[�[0;32m OK �[0m] Started Permit User Sessions.
[�[0;32m OK �[0m] Found device /dev/ttyS0.
[�[0;32m OK �[0m] Started getty on tty2-tty6 if dbus and logind are not available.
[�[0;32m OK �[0m] Started System Logging Service.
[�[0;31m*�[0;1;31m*�[0m�[0;31m* �[0m] A start job is running for OpenBSD …Shell server (1min 27s / 2min 45s)�[K[ �[0;31m*�[0;1;31m*�[0m�[0;31m* �[0m] A start job is running for OpenBSD …Shell server (1min 28s / 2min 45s)�[K[ �[0;31m*�[0;1;31m*�[0m�[0;31m* �[0m] A start job is running for OpenBSD …Shell server (1min 28s / 2min 45s)�[K[ �[0;31m*�[0;1;31m*�[0m�[0;31m*�[0m] A start job is running for OpenBSD …Shell server (1min 29s / 2min 45s)�[K[ �[0;31m*�[0;1;31m*�[0m] A start job is running for OpenBSD …ure Shell server (1min 31s / 3min)�[K[�[0;32m OK �[0m] Started OpenBSD Secure Shell server.
[�[0;32m OK �[0m] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch.
[�[0;32m OK �[0m] Started Getty on tty6.
[�[0;32m OK �[0m] Started Getty on tty5.
[�[0;32m OK �[0m] Started Getty on tty4.
[�[0;32m OK �[0m] Started Getty on tty3.
[�[0;32m OK �[0m] Started Getty on tty2.
[�[0;32m OK �[0m] Started Getty on tty1.
[�[0;32m OK �[0m] Started Serial Getty on ttyS0.
[�[0;32m OK �[0m] Reached target Login Prompts.
[�[0;32m OK �[0m] Reached target Multi-User System.
[�[0;32m OK �[0m] Reached target Graphical Interface.
Starting Update UTMP about System Runlevel Changes...
Starting Load/Save RF Kill Switch Status...
[�[0;32m OK �[0m] Started Update UTMP about System Runlevel Changes.
[�[0;32m OK �[0m] Started Load/Save RF Kill Switch Status.
Debian GNU/Linux 9 syzkaller ttyS0
Warning: Permanently added '10.128.0.44' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [ 143.692547][ T56] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[ 144.232524][ T56] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 144.241651][ T56] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 144.249973][ T56] usb 1-1: Product: syz
[ 144.254379][ T56] usb 1-1: Manufacturer: syz
[ 144.259097][ T56] usb 1-1: SerialNumber: syz
[ 144.303858][ T56] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 145.022256][ T1983] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 145.241967][ C1] =====================================================
[ 145.248946][ C1] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x28c/0x1f60
[ 145.251843][ C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 5.12.0-rc6-syzkaller #0
[ 145.251843][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 145.251843][ C1] Call Trace:
[ 145.251843][ C1] <IRQ>
[ 145.251843][ C1] dump_stack+0x24c/0x2e0
[ 145.251843][ C1] kmsan_report+0xfb/0x1e0
[ 145.251843][ C1] __msan_warning+0x5c/0xa0
[ 145.251843][ C1] ath9k_htc_rx_msg+0x28c/0x1f60
[ 145.251843][ C1] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 145.251843][ C1] ath9k_hif_usb_rx_cb+0x184e/0x1d20
[ 145.251843][ C1] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 145.251843][ C1] ? _raw_spin_unlock_irqrestore+0x37/0x80
[ 145.251843][ C1] ? kmsan_get_metadata+0x116/0x180
[ 145.251843][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 145.251843][ C1] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[ 145.251843][ C1] __usb_hcd_giveback_urb+0x6ff/0x930
[ 145.251843][ C1] ? kmsan_get_metadata+0x116/0x180
[ 145.251843][ C1] usb_hcd_giveback_urb+0x1cb/0x730
[ 145.251843][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 145.251843][ C1] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 145.251843][ C1] dummy_timer+0xda7/0x74f0
[ 145.251843][ C1] ? kmsan_get_metadata+0x116/0x180
[ 145.251843][ C1] ? kmsan_internal_set_origin+0x85/0xc0
[ 145.251843][ C1] ? dummy_free_streams+0x5b0/0x5b0
[ 145.251843][ C1] call_timer_fn+0x7d/0x450
[ 145.251843][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 145.251843][ C1] expire_timers+0x328/0x6c0
[ 145.251843][ C1] ? dummy_free_streams+0x5b0/0x5b0
[ 145.251843][ C1] __run_timers+0x624/0x9e0
[ 145.251843][ C1] ? __msan_metadata_ptr_for_load_1+0x10/0x20
[ 145.251843][ C1] ? irqtime_account_irq+0x5e/0x380
[ 145.251843][ C1] ? kmsan_get_metadata+0x116/0x180
[ 145.251843][ C1] ? migrate_timer_list+0x5f0/0x5f0
[ 145.251843][ C1] run_timer_softirq+0x2d/0x50
[ 145.433439][ T1985] usb 1-1: USB disconnect, device number 2
[ 145.251843][ C1] __do_softirq+0x1b9/0x715
[ 145.251843][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 145.451843][ C1] __irq_exit_rcu+0x22f/0x280
[ 145.451843][ C1] irq_exit_rcu+0xe/0x10
[ 145.451843][ C1] sysvec_apic_timer_interrupt+0xc6/0xf0
[ 145.451843][ C1] </IRQ>
[ 145.451843][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 145.451843][ C1] RIP: 0010:acpi_idle_enter+0x61d/0x760
[ 145.451843][ C1] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c ea 2b fb 0f 00 2d 9f 3a 6e 09 fb f4 <fa> e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 ef da ae fb e9 e5
[ 145.451843][ C1] RSP: 0018:ffff888101bf3c40 EFLAGS: 00000246
[ 145.506064][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000001017e9f40
[ 145.506064][ C1] RDX: ffff888101be9f40 RSI: 0000000000000000 RDI: 0000000000000000
[ 145.506064][ C1] RBP: ffff888101bf3cd8 R08: ffffffff869049ae R09: ffff88813fffa000
[ 145.506064][ C1] R10: 0000000000000002 R11: ffff888101be9f40 R12: 0000000000000000
[ 145.506064][ C1] R13: ffff8881423f6064 R14: 0000000000000000 R15: ffff888101bea9c8
[ 145.506064][ C1] ? acpi_idle_enter+0x5ee/0x760
[ 145.506064][ C1] ? acpi_idle_lpi_enter+0x160/0x160
[ 145.506064][ C1] cpuidle_enter_state+0x99e/0x1750
[ 145.506064][ C1] cpuidle_enter+0xe3/0x170
[ 145.506064][ C1] do_idle+0x5df/0x790
[ 145.506064][ C1] cpu_startup_entry+0x45/0x50
[ 145.506064][ C1] ? setup_APIC_timer+0x210/0x210
[ 145.506064][ C1] start_secondary+0xe9/0xf0
[ 145.506064][ C1] secondary_startup_64_no_verify+0xb0/0xbb
[ 145.506064][ C1]
[ 145.506064][ C1] Uninit was created at:
[ 145.506064][ C1] kmsan_internal_poison_shadow+0x5c/0xf0
[ 145.506064][ C1] kmsan_slab_alloc+0x8e/0xe0
[ 145.506064][ C1] __kmalloc_node_track_caller+0xa4f/0x1470
[ 145.506064][ C1] __alloc_skb+0x4dd/0xe90
[ 145.506064][ C1] __netdev_alloc_skb+0x45d/0x810
[ 145.506064][ C1] ath9k_hif_usb_rx_cb+0xe58/0x1d20
[ 145.506064][ C1] __usb_hcd_giveback_urb+0x6ff/0x930
[ 145.506064][ C1] usb_hcd_giveback_urb+0x1cb/0x730
[ 145.506064][ C1] dummy_timer+0xda7/0x74f0
[ 145.506064][ C1] call_timer_fn+0x7d/0x450
[ 145.506064][ C1] expire_timers+0x328/0x6c0
[ 145.506064][ C1] __run_timers+0x624/0x9e0
[ 145.506064][ C1] run_timer_softirq+0x2d/0x50
[ 145.506064][ C1] __do_softirq+0x1b9/0x715
[ 145.506064][ C1] =====================================================
[ 145.506064][ C1] Disabling lock debugging due to kernel taint
[ 145.506064][ C1] =====================================================
[ 145.506064][ C1] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x4c0/0x1f60
[ 145.506064][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B 5.12.0-rc6-syzkaller #0
[ 145.506064][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 145.506064][ C1] Call Trace:
[ 145.506064][ C1] <IRQ>
[ 145.506064][ C1] dump_stack+0x24c/0x2e0
[ 145.506064][ C1] kmsan_report+0xfb/0x1e0
[ 145.506064][ C1] __msan_warning+0x5c/0xa0
[ 145.506064][ C1] ath9k_htc_rx_msg+0x4c0/0x1f60
[ 145.506064][ C1] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 145.506064][ C1] ath9k_hif_usb_rx_cb+0x184e/0x1d20
[ 145.506064][ C1] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 145.506064][ C1] ? _raw_spin_unlock_irqrestore+0x37/0x80
[ 145.506064][ C1] ? kmsan_get_metadata+0x116/0x180
[ 145.506064][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 145.506064][ C1] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[ 145.506064][ C1] __usb_hcd_giveback_urb+0x6ff/0x930
[ 145.506064][ C1] ? kmsan_get_metadata+0x116/0x180
[ 145.506064][ C1] usb_hcd_giveback_urb+0x1cb/0x730
[ 145.506064][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 145.506064][ C1] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 145.506064][ C1] dummy_timer+0xda7/0x74f0
[ 145.506064][ C1] ? kmsan_get_metadata+0x116/0x180
[ 145.506064][ C1] ? kmsan_internal_set_origin+0x85/0xc0
[ 145.506064][ C1] ? dummy_free_streams+0x5b0/0x5b0
[ 145.506064][ C1] call_timer_fn+0x7d/0x450
[ 145.506064][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 145.506064][ C1] expire_timers+0x328/0x6c0
[ 145.506064][ C1] ? dummy_free_streams+0x5b0/0x5b0
[ 145.506064][ C1] __run_timers+0x624/0x9e0
