[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 73.649618][ T31] audit: type=1800 audit(1570562143.692:25): pid=11132 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 73.681808][ T31] audit: type=1800 audit(1570562143.722:26): pid=11132 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 73.701958][ T31] audit: type=1800 audit(1570562143.722:27): pid=11132 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.197' (ECDSA) to the list of known hosts. 2019/10/08 19:15:55 parsed 1 programs 2019/10/08 19:16:14 executed programs: 0 syzkaller login: [ 104.236906][T11305] IPVS: ftp: loaded support on port[0] = 21 [ 104.271247][T11306] IPVS: ftp: loaded support on port[0] = 21 [ 104.344311][T11312] IPVS: ftp: loaded support on port[0] = 21 [ 104.352279][T11311] IPVS: ftp: loaded support on port[0] = 21 [ 104.355994][T11314] IPVS: ftp: loaded support on port[0] = 21 [ 104.389074][T11313] IPVS: ftp: loaded support on port[0] = 21 [ 104.595879][T11305] chnl_net:caif_netlink_parms(): no params data found [ 104.748478][T11305] bridge0: port 1(bridge_slave_0) entered blocking state [ 104.755782][T11305] bridge0: port 1(bridge_slave_0) entered disabled state [ 104.764542][T11305] device bridge_slave_0 entered promiscuous mode [ 104.774369][T11305] bridge0: port 2(bridge_slave_1) entered blocking state [ 104.781500][T11305] bridge0: port 2(bridge_slave_1) entered disabled state [ 104.790063][T11305] device bridge_slave_1 entered promiscuous mode [ 104.824454][T11306] chnl_net:caif_netlink_parms(): no params data found [ 104.904652][T11313] chnl_net:caif_netlink_parms(): no params data found [ 104.933628][T11305] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 104.949946][T11305] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 104.959368][T11314] chnl_net:caif_netlink_parms(): no params data found [ 105.024800][T11313] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.031998][T11313] bridge0: port 1(bridge_slave_0) entered disabled state [ 105.040265][T11313] device bridge_slave_0 entered promiscuous mode [ 105.087450][T11305] team0: Port device team_slave_0 added [ 105.094077][T11313] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.101222][T11313] bridge0: port 2(bridge_slave_1) entered disabled state [ 105.109506][T11313] device bridge_slave_1 entered promiscuous mode [ 105.121556][T11306] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.129024][T11306] bridge0: port 1(bridge_slave_0) entered disabled state [ 105.137674][T11306] device bridge_slave_0 entered promiscuous mode [ 105.160856][T11305] team0: Port device team_slave_1 added [ 105.216445][T11306] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.223864][T11306] bridge0: port 2(bridge_slave_1) entered disabled state [ 105.232365][T11306] device bridge_slave_1 entered promiscuous mode [ 105.251275][T11313] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 105.281585][T11311] chnl_net:caif_netlink_parms(): no params data found [ 105.300323][T11313] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 105.333289][T11314] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.340429][T11314] bridge0: port 1(bridge_slave_0) entered disabled state [ 105.348700][T11314] device bridge_slave_0 entered promiscuous mode [ 105.388516][T11314] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.395766][T11314] bridge0: port 2(bridge_slave_1) entered disabled state [ 105.404414][T11314] device bridge_slave_1 entered promiscuous mode [ 105.435755][T11306] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 105.450584][T11306] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 105.462679][T11313] team0: Port device team_slave_0 added [ 105.524497][T11305] device hsr_slave_0 entered promiscuous mode [ 105.572191][T11305] device hsr_slave_1 entered promiscuous mode [ 105.628720][T11312] chnl_net:caif_netlink_parms(): no params data found [ 105.654405][T11311] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.661556][T11311] bridge0: port 1(bridge_slave_0) entered disabled state [ 105.669885][T11311] device bridge_slave_0 entered promiscuous mode [ 105.680108][T11313] team0: Port device team_slave_1 added [ 105.686248][T11311] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.693642][T11311] bridge0: port 2(bridge_slave_1) entered disabled state [ 105.702355][T11311] device bridge_slave_1 entered promiscuous mode [ 105.763491][T11314] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 105.793318][T11306] team0: Port device team_slave_0 added [ 105.834941][T11313] device hsr_slave_0 entered promiscuous mode [ 105.872505][T11313] device hsr_slave_1 