[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   80.968740][   T32] audit: type=1800 audit(1571770489.028:25): pid=11420 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[   81.001948][   T32] audit: type=1800 audit(1571770489.048:26): pid=11420 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   81.022443][   T32] audit: type=1800 audit(1571770489.058:27): pid=11420 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.2' (ECDSA) to the list of known hosts.
2019/10/22 18:55:03 fuzzer started
2019/10/22 18:55:08 dialing manager at 10.128.0.26:34203
2019/10/22 18:55:08 syscalls: 2415
2019/10/22 18:55:08 code coverage: enabled
2019/10/22 18:55:08 comparison tracing: CONFIG_KCOV_ENABLE_COMPARISONS is not enabled
2019/10/22 18:55:08 extra coverage: enabled
2019/10/22 18:55:08 setuid sandbox: enabled
2019/10/22 18:55:08 namespace sandbox: enabled
2019/10/22 18:55:08 Android sandbox: /sys/fs/selinux/policy does not exist
2019/10/22 18:55:08 fault injection: enabled
2019/10/22 18:55:08 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2019/10/22 18:55:08 net packet injection: enabled
2019/10/22 18:55:08 net device setup: enabled
2019/10/22 18:55:08 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
18:59:03 executing program 0:
syz_usb_connect(0x0, 0x126, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0xcf, 0x2a, 0xa3, 0x10, 0xc0b, 0xa109, 0x9488, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x12, 0x80, 0xc6, 0x0, [], [{{0x9, 0x5, 0x9, 0x1e}}, {{0x9, 0x5, 0x8c, 0x2}}]}}]}}]}}, 0x0)

syzkaller login: [  336.275801][T11583] IPVS: ftp: loaded support on port[0] = 21
[  336.423467][T11583] chnl_net:caif_netlink_parms(): no params data found
[  336.485523][T11583] bridge0: port 1(bridge_slave_0) entered blocking state
[  336.493352][T11583] bridge0: port 1(bridge_slave_0) entered disabled state
[  336.502203][T11583] device bridge_slave_0 entered promiscuous mode
[  336.513593][T11583] bridge0: port 2(bridge_slave_1) entered blocking state
[  336.520784][T11583] bridge0: port 2(bridge_slave_1) entered disabled state
[  336.529702][T11583] device bridge_slave_1 entered promiscuous mode
[  336.564292][T11583] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  336.576938][T11583] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  336.611294][T11583] team0: Port device team_slave_0 added
[  336.620697][T11583] team0: Port device team_slave_1 added
[  336.926863][T11583] device hsr_slave_0 entered promiscuous mode
[  337.072738][T11583] device hsr_slave_1 entered promiscuous mode
[  337.153537][T11583] bridge0: port 2(bridge_slave_1) entered blocking state
[  337.160872][T11583] bridge0: port 2(bridge_slave_1) entered forwarding state
[  337.168770][T11583] bridge0: port 1(bridge_slave_0) entered blocking state
[  337.176018][T11583] bridge0: port 1(bridge_slave_0) entered forwarding state
[  337.257556][T11583] 8021q: adding VLAN 0 to HW filter on device bond0
[  337.278868][ T3377] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  337.292357][ T3377] bridge0: port 1(bridge_slave_0) entered disabled state
[  337.306620][ T3377] bridge0: port 2(bridge_slave_1) entered disabled state
[  337.319253][ T3377] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  337.340255][T11583] 8021q: adding VLAN 0 to HW filter on device team0
[  337.358684][ T3377] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  337.367882][ T3377] bridge0: port 1(bridge_slave_0) entered blocking state
[  337.375138][ T3377] bridge0: port 1(bridge_slave_0) entered forwarding state
[  337.439885][ T3377] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  337.449945][ T3377] bridge0: port 2(bridge_slave_1) entered blocking state
[  337.457217][ T3377] bridge0: port 2(bridge_slave_1) entered forwarding state
[  337.467876][ T3377] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  337.477773][ T3377] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  337.487331][ T3377] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  337.496473][ T3377] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  337.510484][T11583] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  337.519240][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  337.557960][T11583] 8021q: adding VLAN 0 to HW filter on device batadv0
[  338.082289][ T3905] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  338.322289][ T3905] usb 1-1: Using ep0 maxpacket: 16
[  338.442791][ T3905] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x9 has invalid maxpacket 0
[  338.452660][ T3905] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8C has invalid maxpacket 0
[  338.462651][ T3905] usb 1-1: New USB device found, idVendor=0c0b, idProduct=a109, bcdDevice=94.88
[  338.471745][ T3905] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  338.482586][ T3905] usb 1-1: config 0 descriptor??