[ 145.506064][ C1] ? __msan_metadata_ptr_for_load_1+0x10/0x20
[ 145.506064][ C1] ? irqtime_account_irq+0x5e/0x380
[ 145.506064][ C1] ? kmsan_get_metadata+0x116/0x180
[ 145.506064][ C1] ? migrate_timer_list+0x5f0/0x5f0
[ 145.506064][ C1] run_timer_softirq+0x2d/0x50
[ 145.506064][ C1] __do_softirq+0x1b9/0x715
[ 145.506064][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 145.506064][ C1] __irq_exit_rcu+0x22f/0x280
[ 145.506064][ C1] irq_exit_rcu+0xe/0x10
[ 145.506064][ C1] sysvec_apic_timer_interrupt+0xc6/0xf0
[ 145.506064][ C1] </IRQ>
[ 145.506064][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 145.506064][ C1] RIP: 0010:acpi_idle_enter+0x61d/0x760
[ 145.506064][ C1] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c ea 2b fb 0f 00 2d 9f 3a 6e 09 fb f4 <fa> e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 ef da ae fb e9 e5
[ 145.506064][ C1] RSP: 0018:ffff888101bf3c40 EFLAGS: 00000246
[ 145.506064][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000001017e9f40
[ 145.506064][ C1] RDX: ffff888101be9f40 RSI: 0000000000000000 RDI: 0000000000000000
[ 145.506064][ C1] RBP: ffff888101bf3cd8 R08: ffffffff869049ae R09: ffff88813fffa000
[ 145.506064][ C1] R10: 0000000000000002 R11: ffff888101be9f40 R12: 0000000000000000
[ 145.506064][ C1] R13: ffff8881423f6064 R14: 0000000000000000 R15: ffff888101bea9c8
[ 145.506064][ C1] ? acpi_idle_enter+0x5ee/0x760
[ 145.506064][ C1] ? acpi_idle_lpi_enter+0x160/0x160
[ 145.506064][ C1] cpuidle_enter_state+0x99e/0x1750
[ 145.506064][ C1] cpuidle_enter+0xe3/0x170
[ 145.506064][ C1] do_idle+0x5df/0x790
[ 145.506064][ C1] cpu_startup_entry+0x45/0x50
[ 145.506064][ C1] ? setup_APIC_timer+0x210/0x210
[ 145.506064][ C1] start_secondary+0xe9/0xf0
[ 145.506064][ C1] secondary_startup_64_no_verify+0xb0/0xbb
[ 145.506064][ C1]
[ 145.506064][ C1] Uninit was created at:
[ 145.506064][ C1] kmsan_internal_poison_shadow+0x5c/0xf0
[ 145.506064][ C1] kmsan_slab_alloc+0x8e/0xe0
[ 145.506064][ C1] __kmalloc_node_track_caller+0xa4f/0x1470
[ 145.506064][ C1] __alloc_skb+0x4dd/0xe90
[ 145.506064][ C1] __netdev_alloc_skb+0x45d/0x810
[ 145.506064][ C1] ath9k_hif_usb_rx_cb+0xe58/0x1d20
[ 145.506064][ C1] __usb_hcd_giveback_urb+0x6ff/0x930
[ 145.506064][ C1] usb_hcd_giveback_urb+0x1cb/0x730
[ 145.506064][ C1] dummy_timer+0xda7/0x74f0
[ 145.506064][ C1] call_timer_fn+0x7d/0x450
[ 145.506064][ C1] expire_timers+0x328/0x6c0
[ 145.506064][ C1] __run_timers+0x624/0x9e0
[ 145.506064][ C1] run_timer_softirq+0x2d/0x50
[ 145.506064][ C1] __do_softirq+0x1b9/0x715
[ 145.506064][ C1] =====================================================
[ 145.506064][ C1] =====================================================
[ 145.506064][ C1] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x7b8/0x1f60
[ 145.506064][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B 5.12.0-rc6-syzkaller #0
[ 145.506064][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 145.506064][ C1] Call Trace:
[ 145.506064][ C1] <IRQ>
[ 145.506064][ C1] dump_stack+0x24c/0x2e0
[ 145.506064][ C1] kmsan_report+0xfb/0x1e0
[ 145.506064][ C1] __msan_warning+0x5c/0xa0
[ 145.506064][ C1] ath9k_htc_rx_msg+0x7b8/0x1f60
[ 145.506064][ C1] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 145.506064][ C1] ath9k_hif_usb_rx_cb+0x184e/0x1d20
[ 145.506064][ C1] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 145.506064][ C1] ? _raw_spin_unlock_irqrestore+0x37/0x80
[ 145.506064][ C1] ? kmsan_get_metadata+0x116/0x180
[ 145.506064][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 145.506064][ C1] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[ 145.506064][ C1] __usb_hcd_giveback_urb+0x6ff/0x930
[ 145.506064][ C1] ? kmsan_get_metadata+0x116/0x180
[ 145.506064][ C1] usb_hcd_giveback_urb+0x1cb/0x730
[ 145.506064][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 145.506064][ C1] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 145.506064][ C1] dummy_timer+0xda7/0x74f0
[ 145.506064][ C1] ? kmsan_get_metadata+0x116/0x180
[ 145.506064][ C1] ? kmsan_internal_set_origin+0x85/0xc0
[ 145.506064][ C1] ? dummy_free_streams+0x5b0/0x5b0
[ 145.506064][ C1] call_timer_fn+0x7d/0x450
[ 145.506064][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 145.506064][ C1] expire_timers+0x328/0x6c0
[ 145.506064][ C1] ? dummy_free_streams+0x5b0/0x5b0
[ 145.506064][ C1] __run_timers+0x624/0x9e0
[ 145.506064][ C1] ? __msan_metadata_ptr_for_load_1+0x10/0x20
[ 145.506064][ C1] ? irqtime_account_irq+0x5e/0x380
[ 145.506064][ C1] ? kmsan_get_metadata+0x116/0x180
[ 145.506064][ C1] ? migrate_timer_list+0x5f0/0x5f0
[ 145.506064][ C1] run_timer_softirq+0x2d/0x50
[ 145.506064][ C1] __do_softirq+0x1b9/0x715
[ 145.506064][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 145.506064][ C1] __irq_exit_rcu+0x22f/0x280
[ 145.506064][ C1] irq_exit_rcu+0xe/0x10
[ 145.506064][ C1] sysvec_apic_timer_interrupt+0xc6/0xf0
[ 145.506064][ C1] </IRQ>
[ 145.506064][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 145.506064][ C1] RIP: 0010:acpi_idle_enter+0x61d/0x760
[ 145.506064][ C1] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c ea 2b fb 0f 00 2d 9f 3a 6e 09 fb f4 <fa> e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 ef da ae fb e9 e5
[ 145.506064][ C1] RSP: 0018:ffff888101bf3c40 EFLAGS: 00000246
[ 145.506064][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000001017e9f40
[ 145.506064][ C1] RDX: ffff888101be9f40 RSI: 0000000000000000 RDI: 0000000000000000
[ 145.506064][ C1] RBP: ffff888101bf3cd8 R08: ffffffff869049ae R09: ffff88813fffa000
[ 145.506064][ C1] R10: 0000000000000002 R11: ffff888101be9f40 R12: 0000000000000000
[ 145.506064][ C1] R13: ffff8881423f6064 R14: 0000000000000000 R15: ffff888101bea9c8
[ 145.506064][ C1] ? acpi_idle_enter+0x5ee/0x760
[ 145.506064][ C1] ? acpi_idle_lpi_enter+0x160/0x160
[ 145.506064][ C1] cpuidle_enter_state+0x99e/0x1750
[ 145.506064][ C1] cpuidle_enter+0xe3/0x170
[ 145.506064][ C1] do_idle+0x5df/0x790
[ 145.506064][ C1] cpu_startup_entry+0x45/0x50
[ 145.506064][ C1] ? setup_APIC_timer+0x210/0x210
[ 145.506064][ C1] start_secondary+0xe9/0xf0
[ 145.506064][ C1] secondary_startup_64_no_verify+0xb0/0xbb
[ 145.506064][ C1]
[ 145.506064][ C1] Uninit was created at:
[ 145.506064][ C1] kmsan_internal_poison_shadow+0x5c/0xf0
[ 145.506064][ C1] kmsan_slab_alloc+0x8e/0xe0
[ 145.506064][ C1] __kmalloc_node_track_caller+0xa4f/0x1470
[ 145.506064][ C1] __alloc_skb+0x4dd/0xe90
[ 145.506064][ C1] __netdev_alloc_skb+0x45d/0x810
[ 145.506064][ C1] ath9k_hif_usb_rx_cb+0xe58/0x1d20
[ 145.506064][ C1] __usb_hcd_giveback_urb+0x6ff/0x930
[ 145.506064][ C1] usb_hcd_giveback_urb+0x1cb/0x730
[ 145.506064][ C1] dummy_timer+0xda7/0x74f0
[ 145.506064][ C1] call_timer_fn+0x7d/0x450
[ 145.506064][ C1] expire_timers+0x328/0x6c0
[ 145.506064][ C1] __run_timers+0x624/0x9e0
[ 145.506064][ C1] run_timer_softirq+0x2d/0x50
[ 145.506064][ C1] __do_softirq+0x1b9/0x715
[ 145.506064][ C1] =====================================================
[ 145.506064][ C1] =====================================================
[ 145.506064][ C1] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x80c/0x1f60
[ 145.506064][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B 5.12.0-rc6-syzkaller #0
[ 145.506064][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 145.506064][ C1] Call Trace:
[ 145.506064][ C1] <IRQ>
[ 145.506064][ C1] dump_stack+0x24c/0x2e0
[ 145.506064][ C1] kmsan_report+0xfb/0x1e0
[ 145.506064][ C1] __msan_warning+0x5c/0xa0
[ 145.506064][ C1] ath9k_htc_rx_msg+0x80c/0x1f60
[ 145.506064][ C1] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 145.506064][ C1] ath9k_hif_usb_rx_cb+0x184e/0x1d20
[ 145.506064][ C1] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 145.506064][ C1] ? _raw_spin_unlock_irqrestore+0x37/0x80
[ 145.506064][ C1] ? kmsan_get_metadata+0x116/0x180
[ 145.506064][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 145.506064][ C1] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[ 145.506064][ C1] __usb_hcd_giveback_urb+0x6ff/0x930
[ 145.506064][ C1] ? kmsan_get_metadata+0x116/0x180
[ 145.506064][ C1] usb_hcd_giveback_urb+0x1cb/0x730
[ 145.506064][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 145.506064][ C1] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 145.506064][ C1] dummy_timer+0xda7/0x74f0
[ 145.506064][ C1] ? kmsan_get_metadata+0x116/0x180
[ 145.506064][ C1] ? kmsan_internal_set_origin+0x85/0xc0
[ 145.506064][ C1] ? dummy_free_streams+0x5b0/0x5b0
