[....] Starting enhanced syslogd: rsyslogd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[ 75.824819][ T32] audit: type=1800 audit(1569342248.871:25): pid=11368 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[ 75.848009][ T32] audit: type=1800 audit(1569342248.901:26): pid=11368 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[ 75.884747][ T32] audit: type=1800 audit(1569342248.921:27): pid=11368 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[....] Starting OpenBSD Secure Shell server: sshd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
Debian GNU/Linux 7 syzkaller ttyS0
Warning: Permanently added '10.128.10.22' (ECDSA) to the list of known hosts.
2019/09/24 16:24:23 fuzzer started
2019/09/24 16:24:27 dialing manager at 10.128.0.26:32923
2019/09/24 16:24:27 syscalls: 2382
2019/09/24 16:24:27 code coverage: enabled
2019/09/24 16:24:27 comparison tracing: CONFIG_KCOV_ENABLE_COMPARISONS is not enabled
2019/09/24 16:24:27 extra coverage: enabled
2019/09/24 16:24:27 setuid sandbox: enabled
2019/09/24 16:24:27 namespace sandbox: enabled
2019/09/24 16:24:27 Android sandbox: /sys/fs/selinux/policy does not exist
2019/09/24 16:24:27 fault injection: enabled
2019/09/24 16:24:27 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2019/09/24 16:24:27 net packet injection: enabled
2019/09/24 16:24:27 net device setup: enabled
syzkaller login: [ 197.533170][ C1] ==================================================================
[ 197.541324][ C1] BUG: KMSAN: uninit-value in kmem_cache_alloc_node+0x5d0/0xe70
[ 197.548991][ C1] CPU: 1 PID: 11521 Comm: syz-fuzzer Not tainted 5.3.0-rc7+ #0
[ 197.556507][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 197.566631][ C1] Call Trace:
[ 197.569896][ C1]
[ 197.572743][ C1] dump_stack+0x191/0x1f0
[ 197.577054][ C1] kmsan_report+0x162/0x2d0
[ 197.581538][ C1] __msan_warning+0x75/0xe0
[ 197.586018][ C1] kmem_cache_alloc_node+0x5d0/0xe70
[ 197.591282][ C1] ? kmsan_get_shadow_origin_ptr+0x71/0x4c0
[ 197.597161][ C1] ? __alloc_skb+0x215/0xa10
[ 197.601746][ C1] __alloc_skb+0x215/0xa10
[ 197.606143][ C1] ? kmsan_get_shadow_origin_ptr+0x1/0x4c0
[ 197.611963][ C1] aoecmd_cfg+0x205/0xa80
[ 197.616300][ C1] discover_timer+0x86/0xa0
[ 197.620787][ C1] call_timer_fn+0x232/0x530
[ 197.625399][ C1] ? skbfree+0x4a0/0x4a0
[ 197.629628][ C1] __run_timers+0xcdc/0x11a0
[ 197.634212][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 197.640261][ C1] ? skbfree+0x4a0/0x4a0
[ 197.644489][ C1] ? timers_dead_cpu+0x9d0/0x9d0
[ 197.649419][ C1] ? kmsan_get_shadow_origin_ptr+0x71/0x4c0
[ 197.655303][ C1] run_timer_softirq+0x2d/0x50
[ 197.660049][ C1] ? timers_dead_cpu+0x9d0/0x9d0
[ 197.664969][ C1] __do_softirq+0x4a1/0x83a
[ 197.669462][ C1] irq_exit+0x230/0x280
[ 197.673597][ C1] exiting_irq+0xe/0x10
[ 197.677783][ C1] smp_apic_timer_interrupt+0x48/0x70
[ 197.683134][ C1] apic_timer_interrupt+0x2e/0x40
[ 197.688144][ C1]
[ 197.691084][ C1] RIP: 0010:kmsan_get_shadow_origin_ptr+0x43a/0x4c0
[ 197.697652][ C1] Code: 48 8b 0c cd 60 8e 4e 8f 4c 8d a4 08 a0 e1 08 00 e9 2a fc ff ff 48 b8 00 00 00 80 7f 77 00 00 48 01 f0 48 c1 e8 0c 48 8d 0c 80 <48> c1 e1 04 48 b8 00 00 00 00 00 ea ff ff 48 01 c8 0f 85 62 fd ff
