forked to background, child pid 3048 no interfaces have a carrier [ 63.630051][ T3049] 8021q: adding VLAN 0 to HW filter on device bond0 [ 63.658363][ T3049] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller Warning: Permanently added '10.128.1.85' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 86.702056][ T1022] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 86.942082][ T1022] usb 1-1: Using ep0 maxpacket: 16 [ 87.072207][ T1022] usb 1-1: config 0 has an invalid interface number: 161 but max is 0 [ 87.080601][ T1022] usb 1-1: config 0 has an invalid descriptor of length 9, skipping remainder of the config [ 87.090936][ T1022] usb 1-1: config 0 has no interface number 0 [ 87.097172][ T1022] usb 1-1: config 0 interface 161 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 87.107172][ T1022] usb 1-1: config 0 interface 161 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 87.272240][ T1022] usb 1-1: New USB device found, idVendor=0df6, idProduct=005b, bcdDevice=b7.55 [ 87.281479][ T1022] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 87.289740][ T1022] usb 1-1: Product: syz [ 87.294075][ T1022] usb 1-1: Manufacturer: syz [ 87.298731][ T1022] usb 1-1: SerialNumber: syz [ 87.306570][ T1022] usb 1-1: config 0 descriptor?? [ 87.358166][ T1022] r8712u: register rtl8712_netdev_ops to netdev_ops [ 87.364927][ T1022] usb 1-1: r8712u: USB_SPEED_HIGH with 1 endpoints executing program [ 87.582229][ T1022] ===================================================== [ 87.589291][ T1022] BUG: KMSAN: uninit-value in string+0x4ec/0x6f0 [ 87.595689][ T1022] string+0x4ec/0x6f0 [ 87.599693][ T1022] vsnprintf+0x2222/0x3650 [ 87.604145][ T1022] pointer+0x1844/0x2060 [ 87.608404][ T1022] vsnprintf+0x1a9b/0x3650 [ 87.612850][ T1022] vprintk_store+0x537/0x2150 [ 87.617565][ T1022] vprintk_emit+0x25c/0x950 [ 87.622094][ T1022] dev_vprintk_emit+0x5ef/0x6d0 [ 87.627010][ T1022] dev_printk_emit+0x1dd/0x21f [ 87.631801][ T1022] __dev_printk+0x3be/0x440 [ 87.636339][ T1022] _dev_info+0x1ea/0x22f [ 87.640615][ T1022] r871xu_drv_init+0x1929/0x3070 [ 87.645571][ T1022] usb_probe_interface+0xf19/0x1600 [ 87.650911][ T1022] really_probe+0x653/0x14b0 [ 87.655533][ T1022] __driver_probe_device+0x3e9/0x530 [ 87.660845][ T1022] __device_attach_driver+0x79f/0x1120 [ 87.666347][ T1022] bus_for_each_drv+0x2d6/0x3f0 [ 87.671214][ T1022] __device_attach+0x593/0x8e0 [ 87.675992][ T1022] device_initial_probe+0x4a/0x60 [ 87.681045][ T1022] bus_probe_device+0x17b/0x3e0 [ 87.685908][ T1022] device_add+0x1fff/0x26e0 [ 87.690435][ T1022] usb_set_configuration+0x37e9/0x3ed0 [ 87.695935][ T1022] usb_generic_driver_probe+0x13c/0x300 [ 87.701514][ T1022] usb_probe_device+0x309/0x570 [ 87.706388][ T1022] really_probe+0x653/0x14b0 [ 87.710995][ T1022] __driver_probe_device+0x3e9/0x530 [ 87.716301][ T1022] __device_attach_driver+0x79f/0x1120 [ 87.721806][ T1022] bus_for_each_drv+0x2d6/0x3f0 [ 87.726687][ T1022] __device_attach+0x593/0x8e0 [ 87.731465][ T1022] device_initial_probe+0x4a/0x60 [ 87.736614][ T1022] bus_probe_device+0x17b/0x3e0 [ 87.741483][ T1022] device_add+0x1fff/0x26e0 [ 87.746022][ T1022] usb_new_device+0x1b8e/0x2950 [ 87.750889][ T1022] hub_event+0x58e3/0x89e0 [ 87.755342][ T1022] process_one_work+0xdb6/0x1820 [ 87.760306][ T1022] worker_thread+0x10b3/0x21e0 [ 87.765108][ T1022] kthread+0x3c7/0x500 [ 87.769199][ T1022] ret_from_fork+0x1f/0x30 [ 87.773635][ T1022] [ 