Warning: Permanently added '10.128.0.83' (ECDSA) to the list of known hosts. 2020/10/15 19:43:21 fuzzer started 2020/10/15 19:43:22 dialing manager at 10.128.0.26:46379 2020/10/15 19:43:23 syscalls: 3263 2020/10/15 19:43:23 code coverage: enabled 2020/10/15 19:43:23 comparison tracing: enabled 2020/10/15 19:43:23 extra coverage: enabled 2020/10/15 19:43:23 setuid sandbox: enabled 2020/10/15 19:43:23 namespace sandbox: enabled 2020/10/15 19:43:23 Android sandbox: /sys/fs/selinux/policy does not exist 2020/10/15 19:43:23 fault injection: enabled 2020/10/15 19:43:23 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2020/10/15 19:43:23 net packet injection: enabled 2020/10/15 19:43:23 net device setup: enabled 2020/10/15 19:43:23 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2020/10/15 19:43:23 devlink PCI setup: PCI device 0000:00:10.0 is not available 2020/10/15 19:43:23 USB emulation: enabled 2020/10/15 19:43:23 hci packet injection: enabled 2020/10/15 19:43:23 wifi device emulation: enabled 19:47:33 executing program 0: openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x4000, 0x0) syzkaller login: [ 406.378142][ T8522] IPVS: ftp: loaded support on port[0] = 21 [ 406.882781][ T8522] chnl_net:caif_netlink_parms(): no params data found [ 407.048974][ T8522] bridge0: port 1(bridge_slave_0) entered blocking state [ 407.056273][ T8522] bridge0: port 1(bridge_slave_0) entered disabled state [ 407.065832][ T8522] device bridge_slave_0 entered promiscuous mode [ 407.079679][ T8522] bridge0: port 2(bridge_slave_1) entered blocking state [ 407.087021][ T8522] bridge0: port 2(bridge_slave_1) entered disabled state [ 407.097310][ T8522] device bridge_slave_1 entered promiscuous mode [ 407.148237][ T8522] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 407.165079][ T8522] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 407.214406][ T8522] team0: Port device team_slave_0 added [ 407.228464][ T8522] team0: Port device team_slave_1 added [ 407.273710][ T8522] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 407.280937][ T8522] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 407.308527][ T8522] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 407.326383][ T8522] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 407.334786][ T8522] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 407.360990][ T8522] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 407.428480][ T8522] device hsr_slave_0 entered promiscuous mode [ 407.438753][ T8522] device hsr_slave_1 entered promiscuous mode [ 407.794915][ T8522] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 407.815587][ T8522] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 407.835876][ T8522] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 407.855266][ T8522] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 408.205264][ T8522] 8021q: adding VLAN 0 to HW filter on device bond0 [ 408.240663][ T3250] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 408.250034][ T3250] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 408.271698][ T8522] 8021q: adding VLAN 0 to HW filter on device team0 [ 408.296121][ T3250] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 408.306353][ T3250] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 408.317323][ T3250] bridge0: port 1(bridge_slave_0) entered blocking state [ 408.324778][ T3250] bridge0: port 1(bridge_slave_0) entered forwarding state [ 408.339752][ T3771] Bluetooth: hci0: command 0x0409 tx timeout [ 408.379515][ T3250] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 408.388988][ T3250] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 408.399621][ T3250] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 408.409337][ T3250] bridge0: port 2(bridge_slave_1) entered blocking state [ 408.416585][ T3250] bridge0: port 2(bridge_slave_1) entered forwarding state [ 408.425802][ T3250] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 408.437077][ T3250] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 408.455157][ T3250] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 408.466271][ T3250] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 408.480018][ T3250] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 408.508291][ T3771] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 408.519291][ T3771] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 408.553355][ T3771] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 408.563658][ T3771] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 408.599515][ T8522] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 408.613718][ T8522] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 408.629424][ T3771] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 408.639758][ T3771] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 408.712116][ T3771] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 408.720202][ T3771] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 408.762930][ T8522] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 408.834950][ T3771] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 408.846561][ T3771] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 408.916438][ T3771] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 408.928403][ T3771] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 408.960849][ T8522] device veth0_vlan entered promiscuous mode [ 408.972235][ T3771] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 408.981445][ T3771] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 409.039975][ T8522] device veth1_vlan entered promiscuous mode [ 409.118648][ T3250] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 409.128443][ T3250] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 409.138610][ T3250] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 409.148802][ T3250] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 409.173528][ T8522] device veth0_macvtap entered promiscuous mode [ 409.196833][ T8522] device veth1_macvtap entered promiscuous mode [ 409.265063][ T8522] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 409.273620][ T3250] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 409.283499][ T3250] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 409.293697][ T3250] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 409.303968][ T3250] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 409.331657][ T8522] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 409.346413][ T3250] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 409.356736][ T3250] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 409.376288][ T8522] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 409.386600][ T8522] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 409.396115][ T8522] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 409.405065][ T8522] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 409.745450][ T8617] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 409.753571][ T8617] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 409.781318][ T3250] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 409.890185][ T1066] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 409.898293][ T1066] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 409.905970][ T3250] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 19:47:39 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040)='TIPCv2\x00') sendmsg$TIPC_NL_LINK_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x14, r1, 0x1, 0x0, 0x0, {0x15}}, 0x14}}, 0x0) [ 410.421208][ T8738] Bluetooth: hci0: command 0x041b tx timeout 19:47:39 