[  OK  ] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch.
[  OK  ] Started Getty on tty6.
[  OK  ] Started Getty on tty5.
[  OK  ] Started Getty on tty4.
[  OK  ] Started Getty on tty3.
[  OK  ] Started Getty on tty2.
[  OK  ] Started Getty on tty1.
[  OK  ] Started Serial Getty on ttyS0.
[  OK  ] Reached target Login Prompts.
[  OK  ] Reached target Multi-User System.
[  OK  ] Reached target Graphical Interface.
         Starting Update UTMP about System Runlevel Changes...
         Starting Load/Save RF Kill Switch Status...
[  OK  ] Started Update UTMP about System Runlevel Changes.
[  OK  ] Started Load/Save RF Kill Switch Status.

Debian GNU/Linux 9 syzkaller ttyS0

Warning: Permanently added '10.128.10.54' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [  143.162551][   T56] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  143.692838][   T56] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  143.702057][   T56] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  143.710362][   T56] usb 1-1: Product: syz
[  143.714767][   T56] usb 1-1: Manufacturer: syz
[  143.719569][   T56] usb 1-1: SerialNumber: syz
[  143.774524][   T56] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  144.492960][ T4689] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  144.712563][    C1] =====================================================
[  144.719514][    C1] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x28c/0x1f60
[  144.726814][    C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 5.12.0-rc6-syzkaller #0
[  144.734788][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  144.744920][    C1] Call Trace:
[  144.748208][    C1]  <IRQ>
[  144.751050][    C1]  dump_stack+0x24c/0x2e0
[  144.755408][    C1]  kmsan_report+0xfb/0x1e0
[  144.759833][    C1]  __msan_warning+0x5c/0xa0
[  144.764529][    C1]  ath9k_htc_rx_msg+0x28c/0x1f60
[  144.769465][    C1]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  144.775525][    C1]  ath9k_hif_usb_rx_cb+0x184e/0x1d20
[  144.780801][    C1]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  144.786941][    C1]  ? _raw_spin_unlock_irqrestore+0x37/0x80
[  144.792744][    C1]  ? kmsan_get_metadata+0x116/0x180
[  144.797950][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  144.803750][    C1]  ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[  144.809647][    C1]  __usb_hcd_giveback_urb+0x6ff/0x930
[  144.815008][    C1]  ? kmsan_get_metadata+0x116/0x180
[  144.820190][    C1]  usb_hcd_giveback_urb+0x1cb/0x730
[  144.825376][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  144.831169][    C1]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  144.837313][    C1]  dummy_timer+0xda7/0x74f0
[  144.841825][    C1]  ? kmsan_get_metadata+0x116/0x180
[  144.847275][    C1]  ? kmsan_internal_set_origin+0x85/0xc0
[  144.852896][    C1]  ? dummy_free_streams+0x5b0/0x5b0
[  144.858083][    C1]  call_timer_fn+0x7d/0x450
[  144.862581][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  144.868411][    C1]  expire_timers+0x328/0x6c0
[  144.873078][    C1]  ? dummy_free_streams+0x5b0/0x5b0
[  144.878271][    C1]  __run_timers+0x624/0x9e0
[  144.882764][    C1]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  144.888991][    C1]  ? irqtime_account_irq+0xe3/0x380
[  144.894187][    C1]  ? kmsan_get_metadata+0x116/0x180
[  144.899129][    T7] usb 1-1: USB disconnect, device number 2
[  144.899420][    C1]  ? migrate_timer_list+0x5f0/0x5f0
[  144.899460][    C1]  run_timer_softirq+0x2d/0x50
[  144.899493][    C1]  __do_softirq+0x1b9/0x715
[  144.899527][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  144.925558][    C1]  __irq_exit_rcu+0x22f/0x280
[  144.930290][    C1]  irq_exit_rcu+0xe/0x10
[  144.934554][    C1]  sysvec_apic_timer_interrupt+0xc6/0xf0
[  144.940219][    C1]  </IRQ>
[  144.943155][    C1]  asm_sysvec_apic_timer_interrupt+0x12/0x20
[  144.949165][    C1] RIP: 0010:acpi_idle_enter+0x61d/0x760
[  144.954741][    C1] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c ea 2b fb 0f 00 2d 9f 3a 6e 09 fb f4 <fa> e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 ef da ae fb e9 e5
[  144.974381][    C1] RSP: 0018:ffff888101bffc40 EFLAGS: 00000246
[  144.980449][    C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000001017f1f40
[  144.988495][    C1] RDX: ffff888101bf1f40 RSI: 0000000000000000 RDI: 0000000000000000
[  144.996482][    C1] RBP: ffff888101bffcd8 R08: ffffffff869049ae R09: ffff88813fffa000
[  145.004490][    C1] R10: 0000000000000002 R11: ffff888101bf1f40 R12: 0000000000000000
[  145.012693][    C1] R13: ffff888141724464 R14: 0000000000000000 R15: ffff888101bf29c8
[  145.020720][    C1]  ? acpi_idle_enter+0x5ee/0x760
[  145.025667][    C1]  ? acpi_idle_lpi_enter+0x160/0x160
[  145.030946][    C1]  cpuidle_enter_state+0x99e/0x1750
[  145.036170][    C1]  cpuidle_enter+0xe3/0x170
[  145.040669][    C1]  do_idle+0x5df/0x790
[  145.044756][    C1]  cpu_startup_entry+0x45/0x50
[  145.049543][    C1]  ? setup_APIC_timer+0x210/0x210
[  145.054584][    C1]  start_secondary+0xe9/0xf0
[  145.059163][    C1]  secondary_startup_64_no_verify+0xb0/0xbb
[  145.065086][    C1] 
[  145.067413][    C1] Uninit was created at:
[  145.071641][    C1]  kmsan_internal_poison_shadow+0x5c/0xf0
[  145.077352][    C1]  kmsan_slab_alloc+0x8e/0xe0
[  145.082050][    C1]  __kmalloc_node_track_caller+0xa4f/0x1470
[  145.087945][    C1]  __alloc_skb+0x4dd/0xe90
[  145.092407][    C1]  __netdev_alloc_skb+0x45d/0x810
[  145.097461][    C1]  ath9k_hif_usb_rx_cb+0xe58/0x1d20
[  145.102654][    C1]  __usb_hcd_giveback_urb+0x6ff/0x930
[  145.108042][    C1]  usb_hcd_giveback_urb+0x1cb/0x730
[  145.113252][    C1]  dummy_timer+0xda7/0x74f0
[  145.117743][    C1]  call_timer_fn+0x7d/0x450
[  145.122391][    C1]  expire_timers+0x328/0x6c0
[  145.127094][    C1]  __run_timers+0x624/0x9e0
[  145.131604][    C1]  run_timer_softirq+0x2d/0x50
[  145.136404][    C1]  __do_softirq+0x1b9/0x715
[  145.141068][    C1] =====================================================
[  145.147995][    C1] Disabling lock debugging due to kernel taint
[  145.154143][    C1] =====================================================
[  145.161067][    C1] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x4c0/0x1f60
[  145.168363][    C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G    B             5.12.0-rc6-syzkaller #0
[  145.177730][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  145.187784][    C1] Call Trace:
[  145.191065][    C1]  <IRQ>
[  145.193893][    C1]  dump_stack+0x24c/0x2e0
[  145.198231][    C1]  kmsan_report+0xfb/0x1e0
[  145.202640][    C1]  __msan_warning+0x5c/0xa0
[  145.207130][    C1]  ath9k_htc_rx_msg+0x4c0/0x1f60
[  145.212071][    C1]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  145.218134][    C1]  ath9k_hif_usb_rx_cb+0x184e/0x1d20
[  145.224368][    C1]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  145.230526][    C1]  ? _raw_spin_unlock_irqrestore+0x37/0x80
[  145.236354][    C1]  ? kmsan_get_metadata+0x116/0x180
[  145.241545][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  145.247366][    C1]  ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[  145.253275][    C1]  __usb_hcd_giveback_urb+0x6ff/0x930
[  145.259111][    C1]  ? kmsan_get_metadata+0x116/0x180
[  145.264322][    C1]  usb_hcd_giveback_urb+0x1cb/0x730
[  145.269525][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  145.275330][    C1]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  145.281765][    C1]  dummy_timer+0xda7/0x74f0
[  145.286295][    C1]  ? kmsan_get_metadata+0x116/0x180
[  145.291490][    C1]  ? kmsan_internal_set_origin+0x85/0xc0
[  145.297135][    C1]  ? dummy_free_streams+0x5b0/0x5b0
[  145.302431][    C1]  call_timer_fn+0x7d/0x450
[  145.307488][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  145.313309][    C1]  expire_timers+0x328/0x6c0
[  145.318676][    C1]  ? dummy_free_streams+0x5b0/0x5b0
[  145.323865][    C1]  __run_timers+0x624/0x9e0
[  145.328361][    C1]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  145.334505][    C1]  ? irqtime_account_irq+0xe3/0x380
[  145.339694][    C1]  ? kmsan_get_metadata+0x116/0x180
[  145.344879][    C1]  ? migrate_timer_list+0x5f0/0x5f0
[  145.350067][    C1]  run_timer_softirq+0x2d/0x50
[  145.354853][    C1]  __do_softirq+0x1b9/0x715
[  145.359366][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  145.365177][    C1]  __irq_exit_rcu+0x22f/0x280
[  145.369845][    C1]  irq_exit_rcu+0xe/0x10
