[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 77.676246][ T31] audit: type=1800 audit(1570361540.735:25): pid=11228 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 77.722576][ T31] audit: type=1800 audit(1570361540.755:26): pid=11228 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 77.743179][ T31] audit: type=1800 audit(1570361540.765:27): pid=11228 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.76' (ECDSA) to the list of known hosts. syzkaller login: [ 94.690650][T11381] IPVS: ftp: loaded support on port[0] = 21 [ 94.696693][T11387] IPVS: ftp: loaded support on port[0] = 21 [ 94.713559][T11388] IPVS: ftp: loaded support on port[0] = 21 [ 94.717784][T11384] IPVS: ftp: loaded support on port[0] = 21 [ 94.735636][T11390] IPVS: ftp: loaded support on port[0] = 21 [ 94.742993][T11389] IPVS: ftp: loaded support on port[0] = 21 executing program executing program executing program executing program executing program executing program [ 95.112534][ T2900] usb 5-1: new low-speed USB device number 2 using dummy_hcd [ 95.202498][ T12] usb 3-1: new low-speed USB device number 2 using dummy_hcd [ 95.242528][ T17] usb 4-1: new low-speed USB device number 2 using dummy_hcd [ 95.252548][T11394] usb 6-1: new low-speed USB device number 2 using dummy_hcd [ 95.262847][T11398] usb 1-1: new low-speed USB device number 2 using dummy_hcd [ 95.270471][ T5] usb 2-1: new low-speed USB device number 2 using dummy_hcd [ 95.472705][ T2900] usb 5-1: config 0 has an invalid interface number: 236 but max is 2 [ 95.481046][ T2900] usb 5-1: config 0 has an invalid descriptor of length 99, skipping remainder of the config [ 95.491583][ T2900] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 95.500620][ T2900] usb 5-1: config 0 has no interface number 0 [ 95.506861][ T2900] usb 5-1: config 0 interface 236 altsetting 0 endpoint 0x81 is Bulk; changing to Interrupt [ 95.517102][ T2900] usb 5-1: New USB device found, idVendor=07c0, idProduct=1501, bcdDevice=74.a0 [ 95.526275][ T2900] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 95.535988][ T2900] usb 5-1: config 0 descriptor?? [ 95.579415][ T2900] iowarrior 5-1:0.236: IOWarrior product=0x1501, serial= interface=236 now attached to iowarrior0 [ 95.612885][ T17] usb 4-1: config 0 has an invalid interface number: 236 but max is 2 [ 95.612931][ T12] usb 3-1: config 0 has an invalid interface number: 236 but max is 2 [ 95.612998][ T12] usb 3-1: config 0 has an invalid descriptor of length 99, skipping remainder of the config [ 95.621265][ T17] usb 4-1: config 0 has an invalid descriptor of length 99, skipping remainder of the config [ 95.629674][ T12] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 95.629748][ T12] usb 3-1: config 0 has no interface number 0 [ 95.639979][ T17] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 95.650234][ T12] usb 3-1: config 0 interface 236 altsetting 0 endpoint 0x81 is Bulk; changing to Interrupt [ 95.659353][ T17] usb 4-1: config 0 has no interface number 0 [ 95.665708][ T12] usb 3-1: New USB device found, idVendor=07c0, idProduct=1501, bcdDevice=74.a0 [ 95.674672][ T17] usb 4-1: config 0 interface 236 altsetting 0 endpoint 0x81 is Bulk; changing to Interrupt [ 95.684796][ T12] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 95.691482][ T17] usb 4-1: New USB device found, idVendor=07c0, idProduct=1501, bcdDevice=74.a0 [ 95.705889][ T12] usb 3-1: config 0 descriptor?? [ 95.711073][ T17] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 95.714496][ T17] usb 4-1: config 0 descriptor?? [ 95.733107][T11394] usb 6-1: config 0 has an invalid interface number: 236 but max is 2 [ 95.733179][T11394] usb 6-1: config 0 has an invalid descriptor of length 99, skipping remainder of the config [ 95.733259][T11394] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 