./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1745969421 <...> forked to background, child pid 3186 no interfaces have a carrier [ 27.218581][ T3187] 8021q: adding VLAN 0 to HW filter on device bond0 [ 27.232107][ T3187] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller Warning: Permanently added '10.128.0.81' (ECDSA) to the list of known hosts. execve("./syz-executor1745969421", ["./syz-executor1745969421"], 0x7ffff26869f0 /* 10 vars */) = 0 brk(NULL) = 0x555556ec8000 brk(0x555556ec8c40) = 0x555556ec8c40 arch_prctl(ARCH_SET_FS, 0x555556ec8300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor1745969421", 4096) = 28 brk(0x555556ee9c40) = 0x555556ee9c40 brk(0x555556eea000) = 0x555556eea000 mprotect(0x7ff1bb6ca000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 openat(AT_FDCWD, "/dev/raw-gadget", O_RDWR) = 3 ioctl(3, USB_RAW_IOCTL_INIT, 0x7ffe89b93130) = 0 ioctl(3, UI_DEV_CREATE or USB_RAW_IOCTL_RUN, 0) = 0 ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffe89b93130) = 0 ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffe89b93130) = 0 ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffe89b92120) = 18 syzkaller login: [ 50.145974][ T2236] usb 1-1: new high-speed USB device number 2 using dummy_hcd ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffe89b93130) = 0 ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffe89b92120) = 18 ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffe89b93130) = 0 ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffe89b92120) = 9 ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffe89b93130) = 0 ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffe89b92120) = 27 ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffe89b93130) = 0 ioctl(3, USB_RAW_IOCTL_VBUS_DRAW, 0) = 0 ioctl(3, USB_RAW_IOCTL_CONFIGURE, 0) = 0 ioctl(3, USB_RAW_IOCTL_EP_ENABLE, 0x7ff1bb6d03ac) = 10 ioctl(3, USB_RAW_IOCTL_EP0_READ, 0x7ffe89b92120) = 0 [ 50.507067][ T2236] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b [ 50.516437][ T2236] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 50.529458][ T2236] usb 1-1: config 0 descriptor?? ioctl(3, USB_RAW_IOCTL_EP_WRITE, 0x7ffe89b93170) = 4 [ 50.786887][ T2235] ------------[ cut here ]------------ [ 50.792457][ T2235] WARNING: CPU: 1 PID: 2235 at drivers/net/wireless/ath/ath6kl/htc_pipe.c:963 ath6kl_htc_pipe_rx_complete+0xde9/0xfd0 [ 50.804896][ T2235] Modules linked in: [ 50.808894][ T2235] CPU: 1 PID: 2235 Comm: kworker/1:2 Not tainted 6.0.0-rc6-syzkaller-00030-g06f7db949993 #0 [ 50.819060][ T2235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/16/2022 [ 50.829200][ T2235] Workqueue: ath6kl_wq ath6kl_usb_io_comp_work [ 50.835361][ T2235] RIP: 0010:ath6kl_htc_pipe_rx_complete+0xde9/0xfd0 [ 50.842044][ T2235] Code: 0f 85 fc 01 00 00 89 d8 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 45 a9 d3 fb 0f 0b bb ea ff ff ff eb ac e8 37 a9 d3 fb <0f> 0b 48 c7 c7 80 11 46 8b 31 c0 e8 17 49 fe ff bb ea ff ff ff eb [ 50.861788][ T2235] RSP: 0018:ffffc9000a3d7a80 EFLAGS: 00010293 [ 50.867908][ T2235] RAX: ffffffff85b5edf9 RBX: ffff8880719e0e50 RCX: ffff888026343b00 [ 50.875956][ T2235] RDX: 0000000000000000 RSI: ffff8880759c0780 RDI: ffff8880719e0de0 [ 50.883925][ T2235] RBP: ffffc9000a3d7bd0 R08: ffffffff85bbb2b7 R09: fffffbfff1ff4623 [ 50.891991][ T2235] R10: fffffbfff1ff4623 R11: 1ffffffff1ff4622 R12: 1ffff9200147af68 [ 50.900091][ T2235] R13: ffff888020f54ca0 R14: 0000000000000000 R15: dffffc0000000000 [ 50.908135][ T2235] FS: 0000000000000000(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000 [ 50.917213][ T2235] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 50.923982][ T2235] CR2: 00007ffc5fed4bb0 CR3: 000000001734c000 CR4: 00000000003506e0 exit_group(0) = ? +++ exited with 0 +++ [ 50.932061][ T2235] DR0: 0000000000000000 DR1: 000000000000000