[ OK ] Started Getty on tty2. [ OK ] Started Serial Getty on ttyS0. [ OK ] Started Getty on tty1. [ OK ] Started getty on tty2-tty6 if dbus and logind are not available. [ OK ] Started OpenBSD Secure Shell server. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.1.88' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 69.906038][ T4892] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 70.186372][ T4892] usb 1-1: too many configurations: 186, using maximum allowed: 8 [ 70.986032][ T4892] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 70.995078][ T4892] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 71.003518][ T4892] usb 1-1: Product: syz [ 71.007997][ T4892] usb 1-1: Manufacturer: syz [ 71.012584][ T4892] usb 1-1: SerialNumber: syz [ 71.057629][ T4892] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 71.676169][ T4892] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 72.087772][ C1] divide error: 0000 [#1] PREEMPT SMP KASAN [ 72.093681][ C1] CPU: 1 PID: 19 Comm: ksoftirqd/1 Not tainted 5.14.0-rc5-syzkaller #0 [ 72.101907][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 72.111949][ C1] RIP: 0010:ath9k_htc_swba+0x1b2/0xc70 [ 72.117412][ C1] Code: c0 40 84 c6 0f 85 db 09 00 00 48 8b 55 00 0f b7 c9 bd 01 00 00 00 48 0f ca 48 89 d0 c1 ea 0a 48 c1 e8 20 c1 e0 16 09 d0 31 d2 f1 8d 04 12 31 d2 f7 f1 29 c5 48 8d 83 b0 03 00 00 48 89 c7 48 [ 72.136999][ C1] RSP: 0018:ffffc90000d97ca8 EFLAGS: 00010246 [ 72.143046][ C1] RAX: 0000000000000000 RBX: ffff888021813260 RCX: 0000000000000000 [ 72.151019][ C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001 [ 72.159179][ C1] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 72.167132][ C1] R10: ffffffff8509dd4a R11: 0000000000000000 R12: 0000000000000000 [ 72.175085][ C1] R13: 0000000000000000 R14: ffff888021a0c80c R15: ffff88801c3a71f0 [ 72.183038][ C1] FS: 0000000000000000(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000 [ 72.191951][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 72.198517][ C1] CR2: 000055c30c334160 CR3: 000000000b68e000 CR4: 00000000001506e0 [ 72.206472][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 72.214423][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 72.222378][ C1] Call Trace: [ 72.225642][ C1] ? ath9k_wmi_event_tasklet+0x170/0x3f0 [ 72.231269][ C1] ? ath9k_htc_beaconep+0x20/0x20 [ 72.236272][ C1] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 72.242068][ C1] ath9k_wmi_event_tasklet+0x2e7/0x3f0 [ 72.247515][ C1] tasklet_action_common.constprop.0+0x201/0x2e0 [ 72.254265][ C1] __do_softirq+0x29b/0x9c2 [ 72.258767][ C1] ? __irq_exit_rcu+0x1c0/0x1c0 [ 72.263599][ C1] run_ksoftirqd+0x2d/0x60 [ 72.267995][ C1] smpboot_thread_fn+0x645/0x9c0 [ 72.272915][ C1] ? __smpboot_create_thread.part.0+0x370/0x370 [ 72.279135][ C1] kthread+0x3e5/0x4d0 [ 72.283199][ C1] ? set_kthread_struct+0x130/0x130 [ 72.288397][ C1] ret_from_fork+0x1f/0x30 [ 72.292799][ C1] Modules linked in: [ 72.296739][ C1] ---[ end trace 43c91be579d50459 ]--- [ 72.302278][ C1] RIP: 0010:ath9k_htc_swba+0x1b2/0xc70 [ 72.307798][ C1] Code: c0 40 84 c6 0f 85 db 09 00 00 48 8b 55 00 0f b7 c9 bd 01 00 00 00 48 0f ca 48 89 d0 c1 ea 0a 48 c1 e8 20 c1 e0 16 09 d0 31 d2 f1 8d 04 12 31 d2 f7 f1 29 c5 48 8d 83 b0 03 00 00 48 89 c7 48 [ 72.327453][ C1] RSP: 0018:ffffc90000d97ca8 EFLAGS: 00010246 [ 72.333520][ C1] RAX: 0000000000000000 RBX: ffff888021813260 RCX: 0000000000000000 [ 72.341521][ C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001 [ 72.349533][ C1] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 72.357529][ C1] R10: ffffffff8509dd4a R11: 0000000000000000 R12: 0000000000000000 [ 72.365503][ C1] R13: 0000000000000000 R14: ffff888021a0c80c R15: ffff88801c3a71f0 [ 72.373497][ C1] FS: 0000000000000000(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000 [ 72.382468][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 72.389080][ C1] CR2: 000055c30c334160 CR3: 000000000b68e000 CR4: 00000000001506e0 [ 72.397087][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 72.405059][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 72.413045][ C1] Kernel panic - not syncing: Fatal exception in interrupt [ 72.421482][ C1] Kernel Offset: disabled [ 72.425793][ C1] Rebooting in 86400 seconds..