[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   86.271491][   T31] audit: type=1800 audit(1573894863.318:25): pid=12417 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[   86.295266][   T31] audit: type=1800 audit(1573894863.348:26): pid=12417 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   86.333017][   T31] audit: type=1800 audit(1573894863.368:27): pid=12417 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.220' (ECDSA) to the list of known hosts.
executing program
executing program
executing program
syzkaller login: [  127.453117][    C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  127.540857][T12578] =====================================================
[  127.547861][T12578] BUG: KMSAN: uninit-value in gf128mul_4k_lle+0x1fb/0x2b0
[  127.554984][T12578] CPU: 1 PID: 12578 Comm: syz-executor941 Not tainted 5.4.0-rc5+ #0
[  127.562944][T12578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  127.572985][T12578] Call Trace:
[  127.576269][T12578]  dump_stack+0x191/0x1f0
[  127.580597][T12578]  kmsan_report+0x128/0x220
[  127.585096][T12578]  __msan_warning+0x73/0xe0
[  127.589609][T12578]  gf128mul_4k_lle+0x1fb/0x2b0
[  127.594371][T12578]  ghash_update+0x9db/0x1130
[  127.598964][T12578]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  127.605125][T12578]  ? ghash_init+0x50/0x50
[  127.609441][T12578]  shash_ahash_update+0x53a/0x650
[  127.614476][T12578]  ? kmsan_get_metadata+0x39/0x350
[  127.620038][T12578]  ? kmsan_internal_set_origin+0x6a/0xb0
[  127.625688][T12578]  shash_async_update+0x50/0x60
[  127.630540][T12578]  ? shash_async_init+0x1e0/0x1e0
[  127.635613][T12578]  gcm_hash+0x15d8/0x2400
[  127.639951][T12578]  crypto_gcm_encrypt+0x710/0x9e0
[  127.644989][T12578]  ? crypto_gcm_setauthsize+0xc0/0xc0
[  127.650361][T12578]  crypto_aead_encrypt+0xf2/0x180
[  127.655390][T12578]  tls_push_record+0x341e/0x4e50
[  127.660322][T12578]  ? kmsan_internal_set_origin+0x6a/0xb0
[  127.666326][T12578]  ? kmsan_get_shadow_origin_ptr+0x91/0x4b0
[  127.672212][T12578]  bpf_exec_tx_verdict+0x1454/0x1c80
[  127.677490][T12578]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  127.683632][T12578]  ? get_user_pages_fast+0x69b/0x6e0
[  127.688907][T12578]  ? kmsan_get_metadata+0x39/0x350
[  127.694081][T12578]  tls_sw_sendmsg+0x158d/0x2710
[  127.698980][T12578]  ? udpv6_rcv+0x70/0x70
[  127.703229][T12578]  ? tls_tx_records+0xb40/0xb40
[  127.708075][T12578]  inet6_sendmsg+0x2d8/0x2e0
[  127.712684][T12578]  ? inet6_ioctl+0x340/0x340
[  127.717263][T12578]  __sys_sendto+0x8fc/0xc70
[  127.721775][T12578]  ? kmsan_get_shadow_origin_ptr+0x91/0x4b0
[  127.727678][T12578]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  127.733735][T12578]  ? prepare_exit_to_usermode+0x19a/0x4d0
[  127.739445][T12578]  __se_sys_sendto+0x107/0x130
[  127.744245][T12578]  __x64_sys_sendto+0x6e/0x90
[  127.749183][T12578]  do_syscall_64+0xb6/0x160
[  127.753681][T12578]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  127.759580][T12578] RIP: 0033:0x441469
[  127.763464][T12578] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb 08 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[  127.783068][T12578] RSP: 002b:00007ffd5fe92c98 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  127.791476][T12578] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441469
