[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 100.498284][ T30] audit: type=1800 audit(1561401791.556:25): pid=12494 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 100.524373][ T30] audit: type=1800 audit(1561401791.586:26): pid=12494 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 100.560447][ T30] audit: type=1800 audit(1561401791.606:27): pid=12494 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.10.43' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 110.918054][T12645] IPVS: ftp: loaded support on port[0] = 21 [ 111.242230][ T12] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 111.482232][ T12] usb 1-1: Using ep0 maxpacket: 8 [ 111.602225][ T12] usb 1-1: config 0 has an invalid interface number: 150 but max is 0 [ 111.610513][ T12] usb 1-1: config 0 has no interface number 0 [ 111.617198][ T12] usb 1-1: New USB device found, idVendor=050d, idProduct=0122, bcdDevice=c1.69 [ 111.630969][ T12] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 111.640358][ T12] usb 1-1: config 0 descriptor?? [ 111.882259][ T12] ================================================================== [ 111.890465][ T12] BUG: KMSAN: uninit-value in read_eprom_word+0x947/0xdd0 [ 111.897577][ T12] CPU: 0 PID: 12 Comm: kworker/0:1 Not tainted 5.2.0-rc4+ #5 [ 111.904927][ T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 111.914977][ T12] Workqueue: usb_hub_wq hub_event [ 111.920014][ T12] Call Trace: [ 111.923325][ T12] dump_stack+0x191/0x1f0 [ 111.927654][ T12] kmsan_report+0x162/0x2d0 [ 111.932155][ T12] __msan_warning+0x75/0xe0 [ 111.936653][ T12] read_eprom_word+0x947/0xdd0 [ 111.941424][ T12] pegasus_probe+0xf2b/0x4be0 [ 111.946131][ T12] ? kmsan_get_shadow_origin_ptr+0x71/0x470 [ 111.952011][ T12] ? usb_unlocked_disable_lpm+0x10a/0x180 [ 111.957714][ T12] ? kaweth_get_link+0x70/0x70 [ 111.962479][ T12] ? kaweth_get_link+0x70/0x70 [ 111.967234][ T12] usb_probe_interface+0xd19/0x1310 [ 111.972459][ T12] ? usb_register_driver+0x7d0/0x7d0 [ 111.977757][ T12] really_probe+0x1344/0x1d90 [ 111.982440][ T12] driver_probe_device+0x1ba/0x510 [ 111.987543][ T12] ? kmsan_get_shadow_origin_ptr+0x71/0x470 [ 111.993430][ T12] __device_attach_driver+0x5b8/0x790 [ 111.998805][ T12] bus_for_each_drv+0x28e/0x3b0 [ 112.003671][ T12] ? deferred_probe_work_func+0x400/0x400 [ 112.009408][ T12] __device_attach+0x489/0x750 [ 112.014173][ T12] device_initial_probe+0x4a/0x60 [ 112.019193][ T12] bus_probe_device+0x131/0x390 [ 112.024088][ T12] device_add+0x25b5/0x2df0 [ 112.028608][ T12] usb_set_configuration+0x309f/0x3710 [ 112.034081][ T12] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 112.040181][ T12] generic_probe+0xe7/0x280 [ 112.044674][ T12] ? usb_choose_configuration+0xae0/0xae0 [ 112.050400][ T12] usb_probe_device+0x146/0x200 [ 112.055244][ T12] ? usb_register_device_driver+0x470/0x470 [ 112.061131][ T12] really_probe+0x1344/0x1d90 [ 112.065814][ T12] driver_probe_device+0x1ba/0x510 [ 112.070917][ T12] ? kmsan_get_shadow_origin_ptr+0x71/0x470 [ 112.076822][ T12] __device_attach_driver+0x5b8/0x790 [ 112.082220][ T12] bus_for_each_drv+0x28e/0x3b0 [ 112.087073][ T12] ? deferred_probe_work_func+0x400/0x400 [ 112.092798][ T12] __device_attach+0x489/0x750 [ 112.097562][ T12] device_initial_probe+0x4a/0x60 [ 112.102576][ T12] bus_probe_device+0x131/0x390 [ 112.107431][ T12] device_add+0x25b5/0x2df0 [ 112.111964][ T12] usb_new_device+0x23e5/0x2fb0 [ 112.117031][ T12] hub_event+0x5853/0x7320 [ 112.121493][ T12] ? kmsan_get_shadow_origin_ptr+0x71/0x470 [ 112.127376][ T12] ? led_work+0x720/0x720 [ 112.131688][ T12] ? led_work+0x720/0x720 [ 112.136012][ T12] process_one_work+0x1572/0x1f00 [ 112.141046][ T12] worker_thread+0x111b/0x2460 [ 112.145828][ T12] kthread+0x4b5/0x4f0 [ 112.149881][ T12] ? process_one_work+0x1f00/0x1f00 [ 112.155092][ T12] ? kthread_blkcg+0xf0/0xf0 [ 112.159672][ T12] ret_from_fork+0x35/0x40 [ 112.164090][ T12] [ 112.166401][ T12] Local variable description: ----data.addr.i13@read_eprom_word [ 112.174018][ T12] Variable was created at: [ 112.178419][ T12] read_eprom_word+0x498/0xdd0 [ 112.183170][ T12] pegasus_probe+0xf2b/0x4be0 [ 112.187822][ T12] ================================================================== [ 112.195859][ T12] Disabling lock debugging due to kernel taint [ 112.201994][ T12] Kernel panic - not syncing: panic_on_warn set ... [ 112.208568][ T12] CPU: 0 PID: 12 Comm: kworker/0:1 Tainted: G B 5.2.0-rc4+ #5 [ 112.217301][ T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 112.227348][ T12] Workqueue: usb_hub_wq hub_event [ 112.232368][ T12] Call Trace: [ 112.235652][ T12] dump_stack+0x191/0x1f0 [ 112.239982][ T12] panic+0x3c9/0xc1e [ 112.243896][ T12] kmsan_report+0x2ca/0x2d0 [ 112.248394][ T12] __msan_warning+0x75/0xe0 [ 112.252889][ T12] read_eprom_word+0x947/0xdd0 [ 112.257661][ T12] pegasus_probe+0xf2b/0x4be0 [ 112.262371][ T12] ? kmsan_get_shadow_origin_ptr+0x71/0x470 [ 112.268248][ T12] ? usb_unlocked_disable_lpm+0x10a/0x180 [ 112.273948][ T12] ? kaweth_get_link+0x70/0x70 [ 112.278694][ T12] ? kaweth_get_link+0x70/0x70 [ 112.283451][ T12] usb_probe_interface+0xd19/0x1310 [ 112.288673][ T12] ? usb_register_driver+0x7d0/0x7d0 [ 112.293945][ T12] really_probe+0x1344/0x1d90 [ 112.298641][ T12] driver_probe_device+0x1ba/0x510 [ 112.303747][ T12] ? kmsan_get_shadow_origin_ptr+0x71/0x470 [ 112.309634][ T12] __device_attach_driver+0x5b8/0x790 [ 112.315013][ T12] bus_for_each_drv+0x28e/0x3b0 [ 112.319847][ T12] ? deferred_probe_work_func+0x400/0x400 [ 112.325558][ T12] __device_attach+0x489/0x750 [ 112.330330][ T12] device_initial_probe+0x4a/0x60 [ 112.335362][ T12] bus_probe_device+0x131/0x390 [ 112.340311][ T12] device_add+0x25b5/0x2df0 [ 112.344828][ T12] usb_set_configuration+0x309f/0x3710 [ 112.350313][ T12] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 112.356389][ T12] generic_probe+0xe7/0x280 [ 112.360877][ T12] ? usb_choose_configuration+0xae0/0xae0 [ 112.366588][ T12] usb_probe_device+0x146/0x200 [ 112.371431][ T12] ? usb_register_device_driver+0x470/0x470 [ 112.377312][ T12] really_probe+0x1344/0x1d90 [ 112.382014][ T12] driver_probe_device+0x1ba/0x510 [ 112.387134][ T12] ? kmsan_get_shadow_origin_ptr+0x71/0x470 [ 112.393021][ T12] __device_attach_driver+0x5b8/0x790 [ 112.398402][ T12] bus_for_each_drv+0x28e/0x3b0 [ 112.403260][ T12] ? deferred_probe_work_func+0x400/0x400 [ 112.408982][ T12] __device_attach+0x489/0x750 [ 112.413748][ T12] device_initial_probe+0x4a/0x60 [ 112.418759][ T12] bus_probe_device+0x131/0x390 [ 112.423607][ T12] device_add+0x25b5/0x2df0 [ 112.428127][ T12] usb_new_device+0x23e5/0x2fb0 [ 112.432993][ T12] hub_event+0x5853/0x7320 [ 112.437452][ T12] ? kmsan_get_shadow_origin_ptr+0x71/0x470 [ 112.443332][ T12] ? led_work+0x720/0x720 [ 112.447641][ T12] ? led_work+0x720/0x720 [ 112.451957][ T12] process_one_work+0x1572/0x1f00 [ 112.457005][ T12] worker_thread+0x111b/0x2460 [ 112.461788][ T12] kthread+0x4b5/0x4f0 [ 112.465841][ T12] ? process_one_work+0x1f00/0x1f00 [ 112.471034][ T12] ? kthread_blkcg+0xf0/0xf0 [ 112.475628][ T12] ret_from_fork+0x35/0x40 [ 112.481074][ T12] Kernel Offset: disabled [ 112.485427][ T12] Rebooting in 86400 seconds..