entered promiscuous mode [ 105.921855][T11313] debugfs: Directory 'hsr0' with parent '/' already present! [ 105.939766][T11311] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 105.958924][T11314] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 105.976663][T11312] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.983849][T11312] bridge0: port 1(bridge_slave_0) entered disabled state [ 105.992468][T11312] device bridge_slave_0 entered promiscuous mode [ 106.003058][T11306] team0: Port device team_slave_1 added [ 106.016719][T11311] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 106.026054][T11312] bridge0: port 2(bridge_slave_1) entered blocking state [ 106.033402][T11312] bridge0: port 2(bridge_slave_1) entered disabled state [ 106.041777][T11312] device bridge_slave_1 entered promiscuous mode [ 106.096122][T11314] team0: Port device team_slave_0 added [ 106.105453][T11311] team0: Port device team_slave_0 added [ 106.158570][T11312] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 106.170465][T11314] team0: Port device team_slave_1 added [ 106.179492][T11312] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 106.190860][T11311] team0: Port device team_slave_1 added [ 106.255866][T11306] device hsr_slave_0 entered promiscuous mode [ 106.302104][T11306] device hsr_slave_1 entered promiscuous mode [ 106.361740][T11306] debugfs: Directory 'hsr0' with parent '/' already present! [ 106.465444][T11311] device hsr_slave_0 entered promiscuous mode [ 106.512229][T11311] device hsr_slave_1 entered promiscuous mode [ 106.551780][T11311] debugfs: Directory 'hsr0' with parent '/' already present! [ 106.598619][T11312] team0: Port device team_slave_0 added [ 106.645459][T11314] device hsr_slave_0 entered promiscuous mode [ 106.692459][T11314] device hsr_slave_1 entered promiscuous mode [ 106.741828][T11314] debugfs: Directory 'hsr0' with parent '/' already present! [ 106.786698][T11312] team0: Port device team_slave_1 added [ 106.894313][T11312] device hsr_slave_0 entered promiscuous mode [ 106.932244][T11312] device hsr_slave_1 entered promiscuous mode [ 106.972076][T11312] debugfs: Directory 'hsr0' with parent '/' already present! [ 107.017719][T11305] 8021q: adding VLAN 0 to HW filter on device bond0 [ 107.038009][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 107.046278][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 107.101296][T11305] 8021q: adding VLAN 0 to HW filter on device team0 [ 107.139587][T11313] 8021q: adding VLAN 0 to HW filter on device bond0 [ 107.197266][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 107.206666][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 107.215538][ T32] bridge0: port 1(bridge_slave_0) entered blocking state [ 107.222758][ T32] bridge0: port 1(bridge_slave_0) entered forwarding state [ 107.244191][T11314] 8021q: adding VLAN 0 to HW filter on device bond0 [ 107.272426][T11313] 8021q: adding VLAN 0 to HW filter on device team0 [ 107.284074][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 107.292655][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 107.300837][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 107.309697][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 107.318780][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 107.327578][ T32] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.334730][ T32] bridge0: port 2(bridge_slave_1) entered forwarding state [ 107.355695][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 107.364074][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 107.372376][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 107.381550][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 107.391314][ T3346] bridge0: port 1(bridge_slave_0) entered blocking state [ 107.398518][ T3346] bridge0: port 1(bridge_slave_0) entered forwarding state [ 107.427891][T11314] 8021q: adding VLAN 0 to HW filter on device team0 [ 107.439272][T11311] 8021q: adding VLAN 0 to HW filter on device bond0 [ 107.458552][T11306] 8021q: adding VLAN 0 to HW filter on device bond0 [ 107.467396][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 107.475870][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 107.485646][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 107.495141][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 107.504800][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 107.514050][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 107.522919][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 107.531549][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 