[ 46.031844] audit: type=1800 audit(1555061950.657:27): pid=5303 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2469 res=0 [ 46.031870] audit: type=1800 audit(1555061950.657:28): pid=5303 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2450 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 46.703652] audit: type=1800 audit(1555061951.357:29): pid=5303 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2465 res=0 [ 46.723130] audit: type=1800 audit(1555061951.357:30): pid=5303 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2456 res=0 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.123' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 60.127495] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 60.367488] usb 1-1: Using ep0 maxpacket: 8 [ 60.487551] usb 1-1: config 0 has an invalid interface number: 8 but max is 0 [ 60.495011] usb 1-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config [ 60.504643] usb 1-1: config 0 has no interface number 0 [ 60.510089] usb 1-1: config 0 interface 8 altsetting 0 endpoint 0x3 has invalid maxpacket 511, setting to 64 [ 60.520134] usb 1-1: config 0 interface 8 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 10 [ 60.532359] usb 1-1: New USB device found, idVendor=0846, idProduct=9041, bcdDevice=d5.fc [ 60.540736] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 60.552606] usb 1-1: config 0 descriptor?? executing program [ 60.808596] usb 1-1: string descriptor 0 read error: -71 [ 60.815098] hub 1-1:0.8: bad descriptor, ignoring hub [ 60.820883] hub: probe of 1-1:0.8 failed with error -5 [ 61.017541] rtl_usb: reg 0xf0, usbctrl_vendorreq TimeOut! status:0xffffffb9 value=0x0 [ 61.025549] rtl8192cu: Chip version 0x10 [ 61.227684] rtl_usb: reg 0xa, usbctrl_vendorreq TimeOut! status:0xffffffb9 value=0x0 [ 61.235653] rtl_usb: Too few input end points found [ 61.240739] INFO: trying to register non-static key. [ 61.245830] the code is fine but needs lockdep annotation. [ 61.251428] turning off the locking correctness validator. [ 61.257029] CPU: 1 PID: 17 Comm: kworker/1:0 Not tainted 5.1.0-rc4-319354-g9a33b36 #3 [ 61.264972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 61.274316] Workqueue: usb_hub_wq hub_event [ 61.278614] Call Trace: [ 61.281194] dump_stack+0xe8/0x16e [ 61.284716] register_lock_class+0x11b8/0x1250 [ 61.289294] ? mark_held_locks+0xe0/0xe0 [ 61.293346] ? is_dynamic_key+0x1b0/0x1b0 [ 61.297474] ? trace_hardirqs_off+0x50/0x1c0 [ 61.301859] ? mark_held_locks+0xe0/0xe0 [ 61.305900] __lock_acquire+0xfb/0x37c0 [ 61.309856] ? lock_downgrade+0x640/0x640 [ 61.314001] ? mark_held_locks+0x9f/0xe0 [ 61.318042] ? mark_held_locks+0xe0/0xe0 [ 61.322130] ? local_port_store+0x100/0x100 [ 61.326466] ? lockdep_hardirqs_on+0x37e/0x580 [ 61.331031] ? console_unlock+0x61e/0xbb0 [ 61.335165] lock_acquire+0x10d/0x2f0 [ 61.338996] ? rtl_c2hcmd_launcher+0xd1/0x390 [ 61.343478] _raw_spin_lock_irqsave+0x44/0x60 [ 61.347956] ? rtl_c2hcmd_launcher+0xd1/0x390 [ 61.352430] rtl_c2hcmd_launcher+0xd1/0x390 [ 61.356733] rtl_deinit_core+0x25/0x2d0 [ 61.360696] ? rtl_usb_probe.cold+0x848/0xa70 [ 61.365179] rtl_usb_probe.cold+0x861/0xa70 [ 61.369488] usb_probe_interface+0x31d/0x820 [ 61.373899] ? usb_probe_device+0x150/0x150 [ 61.378204] really_probe+0x2da/0xb10 [ 61.381984] driver_probe_device+0x21d/0x350 [ 61.386372] __device_attach_driver+0x1d8/0x290 [ 