[  127.799858][T12578] RDX: ffffffffffffffc1 RSI: 0000000020000080 RDI: 0000000000000003
[  127.807814][T12578] RBP: 00000000006cb018 R08: 0000000000000000 R09: fffffffffffffe5b
[  127.815772][T12578] R10: 0000000000000040 R11: 0000000000000246 R12: 00000000004021e0
[  127.823731][T12578] R13: 0000000000402270 R14: 0000000000000000 R15: 0000000000000000
[  127.831698][T12578] 
[  127.834056][T12578] Uninit was stored to memory at:
[  127.839418][T12578]  kmsan_internal_chain_origin+0xbd/0x180
[  127.845123][T12578]  __msan_chain_origin+0x6b/0xd0
[  127.850060][T12578]  ghash_update+0xa83/0x1130
[  127.854633][T12578]  shash_ahash_update+0x53a/0x650
[  127.859644][T12578]  shash_async_update+0x50/0x60
[  127.864484][T12578]  gcm_hash+0x15d8/0x2400
[  127.868893][T12578]  crypto_gcm_encrypt+0x710/0x9e0
[  127.873911][T12578]  crypto_aead_encrypt+0xf2/0x180
[  127.878941][T12578]  tls_push_record+0x341e/0x4e50
[  127.883866][T12578]  bpf_exec_tx_verdict+0x1454/0x1c80
[  127.889399][T12578]  tls_sw_sendmsg+0x158d/0x2710
[  127.894253][T12578]  inet6_sendmsg+0x2d8/0x2e0
[  127.898829][T12578]  __sys_sendto+0x8fc/0xc70
[  127.903414][T12578]  __se_sys_sendto+0x107/0x130
[  127.908168][T12578]  __x64_sys_sendto+0x6e/0x90
[  127.912830][T12578]  do_syscall_64+0xb6/0x160
[  127.917339][T12578]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  127.923217][T12578] 
[  127.925528][T12578] Uninit was stored to memory at:
[  127.930625][T12578]  kmsan_internal_chain_origin+0xbd/0x180
[  127.936332][T12578]  __msan_chain_origin+0x6b/0xd0
[  127.941256][T12578]  __crypto_xor+0x1e8/0x1470
[  127.945829][T12578]  crypto_ctr_crypt+0x613/0xaf0
[  127.950665][T12578]  crypto_skcipher_encrypt+0xd2/0x150
[  127.956026][T12578]  crypto_gcm_encrypt+0x4a5/0x9e0
[  127.961043][T12578]  crypto_aead_encrypt+0xf2/0x180
[  127.966065][T12578]  tls_push_record+0x341e/0x4e50
[  127.970987][T12578]  bpf_exec_tx_verdict+0x1454/0x1c80
[  127.976256][T12578]  tls_sw_sendmsg+0x158d/0x2710
[  127.981095][T12578]  inet6_sendmsg+0x2d8/0x2e0
[  127.985671][T12578]  __sys_sendto+0x8fc/0xc70
[  127.990162][T12578]  __se_sys_sendto+0x107/0x130
[  127.994914][T12578]  __x64_sys_sendto+0x6e/0x90
[  127.999587][T12578]  do_syscall_64+0xb6/0x160
[  128.004082][T12578]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  128.009961][T12578] 
[  128.012268][T12578] Uninit was created at:
[  128.016495][T12578]  kmsan_save_stack_with_flags+0x3f/0x90
[  128.022116][T12578]  kmsan_alloc_page+0x153/0x360
[  128.027040][T12578]  __alloc_pages_nodemask+0x149d/0x60c0
[  128.032571][T12578]  alloc_pages_current+0x68d/0x9a0
[  128.037670][T12578]  skb_page_frag_refill+0x2b0/0x580
[  128.042853][T12578]  sk_page_frag_refill+0xa4/0x330
[  128.047861][T12578]  tcp_sendmsg_locked+0x29e2/0x6a00
[  128.053054][T12578]  tcp_sendmsg+0xb2/0x100
[  128.057384][T12578]  inet6_sendmsg+0x178/0x2e0
[  128.061960][T12578]  __sys_sendto+0x8fc/0xc70
[  128.066444][T12578]  __se_sys_sendto+0x107/0x130
[  128.071193][T12578]  __x64_sys_sendto+0x6e/0x90
[  128.075858][T12578]  do_syscall_64+0xb6/0x160
[  128.080349][T12578]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  128.086221][T12578] =====================================================
[  128.093135][T12578] Disabling lock debugging due to kernel taint
[  128.099268][T12578] Kernel panic - not syncing: panic_on_warn set ...