executing program 0: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_int(r0, 0x29, 0x48, &(0x7f0000000000)=0x8, 0x4) 19:47:39 executing program 0: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_int(r0, 0x29, 0x31, 0x0, 0x4) 19:47:39 executing program 0: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_int(r0, 0x29, 0x39, 0x0, 0x0) 19:47:40 executing program 0: r0 = syz_usb_connect(0x2, 0x6c4, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000180)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x110, 0x9, 0xbc, 0x5, 0x10}, 0x24, &(0x7f0000000080)={0x5, 0xf, 0x24, 0x3, [@ss_cap={0xa, 0x10, 0x3, 0x2, 0x3, 0x1f, 0x81}, @ss_cap={0xa, 0x10, 0x3, 0x92245d7869ddcb2b, 0x4, 0x6, 0x20, 0xb25}, @wireless={0xb, 0x10, 0x1, 0x0, 0x51, 0x0, 0xd1, 0xad}]}, 0x1, [{0x0, 0x0}]}) syz_usb_ep_write(r0, 0x0, 0x0, 0x0) open(&(0x7f0000000380)='./file0\x00', 0x0, 0x8) ioctl$sock_SIOCSIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8983, &(0x7f0000000c40)={0x2, 'veth0_to_bridge\x00', {0x6}}) fsmount(0xffffffffffffffff, 0x1, 0x0) ioctl$HIDIOCGRAWNAME(0xffffffffffffffff, 0x80404804, 0x0) [ 411.528729][ T3250] usb 1-1: new full-speed USB device number 2 using dummy_hcd [ 411.929421][ T3250] usb 1-1: not running at top speed; connect to a high speed hub [ 412.028858][ T3250] usb 1-1: config 0 has an invalid interface number: 253 but max is 1 [ 412.037209][ T3250] usb 1-1: config 0 has an invalid interface number: 242 but max is 1 [ 412.045821][ T3250] usb 1-1: config 0 has an invalid descriptor of length 8, skipping remainder of the config [ 412.056215][ T3250] usb 1-1: config 0 has no interface number 0 [ 412.062490][ T3250] usb 1-1: config 0 has no interface number 1 [ 412.068821][ T3250] usb 1-1: config 0 interface 253 altsetting 0 has an invalid endpoint with address 0x80, skipping [ 412.079750][ T3250] usb 1-1: config 0 interface 253 altsetting 0 has an invalid endpoint with address 0x80, skipping [ 412.090905][ T3250] usb 1-1: config 0 interface 253 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 412.101872][ T3250] usb 1-1: config 0 interface 253 altsetting 0 has an invalid endpoint with address 0x80, skipping [ 412.112881][ T3250] usb 1-1: config 0 interface 253 altsetting 0 has a duplicate endpoint with address 0x4, skipping [ 412.124693][ T3250] usb 1-1: config 0 interface 253 altsetting 0 endpoint 0x2 has invalid maxpacket 512, setting to 64 [ 412.136130][ T3250] usb 1-1: config 0 interface 253 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 412.146975][ T3250] usb 1-1: config 0 interface 253 altsetting 0 has an invalid endpoint with address 0x80, skipping [ 412.157906][ T3250] usb 1-1: config 0 interface 253 altsetting 0 has a duplicate endpoint with address 0x6, skipping [ 412.168840][ T3250] usb 1-1: config 0 interface 253 altsetting 0 endpoint 0x7 has invalid maxpacket 1024, setting to 64 [ 412.180042][ T3250] usb 1-1: config 0 interface 253 altsetting 0 endpoint 0x1 has invalid maxpacket 512, setting to 64 [ 412.191166][ T3250] usb 1-1: config 0 interface 242 altsetting 64 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 412.204522][ T3250] usb 1-1: config 0 interface 242 has no altsetting 0 [ 412.449600][ T3250] usb 1-1: string descriptor 0 read error: -22 [ 412.456147][ T3250] usb 1-1: New USB device found, idVendor=0b05, idProduct=1707, bcdDevice=70.26 [ 412.465541][ T3250] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 412.480196][ T3250] usb 1-1: config 0 descriptor?? [ 412.500267][ T8738] Bluetooth: hci0: command 0x040f tx timeout [ 412.511218][ T8777] raw-gadget gadget: fail, usb_ep_enable returned -22 [ 412.692676][ T3250] usb 1-1: reset full-speed USB device number 2 using dummy_hcd [ 413.689394][ T3250] usb 1-1: device descriptor read/64, error -71 19:47:42 executing program 1: sendmsg$NL80211_CMD_DEL_TX_TS(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x88040000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x0, 0x400, 0x70bd2b, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MAC={0xa}]}, 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x80) ioctl$BLKROTATIONAL(0xffffffffffffffff, 0x127e, &(0x7f0000000100)) bpf$BPF_MAP_FREEZE(0x16, &(0x7f0000000140)=0x1, 0x4) r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vcsa\x00', 0x40842, 0x0) ioctl$BLKRESETZONE(r0, 0x40101283, &(0x7f00000001c0)={0x2e2d7748, 0x5}) write$dsp(r0, &(0x7f0000000200)="260cfbe6613aaac6e0e379aa287445658b38a1ab6ea20704d132cf0751583b49d1cc6254e5b1fbbc90124db85dbbedd9978ac4cbf0a06f3c2899170d1800f49cf9", 0x41) socketpair(0x22, 0xa, 0x8, &(0x7f0000000280)={0xffffffffffffffff}) r2 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000300)='wireguard\x00') ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f00000003c0)={'sit0\x00', &(0x7f0000000340)={'ip6_vti0\x00', 0x0, 0x2f, 0x3, 0x1, 0x4, 0x2, @remote, @ipv4={[], [], @multicast2}, 0x7, 0x7800, 0x3, 0x7}}) sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f0000000500)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000004c0)={&(0x7f0000000400)={0xa0, r2, 0x20, 0x70bd2b, 0x25dfdbfc, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'wg2\x00'}, @WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e20}, @WGDEVICE_A_IFINDEX={0x8}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @c='\xa0\xcb\x87\x9aG\xf5\xbcdL\x0ei?\xa6\xd01\xc7J\x15S\xb6\xe9\x01\xb9\xff/Q\x8cx\x04/\xb5B'}, @WGDEVICE_A_FLAGS={0x8}, @WGDEVICE_A_IFINDEX={0x8, 0x1, r3}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @b='\xb0\x80s\xe8\xd4N\x91\xe3\xda\x92,\"C\x82D\xbb\x88\\i\xe2i\xc8\xe9\xd85\xb1\x14):M\xdcn'}, @WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e20}, @WGDEVICE_A_FWMARK={0x8, 0x7, 0x1000}]}, 0xa0}, 0x1, 0x0, 0x0, 0x20004000}, 0x400c0c0) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX_OLD(r1, 0x84, 0x6b, &(0x7f0000000540)=[@in6={0xa, 0x4e24, 0x7fffffff, @local, 0x101}, @in={0x2, 0x4e22, @rand_addr=0x64010101}, @in={0x2, 0x4e23, @local}], 0x3c) r4 = fcntl$dupfd(r1, 0x406, 0xffffffffffffffff) ioctl$CHAR_RAW_BSZGET(r4, 0x80081270, &(0x7f0000000580)) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f00000005c0)={0x0, 0xed, "a87d0af30866282568b81e52fa67a26a2113450942f550960a5babe7d3304bc1148c194eb963587a6a700ecae419fa7c8bc3d18c9af47f227b5628ff60acfae33aea13bf231b618dbca7ed050c5c03552256e6e5b4308298b5c244f4b99c4cd452aeefc3174ec7d2076efb5be4b5143786b2f9776afc2de40175e36dd2ded4867af55f4714998f14a75a628cc0fe6de137ff76a743797560222f1111b06b7298177f83836996ce995454f9b3b64f586ebea0f8d31077bda2503e44007f03f4c79c909533e108cdf0e1393e09e3bc486009dd8506b1c0c09e74328c583ca345dae920b886f43819719c4a437735"}, &(0x7f00000006c0)=0xf5) r5 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000700)='/proc/self/net/pfkey\x00', 0x10000, 0x0) ioctl$SNDCTL_DSP_GETTRIGGER(r5, 0x80045010, &(0x7f0000000740)) r6 = socket$phonet(0x23, 0x2, 0x1) ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000780)={0x0, r6, 0x0, 0x500000000000, 0x2, 0x1}) openat$mice(0xffffffffffffff9c, &(0x7f00000007c0)='/dev/input/mice\x00', 0x2) write$FUSE_CREATE_OPEN(0xffffffffffffffff, &(0x7f00000048c0)={0xa0, 0x0, 0x0, {{0x1, 0x0, 0x7f, 0x50, 0x3, 0x6, {0x3, 0xa12a, 0x0, 0x29e, 0x8, 0x100000000, 0x10000, 0x6, 0x9682, 0x9000, 0x0, 0x0, 0x0, 0x80000000}}, {0x0, 0x4}}}, 0xa0) 19:47:43 executing program 0: syz_usb_connect(0x0, 0x24, &(0x7f00000007c0)={{0x12, 0x1, 0x0, 0xae, 0xf9, 0x36, 0x40, 0x546, 0x3155, 0x6bfc, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xb5, 0x5e, 0xb6}}]}}]}}, 0x0) sendmsg$RDMA_NLDEV_CMD_STAT_DEL(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x1412, 0x0, 0x70bd25, 0x25dfdbfc, "", [@RDMA_NLDEV_ATTR_STAT_COUNTER_ID={0x8, 