[ OK ] Found device /dev/ttyS0. [ OK ] Started Permit User Sessions. [ OK ] Started System Logging Service. [ OK ] Started getty on tty2-tty6 if dbus and logind are not available. [** ] A start job is running for OpenBSD …Shell server (1min 23s / 2min 43s)[* ] A start job is running for OpenBSD …Shell server (1min 23s / 2min 43s)[** ] A start job is running for OpenBSD …Shell server (1min 24s / 2min 43s)[*** ] A start job is running for OpenBSD …Shell server (1min 25s / 2min 43s)[ *** ] A start job is running for OpenBSD …Shell server (1min 26s / 2min 55s)[ OK ] Started OpenBSD Secure Shell server. [ OK ] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch. [ OK ] Started Getty on tty6. [ OK ] Started Getty on tty5. [ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty2. [ OK ] Started Getty on tty1. [ OK ] Started Serial Getty on ttyS0. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.10.8' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 136.955456][ T7] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 137.485821][ T7] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 137.495023][ T7] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 137.503481][ T7] usb 1-1: Product: syz [ 137.507974][ T7] usb 1-1: Manufacturer: syz [ 137.512886][ T7] usb 1-1: SerialNumber: syz [ 137.576887][ T7] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 138.245431][ T1981] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 138.465307][ C0] ===================================================== [ 138.472272][ C0] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x28c/0x1f30 [ 138.479578][ C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 5.11.0-rc7-syzkaller #0 [ 138.487550][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 138.497599][ C0] Call Trace: [ 138.500901][ C0] [ 138.503743][ C0] dump_stack+0x21c/0x280 [ 138.508096][ C0] kmsan_report+0xfb/0x1e0 [ 138.512518][ C0] __msan_warning+0x5f/0xa0 [ 138.517025][ C0] ath9k_htc_rx_msg+0x28c/0x1f30 [ 138.521955][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 138.528037][ C0] ath9k_hif_usb_rx_cb+0x184e/0x1d20 [ 138.533317][ C0] ? kmsan_get_metadata+0x116/0x180 [ 138.538509][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 138.544327][ C0] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0 [ 138.550213][ C0] __usb_hcd_giveback_urb+0x6ff/0x930 [ 138.555599][ C0] ? kmsan_get_metadata+0x116/0x180 [ 138.560805][ C0] usb_hcd_giveback_urb+0x1cb/0x730 [ 138.566017][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 138.571827][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 138.577972][ C0] dummy_timer+0xda7/0x74f0 [ 138.582487][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 138.588556][ C0] ? dummy_free_streams+0x5b0/0x5b0 [ 138.593766][ C0] call_timer_fn+0x7d/0x450 [ 138.598301][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 138.604120][ C0] expire_timers+0x328/0x6c0 [ 138.609692][ C0] ? dummy_free_streams+0x5b0/0x5b0 [ 138.614898][ C0] __run_timers+0x624/0x9e0 [ 138.619421][ C0] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 138.625571][ C0] ? irqtime_account_irq+0xe3/0x380 [ 138.630778][ C0] ? kmsan_get_metadata+0x116/0x180 [ 138.635971][ C0] ? migrate_timer_list+0x5f0/0x5f0 [ 138.641183][ C0] run_timer_softirq+0x2d/0x50 [ 138.645941][ C0] __do_softirq+0x1b9/0x715 [ 138.650555][ C0] asm_call_irq_on_stack+0xf/0x20 [ 138.655569][ C0] [ 138.658511][ C0] do_softirq_own_stack+0x6e/0x90 [ 138.661060][ T18] usb 1-1: USB disconnect, device number 2 [ 138.663571][ C0] __irq_exit_rcu+0x22f/0x280 [ 138.663608][ C0] irq_exit_rcu+0xe/0x10 [ 138.678418][ C0] sysvec_apic_timer_interrupt+0x106/0x130 [ 138.684361][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 138.690424][ C0] RIP: 0010:acpi_idle_enter+0x61d/0x760 [ 138.696020][ C0] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c b5 3a fb 0f 00 2d 5f e7 5d 09 fb f4 e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 8f 3b bc fb e9 e5 [ 138.715655][ C0] RSP: 0018:ffffffff91203b70 EFLAGS: 00000246 [ 138.721751][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000023eaf6040 [ 138.729757][ C0] RDX: ffffffff91231040 RSI: 0000000000000000 RDI: 0000000000000000 [ 138.737755][ C0] RBP: ffffffff91203c08 R08: ffffffff86809bde R09: ffff88813fffa000 [ 138.745717][ C0] R10: 0000000000000002 R11: ffffffff91231040 R12: 0000000000000000 [ 138.753687][ C0] R13: ffff888140ef5064 R14: 0000000000000000 R15: ffffffff91231ab8 [ 138.761650][ C0] ? acpi_idle_enter+0x5ee/0x760 [ 138.766586][ C0] ? acpi_idle_lpi_enter+0x160/0x160 [ 138.771887][ C0] cpuidle_enter_state+0x99e/0x1750 [ 138.777101][ C0] cpuidle_enter+0xe3/0x170 [ 138.781609][ C0] do_idle+0x5df/0x790 [ 138.785670][ C0] cpu_startup_entry+0x45/0x50 [ 138.790426][ C0] rest_init+0x1c8/0x1f0 [ 138.794679][ C0] arch_call_rest_init+0x13/0x15 [ 138.799621][ C0] start_kernel+0xa17/0xbd8 [ 138.804262][ C0] x86_64_start_reservations+0x2a/0x2c [ 138.809729][ C0] x86_64_start_kernel+0x86/0x89 [ 138.814674][ C0] secondary_startup_64_no_verify+0xb0/0xbb [ 138.820578][ C0] [ 138.822908][ C0] Uninit was created at: [ 138.827130][ C0] kmsan_internal_poison_shadow+0x5c/0xf0 [ 138.832862][ C0] kmsan_slab_alloc+0x8d/0xe0 [ 138.837555][ C0] __kmalloc_node_track_caller+0xa37/0x1430 [ 138.843439][ C0] __alloc_skb+0x2f8/0xb30 [ 138.847843][ C0] __netdev_alloc_skb+0x450/0x7f0 [ 138.852874][ C0] ath9k_hif_usb_rx_cb+0xe58/0x1d20 [ 138.858063][ C0] __usb_hcd_giveback_urb+0x6ff/0x930 [ 138.863428][ C0] usb_hcd_giveback_urb+0x1cb/0x730 [ 138.868616][ C0] dummy_timer+0xda7/0x74f0 [ 138.873120][ C0] call_timer_fn+0x7d/0x450 [ 138.877620][ C0] expire_timers+0x328/0x6c0 [ 138.882213][ C0] __run_timers+0x624/0x9e0 [ 138.886713][ C0] run_timer_softirq+0x2d/0x50 [ 138.891465][ C0] __do_softirq+0x1b9/0x715 [ 138.895963][ C0] ===================================================== [ 138.902904][ C0] Disabling lock debugging due to kernel taint [ 138.909049][ C0] ===================================================== [ 138.915976][ C0] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x4c0/0x1f30 [ 138.923271][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G B 5.11.0-rc7-syzkaller #0 [ 138.932651][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 138.942710][ C0] Call Trace: [ 138.946006][ C0] [ 138.948845][ C0] dump_stack+0x21c/0x280 [ 138.953188][ C0] kmsan_report+0xfb/0x1e0 [ 138.957599][ C0] __msan_warning+0x5f/0xa0 [ 138.962091][ C0] ath9k_htc_rx_msg+0x4c0/0x1f30 [ 138.967014][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 138.973072][ C0] ath9k_hif_usb_rx_cb+0x184e/0x1d20 [ 138.978366][ C0] ? kmsan_get_metadata+0x116/0x180 [ 138.983553][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 138.989351][ C0] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0 [ 138.995262][ C0] __usb_hcd_giveback_urb+0x6ff/0x930 [ 139.000663][ C0] ? kmsan_get_metadata+0x116/0x180 [ 139.005891][ C0] usb_hcd_giveback_urb+0x1cb/0x730 [ 139.011100][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 139.016922][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 139.023091][ C0] dummy_timer+0xda7/0x74f0 [ 139.027624][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 139.033698][ C0] ? dummy_free_streams+0x5b0/0x5b0 [ 139.038916][ C0] call_timer_fn+0x7d/0x450 [ 139.043425][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 139.049238][ C0] expire_timers+0x328/0x6c0 [ 139.053838][ C0] ? dummy_free_streams+0x5b0/0x5b0 [ 139.059059][ C0] __run_timers+0x624/0x9e0 [ 139.063569][ C0] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 139.069740][ C0] ? irqtime_account_irq+0xe3/0x380 [ 139.074985][ C0] ? kmsan_get_metadata+0x116/0x180 [ 139.080189][ C0] ? migrate_timer_list+0x5f0/0x5f0 [ 139.085396][ C0] run_timer_softirq+0x2d/0x50 [ 139.090167][ C0] __do_softirq+0x1b9/0x715 [ 139.094676][ C0] asm_call_irq_on_stack+0xf/0x20 [ 139.099717][ C0] [ 139.102662][ C0] do_softirq_own_stack+0x6e/0x90 [ 139.107693][ C0] __irq_exit_rcu+0x22f/0x280 [ 139.112377][ C0] irq_exit_rcu+0xe/0x10 [ 139.116622][ C0] sysvec_apic_timer_interrupt+0x106/0x130 [ 139.122433][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 139.128419][ C0] RIP: 0010:acpi_idle_enter+0x61d/0x760 [ 139.133968][ C0] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c b5 3a fb 0f 00 2d 5f e7 5d 09 fb f4 e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 8f 3b bc fb e9 e5 [ 139.154091][ C0] RSP: 0018:ffffffff91203b70 EFLAGS: 00000246 [ 139.160190][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000023eaf6040 [ 139.168164][ C0] RDX: ffffffff91231040 RSI: 0000000000000000 RDI: 0000000000000000 [ 139.176143][ C0] RBP: ffffffff91203c08 R08: ffffffff86809bde R09: ffff88813fffa000 [ 139.184127][ C0] R10: 0000000000000002 R11: ffffffff91231040 R12: 0000000000000000 [ 139.192093][ C0] R13: ffff888140ef5064 R14: 0000000000000000 R15: ffffffff91231ab8 [ 139.200065][ C0] ? acpi_idle_enter+0x5ee/0x760 [ 139.205030][ C0] ? acpi_idle_lpi_enter+0x160/0x160 [ 139.210347][ C0] cpuidle_enter_state+0x99e/0x1750 [ 139.215563][ C0] cpuidle_enter+0xe3/0x170 [ 139.220111][ C0] do_idle+0x5df/0x790 [ 139.224180][ C0] cpu_startup_entry+0x45/0x50 [ 139.228959][ C0] rest_init+0x1c8/0x1f0 [ 139.233283][ C0] arch_call_rest_init+0x13/0x15 [ 139.238211][ C0] start_kernel+0xa17/0xbd8 [ 139.242716][ C0] x86_64_start_reservations+0x2a/0x2c [ 139.248178][ C0] x86_64_start_kernel+0x86/0x89 [ 139.253118][ C0] secondary_startup_64_no_verify+0xb0/0xbb [ 139.259030][ C0] [ 139.261362][ C0] Uninit was created at: [ 139.265576][ C0] kmsan_internal_poison_shadow+0x5c/0xf0 [ 139.271289][ C0] kmsan_slab_alloc+0x8d/0xe0 [ 139.275958][ C0] __kmalloc_node_track_caller+0xa37/0x1430 [ 139.281841][ C0] __alloc_skb+0x2f8/0xb30 [ 139.286249][ C0] __netdev_alloc_skb+0x450/0x7f0 [ 139.291278][ C0] ath9k_hif_usb_rx_cb+0xe58/0x1d20 [ 139.296484][ C0] __usb_hcd_giveback_urb+0x6ff/0x930 [ 139.301872][ C0] usb_hcd_giveback_urb+0x1cb/0x730 [ 139.307081][ C0] dummy_timer+0xda7/0x74f0 [ 139.311606][ C0] call_timer_fn+0x7d/0x450 [ 139.316123][ C0] expire_timers+0x328/0x6c0 [ 139.320735][ C0] __run_timers+0x624/0x9e0 [ 139.325241][ C0] run_timer_softirq+0x2d/0x50 [ 139.330003][ C0] __do_softirq+0x1b9/0x715 [ 139.334508][ C0] ===================================================== [ 139.341430][ C0] ===================================================== [ 139.348341][ C0] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x8bf/0x1f30 [ 139.355632][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G B 5.11.0-rc7-syzkaller #0 [ 139.364988][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 