107.540533][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 107.549079][ T3346] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.556313][ T3346] bridge0: port 2(bridge_slave_1) entered forwarding state [ 107.567723][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 107.576649][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 107.586089][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 107.620416][T11311] 8021q: adding VLAN 0 to HW filter on device team0 [ 107.644302][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 107.652905][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 107.660979][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 107.670824][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 107.679015][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 107.687370][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 107.696087][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 107.704794][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 107.713558][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 107.722345][ T32] bridge0: port 1(bridge_slave_0) entered blocking state [ 107.729433][ T32] bridge0: port 1(bridge_slave_0) entered forwarding state [ 107.741692][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 107.749970][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 107.760851][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 107.769708][ T32] bridge0: port 1(bridge_slave_0) entered blocking state [ 107.776854][ T32] bridge0: port 1(bridge_slave_0) entered forwarding state [ 107.787379][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 107.802650][T11305] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 107.813528][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 107.826712][T11306] 8021q: adding VLAN 0 to HW filter on device team0 [ 107.875639][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 107.885605][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 107.894378][ T3346] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.901492][ T3346] bridge0: port 2(bridge_slave_1) entered forwarding state [ 107.909643][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 107.919140][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 107.928715][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 107.937913][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 107.946734][ T3346] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.953925][ T3346] bridge0: port 2(bridge_slave_1) entered forwarding state [ 107.962157][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 107.971495][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 107.987212][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 107.995986][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 108.005840][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 108.016831][ T3346] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 108.029166][T11323] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 108.066073][T11312] 8021q: adding VLAN 0 to HW filter on device bond0 [ 108.074740][T11323] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 108.084041][T11323] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 108.093735][T11323] bridge0: port 1(bridge_slave_0) entered blocking state [ 108.100885][T11323] bridge0: port 1(bridge_slave_0) entered forwarding state [ 108.109099][T11323] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 108.118356][T11323] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 108.127245][T11323] bridge0: port 2(bridge_slave_1) entered blocking state [ 108.134402][T11323] bridge0: port 2(bridge_slave_1) entered forwarding state [ 108.142626][T11323] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 108.152329][T11323] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 108.161815][T11323] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 108.178572][T11323] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 108.214535][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 108.223761][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 108.232699][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 108.241726][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 108.250552][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 108.259923][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 108.267973][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 108.284399][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 108.293844][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 108.303394][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 