0x4f, 0x4}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x4}, @RDMA_NLDEV_ATTR_STAT_RES={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x1c72bf5087701078}, 0x0) [ 414.410083][ T3250] usb 1-1: device firmware changed [ 414.418335][ T3250] ieee80211 phy5: rt2x00usb_vendor_request: Error - Vendor Request 0x09 failed for offset 0x0000 with error -19 [ 414.430462][ T3250] ===================================================== [ 414.437505][ T3250] BUG: KMSAN: uninit-value in rt2500usb_bbp_read+0x19f/0x7e0 [ 414.444890][ T3250] CPU: 1 PID: 3250 Comm: kworker/1:2 Not tainted 5.9.0-rc8-syzkaller #0 [ 414.453209][ T3250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 414.463348][ T3250] Workqueue: usb_hub_wq hub_event [ 414.468430][ T3250] Call Trace: [ 414.471792][ T3250] dump_stack+0x21c/0x280 [ 414.476179][ T3250] kmsan_report+0xf7/0x1e0 [ 414.480616][ T3250] __msan_warning+0x55/0x90 [ 414.485134][ T3250] rt2500usb_bbp_read+0x19f/0x7e0 [ 414.490181][ T3250] rt2500usb_probe_hw+0x48f/0x2710 [ 414.495312][ T3250] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 414.501146][ T3250] ? rt2500usb_queue_init+0x200/0x200 [ 414.506566][ T3250] rt2x00lib_probe_dev+0xc58/0x3630 [ 414.511798][ T3250] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 414.517617][ T3250] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 414.523781][ T3250] ? kmsan_get_metadata+0x116/0x180 [ 414.528995][ T3250] ? kmsan_get_metadata+0x116/0x180 [ 414.534216][ T3250] rt2x00usb_probe+0x80a/0xfb0 [ 414.539015][ T3250] rt2500usb_probe+0x50/0x60 [ 414.543613][ T3250] ? rt2800_brightness_set+0x1090/0x1090 [ 414.549346][ T3250] usb_probe_interface+0xece/0x1550 [ 414.554572][ T3250] ? usb_register_driver+0x900/0x900 [ 414.559946][ T3250] really_probe+0xec3/0x2430 [ 414.564569][ T3250] driver_probe_device+0x293/0x390 [ 414.569703][ T3250] __device_attach_driver+0x63f/0x830 [ 414.575099][ T3250] bus_for_each_drv+0x2ca/0x3f0 [ 414.579963][ T3250] ? state_synced_show+0x130/0x130 [ 414.585097][ T3250] __device_attach+0x538/0x850 [ 414.589906][ T3250] device_initial_probe+0x4a/0x60 [ 414.594945][ T3250] bus_probe_device+0x177/0x3d0 [ 414.599813][ T3250] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 414.605630][ T3250] device_add+0x3c8a/0x4240 [ 414.610179][ T3250] usb_set_configuration+0x380f/0x3f10 [ 414.615655][ T3250] ? usb_set_configuration+0xb81/0x3f10 [ 414.621295][ T3250] usb_generic_driver_probe+0x138/0x300 [ 414.626866][ T3250] ? usb_choose_configuration+0xe70/0xe70 [ 414.632595][ T3250] usb_probe_device+0x317/0x570 [ 414.637463][ T3250] ? usb_register_device_driver+0x590/0x590 [ 414.643366][ T3250] really_probe+0xec3/0x2430 [ 414.647985][ T3250] driver_probe_device+0x293/0x390 [ 414.653117][ T3250] __device_attach_driver+0x63f/0x830 [ 414.658520][ T3250] bus_for_each_drv+0x2ca/0x3f0 [ 414.663382][ T3250] ? state_synced_show+0x130/0x130 [ 414.668516][ T3250] __device_attach+0x538/0x850 [ 414.673329][ T3250] device_initial_probe+0x4a/0x60 [ 414.678367][ T3250] bus_probe_device+0x177/0x3d0 [ 414.683236][ T3250] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 414.689057][ T3250] device_add+0x3c8a/0x4240 [ 414.693604][ T3250] usb_new_device+0x1bd4/0x2a30 [ 414.698490][ T3250] hub_event+0x5e7b/0x8a70 [ 414.702979][ T3250] ? kmsan_get_metadata+0x116/0x180 [ 414.708189][ T3250] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 414.714009][ T3250] ? led_work+0x7c0/0x7c0 [ 414.718414][ T3250] process_one_work+0x1688/0x2140 [ 414.723482][ T3250] worker_thread+0x10bc/0x2730 [ 414.728260][ T3250] ? kmsan_get_metadata+0x116/0x180 [ 414.733496][ T3250] kthread+0x551/0x590 [ 414.737572][ T3250] ? process_one_work+0x2140/0x2140 [ 414.742787][ T3250] ? kthread_blkcg+0x110/0x110 [ 414.747580][ T3250] ret_from_fork+0x1f/0x30 [ 414.752009][ T3250] [ 414.754372][ T3250] Local