95.774337][T11394] usb 6-1: config 0 has no interface number 0 [ 95.780490][T11394] usb 6-1: config 0 interface 236 altsetting 0 endpoint 0x81 is Bulk; changing to Interrupt [ 95.791564][T11394] usb 6-1: New USB device found, idVendor=07c0, idProduct=1501, bcdDevice=74.a0 [ 95.798212][ T2299] usb 5-1: USB disconnect, device number 2 [ 95.800765][T11394] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 95.804565][ T5] usb 2-1: config 0 has an invalid interface number: 236 but max is 2 executing program [ 95.821042][ T17] iowarrior 4-1:0.236: IOWarrior product=0x1501, serial= interface=236 now attached to iowarrior1 [ 95.823551][ T5] usb 2-1: config 0 has an invalid descriptor of length 99, skipping remainder of the config [ 95.823618][ T5] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 95.823687][ T5] usb 2-1: config 0 has no interface number 0 [ 95.854239][ T5] usb 2-1: config 0 interface 236 altsetting 0 endpoint 0x81 is Bulk; changing to Interrupt [ 95.854355][ T5] usb 2-1: New USB device found, idVendor=07c0, idProduct=1501, bcdDevice=74.a0 [ 95.870595][ T5] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 95.882614][ T2299] iowarrior 5-1:0.236: I/O-Warror #0 now disconnected [ 95.888684][T11398] usb 1-1: config 0 has an invalid interface number: 236 but max is 2 [ 95.903725][T11398] usb 1-1: config 0 has an invalid descriptor of length 99, skipping remainder of the config [ 95.914314][T11398] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 95.923271][T11398] usb 1-1: config 0 has no interface number 0 executing program [ 95.929664][T11398] usb 1-1: config 0 interface 236 altsetting 0 endpoint 0x81 is Bulk; changing to Interrupt [ 95.939817][T11398] usb 1-1: New USB device found, idVendor=07c0, idProduct=1501, bcdDevice=74.a0 [ 95.950309][T11398] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 95.964288][T11394] usb 6-1: config 0 descriptor?? [ 95.970262][ T12] iowarrior 3-1:0.236: IOWarrior product=0x1501, serial= interface=236 now attached to iowarrior0 [ 95.988098][T11398] usb 1-1: config 0 descriptor?? [ 95.994164][ T12] usb 3-1: USB disconnect, device number 2 [ 96.001321][ T5] usb 2-1: config 0 descriptor?? [ 96.010954][T11402] usb 4-1: USB disconnect, device number 2 [ 96.012984][T11394] iowarrior 6-1:0.236: IOWarrior product=0x1501, serial= interface=236 now attached to iowarrior2 [ 96.030579][T11402] iowarrior 4-1:0.236: I/O-Warror #1 now disconnected executing program [ 96.030847][ T12] iowarrior 3-1:0.236: I/O-Warror #0 now disconnected [ 96.050410][T11398] iowarrior 1-1:0.236: IOWarrior product=0x1501, serial= interface=236 now attached to iowarrior0 [ 96.073843][ T5] iowarrior 2-1:0.236: IOWarrior product=0x1501, serial= interface=236 now attached to iowarrior1 executing program [ 96.211439][ T30] usb 6-1: USB disconnect, device number 2 [ 96.222745][ T30] iowarrior 6-1:0.236: I/O-Warror #2 now disconnected [ 96.248066][T11414] usb 2-1: USB disconnect, device number 2 executing program [ 96.262728][ T2299] usb 5-1: new low-speed USB device number 3 using dummy_hcd [ 96.273367][T11414] iowarrior 2-1:0.236: I/O-Warror #1 now disconnected [ 96.273619][ T5] usb 1-1: USB disconnect, device number 2 [ 96.286721][ C0] iowarrior 1-1:0.236: iowarrior_callback - usb_submit_urb failed with result -19 [ 96.313566][ T5] ===================================================== [ 96.320963][ T5] BUG: KMSAN: uninit-value in __mutex_lock+0x8d8/0x1980 [ 96.327889][ T5] CPU: 0 PID: 5 Comm: kworker/0:0 Not tainted 5.3.0-rc7+ #0 [ 96.335152][ T5] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 96.345213][ T5] Workqueue: usb_hub_wq hub_event [ 96.350491][ T5] Call Trace: [ 96.353877][ T5] dump_stack+0x191/0x1f0 [ 96.358223][ T5] kmsan_report+0x13a/0x2b0 [ 96.362734][ T5] __msan_warning+0x73/0xe0 [ 96.367239][ T5] __list_add_valid+0x1b6/0x430 [ 96.372192][ T5] __mutex_lock+0x8d8/0x1980 [ 96.376927][ T5] ? kmsan_internal_unpoison_shadow+0x42/0x80 [ 96.383010][ T5] __mutex_lock_slowpath+0x2c/0x30 [ 96.388118][ T5] mutex_lock+0x5d/0x80 [ 96.392282][ T5] iowarrior_disconnect+0x133/0x3e0 [ 96.397640][ T5] ? iowarrior_probe+0x1a50/0x1a50 [ 96.403547][ T5] usb_unbind_interface+0x3a2/0xdd0 [ 96.408768][ T5] ? usb_driver_release_interface+0x2a0/0x2a0 [ 96.414827][ T5] device_release_driver_internal+0x911/0xd20 [ 96.420903][ T5] device_release_driver+0x4b/0x60 [ 96.426097][ T5] bus_remove_device+0x4bf/0x670 [ 96.431123][ T5] device_del+0xcd5/0x1d10 [ 96.435549][ T5] usb_disable_device+0x567/0x1150 [ 96.441113][ T5] usb_disconnect+0x51e/0xd60 [ 96.445801][ T5] hub_event+0x3fd0/0x72f0 [ 96.450244][ T5] ? kmsan_get_shadow_origin_ptr+0x6e/0x4c0 [ 96.456124][ T5] ? kmsan_get_shadow_origin_ptr+0x6e/0x4c0 [ 96.462022][ T5] ? led_work+0x720/0x720 [ 96.467029][ T5] ? led_work+0x720/0x720 [ 96.471342][ T5] process_one_work+0x1572/0x1ef0 [ 96.476385][ T5] worker_thread+0x111b/0x2460 [ 96.481183][ T5] kthread+0x4b5/0x4f0 [ 96.485247][ T5] ? process_one_work+0x1ef0/0x1ef0 [ 96.490471][ T5] ? kthread_blkcg+0xf0/0xf0 [ 96.495221][ T5] ret_from_fork+0x35/0x40 [ 96.499636][ T5] [ 96.501979][ T5] Uninit was created at: [ 96.506224][ T5] kmsan_internal_poison_shadow+0x53/0x100 [ 96.512031][ T5] kmsan_slab_free+0x8d/0x100 [ 96.516718][ T5] kfree+0x4c1/0x2db0 [ 96.520695][ T5] iowarrior_release+0x334/0x3a0 [ 96.525626][ T5] __fput+0x4c9/0xba0 [ 96.529676][ T5] ____fput+0x37/0x40 [ 96.533651][ T5] task_work_run+0x22e/0x2a0 [ 96.538494][ T5] prepare_exit_to_usermode+0x39d/0x4d0 [ 96.544145][ T5] syscall_return_slowpath+0x90/0x610 [ 96.549513][ T5] do_syscall_64+0xe2/0xf0 [ 96.554544][ T5] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 96.560441][ T5] ===================================================== [ 96.567636][ T5] Disabling lock debugging due to kernel taint [ 96.573894][ T5] Kernel panic - not syncing: panic_on_warn set ... [ 96.580618][ T5] CPU: 0 PID: 5 Comm: kworker/0:0 Tainted: G B 5.3.0-rc7+ #0 [ 96.589455][ T5] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 96.599721][ T5] Workqueue: usb_hub_wq hub_event [ 96.604729][ T5] Call Trace: [ 96.608194][ T5] dump_stack+0x191/0x1f0 [ 96.613064][ T5] panic+0x3c9/0xc1e [ 96.617281][ T5] kmsan_report+0x2a2/0x2b0 [ 96.622083][ T5] __msan_warning+0x73/0xe0 [ 96.626840][ T5] __list_add_valid+0x1b6/0x430 [ 96.631884][ T5] __mutex_lock+0x8d8/0x1980 [ 96.636469][ T5] ? kmsan_internal_unpoison_shadow+0x42/0x80 [ 96.642524][ T5] __mutex_lock_slowpath+0x2c/0x30 [ 96.647633][ T5] mutex_lock+0x5d/0x80 [ 96.651798][ T5] iowarrior_disconnect+0x133/0x3e0 [ 96.657005][ T5] ? iowarrior_probe+0x1a50/0x1a50 [ 96.662206][ T5] usb_unbind_interface+0x3a2/0xdd0 [ 96.667675][ T5] ? usb_driver_release_interface+0x2a0/0x2a0 [ 96.673843][ T5] device_release_driver_internal+0x911/0xd20 [ 96.680185][ T5] device_release_driver+0x4b/0x60 [ 96.685458][ T5] bus_remove_device+0x4bf/0x670 [ 96.690401][ T5] device_del+0xcd5/0x1d10 [ 96.694847][ T5] usb_disable_device+0x567/0x1150 [ 96.699958][ T5] usb_disconnect+0x51e/0xd60 [ 96.704623][ T5] hub_event+0x3fd0/0x72f0 [ 96.709038][ T5] ? kmsan_get_shadow_origin_ptr+0x6e/0x4c0 [ 96.714920][ T5] ? kmsan_get_shadow_origin_ptr+0x6e/0x4c0 [ 96.720794][ T5] ? led_work+0x720/0x720 [ 96.725135][ T5] ? led_work+0x720/0x720 [ 96.729464][ T5] process_one_work+0x1572/0x1ef0 [ 96.734480][ T5] worker_thread+0x111b/0x2460 [ 96.739266][ T5] kthread+0x4b5/0x4f0 [ 96.743322][ T5] ? process_one_work+0x1ef0/0x1ef0 [ 96.748506][ T5] ? kthread_blkcg+0xf0/0xf0 [ 96.753079][ T5] ret_from_fork+0x35/0x40 [ 96.758964][ T5] Kernel Offset: disabled [ 96.763289][ T5] Rebooting in 86400 seconds..