108.327741][T11305] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 108.339246][T11311] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 108.372269][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 108.380804][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 108.390909][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 108.400112][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 108.409451][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 108.418757][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 108.427408][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 108.436058][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 108.444958][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 108.454166][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 108.462738][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 108.471156][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 108.480301][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 108.488999][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 108.497762][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 108.511389][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 108.524956][T11312] 8021q: adding VLAN 0 to HW filter on device team0 [ 108.534983][T11313] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 108.555994][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 108.565009][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 108.573716][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 108.582613][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 108.601618][T11314] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 108.613768][T11314] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 108.628364][T11311] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 108.643192][T11306] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 108.674936][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 108.684702][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 108.693518][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 108.702730][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 108.711578][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 108.718744][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 108.726621][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 108.735570][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 108.744214][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 108.751280][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 108.763551][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 108.801538][T11313] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 108.824009][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 108.834989][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 108.850926][T11323] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 108.862296][T11323] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 108.875692][T11323] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 108.895472][T11323] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 108.905239][T11323] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 108.941931][T11306] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 108.977363][T11314] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 108.986206][T11323] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 108.995473][T11323] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 109.004586][T11323] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 109.013599][T11323] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 109.027336][T11312] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 109.214086][T11312] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 109.462066][ T17] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 109.492093][T11323] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 109.521951][ T32] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 109.552063][T11318] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 109.652567][T11337] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 109.672310][T11346] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 109.863676][ T17] usb 1-1: config 0 has an invalid interface number: 105 but max is 0 [ 109.872118][ T17] usb 1-1: config 0 has no interface number 0 [ 109.878306][ T17] usb 1-1: New USB device found, idVendor=2001, idProduct=1a02, bcdDevice=f8.9b [ 109.887779][ T17] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 109.896859][T11323] usb 4-1: config 0 has