[ 197.717328][ C1] RSP: 0018:ffff8880af39f628 EFLAGS: 00000207 ORIG_RAX: ffffffffffffff13
[ 197.725818][ C1] RAX: 00000000000af39f RBX: ffff8880af39f818 RCX: 000000000036c21b
[ 197.733767][ C1] RDX: ffffea000000000f RSI: ffff88812f39f898 RDI: 00000000af39f898
[ 197.741717][ C1] RBP: ffff8880af39f660 R08: 0000000000000000 R09: 0000000000000000
[ 197.749693][ C1] R10: 0000000000000000 R11: ffffffff8182a660 R12: ffffffff902c0000
[ 197.757673][ C1] R13: ffff8880af39f898 R14: ffff8880af39f898 R15: 0000000000000008
[ 197.765648][ C1] ? stack_trace_save+0x1b0/0x1b0
[ 197.770670][ C1] ? kmsan_get_shadow_origin_ptr+0x71/0x4c0
[ 197.776541][ C1] __msan_metadata_ptr_for_store_8+0x13/0x20
[ 197.782497][ C1] stack_trace_consume_entry+0x1f5/0x320
[ 197.788106][ C1] ? kmsan_memcpy_memmove_metadata+0x25b/0x2d0
[ 197.794255][ C1] ? kmsan_memcpy_memmove_metadata+0x25b/0x2d0
[ 197.800390][ C1] arch_stack_walk+0x30f/0x3e0
[ 197.805149][ C1] ? stack_trace_save+0x1b0/0x1b0
[ 197.810206][ C1] ? kmsan_memcpy_memmove_metadata+0x25b/0x2d0
[ 197.816348][ C1] stack_trace_save+0x11c/0x1b0
[ 197.821227][ C1] kmsan_internal_chain_origin+0xcc/0x150
[ 197.826964][ C1] ? kmsan_internal_chain_origin+0xcc/0x150
[ 197.832966][ C1] ? kmsan_memcpy_memmove_metadata+0x25b/0x2d0
[ 197.839105][ C1] ? kmsan_memcpy_metadata+0xb/0x10
[ 197.844299][ C1] ? __msan_memcpy+0x56/0x70
[ 197.848873][ C1] ? sock_read_iter+0x47c/0x660
[ 197.853703][ C1] ? __vfs_read+0xa67/0xc90
[ 197.858194][ C1] ? vfs_read+0x359/0x6f0
[ 197.862500][ C1] ? ksys_read+0x265/0x430
[ 197.866892][ C1] ? __se_sys_read+0x92/0xb0
[ 197.871455][ C1] ? __x64_sys_read+0x4a/0x70
[ 197.876111][ C1] ? do_syscall_64+0xbc/0xf0
[ 197.880683][ C1] ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[ 197.886740][ C1] ? kmsan_get_shadow_origin_ptr+0x71/0x4c0
[ 197.892610][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 197.898694][ C1] ? aa_file_perm+0x66e/0x25e0
[ 197.903437][ C1] kmsan_memcpy_memmove_metadata+0x25b/0x2d0
[ 197.909404][ C1] kmsan_memcpy_metadata+0xb/0x10
[ 197.914402][ C1] __msan_memcpy+0x56/0x70
[ 197.918795][ C1] sock_read_iter+0x116/0x660
[ 197.923451][ C1] ? kmsan_get_shadow_origin_ptr+0x71/0x4c0
[ 197.929332][ C1] ? kernel_sock_ip_overhead+0x340/0x340
[ 197.934940][ C1] __vfs_read+0xa67/0xc90
[ 197.939257][ C1] vfs_read+0x359/0x6f0
[ 197.943391][ C1] ? kmsan_get_shadow_origin_ptr+0x71/0x4c0
[ 197.949270][ C1] ksys_read+0x265/0x430
[ 197.953494][ C1] __se_sys_read+0x92/0xb0
[ 197.957902][ C1] __x64_sys_read+0x4a/0x70
[ 197.962392][ C1] do_syscall_64+0xbc/0xf0
[ 197.966785][ C1] entry_SYSCALL_64_after_hwframe+0x63/0xe7
[ 197.972651][ C1] RIP: 0033:0x47fd44
[ 197.976519][ C1] Code: ff ff cc cc cc cc e8 9b 40 fb ff 48 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 45 31 d2 45 31 c0 45 31 c9 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30
[ 197.996096][ C1] RSP: 002b:000000c42036b710 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 198.004496][ C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000047fd44
[ 198.012462][ C1] RDX: 0000000000001000 RSI: 000000c4203d4000 RDI: 0000000000000003
[ 198.020413][ C1] RBP: 000000c42036b760 R08: 0000000000000000 R09: 0000000000000000