[ 145.506064][ C1] call_timer_fn+0x7d/0x450
[ 145.506064][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 145.506064][ C1] expire_timers+0x328/0x6c0
[ 145.506064][ C1] ? dummy_free_streams+0x5b0/0x5b0
[ 145.506064][ C1] __run_timers+0x624/0x9e0
[ 145.506064][ C1] ? __msan_metadata_ptr_for_load_1+0x10/0x20
[ 145.506064][ C1] ? irqtime_account_irq+0x5e/0x380
[ 145.506064][ C1] ? kmsan_get_metadata+0x116/0x180
[ 145.506064][ C1] ? migrate_timer_list+0x5f0/0x5f0
[ 145.506064][ C1] run_timer_softirq+0x2d/0x50
[ 145.506064][ C1] __do_softirq+0x1b9/0x715
[ 145.506064][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 145.506064][ C1] __irq_exit_rcu+0x22f/0x280
[ 145.506064][ C1] irq_exit_rcu+0xe/0x10
[ 145.506064][ C1] sysvec_apic_timer_interrupt+0xc6/0xf0
[ 145.506064][ C1] </IRQ>
[ 145.506064][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 145.506064][ C1] RIP: 0010:acpi_idle_enter+0x61d/0x760
[ 145.506064][ C1] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c ea 2b fb 0f 00 2d 9f 3a 6e 09 fb f4 <fa> e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 ef da ae fb e9 e5
[ 145.506064][ C1] RSP: 0018:ffff888101bf3c40 EFLAGS: 00000246
[ 145.506064][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000001017e9f40
[ 145.506064][ C1] RDX: ffff888101be9f40 RSI: 0000000000000000 RDI: 0000000000000000
[ 145.506064][ C1] RBP: ffff888101bf3cd8 R08: ffffffff869049ae R09: ffff88813fffa000
[ 145.506064][ C1] R10: 0000000000000002 R11: ffff888101be9f40 R12: 0000000000000000
[ 145.506064][ C1] R13: ffff8881423f6064 R14: 0000000000000000 R15: ffff888101bea9c8
[ 145.506064][ C1] ? acpi_idle_enter+0x5ee/0x760
[ 145.506064][ C1] ? acpi_idle_lpi_enter+0x160/0x160
[ 145.506064][ C1] cpuidle_enter_state+0x99e/0x1750
[ 145.506064][ C1] cpuidle_enter+0xe3/0x170
[ 145.506064][ C1] do_idle+0x5df/0x790
[ 145.506064][ C1] cpu_startup_entry+0x45/0x50
[ 145.506064][ C1] ? setup_APIC_timer+0x210/0x210
[ 145.506064][ C1] start_secondary+0xe9/0xf0
[ 145.506064][ C1] secondary_startup_64_no_verify+0xb0/0xbb
[ 145.506064][ C1]
[ 145.506064][ C1] Uninit was created at:
[ 145.506064][ C1] kmsan_internal_poison_shadow+0x5c/0xf0
[ 145.506064][ C1] kmsan_slab_alloc+0x8e/0xe0
[ 145.506064][ C1] __kmalloc_node_track_caller+0xa4f/0x1470
[ 145.506064][ C1] __alloc_skb+0x4dd/0xe90
[ 145.506064][ C1] __netdev_alloc_skb+0x45d/0x810
[ 145.506064][ C1] ath9k_hif_usb_rx_cb+0xe58/0x1d20
[ 145.506064][ C1] __usb_hcd_giveback_urb+0x6ff/0x930
[ 145.506064][ C1] usb_hcd_giveback_urb+0x1cb/0x730
[ 145.506064][ C1] dummy_timer+0xda7/0x74f0
[ 145.506064][ C1] call_timer_fn+0x7d/0x450
[ 145.506064][ C1] expire_timers+0x328/0x6c0
[ 145.506064][ C1] __run_timers+0x624/0x9e0
[ 145.506064][ C1] run_timer_softirq+0x2d/0x50
[ 145.506064][ C1] __do_softirq+0x1b9/0x715
[ 145.506064][ C1] =====================================================
[ 145.506064][ C1] =====================================================
[ 145.506064][ C1] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x96f/0x1f60
[ 145.506064][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B 5.12.0-rc6-syzkaller #0
[ 145.506064][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 145.506064][ C1] Call Trace:
[ 145.506064][ C1] <IRQ>
[ 145.506064][ C1] dump_stack+0x24c/0x2e0
[ 145.506064][ C1] kmsan_report+0xfb/0x1e0
[ 145.506064][ C1] __msan_warning+0x5c/0xa0
[ 145.506064][ C1] ath9k_htc_rx_msg+0x96f/0x1f60
[ 145.506064][ C1] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 145.506064][ C1] ath9k_hif_usb_rx_cb+0x184e/0x1d20
[ 145.506064][ C1] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 145.506064][ C1] ? _raw_spin_unlock_irqrestore+0x37/0x80
[ 145.506064][ C1] ? kmsan_get_metadata+0x116/0x180
[ 145.506064][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 145.506064][ C1] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[ 145.506064][ C1] __usb_hcd_giveback_urb+0x6ff/0x930
[ 145.506064][ C1] ? kmsan_get_metadata+0x116/0x180
[ 145.506064][ C1] usb_hcd_giveback_urb+0x1cb/0x730
[ 145.506064][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 145.506064][ C1] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 145.506064][ C1] dummy_timer+0xda7/0x74f0
[ 145.506064][ C1] ? kmsan_get_metadata+0x116/0x180
[ 145.506064][ C1] ? kmsan_internal_set_origin+0x85/0xc0
[ 145.506064][ C1] ? dummy_free_streams+0x5b0/0x5b0
[ 145.506064][ C1] call_timer_fn+0x7d/0x450
[ 145.506064][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 145.506064][ C1] expire_timers+0x328/0x6c0
[ 145.506064][ C1] ? dummy_free_streams+0x5b0/0x5b0
[ 145.506064][ C1] __run_timers+0x624/0x9e0
[ 145.506064][ C1] ? __msan_metadata_ptr_for_load_1+0x10/0x20
[ 145.506064][ C1] ? irqtime_account_irq+0x5e/0x380
[ 145.506064][ C1] ? kmsan_get_metadata+0x116/0x180
[ 145.506064][ C1] ? migrate_timer_list+0x5f0/0x5f0
[ 145.506064][ C1] run_timer_softirq+0x2d/0x50
[ 145.506064][ C1] __do_softirq+0x1b9/0x715
[ 145.506064][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 145.506064][ C1] __irq_exit_rcu+0x22f/0x280
[ 145.506064][ C1] irq_exit_rcu+0xe/0x10
[ 145.506064][ C1] sysvec_apic_timer_interrupt+0xc6/0xf0
[ 145.506064][ C1] </IRQ>
[ 145.506064][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 145.506064][ C1] RIP: 0010:acpi_idle_enter+0x61d/0x760
[ 145.506064][ C1] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c ea 2b fb 0f 00 2d 9f 3a 6e 09 fb f4 <fa> e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 ef da ae fb e9 e5
[ 145.506064][ C1] RSP: 0018:ffff888101bf3c40 EFLAGS: 00000246
[ 145.506064][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000001017e9f40
[ 145.506064][ C1] RDX: ffff888101be9f40 RSI: 0000000000000000 RDI: 0000000000000000
[ 145.506064][ C1] RBP: ffff888101bf3cd8 R08: ffffffff869049ae R09: ffff88813fffa000
[ 145.506064][ C1] R10: 0000000000000002 R11: ffff888101be9f40 R12: 0000000000000000
[ 145.506064][ C1] R13: ffff8881423f6064 R14: 0000000000000000 R15: ffff888101bea9c8
[ 145.506064][ C1] ? acpi_idle_enter+0x5ee/0x760
[ 145.506064][ C1] ? acpi_idle_lpi_enter+0x160/0x160
[ 145.506064][ C1] cpuidle_enter_state+0x99e/0x1750
[ 145.506064][ C1] cpuidle_enter+0xe3/0x170
[ 145.506064][ C1] do_idle+0x5df/0x790
[ 145.506064][ C1] cpu_startup_entry+0x45/0x50
[ 145.506064][ C1] ? setup_APIC_timer+0x210/0x210
[ 145.506064][ C1] start_secondary+0xe9/0xf0
[ 145.506064][ C1] secondary_startup_64_no_verify+0xb0/0xbb
[ 145.506064][ C1]
[ 145.506064][ C1] Uninit was created at:
[ 145.506064][ C1] kmsan_internal_poison_shadow+0x5c/0xf0
[ 145.506064][ C1] kmsan_slab_alloc+0x8e/0xe0
[ 145.506064][ C1] __kmalloc_node_track_caller+0xa4f/0x1470
[ 145.506064][ C1] __alloc_skb+0x4dd/0xe90
[ 145.506064][ C1] __netdev_alloc_skb+0x45d/0x810
[ 145.506064][ C1] ath9k_hif_usb_rx_cb+0xe58/0x1d20
executing program
[ 145.506064][ C1] __usb_hcd_giveback_urb+0x6ff/0x930
[ 145.506064][ C1] usb_hcd_giveback_urb+0x1cb/0x730
[ 145.506064][ C1] dummy_timer+0xda7/0x74f0
[ 145.506064][ C1] call_timer_fn+0x7d/0x450
[ 145.506064][ C1] expire_timers+0x328/0x6c0
[ 145.506064][ C1] __run_timers+0x624/0x9e0
[ 145.506064][ C1] run_timer_softirq+0x2d/0x50
[ 145.506064][ C1] __do_softirq+0x1b9/0x715
[ 145.506064][ C1] =====================================================
[ 147.400897][ T1983] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive
[ 147.408169][ T1983] ath9k_htc: Failed to initialize the device
[ 147.423038][ T1985] usb 1-1: ath9k_htc: USB layer deinitialized
[ 147.792102][ T1985] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[ 148.322259][ T1985] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 148.331384][ T1985] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 148.339596][ T1985] usb 1-1: Product: syz
[ 148.344037][ T1985] usb 1-1: Manufacturer: syz
[ 148.348712][ T1985] usb 1-1: SerialNumber: syz
[ 148.413541][ T1985] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 149.022240][ T7] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 149.242030][ C0] =====================================================
[ 149.248993][ C0] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x28c/0x1f60
[ 149.252014][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G B 5.12.0-rc6-syzkaller #0
[ 149.252014][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 149.252014][ C0] Call Trace:
[ 149.252014][ C0] <IRQ>
[ 149.252014][ C0] dump_stack+0x24c/0x2e0
[ 149.252014][ C0] kmsan_report+0xfb/0x1e0
[ 149.252014][ C0] __msan_warning+0x5c/0xa0