[  338.525242][ T3905] ums-datafab 1-1:0.0: USB Mass Storage device detected
[  338.543329][ T3905] ums-datafab 1-1:0.0: Quirks match for vid 0c0b pid a109: 1
[  338.563087][ T3905] scsi host1: usb-storage 1-1:0.0
[  338.725836][   T12] usb 1-1: USB disconnect, device number 2
18:59:07 executing program 1:
syz_open_dev$hidraw(&(0x7f0000000080)='/dev\x00\x00\x00\x00raw#\x00', 0x0, 0x2346)

[  339.502479][ T3905] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  339.677873][T11599] IPVS: ftp: loaded support on port[0] = 21
[  339.762675][ T3905] usb 1-1: Using ep0 maxpacket: 16
[  339.827515][T11599] chnl_net:caif_netlink_parms(): no params data found
[  339.886708][T11599] bridge0: port 1(bridge_slave_0) entered blocking state
[  339.894107][T11599] bridge0: port 1(bridge_slave_0) entered disabled state
[  339.902579][ T3905] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x9 has invalid maxpacket 0
[  339.902919][T11599] device bridge_slave_0 entered promiscuous mode
[  339.912595][ T3905] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8C has invalid maxpacket 0
[  339.922458][T11599] bridge0: port 2(bridge_slave_1) entered blocking state
[  339.928729][ T3905] usb 1-1: New USB device found, idVendor=0c0b, idProduct=a109, bcdDevice=94.88
[  339.935862][T11599] bridge0: port 2(bridge_slave_1) entered disabled state
[  339.944846][ T3905] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  339.953541][T11599] device bridge_slave_1 entered promiscuous mode
[  339.996399][T11599] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  340.010524][T11599] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  340.015198][ T3905] usb 1-1: config 0 descriptor??
[  340.045996][T11599] team0: Port device team_slave_0 added
[  340.056226][T11599] team0: Port device team_slave_1 added
[  340.064512][ T3905] ums-datafab 1-1:0.0: USB Mass Storage device detected
[  340.103280][ T3905] ums-datafab 1-1:0.0: Quirks match for vid 0c0b pid a109: 1
[  340.114684][ T3905] scsi host1: usb-storage 1-1:0.0
[  340.147353][T11599] device hsr_slave_0 entered promiscuous mode
[  340.173027][T11599] device hsr_slave_1 entered promiscuous mode
[  340.268186][   T12] usb 1-1: USB disconnect, device number 3
[  340.283059][T11599] debugfs: Directory 'hsr0' with parent '/' already present!