139.375044][ C0] Call Trace: [ 139.378314][ C0] [ 139.381144][ C0] dump_stack+0x21c/0x280 [ 139.385466][ C0] kmsan_report+0xfb/0x1e0 [ 139.389875][ C0] __msan_warning+0x5f/0xa0 [ 139.394390][ C0] ath9k_htc_rx_msg+0x8bf/0x1f30 [ 139.399411][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 139.405496][ C0] ath9k_hif_usb_rx_cb+0x184e/0x1d20 [ 139.410799][ C0] ? kmsan_get_metadata+0x116/0x180 [ 139.416009][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 139.421815][ C0] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0 [ 139.427738][ C0] __usb_hcd_giveback_urb+0x6ff/0x930 [ 139.433129][ C0] ? kmsan_get_metadata+0x116/0x180 [ 139.438329][ C0] usb_hcd_giveback_urb+0x1cb/0x730 [ 139.443542][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 139.449340][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 139.455497][ C0] dummy_timer+0xda7/0x74f0 [ 139.460011][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 139.466070][ C0] ? dummy_free_streams+0x5b0/0x5b0 [ 139.471262][ C0] call_timer_fn+0x7d/0x450 [ 139.475770][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 139.481570][ C0] expire_timers+0x328/0x6c0 [ 139.486163][ C0] ? dummy_free_streams+0x5b0/0x5b0 [ 139.491378][ C0] __run_timers+0x624/0x9e0 [ 139.495895][ C0] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 139.502076][ C0] ? irqtime_account_irq+0xe3/0x380 [ 139.507284][ C0] ? kmsan_get_metadata+0x116/0x180 [ 139.512494][ C0] ? migrate_timer_list+0x5f0/0x5f0 [ 139.517716][ C0] run_timer_softirq+0x2d/0x50 [ 139.522499][ C0] __do_softirq+0x1b9/0x715 [ 139.527021][ C0] asm_call_irq_on_stack+0xf/0x20 [ 139.532062][ C0] [ 139.534998][ C0] do_softirq_own_stack+0x6e/0x90 [ 139.540083][ C0] __irq_exit_rcu+0x22f/0x280 [ 139.544761][ C0] irq_exit_rcu+0xe/0x10 [ 139.549002][ C0] sysvec_apic_timer_interrupt+0x106/0x130 [ 139.554805][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 139.560782][ C0] RIP: 0010:acpi_idle_enter+0x61d/0x760 [ 139.566379][ C0] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c b5 3a fb 0f 00 2d 5f e7 5d 09 fb f4 e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 8f 3b bc fb e9 e5 [ 139.586020][ C0] RSP: 0018:ffffffff91203b70 EFLAGS: 00000246 [ 139.592087][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000023eaf6040 [ 139.600063][ C0] RDX: ffffffff91231040 RSI: 0000000000000000 RDI: 0000000000000000 [ 139.608054][ C0] RBP: ffffffff91203c08 R08: ffffffff86809bde R09: ffff88813fffa000 [ 139.616074][ C0] R10: 0000000000000002 R11: ffffffff91231040 R12: 0000000000000000 [ 139.624050][ C0] R13: ffff888140ef5064 R14: 0000000000000000 R15: ffffffff91231ab8 [ 139.632023][ C0] ? acpi_idle_enter+0x5ee/0x760 [ 139.636957][ C0] ? acpi_idle_lpi_enter+0x160/0x160 [ 139.642230][ C0] cpuidle_enter_state+0x99e/0x1750 [ 139.647418][ C0] cpuidle_enter+0xe3/0x170 [ 139.651908][ C0] do_idle+0x5df/0x790 [ 139.655979][ C0] cpu_startup_entry+0x45/0x50 [ 139.660740][ C0] rest_init+0x1c8/0x1f0 [ 139.664972][ C0] arch_call_rest_init+0x13/0x15 [ 139.669900][ C0] start_kernel+0xa17/0xbd8 [ 139.674396][ C0] x86_64_start_reservations+0x2a/0x2c [ 139.679851][ C0] x86_64_start_kernel+0x86/0x89 [ 139.684774][ C0] secondary_startup_64_no_verify+0xb0/0xbb [ 139.690656][ C0] [ 139.692981][ C0] Uninit was created at: [ 139.697206][ C0] kmsan_internal_poison_shadow+0x5c/0xf0 [ 139.702938][ C0] kmsan_slab_alloc+0x8d/0xe0 [ 139.707635][ C0] __kmalloc_node_track_caller+0xa37/0x1430 [ 139.713564][ C0] __alloc_skb+0x2f8/0xb30 [ 139.717987][ C0] __netdev_alloc_skb+0x450/0x7f0 [ 139.723029][ C0] ath9k_hif_usb_rx_cb+0xe58/0x1d20 [ 139.728233][ C0] __usb_hcd_giveback_urb+0x6ff/0x930 [ 139.733610][ C0] usb_hcd_giveback_urb+0x1cb/0x730 [ 139.738811][ C0] dummy_timer+0xda7/0x74f0 [ 139.743335][ C0] call_timer_fn+0x7d/0x450 [ 139.747927][ C0] expire_timers+0x328/0x6c0 [ 139.752510][ C0] __run_timers+0x624/0x9e0 [ 139.757006][ C0] run_timer_softirq+0x2d/0x50 [ 139.761770][ C0] __do_softirq+0x1b9/0x715 [ 139.766278][ C0] ===================================================== [ 139.773202][ C0] ===================================================== [ 139.780116][ C0] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x913/0x1f30 [ 139.787933][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G B 5.11.0-rc7-syzkaller #0 [ 139.797293][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 139.807363][ C0] Call Trace: [ 139.810663][ C0] [ 139.813505][ C0] dump_stack+0x21c/0x280 [ 139.817850][ C0] kmsan_report+0xfb/0x1e0 [ 139.822270][ C0] __msan_warning+0x5f/0xa0 [ 139.826791][ C0] ath9k_htc_rx_msg+0x913/0x1f30 [ 139.831724][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 139.837784][ C0] ath9k_hif_usb_rx_cb+0x184e/0x1d20 [ 139.843069][ C0] ? kmsan_get_metadata+0x116/0x180 [ 139.848269][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 139.854075][ C0] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0 [ 139.859956][ C0] __usb_hcd_giveback_urb+0x6ff/0x930 [ 139.865333][ C0] ? kmsan_get_metadata+0x116/0x180 [ 139.870523][ C0] usb_hcd_giveback_urb+0x1cb/0x730 [ 139.875794][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 139.881602][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 139.887744][ C0] dummy_timer+0xda7/0x74f0 [ 139.892248][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 139.898312][ C0] ? dummy_free_streams+0x5b0/0x5b0 [ 139.903534][ C0] call_timer_fn+0x7d/0x450 [ 139.908074][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 139.913900][ C0] expire_timers+0x328/0x6c0 [ 139.918496][ C0] ? dummy_free_streams+0x5b0/0x5b0 [ 139.923698][ C0] __run_timers+0x624/0x9e0 [ 139.928219][ C0] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 139.934370][ C0] ? irqtime_account_irq+0xe3/0x380 [ 139.939559][ C0] ? kmsan_get_metadata+0x116/0x180 [ 139.944752][ C0] ? migrate_timer_list+0x5f0/0x5f0 [ 139.949940][ C0] run_timer_softirq+0x2d/0x50 [ 139.954692][ C0] __do_softirq+0x1b9/0x715 [ 139.959183][ C0] asm_call_irq_on_stack+0xf/0x20 [ 139.964212][ C0] [ 139.967131][ C0] do_softirq_own_stack+0x6e/0x90 [ 139.972141][ C0] __irq_exit_rcu+0x22f/0x280 [ 139.976816][ C0] irq_exit_rcu+0xe/0x10 [ 139.981054][ C0] sysvec_apic_timer_interrupt+0x106/0x130 [ 139.986849][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 139.992830][ C0] RIP: 0010:acpi_idle_enter+0x61d/0x760 [ 139.998385][ C0] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c b5 3a fb 0f 00 2d 5f e7 5d 09 fb f4 e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 8f 3b bc fb e9 e5 [ 140.018013][ C0] RSP: 0018:ffffffff91203b70 EFLAGS: 00000246 [ 140.024091][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000023eaf6040 [ 140.032055][ C0] RDX: ffffffff91231040 RSI: 0000000000000000 RDI: 0000000000000000 [ 140.040026][ C0] RBP: ffffffff91203c08 R08: ffffffff86809bde R09: ffff88813fffa000 [ 140.047996][ C0] R10: 0000000000000002 R11: ffffffff91231040 R12: 0000000000000000 [ 140.055960][ C0] R13: ffff888140ef5064 R14: 0000000000000000 R15: ffffffff91231ab8 [ 140.063939][ C0] ? acpi_idle_enter+0x5ee/0x760 [ 140.068877][ C0] ? acpi_idle_lpi_enter+0x160/0x160 [ 140.074152][ C0] cpuidle_enter_state+0x99e/0x1750 [ 140.079349][ C0] cpuidle_enter+0xe3/0x170 [ 140.083846][ C0] do_idle+0x5df/0x790 [ 140.087915][ C0] cpu_startup_entry+0x45/0x50 [ 140.092685][ C0] rest_init+0x1c8/0x1f0 [ 140.096945][ C0] arch_call_rest_init+0x13/0x15 [ 140.101895][ C0] start_kernel+0xa17/0xbd8 [ 140.106414][ C0] x86_64_start_reservations+0x2a/0x2c [ 140.111885][ C0] x86_64_start_kernel+0x86/0x89 [ 140.116860][ C0] secondary_startup_64_no_verify+0xb0/0xbb [ 140.122763][ C0] [ 140.125085][ C0] Uninit was created at: [ 140.129406][ C0] kmsan_internal_poison_shadow+0x5c/0xf0 [ 140.135137][ C0] kmsan_slab_alloc+0x8d/0xe0 [ 140.139869][ C0] __kmalloc_node_track_caller+0xa37/0x1430 [ 140.145769][ C0] __alloc_skb+0x2f8/0xb30 [ 140.150186][ C0] __netdev_alloc_skb+0x450/0x7f0 [ 140.155221][ C0] ath9k_hif_usb_rx_cb+0xe58/0x1d20 [ 140.160444][ C0] __usb_hcd_giveback_urb+0x6ff/0x930 [ 140.165816][ C0] usb_hcd_giveback_urb+0x1cb/0x730 [ 140.171005][ C0] dummy_timer+0xda7/0x74f0 [ 140.175547][ C0] call_timer_fn+0x7d/0x450 [ 140.180053][ C0] expire_timers+0x328/0x6c0 [ 140.184626][ C0] __run_timers+0x624/0x9e0 [ 140.189113][ C0] run_timer_softirq+0x2d/0x50 [ 140.193876][ C0] __do_softirq+0x1b9/0x715 [ 140.198405][ C0] ===================================================== [ 140.205330][ C0] ===================================================== [ 140.212255][ C0] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x92d/0x1f30 [ 140.219560][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G B 5.11.0-rc7-syzkaller #0 [ 140.228923][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 140.238971][ C0] Call Trace: [ 140.242244][ C0] [ 140.245077][ C0] dump_stack+0x21c/0x280 [ 140.249430][ C0] kmsan_report+0xfb/0x1e0 [ 140.253848][ C0] __msan_warning+0x5f/0xa0 [ 140.258347][ C0] ath9k_htc_rx_msg+0x92d/0x1f30 [ 140.263279][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 140.269358][ C0] ath9k_hif_usb_rx_cb+0x184e/0x1d20 [ 140.274635][ C0] ? kmsan_get_metadata+0x116/0x180 [ 140.279824][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 140.285619][ C0] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0 [ 140.291514][ C0] __usb_hcd_giveback_urb+0x6ff/0x930 [ 140.296914][ C0] ? kmsan_get_metadata+0x116/0x180 [ 140.302143][ C0] usb_hcd_giveback_urb+0x1cb/0x730 [ 140.307345][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 140.313169][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 140.319339][ C0] dummy_timer+0xda7/0x74f0 [ 140.323849][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 140.329908][ C0] ? dummy_free_streams+0x5b0/0x5b0 [ 140.335102][ C0] call_timer_fn+0x7d/0x450 [ 140.339628][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 140.345425][ C0] expire_timers+0x328/0x6c0 [ 140.350004][ C0] ? dummy_free_streams+0x5b0/0x5b0 [ 140.355210][ C0] __run_timers+0x624/0x9e0 [ 140.359722][ C0] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 140.365864][ C0] ? irqtime_account_irq+0xe3/0x380 [ 140.371052][ C0] ? kmsan_get_metadata+0x116/0x180 [ 140.376257][ C0] ? migrate_timer_list+0x5f0/0x5f0 [ 140.381455][ C0] run_timer_softirq+0x2d/0x50 [ 140.386213][ C0] __do_softirq+0x1b9/0x715 [ 140.390737][ C0] asm_call_irq_on_stack+0xf/0x20 [ 140.395780][ C0] [ 140.398709][ C0] do_softirq_own_stack+0x6e/0x90 [ 140.403739][ C0] __irq_exit_rcu+0x22f/0x280 [ 140.408440][ C0] irq_exit_rcu+0xe/0x10 [ 140.412690][ C0] sysvec_apic_timer_interrupt+0x106/0x130 [ 140.418526][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 