Extracting prog: 31m37.607419626s
Minimizing prog: 6h6m57.939698491s
Simplifying prog options: 40m36.798347854s
Extracting C: 19m0.792520491s
Simplifying C: 0s


extracting reproducer from 1 programs
testing a last program of every proc
single: executing 1 programs separately with timeout 45s
testing program (duration=45s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_usb_connect$hid-syz_usb_control_io$hid-syz_usb_connect-syz_usb_ep_write$ath9k_ep1-syz_usb_control_io-syz_usb_ep_write-syz_usb_connect$hid
detailed listing:
executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = syz_usb_connect(0x6, 0x0, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(r1, 0x82, 0x2d0, &(0x7f0000000880)={[{}, {0xc1, 0x4e00, "a76ccb9eff4694983df611ac03c6c23db1e3b8a30904e41101cdd21d8799826964aa8886e936f66f48c239379140224ead5529be60e4e103ee38d753043dae6ff2a108343138511e178a6fbfe3be802baf1d007ca17528d326301c1a60af74a5e31728245262ab4192b1d4757ec2fb54915f7791bffa734daeea158acb4fb03e46eea193d2b46d98756c84cc0e3918618c11491b37f72d162d853d345d618871424ffc800edab555b0bc606148fb329c5d905b80df3904ba01e90ac463f9c3d910"}, {0xdb, 0x4e00, "6be35cbadd4162a569c2c76b2dd6755024d111346ad914193626dfeab859017c21defbe101f6abfa762aa37aff4568720bdff2ac998a07d8fdb764ee243e166db625ae104b3d7008286ec6d3bac11472e008701d0b14d472ff871c10a03632e0915a63f9b64b7147d9e1d588048c5e07dac9c4cafb0d8bd13fa693df564e62aa3ac61f5f8fbfbee5e79eb20a26d1c02c7b4f1a60e3a8060786ab1c9cdc0e06089164fda63e2879e8ff4e2331b339bf01f6cd2f482e64c37698423fb58571e7f767f7d34926b93c6c4f07d5567a38789b327afdade73f5517f8b603"}, {0xd6, 0x4e00, "75fb4c308d670bfed5d233eed8d6e1b22b9de275bf97e745cbc750d442202b4138e8c19e6098aba41a8ec208718e2df166763022fd4c4930a57600f930bec712faefbb5a083ff92bcfb039c9c16445f9d91d9c23ef8449c3701bcc93d7a2ac5e58c8364251ef80a1dc9cc6b122881c8ea67c52a44e4f6861d920f6f4a1660d04b1e3b1e766837526020467ff3c5328cbe27e9c25e7a50778e7fb9b27c9be7bd91a2cdac709ec83dd7cd7a5dc920694f42f2f3c011c7177adb96c558793cb74b1939c5e2cc1e3b29ed9bab20b4d6d594dbfc6a9119649"}, {}, {0x36, 0x4e00, "81e73501082caac47e89b8bc0d94e37a010882f89aee4f3b1b3a8ddf270c82cc5ea07b20c9a6fd24e272c6ca43bec1418c38babab686"}, {}, {}]})
syz_usb_control_io(r0, &(0x7f0000000080)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000002"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0xffffff75, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d7084")
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)

program did not crash
single: failed to extract reproducer
single: executing 1 programs separately with timeout 5m0s
testing program (duration=5m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_usb_connect$hid-syz_usb_control_io$hid-syz_usb_connect-syz_usb_ep_write$ath9k_ep1-syz_usb_control_io-syz_usb_ep_write-syz_usb_connect$hid
detailed listing:
executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = syz_usb_connect(0x6, 0x0, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(r1, 0x82, 0x2d0, &(0x7f0000000880)={[{}, {0xc1, 0x4e00, "a76ccb9eff4694983df611ac03c6c23db1e3b8a30904e41101cdd21d8799826964aa8886e936f66f48c239379140224ead5529be60e4e103ee38d753043dae6ff2a108343138511e178a6fbfe3be802baf1d007ca17528d326301c1a60af74a5e31728245262ab4192b1d4757ec2fb54915f7791bffa734daeea158acb4fb03e46eea193d2b46d98756c84cc0e3918618c11491b37f72d162d853d345d618871424ffc800edab555b0bc606148fb329c5d905b80df3904ba01e90ac463f9c3d910"}, {0xdb, 0x4e00, "6be35cbadd4162a569c2c76b2dd6755024d111346ad914193626dfeab859017c21defbe101f6abfa762aa37aff4568720bdff2ac998a07d8fdb764ee243e166db625ae104b3d7008286ec6d3bac11472e008701d0b14d472ff871c10a03632e0915a63f9b64b7147d9e1d588048c5e07dac9c4cafb0d8bd13fa693df564e62aa3ac61f5f8fbfbee5e79eb20a26d1c02c7b4f1a60e3a8060786ab1c9cdc0e06089164fda63e2879e8ff4e2331b339bf01f6cd2f482e64c37698423fb58571e7f767f7d34926b93c6c4f07d5567a38789b327afdade73f5517f8b603"}, {0xd6, 0x4e00, "75fb4c308d670bfed5d233eed8d6e1b22b9de275bf97e745cbc750d442202b4138e8c19e6098aba41a8ec208718e2df166763022fd4c4930a57600f930bec712faefbb5a083ff92bcfb039c9c16445f9d91d9c23ef8449c3701bcc93d7a2ac5e58c8364251ef80a1dc9cc6b122881c8ea67c52a44e4f6861d920f6f4a1660d04b1e3b1e766837526020467ff3c5328cbe27e9c25e7a50778e7fb9b27c9be7bd91a2cdac709ec83dd7cd7a5dc920694f42f2f3c011c7177adb96c558793cb74b1939c5e2cc1e3b29ed9bab20b4d6d594dbfc6a9119649"}, {}, {0x36, 0x4e00, "81e73501082caac47e89b8bc0d94e37a010882f89aee4f3b1b3a8ddf270c82cc5ea07b20c9a6fd24e272c6ca43bec1418c38babab686"}, {}, {}]})
syz_usb_control_io(r0, &(0x7f0000000080)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000002"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0xffffff75, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d7084")
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)

program did not crash
single: failed to extract reproducer
single: executing 1 programs separately with timeout 16m0s
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_usb_connect$hid-syz_usb_control_io$hid-syz_usb_connect-syz_usb_ep_write$ath9k_ep1-syz_usb_control_io-syz_usb_ep_write-syz_usb_connect$hid
detailed listing:
executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = syz_usb_connect(0x6, 0x0, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(r1, 0x82, 0x2d0, &(0x7f0000000880)={[{}, {0xc1, 0x4e00, "a76ccb9eff4694983df611ac03c6c23db1e3b8a30904e41101cdd21d8799826964aa8886e936f66f48c239379140224ead5529be60e4e103ee38d753043dae6ff2a108343138511e178a6fbfe3be802baf1d007ca17528d326301c1a60af74a5e31728245262ab4192b1d4757ec2fb54915f7791bffa734daeea158acb4fb03e46eea193d2b46d98756c84cc0e3918618c11491b37f72d162d853d345d618871424ffc800edab555b0bc606148fb329c5d905b80df3904ba01e90ac463f9c3d910"}, {0xdb, 0x4e00, "6be35cbadd4162a569c2c76b2dd6755024d111346ad914193626dfeab859017c21defbe101f6abfa762aa37aff4568720bdff2ac998a07d8fdb764ee243e166db625ae104b3d7008286ec6d3bac11472e008701d0b14d472ff871c10a03632e0915a63f9b64b7147d9e1d588048c5e07dac9c4cafb0d8bd13fa693df564e62aa3ac61f5f8fbfbee5e79eb20a26d1c02c7b4f1a60e3a8060786ab1c9cdc0e06089164fda63e2879e8ff4e2331b339bf01f6cd2f482e64c37698423fb58571e7f767f7d34926b93c6c4f07d5567a38789b327afdade73f5517f8b603"}, {0xd6, 0x4e00, "75fb4c308d670bfed5d233eed8d6e1b22b9de275bf97e745cbc750d442202b4138e8c19e6098aba41a8ec208718e2df166763022fd4c4930a57600f930bec712faefbb5a083ff92bcfb039c9c16445f9d91d9c23ef8449c3701bcc93d7a2ac5e58c8364251ef80a1dc9cc6b122881c8ea67c52a44e4f6861d920f6f4a1660d04b1e3b1e766837526020467ff3c5328cbe27e9c25e7a50778e7fb9b27c9be7bd91a2cdac709ec83dd7cd7a5dc920694f42f2f3c011c7177adb96c558793cb74b1939c5e2cc1e3b29ed9bab20b4d6d594dbfc6a9119649"}, {}, {0x36, 0x4e00, "81e73501082caac47e89b8bc0d94e37a010882f89aee4f3b1b3a8ddf270c82cc5ea07b20c9a6fd24e272c6ca43bec1418c38babab686"}, {}, {}]})
syz_usb_control_io(r0, &(0x7f0000000080)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000002"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0xffffff75, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d7084")
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)

program crashed: KASAN: stack-out-of-bounds Read in sched_show_task
single: successfully extracted reproducer
found reproducer with 7 syscalls
minimizing guilty program
testing program (duration=16m26.64315379s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_usb_connect$hid-syz_usb_control_io$hid-syz_usb_connect-syz_usb_ep_write$ath9k_ep1-syz_usb_control_io-syz_usb_ep_write
detailed listing:
executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = syz_usb_connect(0x6, 0x0, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(r1, 0x82, 0x2d0, &(0x7f0000000880)={[{}, {0xc1, 0x4e00, "a76ccb9eff4694983df611ac03c6c23db1e3b8a30904e41101cdd21d8799826964aa8886e936f66f48c239379140224ead5529be60e4e103ee38d753043dae6ff2a108343138511e178a6fbfe3be802baf1d007ca17528d326301c1a60af74a5e31728245262ab4192b1d4757ec2fb54915f7791bffa734daeea158acb4fb03e46eea193d2b46d98756c84cc0e3918618c11491b37f72d162d853d345d618871424ffc800edab555b0bc606148fb329c5d905b80df3904ba01e90ac463f9c3d910"}, {0xdb, 0x4e00, "6be35cbadd4162a569c2c76b2dd6755024d111346ad914193626dfeab859017c21defbe101f6abfa762aa37aff4568720bdff2ac998a07d8fdb764ee243e166db625ae104b3d7008286ec6d3bac11472e008701d0b14d472ff871c10a03632e0915a63f9b64b7147d9e1d588048c5e07dac9c4cafb0d8bd13fa693df564e62aa3ac61f5f8fbfbee5e79eb20a26d1c02c7b4f1a60e3a8060786ab1c9cdc0e06089164fda63e2879e8ff4e2331b339bf01f6cd2f482e64c37698423fb58571e7f767f7d34926b93c6c4f07d5567a38789b327afdade73f5517f8b603"}, {0xd6, 0x4e00, "75fb4c308d670bfed5d233eed8d6e1b22b9de275bf97e745cbc750d442202b4138e8c19e6098aba41a8ec208718e2df166763022fd4c4930a57600f930bec712faefbb5a083ff92bcfb039c9c16445f9d91d9c23ef8449c3701bcc93d7a2ac5e58c8364251ef80a1dc9cc6b122881c8ea67c52a44e4f6861d920f6f4a1660d04b1e3b1e766837526020467ff3c5328cbe27e9c25e7a50778e7fb9b27c9be7bd91a2cdac709ec83dd7cd7a5dc920694f42f2f3c011c7177adb96c558793cb74b1939c5e2cc1e3b29ed9bab20b4d6d594dbfc6a9119649"}, {}, {0x36, 0x4e00, "81e73501082caac47e89b8bc0d94e37a010882f89aee4f3b1b3a8ddf270c82cc5ea07b20c9a6fd24e272c6ca43bec1418c38babab686"}, {}, {}]})
syz_usb_control_io(r0, &(0x7f0000000080)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000002"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0xffffff75, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d7084")