[ 149.292383][ C0] ath9k_htc_rx_msg+0x28c/0x1f60
[ 149.292383][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 149.292383][ C0] ath9k_hif_usb_rx_cb+0x184e/0x1d20
[ 149.292383][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 149.292383][ C0] ? _raw_spin_unlock_irqrestore+0x37/0x80
[ 149.292383][ C0] ? kmsan_get_metadata+0x116/0x180
[ 149.292383][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 149.332737][ C0] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[ 149.332737][ C0] __usb_hcd_giveback_urb+0x6ff/0x930
[ 149.332737][ C0] ? kmsan_get_metadata+0x116/0x180
[ 149.332737][ C0] usb_hcd_giveback_urb+0x1cb/0x730
[ 149.332737][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 149.332737][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 149.332737][ C0] dummy_timer+0xda7/0x74f0
[ 149.371941][ C0] ? kmsan_get_metadata+0x116/0x180
[ 149.371941][ C0] ? kmsan_get_metadata+0x116/0x180
[ 149.371941][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 149.371941][ C0] ? dummy_free_streams+0x5b0/0x5b0
[ 149.371941][ C0] call_timer_fn+0x7d/0x450
[ 149.371941][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 149.371941][ C0] expire_timers+0x328/0x6c0
[ 149.371941][ C0] ? dummy_free_streams+0x5b0/0x5b0
[ 149.371941][ C0] __run_timers+0x624/0x9e0
[ 149.371941][ C0] ? __msan_metadata_ptr_for_load_1+0x10/0x20
[ 149.371941][ C0] ? irqtime_account_irq+0x5e/0x380
[ 149.371941][ C0] ? kmsan_get_metadata+0x116/0x180
[ 149.371941][ C0] ? migrate_timer_list+0x5f0/0x5f0
[ 149.371941][ C0] run_timer_softirq+0x2d/0x50
[ 149.371941][ C0] __do_softirq+0x1b9/0x715
[ 149.371941][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 149.371941][ C0] __irq_exit_rcu+0x22f/0x280
[ 149.371941][ C0] irq_exit_rcu+0xe/0x10
[ 149.371941][ C0] sysvec_apic_timer_interrupt+0xc6/0xf0
[ 149.371941][ C0] </IRQ>
[ 149.371941][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 149.371941][ C0] RIP: 0010:acpi_idle_enter+0x61d/0x760
[ 149.371941][ C0] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c ea 2b fb 0f 00 2d 9f 3a 6e 09 fb f4 <fa> e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 ef da ae fb e9 e5
[ 149.371941][ C0] RSP: 0018:ffffffff91603b70 EFLAGS: 00000246
[ 149.371941][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000023ead6040
[ 149.371941][ C0] RDX: ffffffff91631040 RSI: 0000000000000000 RDI: 0000000000000000
[ 149.371941][ C0] RBP: ffffffff91603c08 R08: ffffffff869049ae R09: ffff88813fffa000
[ 149.371941][ C0] R10: 0000000000000002 R11: ffffffff91631040 R12: 0000000000000000
[ 149.371941][ C0] R13: ffff8881423f5c64 R14: 0000000000000000 R15: ffffffff91631ac8
[ 149.371941][ C0] ? acpi_idle_enter+0x5ee/0x760
[ 149.371941][ C0] ? acpi_idle_lpi_enter+0x160/0x160
[ 149.371941][ C0] cpuidle_enter_state+0x99e/0x1750
[ 149.371941][ C0] cpuidle_enter+0xe3/0x170
[ 149.371941][ C0] do_idle+0x5df/0x790
[ 149.371941][ C0] cpu_startup_entry+0x45/0x50
[ 149.371941][ C0] rest_init+0x1c8/0x1f0
[ 149.371941][ C0] arch_call_rest_init+0x13/0x15
[ 149.371941][ C0] start_kernel+0xa17/0xbd8
[ 149.371941][ C0] x86_64_start_reservations+0x2a/0x2c
[ 149.371941][ C0] x86_64_start_kernel+0x86/0x89
[ 149.371941][ C0] secondary_startup_64_no_verify+0xb0/0xbb
[ 149.371941][ C0]
[ 149.371941][ C0] Uninit was created at:
[ 149.371941][ C0] kmsan_internal_poison_shadow+0x5c/0xf0
[ 149.371941][ C0] kmsan_slab_alloc+0x8e/0xe0
[ 149.371941][ C0] __kmalloc_node_track_caller+0xa4f/0x1470
[ 149.371941][ C0] __alloc_skb+0x4dd/0xe90
[ 149.371941][ C0] __netdev_alloc_skb+0x45d/0x810
[ 149.371941][ C0] ath9k_hif_usb_rx_cb+0xe58/0x1d20
[ 149.371941][ C0] __usb_hcd_giveback_urb+0x6ff/0x930
[ 149.371941][ C0] usb_hcd_giveback_urb+0x1cb/0x730
[ 149.371941][ C0] dummy_timer+0xda7/0x74f0
[ 149.371941][ C0] call_timer_fn+0x7d/0x450
[ 149.371941][ C0] expire_timers+0x328/0x6c0
[ 149.371941][ C0] __run_timers+0x624/0x9e0
[ 149.371941][ C0] run_timer_softirq+0x2d/0x50
[ 149.371941][ C0] __do_softirq+0x1b9/0x715
[ 149.371941][ C0] =====================================================
[ 149.371941][ C0] =====================================================
[ 149.371941][ C0] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x4c0/0x1f60
[ 149.371941][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G B 5.12.0-rc6-syzkaller #0
[ 149.371941][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 149.371941][ C0] Call Trace:
[ 149.371941][ C0] <IRQ>
[ 149.371941][ C0] dump_stack+0x24c/0x2e0
[ 149.371941][ C0] kmsan_report+0xfb/0x1e0
[ 149.371941][ C0] __msan_warning+0x5c/0xa0
[ 149.371941][ C0] ath9k_htc_rx_msg+0x4c0/0x1f60
[ 149.371941][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 149.371941][ C0] ath9k_hif_usb_rx_cb+0x184e/0x1d20
[ 149.371941][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 149.371941][ C0] ? _raw_spin_unlock_irqrestore+0x37/0x80
[ 149.371941][ C0] ? kmsan_get_metadata+0x116/0x180
[ 149.371941][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 149.371941][ C0] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[ 149.371941][ C0] __usb_hcd_giveback_urb+0x6ff/0x930
[ 149.371941][ C0] ? kmsan_get_metadata+0x116/0x180
[ 149.371941][ C0] usb_hcd_giveback_urb+0x1cb/0x730
[ 149.371941][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 149.371941][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 149.371941][ C0] dummy_timer+0xda7/0x74f0
[ 149.371941][ C0] ? kmsan_get_metadata+0x116/0x180
[ 149.371941][ C0] ? kmsan_get_metadata+0x116/0x180
[ 149.371941][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 149.371941][ C0] ? dummy_free_streams+0x5b0/0x5b0
[ 149.371941][ C0] call_timer_fn+0x7d/0x450
[ 149.371941][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 149.371941][ C0] expire_timers+0x328/0x6c0
[ 149.371941][ C0] ? dummy_free_streams+0x5b0/0x5b0
[ 149.371941][ C0] __run_timers+0x624/0x9e0
[ 149.371941][ C0] ? __msan_metadata_ptr_for_load_1+0x10/0x20
[ 149.371941][ C0] ? irqtime_account_irq+0x5e/0x380
[ 149.371941][ C0] ? kmsan_get_metadata+0x116/0x180
[ 149.371941][ C0] ? migrate_timer_list+0x5f0/0x5f0
[ 149.371941][ C0] run_timer_softirq+0x2d/0x50
[ 149.371941][ C0] __do_softirq+0x1b9/0x715
[ 149.371941][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 149.371941][ C0] __irq_exit_rcu+0x22f/0x280
[ 149.371941][ C0] irq_exit_rcu+0xe/0x10
[ 149.371941][ C0] sysvec_apic_timer_interrupt+0xc6/0xf0
[ 149.371941][ C0] </IRQ>
[ 149.371941][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 149.371941][ C0] RIP: 0010:acpi_idle_enter+0x61d/0x760
[ 149.371941][ C0] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c ea 2b fb 0f 00 2d 9f 3a 6e 09 fb f4 <fa> e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 ef da ae fb e9 e5
[ 149.952050][ C0] RSP: 0018:ffffffff91603b70 EFLAGS: 00000246
[ 149.952050][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000023ead6040
[ 149.952050][ C0] RDX: ffffffff91631040 RSI: 0000000000000000 RDI: 0000000000000000
[ 149.952050][ C0] RBP: ffffffff91603c08 R08: ffffffff869049ae R09: ffff88813fffa000
[ 149.952050][ C0] R10: 0000000000000002 R11: ffffffff91631040 R12: 0000000000000000
[ 149.952050][ C0] R13: ffff8881423f5c64 R14: 0000000000000000 R15: ffffffff91631ac8
[ 149.952050][ C0] ? acpi_idle_enter+0x5ee/0x760
[ 149.952050][ C0] ? acpi_idle_lpi_enter+0x160/0x160
[ 149.952050][ C0] cpuidle_enter_state+0x99e/0x1750
[ 149.952050][ C0] cpuidle_enter+0xe3/0x170
[ 149.952050][ C0] do_idle+0x5df/0x790
[ 149.952050][ C0] cpu_startup_entry+0x45/0x50
[ 149.952050][ C0] rest_init+0x1c8/0x1f0
[ 149.952050][ C0] arch_call_rest_init+0x13/0x15
[ 149.952050][ C0] start_kernel+0xa17/0xbd8
[ 149.952050][ C0] x86_64_start_reservations+0x2a/0x2c
[ 149.952050][ C0] x86_64_start_kernel+0x86/0x89
[ 149.952050][ C0] secondary_startup_64_no_verify+0xb0/0xbb
[ 149.952050][ C0]
[ 149.952050][ C0] Uninit was created at:
[ 149.952050][ C0] kmsan_internal_poison_shadow+0x5c/0xf0
[ 149.952050][ C0] kmsan_slab_alloc+0x8e/0xe0
[ 149.952050][ C0] __kmalloc_node_track_caller+0xa4f/0x1470
[ 149.952050][ C0] __alloc_skb+0x4dd/0xe90
[ 149.952050][ C0] __netdev_alloc_skb+0x45d/0x810
[ 149.952050][ C0] ath9k_hif_usb_rx_cb+0xe58/0x1d20
[ 149.952050][ C0] __usb_hcd_giveback_urb+0x6ff/0x930
[ 149.952050][ C0] usb_hcd_giveback_urb+0x1cb/0x730
[ 149.952050][ C0] dummy_timer+0xda7/0x74f0
[ 149.952050][ C0] call_timer_fn+0x7d/0x450
[ 149.952050][ C0] expire_timers+0x328/0x6c0
[ 149.952050][ C0] __run_timers+0x624/0x9e0
[ 149.952050][ C0] run_timer_softirq+0x2d/0x50
