[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 75.028210][ T30] audit: type=1800 audit(1566574061.097:25): pid=11100 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 75.051165][ T30] audit: type=1800 audit(1566574061.117:26): pid=11100 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 75.080495][ T30] audit: type=1800 audit(1566574061.147:27): pid=11100 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.145' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 86.062341][ T49] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 86.302203][ T49] usb 1-1: Using ep0 maxpacket: 8 [ 86.422402][ T49] usb 1-1: config 0 has an invalid interface number: 241 but max is 0 [ 86.430632][ T49] usb 1-1: config 0 has no interface number 0 [ 86.436877][ T49] usb 1-1: New USB device found, idVendor=0c72, idProduct=000d, bcdDevice=da.d3 [ 86.446096][ T49] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 86.455513][ T49] usb 1-1: config 0 descriptor?? [ 86.922409][ T49] ================================================================== [ 86.930562][ T49] BUG: KMSAN: kernel-usb-infoleak in usb_submit_urb+0x7ef/0x1f50 [ 86.938262][ T49] CPU: 1 PID: 49 Comm: kworker/1:1 Not tainted 5.3.0-rc3+ #17 [ 86.946374][ T49] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 86.956424][ T49] Workqueue: usb_hub_wq hub_event [ 86.961419][ T49] Call Trace: [ 86.964690][ T49] dump_stack+0x191/0x1f0 [ 86.969002][ T49] kmsan_report+0x162/0x2d0 [ 86.973483][ T49] kmsan_internal_check_memory+0x7be/0x8d0 [ 86.979264][ T49] ? hub_event+0x581d/0x72f0 [ 86.983835][ T49] ? process_one_work+0x1572/0x1ef0 [ 86.989012][ T49] ? worker_thread+0x111b/0x2460 [ 86.993924][ T49] ? kthread+0x4b5/0x4f0 [ 86.998150][ T49] kmsan_handle_urb+0x28/0x40 [ 87.002805][ T49] usb_submit_urb+0x7ef/0x1f50 [ 87.007560][ T49] usb_start_wait_urb+0x143/0x410 [ 87.012567][ T49] usb_control_msg+0x49f/0x7f0 [ 87.017322][ T49] pcan_usb_pro_init+0x1319/0x1720 [ 87.022418][ T49] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0 [ 87.028376][ T49] ? pcan_usb_pro_probe+0x250/0x250 [ 87.033550][ T49] peak_usb_probe+0x1416/0x1b20 [ 87.038387][ T49] ? peak_usb_do_device_exit+0x240/0x240 [ 87.044002][ T49] usb_probe_interface+0xd19/0x1310 [ 87.049183][ T49] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0 [ 87.055138][ T49] ? usb_register_driver+0x7d0/0x7d0 [ 87.060399][ T49] really_probe+0x1373/0x1dc0 [ 87.065066][ T49] driver_probe_device+0x1ba/0x510 [ 87.070157][ T49] __device_attach_driver+0x5b8/0x790 [ 87.075512][ T49] ? bus_for_each_drv+0x1d5/0x3b0 [ 87.080513][ T49] bus_for_each_drv+0x28e/0x3b0 [ 87.085350][ T49] ? deferred_probe_work_func+0x400/0x400 [ 87.091052][ T49] __device_attach+0x489/0x750 [ 87.095803][ T49] device_initial_probe+0x4a/0x60 [ 87.100806][ T49] bus_probe_device+0x131/0x390 [ 87.105639][ T49] device_add+0x25b5/0x2df0 [ 87.110130][ T49] ? usb_set_configuration+0x3036/0x3710 [ 87.115740][ T49] usb_set_configuration+0x309f/0x3710 [ 87.121189][ T49] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 87.127243][ T49] generic_probe+0xe7/0x280 [ 87.131738][ T49] ? usb_probe_device+0x104/0x200 [ 87.136739][ T49] ? usb_choose_configuration+0xae0/0xae0 [ 87.142436][ T49] usb_probe_device+0x146/0x200 [ 87.147264][ T49] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0 [ 87.153223][ T49] ? usb_register_device_driver+0x470/0x470 [ 87.159096][ T49] really_probe+0x1373/0x1dc0 [ 87.163757][ T49] driver_probe_device+0x1ba/0x510 [ 87.168857][ T49] __device_attach_driver+0x5b8/0x790 [ 87.174210][ T49] ? bus_for_each_drv+0x1d5/0x3b0 [ 87.179212][ T49] bus_for_each_drv+0x28e/0x3b0 [ 87.184040][ T49] ? deferred_probe_work_func+0x400/0x400 [ 87.189739][ T49] __device_attach+0x489/0x750 [ 87.194486][ T49] device_initial_probe+0x4a/0x60 [ 87.199488][ T49] bus_probe_device+0x131/0x390 [ 87.204322][ T49] device_add+0x25b5/0x2df0 [ 87.208821][ T49] usb_new_device+0x23e5/0x2fb0 [ 87.213662][ T49] hub_event+0x581d/0x72f0 [ 87.218084][ T49] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0 [ 87.224049][ T49] ? led_work+0x720/0x720 [ 87.228352][ T49] ? led_work+0x720/0x720 [ 87.232664][ T49] process_one_work+0x1572/0x1ef0 [ 87.237676][ T49] worker_thread+0x111b/0x2460 [ 87.242443][ T49] kthread+0x4b5/0x4f0 [ 87.246503][ T49] ? process_one_work+0x1ef0/0x1ef0 [ 87.251693][ T49] ? kthread_blkcg+0xf0/0xf0 [ 87.256271][ T49] ret_from_fork+0x35/0x40 [ 87.260677][ T49] [ 87.262988][ T49] Uninit was created at: [ 87.267221][ T49] kmsan_internal_poison_shadow+0x53/0xa0 [ 87.272925][ T49] kmsan_slab_alloc+0xaa/0x120 [ 87.277672][ T49] kmem_cache_alloc_trace+0x8c5/0xd20 [ 87.283029][ T49] pcan_usb_pro_init+0xe96/0x1720 [ 87.288037][ T49] peak_usb_probe+0x1416/0x1b20 [ 87.292874][ T49] usb_probe_interface+0xd19/0x1310 [ 87.298057][ T49] really_probe+0x1373/0x1dc0 [ 87.302715][ T49] driver_probe_device+0x1ba/0x510 [ 87.307811][ T49] __device_attach_driver+0x5b8/0x790 [ 87.313163][ T49] bus_for_each_drv+0x28e/0x3b0 [ 87.318004][ T49] __device_attach+0x489/0x750 [ 87.322753][ T49] device_initial_probe+0x4a/0x60 [ 87.327761][ T49] bus_probe_device+0x131/0x390 [ 87.332596][ T49] device_add+0x25b5/0x2df0 [ 87.337081][ T49] usb_set_configuration+0x309f/0x3710 [ 87.342526][ T49] generic_probe+0xe7/0x280 [ 87.347028][ T49] usb_probe_device+0x146/0x200 [ 87.351956][ T49] really_probe+0x1373/0x1dc0 [ 87.356620][ T49] driver_probe_device+0x1ba/0x510 [ 87.361713][ T49] __device_attach_driver+0x5b8/0x790 [ 87.367067][ T49] bus_for_each_drv+0x28e/0x3b0 [ 87.371898][ T49] __device_attach+0x489/0x750 [ 87.376650][ T49] device_initial_probe+0x4a/0x60 [ 87.381658][ T49] bus_probe_device+0x131/0x390 [ 87.386492][ T49] device_add+0x25b5/0x2df0 [ 87.390975][ T49] usb_new_device+0x23e5/0x2fb0 [ 87.395805][ T49] hub_event+0x581d/0x72f0 [ 87.400203][ T49] process_one_work+0x1572/0x1ef0 [ 87.405211][ T49] worker_thread+0x111b/0x2460 [ 87.409955][ T49] kthread+0x4b5/0x4f0 [ 87.414007][ T49] ret_from_fork+0x35/0x40 [ 87.418397][ T49] [ 87.420709][ T49] Bytes 2-15 of 16 are uninitialized [ 87.425975][ T49] Memory access of size 16 starts at ffff888109688e70 [ 87.432714][ T49] ================================================================== [ 87.440752][ T49] Disabling lock debugging due to kernel taint [ 87.446889][ T49] Kernel panic - not syncing: panic_on_warn set ... [ 87.454765][ T49] CPU: 1 PID: 49 Comm: kworker/1:1 Tainted: G B 5.3.0-rc3+ #17 [ 87.463592][ T49] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 