[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 84.751698][ T31] audit: type=1800 audit(1572222334.805:25): pid=11849 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 84.789620][ T31] audit: type=1800 audit(1572222334.835:26): pid=11849 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 84.811066][ T31] audit: type=1800 audit(1572222334.845:27): pid=11849 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.239' (ECDSA) to the list of known hosts. syzkaller login: [ 95.422935][T12000] IPVS: ftp: loaded support on port[0] = 21 [ 95.514502][T12000] chnl_net:caif_netlink_parms(): no params data found [ 95.554912][T12000] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.562438][T12000] bridge0: port 1(bridge_slave_0) entered disabled state [ 95.570741][T12000] device bridge_slave_0 entered promiscuous mode [ 95.579777][T12000] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.587069][T12000] bridge0: port 2(bridge_slave_1) entered disabled state [ 95.595697][T12000] device bridge_slave_1 entered promiscuous mode [ 95.617960][T12000] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 95.629506][T12000] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 95.652635][T12000] team0: Port device team_slave_0 added [ 95.660452][T12000] team0: Port device team_slave_1 added [ 95.715094][T12000] device hsr_slave_0 entered promiscuous mode [ 95.762473][T12000] device hsr_slave_1 entered promiscuous mode [ 95.895380][T12000] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.902734][T12000] bridge0: port 2(bridge_slave_1) entered forwarding state [ 95.910696][T12000] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.918074][T12000] bridge0: port 1(bridge_slave_0) entered forwarding state [ 96.099071][T12000] 8021q: adding VLAN 0 to HW filter on device bond0 [ 96.144683][ T3379] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 96.164847][ T3379] bridge0: port 1(bridge_slave_0) entered disabled state [ 96.186583][ T3379] bridge0: port 2(bridge_slave_1) entered disabled state [ 96.213514][ T3379] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 96.241466][T12000] 8021q: adding VLAN 0 to HW filter on device team0 [ 96.281501][ T3379] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 96.291229][ T3379] bridge0: port 1(bridge_slave_0) entered blocking state [ 96.298589][ T3379] bridge0: port 1(bridge_slave_0) entered forwarding state [ 96.377090][T12000] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 96.387828][T12000] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 96.408032][ T3379] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 96.417479][ T3379] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.424812][ T3379] bridge0: port 2(bridge_slave_1) entered forwarding state [ 96.436278][ T3379] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 96.446650][ T3379] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 96.456483][ T3379] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 96.466484][ T3379] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready executing program [ 96.535478][T12000] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 96.610260][ T3379] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 96.619085][ T3379] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 96.872549][ T17] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 97.232206][ T17] usb 1-1: config 0 has an invalid interface number: 206 but max is 0 [ 97.240484][ T17] usb 1-1: config 0 has no interface number 0 [ 97.246810][ T17] usb 1-1: New USB device found, idVendor=0411, idProduct=0012, bcdDevice=56.5f [ 97.256017][ T17] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 97.265903][ T17] usb 1-1: config 0 descriptor?? [ 97.967539][ T17] rtl8150 1-1:0.206: eth5: rtl8150 is detected [ 97.976952][ T17] usb 1-1: USB disconnect, device number 2 [ 98.043505][T11729] ===================================================== [ 98.050523][T11729] BUG: KMSAN: uninit-value in hex_string+0x7d8/0x8d0 [ 98.057213][T11729] CPU: 0 PID: 11729 Comm: udevd Not tainted 5.4.0-rc3+ #0 [ 98.064588][T11729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 98.074657][T11729] Call Trace: [ 98.077972][T11729] dump_stack+0x191/0x1f0 [ 98.082348][T11729] kmsan_report+0x128/0x220 [ 98.086880][T11729] __msan_warning+0x73/0xe0 [ 98.091431][T11729] hex_string+0x7d8/0x8d0 [ 98.095947][T11729] pointer+0xbfe/0x1d10 [ 98.100128][T11729] ? kmsan_get_shadow_origin_ptr+0x91/0x4b0 [ 98.106020][T11729] vsnprintf+0x1c0c/0x3210 [ 98.110486][T11729] scnprintf+0x235/0x300 [ 98.114754][T11729] ? kmsan_internal_unpoison_shadow+0x42/0x80 [ 98.120815][T11729] sysfs_format_mac+0xde/0x100 [ 98.125582][T11729] address_show+0x159/0x1d0 [ 98.130100][T11729] ? link_mode_show+0x1a0/0x1a0 [ 98.135045][T11729] dev_attr_show+0xd8/0x1e0 [ 98.139563][T11729] sysfs_kf_seq_show+0x434/0x7b0 [ 98.144512][T11729] ? sysfs_kf_write+0x2a0/0x2a0 [ 98.149415][T11729] kernfs_seq_show+0x164/0x1e0 [ 98.154189][T11729] ? kernfs_seq_next+0x3e0/0x3e0 [ 98.159353][T11729] seq_read+0xac6/0x1d90 [ 98.163621][T11729] kernfs_fop_read+0x2c3/0x9a0 [ 98.168395][T11729] ? kernfs_notify_workfn+0x960/0x960 [ 98.173763][T11729] __vfs_read+0x1a9/0xc90 [ 98.178087][T11729] ? rw_verify_area+0x3a5/0x5e0 [ 98.182925][T11729] vfs_read+0x359/0x6f0 [ 98.187070][T11729] ksys_read+0x265/0x430 [ 98.191307][T11729] __se_sys_read+0x92/0xb0 [ 98.195740][T11729] __x64_sys_read+0x4a/0x70 [ 98.200236][T11729] do_syscall_64+0xb6/0x160 [ 98.204729][T11729] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 98.210607][T11729] RIP: 0033:0x7fde5116c310 [ 98.215021][T11729] Code: 73 01 c3 48 8b 0d 28 4b 2b 00 31 d2 48 29 c2 64 89 11 48 83 c8 ff eb ea 90 90 83 3d e5 a2 2b 00 00 75 10 b8 00 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 6e 8a 01 00 48 89 04 24 [ 98.234625][T11729] RSP: 002b:00007ffca9f85aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 98.243036][T11729] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007fde5116c310 [ 98.251015][T11729] RDX: 0000000000001000 RSI: 00007ffca9f85f50 RDI: 0000000000000005 [ 98.259062][T11729] RBP: 00007ffca9f87080 R08: 00007ffca9f87080 R09: 00007fde511c27d0 [ 98.267022][T11729] R10: 312f316273752f30 R11: 0000000000000246 R12: 000000000077efd0 [ 98.274978][T11729] R13: 000000000077f0c0 R14: 0000000000000001 R15: 000000000078f0e9 [ 98.282945][T11729] [ 98.285268][T11729] Uninit was stored to memory at: [ 98.290311][T11729] kmsan_internal_chain_origin+0xbd/0x180 [ 98.296029][T11729] kmsan_memcpy_memmove_metadata+0x25c/0x2e0 [ 98.301998][T11729] kmsan_memcpy_metadata+0xb/0x10 [ 98.307018][T11729] __msan_memcpy+0x56/0x70 [ 98.311426][T11729] rtl8150_probe+0x1143/0x14a0 [ 98.316191][T11729] usb_probe_interface+0xd19/0x1310 [ 98.321398][T11729] really_probe+0xd91/0x1f90 [ 98.325969][T11729] driver_probe_device+0x1ba/0x510 [ 98.331058][T11729] __device_attach_driver+0x5b8/0x790 [ 98.336414][T11729] bus_for_each_drv+0x28e/0x3b0 [ 98.341246][T11729] __device_attach+0x489/0x750 [ 98.345992][T11729] device_initial_probe+0x4a/0x60 [ 98.350993][T11729] bus_probe_device+0x131/0x390 [ 98.355825][T11729] device_add+0x25b5/0x2df0 [ 98.360326][T11729] usb_set_configuration+0x309f/0x3710 [ 98.365765][T11729] generic_probe+0xe7/0x280 [ 98.370253][T11729] usb_probe_device+0x146/0x200 [ 98.375133][T11729] really_probe+0xd91/0x1f90 [ 98.379707][T11729] driver_probe_device+0x1ba/0x510 [ 98.384968][T11729] __device_attach_driver+0x5b8/0x790 [ 98.390348][T11729] bus_for_each_drv+0x28e/0x3b0 [ 98.395516][T11729] __device_attach+0x489/0x750 [ 98.400300][T11729] device_initial_probe+0x4a/0x60 [ 98.405323][T11729] bus_probe_device+0x131/0x390 [ 98.410217][T11729] device_add+0x25b5/0x2df0 [ 98.414720][T11729] usb_new_device+0x23e5/0x2fb0 [ 98.419559][T11729] hub_event+0x581d/0x72f0 [ 98.423968][T11729] process_one_work+0x1572/0x1ef0 [ 98.428981][T11729] worker_thread+0x111b/0x2460 [ 98.433737][T11729] kthread+0x4b5/0x4f0 [ 98.437791][T11729] ret_from_fork+0x35/0x40 [ 98.442201][T11729] [ 98.444514][T11729] Local variable description: ----node_id.i@rtl8150_probe [ 98.451618][T11729] Variable was created at: [ 98.456077][T11729] rtl8150_probe+0xdc8/0x14a0 [ 98.460740][T11729] rtl8150_probe+0xdc8/0x14a0 [ 98.465418][T11729] ===================================================== [ 98.472337][T11729] Disabling lock debugging due to kernel taint [ 98.478476][T11729] Kernel panic - not syncing: panic_on_warn set ... [ 98.485072][T11729] CPU: 0 PID: 11729 Comm: udevd Tainted: G B 5.4.0-rc3+ #0 [ 98.493730][T11729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 98.503854][T11729] Call Trace: [ 98.507298][T11729] dump_stack+0x191/0x1f0 [ 98.511807][T11729] panic+0x3c9/0xc1e [ 98.515728][T11729] kmsan_report+0x215/0x220 [ 98.520327][T11729] __msan_warning+0x73/0xe0 [ 98.524939][T11729] hex_string+0x7d8/0x8d0 [ 98.533107][T11729] pointer+0xbfe/0x1d10 [ 98.537257][T11729] ? kmsan_get_shadow_origin_ptr+0x91/0x4b0 [ 98.543254][T11729] vsnprintf+0x1c0c/0x3210 [ 98.547689][T11729] scnprintf+0x235/0x300 [ 98.552083][T11729] ? kmsan_internal_unpoison_shadow+0x42/0x80 [ 98.558153][T11729] sysfs_format_mac+0xde/0x100 [ 98.563094][T11729] address_show+0x159/0x1d0 [ 98.567594][T11729] ? link_mode_show+0x1a0/0x1a0 [ 98.572455][T11729] dev_attr_show+0xd8/0x1e0 [ 98.577126][T11729] sysfs_kf_seq_show+0x434/0x7b0 [ 98.582059][T11729] ? sysfs_kf_write+0x2a0/0x2a0 [ 98.586907][T11729] kernfs_seq_show+0x164/0x1e0 [ 98.591711][T11729] ? kernfs_seq_next+0x3e0/0x3e0 [ 98.596662][T11729] seq_read+0xac6/0x1d90 [ 98.600920][T11729] kernfs_fop_read+0x2c3/0x9a0 [ 98.605691][T11729] ? kernfs_notify_workfn+0x960/0x960 [ 98.611053][T11729] __vfs_read+0x1a9/0xc90 [ 98.615391][T11729] ? rw_verify_area+0x3a5/0x5e0 [ 98.620231][T11729] vfs_read+0x359/0x6f0 [ 98.624380][T11729] ksys_read+0x265/0x430 [ 98.628636][T11729] __se_sys_read+0x92/0xb0 [ 98.633042][T11729] __x64_sys_read+0x4a/0x70 [ 98.637572][T11729] do_syscall_64+0xb6/0x160 [ 98.642080][T11729] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 98.647952][T11729] RIP: 0033:0x7fde5116c310 [ 98.652365][T11729] Code: 73 01 c3 48 8b 0d 28 4b 2b 00 31 d2 48 29 c2 64 89 11 48 83 c8 ff eb ea 90 90 83 3d e5 a2 2b 00 00 75 10 b8 00 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 6e 8a 01 00 48 89 04 24 [ 98.671982][T11729] RSP: 002b:00007ffca9f85aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 98.680493][T11729] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007fde5116c310 [ 98.688571][T11729] RDX: 0000000000001000 RSI: 00007ffca9f85f50 RDI: 0000000000000005 [ 98.696546][T11729] RBP: 00007ffca9f87080 R08: 00007ffca9f87080 R09: 00007fde511c27d0 [ 98.704539][T11729] R10: 312f316273752f30 R11: 0000000000000246 R12: 000000000077efd0 [ 98.712523][T11729] R13: 000000000077f0c0 R14: 0000000000000001 R15: 000000000078f0e9 [ 98.722087][T11729] Kernel Offset: disabled [ 98.726602][T11729] Rebooting in 86400 seconds..