[ 149.952050][ C0] __do_softirq+0x1b9/0x715
[ 149.952050][ C0] =====================================================
[ 149.952050][ C0] =====================================================
[ 149.952050][ C0] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x7b8/0x1f60
[ 149.952050][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G B 5.12.0-rc6-syzkaller #0
[ 149.952050][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 149.952050][ C0] Call Trace:
[ 149.952050][ C0] <IRQ>
[ 149.952050][ C0] dump_stack+0x24c/0x2e0
[ 149.952050][ C0] kmsan_report+0xfb/0x1e0
[ 149.952050][ C0] __msan_warning+0x5c/0xa0
[ 149.952050][ C0] ath9k_htc_rx_msg+0x7b8/0x1f60
[ 149.952050][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 149.952050][ C0] ath9k_hif_usb_rx_cb+0x184e/0x1d20
[ 149.952050][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 149.952050][ C0] ? _raw_spin_unlock_irqrestore+0x37/0x80
[ 149.952050][ C0] ? kmsan_get_metadata+0x116/0x180
[ 149.952050][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 149.952050][ C0] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[ 149.952050][ C0] __usb_hcd_giveback_urb+0x6ff/0x930
[ 149.952050][ C0] ? kmsan_get_metadata+0x116/0x180
[ 149.952050][ C0] usb_hcd_giveback_urb+0x1cb/0x730
[ 149.952050][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 149.952050][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 149.952050][ C0] dummy_timer+0xda7/0x74f0
[ 149.952050][ C0] ? kmsan_get_metadata+0x116/0x180
[ 149.952050][ C0] ? kmsan_get_metadata+0x116/0x180
[ 149.952050][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 149.952050][ C0] ? dummy_free_streams+0x5b0/0x5b0
[ 149.952050][ C0] call_timer_fn+0x7d/0x450
[ 149.952050][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 149.952050][ C0] expire_timers+0x328/0x6c0
[ 149.952050][ C0] ? dummy_free_streams+0x5b0/0x5b0
[ 149.952050][ C0] __run_timers+0x624/0x9e0
[ 149.952050][ C0] ? __msan_metadata_ptr_for_load_1+0x10/0x20
[ 149.952050][ C0] ? irqtime_account_irq+0x5e/0x380
[ 149.952050][ C0] ? kmsan_get_metadata+0x116/0x180
[ 149.952050][ C0] ? migrate_timer_list+0x5f0/0x5f0
[ 149.952050][ C0] run_timer_softirq+0x2d/0x50
[ 149.952050][ C0] __do_softirq+0x1b9/0x715
[ 149.952050][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 149.952050][ C0] __irq_exit_rcu+0x22f/0x280
[ 149.952050][ C0] irq_exit_rcu+0xe/0x10
[ 149.952050][ C0] sysvec_apic_timer_interrupt+0xc6/0xf0
[ 149.952050][ C0] </IRQ>
[ 149.952050][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 149.952050][ C0] RIP: 0010:acpi_idle_enter+0x61d/0x760
[ 149.952050][ C0] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c ea 2b fb 0f 00 2d 9f 3a 6e 09 fb f4 <fa> e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 ef da ae fb e9 e5
[ 149.952050][ C0] RSP: 0018:ffffffff91603b70 EFLAGS: 00000246
[ 149.952050][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000023ead6040
[ 149.952050][ C0] RDX: ffffffff91631040 RSI: 0000000000000000 RDI: 0000000000000000
[ 149.952050][ C0] RBP: ffffffff91603c08 R08: ffffffff869049ae R09: ffff88813fffa000
[ 149.952050][ C0] R10: 0000000000000002 R11: ffffffff91631040 R12: 0000000000000000
[ 149.952050][ C0] R13: ffff8881423f5c64 R14: 0000000000000000 R15: ffffffff91631ac8
[ 149.952050][ C0] ? acpi_idle_enter+0x5ee/0x760
[ 149.952050][ C0] ? acpi_idle_lpi_enter+0x160/0x160
[ 149.952050][ C0] cpuidle_enter_state+0x99e/0x1750
[ 149.952050][ C0] cpuidle_enter+0xe3/0x170
[ 149.952050][ C0] do_idle+0x5df/0x790
[ 149.952050][ C0] cpu_startup_entry+0x45/0x50
[ 149.952050][ C0] rest_init+0x1c8/0x1f0
[ 149.952050][ C0] arch_call_rest_init+0x13/0x15
[ 149.952050][ C0] start_kernel+0xa17/0xbd8
[ 149.952050][ C0] x86_64_start_reservations+0x2a/0x2c
[ 149.952050][ C0] x86_64_start_kernel+0x86/0x89
[ 149.952050][ C0] secondary_startup_64_no_verify+0xb0/0xbb
[ 149.952050][ C0]
[ 149.952050][ C0] Uninit was created at:
[ 149.952050][ C0] kmsan_internal_poison_shadow+0x5c/0xf0
[ 149.952050][ C0] kmsan_slab_alloc+0x8e/0xe0
[ 149.952050][ C0] __kmalloc_node_track_caller+0xa4f/0x1470
[ 149.952050][ C0] __alloc_skb+0x4dd/0xe90
[ 149.952050][ C0] __netdev_alloc_skb+0x45d/0x810
[ 149.952050][ C0] ath9k_hif_usb_rx_cb+0xe58/0x1d20
[ 149.952050][ C0] __usb_hcd_giveback_urb+0x6ff/0x930
[ 149.952050][ C0] usb_hcd_giveback_urb+0x1cb/0x730
[ 149.952050][ C0] dummy_timer+0xda7/0x74f0
[ 149.952050][ C0] call_timer_fn+0x7d/0x450
[ 149.952050][ C0] expire_timers+0x328/0x6c0
[ 149.952050][ C0] __run_timers+0x624/0x9e0
[ 149.952050][ C0] run_timer_softirq+0x2d/0x50
[ 149.952050][ C0] __do_softirq+0x1b9/0x715
[ 149.952050][ C0] =====================================================
[ 149.952050][ C0] =====================================================
[ 149.952050][ C0] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x80c/0x1f60
[ 149.952050][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G B 5.12.0-rc6-syzkaller #0
[ 149.952050][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 149.952050][ C0] Call Trace:
[ 149.952050][ C0] <IRQ>
[ 149.952050][ C0] dump_stack+0x24c/0x2e0
[ 149.952050][ C0] kmsan_report+0xfb/0x1e0
[ 149.952050][ C0] __msan_warning+0x5c/0xa0
[ 149.952050][ C0] ath9k_htc_rx_msg+0x80c/0x1f60
[ 149.952050][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 149.952050][ C0] ath9k_hif_usb_rx_cb+0x184e/0x1d20
[ 149.952050][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 149.952050][ C0] ? _raw_spin_unlock_irqrestore+0x37/0x80
[ 149.952050][ C0] ? kmsan_get_metadata+0x116/0x180
[ 149.952050][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 149.952050][ C0] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[ 149.952050][ C0] __usb_hcd_giveback_urb+0x6ff/0x930
[ 149.952050][ C0] ? kmsan_get_metadata+0x116/0x180
[ 149.952050][ C0] usb_hcd_giveback_urb+0x1cb/0x730
[ 149.952050][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 149.952050][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 149.952050][ C0] dummy_timer+0xda7/0x74f0
[ 149.952050][ C0] ? kmsan_get_metadata+0x116/0x180
[ 149.952050][ C0] ? kmsan_get_metadata+0x116/0x180
[ 149.952050][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 149.952050][ C0] ? dummy_free_streams+0x5b0/0x5b0
[ 149.952050][ C0] call_timer_fn+0x7d/0x450
[ 149.952050][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 149.952050][ C0] expire_timers+0x328/0x6c0
[ 149.952050][ C0] ? dummy_free_streams+0x5b0/0x5b0
[ 149.952050][ C0] __run_timers+0x624/0x9e0
[ 149.952050][ C0] ? __msan_metadata_ptr_for_load_1+0x10/0x20
[ 149.952050][ C0] ? irqtime_account_irq+0x5e/0x380
[ 149.952050][ C0] ? kmsan_get_metadata+0x116/0x180
[ 149.952050][ C0] ? migrate_timer_list+0x5f0/0x5f0
[ 149.952050][ C0] run_timer_softirq+0x2d/0x50
[ 149.952050][ C0] __do_softirq+0x1b9/0x715
[ 149.952050][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 149.952050][ C0] __irq_exit_rcu+0x22f/0x280
[ 149.952050][ C0] irq_exit_rcu+0xe/0x10
[ 149.952050][ C0] sysvec_apic_timer_interrupt+0xc6/0xf0
[ 149.952050][ C0] </IRQ>
[ 149.952050][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 149.952050][ C0] RIP: 0010:acpi_idle_enter+0x61d/0x760
[ 149.952050][ C0] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c ea 2b fb 0f 00 2d 9f 3a 6e 09 fb f4 <fa> e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 ef da ae fb e9 e5
[ 149.952050][ C0] RSP: 0018:ffffffff91603b70 EFLAGS: 00000246
[ 149.952050][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000023ead6040
[ 149.952050][ C0] RDX: ffffffff91631040 RSI: 0000000000000000 RDI: 0000000000000000
[ 149.952050][ C0] RBP: ffffffff91603c08 R08: ffffffff869049ae R09: ffff88813fffa000
[ 149.952050][ C0] R10: 0000000000000002 R11: ffffffff91631040 R12: 0000000000000000
[ 149.952050][ C0] R13: ffff8881423f5c64 R14: 0000000000000000 R15: ffffffff91631ac8
[ 149.952050][ C0] ? acpi_idle_enter+0x5ee/0x760
[ 149.952050][ C0] ? acpi_idle_lpi_enter+0x160/0x160
[ 149.952050][ C0] cpuidle_enter_state+0x99e/0x1750
[ 149.952050][ C0] cpuidle_enter+0xe3/0x170
[ 149.952050][ C0] do_idle+0x5df/0x790
[ 149.952050][ C0] cpu_startup_entry+0x45/0x50
[ 149.952050][ C0] rest_init+0x1c8/0x1f0
[ 149.952050][ C0] arch_call_rest_init+0x13/0x15
[ 149.952050][ C0] start_kernel+0xa17/0xbd8
[ 149.952050][ C0] x86_64_start_reservations+0x2a/0x2c
[ 149.952050][ C0] x86_64_start_kernel+0x86/0x89
[ 149.952050][ C0] secondary_startup_64_no_verify+0xb0/0xbb
[ 149.952050][ C0]
[ 149.952050][ C0] Uninit was created at:
