[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   77.044871][   T31] audit: type=1800 audit(1569016674.109:25): pid=11531 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[   77.068176][   T31] audit: type=1800 audit(1569016674.129:26): pid=11531 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   77.102794][   T31] audit: type=1800 audit(1569016674.159:27): pid=11531 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.115' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [   89.856606][T11683] IPVS: ftp: loaded support on port[0] = 21
[   90.172259][   T38] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   90.412211][   T38] usb 1-1: Using ep0 maxpacket: 16
[   90.532352][   T38] usb 1-1: config 0 has an invalid interface number: 128 but max is 0
[   90.540581][   T38] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   90.550822][   T38] usb 1-1: config 0 has no interface number 0
[   90.557028][   T38] usb 1-1: config 0 interface 128 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[   90.568823][   T38] usb 1-1: New USB device found, idVendor=12cf, idProduct=7111, bcdDevice=48.08
[   90.577951][   T38] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   90.587866][   T38] usb 1-1: config 0 descriptor??
[   90.852346][   T38] radio-si470x 1-1:0.128: DeviceID=0xa136 ChipID=0xb180
[   91.072354][   T38] radio-si470x 1-1:0.128: software version 161, hardware version 54
[   91.292333][   T38] radio-si470x 1-1:0.128: si470x_set_report: usb_control_msg returned -71
[   91.312247][    C1] radio-si470x 1-1:0.128: non-zero urb status (-71)
[   91.319275][   T38] radio-si470x 1-1:0.128: si470x_set_report: usb_control_msg returned -71
[   91.328361][   T38] radio-si470x: probe of 1-1:0.128 failed with error -22
[   91.335559][    C1] usb 1-1:0.128: non-zero urb status (-71)
[   91.344136][   T38] usb 1-1: USB disconnect, device number 2
[   91.350933][   T38] ==================================================================
[   91.359021][   T38] BUG: KMSAN: uninit-value in usb_hcd_flush_endpoint+0x320/0x570
[   91.366727][   T38] CPU: 1 PID: 38 Comm: kworker/1:1 Not tainted 5.3.0-rc7+ #0
[   91.374082][   T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   91.384129][   T38] Workqueue: usb_hub_wq hub_event
[   91.389131][   T38] Call Trace:
[   91.392408][   T38]  dump_stack+0x191/0x1f0
[   91.396736][   T38]  kmsan_report+0x162/0x2d0
[   91.401221][   T38]  __msan_warning+0x75/0xe0
[   91.405710][   T38]  usb_hcd_flush_endpoint+0x320/0x570
[   91.411065][   T38]  usb_disable_device+0xfee/0x1150
[   91.416192][   T38]  usb_disconnect+0x51e/0xd60
[   91.420859][   T38]  hub_event+0x3fd0/0x72f0
[   91.425270][   T38]  ? dlm_recover_masters+0x108c/0x2050
[   91.430724][   T38]  ? kmsan_get_shadow_origin_ptr+0x71/0x4c0
[   91.436611][   T38]  ? led_work+0x720/0x720
[   91.440923][   T38]  ? led_work+0x720/0x720
[   91.445240][   T38]  process_one_work+0x1572/0x1ef0
[   91.450273][   T38]  worker_thread+0x189c/0x2460