[  145.374076][    C1]  sysvec_apic_timer_interrupt+0xc6/0xf0
[  145.379724][    C1]  </IRQ>
[  145.382731][    C1]  asm_sysvec_apic_timer_interrupt+0x12/0x20
[  145.388745][    C1] RIP: 0010:acpi_idle_enter+0x61d/0x760
[  145.394292][    C1] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c ea 2b fb 0f 00 2d 9f 3a 6e 09 fb f4 <fa> e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 ef da ae fb e9 e5
[  145.414786][    C1] RSP: 0018:ffff888101bffc40 EFLAGS: 00000246
[  145.420854][    C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000001017f1f40
[  145.428834][    C1] RDX: ffff888101bf1f40 RSI: 0000000000000000 RDI: 0000000000000000
[  145.436806][    C1] RBP: ffff888101bffcd8 R08: ffffffff869049ae R09: ffff88813fffa000
[  145.444776][    C1] R10: 0000000000000002 R11: ffff888101bf1f40 R12: 0000000000000000
[  145.452852][    C1] R13: ffff888141724464 R14: 0000000000000000 R15: ffff888101bf29c8
[  145.460948][    C1]  ? acpi_idle_enter+0x5ee/0x760
[  145.465908][    C1]  ? acpi_idle_lpi_enter+0x160/0x160
[  145.471220][    C1]  cpuidle_enter_state+0x99e/0x1750
[  145.476441][    C1]  cpuidle_enter+0xe3/0x170
[  145.481037][    C1]  do_idle+0x5df/0x790
[  145.485096][    C1]  cpu_startup_entry+0x45/0x50
[  145.489847][    C1]  ? setup_APIC_timer+0x210/0x210
[  145.494868][    C1]  start_secondary+0xe9/0xf0
[  145.499470][    C1]  secondary_startup_64_no_verify+0xb0/0xbb
[  145.505377][    C1] 
[  145.507683][    C1] Uninit was created at:
[  145.512264][    C1]  kmsan_internal_poison_shadow+0x5c/0xf0
[  145.518091][    C1]  kmsan_slab_alloc+0x8e/0xe0
[  145.522764][    C1]  __kmalloc_node_track_caller+0xa4f/0x1470
[  145.528665][    C1]  __alloc_skb+0x4dd/0xe90
[  145.533081][    C1]  __netdev_alloc_skb+0x45d/0x810
[  145.538103][    C1]  ath9k_hif_usb_rx_cb+0xe58/0x1d20
[  145.543289][    C1]  __usb_hcd_giveback_urb+0x6ff/0x930
[  145.548648][    C1]  usb_hcd_giveback_urb+0x1cb/0x730
[  145.553843][    C1]  dummy_timer+0xda7/0x74f0
[  145.558334][    C1]  call_timer_fn+0x7d/0x450
[  145.562824][    C1]  expire_timers+0x328/0x6c0
[  145.567799][    C1]  __run_timers+0x624/0x9e0
[  145.572316][    C1]  run_timer_softirq+0x2d/0x50
[  145.577065][    C1]  __do_softirq+0x1b9/0x715
[  145.581566][    C1] =====================================================
[  145.588485][    C1] =====================================================
[  145.595394][    C1] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x7b8/0x1f60
[  145.602774][    C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G    B             5.12.0-rc6-syzkaller #0
[  145.612151][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  145.622203][    C1] Call Trace:
[  145.625473][    C1]  <IRQ>
[  145.628300][    C1]  dump_stack+0x24c/0x2e0
[  145.632619][    C1]  kmsan_report+0xfb/0x1e0
[  145.637021][    C1]  __msan_warning+0x5c/0xa0
[  145.641519][    C1]  ath9k_htc_rx_msg+0x7b8/0x1f60
[  145.646515][    C1]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  145.652659][    C1]  ath9k_hif_usb_rx_cb+0x184e/0x1d20
[  145.657949][    C1]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  145.664100][    C1]  ? _raw_spin_unlock_irqrestore+0x37/0x80
[  145.669909][    C1]  ? kmsan_get_metadata+0x116/0x180
[  145.675209][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  145.681001][    C1]  ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[  145.686889][    C1]  __usb_hcd_giveback_urb+0x6ff/0x930
[  145.692286][    C1]  ? kmsan_get_metadata+0x116/0x180
[  145.697494][    C1]  usb_hcd_giveback_urb+0x1cb/0x730
[  145.702697][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  145.708494][    C1]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  145.714637][    C1]  dummy_timer+0xda7/0x74f0
[  145.719135][    C1]  ? kmsan_get_metadata+0x116/0x180
[  145.724758][    C1]  ? kmsan_internal_set_origin+0x85/0xc0
[  145.730377][    C1]  ? dummy_free_streams+0x5b0/0x5b0
[  145.735574][    C1]  call_timer_fn+0x7d/0x450
[  145.740071][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  145.745867][    C1]  expire_timers+0x328/0x6c0
[  145.750455][    C1]  ? dummy_free_streams+0x5b0/0x5b0
[  145.755825][    C1]  __run_timers+0x624/0x9e0
[  145.760347][    C1]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  145.766753][    C1]  ? irqtime_account_irq+0xe3/0x380
[  145.771968][    C1]  ? kmsan_get_metadata+0x116/0x180
[  145.777177][    C1]  ? migrate_timer_list+0x5f0/0x5f0
[  145.782391][    C1]  run_timer_softirq+0x2d/0x50
[  145.787188][    C1]  __do_softirq+0x1b9/0x715
[  145.791687][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  145.797489][    C1]  __irq_exit_rcu+0x22f/0x280
[  145.802261][    C1]  irq_exit_rcu+0xe/0x10
[  145.806498][    C1]  sysvec_apic_timer_interrupt+0xc6/0xf0
[  145.812133][    C1]  </IRQ>
[  145.815072][    C1]  asm_sysvec_apic_timer_interrupt+0x12/0x20
[  145.821070][    C1] RIP: 0010:acpi_idle_enter+0x61d/0x760
[  145.826626][    C1] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c ea 2b fb 0f 00 2d 9f 3a 6e 09 fb f4 <fa> e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 ef da ae fb e9 e5
[  145.846232][    C1] RSP: 0018:ffff888101bffc40 EFLAGS: 00000246
[  145.852306][    C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000001017f1f40
[  145.860296][    C1] RDX: ffff888101bf1f40 RSI: 0000000000000000 RDI: 0000000000000000
[  145.868803][    C1] RBP: ffff888101bffcd8 R08: ffffffff869049ae R09: ffff88813fffa000
[  145.876912][    C1] R10: 0000000000000002 R11: ffff888101bf1f40 R12: 0000000000000000
[  145.884883][    C1] R13: ffff888141724464 R14: 0000000000000000 R15: ffff888101bf29c8
[  145.892850][    C1]  ? acpi_idle_enter+0x5ee/0x760
[  145.897785][    C1]  ? acpi_idle_lpi_enter+0x160/0x160
[  145.903066][    C1]  cpuidle_enter_state+0x99e/0x1750
[  145.908280][    C1]  cpuidle_enter+0xe3/0x170
[  145.912773][    C1]  do_idle+0x5df/0x790
[  145.916837][    C1]  cpu_startup_entry+0x45/0x50
[  145.921593][    C1]  ? setup_APIC_timer+0x210/0x210
[  145.926693][    C1]  start_secondary+0xe9/0xf0
[  145.931717][    C1]  secondary_startup_64_no_verify+0xb0/0xbb
[  145.937600][    C1] 
[  145.939926][    C1] Uninit was created at:
[  145.944142][    C1]  kmsan_internal_poison_shadow+0x5c/0xf0
[  145.949874][    C1]  kmsan_slab_alloc+0x8e/0xe0
[  145.954561][    C1]  __kmalloc_node_track_caller+0xa4f/0x1470
[  145.960574][    C1]  __alloc_skb+0x4dd/0xe90
[  145.965002][    C1]  __netdev_alloc_skb+0x45d/0x810
[  145.970011][    C1]  ath9k_hif_usb_rx_cb+0xe58/0x1d20
[  145.975198][    C1]  __usb_hcd_giveback_urb+0x6ff/0x930
[  145.980933][    C1]  usb_hcd_giveback_urb+0x1cb/0x730
[  145.990043][    C1]  dummy_timer+0xda7/0x74f0
[  145.994540][    C1]  call_timer_fn+0x7d/0x450
[  145.999065][    C1]  expire_timers+0x328/0x6c0
[  146.003666][    C1]  __run_timers+0x624/0x9e0
[  146.008177][    C1]  run_timer_softirq+0x2d/0x50
[  146.012934][    C1]  __do_softirq+0x1b9/0x715
[  146.017439][    C1] =====================================================
[  146.024390][    C1] =====================================================
[  146.031338][    C1] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x80c/0x1f60
[  146.038641][    C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G    B             5.12.0-rc6-syzkaller #0
[  146.048275][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  146.058325][    C1] Call Trace:
[  146.061608][    C1]  <IRQ>
[  146.064442][    C1]  dump_stack+0x24c/0x2e0
[  146.068770][    C1]  kmsan_report+0xfb/0x1e0
[  146.073189][    C1]  __msan_warning+0x5c/0xa0
[  146.077694][    C1]  ath9k_htc_rx_msg+0x80c/0x1f60
[  146.082624][    C1]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  146.088689][    C1]  ath9k_hif_usb_rx_cb+0x184e/0x1d20
[  146.093972][    C1]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  146.100121][    C1]  ? _raw_spin_unlock_irqrestore+0x37/0x80
[  146.105934][    C1]  ? kmsan_get_metadata+0x116/0x180
[  146.111151][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  146.116947][    C1]  ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[  146.122854][    C1]  __usb_hcd_giveback_urb+0x6ff/0x930
[  146.128248][    C1]  ? kmsan_get_metadata+0x116/0x180
[  146.133446][    C1]  usb_hcd_giveback_urb+0x1cb/0x730
[  146.138632][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  146.144429][    C1]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  146.150586][    C1]  dummy_timer+0xda7/0x74f0
[  146.155098][    C1]  ? kmsan_get_metadata+0x116/0x180
