[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 87.129508][ T31] audit: type=1800 audit(1571135352.182:25): pid=12558 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 87.153249][ T31] audit: type=1800 audit(1571135352.212:26): pid=12558 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 87.192900][ T31] audit: type=1800 audit(1571135352.232:27): pid=12558 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.165' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program syzkaller login: [ 97.512073][ T12] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 97.522142][ T17] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 97.522442][ T4116] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 97.542147][ T5] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 97.542196][ T30] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 97.542424][ T3697] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 97.872455][ T12] usb 1-1: config 0 has an invalid interface number: 206 but max is 0 [ 97.880789][ T12] usb 1-1: config 0 has no interface number 0 [ 97.887252][ T12] usb 1-1: New USB device found, idVendor=0411, idProduct=0012, bcdDevice=56.5f [ 97.892440][ T17] usb 3-1: config 0 has an invalid interface number: 206 but max is 0 [ 97.896627][ T12] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 97.904839][ T17] usb 3-1: config 0 has no interface number 0 [ 97.914025][ T4116] usb 4-1: config 0 has an invalid interface number: 206 but max is 0 [ 97.918881][ T17] usb 3-1: New USB device found, idVendor=0411, idProduct=0012, bcdDevice=56.5f [ 97.927099][ T4116] usb 4-1: config 0 has no interface number 0 [ 97.936188][ T17] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 97.937624][ T30] usb 6-1: config 0 has an invalid interface number: 206 but max is 0 [ 97.942765][ T4116] usb 4-1: New USB device found, idVendor=0411, idProduct=0012, bcdDevice=56.5f [ 97.950723][ T30] usb 6-1: config 0 has no interface number 0 [ 97.961234][ T4116] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 97.970007][ T30] usb 6-1: New USB device found, idVendor=0411, idProduct=0012, bcdDevice=56.5f [ 97.976883][ T5] usb 2-1: config 0 has an invalid interface number: 206 but max is 0 [ 97.984421][ T30] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 97.993310][ T5] usb 2-1: config 0 has no interface number 0 [ 98.005002][ T17] usb 3-1: config 0 descriptor?? [ 98.009764][ T5] usb 2-1: New USB device found, idVendor=0411, idProduct=0012, bcdDevice=56.5f [ 98.017829][ T30] usb 6-1: config 0 descriptor?? [ 98.020930][ T5] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 98.042526][ T3697] usb 5-1: config 0 has an invalid interface number: 206 but max is 0 [ 98.045416][ T12] usb 1-1: config 0 descriptor?? [ 98.051510][ T3697] usb 5-1: config 0 has no interface number 0 [ 98.051616][ T3697] usb 5-1: New USB device found, idVendor=0411, idProduct=0012, bcdDevice=56.5f [ 98.057530][ T4116] usb 4-1: config 0 descriptor?? [ 98.062993][ T3697] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 98.087210][ T5] usb 2-1: config 0 descriptor?? [ 98.127250][ T3697] usb 5-1: config 0 descriptor?? executing program executing program executing program [ 98.867865][ T12] rtl8150 1-1:0.206: eth1: rtl8150 is detected [ 98.891229][ T12] usb 1-1: USB disconnect, device number 2 [ 98.928909][ T17] rtl8150 3-1:0.206: eth1: rtl8150 is detected [ 98.945892][ T30] rtl8150 6-1:0.206: eth2: rtl8150 is detected [ 98.950895][ T4116] rtl8150 4-1:0.206: eth3: rtl8150 is detected executing program [ 98.986153][ T30] usb 6-1: USB disconnect, device number 2 [ 98.988101][ T5] rtl8150 2-1:0.206: eth4: rtl8150 is detected [ 99.023076][ T17] usb 3-1: USB disconnect, device number 2 executing program executing program [ 99.035792][ T5] usb 2-1: USB disconnect, device number 2 [ 99.053825][ T4116] usb 4-1: USB disconnect, device number 2 [ 99.105740][ T3697] rtl8150 5-1:0.206: eth2: rtl8150 is detected [ 99.162943][ T3697] usb 5-1: USB disconnect, device number 2 [ 99.196825][T12732] ===================================================== [ 99.203835][T12732] BUG: KMSAN: uninit-value in hex_string+0x7d8/0x8d0 [ 99.210523][T12732] CPU: 0 PID: 12732 Comm: udevd Not tainted 5.4.0-rc3+ #0 [ 99.217635][T12732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 99.227698][T12732] Call Trace: [ 99.231012][T12732] dump_stack+0x191/0x1f0 [ 99.235368][T12732] kmsan_report+0x14a/0x2f0 [ 99.239894][T12732] __msan_warning+0x73/0xf0 [ 99.244416][T12732] hex_string+0x7d8/0x8d0 [ 99.248756][T12732] pointer+0xbfe/0x1d10 [ 99.252913][T12732] ? kmsan_get_shadow_origin_ptr+0x91/0x4b0 [ 99.258816][T12732] vsnprintf+0x1c0c/0x3210 [ 99.263257][T12732] scnprintf+0x235/0x300 [ 99.267511][T12732] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 99.273594][T12732] sysfs_format_mac+0xde/0x100 [ 99.278349][T12732] address_show+0x159/0x1d0 [ 99.282843][T12732] ? link_mode_show+0x1a0/0x1a0 [ 99.287695][T12732] dev_attr_show+0xd8/0x1e0 [ 99.292549][T12732] sysfs_kf_seq_show+0x434/0x7b0 [ 99.297489][T12732] ? sysfs_kf_write+0x2a0/0x2a0 [ 99.302339][T12732] kernfs_seq_show+0x164/0x1e0 [ 99.307118][T12732] ? kernfs_seq_next+0x3e0/0x3e0 [ 99.312044][T12732] seq_read+0xac6/0x1d90 [ 99.316297][T12732] kernfs_fop_read+0x2c3/0x9a0 [ 99.321076][T12732] ? kernfs_notify_workfn+0x960/0x960 [ 99.326449][T12732] __vfs_read+0x1a9/0xc90 [ 99.330778][T12732] ? rw_verify_area+0x3a5/0x5e0 [ 99.335632][T12732] vfs_read+0x359/0x6f0 [ 99.339788][T12732] ksys_read+0x265/0x430 [ 99.344040][T12732] __se_sys_read+0x92/0xb0 [ 99.348447][T12732] __x64_sys_read+0x4a/0x70 [ 99.352941][T12732] do_syscall_64+0xb6/0x160 [ 99.357521][T12732] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 99.363399][T12732] RIP: 0033:0x7f90a0b58310 [ 99.367802][T12732] Code: 73 01 c3 48 8b 0d 28 4b 2b 00 31 d2 48 29 c2 64 89 11 48 83 c8 ff eb ea 90 90 83 3d e5 a2 2b 00 00 75 10 b8 00 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 6e 8a 01 00 48 89 04 24 [ 99.387395][T12732] RSP: 002b:00007ffdd54d89d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 99.396140][T12732] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f90a0b58310 [ 99.404097][T12732] RDX: 0000000000001000 RSI: 00007ffdd54d8e80 RDI: 0000000000000005 [ 