program did not crash
testing program (duration=16m26.64315379s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_usb_connect$hid-syz_usb_control_io$hid-syz_usb_connect-syz_usb_ep_write$ath9k_ep1-syz_usb_control_io-syz_usb_connect$hid
detailed listing:
executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = syz_usb_connect(0x6, 0x0, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(r1, 0x82, 0x2d0, &(0x7f0000000880)={[{}, {0xc1, 0x4e00, "a76ccb9eff4694983df611ac03c6c23db1e3b8a30904e41101cdd21d8799826964aa8886e936f66f48c239379140224ead5529be60e4e103ee38d753043dae6ff2a108343138511e178a6fbfe3be802baf1d007ca17528d326301c1a60af74a5e31728245262ab4192b1d4757ec2fb54915f7791bffa734daeea158acb4fb03e46eea193d2b46d98756c84cc0e3918618c11491b37f72d162d853d345d618871424ffc800edab555b0bc606148fb329c5d905b80df3904ba01e90ac463f9c3d910"}, {0xdb, 0x4e00, "6be35cbadd4162a569c2c76b2dd6755024d111346ad914193626dfeab859017c21defbe101f6abfa762aa37aff4568720bdff2ac998a07d8fdb764ee243e166db625ae104b3d7008286ec6d3bac11472e008701d0b14d472ff871c10a03632e0915a63f9b64b7147d9e1d588048c5e07dac9c4cafb0d8bd13fa693df564e62aa3ac61f5f8fbfbee5e79eb20a26d1c02c7b4f1a60e3a8060786ab1c9cdc0e06089164fda63e2879e8ff4e2331b339bf01f6cd2f482e64c37698423fb58571e7f767f7d34926b93c6c4f07d5567a38789b327afdade73f5517f8b603"}, {0xd6, 0x4e00, "75fb4c308d670bfed5d233eed8d6e1b22b9de275bf97e745cbc750d442202b4138e8c19e6098aba41a8ec208718e2df166763022fd4c4930a57600f930bec712faefbb5a083ff92bcfb039c9c16445f9d91d9c23ef8449c3701bcc93d7a2ac5e58c8364251ef80a1dc9cc6b122881c8ea67c52a44e4f6861d920f6f4a1660d04b1e3b1e766837526020467ff3c5328cbe27e9c25e7a50778e7fb9b27c9be7bd91a2cdac709ec83dd7cd7a5dc920694f42f2f3c011c7177adb96c558793cb74b1939c5e2cc1e3b29ed9bab20b4d6d594dbfc6a9119649"}, {}, {0x36, 0x4e00, "81e73501082caac47e89b8bc0d94e37a010882f89aee4f3b1b3a8ddf270c82cc5ea07b20c9a6fd24e272c6ca43bec1418c38babab686"}, {}, {}]})
syz_usb_control_io(r0, &(0x7f0000000080)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000002"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)

program did not crash
testing program (duration=16m26.64315379s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_usb_connect$hid-syz_usb_control_io$hid-syz_usb_connect-syz_usb_ep_write$ath9k_ep1-syz_usb_ep_write-syz_usb_connect$hid
detailed listing:
executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = syz_usb_connect(0x6, 0x0, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(r1, 0x82, 0x2d0, &(0x7f0000000880)={[{}, {0xc1, 0x4e00, "a76ccb9eff4694983df611ac03c6c23db1e3b8a30904e41101cdd21d8799826964aa8886e936f66f48c239379140224ead5529be60e4e103ee38d753043dae6ff2a108343138511e178a6fbfe3be802baf1d007ca17528d326301c1a60af74a5e31728245262ab4192b1d4757ec2fb54915f7791bffa734daeea158acb4fb03e46eea193d2b46d98756c84cc0e3918618c11491b37f72d162d853d345d618871424ffc800edab555b0bc606148fb329c5d905b80df3904ba01e90ac463f9c3d910"}, {0xdb, 0x4e00, "6be35cbadd4162a569c2c76b2dd6755024d111346ad914193626dfeab859017c21defbe101f6abfa762aa37aff4568720bdff2ac998a07d8fdb764ee243e166db625ae104b3d7008286ec6d3bac11472e008701d0b14d472ff871c10a03632e0915a63f9b64b7147d9e1d588048c5e07dac9c4cafb0d8bd13fa693df564e62aa3ac61f5f8fbfbee5e79eb20a26d1c02c7b4f1a60e3a8060786ab1c9cdc0e06089164fda63e2879e8ff4e2331b339bf01f6cd2f482e64c37698423fb58571e7f767f7d34926b93c6c4f07d5567a38789b327afdade73f5517f8b603"}, {0xd6, 0x4e00, "75fb4c308d670bfed5d233eed8d6e1b22b9de275bf97e745cbc750d442202b4138e8c19e6098aba41a8ec208718e2df166763022fd4c4930a57600f930bec712faefbb5a083ff92bcfb039c9c16445f9d91d9c23ef8449c3701bcc93d7a2ac5e58c8364251ef80a1dc9cc6b122881c8ea67c52a44e4f6861d920f6f4a1660d04b1e3b1e766837526020467ff3c5328cbe27e9c25e7a50778e7fb9b27c9be7bd91a2cdac709ec83dd7cd7a5dc920694f42f2f3c011c7177adb96c558793cb74b1939c5e2cc1e3b29ed9bab20b4d6d594dbfc6a9119649"}, {}, {0x36, 0x4e00, "81e73501082caac47e89b8bc0d94e37a010882f89aee4f3b1b3a8ddf270c82cc5ea07b20c9a6fd24e272c6ca43bec1418c38babab686"}, {}, {}]})
syz_usb_ep_write(r0, 0x81, 0xffffff75, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d7084")
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)

program did not crash
testing program (duration=16m26.64315379s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_usb_connect$hid-syz_usb_control_io$hid-syz_usb_connect-syz_usb_control_io-syz_usb_ep_write-syz_usb_connect$hid
detailed listing:
executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_connect(0x6, 0x0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000080)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000002"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0xffffff75, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d7084")
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)

program did not crash
testing program (duration=16m26.64315379s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_usb_connect$hid-syz_usb_control_io$hid-syz_usb_ep_write$ath9k_ep1-syz_usb_control_io-syz_usb_ep_write-syz_usb_connect$hid
detailed listing:
executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(0xffffffffffffffff, 0x82, 0x2d0, &(0x7f0000000880)={[{}, {0xc1, 0x4e00, "a76ccb9eff4694983df611ac03c6c23db1e3b8a30904e41101cdd21d8799826964aa8886e936f66f48c239379140224ead5529be60e4e103ee38d753043dae6ff2a108343138511e178a6fbfe3be802baf1d007ca17528d326301c1a60af74a5e31728245262ab4192b1d4757ec2fb54915f7791bffa734daeea158acb4fb03e46eea193d2b46d98756c84cc0e3918618c11491b37f72d162d853d345d618871424ffc800edab555b0bc606148fb329c5d905b80df3904ba01e90ac463f9c3d910"}, {0xdb, 0x4e00, "6be35cbadd4162a569c2c76b2dd6755024d111346ad914193626dfeab859017c21defbe101f6abfa762aa37aff4568720bdff2ac998a07d8fdb764ee243e166db625ae104b3d7008286ec6d3bac11472e008701d0b14d472ff871c10a03632e0915a63f9b64b7147d9e1d588048c5e07dac9c4cafb0d8bd13fa693df564e62aa3ac61f5f8fbfbee5e79eb20a26d1c02c7b4f1a60e3a8060786ab1c9cdc0e06089164fda63e2879e8ff4e2331b339bf01f6cd2f482e64c37698423fb58571e7f767f7d34926b93c6c4f07d5567a38789b327afdade73f5517f8b603"}, {0xd6, 0x4e00, "75fb4c308d670bfed5d233eed8d6e1b22b9de275bf97e745cbc750d442202b4138e8c19e6098aba41a8ec208718e2df166763022fd4c4930a57600f930bec712faefbb5a083ff92bcfb039c9c16445f9d91d9c23ef8449c3701bcc93d7a2ac5e58c8364251ef80a1dc9cc6b122881c8ea67c52a44e4f6861d920f6f4a1660d04b1e3b1e766837526020467ff3c5328cbe27e9c25e7a50778e7fb9b27c9be7bd91a2cdac709ec83dd7cd7a5dc920694f42f2f3c011c7177adb96c558793cb74b1939c5e2cc1e3b29ed9bab20b4d6d594dbfc6a9119649"}, {}, {0x36, 0x4e00, "81e73501082caac47e89b8bc0d94e37a010882f89aee4f3b1b3a8ddf270c82cc5ea07b20c9a6fd24e272c6ca43bec1418c38babab686"}, {}, {}]})
syz_usb_control_io(r0, &(0x7f0000000080)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000002"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0xffffff75, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d7084")
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)

