./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2800614401
<...>
Warning: Permanently added '10.128.1.141' (ED25519) to the list of known hosts.
execve("./syz-executor2800614401", ["./syz-executor2800614401"], 0x7ffef8c2fe50 /* 10 vars */) = 0
brk(NULL) = 0x55556bcd6000
brk(0x55556bcd6d00) = 0x55556bcd6d00
arch_prctl(ARCH_SET_FS, 0x55556bcd6380) = 0
set_tid_address(0x55556bcd6650) = 5232
set_robust_list(0x55556bcd6660, 24) = 0
rseq(0x55556bcd6ca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor2800614401", 4096) = 28
getrandom("\x1b\x63\x9e\x0a\xe4\x42\x35\xe0", 8, GRND_NONBLOCK) = 8
brk(NULL) = 0x55556bcd6d00
brk(0x55556bcf7d00) = 0x55556bcf7d00
brk(0x55556bcf8000) = 0x55556bcf8000
mprotect(0x7f8c198a4000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556bcd6650) = 5233
./strace-static-x86_64: Process 5233 attached
[pid 5233] set_robust_list(0x55556bcd6660, 24) = 0
[pid 5233] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5233] setpgid(0, 0) = 0
[pid 5233] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5233] write(3, "1000", 4) = 4
[pid 5233] close(3executing program
) = 0
[pid 5233] write(1, "executing program\n", 18) = 18
[pid 5233] openat(AT_FDCWD, "/dev/raw-gadget", O_RDWR) = 3
[pid 5233] ioctl(3, USB_RAW_IOCTL_INIT, 0x7fffb56ab790) = 0
[pid 5233] ioctl(3, UI_DEV_CREATE or USB_RAW_IOCTL_RUN, 0) = 0
[pid 5233] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fffb56ab790) = 0
[pid 5233] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fffb56ab790) = 0
[pid 5233] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fffb56ab790) = 0
[pid 5233] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fffb56ab790) = 0
[pid 5233] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7fffb56aa780) = 18
[pid 5233] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fffb56ab790) = 0
[ 76.757501][ T1184] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[pid 5233] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fffb56ab790) = 0
[pid 5233] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fffb56ab790) = 0
[pid 5233] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7fffb56aa780) = 18
[pid 5233] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fffb56ab790) = 0
[pid 5233] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7fffb56aa780) = 9
[pid 5233] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fffb56ab790) = 0
[pid 5233] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7fffb56aa780) = 18
[pid 5233] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fffb56ab790) = 0
[pid 5233] ioctl(3, USB_RAW_IOCTL_VBUS_DRAW, 0) = 0
[pid 5233] ioctl(3, USB_RAW_IOCTL_CONFIGURE, 0) = 0
[pid 5233] ioctl(3, USB_RAW_IOCTL_EP0_READ, 0x7fffb56aa780) = 0
[ 76.964654][ T1184] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.9e
[ 76.974342][ T1184] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 76.988477][ T1184] usb 1-1: config 0 descriptor??
