./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1062897597 <...> Warning: Permanently added '10.128.0.87' (ED25519) to the list of known hosts. execve("./syz-executor1062897597", ["./syz-executor1062897597"], 0x7ffe5b8d5ee0 /* 10 vars */) = 0 brk(NULL) = 0x555555dc7000 brk(0x555555dc7d00) = 0x555555dc7d00 arch_prctl(ARCH_SET_FS, 0x555555dc7380) = 0 set_tid_address(0x555555dc7650) = 4988 set_robust_list(0x555555dc7660, 24) = 0 rseq(0x555555dc7ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1062897597", 4096) = 28 getrandom("\x6e\xa8\x09\x34\x9c\x95\x78\x07", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555555dc7d00 brk(0x555555de8d00) = 0x555555de8d00 brk(0x555555de9000) = 0x555555de9000 mprotect(0x7fe257cb4000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 4989 attached , child_tidptr=0x555555dc7650) = 4989 [pid 4989] set_robust_list(0x555555dc7660, 24) = 0 [pid 4989] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 4989] setpgid(0, 0) = 0 [pid 4989] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 4989] write(3, "1000", 4) = 4 [pid 4989] close(3) = 0 [pid 4989] openat(AT_FDCWD, "/dev/raw-gadget", O_RDWR) = 3 [pid 4989] ioctl(3, USB_RAW_IOCTL_INIT, 0x7ffd333e1430) = 0 [pid 4989] ioctl(3, UI_DEV_CREATE or USB_RAW_IOCTL_RUN, 0) = 0 [pid 4989] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffd333e1430) = 0 [pid 4989] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffd333e1430) = 0 [pid 4989] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffd333e0420) = 18 [ 161.491650][ T33] usb 1-1: new high-speed USB device number 2 using dummy_hcd [pid 4989] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffd333e1430) = 0 [pid 4989] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffd333e0420) = 18 [pid 4989] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffd333e1430) = 0 [pid 4989] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffd333e0420) = 9 [pid 4989] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffd333e1430) = 0 [pid 4989] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffd333e0420) = 36 [pid 4989] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffd333e1430) = 0 [ 161.851940][ T33] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8 has invalid maxpacket 16 [ 161.862137][ T33] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64 [pid 4989] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffd333e0420) = 4 [pid 4989] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffd333e1430) = 0 [pid 4989] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffd333e0420) = 8 [pid 4989] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffd333e1430) = 0 [pid 4989] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffd333e0420) = 8 [pid 4989] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffd333e1430) = 0 [pid 4989] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffd333e0420) = 8 [pid 4989] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffd333e1430) = 0 [ 162.035754][ T33] usb 1-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=6f.8d [ 162.046012][ T33] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 162.054861][ T33] usb 1-1: Product: syz [ 162.059265][ T33] usb 1-1: Manufacturer: syz [ 162.064852][ T33] usb 1-1: SerialNumber: syz [ 162.078962][ T33] usb 1-1: config 0 descriptor?? [pid 4989] ioctl(3, USB_RAW_IOCTL_VBUS_DRAW, 0) = 0 [pid 4989] ioctl(3, USB_RAW_IOCTL_CONFIGURE, 0) = 0 [pid 4989] ioctl(3, USB_RAW_IOCTL_EP_ENABLE, 