99.412317][T12732] RBP: 00007ffdd54d9fb0 R08: 00007ffdd54d9fb0 R09: 00007f90a0bae7d0 [ 99.420279][T12732] R10: 342f346273752f33 R11: 0000000000000246 R12: 00000000024071f0 [ 99.428239][T12732] R13: 00000000024072e0 R14: 0000000000000001 R15: 0000000002410159 [ 99.436382][T12732] [ 99.438708][T12732] Uninit was stored to memory at: [ 99.443731][T12732] kmsan_internal_chain_origin+0xbd/0x170 [ 99.449436][T12732] kmsan_memcpy_memmove_metadata+0x25c/0x2e0 [ 99.455416][T12732] kmsan_memcpy_metadata+0xb/0x10 [ 99.460426][T12732] __msan_memcpy+0x56/0x70 [ 99.464836][T12732] rtl8150_probe+0x1143/0x14a0 [ 99.469592][T12732] usb_probe_interface+0xd19/0x1310 [ 99.474777][T12732] really_probe+0xd91/0x1f90 [ 99.479356][T12732] driver_probe_device+0x1ba/0x510 [ 99.484456][T12732] __device_attach_driver+0x5b8/0x790 [ 99.489827][T12732] bus_for_each_drv+0x28e/0x3b0 [ 99.494705][T12732] __device_attach+0x489/0x750 [ 99.499455][T12732] device_initial_probe+0x4a/0x60 [ 99.504474][T12732] bus_probe_device+0x131/0x390 [ 99.509311][T12732] device_add+0x25b5/0x2df0 [ 99.513804][T12732] usb_set_configuration+0x309f/0x3710 [ 99.519250][T12732] generic_probe+0xe7/0x280 [ 99.523768][T12732] usb_probe_device+0x146/0x200 [ 99.528618][T12732] really_probe+0xd91/0x1f90 [ 99.533194][T12732] driver_probe_device+0x1ba/0x510 [ 99.538307][T12732] __device_attach_driver+0x5b8/0x790 [ 99.543665][T12732] bus_for_each_drv+0x28e/0x3b0 [ 99.548519][T12732] __device_attach+0x489/0x750 [ 99.553273][T12732] device_initial_probe+0x4a/0x60 [ 99.558281][T12732] bus_probe_device+0x131/0x390 [ 99.563116][T12732] device_add+0x25b5/0x2df0 [ 99.567614][T12732] usb_new_device+0x23e5/0x2fb0 [ 99.572449][T12732] hub_event+0x581d/0x72f0 [ 99.576870][T12732] process_one_work+0x1572/0x1ef0 [ 99.581882][T12732] worker_thread+0x111b/0x2460 [ 99.586630][T12732] kthread+0x4b5/0x4f0 [ 99.590709][T12732] ret_from_fork+0x35/0x40 [ 99.595107][T12732] [ 99.597420][T12732] Local variable description: ----node_id.i@rtl8150_probe [ 99.604506][T12732] Variable was created at: [ 99.608911][T12732] rtl8150_probe+0xdc8/0x14a0 [ 99.613572][T12732] rtl8150_probe+0xdc8/0x14a0 [ 99.618227][T12732] ===================================================== [ 99.625140][T12732] Disabling lock debugging due to kernel taint [ 99.631274][T12732] Kernel panic - not syncing: panic_on_warn set ... [ 99.631277][T12736] ===================================================== [ 99.631298][T12736] BUG: KMSAN: uninit-value in hex_string+0x7d8/0x8d0 [ 99.637863][T12732] CPU: 0 PID: 12732 Comm: udevd Tainted: G B 5.4.0-rc3+ #0 [ 99.660110][T12732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 99.670154][T12732] Call Trace: [ 99.673543][T12732] dump_stack+0x191/0x1f0 [ 99.677870][T12732] panic+0x3c9/0xc1e [ 99.681779][T12732] kmsan_report+0x2e8/0x2f0 [ 99.686291][T12732] __msan_warning+0x73/0xf0 [ 99.690800][T12732] hex_string+0x7d8/0x8d0 [ 99.695133][T12732] pointer+0xbfe/0x1d10 [ 99.699291][T12732] ? kmsan_get_shadow_origin_ptr+0x91/0x4b0 [ 99.705176][T12732] vsnprintf+0x1c0c/0x3210 [ 99.709603][T12732] scnprintf+0x235/0x300 [ 99.713864][T12732] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 