[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[  100.630375][   T31] audit: type=1800 audit(1565099880.706:25): pid=11393 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[  100.662850][   T31] audit: type=1800 audit(1565099880.736:26): pid=11393 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[  100.702568][   T31] audit: type=1800 audit(1565099880.766:27): pid=11393 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.230' (ECDSA) to the list of known hosts.
2019/08/06 13:58:15 fuzzer started
2019/08/06 13:58:21 dialing manager at 10.128.0.26:36487
2019/08/06 13:58:22 syscalls: 2367
2019/08/06 13:58:22 code coverage: enabled
2019/08/06 13:58:22 comparison tracing: CONFIG_KCOV_ENABLE_COMPARISONS is not enabled
2019/08/06 13:58:22 extra coverage: enabled
2019/08/06 13:58:22 setuid sandbox: enabled
2019/08/06 13:58:22 namespace sandbox: enabled
2019/08/06 13:58:22 Android sandbox: /sys/fs/selinux/policy does not exist
2019/08/06 13:58:22 fault injection: enabled
2019/08/06 13:58:22 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2019/08/06 13:58:22 net packet injection: enabled
2019/08/06 13:58:22 net device setup: enabled
syzkaller login: [  258.943961][    C1] ==================================================================
[  258.953288][    C1] BUG: KMSAN: uninit-value in kmem_cache_alloc_node+0x5d0/0xe70
[  258.961323][    C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 5.3.0-rc3+ #16
[  258.969331][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  258.979585][    C1] Call Trace:
[  258.982898][    C1]  <IRQ>
[  258.985879][    C1]  dump_stack+0x191/0x1f0
[  258.990257][    C1]  kmsan_report+0x162/0x2d0
[  258.994986][    C1]  __msan_warning+0x75/0xe0
[  258.999976][    C1]  kmem_cache_alloc_node+0x5d0/0xe70
[  259.005607][    C1]  ? __alloc_skb+0x215/0xa10
[  259.011366][    C1]  __alloc_skb+0x215/0xa10
[  259.016105][    C1]  aoecmd_cfg+0x205/0xa80
[  259.020591][    C1]  discover_timer+0x86/0xa0
[  259.025120][    C1]  call_timer_fn+0x232/0x530
[  259.029939][    C1]  ? skbfree+0x4a0/0x4a0
[  259.034247][    C1]  __run_timers+0xcdc/0x11a0
[  259.039533][    C1]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  259.045979][    C1]  ? skbfree+0x4a0/0x4a0
[  259.050292][    C1]  ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0
[  259.056596][    C1]  run_timer_softirq+0x2d/0x50
[  259.061398][    C1]  ? timers_dead_cpu+0x9d0/0x9d0
[  259.067220][    C1]  __do_softirq+0x4a1/0x83a
[  259.072232][    C1]  irq_exit+0x230/0x280
[  259.076545][    C1]  exiting_irq+0xe/0x10
[  259.081457][    C1]  smp_apic_timer_interrupt+0x48/0x70
[  259.087159][    C1]  apic_timer_interrupt+0x2e/0x40
[  259.092208][    C1]  </IRQ>
[  259.095344][    C1] RIP: 0010:default_idle+0x53/0x90
[  259.100472][    C1] Code: 43 51 ed f2 44 8b 35 f4 c0 d3 01 48 c7 c7 78 c5 25 90 e8 10 3c b3 f3 83 38 00 75 31 45 85 f6 7e 07 0f 00 2d 6f 4a 4f 00 fb f4 <65> 8b 35 8e ae b0 71 c7 03 00 00 00 00 c7 43 08 00 00 00 00 bf ff
[  259.120336][    C1] RSP: 0018:ffff8881280cfe10 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
[  259.128774][    C1] RAX: ffff888217c46578 RBX: ffff88812d7e89a0 RCX: ccccccccccccd000
