Warning: Permanently added '10.128.0.25' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 145.749732][ T3230] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 146.109992][ T3230] usb 1-1: New USB device found, idVendor=2001, idProduct=1a02, bcdDevice=f8.9b [ 146.119249][ T3230] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 146.141675][ T3230] usb 1-1: config 0 descriptor?? [ 146.840161][ T3230] asix 1-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32 [ 147.090172][ T8488] ===================================================== [ 147.097225][ T8488] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x81/0x90 [ 147.104820][ T8488] CPU: 1 PID: 8488 Comm: syz-executor009 Not tainted 5.8.0-rc5-syzkaller #0 [ 147.113865][ T8488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 147.124122][ T8488] Call Trace: [ 147.127454][ T8488] dump_stack+0x21c/0x280 [ 147.131948][ T8488] kmsan_report+0xf7/0x1e0 [ 147.136416][ T8488] kmsan_internal_check_memory+0x238/0x3d0 [ 147.142302][ T8488] ? kmsan_get_metadata+0x116/0x180 [ 147.147558][ T8488] kmsan_copy_to_user+0x81/0x90 [ 147.152413][ T8488] _copy_to_user+0x18e/0x260 [ 147.157198][ T8488] raw_ioctl+0x4995/0x5810 [ 147.162013][ T8488] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 147.168273][ T8488] ? do_vfs_ioctl+0x1182/0x3540 [ 147.173180][ T8488] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 147.179017][ T8488] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 147.185213][ T8488] ? security_file_ioctl+0x1bd/0x210 [ 147.190588][ T8488] ? kmsan_get_metadata+0x116/0x180 [ 147.195849][ T8488] ? bdc_pci_remove+0xb0/0xb0 [ 147.200635][ T8488] __se_sys_ioctl+0x319/0x4d0 [ 147.205388][ T8488] __x64_sys_ioctl+0x4a/0x70 [ 147.209998][ T8488] do_syscall_64+0xad/0x160 [ 147.214639][ T8488] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 147.220850][ T8488] RIP: 0033:0x444cf7 [ 147.224738][ T8488] Code: Bad RIP value. [ 147.228860][ T8488] RSP: 002b:00007fff38034848 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 147.237685][ T8488] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000444cf7 [ 147.245858][ T8488] RDX: 00007fff38035870 RSI: 0000000080085502 RDI: 0000000000000003 [ 147.254086][ T8488] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000019 [ 147.262186][ T8488] R10: 0000000000000075 R11: 0000000000000246 R12: 00000000004029f0 [ 147.270157][ T8488] R13: 0000000000402a80 R14: 0000000000000000 R15: 0000000000000000 [ 147.278257][ T8488] [ 147.280585][ T8488] Uninit was stored to memory at: [ 147.285806][ T8488] kmsan_internal_chain_origin+0xad/0x130 [ 147.291781][ T8488] kmsan_memcpy_memmove_metadata+0x272/0x2e0 [ 147.297934][ T8488] kmsan_memcpy_metadata+0xb/0x10 [ 147.302958][ T8488] __msan_memcpy+0x43/0x50 [ 147.307470][ T8488] raw_queue_event+0x2b3/0x5c0 [ 147.312342][ T8488] gadget_setup+0x48c/0x530 [ 147.316868][ T8488] dummy_timer+0x2c4d/0x71c0 [ 147.321653][ T8488] call_timer_fn+0x226/0x550 [ 147.326330][ T8488] expire_timers+0x4fc/0x780 [ 147.331041][ T8488] __run_timers+0xaf4/0xd30 [ 147.335673][ T8488] run_timer_softirq+0x2d/0x50 [ 147.340443][ T8488] __do_softirq+0x2ea/0x7f5 [ 147.345002][ T8488] [ 147.347324][ T8488] Uninit was stored to memory at: [ 147.352352][ T8488] kmsan_internal_chain_origin+0xad/0x130 [ 147.358071][ T8488] __msan_chain_origin+0x50/0x90 [ 147.363148][ T8488] dummy_timer+0x1d82/0x71c0 [ 147.367755][ T8488] call_timer_fn+0x226/0x550 [ 147.372471][ T8488] expire_timers+0x4fc/0x780 [ 147.377066][ T8488] __run_timers+0xaf4/0xd30 [ 147.381572][ T8488] run_timer_softirq+0x2d/0x50 [ 147.386504][ T8488] __do_softirq+0x2ea/0x7f5 [ 147.391117][ T8488] [ 147.393444][ T8488] Uninit was stored to memory at: [ 147.398559][ T8488] kmsan_internal_chain_origin+0xad/0x130 [ 147.404409][ T8488] __msan_chain_origin+0x50/0x90 [ 147.409357][ T8488] usb_control_msg+0x5df/0x820 [ 147.414287][ T8488] usbnet_write_cmd+0x3de/0x480 [ 147.419138][ T8488] asix_write_cmd+0x18b/0x2c0 [ 147.424512][ T8488] ax88772_hw_reset+0x1bd/0xc30 [ 147.429360][ T8488] ax88772_bind+0x8f3/0x1400 [ 147.433954][ T8488] usbnet_probe+0x1152/0x3f90 [ 147.438901][ T8488] usb_probe_interface+0xece/0x1550 [ 147.444149][ T8488] really_probe+0xf20/0x20b0 [ 147.448735][ T8488] driver_probe_device+0x293/0x390 [ 147.453852][ T8488] __device_attach_driver+0x63f/0x830 [ 147.459270][ T8488] bus_for_each_drv+0x2ca/0x3f0 [ 147.464139][ T8488] __device_attach+0x4e2/0x7f0 [ 147.468899][ T8488] device_initial_probe+0x4a/0x60 [ 147.474008][ T8488] bus_probe_device+0x177/0x3d0 [ 147.478943][ T8488] device_add+0x3b0e/0x40d0 [ 147.483452][ T8488] usb_set_configuration+0x380f/0x3f10 [ 147.489002][ T8488] usb_generic_driver_probe+0x138/0x300 [ 147.494548][ T8488] usb_probe_device+0x311/0x490 [ 147.499398][ T8488] really_probe+0xf20/0x20b0 [ 147.504072][ T8488] driver_probe_device+0x293/0x390 [ 147.509180][ T8488] __device_attach_driver+0x63f/0x830 [ 147.514555][ T8488] bus_for_each_drv+0x2ca/0x3f0 [ 147.519497][ T8488] __device_attach+0x4e2/0x7f0 [ 147.524278][ T8488] device_initial_probe+0x4a/0x60 [ 147.531785][ T8488] bus_probe_device+0x177/0x3d0 [ 147.536632][ T8488] device_add+0x3b0e/0x40d0 [ 147.541137][ T8488] usb_new_device+0x1bd4/0x2a30 [ 147.546034][ T8488] hub_event+0x5e7b/0x8a70 [ 147.550453][ T8488] process_one_work+0x1688/0x2140 [ 147.555858][ T8488] worker_thread+0x10bc/0x2730 [ 147.560768][ T8488] kthread+0x551/0x590 [ 147.564965][ T8488] ret_from_fork+0x1f/0x30 [ 147.569374][ T8488] [ 147.571787][ T8488] Uninit was stored to memory at: [ 147.576993][ T8488] kmsan_internal_chain_origin+0xad/0x130 [ 147.582720][ T8488] __msan_chain_origin+0x50/0x90 [ 147.587914][ T8488] ax88772_bind+0x82e/0x1400 [ 147.592650][ T8488] usbnet_probe+0x1152/0x3f90 [ 147.597372][ T8488] usb_probe_interface+0xece/0x1550 [ 147.602662][ T8488] really_probe+0xf20/0x20b0 [ 147.607305][ T8488] driver_probe_device+0x293/0x390 [ 147.612415][ T8488] __device_attach_driver+0x63f/0x830 [ 147.617879][ T8488] bus_for_each_drv+0x2ca/0x3f0 [ 147.623105][ T8488] __device_attach+0x4e2/0x7f0 [ 147.627869][ T8488] device_initial_probe+0x4a/0x60 [ 147.633066][ T8488] bus_probe_device+0x177/0x3d0 [ 147.637913][ T8488] device_add+0x3b0e/0x40d0 [ 147.642416][ T8488] usb_set_configuration+0x380f/0x3f10 [ 147.648003][ T8488] usb_generic_driver_probe+0x138/0x300 [ 147.653548][ T8488] usb_probe_device+0x311/0x490 [ 147.658405][ T8488] really_probe+0xf20/0x20b0 [ 147.663133][ T8488] driver_probe_device+0x293/0x390 [ 147.668239][ T8488] __device_attach_driver+0x63f/0x830 [ 147.673617][ T8488] bus_for_each_drv+0x2ca/0x3f0 [ 147.678689][ T8488] __device_attach+0x4e2/0x7f0 [ 147.683453][ T8488] device_initial_probe+0x4a/0x60 [ 147.688479][ T8488] bus_probe_device+0x177/0x3d0 [ 147.693415][ T8488] device_add+0x3b0e/0x40d0 [ 147.698005][ T8488] usb_new_device+0x1bd4/0x2a30 [ 147.702855][ T8488] hub_event+0x5e7b/0x8a70 [ 147.707323][ T8488] process_one_work+0x1688/0x2140 [ 147.712482][ T8488] worker_thread+0x10bc/0x2730 [ 147.717242][ T8488] kthread+0x551/0x590 [ 147.721558][ T8488] ret_from_fork+0x1f/0x30 [ 147.725970][ T8488] [ 147.728342][ T8488] Local variable ----buf.i@asix_get_phy_addr created at: [ 147.735853][ T8488] asix_get_phy_addr+0x4d/0x290 [ 147.740706][ T8488] asix_get_phy_addr+0x4d/0x290 [ 147.745668][ T8488] [ 147.747991][ T8488] Byte 10 of 16 is uninitialized [ 147.752926][ T8488] Memory access of size 16 starts at ffff8881051954d0 [ 147.759688][ T8488] Data copied to user address 00007fff38035870 [ 147.766037][ T8488] ===================================================== [ 147.772964][ T8488] Disabling lock debugging due to kernel taint [ 147.779107][ T8488] Kernel panic - not syncing: panic_on_warn set ... [ 147.785757][ T8488] CPU: 1 PID: 8488 Comm: syz-executor009 Tainted: G B 5.8.0-rc5-syzkaller #0 [ 147.795811][ T8488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 147.805995][ T8488] Call Trace: [ 147.809292][ T8488] dump_stack+0x21c/0x280 [ 147.813632][ T8488] panic+0x4d7/0xef7 [ 147.817683][ T8488] ? add_taint+0x17c/0x210 [ 147.822109][ T8488] kmsan_report+0x1df/0x1e0 [ 147.826660][ T8488] kmsan_internal_check_memory+0x238/0x3d0 [ 147.832603][ T8488] ? kmsan_get_metadata+0x116/0x180 [ 147.837810][ T8488] kmsan_copy_to_user+0x81/0x90 [ 147.842715][ T8488] _copy_to_user+0x18e/0x260 [ 147.847319][ T8488] raw_ioctl+0x4995/0x5810 [ 147.851755][ T8488] ? __msan_metadata_ptr_for_load_2+0x10/0x20 [ 147.857876][ T8488] ? do_vfs_ioctl+0x1182/0x3540 [ 147.862729][ T8488] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 147.868598][ T8488] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 147.874672][ T8488] ? security_file_ioctl+0x1bd/0x210 [ 147.879958][ T8488] ? kmsan_get_metadata+0x116/0x180 [ 147.885256][ T8488] ? bdc_pci_remove+0xb0/0xb0 [ 147.889944][ T8488] __se_sys_ioctl+0x319/0x4d0 [ 147.894677][ T8488] __x64_sys_ioctl+0x4a/0x70 [ 147.899317][ T8488] do_syscall_64+0xad/0x160 [ 147.903822][ T8488] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 147.909781][ T8488] RIP: 0033:0x444cf7 [ 147.913670][ T8488] Code: Bad RIP value. [ 147.917814][ T8488] RSP: 002b:00007fff38034848 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 147.926309][ T8488] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000444cf7 [ 147.934328][ T8488] RDX: 00007fff38035870 RSI: 0000000080085502 RDI: 0000000000000003 [ 147.942303][ T8488] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000019 [ 147.950326][ T8488] R10: 0000000000000075 R11: 0000000000000246 R12: 00000000004029f0 [ 147.958467][ T8488] R13: 0000000000402a80 R14: 0000000000000000 R15: 0000000000000000 [ 147.968052][ T8488] Kernel Offset: disabled [ 147.972489][ T8488] Rebooting in 86400 seconds..