[....] Starting enhanced syslogd: rsyslogd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[ 109.530557][ T30] audit: type=1800 audit(1565243249.578:25): pid=12081 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[ 109.554780][ T30] audit: type=1800 audit(1565243249.608:26): pid=12081 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[ 109.605963][ T30] audit: type=1800 audit(1565243249.628:27): pid=12081 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[....] Starting OpenBSD Secure Shell server: sshd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
Debian GNU/Linux 7 syzkaller ttyS0
Warning: Permanently added '10.128.0.94' (ECDSA) to the list of known hosts.
2019/08/08 05:47:44 fuzzer started
2019/08/08 05:47:50 dialing manager at 10.128.0.26:41161
2019/08/08 05:47:51 syscalls: 2369
2019/08/08 05:47:51 code coverage: enabled
2019/08/08 05:47:51 comparison tracing: CONFIG_KCOV_ENABLE_COMPARISONS is not enabled
2019/08/08 05:47:51 extra coverage: enabled
2019/08/08 05:47:51 setuid sandbox: enabled
2019/08/08 05:47:51 namespace sandbox: enabled
2019/08/08 05:47:51 Android sandbox: /sys/fs/selinux/policy does not exist
2019/08/08 05:47:51 fault injection: enabled
2019/08/08 05:47:51 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2019/08/08 05:47:51 net packet injection: enabled
2019/08/08 05:47:51 net device setup: enabled
syzkaller login: [ 197.545028][ C0] ==================================================================
[ 197.553313][ C0] BUG: KMSAN: uninit-value in kmem_cache_alloc_node+0x5d0/0xe70
[ 197.561081][ C0] CPU: 0 PID: 12233 Comm: syz-fuzzer Not tainted 5.3.0-rc3+ #17
[ 197.568820][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 197.579014][ C0] Call Trace:
[ 197.582322][ C0]
[ 197.585229][ C0] dump_stack+0x191/0x1f0
[ 197.589679][ C0] kmsan_report+0x162/0x2d0
[ 197.594220][ C0] __msan_warning+0x75/0xe0
[ 197.598729][ C0] kmem_cache_alloc_node+0x5d0/0xe70
[ 197.604026][ C0] ? __alloc_skb+0x215/0xa10
[ 197.608883][ C0] __alloc_skb+0x215/0xa10
[ 197.613341][ C0] aoecmd_cfg+0x205/0xa80
[ 197.617801][ C0] discover_timer+0x86/0xa0
[ 197.622307][ C0] call_timer_fn+0x232/0x530
[ 197.626989][ C0] ? skbfree+0x4a0/0x4a0
[ 197.631282][ C0] __run_timers+0xcdc/0x11a0
[ 197.635876][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 197.642041][ C0] ? skbfree+0x4a0/0x4a0
[ 197.646303][ C0] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0
[ 197.652281][ C0] run_timer_softirq+0x2d/0x50
[ 197.657057][ C0] ? timers_dead_cpu+0x9d0/0x9d0
[ 197.662085][ C0] __do_softirq+0x4a1/0x83a
[ 197.666685][ C0] do_softirq_own_stack+0x49/0x80
[ 197.671692][ C0]
[ 197.674636][ C0] __local_bh_enable_ip+0x184/0x1d0
[ 197.679932][ C0] local_bh_enable+0x36/0x40
[ 197.684536][ C0] ip_finish_output2+0x20dc/0x25d0
[ 197.689640][ C0] ? __msan_metadata_ptr_for_load_2+0x10/0x20