[  128.099272][T12579] =====================================================
[  128.099293][T12579] BUG: KMSAN: uninit-value in gf128mul_4k_lle+0x1fb/0x2b0
[  128.105959][T12578] CPU: 1 PID: 12578 Comm: syz-executor941 Tainted: G    B             5.4.0-rc5+ #0
[  128.129888][T12578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  128.139940][T12578] Call Trace:
[  128.143231][T12578]  dump_stack+0x191/0x1f0
[  128.147555][T12578]  panic+0x3c9/0xc1e
[  128.151466][T12578]  kmsan_report+0x215/0x220
[  128.155968][T12578]  __msan_warning+0x73/0xe0
[  128.160476][T12578]  gf128mul_4k_lle+0x1fb/0x2b0
[  128.165242][T12578]  ghash_update+0x9db/0x1130
[  128.169825][T12578]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  128.176234][T12578]  ? ghash_init+0x50/0x50
[  128.180556][T12578]  shash_ahash_update+0x53a/0x650
[  128.185592][T12578]  ? kmsan_get_metadata+0x39/0x350
[  128.190703][T12578]  ? kmsan_internal_set_origin+0x6a/0xb0
[  128.196337][T12578]  shash_async_update+0x50/0x60
[  128.201180][T12578]  ? shash_async_init+0x1e0/0x1e0
[  128.206195][T12578]  gcm_hash+0x15d8/0x2400
[  128.210529][T12578]  crypto_gcm_encrypt+0x710/0x9e0
[  128.215559][T12578]  ? crypto_gcm_setauthsize+0xc0/0xc0
[  128.220927][T12578]  crypto_aead_encrypt+0xf2/0x180
[  128.225950][T12578]  tls_push_record+0x341e/0x4e50
[  128.231143][T12578]  ? kmsan_internal_set_origin+0x6a/0xb0
[  128.236803][T12578]  ? kmsan_get_shadow_origin_ptr+0x91/0x4b0
[  128.242708][T12578]  bpf_exec_tx_verdict+0x1454/0x1c80
[  128.247984][T12578]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  128.254038][T12578]  ? get_user_pages_fast+0x69b/0x6e0
[  128.259341][T12578]  ? kmsan_get_metadata+0x39/0x350
[  128.264531][T12578]  tls_sw_sendmsg+0x158d/0x2710
[  128.269416][T12578]  ? udpv6_rcv+0x70/0x70
[  128.273654][T12578]  ? tls_tx_records+0xb40/0xb40
[  128.278495][T12578]  inet6_sendmsg+0x2d8/0x2e0
[  128.283082][T12578]  ? inet6_ioctl+0x340/0x340
[  128.287678][T12578]  __sys_sendto+0x8fc/0xc70
[  128.292196][T12578]  ? kmsan_get_shadow_origin_ptr+0x91/0x4b0
[  128.298259][T12578]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  128.304345][T12578]  ? prepare_exit_to_usermode+0x19a/0x4d0
[  128.310200][T12578]  __se_sys_sendto+0x107/0x130
[  128.314978][T12578]  __x64_sys_sendto+0x6e/0x90
[  128.319802][T12578]  do_syscall_64+0xb6/0x160
[  128.324308][T12578]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  128.330200][T12578] RIP: 0033:0x441469
[  128.334088][T12578] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb 08 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[  128.353682][T12578] RSP: 002b:00007ffd5fe92c98 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  128.362096][T12578] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441469
[  128.370056][T12578] RDX: ffffffffffffffc1 RSI: 0000000020000080 RDI: 0000000000000003
[  128.378015][T12578] RBP: 00000000006cb018 R08: 0000000000000000 R09: fffffffffffffe5b
[  128.385976][T12578] R10: 0000000000000040 R11: 0000000000000246 R12: 00000000004021e0
