[ OK ] Started Permit User Sessions. [ OK ] Found device /dev/ttyS0. [ OK ] Started getty on tty2-tty6 if dbus and logind are not available. [ OK ] Started System Logging Service. [** ] A start job is running for OpenBSD …Shell server (1min 24s / 2min 43s)[* ] A start job is running for OpenBSD …Shell server (1min 25s / 2min 43s)[** ] A start job is running for OpenBSD …Shell server (1min 26s / 2min 43s)[*** ] A start job is running for OpenBSD …Shell server (1min 26s / 2min 43s)[ *** ] A start job is running for OpenBSD …Shell server (1min 28s / 2min 57s)[ OK ] Started OpenBSD Secure Shell server. [ OK ] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch. [ OK ] Started Getty on tty6. [ OK ] Started Getty on tty5. [ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty2. [ OK ] Started Serial Getty on ttyS0. [ OK ] Started Getty on tty1. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.247' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 137.158396][ T825] usb 1-1: new full-speed USB device number 2 using dummy_hcd [ 137.548491][ T825] usb 1-1: config 0 has an invalid interface number: 172 but max is 1 [ 137.556964][ T825] usb 1-1: config 0 contains an unexpected descriptor of type 0x2, skipping [ 137.565870][ T825] usb 1-1: config 0 has an invalid interface number: 194 but max is 1 [ 137.574336][ T825] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 137.584851][ T825] usb 1-1: config 0 has no interface number 0 [ 137.591295][ T825] usb 1-1: config 0 has no interface number 1 [ 137.597514][ T825] usb 1-1: config 0 interface 172 altsetting 9 endpoint 0x4 has invalid maxpacket 558, setting to 64 [ 137.608869][ T825] usb 1-1: config 0 interface 172 altsetting 9 endpoint 0xD has invalid maxpacket 512, setting to 64 [ 137.620312][ T825] usb 1-1: config 0 interface 172 altsetting 9 endpoint 0x8 has invalid maxpacket 512, setting to 64 [ 137.631536][ T825] usb 1-1: config 0 interface 194 altsetting 64 endpoint 0xA has an invalid bInterval 127, changing to 4 [ 137.643071][ T825] usb 1-1: config 0 interface 194 altsetting 64 endpoint 0xA has invalid wMaxPacketSize 0 [ 137.653321][ T825] usb 1-1: config 0 interface 194 altsetting 64 has an invalid endpoint with address 0xA4, skipping [ 137.664411][ T825] usb 1-1: config 0 interface 194 altsetting 64 has 2 endpoint descriptors, different from the interface descriptor's value: 16 [ 137.678024][ T825] usb 1-1: config 0 interface 172 has no altsetting 0 [ 137.685005][ T825] usb 1-1: config 0 interface 194 has no altsetting 0 [ 137.848415][ T825] usb 1-1: New USB device found, idVendor=07aa, idProduct=0004, bcdDevice=6e.8b [ 137.857679][ T825] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 137.865953][ T825] usb 1-1: Product: syz [ 137.870380][ T825] usb 1-1: Manufacturer: syz [ 137.875051][ T825] usb 1-1: SerialNumber: syz [ 137.883131][ T825] usb 1-1: config 0 descriptor?? [ 137.911729][ T8227] raw-gadget gadget: fail, usb_ep_enable returned -22 executing program [ 140.288114][ T825] (unnamed net_device) (uninitialized): read_eprom_word failed [ 140.295882][ T825] ===================================================== [ 140.302835][ T825] BUG: KMSAN: uninit-value in pegasus_probe+0x10e7/0x4080 [ 140.309954][ T825] CPU: 1 PID: 825 Comm: kworker/1:1 Not tainted 5.12.0-rc6-syzkaller #0 [ 140.318280][ T825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 