[ 149.952050][ C0] kmsan_internal_poison_shadow+0x5c/0xf0
[ 149.952050][ C0] kmsan_slab_alloc+0x8e/0xe0
[ 149.952050][ C0] __kmalloc_node_track_caller+0xa4f/0x1470
[ 150.972070][ C0] __alloc_skb+0x4dd/0xe90
[ 150.972070][ C0] __netdev_alloc_skb+0x45d/0x810
[ 150.972070][ C0] ath9k_hif_usb_rx_cb+0xe58/0x1d20
[ 150.972070][ C0] __usb_hcd_giveback_urb+0x6ff/0x930
[ 150.972070][ C0] usb_hcd_giveback_urb+0x1cb/0x730
[ 150.972070][ C0] dummy_timer+0xda7/0x74f0
[ 150.972070][ C0] call_timer_fn+0x7d/0x450
[ 150.972070][ C0] expire_timers+0x328/0x6c0
[ 150.972070][ C0] __run_timers+0x624/0x9e0
[ 150.972070][ C0] run_timer_softirq+0x2d/0x50
[ 150.972070][ C0] __do_softirq+0x1b9/0x715
[ 150.972070][ C0] =====================================================
[ 150.972070][ C0] =====================================================
[ 150.972070][ C0] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x96f/0x1f60
[ 150.972070][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G B 5.12.0-rc6-syzkaller #0
[ 150.972070][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 150.972070][ C0] Call Trace:
[ 150.972070][ C0] <IRQ>
[ 150.972070][ C0] dump_stack+0x24c/0x2e0
[ 150.972070][ C0] kmsan_report+0xfb/0x1e0
[ 150.972070][ C0] __msan_warning+0x5c/0xa0
[ 150.972070][ C0] ath9k_htc_rx_msg+0x96f/0x1f60
[ 150.972070][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 150.972070][ C0] ath9k_hif_usb_rx_cb+0x184e/0x1d20
[ 150.972070][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 150.972070][ C0] ? _raw_spin_unlock_irqrestore+0x37/0x80
[ 150.972070][ C0] ? kmsan_get_metadata+0x116/0x180
[ 150.972070][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 150.972070][ C0] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[ 150.972070][ C0] __usb_hcd_giveback_urb+0x6ff/0x930
[ 150.972070][ C0] ? kmsan_get_metadata+0x116/0x180
[ 150.972070][ C0] usb_hcd_giveback_urb+0x1cb/0x730
[ 150.972070][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 150.972070][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 150.972070][ C0] dummy_timer+0xda7/0x74f0
[ 150.972070][ C0] ? kmsan_get_metadata+0x116/0x180
[ 150.972070][ C0] ? kmsan_get_metadata+0x116/0x180
[ 150.972070][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 150.972070][ C0] ? dummy_free_streams+0x5b0/0x5b0
[ 150.972070][ C0] call_timer_fn+0x7d/0x450
[ 150.972070][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 150.972070][ C0] expire_timers+0x328/0x6c0
[ 150.972070][ C0] ? dummy_free_streams+0x5b0/0x5b0
[ 150.972070][ C0] __run_timers+0x624/0x9e0
[ 150.972070][ C0] ? __msan_metadata_ptr_for_load_1+0x10/0x20
[ 150.972070][ C0] ? irqtime_account_irq+0x5e/0x380
[ 150.972070][ C0] ? kmsan_get_metadata+0x116/0x180
[ 150.972070][ C0] ? migrate_timer_list+0x5f0/0x5f0
[ 150.972070][ C0] run_timer_softirq+0x2d/0x50
[ 150.972070][ C0] __do_softirq+0x1b9/0x715
[ 150.972070][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 150.972070][ C0] __irq_exit_rcu+0x22f/0x280
[ 150.972070][ C0] irq_exit_rcu+0xe/0x10
[ 150.972070][ C0] sysvec_apic_timer_interrupt+0xc6/0xf0
[ 150.972070][ C0] </IRQ>
[ 150.972070][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 150.972070][ C0] RIP: 0010:acpi_idle_enter+0x61d/0x760
[ 150.972070][ C0] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c ea 2b fb 0f 00 2d 9f 3a 6e 09 fb f4 <fa> e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 ef da ae fb e9 e5
[ 150.972070][ C0] RSP: 0018:ffffffff91603b70 EFLAGS: 00000246
[ 150.972070][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000023ead6040
[ 150.972070][ C0] RDX: ffffffff91631040 RSI: 0000000000000000 RDI: 0000000000000000
[ 150.972070][ C0] RBP: ffffffff91603c08 R08: ffffffff869049ae R09: ffff88813fffa000
[ 150.972070][ C0] R10: 0000000000000002 R11: ffffffff91631040 R12: 0000000000000000
[ 150.972070][ C0] R13: ffff8881423f5c64 R14: 0000000000000000 R15: ffffffff91631ac8
[ 150.972070][ C0] ? acpi_idle_enter+0x5ee/0x760
[ 150.972070][ C0] ? acpi_idle_lpi_enter+0x160/0x160
[ 150.972070][ C0] cpuidle_enter_state+0x99e/0x1750
[ 150.972070][ C0] cpuidle_enter+0xe3/0x170
[ 150.972070][ C0] do_idle+0x5df/0x790
[ 150.972070][ C0] cpu_startup_entry+0x45/0x50
[ 150.972070][ C0] rest_init+0x1c8/0x1f0
[ 150.972070][ C0] arch_call_rest_init+0x13/0x15
[ 150.972070][ C0] start_kernel+0xa17/0xbd8
[ 150.972070][ C0] x86_64_start_reservations+0x2a/0x2c
[ 150.972070][ C0] x86_64_start_kernel+0x86/0x89
[ 150.972070][ C0] secondary_startup_64_no_verify+0xb0/0xbb
[ 150.972070][ C0]
[ 150.972070][ C0] Uninit was created at:
[ 150.972070][ C0] kmsan_internal_poison_shadow+0x5c/0xf0
[ 150.972070][ C0] kmsan_slab_alloc+0x8e/0xe0
[ 150.972070][ C0] __kmalloc_node_track_caller+0xa4f/0x1470
[ 150.972070][ C0] __alloc_skb+0x4dd/0xe90
[ 150.972070][ C0] __netdev_alloc_skb+0x45d/0x810
[ 150.972070][ C0] ath9k_hif_usb_rx_cb+0xe58/0x1d20
[ 150.972070][ C0] __usb_hcd_giveback_urb+0x6ff/0x930
[ 150.972070][ C0] usb_hcd_giveback_urb+0x1cb/0x730
[ 150.972070][ C0] dummy_timer+0xda7/0x74f0
[ 150.972070][ C0] call_timer_fn+0x7d/0x450
[ 150.972070][ C0] expire_timers+0x328/0x6c0
[ 150.972070][ C0] __run_timers+0x624/0x9e0
[ 150.972070][ C0] run_timer_softirq+0x2d/0x50
[ 150.972070][ C0] __do_softirq+0x1b9/0x715
[ 150.972070][ C0] =====================================================
[ 151.493798][ T7] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive
executing program
[ 151.500970][ T7] ath9k_htc: Failed to initialize the device
[ 151.507723][ T1985] usb 1-1: USB disconnect, device number 3
[ 151.542325][ T1985] usb 1-1: ath9k_htc: USB layer deinitialized
[ 151.922100][ T1985] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[ 152.452166][ T1985] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 152.461372][ T1985] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 152.469745][ T1985] usb 1-1: Product: syz
[ 152.474171][ T1985] usb 1-1: Manufacturer: syz
[ 152.478869][ T1985] usb 1-1: SerialNumber: syz
[ 152.523743][ T1985] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 153.112186][ T7] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 153.342031][ C0] =====================================================
[ 153.348967][ C0] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x28c/0x1f60
[ 153.351881][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G B 5.12.0-rc6-syzkaller #0
[ 153.351881][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 153.351881][ C0] Call Trace:
[ 153.351881][ C0] <IRQ>
[ 153.351881][ C0] dump_stack+0x24c/0x2e0
[ 153.382767][ C0] kmsan_report+0xfb/0x1e0
[ 153.382767][ C0] __msan_warning+0x5c/0xa0
[ 153.382767][ C0] ath9k_htc_rx_msg+0x28c/0x1f60
[ 153.382767][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 153.382767][ C0] ath9k_hif_usb_rx_cb+0x184e/0x1d20
[ 153.382767][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 153.382767][ C0] ? _raw_spin_unlock_irqrestore+0x37/0x80
[ 153.422026][ C0] ? kmsan_get_metadata+0x116/0x180
[ 153.422026][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 153.422026][ C0] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[ 153.422026][ C0] __usb_hcd_giveback_urb+0x6ff/0x930
[ 153.422026][ C0] ? kmsan_get_metadata+0x116/0x180
[ 153.422026][ C0] usb_hcd_giveback_urb+0x1cb/0x730
[ 153.422026][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 153.422026][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 153.462276][ C0] dummy_timer+0xda7/0x74f0
[ 153.462276][ C0] ? kmsan_get_metadata+0x116/0x180
[ 153.462276][ C0] ? kmsan_get_metadata+0x116/0x180
[ 153.462276][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 153.462276][ C0] ? dummy_free_streams+0x5b0/0x5b0
[ 153.462276][ C0] call_timer_fn+0x7d/0x450
[ 153.462276][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 153.502802][ C0] expire_timers+0x328/0x6c0
[ 153.502802][ C0] ? dummy_free_streams+0x5b0/0x5b0
[ 153.502802][ C0] __run_timers+0x624/0x9e0
[ 153.502802][ C0] ? __msan_metadata_ptr_for_load_1+0x10/0x20
[ 153.502802][ C0] ? irqtime_account_irq+0x5e/0x380
[ 153.502802][ C0] ? kmsan_get_metadata+0x116/0x180
[ 153.502802][ C0] ? migrate_timer_list+0x5f0/0x5f0
[ 153.502802][ C0] run_timer_softirq+0x2d/0x50
[ 153.502802][ C0] __do_softirq+0x1b9/0x715
[ 153.502802][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 153.502802][ C0] __irq_exit_rcu+0x22f/0x280
[ 153.502802][ C0] irq_exit_rcu+0xe/0x10
[ 153.502802][ C0] sysvec_apic_timer_interrupt+0xc6/0xf0
[ 153.502802][ C0] </IRQ>
