[ OK ] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch. [ OK ] Started Getty on tty6. [ OK ] Started Getty on tty5. [ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty2. [ OK ] Started Serial Getty on ttyS0. [ OK ] Started Getty on tty1. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.65' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 135.764496][ T7] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 136.294649][ T7] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 136.303945][ T7] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 136.312429][ T7] usb 1-1: Product: syz [ 136.317018][ T7] usb 1-1: Manufacturer: syz [ 136.322083][ T7] usb 1-1: SerialNumber: syz [ 136.375888][ T7] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 137.064598][ T2019] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 137.284822][ T2019] ===================================================== [ 137.291812][ T2019] BUG: KMSAN: kernel-usb-infoleak in kmsan_handle_urb+0x28/0x40 [ 137.299475][ T2019] CPU: 0 PID: 2019 Comm: kworker/0:2 Not tainted 5.11.0-rc7-syzkaller #0 [ 137.307888][ T2019] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 137.317963][ T2019] Workqueue: events request_firmware_work_func [ 137.324131][ T2019] Call Trace: [ 137.327434][ T2019] dump_stack+0x21c/0x280 [ 137.331805][ T2019] kmsan_report+0xfb/0x1e0 [ 137.336216][ T2019] kmsan_internal_check_memory+0x202/0x520 [ 137.342022][ T2019] ? kmsan_get_metadata+0x116/0x180 [ 137.347219][ T2019] kmsan_handle_urb+0x28/0x40 [ 137.351908][ T2019] usb_submit_urb+0x89f/0x2590 [ 137.356670][ T2019] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 137.362828][ T2019] hif_usb_send+0x5f5/0x1720 [ 137.367668][ T2019] ? kmsan_get_metadata+0x116/0x180 [ 137.373073][ T2019] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 137.378898][ T2019] htc_connect_service+0x14b2/0x19f0 [ 137.386193][ T2019] ? hif_usb_sta_drain+0x6b0/0x6b0 [ 137.391326][ T2019] ath9k_wmi_connect+0x178/0x2c0 [ 137.396395][ T2019] ? ath9k_wmi_connect+0x2c0/0x2c0 [ 137.401527][ T2019] ? ath9k_wmi_ctrl_tx+0x50/0x50 [ 137.406466][ T2019] ath9k_init_htc_services+0xf3/0x1190 [ 137.412017][ T2019] ath9k_htc_probe_device+0x4fb/0x3e10 [ 137.417500][ T2019] ? ath9k_hif_usb_alloc_urbs+0x1b64/0x1ed0 [ 137.423401][ T2019] ath9k_htc_hw_init+0xdf/0x190 [ 137.428261][ T2019] ath9k_hif_usb_firmware_cb+0x42b/0xab0 [ 137.433899][ T2019] request_firmware_work_func+0x1b8/0x2e0 [ 137.439648][ T2019] ? ath9k_hif_request_firmware+0x930/0x930 [ 137.445567][ T2019] ? request_firmware_nowait+0x7c0/0x7c0 [ 137.451228][ T2019] process_one_work+0x1219/0x1fe0 [ 137.456260][ T2019] worker_thread+0x10ec/0x2340 [ 137.461046][ T2019] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 137.467005][ T2019] ? kmsan_get_metadata+0x116/0x180 [ 137.472215][ T2019] kthread+0x521/0x560 [ 137.476299][ T2019] ? process_one_work+0x1fe0/0x1fe0 [ 137.481495][ T2019] ? kthread_blkcg+0x110/0x110 [ 137.486260][ T2019] ret_from_fork+0x1f/0x30 [ 137.490698][ T2019] [ 137.493010][ T2019] Uninit was created at: [ 137.497242][ T2019] kmsan_internal_poison_shadow+0x5c/0xf0 [ 137.502970][ T2019] kmsan_slab_alloc+0x8d/0xe0 [ 137.507676][ T2019] __kmalloc_node_track_caller+0xa37/0x1430 [ 137.513579][ T2019] __alloc_skb+0x2f8/0xb30 [ 137.518010][ T2019] htc_connect_service+0x1057/0x19f0 [ 137.523503][ T2019] ath9k_wmi_connect+0x178/0x2c0 [ 137.528491][ T2019] ath9k_init_htc_services+0xf3/0x1190 [ 137.534135][ T2019] ath9k_htc_probe_device+0x4fb/0x3e10 [ 137.539732][ T2019] ath9k_htc_hw_init+0xdf/0x190 [ 137.544582][ T2019] ath9k_hif_usb_firmware_cb+0x42b/0xab0 [ 137.550220][ T2019] request_firmware_work_func+0x1b8/0x2e0 [ 137.555942][ T2019] process_one_work+0x1219/0x1fe0 [ 137.561068][ T2019] worker_thread+0x10ec/0x2340 [ 137.565833][ T2019] kthread+0x521/0x560 [ 137.569901][ T2019] ret_from_fork+0x1f/0x30 [ 137.574323][ T2019] [ 137.576656][ T2019] Bytes 4-7 of 18 are uninitialized [ 137.581981][ T2019] Memory access of size 18 starts at ffff888121719400 [ 137.588741][ T2019] ===================================================== [ 137.595863][ T2019] Disabling lock debugging due to kernel taint [ 137.602019][ T2019] Kernel panic - not syncing: panic_on_warn set ... [ 137.608646][ T2019] CPU: 0 PID: 2019 Comm: kworker/0:2 Tainted: G B 5.11.0-rc7-syzkaller #0 [ 137.618465][ T2019] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 137.628537][ T2019] Workqueue: events request_firmware_work_func [ 137.634705][ T2019] Call Trace: [ 137.637985][ T2019] dump_stack+0x21c/0x280 [ 137.642340][ T2019] panic+0x4c6/0xea7 [ 137.646246][ T2019] ? add_taint+0x17c/0x210 [ 137.650681][ T2019] kmsan_report+0x1de/0x1e0 [ 137.655187][ T2019] kmsan_internal_check_memory+0x202/0x520 [ 137.660999][ T2019] ? kmsan_get_metadata+0x116/0x180 [ 137.666203][ T2019] kmsan_handle_urb+0x28/0x40 [ 137.670888][ T2019] usb_submit_urb+0x89f/0x2590 [ 137.675826][ T2019] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 137.681988][ T2019] hif_usb_send+0x5f5/0x1720 [ 137.686579][ T2019] ? kmsan_get_metadata+0x116/0x180 [ 137.691775][ T2019] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 137.697580][ T2019] htc_connect_service+0x14b2/0x19f0 [ 137.702865][ T2019] ? hif_usb_sta_drain+0x6b0/0x6b0 [ 137.707977][ T2019] ath9k_wmi_connect+0x178/0x2c0 [ 137.713045][ T2019] ? ath9k_wmi_connect+0x2c0/0x2c0 [ 137.718294][ T2019] ? ath9k_wmi_ctrl_tx+0x50/0x50 [ 137.723306][ T2019] ath9k_init_htc_services+0xf3/0x1190 [ 137.728765][ T2019] ath9k_htc_probe_device+0x4fb/0x3e10 [ 137.734233][ T2019] ? ath9k_hif_usb_alloc_urbs+0x1b64/0x1ed0 [ 137.740169][ T2019] ath9k_htc_hw_init+0xdf/0x190 [ 137.745025][ T2019] ath9k_hif_usb_firmware_cb+0x42b/0xab0 [ 137.750683][ T2019] request_firmware_work_func+0x1b8/0x2e0 [ 137.756532][ T2019] ? ath9k_hif_request_firmware+0x930/0x930 [ 137.762556][ T2019] ? request_firmware_nowait+0x7c0/0x7c0 [ 137.768234][ T2019] process_one_work+0x1219/0x1fe0 [ 137.773426][ T2019] worker_thread+0x10ec/0x2340 [ 137.778306][ T2019] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 137.784122][ T2019] ? kmsan_get_metadata+0x116/0x180 [ 137.789334][ T2019] kthread+0x521/0x560 [ 137.793446][ T2019] ? process_one_work+0x1fe0/0x1fe0 [ 137.798659][ T2019] ? kthread_blkcg+0x110/0x110 [ 137.803428][ T2019] ret_from_fork+0x1f/0x30 [ 137.807917][ T2019] Kernel Offset: disabled [ 137.812237][ T2019] Rebooting in 86400 seconds..