[ 197.695718][ C0] ? nf_ct_deliver_cached_events+0x4d5/0x6e0
[ 197.701729][ C0] __ip_finish_output+0xaf8/0xda0
[ 197.706769][ C0] ip_finish_output+0x2db/0x420
[ 197.711632][ C0] ip_output+0x541/0x610
[ 197.715890][ C0] ? ip_mc_finish_output+0x6d0/0x6d0
[ 197.721181][ C0] ? ip_finish_output+0x420/0x420
[ 197.726217][ C0] __ip_queue_xmit+0x1caf/0x21f0
[ 197.731160][ C0] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0
[ 197.737144][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 197.743315][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 197.749401][ C0] ip_queue_xmit+0xcc/0xf0
[ 197.753828][ C0] ? tcp_v4_inbound_md5_hash+0xd10/0xd10
[ 197.759457][ C0] __tcp_transmit_skb+0x409e/0x5c60
[ 197.764710][ C0] __tcp_send_ack+0x701/0x840
[ 197.769400][ C0] tcp_send_ack+0x68/0x90
[ 197.773753][ C0] tcp_cleanup_rbuf+0x764/0x800
[ 197.778613][ C0] tcp_recvmsg+0x334d/0x4ff0
[ 197.783261][ C0] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0
[ 197.789349][ C0] ? tcp_mmap+0x150/0x150
[ 197.793674][ C0] ? tcp_mmap+0x150/0x150
[ 197.798191][ C0] inet_recvmsg+0x237/0x7d0
[ 197.802707][ C0] ? inet_sendpage+0x2c0/0x2c0
[ 197.807770][ C0] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0
[ 197.813761][ C0] ? inet_sendpage+0x2c0/0x2c0
[ 197.818542][ C0] ? inet_sendpage+0x2c0/0x2c0
[ 197.823333][ C0] sock_read_iter+0x5be/0x660
[ 197.828029][ C0] ? kernel_sock_ip_overhead+0x340/0x340
[ 197.833662][ C0] __vfs_read+0xa67/0xc90
[ 197.838039][ C0] vfs_read+0x359/0x6f0
[ 197.842208][ C0] ksys_read+0x265/0x430
[ 197.846468][ C0] __se_sys_read+0x92/0xb0
[ 197.850909][ C0] __x64_sys_read+0x4a/0x70
[ 197.855425][ C0] do_syscall_64+0xbc/0xf0
[ 197.859843][ C0] entry_SYSCALL_64_after_hwframe+0x63/0xe7
[ 197.865815][ C0] RIP: 0033:0x47fcb4
[ 197.869710][ C0] Code: ff ff cc cc cc cc e8 2b 41 fb ff 48 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 45 31 d2 45 31 c0 45 31 c9 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30
[ 197.889567][ C0] RSP: 002b:000000c424e22710 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 197.898234][ C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000047fcb4
[ 197.906286][ C0] RDX: 0000000000001000 RSI: 000000c420112000 RDI: 0000000000000003
[ 197.914248][ C0] RBP: 000000c424e22760 R08: 0000000000000000 R09: 0000000000000000
[ 197.922213][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 197.930178][ C0] R13: 0000000000000004 R14: 0000000000000004 R15: ffffffffffffffff
[ 197.938246][ C0]
[ 197.940562][ C0] Uninit was stored to memory at:
[ 197.945595][ C0] kmsan_internal_chain_origin+0xcc/0x150
[ 197.951306][ C0] __msan_chain_origin+0x6b/0xe0
[ 197.956238][ C0] ___slab_alloc+0x1dbc/0x1fb0
[ 197.960998][ C0] kmem_cache_alloc_node+0x769/0xe70
[ 197.966282][ C0] __alloc_skb+0x215/0xa10
