[....] Starting enhanced syslogd: rsyslogd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[ 102.200462][ T30] audit: type=1800 audit(1564877271.243:25): pid=12210 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[ 102.224934][ T30] audit: type=1800 audit(1564877271.273:26): pid=12210 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[ 102.273101][ T30] audit: type=1800 audit(1564877271.293:27): pid=12210 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[....] Starting OpenBSD Secure Shell server: sshd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
Debian GNU/Linux 7 syzkaller ttyS0
Warning: Permanently added '10.128.0.84' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [ 113.553894][T12362] IPVS: ftp: loaded support on port[0] = 21
[ 113.882599][ T12] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[ 114.122475][ T12] usb 1-1: Using ep0 maxpacket: 16
[ 114.242665][ T12] usb 1-1: config 0 has an invalid interface number: 128 but max is 0
[ 114.250934][ T12] usb 1-1: config 0 has an invalid descriptor of length 21, skipping remainder of the config
[ 114.261440][ T12] usb 1-1: config 0 has no interface number 0
[ 114.267715][ T12] usb 1-1: config 0 interface 128 altsetting 0 endpoint 0x84 has an invalid bInterval 100, changing to 10
[ 114.282309][ T12] usb 1-1: New USB device found, idVendor=12cf, idProduct=7111, bcdDevice=48.08
[ 114.291477][ T12] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 114.301362][ T12] usb 1-1: config 0 descriptor??
[ 114.562638][ T12] radio-si470x 1-1:0.128: DeviceID=0x4d5a ChipID=0xb180
[ 114.782634][ T12] radio-si470x 1-1:0.128: software version 77, hardware version 90
[ 115.002669][ T12] radio-si470x 1-1:0.128: si470x_set_report: usb_control_msg returned -71
[ 115.022558][ C0] radio-si470x 1-1:0.128: non-zero urb status (-71)
[ 115.029772][ T12] radio-si470x 1-1:0.128: si470x_set_report: usb_control_msg returned -71
[ 115.039176][ T12] radio-si470x: probe of 1-1:0.128 failed with error -22
[ 115.046408][ C0] usb 1-1:0.128: non-zero urb status (-71)
[ 115.055506][ T12] usb 1-1: USB disconnect, device number 2
[ 115.062451][ C0] ==================================================================
[ 115.070554][ C0] BUG: KMSAN: uninit-value in dummy_timer+0x8d3/0x6770
[ 115.077407][ C0] CPU: 0 PID: 12 Comm: kworker/0:1 Not tainted 5.2.0+ #15
[ 115.084500][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 115.094552][ C0] Workqueue: usb_hub_wq hub_event
[ 115.099560][ C0] Call Trace:
[ 115.102844][ C0]
[ 115.105707][ C0] dump_stack+0x191/0x1f0
[ 115.110033][ C0] kmsan_report+0x162/0x2d0
[ 115.114533][ C0] __msan_warning+0x75/0xe0
[ 115.119030][ C0] dummy_timer+0x8d3/0x6770
[ 115.123535][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 115.129884][ C0] ? mod_timer+0x70/0x80
[ 115.134133][ C0] ? kmsan_get_shadow_origin_ptr+0x71/0x470
[ 115.140020][ C0] call_timer_fn+0x222/0x520
[ 115.144629][ C0] ? dummy_free_streams+0x540/0x540
[ 115.149825][ C0] __run_timers+0xcdc/0x11a0
[ 115.154403][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 115.160463][ C0] ? dummy_free_streams+0x540/0x540