[  128.393933][T12578] R13: 0000000000402270 R14: 0000000000000000 R15: 0000000000000000
[  128.401930][T12579] CPU: 0 PID: 12579 Comm: syz-executor941 Tainted: G    B             5.4.0-rc5+ #0
[  128.411299][T12579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  128.421374][T12579] Call Trace:
[  128.424658][T12579]  dump_stack+0x191/0x1f0
[  128.428983][T12579]  kmsan_report+0x128/0x220
[  128.433494][T12579]  __msan_warning+0x73/0xe0
[  128.437991][T12579]  gf128mul_4k_lle+0x1fb/0x2b0
[  128.442766][T12579]  ghash_update+0x9db/0x1130
[  128.447766][T12579]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  128.454013][T12579]  ? ghash_init+0x50/0x50
[  128.458333][T12579]  shash_ahash_update+0x53a/0x650
[  128.463791][T12579]  ? kmsan_get_metadata+0x39/0x350
[  128.468895][T12579]  ? kmsan_internal_set_origin+0x6a/0xb0
[  128.474530][T12579]  shash_async_update+0x50/0x60
[  128.479368][T12579]  ? shash_async_init+0x1e0/0x1e0
[  128.484395][T12579]  gcm_hash+0x15d8/0x2400
[  128.488735][T12579]  crypto_gcm_encrypt+0x710/0x9e0
[  128.493767][T12579]  ? crypto_gcm_setauthsize+0xc0/0xc0
[  128.499129][T12579]  crypto_aead_encrypt+0xf2/0x180
[  128.504151][T12579]  tls_push_record+0x341e/0x4e50
[  128.509090][T12579]  ? kmsan_internal_set_origin+0x6a/0xb0
[  128.514760][T12579]  ? kmsan_get_shadow_origin_ptr+0x91/0x4b0
[  128.520647][T12579]  bpf_exec_tx_verdict+0x1454/0x1c80
[  128.525921][T12579]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  128.531977][T12579]  ? get_user_pages_fast+0x69b/0x6e0
[  128.537252][T12579]  ? kmsan_get_metadata+0x39/0x350
[  128.542424][T12579]  tls_sw_sendmsg+0x158d/0x2710
[  128.547300][T12579]  ? udpv6_rcv+0x70/0x70
[  128.551531][T12579]  ? tls_tx_records+0xb40/0xb40
[  128.556372][T12579]  inet6_sendmsg+0x2d8/0x2e0
[  128.560968][T12579]  ? inet6_ioctl+0x340/0x340
[  128.565559][T12579]  __sys_sendto+0x8fc/0xc70
[  128.570071][T12579]  ? kmsan_get_shadow_origin_ptr+0x91/0x4b0
[  128.575955][T12579]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  128.582025][T12579]  ? prepare_exit_to_usermode+0x19a/0x4d0
[  128.587733][T12579]  __se_sys_sendto+0x107/0x130
[  128.592499][T12579]  __x64_sys_sendto+0x6e/0x90
[  128.597163][T12579]  do_syscall_64+0xb6/0x160
[  128.601656][T12579]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  128.607556][T12579] RIP: 0033:0x441469
[  128.611441][T12579] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb 08 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[  128.631034][T12579] RSP: 002b:00007ffd5fe92c98 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  128.639434][T12579] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441469
[  128.647394][T12579] RDX: ffffffffffffffc1 RSI: 0000000020000080 RDI: 0000000000000003
[  128.655369][T12579] RBP: 00000000006cb018 R08: 0000000000000000 R09: fffffffffffffe5b
[  128.663339][T12579] R10: 0000000000000040 R11: 0000000000000246 R12: 00000000004021e0
[  128.671297][T12579] R13: 0000000000402270 R14: 0000000000000000 R15: 0000000000000000