[  340.314289][T11599] bridge0: port 2(bridge_slave_1) entered blocking state
[  340.321557][T11599] bridge0: port 2(bridge_slave_1) entered forwarding state
[  340.329434][T11599] bridge0: port 1(bridge_slave_0) entered blocking state
[  340.336704][T11599] bridge0: port 1(bridge_slave_0) entered forwarding state
[  340.432921][T11599] 8021q: adding VLAN 0 to HW filter on device bond0
[  340.455196][T11586] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  340.466843][T11586] bridge0: port 1(bridge_slave_0) entered disabled state
[  340.477319][T11586] bridge0: port 2(bridge_slave_1) entered disabled state
[  340.490261][T11586] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  340.513707][T11599] 8021q: adding VLAN 0 to HW filter on device team0
[  340.546170][T11586] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  340.555365][T11586] bridge0: port 1(bridge_slave_0) entered blocking state
[  340.562640][T11586] bridge0: port 1(bridge_slave_0) entered forwarding state
[  340.571521][T11586] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  340.580624][T11586] bridge0: port 2(bridge_slave_1) entered blocking state
[  340.587865][T11586] bridge0: port 2(bridge_slave_1) entered forwarding state
[  340.632418][T11599] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  340.642972][T11599] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  340.663504][T11586] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  340.673716][T11586] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  340.683247][T11586] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  340.693055][T11586] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  340.703775][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  340.712308][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  340.749179][T11599] 8021q: adding VLAN 0 to HW filter on device batadv0
18:59:08 executing program 0:
syz_usb_connect(0x0, 0x2d, &(0x7f00000001c0)={{0x12, 0x1, 0x0, 0x4, 0xe1, 0x34, 0x8, 0x5ac, 0x9219, 0x7d82, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0xb8, 0x0, 0x0, [], [{{0x9, 0x5, 0x85, 0xb, 0x8}}]}}]}}]}}, 0x0)

18:59:09 executing program 1:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000440)={{0x12, 0x1, 0x0, 0xb4, 0xbb, 0xef, 0x40, 0x4f1, 0x1001, 0xc3b5, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x9d, 0x0, 0x0, 0xa5, 0xc2, 0xef}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

[  341.192154][   T12] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  341.283417][T11586] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  341.433093][   T12] usb 1-1: Using ep0 maxpacket: 8
[  341.552479][   T12] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7
[  341.563783][   T12] usb 1-1: New USB device found, idVendor=05ac, idProduct=9219, bcdDevice=7d.82
[  341.572981][   T12] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  341.584781][   T12] usb 1-1: config 0 descriptor??
[  341.663118][T11586] usb 2-1: config 0 has an invalid interface number: 157 but max is 0
[  341.671433][T11586] usb 2-1: config 0 has no interface number 0
[  341.678123][T11586] usb 2-1: New USB device found, idVendor=04f1, idProduct=1001, bcdDevice=c3.b5
[  341.687321][T11586] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  341.709402][T11586] usb 2-1: config 0 descriptor??
[  341.758152][T11586] gspca_main: sunplus-2.14.0 probing 04f1:1001
[  341.832996][   T12] appledisplay 1-1:0.0: Error while getting initial brightness: -71