variable ----reg.i.i@rt2500usb_bbp_read created at: [ 414.761662][ T3250] rt2500usb_bbp_read+0x98/0x7e0 [ 414.766605][ T3250] rt2500usb_bbp_read+0x98/0x7e0 [ 414.771531][ T3250] ===================================================== [ 414.778455][ T3250] Disabling lock debugging due to kernel taint [ 414.784603][ T3250] Kernel panic - not syncing: panic_on_warn set ... [ 414.791203][ T3250] CPU: 1 PID: 3250 Comm: kworker/1:2 Tainted: G B 5.9.0-rc8-syzkaller #0 [ 414.800912][ T3250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 414.810985][ T3250] Workqueue: usb_hub_wq hub_event [ 414.816007][ T3250] Call Trace: [ 414.819336][ T3250] dump_stack+0x21c/0x280 [ 414.823708][ T3250] panic+0x4d7/0xef7 [ 414.827637][ T3250] ? add_taint+0x17c/0x210 [ 414.832076][ T3250] kmsan_report+0x1df/0x1e0 [ 414.836594][ T3250] __msan_warning+0x55/0x90 [ 414.841113][ T3250] rt2500usb_bbp_read+0x19f/0x7e0 [ 414.846172][ T3250] rt2500usb_probe_hw+0x48f/0x2710 [ 414.851301][ T3250] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 414.857144][ T3250] ? rt2500usb_queue_init+0x200/0x200 [ 414.862531][ T3250] rt2x00lib_probe_dev+0xc58/0x3630 [ 414.867744][ T3250] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 414.873572][ T3250] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 414.879739][ T3250] ? kmsan_get_metadata+0x116/0x180 [ 414.884949][ T3250] ? kmsan_get_metadata+0x116/0x180 [ 414.890171][ T3250] rt2x00usb_probe+0x80a/0xfb0 [ 414.894962][ T3250] rt2500usb_probe+0x50/0x60 [ 414.899562][ T3250] ? rt2800_brightness_set+0x1090/0x1090 [ 414.905205][ T3250] usb_probe_interface+0xece/0x1550 [ 414.910454][ T3250] ? usb_register_driver+0x900/0x900 [ 414.915750][ T3250] really_probe+0xec3/0x2430 [ 414.920370][ T3250] driver_probe_device+0x293/0x390 [ 414.925504][ T3250] __device_attach_driver+0x63f/0x830 [ 414.930912][ T3250] bus_for_each_drv+0x2ca/0x3f0 [ 414.935772][ T3250] ? state_synced_show+0x130/0x130 [ 414.940924][ T3250] __device_attach+0x538/0x850 [ 414.945713][ T3250] device_initial_probe+0x4a/0x60 [ 414.950750][ T3250] bus_probe_device+0x177/0x3d0 [ 414.955622][ T3250] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 414.961441][ T3250] device_add+0x3c8a/0x4240 [ 414.965985][ T3250] usb_set_configuration+0x380f/0x3f10 [ 414.971555][ T3250] ? usb_set_configuration+0xb81/0x3f10 [ 414.977156][ T3250] usb_generic_driver_probe+0x138/0x300 [ 414.982717][ T3250] ? usb_choose_configuration+0xe70/0xe70 [ 414.988456][ T3250] usb_probe_device+0x317/0x570 [ 414.993342][ T3250] ? usb_register_device_driver+0x590/0x590 [ 414.999248][ T3250] really_probe+0xec3/0x2430 [ 415.003889][ T3250] driver_probe_device+0x293/0x390 [ 415.009024][ T3250] __device_attach_driver+0x63f/0x830 [ 415.014419][ T3250] bus_for_each_drv+0x2ca/0x3f0 [ 415.019281][ T3250] ? state_synced_show+0x130/0x130 [ 415.024414][ T3250] __device_attach+0x538/0x850 [ 415.029207][ T3250] device_initial_probe+0x4a/0x60 [ 415.034242][ T3250] bus_probe_device+0x177/0x3d0 [ 415.039109][ T3250] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 415.044926][ T3250] device_add+0x3c8a/0x4240 [ 415.049478][ T3250] usb_new_device+0x1bd4/0x2a30 [ 415.054368][ T3250] hub_event+0x5e7b/0x8a70 [ 415.058865][ T3250] ? kmsan_get_metadata+0x116/0x180 [ 415.064079][ T3250] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 415.069895][ T3250] ? led_work+0x7c0/0x7c0 [ 415.074238][ T3250] process_one_work+0x1688/0x2140 [ 415.079303][ T3250] worker_thread+0x10bc/0x2730 [ 415.084083][ T3250] ? kmsan_get_metadata+0x116/0x180 [ 415.089323][ T3250] kthread+0x551/0x590 [ 415.093427][ T3250] ? process_one_work+0x2140/0x2140 [ 415.098636][ T3250] ? kthread_blkcg+0x110/0x110 [ 415.103699][ T3250] ret_from_fork+0x1f/0x30 [ 415.109318][ T3250] Kernel Offset: disabled [ 415.113662][ T3250] Rebooting in 86400 seconds..