[pid 5233] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fffb56ab7b0) = 0
[pid 5233] ioctl(3, USB_RAW_IOCTL_EP0_READ, 0x7fffb56aa7a0) = 4
[pid 5233] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fffb56ab7b0) = 0
[pid 5233] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7fffb56aa7a0) = 8
[pid 5233] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fffb56ab7b0) = 0
[pid 5233] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7fffb56aa7a0) = 0
[ 77.630467][ T1184] ------------[ cut here ]------------
[ 77.636235][ T1184] WARNING: CPU: 0 PID: 1184 at drivers/net/wireless/ath/ath6kl/bmi.c:90 ath6kl_bmi_get_target_info+0x44a/0x590
[ 77.636297][ T1184] Modules linked in:
[ 77.636319][ T1184] CPU: 0 UID: 0 PID: 1184 Comm: kworker/0:3 Not tainted 6.10.0-next-20240726-syzkaller #0
[ 77.636336][ T1184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 77.636347][ T1184] Workqueue: usb_hub_wq hub_event
[ 77.636372][ T1184] RIP: 0010:ath6kl_bmi_get_target_info+0x44a/0x590
[ 77.636399][ T1184] Code: 04 30 84 c0 0f 85 3a 01 00 00 48 8b 44 24 08 8b 30 48 c7 c7 e0 50 a4 8c 89 da e8 a1 1b fe ff e9 04 fe ff ff e8 e7 62 c9 fa 90 <0f> 0b 90 bb ea ff ff ff e9 f1 fd ff ff e8 d4 62 c9 fa 31 db e9 e5
[ 77.636416][ T1184] RSP: 0018:ffffc90004656b60 EFLAGS: 00010293
[ 77.636429][ T1184] RAX: ffffffff86ca6839 RBX: 0000000000000000 RCX: ffff888023061e00
[ 77.636441][ T1184] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000c
[ 77.636450][ T1184] RBP: ffffc90004656c30 R08: ffffffff86ca6790 R09: 1ffffffff26e6f0e
[ 77.636462][ T1184] R10: dffffc0000000000 R11: fffffbfff26e6f0f R12: ffffc90004656ce4
[ 77.636474][ T1184] R13: ffff888024380e40 R14: dffffc0000000000 R15: 1ffff920008cad74
[ 77.636486][ T1184] FS: 0000000000000000(0000) GS:ffff8880b9200000(0000) knlGS:0000000000000000
[ 77.636502][ T1184] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 77.636513][ T1184] CR2: 0000000020000700 CR3: 000000007b032000 CR4: 00000000003506f0
[ 77.636526][ T1184] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 77.636536][ T1184] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 77.636546][ T1184] Call Trace:
[ 77.636552][ T1184]
[ 77.636560][ T1184] ? __warn+0x168/0x4e0
[ 77.636577][ T1184] ? ath6kl_bmi_get_target_info+0x44a/0x590
[ 77.636605][ T1184] ? report_bug+0x2b3/0x500
[ 77.636630][ T1184] ? ath6kl_bmi_get_target_info+0x44a/0x590
[ 77.636659][ T1184] ? handle_bug+0x3e/0x70
[ 77.636675][ T1184] ? exc_invalid_op+0x1a/0x50
[ 77.636693][ T1184] ? asm_exc_invalid_op+0x1a/0x20
[ 77.636716][ T1184] ? ath6kl_bmi_get_target_info+0x3a0/0x590
[ 77.636740][ T1184] ? ath6kl_bmi_get_target_info+0x449/0x590
[ 77.636766][ T1184] ? ath6kl_bmi_get_target_info+0x44a/0x590
[ 77.636799][ T1184] ? __pfx_ath6kl_bmi_get_target_info+0x10/0x10
[ 77.636823][ T1184] ? ath6kl_bmi_init+0x6d/0xf0
[ 77.636837][ T1184] ? __kmalloc_noprof+0x21a/0x400
[ 77.636865][ T1184] ath6kl_core_init+0x1eb/0x1140