[  341.857953][   T12] appledisplay: probe of 1-1:0.0 failed with error -71
[  341.884732][   T12] usb 1-1: USB disconnect, device number 4
[  342.602204][   T12] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  342.842759][   T12] usb 1-1: Using ep0 maxpacket: 8
[  342.962631][   T12] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7
[  342.974898][   T12] usb 1-1: New USB device found, idVendor=05ac, idProduct=9219, bcdDevice=7d.82
[  342.984135][   T12] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  342.998089][   T12] usb 1-1: config 0 descriptor??
[  343.062276][T11586] gspca_sunplus: reg_w_riv err -71
[  343.067514][T11586] =====================================================
[  343.074463][T11586] BUG: KMSAN: uninit-value in sd_init+0x5cef/0x6060
[  343.081058][T11586] CPU: 0 PID: 11586 Comm: kworker/0:0 Not tainted 5.4.0-rc3+ #0
[  343.088681][T11586] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  343.098764][T11586] Workqueue: usb_hub_wq hub_event
[  343.103826][T11586] Call Trace:
[  343.107129][T11586]  dump_stack+0x191/0x1f0
[  343.111473][T11586]  kmsan_report+0x14a/0x2f0
[  343.115998][T11586]  __msan_warning+0x73/0xf0
[  343.120510][T11586]  sd_init+0x5cef/0x6060
[  343.124767][T11586]  ? kmsan_get_shadow_origin_ptr+0x91/0x4b0
[  343.130673][T11586]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  343.136830][T11586]  ? sd_config+0x38a/0x760
[  343.141273][T11586]  ? sd_config+0x760/0x760
[  343.145706][T11586]  gspca_dev_probe2+0xe93/0x2230
[  343.150681][T11586]  gspca_dev_probe+0x346/0x3b0
[  343.155481][T11586]  sd_probe+0x8d/0xa0
[  343.159472][T11586]  ? i2c_write+0xe40/0xe40
[  343.163901][T11586]  usb_probe_interface+0xd19/0x1310
[  343.169122][T11586]  ? kmsan_get_shadow_origin_ptr+0x91/0x4b0
[  343.175027][T11586]  ? usb_register_driver+0x860/0x860
[  343.180314][T11586]  really_probe+0xd91/0x1f90
[  343.184925][T11586]  driver_probe_device+0x1ba/0x510
[  343.190055][T11586]  __device_attach_driver+0x5b8/0x790
[  343.195444][T11586]  bus_for_each_drv+0x28e/0x3b0
[  343.200309][T11586]  ? deferred_probe_work_func+0x400/0x400
[  343.206060][T11586]  __device_attach+0x489/0x750
[  343.210859][T11586]  device_initial_probe+0x4a/0x60
[  343.215903][T11586]  bus_probe_device+0x131/0x390
[  343.220788][T11586]  device_add+0x25b5/0x2df0
[  343.225344][T11586]  usb_set_configuration+0x309f/0x3710
[  343.230843][T11586]  ? __msan_metadata_ptr_for_load_1+0x10/0x20
[  343.237415][T11586]  generic_probe+0xe7/0x280
[  343.241941][T11586]  ? usb_choose_configuration+0xae0/0xae0
[  343.247675][T11586]  usb_probe_device+0x146/0x200
[  343.252544][T11586]  ? kmsan_get_shadow_origin_ptr+0x91/0x4b0
[  343.258451][T11586]  ? usb_register_device_driver+0x500/0x500
[  343.264369][T11586]  really_probe+0xd91/0x1f90
[  343.268987][T11586]  driver_probe_device+0x1ba/0x510
[  343.274121][T11586]  __device_attach_driver+0x5b8/0x790
[  343.279517][T11586]  bus_for_each_drv+0x28e/0x3b0
[  343.284377][T11586]  ? deferred_probe_work_func+0x400/0x400
[  343.290112][T11586]  __device_attach+0x489/0x750
[  343.294897][T11586]  device_initial_probe+0x4a/0x60
[  343.299934][T11586]  bus_probe_device+0x131/0x390
[  343.304798][T11586]  device_add+0x25b5/0x2df0
[  343.309328][T11586]  usb_new_device+0x23e5/0x2fb0
[  343.314211][T11586]  hub_event+0x581d/0x72f0
[  343.318804][T11586]  ? kmsan_get_shadow_origin_ptr+0x91/0x4b0
[  343.324709][T11586]  ? led_work+0x720/0x720
[  343.329050][T11586]  ? led_work+0x720/0x720
