./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2953111095 <...> [ 105.181658][ T4612] 8021q: adding VLAN 0 to HW filter on device bond0 [ 105.236221][ T4612] eql: remember to turn off Van-Jacobson compression on your slave devices [ 105.447220][ T756] cfg80211: failed to load regulatory.db Starting sshd: [ 107.319343][ T4696] sshd (4696) used greatest stack depth: 5384 bytes left OK syzkaller Warning: Permanently added '10.128.10.26' (ECDSA) to the list of known hosts. execve("./syz-executor2953111095", ["./syz-executor2953111095"], 0x7ffc35769ae0 /* 10 vars */) = 0 brk(NULL) = 0x555555e57000 brk(0x555555e57c40) = 0x555555e57c40 arch_prctl(ARCH_SET_FS, 0x555555e57300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor2953111095", 4096) = 28 brk(0x555555e78c40) = 0x555555e78c40 brk(0x555555e79000) = 0x555555e79000 mprotect(0x7ff7cb42e000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555e575d0) = 4958 ./strace-static-x86_64: Process 4958 attached [pid 4958] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 4958] setpgid(0, 0) = 0 [pid 4958] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 4958] write(3, "1000", 4) = 4 [pid 4958] close(3) = 0 [pid 4958] openat(AT_FDCWD, "/dev/raw-gadget", O_RDWR) = 3 [pid 4958] ioctl(3, USB_RAW_IOCTL_INIT, 0x7ffef8870b20) = 0 [pid 4958] ioctl(3, UI_DEV_CREATE or USB_RAW_IOCTL_RUN, 0) = 0 [pid 4958] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffef8870b20) = 0 [pid 4958] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffef8870b20) = 0 [pid 4958] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffef886fb10) = 18 syzkaller login: [ 156.699494][ T40] usb 1-1: new high-speed USB device number 2 using dummy_hcd [pid 4958] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffef8870b20) = 0 [pid 4958] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffef886fb10) = 18 [pid 4958] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffef8870b20) = 0 [pid 4958] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffef886fb10) = 9 [pid 4958] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffef8870b20) = 0 [pid 4958] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffef886fb10) = 36 [pid 4958] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffef8870b20) = 0 [pid 4958] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffef886fb10) = 4 [ 157.062493][ T40] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8 has invalid maxpacket 16 [ 157.072565][ T40] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64 [pid 4958] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffef8870b20) = 0 [pid 4958] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffef886fb10) = 8 [pid 4958] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffef8870b20) = 0 [pid 4958] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffef886fb10) = 8 [pid 4958] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffef8870b20) = 0 [pid 4958] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffef886fb10) = 8 [pid 4958] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffef8870b20) = 0 [pid 4958] ioctl(3, USB_RAW_IOCTL_VBUS_DRAW, 0) = 0 [pid 4958] ioctl(3, USB_RAW_IOCTL_CONFIGURE, 0) = 0 [ 157.242566][ T40] usb 1-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=6f.8d [ 157.251904][ T40] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 157.260293][ T40] usb 