[  146.160504][    C1]  ? kmsan_internal_set_origin+0x85/0xc0
[  146.166124][    C1]  ? dummy_free_streams+0x5b0/0x5b0
[  146.171316][    C1]  call_timer_fn+0x7d/0x450
[  146.175817][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  146.181627][    C1]  expire_timers+0x328/0x6c0
[  146.186305][    C1]  ? dummy_free_streams+0x5b0/0x5b0
[  146.191493][    C1]  __run_timers+0x624/0x9e0
[  146.195991][    C1]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  146.202139][    C1]  ? irqtime_account_irq+0xe3/0x380
[  146.207416][    C1]  ? kmsan_get_metadata+0x116/0x180
[  146.212617][    C1]  ? migrate_timer_list+0x5f0/0x5f0
[  146.217933][    C1]  run_timer_softirq+0x2d/0x50
[  146.222789][    C1]  __do_softirq+0x1b9/0x715
[  146.227484][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  146.233374][    C1]  __irq_exit_rcu+0x22f/0x280
[  146.238045][    C1]  irq_exit_rcu+0xe/0x10
[  146.242293][    C1]  sysvec_apic_timer_interrupt+0xc6/0xf0
[  146.247921][    C1]  </IRQ>
[  146.250858][    C1]  asm_sysvec_apic_timer_interrupt+0x12/0x20
[  146.256941][    C1] RIP: 0010:acpi_idle_enter+0x61d/0x760
[  146.262504][    C1] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c ea 2b fb 0f 00 2d 9f 3a 6e 09 fb f4 <fa> e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 ef da ae fb e9 e5
[  146.282291][    C1] RSP: 0018:ffff888101bffc40 EFLAGS: 00000246
[  146.288359][    C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000001017f1f40
[  146.296321][    C1] RDX: ffff888101bf1f40 RSI: 0000000000000000 RDI: 0000000000000000
[  146.304349][    C1] RBP: ffff888101bffcd8 R08: ffffffff869049ae R09: ffff88813fffa000
[  146.312336][    C1] R10: 0000000000000002 R11: ffff888101bf1f40 R12: 0000000000000000
[  146.320300][    C1] R13: ffff888141724464 R14: 0000000000000000 R15: ffff888101bf29c8
[  146.328280][    C1]  ? acpi_idle_enter+0x5ee/0x760
[  146.333322][    C1]  ? acpi_idle_lpi_enter+0x160/0x160
[  146.338701][    C1]  cpuidle_enter_state+0x99e/0x1750
[  146.344177][    C1]  cpuidle_enter+0xe3/0x170
[  146.348802][    C1]  do_idle+0x5df/0x790
[  146.352972][    C1]  cpu_startup_entry+0x45/0x50
[  146.357750][    C1]  ? setup_APIC_timer+0x210/0x210
[  146.362865][    C1]  start_secondary+0xe9/0xf0
[  146.367515][    C1]  secondary_startup_64_no_verify+0xb0/0xbb
[  146.373502][    C1] 
[  146.375834][    C1] Uninit was created at:
[  146.380050][    C1]  kmsan_internal_poison_shadow+0x5c/0xf0
[  146.385823][    C1]  kmsan_slab_alloc+0x8e/0xe0
[  146.390513][    C1]  __kmalloc_node_track_caller+0xa4f/0x1470
[  146.396430][    C1]  __alloc_skb+0x4dd/0xe90
[  146.400851][    C1]  __netdev_alloc_skb+0x45d/0x810
[  146.405897][    C1]  ath9k_hif_usb_rx_cb+0xe58/0x1d20
[  146.411179][    C1]  __usb_hcd_giveback_urb+0x6ff/0x930
[  146.416554][    C1]  usb_hcd_giveback_urb+0x1cb/0x730
[  146.421755][    C1]  dummy_timer+0xda7/0x74f0
[  146.426252][    C1]  call_timer_fn+0x7d/0x450
[  146.431121][    C1]  expire_timers+0x328/0x6c0
[  146.435721][    C1]  __run_timers+0x624/0x9e0
[  146.440236][    C1]  run_timer_softirq+0x2d/0x50
[  146.445267][    C1]  __do_softirq+0x1b9/0x715
[  146.449761][    C1] =====================================================
[  146.456948][    C1] =====================================================
[  146.463880][    C1] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x96f/0x1f60
[  146.471259][    C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G    B             5.12.0-rc6-syzkaller #0
[  146.480619][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  146.491278][    C1] Call Trace:
[  146.494553][    C1]  <IRQ>
[  146.497381][    C1]  dump_stack+0x24c/0x2e0
[  146.501703][    C1]  kmsan_report+0xfb/0x1e0
[  146.506109][    C1]  __msan_warning+0x5c/0xa0
[  146.510751][    C1]  ath9k_htc_rx_msg+0x96f/0x1f60
[  146.515705][    C1]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  146.521782][    C1]  ath9k_hif_usb_rx_cb+0x184e/0x1d20
[  146.527114][    C1]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  146.533278][    C1]  ? _raw_spin_unlock_irqrestore+0x37/0x80
[  146.539211][    C1]  ? kmsan_get_metadata+0x116/0x180
[  146.544430][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  146.550231][    C1]  ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[  146.556129][    C1]  __usb_hcd_giveback_urb+0x6ff/0x930
[  146.561580][    C1]  ? kmsan_get_metadata+0x116/0x180
[  146.566789][    C1]  usb_hcd_giveback_urb+0x1cb/0x730
[  146.572150][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  146.577942][    C1]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  146.584086][    C1]  dummy_timer+0xda7/0x74f0
[  146.588597][    C1]  ? kmsan_get_metadata+0x116/0x180
[  146.593797][    C1]  ? kmsan_internal_set_origin+0x85/0xc0
[  146.599437][    C1]  ? dummy_free_streams+0x5b0/0x5b0
[  146.604622][    C1]  call_timer_fn+0x7d/0x450
[  146.609202][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  146.615029][    C1]  expire_timers+0x328/0x6c0
[  146.619611][    C1]  ? dummy_free_streams+0x5b0/0x5b0
[  146.624811][    C1]  __run_timers+0x624/0x9e0
[  146.629395][    C1]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  146.636402][    C1]  ? irqtime_account_irq+0xe3/0x380
[  146.641612][    C1]  ? kmsan_get_metadata+0x116/0x180
[  146.646815][    C1]  ? migrate_timer_list+0x5f0/0x5f0
[  146.652018][    C1]  run_timer_softirq+0x2d/0x50
[  146.656769][    C1]  __do_softirq+0x1b9/0x715
[  146.661260][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  146.667098][    C1]  __irq_exit_rcu+0x22f/0x280
[  146.672006][    C1]  irq_exit_rcu+0xe/0x10
[  146.676253][    C1]  sysvec_apic_timer_interrupt+0xc6/0xf0
[  146.681886][    C1]  </IRQ>
[  146.684817][    C1]  asm_sysvec_apic_timer_interrupt+0x12/0x20
[  146.690791][    C1] RIP: 0010:acpi_idle_enter+0x61d/0x760
[  146.696350][    C1] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c ea 2b fb 0f 00 2d 9f 3a 6e 09 fb f4 <fa> e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 ef da ae fb e9 e5
[  146.715963][    C1] RSP: 0018:ffff888101bffc40 EFLAGS: 00000246
[  146.722078][    C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000001017f1f40
[  146.730042][    C1] RDX: ffff888101bf1f40 RSI: 0000000000000000 RDI: 0000000000000000
[  146.738031][    C1] RBP: ffff888101bffcd8 R08: ffffffff869049ae R09: ffff88813fffa000
[  146.745995][    C1] R10: 0000000000000002 R11: ffff888101bf1f40 R12: 0000000000000000
[  146.755028][    C1] R13: ffff888141724464 R14: 0000000000000000 R15: ffff888101bf29c8
[  146.763089][    C1]  ? acpi_idle_enter+0x5ee/0x760
[  146.768042][    C1]  ? acpi_idle_lpi_enter+0x160/0x160
[  146.773314][    C1]  cpuidle_enter_state+0x99e/0x1750
[  146.778502][    C1]  cpuidle_enter+0xe3/0x170
[  146.783001][    C1]  do_idle+0x5df/0x790
[  146.787068][    C1]  cpu_startup_entry+0x45/0x50
[  146.791854][    C1]  ? setup_APIC_timer+0x210/0x210
[  146.796890][    C1]  start_secondary+0xe9/0xf0
[  146.801474][    C1]  secondary_startup_64_no_verify+0xb0/0xbb
[  146.807361][    C1] 
[  146.809675][    C1] Uninit was created at:
[  146.813894][    C1]  kmsan_internal_poison_shadow+0x5c/0xf0
[  146.819617][    C1]  kmsan_slab_alloc+0x8e/0xe0
[  146.824277][    C1]  __kmalloc_node_track_caller+0xa4f/0x1470
[  146.830158][    C1]  __alloc_skb+0x4dd/0xe90
[  146.834556][    C1]  __netdev_alloc_skb+0x45d/0x810
[  146.839576][    C1]  ath9k_hif_usb_rx_cb+0xe58/0x1d20
[  146.844773][    C1]  __usb_hcd_giveback_urb+0x6ff/0x930
[  146.850143][    C1]  usb_hcd_giveback_urb+0x1cb/0x730
[  146.855325][    C1]  dummy_timer+0xda7/0x74f0
[  146.859827][    C1]  call_timer_fn+0x7d/0x450
[  146.864337][    C1]  expire_timers+0x328/0x6c0
[  146.868915][    C1]  __run_timers+0x624/0x9e0
[  146.873415][    C1]  run_timer_softirq+0x2d/0x50
[  146.878165][    C1]  __do_softirq+0x1b9/0x715
[  146.882657][    C1] =====================================================
[  146.894443][    C1] clocksource: timekeeping watchdog on CPU1: Marking clocksource 'tsc' as unstable because the skew is too large:
[  146.906797][    C1] clocksource:                       'acpi_pm' wd_now: 337451 wd_last: b0cf31 mask: ffffff
executing program
[  146.917655][    C1] clocksource:                       'tsc' cs_now: 5202abfa1c cs_last: 50bac32fac mask: ffffffffffffffff
[  146.929233][    C1] tsc: Marking TSC unstable due to clocksource watchdog
[  146.936810][   T56] TSC found unstable after boot, most likely due to broken BIOS. Use 'tsc=unstable'.