[  343.333395][T11586]  process_one_work+0x1572/0x1ef0
[  343.338460][T11586]  worker_thread+0x111b/0x2460
[  343.343262][T11586]  kthread+0x4b5/0x4f0
[  343.347338][T11586]  ? process_one_work+0x1ef0/0x1ef0
[  343.352545][T11586]  ? kthread_blkcg+0xf0/0xf0
[  343.357138][T11586]  ret_from_fork+0x35/0x40
[  343.361560][T11586] 
[  343.363882][T11586] Uninit was created at:
[  343.368128][T11586]  kmsan_internal_poison_shadow+0x60/0x110
[  343.373940][T11586]  kmsan_slab_alloc+0xaa/0x130
[  343.378704][T11586]  kmem_cache_alloc_trace+0x8c5/0xd20
[  343.384091][T11586]  gspca_dev_probe2+0x30d/0x2230
[  343.389030][T11586]  gspca_dev_probe+0x346/0x3b0
[  343.393792][T11586]  sd_probe+0x8d/0xa0
[  343.397779][T11586]  usb_probe_interface+0xd19/0x1310
[  343.402979][T11586]  really_probe+0xd91/0x1f90
[  343.407572][T11586]  driver_probe_device+0x1ba/0x510
[  343.412687][T11586]  __device_attach_driver+0x5b8/0x790
[  343.418060][T11586]  bus_for_each_drv+0x28e/0x3b0
[  343.422917][T11586]  __device_attach+0x489/0x750
[  343.427680][T11586]  device_initial_probe+0x4a/0x60
[  343.432702][T11586]  bus_probe_device+0x131/0x390
[  343.437546][T11586]  device_add+0x25b5/0x2df0
[  343.442052][T11586]  usb_set_configuration+0x309f/0x3710
[  343.447522][T11586]  generic_probe+0xe7/0x280
[  343.452024][T11586]  usb_probe_device+0x146/0x200
[  343.456872][T11586]  really_probe+0xd91/0x1f90
[  343.462501][T11586]  driver_probe_device+0x1ba/0x510
[  343.467623][T11586]  __device_attach_driver+0x5b8/0x790
[  343.472996][T11586]  bus_for_each_drv+0x28e/0x3b0
[  343.477846][T11586]  __device_attach+0x489/0x750
[  343.482612][T11586]  device_initial_probe+0x4a/0x60
[  343.487654][T11586]  bus_probe_device+0x131/0x390
[  343.492516][T11586]  device_add+0x25b5/0x2df0
[  343.497025][T11586]  usb_new_device+0x23e5/0x2fb0
[  343.501886][T11586]  hub_event+0x581d/0x72f0
[  343.506315][T11586]  process_one_work+0x1572/0x1ef0
[  343.511341][T11586]  worker_thread+0x111b/0x2460
[  343.516103][T11586]  kthread+0x4b5/0x4f0
[  343.520178][T11586]  ret_from_fork+0x35/0x40
[  343.524584][T11586] =====================================================
[  343.531510][T11586] Disabling lock debugging due to kernel taint
[  343.537656][T11586] Kernel panic - not syncing: panic_on_warn set ...
[  343.544246][T11586] CPU: 0 PID: 11586 Comm: kworker/0:0 Tainted: G    B             5.4.0-rc3+ #0
[  343.545185][T11614] udc dummy_udc.1: registering UDC driver [USB fuzzer]
[  343.553261][T11586] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  343.553280][T11586] Workqueue: usb_hub_wq hub_event
[  343.553288][T11586] Call Trace:
[  343.553312][T11586]  dump_stack+0x191/0x1f0
[  343.553333][T11586]  panic+0x3c9/0xc1e
[  343.553378][T11586]  kmsan_report+0x2e8/0x2f0
[  343.553417][T11586]  __msan_warning+0x73/0xf0
[  343.560323][T11614] dummy_hcd dummy_hcd.1: port status 0x00010101 has changes
[  343.570332][T11586]  sd_init+0x5cef/0x6060
[  343.607320][T11586]  ? kmsan_get_shadow_origin_ptr+0x91/0x4b0
[  343.613242][T11586]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  343.619415][T11586]  ? sd_config+0x38a/0x760
[  343.623845][T11586]  ? sd_config+0x760/0x760
[  343.628275][T11586]  gspca_dev_probe2+0xe93/0x2230
[  343.633253][T11586]  gspca_dev_probe+0x346/0x3b0
[  343.638036][T11586]  sd_probe+0x8d/0xa0
[  343.642023][T11586]  ? i2c_write+0xe40/0xe40
[  343.646447][T11586]  usb_probe_interface+0xd19/0x1310
[  343.651664][T11586]  ? kmsan_get_shadow_origin_ptr+0x91/0x4b0