program crashed: KASAN: stack-out-of-bounds Read in sched_show_task
testing program (duration=16m26.64315379s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_usb_connect$hid-syz_usb_ep_write$ath9k_ep1-syz_usb_control_io-syz_usb_ep_write-syz_usb_connect$hid
detailed listing:
executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_ep_write$ath9k_ep1(0xffffffffffffffff, 0x82, 0x2d0, &(0x7f0000000880)={[{}, {0xc1, 0x4e00, "a76ccb9eff4694983df611ac03c6c23db1e3b8a30904e41101cdd21d8799826964aa8886e936f66f48c239379140224ead5529be60e4e103ee38d753043dae6ff2a108343138511e178a6fbfe3be802baf1d007ca17528d326301c1a60af74a5e31728245262ab4192b1d4757ec2fb54915f7791bffa734daeea158acb4fb03e46eea193d2b46d98756c84cc0e3918618c11491b37f72d162d853d345d618871424ffc800edab555b0bc606148fb329c5d905b80df3904ba01e90ac463f9c3d910"}, {0xdb, 0x4e00, "6be35cbadd4162a569c2c76b2dd6755024d111346ad914193626dfeab859017c21defbe101f6abfa762aa37aff4568720bdff2ac998a07d8fdb764ee243e166db625ae104b3d7008286ec6d3bac11472e008701d0b14d472ff871c10a03632e0915a63f9b64b7147d9e1d588048c5e07dac9c4cafb0d8bd13fa693df564e62aa3ac61f5f8fbfbee5e79eb20a26d1c02c7b4f1a60e3a8060786ab1c9cdc0e06089164fda63e2879e8ff4e2331b339bf01f6cd2f482e64c37698423fb58571e7f767f7d34926b93c6c4f07d5567a38789b327afdade73f5517f8b603"}, {0xd6, 0x4e00, "75fb4c308d670bfed5d233eed8d6e1b22b9de275bf97e745cbc750d442202b4138e8c19e6098aba41a8ec208718e2df166763022fd4c4930a57600f930bec712faefbb5a083ff92bcfb039c9c16445f9d91d9c23ef8449c3701bcc93d7a2ac5e58c8364251ef80a1dc9cc6b122881c8ea67c52a44e4f6861d920f6f4a1660d04b1e3b1e766837526020467ff3c5328cbe27e9c25e7a50778e7fb9b27c9be7bd91a2cdac709ec83dd7cd7a5dc920694f42f2f3c011c7177adb96c558793cb74b1939c5e2cc1e3b29ed9bab20b4d6d594dbfc6a9119649"}, {}, {0x36, 0x4e00, "81e73501082caac47e89b8bc0d94e37a010882f89aee4f3b1b3a8ddf270c82cc5ea07b20c9a6fd24e272c6ca43bec1418c38babab686"}, {}, {}]})
syz_usb_control_io(r0, &(0x7f0000000080)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000002"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0xffffff75, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d7084")
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)

program did not crash
testing program (duration=16m26.64315379s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_usb_control_io$hid-syz_usb_ep_write$ath9k_ep1-syz_usb_control_io-syz_usb_ep_write-syz_usb_connect$hid
detailed listing:
executing program 0:
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(0xffffffffffffffff, 0x82, 0x2d0, &(0x7f0000000880)={[{}, {0xc1, 0x4e00, "a76ccb9eff4694983df611ac03c6c23db1e3b8a30904e41101cdd21d8799826964aa8886e936f66f48c239379140224ead5529be60e4e103ee38d753043dae6ff2a108343138511e178a6fbfe3be802baf1d007ca17528d326301c1a60af74a5e31728245262ab4192b1d4757ec2fb54915f7791bffa734daeea158acb4fb03e46eea193d2b46d98756c84cc0e3918618c11491b37f72d162d853d345d618871424ffc800edab555b0bc606148fb329c5d905b80df3904ba01e90ac463f9c3d910"}, {0xdb, 0x4e00, "6be35cbadd4162a569c2c76b2dd6755024d111346ad914193626dfeab859017c21defbe101f6abfa762aa37aff4568720bdff2ac998a07d8fdb764ee243e166db625ae104b3d7008286ec6d3bac11472e008701d0b14d472ff871c10a03632e0915a63f9b64b7147d9e1d588048c5e07dac9c4cafb0d8bd13fa693df564e62aa3ac61f5f8fbfbee5e79eb20a26d1c02c7b4f1a60e3a8060786ab1c9cdc0e06089164fda63e2879e8ff4e2331b339bf01f6cd2f482e64c37698423fb58571e7f767f7d34926b93c6c4f07d5567a38789b327afdade73f5517f8b603"}, {0xd6, 0x4e00, "75fb4c308d670bfed5d233eed8d6e1b22b9de275bf97e745cbc750d442202b4138e8c19e6098aba41a8ec208718e2df166763022fd4c4930a57600f930bec712faefbb5a083ff92bcfb039c9c16445f9d91d9c23ef8449c3701bcc93d7a2ac5e58c8364251ef80a1dc9cc6b122881c8ea67c52a44e4f6861d920f6f4a1660d04b1e3b1e766837526020467ff3c5328cbe27e9c25e7a50778e7fb9b27c9be7bd91a2cdac709ec83dd7cd7a5dc920694f42f2f3c011c7177adb96c558793cb74b1939c5e2cc1e3b29ed9bab20b4d6d594dbfc6a9119649"}, {}, {0x36, 0x4e00, "81e73501082caac47e89b8bc0d94e37a010882f89aee4f3b1b3a8ddf270c82cc5ea07b20c9a6fd24e272c6ca43bec1418c38babab686"}, {}, {}]})
syz_usb_control_io(0xffffffffffffffff, &(0x7f0000000080)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000002"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(0xffffffffffffffff, 0x81, 0xffffff75, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d7084")
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)

program did not crash
testing program (duration=16m26.64315379s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_usb_connect$hid-syz_usb_control_io$hid-syz_usb_ep_write$ath9k_ep1-syz_usb_control_io-syz_usb_ep_write-syz_usb_connect$hid
detailed listing:
executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(0xffffffffffffffff, 0x82, 0x2d0, &(0x7f0000000880)={[{}, {0xc1, 0x4e00, "a76ccb9eff4694983df611ac03c6c23db1e3b8a30904e41101cdd21d8799826964aa8886e936f66f48c239379140224ead5529be60e4e103ee38d753043dae6ff2a108343138511e178a6fbfe3be802baf1d007ca17528d326301c1a60af74a5e31728245262ab4192b1d4757ec2fb54915f7791bffa734daeea158acb4fb03e46eea193d2b46d98756c84cc0e3918618c11491b37f72d162d853d345d618871424ffc800edab555b0bc606148fb329c5d905b80df3904ba01e90ac463f9c3d910"}, {0xdb, 0x4e00, "6be35cbadd4162a569c2c76b2dd6755024d111346ad914193626dfeab859017c21defbe101f6abfa762aa37aff4568720bdff2ac998a07d8fdb764ee243e166db625ae104b3d7008286ec6d3bac11472e008701d0b14d472ff871c10a03632e0915a63f9b64b7147d9e1d588048c5e07dac9c4cafb0d8bd13fa693df564e62aa3ac61f5f8fbfbee5e79eb20a26d1c02c7b4f1a60e3a8060786ab1c9cdc0e06089164fda63e2879e8ff4e2331b339bf01f6cd2f482e64c37698423fb58571e7f767f7d34926b93c6c4f07d5567a38789b327afdade73f5517f8b603"}, {0xd6, 0x4e00, "75fb4c308d670bfed5d233eed8d6e1b22b9de275bf97e745cbc750d442202b4138e8c19e6098aba41a8ec208718e2df166763022fd4c4930a57600f930bec712faefbb5a083ff92bcfb039c9c16445f9d91d9c23ef8449c3701bcc93d7a2ac5e58c8364251ef80a1dc9cc6b122881c8ea67c52a44e4f6861d920f6f4a1660d04b1e3b1e766837526020467ff3c5328cbe27e9c25e7a50778e7fb9b27c9be7bd91a2cdac709ec83dd7cd7a5dc920694f42f2f3c011c7177adb96c558793cb74b1939c5e2cc1e3b29ed9bab20b4d6d594dbfc6a9119649"}, {}, {0x36, 0x4e00, "81e73501082caac47e89b8bc0d94e37a010882f89aee4f3b1b3a8ddf270c82cc5ea07b20c9a6fd24e272c6ca43bec1418c38babab686"}, {}, {}]})
syz_usb_control_io(r0, &(0x7f0000000080)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000002"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0xffffff75, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d7084")
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)

program did not crash
testing program (duration=16m26.64315379s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_usb_connect$hid-syz_usb_control_io$hid-syz_usb_ep_write$ath9k_ep1-syz_usb_control_io-syz_usb_ep_write-syz_usb_connect$hid
detailed listing:
executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(0xffffffffffffffff, 0x82, 0x2d0, &(0x7f0000000880)={[{}, {0xc1, 0x4e00, "a76ccb9eff4694983df611ac03c6c23db1e3b8a30904e41101cdd21d8799826964aa8886e936f66f48c239379140224ead5529be60e4e103ee38d753043dae6ff2a108343138511e178a6fbfe3be802baf1d007ca17528d326301c1a60af74a5e31728245262ab4192b1d4757ec2fb54915f7791bffa734daeea158acb4fb03e46eea193d2b46d98756c84cc0e3918618c11491b37f72d162d853d345d618871424ffc800edab555b0bc606148fb329c5d905b80df3904ba01e90ac463f9c3d910"}, {0xdb, 0x4e00, "6be35cbadd4162a569c2c76b2dd6755024d111346ad914193626dfeab859017c21defbe101f6abfa762aa37aff4568720bdff2ac998a07d8fdb764ee243e166db625ae104b3d7008286ec6d3bac11472e008701d0b14d472ff871c10a03632e0915a63f9b64b7147d9e1d588048c5e07dac9c4cafb0d8bd13fa693df564e62aa3ac61f5f8fbfbee5e79eb20a26d1c02c7b4f1a60e3a8060786ab1c9cdc0e06089164fda63e2879e8ff4e2331b339bf01f6cd2f482e64c37698423fb58571e7f767f7d34926b93c6c4f07d5567a38789b327afdade73f5517f8b603"}, {0xd6, 0x4e00, "75fb4c308d670bfed5d233eed8d6e1b22b9de275bf97e745cbc750d442202b4138e8c19e6098aba41a8ec208718e2df166763022fd4c4930a57600f930bec712faefbb5a083ff92bcfb039c9c16445f9d91d9c23ef8449c3701bcc93d7a2ac5e58c8364251ef80a1dc9cc6b122881c8ea67c52a44e4f6861d920f6f4a1660d04b1e3b1e766837526020467ff3c5328cbe27e9c25e7a50778e7fb9b27c9be7bd91a2cdac709ec83dd7cd7a5dc920694f42f2f3c011c7177adb96c558793cb74b1939c5e2cc1e3b29ed9bab20b4d6d594dbfc6a9119649"}, {}, {0x36, 0x4e00, "81e73501082caac47e89b8bc0d94e37a010882f89aee4f3b1b3a8ddf270c82cc5ea07b20c9a6fd24e272c6ca43bec1418c38babab686"}, {}, {}]})
syz_usb_control_io(r0, &(0x7f0000000080)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000002"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0xffffff75, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d7084")
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)

program did not crash
testing program (duration=16m26.64315379s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_usb_connect$hid-syz_usb_control_io$hid-syz_usb_ep_write$ath9k_ep1-syz_usb_control_io-syz_usb_ep_write-syz_usb_connect$hid
detailed listing:
executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(0xffffffffffffffff, 0x82, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000080)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000002"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0xffffff75, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d7084")
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)