[   91.455051][   T38]  kthread+0x4b5/0x4f0
[   91.459196][   T38]  ? process_one_work+0x1ef0/0x1ef0
[   91.464427][   T38]  ? kthread_blkcg+0xf0/0xf0
[   91.469004][   T38]  ret_from_fork+0x35/0x40
[   91.473404][   T38] 
[   91.475736][   T38] Uninit was stored to memory at:
[   91.480740][   T38]  kmsan_internal_chain_origin+0xcc/0x150
[   91.486437][   T38]  __msan_chain_origin+0x6b/0xe0
[   91.491353][   T38]  usb_hcd_link_urb_to_ep+0x47d/0x520
[   91.496813][   T38]  dummy_urb_enqueue+0x581/0xe10
[   91.501728][   T38]  usb_hcd_submit_urb+0x672/0x38d0
[   91.507784][   T38]  usb_submit_urb+0x1ef3/0x1f50
[   91.512622][   T38]  si470x_int_in_callback+0x3f7/0x1010
[   91.518055][   T38]  __usb_hcd_giveback_urb+0x4a7/0x630
[   91.523404][   T38]  usb_hcd_giveback_urb+0x189/0x670
[   91.528578][   T38]  dummy_timer+0xab0/0x6770
[   91.533145][   T38]  call_timer_fn+0x232/0x530
[   91.537720][   T38]  __run_timers+0xcdc/0x11a0
[   91.542285][   T38]  run_timer_softirq+0x2d/0x50
[   91.547025][   T38]  __do_softirq+0x4a1/0x83a
[   91.551505][   T38]  irq_exit+0x230/0x280
[   91.556419][   T38]  exiting_irq+0xe/0x10
[   91.560553][   T38]  smp_apic_timer_interrupt+0x48/0x70
[   91.565911][   T38]  apic_timer_interrupt+0x2e/0x40
[   91.570912][   T38]  console_unlock+0x191b/0x1cb0
[   91.575737][   T38]  vprintk_emit+0x45b/0x8f0
[   91.580215][   T38]  vprintk_default+0x90/0xa0
[   91.584781][   T38]  vprintk_func+0x635/0x810
[   91.589279][   T38]  printk+0x180/0x1c3
[   91.593264][   T38]  really_probe+0x1b57/0x1dc0
[   91.597918][   T38]  driver_probe_device+0x1ba/0x510
[   91.603009][   T38]  __device_attach_driver+0x5b8/0x790
[   91.608379][   T38]  bus_for_each_drv+0x28e/0x3b0
[   91.613209][   T38]  __device_attach+0x489/0x750
[   91.617950][   T38]  device_initial_probe+0x4a/0x60
[   91.622977][   T38]  bus_probe_device+0x131/0x390
[   91.628601][   T38]  device_add+0x25b5/0x2df0
[   91.633085][   T38]  usb_set_configuration+0x309f/0x3710
[   91.639041][   T38]  generic_probe+0xe7/0x280
[   91.643536][   T38]  usb_probe_device+0x146/0x200
[   91.648374][   T38]  really_probe+0x1373/0x1dc0
[   91.653031][   T38]  driver_probe_device+0x1ba/0x510
[   91.658136][   T38]  __device_attach_driver+0x5b8/0x790
[   91.663490][   T38]  bus_for_each_drv+0x28e/0x3b0
[   91.668317][   T38]  __device_attach+0x489/0x750
[   91.673057][   T38]  device_initial_probe+0x4a/0x60
[   91.678055][   T38]  bus_probe_device+0x131/0x390
[   91.682888][   T38]  device_add+0x25b5/0x2df0
[   91.687367][   T38]  usb_new_device+0x23e5/0x2fb0
[   91.692194][   T38]  hub_event+0x581d/0x72f0
[   91.696589][   T38]  process_one_work+0x1572/0x1ef0
[   91.701587][   T38]  worker_thread+0x111b/0x2460
[   91.706325][   T38]  kthread+0x4b5/0x4f0
[   91.710372][   T38]  ret_from_fork+0x35/0x40
[   91.714760][   T38] 
[   91.717063][   T38] Uninit was created at:
[   91.721284][   T38]  kmsan_internal_poison_shadow+0x58/0xb0
[   91.726981][   T38]  kmsan_slab_free+0x8d/0x100