140.424516][ C0] RIP: 0010:acpi_idle_enter+0x61d/0x760 [ 140.430076][ C0] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c b5 3a fb 0f 00 2d 5f e7 5d 09 fb f4 e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 8f 3b bc fb e9 e5 [ 140.449693][ C0] RSP: 0018:ffffffff91203b70 EFLAGS: 00000246 [ 140.455776][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000023eaf6040 [ 140.463738][ C0] RDX: ffffffff91231040 RSI: 0000000000000000 RDI: 0000000000000000 [ 140.471705][ C0] RBP: ffffffff91203c08 R08: ffffffff86809bde R09: ffff88813fffa000 [ 140.479668][ C0] R10: 0000000000000002 R11: ffffffff91231040 R12: 0000000000000000 [ 140.487636][ C0] R13: ffff888140ef5064 R14: 0000000000000000 R15: ffffffff91231ab8 [ 140.495615][ C0] ? acpi_idle_enter+0x5ee/0x760 [ 140.500581][ C0] ? acpi_idle_lpi_enter+0x160/0x160 [ 140.505974][ C0] cpuidle_enter_state+0x99e/0x1750 [ 140.511205][ C0] cpuidle_enter+0xe3/0x170 [ 140.515710][ C0] do_idle+0x5df/0x790 [ 140.519793][ C0] cpu_startup_entry+0x45/0x50 [ 140.524558][ C0] rest_init+0x1c8/0x1f0 [ 140.528810][ C0] arch_call_rest_init+0x13/0x15 [ 140.533746][ C0] start_kernel+0xa17/0xbd8 [ 140.538247][ C0] x86_64_start_reservations+0x2a/0x2c [ 140.543692][ C0] x86_64_start_kernel+0x86/0x89 [ 140.548616][ C0] secondary_startup_64_no_verify+0xb0/0xbb [ 140.554500][ C0] [ 140.556804][ C0] Uninit was created at: [ 140.561018][ C0] kmsan_internal_poison_shadow+0x5c/0xf0 [ 140.566731][ C0] kmsan_slab_alloc+0x8d/0xe0 [ 140.571402][ C0] __kmalloc_node_track_caller+0xa37/0x1430 [ 140.577282][ C0] __alloc_skb+0x2f8/0xb30 [ 140.581699][ C0] __netdev_alloc_skb+0x450/0x7f0 [ 140.586726][ C0] ath9k_hif_usb_rx_cb+0xe58/0x1d20 [ 140.591916][ C0] __usb_hcd_giveback_urb+0x6ff/0x930 [ 140.597293][ C0] usb_hcd_giveback_urb+0x1cb/0x730 [ 140.602511][ C0] dummy_timer+0xda7/0x74f0 [ 140.607043][ C0] call_timer_fn+0x7d/0x450 [ 140.611554][ C0] expire_timers+0x328/0x6c0 [ 140.616141][ C0] __run_timers+0x624/0x9e0 [ 140.620652][ C0] run_timer_softirq+0x2d/0x50 [ 140.625412][ C0] __do_softirq+0x1b9/0x715 [ 140.629907][ C0] ===================================================== [ 140.636867][ C0] ===================================================== [ 140.643781][ C0] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x28c/0x1f30 [ 140.651070][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G B 5.11.0-rc7-syzkaller #0 [ 140.660424][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 140.670510][ C0] Call Trace: [ 140.673791][ C0] [ 140.676624][ C0] dump_stack+0x21c/0x280 [ 140.680954][ C0] kmsan_report+0xfb/0x1e0 [ 140.685369][ C0] __msan_warning+0x5f/0xa0 [ 140.689885][ C0] ath9k_htc_rx_msg+0x28c/0x1f30 [ 140.694821][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 140.700912][ C0] ath9k_hif_usb_rx_cb+0x184e/0x1d20 [ 140.706223][ C0] ? kmsan_get_metadata+0x116/0x180 [ 140.711432][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 140.717247][ C0] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0 [ 140.723152][ C0] __usb_hcd_giveback_urb+0x6ff/0x930 [ 140.728541][ C0] ? kmsan_get_metadata+0x116/0x180 [ 140.733748][ C0] usb_hcd_giveback_urb+0x1cb/0x730 [ 140.738968][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 140.744795][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 140.750953][ C0] dummy_timer+0xda7/0x74f0 [ 140.755469][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 140.761539][ C0] ? dummy_free_streams+0x5b0/0x5b0 [ 140.766737][ C0] call_timer_fn+0x7d/0x450 [ 140.771237][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 140.777038][ C0] expire_timers+0x328/0x6c0 [ 140.781619][ C0] ? dummy_free_streams+0x5b0/0x5b0 [ 140.786809][ C0] __run_timers+0x624/0x9e0 [ 140.791314][ C0] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 140.797472][ C0] ? irqtime_account_irq+0xe3/0x380 [ 140.802695][ C0] ? kmsan_get_metadata+0x116/0x180 [ 140.807904][ C0] ? migrate_timer_list+0x5f0/0x5f0 [ 140.813122][ C0] run_timer_softirq+0x2d/0x50 [ 140.817920][ C0] __do_softirq+0x1b9/0x715 [ 140.822432][ C0] asm_call_irq_on_stack+0xf/0x20 [ 140.827459][ C0] [ 140.830397][ C0] do_softirq_own_stack+0x6e/0x90 [ 140.835426][ C0] __irq_exit_rcu+0x22f/0x280 [ 140.840101][ C0] irq_exit_rcu+0xe/0x10 [ 140.844340][ C0] sysvec_apic_timer_interrupt+0x106/0x130 [ 140.850149][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 140.856148][ C0] RIP: 0010:acpi_idle_enter+0x61d/0x760 [ 140.861705][ C0] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c b5 3a fb 0f 00 2d 5f e7 5d 09 fb f4 e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 8f 3b bc fb e9 e5 [ 140.881333][ C0] RSP: 0018:ffffffff91203b70 EFLAGS: 00000246 [ 140.887408][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000023eaf6040 [ 140.895390][ C0] RDX: ffffffff91231040 RSI: 0000000000000000 RDI: 0000000000000000 [ 140.903373][ C0] RBP: ffffffff91203c08 R08: ffffffff86809bde R09: ffff88813fffa000 [ 140.911358][ C0] R10: 0000000000000002 R11: ffffffff91231040 R12: 0000000000000000 [ 140.919330][ C0] R13: ffff888140ef5064 R14: 0000000000000000 R15: ffffffff91231ab8 [ 140.927321][ C0] ? acpi_idle_enter+0x5ee/0x760 [ 140.932273][ C0] ? acpi_idle_lpi_enter+0x160/0x160 [ 140.937559][ C0] cpuidle_enter_state+0x99e/0x1750 [ 140.942767][ C0] cpuidle_enter+0xe3/0x170 [ 140.947273][ C0] do_idle+0x5df/0x790 [ 140.951334][ C0] cpu_startup_entry+0x45/0x50 [ 140.956085][ C0] rest_init+0x1c8/0x1f0 [ 140.960328][ C0] arch_call_rest_init+0x13/0x15 [ 140.965253][ C0] start_kernel+0xa17/0xbd8 [ 140.969743][ C0] x86_64_start_reservations+0x2a/0x2c [ 140.975190][ C0] x86_64_start_kernel+0x86/0x89 [ 140.980114][ C0] secondary_startup_64_no_verify+0xb0/0xbb [ 140.985999][ C0] [ 140.988319][ C0] Uninit was created at: [ 140.992545][ C0] kmsan_internal_poison_shadow+0x5c/0xf0 [ 140.998278][ C0] kmsan_slab_alloc+0x8d/0xe0 [ 141.002971][ C0] __kmalloc_node_track_caller+0xa37/0x1430 [ 141.008884][ C0] __alloc_skb+0x2f8/0xb30 [ 141.013317][ C0] __netdev_alloc_skb+0x450/0x7f0 [ 141.018344][ C0] ath9k_hif_usb_rx_cb+0xe58/0x1d20 [ 141.023562][ C0] __usb_hcd_giveback_urb+0x6ff/0x930 [ 141.028955][ C0] usb_hcd_giveback_urb+0x1cb/0x730 [ 141.034195][ C0] dummy_timer+0xda7/0x74f0 [ 141.038703][ C0] call_timer_fn+0x7d/0x450 [ 141.043206][ C0] expire_timers+0x328/0x6c0 [ 141.047786][ C0] __run_timers+0x624/0x9e0 [ 141.052277][ C0] run_timer_softirq+0x2d/0x50 [ 141.057026][ C0] __do_softirq+0x1b9/0x715 [ 141.061529][ C0] ===================================================== [ 141.068438][ C0] ===================================================== [ 141.075377][ C0] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x4c0/0x1f30 [ 141.082656][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G B 5.11.0-rc7-syzkaller #0 [ 141.092109][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 141.102175][ C0] Call Trace: [ 141.105472][ C0] [ 141.108336][ C0] dump_stack+0x21c/0x280 [ 141.112691][ C0] kmsan_report+0xfb/0x1e0 [ 141.117139][ C0] __msan_warning+0x5f/0xa0 [ 141.121665][ C0] ath9k_htc_rx_msg+0x4c0/0x1f30 [ 141.126618][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 141.132695][ C0] ath9k_hif_usb_rx_cb+0x184e/0x1d20 [ 141.137986][ C0] ? kmsan_get_metadata+0x116/0x180 [ 141.143189][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 141.149001][ C0] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0 [ 141.154892][ C0] __usb_hcd_giveback_urb+0x6ff/0x930 [ 141.160871][ C0] ? kmsan_get_metadata+0x116/0x180 [ 141.166066][ C0] usb_hcd_giveback_urb+0x1cb/0x730 [ 141.171257][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 141.177068][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 141.183214][ C0] dummy_timer+0xda7/0x74f0 [ 141.187719][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 141.193784][ C0] ? dummy_free_streams+0x5b0/0x5b0 [ 141.199024][ C0] call_timer_fn+0x7d/0x450 [ 141.203534][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 141.209369][ C0] expire_timers+0x328/0x6c0 [ 141.215035][ C0] ? dummy_free_streams+0x5b0/0x5b0 [ 141.220301][ C0] __run_timers+0x624/0x9e0 [ 141.224813][ C0] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 141.230984][ C0] ? irqtime_account_irq+0xe3/0x380 [ 141.236198][ C0] ? kmsan_get_metadata+0x116/0x180 [ 141.241409][ C0] ? migrate_timer_list+0x5f0/0x5f0 [ 141.246603][ C0] run_timer_softirq+0x2d/0x50 [ 141.251357][ C0] __do_softirq+0x1b9/0x715 [ 141.255863][ C0] asm_call_irq_on_stack+0xf/0x20 [ 141.260876][ C0] [ 141.263788][ C0] do_softirq_own_stack+0x6e/0x90 [ 141.268808][ C0] __irq_exit_rcu+0x22f/0x280 [ 141.273475][ C0] irq_exit_rcu+0xe/0x10 [ 141.277722][ C0] sysvec_apic_timer_interrupt+0x106/0x130 [ 141.283521][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 141.289510][ C0] RIP: 0010:acpi_idle_enter+0x61d/0x760 [ 141.295071][ C0] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c b5 3a fb 0f 00 2d 5f e7 5d 09 fb f4 e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 8f 3b bc fb e9 e5 [ 141.314707][ C0] RSP: 0018:ffffffff91203b70 EFLAGS: 00000246 [ 141.320801][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000023eaf6040 [ 141.328771][ C0] RDX: ffffffff91231040 RSI: 0000000000000000 RDI: 0000000000000000 [ 141.336748][ C0] RBP: ffffffff91203c08 R08: ffffffff86809bde R09: ffff88813fffa000 [ 141.344724][ C0] R10: 0000000000000002 R11: ffffffff91231040 R12: 0000000000000000 [ 141.352703][ C0] R13: ffff888140ef5064 R14: 0000000000000000 R15: ffffffff91231ab8 [ 141.360673][ C0] ? acpi_idle_enter+0x5ee/0x760 [ 141.365613][ C0] ? acpi_idle_lpi_enter+0x160/0x160 [ 141.370902][ C0] cpuidle_enter_state+0x99e/0x1750 [ 141.376108][ C0] cpuidle_enter+0xe3/0x170 [ 141.380600][ C0] do_idle+0x5df/0x790 [ 141.384657][ C0] cpu_startup_entry+0x45/0x50 [ 141.389417][ C0] rest_init+0x1c8/0x1f0 [ 141.393667][ C0] arch_call_rest_init+0x13/0x15 [ 141.398617][ C0] start_kernel+0xa17/0xbd8 [ 141.403123][ C0] x86_64_start_reservations+0x2a/0x2c [ 141.408679][ C0] x86_64_start_kernel+0x86/0x89 [ 141.413722][ C0] secondary_startup_64_no_verify+0xb0/0xbb [ 141.419629][ C0] [ 141.421954][ C0] Uninit was created at: [ 141.426177][ C0] kmsan_internal_poison_shadow+0x5c/0xf0 [ 141.431925][ C0] kmsan_slab_alloc+0x8d/0xe0 [ 141.436598][ C0] __kmalloc_node_track_caller+0xa37/0x1430 [ 141.442479][ C0] __alloc_skb+0x2f8/0xb30 [ 141.446880][ C0] __netdev_alloc_skb+0x450/0x7f0 [ 141.451890][ C0] ath9k_hif_usb_rx_cb+0xe58/0x1d20 [ 141.457073][ C0] __usb_hcd_giveback_urb+0x6ff/0x930 [ 141.462438][ C0] usb_hcd_giveback_urb+0x1cb/0x730 [ 141.467636][ C0] dummy_timer+0xda7/0x74f0 [ 141.472127][ C0] call_timer_fn+0x7d/0x450 [ 141.476630][ C0] expire_timers+0x328/0x6c0 [ 141.481208][ C0] __run_timers+0x624/0x9e0 [ 141.485701][ C0] run_timer_softirq+0x2d/0x50 [ 141.490451][ C0] __do_softirq+0x1b9/0x715 [ 141.494948][ C0] ===================================================== [ 141.502515][ C0] ===================================================== [ 141.509448][ C0] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x8bf/0x1f30 [ 141.516740][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G B 5.11.0-rc7-syzkaller #0 [ 141.526101][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 141.536161][ C0] Call Trace: [ 141.539438][ C0] [ 141.542280][ C0] dump_stack+0x21c/0x280 [ 141.546798][ C0] kmsan_report+0xfb/0x1e0 [ 141.551210][ C0] __msan_warning+0x5f/0xa0 [ 141.555712][ C0] ath9k_htc_rx_msg+0x8bf/0x1f30 [ 141.560661][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 141.566739][ C0] ath9k_hif_usb_rx_cb+0x184e/0x1d20 [ 141.572030][ C0] ? kmsan_get_metadata+0x116/0x180 [ 141.577295][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 141.583138][ C0] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0 [ 141.589035][ C0] __usb_hcd_giveback_urb+0x6ff/0x930 [ 141.594426][ C0] ? kmsan_get_metadata+0x116/0x180 [ 141.599828][ C0] usb_hcd_giveback_urb+0x1cb/0x730 [ 141.606353][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 141.612193][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 141.618379][ C0] dummy_timer+0xda7/0x74f0 [ 141.622928][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 141.629018][ C0] ? dummy_free_streams+0x5b0/0x5b0 [ 141.634223][ C0] call_timer_fn+0x7d/0x450 [ 141.638726][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 141.644551][ C0] expire_timers+0x328/0x6c0 [ 141.649155][ C0] ? dummy_free_streams+0x5b0/0x5b0 [ 141.654373][ C0] __run_timers+0x624/0x9e0 [ 141.658898][ C0] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 141.665051][ C0] ? irqtime_account_irq+0xe3/0x380 [ 141.670253][ C0] ? kmsan_get_metadata+0x116/0x180 [ 141.675456][ C0] ? migrate_timer_list+0x5f0/0x5f0 [ 141.680643][ C0] run_timer_softirq+0x2d/0x50 [ 141.685620][ C0] __do_softirq+0x1b9/0x715 [ 141.690140][ C0] asm_call_irq_on_stack+0xf/0x20 [ 141.695176][ C0] [ 141.698152][ C0] do_softirq_own_stack+0x6e/0x90 [ 141.703221][ C0] __irq_exit_rcu+0x22f/0x280 [ 141.707938][ C0] irq_exit_rcu+0xe/0x10 [ 141.712198][ C0] sysvec_apic_timer_interrupt+0x106/0x130 [ 141.718021][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 141.724012][ C0] RIP: 0010:acpi_idle_enter+0x61d/0x760 [ 141.729565][ C0] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c b5 3a fb 0f 00 2d 5f e7 5d 09 fb f4 e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 8f 3b bc fb e9 e5 [ 141.749190][ C0] RSP: 0018:ffffffff91203b70 EFLAGS: 00000246 [ 141.755263][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000023eaf6040 [ 141.763225][ C0] RDX: ffffffff91231040 RSI: 0000000000000000 RDI: 0000000000000000 [ 141.771190][ C0] RBP: ffffffff91203c08 R08: ffffffff86809bde R09: ffff88813fffa000 [ 141.779166][ C0] R10: 0000000000000002 R11: ffffffff91231040 R12: 0000000000000000 [ 141.787148][ C0] R13: ffff888140ef5064 R14: 0000000000000000 R15: ffffffff91231ab8 [ 141.795254][ C0] ? acpi_idle_enter+0x5ee/0x760 [ 141.800215][ C0] ? acpi_idle_lpi_enter+0x160/0x160 [ 141.805645][ C0] cpuidle_enter_state+0x99e/0x1750 [ 141.810872][ C0] cpuidle_enter+0xe3/0x170 [ 141.815411][ C0] do_idle+0x5df/0x790 [ 141.819514][ C0] cpu_startup_entry+0x45/0x50 [ 141.824303][ C0] rest_init+0x1c8/0x1f0 [ 141.828553][ C0] arch_call_rest_init+0x13/0x15 [ 141.833492][ C0] start_kernel+0xa17/0xbd8 [ 141.838004][ C0] x86_64_start_reservations+0x2a/0x2c [ 141.843553][ C0] x86_64_start_kernel+0x86/0x89 [ 141.848667][ C0] secondary_startup_64_no_verify+0xb0/0xbb [ 141.854554][ C0] [ 141.856862][ C0] Uninit was created at: [ 141.861091][ C0] kmsan_internal_poison_shadow+0x5c/0xf0 [ 141.866804][ C0] kmsan_slab_alloc+0x8d/0xe0 [ 141.871470][ C0] __kmalloc_node_track_caller+0xa37/0x1430 [ 141.877351][ C0] __alloc_skb+0x2f8/0xb30 [ 141.881754][ C0] __netdev_alloc_skb+0x450/0x7f0 [ 141.886772][ C0] ath9k_hif_usb_rx_cb+0xe58/0x1d20 [ 141.892076][ C0] __usb_hcd_giveback_urb+0x6ff/0x930 [ 141.904555][ C0] usb_hcd_giveback_urb+0x1cb/0x730 [ 141.909788][ C0] dummy_timer+0xda7/0x74f0 [ 141.914412][ C0] call_timer_fn+0x7d/0x450 [ 141.918943][ C0] expire_timers+0x328/0x6c0 [ 141.923541][ C0] __run_timers+0x624/0x9e0 [ 141.928048][ C0] run_timer_softirq+0x2d/0x50 [ 141.932800][ C0] __do_softirq+0x1b9/0x715 [ 141.937291][ C0] ===================================================== [ 141.944204][ C0] ===================================================== [ 141.951135][ C0] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x913/0x1f30 [ 141.958410][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G B 5.11.0-rc7-syzkaller #0 [ 141.967773][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 141.977813][ C0] Call Trace: [ 141.981082][ C0] [ 141.983927][ C0] dump_stack+0x21c/0x280 [ 141.988250][ C0] kmsan_report+0xfb/0x1e0 [ 141.992664][ C0] __msan_warning+0x5f/0xa0 [ 141.997186][ C0] ath9k_htc_rx_msg+0x913/0x1f30 [ 142.002149][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 142.008418][ C0] ath9k_hif_usb_rx_cb+0x184e/0x1d20 [ 142.013731][ C0] ? kmsan_get_metadata+0x116/0x180 [ 142.018934][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 142.024756][ C0] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0 [ 142.030662][ C0] __usb_hcd_giveback_urb+0x6ff/0x930 [ 142.036039][ C0] ? kmsan_get_metadata+0x116/0x180 [ 142.041249][ C0] usb_hcd_giveback_urb+0x1cb/0x730 [ 142.046442][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 142.052263][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 142.058427][ C0] dummy_timer+0xda7/0x74f0 [ 142.062949][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 142.069026][ C0] ? dummy_free_streams+0x5b0/0x5b0 [ 142.074236][ C0] call_timer_fn+0x7d/0x450 [ 142.078803][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 142.084646][ C0] expire_timers+0x328/0x6c0 [ 142.089229][ C0] ? dummy_free_streams+0x5b0/0x5b0 [ 142.094522][ C0] __run_timers+0x624/0x9e0 [ 142.099033][ C0] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 142.105202][ C0] ? irqtime_account_irq+0xe3/0x380 [ 142.110437][ C0] ? kmsan_get_metadata+0x116/0x180 [ 142.115646][ C0] ? migrate_timer_list+0x5f0/0x5f0 [ 142.120847][ C0] run_timer_softirq+0x2d/0x50 [ 142.125628][ C0] __do_softirq+0x1b9/0x715 [ 142.130130][ C0] asm_call_irq_on_stack+0xf/0x20 [ 142.135153][ C0] [ 142.138075][ C0] do_softirq_own_stack+0x6e/0x90 [ 142.143105][ C0] __irq_exit_rcu+0x22f/0x280 [ 142.147774][ C0] irq_exit_rcu+0xe/0x10 [ 142.152019][ C0] sysvec_apic_timer_interrupt+0x106/0x130 [ 142.157818][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 142.163820][ C0] RIP: 0010:acpi_idle_enter+0x61d/0x760 [ 142.169362][ C0] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c b5 3a fb 0f 00 2d 5f e7 5d 09 fb f4 e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 8f 3b bc fb e9 e5 [ 142.188972][ C0] RSP: 0018:ffffffff91203b70 EFLAGS: 00000246 [ 142.195048][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000023eaf6040 [ 142.203029][ C0] RDX: ffffffff91231040 RSI: 0000000000000000 RDI: 0000000000000000 [ 142.211125][ C0] RBP: ffffffff91203c08 R08: ffffffff86809bde R09: ffff88813fffa000 [ 142.219464][ C0] R10: 0000000000000002 R11: ffffffff91231040 R12: 0000000000000000 [ 142.227444][ C0] R13: ffff888140ef5064 R14: 0000000000000000 R15: ffffffff91231ab8 [ 142.235435][ C0] ? acpi_idle_enter+0x5ee/0x760 [ 142.240380][ C0] ? acpi_idle_lpi_enter+0x160/0x160 [ 142.246117][ C0] cpuidle_enter_state+0x99e/0x1750 [ 142.251327][ C0] cpuidle_enter+0xe3/0x170 [ 142.255823][ C0] do_idle+0x5df/0x790 [ 142.259884][ C0] cpu_startup_entry+0x45/0x50 [ 142.264649][ C0] rest_init+0x1c8/0x1f0 [ 142.268896][ C0] arch_call_rest_init+0x13/0x15 [ 142.273842][ C0] start_kernel+0xa17/0xbd8 [ 142.278333][ C0] x86_64_start_reservations+0x2a/0x2c [ 142.283793][ C0] x86_64_start_kernel+0x86/0x89 [ 142.288716][ C0] secondary_startup_64_no_verify+0xb0/0xbb [ 142.294629][ C0] [ 142.296949][ C0] Uninit was created at: [ 142.301204][ C0] kmsan_internal_poison_shadow+0x5c/0xf0 [ 142.306970][ C0] kmsan_slab_alloc+0x8d/0xe0 [ 142.311670][ C0] __kmalloc_node_track_caller+0xa37/0x1430 [ 142.317584][ C0] __alloc_skb+0x2f8/0xb30 [ 142.322019][ C0] __netdev_alloc_skb+0x450/0x7f0 [ 142.327047][ C0] ath9k_hif_usb_rx_cb+0xe58/0x1d20 [ 142.332243][ C0] __usb_hcd_giveback_urb+0x6ff/0x930 [ 142.337627][ C0] usb_hcd_giveback_urb+0x1cb/0x730 [ 142.342832][ C0] dummy_timer+0xda7/0x74f0 [ 142.347325][ C0] call_timer_fn+0x7d/0x450 [ 142.351837][ C0] expire_timers+0x328/0x6c0 [ 142.356410][ C0] __run_timers+0x624/0x9e0 [ 142.360898][ C0] run_timer_softirq+0x2d/0x50 [ 142.365651][ C0] __do_softirq+0x1b9/0x715 [ 142.370149][ C0] ===================================================== [ 142.377062][ C0] ===================================================== [ 142.383974][ C0] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x92d/0x1f30 [ 142.391259][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G B 5.11.0-rc7-syzkaller #0 [ 142.400622][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 142.410677][ C0] Call Trace: [ 142.413961][ C0] [ 142.416825][ C0] dump_stack+0x21c/0x280 [ 142.421162][ C0] kmsan_report+0xfb/0x1e0 [ 142.425621][ C0] __msan_warning+0x5f/0xa0 [ 142.430137][ C0] ath9k_htc_rx_msg+0x92d/0x1f30 [ 142.435065][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 142.441180][ C0] ath9k_hif_usb_rx_cb+0x184e/0x1d20 [ 142.446474][ C0] ? kmsan_get_metadata+0x116/0x180 [ 142.451713][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 142.457544][ C0] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0 [ 142.463433][ C0] __usb_hcd_giveback_urb+0x6ff/0x930 [ 142.468811][ C0] ? kmsan_get_metadata+0x116/0x180 [ 142.474002][ C0] usb_hcd_giveback_urb+0x1cb/0x730 [ 142.479208][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 142.485041][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 142.491203][ C0] dummy_timer+0xda7/0x74f0 [ 142.495736][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 142.501830][ C0] ? dummy_free_streams+0x5b0/0x5b0 [ 142.507038][ C0] call_timer_fn+0x7d/0x450 [ 142.511565][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 142.517383][ C0] expire_timers+0x328/0x6c0 [ 142.521993][ C0] ? dummy_free_streams+0x5b0/0x5b0 [ 142.527191][ C0] __run_timers+0x624/0x9e0 [ 142.531700][ C0] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 142.537890][ C0] ? irqtime_account_irq+0xe3/0x380 [ 142.543089][ C0] ? kmsan_get_metadata+0x116/0x180 [ 142.548277][ C0] ? migrate_timer_list+0x5f0/0x5f0 [ 142.553487][ C0] run_timer_softirq+0x2d/0x50 [ 142.558243][ C0] __do_softirq+0x1b9/0x715 [ 142.562745][ C0] asm_call_irq_on_stack+0xf/0x20 [ 142.567858][ C0] [ 142.570800][ C0] do_softirq_own_stack+0x6e/0x90 [ 142.575817][ C0] __irq_exit_rcu+0x22f/0x280 [ 142.580485][ C0] irq_exit_rcu+0xe/0x10 [ 142.584731][ C0] sysvec_apic_timer_interrupt+0x106/0x130 [ 142.590562][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 142.596548][ C0] RIP: 0010:acpi_idle_enter+0x61d/0x760 [ 142.602125][ C0] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c b5 3a fb 0f 00 2d 5f e7 5d 09 fb f4 e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 8f 3b bc fb e9 e5 [ 142.621890][ C0] RSP: 0018:ffffffff91203b70 EFLAGS: 00000246 [ 142.627962][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000023eaf6040 [ 142.635953][ C0] RDX: ffffffff91231040 RSI: 0000000000000000 RDI: 0000000000000000 [ 142.643922][ C0] RBP: ffffffff91203c08 R08: ffffffff86809bde R09: ffff88813fffa000 [ 142.651902][ C0] R10: 0000000000000002 R11: ffffffff91231040 R12: 0000000000000000 [ 142.659885][ C0] R13: ffff888140ef5064 R14: 0000000000000000 R15: ffffffff91231ab8 [ 142.667865][ C0] ? acpi_idle_enter+0x5ee/0x760 [ 142.672807][ C0] ? acpi_idle_lpi_enter+0x160/0x160 [ 142.678109][ C0] cpuidle_enter_state+0x99e/0x1750 [ 142.683319][ C0] cpuidle_enter+0xe3/0x170 [ 142.687812][ C0] do_idle+0x5df/0x790 [ 142.691890][ C0] cpu_startup_entry+0x45/0x50 [ 142.696658][ C0] rest_init+0x1c8/0x1f0 [ 142.700927][ C0] arch_call_rest_init+0x13/0x15 [ 142.705884][ C0] start_kernel+0xa17/0xbd8 [ 142.710431][ C0] x86_64_start_reservations+0x2a/0x2c [ 142.715899][ C0] x86_64_start_kernel+0x86/0x89 [ 142.720856][ C0] secondary_startup_64_no_verify+0xb0/0xbb [ 142.726765][ C0] [ 142.729427][ C0] Uninit was created at: [ 142.733749][ C0] kmsan_internal_poison_shadow+0x5c/0xf0 [ 142.739464][ C0] kmsan_slab_alloc+0x8d/0xe0 [ 142.744155][ C0] __kmalloc_node_track_caller+0xa37/0x1430 [ 142.750557][ C0] __alloc_skb+0x2f8/0xb30 [ 142.754966][ C0] __netdev_alloc_skb+0x450/0x7f0 [ 142.760002][ C0] ath9k_hif_usb_rx_cb+0xe58/0x1d20 [ 142.766152][ C0] __usb_hcd_giveback_urb+0x6ff/0x930 [ 142.771530][ C0] usb_hcd_giveback_urb+0x1cb/0x730 [ 142.776714][ C0] dummy_timer+0xda7/0x74f0 [ 142.781209][ C0] call_timer_fn+0x7d/0x450 [ 142.785733][ C0] expire_timers+0x328/0x6c0 [ 142.790323][ C0] __run_timers+0x624/0x9e0 [ 142.794832][ C0] run_timer_softirq+0x2d/0x50 [ 142.799600][ C0] __do_softirq+0x1b9/0x715 [ 142.804107][ C0] ===================================================== [ 142.820470][ T1981] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive [ 142.825101][ C1] clocksource: timekeeping watchdog on CPU1: Marking clocksource 'tsc' as unstable because the skew is too large: [ 142.827719][ T1981] ath9k_htc: Failed to initialize the device [ 142.839661][ C1] clocksource: 'acpi_pm' wd_now: 3c1436 wd_last: 45391e mask: ffffff [ 142.839752][ C1] clocksource: 'tsc' cs_now: 50156d020a cs_last: 4da9d612fb mask: ffffffffffffffff [ 142.867533][ C1] tsc: Marking TSC unstable due to clocksource watchdog executing program [ 142.880939][ T18] usb 1-1: ath9k_htc: USB layer deinitialized [ 142.898323][ T2946] TSC found unstable after boot, most likely due to broken BIOS. Use 'tsc=unstable'. [ 142.908368][ T2946] sched_clock: Marking unstable (143193440238, -294874807)<-(142906321667, -8005426) [ 142.975972][ T8219] clocksource: Switched to clocksource acpi_pm [ 143.295407][ T18] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 143.815574][ T18] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 143.824744][ T18] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 143.832956][ T18] usb 1-1: Product: syz [ 143.837434][ T18] usb 1-1: Manufacturer: syz [ 143.842139][ T18] usb 1-1: SerialNumber: syz [ 143.887106][ T18] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 144.455520][ T2946] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 144.665448][ C1] ===================================================== [ 144.672407][ C1] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x28c/0x1f30 [ 144.675255][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B 5.11.0-rc7-syzkaller #0 [ 144.685380][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 144.685380][ C1] Call Trace: [ 144.685380][ C1] [ 144.685380][ C1] dump_stack+0x21c/0x280 [ 144.685380][ C1] kmsan_report+0xfb/0x1e0 [ 144.685380][ C1] __msan_warning+0x5f/0xa0 [ 144.685380][ C1] ath9k_htc_rx_msg+0x28c/0x1f30 [ 144.685380][ C1] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 144.725782][ C1] ath9k_hif_usb_rx_cb+0x184e/0x1d20 [ 144.735624][ C1] ? kmsan_get_metadata+0x116/0x180 [ 144.735624][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 144.735624][ C1] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0 [ 144.735624][ C1] __usb_hcd_giveback_urb+0x6ff/0x930 [ 144.735624][ C1] ? kmsan_get_metadata+0x116/0x180 [ 144.735624][ C1] usb_hcd_giveback_urb+0x1cb/0x730 [ 144.735624][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 144.735624][ C1] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 144.776136][ C1] dummy_timer+0xda7/0x74f0 [ 144.776136][ C1] ? kmsan_get_metadata+0x116/0x180 [ 144.776136][ C1] ? dummy_free_streams+0x5b0/0x5b0 [ 144.776136][ C1] call_timer_fn+0x7d/0x450 [ 144.776136][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 144.776136][ C1] expire_timers+0x328/0x6c0 [ 144.776136][ C1] ? dummy_free_streams+0x5b0/0x5b0 [ 144.815455][ C1] __run_timers+0x624/0x9e0 [ 144.815706][ C1] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 144.815706][ C1] ? irqtime_account_irq+0x5e/0x380 [ 144.815706][ C1] ? kmsan_get_metadata+0x116/0x180 [ 144.815706][ C1] ? migrate_timer_list+0x5f0/0x5f0 [ 144.815706][ C1] run_timer_softirq+0x2d/0x50 [ 144.815706][ C1] __do_softirq+0x1b9/0x715 [ 144.815706][ C1] asm_call_irq_on_stack+0xf/0x20 [ 144.815706][ C1] [ 144.815706][ C1] do_softirq_own_stack+0x6e/0x90 [ 144.862496][ T1981] usb 1-1: USB disconnect, device number 3 [ 144.860594][ C1] __irq_exit_rcu+0x22f/0x280 [ 144.860594][ C1] irq_exit_rcu+0xe/0x10 [ 144.877408][ C1] sysvec_apic_timer_interrupt+0x106/0x130 [ 144.877408][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 144.885363][ C1] RIP: 0010:acpi_idle_enter+0x61d/0x760 [ 144.885363][ C1] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c b5 3a fb 0f 00 2d 5f e7 5d 09 fb f4 e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 8f 3b bc fb e9 e5 [ 144.885363][ C1] RSP: 0018:ffff888101fe3c40 EFLAGS: 00000246 [ 144.885363][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000101bd9f40 [ 144.885363][ C1] RDX: ffff888101fd9f40 RSI: 0000000000000000 RDI: 0000000000000000 [ 144.885363][ C1] RBP: ffff888101fe3cd8 R08: ffffffff86809bde R09: ffff88813fffa000 [ 144.885363][ C1] R10: 0000000000000002 R11: ffff888101fd9f40 R12: 0000000000000000 [ 144.885363][ C1] R13: ffff888140ef5464 R14: 0000000000000000 R15: ffff888101fda9b8 [ 144.885363][ C1] ? acpi_idle_enter+0x5ee/0x760 [ 144.885363][ C1] ? acpi_idle_lpi_enter+0x160/0x160 [ 144.885363][ C1] cpuidle_enter_state+0x99e/0x1750 [ 144.885363][ C1] cpuidle_enter+0xe3/0x170 [ 144.885363][ C1] do_idle+0x5df/0x790 [ 144.885363][ C1] cpu_startup_entry+0x45/0x50 [ 144.885363][ C1] ? setup_APIC_timer+0x210/0x210 [ 144.885363][ C1] start_secondary+0xe9/0xf0 [ 144.885363][ C1] secondary_startup_64_no_verify+0xb0/0xbb [ 144.885363][ C1] [ 144.885363][ C1] Uninit was created at: executing program [ 144.885363][ C1] kmsan_internal_poison_shadow+0x5c/0xf0 [ 144.885363][ C1] kmsan_slab_alloc+0x8d/0xe0 [ 144.885363][ C1] __kmalloc_node_track_caller+0xa37/0x1430 [ 145.024777][ C1] __alloc_skb+0x2f8/0xb30 [ 145.024777][ C1] __netdev_alloc_skb+0x450/0x7f0 [ 145.024777][ C1] ath9k_hif_usb_rx_cb+0xe58/0x1d20 [ 145.041577][ C1] __usb_hcd_giveback_urb+0x6ff/0x930 [ 145.041577][ C1] usb_hcd_giveback_urb+0x1cb/0x730 [ 145.041577][ C1] dummy_timer+0xda7/0x74f0 [ 145.041577][ C1] call_timer_fn+0x7d/0x450 [ 145.041577][ C1] expire_timers+0x328/0x6c0 [ 145.041577][ C1] __run_timers+0x624/0x9e0 [ 145.041577][ C1] run_timer_softirq+0x2d/0x50 [ 145.041577][ C1] __do_softirq+0x1b9/0x715 [ 145.041577][ C1] ===================================================== [ 145.041577][ C1] ===================================================== [ 145.095077][ C1] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x4c0/0x1f30 [ 145.095077][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B 5.11.0-rc7-syzkaller #0 [ 145.095077][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 145.095077][ C1] Call Trace: [ 145.095077][ C1] [ 145.095077][ C1] dump_stack+0x21c/0x280 [ 145.095077][ C1] kmsan_report+0xfb/0x1e0 [ 145.095077][ C1] __msan_warning+0x5f/0xa0 [ 145.095077][ C1] ath9k_htc_rx_msg+0x4c0/0x1f30 [ 145.095077][ C1] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 145.095077][ C1] ath9k_hif_usb_rx_cb+0x184e/0x1d20 [ 145.095077][ C1] ? kmsan_get_metadata+0x116/0x180 [ 145.095077][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 145.095077][ C1] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0 [ 145.095077][ C1] __usb_hcd_giveback_urb+0x6ff/0x930 [ 145.095077][ C1] ? kmsan_get_metadata+0x116/0x180 [ 145.095077][ C1] usb_hcd_giveback_urb+0x1cb/0x730 [ 145.095077][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 145.095077][ C1] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 145.095077][ C1] dummy_timer+0xda7/0x74f0 [ 145.095077][ C1] ? kmsan_get_metadata+0x116/0x180 [ 145.095077][ C1] ? dummy_free_streams+0x5b0/0x5b0 [ 145.095077][ C1] call_timer_fn+0x7d/0x450 [ 145.095077][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 145.095077][ C1] expire_timers+0x328/0x6c0 [ 145.095077][ C1] ? dummy_free_streams+0x5b0/0x5b0 [ 145.095077][ C1] __run_timers+0x624/0x9e0 [ 145.095077][ C1] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 145.095077][ C1] ? irqtime_account_irq+0x5e/0x380 [ 145.095077][ C1] ? kmsan_get_metadata+0x116/0x180 [ 145.095077][ C1] ? migrate_timer_list+0x5f0/0x5f0 [ 145.095077][ C1] run_timer_softirq+0x2d/0x50 [ 145.095077][ C1] __do_softirq+0x1b9/0x715 [ 145.095077][ C1] asm_call_irq_on_stack+0xf/0x20 [ 145.095077][ C1] [ 145.095077][ C1] do_softirq_own_stack+0x6e/0x90 [ 145.095077][ C1] __irq_exit_rcu+0x22f/0x280 [ 145.095077][ C1] irq_exit_rcu+0xe/0x10 [ 145.095077][ C1] sysvec_apic_timer_interrupt+0x106/0x130 [ 145.095077][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 145.095077][ C1] RIP: 