[ 88.319711][ T32] audit: type=1800 audit(1571519128.369:25): pid=12820 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 88.345000][ T32] audit: type=1800 audit(1571519128.399:26): pid=12820 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 88.384674][ T32] audit: type=1800 audit(1571519128.429:27): pid=12820 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [ 89.526752][T12888] sshd (12888) used greatest stack depth: 53392 bytes left [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.133' (ECDSA) to the list of known hosts. syzkaller login: [ 101.132672][T12972] IPVS: ftp: loaded support on port[0] = 21 [ 101.212820][T12972] chnl_net:caif_netlink_parms(): no params data found [ 101.246284][T12972] bridge0: port 1(bridge_slave_0) entered blocking state [ 101.253438][T12972] bridge0: port 1(bridge_slave_0) entered disabled state [ 101.261338][T12972] device bridge_slave_0 entered promiscuous mode [ 101.269706][T12972] bridge0: port 2(bridge_slave_1) entered blocking state [ 101.276897][T12972] bridge0: port 2(bridge_slave_1) entered disabled state [ 101.285268][T12972] device bridge_slave_1 entered promiscuous mode [ 101.306445][T12972] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 101.317601][T12972] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 101.340690][T12972] team0: Port device team_slave_0 added [ 101.348469][T12972] team0: Port device team_slave_1 added [ 101.415008][T12972] device hsr_slave_0 entered promiscuous mode [ 101.452782][T12972] device hsr_slave_1 entered promiscuous mode [ 101.503744][T12972] bridge0: port 2(bridge_slave_1) entered blocking state [ 101.510933][T12972] bridge0: port 2(bridge_slave_1) entered forwarding state [ 101.518649][T12972] bridge0: port 1(bridge_slave_0) entered blocking state [ 101.525806][T12972] bridge0: port 1(bridge_slave_0) entered forwarding state [ 101.573666][T12972] 8021q: adding VLAN 0 to HW filter on device bond0 [ 101.587325][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 101.598176][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 101.607306][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 101.616489][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 101.631496][T12972] 8021q: adding VLAN 0 to HW filter on device team0 [ 101.644051][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 101.654006][ T5] bridge0: port 1(bridge_slave_0) entered blocking state [ 101.661199][ T5] bridge0: port 1(bridge_slave_0) entered forwarding state [ 101.685612][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 101.695191][ T5] bridge0: port 2(bridge_slave_1) entered blocking state [ 101.702445][ T5] bridge0: port 2(bridge_slave_1) entered forwarding state [ 101.711452][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 101.722683][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 101.735613][ T3381] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 101.753758][ T3381] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 101.762695][ T3381] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 101.776926][T12972] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready executing program [ 101.799719][T12972] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 102.112508][ T3381] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 102.382249][ T3381] usb 1-1: Using ep0 maxpacket: 8 [ 102.512341][ T3381] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7 [ 102.523392][ T3381] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 102.692526][ T3381] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 102.701626][ T3381] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 102.709726][ T3381] usb 1-1: Product: syz [ 102.714024][ T3381] usb 1-1: Manufacturer: syz [ 102.718613][ T3381] usb 1-1: SerialNumber: syz [ 103.062749][ T3381] ===================================================== [ 103.069737][ T3381] BUG: KMSAN: uninit-value in build_audio_procunit+0x1be8/0x2490 [ 103.077455][ T3381] CPU: 1 PID: 3381 Comm: kworker/1:2 Not tainted 5.4.0-rc3+ #0 [ 103.085052][ T3381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 103.095095][ T3381] Workqueue: usb_hub_wq hub_event [ 103.100094][ T3381] Call Trace: [ 103.103360][ T3381] dump_stack+0x191/0x1f0 [ 103.107680][ T3381] kmsan_report+0x14a/0x2f0 [ 103.112168][ T3381] __msan_warning+0x73/0xf0 [ 103.116647][ T3381] build_audio_procunit+0x1be8/0x2490 [ 103.122034][ T3381] parse_audio_unit+0x115c/0x7490 [ 103.127058][ T3381] ? kmsan_internal_set_origin+0x6a/0xb0 [ 103.132675][ T3381] ? kmsan_get_shadow_origin_ptr+0x91/0x4b0 [ 103.138552][ T3381] ? kmsan_get_shadow_origin_ptr+0x91/0x4b0 [ 103.144421][ T3381] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 103.150464][ T3381] ? kmsan_get_shadow_origin_ptr+0x91/0x4b0 [ 103.156335][ T3381] snd_usb_create_mixer+0x1d7c/0x4070 [ 103.161714][ T3381] ? kmsan_get_shadow_origin_ptr+0x91/0x4b0 [ 103.167604][ T3381] usb_audio_probe+0x286b/0x3eb0 [ 103.172533][ T3381] ? snd_usb_autosuspend+0x110/0x110 [ 103.177795][ T3381] usb_probe_interface+0xd19/0x1310 [ 103.182975][ T3381] ? kmsan_get_shadow_origin_ptr+0x91/0x4b0 [ 103.188858][ T3381] ? usb_register_driver+0x860/0x860 [ 103.194160][ T3381] really_probe+0xd91/0x1f90 [ 103.198763][ T3381] driver_probe_device+0x1ba/0x510 [ 103.203859][ T3381] __device_attach_driver+0x5b8/0x790 [ 103.209213][ T3381] bus_for_each_drv+0x28e/0x3b0 [ 103.214045][ T3381] ? deferred_probe_work_func+0x400/0x400 [ 103.219743][ T3381] __device_attach+0x489/0x750 [ 103.224490][ T3381] device_initial_probe+0x4a/0x60 [ 103.229524][ T3381] bus_probe_device+0x131/0x390 [ 103.234356][ T3381] device_add+0x25b5/0x2df0 [ 103.238861][ T3381] usb_set_configuration+0x309f/0x3710 [ 103.244311][ T3381] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 103.250360][ T3381] generic_probe+0xe7/0x280 [ 103.254838][ T3381] ? usb_choose_configuration+0xae0/0xae0 [ 103.260532][ T3381] usb_probe_device+0x146/0x200 [ 103.265361][ T3381] ? kmsan_get_shadow_origin_ptr+0x91/0x4b0 [ 103.271229][ T3381] ? usb_register_device_driver+0x500/0x500 [ 103.277095][ T3381] really_probe+0xd91/0x1f90 [ 103.281665][ T3381] driver_probe_device+0x1ba/0x510 [ 103.286756][ T3381] __device_attach_driver+0x5b8/0x790 [ 103.292127][ T3381] bus_for_each_drv+0x28e/0x3b0 [ 103.296970][ T3381] ? deferred_probe_work_func+0x400/0x400 [ 103.302674][ T3381] __device_attach+0x489/0x750 [ 103.307422][ T3381] device_initial_probe+0x4a/0x60 [ 103.312421][ T3381] bus_probe_device+0x131/0x390 [ 103.317250][ T3381] device_add+0x25b5/0x2df0 [ 103.321740][ T3381] usb_new_device+0x23e5/0x2fb0 [ 103.326576][ T3381] hub_event+0x581d/0x72f0 [ 103.331004][ T3381] ? kmsan_get_shadow_origin_ptr+0x91/0x4b0 [ 103.336884][ T3381] ? led_work+0x720/0x720 [ 103.341210][ T3381] ? led_work+0x720/0x720 [ 103.345516][ T3381] process_one_work+0x1572/0x1ef0 [ 103.350528][ T3381] worker_thread+0x111b/0x2460 [ 103.355293][ T3381] kthread+0x4b5/0x4f0 [ 103.359349][ T3381] ? process_one_work+0x1ef0/0x1ef0 [ 103.364527][ T3381] ? kthread_blkcg+0xf0/0xf0 [ 103.369103][ T3381] ret_from_fork+0x35/0x40 [ 103.373499][ T3381] [ 103.375802][ T3381] Uninit was created at: [ 103.380025][ T3381] kmsan_internal_poison_shadow+0x60/0x110 [ 103.385806][ T3381] kmsan_slab_alloc+0xaa/0x130 [ 103.390541][ T3381] __kmalloc+0x28e/0x430 [ 103.394759][ T3381] usb_get_configuration+0x50d/0x76a0 [ 103.400104][ T3381] usb_new_device+0x224/0x2fb0 [ 