61.391020] ? driver_allows_async_probing+0x160/0x160 [ 61.396277] bus_for_each_drv+0x163/0x1e0 [ 61.400404] ? bus_rescan_devices+0x30/0x30 [ 61.404716] ? _raw_spin_unlock_irqrestore+0x4b/0x60 [ 61.409811] ? lockdep_hardirqs_on+0x37e/0x580 [ 61.414377] __device_attach+0x223/0x3a0 [ 61.418431] ? device_bind_driver+0xe0/0xe0 [ 61.422735] ? kobject_uevent_env+0x295/0x13d0 [ 61.427299] bus_probe_device+0x1f1/0x2a0 [ 61.431458] ? blocking_notifier_call_chain+0x59/0xb0 [ 61.436633] device_add+0xad2/0x16e0 [ 61.440327] ? get_device_parent.isra.0+0x560/0x560 [ 61.445324] ? _raw_spin_unlock_irqrestore+0x4b/0x60 [ 61.450425] usb_set_configuration+0xdf7/0x1740 [ 61.455076] generic_probe+0xa2/0xda [ 61.458770] usb_probe_device+0xc0/0x150 [ 61.462826] ? usb_suspend+0x5f0/0x5f0 [ 61.466698] really_probe+0x2da/0xb10 [ 61.470485] driver_probe_device+0x21d/0x350 [ 61.474875] __device_attach_driver+0x1d8/0x290 [ 61.479525] ? driver_allows_async_probing+0x160/0x160 [ 61.484790] bus_for_each_drv+0x163/0x1e0 [ 61.488936] ? bus_rescan_devices+0x30/0x30 [ 61.493259] ? _raw_spin_unlock_irqrestore+0x4b/0x60 [ 61.498343] ? lockdep_hardirqs_on+0x37e/0x580 [ 61.502906] __device_attach+0x223/0x3a0 [ 61.506965] ? device_bind_driver+0xe0/0xe0 [ 61.511273] ? kobject_uevent_env+0x295/0x13d0 [ 61.515840] bus_probe_device+0x1f1/0x2a0 [ 61.519972] ? blocking_notifier_call_chain+0x59/0xb0 [ 61.525178] device_add+0xad2/0x16e0 [ 61.528878] ? get_device_parent.isra.0+0x560/0x560 [ 61.533881] usb_new_device.cold+0x537/0xccf [ 61.538271] hub_event+0x138e/0x3b00 [ 61.541973] ? hub_port_debounce+0x350/0x350 [ 61.546369] ? _raw_spin_unlock_irq+0x29/0x40 [ 61.550847] process_one_work+0x90f/0x1580 [ 61.555063] ? wq_pool_ids_show+0x300/0x300 [ 61.559374] ? do_raw_spin_lock+0x11f/0x290 [ 61.563680] worker_thread+0x9b/0xe20 [ 61.567480] ? process_one_work+0x1580/0x1580 [ 61.571963] kthread+0x313/0x420 [ 61.575322] ? kthread_park+0x1a0/0x1a0 [ 61.579292] ret_from_fork+0x3a/0x50 [ 61.583106] kasan: CONFIG_KASAN_INLINE enabled [ 61.587740] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 61.595109] general protection fault: 0000 [#1] SMP KASAN PTI [ 61.600976] CPU: 1 PID: 17 Comm: kworker/1:0 Not tainted 5.1.0-rc4-319354-g9a33b36 #3 [ 61.608921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 61.618261] Workqueue: usb_hub_wq hub_event [ 61.622570] RIP: 0010:rtl_deinit_core+0x84/0x2d0 [ 61.627303] Code: 4c 89 f2 48 c1 ea 03 80 3c 02 00 0f 85 52 02 00 00 4d 8b bc 24 c8 c4 00 00 48 b8 00 00 00 00 00 fc ff df 4c 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 22 02 00 00 4d 39 f7 4d 8b 2f 4c 89 ff 0f 84 3d [ 61.646185] RSP: 0018:ffff8880a84f7278 EFLAGS: 00010246 [ 61.651524] RAX: dffffc0000000000 RBX: ffff88809cc82540 RCX: 1ffffffff27960ab [ 61.658775] RDX: 0000000000000000 RSI: ffffffff88da7445 RDI: ffff88809cc80b68 [ 61.666027] RBP: ffff88809cc80b20 R08: ffff8880a84d0000 R09: ffffed101399051d [ 61.673294] R10: ffffed101399051c R11: ffff88809cc828e3 R12: ffff88809cc82540 [ 61.680542] R13: ffff88809cc8f0d0 R14: ffff88809cc8ea08 R15: 0000000000000000 [ 61.687882] FS: 0000000000000000(0000) GS:ffff8880ad100000(0000) knlGS:0000000000000000 [ 61.696098] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 61.701962] CR2: 00000000006387d0 CR3: 00000000a5eec000 CR4: 00000000001406e0 [ 61.709215] Call Trace: [ 61.711793] ? rtl_usb_probe.cold+0x848/0xa70 [ 61.716288] rtl_usb_probe.cold+0x861/0xa70 [ 61.720613] usb_probe_interface+0x31d/0x820 [ 61.725006] ? usb_probe_device+0x150/0x150 [ 61.729309] really_probe+0x2da/0xb10 [ 61.733106] driver_probe_device+0x21d/0x350 [ 61.737497] __device_attach_driver+0x1d8/0x290 [ 61.742148] ? driver_allows_async_probing+0x160/0x160 [ 61.747424] bus_for_each_drv+0x163/0x1e0 [ 61.751560] ? bus_rescan_devices+0x30/0x30 [ 61.755879] ? _raw_spin_unlock_irqrestore+0x4b/0x60 [ 61.760977] ? lockdep_hardirqs_on+0x37e/0x580 [ 61.765547] __device_attach+0x223/0x3a0 [ 61.769591] ? device_bind_driver+0xe0/0xe0 [ 61.773894] ? kobject_uevent_env+0x295/0x13d0 [ 61.778458] bus_probe_device+0x1f1/0x2a0 [ 61.782589] ? blocking_notifier_call_chain+0x59/0xb0 [ 61.787761] device_add+0xad2/0x16e0 [ 61.791461] ? get_device_parent.isra.0+0x560/0x560 [ 61.796463] ? _raw_spin_unlock_irqrestore+0x4b/0x60 [ 61.801550] usb_set_configuration+0xdf7/0x1740 [ 61.806211] generic_probe+0xa2/0xda [ 61.809919] usb_probe_device+0xc0/0x150 [ 61.813975] ? usb_suspend+0x5f0/0x5f0 [ 61.817851] really_probe+0x2da/0xb10 [ 61.821638] driver_probe_device+0x21d/0x350 [ 61.826040] __device_attach_driver+0x1d8/0x290 [ 61.830690] ? driver_allows_async_probing+0x160/0x160 [ 61.835953] bus_for_each_drv+0x163/0x1e0 [ 61.840081] ? bus_rescan_devices+0x30/0x30 [ 61.844384] ? _raw_spin_unlock_irqrestore+0x4b/0x60 [ 61.849470] ? lockdep_hardirqs_on+0x37e/0x580 [ 61.854032] __device_attach+0x223/0x3a0 [ 61.858073] ? device_bind_driver+0xe0/0xe0 [ 61.862378] ? kobject_uevent_env+0x295/0x13d0 [ 61.866943] bus_probe_device+0x1f1/0x2a0 [ 61.871084] ? blocking_notifier_call_chain+0x59/0xb0 [ 61.876257] device_add+0xad2/0x16e0 [ 61.879956] ? get_device_parent.isra.0+0x560/0x560 [ 61.884984] usb_new_device.cold+0x537/0xccf [ 61.889376] hub_event+0x138e/0x3b00 [ 61.893079] ? hub_port_debounce+0x350/0x350 [ 61.897475] ? _raw_spin_unlock_irq+0x29/0x40 [ 61.901960] process_one_work+0x90f/0x1580 [ 61.906194] ? wq_pool_ids_show+0x300/0x300 [ 61.910497] ? do_raw_spin_lock+0x11f/0x290 [ 61.914815] worker_thread+0x9b/0xe20 [ 61.918597] ? process_one_work+0x1580/0x1580 [ 61.923083] kthread+0x313/0x420 [ 61.926442] ? kthread_park+0x1a0/0x1a0 [ 61.930435] ret_from_fork+0x3a/0x50 [ 61.934134] Modules linked in: [ 61.937437] ---[ end trace 2cba20519c6dd86a ]--- [ 61.942196] RIP: 0010:rtl_deinit_core+0x84/0x2d0 [ 61.946933] Code: 4c 89 f2 48 c1 ea 03 80 3c 02 00 0f 85 52 02 00 00 4d 8b bc 24 c8 c4 00 00 48 b8 00 00 00 00 00 fc ff df 4c 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 22 02 00 00 4d 39 f7 4d 8b 2f 4c 89 ff 0f 84 3d [ 61.965880] RSP: 0018:ffff8880a84f7278 EFLAGS: 00010246 [ 61.971255] RAX: dffffc0000000000 RBX: ffff88809cc82540 RCX: 1ffffffff27960ab [ 61.978535] RDX: 0000000000000000 RSI: ffffffff88da7445 RDI: ffff88809cc80b68 [ 61.985800] RBP: ffff88809cc80b20 R08: ffff8880a84d0000 R09: ffffed101399051d [ 61.993087] R10: ffffed101399051c R11: ffff88809cc828e3 R12: ffff88809cc82540 [ 62.000364] R13: ffff88809cc8f0d0 R14: ffff88809cc8ea08 R15: 0000000000000000 [ 62.007646] FS: 0000000000000000(0000) GS:ffff8880ad100000(0000) knlGS:0000000000000000 [ 62.015864] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 62.021751] CR2: 00000000006387d0 CR3: 00000000a5eec000 CR4: 00000000001406e0 [ 62.029031] Kernel panic - not syncing: Fatal exception [ 62.035057] Kernel Offset: disabled [ 62.038695] Rebooting in 86400 seconds..