Re: BUG: bad host encryption descriptor; descriptor is too short (0 vs 5 needed)

From: Andrey Konovalov
Date: Tue Nov 19 2019 - 09:41:51 EST


On Mon, Oct 28, 2019 at 2:02 PM syzbot
<syzbot+48fbe2f8fdcd2fbc1242@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote:
>
> Hello,
>
> syzbot found the following crash on:
>
> HEAD commit: 22be26f7 usb-fuzzer: main usb gadget fuzzer driver
> git tree: https://github.com/google/kasan.git usb-fuzzer
> console output: https://syzkaller.appspot.com/x/log.txt?x=16eccc0f600000
> kernel config: https://syzkaller.appspot.com/x/.config?x=5fe29bc39eff9627
> dashboard link: https://syzkaller.appspot.com/bug?extid=48fbe2f8fdcd2fbc1242
> compiler: gcc (GCC) 9.0.0 20181231 (experimental)
> syz repro: https://syzkaller.appspot.com/x/repro.syz?x=10d08e4ce00000
> C reproducer: https://syzkaller.appspot.com/x/repro.c?x=11fb07ff600000
>
> IMPORTANT: if you fix the bug, please add the following tag to the commit:
> Reported-by: syzbot+48fbe2f8fdcd2fbc1242@xxxxxxxxxxxxxxxxxxxxxxxxx
>
> usb 1-1: config 0 interface 66 altsetting 0 has 3 endpoint descriptors,
> different from the interface descriptor's value: 4
> usb 1-1: New USB device found, idVendor=13dc, idProduct=5611,
> bcdDevice=40.15
> usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
> usb 1-1: config 0 descriptor??
> hwa-hc 1-1:0.66: Wire Adapter v125.52 newer than groked v1.0
> hwa-hc 1-1:0.66: FIXME: USB_MAXCHILDREN too low for WUSB adapter (53 ports)
> usb 1-1: BUG: bad host encryption descriptor; descriptor is too short (0 vs
> 5 needed)
> usb 1-1: supported encryption types: ïïïÏïïï|ïïÏïïïïïïÏïïï
> usb 1-1: E: host doesn't support CCM-1 crypto
> hwa-hc 1-1:0.66: Cannot initialize internals: -19
>
>
> ---
> This bug is generated by a bot. It may contain errors.
> See https://goo.gl/tpsmEJ for more information about syzbot.
> syzbot engineers can be reached at syzkaller@xxxxxxxxxxxxxxxxx
>
> syzbot will keep track of this bug report. See:
> https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
> syzbot can test patches for this bug, for details see:
> https://goo.gl/tpsmEJ#testing-patches

#syz dup: BUG: bad host security descriptor; not enough data (4 vs 5 left)