program did not crash
testing program (duration=16m26.64315379s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_usb_connect$hid-syz_usb_control_io$hid-syz_usb_ep_write$ath9k_ep1-syz_usb_control_io-syz_usb_ep_write-syz_usb_connect$hid
detailed listing:
executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(0xffffffffffffffff, 0x82, 0x0, &(0x7f0000000880))
syz_usb_control_io(r0, &(0x7f0000000080)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000002"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0xffffff75, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d7084")
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)

program did not crash
testing program (duration=16m26.64315379s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_usb_connect$hid-syz_usb_control_io$hid-syz_usb_ep_write$ath9k_ep1-syz_usb_control_io-syz_usb_ep_write-syz_usb_connect$hid
detailed listing:
executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(0xffffffffffffffff, 0x82, 0x298, &(0x7f0000000880)={[{}, {0xc1, 0x4e00, "a76ccb9eff4694983df611ac03c6c23db1e3b8a30904e41101cdd21d8799826964aa8886e936f66f48c239379140224ead5529be60e4e103ee38d753043dae6ff2a108343138511e178a6fbfe3be802baf1d007ca17528d326301c1a60af74a5e31728245262ab4192b1d4757ec2fb54915f7791bffa734daeea158acb4fb03e46eea193d2b46d98756c84cc0e3918618c11491b37f72d162d853d345d618871424ffc800edab555b0bc606148fb329c5d905b80df3904ba01e90ac463f9c3d910"}, {0xdb, 0x4e00, "6be35cbadd4162a569c2c76b2dd6755024d111346ad914193626dfeab859017c21defbe101f6abfa762aa37aff4568720bdff2ac998a07d8fdb764ee243e166db625ae104b3d7008286ec6d3bac11472e008701d0b14d472ff871c10a03632e0915a63f9b64b7147d9e1d588048c5e07dac9c4cafb0d8bd13fa693df564e62aa3ac61f5f8fbfbee5e79eb20a26d1c02c7b4f1a60e3a8060786ab1c9cdc0e06089164fda63e2879e8ff4e2331b339bf01f6cd2f482e64c37698423fb58571e7f767f7d34926b93c6c4f07d5567a38789b327afdade73f5517f8b603"}, {0xd6, 0x4e00, "75fb4c308d670bfed5d233eed8d6e1b22b9de275bf97e745cbc750d442202b4138e8c19e6098aba41a8ec208718e2df166763022fd4c4930a57600f930bec712faefbb5a083ff92bcfb039c9c16445f9d91d9c23ef8449c3701bcc93d7a2ac5e58c8364251ef80a1dc9cc6b122881c8ea67c52a44e4f6861d920f6f4a1660d04b1e3b1e766837526020467ff3c5328cbe27e9c25e7a50778e7fb9b27c9be7bd91a2cdac709ec83dd7cd7a5dc920694f42f2f3c011c7177adb96c558793cb74b1939c5e2cc1e3b29ed9bab20b4d6d594dbfc6a9119649"}, {}, {}, {}, {}]})
syz_usb_control_io(r0, &(0x7f0000000080)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000002"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0xffffff75, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d7084")
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)

program crashed: KASAN: stack-out-of-bounds Read in sched_show_task
testing program (duration=16m26.64315379s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_usb_connect$hid-syz_usb_control_io$hid-syz_usb_ep_write$ath9k_ep1-syz_usb_control_io-syz_usb_ep_write-syz_usb_connect$hid
detailed listing:
executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(0xffffffffffffffff, 0x82, 0x1c0, &(0x7f0000000880)={[{}, {0xc1, 0x4e00, "a76ccb9eff4694983df611ac03c6c23db1e3b8a30904e41101cdd21d8799826964aa8886e936f66f48c239379140224ead5529be60e4e103ee38d753043dae6ff2a108343138511e178a6fbfe3be802baf1d007ca17528d326301c1a60af74a5e31728245262ab4192b1d4757ec2fb54915f7791bffa734daeea158acb4fb03e46eea193d2b46d98756c84cc0e3918618c11491b37f72d162d853d345d618871424ffc800edab555b0bc606148fb329c5d905b80df3904ba01e90ac463f9c3d910"}, {0xdb, 0x4e00, "6be35cbadd4162a569c2c76b2dd6755024d111346ad914193626dfeab859017c21defbe101f6abfa762aa37aff4568720bdff2ac998a07d8fdb764ee243e166db625ae104b3d7008286ec6d3bac11472e008701d0b14d472ff871c10a03632e0915a63f9b64b7147d9e1d588048c5e07dac9c4cafb0d8bd13fa693df564e62aa3ac61f5f8fbfbee5e79eb20a26d1c02c7b4f1a60e3a8060786ab1c9cdc0e06089164fda63e2879e8ff4e2331b339bf01f6cd2f482e64c37698423fb58571e7f767f7d34926b93c6c4f07d5567a38789b327afdade73f5517f8b603"}, {}, {}, {}, {}, {}]})
syz_usb_control_io(r0, &(0x7f0000000080)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000002"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0xffffff75, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d7084")
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)

program did not crash
testing program (duration=16m26.64315379s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_usb_connect$hid-syz_usb_control_io$hid-syz_usb_ep_write$ath9k_ep1-syz_usb_control_io-syz_usb_ep_write-syz_usb_connect$hid
detailed listing:
executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(0xffffffffffffffff, 0x82, 0x1bc, &(0x7f0000000880)={[{}, {0xc1, 0x4e00, "a76ccb9eff4694983df611ac03c6c23db1e3b8a30904e41101cdd21d8799826964aa8886e936f66f48c239379140224ead5529be60e4e103ee38d753043dae6ff2a108343138511e178a6fbfe3be802baf1d007ca17528d326301c1a60af74a5e31728245262ab4192b1d4757ec2fb54915f7791bffa734daeea158acb4fb03e46eea193d2b46d98756c84cc0e3918618c11491b37f72d162d853d345d618871424ffc800edab555b0bc606148fb329c5d905b80df3904ba01e90ac463f9c3d910"}, {}, {0xd6, 0x4e00, "75fb4c308d670bfed5d233eed8d6e1b22b9de275bf97e745cbc750d442202b4138e8c19e6098aba41a8ec208718e2df166763022fd4c4930a57600f930bec712faefbb5a083ff92bcfb039c9c16445f9d91d9c23ef8449c3701bcc93d7a2ac5e58c8364251ef80a1dc9cc6b122881c8ea67c52a44e4f6861d920f6f4a1660d04b1e3b1e766837526020467ff3c5328cbe27e9c25e7a50778e7fb9b27c9be7bd91a2cdac709ec83dd7cd7a5dc920694f42f2f3c011c7177adb96c558793cb74b1939c5e2cc1e3b29ed9bab20b4d6d594dbfc6a9119649"}, {}, {}, {}, {}]})
syz_usb_control_io(r0, &(0x7f0000000080)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000002"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0xffffff75, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d7084")
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)

program did not crash
testing program (duration=16m26.64315379s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_usb_connect$hid-syz_usb_control_io$hid-syz_usb_ep_write$ath9k_ep1-syz_usb_control_io-syz_usb_ep_write-syz_usb_connect$hid
detailed listing:
executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(0xffffffffffffffff, 0x82, 0x1d4, &(0x7f0000000880)={[{}, {}, {0xdb, 0x4e00, "6be35cbadd4162a569c2c76b2dd6755024d111346ad914193626dfeab859017c21defbe101f6abfa762aa37aff4568720bdff2ac998a07d8fdb764ee243e166db625ae104b3d7008286ec6d3bac11472e008701d0b14d472ff871c10a03632e0915a63f9b64b7147d9e1d588048c5e07dac9c4cafb0d8bd13fa693df564e62aa3ac61f5f8fbfbee5e79eb20a26d1c02c7b4f1a60e3a8060786ab1c9cdc0e06089164fda63e2879e8ff4e2331b339bf01f6cd2f482e64c37698423fb58571e7f767f7d34926b93c6c4f07d5567a38789b327afdade73f5517f8b603"}, {0xd6, 0x4e00, "75fb4c308d670bfed5d233eed8d6e1b22b9de275bf97e745cbc750d442202b4138e8c19e6098aba41a8ec208718e2df166763022fd4c4930a57600f930bec712faefbb5a083ff92bcfb039c9c16445f9d91d9c23ef8449c3701bcc93d7a2ac5e58c8364251ef80a1dc9cc6b122881c8ea67c52a44e4f6861d920f6f4a1660d04b1e3b1e766837526020467ff3c5328cbe27e9c25e7a50778e7fb9b27c9be7bd91a2cdac709ec83dd7cd7a5dc920694f42f2f3c011c7177adb96c558793cb74b1939c5e2cc1e3b29ed9bab20b4d6d594dbfc6a9119649"}, {}, {}, {}, {}]})
syz_usb_control_io(r0, &(0x7f0000000080)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000002"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0xffffff75, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d7084")
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)

program did not crash
testing program (duration=16m26.64315379s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_usb_connect$hid-syz_usb_control_io$hid-syz_usb_ep_write$ath9k_ep1-syz_usb_control_io-syz_usb_ep_write-syz_usb_connect$hid
detailed listing:
executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(0xffffffffffffffff, 0x82, 0x298, &(0x7f0000000880)={[{}, {0xc1, 0x4e00, "a76ccb9eff4694983df611ac03c6c23db1e3b8a30904e41101cdd21d8799826964aa8886e936f66f48c239379140224ead5529be60e4e103ee38d753043dae6ff2a108343138511e178a6fbfe3be802baf1d007ca17528d326301c1a60af74a5e31728245262ab4192b1d4757ec2fb54915f7791bffa734daeea158acb4fb03e46eea193d2b46d98756c84cc0e3918618c11491b37f72d162d853d345d618871424ffc800edab555b0bc606148fb329c5d905b80df3904ba01e90ac463f9c3d910"}, {0xdb, 0x4e00, "6be35cbadd4162a569c2c76b2dd6755024d111346ad914193626dfeab859017c21defbe101f6abfa762aa37aff4568720bdff2ac998a07d8fdb764ee243e166db625ae104b3d7008286ec6d3bac11472e008701d0b14d472ff871c10a03632e0915a63f9b64b7147d9e1d588048c5e07dac9c4cafb0d8bd13fa693df564e62aa3ac61f5f8fbfbee5e79eb20a26d1c02c7b4f1a60e3a8060786ab1c9cdc0e06089164fda63e2879e8ff4e2331b339bf01f6cd2f482e64c37698423fb58571e7f767f7d34926b93c6c4f07d5567a38789b327afdade73f5517f8b603"}, {0xd6, 0x4e00, "75fb4c308d670bfed5d233eed8d6e1b22b9de275bf97e745cbc750d442202b4138e8c19e6098aba41a8ec208718e2df166763022fd4c4930a57600f930bec712faefbb5a083ff92bcfb039c9c16445f9d91d9c23ef8449c3701bcc93d7a2ac5e58c8364251ef80a1dc9cc6b122881c8ea67c52a44e4f6861d920f6f4a1660d04b1e3b1e766837526020467ff3c5328cbe27e9c25e7a50778e7fb9b27c9be7bd91a2cdac709ec83dd7cd7a5dc920694f42f2f3c011c7177adb96c558793cb74b1939c5e2cc1e3b29ed9bab20b4d6d594dbfc6a9119649"}, {}, {}, {}, {}]})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_ep_write(r0, 0x81, 0xffffff75, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d7084")
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)

