BUG: KASAN: slab-out-of-bounds in au0828_rc_unregister+0x9a/0xb0
Read of size 8 at addr ffff8881c9207308 by task kworker/1:5/5736
CPU: 1 PID: 5736 Comm: kworker/1:5 Not tainted 5.1.0-rc3+ #7
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: usb_hub_wq hub_event
Call Trace:
dump_stack+0xca/0x13e
print_address_description+0x67/0x231
kasan_report.cold+0x1a/0x35
au0828_rc_unregister+0x9a/0xb0
au0828_usb_disconnect+0x6a/0x130
au0828_usb_probe.cold+0x111/0x16e
usb_probe_interface+0x30d/0x7b0
really_probe+0x296/0x680
driver_probe_device+0xf9/0x200
__device_attach_driver+0x1c4/0x230
bus_for_each_drv+0x15e/0x1e0
__device_attach+0x21e/0x360
bus_probe_device+0x1ec/0x2a0
device_add+0xaf4/0x1700
usb_set_configuration+0xdf2/0x1670
generic_probe+0x9d/0xd5
usb_probe_device+0xa8/0x110
really_probe+0x296/0x680
driver_probe_device+0xf9/0x200
__device_attach_driver+0x1c4/0x230
bus_for_each_drv+0x15e/0x1e0
__device_attach+0x21e/0x360
bus_probe_device+0x1ec/0x2a0
device_add+0xaf4/0x1700
usb_new_device.cold+0x8b8/0x1030
hub_event+0x1ac9/0x35a0
process_one_work+0x90a/0x1580
worker_thread+0x7ab/0xe20
kthread+0x30e/0x420
ret_from_fork+0x3a/0x50
The buggy address belongs to the page:
page:ffffea0007248100 count:1 mapcount:0 mapping:0000000000000000 index:0x0 compound_mapcount: 0
flags: 0x200000000010000(head)
raw: 0200000000010000 dead000000000100 dead000000000200 0000000000000000
raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
page dumped because: kasan: bad access detected
Memory state around the buggy address:
ffff8881c9207200: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe
ffff8881c9207280: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe
>ffff8881c9207300: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe
^
ffff8881c9207380: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe
ffff8881c9207400: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe
==================================================================