[ 77.636890][ T1184] ? __pfx_lockdep_init_map_type+0x10/0x10
[ 77.636919][ T1184] ? __kasan_kmalloc+0x98/0xb0
[ 77.636936][ T1184] ? __pfx_ath6kl_core_init+0x10/0x10
[ 77.636963][ T1184] ? ath6kl_core_create+0x7d8/0x950
[ 77.637008][ T1184] ath6kl_usb_probe+0x129b/0x1390
[ 77.637052][ T1184] ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 77.637190][ T1184] ? usb_disable_lpm+0x77/0x380
[ 77.637228][ T1184] usb_probe_interface+0x645/0xbb0
[ 77.637280][ T1184] ? __pfx_usb_probe_interface+0x10/0x10
[ 77.637313][ T1184] really_probe+0x2b8/0xad0
[ 77.637352][ T1184] __driver_probe_device+0x1a2/0x390
[ 77.637384][ T1184] driver_probe_device+0x50/0x430
[ 77.637410][ T1184] __device_attach_driver+0x2d6/0x530
[ 77.637439][ T1184] bus_for_each_drv+0x24e/0x2e0
[ 77.637472][ T1184] ? __pfx___device_attach_driver+0x10/0x10
[ 77.637499][ T1184] ? __pfx_bus_for_each_drv+0x10/0x10
[ 77.637546][ T1184] __device_attach+0x333/0x520
[ 77.637571][ T1184] ? __pfx_lock_release+0x10/0x10
[ 77.637610][ T1184] ? __pfx___device_attach+0x10/0x10
[ 77.637637][ T1184] ? do_raw_spin_unlock+0x13c/0x8b0
[ 77.637676][ T1184] bus_probe_device+0x189/0x260
[ 77.637715][ T1184] device_add+0x856/0xbf0
[ 77.637745][ T1184] usb_set_configuration+0x1976/0x1fb0
[ 77.637806][ T1184] usb_generic_driver_probe+0x88/0x140
[ 77.637838][ T1184] usb_probe_device+0x1b8/0x380
[ 77.637875][ T1184] ? __pfx_usb_probe_device+0x10/0x10
[ 77.637906][ T1184] really_probe+0x2b8/0xad0
[ 77.637943][ T1184] __driver_probe_device+0x1a2/0x390
[ 77.637976][ T1184] driver_probe_device+0x50/0x430
[ 77.638008][ T1184] __device_attach_driver+0x2d6/0x530
[ 77.638052][ T1184] bus_for_each_drv+0x24e/0x2e0
[ 77.638086][ T1184] ? __pfx___device_attach_driver+0x10/0x10
[ 77.638114][ T1184] ? __pfx_bus_for_each_drv+0x10/0x10
[ 77.638160][ T1184] __device_attach+0x333/0x520
[ 77.638194][ T1184] ? __pfx___device_attach+0x10/0x10
[ 77.638231][ T1184] bus_probe_device+0x189/0x260
[ 77.638267][ T1184] device_add+0x856/0xbf0
[ 77.638299][ T1184] usb_new_device+0x104a/0x19a0
[ 77.638349][ T1184] ? __pfx_usb_new_device+0x10/0x10
[ 77.638381][ T1184] ? _raw_spin_unlock_irq+0x23/0x50
[ 77.638410][ T1184] ? lockdep_hardirqs_on+0x99/0x150
[ 77.638445][ T1184] hub_event+0x2d6d/0x5150
[ 77.638531][ T1184] ? __pfx_hub_event+0x10/0x10
[ 77.638565][ T1184] ? __pfx_lock_acquire+0x10/0x10
[ 77.638596][ T1184] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 77.638630][ T1184] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 77.638678][ T1184] ? process_scheduled_works+0x945/0x1830
[ 77.638706][ T1184] process_scheduled_works+0xa2c/0x1830
[ 77.638771][ T1184] ? __pfx_process_scheduled_works+0x10/0x10
[ 77.638813][ T1184] ? assign_work+0x364/0x3d0
[ 77.638848][ T1184] worker_thread+0x86d/0xd40
[ 77.638891][ T1184] ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 77.638928][ T1184] ? __kthread_parkme+0x169/0x1d0
[ 77.638965][ T1184] ? __pfx_worker_thread+0x10/0x10