[ 115.165668][ C0] ? kmsan_get_shadow_origin_ptr+0x71/0x470
[ 115.171559][ C0] run_timer_softirq+0x2d/0x50
[ 115.176324][ C0] ? timers_dead_cpu+0x9c0/0x9c0
[ 115.181248][ C0] __do_softirq+0x4ad/0x858
[ 115.185753][ C0] irq_exit+0x238/0x290
[ 115.189901][ C0] exiting_irq+0xe/0x10
[ 115.194066][ C0] smp_apic_timer_interrupt+0x48/0x70
[ 115.199433][ C0] apic_timer_interrupt+0x2e/0x40
[ 115.204462][ C0]
[ 115.207398][ C0] RIP: 0010:__msan_chain_origin+0x8c/0xe0
[ 115.213108][ C0] Code: 4a 44 89 f7 e8 95 e7 ff ff 89 c3 65 ff 0d c0 62 03 7e 65 8b 05 b9 62 03 7e 85 c0 75 30 e8 6c ae 3b ff 4c 89 7d d0 ff 75 d0 9d <65> 48 8b 04 25 28 00 00 00 48 3b 45 e0 75 0d 89 d8 48 83 c4 18 5b
[ 115.234206][ C0] RSP: 0018:ffff88812807f2f0 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
[ 115.242608][ C0] RAX: 0000000000000000 RBX: 00000000d9a0022c RCX: 4662c554bb778100
[ 115.250584][ C0] RDX: ffffffff902b2000 RSI: 0000000000000001 RDI: 0000000000000000
[ 115.258560][ C0] RBP: ffff88812807f320 R08: 0000000000000096 R09: ffff88812fc413d0
[ 115.266522][ C0] R10: 0000000000000003 R11: ffffffff8180b190 R12: ffff8880af92e801
[ 115.274501][ C0] R13: ffff888107d07400 R14: 00000000d4c0022c R15: 0000000000000246
[ 115.282506][ C0] ? stack_trace_save+0x1b0/0x1b0
[ 115.287720][ C0] __skb_clone+0x863/0x970
[ 115.292142][ C0] skb_clone+0x402/0x5d0
[ 115.296427][ C0] netlink_broadcast_filtered+0xbec/0x1c10
[ 115.302246][ C0] ? kmsan_internal_memset_shadow+0x104/0x3a0
[ 115.308332][ C0] netlink_broadcast+0xf6/0x110
[ 115.313193][ C0] kobject_uevent_env+0x1c4e/0x27c0
[ 115.318417][ C0] kobject_uevent+0x6f/0x80
[ 115.322918][ C0] device_del+0x1b5c/0x1c50
[ 115.327774][ C0] ? usb_remove_ep_devs+0x8d/0xe0
[ 115.332900][ C0] usb_disable_device+0x567/0x1150
[ 115.338292][ C0] usb_disconnect+0x51e/0xd60
[ 115.342983][ C0] hub_event+0x4003/0x7320
[ 115.347801][ C0] ? kmsan_get_shadow_origin_ptr+0x71/0x470
[ 115.353682][ C0] ? led_work+0x720/0x720
[ 115.357994][ C0] ? led_work+0x720/0x720
[ 115.362327][ C0] process_one_work+0x1572/0x1f00
[ 115.367395][ C0] worker_thread+0x189c/0x2460
[ 115.372175][ C0] kthread+0x4b5/0x4f0
[ 115.376249][ C0] ? process_one_work+0x1f00/0x1f00
[ 115.381443][ C0] ? kthread_blkcg+0xf0/0xf0
[ 115.386031][ C0] ret_from_fork+0x35/0x40
[ 115.390529][ C0]
[ 115.392848][ C0] Uninit was stored to memory at:
[ 115.397863][ C0] kmsan_internal_chain_origin+0xcc/0x150
[ 115.403601][ C0] __msan_chain_origin+0x6b/0xe0
[ 115.408526][ C0] dummy_urb_enqueue+0x604/0xe10
[ 115.413540][ C0] usb_hcd_submit_urb+0x672/0x38d0
[ 115.418639][ C0] usb_submit_urb+0x1ef3/0x1f50
[ 115.423498][ C0] si470x_int_in_callback+0x3f7/0x1010
[ 115.437764][ C0] __usb_hcd_giveback_urb+0x4a7/0x630
[ 115.443402][ C0] usb_hcd_giveback_urb+0x189/0x670
[ 115.448621][ C0] dummy_timer+0xab0/0x6770
[ 115.453113][ C0] call_timer_fn+0x222/0x520
[ 115.457690][ C0] __run_timers+0xcdc/0x11a0
[ 115.462267][ C0] run_timer_softirq+0x2d/0x50
[ 115.467021][ C0] __do_softirq+0x4ad/0x858
[ 115.471523][ C0] irq_exit+0x238/0x290
[ 115.475682][ C0] exiting_irq+0xe/0x10
[ 115.479846][ C0] smp_apic_timer_interrupt+0x48/0x70
[ 115.485217][ C0] apic_timer_interrupt+0x2e/0x40