87.473636][ T49] Workqueue: usb_hub_wq hub_event [ 87.478638][ T49] Call Trace: [ 87.481917][ T49] dump_stack+0x191/0x1f0 [ 87.486244][ T49] panic+0x3c9/0xc1e [ 87.490145][ T49] kmsan_report+0x2ca/0x2d0 [ 87.494638][ T49] kmsan_internal_check_memory+0x7be/0x8d0 [ 87.500427][ T49] ? hub_event+0x581d/0x72f0 [ 87.505002][ T49] ? process_one_work+0x1572/0x1ef0 [ 87.510183][ T49] ? worker_thread+0x111b/0x2460 [ 87.515119][ T49] ? kthread+0x4b5/0x4f0 [ 87.519359][ T49] kmsan_handle_urb+0x28/0x40 [ 87.524023][ T49] usb_submit_urb+0x7ef/0x1f50 [ 87.528794][ T49] usb_start_wait_urb+0x143/0x410 [ 87.533817][ T49] usb_control_msg+0x49f/0x7f0 [ 87.538582][ T49] pcan_usb_pro_init+0x1319/0x1720 [ 87.543698][ T49] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0 [ 87.549663][ T49] ? pcan_usb_pro_probe+0x250/0x250 [ 87.554849][ T49] peak_usb_probe+0x1416/0x1b20 [ 87.559702][ T49] ? peak_usb_do_device_exit+0x240/0x240 [ 87.565322][ T49] usb_probe_interface+0xd19/0x1310 [ 87.570513][ T49] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0 [ 87.576478][ T49] ? usb_register_driver+0x7d0/0x7d0 [ 87.581749][ T49] really_probe+0x1373/0x1dc0 [ 87.586424][ T49] driver_probe_device+0x1ba/0x510 [ 87.591531][ T49] __device_attach_driver+0x5b8/0x790 [ 87.596894][ T49] ? bus_for_each_drv+0x1d5/0x3b0 [ 87.601905][ T49] bus_for_each_drv+0x28e/0x3b0 [ 87.606745][ T49] ? deferred_probe_work_func+0x400/0x400 [ 87.612457][ T49] __device_attach+0x489/0x750 [ 87.617218][ T49] device_initial_probe+0x4a/0x60 [ 87.622235][ T49] bus_probe_device+0x131/0x390 [ 87.627079][ T49] device_add+0x25b5/0x2df0 [ 87.631584][ T49] ? usb_set_configuration+0x3036/0x3710 [ 87.637205][ T49] usb_set_configuration+0x309f/0x3710 [ 87.642668][ T49] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 87.648744][ T49] generic_probe+0xe7/0x280 [ 87.653233][ T49] ? usb_probe_device+0x104/0x200 [ 87.658245][ T49] ? usb_choose_configuration+0xae0/0xae0 [ 87.663950][ T49] usb_probe_device+0x146/0x200 [ 87.668796][ T49] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0 [ 87.674762][ T49] ? usb_register_device_driver+0x470/0x470 [ 87.680644][ T49] really_probe+0x1373/0x1dc0 [ 87.685320][ T49] driver_probe_device+0x1ba/0x510 [ 87.690425][ T49] __device_attach_driver+0x5b8/0x790 [ 87.695791][ T49] ? bus_for_each_drv+0x1d5/0x3b0 [ 87.700808][ T49] bus_for_each_drv+0x28e/0x3b0 [ 87.705643][ T49] ? deferred_probe_work_func+0x400/0x400 [ 87.711356][ T49] __device_attach+0x489/0x750 [ 87.716114][ T49] device_initial_probe+0x4a/0x60 [ 87.721819][ T49] bus_probe_device+0x131/0x390 [ 87.726661][ T49] device_add+0x25b5/0x2df0 [ 87.731166][ T49] usb_new_device+0x23e5/0x2fb0 [ 87.736018][ T49] hub_event+0x581d/0x72f0 [ 87.740457][ T49] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0 [ 87.746419][ T49] ? led_work+0x720/0x720 [ 87.750732][ T49] ? led_work+0x720/0x720 [ 87.755049][ T49] process_one_work+0x1572/0x1ef0 [ 87.760077][ T49] worker_thread+0x111b/0x2460 [ 87.764846][ T49] kthread+0x4b5/0x4f0 [ 87.768901][ T49] ? process_one_work+0x1ef0/0x1ef0 [ 87.774091][ T49] ? kthread_blkcg+0xf0/0xf0 [ 87.778673][ T49] ret_from_fork+0x35/0x40 [ 87.784189][ T49] Kernel Offset: disabled [ 87.788511][ T49] Rebooting in 86400 seconds..