[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 71.364892][ T31] audit: type=1800 audit(1568467736.410:25): pid=10938 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 71.387699][ T31] audit: type=1800 audit(1568467736.430:26): pid=10938 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 71.424388][ T31] audit: type=1800 audit(1568467736.450:27): pid=10938 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.1.59' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 80.574350][ T3371] usb 1-1: new low-speed USB device number 2 using dummy_hcd [ 80.974522][ T3371] usb 1-1: unable to get BOS descriptor or descriptor too short [ 81.054630][ T3371] usb 1-1: config 0 has an invalid interface number: 93 but max is 0 [ 81.062865][ T3371] usb 1-1: config 0 has no interface number 0 [ 81.069092][ T3371] usb 1-1: config 0 interface 93 altsetting 4 has an invalid endpoint with address 0x0, skipping [ 81.079729][ T3371] usb 1-1: config 0 interface 93 altsetting 4 has an invalid endpoint descriptor of length 2, skipping [ 81.090876][ T3371] usb 1-1: config 0 interface 93 altsetting 4 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 81.103998][ T3371] usb 1-1: config 0 interface 93 has no altsetting 0 [ 81.344479][ T3371] usb 1-1: string descriptor 0 read error: -22 [ 81.350724][ T3371] usb 1-1: New USB device found, idVendor=13b1, idProduct=0011, bcdDevice=8d.17 [ 81.359869][ T3371] usb 1-1: New USB device strings: Mfr=140, Product=0, SerialNumber=0 [ 81.369398][ T3371] usb 1-1: config 0 descriptor?? executing program [ 81.934330][ T3371] usb 1-1: reset low-speed USB device number 2 using dummy_hcd [ 82.474442][ T3371] usb 1-1: unable to get BOS descriptor or descriptor too short executing program [ 82.774473][ T3371] usb 1-1: failed to restore interface 93 altsetting 4 (error=-71) [ 82.783388][ T3371] ieee80211 phy3: rt2x00usb_vendor_request: Error - Vendor Request 0x09 failed for offset 0x0000 with error -19 [ 82.795782][ T3371] ================================================================== [ 82.803849][ T3371] BUG: KMSAN: uninit-value in rt2500usb_bbp_read+0x188/0x6d0 [ 82.811210][ T3371] CPU: 0 PID: 3371 Comm: kworker/0:2 Not tainted 5.3.0-rc7+ #0 [ 82.818725][ T3371] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 82.828786][ T3371] Workqueue: usb_hub_wq hub_event [ 82.833787][ T3371] Call Trace: [ 82.837062][ T3371] dump_stack+0x191/0x1f0 [ 82.841374][ T3371] kmsan_report+0x162/0x2d0 [ 82.845861][ T3371] __msan_warning+0x75/0xe0 [ 82.850366][ T3371] rt2500usb_bbp_read+0x188/0x6d0 [ 82.855372][ T3371] rt2500usb_probe_hw+0x3b5/0x22a0 [ 82.860467][ T3371] ? rt2500usb_queue_init+0x1e0/0x1e0 [ 82.865817][ T3371] ? rt2500usb_queue_init+0x1e0/0x1e0 [ 82.871170][ T3371] ? rt2500usb_queue_init+0x1e0/0x1e0 [ 82.876522][ T3371] rt2x00lib_probe_dev+0xba9/0x3260 [ 82.881698][ T3371] ? kmsan_get_shadow_origin_ptr+0x71/0x4c0 [ 82.887585][ T3371] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 82.893721][ T3371] ? kmsan_get_shadow_origin_ptr+0x71/0x4c0 [ 82.899598][ T3371] rt2x00usb_probe+0x7ae/0xf60 [ 82.904343][ T3371] ? rt2800_brightness_set+0xf20/0xf20 [ 82.909797][ T3371] rt2500usb_probe+0x50/0x60 [ 82.914375][ T3371] ? rt2800_brightness_set+0xf20/0xf20 [ 82.919829][ T3371] usb_probe_interface+0xd19/0x1310 [ 82.925020][ T3371] ? usb_register_driver+0x7d0/0x7d0 [ 82.930285][ T3371] really_probe+0x1373/0x1dc0 [ 82.934950][ T3371] driver_probe_device+0x1ba/0x510 [ 82.940055][ T3371] ? kmsan_get_shadow_origin_ptr+0x71/0x4c0 [ 82.945930][ T3371] __device_attach_driver+0x5b8/0x790 [ 82.951291][ T3371] bus_for_each_drv+0x28e/0x3b0 [ 82.956119][ T3371] ? deferred_probe_work_func+0x400/0x400 [ 82.961821][ T3371] __device_attach+0x489/0x750 [ 82.966573][ T3371] device_initial_probe+0x4a/0x60 [ 82.971577][ T3371] bus_probe_device+0x131/0x390 [ 82.976425][ T3371] device_add+0x25b5/0x2df0 [ 82.980952][ T3371] usb_set_configuration+0x309f/0x3710 [ 82.986417][ T3371] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 82.992482][ T3371] generic_probe+0xe7/0x280 [ 82.996962][ T3371] ? usb_choose_configuration+0xae0/0xae0 [ 83.002680][ T3371] usb_probe_device+0x146/0x200 [ 83.007521][ T3371] ? usb_register_device_driver+0x470/0x470 [ 83.013405][ T3371] really_probe+0x1373/0x1dc0 [ 83.018083][ T3371] driver_probe_device+0x1ba/0x510 [ 83.023190][ T3371] ? kmsan_get_shadow_origin_ptr+0x71/0x4c0 [ 83.029071][ T3371] __device_attach_driver+0x5b8/0x790 [ 83.034472][ T3371] bus_for_each_drv+0x28e/0x3b0 [ 83.039304][ T3371] ? deferred_probe_work_func+0x400/0x400 [ 83.045007][ T3371] __device_attach+0x489/0x750 [ 83.049774][ T3371] device_initial_probe+0x4a/0x60 [ 83.054835][ T3371] bus_probe_device+0x131/0x390 [ 83.059665][ T3371] device_add+0x25b5/0x2df0 [ 83.064159][ T3371] usb_new_device+0x23e5/0x2fb0 [ 83.069011][ T3371] hub_event+0x581d/0x72f0 [ 83.073433][ T3371] ? kmsan_get_shadow_origin_ptr+0x71/0x4c0 [ 83.079303][ T3371] ? led_work+0x720/0x720 [ 83.083624][ T3371] ? led_work+0x720/0x720 [ 83.087936][ T3371] process_one_work+0x1572/0x1ef0 [ 83.092955][ T3371] worker_thread+0x111b/0x2460 [ 83.097713][ T3371] kthread+0x4b5/0x4f0 [ 83.101761][ T3371] ? process_one_work+0x1ef0/0x1ef0 [ 83.106938][ T3371] ? kthread_blkcg+0xf0/0xf0 [ 83.111509][ T3371] ret_from_fork+0x35/0x40 [ 83.115903][ T3371] [ 83.118211][ T3371] Local variable description: ----reg.i.i@rt2500usb_bbp_read [ 83.125557][ T3371] Variable was created at: [ 83.129955][ T3371] rt2500usb_bbp_read+0xb0/0x6d0 [ 83.134868][ T3371] rt2500usb_probe_hw+0x3b5/0x22a0 [ 83.139949][ T3371] ================================================================== [ 83.147989][ T3371] Disabling lock debugging due to kernel taint [ 83.154113][ T3371] Kernel panic - not syncing: panic_on_warn set ... [ 83.160679][ T3371] CPU: 0 PID: 3371 Comm: kworker/0:2 Tainted: G B 5.3.0-rc7+ #0 [ 83.169669][ T3371] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 83.179707][ T3371] Workqueue: usb_hub_wq hub_event [ 83.184710][ T3371] Call Trace: [ 83.187982][ T3371] dump_stack+0x191/0x1f0 [ 83.192295][ T3371] panic+0x3c9/0xc1e [ 83.196184][ T3371] kmsan_report+0x2ca/0x2d0 [ 83.200669][ T3371] __msan_warning+0x75/0xe0 [ 83.205154][ T3371] rt2500usb_bbp_read+0x188/0x6d0 [ 83.210159][ T3371] rt2500usb_probe_hw+0x3b5/0x22a0 [ 83.215247][ T3371] ? rt2500usb_queue_init+0x1e0/0x1e0 [ 83.220602][ T3371] ? rt2500usb_queue_init+0x1e0/0x1e0 [ 83.225948][ T3371] ? rt2500usb_queue_init+0x1e0/0x1e0 [ 83.231302][ T3371] rt2x00lib_probe_dev+0xba9/0x3260 [ 83.236493][ T3371] ? kmsan_get_shadow_origin_ptr+0x71/0x4c0 [ 83.242366][ T3371] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 83.248500][ T3371] ? kmsan_get_shadow_origin_ptr+0x71/0x4c0 [ 83.254378][ T3371] rt2x00usb_probe+0x7ae/0xf60 [ 83.259127][ T3371] ? rt2800_brightness_set+0xf20/0xf20 [ 83.264565][ T3371] rt2500usb_probe+0x50/0x60 [ 83.269132][ T3371] ? rt2800_brightness_set+0xf20/0xf20 [ 83.274570][ T3371] usb_probe_interface+0xd19/0x1310 [ 83.279770][ T3371] ? usb_register_driver+0x7d0/0x7d0 [ 83.285049][ T3371] really_probe+0x1373/0x1dc0 [ 83.289711][ T3371] driver_probe_device+0x1ba/0x510 [ 83.294803][ T3371] ? kmsan_get_shadow_origin_ptr+0x71/0x4c0 [ 83.300677][ T3371] __device_attach_driver+0x5b8/0x790 [ 83.306060][ T3371] bus_for_each_drv+0x28e/0x3b0 [ 83.310899][ T3371] ? deferred_probe_work_func+0x400/0x400 [ 83.316736][ T3371] __device_attach+0x489/0x750 [ 83.321485][ T3371] device_initial_probe+0x4a/0x60 [ 83.326500][ T3371] bus_probe_device+0x131/0x390 [ 83.331343][ T3371] device_add+0x25b5/0x2df0 [ 83.335842][ T3371] usb_set_configuration+0x309f/0x3710 [ 83.341292][ T3371] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 83.347347][ T3371] generic_probe+0xe7/0x280 [ 83.351832][ T3371] ? usb_choose_configuration+0xae0/0xae0 [ 83.357535][ T3371] usb_probe_device+0x146/0x200 [ 83.362374][ T3371] ? usb_register_device_driver+0x470/0x470 [ 83.368247][ T3371] really_probe+0x1373/0x1dc0 [ 83.372914][ T3371] driver_probe_device+0x1ba/0x510 [ 83.378011][ T3371] ? kmsan_get_shadow_origin_ptr+0x71/0x4c0 [ 83.383886][ T3371] __device_attach_driver+0x5b8/0x790 [ 83.389247][ T3371] bus_for_each_drv+0x28e/0x3b0 [ 83.394077][ T3371] ? deferred_probe_work_func+0x400/0x400 [ 83.399780][ T3371] __device_attach+0x489/0x750 [ 83.404530][ T3371] device_initial_probe+0x4a/0x60 [ 83.409534][ T3371] bus_probe_device+0x131/0x390 [ 83.414367][ T3371] device_add+0x25b5/0x2df0 [ 83.418859][ T3371] usb_new_device+0x23e5/0x2fb0 [ 83.423722][ T3371] hub_event+0x581d/0x72f0 [ 83.428187][ T3371] ? kmsan_get_shadow_origin_ptr+0x71/0x4c0 [ 83.434100][ T3371] ? led_work+0x720/0x720 [ 83.438409][ T3371] ? led_work+0x720/0x720 [ 83.442720][ T3371] process_one_work+0x1572/0x1ef0 [ 83.447734][ T3371] worker_thread+0x111b/0x2460 [ 83.452489][ T3371] kthread+0x4b5/0x4f0 [ 83.456546][ T3371] ? process_one_work+0x1ef0/0x1ef0 [ 83.461732][ T3371] ? kthread_blkcg+0xf0/0xf0 [ 83.466301][ T3371] ret_from_fork+0x35/0x40 [ 83.472117][ T3371] Kernel Offset: disabled [ 83.476446][ T3371] Rebooting in 86400 seconds..