[   91.731649][   T38]  kfree+0x4c1/0x2db0
[   91.735611][   T38]  si470x_usb_driver_probe+0xa6f/0x3200
[   91.741147][   T38]  usb_probe_interface+0xd19/0x1310
[   91.746325][   T38]  really_probe+0x1373/0x1dc0
[   91.750979][   T38]  driver_probe_device+0x1ba/0x510
[   91.756067][   T38]  __device_attach_driver+0x5b8/0x790
[   91.761427][   T38]  bus_for_each_drv+0x28e/0x3b0
[   91.766259][   T38]  __device_attach+0x489/0x750
[   91.771011][   T38]  device_initial_probe+0x4a/0x60
[   91.776099][   T38]  bus_probe_device+0x131/0x390
[   91.780938][   T38]  device_add+0x25b5/0x2df0
[   91.785431][   T38]  usb_set_configuration+0x309f/0x3710
[   91.790876][   T38]  generic_probe+0xe7/0x280
[   91.795356][   T38]  usb_probe_device+0x146/0x200
[   91.800184][   T38]  really_probe+0x1373/0x1dc0
[   91.804838][   T38]  driver_probe_device+0x1ba/0x510
[   91.809927][   T38]  __device_attach_driver+0x5b8/0x790
[   91.815277][   T38]  bus_for_each_drv+0x28e/0x3b0
[   91.820107][   T38]  __device_attach+0x489/0x750
[   91.824846][   T38]  device_initial_probe+0x4a/0x60
[   91.829845][   T38]  bus_probe_device+0x131/0x390
[   91.834672][   T38]  device_add+0x25b5/0x2df0
[   91.839154][   T38]  usb_new_device+0x23e5/0x2fb0
[   91.844588][   T38]  hub_event+0x581d/0x72f0
[   91.848997][   T38]  process_one_work+0x1572/0x1ef0
[   91.854028][   T38]  worker_thread+0x111b/0x2460
[   91.858776][   T38]  kthread+0x4b5/0x4f0
[   91.862826][   T38]  ret_from_fork+0x35/0x40
[   91.867266][   T38] ==================================================================
[   91.875322][   T38] Disabling lock debugging due to kernel taint
[   91.881457][   T38] Kernel panic - not syncing: panic_on_warn set ...
[   91.888043][   T38] CPU: 1 PID: 38 Comm: kworker/1:1 Tainted: G    B             5.3.0-rc7+ #0
[   91.898439][   T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   91.908486][   T38] Workqueue: usb_hub_wq hub_event
[   91.913512][   T38] Call Trace:
[   91.916787][   T38]  dump_stack+0x191/0x1f0
[   91.921126][   T38]  panic+0x3c9/0xc1e
[   91.925014][   T38]  kmsan_report+0x2ca/0x2d0
[   91.929848][   T38]  __msan_warning+0x75/0xe0
[   91.935201][   T38]  usb_hcd_flush_endpoint+0x320/0x570
[   91.940556][   T38]  usb_disable_device+0xfee/0x1150
[   91.945656][   T38]  usb_disconnect+0x51e/0xd60
[   91.950337][   T38]  hub_event+0x3fd0/0x72f0
[   91.954928][   T38]  ? dlm_recover_masters+0x108c/0x2050
[   91.960394][   T38]  ? kmsan_get_shadow_origin_ptr+0x71/0x4c0
[   91.966275][   T38]  ? led_work+0x720/0x720
[   91.970590][   T38]  ? led_work+0x720/0x720
[   91.975337][   T38]  process_one_work+0x1572/0x1ef0
[   91.980628][   T38]  worker_thread+0x189c/0x2460
[   91.985417][   T38]  kthread+0x4b5/0x4f0
[   91.989464][   T38]  ? process_one_work+0x1ef0/0x1ef0
[   91.994818][   T38]  ? kthread_blkcg+0xf0/0xf0
[   91.999390][   T38]  ret_from_fork+0x35/0x40
[   92.005195][   T38] Kernel Offset: disabled
[   92.009536][   T38] Rebooting in 86400 seconds..