0x7fe257cba3ec) = -1 EINVAL (Invalid argument) [pid 4989] ioctl(3, USB_RAW_IOCTL_EP_ENABLE, 0x7fe257cba3fc) = -1 EINVAL (Invalid argument) [pid 4989] ioctl(3, USB_RAW_IOCTL_EP0_READ, 0x7ffd333e0420) = 0 [ 162.181242][ T4989] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 162.198897][ T4989] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 162.228687][ T33] smsc95xx v2.0.0 [pid 4989] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffd333e1450) = 0 [pid 4989] ioctl(3, USB_RAW_IOCTL_EP_DISABLE, 0) = -1 EINVAL (Invalid argument) [pid 4989] ioctl(3, USB_RAW_IOCTL_EP_DISABLE, 0) = -1 EINVAL (Invalid argument) [pid 4989] ioctl(3, USB_RAW_IOCTL_EP_ENABLE, 0x7fe257cba3ec) = -1 EINVAL (Invalid argument) [pid 4989] ioctl(3, USB_RAW_IOCTL_EP_ENABLE, 0x7fe257cba3fc) = -1 EINVAL (Invalid argument) [pid 4989] ioctl(3, USB_RAW_IOCTL_EP0_READ, 0x7ffd333e0440) = 0 [ 162.431545][ T4989] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 162.441436][ T4989] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [pid 4989] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffd333e1450) = 0 [pid 4989] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffd333e0440) = 0 [ 162.671984][ T33] ===================================================== [ 162.679319][ T33] BUG: KMSAN: uninit-value in smsc95xx_eeprom_confirm_not_busy+0x1eb/0x360 [ 162.688426][ T33] smsc95xx_eeprom_confirm_not_busy+0x1eb/0x360 [ 162.695058][ T33] smsc95xx_read_eeprom+0x59/0x670 [ 162.700341][ T33] smsc95xx_bind+0x6d8/0x22e0 [ 162.705643][ T33] usbnet_probe+0x100b/0x4060 [ 162.710541][ T33] usb_probe_interface+0xc75/0x1210 [ 162.716203][ T33] really_probe+0x506/0xf40 [ 162.720936][ T33] __driver_probe_device+0x2a7/0x5d0 [ 162.726610][ T33] driver_probe_device+0x72/0x7b0 [ 162.731965][ T33] __device_attach_driver+0x55a/0x8f0 [ 162.737518][ T33] bus_for_each_drv+0x3ff/0x620 [ 162.742884][ T33] __device_attach+0x3bd/0x640 [ 162.747861][ T33] device_initial_probe+0x32/0x40 [ 162.753185][ T33] bus_probe_device+0x3d8/0x5a0 [ 162.758238][ T33] device_add+0x1700/0x1f20 [ 162.763184][ T33] usb_set_configuration+0x31c9/0x38c0 [ 162.768906][ T33] usb_generic_driver_probe+0x109/0x2a0 [ 162.774876][ T33] usb_probe_device+0x290/0x4a0 [ 162.779965][ T33] really_probe+0x506/0xf40 [ 162.785621][ T33] __driver_probe_device+0x2a7/0x5d0 [ 162.791499][ T33] driver_probe_device+0x72/0x7b0 [ 162.796754][ T33] __device_attach_driver+0x55a/0x8f0 [ 162.802460][ T33] bus_for_each_drv+0x3ff/0x620 [ 162.807517][ T33] __device_attach+0x3bd/0x640 [ 162.812705][ T33] device_initial_probe+0x32/0x40 [ 162.817919][ T33] bus_probe_device+0x3d8/0x5a0 [ 162.823014][ T33] device_add+0x1700/0x1f20 [ 162.827743][ T33] usb_new_device+0x15f6/0x22f0 [ 162.832995][ T33] hub_event+0x53bc/0x7290 [ 162.837598][ T33] process_scheduled_works+0x104e/0x1e70 [ 162.843603][ T33] worker_thread+0xf45/0x1490 [ 162.848451][ T33] kthread+0x3e8/0x540 [ 162.852923][ T33] ret_from_fork+0x66/0x80 [ 162.857566][ T33] ret_from_fork_asm+0x11/0x20 [ 162.862805][ T33] [ 162.865245][ T33] Local variable buf.i created at: [pid 4989] exit_group(0) = ? [ 162.870474][ T33] smsc95xx_eeprom_confirm_not_busy+0x92/0x360 [ 162.877143][ T33] smsc95xx_read_eeprom+0x59/0x670 [ 162.882768][ T33] [ 162.885247][ T33] CPU: 1 PID: 33 Comm: kworker/1:1 Not tainted 6.6.0-rc5-syzkaller-00067-g8182d7a3f1b8 #0 [ 162.895548][ T33] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023 [ 162.905913][ T33] Workqueue: usb_hub_wq hub_event [ 162.911163][ T33] ===================================================== [pid 4989] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=4989, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555dc7650) = 4992 [ 162.918455][ T33] Disabling lock debugging due to kernel taint [ 162.924980][ T33] Kernel panic - not syncing: kmsan.panic set ... [ 162.931538][ T33] CPU: 1 PID: 33 Comm: kworker/1:1 Tainted: G B 6.6.0-rc5-syzkaller-00067-g8182d7a3f1b8 #0 [ 162.943213][ T33] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023 [ 162.953453][ T33] Workqueue: usb_hub_wq hub_event [ 162.958695][ T33] Call Trace: [ 162.962129][ T33] [ 162.965185][ T33] dump_stack_lvl+0x1bf/0x240 ./strace-static-x86_64: Process 4992 attached [pid 4992] set_robust_list(0x555555dc7660, 24) = 0 [ 162.970109][ T33] dump_stack+0x1e/0x20 [ 162.974477][ T33] panic+0x4d5/0xc70 [ 162.978629][ T33] ? add_taint+0x108/0x1a0 [ 162.983257][ T33] kmsan_report+0x2d0/0x2d0 [ 162.988074][ T33] ? __msan_warning+0x96/0x110 [ 162.993134][ T33] ? smsc95xx_eeprom_confirm_not_busy+0x1eb/0x360 [ 162.999833][ T33] ? smsc95xx_read_eeprom+0x59/0x670 [ 163.005383][ T33] ? smsc95xx_bind+0x6d8/0x22e0 [ 163.010490][ T33] ? usbnet_probe+0x100b/0x4060 [ 163.015551][ T33] ? usb_probe_interface+0xc75/0x1210 [pid 4992] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 4992] setpgid(0, 0) = 0 [pid 4992] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 4992] write(3, "1000", 4) = 4 [pid 4992] close(3) = 0 [pid 4992] openat(AT_FDCWD, "/dev/raw-gadget", O_RDWR) = 3 [pid 4992] ioctl(3, USB_RAW_IOCTL_INIT, 0x7ffd333e1430) = 0 [pid 4992] ioctl(3, UI_DEV_CREATE or USB_RAW_IOCTL_RUN, 0) = 0 [ 163.021182][ T33] ? really_probe+0x506/0xf40 [ 163.026132][ T33] ? __driver_probe_device+0x2a7/0x5d0 [ 163.031826][ T33] ? driver_probe_device+0x72/0x7b0 [ 163.037267][ T33] ? __device_attach_driver+0x55a/0x8f0 [ 163.043053][ T33] ? bus_for_each_drv+0x3ff/0x620 [ 163.048289][ T33] ? __device_attach+0x3bd/0x640 [ 163.053443][ T33] ? device_initial_probe+0x32/0x40 [ 163.058944][ T33] ? bus_probe_device+0x3d8/0x5a0 [ 163.064174][ T33] ? device_add+0x1700/0x1f20 [pid 4992] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffd333e1430) = 0 [ 163.069192][ T33] ? usb_set_configuration+0x31c9/0x38c0 [ 163.075081][ T33] ? usb_generic_driver_probe+0x109/0x2a0 [ 163.081056][ T33] ? usb_probe_device+0x290/0x4a0 [ 163.086337][ T33] ? really_probe+0x506/0xf40 [ 163.091242][ T33] ? __driver_probe_device+0x2a7/0x5d0 [ 163.096935][ T33] ? driver_probe_device+0x72/0x7b0 [ 163.102374][ T33] ? __device_attach_driver+0x55a/0x8f0 [ 163.108155][ T33] ? bus_for_each_drv+0x3ff/0x620 [ 163.113413][ T33] ? __device_attach+0x3bd/0x640 [ 163.118571][ T33] ? device_initial_probe+0x32/0x40 [ 163.123992][ T33] ? bus_probe_device+0x3d8/0x5a0 [ 163.129220][ T33] ? device_add+0x1700/0x1f20 [ 163.134157][ T33] ? usb_new_device+0x15f6/0x22f0 [ 163.139390][ T33] ? hub_event+0x53bc/0x7290 [ 163.144183][ T33] ? process_scheduled_works+0x104e/0x1e70 [ 163.150216][ T33] ? worker_thread+0xf45/0x1490 [ 163.155302][ T33] ? kthread+0x3e8/0x540 [ 163.159776][ T33] ? ret_from_fork+0x66/0x80 [ 163.164598][ T33] ? ret_from_fork_asm+0x11/0x20 [ 163.169768][ T33] ? _raw_spin_unlock_irqrestore+0x3f/0x60 [ 163.175814][ T33] ? __pm_runtime_idle+0x251/0x400 [ 163.181081][ T33] ? usb_autopm_put_interface+0xa3/0xe0 [ 163.186908][ T33] ? usbnet_read_cmd+0x354/0x3b0 [ 163.192070][ T33] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 163.198048][ T33] __msan_warning+0x96/0x110 [ 163.202935][ T33] smsc95xx_eeprom_confirm_not_busy+0x1eb/0x360 [ 163.209441][ T33] smsc95xx_read_eeprom+0x59/0x670 [ 163.214797][ T33] ? arch_get_platform_mac_address+0x16/0x30 [ 163.221003][ T33] ? platform_get_ethdev_address+0x1c4/0x230 [ 163.227168][ T33] smsc95xx_bind+0x6d8/0x22e0 [ 163.232100][ T33] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 163.238123][ T33] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 163.244110][ T33] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 163.250164][ T33] ? smsc95xx_start_tx_path+0x5f0/0x5f0 [ 163.256005][ T33] ? smsc95xx_start_tx_path+0x5f0/0x5f0 [ 163.261822][ T33] usbnet_probe+0x100b/0x4060 [ 163.266659][ T33] ? ktime_get_mono_fast_ns+0x337/0x400 [ 163.272505][ T33] ? usbnet_disconnect+0x7c0/0x7c0 [ 163.277871][ T33] usb_probe_interface+0xc75/0x1210 [ 163.283278][ T33] ? usb_register_driver+0x600/0x600 [ 163.288803][ T33] really_probe+0x506/0xf40 [ 163.293455][ T33] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 163.299706][ T33] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 163.305737][ T33] __driver_probe_device+0x2a7/0x5d0 [ 163.311217][ T33] driver_probe_device+0x72/0x7b0 [ 163.316483][ T33] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 163.322568][ T33] __device_attach_driver+0x55a/0x8f0 [ 163.328128][ T33] bus_for_each_drv+0x3ff/0x620 [ 163.333194][ T33] ? coredump_store+0xa0/0xa0 [ 163.338140][ T33] __device_attach+0x3bd/0x640 [ 163.343142][ T33] device_initial_probe+0x32/0x40 [ 163.348396][ T33] bus_probe_device+0x3d8/0x5a0 [ 163.353554][ T33] device_add+0x1700/0x1f20 [ 163.358234][ T33] usb_set_configuration+0x31c9/0x38c0 [ 163.363877][ T33] ? usb_set_configuration+0x911/0x38c0 [ 163.369723][ T33] usb_generic_driver_probe+0x109/0x2a0 [ 163.375491][ T33] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 163.381464][ T33] ? usb_choose_configuration+0xde0/0xde0 [ 163.387426][ T33] ? usb_choose_configuration+0xde0/0xde0 [ 163.393346][ T33] usb_probe_device+0x290/0x4a0 [ 163.398452][ T33] ? usb_register_device_driver+0x450/0x450 [ 163.404581][ T33] really_probe+0x506/0xf40 [ 163.409220][ T33] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 163.415628][ T33] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 163.421663][ T33] __driver_probe_device+0x2a7/0x5d0 [ 163.427216][ T33] driver_probe_device+0x72/0x7b0 [ 163.432483][ T33] ? kmsan_get_shadow_origin_ptr+0x4d/0xa0 [ 163.438501][ T33] __device_attach_driver+0x55a/0x8f0 [ 163.444091][ T33] bus_for_each_drv+0x3ff/0x620 [ 163.449163][ T33] ? coredump_store+0xa0/0xa0 [ 163.454086][ T33] __device_attach+0x3bd/0x640 [ 163.459088][ T33] device_initial_probe+0x32/0x40 [ 163.464259][ T33] bus_probe_device+0x3d8/0x5a0 [ 163.469235][ T33] device_add+0x1700/0x1f20 [ 163.473923][ T33] usb_new_device+0x15f6/0x22f0 [ 163.478914][ T33] hub_event+0x53bc/0x7290 [ 163.483500][ T33] ? led_work+0x740/0x740 [ 163.488123][ T33] process_scheduled_works+0x104e/0x1e70 [ 163.493961][ T33] worker_thread+0xf45/0x1490 [ 163.498868][ T33] kthread+0x3e8/0x540 [ 163.503295][ T33] ? pr_cont_work+0xce0/0xce0 [ 163.508258][ T33] ? kthread_blkcg+0x120/0x120 [ 163.513263][ T33] ret_from_fork+0x66/0x80 [ 163.517907][ T33] ? kthread_blkcg+0x120/0x120 [ 163.522999][ T33] ret_from_fork_asm+0x11/0x20 [ 163.528011][ T33] [ 163.531392][ T33] Kernel Offset: disabled [ 163.535887][ T33] Rebooting in 86400 seconds..