[ OK ] Started Getty on tty5. [ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty2. [ OK ] Started Serial Getty on ttyS0. [ OK ] Started Getty on tty1. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.1.110' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 133.843118][ T2016] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 134.083493][ T2016] usb 1-1: Using ep0 maxpacket: 32 [ 134.203299][ T2016] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 247 [ 134.213823][ T2016] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 16 [ 134.223824][ T2016] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 134.393361][ T2016] usb 1-1: New USB device found, idVendor=0424, idProduct=7505, bcdDevice= 0.40 [ 134.402539][ T2016] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 134.411206][ T2016] usb 1-1: Product: syz [ 134.415618][ T2016] usb 1-1: Manufacturer: syz [ 134.420331][ T2016] usb 1-1: SerialNumber: syz [ 134.464953][ T8214] raw-gadget gadget: fail, usb_ep_enable returned -22 [ 134.471887][ T8214] raw-gadget gadget: fail, usb_ep_enable returned -22 [ 134.707124][ T8214] raw-gadget gadget: fail, usb_ep_enable returned -22 [ 134.714672][ T8214] raw-gadget gadget: fail, usb_ep_enable returned -22 [ 135.163630][ T2016] cdc_ether: probe of 1-1:1.0 failed with error -22 [ 135.170651][ T2016] smsc75xx v1.0.0 [ 135.363568][ T8214] raw-gadget gadget: fail, usb_ep_enable returned -22 [ 135.370509][ T8214] raw-gadget gadget: fail, usb_ep_enable returned -22 [ 135.613327][ T2016] ===================================================== [ 135.620286][ T2016] BUG: KMSAN: uninit-value in smsc75xx_bind+0x57c/0x13c0 [ 135.627355][ T2016] CPU: 0 PID: 2016 Comm: kworker/0:2 Not tainted 5.11.0-rc7-syzkaller #0 [ 135.635822][ T2016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 135.646032][ T2016] Workqueue: usb_hub_wq hub_event [ 135.651071][ T2016] Call Trace: [ 135.654371][ T2016] dump_stack+0x21c/0x280 [ 135.658697][ T2016] kmsan_report+0xfb/0x1e0 [ 135.663116][ T2016] __msan_warning+0x5f/0xa0 [ 135.667620][ T2016] smsc75xx_bind+0x57c/0x13c0 [ 135.672319][ T2016] ? smsc75xx_write_wuff+0xa70/0xa70 [ 135.677599][ T2016] usbnet_probe+0x115e/0x3e80 [ 135.682285][ T2016] ? kmsan_get_metadata+0x116/0x180 [ 135.687485][ T2016] ? usbnet_disconnect+0x6b0/0x6b0 [ 135.692609][ T2016] usb_probe_interface+0xfcc/0x1520 [ 135.697813][ T2016] ? usb_register_driver+0x900/0x900 [ 135.703125][ T2016] really_probe+0xe15/0x24d0 [ 135.707869][ T2016] driver_probe_device+0x29d/0x3a0 [ 135.712981][ T2016] __device_attach_driver+0x63f/0x830 [ 135.718378][ T2016] bus_for_each_drv+0x2c8/0x3f0 [ 135.723225][ T2016] ? deferred_probe_work_func+0x400/0x400 [ 135.728943][ T2016] __device_attach+0x56a/0x890 [ 135.733703][ T2016] device_initial_probe+0x4a/0x60 [ 135.738722][ T2016] bus_probe_device+0x17e/0x3d0 [ 135.743596][ T2016] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 135.749449][ T2016] device_add+0x2c15/0x31d0 [ 135.753998][ T2016] usb_set_configuration+0x3872/0x3eb0 [ 135.759461][ T2016] ? usb_set_configuration+0xac1/0x3eb0 [ 135.765024][ T2016] usb_generic_driver_probe+0x138/0x300 [ 135.770579][ T2016] ? usb_choose_configuration+0xee0/0xee0 [ 135.776425][ T2016] usb_probe_device+0x317/0x570 [ 135.781315][ T2016] ? usb_register_device_driver+0x590/0x590 [ 135.787206][ T2016] really_probe+0xe15/0x24d0 [ 135.791797][ T2016] driver_probe_device+0x29d/0x3a0 [ 135.796919][ T2016] __device_attach_driver+0x63f/0x830 [ 135.802300][ T2016] bus_for_each_drv+0x2c8/0x3f0 [ 135.807176][ T2016] ? deferred_probe_work_func+0x400/0x400 [ 135.812903][ T2016] __device_attach+0x56a/0x890 [ 135.817800][ T2016] device_initial_probe+0x4a/0x60 [ 135.822909][ T2016] bus_probe_device+0x17e/0x3d0 [ 135.827780][ T2016] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 135.834772][ T2016] device_add+0x2c15/0x31d0 [ 135.839280][ T2016] usb_new_device+0x1bd4/0x2a30 [ 135.844129][ T2016] hub_event+0x5b99/0x8870 [ 135.848576][ T2016] ? kmsan_get_metadata+0x116/0x180 [ 135.853804][ T2016] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 135.859633][ T2016] ? led_work+0x780/0x780 [ 135.863979][ T2016] process_one_work+0x1219/0x1fe0 [ 135.869023][ T2016] worker_thread+0x10ec/0x2340 [ 135.873816][ T2016] kthread+0x521/0x560 [ 135.877935][ T2016] ? process_one_work+0x1fe0/0x1fe0 [ 135.883199][ T2016] ? kthread_blkcg+0x110/0x110 [ 135.887959][ T2016] ret_from_fork+0x1f/0x30 [ 135.892481][ T2016] [ 135.894793][ T2016] Local variable ----buf.i91@smsc75xx_bind created at: [ 135.901711][ T2016] smsc75xx_bind+0x435/0x13c0 [ 135.906428][ T2016] smsc75xx_bind+0x435/0x13c0 [ 135.911172][ T2016] ===================================================== [ 135.918174][ T2016] Disabling lock debugging due to kernel taint [ 135.924316][ T2016] Kernel panic - not syncing: panic_on_warn set ... [ 135.930905][ T2016] CPU: 0 PID: 2016 Comm: kworker/0:2 Tainted: G B 5.11.0-rc7-syzkaller #0 [ 135.940702][ T2016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 135.950779][ T2016] Workqueue: usb_hub_wq hub_event [ 135.955829][ T2016] Call Trace: [ 135.959118][ T2016] dump_stack+0x21c/0x280 [ 135.963451][ T2016] panic+0x4c6/0xea7 [ 135.967388][ T2016] ? add_taint+0x17c/0x210 [ 135.971821][ T2016] kmsan_report+0x1de/0x1e0 [ 135.976338][ T2016] __msan_warning+0x5f/0xa0 [ 135.980862][ T2016] smsc75xx_bind+0x57c/0x13c0 [ 135.985546][ T2016] ? smsc75xx_write_wuff+0xa70/0xa70 [ 135.991008][ T2016] usbnet_probe+0x115e/0x3e80 [ 135.995715][ T2016] ? kmsan_get_metadata+0x116/0x180 [ 136.000997][ T2016] ? usbnet_disconnect+0x6b0/0x6b0 [ 136.006122][ T2016] usb_probe_interface+0xfcc/0x1520 [ 136.011322][ T2016] ? usb_register_driver+0x900/0x900 [ 136.016621][ T2016] really_probe+0xe15/0x24d0 [ 136.021232][ T2016] driver_probe_device+0x29d/0x3a0 [ 136.026345][ T2016] __device_attach_driver+0x63f/0x830 [ 136.031727][ T2016] bus_for_each_drv+0x2c8/0x3f0 [ 136.036573][ T2016] ? deferred_probe_work_func+0x400/0x400 [ 136.042434][ T2016] __device_attach+0x56a/0x890 [ 136.047339][ T2016] device_initial_probe+0x4a/0x60 [ 136.052360][ T2016] bus_probe_device+0x17e/0x3d0 [ 136.057208][ T2016] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 136.063018][ T2016] device_add+0x2c15/0x31d0 [ 136.067540][ T2016] usb_set_configuration+0x3872/0x3eb0 [ 136.073002][ T2016] ? usb_set_configuration+0xac1/0x3eb0 [ 136.078649][ T2016] usb_generic_driver_probe+0x138/0x300 [ 136.084235][ T2016] ? usb_choose_configuration+0xee0/0xee0 [ 136.089951][ T2016] usb_probe_device+0x317/0x570 [ 136.094822][ T2016] ? usb_register_device_driver+0x590/0x590 [ 136.100710][ T2016] really_probe+0xe15/0x24d0 [ 136.105302][ T2016] driver_probe_device+0x29d/0x3a0 [ 136.110497][ T2016] __device_attach_driver+0x63f/0x830 [ 136.115882][ T2016] bus_for_each_drv+0x2c8/0x3f0 [ 136.120797][ T2016] ? deferred_probe_work_func+0x400/0x400 [ 136.126539][ T2016] __device_attach+0x56a/0x890 [ 136.131329][ T2016] device_initial_probe+0x4a/0x60 [ 136.136525][ T2016] bus_probe_device+0x17e/0x3d0 [ 136.141446][ T2016] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 136.147312][ T2016] device_add+0x2c15/0x31d0 [ 136.151948][ T2016] usb_new_device+0x1bd4/0x2a30 [ 136.156813][ T2016] hub_event+0x5b99/0x8870 [ 136.161235][ T2016] ? kmsan_get_metadata+0x116/0x180 [ 136.166467][ T2016] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 136.172314][ T2016] ? led_work+0x780/0x780 [ 136.176653][ T2016] process_one_work+0x1219/0x1fe0 [ 136.181681][ T2016] worker_thread+0x10ec/0x2340 [ 136.186448][ T2016] kthread+0x521/0x560 [ 136.190554][ T2016] ? process_one_work+0x1fe0/0x1fe0 [ 136.195779][ T2016] ? kthread_blkcg+0x110/0x110 [ 136.200553][ T2016] ret_from_fork+0x1f/0x30 [ 136.205597][ T2016] Kernel Offset: disabled [ 136.210369][ T2016] Rebooting in 86400 seconds..