program did not crash
testing program (duration=16m26.64315379s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_usb_connect$hid-syz_usb_control_io$hid-syz_usb_ep_write$ath9k_ep1-syz_usb_control_io-syz_usb_ep_write-syz_usb_connect$hid
detailed listing:
executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(0xffffffffffffffff, 0x82, 0x298, &(0x7f0000000880)={[{}, {0xc1, 0x4e00, "a76ccb9eff4694983df611ac03c6c23db1e3b8a30904e41101cdd21d8799826964aa8886e936f66f48c239379140224ead5529be60e4e103ee38d753043dae6ff2a108343138511e178a6fbfe3be802baf1d007ca17528d326301c1a60af74a5e31728245262ab4192b1d4757ec2fb54915f7791bffa734daeea158acb4fb03e46eea193d2b46d98756c84cc0e3918618c11491b37f72d162d853d345d618871424ffc800edab555b0bc606148fb329c5d905b80df3904ba01e90ac463f9c3d910"}, {0xdb, 0x4e00, "6be35cbadd4162a569c2c76b2dd6755024d111346ad914193626dfeab859017c21defbe101f6abfa762aa37aff4568720bdff2ac998a07d8fdb764ee243e166db625ae104b3d7008286ec6d3bac11472e008701d0b14d472ff871c10a03632e0915a63f9b64b7147d9e1d588048c5e07dac9c4cafb0d8bd13fa693df564e62aa3ac61f5f8fbfbee5e79eb20a26d1c02c7b4f1a60e3a8060786ab1c9cdc0e06089164fda63e2879e8ff4e2331b339bf01f6cd2f482e64c37698423fb58571e7f767f7d34926b93c6c4f07d5567a38789b327afdade73f5517f8b603"}, {0xd6, 0x4e00, "75fb4c308d670bfed5d233eed8d6e1b22b9de275bf97e745cbc750d442202b4138e8c19e6098aba41a8ec208718e2df166763022fd4c4930a57600f930bec712faefbb5a083ff92bcfb039c9c16445f9d91d9c23ef8449c3701bcc93d7a2ac5e58c8364251ef80a1dc9cc6b122881c8ea67c52a44e4f6861d920f6f4a1660d04b1e3b1e766837526020467ff3c5328cbe27e9c25e7a50778e7fb9b27c9be7bd91a2cdac709ec83dd7cd7a5dc920694f42f2f3c011c7177adb96c558793cb74b1939c5e2cc1e3b29ed9bab20b4d6d594dbfc6a9119649"}, {}, {}, {}, {}]})
syz_usb_control_io(r0, &(0x7f0000000080)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0xffffff75, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d7084")
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)

program crashed: BUG: soft lockup in corrupted
testing program (duration=16m26.64315379s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_usb_connect$hid-syz_usb_control_io$hid-syz_usb_ep_write$ath9k_ep1-syz_usb_control_io-syz_usb_ep_write-syz_usb_connect$hid
detailed listing:
executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(0xffffffffffffffff, 0x82, 0x298, &(0x7f0000000880)={[{}, {0xc1, 0x4e00, "a76ccb9eff4694983df611ac03c6c23db1e3b8a30904e41101cdd21d8799826964aa8886e936f66f48c239379140224ead5529be60e4e103ee38d753043dae6ff2a108343138511e178a6fbfe3be802baf1d007ca17528d326301c1a60af74a5e31728245262ab4192b1d4757ec2fb54915f7791bffa734daeea158acb4fb03e46eea193d2b46d98756c84cc0e3918618c11491b37f72d162d853d345d618871424ffc800edab555b0bc606148fb329c5d905b80df3904ba01e90ac463f9c3d910"}, {0xdb, 0x4e00, "6be35cbadd4162a569c2c76b2dd6755024d111346ad914193626dfeab859017c21defbe101f6abfa762aa37aff4568720bdff2ac998a07d8fdb764ee243e166db625ae104b3d7008286ec6d3bac11472e008701d0b14d472ff871c10a03632e0915a63f9b64b7147d9e1d588048c5e07dac9c4cafb0d8bd13fa693df564e62aa3ac61f5f8fbfbee5e79eb20a26d1c02c7b4f1a60e3a8060786ab1c9cdc0e06089164fda63e2879e8ff4e2331b339bf01f6cd2f482e64c37698423fb58571e7f767f7d34926b93c6c4f07d5567a38789b327afdade73f5517f8b603"}, {0xd6, 0x4e00, "75fb4c308d670bfed5d233eed8d6e1b22b9de275bf97e745cbc750d442202b4138e8c19e6098aba41a8ec208718e2df166763022fd4c4930a57600f930bec712faefbb5a083ff92bcfb039c9c16445f9d91d9c23ef8449c3701bcc93d7a2ac5e58c8364251ef80a1dc9cc6b122881c8ea67c52a44e4f6861d920f6f4a1660d04b1e3b1e766837526020467ff3c5328cbe27e9c25e7a50778e7fb9b27c9be7bd91a2cdac709ec83dd7cd7a5dc920694f42f2f3c011c7177adb96c558793cb74b1939c5e2cc1e3b29ed9bab20b4d6d594dbfc6a9119649"}, {}, {}, {}, {}]})
syz_usb_control_io(r0, &(0x7f0000000080)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0x0, 0x0)
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)

program did not crash
testing program (duration=16m26.64315379s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_usb_connect$hid-syz_usb_control_io$hid-syz_usb_ep_write$ath9k_ep1-syz_usb_control_io-syz_usb_ep_write-syz_usb_connect$hid
detailed listing:
executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(0xffffffffffffffff, 0x82, 0x298, &(0x7f0000000880)={[{}, {0xc1, 0x4e00, "a76ccb9eff4694983df611ac03c6c23db1e3b8a30904e41101cdd21d8799826964aa8886e936f66f48c239379140224ead5529be60e4e103ee38d753043dae6ff2a108343138511e178a6fbfe3be802baf1d007ca17528d326301c1a60af74a5e31728245262ab4192b1d4757ec2fb54915f7791bffa734daeea158acb4fb03e46eea193d2b46d98756c84cc0e3918618c11491b37f72d162d853d345d618871424ffc800edab555b0bc606148fb329c5d905b80df3904ba01e90ac463f9c3d910"}, {0xdb, 0x4e00, "6be35cbadd4162a569c2c76b2dd6755024d111346ad914193626dfeab859017c21defbe101f6abfa762aa37aff4568720bdff2ac998a07d8fdb764ee243e166db625ae104b3d7008286ec6d3bac11472e008701d0b14d472ff871c10a03632e0915a63f9b64b7147d9e1d588048c5e07dac9c4cafb0d8bd13fa693df564e62aa3ac61f5f8fbfbee5e79eb20a26d1c02c7b4f1a60e3a8060786ab1c9cdc0e06089164fda63e2879e8ff4e2331b339bf01f6cd2f482e64c37698423fb58571e7f767f7d34926b93c6c4f07d5567a38789b327afdade73f5517f8b603"}, {0xd6, 0x4e00, "75fb4c308d670bfed5d233eed8d6e1b22b9de275bf97e745cbc750d442202b4138e8c19e6098aba41a8ec208718e2df166763022fd4c4930a57600f930bec712faefbb5a083ff92bcfb039c9c16445f9d91d9c23ef8449c3701bcc93d7a2ac5e58c8364251ef80a1dc9cc6b122881c8ea67c52a44e4f6861d920f6f4a1660d04b1e3b1e766837526020467ff3c5328cbe27e9c25e7a50778e7fb9b27c9be7bd91a2cdac709ec83dd7cd7a5dc920694f42f2f3c011c7177adb96c558793cb74b1939c5e2cc1e3b29ed9bab20b4d6d594dbfc6a9119649"}, {}, {}, {}, {}]})
syz_usb_control_io(r0, &(0x7f0000000080)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0x0, &(0x7f00000002c0))
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)

program did not crash
extracting C reproducer
testing compiled C program (duration=16m26.64315379s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_usb_connect$hid-syz_usb_control_io$hid-syz_usb_ep_write$ath9k_ep1-syz_usb_control_io-syz_usb_ep_write-syz_usb_connect$hid
program crashed: no output from test machine
a never seen crash title: no output from test machine, ignore
simplifying guilty program options
testing program (duration=16m26.64315379s, {Threaded:false Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_usb_connect$hid-syz_usb_control_io$hid-syz_usb_ep_write$ath9k_ep1-syz_usb_control_io-syz_usb_ep_write-syz_usb_connect$hid
detailed listing:
executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(0xffffffffffffffff, 0x82, 0x298, &(0x7f0000000880)={[{}, {0xc1, 0x4e00, "a76ccb9eff4694983df611ac03c6c23db1e3b8a30904e41101cdd21d8799826964aa8886e936f66f48c239379140224ead5529be60e4e103ee38d753043dae6ff2a108343138511e178a6fbfe3be802baf1d007ca17528d326301c1a60af74a5e31728245262ab4192b1d4757ec2fb54915f7791bffa734daeea158acb4fb03e46eea193d2b46d98756c84cc0e3918618c11491b37f72d162d853d345d618871424ffc800edab555b0bc606148fb329c5d905b80df3904ba01e90ac463f9c3d910"}, {0xdb, 0x4e00, "6be35cbadd4162a569c2c76b2dd6755024d111346ad914193626dfeab859017c21defbe101f6abfa762aa37aff4568720bdff2ac998a07d8fdb764ee243e166db625ae104b3d7008286ec6d3bac11472e008701d0b14d472ff871c10a03632e0915a63f9b64b7147d9e1d588048c5e07dac9c4cafb0d8bd13fa693df564e62aa3ac61f5f8fbfbee5e79eb20a26d1c02c7b4f1a60e3a8060786ab1c9cdc0e06089164fda63e2879e8ff4e2331b339bf01f6cd2f482e64c37698423fb58571e7f767f7d34926b93c6c4f07d5567a38789b327afdade73f5517f8b603"}, {0xd6, 0x4e00, "75fb4c308d670bfed5d233eed8d6e1b22b9de275bf97e745cbc750d442202b4138e8c19e6098aba41a8ec208718e2df166763022fd4c4930a57600f930bec712faefbb5a083ff92bcfb039c9c16445f9d91d9c23ef8449c3701bcc93d7a2ac5e58c8364251ef80a1dc9cc6b122881c8ea67c52a44e4f6861d920f6f4a1660d04b1e3b1e766837526020467ff3c5328cbe27e9c25e7a50778e7fb9b27c9be7bd91a2cdac709ec83dd7cd7a5dc920694f42f2f3c011c7177adb96c558793cb74b1939c5e2cc1e3b29ed9bab20b4d6d594dbfc6a9119649"}, {}, {}, {}, {}]})
syz_usb_control_io(r0, &(0x7f0000000080)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0xffffff75, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d7084")
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)