[ 77.638997][ T1184] kthread+0x2f0/0x390
[ 77.639031][ T1184] ? __pfx_worker_thread+0x10/0x10
[ 77.639062][ T1184] ? __pfx_kthread+0x10/0x10
[ 77.639086][ T1184] ret_from_fork+0x4b/0x80
[ 77.639118][ T1184] ? __pfx_kthread+0x10/0x10
[ 77.639141][ T1184] ret_from_fork_asm+0x1a/0x30
[ 77.639193][ T1184]
[ 77.639205][ T1184] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 78.191305][ T1184] CPU: 0 UID: 0 PID: 1184 Comm: kworker/0:3 Not tainted 6.10.0-next-20240726-syzkaller #0
[ 78.201308][ T1184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 78.211545][ T1184] Workqueue: usb_hub_wq hub_event
[ 78.216595][ T1184] Call Trace:
[ 78.219887][ T1184]
[ 78.222823][ T1184] dump_stack_lvl+0x241/0x360
[ 78.227526][ T1184] ? __pfx_dump_stack_lvl+0x10/0x10
[ 78.232743][ T1184] ? __pfx__printk+0x10/0x10
[ 78.237445][ T1184] ? vscnprintf+0x5d/0x90
[ 78.241787][ T1184] panic+0x349/0x870
[ 78.245737][ T1184] ? __warn+0x177/0x4e0
[ 78.249925][ T1184] ? __pfx_panic+0x10/0x10
[ 78.254412][ T1184] ? ret_from_fork_asm+0x1a/0x30
[ 78.259382][ T1184] __warn+0x34b/0x4e0
[ 78.263554][ T1184] ? ath6kl_bmi_get_target_info+0x44a/0x590
[ 78.269557][ T1184] report_bug+0x2b3/0x500
[ 78.274079][ T1184] ? ath6kl_bmi_get_target_info+0x44a/0x590
[ 78.280013][ T1184] handle_bug+0x3e/0x70
[ 78.284481][ T1184] exc_invalid_op+0x1a/0x50
[ 78.289185][ T1184] asm_exc_invalid_op+0x1a/0x20
[ 78.294059][ T1184] RIP: 0010:ath6kl_bmi_get_target_info+0x44a/0x590
[ 78.300594][ T1184] Code: 04 30 84 c0 0f 85 3a 01 00 00 48 8b 44 24 08 8b 30 48 c7 c7 e0 50 a4 8c 89 da e8 a1 1b fe ff e9 04 fe ff ff e8 e7 62 c9 fa 90 <0f> 0b 90 bb ea ff ff ff e9 f1 fd ff ff e8 d4 62 c9 fa 31 db e9 e5
[ 78.320388][ T1184] RSP: 0018:ffffc90004656b60 EFLAGS: 00010293
[ 78.326466][ T1184] RAX: ffffffff86ca6839 RBX: 0000000000000000 RCX: ffff888023061e00
[ 78.334558][ T1184] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000c
[ 78.342708][ T1184] RBP: ffffc90004656c30 R08: ffffffff86ca6790 R09: 1ffffffff26e6f0e
[ 78.350777][ T1184] R10: dffffc0000000000 R11: fffffbfff26e6f0f R12: ffffc90004656ce4
[ 78.358856][ T1184] R13: ffff888024380e40 R14: dffffc0000000000 R15: 1ffff920008cad74
[ 78.366853][ T1184] ? ath6kl_bmi_get_target_info+0x3a0/0x590
[ 78.372785][ T1184] ? ath6kl_bmi_get_target_info+0x449/0x590
[ 78.378762][ T1184] ? __pfx_ath6kl_bmi_get_target_info+0x10/0x10
[ 78.385040][ T1184] ? ath6kl_bmi_init+0x6d/0xf0
[ 78.389904][ T1184] ? __kmalloc_noprof+0x21a/0x400
[ 78.394982][ T1184] ath6kl_core_init+0x1eb/0x1140
[ 78.399967][ T1184] ? __pfx_lockdep_init_map_type+0x10/0x10
[ 78.405803][ T1184] ? __kasan_kmalloc+0x98/0xb0
[ 78.410586][ T1184] ? __pfx_ath6kl_core_init+0x10/0x10
[ 78.415996][ T1184] ? ath6kl_core_create+0x7d8/0x950
[ 78.421257][ T1184] ath6kl_usb_probe+0x129b/0x1390
[ 78.426317][ T1184] ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 78.432251][ T1184] ? usb_disable_lpm+0x77/0x380
