[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 66.256812][ T31] audit: type=1800 audit(1560370054.308:25): pid=10768 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 66.279869][ T31] audit: type=1800 audit(1560370054.328:26): pid=10768 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 66.324830][ T31] audit: type=1800 audit(1560370054.358:27): pid=10768 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.1.25' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 77.502266][ T49] usb 1-1: new low-speed USB device number 2 using dummy_hcd [ 77.862410][ T49] usb 1-1: config 0 has an invalid interface number: 70 but max is 0 [ 77.870673][ T49] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 77.880893][ T49] usb 1-1: config 0 has no interface number 0 [ 77.887072][ T49] usb 1-1: config 0 interface 70 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 10 [ 77.898164][ T49] usb 1-1: New USB device found, idVendor=0b48, idProduct=1008, bcdDevice=69.06 [ 77.907269][ T49] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 77.916723][ T49] usb 1-1: config 0 descriptor?? [ 77.965881][ T49] ================================================================== [ 77.974025][ T49] BUG: KMSAN: kernel-usb-infoleak in usb_submit_urb+0x7ec/0x1fa0 [ 77.981755][ T49] CPU: 1 PID: 49 Comm: kworker/1:1 Not tainted 5.1.0+ #1 [ 77.988770][ T49] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 77.998818][ T49] Workqueue: usb_hub_wq hub_event [ 78.003821][ T49] Call Trace: [ 78.007147][ T49] dump_stack+0x191/0x1f0 [ 78.011468][ T49] kmsan_report+0x162/0x2d0 [ 78.015969][ T49] kmsan_internal_check_memory+0x974/0xa80 [ 78.021758][ T49] ? hub_event+0x48d1/0x7290 [ 78.026329][ T49] ? process_one_work+0x1572/0x1f00 [ 78.031503][ T49] ? worker_thread+0x111b/0x2460 [ 78.036422][ T49] ? kthread+0x4b5/0x4f0 [ 78.040655][ T49] ? kmsan_get_shadow_origin_ptr+0x71/0x470 [ 78.046533][ T49] kmsan_handle_urb+0x28/0x40 [ 78.051196][ T49] usb_submit_urb+0x7ec/0x1fa0 [ 78.055960][ T49] usb_start_wait_urb+0x143/0x410 [ 78.060976][ T49] usb_bulk_msg+0x811/0x920 [ 78.065477][ T49] ttusb_dec_send_command+0x47d/0xd50 [ 78.070836][ T49] ttusb_dec_probe+0xe31/0x4e00 [ 78.075682][ T49] ? __pm_runtime_set_status+0xf5e/0x1400 [ 78.081392][ T49] ? kmsan_get_shadow_origin_ptr+0x71/0x470 [ 78.087299][ T49] ? saa7134_go7007_s_std+0x30/0x30 [ 78.092495][ T49] ? saa7134_go7007_s_std+0x30/0x30 [ 78.097681][ T49] usb_probe_interface+0xd66/0x1320 [ 78.102872][ T49] ? usb_register_driver+0x7d0/0x7d0 [ 78.108138][ T49] really_probe+0xdae/0x1d80 [ 78.112712][ T49] driver_probe_device+0x1b3/0x4f0 [ 78.117808][ T49] __device_attach_driver+0x5b8/0x790 [ 78.123172][ T49] bus_for_each_drv+0x28e/0x3b0 [ 78.128002][ T49] ? deferred_probe_work_func+0x400/0x400 [ 78.133705][ T49] __device_attach+0x454/0x730 [ 78.138462][ T49] device_initial_probe+0x4a/0x60 [ 78.143478][ T49] bus_probe_device+0x137/0x390 [ 78.148332][ T49] device_add+0x288d/0x30e0 [ 78.153592][ T49] usb_set_configuration+0x30dc/0x3750 [ 78.159054][ T49] generic_probe+0xe7/0x280 [ 78.163546][ T49] ? usb_choose_configuration+0xae0/0xae0 [ 78.169252][ T49] usb_probe_device+0x14c/0x200 [ 78.174111][ T49] ? usb_register_device_driver+0x470/0x470 [ 78.179996][ T49] really_probe+0xdae/0x1d80 [ 78.184622][ T49] driver_probe_device+0x1b3/0x4f0 [ 78.189723][ T49] __device_attach_driver+0x5b8/0x790 [ 78.195082][ T49] bus_for_each_drv+0x28e/0x3b0 [ 78.199913][ T49] ? deferred_probe_work_func+0x400/0x400 [ 78.205614][ T49] __device_attach+0x454/0x730 [ 78.210360][ T49] device_initial_probe+0x4a/0x60 [ 78.215363][ T49] bus_probe_device+0x137/0x390 [ 78.220196][ T49] device_add+0x288d/0x30e0 [ 78.224706][ T49] usb_new_device+0x23e5/0x2ff0 [ 78.229550][ T49] hub_event+0x48d1/0x7290 [ 78.233980][ T49] ? kmsan_get_shadow_origin_ptr+0x71/0x470 [ 78.239850][ T49] ? led_work+0x720/0x720 [ 78.244157][ T49] ? led_work+0x720/0x720 [ 78.248472][ T49] process_one_work+0x1572/0x1f00 [ 78.253491][ T49] worker_thread+0x111b/0x2460 [ 78.258346][ T49] kthread+0x4b5/0x4f0 [ 78.262397][ T49] ? process_one_work+0x1f00/0x1f00 [ 78.267580][ T49] ? kthread_blkcg+0xf0/0xf0 [ 78.272166][ T49] ret_from_fork+0x35/0x40 [ 78.276566][ T49] [ 78.278872][ T49] Uninit was created at: [ 78.283099][ T49] kmsan_internal_poison_shadow+0x92/0x150 [ 78.288881][ T49] kmsan_kmalloc+0xa4/0x130 [ 78.293364][ T49] kmem_cache_alloc_trace+0x503/0xae0 [ 78.298712][ T49] ttusb_dec_send_command+0x155/0xd50 [ 78.304063][ T49] ttusb_dec_probe+0xe31/0x4e00 [ 78.308909][ T49] usb_probe_interface+0xd66/0x1320 [ 78.314088][ T49] really_probe+0xdae/0x1d80 [ 78.318654][ T49] driver_probe_device+0x1b3/0x4f0 [ 78.323762][ T49] __device_attach_driver+0x5b8/0x790 [ 78.329115][ T49] bus_for_each_drv+0x28e/0x3b0 [ 78.333941][ T49] __device_attach+0x454/0x730 [ 78.338682][ T49] device_initial_probe+0x4a/0x60 [ 78.343682][ T49] bus_probe_device+0x137/0x390 [ 78.348508][ T49] device_add+0x288d/0x30e0 [ 78.353019][ T49] usb_set_configuration+0x30dc/0x3750 [ 78.358554][ T49] generic_probe+0xe7/0x280 [ 78.363047][ T49] usb_probe_device+0x14c/0x200 [ 78.367870][ T49] really_probe+0xdae/0x1d80 [ 78.372538][ T49] driver_probe_device+0x1b3/0x4f0 [ 78.377630][ T49] __device_attach_driver+0x5b8/0x790 [ 78.382979][ T49] bus_for_each_drv+0x28e/0x3b0 [ 78.387807][ T49] __device_attach+0x454/0x730 [ 78.392558][ T49] device_initial_probe+0x4a/0x60 [ 78.397566][ T49] bus_probe_device+0x137/0x390 [ 78.402401][ T49] device_add+0x288d/0x30e0 [ 78.406884][ T49] usb_new_device+0x23e5/0x2ff0 [ 78.411737][ T49] hub_event+0x48d1/0x7290 [ 78.416138][ T49] process_one_work+0x1572/0x1f00 [ 78.421144][ T49] worker_thread+0x111b/0x2460 [ 78.425889][ T49] kthread+0x4b5/0x4f0 [ 78.429936][ T49] ret_from_fork+0x35/0x40 [ 78.434329][ T49] [ 78.436634][ T49] Bytes 4-63 of 64 are uninitialized [ 78.441891][ T49] Memory access of size 64 starts at ffff888106214540 [ 78.448625][ T49] ================================================================== [ 78.456663][ T49] Disabling lock debugging due to kernel taint [ 78.462793][ T49] Kernel panic - not syncing: panic_on_warn