[ 115.490236][ C0] console_unlock+0x1936/0x1cd0
[ 115.495078][ C0] vprintk_emit+0x47a/0x8a0
[ 115.499699][ C0] vprintk_default+0x90/0xa0
[ 115.504291][ C0] vprintk_func+0x635/0x810
[ 115.508812][ C0] printk+0x180/0x1c3
[ 115.512812][ C0] really_probe+0x1b28/0x1d90
[ 115.517860][ C0] driver_probe_device+0x1ba/0x510
[ 115.522993][ C0] __device_attach_driver+0x5b8/0x790
[ 115.528356][ C0] bus_for_each_drv+0x28e/0x3b0
[ 115.533243][ C0] __device_attach+0x489/0x750
[ 115.538029][ C0] device_initial_probe+0x4a/0x60
[ 115.543232][ C0] bus_probe_device+0x131/0x390
[ 115.548092][ C0] device_add+0x25b5/0x2df0
[ 115.552609][ C0] usb_set_configuration+0x309f/0x3710
[ 115.558055][ C0] generic_probe+0xe7/0x280
[ 115.562551][ C0] usb_probe_device+0x146/0x200
[ 115.567427][ C0] really_probe+0x1344/0x1d90
[ 115.572201][ C0] driver_probe_device+0x1ba/0x510
[ 115.577307][ C0] __device_attach_driver+0x5b8/0x790
[ 115.582693][ C0] bus_for_each_drv+0x28e/0x3b0
[ 115.587538][ C0] __device_attach+0x489/0x750
[ 115.592311][ C0] device_initial_probe+0x4a/0x60
[ 115.597341][ C0] bus_probe_device+0x131/0x390
[ 115.602200][ C0] device_add+0x25b5/0x2df0
[ 115.606698][ C0] usb_new_device+0x23e5/0x2fb0
[ 115.611564][ C0] hub_event+0x5853/0x7320
[ 115.615975][ C0] process_one_work+0x1572/0x1f00
[ 115.621009][ C0] worker_thread+0x111b/0x2460
[ 115.625776][ C0] kthread+0x4b5/0x4f0
[ 115.629831][ C0] ret_from_fork+0x35/0x40
[ 115.634253][ C0]
[ 115.636589][ C0] Uninit was created at:
[ 115.640823][ C0] kmsan_internal_poison_shadow+0x53/0xa0
[ 115.646555][ C0] kmsan_slab_free+0x8d/0x100
[ 115.651242][ C0] kfree+0x4b2/0x2960
[ 115.655223][ C0] si470x_usb_driver_probe+0xa6f/0x31d0
[ 115.660791][ C0] usb_probe_interface+0xd19/0x1310
[ 115.666000][ C0] really_probe+0x1344/0x1d90
[ 115.670686][ C0] driver_probe_device+0x1ba/0x510
[ 115.675796][ C0] __device_attach_driver+0x5b8/0x790
[ 115.681171][ C0] bus_for_each_drv+0x28e/0x3b0
[ 115.686013][ C0] __device_attach+0x489/0x750
[ 115.690766][ C0] device_initial_probe+0x4a/0x60
[ 115.695795][ C0] bus_probe_device+0x131/0x390
[ 115.700655][ C0] device_add+0x25b5/0x2df0
[ 115.705150][ C0] usb_set_configuration+0x309f/0x3710
[ 115.710604][ C0] generic_probe+0xe7/0x280
[ 115.715099][ C0] usb_probe_device+0x146/0x200
[ 115.719959][ C0] really_probe+0x1344/0x1d90
[ 115.724656][ C0] driver_probe_device+0x1ba/0x510
[ 115.729768][ C0] __device_attach_driver+0x5b8/0x790
[ 115.735235][ C0] bus_for_each_drv+0x28e/0x3b0
[ 115.740075][ C0] __device_attach+0x489/0x750
[ 115.744914][ C0] device_initial_probe+0x4a/0x60
[ 115.750013][ C0] bus_probe_device+0x131/0x390
[ 115.754951][ C0] device_add+0x25b5/0x2df0
[ 115.759441][ C0] usb_new_device+0x23e5/0x2fb0
[ 115.764278][ C0] hub_event+0x5853/0x7320
[ 115.768686][ C0] process_one_work+0x1572/0x1f00
[ 115.773701][ C0] worker_thread+0x111b/0x2460
[ 115.778460][ C0] kthread+0x4b5/0x4f0
[ 115.782515][ C0] ret_from_fork+0x35/0x40
[ 115.786911][ C0] ==================================================================
[ 115.794970][ C0] Disabling lock debugging due to kernel taint
[ 115.801124][ C0] Kernel panic - not syncing: panic_on_warn set ...