[ 198.028363][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 198.036322][ C1] R13: 0000000000000004 R14: 0000000000000004 R15: ffffffffffffffff
[ 198.044277][ C1]
[ 198.046575][ C1] Uninit was stored to memory at:
[ 198.051581][ C1] kmsan_internal_chain_origin+0xcc/0x150
[ 198.057274][ C1] __msan_chain_origin+0x6b/0xe0
[ 198.062195][ C1] ___slab_alloc+0x1dbc/0x1fb0
[ 198.066944][ C1] kmem_cache_alloc_node+0x769/0xe70
[ 198.072206][ C1] __alloc_skb+0x215/0xa10
[ 198.076597][ C1] aoecmd_cfg+0x205/0xa80
[ 198.080898][ C1] discover_timer+0x86/0xa0
[ 198.085387][ C1] call_timer_fn+0x232/0x530
[ 198.089950][ C1] __run_timers+0xcdc/0x11a0
[ 198.094517][ C1] run_timer_softirq+0x2d/0x50
[ 198.099254][ C1] __do_softirq+0x4a1/0x83a
[ 198.103731][ C1] irq_exit+0x230/0x280
[ 198.107861][ C1] exiting_irq+0xe/0x10
[ 198.112001][ C1] smp_apic_timer_interrupt+0x48/0x70
[ 198.117351][ C1] apic_timer_interrupt+0x2e/0x40
[ 198.122349][ C1] kmsan_get_shadow_origin_ptr+0x43a/0x4c0
[ 198.128128][ C1] __msan_metadata_ptr_for_store_8+0x13/0x20
[ 198.134112][ C1] stack_trace_consume_entry+0x1f5/0x320
[ 198.139731][ C1] arch_stack_walk+0x30f/0x3e0
[ 198.144473][ C1] stack_trace_save+0x11c/0x1b0
[ 198.149298][ C1] kmsan_internal_chain_origin+0xcc/0x150
[ 198.155004][ C1] kmsan_memcpy_memmove_metadata+0x25b/0x2d0
[ 198.160967][ C1] kmsan_memcpy_metadata+0xb/0x10
[ 198.165972][ C1] __msan_memcpy+0x56/0x70
[ 198.170368][ C1] sock_read_iter+0x116/0x660
[ 198.175017][ C1] __vfs_read+0xa67/0xc90
[ 198.179342][ C1] vfs_read+0x359/0x6f0
[ 198.183475][ C1] ksys_read+0x265/0x430
[ 198.187694][ C1] __se_sys_read+0x92/0xb0
[ 198.192093][ C1] __x64_sys_read+0x4a/0x70
[ 198.196580][ C1] do_syscall_64+0xbc/0xf0
[ 198.200984][ C1] entry_SYSCALL_64_after_hwframe+0x63/0xe7
[ 198.206851][ C1]
[ 198.209158][ C1] Uninit was created at:
[ 198.213380][ C1] kmsan_internal_poison_shadow+0x58/0xb0
[ 198.219075][ C1] kmsan_slab_free+0x8d/0x100
[ 198.223748][ C1] kmem_cache_free_bulk+0x3ad9/0x3f50
[ 198.229116][ C1] __kfree_skb_flush+0xb0/0x100
[ 198.233944][ C1] net_rx_action+0x1908/0x1950
[ 198.238683][ C1] __do_softirq+0x4a1/0x83a
[ 198.243180][ C1] irq_exit+0x230/0x280
[ 198.247309][ C1] do_IRQ+0x20d/0x3a0
[ 198.251265][ C1] ret_from_intr+0x0/0x33
[ 198.255579][ C1] kmsan_slab_free+0xac/0x100
[ 198.260237][ C1] kmem_cache_free+0x2d1/0x2b70
[ 198.265070][ C1] kfree_skb_partial+0x99/0xd0
[ 198.269815][ C1] tcp_rcv_established+0x2dda/0x31f0
[ 198.275077][ C1] tcp_v4_do_rcv+0x684/0xd70
[ 198.279653][ C1] __release_sock+0x448/0x640
[ 198.284306][ C1] release_sock+0x99/0x2a0
[ 198.288708][ C1] tcp_recvmsg+0x335f/0x4ff0
[ 198.293273][ C1] inet_recvmsg+0x237/0x7d0
[ 198.297752][ C1] sock_read_iter+0x5be/0x660
[ 198.302419][ C1] __vfs_read+0xa67/0xc90
[ 198.306725][ C1] vfs_read+0x359/0x6f0
[ 198.310862][ C1] ksys_read+0x265/0x430
[ 198.315075][ C1] __se_sys_read+0x92/0xb0
[ 198.319467][ C1] __x64_sys_read+0x4a/0x70
[ 198.323947][ C1] do_syscall_64+0xbc/0xf0
[ 198.328350][ C1] entry_SYSCALL_64_after_hwframe+0x63/0xe7
[ 198.334214][ C1] ==================================================================
[ 198.342257][ C1] Disabling lock debugging due to kernel taint
[ 198.348384][ C1] Kernel panic - not syncing: panic_on_warn set ...