program did not crash
testing program (duration=16m26.64315379s, {Threaded:true Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_usb_connect$hid-syz_usb_control_io$hid-syz_usb_ep_write$ath9k_ep1-syz_usb_control_io-syz_usb_ep_write-syz_usb_connect$hid
detailed listing:
executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(0xffffffffffffffff, 0x82, 0x298, &(0x7f0000000880)={[{}, {0xc1, 0x4e00, "a76ccb9eff4694983df611ac03c6c23db1e3b8a30904e41101cdd21d8799826964aa8886e936f66f48c239379140224ead5529be60e4e103ee38d753043dae6ff2a108343138511e178a6fbfe3be802baf1d007ca17528d326301c1a60af74a5e31728245262ab4192b1d4757ec2fb54915f7791bffa734daeea158acb4fb03e46eea193d2b46d98756c84cc0e3918618c11491b37f72d162d853d345d618871424ffc800edab555b0bc606148fb329c5d905b80df3904ba01e90ac463f9c3d910"}, {0xdb, 0x4e00, "6be35cbadd4162a569c2c76b2dd6755024d111346ad914193626dfeab859017c21defbe101f6abfa762aa37aff4568720bdff2ac998a07d8fdb764ee243e166db625ae104b3d7008286ec6d3bac11472e008701d0b14d472ff871c10a03632e0915a63f9b64b7147d9e1d588048c5e07dac9c4cafb0d8bd13fa693df564e62aa3ac61f5f8fbfbee5e79eb20a26d1c02c7b4f1a60e3a8060786ab1c9cdc0e06089164fda63e2879e8ff4e2331b339bf01f6cd2f482e64c37698423fb58571e7f767f7d34926b93c6c4f07d5567a38789b327afdade73f5517f8b603"}, {0xd6, 0x4e00, "75fb4c308d670bfed5d233eed8d6e1b22b9de275bf97e745cbc750d442202b4138e8c19e6098aba41a8ec208718e2df166763022fd4c4930a57600f930bec712faefbb5a083ff92bcfb039c9c16445f9d91d9c23ef8449c3701bcc93d7a2ac5e58c8364251ef80a1dc9cc6b122881c8ea67c52a44e4f6861d920f6f4a1660d04b1e3b1e766837526020467ff3c5328cbe27e9c25e7a50778e7fb9b27c9be7bd91a2cdac709ec83dd7cd7a5dc920694f42f2f3c011c7177adb96c558793cb74b1939c5e2cc1e3b29ed9bab20b4d6d594dbfc6a9119649"}, {}, {}, {}, {}]})
syz_usb_control_io(r0, &(0x7f0000000080)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0xffffff75, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d7084")
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)

program did not crash
reproducing took 7h38m13.138024912s
repro crashed as (corrupted=true):
watchdog: BUG: soft lockup - CPU#0 stuck for 431s! [swapper/0:0]
Modules linked in:
irq event stamp: 503543
hardirqs last  enabled at (503542): [<ffffffff85fdfc5c>] do_irq+0x34/0x48 arch/riscv/kernel/traps.c:390
hardirqs last disabled at (503543): [<ffffffff85fdfc3a>] do_irq+0x12/0x48 arch/riscv/kernel/traps.c:383
softirqs last  enabled at (415782): [<ffffffff800e0fae>] softirq_handle_end kernel/softirq.c:400 [inline]
softirqs last  enabled at (415782): [<ffffffff800e0fae>] handle_softirqs+0x9ee/0x10de kernel/softirq.c:582
softirqs last disabled at (415801): [<ffffffff800e196a>] __do_softirq kernel/softirq.c:588 [inline]
softirqs last disabled at (415801): [<ffffffff800e196a>] invoke_softirq kernel/softirq.c:428 [inline]
softirqs last disabled at (415801): [<ffffffff800e196a>] __irq_exit_rcu+0x188/0x372 kernel/softirq.c:637
CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0
Hardware name: riscv-virtio,qemu (DT)
epc : arch_static_branch arch/riscv/include/asm/jump_label.h:22 [inline]
epc : kfence_alloc include/linux/kfence.h:121 [inline]
epc : slab_alloc_node mm/slub.c:4118 [inline]
epc : __kmalloc_cache_noprof+0x62/0x318 mm/slub.c:4290
 ra : slab_pre_alloc_hook mm/slub.c:4038 [inline]
 ra : slab_alloc_node mm/slub.c:4114 [inline]
 ra : __kmalloc_cache_noprof+0x5e/0x318 mm/slub.c:4290
epc : ffffffff808d70f0 ra : ffffffff808d70ec sp : ff200000000073f0
 gp : ffffffff899c0180 tp : ffffffff88045040 t0 : ff20000000007560
 t1 : ffebffff05fdd8bc t2 : 0000000000000006 s0 : ff200000000074a0
 s1 : ff60000011001780 a0 : 0000000000000000 a1 : 0000000000000020
 a2 : 0000000000000001 a3 : 0000000000000000 a4 : 0000000000ff0100
 a5 : 0000000000000000 a6 : ffffffff808d70d8 a7 : ff6000002feec5e3
 s2 : 0000000000002920 s3 : 0000000000002920 s4 : 0000000000000020
 s5 : ffffffff899db240 s6 : ffffffff8171bd28 s7 : ffffffff87b234d0
 s8 : 0000000000000000 s9 : 1fec00000399e56a s10: 1fec00000399e573
 s11: 1fe4000000000ee4 t3 : 1ffffffff1008b6b t4 : ffebffff05fdd8bc
 t5 : ffebffff05fdd8bd t6 : 1ffffffff1008b75
status: 0000000200000120 badaddr: 0000000000000000 cause: 8000000000000005
[<ffffffff808d70f0>] slab_alloc_node mm/slub.c:4115 [inline]
[<ffffffff808d70f0>] __kmalloc_cache_noprof+0x62/0x318 mm/slub.c:4290
[<ffffffff8171bd28>] kmalloc_noprof include/linux/slab.h:878 [inline]
[<ffffffff8171bd28>] kzalloc_noprof include/linux/slab.h:1014 [inline]
[<ffffffff8171bd28>] ref_tracker_alloc+0x18e/0x542 lib/ref_tracker.c:203
[<ffffffff84d409b4>] __netdev_tracker_alloc include/linux/netdevice.h:4062 [inline]
[<ffffffff84d409b4>] netdev_hold include/linux/netdevice.h:4091 [inline]
[<ffffffff84d409b4>] dst_init+0xca/0x506 net/core/dst.c:52
[<ffffffff84d40e9e>] dst_alloc+0xae/0x174 net/core/dst.c:93
[<ffffffff857aa380>] ip6_dst_alloc net/ipv6/route.c:342 [inline]
[<ffffffff857aa380>] icmp6_dst_alloc+0x6e/0x4c8 net/ipv6/route.c:3275
[<ffffffff857d7ae6>] ndisc_send_skb+0x136e/0x1c04 net/ipv6/ndisc.c:491
[<ffffffff857e097c>] ndisc_send_rs+0x112/0x5c6 net/ipv6/ndisc.c:721
[<ffffffff8576bbb2>] addrconf_rs_timer+0x3dc/0x80e net/ipv6/addrconf.c:4042
[<ffffffff80334a06>] call_timer_fn+0x1d2/0x874 kernel/time/timer.c:1794
[<ffffffff8033620a>] expire_timers kernel/time/timer.c:1845 [inline]
[<ffffffff8033620a>] __run_timers+0x646/0x820 kernel/time/timer.c:2419
[<ffffffff8033650e>] __run_timer_base kernel/time/timer.c:2430 [inline]
[<ffffffff8033650e>] __run_timer_base kernel/time/timer.c:2423 [inline]
[<ffffffff8033650e>] run_timer_base+0x12a/0x1a6 kernel/time/timer.c:2439
[<ffffffff803365a2>] run_timer_softirq+0x18/0x42 kernel/time/timer.c:2449
[<ffffffff800e0a66>] handle_softirqs+0x4a6/0x10de kernel/softirq.c:554
[<ffffffff800e196a>] __do_softirq kernel/softirq.c:588 [inline]
[<ffffffff800e196a>] invoke_softirq kernel/softirq.c:428 [inline]
[<ffffffff800e196a>] __irq_exit_rcu+0x188/0x372 kernel/softirq.c:637
[<ffffffff800e2598>] irq_exit_rcu+0x10/0xf8 kernel/softirq.c:649
[<ffffffff85fdf410>] handle_riscv_irq+0x40/0x4c arch/riscv/kernel/traps.c:378
[<ffffffff86002b0a>] call_on_irq_stack+0x32/0x40 arch/riscv/kernel/entry.S:355
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1
CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0
Hardware name: riscv-virtio,qemu (DT)
epc : arch_static_branch arch/riscv/include/asm/jump_label.h:22 [inline]
epc : kfence_alloc include/linux/kfence.h:121 [inline]
epc : slab_alloc_node mm/slub.c:4118 [inline]
epc : __kmalloc_cache_noprof+0x62/0x318 mm/slub.c:4290
 ra : slab_pre_alloc_hook mm/slub.c:4038 [inline]
 ra : slab_alloc_node mm/slub.c:4114 [inline]
 ra : __kmalloc_cache_noprof+0x5e/0x318 mm/slub.c:4290
epc : ffffffff808d70f0 ra : ffffffff808d70ec sp : ff200000000173f0
 gp : ffffffff899c0180 tp : ff60000012a98000 t0 : ff20000000017560
 t1 : ffebffff03a384bc t2 : 0000000000000006 s0 : ff200000000174a0
 s1 : ff60000011001780 a0 : 0000000000000000 a1 : 0000000000000020
 a2 : 0000000000000001 a3 : 0000000000000000 a4 : 0000000000ff0100
 a5 : 0000000000000000 a6 : ffffffff808d70d8 a7 : ff6000001d1c25e3
 s2 : 0000000000002920 s3 : 0000000000002920 s4 : 0000000000000020
 s5 : ffffffff899db240 s6 : ffffffff8171bd28 s7 : ffffffff87b234d0
 s8 : 0000000000000000 s9 : 1fec0000033e3b1a s10: 1fec0000033e3b23
 s11: 1fe4000000002ee4 t3 : 1fec000002553163 t4 : ffebffff03a384bc
 t5 : ffebffff03a384bd t6 : 1fec00000255316d
status: 0000000200000120 badaddr: 0000000000000000 cause: 8000000000000001
[<ffffffff808d70f0>] slab_alloc_node mm/slub.c:4115 [inline]
[<ffffffff808d70f0>] __kmalloc_cache_noprof+0x62/0x318 mm/slub.c:4290
[<ffffffff8171bd28>] kmalloc_noprof include/linux/slab.h:878 [inline]
[<ffffffff8171bd28>] kzalloc_noprof include/linux/slab.h:1014 [inline]
[<ffffffff8171bd28>] ref_tracker_alloc+0x18e/0x542 lib/ref_tracker.c:203
[<ffffffff84d409b4>] __netdev_tracker_alloc include/linux/netdevice.h:4062 [inline]
[<ffffffff84d409b4>] netdev_hold include/linux/netdevice.h:4091 [inline]
[<ffffffff84d409b4>] dst_init+0xca/0x506 net/core/dst.c:52
[<ffffffff84d40e9e>] dst_alloc+0xae/0x174 net/core/dst.c:93
[<ffffffff857aa380>] ip6_dst_alloc net/ipv6/route.c:342 [inline]
[<ffffffff857aa380>] icmp6_dst_alloc+0x6e/0x4c8 net/ipv6/route.c:3275
[<ffffffff857d7ae6>] ndisc_send_skb+0x136e/0x1c04 net/ipv6/ndisc.c:491
[<ffffffff857e097c>] ndisc_send_rs+0x112/0x5c6 net/ipv6/ndisc.c:721
[<ffffffff8576bbb2>] addrconf_rs_timer+0x3dc/0x80e net/ipv6/addrconf.c:4042
[<ffffffff80334a06>] call_timer_fn+0x1d2/0x874 kernel/time/timer.c:1794
[<ffffffff8033620a>] expire_timers kernel/time/timer.c:1845 [inline]
[<ffffffff8033620a>] __run_timers+0x646/0x820 kernel/time/timer.c:2419
[<ffffffff8033650e>] __run_timer_base kernel/time/timer.c:2430 [inline]
[<ffffffff8033650e>] __run_timer_base kernel/time/timer.c:2423 [inline]
[<ffffffff8033650e>] run_timer_base+0x12a/0x1a6 kernel/time/timer.c:2439
[<ffffffff803365a2>] run_timer_softirq+0x18/0x42 kernel/time/timer.c:2449
[<ffffffff800e0a66>] handle_softirqs+0x4a6/0x10de kernel/softirq.c:554
[<ffffffff800e196a>] __do_softirq kernel/softirq.c:588 [inline]
[<ffffffff800e196a>] invoke_softirq kernel/softirq.c:428 [inline]
[<ffffffff800e196a>] __irq_exit_rcu+0x188/0x372 kernel/softirq.c:637
[<ffffffff800e2598>] irq_exit_rcu+0x10/0xf8 kernel/softirq.c:649
[<ffffffff85fdf410>] handle_riscv_irq+0x40/0x4c arch/riscv/kernel/traps.c:378
[<ffffffff86002b0a>] call_on_irq_stack+0x32/0x40 arch/riscv/kernel/entry.S:355