140.328416][ T825] Workqueue: usb_hub_wq hub_event [ 140.333531][ T825] Call Trace: [ 140.336803][ T825] dump_stack+0x24c/0x2e0 [ 140.341132][ T825] kmsan_report+0xfb/0x1e0 [ 140.345545][ T825] __msan_warning+0x5c/0xa0 [ 140.350040][ T825] pegasus_probe+0x10e7/0x4080 [ 140.354931][ T825] ? kaweth_get_link+0x70/0x70 [ 140.359772][ T825] usb_probe_interface+0xfcc/0x1520 [ 140.365674][ T825] ? usb_register_driver+0x900/0x900 [ 140.370955][ T825] really_probe+0xe15/0x24d0 [ 140.375588][ T825] driver_probe_device+0x29d/0x3a0 [ 140.380762][ T825] __device_attach_driver+0x63f/0x830 [ 140.386173][ T825] bus_for_each_drv+0x2c8/0x3f0 [ 140.391025][ T825] ? deferred_probe_work_func+0x4d0/0x4d0 [ 140.396766][ T825] __device_attach+0x56a/0x890 [ 140.401559][ T825] device_initial_probe+0x4a/0x60 [ 140.406576][ T825] bus_probe_device+0x17e/0x3d0 [ 140.411433][ T825] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 140.417233][ T825] device_add+0x2c15/0x31d0 [ 140.421738][ T825] usb_set_configuration+0x3872/0x3eb0 [ 140.427191][ T825] ? usb_set_configuration+0xae1/0x3eb0 [ 140.432752][ T825] usb_generic_driver_probe+0x138/0x300 [ 140.438292][ T825] ? usb_choose_configuration+0xee0/0xee0 [ 140.444172][ T825] usb_probe_device+0x317/0x570 [ 140.449027][ T825] ? usb_register_device_driver+0x590/0x590 [ 140.454966][ T825] really_probe+0xe15/0x24d0 [ 140.459563][ T825] driver_probe_device+0x29d/0x3a0 [ 140.464967][ T825] __device_attach_driver+0x63f/0x830 [ 140.470344][ T825] bus_for_each_drv+0x2c8/0x3f0 [ 140.475365][ T825] ? deferred_probe_work_func+0x4d0/0x4d0 [ 140.481079][ T825] __device_attach+0x56a/0x890 [ 140.485851][ T825] device_initial_probe+0x4a/0x60 [ 140.490871][ T825] bus_probe_device+0x17e/0x3d0 [ 140.495878][ T825] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 140.501693][ T825] device_add+0x2c15/0x31d0 [ 140.506211][ T825] usb_new_device+0x1bd4/0x2a30 [ 140.511061][ T825] hub_event+0x5b99/0x8870 [ 140.515480][ T825] ? kmsan_get_metadata+0x116/0x180 [ 140.520705][ T825] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 140.526505][ T825] ? led_work+0x780/0x780 [ 140.530827][ T825] process_one_work+0x1219/0x1fe0 [ 140.535896][ T825] worker_thread+0x10ec/0x2340 [ 140.540770][ T825] kthread+0x521/0x560 [ 140.544831][ T825] ? process_one_work+0x1fe0/0x1fe0 [ 140.550036][ T825] ? kthread_blkcg+0x110/0x110 [ 140.554914][ T825] ret_from_fork+0x1f/0x30 [ 140.559331][ T825] [ 140.561782][ T825] Local variable ----data.i@pegasus_probe created at: [ 140.568530][ T825] pegasus_probe+0xe57/0x4080 [ 140.573204][ T825] pegasus_probe+0xe57/0x4080 [ 140.577872][ T825] ===================================================== [ 140.584929][ T825] Disabling lock debugging due to kernel taint [ 142.618014][ T825] pegasus 1-1:0.172: can't reset MAC [ 142.623603][ T825] pegasus: probe of 1-1:0.172 failed with error -5 executing program [ 144.747975][ T825] (unnamed net_device) (uninitialized): read_eprom_word failed [ 144.755731][ T825] ===================================================== [ 144.762751][ T825] BUG: KMSAN: uninit-value in pegasus_probe+0x10e7/0x4080 [ 144.769873][ T825] CPU: 1 PID: 825 Comm: kworker/1:1 Tainted: G B 5.12.0-rc6-syzkaller #0 [ 144.779584][ T825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 144.789722][ T825] Workqueue: usb_hub_wq hub_event [ 144.795110][ T825] Call Trace: [ 144.798479][ T825] dump_stack+0x24c/0x2e0 [ 144.802816][ T825] kmsan_report+0xfb/0x1e0 [ 144.807242][ T825] __msan_warning+0x5c/0xa0 [ 144.811750][ T825] pegasus_probe+0x10e7/0x4080 [ 144.816629][ T825] ? kaweth_get_link+0x70/0x70 [ 144.821381][ T825] usb_probe_interface+0xfcc/0x1520 [ 144.826568][ T825] ? usb_register_driver+0x900/0x900 [ 144.831837][ T825] really_probe+0xe15/0x24d0 [ 144.836499][ T825] driver_probe_device+0x29d/0x3a0 [ 144.841597][ T825] __device_attach_driver+0x63f/0x830 [ 144.847105][ T825] bus_for_each_drv+0x2c8/0x3f0 [ 144.851966][ T825] ? deferred_probe_work_func+0x4d0/0x4d0 [ 144.857885][ T825] __device_attach+0x56a/0x890 [ 144.862661][ T825] device_initial_probe+0x4a/0x60 [ 144.867814][ T825] bus_probe_device+0x17e/0x3d0 [ 144.872713][ T825] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 144.878803][ T825] device_add+0x2c15/0x31d0 [ 144.883432][ T825] usb_set_configuration+0x3872/0x3eb0 [ 144.888897][ T825] ? usb_set_configuration+0xae1/0x3eb0 [ 144.894463][ T825] usb_generic_driver_probe+0x138/0x300 [ 144.900151][ T825] ? usb_choose_configuration+0xee0/0xee0 [ 144.905906][ T825] usb_probe_device+0x317/0x570 [ 144.910812][ T825] ? usb_register_device_driver+0x590/0x590 [ 144.916751][ T825] really_probe+0xe15/0x24d0 [ 144.921374][ T825] driver_probe_device+0x29d/0x3a0 [ 144.926513][ T825] __device_attach_driver+0x63f/0x830 [ 144.931980][ T825] bus_for_each_drv+0x2c8/0x3f0 [ 144.936837][ T825] ? deferred_probe_work_func+0x4d0/0x4d0 [ 144.942557][ T825] __device_attach+0x56a/0x890 [ 144.947337][ T825] device_initial_probe+0x4a/0x60 [ 144.952374][ T825] bus_probe_device+0x17e/0x3d0 [ 144.957231][ T825] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 144.963064][ T825] device_add+0x2c15/0x31d0 [ 144.967576][ T825] usb_new_device+0x1bd4/0x2a30 [ 144.972465][ T825] hub_event+0x5b99/0x8870 [ 144.976888][ T825] ? kmsan_get_metadata+0x116/0x180 [ 144.982181][ T825] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 144.988016][ T825] ? led_work+0x780/0x780 [ 144.992340][ T825] process_one_work+0x1219/0x1fe0 [ 144.997418][ T825] worker_thread+0x10ec/0x2340 [ 145.002263][ T825] kthread+0x521/0x560 [ 145.006403][ T825] ? process_one_work+0x1fe0/0x1fe0 [ 145.011608][ T825] ? kthread_blkcg+0x110/0x110 [ 145.016372][ T825] ret_from_fork+0x1f/0x30 [ 145.020789][ T825] [ 145.023129][ T825] Local variable ----data.i@pegasus_probe created at: [ 145.029872][ T825] pegasus_probe+0xe57/0x4080 [ 145.034662][ T825] pegasus_probe+0xe57/0x4080 [ 145.039352][ T825] ===================================================== [ 147.077811][ T825] pegasus 1-1:0.194: can't reset MAC [ 147.083923][ T825] pegasus: probe of 1-1:0.194 failed with error -5 [ 147.100510][ T825] usb 1-1: USB disconnect, device number 2 [ 147.477727][ T825] usb 1-1: new full-speed USB device number 3 using dummy_hcd [ 147.857923][ T825] usb 1-1: config 0 has an invalid interface number: 172 but max is 1 [ 147.866281][ T825] usb 1-1: config 0 contains an unexpected descriptor of type 0x2, skipping [ 147.875225][ T825] usb 1-1: config 0 has an invalid interface number: 194 but max is 1 [ 147.883683][ T825] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 147.894332][ T825] usb 1-1: config 0 has no interface number 0 [ 147.900677][ T825] usb 1-1: config 0 has no interface number 1 [ 147.907076][ T825] usb 1-1: config 0 interface 172 altsetting 9 endpoint 0x4 has invalid