[ 78.437182][ T1184] usb_probe_interface+0x645/0xbb0
[ 78.442351][ T1184] ? __pfx_usb_probe_interface+0x10/0x10
[ 78.448100][ T1184] really_probe+0x2b8/0xad0
[ 78.452674][ T1184] __driver_probe_device+0x1a2/0x390
[ 78.458028][ T1184] driver_probe_device+0x50/0x430
[ 78.463084][ T1184] __device_attach_driver+0x2d6/0x530
[ 78.468610][ T1184] bus_for_each_drv+0x24e/0x2e0
[ 78.473528][ T1184] ? __pfx___device_attach_driver+0x10/0x10
[ 78.479468][ T1184] ? __pfx_bus_for_each_drv+0x10/0x10
[ 78.484988][ T1184] __device_attach+0x333/0x520
[ 78.489798][ T1184] ? __pfx_lock_release+0x10/0x10
[ 78.494892][ T1184] ? __pfx___device_attach+0x10/0x10
[ 78.500212][ T1184] ? do_raw_spin_unlock+0x13c/0x8b0
[ 78.505440][ T1184] bus_probe_device+0x189/0x260
[ 78.510316][ T1184] device_add+0x856/0xbf0
[ 78.514749][ T1184] usb_set_configuration+0x1976/0x1fb0
[ 78.520266][ T1184] usb_generic_driver_probe+0x88/0x140
[ 78.525766][ T1184] usb_probe_device+0x1b8/0x380
[ 78.530753][ T1184] ? __pfx_usb_probe_device+0x10/0x10
[ 78.536171][ T1184] really_probe+0x2b8/0xad0
[ 78.540709][ T1184] __driver_probe_device+0x1a2/0x390
[ 78.546010][ T1184] driver_probe_device+0x50/0x430
[ 78.551078][ T1184] __device_attach_driver+0x2d6/0x530
[ 78.556467][ T1184] bus_for_each_drv+0x24e/0x2e0
[ 78.561333][ T1184] ? __pfx___device_attach_driver+0x10/0x10
[ 78.567328][ T1184] ? __pfx_bus_for_each_drv+0x10/0x10
[ 78.572724][ T1184] __device_attach+0x333/0x520
[ 78.577505][ T1184] ? __pfx___device_attach+0x10/0x10
[ 78.582898][ T1184] bus_probe_device+0x189/0x260
[ 78.587874][ T1184] device_add+0x856/0xbf0
[ 78.592223][ T1184] usb_new_device+0x104a/0x19a0
[ 78.597192][ T1184] ? __pfx_usb_new_device+0x10/0x10
[ 78.602410][ T1184] ? _raw_spin_unlock_irq+0x23/0x50
[ 78.608275][ T1184] ? lockdep_hardirqs_on+0x99/0x150
[ 78.613662][ T1184] hub_event+0x2d6d/0x5150
[ 78.618139][ T1184] ? __pfx_hub_event+0x10/0x10
[ 78.622920][ T1184] ? __pfx_lock_acquire+0x10/0x10
[ 78.627975][ T1184] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 78.634061][ T1184] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 78.640501][ T1184] ? process_scheduled_works+0x945/0x1830
[ 78.646244][ T1184] process_scheduled_works+0xa2c/0x1830
[ 78.651832][ T1184] ? __pfx_process_scheduled_works+0x10/0x10
[ 78.657836][ T1184] ? assign_work+0x364/0x3d0
[ 78.662445][ T1184] worker_thread+0x86d/0xd40
[ 78.667082][ T1184] ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 78.673096][ T1184] ? __kthread_parkme+0x169/0x1d0
[ 78.678149][ T1184] ? __pfx_worker_thread+0x10/0x10
[ 78.683276][ T1184] kthread+0x2f0/0x390
[ 78.687360][ T1184] ? __pfx_worker_thread+0x10/0x10
[ 78.692569][ T1184] ? __pfx_kthread+0x10/0x10
[ 78.697164][ T1184] ret_from_fork+0x4b/0x80
[ 78.701769][ T1184] ? __pfx_kthread+0x10/0x10
[ 78.706366][ T1184] ret_from_fork_asm+0x1a/0x30
[ 78.711161][ T1184]
[ 78.714446][ T1184] Kernel Offset: disabled
[ 78.718842][ T1184] Rebooting in 86400 seconds..