[  259.136777][    C1] RDX: ffff888207e3f578 RSI: ffffea000a76d5e0 RDI: ffffffff9025c578
[  259.145193][    C1] RBP: ffff8881280cfe20 R08: ffffea000000000f R09: ffff88812fffb000
[  259.153187][    C1] R10: 0000000000000004 R11: ffffffff8e520450 R12: 0000000000000001
[  259.161178][    C1] R13: 0000000000000000 R14: 0000000000000000 R15: ffff88812d7e89a0
[  259.169218][    C1]  ? __cpuidle_text_start+0x8/0x8
[  259.174287][    C1]  ? __cpuidle_text_start+0x8/0x8
[  259.179341][    C1]  arch_cpu_idle+0x25/0x30
[  259.183781][    C1]  do_idle+0x1d7/0x790
[  259.187889][    C1]  cpu_startup_entry+0x45/0x50
[  259.192960][    C1]  ? setup_APIC_timer+0x210/0x210
[  259.198012][    C1]  start_secondary+0x370/0x470
[  259.202817][    C1]  secondary_startup_64+0xa4/0xb0
[  259.207873][    C1] 
[  259.210206][    C1] Uninit was stored to memory at:
[  259.215257][    C1]  kmsan_internal_chain_origin+0xcc/0x150
[  259.220996][    C1]  __msan_chain_origin+0x6b/0xe0
[  259.225955][    C1]  ___slab_alloc+0x1dbc/0x1fb0
[  259.230771][    C1]  kmem_cache_alloc_node+0x769/0xe70
[  259.236100][    C1]  __alloc_skb+0x215/0xa10
[  259.240531][    C1]  aoecmd_cfg+0x205/0xa80
[  259.244879][    C1]  discover_timer+0x86/0xa0
[  259.249397][    C1]  call_timer_fn+0x232/0x530
[  259.254001][    C1]  __run_timers+0xcdc/0x11a0
[  259.258605][    C1]  run_timer_softirq+0x2d/0x50
[  259.263382][    C1]  __do_softirq+0x4a1/0x83a
[  259.267898][    C1]  irq_exit+0x230/0x280
[  259.272064][    C1]  exiting_irq+0xe/0x10
[  259.276280][    C1]  smp_apic_timer_interrupt+0x48/0x70
[  259.281675][    C1]  apic_timer_interrupt+0x2e/0x40
[  259.286716][    C1]  default_idle+0x53/0x90
[  259.291070][    C1]  arch_cpu_idle+0x25/0x30
[  259.295497][    C1]  do_idle+0x1d7/0x790
[  259.299578][    C1]  cpu_startup_entry+0x45/0x50
[  259.304357][    C1]  start_secondary+0x370/0x470
[  259.309157][    C1]  secondary_startup_64+0xa4/0xb0
[  259.314178][    C1] 
[  259.317207][    C1] Uninit was created at:
[  259.321493][    C1]  kmsan_internal_poison_shadow+0x53/0xa0
[  259.327265][    C1]  kmsan_slab_free+0x8d/0x100
[  259.331987][    C1]  kmem_cache_free_bulk+0x3ad9/0x3f50
[  259.337384][    C1]  napi_consume_skb+0x593/0x5d0
[  259.342260][    C1]  free_old_xmit_skbs+0x1a1/0x450
[  259.347313][    C1]  virtnet_poll_tx+0x24c/0x4c0
[  259.352153][    C1]  net_rx_action+0x74b/0x1950
[  259.356856][    C1]  __do_softirq+0x4a1/0x83a
[  259.361374][    C1]  irq_exit+0x230/0x280
[  259.365545][    C1]  do_IRQ+0x20d/0x3a0
[  259.369561][    C1]  ret_from_intr+0x0/0x33
[  259.373915][    C1]  default_idle+0x53/0x90
[  259.378259][    C1]  arch_cpu_idle+0x25/0x30
[  259.382688][    C1]  do_idle+0x1d7/0x790
[  259.386781][    C1]  cpu_startup_entry+0x45/0x50
[  259.391585][    C1]  start_secondary+0x370/0x470
[  259.396367][    C1]  secondary_startup_64+0xa4/0xb0
[  259.401395][    C1] ==================================================================
[  259.409498][    C1] Disabling lock debugging due to kernel taint
[  259.415669][    C1] Kernel panic - not syncing: panic_on_warn set ...