[ 115.807700][ C0] CPU: 0 PID: 12 Comm: kworker/0:1 Tainted: G B 5.2.0+ #15
[ 115.816175][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 115.826226][ C0] Workqueue: usb_hub_wq hub_event
[ 115.831235][ C0] Call Trace:
[ 115.834507][ C0]
[ 115.837357][ C0] dump_stack+0x191/0x1f0
[ 115.841689][ C0] panic+0x3c9/0xc1e
[ 115.845605][ C0] kmsan_report+0x2ca/0x2d0
[ 115.850122][ C0] __msan_warning+0x75/0xe0
[ 115.854653][ C0] dummy_timer+0x8d3/0x6770
[ 115.859173][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 115.865349][ C0] ? mod_timer+0x70/0x80
[ 115.869619][ C0] ? kmsan_get_shadow_origin_ptr+0x71/0x470
[ 115.875527][ C0] call_timer_fn+0x222/0x520
[ 115.880110][ C0] ? dummy_free_streams+0x540/0x540
[ 115.885313][ C0] __run_timers+0xcdc/0x11a0
[ 115.889899][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 115.895963][ C0] ? dummy_free_streams+0x540/0x540
[ 115.901174][ C0] ? kmsan_get_shadow_origin_ptr+0x71/0x470
[ 115.907068][ C0] run_timer_softirq+0x2d/0x50
[ 115.912189][ C0] ? timers_dead_cpu+0x9c0/0x9c0
[ 115.917122][ C0] __do_softirq+0x4ad/0x858
[ 115.921635][ C0] irq_exit+0x238/0x290
[ 115.925791][ C0] exiting_irq+0xe/0x10
[ 115.929939][ C0] smp_apic_timer_interrupt+0x48/0x70
[ 115.935324][ C0] apic_timer_interrupt+0x2e/0x40
[ 115.940349][ C0]
[ 115.943296][ C0] RIP: 0010:__msan_chain_origin+0x8c/0xe0
[ 115.949018][ C0] Code: 4a 44 89 f7 e8 95 e7 ff ff 89 c3 65 ff 0d c0 62 03 7e 65 8b 05 b9 62 03 7e 85 c0 75 30 e8 6c ae 3b ff 4c 89 7d d0 ff 75 d0 9d <65> 48 8b 04 25 28 00 00 00 48 3b 45 e0 75 0d 89 d8 48 83 c4 18 5b
[ 115.968612][ C0] RSP: 0018:ffff88812807f2f0 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
[ 115.977013][ C0] RAX: 0000000000000000 RBX: 00000000d9a0022c RCX: 4662c554bb778100
[ 115.984976][ C0] RDX: ffffffff902b2000 RSI: 0000000000000001 RDI: 0000000000000000
[ 115.992954][ C0] RBP: ffff88812807f320 R08: 0000000000000096 R09: ffff88812fc413d0
[ 116.000931][ C0] R10: 0000000000000003 R11: ffffffff8180b190 R12: ffff8880af92e801
[ 116.008896][ C0] R13: ffff888107d07400 R14: 00000000d4c0022c R15: 0000000000000246
[ 116.016873][ C0] ? stack_trace_save+0x1b0/0x1b0
[ 116.021922][ C0] __skb_clone+0x863/0x970
[ 116.026343][ C0] skb_clone+0x402/0x5d0
[ 116.030606][ C0] netlink_broadcast_filtered+0xbec/0x1c10
[ 116.036431][ C0] ? kmsan_internal_memset_shadow+0x104/0x3a0
[ 116.042505][ C0] netlink_broadcast+0xf6/0x110
[ 116.047355][ C0] kobject_uevent_env+0x1c4e/0x27c0
[ 116.052580][ C0] kobject_uevent+0x6f/0x80
[ 116.057079][ C0] device_del+0x1b5c/0x1c50
[ 116.061588][ C0] ? usb_remove_ep_devs+0x8d/0xe0
[ 116.066624][ C0] usb_disable_device+0x567/0x1150
[ 116.071745][ C0] usb_disconnect+0x51e/0xd60
[ 116.076451][ C0] hub_event+0x4003/0x7320
[ 116.080950][ C0] ? kmsan_get_shadow_origin_ptr+0x71/0x470
[ 116.086837][ C0] ? led_work+0x720/0x720
[ 116.091157][ C0] ? led_work+0x720/0x720
[ 116.095482][ C0] process_one_work+0x1572/0x1f00
[ 116.100525][ C0] worker_thread+0x189c/0x2460
[ 116.105313][ C0] kthread+0x4b5/0x4f0
[ 116.109381][ C0] ? process_one_work+0x1f00/0x1f00
[ 116.114583][ C0] ? kthread_blkcg+0xf0/0xf0
[ 116.119288][ C0] ret_from_fork+0x35/0x40
[ 116.124774][ C0] Kernel Offset: disabled
[ 116.129104][ C0] Rebooting in 86400 seconds..