1-1: Product: syz [ 157.264704][ T40] usb 1-1: Manufacturer: syz [ 157.269453][ T40] usb 1-1: SerialNumber: syz [ 157.278190][ T40] usb 1-1: config 0 descriptor?? [pid 4958] ioctl(3, USB_RAW_IOCTL_EP_ENABLE, 0x7ff7cb43446c) = -1 EINVAL (Invalid argument) [pid 4958] ioctl(3, USB_RAW_IOCTL_EP_ENABLE, 0x7ff7cb43447c) = -1 EINVAL (Invalid argument) [pid 4958] ioctl(3, USB_RAW_IOCTL_EP0_READ, 0x7ffef886fb10) = 0 [ 157.315408][ T4958] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 157.326070][ T4958] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 157.344722][ T40] smsc95xx v2.0.0 [pid 4958] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffef8870b40) = 0 [pid 4958] ioctl(3, USB_RAW_IOCTL_EP_DISABLE, 0) = -1 EINVAL (Invalid argument) [pid 4958] ioctl(3, USB_RAW_IOCTL_EP_DISABLE, 0) = -1 EINVAL (Invalid argument) [pid 4958] ioctl(3, USB_RAW_IOCTL_EP_ENABLE, 0x7ff7cb43446c) = -1 EINVAL (Invalid argument) [pid 4958] ioctl(3, USB_RAW_IOCTL_EP_ENABLE, 0x7ff7cb43447c) = -1 EINVAL (Invalid argument) [pid 4958] ioctl(3, USB_RAW_IOCTL_EP0_READ, 0x7ffef886fb30) = 0 [ 157.562374][ T4958] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 157.571168][ T4958] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [pid 4958] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffef8870b40) = 0 [pid 4958] ioctl(3, USB_RAW_IOCTL_EP0_STALL, 0) = 0 [pid 4958] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffef8870b40) = 0 [pid 4958] ioctl(3, USB_RAW_IOCTL_EP0_READ, 0x7ffef886fb30) = 4 [ 157.802511][ T40] smsc95xx 1-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32 [ 157.813365][ T40] smsc95xx 1-1:0.0 (unnamed net_device) (uninitialized): Error reading E2P_CMD [pid 4958] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffef8870b40) = 0 [pid 4958] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffef886fb30) = 0 [ 158.072627][ T40] ===================================================== [ 158.079760][ T40] BUG: KMSAN: uninit-value in smsc95xx_reset+0x409/0x25f0 [ 158.087101][ T40] smsc95xx_reset+0x409/0x25f0 [ 158.092100][ T40] smsc95xx_bind+0x9bc/0x22e0 [ 158.096946][ T40] usbnet_probe+0x1011/0x3f20 [ 158.101805][ T40] usb_probe_interface+0xc75/0x1210 [ 158.107231][ T40] really_probe+0x506/0xf40 [ 158.111908][ T40] __driver_probe_device+0x2a7/0x5d0 [ 158.117491][ T40] driver_probe_device+0x72/0x7b0 [ 158.122793][ T40] __device_attach_driver+0x55a/0x8f0 [ 158.128332][ T40] bus_for_each_drv+0x3ff/0x620 [ 158.133422][ T40] __device_attach+0x3bd/0x640 [ 158.138415][ T40] device_initial_probe+0x32/0x40 [ 158.143716][ T40] bus_probe_device+0x3d8/0x5a0 [ 158.148732][ T40] device_add+0x1b6a/0x24b0 [ 158.153466][ T40] usb_set_configuration+0x31c9/0x38c0 [ 158.159126][ T40] usb_generic_driver_probe+0x109/0x2a0 [ 158.165052][ T40] usb_probe_device+0x290/0x4a0 [ 158.170045][ T40] really_probe+0x506/0xf40 [ 158.174897][ T40] __driver_probe_device+0x2a7/0x5d0 [ 158.180373][ T40] driver_probe_device+0x72/0x7b0 [ 158.185688][ T40] __device_attach_driver+0x55a/0x8f0 [ 158.191240][ T40] bus_for_each_drv+0x3ff/0x620 [ 158.196385][ T40] __device_attach+0x3bd/0x640 [ 158.201291][ T40] device_initial_probe+0x32/0x40 [ 158.206564][ T40] bus_probe_device+0x3d8/0x5a0 [ 158.211566][ T40] device_add+0x1b6a/0x24b0 [ 158.216334][ T40] usb_new_device+0x15f6/0x22f0 [ 158.221323][ T40] hub_event+0x577b/0x78a0 [ 158.225998][ T40] process_one_work+0xb0d/0x1410 [ 158.231086][ T40] worker_thread+0x107e/0x1d60 [ 158.236083][ T40] kthread+0x3e8/0x540 [ 158.240318][ T40] ret_from_fork+0x1f/0x30 [ 158.244980][ T40] [ 158.247363][ T40] Local variable buf.i225 created at: [ 158.252992][ T40] smsc95xx_reset+0x203/0x25f0 [ 158.257922][ T40] smsc95xx_bind+0x9bc/0x22e0 [ 158.262839][ T40] [pid 4958] exit_group(0) = ? [ 158.265235][ T40] CPU: 1 PID: 40 Comm: kworker/1:1 Not tainted 6.4.0-syzkaller-g257152fe29be #0 [ 158.274510][ T40] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023 [ 158.284737][ T40] Workqueue: usb_hub_wq hub_event [ 158.289892][ T40] ===================================================== [ 158.297083][ T40] Disabling lock debugging due to kernel taint [ 158.303395][ T40] Kernel panic - not syncing: kmsan.panic set ... [ 158.309902][ T40] CPU: 1 PID: 40 Comm: kworker/1:1 Tainted: G B 6.4.0-syzkaller-g257152fe29be #0 [ 158.320545][ T40] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023 [ 158.330721][ T40] Workqueue: usb_hub_wq hub_event [ 158.335914][ T40] Call Trace: [ 158.339270][ T40] [ 158.342280][ T40] dump_stack_lvl+0x1bf/0x240 [ 158.347154][ T40] dump_stack+0x1e/0x20 [ 158.351460][ T40] panic+0x4d5/0xc70 [ 158.355502][ T40] ? add_taint+0x108/0x1a0 [ 158.360060][ T40] kmsan_report+0x2d0/0x2d0 [ 158.364744][ T40] ? __msan_warning+0x96/0x110 [ 158.369673][ T40] ? smsc95xx_reset+0x409/0x25f0 [ 158.374754][ T40] ? smsc95xx_bind+0x9bc/0x22e0 [ 158.379764][ T40] ? usbnet_probe+0x1011/0x3f20 [ 158.384782][ T40] ? usb_probe_interface+0xc75/0x1210 [ 158.390305][ T40] ? really_probe+0x506/0xf40 [ 158.395133][ T40] ? __driver_probe_device+0x2a7/0x5d0 [ 158.400749][ T40] ? driver_probe_device+0x72/0x7b0 [ 158.406108][ T40] ? __device_attach_driver+0x55a/0x8f0 [ 158.411817][ T40] ? bus_for_each_drv+0x3ff/0x620 [ 158.416987][ T40] ? __device_attach+0x3bd/0x640 [ 158.422075][ T40] ? device_initial_probe+0x32/0x40 [ 158.427422][ T40] ? bus_probe_device+0x3d8/0x5a0 [ 158.432588][ T40] ? device_add+0x1b6a/0x24b0 [ 158.437432][ T40] ? usb_set_configuration+0x31c9/0x38c0 [ 158.443250][ T40] ? usb_generic_driver_probe+0x109/0x2a0 [ 158.449146][ T40] ? usb_probe_device+0x290/0x4a0 [ 158.454298][ T40] ? really_probe+0x506/0xf40 [ 158.459134][ T40] ? __driver_probe_device+0x2a7/0x5d0 [ 158.464752][ T40] ? driver_probe_device+0x72/0x7b0 [ 158.470109][ T40] ? __device_attach_driver+0x55a/0x8f0 [ 158.475813][ T40] ? bus_for_each_drv+0x3ff/0x620 [ 158.480983][ T40] ? __device_attach+0x3bd/0x640 [ 158.486067][ T40] ? device_initial_probe+0x32/0x40 [ 158.491419][ T40] ? bus_probe_device+0x3d8/0x5a0 [ 158.496580][ T40] ? device_add+0x1b6a/0x24b0 [ 158.501427][ T40] ? usb_new_device+0x15f6/0x22f0 [ 158.506597][ T40] ? hub_event+0x577b/0x78a0 [ 158.511333][ T40] ? process_one_work+0xb0d/0x1410 [ 158.516583][ T40] ? worker_thread+0x107e/0x1d60 [ 158.521653][ T40] ? kthread+0x3e8/0x540 [ 158.526050][ T40] ? ret_from_fork+0x1f/0x30 [ 158.530799][ T40] ? _raw_spin_unlock_irqrestore+0x3f/0x60 [ 158.536768][ T40] ? __pm_runtime_idle+0x251/0x400 [ 158.542036][ T40] ? usb_autopm_put_interface+0xa3/0xe0 [ 158.547738][ T40] ? usbnet_read_cmd+0x354/0x3b0 [ 158.552852][ T40] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 158.558853][ T40] __msan_warning+0x96/0x110 [ 158.563608][ T40] smsc95xx_reset+0x409/0x25f0 [ 158.568526][ T40] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 158.574523][ T40] smsc95xx_bind+0x9bc/0x22e0 [ 158.579347][ T40] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 158.585343][ T40] ? folio_migrate_flags+0x3a6/0x9f0 [ 158.590813][ T40] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 158.596802][ T40] ? smsc95xx_start_tx_path+0x5f0/0x5f0 [ 158.602505][ T40] ? smsc95xx_start_tx_path+0x5f0/0x5f0 [ 158.608547][ T40] usbnet_probe+0x1011/0x3f20 [ 158.613385][ T40] ? ktime_get_mono_fast_ns+0x337/0x400 [ 158.619108][ T40] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 158.625364][ T40] ? usbnet_disconnect+0x7c0/0x7c0 [ 158.630636][ T40] usb_probe_interface+0xc75/0x1210 [ 158.635992][ T40] ? usb_register_driver+0x600/0x600 [ 158.641413][ T40] really_probe+0x506/0xf40 [ 158.646070][ T40] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 158.652318][ T40] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 158.658307][ T40] __driver_probe_device+0x2a7/0x5d0 [ 158.663763][ T40] driver_probe_device+0x72/0x7b0 [ 158.668953][ T40] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 158.674959][ T40] __device_attach_driver+0x55a/0x8f0 [ 158.680504][ T40] bus_for_each_drv+0x3ff/0x620 [ 158.685493][ T40] ? coredump_store+0xa0/0xa0 [ 158.690330][ T40] __device_attach+0x3bd/0x640 [ 158.695259][ T40] device_initial_probe+0x32/0x40 [ 158.700438][ T40] bus_probe_device+0x3d8/0x5a0 [ 158.705438][ T40] device_add+0x1b6a/0x24b0 [ 158.710128][ T40] usb_set_configuration+0x31c9/0x38c0 [ 158.715783][ T40] ? usb_set_configuration+0x8b1/0x38c0 [ 158.721554][ T40] usb_generic_driver_probe+0x109/0x2a0 [ 158.727274][ T40] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 158.733260][ T40] ? usb_choose_configuration+0xde0/0xde0 [ 158.739158][ T40] ? usb_choose_configuration+0xde0/0xde0 [ 158.745057][ T40] usb_probe_device+0x290/0x4a0 [ 158.750045][ T40] ? usb_register_device_driver+0x450/0x450 [ 158.756083][ T40] really_probe+0x506/0xf40 [ 158.760735][ T40] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 158.766989][ T40] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 158.772981][ T40] __driver_probe_device+0x2a7/0x5d0 [ 158.778438][ T40] driver_probe_device+0x72/0x7b0 [ 158.783622][ T40] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 158.789613][ T40] __device_attach_driver+0x55a/0x8f0 [ 158.795158][ T40] bus_for_each_drv+0x3ff/0x620 [ 158.800149][ T40] ? coredump_store+0xa0/0xa0 [ 158.804988][ T40] __device_attach+0x3bd/0x640 [ 158.809915][ T40] device_initial_probe+0x32/0x40 [ 158.815098][ T40] bus_probe_device+0x3d8/0x5a0 [ 158.820101][ T40] device_add+0x1b6a/0x24b0 [ 158.824788][ T40] usb_new_device+0x15f6/0x22f0 [ 158.829810][ T40] hub_event+0x577b/0x78a0 [ 158.834421][ T40] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 158.840420][ T40] ? led_work+0x740/0x740 [ 158.844897][ T40] ? led_work+0x740/0x740 [ 158.849365][ T40] process_one_work+0xb0d/0x1410 [ 158.854464][ T40] worker_thread+0x107e/0x1d60 [ 158.859367][ T40] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 158.865357][ T40] ? __kthread_parkme+0x190/0x1e0 [ 158.870547][ T40] kthread+0x3e8/0x540 [ 158.874772][ T40] ? pr_cont_work+0xce0/0xce0 [ 158.879602][ T40] ? kthread_blkcg+0x120/0x120 [ 158.884533][ T40] ret_from_fork+0x1f/0x30 [ 158.889114][ T40] [ 158.892376][ T40] Kernel Offset: disabled [ 158.896752][ T40] Rebooting in 86400 seconds..