[  128.679266][T12579] 
[  128.681589][T12579] Uninit was stored to memory at:
[  128.686600][T12579]  kmsan_internal_chain_origin+0xbd/0x180
[  128.692307][T12579]  __msan_chain_origin+0x6b/0xd0
[  128.697226][T12579]  ghash_update+0xa83/0x1130
[  128.702035][T12579]  shash_ahash_update+0x53a/0x650
[  128.707052][T12579]  shash_async_update+0x50/0x60
[  128.711901][T12579]  gcm_hash+0x15d8/0x2400
[  128.716229][T12579]  crypto_gcm_encrypt+0x710/0x9e0
[  128.722302][T12579]  crypto_aead_encrypt+0xf2/0x180
[  128.727322][T12579]  tls_push_record+0x341e/0x4e50
[  128.732254][T12579]  bpf_exec_tx_verdict+0x1454/0x1c80
[  128.737533][T12579]  tls_sw_sendmsg+0x158d/0x2710
[  128.742372][T12579]  inet6_sendmsg+0x2d8/0x2e0
[  128.746946][T12579]  __sys_sendto+0x8fc/0xc70
[  128.751434][T12579]  __se_sys_sendto+0x107/0x130
[  128.756184][T12579]  __x64_sys_sendto+0x6e/0x90
[  128.760846][T12579]  do_syscall_64+0xb6/0x160
[  128.765335][T12579]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  128.771212][T12579] 
[  128.773524][T12579] Uninit was stored to memory at:
[  128.778536][T12579]  kmsan_internal_chain_origin+0xbd/0x180
[  128.784244][T12579]  __msan_chain_origin+0x6b/0xd0
[  128.789253][T12579]  __crypto_xor+0x1e8/0x1470
[  128.793834][T12579]  crypto_ctr_crypt+0x613/0xaf0
[  128.798690][T12579]  crypto_skcipher_encrypt+0xd2/0x150
[  128.804048][T12579]  crypto_gcm_encrypt+0x4a5/0x9e0
[  128.809067][T12579]  crypto_aead_encrypt+0xf2/0x180
[  128.814081][T12579]  tls_push_record+0x341e/0x4e50
[  128.819107][T12579]  bpf_exec_tx_verdict+0x1454/0x1c80
[  128.824386][T12579]  tls_sw_sendmsg+0x158d/0x2710
[  128.829263][T12579]  inet6_sendmsg+0x2d8/0x2e0
[  128.833858][T12579]  __sys_sendto+0x8fc/0xc70
[  128.838349][T12579]  __se_sys_sendto+0x107/0x130
[  128.843110][T12579]  __x64_sys_sendto+0x6e/0x90
[  128.847773][T12579]  do_syscall_64+0xb6/0x160
[  128.852264][T12579]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  128.858136][T12579] 
[  128.860447][T12579] Uninit was created at:
[  128.864687][T12579]  kmsan_save_stack_with_flags+0x3f/0x90
[  128.870314][T12579]  kmsan_alloc_page+0x153/0x360
[  128.875241][T12579]  __alloc_pages_nodemask+0x149d/0x60c0
[  128.880776][T12579]  alloc_pages_current+0x68d/0x9a0
[  128.885875][T12579]  skb_page_frag_refill+0x2b0/0x580
[  128.891147][T12579]  sk_page_frag_refill+0xa4/0x330
[  128.896181][T12579]  tcp_sendmsg_locked+0x29e2/0x6a00
[  128.901364][T12579]  tcp_sendmsg+0xb2/0x100
[  128.906285][T12579]  inet6_sendmsg+0x178/0x2e0
[  128.910876][T12579]  __sys_sendto+0x8fc/0xc70
[  128.915364][T12579]  __se_sys_sendto+0x107/0x130
[  128.920112][T12579]  __x64_sys_sendto+0x6e/0x90
[  128.924777][T12579]  do_syscall_64+0xb6/0x160
[  128.929270][T12579]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  128.935164][T12579] =====================================================
[  129.626694][T12578] Shutting down cpus with NMI
[  129.645138][T12578] Kernel Offset: disabled
[  129.649497][T12578] Rebooting in 86400 seconds..