[  146.946507][   T56] sched_clock: Marking unstable (146994427453, -57625485)<-(146941115658, -4311967)
[  146.946801][ T4689] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive
[  146.966879][ T4689] ath9k_htc: Failed to initialize the device
[  146.974139][    T7] usb 1-1: ath9k_htc: USB layer deinitialized
[  146.984663][ T8243] clocksource: Switched to clocksource acpi_pm
[  147.382672][    T7] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  147.902797][    T7] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  147.912068][    T7] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  147.920499][    T7] usb 1-1: Product: syz
[  147.925040][    T7] usb 1-1: Manufacturer: syz
[  147.929824][    T7] usb 1-1: SerialNumber: syz
[  147.975355][    T7] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  148.542785][ T2951] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  148.752612][    C0] =====================================================
[  148.759568][    C0] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x28c/0x1f60
[  148.762445][    C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G    B             5.12.0-rc6-syzkaller #0
[  148.762445][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  148.762445][    C0] Call Trace:
[  148.762445][    C0]  <IRQ>
[  148.762445][    C0]  dump_stack+0x24c/0x2e0
[  148.762445][    C0]  kmsan_report+0xfb/0x1e0
[  148.762445][    C0]  __msan_warning+0x5c/0xa0
[  148.762445][    C0]  ath9k_htc_rx_msg+0x28c/0x1f60
[  148.762445][    C0]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  148.812795][    C0]  ath9k_hif_usb_rx_cb+0x184e/0x1d20
[  148.812795][    C0]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  148.812795][    C0]  ? _raw_spin_unlock_irqrestore+0x37/0x80
[  148.812795][    C0]  ? kmsan_get_metadata+0x116/0x180
[  148.812795][    C0]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  148.812795][    C0]  ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[  148.812795][    C0]  __usb_hcd_giveback_urb+0x6ff/0x930
[  148.812795][    C0]  ? kmsan_get_metadata+0x116/0x180
[  148.812795][    C0]  usb_hcd_giveback_urb+0x1cb/0x730
[  148.812795][    C0]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  148.812795][    C0]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  148.812795][    C0]  dummy_timer+0xda7/0x74f0
[  148.812795][    C0]  ? kmsan_get_metadata+0x116/0x180
[  148.812795][    C0]  ? kmsan_get_metadata+0x116/0x180
[  148.812795][    C0]  ? kmsan_internal_set_origin+0x85/0xc0
[  148.812795][    C0]  ? dummy_free_streams+0x5b0/0x5b0
[  148.812795][    C0]  call_timer_fn+0x7d/0x450
[  148.812795][    C0]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  148.812795][    C0]  expire_timers+0x328/0x6c0
[  148.812795][    C0]  ? dummy_free_streams+0x5b0/0x5b0
[  148.812795][    C0]  __run_timers+0x624/0x9e0
[  148.812795][    C0]  ? __msan_metadata_ptr_for_load_1+0x10/0x20
[  148.812795][    C0]  ? irqtime_account_irq+0x5e/0x380
[  148.812795][    C0]  ? kmsan_get_metadata+0x116/0x180
[  148.946818][    C0]  ? migrate_timer_list+0x5f0/0x5f0
[  148.948754][ T4689] usb 1-1: USB disconnect, device number 3
[  148.946818][    C0]  run_timer_softirq+0x2d/0x50
[  148.946818][    C0]  __do_softirq+0x1b9/0x715
[  148.946818][    C0]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  148.946818][    C0]  __irq_exit_rcu+0x22f/0x280
[  148.946818][    C0]  irq_exit_rcu+0xe/0x10
[  148.954062][    C0]  sysvec_apic_timer_interrupt+0xc6/0xf0
[  148.954062][    C0]  </IRQ>
[  148.954062][    C0]  asm_sysvec_apic_timer_interrupt+0x12/0x20
[  148.962458][    C0] RIP: 0010:acpi_idle_enter+0x61d/0x760
[  148.962458][    C0] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c ea 2b fb 0f 00 2d 9f 3a 6e 09 fb f4 <fa> e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 ef da ae fb e9 e5
[  149.019065][    C0] RSP: 0018:ffffffff91603b70 EFLAGS: 00000246
[  149.019065][    C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000023ead6040
[  149.019065][    C0] RDX: ffffffff91631040 RSI: 0000000000000000 RDI: 0000000000000000
[  149.019065][    C0] RBP: ffffffff91603c08 R08: ffffffff869049ae R09: ffff88813fffa000
[  149.019065][    C0] R10: 0000000000000002 R11: ffffffff91631040 R12: 0000000000000000
[  149.019065][    C0] R13: ffff888141724064 R14: 0000000000000000 R15: ffffffff91631ac8
[  149.019065][    C0]  ? acpi_idle_enter+0x5ee/0x760
[  149.073216][    C0]  ? acpi_idle_lpi_enter+0x160/0x160
[  149.073216][    C0]  cpuidle_enter_state+0x99e/0x1750
[  149.073216][    C0]  cpuidle_enter+0xe3/0x170
[  149.073216][    C0]  do_idle+0x5df/0x790
[  149.073216][    C0]  cpu_startup_entry+0x45/0x50
[  149.073216][    C0]  rest_init+0x1c8/0x1f0
[  149.073216][    C0]  arch_call_rest_init+0x13/0x15
[  149.073216][    C0]  start_kernel+0xa17/0xbd8
[  149.073216][    C0]  x86_64_start_reservations+0x2a/0x2c
[  149.073216][    C0]  x86_64_start_kernel+0x86/0x89
[  149.073216][    C0]  secondary_startup_64_no_verify+0xb0/0xbb
[  149.073216][    C0] 
[  149.073216][    C0] Uninit was created at:
[  149.073216][    C0]  kmsan_internal_poison_shadow+0x5c/0xf0
[  149.073216][    C0]  kmsan_slab_alloc+0x8e/0xe0
[  149.073216][    C0]  __kmalloc_node_track_caller+0xa4f/0x1470
[  149.073216][    C0]  __alloc_skb+0x4dd/0xe90
[  149.073216][    C0]  __netdev_alloc_skb+0x45d/0x810
[  149.073216][    C0]  ath9k_hif_usb_rx_cb+0xe58/0x1d20
[  149.073216][    C0]  __usb_hcd_giveback_urb+0x6ff/0x930
[  149.073216][    C0]  usb_hcd_giveback_urb+0x1cb/0x730
[  149.073216][    C0]  dummy_timer+0xda7/0x74f0
[  149.073216][    C0]  call_timer_fn+0x7d/0x450
[  149.073216][    C0]  expire_timers+0x328/0x6c0
[  149.073216][    C0]  __run_timers+0x624/0x9e0
[  149.073216][    C0]  run_timer_softirq+0x2d/0x50
[  149.073216][    C0]  __do_softirq+0x1b9/0x715
[  149.073216][    C0] =====================================================
[  149.073216][    C0] =====================================================
[  149.073216][    C0] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x4c0/0x1f60
[  149.073216][    C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G    B             5.12.0-rc6-syzkaller #0
[  149.073216][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  149.073216][    C0] Call Trace:
[  149.073216][    C0]  <IRQ>
[  149.073216][    C0]  dump_stack+0x24c/0x2e0
[  149.073216][    C0]  kmsan_report+0xfb/0x1e0
[  149.073216][    C0]  __msan_warning+0x5c/0xa0
[  149.073216][    C0]  ath9k_htc_rx_msg+0x4c0/0x1f60
[  149.073216][    C0]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  149.073216][    C0]  ath9k_hif_usb_rx_cb+0x184e/0x1d20
[  149.073216][    C0]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  149.073216][    C0]  ? _raw_spin_unlock_irqrestore+0x37/0x80
[  149.073216][    C0]  ? kmsan_get_metadata+0x116/0x180
[  149.073216][    C0]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  149.073216][    C0]  ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[  149.073216][    C0]  __usb_hcd_giveback_urb+0x6ff/0x930
[  149.073216][    C0]  ? kmsan_get_metadata+0x116/0x180
[  149.073216][    C0]  usb_hcd_giveback_urb+0x1cb/0x730
[  149.073216][    C0]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  149.073216][    C0]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  149.073216][    C0]  dummy_timer+0xda7/0x74f0
[  149.073216][    C0]  ? kmsan_get_metadata+0x116/0x180
[  149.073216][    C0]  ? kmsan_get_metadata+0x116/0x180
[  149.073216][    C0]  ? kmsan_internal_set_origin+0x85/0xc0
[  149.073216][    C0]  ? dummy_free_streams+0x5b0/0x5b0
[  149.073216][    C0]  call_timer_fn+0x7d/0x450
[  149.073216][    C0]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  149.073216][    C0]  expire_timers+0x328/0x6c0
[  149.073216][    C0]  ? dummy_free_streams+0x5b0/0x5b0
[  149.073216][    C0]  __run_timers+0x624/0x9e0
[  149.073216][    C0]  ? __msan_metadata_ptr_for_load_1+0x10/0x20
[  149.073216][    C0]  ? irqtime_account_irq+0x5e/0x380
[  149.073216][    C0]  ? kmsan_get_metadata+0x116/0x180
[  149.073216][    C0]  ? migrate_timer_list+0x5f0/0x5f0
[  149.073216][    C0]  run_timer_softirq+0x2d/0x50
[  149.073216][    C0]  __do_softirq+0x1b9/0x715
[  149.073216][    C0]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  149.073216][    C0]  __irq_exit_rcu+0x22f/0x280
[  149.073216][    C0]  irq_exit_rcu+0xe/0x10
[  149.073216][    C0]  sysvec_apic_timer_interrupt+0xc6/0xf0
[  149.073216][    C0]  </IRQ>
[  149.073216][    C0]  asm_sysvec_apic_timer_interrupt+0x12/0x20
[  149.073216][    C0] RIP: 0010:acpi_idle_enter+0x61d/0x760
[  149.073216][    C0] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c ea 2b fb 0f 00 2d 9f 3a 6e 09 fb f4 <fa> e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 ef da ae fb e9 e5
[  149.073216][    C0] RSP: 0018:ffffffff91603b70 EFLAGS: 00000246
[  149.073216][    C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000023ead6040
[  149.073216][    C0] RDX: ffffffff91631040 RSI: 0000000000000000 RDI: 0000000000000000
[  149.073216][    C0] RBP: ffffffff91603c08 R08: ffffffff869049ae R09: ffff88813fffa000
[  149.073216][    C0] R10: 0000000000000002 R11: ffffffff91631040 R12: 0000000000000000
[  149.073216][    C0] R13: ffff888141724064 R14: 0000000000000000 R15: ffffffff91631ac8
