[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 76.186183][ T31] audit: type=1800 audit(1570044436.233:25): pid=11149 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 76.209019][ T31] audit: type=1800 audit(1570044436.253:26): pid=11149 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 76.245691][ T31] audit: type=1800 audit(1570044436.283:27): pid=11149 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.10.26' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program syzkaller login: [ 88.343974][ T3347] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 88.364060][ T17] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 88.371813][ T30] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 88.379645][T11313] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 88.387433][T11315] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 88.395294][T11314] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 88.584682][ T3347] usb 1-1: Using ep0 maxpacket: 8 [ 88.604383][ T17] usb 2-1: Using ep0 maxpacket: 8 [ 88.614057][ T30] usb 5-1: Using ep0 maxpacket: 8 [ 88.624215][T11313] usb 6-1: Using ep0 maxpacket: 8 [ 88.634226][T11315] usb 3-1: Using ep0 maxpacket: 8 [ 88.639553][T11314] usb 4-1: Using ep0 maxpacket: 8 [ 88.714352][ T3347] usb 1-1: config 0 has an invalid interface number: 28 but max is 0 [ 88.722623][ T3347] usb 1-1: config 0 has no interface number 0 [ 88.724399][ T17] usb 2-1: config 0 has an invalid interface number: 28 but max is 0 [ 88.728898][ T3347] usb 1-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 88.737273][ T17] usb 2-1: config 0 has no interface number 0 [ 88.747984][ T3347] usb 1-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 88.748040][ T3347] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 88.754218][ T17] usb 2-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 88.765850][ T3347] usb 1-1: config 0 descriptor?? [ 88.771400][ T17] usb 2-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 88.796628][ T17] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 88.805905][ T30] usb 5-1: config 0 has an invalid interface number: 28 but max is 0 [ 88.814164][ T30] usb 5-1: config 0 has no interface number 0 [ 88.820307][ T30] usb 5-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 88.831937][ T30] usb 5-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 88.841234][ T30] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 88.844494][ T3347] ldusb 1-1:0.28: LD USB Device #0 now attached to major 180 minor 0 [ 88.850221][T11313] usb 6-1: config 0 has an invalid interface number: 28 but max is 0 [ 88.865862][T11313] usb 6-1: config 0 has no interface number 0 [ 88.872061][T11313] usb 6-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 88.883153][T11313] usb 6-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 88.892476][T11313] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 88.901248][T11315] usb 3-1: config 0 has an invalid interface number: 28 but max is 0 [ 88.909501][T11315] usb 3-1: config 0 has no interface number 0 [ 88.915759][T11315] usb 3-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 88.926858][T11315] usb 3-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 88.936167][T11315] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 88.945505][ T30] usb 5-1: config 0 descriptor?? [ 88.951503][T11315] usb 3-1: config 0 descriptor?? [ 88.958072][T11313] usb 6-1: config 0 descriptor?? [ 88.973347][ T17] usb 2-1: config 0 descriptor?? [ 88.984367][T11314] usb 4-1: config 0 has an invalid interface number: 28 but max is 0 [ 88.992671][T11314] usb 4-1: config 0 has no interface number 0 [ 