[ 153.502802][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 153.502802][ C0] RIP: 0010:acpi_idle_enter+0x61d/0x760
[ 153.502802][ C0] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c ea 2b fb 0f 00 2d 9f 3a 6e 09 fb f4 <fa> e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 ef da ae fb e9 e5
[ 153.502802][ C0] RSP: 0018:ffffffff91603b70 EFLAGS: 00000246
[ 153.502802][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000023ead6040
[ 153.502802][ C0] RDX: ffffffff91631040 RSI: 0000000000000000 RDI: 0000000000000000
[ 153.502802][ C0] RBP: ffffffff91603c08 R08: ffffffff869049ae R09: ffff88813fffa000
[ 153.502802][ C0] R10: 0000000000000002 R11: ffffffff91631040 R12: 0000000000000000
[ 153.502802][ C0] R13: ffff8881423f5c64 R14: 0000000000000000 R15: ffffffff91631ac8
[ 153.502802][ C0] ? acpi_idle_enter+0x5ee/0x760
[ 153.502802][ C0] ? acpi_idle_lpi_enter+0x160/0x160
[ 153.502802][ C0] cpuidle_enter_state+0x99e/0x1750
[ 153.502802][ C0] cpuidle_enter+0xe3/0x170
[ 153.502802][ C0] do_idle+0x5df/0x790
[ 153.502802][ C0] cpu_startup_entry+0x45/0x50
[ 153.502802][ C0] rest_init+0x1c8/0x1f0
[ 153.502802][ C0] arch_call_rest_init+0x13/0x15
[ 153.502802][ C0] start_kernel+0xa17/0xbd8
[ 153.502802][ C0] x86_64_start_reservations+0x2a/0x2c
[ 153.502802][ C0] x86_64_start_kernel+0x86/0x89
[ 153.502802][ C0] secondary_startup_64_no_verify+0xb0/0xbb
[ 153.502802][ C0]
[ 153.502802][ C0] Uninit was created at:
[ 153.502802][ C0] kmsan_internal_poison_shadow+0x5c/0xf0
[ 153.502802][ C0] kmsan_slab_alloc+0x8e/0xe0
[ 153.502802][ C0] __kmalloc_node_track_caller+0xa4f/0x1470
[ 153.502802][ C0] __alloc_skb+0x4dd/0xe90
[ 153.502802][ C0] __netdev_alloc_skb+0x45d/0x810
[ 153.502802][ C0] ath9k_hif_usb_rx_cb+0xe58/0x1d20
[ 153.502802][ C0] __usb_hcd_giveback_urb+0x6ff/0x930
[ 153.502802][ C0] usb_hcd_giveback_urb+0x1cb/0x730
[ 153.502802][ C0] dummy_timer+0xda7/0x74f0
[ 153.502802][ C0] call_timer_fn+0x7d/0x450
[ 153.502802][ C0] expire_timers+0x328/0x6c0
[ 153.502802][ C0] __run_timers+0x624/0x9e0
[ 153.502802][ C0] run_timer_softirq+0x2d/0x50
[ 153.502802][ C0] __do_softirq+0x1b9/0x715
[ 153.502802][ C0] =====================================================
[ 153.502802][ C0] =====================================================
[ 153.794468][ C0] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x4c0/0x1f60
[ 153.794468][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G B 5.12.0-rc6-syzkaller #0
[ 153.794468][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 153.794468][ C0] Call Trace:
[ 153.794468][ C0] <IRQ>
[ 153.794468][ C0] dump_stack+0x24c/0x2e0
[ 153.794468][ C0] kmsan_report+0xfb/0x1e0
[ 153.794468][ C0] __msan_warning+0x5c/0xa0
[ 153.794468][ C0] ath9k_htc_rx_msg+0x4c0/0x1f60
[ 153.794468][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 153.794468][ C0] ath9k_hif_usb_rx_cb+0x184e/0x1d20
[ 153.794468][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 153.794468][ C0] ? _raw_spin_unlock_irqrestore+0x37/0x80
[ 153.794468][ C0] ? kmsan_get_metadata+0x116/0x180
[ 153.794468][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 153.794468][ C0] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[ 153.794468][ C0] __usb_hcd_giveback_urb+0x6ff/0x930
[ 153.794468][ C0] ? kmsan_get_metadata+0x116/0x180
[ 153.794468][ C0] usb_hcd_giveback_urb+0x1cb/0x730
[ 153.794468][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 153.794468][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 153.794468][ C0] dummy_timer+0xda7/0x74f0
[ 153.794468][ C0] ? kmsan_get_metadata+0x116/0x180
[ 153.794468][ C0] ? kmsan_get_metadata+0x116/0x180
[ 153.794468][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 153.794468][ C0] ? dummy_free_streams+0x5b0/0x5b0
[ 153.794468][ C0] call_timer_fn+0x7d/0x450
[ 153.794468][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 153.794468][ C0] expire_timers+0x328/0x6c0
[ 153.794468][ C0] ? dummy_free_streams+0x5b0/0x5b0
[ 153.794468][ C0] __run_timers+0x624/0x9e0
[ 153.794468][ C0] ? __msan_metadata_ptr_for_load_1+0x10/0x20
[ 153.794468][ C0] ? irqtime_account_irq+0x5e/0x380
[ 153.794468][ C0] ? kmsan_get_metadata+0x116/0x180
[ 153.794468][ C0] ? migrate_timer_list+0x5f0/0x5f0
[ 153.794468][ C0] run_timer_softirq+0x2d/0x50
[ 153.794468][ C0] __do_softirq+0x1b9/0x715
[ 153.794468][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 153.794468][ C0] __irq_exit_rcu+0x22f/0x280
[ 153.794468][ C0] irq_exit_rcu+0xe/0x10
[ 153.794468][ C0] sysvec_apic_timer_interrupt+0xc6/0xf0
[ 153.794468][ C0] </IRQ>
[ 153.794468][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 153.794468][ C0] RIP: 0010:acpi_idle_enter+0x61d/0x760
[ 153.794468][ C0] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c ea 2b fb 0f 00 2d 9f 3a 6e 09 fb f4 <fa> e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 ef da ae fb e9 e5
[ 153.794468][ C0] RSP: 0018:ffffffff91603b70 EFLAGS: 00000246
[ 153.794468][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000023ead6040
[ 153.794468][ C0] RDX: ffffffff91631040 RSI: 0000000000000000 RDI: 0000000000000000
[ 153.794468][ C0] RBP: ffffffff91603c08 R08: ffffffff869049ae R09: ffff88813fffa000
[ 153.794468][ C0] R10: 0000000000000002 R11: ffffffff91631040 R12: 0000000000000000
[ 153.794468][ C0] R13: ffff8881423f5c64 R14: 0000000000000000 R15: ffffffff91631ac8
[ 153.794468][ C0] ? acpi_idle_enter+0x5ee/0x760
[ 153.794468][ C0] ? acpi_idle_lpi_enter+0x160/0x160
[ 153.794468][ C0] cpuidle_enter_state+0x99e/0x1750
[ 153.794468][ C0] cpuidle_enter+0xe3/0x170
[ 153.794468][ C0] do_idle+0x5df/0x790
[ 153.794468][ C0] cpu_startup_entry+0x45/0x50
[ 153.794468][ C0] rest_init+0x1c8/0x1f0
[ 153.794468][ C0] arch_call_rest_init+0x13/0x15
[ 153.794468][ C0] start_kernel+0xa17/0xbd8
[ 153.794468][ C0] x86_64_start_reservations+0x2a/0x2c
[ 153.794468][ C0] x86_64_start_kernel+0x86/0x89
[ 153.794468][ C0] secondary_startup_64_no_verify+0xb0/0xbb
[ 153.794468][ C0]
[ 153.794468][ C0] Uninit was created at:
[ 153.794468][ C0] kmsan_internal_poison_shadow+0x5c/0xf0
[ 153.794468][ C0] kmsan_slab_alloc+0x8e/0xe0
[ 153.794468][ C0] __kmalloc_node_track_caller+0xa4f/0x1470
[ 153.794468][ C0] __alloc_skb+0x4dd/0xe90
[ 153.794468][ C0] __netdev_alloc_skb+0x45d/0x810
[ 153.794468][ C0] ath9k_hif_usb_rx_cb+0xe58/0x1d20
[ 153.794468][ C0] __usb_hcd_giveback_urb+0x6ff/0x930
[ 153.794468][ C0] usb_hcd_giveback_urb+0x1cb/0x730
[ 153.794468][ C0] dummy_timer+0xda7/0x74f0
[ 153.794468][ C0] call_timer_fn+0x7d/0x450
[ 153.794468][ C0] expire_timers+0x328/0x6c0
[ 153.794468][ C0] __run_timers+0x624/0x9e0
[ 153.794468][ C0] run_timer_softirq+0x2d/0x50
[ 153.794468][ C0] __do_softirq+0x1b9/0x715
[ 153.794468][ C0] =====================================================
[ 153.794468][ C0] =====================================================
[ 153.794468][ C0] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x7b8/0x1f60
[ 153.794468][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G B 5.12.0-rc6-syzkaller #0
[ 153.794468][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 153.794468][ C0] Call Trace:
[ 153.794468][ C0] <IRQ>
[ 153.794468][ C0] dump_stack+0x24c/0x2e0
[ 153.794468][ C0] kmsan_report+0xfb/0x1e0
[ 153.794468][ C0] __msan_warning+0x5c/0xa0
[ 153.794468][ C0] ath9k_htc_rx_msg+0x7b8/0x1f60
[ 153.794468][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 153.794468][ C0] ath9k_hif_usb_rx_cb+0x184e/0x1d20
[ 153.794468][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 153.794468][ C0] ? _raw_spin_unlock_irqrestore+0x37/0x80
[ 153.794468][ C0] ? kmsan_get_metadata+0x116/0x180
[ 153.794468][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 153.794468][ C0] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[ 153.794468][ C0] __usb_hcd_giveback_urb+0x6ff/0x930
[ 153.794468][ C0] ? kmsan_get_metadata+0x116/0x180
[ 153.794468][ C0] usb_hcd_giveback_urb+0x1cb/0x730
[ 153.794468][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 153.794468][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 153.794468][ C0] dummy_timer+0xda7/0x74f0
[ 153.794468][ C0] ? kmsan_get_metadata+0x116/0x180
[ 153.794468][ C0] ? kmsan_get_metadata+0x116/0x180
[ 153.794468][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 153.794468][ C0] ? dummy_free_streams+0x5b0/0x5b0
[ 153.794468][ C0] call_timer_fn+0x7d/0x450
[ 153.794468][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 153.794468][ C0] expire_timers+0x328/0x6c0