an invalid interface number: 105 but max is 0 [ 109.905410][T11323] usb 4-1: config 0 has no interface number 0 [ 109.911558][T11323] usb 4-1: New USB device found, idVendor=2001, idProduct=1a02, bcdDevice=f8.9b [ 109.920728][T11323] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 109.929413][ T32] usb 3-1: config 0 has an invalid interface number: 105 but max is 0 [ 109.938860][ T32] usb 3-1: config 0 has no interface number 0 [ 109.945126][ T32] usb 3-1: New USB device found, idVendor=2001, idProduct=1a02, bcdDevice=f8.9b [ 109.954259][ T32] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 109.968161][ T17] usb 1-1: config 0 descriptor?? [ 109.975093][ T32] usb 3-1: config 0 descriptor?? [ 109.981099][T11323] usb 4-1: config 0 descriptor?? [ 110.002885][T11318] usb 2-1: config 0 has an invalid interface number: 105 but max is 0 [ 110.011113][T11318] usb 2-1: config 0 has no interface number 0 [ 110.017330][T11318] usb 2-1: New USB device found, idVendor=2001, idProduct=1a02, bcdDevice=f8.9b [ 110.026529][T11318] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 110.043571][T11318] usb 2-1: config 0 descriptor?? [ 110.142379][T11337] usb 5-1: config 0 has an invalid interface number: 105 but max is 0 [ 110.150696][T11337] usb 5-1: config 0 has no interface number 0 [ 110.156928][T11337] usb 5-1: New USB device found, idVendor=2001, idProduct=1a02, bcdDevice=f8.9b [ 110.166113][T11337] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 110.187937][T11337] usb 5-1: config 0 descriptor?? [ 110.194236][T11346] usb 6-1: config 0 has an invalid interface number: 105 but max is 0 [ 110.202588][T11346] usb 6-1: config 0 has no interface number 0 [ 110.208749][T11346] usb 6-1: New USB device found, idVendor=2001, idProduct=1a02, bcdDevice=f8.9b [ 110.217906][T11346] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 110.229146][T11346] usb 6-1: config 0 descriptor?? [ 110.253548][ T17] asix 1-1:0.105 (unnamed net_device) (uninitialized): invalid hw address, using random [ 110.263727][ T32] asix 3-1:0.105 (unnamed net_device) (uninitialized): invalid hw address, using random [ 110.273911][T11323] asix 4-1:0.105 (unnamed net_device) (uninitialized): invalid hw address, using random [ 110.303783][T11318] asix 2-1:0.105 (unnamed net_device) (uninitialized): invalid hw address, using random [ 110.472669][T11337] asix 5-1:0.105 (unnamed net_device) (uninitialized): invalid hw address, using random [ 110.512305][T11346] asix 6-1:0.105 (unnamed net_device) (uninitialized): invalid hw address, using random 2019/10/08 19:16:22 executed programs: 6 [ 112.102455][ T17] asix 1-1:0.105 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 112.122267][ T32] asix 3-1:0.105 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 112.142593][T11323] asix 4-1:0.105 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 112.164574][ T17] asix 1-1:0.105 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 112.175119][ T17] asix 1-1:0.105 (unnamed net_device) (uninitialized): Failed to write GPIO value 0x00b0: ffffffb9 [ 112.189387][T11323] asix 4-1:0.105 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 112.200130][T11323] asix 4-1:0.105 (unnamed net_device) (uninitialized): Failed to write GPIO value 0x00b0: ffffffb9 [ 112.220804][ T32] asix 3-1:0.105 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 112.231386][ T32] asix 3-1:0.105 (unnamed net_device) (uninitialized): Failed to write GPIO value 0x00b0: ffffffb9 [ 112.283722][T11318] asix 2-1:0.105 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 112.299202][T11323] asix: probe of 4-1:0.105 failed with error -71 [ 112.312595][T11318] asix 2-1:0.105 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 112.323647][T11318] asix 2-1:0.105 (unnamed net_device) (uninitialized): Failed to write GPIO value 0x00b0: ffffffb9 [ 112.337387][ T17] asix: probe of 1-1:0.105 failed with error -71 [ 112.349097][ T32] asix: probe of 3-1:0.105 failed with error -71 [ 112.364897][T11337] asix 5-1:0.105 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 112.384150][ T32] usb 3-1: USB disconnect, device number 2 [ 112.394379][ T17] usb 1-1: USB disconnect, device number 2 [ 112.402510][T11346] asix 6-1:0.105 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 112.423395][T11323] usb 4-1: USB disconnect, device number 2 [ 112.431274][T11337] asix 5-1:0.105 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 112.441950][T11337] asix 5-1:0.105 (unnamed net_device) (uninitialized): Failed to write GPIO value 0x00b0: ffffffb9 [ 112.458701][T11346] asix 6-1:0.105 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 