[ 197.970726][ C0] aoecmd_cfg+0x205/0xa80
[ 197.975065][ C0] discover_timer+0x86/0xa0
[ 197.979563][ C0] call_timer_fn+0x232/0x530
[ 197.984150][ C0] __run_timers+0xcdc/0x11a0
[ 197.988729][ C0] run_timer_softirq+0x2d/0x50
[ 197.993487][ C0] __do_softirq+0x4a1/0x83a
[ 197.998014][ C0] do_softirq_own_stack+0x49/0x80
[ 198.003093][ C0] __local_bh_enable_ip+0x184/0x1d0
[ 198.008424][ C0] local_bh_enable+0x36/0x40
[ 198.013209][ C0] ip_finish_output2+0x20dc/0x25d0
[ 198.018435][ C0] __ip_finish_output+0xaf8/0xda0
[ 198.023503][ C0] ip_finish_output+0x2db/0x420
[ 198.028375][ C0] ip_output+0x541/0x610
[ 198.032631][ C0] __ip_queue_xmit+0x1caf/0x21f0
[ 198.037566][ C0] ip_queue_xmit+0xcc/0xf0
[ 198.041981][ C0] __tcp_transmit_skb+0x409e/0x5c60
[ 198.047174][ C0] __tcp_send_ack+0x701/0x840
[ 198.051848][ C0] tcp_send_ack+0x68/0x90
[ 198.056171][ C0] tcp_cleanup_rbuf+0x764/0x800
[ 198.061018][ C0] tcp_recvmsg+0x334d/0x4ff0
[ 198.065635][ C0] inet_recvmsg+0x237/0x7d0
[ 198.070139][ C0] sock_read_iter+0x5be/0x660
[ 198.074913][ C0] __vfs_read+0xa67/0xc90
[ 198.079243][ C0] vfs_read+0x359/0x6f0
[ 198.083393][ C0] ksys_read+0x265/0x430
[ 198.087659][ C0] __se_sys_read+0x92/0xb0
[ 198.092269][ C0] __x64_sys_read+0x4a/0x70
[ 198.096765][ C0] do_syscall_64+0xbc/0xf0
[ 198.101176][ C0] entry_SYSCALL_64_after_hwframe+0x63/0xe7
[ 198.107049][ C0]
[ 198.109363][ C0] Uninit was created at:
[ 198.113600][ C0] kmsan_internal_poison_shadow+0x53/0xa0
[ 198.128481][ C0] kmsan_slab_free+0x8d/0x100
[ 198.133161][ C0] kmem_cache_free_bulk+0x3ad9/0x3f50
[ 198.138542][ C0] __kfree_skb_flush+0xb0/0x100
[ 198.143387][ C0] net_rx_action+0x1908/0x1950
[ 198.148325][ C0] __do_softirq+0x4a1/0x83a
[ 198.152831][ C0] irq_exit+0x230/0x280
[ 198.156986][ C0] do_IRQ+0x20d/0x3a0
[ 198.160959][ C0] ret_from_intr+0x0/0x33
[ 198.165276][ C0] kmsan_get_shadow_origin_ptr+0x172/0x3a0
[ 198.171079][ C0] __msan_metadata_ptr_for_load_1+0x10/0x20
[ 198.176966][ C0] __tcp_ack_snd_check+0x3ff/0xb40
[ 198.182252][ C0] tcp_rcv_established+0x2d7b/0x31f0
[ 198.187534][ C0] tcp_v4_do_rcv+0x684/0xd70
[ 198.192117][ C0] __release_sock+0x448/0x640
[ 198.196789][ C0] release_sock+0x99/0x2a0
[ 198.201287][ C0] tcp_recvmsg+0x335f/0x4ff0
[ 198.205882][ C0] inet_recvmsg+0x237/0x7d0
[ 198.210397][ C0] sock_read_iter+0x5be/0x660
[ 198.215069][ C0] __vfs_read+0xa67/0xc90
[ 198.219492][ C0] vfs_read+0x359/0x6f0
[ 198.223663][ C0] ksys_read+0x265/0x430
[ 198.227907][ C0] __se_sys_read+0x92/0xb0
[ 198.232332][ C0] __x64_sys_read+0x4a/0x70
[ 198.237108][ C0] do_syscall_64+0xbc/0xf0
[ 198.241593][ C0] entry_SYSCALL_64_after_hwframe+0x63/0xe7
[ 198.247489][ C0] ==================================================================
[ 198.255567][ C0] Disabling lock debugging due to kernel taint
[ 198.261709][ C0] Kernel panic - not syncing: panic_on_warn set ...