[ 153.794468][ C0] ? dummy_free_streams+0x5b0/0x5b0
[ 153.794468][ C0] __run_timers+0x624/0x9e0
[ 153.794468][ C0] ? __msan_metadata_ptr_for_load_1+0x10/0x20
[ 153.794468][ C0] ? irqtime_account_irq+0x5e/0x380
[ 153.794468][ C0] ? kmsan_get_metadata+0x116/0x180
[ 153.794468][ C0] ? migrate_timer_list+0x5f0/0x5f0
[ 153.794468][ C0] run_timer_softirq+0x2d/0x50
[ 153.794468][ C0] __do_softirq+0x1b9/0x715
[ 153.794468][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 153.794468][ C0] __irq_exit_rcu+0x22f/0x280
[ 153.794468][ C0] irq_exit_rcu+0xe/0x10
[ 153.794468][ C0] sysvec_apic_timer_interrupt+0xc6/0xf0
[ 153.794468][ C0] </IRQ>
[ 153.794468][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 153.794468][ C0] RIP: 0010:acpi_idle_enter+0x61d/0x760
[ 153.794468][ C0] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c ea 2b fb 0f 00 2d 9f 3a 6e 09 fb f4 <fa> e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 ef da ae fb e9 e5
[ 153.794468][ C0] RSP: 0018:ffffffff91603b70 EFLAGS: 00000246
[ 153.794468][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000023ead6040
[ 153.794468][ C0] RDX: ffffffff91631040 RSI: 0000000000000000 RDI: 0000000000000000
[ 153.794468][ C0] RBP: ffffffff91603c08 R08: ffffffff869049ae R09: ffff88813fffa000
[ 153.794468][ C0] R10: 0000000000000002 R11: ffffffff91631040 R12: 0000000000000000
[ 153.794468][ C0] R13: ffff8881423f5c64 R14: 0000000000000000 R15: ffffffff91631ac8
[ 153.794468][ C0] ? acpi_idle_enter+0x5ee/0x760
[ 153.794468][ C0] ? acpi_idle_lpi_enter+0x160/0x160
[ 153.794468][ C0] cpuidle_enter_state+0x99e/0x1750
[ 153.794468][ C0] cpuidle_enter+0xe3/0x170
[ 153.794468][ C0] do_idle+0x5df/0x790
[ 153.794468][ C0] cpu_startup_entry+0x45/0x50
[ 153.794468][ C0] rest_init+0x1c8/0x1f0
[ 153.794468][ C0] arch_call_rest_init+0x13/0x15
[ 153.794468][ C0] start_kernel+0xa17/0xbd8
[ 153.794468][ C0] x86_64_start_reservations+0x2a/0x2c
[ 153.794468][ C0] x86_64_start_kernel+0x86/0x89
[ 153.794468][ C0] secondary_startup_64_no_verify+0xb0/0xbb
[ 153.794468][ C0]
[ 153.794468][ C0] Uninit was created at:
[ 153.794468][ C0] kmsan_internal_poison_shadow+0x5c/0xf0
[ 153.794468][ C0] kmsan_slab_alloc+0x8e/0xe0
[ 153.794468][ C0] __kmalloc_node_track_caller+0xa4f/0x1470
[ 153.794468][ C0] __alloc_skb+0x4dd/0xe90
[ 153.794468][ C0] __netdev_alloc_skb+0x45d/0x810
[ 153.794468][ C0] ath9k_hif_usb_rx_cb+0xe58/0x1d20
[ 153.794468][ C0] __usb_hcd_giveback_urb+0x6ff/0x930
[ 153.794468][ C0] usb_hcd_giveback_urb+0x1cb/0x730
[ 153.794468][ C0] dummy_timer+0xda7/0x74f0
[ 153.794468][ C0] call_timer_fn+0x7d/0x450
[ 153.794468][ C0] expire_timers+0x328/0x6c0
[ 153.794468][ C0] __run_timers+0x624/0x9e0
[ 153.794468][ C0] run_timer_softirq+0x2d/0x50
[ 153.794468][ C0] __do_softirq+0x1b9/0x715
[ 153.794468][ C0] =====================================================
[ 153.794468][ C0] =====================================================
[ 153.794468][ C0] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x80c/0x1f60
[ 153.794468][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G B 5.12.0-rc6-syzkaller #0
[ 153.794468][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 153.794468][ C0] Call Trace:
[ 153.794468][ C0] <IRQ>
[ 153.794468][ C0] dump_stack+0x24c/0x2e0
[ 153.794468][ C0] kmsan_report+0xfb/0x1e0
[ 153.794468][ C0] __msan_warning+0x5c/0xa0
[ 153.794468][ C0] ath9k_htc_rx_msg+0x80c/0x1f60
[ 153.794468][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 153.794468][ C0] ath9k_hif_usb_rx_cb+0x184e/0x1d20
[ 153.794468][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 153.794468][ C0] ? _raw_spin_unlock_irqrestore+0x37/0x80
[ 153.794468][ C0] ? kmsan_get_metadata+0x116/0x180
[ 153.794468][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 153.794468][ C0] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[ 153.794468][ C0] __usb_hcd_giveback_urb+0x6ff/0x930
[ 153.794468][ C0] ? kmsan_get_metadata+0x116/0x180
[ 153.794468][ C0] usb_hcd_giveback_urb+0x1cb/0x730
[ 153.794468][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 153.794468][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 153.794468][ C0] dummy_timer+0xda7/0x74f0
[ 153.794468][ C0] ? kmsan_get_metadata+0x116/0x180
[ 153.794468][ C0] ? kmsan_get_metadata+0x116/0x180
[ 153.794468][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 153.794468][ C0] ? dummy_free_streams+0x5b0/0x5b0
[ 153.794468][ C0] call_timer_fn+0x7d/0x450
[ 153.794468][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 153.794468][ C0] expire_timers+0x328/0x6c0
[ 153.794468][ C0] ? dummy_free_streams+0x5b0/0x5b0
[ 153.794468][ C0] __run_timers+0x624/0x9e0
[ 153.794468][ C0] ? __msan_metadata_ptr_for_load_1+0x10/0x20
[ 153.794468][ C0] ? irqtime_account_irq+0x5e/0x380
[ 153.794468][ C0] ? kmsan_get_metadata+0x116/0x180
[ 153.794468][ C0] ? migrate_timer_list+0x5f0/0x5f0
[ 153.794468][ C0] run_timer_softirq+0x2d/0x50
[ 153.794468][ C0] __do_softirq+0x1b9/0x715
[ 153.794468][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 153.794468][ C0] __irq_exit_rcu+0x22f/0x280
[ 153.794468][ C0] irq_exit_rcu+0xe/0x10
[ 153.794468][ C0] sysvec_apic_timer_interrupt+0xc6/0xf0
[ 153.794468][ C0] </IRQ>
[ 153.794468][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 153.794468][ C0] RIP: 0010:acpi_idle_enter+0x61d/0x760
[ 153.794468][ C0] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c ea 2b fb 0f 00 2d 9f 3a 6e 09 fb f4 <fa> e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 ef da ae fb e9 e5
[ 153.794468][ C0] RSP: 0018:ffffffff91603b70 EFLAGS: 00000246
[ 153.794468][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000023ead6040
[ 153.794468][ C0] RDX: ffffffff91631040 RSI: 0000000000000000 RDI: 0000000000000000
[ 153.794468][ C0] RBP: ffffffff91603c08 R08: ffffffff869049ae R09: ffff88813fffa000
[ 153.794468][ C0] R10: 0000000000000002 R11: ffffffff91631040 R12: 0000000000000000
[ 153.794468][ C0] R13: ffff8881423f5c64 R14: 0000000000000000 R15: ffffffff91631ac8
[ 153.794468][ C0] ? acpi_idle_enter+0x5ee/0x760
[ 153.794468][ C0] ? acpi_idle_lpi_enter+0x160/0x160
[ 153.794468][ C0] cpuidle_enter_state+0x99e/0x1750
[ 153.794468][ C0] cpuidle_enter+0xe3/0x170
[ 153.794468][ C0] do_idle+0x5df/0x790
[ 153.794468][ C0] cpu_startup_entry+0x45/0x50
[ 153.794468][ C0] rest_init+0x1c8/0x1f0
[ 153.794468][ C0] arch_call_rest_init+0x13/0x15
[ 153.794468][ C0] start_kernel+0xa17/0xbd8
[ 153.794468][ C0] x86_64_start_reservations+0x2a/0x2c
[ 153.794468][ C0] x86_64_start_kernel+0x86/0x89
[ 153.794468][ C0] secondary_startup_64_no_verify+0xb0/0xbb
[ 153.794468][ C0]
[ 153.794468][ C0] Uninit was created at:
[ 153.794468][ C0] kmsan_internal_poison_shadow+0x5c/0xf0
[ 153.794468][ C0] kmsan_slab_alloc+0x8e/0xe0
[ 153.794468][ C0] __kmalloc_node_track_caller+0xa4f/0x1470
[ 153.794468][ C0] __alloc_skb+0x4dd/0xe90
[ 153.794468][ C0] __netdev_alloc_skb+0x45d/0x810
[ 153.794468][ C0] ath9k_hif_usb_rx_cb+0xe58/0x1d20
[ 153.794468][ C0] __usb_hcd_giveback_urb+0x6ff/0x930
[ 153.794468][ C0] usb_hcd_giveback_urb+0x1cb/0x730
[ 153.794468][ C0] dummy_timer+0xda7/0x74f0
[ 153.794468][ C0] call_timer_fn+0x7d/0x450
[ 153.794468][ C0] expire_timers+0x328/0x6c0
[ 153.794468][ C0] __run_timers+0x624/0x9e0
[ 153.794468][ C0] run_timer_softirq+0x2d/0x50
[ 153.794468][ C0] __do_softirq+0x1b9/0x715
[ 153.794468][ C0] =====================================================
[ 153.794468][ C0] =====================================================
[ 153.794468][ C0] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x96f/0x1f60
[ 153.794468][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G B 5.12.0-rc6-syzkaller #0
[ 153.794468][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 153.794468][ C0] Call Trace:
[ 153.794468][ C0] <IRQ>
[ 153.794468][ C0] dump_stack+0x24c/0x2e0
[ 153.794468][ C0] kmsan_report+0xfb/0x1e0
[ 153.794468][ C0] __msan_warning+0x5c/0xa0
[ 153.794468][ C0] ath9k_htc_rx_msg+0x96f/0x1f60
[ 153.794468][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 153.794468][ C0] ath9k_hif_usb_rx_cb+0x184e/0x1d20
[ 153.794468][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 153.794468][ C0] ? _raw_spin_unlock_irqrestore+0x37/0x80
[ 153.794468][ C0] ? kmsan_get_metadata+0x116/0x180
[ 153.794468][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 153.794468][ C0] ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[ 153.794468][ C0] __usb_hcd_giveback_urb+0x6ff/0x930