[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   55.668351] kauditd_printk_skb: 4 callbacks suppressed
[   55.668379] audit: type=1800 audit(1544895630.716:29): pid=6379 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
[   55.693350] audit: type=1800 audit(1544895630.726:30): pid=6379 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.135' (ECDSA) to the list of known hosts.
2018/12/15 17:40:42 parsed 1 programs
2018/12/15 17:40:48 executed programs: 0
syzkaller login: [   73.672989] IPVS: ftp: loaded support on port[0] = 21
[   74.148047] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.154535] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.162502] device bridge_slave_0 entered promiscuous mode
[   74.193557] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.200001] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.207936] device bridge_slave_1 entered promiscuous mode
[   74.238129] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   74.267785] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   74.358440] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   74.391650] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   74.531619] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   74.539524] team0: Port device team_slave_0 added
[   74.569411] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   74.577402] team0: Port device team_slave_1 added
[   74.608063] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   74.640710] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   74.674590] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   74.708773] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   74.817652] ip (6621) used greatest stack depth: 54072 bytes left
[   75.009630] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.016234] bridge0: port 2(bridge_slave_1) entered forwarding state
[   75.023492] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.030004] bridge0: port 1(bridge_slave_0) entered forwarding state
[   76.120315] 8021q: adding VLAN 0 to HW filter on device bond0
[   76.224941] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   76.330246] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   76.336580] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   76.344906] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   76.447521] 8021q: adding VLAN 0 to HW filter on device team0
[   77.131953] ==================================================================
[   77.139402] BUG: KMSAN: uninit-value in check_6rd+0x65a/0x710
[   77.145306] CPU: 1 PID: 6798 Comm: syz-executor0 Not tainted 4.20.0-rc5+ #2
[   77.152396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   77.161740] Call Trace:
[   77.164327]  dump_stack+0x1c9/0x220
[   77.167961]  kmsan_report+0x12d/0x290
[   77.171783]  __msan_warning+0x76/0xc0
[   77.175606]  check_6rd+0x65a/0x710
[   77.179169]  sit_tunnel_xmit+0xb58/0x34d0
[   77.183359]  ? dev_hard_start_xmit+0xb3/0xc80
[   77.187865]  ? ipip6_tunnel_uninit+0x800/0x800
[   77.192470]  dev_hard_start_xmit+0x627/0xc80
[   77.196909]  __dev_queue_xmit+0x3173/0x3cf0
[   77.201280]  dev_queue_xmit+0x4b/0x60
[   77.205095]  ? __netdev_pick_tx+0x1290/0x1290
[   77.209600]  packet_sendmsg+0x7cbd/0x9200
[   77.213761]  ? kmsan_memcpy_metadata+0xb/0x10
[   77.218277]  ? __msan_memcpy+0x61/0x70
[   77.222197]  ? do_iter_readv_writev+0x822/0xac0
[   77.226890]  ? __se_sys_writev+0x9b/0xb0
[   77.230979]  ? do_syscall_64+0xcd/0x110
[   77.234993]  ? should_fail+0x5e/0xb70
[   77.238821]  ? get_futex_key+0x2f9/0x1d40
[   77.243027]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[   77.248401]  ? aa_sk_perm+0x7ab/0x9e0
[   77.252247]  ? compat_packet_setsockopt+0x360/0x360
[   77.257257]  sock_write_iter+0x3f4/0x4f0
[   77.261335]  ? sock_read_iter+0x4e0/0x4e0
[   77.265477]  do_iter_readv_writev+0x822/0xac0
[   77.269991]  ? sock_read_iter+0x4e0/0x4e0
[   77.274138]  do_iter_write+0x302/0xd80
[   77.278035]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[   77.283492]  ? import_iovec+0x41f/0x680
[   77.287496]  do_writev+0x397/0x860
[   77.291055]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[   77.296507]  ? prepare_exit_to_usermode+0x137/0x460