report is corrupted, running repro again
testing program (duration=16m26.64315379s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_usb_connect$hid-syz_usb_control_io$hid-syz_usb_ep_write$ath9k_ep1-syz_usb_control_io-syz_usb_ep_write-syz_usb_connect$hid
detailed listing:
executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(0xffffffffffffffff, 0x82, 0x298, &(0x7f0000000880)={[{}, {0xc1, 0x4e00, "a76ccb9eff4694983df611ac03c6c23db1e3b8a30904e41101cdd21d8799826964aa8886e936f66f48c239379140224ead5529be60e4e103ee38d753043dae6ff2a108343138511e178a6fbfe3be802baf1d007ca17528d326301c1a60af74a5e31728245262ab4192b1d4757ec2fb54915f7791bffa734daeea158acb4fb03e46eea193d2b46d98756c84cc0e3918618c11491b37f72d162d853d345d618871424ffc800edab555b0bc606148fb329c5d905b80df3904ba01e90ac463f9c3d910"}, {0xdb, 0x4e00, "6be35cbadd4162a569c2c76b2dd6755024d111346ad914193626dfeab859017c21defbe101f6abfa762aa37aff4568720bdff2ac998a07d8fdb764ee243e166db625ae104b3d7008286ec6d3bac11472e008701d0b14d472ff871c10a03632e0915a63f9b64b7147d9e1d588048c5e07dac9c4cafb0d8bd13fa693df564e62aa3ac61f5f8fbfbee5e79eb20a26d1c02c7b4f1a60e3a8060786ab1c9cdc0e06089164fda63e2879e8ff4e2331b339bf01f6cd2f482e64c37698423fb58571e7f767f7d34926b93c6c4f07d5567a38789b327afdade73f5517f8b603"}, {0xd6, 0x4e00, "75fb4c308d670bfed5d233eed8d6e1b22b9de275bf97e745cbc750d442202b4138e8c19e6098aba41a8ec208718e2df166763022fd4c4930a57600f930bec712faefbb5a083ff92bcfb039c9c16445f9d91d9c23ef8449c3701bcc93d7a2ac5e58c8364251ef80a1dc9cc6b122881c8ea67c52a44e4f6861d920f6f4a1660d04b1e3b1e766837526020467ff3c5328cbe27e9c25e7a50778e7fb9b27c9be7bd91a2cdac709ec83dd7cd7a5dc920694f42f2f3c011c7177adb96c558793cb74b1939c5e2cc1e3b29ed9bab20b4d6d594dbfc6a9119649"}, {}, {}, {}, {}]})
syz_usb_control_io(r0, &(0x7f0000000080)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0xffffff75, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d7084")
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)

program did not crash
report is corrupted, running repro again
testing program (duration=16m26.64315379s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_usb_connect$hid-syz_usb_control_io$hid-syz_usb_ep_write$ath9k_ep1-syz_usb_control_io-syz_usb_ep_write-syz_usb_connect$hid
detailed listing:
executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(0xffffffffffffffff, 0x82, 0x298, &(0x7f0000000880)={[{}, {0xc1, 0x4e00, "a76ccb9eff4694983df611ac03c6c23db1e3b8a30904e41101cdd21d8799826964aa8886e936f66f48c239379140224ead5529be60e4e103ee38d753043dae6ff2a108343138511e178a6fbfe3be802baf1d007ca17528d326301c1a60af74a5e31728245262ab4192b1d4757ec2fb54915f7791bffa734daeea158acb4fb03e46eea193d2b46d98756c84cc0e3918618c11491b37f72d162d853d345d618871424ffc800edab555b0bc606148fb329c5d905b80df3904ba01e90ac463f9c3d910"}, {0xdb, 0x4e00, "6be35cbadd4162a569c2c76b2dd6755024d111346ad914193626dfeab859017c21defbe101f6abfa762aa37aff4568720bdff2ac998a07d8fdb764ee243e166db625ae104b3d7008286ec6d3bac11472e008701d0b14d472ff871c10a03632e0915a63f9b64b7147d9e1d588048c5e07dac9c4cafb0d8bd13fa693df564e62aa3ac61f5f8fbfbee5e79eb20a26d1c02c7b4f1a60e3a8060786ab1c9cdc0e06089164fda63e2879e8ff4e2331b339bf01f6cd2f482e64c37698423fb58571e7f767f7d34926b93c6c4f07d5567a38789b327afdade73f5517f8b603"}, {0xd6, 0x4e00, "75fb4c308d670bfed5d233eed8d6e1b22b9de275bf97e745cbc750d442202b4138e8c19e6098aba41a8ec208718e2df166763022fd4c4930a57600f930bec712faefbb5a083ff92bcfb039c9c16445f9d91d9c23ef8449c3701bcc93d7a2ac5e58c8364251ef80a1dc9cc6b122881c8ea67c52a44e4f6861d920f6f4a1660d04b1e3b1e766837526020467ff3c5328cbe27e9c25e7a50778e7fb9b27c9be7bd91a2cdac709ec83dd7cd7a5dc920694f42f2f3c011c7177adb96c558793cb74b1939c5e2cc1e3b29ed9bab20b4d6d594dbfc6a9119649"}, {}, {}, {}, {}]})
syz_usb_control_io(r0, &(0x7f0000000080)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0xffffff75, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d7084")
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)

program did not crash
report is corrupted, running repro again
testing program (duration=16m26.64315379s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_usb_connect$hid-syz_usb_control_io$hid-syz_usb_ep_write$ath9k_ep1-syz_usb_control_io-syz_usb_ep_write-syz_usb_connect$hid
detailed listing:
executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(0xffffffffffffffff, 0x82, 0x298, &(0x7f0000000880)={[{}, {0xc1, 0x4e00, "a76ccb9eff4694983df611ac03c6c23db1e3b8a30904e41101cdd21d8799826964aa8886e936f66f48c239379140224ead5529be60e4e103ee38d753043dae6ff2a108343138511e178a6fbfe3be802baf1d007ca17528d326301c1a60af74a5e31728245262ab4192b1d4757ec2fb54915f7791bffa734daeea158acb4fb03e46eea193d2b46d98756c84cc0e3918618c11491b37f72d162d853d345d618871424ffc800edab555b0bc606148fb329c5d905b80df3904ba01e90ac463f9c3d910"}, {0xdb, 0x4e00, "6be35cbadd4162a569c2c76b2dd6755024d111346ad914193626dfeab859017c21defbe101f6abfa762aa37aff4568720bdff2ac998a07d8fdb764ee243e166db625ae104b3d7008286ec6d3bac11472e008701d0b14d472ff871c10a03632e0915a63f9b64b7147d9e1d588048c5e07dac9c4cafb0d8bd13fa693df564e62aa3ac61f5f8fbfbee5e79eb20a26d1c02c7b4f1a60e3a8060786ab1c9cdc0e06089164fda63e2879e8ff4e2331b339bf01f6cd2f482e64c37698423fb58571e7f767f7d34926b93c6c4f07d5567a38789b327afdade73f5517f8b603"}, {0xd6, 0x4e00, "75fb4c308d670bfed5d233eed8d6e1b22b9de275bf97e745cbc750d442202b4138e8c19e6098aba41a8ec208718e2df166763022fd4c4930a57600f930bec712faefbb5a083ff92bcfb039c9c16445f9d91d9c23ef8449c3701bcc93d7a2ac5e58c8364251ef80a1dc9cc6b122881c8ea67c52a44e4f6861d920f6f4a1660d04b1e3b1e766837526020467ff3c5328cbe27e9c25e7a50778e7fb9b27c9be7bd91a2cdac709ec83dd7cd7a5dc920694f42f2f3c011c7177adb96c558793cb74b1939c5e2cc1e3b29ed9bab20b4d6d594dbfc6a9119649"}, {}, {}, {}, {}]})
syz_usb_control_io(r0, &(0x7f0000000080)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0xffffff75, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d7084")
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)