99.719940][T12732] sysfs_format_mac+0xde/0x100 [ 99.724714][T12732] address_show+0x159/0x1d0 [ 99.729211][T12732] ? link_mode_show+0x1a0/0x1a0 [ 99.734053][T12732] dev_attr_show+0xd8/0x1e0 [ 99.738561][T12732] sysfs_kf_seq_show+0x434/0x7b0 [ 99.743500][T12732] ? sysfs_kf_write+0x2a0/0x2a0 [ 99.748440][T12732] kernfs_seq_show+0x164/0x1e0 [ 99.753202][T12732] ? kernfs_seq_next+0x3e0/0x3e0 [ 99.758126][T12732] seq_read+0xac6/0x1d90 [ 99.762385][T12732] kernfs_fop_read+0x2c3/0x9a0 [ 99.767153][T12732] ? kernfs_notify_workfn+0x960/0x960 [ 99.772515][T12732] __vfs_read+0x1a9/0xc90 [ 99.776863][T12732] ? rw_verify_area+0x3a5/0x5e0 [ 99.781709][T12732] vfs_read+0x359/0x6f0 [ 99.785870][T12732] ksys_read+0x265/0x430 [ 99.790112][T12732] __se_sys_read+0x92/0xb0 [ 99.794521][T12732] __x64_sys_read+0x4a/0x70 [ 99.799017][T12732] do_syscall_64+0xb6/0x160 [ 99.803514][T12732] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 99.809401][T12732] RIP: 0033:0x7f90a0b58310 [ 99.814506][T12732] Code: 73 01 c3 48 8b 0d 28 4b 2b 00 31 d2 48 29 c2 64 89 11 48 83 c8 ff eb ea 90 90 83 3d e5 a2 2b 00 00 75 10 b8 00 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 6e 8a 01 00 48 89 04 24 [ 99.834124][T12732] RSP: 002b:00007ffdd54d89d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 99.842539][T12732] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f90a0b58310 [ 99.850506][T12732] RDX: 0000000000001000 RSI: 00007ffdd54d8e80 RDI: 0000000000000005 [ 99.859000][T12732] RBP: 00007ffdd54d9fb0 R08: 00007ffdd54d9fb0 R09: 00007f90a0bae7d0 [ 99.866974][T12732] R10: 342f346273752f33 R11: 0000000000000246 R12: 00000000024071f0 [ 99.874965][T12732] R13: 00000000024072e0 R14: 0000000000000001 R15: 0000000002410159 [ 99.882972][T12736] CPU: 1 PID: 12736 Comm: udevd Tainted: G B 5.4.0-rc3+ #0 [ 99.891465][T12736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 99.901517][T12736] Call Trace: [ 99.904802][T12736] dump_stack+0x191/0x1f0 [ 99.909127][T12736] kmsan_report+0x14a/0x2f0 [ 99.913636][T12736] __msan_warning+0x73/0xf0 [ 99.918130][T12736] hex_string+0x7d8/0x8d0 [ 99.922463][T12736] pointer+0xbfe/0x1d10 [ 99.926624][T12736] ? kmsan_get_shadow_origin_ptr+0x91/0x4b0 [ 99.932512][T12736] vsnprintf+0x1c0c/0x3210 [ 99.937634][T12736] scnprintf+0x235/0x300 [ 99.941886][T12736] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 99.947970][T12736] sysfs_format_mac+0xde/0x100 [ 99.952731][T12736] address_show+0x159/0x1d0 [ 99.957230][T12736] ? link_mode_show+0x1a0/0x1a0 [ 99.962099][T12736] dev_attr_show+0xd8/0x1e0 [ 99.966603][T12736] sysfs_kf_seq_show+0x434/0x7b0 [ 99.971561][T12736] ? sysfs_kf_write+0x2a0/0x2a0 [ 99.976842][T12736] kernfs_seq_show+0x164/0x1e0 [ 99.981604][T12736] ? kernfs_seq_next+0x3e0/0x3e0 [ 99.986544][T12736] seq_read+0xac6/0x1d90 [ 99.990803][T12736] kernfs_fop_read+0x2c3/0x9a0 [ 99.995568][T12736] ? kernfs_notify_workfn+0x960/0x960 [ 100.000941][T12736] __vfs_read+0x1a9/0xc90 [ 100.005284][T12736] ? rw_verify_area+0x3a5/0x5e0 [ 100.010143][T12736] vfs_read+0x359/0x6f0 [ 100.014311][T12736] ksys_read+0x265/0x430 [ 100.018560][T12736] __se_sys_read+0x92/0xb0 [ 100.022991][T12736] __x64_sys_read+0x4a/0x70 [ 100.027646][T12736] do_syscall_64+0xb6/0x160 [ 100.032152][T12736] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 100.038043][T12736] RIP: 0033:0x7f90a0b58310 [ 100.042472][T12736] Code: 73 01 c3 48 8b 0d 28 4b 2b 00 31 d2 48 29 c2 64 89 11 48 83 c8 ff eb ea 90 90 83 3d e5 a2 2b 00 00 75 10 b8 00 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 6e 8a 01 00 48 89 04 24 [ 100.062079][T12736] RSP: 002b:00007ffdd54d89d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 100.070485][T12736] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f90a0b58310 [ 100.078464][T12736] RDX: 0000000000001000 RSI: 00007ffdd54d8e80 RDI: 0000000000000005 [ 100.086698][T12736] RBP: 00007ffdd54d9fb0 R08: 00007ffdd54d9fb0 R09: 00007f90a0bae7d0 [ 100.094660][T12736] R10: 352f356273752f34 R11: 0000000000000246 R12: 0000000002407150 [ 100.102619][T12736] R13: 0000000002407240 R14: 0000000000000001 R15: 0000000002410159 [ 100.110591][T12736] [ 100.112903][T12736] Uninit was stored to memory at: [ 100.117920][T12736] kmsan_internal_chain_origin+0xbd/0x170 [ 100.123626][T12736] kmsan_memcpy_memmove_metadata+0x25c/0x2e0 [ 100.129607][T12736] kmsan_memcpy_metadata+0xb/0x10 [ 100.134645][T12736] __msan_memcpy+0x56/0x70 [ 100.139048][T12736] rtl8150_probe+0x1143/0x14a0 [ 100.143801][T12736] usb_probe_interface+0xd19/0x1310 [ 100.149100][T12736] really_probe+0xd91/0x1f90 [ 100.153690][T12736] driver_probe_device+0x1ba/0x510 [ 100.158801][T12736] __device_attach_driver+0x5b8/0x790 [ 100.164165][T12736] bus_for_each_drv+0x28e/0x3b0 [ 100.169007][T12736] __device_attach+0x489/0x750 [ 100.173941][T12736] device_initial_probe+0x4a/0x60 [ 100.178967][T12736] bus_probe_device+0x131/0x390 [ 100.183814][T12736] device_add+0x25b5/0x2df0 [ 100.188315][T12736] usb_set_configuration+0x309f/0x3710 [ 100.193759][T12736] generic_probe+0xe7/0x280 [ 100.198251][T12736] usb_probe_device+0x146/0x200 [ 100.203085][T12736] really_probe+0xd91/0x1f90 [ 100.207660][T12736] driver_probe_device+0x1ba/0x510 [ 100.212758][T12736] __device_attach_driver+0x5b8/0x790 [ 100.218129][T12736] bus_for_each_drv+0x28e/0x3b0 [ 100.222974][T12736] __device_attach+0x489/0x750 [ 100.227815][T12736] device_initial_probe+0x4a/0x60 [ 100.232831][T12736] bus_probe_device+0x131/0x390 [ 100.237766][T12736] device_add+0x25b5/0x2df0 [ 100.242255][T12736] usb_new_device+0x23e5/0x2fb0 [ 100.247091][T12736] hub_event+0x581d/0x72f0 [ 100.251670][T12736] process_one_work+0x1572/0x1ef0 [ 100.256681][T12736] worker_thread+0x111b/0x2460 [ 100.261431][T12736] kthread+0x4b5/0x4f0 [ 100.265503][T12736] ret_from_fork+0x35/0x40 [ 100.269899][T12736] [ 100.272212][T12736] Local variable description: ----node_id.i@rtl8150_probe [ 100.279297][T12736] Variable was created at: [ 100.283713][T12736] rtl8150_probe+0xdc8/0x14a0 [ 100.288386][T12736] rtl8150_probe+0xdc8/0x14a0 [ 100.293077][T12736] ===================================================== [ 101.103600][T12732] Shutting down cpus with NMI [ 101.121991][T12732] Kernel Offset: disabled [ 101.126332][T12732] Rebooting in 86400 seconds..