maxpacket 558, setting to 64 [ 147.918300][ T825] usb 1-1: config 0 interface 172 altsetting 9 endpoint 0xD has invalid maxpacket 512, setting to 64 [ 147.929432][ T825] usb 1-1: config 0 interface 172 altsetting 9 endpoint 0x8 has invalid maxpacket 512, setting to 64 [ 147.940759][ T825] usb 1-1: config 0 interface 194 altsetting 64 endpoint 0xA has an invalid bInterval 127, changing to 4 [ 147.952246][ T825] usb 1-1: config 0 interface 194 altsetting 64 endpoint 0xA has invalid wMaxPacketSize 0 [ 147.962584][ T825] usb 1-1: config 0 interface 194 altsetting 64 has an invalid endpoint with address 0xA4, skipping [ 147.973720][ T825] usb 1-1: config 0 interface 194 altsetting 64 has 2 endpoint descriptors, different from the interface descriptor's value: 16 [ 147.987313][ T825] usb 1-1: config 0 interface 172 has no altsetting 0 [ 147.994359][ T825] usb 1-1: config 0 interface 194 has no altsetting 0 executing program [ 148.187880][ T825] usb 1-1: New USB device found, idVendor=07aa, idProduct=0004, bcdDevice=6e.8b [ 148.197404][ T825] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 148.206058][ T825] usb 1-1: Product: syz [ 148.210484][ T825] usb 1-1: Manufacturer: syz [ 148.244472][ T825] usb 1-1: config 0 descriptor?? [ 148.268259][ T825] usb 1-1: can't set config #0, error -71 [ 148.276754][ T825] usb 1-1: USB disconnect, device number 3 [ 148.647670][ T825] usb 1-1: new full-speed USB device number 4 using dummy_hcd [ 149.037812][ T825] usb 1-1: config 0 has an invalid interface number: 172 but max is 1 [ 149.046096][ T825] usb 1-1: config 0 contains an unexpected descriptor of type 0x2, skipping [ 149.055175][ T825] usb 1-1: config 0 has an invalid interface number: 194 but max is 1 [ 149.063671][ T825] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 149.074051][ T825] usb 1-1: config 0 has no interface number 0 [ 149.080337][ T825] usb 1-1: config 0 has no interface number 1 [ 149.086526][ T825] usb 1-1: config 0 interface 172 altsetting 9 endpoint 0x4 has invalid maxpacket 558, setting to 64 [ 149.097756][ T825] usb 1-1: config 0 interface 172 altsetting 9 endpoint 0xD has invalid maxpacket 512, setting to 64 [ 149.108990][ T825] usb 1-1: config 0 interface 172 altsetting 9 endpoint 0x8 has invalid maxpacket 512, setting to 64 [ 149.120281][ T825] usb 1-1: config 0 interface 194 altsetting 64 endpoint 0xA has an invalid bInterval 127, changing to 4 [ 149.131910][ T825] usb 1-1: config 0 interface 194 altsetting 64 endpoint 0xA has invalid wMaxPacketSize 0 [ 149.142299][ T825] usb 1-1: config 0 interface 194 altsetting 64 has an invalid endpoint with address 0xA4, skipping [ 149.153317][ T825] usb 1-1: config 0 interface 194 altsetting 64 has 2 endpoint descriptors, different from the interface descriptor's value: 16 [ 149.166938][ T825] usb 1-1: config 0 interface 172 has no altsetting 0 [ 149.174103][ T825] usb 1-1: config 0 interface 194 has no altsetting 0 [ 149.337890][ T825] usb 1-1: New USB device found, idVendor=07aa, idProduct=0004, bcdDevice=6e.8b [ 149.347084][ T825] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 149.355328][ T825] usb 1-1: Product: syz [ 149.359789][ T825] usb 1-1: Manufacturer: syz [ 149.364501][ T825] usb 1-1: SerialNumber: syz [ 149.377300][ T825] usb 1-1: config 0 descriptor?? [ 149.398210][ T8255] raw-gadget gadget: fail, usb_ep_enable returned -22 executing program