[  149.073216][    C0]  ? acpi_idle_enter+0x5ee/0x760
[  149.073216][    C0]  ? acpi_idle_lpi_enter+0x160/0x160
[  149.073216][    C0]  cpuidle_enter_state+0x99e/0x1750
[  149.073216][    C0]  cpuidle_enter+0xe3/0x170
[  149.073216][    C0]  do_idle+0x5df/0x790
[  149.073216][    C0]  cpu_startup_entry+0x45/0x50
[  149.073216][    C0]  rest_init+0x1c8/0x1f0
[  149.073216][    C0]  arch_call_rest_init+0x13/0x15
[  149.073216][    C0]  start_kernel+0xa17/0xbd8
[  149.073216][    C0]  x86_64_start_reservations+0x2a/0x2c
[  149.073216][    C0]  x86_64_start_kernel+0x86/0x89
[  149.073216][    C0]  secondary_startup_64_no_verify+0xb0/0xbb
[  149.073216][    C0] 
[  149.073216][    C0] Uninit was created at:
[  149.073216][    C0]  kmsan_internal_poison_shadow+0x5c/0xf0
[  149.073216][    C0]  kmsan_slab_alloc+0x8e/0xe0
[  149.073216][    C0]  __kmalloc_node_track_caller+0xa4f/0x1470
[  149.073216][    C0]  __alloc_skb+0x4dd/0xe90
[  149.073216][    C0]  __netdev_alloc_skb+0x45d/0x810
[  149.073216][    C0]  ath9k_hif_usb_rx_cb+0xe58/0x1d20
[  149.073216][    C0]  __usb_hcd_giveback_urb+0x6ff/0x930
[  149.073216][    C0]  usb_hcd_giveback_urb+0x1cb/0x730
[  149.073216][    C0]  dummy_timer+0xda7/0x74f0
[  149.073216][    C0]  call_timer_fn+0x7d/0x450
[  149.073216][    C0]  expire_timers+0x328/0x6c0
[  149.073216][    C0]  __run_timers+0x624/0x9e0
[  149.073216][    C0]  run_timer_softirq+0x2d/0x50
[  149.073216][    C0]  __do_softirq+0x1b9/0x715
[  149.073216][    C0] =====================================================
[  149.073216][    C0] =====================================================
[  149.073216][    C0] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x7b8/0x1f60
[  149.073216][    C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G    B             5.12.0-rc6-syzkaller #0
[  149.073216][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  149.073216][    C0] Call Trace:
[  149.073216][    C0]  <IRQ>
[  149.073216][    C0]  dump_stack+0x24c/0x2e0
[  149.073216][    C0]  kmsan_report+0xfb/0x1e0
[  149.073216][    C0]  __msan_warning+0x5c/0xa0
[  149.073216][    C0]  ath9k_htc_rx_msg+0x7b8/0x1f60
[  149.073216][    C0]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  149.073216][    C0]  ath9k_hif_usb_rx_cb+0x184e/0x1d20
[  149.073216][    C0]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  149.073216][    C0]  ? _raw_spin_unlock_irqrestore+0x37/0x80
[  149.073216][    C0]  ? kmsan_get_metadata+0x116/0x180
[  149.073216][    C0]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  149.073216][    C0]  ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[  149.073216][    C0]  __usb_hcd_giveback_urb+0x6ff/0x930
[  149.073216][    C0]  ? kmsan_get_metadata+0x116/0x180
[  149.073216][    C0]  usb_hcd_giveback_urb+0x1cb/0x730
[  149.073216][    C0]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  149.073216][    C0]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  149.073216][    C0]  dummy_timer+0xda7/0x74f0
[  149.073216][    C0]  ? kmsan_get_metadata+0x116/0x180
[  149.073216][    C0]  ? kmsan_get_metadata+0x116/0x180
[  149.073216][    C0]  ? kmsan_internal_set_origin+0x85/0xc0
[  149.073216][    C0]  ? dummy_free_streams+0x5b0/0x5b0
[  149.073216][    C0]  call_timer_fn+0x7d/0x450
[  149.073216][    C0]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  149.073216][    C0]  expire_timers+0x328/0x6c0
[  149.073216][    C0]  ? dummy_free_streams+0x5b0/0x5b0
[  149.073216][    C0]  __run_timers+0x624/0x9e0
[  149.073216][    C0]  ? __msan_metadata_ptr_for_load_1+0x10/0x20
[  149.073216][    C0]  ? irqtime_account_irq+0x5e/0x380
[  149.073216][    C0]  ? kmsan_get_metadata+0x116/0x180
[  149.073216][    C0]  ? migrate_timer_list+0x5f0/0x5f0
[  149.073216][    C0]  run_timer_softirq+0x2d/0x50
[  149.073216][    C0]  __do_softirq+0x1b9/0x715
[  149.073216][    C0]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  149.073216][    C0]  __irq_exit_rcu+0x22f/0x280
[  149.073216][    C0]  irq_exit_rcu+0xe/0x10
[  149.073216][    C0]  sysvec_apic_timer_interrupt+0xc6/0xf0
[  149.073216][    C0]  </IRQ>
[  149.073216][    C0]  asm_sysvec_apic_timer_interrupt+0x12/0x20
[  149.073216][    C0] RIP: 0010:acpi_idle_enter+0x61d/0x760
[  149.073216][    C0] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c ea 2b fb 0f 00 2d 9f 3a 6e 09 fb f4 <fa> e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 ef da ae fb e9 e5
[  149.073216][    C0] RSP: 0018:ffffffff91603b70 EFLAGS: 00000246
[  149.073216][    C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000023ead6040
[  149.073216][    C0] RDX: ffffffff91631040 RSI: 0000000000000000 RDI: 0000000000000000
[  149.073216][    C0] RBP: ffffffff91603c08 R08: ffffffff869049ae R09: ffff88813fffa000
[  149.073216][    C0] R10: 0000000000000002 R11: ffffffff91631040 R12: 0000000000000000
[  149.073216][    C0] R13: ffff888141724064 R14: 0000000000000000 R15: ffffffff91631ac8
[  149.073216][    C0]  ? acpi_idle_enter+0x5ee/0x760
[  149.073216][    C0]  ? acpi_idle_lpi_enter+0x160/0x160
[  149.073216][    C0]  cpuidle_enter_state+0x99e/0x1750
[  149.073216][    C0]  cpuidle_enter+0xe3/0x170
[  149.073216][    C0]  do_idle+0x5df/0x790
[  149.073216][    C0]  cpu_startup_entry+0x45/0x50
[  149.073216][    C0]  rest_init+0x1c8/0x1f0
[  149.073216][    C0]  arch_call_rest_init+0x13/0x15
[  149.073216][    C0]  start_kernel+0xa17/0xbd8
[  149.073216][    C0]  x86_64_start_reservations+0x2a/0x2c
[  149.073216][    C0]  x86_64_start_kernel+0x86/0x89
[  149.073216][    C0]  secondary_startup_64_no_verify+0xb0/0xbb
[  149.073216][    C0] 
[  149.073216][    C0] Uninit was created at:
[  149.073216][    C0]  kmsan_internal_poison_shadow+0x5c/0xf0
[  149.073216][    C0]  kmsan_slab_alloc+0x8e/0xe0
[  149.073216][    C0]  __kmalloc_node_track_caller+0xa4f/0x1470
[  149.073216][    C0]  __alloc_skb+0x4dd/0xe90
[  149.073216][    C0]  __netdev_alloc_skb+0x45d/0x810
[  149.073216][    C0]  ath9k_hif_usb_rx_cb+0xe58/0x1d20
[  149.073216][    C0]  __usb_hcd_giveback_urb+0x6ff/0x930
[  149.073216][    C0]  usb_hcd_giveback_urb+0x1cb/0x730
[  149.073216][    C0]  dummy_timer+0xda7/0x74f0
[  149.073216][    C0]  call_timer_fn+0x7d/0x450
[  149.073216][    C0]  expire_timers+0x328/0x6c0
[  149.073216][    C0]  __run_timers+0x624/0x9e0
[  149.073216][    C0]  run_timer_softirq+0x2d/0x50
[  149.073216][    C0]  __do_softirq+0x1b9/0x715
[  149.073216][    C0] =====================================================
[  149.073216][    C0] =====================================================
[  149.073216][    C0] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x80c/0x1f60
[  149.073216][    C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G    B             5.12.0-rc6-syzkaller #0
[  149.073216][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  149.073216][    C0] Call Trace:
[  149.073216][    C0]  <IRQ>
[  149.073216][    C0]  dump_stack+0x24c/0x2e0
[  149.073216][    C0]  kmsan_report+0xfb/0x1e0
[  149.073216][    C0]  __msan_warning+0x5c/0xa0
[  149.073216][    C0]  ath9k_htc_rx_msg+0x80c/0x1f60
[  149.073216][    C0]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  149.073216][    C0]  ath9k_hif_usb_rx_cb+0x184e/0x1d20
[  149.073216][    C0]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  149.073216][    C0]  ? _raw_spin_unlock_irqrestore+0x37/0x80
[  149.073216][    C0]  ? kmsan_get_metadata+0x116/0x180
[  149.073216][    C0]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  149.073216][    C0]  ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[  149.073216][    C0]  __usb_hcd_giveback_urb+0x6ff/0x930
[  149.073216][    C0]  ? kmsan_get_metadata+0x116/0x180
[  149.073216][    C0]  usb_hcd_giveback_urb+0x1cb/0x730
[  149.073216][    C0]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  149.073216][    C0]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  149.073216][    C0]  dummy_timer+0xda7/0x74f0
[  149.073216][    C0]  ? kmsan_get_metadata+0x116/0x180
[  149.073216][    C0]  ? kmsan_get_metadata+0x116/0x180
[  149.073216][    C0]  ? kmsan_internal_set_origin+0x85/0xc0
[  149.073216][    C0]  ? dummy_free_streams+0x5b0/0x5b0
[  149.073216][    C0]  call_timer_fn+0x7d/0x450
[  149.073216][    C0]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  149.073216][    C0]  expire_timers+0x328/0x6c0
[  149.073216][    C0]  ? dummy_free_streams+0x5b0/0x5b0
[  149.073216][    C0]  __run_timers+0x624/0x9e0
[  149.073216][    C0]  ? __msan_metadata_ptr_for_load_1+0x10/0x20
[  149.073216][    C0]  ? irqtime_account_irq+0x5e/0x380
[  149.073216][    C0]  ? kmsan_get_metadata+0x116/0x180
[  149.073216][    C0]  ? migrate_timer_list+0x5f0/0x5f0
[  149.073216][    C0]  run_timer_softirq+0x2d/0x50
[  149.073216][    C0]  __do_softirq+0x1b9/0x715
[  149.073216][    C0]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  149.073216][    C0]  __irq_exit_rcu+0x22f/0x280
[  149.073216][    C0]  irq_exit_rcu+0xe/0x10
[  149.073216][    C0]  sysvec_apic_timer_interrupt+0xc6/0xf0
[  149.073216][    C0]  </IRQ>
[  149.073216][    C0]  asm_sysvec_apic_timer_interrupt+0x12/0x20
[  149.073216][    C0] RIP: 0010:acpi_idle_enter+0x61d/0x760
[  149.073216][    C0] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c ea 2b fb 0f 00 2d 9f 3a 6e 09 fb f4 <fa> e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 ef da ae fb e9 e5
