[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[  101.241468][   T31] audit: type=1800 audit(1563393515.292:25): pid=11986 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[  101.265398][   T31] audit: type=1800 audit(1563393515.322:26): pid=11986 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[  101.316717][   T31] audit: type=1800 audit(1563393515.342:27): pid=11986 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.124' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [  115.884446][   T12] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  116.244625][   T12] usb 1-1: config 0 has an invalid interface number: 97 but max is 0
[  116.252776][   T12] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  116.263045][   T12] usb 1-1: config 0 has no interface number 0
[  116.269316][   T12] usb 1-1: config 0 interface 97 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  116.280495][   T12] usb 1-1: New USB device found, idVendor=1b80, idProduct=e755, bcdDevice=1e.97
[  116.289657][   T12] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  116.299368][   T12] usb 1-1: config 0 descriptor??
[  116.349455][   T12] em28xx 1-1:0.97: New device   @ 480 Mbps (1b80:e755, interface 97, class 97)
[  116.358844][   T12] em28xx 1-1:0.97: Audio interface 97 found (Vendor Class)
[  116.594472][T12136] ==================================================================
[  116.602575][T12136] BUG: KMSAN: kernel-infoleak in _copy_to_user+0x16b/0x1f0
[  116.609759][T12136] CPU: 0 PID: 12136 Comm: syz-executor700 Not tainted 5.2.0+ #15
[  116.617452][T12136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  116.627493][T12136] Call Trace:
[  116.630781][T12136]  dump_stack+0x191/0x1f0
[  116.635110][T12136]  kmsan_report+0x162/0x2d0
[  116.639608][T12136]  kmsan_internal_check_memory+0x974/0xa80
[  116.645433][T12136]  ? kmsan_get_shadow_origin_ptr+0x71/0x470
[  116.651340][T12136]  kmsan_copy_to_user+0xa9/0xb0
[  116.656182][T12136]  _copy_to_user+0x16b/0x1f0
[  116.660774][T12136]  fuzzer_ioctl+0x511f/0x5690
[  116.665460][T12136]  ? kmsan_get_shadow_origin_ptr+0x71/0x470
[  116.671343][T12136]  ? next_event+0x6a0/0x6a0
[  116.675835][T12136]  full_proxy_unlocked_ioctl+0x222/0x330
[  116.681473][T12136]  ? full_proxy_poll+0x2d0/0x2d0
[  116.686395][T12136]  do_vfs_ioctl+0xea8/0x2c50
[  116.691007][T12136]  ? security_file_ioctl+0x1bd/0x200
[  116.696290][T12136]  __se_sys_ioctl+0x1da/0x270
[  116.700965][T12136]  __x64_sys_ioctl+0x4a/0x70
[  116.705544][T12136]  do_syscall_64+0xbc/0xf0
[  116.709980][T12136]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  116.715858][T12136] RIP: 0033:0x440947
[  116.719755][T12136] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 cd 14 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[  116.739493][T12136] RSP: 002b:00007ffe31bf82e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  116.747897][T12136] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000440947
[  116.755853][T12136] RDX: 00007ffe31bf8300 RSI: 00000000c0085504 RDI: 0000000000000003
[  116.763809][T12136] RBP: 0000000000000040 R08: 00000000000d8305 R09: 0000000000000000
[  116.771894][T12136] R10: 0000000000402330 R11: 0000000000000246 R12: 00007ffe31bf8300
[  116.779854][T12136] R13: 0000000000402330 R14: 0000000000000000 R15: 0000000000000000
[  116.787824][T12136] 
[  116.790133][T12136] Uninit was created at:
[  116.794362][T12136]  kmsan_internal_poison_shadow+0x53/0xa0
[  116.800080][T12136]  kmsan_slab_alloc+0xaa/0x120
[  116.804828][T12136]  __kmalloc+0x273/0x370
[  116.809052][T12136]  fuzzer_ioctl+0x2b09/0x5690
[  116.813732][T12136]  full_proxy_unlocked_ioctl+0x222/0x330
[  116.819350][T12136]  do_vfs_ioctl+0xea8/0x2c50
[  116.823923][T12136]  __se_sys_ioctl+0x1da/0x270
[  116.828582][T12136]  __x64_sys_ioctl+0x4a/0x70
[  116.833153][T12136]  do_syscall_64+0xbc/0xf0
[  116.837555][T12136]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  116.843420][T12136] 
[  116.845733][T12136] Byte 0 of 1 is uninitialized
[  116.850473][T12136] Memory access of size 1 starts at ffff8880ba9639d0
[  116.857123][T12136] Data copied to user address 00007ffe31bf8308
[  116.863262][T12136] ==================================================================
[  116.871324][T12136] Disabling lock debugging due to kernel taint
[  116.877456][T12136] Kernel panic - not syncing: panic_on_warn set ...
[  116.884043][T12136] CPU: 0 PID: 12136 Comm: syz-executor700 Tainted: G    B             5.2.0+ #15
[  116.893124][T12136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  116.903158][T12136] Call Trace:
[  116.906449][T12136]  dump_stack+0x191/0x1f0
[  116.910775][T12136]  panic+0x3c9/0xc1e
[  116.914692][T12136]  kmsan_report+0x2ca/0x2d0
[  116.919203][T12136]  kmsan_internal_check_memory+0x974/0xa80
[  116.924995][T12136]  ? kmsan_get_shadow_origin_ptr+0x71/0x470
[  116.930886][T12136]  kmsan_copy_to_user+0xa9/0xb0
[  116.935726][T12136]  _copy_to_user+0x16b/0x1f0
[  116.940318][T12136]  fuzzer_ioctl+0x511f/0x5690
[  116.945017][T12136]  ? kmsan_get_shadow_origin_ptr+0x71/0x470
[  116.950988][T12136]  ? next_event+0x6a0/0x6a0
[  116.955483][T12136]  full_proxy_unlocked_ioctl+0x222/0x330
[  116.961115][T12136]  ? full_proxy_poll+0x2d0/0x2d0
[  116.966044][T12136]  do_vfs_ioctl+0xea8/0x2c50
[  116.970643][T12136]  ? security_file_ioctl+0x1bd/0x200
[  116.975928][T12136]  __se_sys_ioctl+0x1da/0x270
[  116.980702][T12136]  __x64_sys_ioctl+0x4a/0x70
[  116.985287][T12136]  do_syscall_64+0xbc/0xf0
[  116.989696][T12136]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  116.995587][T12136] RIP: 0033:0x440947
[  116.999484][T12136] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 cd 14 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[  117.019094][T12136] RSP: 002b:00007ffe31bf82e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  117.027510][T12136] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000440947
[  117.035472][T12136] RDX: 00007ffe31bf8300 RSI: 00000000c0085504 RDI: 0000000000000003
[  117.043428][T12136] RBP: 0000000000000040 R08: 00000000000d8305 R09: 0000000000000000
[  117.051403][T12136] R10: 0000000000402330 R11: 0000000000000246 R12: 00007ffe31bf8300
[  117.059377][T12136] R13: 0000000000402330 R14: 0000000000000000 R15: 0000000000000000
[  117.068557][T12136] Kernel Offset: disabled
[  117.072889][T12136] Rebooting in 86400 seconds..