[ 198.354951][ C1] CPU: 1 PID: 11521 Comm: syz-fuzzer Tainted: G B 5.3.0-rc7+ #0
[ 198.363863][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 198.373895][ C1] Call Trace:
[ 198.377161][ C1]
[ 198.380008][ C1] dump_stack+0x191/0x1f0
[ 198.384321][ C1] panic+0x3c9/0xc1e
[ 198.388215][ C1] kmsan_report+0x2ca/0x2d0
[ 198.392696][ C1] __msan_warning+0x75/0xe0
[ 198.397194][ C1] kmem_cache_alloc_node+0x5d0/0xe70
[ 198.402467][ C1] ? kmsan_get_shadow_origin_ptr+0x71/0x4c0
[ 198.408338][ C1] ? __alloc_skb+0x215/0xa10
[ 198.412923][ C1] __alloc_skb+0x215/0xa10
[ 198.417327][ C1] ? kmsan_get_shadow_origin_ptr+0x1/0x4c0
[ 198.423134][ C1] aoecmd_cfg+0x205/0xa80
[ 198.427472][ C1] discover_timer+0x86/0xa0
[ 198.431970][ C1] call_timer_fn+0x232/0x530
[ 198.436559][ C1] ? skbfree+0x4a0/0x4a0
[ 198.440787][ C1] __run_timers+0xcdc/0x11a0
[ 198.445358][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 198.451407][ C1] ? skbfree+0x4a0/0x4a0
[ 198.455641][ C1] ? timers_dead_cpu+0x9d0/0x9d0
[ 198.460579][ C1] ? kmsan_get_shadow_origin_ptr+0x71/0x4c0
[ 198.466449][ C1] run_timer_softirq+0x2d/0x50
[ 198.471203][ C1] ? timers_dead_cpu+0x9d0/0x9d0
[ 198.476142][ C1] __do_softirq+0x4a1/0x83a
[ 198.480637][ C1] irq_exit+0x230/0x280
[ 198.484820][ C1] exiting_irq+0xe/0x10
[ 198.488955][ C1] smp_apic_timer_interrupt+0x48/0x70
[ 198.494428][ C1] apic_timer_interrupt+0x2e/0x40
[ 198.499440][ C1]
[ 198.502387][ C1] RIP: 0010:kmsan_get_shadow_origin_ptr+0x43a/0x4c0
[ 198.508956][ C1] Code: 48 8b 0c cd 60 8e 4e 8f 4c 8d a4 08 a0 e1 08 00 e9 2a fc ff ff 48 b8 00 00 00 80 7f 77 00 00 48 01 f0 48 c1 e8 0c 48 8d 0c 80 <48> c1 e1 04 48 b8 00 00 00 00 00 ea ff ff 48 01 c8 0f 85 62 fd ff
[ 198.528540][ C1] RSP: 0018:ffff8880af39f628 EFLAGS: 00000207 ORIG_RAX: ffffffffffffff13
[ 198.536938][ C1] RAX: 00000000000af39f RBX: ffff8880af39f818 RCX: 000000000036c21b
[ 198.544906][ C1] RDX: ffffea000000000f RSI: ffff88812f39f898 RDI: 00000000af39f898
[ 198.552866][ C1] RBP: ffff8880af39f660 R08: 0000000000000000 R09: 0000000000000000
[ 198.560826][ C1] R10: 0000000000000000 R11: ffffffff8182a660 R12: ffffffff902c0000
[ 198.568877][ C1] R13: ffff8880af39f898 R14: ffff8880af39f898 R15: 0000000000000008
[ 198.576849][ C1] ? stack_trace_save+0x1b0/0x1b0
[ 198.581877][ C1] ? kmsan_get_shadow_origin_ptr+0x71/0x4c0
[ 198.587933][ C1] __msan_metadata_ptr_for_store_8+0x13/0x20
[ 198.593904][ C1] stack_trace_consume_entry+0x1f5/0x320
[ 198.599514][ C1] ? kmsan_memcpy_memmove_metadata+0x25b/0x2d0
[ 198.605656][ C1] ? kmsan_memcpy_memmove_metadata+0x25b/0x2d0