[  149.073216][    C0] RSP: 0018:ffffffff91603b70 EFLAGS: 00000246
[  149.073216][    C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000023ead6040
[  149.073216][    C0] RDX: ffffffff91631040 RSI: 0000000000000000 RDI: 0000000000000000
[  149.073216][    C0] RBP: ffffffff91603c08 R08: ffffffff869049ae R09: ffff88813fffa000
[  149.073216][    C0] R10: 0000000000000002 R11: ffffffff91631040 R12: 0000000000000000
[  149.073216][    C0] R13: ffff888141724064 R14: 0000000000000000 R15: ffffffff91631ac8
[  149.073216][    C0]  ? acpi_idle_enter+0x5ee/0x760
[  149.073216][    C0]  ? acpi_idle_lpi_enter+0x160/0x160
[  149.073216][    C0]  cpuidle_enter_state+0x99e/0x1750
[  149.073216][    C0]  cpuidle_enter+0xe3/0x170
[  149.073216][    C0]  do_idle+0x5df/0x790
[  149.073216][    C0]  cpu_startup_entry+0x45/0x50
[  149.073216][    C0]  rest_init+0x1c8/0x1f0
[  149.073216][    C0]  arch_call_rest_init+0x13/0x15
[  149.073216][    C0]  start_kernel+0xa17/0xbd8
[  149.073216][    C0]  x86_64_start_reservations+0x2a/0x2c
[  149.073216][    C0]  x86_64_start_kernel+0x86/0x89
[  149.073216][    C0]  secondary_startup_64_no_verify+0xb0/0xbb
[  149.073216][    C0] 
[  149.073216][    C0] Uninit was created at:
[  149.073216][    C0]  kmsan_internal_poison_shadow+0x5c/0xf0
[  149.073216][    C0]  kmsan_slab_alloc+0x8e/0xe0
[  149.073216][    C0]  __kmalloc_node_track_caller+0xa4f/0x1470
[  149.073216][    C0]  __alloc_skb+0x4dd/0xe90
[  149.073216][    C0]  __netdev_alloc_skb+0x45d/0x810
[  149.073216][    C0]  ath9k_hif_usb_rx_cb+0xe58/0x1d20
[  149.073216][    C0]  __usb_hcd_giveback_urb+0x6ff/0x930
[  149.073216][    C0]  usb_hcd_giveback_urb+0x1cb/0x730
[  149.073216][    C0]  dummy_timer+0xda7/0x74f0
[  149.073216][    C0]  call_timer_fn+0x7d/0x450
[  149.073216][    C0]  expire_timers+0x328/0x6c0
[  149.073216][    C0]  __run_timers+0x624/0x9e0
[  149.073216][    C0]  run_timer_softirq+0x2d/0x50
[  149.073216][    C0]  __do_softirq+0x1b9/0x715
[  149.073216][    C0] =====================================================
[  149.073216][    C0] =====================================================
[  149.073216][    C0] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x96f/0x1f60
[  149.073216][    C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G    B             5.12.0-rc6-syzkaller #0
[  149.073216][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  149.073216][    C0] Call Trace:
[  149.073216][    C0]  <IRQ>
[  149.073216][    C0]  dump_stack+0x24c/0x2e0
[  149.073216][    C0]  kmsan_report+0xfb/0x1e0
[  149.073216][    C0]  __msan_warning+0x5c/0xa0
[  149.073216][    C0]  ath9k_htc_rx_msg+0x96f/0x1f60
[  149.073216][    C0]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  149.073216][    C0]  ath9k_hif_usb_rx_cb+0x184e/0x1d20
[  149.073216][    C0]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  149.073216][    C0]  ? _raw_spin_unlock_irqrestore+0x37/0x80
[  149.073216][    C0]  ? kmsan_get_metadata+0x116/0x180
[  149.073216][    C0]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  149.073216][    C0]  ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[  149.073216][    C0]  __usb_hcd_giveback_urb+0x6ff/0x930
[  149.073216][    C0]  ? kmsan_get_metadata+0x116/0x180
[  149.073216][    C0]  usb_hcd_giveback_urb+0x1cb/0x730
[  149.073216][    C0]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  149.073216][    C0]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  149.073216][    C0]  dummy_timer+0xda7/0x74f0
[  149.073216][    C0]  ? kmsan_get_metadata+0x116/0x180
[  149.073216][    C0]  ? kmsan_get_metadata+0x116/0x180
[  149.073216][    C0]  ? kmsan_internal_set_origin+0x85/0xc0
[  149.073216][    C0]  ? dummy_free_streams+0x5b0/0x5b0
[  149.073216][    C0]  call_timer_fn+0x7d/0x450
[  149.073216][    C0]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  149.073216][    C0]  expire_timers+0x328/0x6c0
[  149.073216][    C0]  ? dummy_free_streams+0x5b0/0x5b0
[  149.073216][    C0]  __run_timers+0x624/0x9e0
[  149.073216][    C0]  ? __msan_metadata_ptr_for_load_1+0x10/0x20
[  149.073216][    C0]  ? irqtime_account_irq+0x5e/0x380
[  149.073216][    C0]  ? kmsan_get_metadata+0x116/0x180
[  149.073216][    C0]  ? migrate_timer_list+0x5f0/0x5f0
[  149.073216][    C0]  run_timer_softirq+0x2d/0x50
[  149.073216][    C0]  __do_softirq+0x1b9/0x715
[  149.073216][    C0]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  149.073216][    C0]  __irq_exit_rcu+0x22f/0x280
[  149.073216][    C0]  irq_exit_rcu+0xe/0x10
[  149.073216][    C0]  sysvec_apic_timer_interrupt+0xc6/0xf0
[  149.073216][    C0]  </IRQ>
[  149.073216][    C0]  asm_sysvec_apic_timer_interrupt+0x12/0x20
[  149.073216][    C0] RIP: 0010:acpi_idle_enter+0x61d/0x760
[  149.073216][    C0] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c ea 2b fb 0f 00 2d 9f 3a 6e 09 fb f4 <fa> e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 ef da ae fb e9 e5
[  149.073216][    C0] RSP: 0018:ffffffff91603b70 EFLAGS: 00000246
[  149.073216][    C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000023ead6040
[  149.073216][    C0] RDX: ffffffff91631040 RSI: 0000000000000000 RDI: 0000000000000000
[  149.073216][    C0] RBP: ffffffff91603c08 R08: ffffffff869049ae R09: ffff88813fffa000
[  149.073216][    C0] R10: 0000000000000002 R11: ffffffff91631040 R12: 0000000000000000
[  149.073216][    C0] R13: ffff888141724064 R14: 0000000000000000 R15: ffffffff91631ac8
[  149.073216][    C0]  ? acpi_idle_enter+0x5ee/0x760
[  149.073216][    C0]  ? acpi_idle_lpi_enter+0x160/0x160
[  149.073216][    C0]  cpuidle_enter_state+0x99e/0x1750
[  149.073216][    C0]  cpuidle_enter+0xe3/0x170
[  149.073216][    C0]  do_idle+0x5df/0x790
[  149.073216][    C0]  cpu_startup_entry+0x45/0x50
[  149.073216][    C0]  rest_init+0x1c8/0x1f0
[  149.073216][    C0]  arch_call_rest_init+0x13/0x15
[  149.073216][    C0]  start_kernel+0xa17/0xbd8
[  149.073216][    C0]  x86_64_start_reservations+0x2a/0x2c
[  149.073216][    C0]  x86_64_start_kernel+0x86/0x89
[  149.073216][    C0]  secondary_startup_64_no_verify+0xb0/0xbb
[  149.073216][    C0] 
[  149.073216][    C0] Uninit was created at:
[  149.073216][    C0]  kmsan_internal_poison_shadow+0x5c/0xf0
[  149.073216][    C0]  kmsan_slab_alloc+0x8e/0xe0
[  149.073216][    C0]  __kmalloc_node_track_caller+0xa4f/0x1470
[  149.073216][    C0]  __alloc_skb+0x4dd/0xe90
[  149.073216][    C0]  __netdev_alloc_skb+0x45d/0x810
[  149.073216][    C0]  ath9k_hif_usb_rx_cb+0xe58/0x1d20
[  149.073216][    C0]  __usb_hcd_giveback_urb+0x6ff/0x930
[  149.073216][    C0]  usb_hcd_giveback_urb+0x1cb/0x730
[  149.073216][    C0]  dummy_timer+0xda7/0x74f0
[  149.073216][    C0]  call_timer_fn+0x7d/0x450
[  149.073216][    C0]  expire_timers+0x328/0x6c0
[  149.073216][    C0]  __run_timers+0x624/0x9e0
executing program
[  149.073216][    C0]  run_timer_softirq+0x2d/0x50
[  149.073216][    C0]  __do_softirq+0x1b9/0x715
[  149.073216][    C0] =====================================================
[  151.034918][ T2951] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive
[  151.042073][ T2951] ath9k_htc: Failed to initialize the device
[  151.060612][ T4689] usb 1-1: ath9k_htc: USB layer deinitialized
[  151.442572][ T4689] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  151.972874][ T4689] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  151.982118][ T4689] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  151.990551][ T4689] usb 1-1: Product: syz
[  151.995025][ T4689] usb 1-1: Manufacturer: syz
[  151.999747][ T4689] usb 1-1: SerialNumber: syz
[  152.054077][ T4689] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  152.642748][   T56] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  152.862583][    C1] =====================================================
[  152.869533][    C1] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x28c/0x1f60
[  152.872458][    C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G    B             5.12.0-rc6-syzkaller #0
[  152.872458][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  152.872458][    C1] Call Trace:
[  152.872458][    C1]  <IRQ>
[  152.872458][    C1]  dump_stack+0x24c/0x2e0
[  152.872458][    C1]  kmsan_report+0xfb/0x1e0
[  152.872458][    C1]  __msan_warning+0x5c/0xa0
[  152.872458][    C1]  ath9k_htc_rx_msg+0x28c/0x1f60
[  152.872458][    C1]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  152.872458][    C1]  ath9k_hif_usb_rx_cb+0x184e/0x1d20
[  152.872458][    C1]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  152.872458][    C1]  ? _raw_spin_unlock_irqrestore+0x37/0x80
[  152.872458][    C1]  ? kmsan_get_metadata+0x116/0x180
[  152.872458][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  152.872458][    C1]  ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[  152.872458][    C1]  __usb_hcd_giveback_urb+0x6ff/0x930
[  152.872458][    C1]  ? kmsan_get_metadata+0x116/0x180
[  152.872458][    C1]  usb_hcd_giveback_urb+0x1cb/0x730
[  152.872458][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  152.872458][    C1]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  152.872458][    C1]  dummy_timer+0xda7/0x74f0
[  152.872458][    C1]  ? kmsan_get_metadata+0x116/0x180
[  152.872458][    C1]  ? kmsan_get_metadata+0x116/0x180