[ 198.268295][ C0] CPU: 0 PID: 12233 Comm: syz-fuzzer Tainted: G B 5.3.0-rc3+ #17
[ 198.277295][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 198.287650][ C0] Call Trace:
[ 198.290937][ C0]
[ 198.293788][ C0] dump_stack+0x191/0x1f0
[ 198.298591][ C0] panic+0x3c9/0xc1e
[ 198.302515][ C0] kmsan_report+0x2ca/0x2d0
[ 198.307030][ C0] __msan_warning+0x75/0xe0
[ 198.311546][ C0] kmem_cache_alloc_node+0x5d0/0xe70
[ 198.316921][ C0] ? __alloc_skb+0x215/0xa10
[ 198.321525][ C0] __alloc_skb+0x215/0xa10
[ 198.325954][ C0] aoecmd_cfg+0x205/0xa80
[ 198.330295][ C0] discover_timer+0x86/0xa0
[ 198.335143][ C0] call_timer_fn+0x232/0x530
[ 198.339747][ C0] ? skbfree+0x4a0/0x4a0
[ 198.343989][ C0] __run_timers+0xcdc/0x11a0
[ 198.348782][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 198.354850][ C0] ? skbfree+0x4a0/0x4a0
[ 198.359193][ C0] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0
[ 198.365306][ C0] run_timer_softirq+0x2d/0x50
[ 198.370103][ C0] ? timers_dead_cpu+0x9d0/0x9d0
[ 198.375058][ C0] __do_softirq+0x4a1/0x83a
[ 198.379596][ C0] do_softirq_own_stack+0x49/0x80
[ 198.384613][ C0]
[ 198.387552][ C0] __local_bh_enable_ip+0x184/0x1d0
[ 198.392785][ C0] local_bh_enable+0x36/0x40
[ 198.397576][ C0] ip_finish_output2+0x20dc/0x25d0
[ 198.402779][ C0] ? __msan_metadata_ptr_for_load_2+0x10/0x20
[ 198.408845][ C0] ? nf_ct_deliver_cached_events+0x4d5/0x6e0
[ 198.414944][ C0] __ip_finish_output+0xaf8/0xda0
[ 198.419999][ C0] ip_finish_output+0x2db/0x420
[ 198.424869][ C0] ip_output+0x541/0x610
[ 198.429227][ C0] ? ip_mc_finish_output+0x6d0/0x6d0
[ 198.434597][ C0] ? ip_finish_output+0x420/0x420
[ 198.439726][ C0] __ip_queue_xmit+0x1caf/0x21f0
[ 198.444661][ C0] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0
[ 198.450818][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 198.456884][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 198.462966][ C0] ip_queue_xmit+0xcc/0xf0
[ 198.467474][ C0] ? tcp_v4_inbound_md5_hash+0xd10/0xd10
[ 198.473103][ C0] __tcp_transmit_skb+0x409e/0x5c60
[ 198.478337][ C0] __tcp_send_ack+0x701/0x840
[ 198.483115][ C0] tcp_send_ack+0x68/0x90
[ 198.487445][ C0] tcp_cleanup_rbuf+0x764/0x800
[ 198.492389][ C0] tcp_recvmsg+0x334d/0x4ff0
[ 198.497031][ C0] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0
[ 198.503009][ C0] ? tcp_mmap+0x150/0x150
[ 198.507356][ C0] ? tcp_mmap+0x150/0x150
[ 198.511686][ C0] inet_recvmsg+0x237/0x7d0
[ 198.516194][ C0] ? inet_sendpage+0x2c0/0x2c0
[ 198.520956][ C0] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0
[ 198.527277][ C0] ? inet_sendpage+0x2c0/0x2c0
[ 198.532043][ C0] ? inet_sendpage+0x2c0/0x2c0
[ 198.536812][ C0] sock_read_iter+0x5be/0x660
[ 198.541508][ C0] ? kernel_sock_ip_overhead+0x340/0x340
[ 198.547167][ C0] __vfs_read+0xa67/0xc90
[ 198.551573][ C0] vfs_read+0x359/0x6f0
[ 198.555871][ C0] ksys_read+0x265/0x430
[ 198.560440][ C0] __se_sys_read+0x92/0xb0
[ 198.564901][ C0] __x64_sys_read+0x4a/0x70
[ 198.569430][ C0] do_syscall_64+0xbc/0xf0
[ 198.574133][ C0] entry_SYSCALL_64_after_hwframe+0x63/0xe7
[ 198.581001][ C0] RIP: 0033:0x47fcb4
[ 198.584903][ C0] Code: ff ff cc cc cc cc e8 2b 41 fb ff 48 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 45 31 d2 45 31 c0 45 31 c9 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30
[ 198.604532][ C0] RSP: 002b:000000c424e22710 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 198.612943][ C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000047fcb4
[ 198.620913][ C0] RDX: 0000000000001000 RSI: 000000c420112000 RDI: 0000000000000003
[ 198.628884][ C0] RBP: 000000c424e22760 R08: 0000000000000000 R09: 0000000000000000
[ 198.636850][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 198.644822][ C0] R13: 0000000000000004 R14: 0000000000000004 R15: ffffffffffffffff
[ 198.654055][ C0] Kernel Offset: disabled
[ 198.658415][ C0] Rebooting in 86400 seconds..