===================================================== BUG: KMSAN: uninit-value in skb_trim+0x1f8/0x280 net/core/skbuff.c:2063 skb_trim+0x1f8/0x280 net/core/skbuff.c:2063 ath9k_htc_rx_msg+0x63c/0xbb0 drivers/net/wireless/ath/ath9k/htc_hst.c:455 ath9k_hif_usb_rx_stream drivers/net/wireless/ath/ath9k/hif_usb.c:654 [inline] ath9k_hif_usb_rx_cb+0x1721/0x1df0 drivers/net/wireless/ath/ath9k/hif_usb.c:687 __usb_hcd_giveback_urb+0x6c6/0x930 drivers/usb/core/hcd.c:1670 usb_hcd_giveback_urb+0x1e2/0x7c0 drivers/usb/core/hcd.c:1747 dummy_timer+0x157a/0x51c0 drivers/usb/gadget/udc/dummy_hcd.c:1987 call_timer_fn+0x81/0x540 kernel/time/timer.c:1421 expire_timers+0x2f5/0x6d0 kernel/time/timer.c:1466 __run_timers+0x66b/0x9f0 kernel/time/timer.c:1734 run_timer_softirq+0x71/0xe0 kernel/time/timer.c:1747 __do_softirq+0x1ee/0x7c5 kernel/softirq.c:558 invoke_softirq+0xa4/0x130 kernel/softirq.c:432 __irq_exit_rcu kernel/softirq.c:637 [inline] irq_exit_rcu+0x76/0x130 kernel/softirq.c:649 sysvec_apic_timer_interrupt+0xa2/0xc0 arch/x86/kernel/apic/apic.c:1097 asm_sysvec_apic_timer_interrupt+0x12/0x20 __msan_metadata_ptr_for_load_8+0x2d/0x30 mm/kmsan/instrumentation.c:77 update_stack_state+0x2ac/0xa60 arch/x86/kernel/unwind_frame.c:218 unwind_next_frame+0x6d0/0xe50 arch/x86/kernel/unwind_frame.c:304 arch_stack_walk+0x320/0x3c0 arch/x86/kernel/stacktrace.c:25 stack_trace_save+0x117/0x1a0 kernel/stacktrace.c:122 kmsan_save_stack_with_flags mm/kmsan/core.c:80 [inline] kmsan_internal_poison_memory+0x45/0x90 mm/kmsan/core.c:65 kmsan_slab_alloc+0xe1/0x150 mm/kmsan/hooks.c:69 slab_post_alloc_hook mm/slab.h:737 [inline] slab_alloc_node mm/slub.c:3244 [inline] slab_alloc mm/slub.c:3252 [inline] kmem_cache_alloc+0x8d9/0x11a0 mm/slub.c:3257 skb_clone+0x376/0x640 net/core/skbuff.c:1519 do_one_broadcast net/netlink/af_netlink.c:1448 [inline] netlink_broadcast+0xf5f/0x2340 net/netlink/af_netlink.c:1514 uevent_net_broadcast_untagged lib/kobject_uevent.c:331 [inline] kobject_uevent_net_broadcast+0x8ca/0xe70 lib/kobject_uevent.c:409 kobject_uevent_env+0xf83/0x1400 lib/kobject_uevent.c:593 kobject_uevent+0x6f/0x80 lib/kobject_uevent.c:642 udc_bind_to_driver+0xbcb/0xc00 drivers/usb/gadget/udc/core.c:1515 usb_gadget_probe_driver+0x447/0x8f0 drivers/usb/gadget/udc/core.c:1567 raw_ioctl_run drivers/usb/gadget/legacy/raw_gadget.c:513 [inline] raw_ioctl+0x1abb/0x5c40 drivers/usb/gadget/legacy/raw_gadget.c:1214 vfs_ioctl fs/ioctl.c:51 [inline] __do_sys_ioctl fs/ioctl.c:874 [inline] __se_sys_ioctl+0x2df/0x4a0 fs/ioctl.c:860 __x64_sys_ioctl+0xd8/0x110 fs/ioctl.c:860 do_syscall_x64 arch/x86/entry/common.c:51 [inline] do_syscall_64+0x54/0xd0 arch/x86/entry/common.c:81 entry_SYSCALL_64_after_hwframe+0x44/0xae Uninit was created at: slab_post_alloc_hook mm/slab.h:737 [inline] slab_alloc_node mm/slub.c:3244 [inline] __kmalloc_node_track_caller+0xde3/0x14f0 mm/slub.c:4972 kmalloc_reserve net/core/skbuff.c:354 [inline] __alloc_skb+0x545/0xf90 net/core/skbuff.c:426 __netdev_alloc_skb+0x4b9/0x8c0 net/core/skbuff.c:494 __dev_alloc_skb include/linux/skbuff.h:2955 [inline] ath9k_hif_usb_rx_stream drivers/net/wireless/ath/ath9k/hif_usb.c:636 [inline] ath9k_hif_usb_rx_cb+0xead/0x1df0 drivers/net/wireless/ath/ath9k/hif_usb.c:687 __usb_hcd_giveback_urb+0x6c6/0x930 drivers/usb/core/hcd.c:1670 usb_hcd_giveback_urb+0x1e2/0x7c0 drivers/usb/core/hcd.c:1747 dummy_timer+0x157a/0x51c0 drivers/usb/gadget/udc/dummy_hcd.c:1987 call_timer_fn+0x81/0x540 kernel/time/timer.c:1421 expire_timers+0x2f5/0x6d0 kernel/time/timer.c:1466 __run_timers+0x66b/0x9f0 kernel/time/timer.c:1734 run_timer_softirq+0x71/0xe0 kernel/time/timer.c:1747 __do_softirq+0x1ee/0x7c5 kernel/softirq.c:558 CPU: 0 PID: 24431 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 =====================================================