program did not crash
final repro crashed as (corrupted=true):
watchdog: BUG: soft lockup - CPU#0 stuck for 431s! [swapper/0:0]
Modules linked in:
irq event stamp: 503543
hardirqs last  enabled at (503542): [<ffffffff85fdfc5c>] do_irq+0x34/0x48 arch/riscv/kernel/traps.c:390
hardirqs last disabled at (503543): [<ffffffff85fdfc3a>] do_irq+0x12/0x48 arch/riscv/kernel/traps.c:383
softirqs last  enabled at (415782): [<ffffffff800e0fae>] softirq_handle_end kernel/softirq.c:400 [inline]
softirqs last  enabled at (415782): [<ffffffff800e0fae>] handle_softirqs+0x9ee/0x10de kernel/softirq.c:582
softirqs last disabled at (415801): [<ffffffff800e196a>] __do_softirq kernel/softirq.c:588 [inline]
softirqs last disabled at (415801): [<ffffffff800e196a>] invoke_softirq kernel/softirq.c:428 [inline]
softirqs last disabled at (415801): [<ffffffff800e196a>] __irq_exit_rcu+0x188/0x372 kernel/softirq.c:637
CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0
Hardware name: riscv-virtio,qemu (DT)
epc : arch_static_branch arch/riscv/include/asm/jump_label.h:22 [inline]
epc : kfence_alloc include/linux/kfence.h:121 [inline]
epc : slab_alloc_node mm/slub.c:4118 [inline]
epc : __kmalloc_cache_noprof+0x62/0x318 mm/slub.c:4290
 ra : slab_pre_alloc_hook mm/slub.c:4038 [inline]
 ra : slab_alloc_node mm/slub.c:4114 [inline]
 ra : __kmalloc_cache_noprof+0x5e/0x318 mm/slub.c:4290
epc : ffffffff808d70f0 ra : ffffffff808d70ec sp : ff200000000073f0
 gp : ffffffff899c0180 tp : ffffffff88045040 t0 : ff20000000007560
 t1 : ffebffff05fdd8bc t2 : 0000000000000006 s0 : ff200000000074a0
 s1 : ff60000011001780 a0 : 0000000000000000 a1 : 0000000000000020
 a2 : 0000000000000001 a3 : 0000000000000000 a4 : 0000000000ff0100
 a5 : 0000000000000000 a6 : ffffffff808d70d8 a7 : ff6000002feec5e3
 s2 : 0000000000002920 s3 : 0000000000002920 s4 : 0000000000000020
 s5 : ffffffff899db240 s6 : ffffffff8171bd28 s7 : ffffffff87b234d0
 s8 : 0000000000000000 s9 : 1fec00000399e56a s10: 1fec00000399e573
 s11: 1fe4000000000ee4 t3 : 1ffffffff1008b6b t4 : ffebffff05fdd8bc
 t5 : ffebffff05fdd8bd t6 : 1ffffffff1008b75
status: 0000000200000120 badaddr: 0000000000000000 cause: 8000000000000005
[<ffffffff808d70f0>] slab_alloc_node mm/slub.c:4115 [inline]
[<ffffffff808d70f0>] __kmalloc_cache_noprof+0x62/0x318 mm/slub.c:4290
[<ffffffff8171bd28>] kmalloc_noprof include/linux/slab.h:878 [inline]
[<ffffffff8171bd28>] kzalloc_noprof include/linux/slab.h:1014 [inline]
[<ffffffff8171bd28>] ref_tracker_alloc+0x18e/0x542 lib/ref_tracker.c:203
[<ffffffff84d409b4>] __netdev_tracker_alloc include/linux/netdevice.h:4062 [inline]
[<ffffffff84d409b4>] netdev_hold include/linux/netdevice.h:4091 [inline]
[<ffffffff84d409b4>] dst_init+0xca/0x506 net/core/dst.c:52
[<ffffffff84d40e9e>] dst_alloc+0xae/0x174 net/core/dst.c:93
[<ffffffff857aa380>] ip6_dst_alloc net/ipv6/route.c:342 [inline]
[<ffffffff857aa380>] icmp6_dst_alloc+0x6e/0x4c8 net/ipv6/route.c:3275
[<ffffffff857d7ae6>] ndisc_send_skb+0x136e/0x1c04 net/ipv6/ndisc.c:491
[<ffffffff857e097c>] ndisc_send_rs+0x112/0x5c6 net/ipv6/ndisc.c:721
[<ffffffff8576bbb2>] addrconf_rs_timer+0x3dc/0x80e net/ipv6/addrconf.c:4042
[<ffffffff80334a06>] call_timer_fn+0x1d2/0x874 kernel/time/timer.c:1794
[<ffffffff8033620a>] expire_timers kernel/time/timer.c:1845 [inline]
[<ffffffff8033620a>] __run_timers+0x646/0x820 kernel/time/timer.c:2419
[<ffffffff8033650e>] __run_timer_base kernel/time/timer.c:2430 [inline]
[<ffffffff8033650e>] __run_timer_base kernel/time/timer.c:2423 [inline]
[<ffffffff8033650e>] run_timer_base+0x12a/0x1a6 kernel/time/timer.c:2439
[<ffffffff803365a2>] run_timer_softirq+0x18/0x42 kernel/time/timer.c:2449
[<ffffffff800e0a66>] handle_softirqs+0x4a6/0x10de kernel/softirq.c:554
[<ffffffff800e196a>] __do_softirq kernel/softirq.c:588 [inline]
[<ffffffff800e196a>] invoke_softirq kernel/softirq.c:428 [inline]
[<ffffffff800e196a>] __irq_exit_rcu+0x188/0x372 kernel/softirq.c:637
[<ffffffff800e2598>] irq_exit_rcu+0x10/0xf8 kernel/softirq.c:649
[<ffffffff85fdf410>] handle_riscv_irq+0x40/0x4c arch/riscv/kernel/traps.c:378
[<ffffffff86002b0a>] call_on_irq_stack+0x32/0x40 arch/riscv/kernel/entry.S:355
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1
CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0
Hardware name: riscv-virtio,qemu (DT)
epc : arch_static_branch arch/riscv/include/asm/jump_label.h:22 [inline]
epc : kfence_alloc include/linux/kfence.h:121 [inline]
epc : slab_alloc_node mm/slub.c:4118 [inline]
epc : __kmalloc_cache_noprof+0x62/0x318 mm/slub.c:4290
 ra : slab_pre_alloc_hook mm/slub.c:4038 [inline]
 ra : slab_alloc_node mm/slub.c:4114 [inline]
 ra : __kmalloc_cache_noprof+0x5e/0x318 mm/slub.c:4290
epc : ffffffff808d70f0 ra : ffffffff808d70ec sp : ff200000000173f0
 gp : ffffffff899c0180 tp : ff60000012a98000 t0 : ff20000000017560
 t1 : ffebffff03a384bc t2 : 0000000000000006 s0 : ff200000000174a0
 s1 : ff60000011001780 a0 : 0000000000000000 a1 : 0000000000000020
 a2 : 0000000000000001 a3 : 0000000000000000 a4 : 0000000000ff0100
 a5 : 0000000000000000 a6 : ffffffff808d70d8 a7 : ff6000001d1c25e3
 s2 : 0000000000002920 s3 : 0000000000002920 s4 : 0000000000000020
 s5 : ffffffff899db240 s6 : ffffffff8171bd28 s7 : ffffffff87b234d0
 s8 : 0000000000000000 s9 : 1fec0000033e3b1a s10: 1fec0000033e3b23
 s11: 1fe4000000002ee4 t3 : 1fec000002553163 t4 : ffebffff03a384bc
 t5 : ffebffff03a384bd t6 : 1fec00000255316d
status: 0000000200000120 badaddr: 0000000000000000 cause: 8000000000000001
[<ffffffff808d70f0>] slab_alloc_node mm/slub.c:4115 [inline]
[<ffffffff808d70f0>] __kmalloc_cache_noprof+0x62/0x318 mm/slub.c:4290
[<ffffffff8171bd28>] kmalloc_noprof include/linux/slab.h:878 [inline]
[<ffffffff8171bd28>] kzalloc_noprof include/linux/slab.h:1014 [inline]
[<ffffffff8171bd28>] ref_tracker_alloc+0x18e/0x542 lib/ref_tracker.c:203
[<ffffffff84d409b4>] __netdev_tracker_alloc include/linux/netdevice.h:4062 [inline]
[<ffffffff84d409b4>] netdev_hold include/linux/netdevice.h:4091 [inline]
[<ffffffff84d409b4>] dst_init+0xca/0x506 net/core/dst.c:52
[<ffffffff84d40e9e>] dst_alloc+0xae/0x174 net/core/dst.c:93
[<ffffffff857aa380>] ip6_dst_alloc net/ipv6/route.c:342 [inline]
[<ffffffff857aa380>] icmp6_dst_alloc+0x6e/0x4c8 net/ipv6/route.c:3275
[<ffffffff857d7ae6>] ndisc_send_skb+0x136e/0x1c04 net/ipv6/ndisc.c:491
[<ffffffff857e097c>] ndisc_send_rs+0x112/0x5c6 net/ipv6/ndisc.c:721
[<ffffffff8576bbb2>] addrconf_rs_timer+0x3dc/0x80e net/ipv6/addrconf.c:4042
[<ffffffff80334a06>] call_timer_fn+0x1d2/0x874 kernel/time/timer.c:1794
[<ffffffff8033620a>] expire_timers kernel/time/timer.c:1845 [inline]
[<ffffffff8033620a>] __run_timers+0x646/0x820 kernel/time/timer.c:2419
[<ffffffff8033650e>] __run_timer_base kernel/time/timer.c:2430 [inline]
[<ffffffff8033650e>] __run_timer_base kernel/time/timer.c:2423 [inline]
[<ffffffff8033650e>] run_timer_base+0x12a/0x1a6 kernel/time/timer.c:2439
[<ffffffff803365a2>] run_timer_softirq+0x18/0x42 kernel/time/timer.c:2449
[<ffffffff800e0a66>] handle_softirqs+0x4a6/0x10de kernel/softirq.c:554
[<ffffffff800e196a>] __do_softirq kernel/softirq.c:588 [inline]
[<ffffffff800e196a>] invoke_softirq kernel/softirq.c:428 [inline]
[<ffffffff800e196a>] __irq_exit_rcu+0x188/0x372 kernel/softirq.c:637
[<ffffffff800e2598>] irq_exit_rcu+0x10/0xf8 kernel/softirq.c:649
[<ffffffff85fdf410>] handle_riscv_irq+0x40/0x4c arch/riscv/kernel/traps.c:378
[<ffffffff86002b0a>] call_on_irq_stack+0x32/0x40 arch/riscv/kernel/entry.S:355