0010:acpi_idle_enter+0x61d/0x760 [ 145.095077][ C1] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c b5 3a fb 0f 00 2d 5f e7 5d 09 fb f4 e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 8f 3b bc fb e9 e5 [ 145.095077][ C1] RSP: 0018:ffff888101fe3c40 EFLAGS: 00000246 [ 145.095077][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000101bd9f40 [ 145.095077][ C1] RDX: ffff888101fd9f40 RSI: 0000000000000000 RDI: 0000000000000000 [ 145.095077][ C1] RBP: ffff888101fe3cd8 R08: ffffffff86809bde R09: ffff88813fffa000 [ 145.095077][ C1] R10: 0000000000000002 R11: ffff888101fd9f40 R12: 0000000000000000 [ 145.095077][ C1] R13: ffff888140ef5464 R14: 0000000000000000 R15: ffff888101fda9b8 [ 145.095077][ C1] ? acpi_idle_enter+0x5ee/0x760 [ 145.095077][ C1] ? acpi_idle_lpi_enter+0x160/0x160 [ 145.095077][ C1] cpuidle_enter_state+0x99e/0x1750 [ 145.095077][ C1] cpuidle_enter+0xe3/0x170 [ 145.095077][ C1] do_idle+0x5df/0x790 [ 145.095077][ C1] cpu_startup_entry+0x45/0x50 [ 145.095077][ C1] ? setup_APIC_timer+0x210/0x210 [ 145.095077][ C1] start_secondary+0xe9/0xf0 [ 145.095077][ C1] secondary_startup_64_no_verify+0xb0/0xbb [ 145.095077][ C1] [ 145.095077][ C1] Uninit was created at: [ 145.095077][ C1] kmsan_internal_poison_shadow+0x5c/0xf0 [ 145.095077][ C1] kmsan_slab_alloc+0x8d/0xe0 [ 145.095077][ C1] __kmalloc_node_track_caller+0xa37/0x1430 [ 145.095077][ C1] __alloc_skb+0x2f8/0xb30 [ 145.095077][ C1] __netdev_alloc_skb+0x450/0x7f0 [ 145.095077][ C1] ath9k_hif_usb_rx_cb+0xe58/0x1d20 [ 145.095077][ C1] __usb_hcd_giveback_urb+0x6ff/0x930 [ 145.095077][ C1] usb_hcd_giveback_urb+0x1cb/0x730 [ 145.095077][ C1] dummy_timer+0xda7/0x74f0 [ 145.095077][ C1] call_timer_fn+0x7d/0x450 [ 145.095077][ C1] expire_timers+0x328/0x6c0 [ 145.095077][ C1] __run_timers+0x624/0x9e0 [ 145.095077][ C1] run_timer_softirq+0x2d/0x50 [ 145.095077][ C1] __do_softirq+0x1b9/0x715 [ 145.095077][ C1] ===================================================== [ 145.095077][ C1] ===================================================== [ 145.095077][ C1] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x8bf/0x1f30 [ 145.095077][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B 5.11.0-rc7-syzkaller #0 [ 145.095077][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 145.095077][ C1] Call Trace: [ 145.095077][ C1] [ 145.095077][ C1] dump_stack+0x21c/0x280 [ 145.095077][ C1] kmsan_report+0xfb/0x1e0 [ 145.095077][ C1] __msan_warning+0x5f/0xa0 [ 145.095077][ C1] ath9k_htc_rx_msg+0x8bf/0x1f30 [ 145.095077][ C1] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 145.095077][ C1] ath9k_hif_usb_rx_cb+0x184e/0x1d20 [ 145.095077][ C1] ? kmsan_get_metadata+0x116/0x180 [ 145.095077][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 145.095077][ C1] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0 [ 145.095077][ C1] __usb_hcd_giveback_urb+0x6ff/0x930 [ 145.095077][ C1] ? kmsan_get_metadata+0x116/0x180 [ 145.095077][ C1] usb_hcd_giveback_urb+0x1cb/0x730 [ 145.095077][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 145.095077][ C1] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 145.095077][ C1] dummy_timer+0xda7/0x74f0 [ 145.095077][ C1] ? kmsan_get_metadata+0x116/0x180 [ 145.095077][ C1] ? dummy_free_streams+0x5b0/0x5b0 [ 145.095077][ C1] call_timer_fn+0x7d/0x450 [ 145.095077][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 145.095077][ C1] expire_timers+0x328/0x6c0 [ 145.095077][ C1] ? dummy_free_streams+0x5b0/0x5b0 [ 145.095077][ C1] __run_timers+0x624/0x9e0 [ 145.095077][ C1] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 145.095077][ C1] ? irqtime_account_irq+0x5e/0x380 [ 145.095077][ C1] ? kmsan_get_metadata+0x116/0x180 [ 145.095077][ C1] ? migrate_timer_list+0x5f0/0x5f0 [ 145.095077][ C1] run_timer_softirq+0x2d/0x50 [ 145.095077][ C1] __do_softirq+0x1b9/0x715 [ 145.095077][ C1] asm_call_irq_on_stack+0xf/0x20 [ 145.095077][ C1] [ 145.095077][ C1] do_softirq_own_stack+0x6e/0x90 [ 145.095077][ C1] __irq_exit_rcu+0x22f/0x280 [ 145.095077][ C1] irq_exit_rcu+0xe/0x10 [ 145.095077][ C1] sysvec_apic_timer_interrupt+0x106/0x130 [ 145.095077][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 145.095077][ C1] RIP: 0010:acpi_idle_enter+0x61d/0x760 [ 145.095077][ C1] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c b5 3a fb 0f 00 2d 5f e7 5d 09 fb f4 e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 8f 3b bc fb e9 e5 [ 145.095077][ C1] RSP: 0018:ffff888101fe3c40 EFLAGS: 00000246 [ 145.095077][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000101bd9f40 [ 145.095077][ C1] RDX: ffff888101fd9f40 RSI: 0000000000000000 RDI: 0000000000000000 [ 145.095077][ C1] RBP: ffff888101fe3cd8 R08: ffffffff86809bde R09: ffff88813fffa000 [ 145.095077][ C1] R10: 0000000000000002 R11: ffff888101fd9f40 R12: 0000000000000000 [ 145.095077][ C1] R13: ffff888140ef5464 R14: 0000000000000000 R15: ffff888101fda9b8 [ 145.095077][ C1] ? acpi_idle_enter+0x5ee/0x760 [ 145.095077][ C1] ? acpi_idle_lpi_enter+0x160/0x160 [ 145.095077][ C1] cpuidle_enter_state+0x99e/0x1750 [ 145.095077][ C1] cpuidle_enter+0xe3/0x170 [ 145.095077][ C1] do_idle+0x5df/0x790 [ 145.095077][ C1] cpu_startup_entry+0x45/0x50 [ 145.095077][ C1] ? setup_APIC_timer+0x210/0x210 [ 145.095077][ C1] start_secondary+0xe9/0xf0 [ 145.095077][ C1] secondary_startup_64_no_verify+0xb0/0xbb [ 145.095077][ C1] [ 145.095077][ C1] Uninit was created at: [ 145.095077][ C1] kmsan_internal_poison_shadow+0x5c/0xf0 [ 145.095077][ C1] kmsan_slab_alloc+0x8d/0xe0 [ 145.095077][ C1] __kmalloc_node_track_caller+0xa37/0x1430 [ 145.095077][ C1] __alloc_skb+0x2f8/0xb30 [ 145.095077][ C1] __netdev_alloc_skb+0x450/0x7f0 [ 145.095077][ C1] ath9k_hif_usb_rx_cb+0xe58/0x1d20 [ 145.095077][ C1] __usb_hcd_giveback_urb+0x6ff/0x930 [ 145.095077][ C1] usb_hcd_giveback_urb+0x1cb/0x730 [ 145.095077][ C1] dummy_timer+0xda7/0x74f0 [ 145.095077][ C1] call_timer_fn+0x7d/0x450 [ 145.095077][ C1] expire_timers+0x328/0x6c0 [ 145.095077][ C1] __run_timers+0x624/0x9e0 [ 145.095077][ C1] run_timer_softirq+0x2d/0x50 [ 145.095077][ C1] __do_softirq+0x1b9/0x715 [ 145.095077][ C1] ===================================================== [ 145.095077][ C1] ===================================================== [ 145.095077][ C1] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x913/0x1f30 [ 145.095077][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B 5.11.0-rc7-syzkaller #0 [ 145.095077][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 145.095077][ C1] Call Trace: [ 145.095077][ C1] [ 145.095077][ C1] dump_stack+0x21c/0x280 [ 145.095077][ C1] kmsan_report+0xfb/0x1e0 [ 145.095077][ C1] __msan_warning+0x5f/0xa0 [ 145.095077][ C1] ath9k_htc_rx_msg+0x913/0x1f30 [ 145.095077][ C1] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 145.095077][ C1] ath9k_hif_usb_rx_cb+0x184e/0x1d20 [ 145.095077][ C1] ? kmsan_get_metadata+0x116/0x180 [ 145.095077][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 145.095077][ C1] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0 [ 145.095077][ C1] __usb_hcd_giveback_urb+0x6ff/0x930 [ 145.095077][ C1] ? kmsan_get_metadata+0x116/0x180 [ 145.095077][ C1] usb_hcd_giveback_urb+0x1cb/0x730 [ 145.095077][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 145.095077][ C1] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 145.095077][ C1] dummy_timer+0xda7/0x74f0 [ 145.095077][ C1] ? kmsan_get_metadata+0x116/0x180 [ 145.095077][ C1] ? dummy_free_streams+0x5b0/0x5b0 [ 145.095077][ C1] call_timer_fn+0x7d/0x450 [ 145.095077][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 145.095077][ C1] expire_timers+0x328/0x6c0 [ 145.095077][ C1] ? dummy_free_streams+0x5b0/0x5b0 [ 145.095077][ C1] __run_timers+0x624/0x9e0 [ 145.095077][ C1] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 145.095077][ C1] ? irqtime_account_irq+0x5e/0x380 [ 145.095077][ C1] ? kmsan_get_metadata+0x116/0x180 [ 145.095077][ C1] ? migrate_timer_list+0x5f0/0x5f0 [ 145.095077][ C1] run_timer_softirq+0x2d/0x50 [ 145.095077][ C1] __do_softirq+0x1b9/0x715 [ 145.095077][ C1] asm_call_irq_on_stack+0xf/0x20 [ 145.095077][ C1] [ 145.095077][ C1] do_softirq_own_stack+0x6e/0x90 [ 145.095077][ C1] __irq_exit_rcu+0x22f/0x280 [ 145.095077][ C1] irq_exit_rcu+0xe/0x10 [ 145.095077][ C1] sysvec_apic_timer_interrupt+0x106/0x130 [ 145.095077][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 145.095077][ C1] RIP: 0010:acpi_idle_enter+0x61d/0x760 [ 145.095077][ C1] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c b5 3a fb 0f 00 2d 5f e7 5d 09 fb f4 e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 8f 3b bc fb e9 e5 [ 145.095077][ C1] RSP: 0018:ffff888101fe3c40 EFLAGS: 00000246 [ 145.095077][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000101bd9f40 [ 145.095077][ C1] RDX: ffff888101fd9f40 RSI: 0000000000000000 RDI: 0000000000000000 [ 145.095077][ C1] RBP: ffff888101fe3cd8 R08: ffffffff86809bde R09: ffff88813fffa000 [ 145.095077][ C1] R10: 0000000000000002 R11: ffff888101fd9f40 R12: 0000000000000000 [ 145.095077][ C1] R13: ffff888140ef5464 R14: 0000000000000000 R15: ffff888101fda9b8 [ 145.095077][ C1] ? acpi_idle_enter+0x5ee/0x760 [ 145.095077][ C1] ? acpi_idle_lpi_enter+0x160/0x160 [ 145.095077][ C1] cpuidle_enter_state+0x99e/0x1750 [ 145.095077][ C1] cpuidle_enter+0xe3/0x170 [ 145.095077][ C1] do_idle+0x5df/0x790 [ 145.095077][ C1] cpu_startup_entry+0x45/0x50 [ 145.095077][ C1] ? setup_APIC_timer+0x210/0x210 [ 145.095077][ C1] start_secondary+0xe9/0xf0 [ 145.095077][ C1] secondary_startup_64_no_verify+0xb0/0xbb [ 145.095077][ C1] [ 145.095077][ C1] Uninit was created at: [ 145.095077][ C1] kmsan_internal_poison_shadow+0x5c/0xf0 [ 145.095077][ C1] kmsan_slab_alloc+0x8d/0xe0 [ 145.095077][ C1] __kmalloc_node_track_caller+0xa37/0x1430 [ 145.095077][ C1] __alloc_skb+0x2f8/0xb30 [ 145.095077][ C1] __netdev_alloc_skb+0x450/0x7f0 [ 145.095077][ C1] ath9k_hif_usb_rx_cb+0xe58/0x1d20 [ 145.095077][ C1] __usb_hcd_giveback_urb+0x6ff/0x930 [ 145.095077][ C1] usb_hcd_giveback_urb+0x1cb/0x730 [ 145.095077][ C1] dummy_timer+0xda7/0x74f0 [ 145.095077][ C1] call_timer_fn+0x7d/0x450 [ 145.095077][ C1] expire_timers+0x328/0x6c0 [ 145.095077][ C1] __run_timers+0x624/0x9e0 [ 145.095077][ C1] run_timer_softirq+0x2d/0x50 [ 145.095077][ C1] __do_softirq+0x1b9/0x715 [ 145.095077][ C1] ===================================================== [ 145.095077][ C1] ===================================================== [ 145.095077][ C1] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x92d/0x1f30 [ 145.095077][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B 5.11.0-rc7-syzkaller #0 [ 145.095077][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 145.095077][ C1] Call Trace: [ 145.095077][ C1] [ 145.095077][ C1] dump_stack+0x21c/0x280 [ 145.095077][ C1] kmsan_report+0xfb/0x1e0 [ 145.095077][ C1] __msan_warning+0x5f/0xa0 [ 145.095077][ C1] ath9k_htc_rx_msg+0x92d/0x1f30 [ 145.095077][ C1] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 145.095077][ C1] ath9k_hif_usb_rx_cb+0x184e/0x1d20 [ 145.095077][ C1] ? kmsan_get_metadata+0x116/0x180 [ 145.095077][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 145.095077][ C1] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0 [ 145.095077][ C1] __usb_hcd_giveback_urb+0x6ff/0x930 [ 145.095077][ C1] ? kmsan_get_metadata+0x116/0x180 [ 145.095077][ C1] usb_hcd_giveback_urb+0x1cb/0x730 [ 145.095077][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 145.095077][ C1] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 145.095077][ C1] dummy_timer+0xda7/0x74f0 [ 145.095077][ C1] ? kmsan_get_metadata+0x116/0x180 [ 145.095077][ C1] ? dummy_free_streams+0x5b0/0x5b0 [ 145.095077][ C1] call_timer_fn+0x7d/0x450 [ 145.095077][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 145.095077][ C1] expire_timers+0x328/0x6c0 [ 145.095077][ C1] ? dummy_free_streams+0x5b0/0x5b0 [ 145.095077][ C1] __run_timers+0x624/0x9e0 [ 145.095077][ C1] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 145.095077][ C1] ? irqtime_account_irq+0x5e/0x380 [ 145.095077][ C1] ? kmsan_get_metadata+0x116/0x180 [ 145.095077][ C1] ? migrate_timer_list+0x5f0/0x5f0 [ 145.095077][ C1] run_timer_softirq+0x2d/0x50 [ 145.095077][ C1] __do_softirq+0x1b9/0x715 [ 145.095077][ C1] asm_call_irq_on_stack+0xf/0x20 [ 145.095077][ C1] [ 145.095077][ C1] do_softirq_own_stack+0x6e/0x90 [ 145.095077][ C1] __irq_exit_rcu+0x22f/0x280 [ 145.095077][ C1] irq_exit_rcu+0xe/0x10 [ 145.095077][ C1] sysvec_apic_timer_interrupt+0x106/0x130 [ 145.095077][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 145.095077][ C1] RIP: 0010:acpi_idle_enter+0x61d/0x760 [ 145.095077][ C1] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c b5 3a fb 0f 00 2d 5f e7 5d 09 fb f4 e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 8f 3b bc fb e9 e5 [ 145.095077][ C1] RSP: 0018:ffff888101fe3c40 EFLAGS: 00000246 [ 145.095077][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000101bd9f40 [ 145.095077][ C1] RDX: ffff888101fd9f40 RSI: 0000000000000000 RDI: 0000000000000000 [ 145.095077][ C1] RBP: ffff888101fe3cd8 R08: ffffffff86809bde R09: ffff88813fffa000 [ 145.095077][ C1] R10: 0000000000000002 R11: ffff888101fd9f40 R12: 0000000000000000 [ 145.095077][ C1] R13: ffff888140ef5464 R14: 0000000000000000 R15: ffff888101fda9b8 [ 145.095077][ C1] ? acpi_idle_enter+0x5ee/0x760 [ 145.095077][ C1] ? acpi_idle_lpi_enter+0x160/0x160 [ 145.095077][ C1] cpuidle_enter_state+0x99e/0x1750 [ 145.095077][ C1] cpuidle_enter+0xe3/0x170 [ 145.095077][ C1] do_idle+0x5df/0x790 [ 145.095077][ C1] cpu_startup_entry+0x45/0x50 [ 145.095077][ C1] ? setup_APIC_timer+0x210/0x210 [ 145.095077][ C1] start_secondary+0xe9/0xf0 [ 145.095077][ C1] secondary_startup_64_no_verify+0xb0/0xbb [ 145.095077][ C1] [ 145.095077][ C1] Uninit was created at: [ 145.095077][ C1] kmsan_internal_poison_shadow+0x5c/0xf0 [ 145.095077][ C1] kmsan_slab_alloc+0x8d/0xe0 [ 145.095077][ C1] __kmalloc_node_track_caller+0xa37/0x1430 [ 145.095077][ C1] __alloc_skb+0x2f8/0xb30 [ 145.095077][ C1] __netdev_alloc_skb+0x450/0x7f0 [ 145.095077][ C1] ath9k_hif_usb_rx_cb+0xe58/0x1d20 [ 145.095077][ C1] __usb_hcd_giveback_urb+0x6ff/0x930 [ 145.095077][ C1] usb_hcd_giveback_urb+0x1cb/0x730 [ 145.095077][ C1] dummy_timer+0xda7/0x74f0 [ 145.095077][ C1] call_timer_fn+0x7d/0x450 [ 146.735370][ C1] expire_timers+0x328/0x6c0 [ 146.735370][ C1] __run_timers+0x624/0x9e0 [ 146.735370][ C1] run_timer_softirq+0x2d/0x50 [ 146.735370][ C1] __do_softirq+0x1b9/0x715 [ 146.735370][ C1] ===================================================== [ 146.735370][ C1] ===================================================== [ 146.735370][ C1] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x28c/0x1f30 [ 146.735370][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B 5.11.0-rc7-syzkaller #0 [ 146.735370][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 146.735370][ C1] Call Trace: [ 146.735370][ C1] [ 146.735370][ C1] dump_stack+0x21c/0x280 [ 146.735370][ C1] kmsan_report+0xfb/0x1e0 [ 146.735370][ C1] __msan_warning+0x5f/0xa0 [ 146.735370][ C1] ath9k_htc_rx_msg+0x28c/0x1f30 [ 146.735370][ C1] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 146.735370][ C1] ath9k_hif_usb_rx_cb+0x184e/0x1d20 [ 146.735370][ C1] ? kmsan_get_metadata+0x116/0x180 [ 146.735370][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 146.735370][ C1] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0 [ 146.735370][ C1] __usb_hcd_giveback_urb+0x6ff/0x930 [ 146.735370][ C1] ? kmsan_get_metadata+0x116/0x180 [ 146.735370][ C1] usb_hcd_giveback_urb+0x1cb/0x730 [ 146.735370][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 146.735370][ C1] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 146.735370][ C1] dummy_timer+0xda7/0x74f0 [ 146.735370][ C1] ? kmsan_get_metadata+0x116/0x180 [ 146.735370][ C1] ? dummy_free_streams+0x5b0/0x5b0 [ 146.735370][ C1] call_timer_fn+0x7d/0x450 [ 146.735370][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 146.735370][ C1] expire_timers+0x328/0x6c0 [ 146.735370][ C1] ? dummy_free_streams+0x5b0/0x5b0 [ 146.735370][ C1] __run_timers+0x624/0x9e0 [ 146.735370][ C1] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 146.735370][ C1] ? irqtime_account_irq+0x5e/0x380 [ 146.735370][ C1] ? kmsan_get_metadata+0x116/0x180 [ 146.735370][ C1] ? migrate_timer_list+0x5f0/0x5f0 [ 146.735370][ C1] run_timer_softirq+0x2d/0x50 [ 146.735370][ C1] __do_softirq+0x1b9/0x715 [ 146.735370][ C1] asm_call_irq_on_stack+0xf/0x20 [ 146.735370][ C1] [ 146.735370][ C1] do_softirq_own_stack+0x6e/0x90 [ 146.735370][ C1] __irq_exit_rcu+0x22f/0x280 [ 146.735370][ C1] irq_exit_rcu+0xe/0x10 [ 146.735370][ C1] sysvec_apic_timer_interrupt+0x106/0x130 [ 146.735370][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 146.735370][ C1] RIP: 0010:acpi_idle_enter+0x61d/0x760 [ 146.735370][ C1] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c b5 3a fb 0f 00 2d 5f e7 5d 09 fb f4 e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 8f 3b bc fb e9 e5 [ 146.735370][ C1] RSP: 0018:ffff888101fe3c40 EFLAGS: 00000246 [ 146.735370][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000101bd9f40 [ 146.735370][ C1] RDX: ffff888101fd9f40 RSI: 0000000000000000 RDI: 0000000000000000 [ 146.735370][ C1] RBP: ffff888101fe3cd8 R08: ffffffff86809bde R09: ffff88813fffa000 [ 146.735370][ C1] R10: 0000000000000002 R11: ffff888101fd9f40 R12: 0000000000000000 [ 146.735370][ C1] R13: ffff888140ef5464 R14: 0000000000000000 R15: ffff888101fda9b8 [ 146.735370][ C1] ? acpi_idle_enter+0x5ee/0x760 [ 146.735370][ C1] ? acpi_idle_lpi_enter+0x160/0x160 [ 146.735370][ C1] cpuidle_enter_state+0x99e/0x1750 [ 146.735370][ C1] cpuidle_enter+0xe3/0x170 [ 146.735370][ C1] do_idle+0x5df/0x790 [ 146.735370][ C1] cpu_startup_entry+0x45/0x50 [ 146.735370][ C1] ? setup_APIC_timer+0x210/0x210 [ 146.735370][ C1] start_secondary+0xe9/0xf0 [ 146.735370][ C1] secondary_startup_64_no_verify+0xb0/0xbb [ 146.735370][ C1] [ 146.735370][ C1] Uninit was created at: [ 146.735370][ C1] kmsan_internal_poison_shadow+0x5c/0xf0 [ 146.735370][ C1] kmsan_slab_alloc+0x8d/0xe0 [ 146.735370][ C1] __kmalloc_node_track_caller+0xa37/0x1430 [ 146.735370][ C1] __alloc_skb+0x2f8/0xb30 [ 146.735370][ C1] __netdev_alloc_skb+0x450/0x7f0 [ 146.735370][ C1] ath9k_hif_usb_rx_cb+0xe58/0x1d20 [ 146.735370][ C1] __usb_hcd_giveback_urb+0x6ff/0x930 [ 146.735370][ C1] usb_hcd_giveback_urb+0x1cb/0x730 [ 146.735370][ C1] dummy_timer+0xda7/0x74f0 [ 146.735370][ C1] call_timer_fn+0x7d/0x450 [ 146.735370][ C1] expire_timers+0x328/0x6c0 [ 146.735370][ C1] __run_timers+0x624/0x9e0 [ 146.735370][ C1] run_timer_softirq+0x2d/0x50 [ 146.735370][ C1] __do_softirq+0x1b9/0x715 [ 146.735370][ C1] ===================================================== [ 146.735370][ C1] ===================================================== [ 146.735370][ C1] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x4c0/0x1f30 [ 146.735370][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B 5.11.0-rc7-syzkaller #0 [ 146.735370][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 146.735370][ C1] Call Trace: [ 146.735370][ C1] [ 146.735370][ C1] dump_stack+0x21c/0x280 [ 146.735370][ C1] kmsan_report+0xfb/0x1e0 [ 146.735370][ C1] __msan_warning+0x5f/0xa0 [ 146.735370][ C1] ath9k_htc_rx_msg+0x4c0/0x1f30 [ 146.735370][ C1] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 146.735370][ C1] ath9k_hif_usb_rx_cb+0x184e/0x1d20 [ 146.735370][ C1] ? kmsan_get_metadata+0x116/0x180 [ 146.735370][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 146.735370][ C1] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0 [ 146.735370][ C1] __usb_hcd_giveback_urb+0x6ff/0x930 [ 146.735370][ C1] ? kmsan_get_metadata+0x116/0x180 [ 146.735370][ C1] usb_hcd_giveback_urb+0x1cb/0x730 [ 146.735370][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 146.735370][ C1] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 146.735370][ C1] dummy_timer+0xda7/0x74f0 [ 146.735370][ C1] ? kmsan_get_metadata+0x116/0x180 [ 146.735370][ C1] ? dummy_free_streams+0x5b0/0x5b0 [ 146.735370][ C1] call_timer_fn+0x7d/0x450 [ 146.735370][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 146.735370][ C1] expire_timers+0x328/0x6c0 [ 146.735370][ C1] ? dummy_free_streams+0x5b0/0x5b0 [ 146.735370][ C1] __run_timers+0x624/0x9e0 [ 146.735370][ C1] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 146.735370][ C1] ? irqtime_account_irq+0x5e/0x380 [ 146.735370][ C1] ? kmsan_get_metadata+0x116/0x180 [ 146.735370][ C1] ? migrate_timer_list+0x5f0/0x5f0 [ 146.735370][ C1] run_timer_softirq+0x2d/0x50 [ 146.735370][ C1] __do_softirq+0x1b9/0x715 [ 146.735370][ C1] asm_call_irq_on_stack+0xf/0x20 [ 146.735370][ C1] [ 146.735370][ C1] do_softirq_own_stack+0x6e/0x90 [ 146.735370][ C1] __irq_exit_rcu+0x22f/0x280 [ 146.735370][ C1] irq_exit_rcu+0xe/0x10 [ 146.735370][ C1] sysvec_apic_timer_interrupt+0x106/0x130 [ 146.735370][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 146.735370][ C1] RIP: 0010:acpi_idle_enter+0x61d/0x760 [ 146.735370][ C1] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c b5 3a fb 0f 00 2d 5f e7 5d 09 fb f4 e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 8f 3b bc fb e9 