[  152.872458][    C1]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  152.872458][    C1]  ? dummy_free_streams+0x5b0/0x5b0
[  152.872458][    C1]  call_timer_fn+0x7d/0x450
[  152.872458][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  152.872458][    C1]  expire_timers+0x328/0x6c0
[  152.872458][    C1]  ? dummy_free_streams+0x5b0/0x5b0
[  152.872458][    C1]  __run_timers+0x624/0x9e0
[  152.872458][    C1]  ? __msan_metadata_ptr_for_load_1+0x10/0x20
[  153.046371][    C1]  ? irqtime_account_irq+0x5e/0x380
[  153.048217][ T2951] usb 1-1: USB disconnect, device number 4
[  153.046371][    C1]  ? kmsan_get_metadata+0x116/0x180
[  153.046371][    C1]  ? migrate_timer_list+0x5f0/0x5f0
[  153.057914][    C1]  run_timer_softirq+0x2d/0x50
[  153.057914][    C1]  __do_softirq+0x1b9/0x715
[  153.057914][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  153.057914][    C1]  __irq_exit_rcu+0x22f/0x280
[  153.057914][    C1]  irq_exit_rcu+0xe/0x10
[  153.057914][    C1]  sysvec_apic_timer_interrupt+0xc6/0xf0
[  153.057914][    C1]  </IRQ>
[  153.057914][    C1]  asm_sysvec_apic_timer_interrupt+0x12/0x20
[  153.057914][    C1] RIP: 0010:acpi_idle_enter+0x61d/0x760
[  153.057914][    C1] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c ea 2b fb 0f 00 2d 9f 3a 6e 09 fb f4 <fa> e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 ef da ae fb e9 e5
[  153.128652][    C1] RSP: 0018:ffff888101bffc40 EFLAGS: 00000246
[  153.128652][    C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000001017f1f40
[  153.128652][    C1] RDX: ffff888101bf1f40 RSI: 0000000000000000 RDI: 0000000000000000
[  153.128652][    C1] RBP: ffff888101bffcd8 R08: ffffffff869049ae R09: ffff88813fffa000
[  153.128652][    C1] R10: 0000000000000002 R11: ffff888101bf1f40 R12: 0000000000000000
[  153.128652][    C1] R13: ffff888141724464 R14: 0000000000000000 R15: ffff888101bf29c8
[  153.128652][    C1]  ? acpi_idle_enter+0x5ee/0x760
[  153.128652][    C1]  ? acpi_idle_lpi_enter+0x160/0x160
[  153.128652][    C1]  cpuidle_enter_state+0x99e/0x1750
[  153.128652][    C1]  cpuidle_enter+0xe3/0x170
[  153.128652][    C1]  do_idle+0x5df/0x790
[  153.128652][    C1]  cpu_startup_entry+0x45/0x50
[  153.128652][    C1]  ? setup_APIC_timer+0x210/0x210
[  153.128652][    C1]  start_secondary+0xe9/0xf0
[  153.128652][    C1]  secondary_startup_64_no_verify+0xb0/0xbb
[  153.128652][    C1] 
[  153.128652][    C1] Uninit was created at:
[  153.128652][    C1]  kmsan_internal_poison_shadow+0x5c/0xf0
[  153.128652][    C1]  kmsan_slab_alloc+0x8e/0xe0
[  153.128652][    C1]  __kmalloc_node_track_caller+0xa4f/0x1470
[  153.128652][    C1]  __alloc_skb+0x4dd/0xe90
[  153.128652][    C1]  __netdev_alloc_skb+0x45d/0x810
[  153.128652][    C1]  ath9k_hif_usb_rx_cb+0xe58/0x1d20
[  153.128652][    C1]  __usb_hcd_giveback_urb+0x6ff/0x930
[  153.128652][    C1]  usb_hcd_giveback_urb+0x1cb/0x730
[  153.128652][    C1]  dummy_timer+0xda7/0x74f0
[  153.128652][    C1]  call_timer_fn+0x7d/0x450
[  153.128652][    C1]  expire_timers+0x328/0x6c0
[  153.128652][    C1]  __run_timers+0x624/0x9e0
[  153.128652][    C1]  run_timer_softirq+0x2d/0x50
[  153.128652][    C1]  __do_softirq+0x1b9/0x715
[  153.128652][    C1] =====================================================
[  153.128652][    C1] =====================================================
[  153.128652][    C1] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x4c0/0x1f60
[  153.128652][    C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G    B             5.12.0-rc6-syzkaller #0
[  153.128652][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  153.128652][    C1] Call Trace:
[  153.128652][    C1]  <IRQ>
[  153.128652][    C1]  dump_stack+0x24c/0x2e0
[  153.128652][    C1]  kmsan_report+0xfb/0x1e0
[  153.128652][    C1]  __msan_warning+0x5c/0xa0
[  153.128652][    C1]  ath9k_htc_rx_msg+0x4c0/0x1f60
[  153.128652][    C1]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  153.128652][    C1]  ath9k_hif_usb_rx_cb+0x184e/0x1d20
[  153.128652][    C1]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  153.128652][    C1]  ? _raw_spin_unlock_irqrestore+0x37/0x80
[  153.128652][    C1]  ? kmsan_get_metadata+0x116/0x180
[  153.128652][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  153.128652][    C1]  ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[  153.128652][    C1]  __usb_hcd_giveback_urb+0x6ff/0x930
[  153.128652][    C1]  ? kmsan_get_metadata+0x116/0x180
[  153.128652][    C1]  usb_hcd_giveback_urb+0x1cb/0x730
[  153.128652][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  153.128652][    C1]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  153.128652][    C1]  dummy_timer+0xda7/0x74f0
[  153.128652][    C1]  ? kmsan_get_metadata+0x116/0x180
[  153.128652][    C1]  ? kmsan_get_metadata+0x116/0x180
[  153.128652][    C1]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  153.128652][    C1]  ? dummy_free_streams+0x5b0/0x5b0
[  153.128652][    C1]  call_timer_fn+0x7d/0x450
[  153.128652][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  153.128652][    C1]  expire_timers+0x328/0x6c0
[  153.128652][    C1]  ? dummy_free_streams+0x5b0/0x5b0
[  153.128652][    C1]  __run_timers+0x624/0x9e0
[  153.128652][    C1]  ? __msan_metadata_ptr_for_load_1+0x10/0x20
[  153.128652][    C1]  ? irqtime_account_irq+0x5e/0x380
[  153.128652][    C1]  ? kmsan_get_metadata+0x116/0x180
[  153.128652][    C1]  ? migrate_timer_list+0x5f0/0x5f0
[  153.128652][    C1]  run_timer_softirq+0x2d/0x50
[  153.128652][    C1]  __do_softirq+0x1b9/0x715
[  153.128652][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  153.128652][    C1]  __irq_exit_rcu+0x22f/0x280
[  153.128652][    C1]  irq_exit_rcu+0xe/0x10
[  153.128652][    C1]  sysvec_apic_timer_interrupt+0xc6/0xf0
[  153.128652][    C1]  </IRQ>
[  153.128652][    C1]  asm_sysvec_apic_timer_interrupt+0x12/0x20
[  153.128652][    C1] RIP: 0010:acpi_idle_enter+0x61d/0x760
[  153.128652][    C1] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c ea 2b fb 0f 00 2d 9f 3a 6e 09 fb f4 <fa> e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 ef da ae fb e9 e5
[  153.128652][    C1] RSP: 0018:ffff888101bffc40 EFLAGS: 00000246
[  153.128652][    C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000001017f1f40
[  153.128652][    C1] RDX: ffff888101bf1f40 RSI: 0000000000000000 RDI: 0000000000000000
[  153.128652][    C1] RBP: ffff888101bffcd8 R08: ffffffff869049ae R09: ffff88813fffa000
[  153.128652][    C1] R10: 0000000000000002 R11: ffff888101bf1f40 R12: 0000000000000000
[  153.128652][    C1] R13: ffff888141724464 R14: 0000000000000000 R15: ffff888101bf29c8
[  153.128652][    C1]  ? acpi_idle_enter+0x5ee/0x760
[  153.128652][    C1]  ? acpi_idle_lpi_enter+0x160/0x160
[  153.128652][    C1]  cpuidle_enter_state+0x99e/0x1750
[  153.128652][    C1]  cpuidle_enter+0xe3/0x170
[  153.128652][    C1]  do_idle+0x5df/0x790
[  153.128652][    C1]  cpu_startup_entry+0x45/0x50
[  153.128652][    C1]  ? setup_APIC_timer+0x210/0x210
[  153.128652][    C1]  start_secondary+0xe9/0xf0
[  153.128652][    C1]  secondary_startup_64_no_verify+0xb0/0xbb
[  153.128652][    C1] 
[  153.128652][    C1] Uninit was created at:
[  153.128652][    C1]  kmsan_internal_poison_shadow+0x5c/0xf0
[  153.128652][    C1]  kmsan_slab_alloc+0x8e/0xe0
[  153.128652][    C1]  __kmalloc_node_track_caller+0xa4f/0x1470
[  153.128652][    C1]  __alloc_skb+0x4dd/0xe90
[  153.128652][    C1]  __netdev_alloc_skb+0x45d/0x810
[  153.128652][    C1]  ath9k_hif_usb_rx_cb+0xe58/0x1d20
[  153.128652][    C1]  __usb_hcd_giveback_urb+0x6ff/0x930
[  153.128652][    C1]  usb_hcd_giveback_urb+0x1cb/0x730
[  153.128652][    C1]  dummy_timer+0xda7/0x74f0
[  153.128652][    C1]  call_timer_fn+0x7d/0x450
[  153.128652][    C1]  expire_timers+0x328/0x6c0
[  153.128652][    C1]  __run_timers+0x624/0x9e0
[  153.128652][    C1]  run_timer_softirq+0x2d/0x50
[  153.128652][    C1]  __do_softirq+0x1b9/0x715
[  153.128652][    C1] =====================================================
[  153.128652][    C1] =====================================================
[  153.128652][    C1] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x7b8/0x1f60
[  153.128652][    C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G    B             5.12.0-rc6-syzkaller #0
[  153.128652][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  153.128652][    C1] Call Trace:
[  153.128652][    C1]  <IRQ>
[  153.128652][    C1]  dump_stack+0x24c/0x2e0
[  153.128652][    C1]  kmsan_report+0xfb/0x1e0
[  153.128652][    C1]  __msan_warning+0x5c/0xa0
[  153.128652][    C1]  ath9k_htc_rx_msg+0x7b8/0x1f60
[  153.128652][    C1]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  153.128652][    C1]  ath9k_hif_usb_rx_cb+0x184e/0x1d20
[  153.128652][    C1]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  153.128652][    C1]  ? _raw_spin_unlock_irqrestore+0x37/0x80
[  153.128652][    C1]  ? kmsan_get_metadata+0x116/0x180
[  153.128652][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  153.128652][    C1]  ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[  153.128652][    C1]  __usb_hcd_giveback_urb+0x6ff/0x930
[  153.128652][    C1]  ? kmsan_get_metadata+0x116/0x180
[  153.128652][    C1]  usb_hcd_giveback_urb+0x1cb/0x730