87.775951][ T1022] Local variable data created at: [ 87.780964][ T1022] usb_read8+0x5d/0x130 [ 87.785136][ T1022] r8712_read8+0xa5/0xd0 [ 87.789406][ T1022] [ 87.791737][ T1022] CPU: 0 PID: 1022 Comm: kworker/0:2 Not tainted 5.17.0-rc4-syzkaller #0 [ 87.800180][ T1022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 87.810245][ T1022] Workqueue: usb_hub_wq hub_event [ 87.815320][ T1022] ===================================================== [ 87.822247][ T1022] Disabling lock debugging due to kernel taint [ 87.828410][ T1022] Kernel panic - not syncing: kmsan.panic set ... [ 87.834832][ T1022] CPU: 0 PID: 1022 Comm: kworker/0:2 Tainted: G B 5.17.0-rc4-syzkaller #0 [ 87.844669][ T1022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 87.854750][ T1022] Workqueue: usb_hub_wq hub_event [ 87.859813][ T1022] Call Trace: [ 87.863090][ T1022] [ 87.866021][ T1022] dump_stack_lvl+0x1ff/0x28e [ 87.870730][ T1022] dump_stack+0x25/0x28 [ 87.874905][ T1022] panic+0x487/0xe1f [ 87.878914][ T1022] ? add_taint+0x181/0x210 [ 87.883350][ T1022] ? _raw_spin_unlock_irqrestore+0x78/0xb0 [ 87.889195][ T1022] kmsan_report+0x2e6/0x2f0 [ 87.893738][ T1022] ? __msan_warning+0xb8/0x130 [ 87.898524][ T1022] ? string+0x4ec/0x6f0 [ 87.902695][ T1022] ? vsnprintf+0x2222/0x3650 [ 87.907312][ T1022] ? pointer+0x1844/0x2060 [ 87.911738][ T1022] ? vsnprintf+0x1a9b/0x3650 [ 87.916354][ T1022] ? vprintk_store+0x537/0x2150 [ 87.921265][ T1022] ? vprintk_emit+0x25c/0x950 [ 87.925980][ T1022] ? dev_vprintk_emit+0x5ef/0x6d0 [ 87.931045][ T1022] ? dev_printk_emit+0x1dd/0x21f [ 87.936009][ T1022] ? __dev_printk+0x3be/0x440 [ 87.940738][ T1022] ? _dev_info+0x1ea/0x22f [ 87.945193][ T1022] ? r871xu_drv_init+0x1929/0x3070 [ 87.950323][ T1022] ? usb_probe_interface+0xf19/0x1600 [ 87.955733][ T1022] ? really_probe+0x653/0x14b0 [ 87.960514][ T1022] ? __driver_probe_device+0x3e9/0x530 [ 87.965999][ T1022] ? __device_attach_driver+0x79f/0x1120 [ 87.971666][ T1022] ? bus_for_each_drv+0x2d6/0x3f0 [ 87.976702][ T1022] ? __device_attach+0x593/0x8e0 [ 87.981655][ T1022] ? device_initial_probe+0x4a/0x60 [ 87.986869][ T1022] ? bus_probe_device+0x17b/0x3e0 [ 87.991907][ T1022] ? device_add+0x1fff/0x26e0 [ 87.996634][ T1022] ? usb_set_configuration+0x37e9/0x3ed0 [ 88.002320][ T1022] ? usb_generic_driver_probe+0x13c/0x300 [ 88.008088][ T1022] ? usb_probe_device+0x309/0x570 [ 88.013153][ T1022] ? really_probe+0x653/0x14b0 [ 88.017933][ T1022] ? __driver_probe_device+0x3e9/0x530 [ 88.023413][ T1022] ? __device_attach_driver+0x79f/0x1120 [ 88.029076][ T1022] ? bus_for_each_drv+0x2d6/0x3f0 [ 88.034134][ T1022] ? __device_attach+0x593/0x8e0 [ 88.039086][ T1022] ? device_initial_probe+0x4a/0x60 [ 88.044306][ T1022] ? bus_probe_device+0x17b/0x3e0 [ 88.049354][ T1022] ? device_add+0x1fff/0x26e0 [ 88.054066][ T1022] ? usb_new_device+0x1b8e/0x2950 [ 88.059118][ T1022] ? hub_event+0x58e3/0x89e0 [ 88.063720][ T1022] ? process_one_work+0xdb6/0x1820 [ 88.068860][ T1022] ? worker_thread+0x10b3/0x21e0 [ 88.073810][ T1022] ? kthread+0x3c7/0x500 [ 88.078077][ T1022] ? ret_from_fork+0x1f/0x30 [ 88.082692][ T1022] ? stack_trace_save+0x43/0x60 [ 88.087581][ T1022] ? __stack_depot_save+0x21/0x4d0 [ 88.092719][ T1022] ? kmsan_get_metadata+0x33/0x220 [ 88.097862][ T1022] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 88.104145][ T1022] ? kmsan_get_metadata+0x33/0x220 [ 88.109286][ T1022] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 