103.404844][ T3381] hub_event+0x581d/0x72f0 [ 103.409235][ T3381] process_one_work+0x1572/0x1ef0 [ 103.414236][ T3381] worker_thread+0x111b/0x2460 [ 103.418972][ T3381] kthread+0x4b5/0x4f0 [ 103.423199][ T3381] ret_from_fork+0x35/0x40 [ 103.427584][ T3381] ===================================================== [ 103.434487][ T3381] Disabling lock debugging due to kernel taint [ 103.440608][ T3381] Kernel panic - not syncing: panic_on_warn set ... [ 103.447180][ T3381] CPU: 1 PID: 3381 Comm: kworker/1:2 Tainted: G B 5.4.0-rc3+ #0 [ 103.456097][ T3381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 103.466138][ T3381] Workqueue: usb_hub_wq hub_event [ 103.471147][ T3381] Call Trace: [ 103.474413][ T3381] dump_stack+0x191/0x1f0 [ 103.478721][ T3381] panic+0x3c9/0xc1e [ 103.482612][ T3381] kmsan_report+0x2e8/0x2f0 [ 103.487099][ T3381] __msan_warning+0x73/0xf0 [ 103.491593][ T3381] build_audio_procunit+0x1be8/0x2490 [ 103.496963][ T3381] parse_audio_unit+0x115c/0x7490 [ 103.501967][ T3381] ? kmsan_internal_set_origin+0x6a/0xb0 [ 103.507592][ T3381] ? kmsan_get_shadow_origin_ptr+0x91/0x4b0 [ 103.513469][ T3381] ? kmsan_get_shadow_origin_ptr+0x91/0x4b0 [ 103.519338][ T3381] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 103.525380][ T3381] ? kmsan_get_shadow_origin_ptr+0x91/0x4b0 [ 103.531254][ T3381] snd_usb_create_mixer+0x1d7c/0x4070 [ 103.536608][ T3381] ? kmsan_get_shadow_origin_ptr+0x91/0x4b0 [ 103.542500][ T3381] usb_audio_probe+0x286b/0x3eb0 [ 103.547428][ T3381] ? snd_usb_autosuspend+0x110/0x110 [ 103.552690][ T3381] usb_probe_interface+0xd19/0x1310 [ 103.557873][ T3381] ? kmsan_get_shadow_origin_ptr+0x91/0x4b0 [ 103.563745][ T3381] ? usb_register_driver+0x860/0x860 [ 103.569009][ T3381] really_probe+0xd91/0x1f90 [ 103.573581][ T3381] driver_probe_device+0x1ba/0x510 [ 103.578673][ T3381] __device_attach_driver+0x5b8/0x790 [ 103.584033][ T3381] bus_for_each_drv+0x28e/0x3b0 [ 103.588860][ T3381] ? deferred_probe_work_func+0x400/0x400 [ 103.594570][ T3381] __device_attach+0x489/0x750 [ 103.599331][ T3381] device_initial_probe+0x4a/0x60 [ 103.604336][ T3381] bus_probe_device+0x131/0x390 [ 103.609170][ T3381] device_add+0x25b5/0x2df0 [ 103.613667][ T3381] usb_set_configuration+0x309f/0x3710 [ 103.619115][ T3381] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 103.625174][ T3381] generic_probe+0xe7/0x280 [ 103.629656][ T3381] ? usb_choose_configuration+0xae0/0xae0 [ 103.635359][ T3381] usb_probe_device+0x146/0x200 [ 103.640194][ T3381] ? kmsan_get_shadow_origin_ptr+0x91/0x4b0 [ 103.646068][ T3381] ? usb_register_device_driver+0x500/0x500 [ 103.651942][ T3381] really_probe+0xd91/0x1f90 [ 103.656519][ T3381] driver_probe_device+0x1ba/0x510 [ 103.661612][ T3381] __device_attach_driver+0x5b8/0x790 [ 103.666967][ T3381] bus_for_each_drv+0x28e/0x3b0 [ 103.671794][ T3381] ? deferred_probe_work_func+0x400/0x400 [ 103.677495][ T3381] __device_attach+0x489/0x750 [ 103.682249][ T3381] device_initial_probe+0x4a/0x60 [ 103.687250][ T3381] bus_probe_device+0x131/0x390 [ 103.692093][ T3381] device_add+0x25b5/0x2df0 [ 103.696602][ T3381] usb_new_device+0x23e5/0x2fb0 [ 103.701443][ T3381] hub_event+0x581d/0x72f0 [ 103.705870][ T3381] ? kmsan_get_shadow_origin_ptr+0x91/0x4b0 [ 103.711761][ T3381] ? led_work+0x720/0x720 [ 103.716069][ T3381] ? led_work+0x720/0x720 [ 103.720381][ T3381] process_one_work+0x1572/0x1ef0 [ 103.725399][ T3381] worker_thread+0x111b/0x2460 [ 103.730151][ T3381] kthread+0x4b5/0x4f0 [ 103.734239][ T3381] ? process_one_work+0x1ef0/0x1ef0 [ 103.739419][ T3381] ? kthread_blkcg+0xf0/0xf0 [ 103.743990][ T3381] ret_from_fork+0x35/0x40 [ 103.749883][ T3381] Kernel Offset: disabled [ 103.754206][ T3381] Rebooting in 86400 seconds..