112.469366][T11346] asix 6-1:0.105 (unnamed net_device) (uninitialized): Failed to write GPIO value 0x00b0: ffffffb9 [ 112.490744][T11318] asix: probe of 2-1:0.105 failed with error -71 [ 112.505731][T11318] usb 2-1: USB disconnect, device number 2 [ 112.513824][T11337] asix: probe of 5-1:0.105 failed with error -71 [ 112.525603][T11346] asix: probe of 6-1:0.105 failed with error -71 [ 112.562529][T11337] usb 5-1: USB disconnect, device number 2 [ 112.572603][T11346] usb 6-1: USB disconnect, device number 2 [ 112.841939][T11323] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 112.850147][ T17] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 112.858035][ T32] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 112.931868][T11337] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 112.952045][T11318] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 112.982058][T11346] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 113.202119][T11323] usb 4-1: config 0 has an invalid interface number: 105 but max is 0 [ 113.210525][T11323] usb 4-1: config 0 has no interface number 0 [ 113.218339][T11323] usb 4-1: New USB device found, idVendor=2001, idProduct=1a02, bcdDevice=f8.9b [ 113.227634][T11323] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 113.236477][ T17] usb 1-1: config 0 has an invalid interface number: 105 but max is 0 [ 113.244809][ T17] usb 1-1: config 0 has no interface number 0 [ 113.251052][ T17] usb 1-1: New USB device found, idVendor=2001, idProduct=1a02, bcdDevice=f8.9b [ 113.260298][ T17] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 113.270323][ T32] usb 3-1: config 0 has an invalid interface number: 105 but max is 0 [ 113.278762][ T32] usb 3-1: config 0 has no interface number 0 [ 113.285122][ T32] usb 3-1: New USB device found, idVendor=2001, idProduct=1a02, bcdDevice=f8.9b [ 113.294833][ T32] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 113.305739][T11323] usb 4-1: config 0 descriptor?? [ 113.317658][ T32] usb 3-1: config 0 descriptor?? [ 113.324471][ T17] usb 1-1: config 0 descriptor?? [ 113.342801][T11337] usb 5-1: config 0 has an invalid interface number: 105 but max is 0 [ 113.351039][T11337] usb 5-1: config 0 has no interface number 0 [ 113.357384][T11337] usb 5-1: New USB device found, idVendor=2001, idProduct=1a02, bcdDevice=f8.9b [ 113.367081][T11337] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 113.381223][T11337] usb 5-1: config 0 descriptor?? [ 113.388927][T11318] usb 2-1: config 0 has an invalid interface number: 105 but max is 0 [ 113.397545][T11318] usb 2-1: config 0 has no interface number 0 [ 113.404091][T11318] usb 2-1: New USB device found, idVendor=2001, idProduct=1a02, bcdDevice=f8.9b [ 113.413462][T11318] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 113.462286][T11346] usb 6-1: config 0 has an invalid interface number: 105 but max is 0 [ 113.470555][T11346] usb 6-1: config 0 has no interface number 0 [ 113.477017][T11346] usb 6-1: New USB device found, idVendor=2001, idProduct=1a02, bcdDevice=f8.9b [ 113.486360][T11346] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 113.499559][T11318] usb 2-1: config 0 descriptor?? [ 113.505634][T11346] usb 6-1: config 0 descriptor?? [ 113.552391][T11323] asix 4-1:0.105 (unnamed net_device) (uninitialized): invalid hw address, using random [ 113.573056][ T32] asix 3-1:0.105 (unnamed net_device) (uninitialized): invalid hw address, using random [ 113.602044][ T17] asix 1-1:0.105 (unnamed net_device) (uninitialized): invalid hw address, using random [ 113.632109][T11337] asix 5-1:0.105 (unnamed net_device) (uninitialized): invalid hw address, using random [ 113.762594][T11346] asix 6-1:0.105 (unnamed net_device) (uninitialized): invalid hw address, using random [ 113.774942][T11318] asix 2-1:0.105 (unnamed net_device) (uninitialized): invalid hw address, using random [ 113.786417][T11323] asix 4-1:0.105 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32 [ 114.213705][T11361] ===================================================== [ 114.220691][T11361] BUG: KMSAN: kernel-infoleak in _copy_to_user+0x16b/0x1f0 [ 114.228503][T11361] CPU: 0 PID: 11361 Comm: syz-executor.3 Not tainted 5.3.0-rc7+ #0 [ 114.236402][T11361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 114.246463][T11361] Call Trace: [ 114.249750][T11361] dump_stack+0x191/0x1f0 [ 114.254087][T11361] kmsan_report+0x17d/0x2f0 [ 114.258600][T11361] kmsan_internal_check_memory+0x187/0x4c0 [ 114.264415][T11361] kmsan_copy_to_user+0xa9/0xb0 [ 114.269254][T11361] _copy_to_user+0x16b/0x1f0 [ 114.273855][T11361] fuzzer_ioctl+0x25a9/0x5860 [ 114.278534][T11361] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 114.284618][T11361] ? kmsan_get_shadow_origin_ptr+0x6e/0x4c0 [ 114.290563][T11361] ? next_event+0x6a0/0x6a0 [ 114.295069][T11361] full_proxy_unlocked_ioctl+0x1ca/0x380 [ 114.300733][T11361] ? full_proxy_poll+0x320/0x320 [ 114.305677][T11361] do_vfs_ioctl+0xea8/0x2c50 [ 114.310264][T11361] ? security_file_ioctl+0x1bd/0x200 [ 114.315543][T11361] __se_sys_ioctl+0x1da/0x270 [ 114.320213][T11361] __x64_sys_ioctl+0x4a/0x70 [ 114.324792][T11361] do_syscall_64+0xbc/0xf0 [ 114.329214][T11361] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 114.335100][T11361] RIP: 0033:0x4598c7 [ 114.338979][T11361] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 114.358572][T11361] RSP: 002b:00007fd4e3a413e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 114.366984][T11361] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004598c7 [ 114.374942][T11361] RDX: 00007fd4e3a41830 RSI: 0000000080085502 RDI: 0000000000000003 [ 114.382905][T11361] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 114.390883][T11361] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd4e3a426d4 [ 114.398873][T11361] R13: 00000000004bf135 R14: 00000000004e0950 R15: 00000000ffffffff [ 114.406849][T11361] [ 114.409170][T11361] Uninit was stored to memory at: [ 114.414197][T11361] kmsan_internal_chain_origin+0xde/0x190 [ 114.419912][T11361] kmsan_memcpy_memmove_metadata+0x25b/0x2d0 [ 114.425894][T11361] kmsan_memcpy_metadata+0xb/0x10 [ 114.430914][T11361] __msan_memcpy+0x56/0x70 [ 114.435333][T11361] gadget_setup+0x498/0xb60 [ 114.439835][T11361] dummy_timer+0x1fba/0x6770 [ 114.444418][T11361] call_timer_fn+0x232/0x530 [ 114.449006][T11361] __run_timers+0xcdc/0x11a0 [ 114.453597][T11361] run_timer_softirq+0x2d/0x50 [ 114.458358][T11361] __do_softirq+0x4a1/0x83a [ 114.462861][T11361] irq_exit+0x230/0x280 [ 114.467018][T11361] exiting_irq+0xe/0x10 [ 114.471157][T11361] smp_apic_timer_interrupt+0x48/0x70 [ 114.476525][T11361] apic_timer_interrupt+0x2e/0x40 [ 114.481543][T11361] default_idle+0x53/0x90 [ 114.485868][T11361] arch_cpu_idle+0x25/0x30 [ 114.490289][T11361] do_idle+0x1d7/0x790 [ 114.494355][T11361] cpu_startup_entry+0x45/0x50 [ 114.499100][T11361] start_secondary+0x370/0x470 [ 114.503848][T11361] secondary_startup_64+0xa4/0xb0 [ 114.508844][T11361] [ 114.511149][T11361] Uninit was stored to memory at: [ 114.516169][T11361] kmsan_internal_chain_origin+0xde/0x190 [ 114.521893][T11361] __msan_chain_origin+0x6b/0xe0 [ 114.526823][T11361] dummy_timer+0x2d76/0x6770 [ 114.531406][T11361] call_timer_fn+0x232/0x530 [ 114.535978][T11361] __run_timers+0xcdc/0x11a0 [ 114.540560][T11361] run_timer_softirq+0x2d/0x50 [ 114.545319][T11361] __do_softirq+0x4a1/0x83a [ 114.549816][T11361] irq_exit+0x230/0x280 [ 114.554027][T11361] exiting_irq+0xe/0x10 [ 114.558170][T11361] smp_apic_timer_interrupt+0x48/0x70 [ 114.563541][T11361] apic_timer_interrupt+0x2e/0x40 [ 114.568558][T11361] default_idle+0x53/0x90 [ 114.572872][T11361] arch_cpu_idle+0x25/0x30 [ 114.577276][T11361] do_idle+0x1d7/0x790 [ 114.581327][T11361] cpu_startup_entry+0x45/0x50 [ 114.586082][T11361] start_secondary+0x370/0x470 [ 114.590841][T11361] secondary_startup_64+0xa4/0xb0 [ 114.595838][T11361] [ 114.598145][T11361] Uninit was stored to memory at: [ 114.603161][T11361] kmsan_internal_chain_origin+0xde/0x190 [ 114.608884][T11361] __msan_chain_origin+0x6b/0xe0 [ 114.613816][T11361] usb_control_msg+0x61b/0x7f0 [ 114.618562][T11361] usbnet_write_cmd+0x386/0x430 [ 114.623404][T11361] asix_write_cmd+0x155/0x270 [ 114.628176][T11361] ax88772_hw_reset+0x191/0xb40 [ 114.633043][T11361] ax88772_bind+0x6ad/0x11f0 [ 114.637640][T11361] usbnet_probe+0x10ae/0x3960 [ 114.642332][T11361] usb_probe_interface+0xd19/0x1310 [ 114.647551][T11361] really_probe+0x1373/0x1dc0 [ 114.652402][T11361] driver_probe_device+0x1ba/0x510 [ 114.657523][T11361] __device_attach_driver+0x5b8/0x790 [ 114.662906][T11361] bus_for_each_drv+0x28e/0x3b0 [ 114.667773][T11361] __device_attach+0x489/0x750 [ 114.672541][T11361] device_initial_probe+0x4a/0x60 [ 114.677557][T11361] bus_probe_device+0x131/0x390 [ 114.682395][T11361] device_add+0x25b5/0x2df0 [ 114.686893][T11361] usb_set_configuration+0x309f/0x3710 [ 114.692351][T11361] generic_probe+0xe7/0x280 [ 114.696834][T11361] usb_probe_device+0x146/0x200 [ 114.701703][T11361] really_probe+0x1373/0x1dc0 [ 114.706415][T11361] driver_probe_device+0x1ba/0x510 [ 114.711518][T11361] __device_attach_driver+0x5b8/0x790 [ 114.716871][T11361] bus_for_each_drv+0x28e/0x3b0 [ 114.721723][T11361] __device_attach+0x489/0x750 [ 114.726480][T11361] device_initial_probe+0x4a/0x60 [ 114.731498][T11361] bus_probe_device+0x131/0x390 [ 114.736341][T11361] device_add+0x25b5/0x2df0 [ 114.740824][T11361] usb_new_device+0x23e5/0x2fb0 [ 114.745663][T11361] hub_event+0x581d/0x72f0 [ 114.750074][T11361] process_one_work+0x1572/0x1ef0 [ 114.755095][T11361] worker_thread+0x189c/0x2460 [ 114.759846][T11361] kthread+0x4b5/0x4f0 [ 114.763924][T11361] ret_from_fork+0x35/0x40 [ 114.768326][T11361] [ 114.770641][T11361] Uninit was stored to memory at: [ 114.775686][T11361] kmsan_internal_chain_origin+0xde/0x190 [ 114.781394][T11361] __msan_chain_origin+0x6b/0xe0 [ 114.786356][T11361] ax88772_bind+0xa12/0x11f0 [ 114.790958][T11361] usbnet_probe+0x10ae/0x3960 [ 114.795652][T11361] usb_probe_interface+0xd19/0x1310 [ 114.800847][T11361] really_probe+0x1373/0x1dc0 [ 114.805533][T11361] driver_probe_device+0x1ba/0x510 [ 114.810637][T11361] __device_attach_driver+0x5b8/0x790 [ 114.816019][T11361] bus_for_each_drv+0x28e/0x3b0 [ 114.820875][T11361] __device_attach+0x489/0x750 [ 114.825650][T11361] device_initial_probe+0x4a/0x60 [ 114.830678][T11361] bus_probe_device+0x131/0x390 [ 114.835517][T11361] device_add+0x25b5/0x2df0 [ 114.840016][T11361] usb_set_configuration+0x309f/0x3710 [ 114.845457][T11361] generic_probe+0xe7/0x280 [ 114.849953][T11361] usb_probe_device+0x146/0x200 [ 114.854803][T11361] really_probe+0x1373/0x1dc0 [ 114.859489][T11361] driver_probe_device+0x1ba/0x510 [ 114.864582][T11361] __device_attach_driver+0x5b8/0x790 [ 114.869947][T11361] bus_for_each_drv+0x28e/0x3b0 [ 114.874804][T11361] __device_attach+0x489/0x750 [ 114.879546][T11361] device_initial_probe+0x4a/0x60 [ 114.884550][T11361] bus_probe_device+0x131/0x390 [ 114.889386][T11361] device_add+0x25b5/0x2df0 [ 114.893886][T11361] usb_new_device+0x23e5/0x2fb0 [ 114.898714][T11361] hub_event+0x581d/0x72f0 [ 114.903121][T11361] process_one_work+0x1572/0x1ef0 [ 114.908151][T11361] worker_thread+0x189c/0x2460 [ 114.912894][T11361] kthread+0x4b5/0x4f0 [ 114.916951][T11361] ret_from_fork+0x35/0x40 [ 114.921356][T11361] [ 114.923684][T11361] Local variable description: ----buf.i@asix_get_phy_addr [ 114.930778][T11361] Variable was created at: [ 114.935189][T11361] asix_get_phy_addr+0x4d/0x280 [ 114.940019][T11361] ax88772_bind+0x472/0x11f0 [ 114.944584][T11361] [ 114.946915][T11361] Byte 10 of 16 is uninitialized [ 114.951849][T11361] Memory access of size 16 starts at ffff8880951157c0 [ 114.958591][T11361] Data copied to user address 00007fd4e3a41830 [ 114.964724][T11361] ===================================================== [ 114.971652][T11361] Disabling lock debugging due to kernel taint [ 114.977803][T11361] Kernel panic - not syncing: panic_on_warn set ... [ 114.989341][T11361] CPU: 0 PID: 11361 Comm: syz-executor.3 Tainted: G B 5.3.0-rc7+ #0 [ 114.998600][T11361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 115.008641][T11361] Call Trace: [ 115.011942][T11361] dump_stack+0x191/0x1f0 [ 115.016272][T11361] panic+0x3c9/0xc1e [ 115.020170][T11361] kmsan_report+0x2e5/0x2f0 [ 115.024694][T11361] kmsan_internal_check_memory+0x187/0x4c0 [ 115.030497][T11361] kmsan_copy_to_user+0xa9/0xb0 [ 115.035347][T11361] _copy_to_user+0x16b/0x1f0 [ 115.039936][T11361] fuzzer_ioctl+0x25a9/0x5860 [ 115.044602][T11361] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 115.050660][T11361] ? kmsan_get_shadow_origin_ptr+0x6e/0x4c0 [ 115.056544][T11361] ? next_event+0x6a0/0x6a0 [ 115.061050][T11361] full_proxy_unlocked_ioctl+0x1ca/0x380 [ 115.066689][T11361] ? full_proxy_poll+0x320/0x320 [ 115.071634][T11361] do_vfs_ioctl+0xea8/0x2c50 [ 115.076235][T11361] ? security_file_ioctl+0x1bd/0x200 [ 115.081513][T11361] __se_sys_ioctl+0x1da/0x270 [ 115.086276][T11361] __x64_sys_ioctl+0x4a/0x70 [ 115.090872][T11361] do_syscall_64+0xbc/0xf0 [ 115.095291][T11361] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 115.101214][T11361] RIP: 0033:0x4598c7 [ 115.105096][T11361] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 115.124730][T11361] RSP: 002b:00007fd4e3a413e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 115.133151][T11361] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004598c7 [ 115.141108][T11361] RDX: 00007fd4e3a41830 RSI: 0000000080085502 RDI: 0000000000000003 [ 115.149067][T11361] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 115.157048][T11361] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd4e3a426d4 [ 115.165034][T11361] R13: 00000000004bf135 R14: 00000000004e0950 R15: 00000000ffffffff [ 115.174187][T11361] Kernel Offset: disabled [ 115.178514][T11361] Rebooting in 86400 seconds..