88.115154][ T1022] __msan_warning+0xb8/0x130 [ 88.119817][ T1022] string+0x4ec/0x6f0 [ 88.123837][ T1022] vsnprintf+0x2222/0x3650 [ 88.128300][ T1022] pointer+0x1844/0x2060 [ 88.132566][ T1022] ? kmsan_get_metadata+0x33/0x220 [ 88.137732][ T1022] vsnprintf+0x1a9b/0x3650 [ 88.142185][ T1022] vprintk_store+0x537/0x2150 [ 88.146901][ T1022] ? vsnprintf+0x355b/0x3650 [ 88.151518][ T1022] ? snprintf+0x24a/0x290 [ 88.155867][ T1022] vprintk_emit+0x25c/0x950 [ 88.160402][ T1022] dev_vprintk_emit+0x5ef/0x6d0 [ 88.165312][ T1022] dev_printk_emit+0x1dd/0x21f [ 88.170135][ T1022] __dev_printk+0x3be/0x440 [ 88.174692][ T1022] _dev_info+0x1ea/0x22f [ 88.179002][ T1022] ? usb_read8+0xe7/0x130 [ 88.183363][ T1022] ? r871xu_drv_init+0x185e/0x3070 [ 88.188495][ T1022] ? r8712_read8+0xa5/0xd0 [ 88.192940][ T1022] r871xu_drv_init+0x1929/0x3070 [ 88.197905][ T1022] ? __pm_runtime_set_status+0x1aed/0x1e40 [ 88.203754][ T1022] ? kmsan_get_metadata+0x33/0x220 [ 88.208896][ T1022] ? r871x_dev_unload+0x310/0x310 [ 88.213939][ T1022] ? r871x_dev_unload+0x310/0x310 [ 88.219002][ T1022] usb_probe_interface+0xf19/0x1600 [ 88.224245][ T1022] ? kmsan_get_metadata+0x33/0x220 [ 88.229407][ T1022] ? usb_register_driver+0x900/0x900 [ 88.234740][ T1022] really_probe+0x653/0x14b0 [ 88.239366][ T1022] __driver_probe_device+0x3e9/0x530 [ 88.244681][ T1022] __device_attach_driver+0x79f/0x1120 [ 88.250174][ T1022] bus_for_each_drv+0x2d6/0x3f0 [ 88.255054][ T1022] ? deferred_probe_work_func+0x4c0/0x4c0 [ 88.260810][ T1022] __device_attach+0x593/0x8e0 [ 88.265604][ T1022] ? btf_func_check_meta+0x1a1/0x8d0 [ 88.270928][ T1022] device_initial_probe+0x4a/0x60 [ 88.275979][ T1022] bus_probe_device+0x17b/0x3e0 [ 88.280876][ T1022] device_add+0x1fff/0x26e0 [ 88.285415][ T1022] usb_set_configuration+0x37e9/0x3ed0 [ 88.290913][ T1022] ? usb_set_configuration+0xb11/0x3ed0 [ 88.296514][ T1022] usb_generic_driver_probe+0x13c/0x300 [ 88.302088][ T1022] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 88.307959][ T1022] ? usb_choose_configuration+0xf90/0xf90 [ 88.313712][ T1022] usb_probe_device+0x309/0x570 [ 88.318605][ T1022] ? kmsan_get_metadata+0x33/0x220 [ 88.323750][ T1022] ? usb_register_device_driver+0x580/0x580 [ 88.329688][ T1022] really_probe+0x653/0x14b0 [ 88.334322][ T1022] __driver_probe_device+0x3e9/0x530 [ 88.339636][ T1022] __device_attach_driver+0x79f/0x1120 [ 88.345128][ T1022] bus_for_each_drv+0x2d6/0x3f0 [ 88.350016][ T1022] ? deferred_probe_work_func+0x4c0/0x4c0 [ 88.355769][ T1022] __device_attach+0x593/0x8e0 [ 88.360555][ T1022] ? btf_func_check_meta+0x1a1/0x8d0 [ 88.365861][ T1022] device_initial_probe+0x4a/0x60 [ 88.370907][ T1022] bus_probe_device+0x17b/0x3e0 [ 88.375785][ T1022] device_add+0x1fff/0x26e0 [ 88.380323][ T1022] usb_new_device+0x1b8e/0x2950 [ 88.385201][ T1022] hub_event+0x58e3/0x89e0 [ 88.389667][ T1022] ? kmsan_get_metadata+0x33/0x220 [ 88.394804][ T1022] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 88.400643][ T1022] ? led_work+0x7b0/0x7b0 [ 88.405022][ T1022] process_one_work+0xdb6/0x1820 [ 88.409998][ T1022] worker_thread+0x10b3/0x21e0 [ 88.414797][ T1022] kthread+0x3c7/0x500 [ 88.418884][ T1022] ? worker_clr_flags+0x370/0x370 [ 88.423927][ T1022] ? kthread_blkcg+0x120/0x120 [ 88.428724][ T1022] ret_from_fork+0x1f/0x30 [ 88.433170][ T1022] [ 88.436366][ T1022] Kernel Offset: disabled [ 88.440696][ T1022] Rebooting in 86400 seconds..