[  259.434823][    C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G    B             5.3.0-rc3+ #16
[  259.443422][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  259.453609][    C1] Call Trace:
[  259.456922][    C1]  <IRQ>
[  259.459805][    C1]  dump_stack+0x191/0x1f0
[  259.464201][    C1]  panic+0x3c9/0xc1e
[  259.468200][    C1]  kmsan_report+0x2ca/0x2d0
[  259.472757][    C1]  __msan_warning+0x75/0xe0
[  259.477297][    C1]  kmem_cache_alloc_node+0x5d0/0xe70
[  259.482617][    C1]  ? __alloc_skb+0x215/0xa10
[  259.487294][    C1]  __alloc_skb+0x215/0xa10
[  259.491782][    C1]  aoecmd_cfg+0x205/0xa80
[  259.496198][    C1]  discover_timer+0x86/0xa0
[  259.500746][    C1]  call_timer_fn+0x232/0x530
[  259.505373][    C1]  ? skbfree+0x4a0/0x4a0
[  259.511189][    C1]  __run_timers+0xcdc/0x11a0
[  259.515814][    C1]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  259.522269][    C1]  ? skbfree+0x4a0/0x4a0
[  259.526580][    C1]  ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0
[  259.532595][    C1]  run_timer_softirq+0x2d/0x50
[  259.537391][    C1]  ? timers_dead_cpu+0x9d0/0x9d0
[  259.542368][    C1]  __do_softirq+0x4a1/0x83a
[  259.546935][    C1]  irq_exit+0x230/0x280
[  259.551146][    C1]  exiting_irq+0xe/0x10
[  259.555331][    C1]  smp_apic_timer_interrupt+0x48/0x70
[  259.560727][    C1]  apic_timer_interrupt+0x2e/0x40
[  259.565779][    C1]  </IRQ>
[  259.568755][    C1] RIP: 0010:default_idle+0x53/0x90
[  259.573892][    C1] Code: 43 51 ed f2 44 8b 35 f4 c0 d3 01 48 c7 c7 78 c5 25 90 e8 10 3c b3 f3 83 38 00 75 31 45 85 f6 7e 07 0f 00 2d 6f 4a 4f 00 fb f4 <65> 8b 35 8e ae b0 71 c7 03 00 00 00 00 c7 43 08 00 00 00 00 bf ff
[  259.593548][    C1] RSP: 0018:ffff8881280cfe10 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
[  259.602261][    C1] RAX: ffff888217c46578 RBX: ffff88812d7e89a0 RCX: ccccccccccccd000
[  259.610276][    C1] RDX: ffff888207e3f578 RSI: ffffea000a76d5e0 RDI: ffffffff9025c578
[  259.618293][    C1] RBP: ffff8881280cfe20 R08: ffffea000000000f R09: ffff88812fffb000
[  259.626293][    C1] R10: 0000000000000004 R11: ffffffff8e520450 R12: 0000000000000001
[  259.634308][    C1] R13: 0000000000000000 R14: 0000000000000000 R15: ffff88812d7e89a0
[  259.642416][    C1]  ? __cpuidle_text_start+0x8/0x8
[  259.647584][    C1]  ? __cpuidle_text_start+0x8/0x8
[  259.652667][    C1]  arch_cpu_idle+0x25/0x30
[  259.657137][    C1]  do_idle+0x1d7/0x790
[  259.661259][    C1]  cpu_startup_entry+0x45/0x50
[  259.666094][    C1]  ? setup_APIC_timer+0x210/0x210
[  259.671162][    C1]  start_secondary+0x370/0x470
[  259.675978][    C1]  secondary_startup_64+0xa4/0xb0
[  259.682909][    C1] Kernel Offset: disabled
[  259.687381][    C1] Rebooting in 86400 seconds..