88.999296][T11314] usb 4-1: config 0 interface 28 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 89.010789][T11314] usb 4-1: New USB device found, idVendor=0f11, idProduct=2020, bcdDevice=48.c9 [ 89.020310][T11314] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 89.048544][ T30] ldusb 5-1:0.28: LD USB Device #1 now attached to major 180 minor 1 [ 89.064631][T11315] ldusb 3-1:0.28: LD USB Device #2 now attached to major 180 minor 2 [ 89.076744][T11313] ldusb 6-1:0.28: LD USB Device #3 now attached to major 180 minor 3 [ 89.089537][ T17] ldusb 2-1:0.28: LD USB Device #4 now attached to major 180 minor 4 [ 89.102481][T11314] usb 4-1: config 0 descriptor?? [ 89.153168][T11314] ldusb 4-1:0.28: LD USB Device #5 now attached to major 180 minor 5 [ 93.072271][ T3347] usb 5-1: USB disconnect, device number 2 [ 93.083251][T11314] usb 1-1: USB disconnect, device number 2 [ 93.091411][ T17] usb 4-1: USB disconnect, device number 2 [ 93.099937][T11312] ===================================================== [ 93.102552][ T12] usb 2-1: USB disconnect, device number 2 [ 93.106894][T11312] BUG: KMSAN: uninit-value in __vfs_read+0x1a9/0xc90 executing program executing program [ 93.106911][T11312] CPU: 1 PID: 11312 Comm: syz-executor380 Not tainted 5.3.0-rc7+ #0 [ 93.106919][T11312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 93.106925][T11312] Call Trace: [ 93.106947][T11312] dump_stack+0x191/0x1f0 [ 93.106970][T11312] kmsan_report+0x13a/0x2b0 [ 93.106989][T11312] __msan_warning+0x73/0xe0 [ 93.107009][T11312] ld_usb_read+0x872/0xc40 [ 93.107053][T11312] ? init_wait_entry+0x190/0x190 [ 93.115123][ T3347] ldusb 5-1:0.28: LD USB Device #1 now disconnected executing program [ 93.119513][T11312] ? kmalloc_array+0x110/0x110 [ 93.119532][T11312] __vfs_read+0x1a9/0xc90 [ 93.119560][T11312] ? rw_verify_area+0x3a5/0x5e0 [ 93.119601][T11312] vfs_read+0x359/0x6f0 [ 93.140899][T11312] ksys_read+0x265/0x430 [ 93.140934][T11312] __se_sys_read+0x92/0xb0 [ 93.149755][T11312] __x64_sys_read+0x4a/0x70 [ 93.158643][T11312] do_syscall_64+0xbc/0xf0 [ 93.158666][T11312] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 93.158679][T11312] RIP: 0033:0x441879 executing program executing program [ 93.158696][T11312] Code: e8 8c e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb 08 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 93.158705][T11312] RSP: 002b:00007ffffcf29ab8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 93.158720][T11312] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441879 [ 93.158730][T11312] RDX: 00000000ffffffc7 RSI: 0000000020002440 RDI: 0000000000000004 [ 93.158739][T11312] RBP: 00000000006cc018 R08: 000000000000000f R09: 00000000004002c8 [ 93.158747][T11312] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000004025d0 [ 93.158772][T11312] R13: 0000000000402660 R14: 0000000000000000 R15: 0000000000000000 [ 93.163733][T11331] dummy_hcd dummy_hcd.5: port status 0x00010101 has changes [ 93.170284][T11312] kmsan_save_stack_with_flags+0x3a/0x80 [ 93.176555][ T12] ldusb 2-1:0.28: LD USB Device #4 now disconnected [ 93.179338][T11312] kmsan_alloc_page+0x151/0x360 [ 93.179352][T11312] __alloc_pages_nodemask+0x142d/0x5fa0 [ 93.179367][T11312] alloc_pages_current+0x68d/0x9a0 [ 93.179380][T11312] kmalloc_order_trace+0x87/0x320 [ 93.179394][T11312] __kmalloc+0x2e6/0x430 [ 93.179425][T11312] kmalloc_array+0x86/0x110 [ 93.201230][ T5] dummy_hcd dummy_hcd.5: port status 0x00010101 has changes [ 93.201543][T11312] ld_usb_probe+0x650/0x1650 [ 93.206715][ T5] usb 6-1: USB disconnect, device number 2 [ 93.212002][T11312] usb_probe_interface+0xd19/0x1310 [ 93.212019][T11312] really_probe+0x1373/0x1dc0 [ 93.212034][T11312] driver_probe_device+0x1ba/0x510 [ 93.212049][T11312] __device_attach_driver+0x5b8/0x790 [ 93.212063][T11312] bus_for_each_drv+0x28e/0x3b0 [ 93.212077][T11312] __device_attach+0x489/0x750 [ 93.212091][T11312] device_initial_probe+0x4a/0x60 [ 93.212103][T11312] bus_probe_device+0x131/0x390 [ 93.212132][T11312] device_add+0x25b5/0x2df0 [ 93.239530][T11328] udc dummy_udc.1: registering UDC driver [USB fuzzer] [ 93.244015][T11312] usb_set_configuration+0x309f/0x3710 [ 93.244030][T11312] generic_probe+0xe7/0x280 [ 93.244043][T11312] usb_probe_device+0x146/0x200 [ 93.244057][T11312] really_probe+0x1373/0x1dc0 [ 93.244090][T11312] driver_probe_device+0x1ba/0x510 [ 93.252100][T11328] dummy_hcd dummy_hcd.1: port status 0x00010101 has changes [ 93.260145][T11312] __device_attach_driver+0x5b8/0x790 [ 93.271526][T11330] udc dummy_udc.4: registering UDC driver [USB fuzzer] [ 93.276070][T11312] bus_for_each_drv+0x28e/0x3b0 [ 93.276085][T11312] __device_attach+0x489/0x750 [ 93.276099][T11312] device_initial_probe+0x4a/0x60 [ 93.276113][T11312] bus_probe_device+0x131/0x390 [ 93.276125][T11312] device_add+0x25b5/0x2df0 [ 93.276139][T11312] usb_new_device+0x23e5/0x2fb0 [ 93.276152][T11312] hub_event+0x581d/0x72f0 [ 93.276168][T11312] process_one_work+0x1572/0x1ef0 [ 93.276182][T11312] worker_thread+0x111b/0x2460 [ 93.276192][T11312] kthread+0x4b5/0x4f0 [ 93.276205][T11312] ret_from_fork+0x35/0x40 [ 93.276212][T11312] ===================================================== [ 93.276217][T11312] Disabling lock debugging due to kernel taint [ 93.276243][T11312] Kernel panic - not syncing: panic_on_warn set ... [ 93.284865][T11330] dummy_hcd dummy_hcd.4: port status 0x00010101 has changes [ 93.291857][T11312] CPU: 1 PID: 11312 Comm: syz-executor380 Tainted: G B 5.3.0-rc7+ #0 [ 93.302339][T11333] udc dummy_udc.0: registering UDC driver [USB fuzzer] [ 93.304046][T11312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 93.304052][T11312] Call Trace: [ 93.304081][T11312] dump_stack+0x191/0x1f0 [ 93.304110][T11312] panic+0x3c9/0xc1e [ 93.304156][T11312] kmsan_report+0x2a2/0x2b0 [ 93.304177][T11312] __msan_warning+0x73/0xe0 [ 93.304196][T11312] ld_usb_read+0x872/0xc40 [ 93.304234][T11312] ? init_wait_entry+0x190/0x190 [ 93.309132][T11333] dummy_hcd dummy_hcd.0: port status 0x00010101 has changes [ 93.314651][T11312] ? kmalloc_array+0x110/0x110 [ 93.330506][ T5] ldusb 6-1:0.28: LD USB Device #3 now disconnected [ 93.333488][T11312] __vfs_read+0x1a9/0xc90 [ 93.333518][T11312] ? rw_verify_area+0x3a5/0x5e0 [ 93.333544][T11312] vfs_read+0x359/0x6f0 [ 93.333618][T11312] ksys_read+0x265/0x430 [ 93.618598][T11312] __se_sys_read+0x92/0xb0 [ 93.623014][T11312] __x64_sys_read+0x4a/0x70 [ 93.627505][T11312] do_syscall_64+0xbc/0xf0 [ 93.632010][T11312] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 93.638083][T11312] RIP: 0033:0x441879 [ 93.641966][T11312] Code: e8 8c e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb 08 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 93.661557][T11312] RSP: 002b:00007ffffcf29ab8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 93.669955][T11312] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441879 [ 93.678616][T11312] RDX: 00000000ffffffc7 RSI: 0000000020002440 RDI: 0000000000000004 [ 93.686670][T11312] RBP: 00000000006cc018 R08: 000000000000000f R09: 00000000004002c8 [ 93.694625][T11312] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000004025d0 [ 93.702580][T11312] R13: 0000000000402660 R14: 0000000000000000 R15: 0000000000000000 [ 93.712140][T11312] Kernel Offset: disabled [ 93.716478][T11312] Rebooting in 86400 seconds..