set ... [ 78.469372][ T49] CPU: 1 PID: 49 Comm: kworker/1:1 Tainted: G B 5.1.0+ #1 [ 78.477770][ T49] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 78.487812][ T49] Workqueue: usb_hub_wq hub_event [ 78.492812][ T49] Call Trace: [ 78.496086][ T49] dump_stack+0x191/0x1f0 [ 78.500398][ T49] panic+0x3ca/0xafe [ 78.504290][ T49] kmsan_report+0x2ca/0x2d0 [ 78.508798][ T49] kmsan_internal_check_memory+0x974/0xa80 [ 78.514599][ T49] ? hub_event+0x48d1/0x7290 [ 78.519166][ T49] ? process_one_work+0x1572/0x1f00 [ 78.524355][ T49] ? worker_thread+0x111b/0x2460 [ 78.529270][ T49] ? kthread+0x4b5/0x4f0 [ 78.533514][ T49] ? kmsan_get_shadow_origin_ptr+0x71/0x470 [ 78.539387][ T49] kmsan_handle_urb+0x28/0x40 [ 78.544048][ T49] usb_submit_urb+0x7ec/0x1fa0 [ 78.548805][ T49] usb_start_wait_urb+0x143/0x410 [ 78.553902][ T49] usb_bulk_msg+0x811/0x920 [ 78.558401][ T49] ttusb_dec_send_command+0x47d/0xd50 [ 78.563763][ T49] ttusb_dec_probe+0xe31/0x4e00 [ 78.568609][ T49] ? __pm_runtime_set_status+0xf5e/0x1400 [ 78.574324][ T49] ? kmsan_get_shadow_origin_ptr+0x71/0x470 [ 78.580196][ T49] ? saa7134_go7007_s_std+0x30/0x30 [ 78.585373][ T49] ? saa7134_go7007_s_std+0x30/0x30 [ 78.590579][ T49] usb_probe_interface+0xd66/0x1320 [ 78.595771][ T49] ? usb_register_driver+0x7d0/0x7d0 [ 78.601035][ T49] really_probe+0xdae/0x1d80 [ 78.605611][ T49] driver_probe_device+0x1b3/0x4f0 [ 78.610708][ T49] __device_attach_driver+0x5b8/0x790 [ 78.616070][ T49] bus_for_each_drv+0x28e/0x3b0 [ 78.620904][ T49] ? deferred_probe_work_func+0x400/0x400 [ 78.626608][ T49] __device_attach+0x454/0x730 [ 78.631353][ T49] device_initial_probe+0x4a/0x60 [ 78.636357][ T49] bus_probe_device+0x137/0x390 [ 78.641193][ T49] device_add+0x288d/0x30e0 [ 78.645694][ T49] usb_set_configuration+0x30dc/0x3750 [ 78.651153][ T49] generic_probe+0xe7/0x280 [ 78.655641][ T49] ? usb_choose_configuration+0xae0/0xae0 [ 78.661340][ T49] usb_probe_device+0x14c/0x200 [ 78.666175][ T49] ? usb_register_device_driver+0x470/0x470 [ 78.672068][ T49] really_probe+0xdae/0x1d80 [ 78.676777][ T49] driver_probe_device+0x1b3/0x4f0 [ 78.681873][ T49] __device_attach_driver+0x5b8/0x790 [ 78.687235][ T49] bus_for_each_drv+0x28e/0x3b0 [ 78.692075][ T49] ? deferred_probe_work_func+0x400/0x400 [ 78.697785][ T49] __device_attach+0x454/0x730 [ 78.702539][ T49] device_initial_probe+0x4a/0x60 [ 78.707555][ T49] bus_probe_device+0x137/0x390 [ 78.712389][ T49] device_add+0x288d/0x30e0 [ 78.716887][ T49] usb_new_device+0x23e5/0x2ff0 [ 78.721727][ T49] hub_event+0x48d1/0x7290 [ 78.726161][ T49] ? kmsan_get_shadow_origin_ptr+0x71/0x470 [ 78.732031][ T49] ? led_work+0x720/0x720 [ 78.736338][ T49] ? led_work+0x720/0x720 [ 78.740646][ T49] process_one_work+0x1572/0x1f00 [ 78.745670][ T49] worker_thread+0x111b/0x2460 [ 78.750439][ T49] kthread+0x4b5/0x4f0 [ 78.754489][ T49] ? process_one_work+0x1f00/0x1f00 [ 78.759670][ T49] ? kthread_blkcg+0xf0/0xf0 [ 78.764243][ T49] ret_from_fork+0x35/0x40 [ 78.769955][ T49] Kernel Offset: disabled [ 78.774285][ T49] Rebooting in 86400 seconds..