[  153.128652][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  153.128652][    C1]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  153.128652][    C1]  dummy_timer+0xda7/0x74f0
[  153.128652][    C1]  ? kmsan_get_metadata+0x116/0x180
[  153.128652][    C1]  ? kmsan_get_metadata+0x116/0x180
[  153.128652][    C1]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  153.128652][    C1]  ? dummy_free_streams+0x5b0/0x5b0
[  153.128652][    C1]  call_timer_fn+0x7d/0x450
[  153.128652][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  153.128652][    C1]  expire_timers+0x328/0x6c0
[  153.128652][    C1]  ? dummy_free_streams+0x5b0/0x5b0
[  153.128652][    C1]  __run_timers+0x624/0x9e0
[  153.128652][    C1]  ? __msan_metadata_ptr_for_load_1+0x10/0x20
[  153.128652][    C1]  ? irqtime_account_irq+0x5e/0x380
[  153.128652][    C1]  ? kmsan_get_metadata+0x116/0x180
[  153.128652][    C1]  ? migrate_timer_list+0x5f0/0x5f0
[  153.128652][    C1]  run_timer_softirq+0x2d/0x50
[  153.128652][    C1]  __do_softirq+0x1b9/0x715
[  153.128652][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  153.128652][    C1]  __irq_exit_rcu+0x22f/0x280
[  153.128652][    C1]  irq_exit_rcu+0xe/0x10
[  153.128652][    C1]  sysvec_apic_timer_interrupt+0xc6/0xf0
[  153.128652][    C1]  </IRQ>
[  153.128652][    C1]  asm_sysvec_apic_timer_interrupt+0x12/0x20
[  153.128652][    C1] RIP: 0010:acpi_idle_enter+0x61d/0x760
[  153.128652][    C1] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c ea 2b fb 0f 00 2d 9f 3a 6e 09 fb f4 <fa> e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 ef da ae fb e9 e5
[  153.128652][    C1] RSP: 0018:ffff888101bffc40 EFLAGS: 00000246
[  153.128652][    C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000001017f1f40
[  153.128652][    C1] RDX: ffff888101bf1f40 RSI: 0000000000000000 RDI: 0000000000000000
[  153.128652][    C1] RBP: ffff888101bffcd8 R08: ffffffff869049ae R09: ffff88813fffa000
[  153.128652][    C1] R10: 0000000000000002 R11: ffff888101bf1f40 R12: 0000000000000000
[  153.128652][    C1] R13: ffff888141724464 R14: 0000000000000000 R15: ffff888101bf29c8
[  153.128652][    C1]  ? acpi_idle_enter+0x5ee/0x760
[  153.128652][    C1]  ? acpi_idle_lpi_enter+0x160/0x160
[  153.128652][    C1]  cpuidle_enter_state+0x99e/0x1750
[  153.128652][    C1]  cpuidle_enter+0xe3/0x170
[  153.128652][    C1]  do_idle+0x5df/0x790
[  153.128652][    C1]  cpu_startup_entry+0x45/0x50
[  153.128652][    C1]  ? setup_APIC_timer+0x210/0x210
[  153.128652][    C1]  start_secondary+0xe9/0xf0
[  153.128652][    C1]  secondary_startup_64_no_verify+0xb0/0xbb
[  153.128652][    C1] 
[  153.128652][    C1] Uninit was created at:
[  153.128652][    C1]  kmsan_internal_poison_shadow+0x5c/0xf0
[  153.128652][    C1]  kmsan_slab_alloc+0x8e/0xe0
[  153.128652][    C1]  __kmalloc_node_track_caller+0xa4f/0x1470
[  153.128652][    C1]  __alloc_skb+0x4dd/0xe90
[  153.128652][    C1]  __netdev_alloc_skb+0x45d/0x810
[  153.128652][    C1]  ath9k_hif_usb_rx_cb+0xe58/0x1d20
[  153.128652][    C1]  __usb_hcd_giveback_urb+0x6ff/0x930
[  153.128652][    C1]  usb_hcd_giveback_urb+0x1cb/0x730
[  153.128652][    C1]  dummy_timer+0xda7/0x74f0
[  153.128652][    C1]  call_timer_fn+0x7d/0x450
[  153.128652][    C1]  expire_timers+0x328/0x6c0
[  153.128652][    C1]  __run_timers+0x624/0x9e0
[  153.128652][    C1]  run_timer_softirq+0x2d/0x50
[  153.128652][    C1]  __do_softirq+0x1b9/0x715
[  153.128652][    C1] =====================================================
[  153.128652][    C1] =====================================================
[  153.128652][    C1] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x80c/0x1f60
[  153.128652][    C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G    B             5.12.0-rc6-syzkaller #0
[  153.128652][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  153.128652][    C1] Call Trace:
[  153.128652][    C1]  <IRQ>
[  153.128652][    C1]  dump_stack+0x24c/0x2e0
[  153.128652][    C1]  kmsan_report+0xfb/0x1e0
[  153.128652][    C1]  __msan_warning+0x5c/0xa0
[  153.128652][    C1]  ath9k_htc_rx_msg+0x80c/0x1f60
[  153.128652][    C1]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  153.128652][    C1]  ath9k_hif_usb_rx_cb+0x184e/0x1d20
[  153.128652][    C1]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  153.128652][    C1]  ? _raw_spin_unlock_irqrestore+0x37/0x80
[  153.128652][    C1]  ? kmsan_get_metadata+0x116/0x180
[  153.128652][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  153.128652][    C1]  ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0
[  153.128652][    C1]  __usb_hcd_giveback_urb+0x6ff/0x930
[  153.128652][    C1]  ? kmsan_get_metadata+0x116/0x180
[  153.128652][    C1]  usb_hcd_giveback_urb+0x1cb/0x730
[  153.128652][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  153.128652][    C1]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  153.128652][    C1]  dummy_timer+0xda7/0x74f0
[  153.128652][    C1]  ? kmsan_get_metadata+0x116/0x180
[  153.128652][    C1]  ? kmsan_get_metadata+0x116/0x180
[  153.128652][    C1]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  153.128652][    C1]  ? dummy_free_streams+0x5b0/0x5b0
[  153.128652][    C1]  call_timer_fn+0x7d/0x450
[  153.128652][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  153.128652][    C1]  expire_timers+0x328/0x6c0
[  153.128652][    C1]  ? dummy_free_streams+0x5b0/0x5b0
[  153.128652][    C1]  __run_timers+0x624/0x9e0
[  153.128652][    C1]  ? __msan_metadata_ptr_for_load_1+0x10/0x20
[  153.128652][    C1]  ? irqtime_account_irq+0x5e/0x380
[  153.128652][    C1]  ? kmsan_get_metadata+0x116/0x180
[  153.128652][    C1]  ? migrate_timer_list+0x5f0/0x5f0
[  153.128652][    C1]  run_timer_softirq+0x2d/0x50
[  153.128652][    C1]  __do_softirq+0x1b9/0x715
[  153.128652][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  153.128652][    C1]  __irq_exit_rcu+0x22f/0x280
[  153.128652][    C1]  irq_exit_rcu+0xe/0x10
[  153.128652][    C1]  sysvec_apic_timer_interrupt+0xc6/0xf0
[  153.128652][    C1]  </IRQ>
[  153.128652][    C1]  asm_sysvec_apic_timer_interrupt+0x12/0x20
[  153.128652][    C1] RIP: 0010:acpi_idle_enter+0x61d/0x760
[  153.128652][    C1] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 1c ea 2b fb 0f 00 2d 9f 3a 6e 09 fb f4 <fa> e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 ef da ae fb e9 e5
[  153.128652][    C1] RSP: 0018:ffff888101bffc40 EFLAGS: 00000246
[  153.128652][    C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000001017f1f40
[  153.128652][    C1] RDX: ffff888101bf1f40 RSI: 0000000000000000 RDI: 0000000000000000
[  153.128652][    C1] RBP: ffff888101bffcd8 R08: ffffffff869049ae R09: ffff88813fffa000
[  153.128652][    C1] R10: 0000000000000002 R11: ffff888101bf1f40 R12: 0000000000000000
[  153.128652][    C1] R13: ffff888141724464 R14: 0000000000000000 R15: ffff888101bf29c8
[  153.128652][    C1]  ? acpi_idle_enter+0x5ee/0x760
[  153.128652][    C1]  ? acpi_idle_lpi_enter+0x160/0x160
[  153.128652][    C1]  cpuidle_enter_state+0x99e/0x1750
[  153.128652][    C1]  cpuidle_enter+0xe3/0x170
[  153.128652][    C1]  do_idle+0x5df/0x790
[  153.128652][    C1]  cpu_startup_entry+0x45/0x50
[  153.128652][    C1]  ? setup_APIC_timer+0x210/0x210
[  153.128652][    C1]  start_secondary+0xe9/0xf0
[  153.128652][    C1]  secondary_startup_64_no_verify+0xb0/0xbb
[  153.128652][    C1] 
[  153.128652][    C1] Uninit was created at:
[  153.128652][    C1]  kmsan_internal_poison_shadow+0x5c/0xf0
[  153.128652][    C1]  kmsan_slab_alloc+0x8e/0xe0
[  153.128652][    C1]  __kmalloc_node_track_caller+0xa4f/0x1470
[  153.128652][    C1]  __alloc_skb+0x4dd/0xe90
[  153.128652][    C1]  __netdev_alloc_skb+0x45d/0x810
[  153.128652][    C1]  ath9k_hif_usb_rx_cb+0xe58/0x1d20
[  153.128652][    C1]  __usb_hcd_giveback_urb+0x6ff/0x930
[  153.128652][    C1]  usb_hcd_giveback_urb+0x1cb/0x730
[  153.128652][    C1]  dummy_timer+0xda7/0x74f0
[  153.128652][    C1]  call_timer_fn+0x7d/0x450
[  153.128652][    C1]  expire_timers+0x328/0x6c0
[  153.128652][    C1]  __run_timers+0x624/0x9e0
[  153.128652][    C1]  run_timer_softirq+0x2d/0x50
[  153.128652][    C1]  __do_softirq+0x1b9/0x715
[  153.128652][    C1] =====================================================
[  153.128652][    C1] =====================================================
[  153.128652][    C1] BUG: KMSAN: uninit-value in ath9k_htc_rx_msg+0x96f/0x1f60
[  153.128652][    C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G    B             5.12.0-rc6-syzkaller #0
[  153.128652][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  153.128652][    C1] Call Trace:
[  153.128652][    C1]  <IRQ>
[  153.128652][    C1]  dump_stack+0x24c/0x2e0
[  153.128652][    C1]  kmsan_report+0xfb/0x1e0
[  153.128652][    C1]  __msan_warning+0x5c/0xa0
[  153.128652][    C1]  ath9k_htc_rx_msg+0x96f/0x1f60
[  153.128652][    C1]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  153.128652][    C1]  ath9k_hif_usb_rx_cb+0x184e/0x1d20
[  153.128652][    C1]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  153.128652][    C1]  ? _raw_spin_unlock_irqrestore+0x37/0x80
[  153.128652][    C1]  ? kmsan_get_metadata+0x116/0x180
[  153.128652][    C1]  ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[  153.128652][    C1]  ? ath9k_hif_usb_alloc_urbs+0x1ed0/0x1ed0