0xad5/0xd80 [ 91.670954][ T5849] ? do_raw_spin_lock+0x151/0x370 [ 91.675993][ T5849] ? __pfx_mxl111sf_i2c_xfer+0x10/0x10 [ 91.681456][ T5849] __i2c_transfer+0x859/0x2250 [ 91.686222][ T5849] ? _raw_spin_unlock_irqrestore+0x90/0x140 [ 91.692141][ T5849] ? lockdep_hardirqs_on+0x9d/0x150 [ 91.697348][ T5849] ? __pfx___i2c_transfer+0x10/0x10 [ 91.702560][ T5849] ? rt_mutex_lock_nested+0x15e/0x1e0 [ 91.708029][ T5849] ? i2c_transfer+0x12d/0x430 [ 91.712753][ T5849] i2c_transfer+0x2c2/0x430 [ 91.717264][ T5849] ? __pfx_i2c_transfer+0x10/0x10 [ 91.722294][ T5849] i2c_transfer_buffer_flags+0x182/0x260 [ 91.727931][ T5849] ? __pfx_i2c_transfer_buffer_flags+0x10/0x10 [ 91.734091][ T5849] ? rcu_is_watching+0x15/0xb0 [ 91.738886][ T5849] ? trace_kmalloc+0x1f/0xd0 [ 91.743493][ T5849] ? i2cdev_read+0xe6/0x220 [ 91.748001][ T5849] i2cdev_read+0x10a/0x220 [ 91.752422][ T5849] ? __pfx_i2cdev_read+0x10/0x10 [ 91.757364][ T5849] vfs_read+0x21f/0xb90 [ 91.761528][ T5849] ? __pfx_vfs_read+0x10/0x10 [ 91.766227][ T5849] ? _raw_spin_unlock_irq+0x23/0x50 [ 91.771453][ T5849] ? lockdep_hardirqs_on+0x9d/0x150 [ 91.776673][ T5849] ? _raw_spin_unlock_irq+0x2e/0x50 [ 91.781880][ T5849] ? ptrace_notify+0x282/0x390 [ 91.786664][ T5849] ksys_read+0x19d/0x2d0 [ 91.790919][ T5849] ? __pfx_ksys_read+0x10/0x10 [ 91.795694][ T5849] do_syscall_64+0xf3/0x230 [ 91.800208][ T5849] ? clear_bhb_loop+0x45/0xa0 [ 91.804890][ T5849] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 91.810790][ T5849] RIP: 0033:0x7f795544e4e9 [ 91.815222][ T5849] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 91.834834][ T5849] RSP: 002b:00007ffc002847a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 91.843252][ T5849] RAX: ffffffffffffffda RBX: 0000200000000000 RCX: 00007f795544e4e9 [ 91.851228][ T5849] RDX: 0000000000000063 RSI: 0000000000000000 RDI: 0000000000000004 [ 91.859198][ T5849] RBP: 00000000000f4240 R08: 00232d6332692f76 R09: 00000000000000a0 [ 91.867172][ T5849] R10: 000000000000000f R11: 0000000000000246 R12: 0000000000000001 [ 91.875142][ T5849] R13: 00007ffc002849c8 R14: 00007ffc002847d0 R15: 00007ffc002847c0 [ 91.883126][ T5849] [ 91.886150][ T5849] Modules linked in: [ 91.890344][ T5849] ---[ end trace 0000000000000000 ]--- [ 91.897556][ T9] dvb_usb_mxl111sf 2-1:0.0: probe with driver dvb_usb_mxl111sf failed with error -22 [ 91.902477][ T49] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 91.910180][ T5849] RIP: 0010:__mutex_lock+0x15d/0x10c0 [pid 5852] read(4, [pid 5851] openat(AT_FDCWD, "/dev/i2c-1", O_RDWR|O_APPEND [pid 5847] openat(AT_FDCWD, "/dev/i2c-1", O_RDWR|O_APPEND [pid 5851] <... openat resumed>) = 4 [pid 5847] <... openat resumed>) = 4 [pid 5851] read(4, [ 91.922438][ T5849] Code: c0 80 f6 73 9a 48 c1 e8 03 42 0f b6 04 38 84 c0 0f 85 07 0e 00 00 83 3d 40 ba 41 0e 00 75 21 49 8d 7e 60 48 89 f8 48 c1 e8 03 <42> 80 3c 38 00 74 05 e8 17 52 fb f5 4d 39 76 60 0f 85 81 0d 00 00 [ 91.944782][ T49] usb 1-1: selecting invalid altsetting 1 [ 91.947333][ T5849] RSP: 0018:ffffc90004206f80 EFLAGS: 00010202 [ 91.950523][ T49] set interface failed [ 91.950534][ T5849] [ 91.964324][ T5849] RAX: 0000000000000019 RBX: ffffc90004207040 RCX: ffffffff9a73f603 [ 91.972901][ T49] usb 1-1: dvb_usb_v2: usb_bulk_msg() failed=-22 [ 91.977317][ T5849] RDX: ffff888035f65a00 RSI: ffffffff8e4fde18 RDI: 00000000000000c8 [ 91.979590][ T839] usb 3-1: selecting invalid altsetting 1 [ 91.994509][ T10] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 91.998121][ T49] error writing reg: 0xff, val: 0x00 [ 92.011059][ T977] cfg80211: failed to load regulatory.db [ 92.023732][ T5849] RBP: ffffc90004207118 R08: ffffc90004207087 R09: 0000000000000000 [ 92.042190][ T5849] R10: ffffc90004207060 R11: fffff52000840e11 R12: 0000000000000000 [ 92.045416][ T839] set interface failed [ 92.050301][ T5849] R13: ffffc90004207048 R14: 0000000000000068 R15: dffffc0000000000 [ 92.063870][ T10] usb 5-1: selecting invalid altsetting 1 [ 92.068838][ T5849] FS: 0000555594939380(0000) GS:ffff888125093000(0000) knlGS:0000000000000000 [ 92.069606][ T10] set interface failed [ 92.069641][ T10] usb 5-1: dvb_usb_v2: usb_bulk_msg() failed=-22 [ 92.078591][ T5849] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 92.078610][ T5849] CR2: 000055dccfef9670 CR3: 000000007cfd2000 CR4: 00000000003526f0 [ 92.087095][ T5855] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 92.089012][ T5849] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 92.105905][ T10] error writing reg: 0xff, val: 0x00 [ 92.114180][ T5849] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 92.122562][ T5855] usb 4-1: selecting invalid altsetting 1 [ 92.128571][ T5849] Kernel panic - not syncing: Fatal exception [ 92.135394][ T5849] Kernel Offset: disabled