[ 198.611785][ C1] arch_stack_walk+0x30f/0x3e0
[ 198.616535][ C1] ? stack_trace_save+0x1b0/0x1b0
[ 198.621539][ C1] ? kmsan_memcpy_memmove_metadata+0x25b/0x2d0
[ 198.627675][ C1] stack_trace_save+0x11c/0x1b0
[ 198.632505][ C1] kmsan_internal_chain_origin+0xcc/0x150
[ 198.638200][ C1] ? kmsan_internal_chain_origin+0xcc/0x150
[ 198.644087][ C1] ? kmsan_memcpy_memmove_metadata+0x25b/0x2d0
[ 198.650240][ C1] ? kmsan_memcpy_metadata+0xb/0x10
[ 198.655431][ C1] ? __msan_memcpy+0x56/0x70
[ 198.660005][ C1] ? sock_read_iter+0x47c/0x660
[ 198.664833][ C1] ? __vfs_read+0xa67/0xc90
[ 198.669322][ C1] ? vfs_read+0x359/0x6f0
[ 198.673628][ C1] ? ksys_read+0x265/0x430
[ 198.678023][ C1] ? __se_sys_read+0x92/0xb0
[ 198.682592][ C1] ? __x64_sys_read+0x4a/0x70
[ 198.687246][ C1] ? do_syscall_64+0xbc/0xf0
[ 198.691857][ C1] ? entry_SYSCALL_64_after_hwframe+0x63/0xe7
[ 198.697920][ C1] ? kmsan_get_shadow_origin_ptr+0x71/0x4c0
[ 198.703791][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 198.709838][ C1] ? aa_file_perm+0x66e/0x25e0
[ 198.714591][ C1] kmsan_memcpy_memmove_metadata+0x25b/0x2d0
[ 198.720578][ C1] kmsan_memcpy_metadata+0xb/0x10
[ 198.725624][ C1] __msan_memcpy+0x56/0x70
[ 198.730030][ C1] sock_read_iter+0x116/0x660
[ 198.734826][ C1] ? kmsan_get_shadow_origin_ptr+0x71/0x4c0
[ 198.740704][ C1] ? kernel_sock_ip_overhead+0x340/0x340
[ 198.746586][ C1] __vfs_read+0xa67/0xc90
[ 198.751045][ C1] vfs_read+0x359/0x6f0
[ 198.755213][ C1] ? kmsan_get_shadow_origin_ptr+0x71/0x4c0
[ 198.761111][ C1] ksys_read+0x265/0x430
[ 198.765359][ C1] __se_sys_read+0x92/0xb0
[ 198.769760][ C1] __x64_sys_read+0x4a/0x70
[ 198.774242][ C1] do_syscall_64+0xbc/0xf0
[ 198.778638][ C1] entry_SYSCALL_64_after_hwframe+0x63/0xe7
[ 198.784504][ C1] RIP: 0033:0x47fd44
[ 198.788379][ C1] Code: ff ff cc cc cc cc e8 9b 40 fb ff 48 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 45 31 d2 45 31 c0 45 31 c9 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30
[ 198.808921][ C1] RSP: 002b:000000c42036b710 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 198.817631][ C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000047fd44
[ 198.825588][ C1] RDX: 0000000000001000 RSI: 000000c4203d4000 RDI: 0000000000000003
[ 198.833543][ C1] RBP: 000000c42036b760 R08: 0000000000000000 R09: 0000000000000000
[ 198.841532][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 198.849486][ C1] R13: 0000000000000004 R14: 0000000000000004 R15: ffffffffffffffff
[ 198.858990][ C1] Kernel Offset: disabled
[ 198.863329][ C1] Rebooting in 86400 seconds..