[  343.657565][T11586]  ? usb_register_driver+0x860/0x860
[  343.662859][T11586]  really_probe+0xd91/0x1f90
[  343.667468][T11586]  driver_probe_device+0x1ba/0x510
[  343.672596][T11586]  __device_attach_driver+0x5b8/0x790
[  343.677986][T11586]  bus_for_each_drv+0x28e/0x3b0
[  343.682842][T11586]  ? deferred_probe_work_func+0x400/0x400
[  343.688574][T11586]  __device_attach+0x489/0x750
[  343.693354][T11586]  device_initial_probe+0x4a/0x60
[  343.698393][T11586]  bus_probe_device+0x131/0x390
[  343.703262][T11586]  device_add+0x25b5/0x2df0
[  343.707813][T11586]  usb_set_configuration+0x309f/0x3710
18:59:11 executing program 2:
syz_usb_connect$cdc_ncm(0x0, 0x93, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x81, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x8, 0x24, 0x6, 0x0, 0x1, "c8ed96"}, {0x5, 0x24, 0x0, 0x8001}, {0xd, 0x24, 0xf, 0x1, 0xb1ce, 0x3, 0x1, 0x2}, {0x6, 0x24, 0x1a, 0x7, 0x80}, [@dmm={0x7}, @mbim={0x3}, @mbim_extended={0x8}, @network_terminal={0x7}]}}}}}]}}, &(0x7f00000002c0)={0xa, &(0x7f00000000c0)={0xa}, 0xc, &(0x7f0000000100)={0x5, 0xf, 0xc, 0x1, [@ext_cap={0x7}]}, 0x5, [{0x4, &(0x7f0000000140)=@lang_id={0x4}}, {0x69, &(0x7f0000000180)=@string={0x69, 0x3, "b2a42ddc1ccc643b2d7043f34cbc824151614132d4659c117f4059edf1bcea3a3deea55d2fff2801aa1d8033d00de80dccb5ad8913c40bc1c7aee70455bbdbdf04d499a366212679bff75d316c8a783748fc4fb8bff29b0dff341e03ddb5f8a4d023b9b77f90a6"}}, {0x4, &(0x7f0000000200)=@lang_id={0x4}}, {0xe2, &(0x7f0000000a00)=@string={0xe2, 0x3, "d8f93b303a5c520e39e4082e573e748c00d059c40de1117ca32c4ebe8fb8b558ff553132a1cd5eb27298d2fb44db7fe18a717229a0d6c968f829f987f443736de29ee8c215ab569e32069b55d4542ecea32765a9b5f3df36dbe5c156e794200919c37bed20b3a0bbb65b9ffe4646a482316a26a00a5ca929ebf3909d3191d5fb0d0b1cb2c20aea169fbc0325f8e991c4e496e75c52bfc50a6fcce4a0c5f587b72591334a79c65af5d2db1f16869c54d908fe01445f40aaf60c17b73278c9a45add02026f189c1bead0a22692a8667ed956aaf5c4e097fb22219b15430d8ccd39"}}, {0x4, &(0x7f0000000280)=@lang_id={0x4}}]})

[  343.713305][T11586]  ? __msan_metadata_ptr_for_load_1+0x10/0x20
[  343.719391][T11586]  generic_probe+0xe7/0x280
[  343.723904][T11586]  ? usb_choose_configuration+0xae0/0xae0
[  343.729632][T11586]  usb_probe_device+0x146/0x200
[  343.734496][T11586]  ? kmsan_get_shadow_origin_ptr+0x91/0x4b0
[  343.740418][T11586]  ? usb_register_device_driver+0x500/0x500
[  343.746327][T11586]  really_probe+0xd91/0x1f90
[  343.750957][T11586]  driver_probe_device+0x1ba/0x510
[  343.756100][T11586]  __device_attach_driver+0x5b8/0x790
[  343.761511][T11586]  bus_for_each_drv+0x28e/0x3b0
[  343.766378][T11586]  ? deferred_probe_work_func+0x400/0x400
[  343.772118][T11586]  __device_attach+0x489/0x750
[  343.776906][T11586]  device_initial_probe+0x4a/0x60
[  343.781944][T11586]  bus_probe_device+0x131/0x390
[  343.786816][T11586]  device_add+0x25b5/0x2df0
[  343.791354][T11586]  usb_new_device+0x23e5/0x2fb0
[  343.796229][T11586]  hub_event+0x581d/0x72f0
[  343.800679][T11586]  ? kmsan_get_shadow_origin_ptr+0x91/0x4b0
[  343.806560][T11586]  ? led_work+0x720/0x720
[  343.810879][T11586]  ? led_work+0x720/0x720
[  343.815223][T11586]  process_one_work+0x1572/0x1ef0
[  343.820253][T11586]  worker_thread+0x111b/0x2460
[  343.825027][T11586]  kthread+0x4b5/0x4f0
[  343.829088][T11586]  ? process_one_work+0x1ef0/0x1ef0
[  343.834281][T11586]  ? kthread_blkcg+0xf0/0xf0
[  343.838861][T11586]  ret_from_fork+0x35/0x40
[  343.844733][T11586] Kernel Offset: disabled
[  343.849065][T11586] Rebooting in 86400 seconds..