e5 [ 146.735370][ C1] RSP: 0018:ffff888101fe3c40 EFLAGS: 00000246 [ 146.735370][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000101bd9f40 [ 146.735370][ C1] RDX: ffff888101fd9f40 RSI: 0000000000000000 RDI: 0000000000000000 [ 146.735370][ C1] RBP: ffff888101fe3cd8 R08: ffffffff86809bde R09: ffff88813fffa000 [ 146.735370][ C1] R10: 0000000000000002 R11: ffff888101fd9f40 R12: 0000000000000000 [ 146.735370][ C1] R13: ffff888140ef5464 R14: 0000000000000000 R15: ffff888101fda9b8 [ 146.735370][ C1] ? acpi_idle_enter+0x5ee/0x760 [ 146.735370][ C1] ? acpi_idle_lpi_enter+0x160/0x160 [ 146.735370][ C1] cpuidle_enter_state+0x99e/0x1750 [ 146.735370][ C1] cpuidle_enter+0xe3/0x170 [ 146.735370][ C1] do_idle+0x5df/0x790 [ 146.735370][ C1] cpu_startup_entry+0x45/0x50 [ 146.735370][ C1] ? setup_APIC_timer+0x210/0x210 [ 146.735370][ C1] start_secondary+0xe9/0xf0 [ 146.735370][ C1] secondary_startup_64_no_verify+0xb0/0xbb [ 146.735370][ C1] [ 146.735370][ C1] Uninit was created at: [ 146.735370][ C1] kmsan_internal_poison_shadow+0x5c/0xf0 [ 146.735370][ C1] kmsan_slab_alloc+0x8d/0xe0 [ 146.735370][ C1] __kmalloc_node_track_caller+0xa37/0x1430 [ 146.735370][ C1] __alloc_skb+0x2f8/0xb30 [ 146.735370][ C1] __netdev_alloc_skb+0x450/0x7f0 [ 146.735370][ C1] ath9k_hif_usb_rx_cb+0xe58/0x1d20 [ 146.735370][ C1] __usb_hcd_giveback_urb+0x6ff/0x930 [ 146.735370][ C1] usb_hcd_giveback_urb+0x1cb/0x730 [ 146.735370][ C1] dummy_timer+0xda7/0x74f0 [ 146.735370][ C1] call_timer_fn+0x7d/0x450 [ 146.735370][ C1] expire_timers+0x328/0x6c0 [ 146.735370][ C1] __run_timers+0x624/0x9e0 [ 146.735370][ C1] run_timer_softirq+0x2d/0x50 [ 146.735370][ C1] __do_softirq+0x1b9/0x715 [ 146.735370][ C1] ===================================================== [ 146.735370][ C1] ===================================================== [ 146.735370][ C1] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x8bf/0x1f30 [ 146.735370][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B 5.11.0-rc7-syzkaller #0 [ 146.735370][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 146.735370][ C1] Call Trace: [ 146.735370][ C1] [ 146.735370][ C1] dump_stack+0x21c/0x280 [ 146.735370][ C1] kmsan_report+0xfb/0x1e0 [ 146.735370][ C1] __msan_warning+0x5f/0xa0 [ 146.735370][ C1] ath9k_htc_rx_msg+0x8bf/0x1f30 [ 146.735370][ C1] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 146.735370][ C1] ath9k_hif_usb_rx_cb+0x184e/0x1d20 [ 146.735370][ C1] ? kmsan_get_metadata+0x116/0x180 [ 146.735370][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 146.735370][ C1] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0 [ 146.735370][ C1] __usb_hcd_giveback_urb+0x6ff/0x930 [ 146.735370][ C1] ? kmsan_get_metadata+0x116/0x180 [ 146.735370][ C1] usb_hcd_giveback_urb+0x1cb/0x730 [ 146.735370][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 146.735370][ C1] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 146.735370][ C1] dummy_timer+0xda7/0x74f0 [ 146.735370][ C1] ? kmsan_get_metadata+0x116/0x180 [ 146.735370][ C1] ? dummy_free_streams+0x5b0/0x5b0 [ 146.735370][ C1] call_timer_fn+0x7d/0x450 [ 146.735370][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 146.735370][ C1] expire_timers+0x328/0x6c0 [ 146.735370][ C1] ? dummy_free_streams+0x5b0/0x5b0 [ 146.735370][ C1] __run_timers+0x624/0x9e0 [ 146.735370][ C1] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 146.735370][ C1] ? irqtime_account_irq+0x5e/0x380 [ 146.735370][ C1] ? kmsan_get_metadata+0x116/0x180 [ 146.735370][ C1] ? migrate_timer_list+0x5f0/0x5f0 [ 146.735370][ C1] run_timer_softirq+0x2d/0x50 [ 146.735370][ C1] __do_softirq+0x1b9/0x715 [ 146.735370][ C1] asm_call_irq_on_stack+0xf/0x20 [ 146.735370][ C1] [ 146.735370][ C1] do_softirq_own_stack+0x6e/0x90 [ 146.735370][ C1] __irq_exit_rcu+0x22f/0x280 [ 146.735370][ C1] irq_exit_rcu+0xe/0x10 [ 146.735370][ C1] sysvec_apic_timer_interrupt+0x106/0x130 [ 146.735370][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 146.735370][ C1] RIP: 0010:acpi_idle_enter+0x61d/0x760 [ 146.735370][ C1] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c b5 3a fb 0f 00 2d 5f e7 5d 09 fb f4 e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 8f 3b bc fb e9 e5 [ 146.735370][ C1] RSP: 0018:ffff888101fe3c40 EFLAGS: 00000246 [ 146.735370][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000101bd9f40 [ 146.735370][ C1] RDX: ffff888101fd9f40 RSI: 0000000000000000 RDI: 0000000000000000 [ 146.735370][ C1] RBP: ffff888101fe3cd8 R08: ffffffff86809bde R09: ffff88813fffa000 [ 146.735370][ C1] R10: 0000000000000002 R11: ffff888101fd9f40 R12: 0000000000000000 [ 147.877403][ C1] R13: ffff888140ef5464 R14: 0000000000000000 R15: ffff888101fda9b8 [ 147.877403][ C1] ? acpi_idle_enter+0x5ee/0x760 [ 147.877403][ C1] ? acpi_idle_lpi_enter+0x160/0x160 [ 147.877403][ C1] cpuidle_enter_state+0x99e/0x1750 [ 147.877403][ C1] cpuidle_enter+0xe3/0x170 [ 147.877403][ C1] do_idle+0x5df/0x790 [ 147.877403][ C1] cpu_startup_entry+0x45/0x50 [ 147.877403][ C1] ? setup_APIC_timer+0x210/0x210 [ 147.877403][ C1] start_secondary+0xe9/0xf0 [ 147.877403][ C1] secondary_startup_64_no_verify+0xb0/0xbb [ 147.877403][ C1] [ 147.877403][ C1] Uninit was created at: [ 147.877403][ C1] kmsan_internal_poison_shadow+0x5c/0xf0 [ 147.877403][ C1] kmsan_slab_alloc+0x8d/0xe0 [ 147.877403][ C1] __kmalloc_node_track_caller+0xa37/0x1430 [ 147.877403][ C1] __alloc_skb+0x2f8/0xb30 [ 147.877403][ C1] __netdev_alloc_skb+0x450/0x7f0 [ 147.877403][ C1] ath9k_hif_usb_rx_cb+0xe58/0x1d20 [ 147.877403][ C1] __usb_hcd_giveback_urb+0x6ff/0x930 [ 147.877403][ C1] usb_hcd_giveback_urb+0x1cb/0x730 [ 147.877403][ C1] dummy_timer+0xda7/0x74f0 [ 147.877403][ C1] call_timer_fn+0x7d/0x450 [ 147.877403][ C1] expire_timers+0x328/0x6c0 [ 147.877403][ C1] __run_timers+0x624/0x9e0 [ 147.877403][ C1] run_timer_softirq+0x2d/0x50 [ 147.877403][ C1] __do_softirq+0x1b9/0x715 [ 147.877403][ C1] ===================================================== [ 147.877403][ C1] ===================================================== [ 147.877403][ C1] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x913/0x1f30 [ 147.877403][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B 5.11.0-rc7-syzkaller #0 [ 147.877403][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 147.877403][ C1] Call Trace: [ 147.877403][ C1] [ 147.877403][ C1] dump_stack+0x21c/0x280 [ 147.877403][ C1] kmsan_report+0xfb/0x1e0 [ 147.877403][ C1] __msan_warning+0x5f/0xa0 [ 147.877403][ C1] ath9k_htc_rx_msg+0x913/0x1f30 [ 147.877403][ C1] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 147.877403][ C1] ath9k_hif_usb_rx_cb+0x184e/0x1d20 [ 147.877403][ C1] ? kmsan_get_metadata+0x116/0x180 [ 147.877403][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 147.877403][ C1] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0 [ 147.877403][ C1] __usb_hcd_giveback_urb+0x6ff/0x930 [ 147.877403][ C1] ? kmsan_get_metadata+0x116/0x180 [ 147.877403][ C1] usb_hcd_giveback_urb+0x1cb/0x730 [ 147.877403][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 147.877403][ C1] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 147.877403][ C1] dummy_timer+0xda7/0x74f0 [ 147.877403][ C1] ? kmsan_get_metadata+0x116/0x180 [ 147.877403][ C1] ? dummy_free_streams+0x5b0/0x5b0 [ 147.877403][ C1] call_timer_fn+0x7d/0x450 [ 147.877403][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 147.877403][ C1] expire_timers+0x328/0x6c0 [ 147.877403][ C1] ? dummy_free_streams+0x5b0/0x5b0 [ 147.877403][ C1] __run_timers+0x624/0x9e0 [ 147.877403][ C1] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 147.877403][ C1] ? irqtime_account_irq+0x5e/0x380 [ 147.877403][ C1] ? kmsan_get_metadata+0x116/0x180 [ 147.877403][ C1] ? migrate_timer_list+0x5f0/0x5f0 [ 147.877403][ C1] run_timer_softirq+0x2d/0x50 [ 147.877403][ C1] __do_softirq+0x1b9/0x715 [ 147.877403][ C1] asm_call_irq_on_stack+0xf/0x20 [ 147.877403][ C1] [ 147.877403][ C1] do_softirq_own_stack+0x6e/0x90 [ 147.877403][ C1] __irq_exit_rcu+0x22f/0x280 [ 147.877403][ C1] irq_exit_rcu+0xe/0x10 [ 147.877403][ C1] sysvec_apic_timer_interrupt+0x106/0x130 [ 147.877403][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 147.877403][ C1] RIP: 0010:acpi_idle_enter+0x61d/0x760 [ 147.877403][ C1] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c b5 3a fb 0f 00 2d 5f e7 5d 09 fb f4 e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 8f 3b bc fb e9 e5 [ 147.877403][ C1] RSP: 0018:ffff888101fe3c40 EFLAGS: 00000246 [ 147.877403][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000101bd9f40 [ 147.877403][ C1] RDX: ffff888101fd9f40 RSI: 0000000000000000 RDI: 0000000000000000 [ 147.877403][ C1] RBP: ffff888101fe3cd8 R08: ffffffff86809bde R09: ffff88813fffa000 [ 147.877403][ C1] R10: 0000000000000002 R11: ffff888101fd9f40 R12: 0000000000000000 [ 147.877403][ C1] R13: ffff888140ef5464 R14: 0000000000000000 R15: ffff888101fda9b8 [ 147.877403][ C1] ? acpi_idle_enter+0x5ee/0x760 [ 147.877403][ C1] ? acpi_idle_lpi_enter+0x160/0x160 [ 147.877403][ C1] cpuidle_enter_state+0x99e/0x1750 [ 147.877403][ C1] cpuidle_enter+0xe3/0x170 [ 147.877403][ C1] do_idle+0x5df/0x790 [ 147.877403][ C1] cpu_startup_entry+0x45/0x50 [ 147.877403][ C1] ? setup_APIC_timer+0x210/0x210 [ 147.877403][ C1] start_secondary+0xe9/0xf0 [ 147.877403][ C1] secondary_startup_64_no_verify+0xb0/0xbb [ 147.877403][ C1] [ 147.877403][ C1] Uninit was created at: [ 147.877403][ C1] kmsan_internal_poison_shadow+0x5c/0xf0 [ 147.877403][ C1] kmsan_slab_alloc+0x8d/0xe0 [ 147.877403][ C1] __kmalloc_node_track_caller+0xa37/0x1430 [ 147.877403][ C1] __alloc_skb+0x2f8/0xb30 [ 147.877403][ C1] __netdev_alloc_skb+0x450/0x7f0 [ 147.877403][ C1] ath9k_hif_usb_rx_cb+0xe58/0x1d20 [ 147.877403][ C1] __usb_hcd_giveback_urb+0x6ff/0x930 [ 147.877403][ C1] usb_hcd_giveback_urb+0x1cb/0x730 [ 147.877403][ C1] dummy_timer+0xda7/0x74f0 [ 147.877403][ C1] call_timer_fn+0x7d/0x450 [ 147.877403][ C1] expire_timers+0x328/0x6c0 [ 147.877403][ C1] __run_timers+0x624/0x9e0 [ 147.877403][ C1] run_timer_softirq+0x2d/0x50 [ 147.877403][ C1] __do_softirq+0x1b9/0x715 [ 147.877403][ C1] ===================================================== [ 147.877403][ C1] ===================================================== [ 147.877403][ C1] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x92d/0x1f30 [ 147.877403][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B 5.11.0-rc7-syzkaller #0 [ 147.877403][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 147.877403][ C1] Call Trace: [ 147.877403][ C1] [ 147.877403][ C1] dump_stack+0x21c/0x280 [ 147.877403][ C1] kmsan_report+0xfb/0x1e0