[   77.301529]  ? syscall_return_slowpath+0x50/0x680
[   77.306400]  __se_sys_writev+0x9b/0xb0
[   77.310292]  __x64_sys_writev+0x4a/0x70
[   77.314262]  do_syscall_64+0xcd/0x110
[   77.318066]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[   77.323244] RIP: 0033:0x457659
[   77.326433] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   77.345331] RSP: 002b:00007fffdb7144f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[   77.353030] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457659
[   77.360287] RDX: 0000000000000001 RSI: 00000000200003c0 RDI: 0000000000000003
[   77.367550] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[   77.374822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000001645914
[   77.382096] R13: 00000000004c39e8 R14: 00000000004dae38 R15: 00000000ffffffff
[   77.389373] 
[   77.390992] Uninit was created at:
[   77.394557]  kmsan_internal_poison_shadow+0x92/0x150
[   77.399654]  kmsan_kmalloc+0xa1/0x100
[   77.403448]  kmsan_slab_alloc+0xe/0x10
[   77.407329]  __kmalloc_node_track_caller+0xf06/0x1120
[   77.412512]  __alloc_skb+0x318/0xa40
[   77.416247]  alloc_skb_with_frags+0x1c9/0xa80
[   77.420747]  sock_alloc_send_pskb+0xb5d/0x1140
[   77.425323]  packet_sendmsg+0x66a2/0x9200
[   77.429462]  sock_write_iter+0x3f4/0x4f0
[   77.433526]  do_iter_readv_writev+0x822/0xac0
[   77.438028]  do_iter_write+0x302/0xd80
[   77.441919]  do_writev+0x397/0x860
[   77.445456]  __se_sys_writev+0x9b/0xb0
[   77.449334]  __x64_sys_writev+0x4a/0x70
[   77.453313]  do_syscall_64+0xcd/0x110
[   77.457118]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[   77.462302] ==================================================================
[   77.469645] Disabling lock debugging due to kernel taint
[   77.475092] Kernel panic - not syncing: panic_on_warn set ...
[   77.480985] CPU: 1 PID: 6798 Comm: syz-executor0 Tainted: G    B             4.20.0-rc5+ #2
[   77.489465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   77.498808] Call Trace:
[   77.501397]  dump_stack+0x1c9/0x220
[   77.505035]  panic+0x3f0/0x98f
[   77.508263]  kmsan_report+0x290/0x290
[   77.512089]  __msan_warning+0x76/0xc0
[   77.515907]  check_6rd+0x65a/0x710
[   77.519462]  sit_tunnel_xmit+0xb58/0x34d0
[   77.523657]  ? dev_hard_start_xmit+0xb3/0xc80
[   77.528178]  ? ipip6_tunnel_uninit+0x800/0x800
[   77.532791]  dev_hard_start_xmit+0x627/0xc80
[   77.537237]  __dev_queue_xmit+0x3173/0x3cf0
[   77.541611]  dev_queue_xmit+0x4b/0x60
[   77.545441]  ? __netdev_pick_tx+0x1290/0x1290
[   77.549953]  packet_sendmsg+0x7cbd/0x9200
[   77.554122]  ? kmsan_memcpy_metadata+0xb/0x10
[   77.558620]  ? __msan_memcpy+0x61/0x70
[   77.562505]  ? do_iter_readv_writev+0x822/0xac0
[   77.567186]  ? __se_sys_writev+0x9b/0xb0
[   77.571259]  ? do_syscall_64+0xcd/0x110
[   77.575255]  ? should_fail+0x5e/0xb70
[   77.579069]  ? get_futex_key+0x2f9/0x1d40
[   77.583255]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[   77.588640]  ? aa_sk_perm+0x7ab/0x9e0
[   77.592515]  ? compat_packet_setsockopt+0x360/0x360
[   77.597540]  sock_write_iter+0x3f4/0x4f0
[   77.601642]  ? sock_read_iter+0x4e0/0x4e0
[   77.605817]  do_iter_readv_writev+0x822/0xac0
[   77.610339]  ? sock_read_iter+0x4e0/0x4e0
[   77.614503]  do_iter_write+0x302/0xd80
[   77.618399]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[   77.623845]  ? import_iovec+0x41f/0x680
[   77.627835]  do_writev+0x397/0x860
[   77.631392]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[   77.636835]  ? prepare_exit_to_usermode+0x137/0x460
[   77.641844]  ? syscall_return_slowpath+0x50/0x680
[   77.646690]  __se_sys_writev+0x9b/0xb0
[   77.650585]  __x64_sys_writev+0x4a/0x70
[   77.654555]  do_syscall_64+0xcd/0x110
[   77.658352]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[   77.663535] RIP: 0033:0x457659
[   77.666718] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   77.685611] RSP: 002b:00007fffdb7144f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[   77.693316] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457659
[   77.700576] RDX: 0000000000000001 RSI: 00000000200003c0 RDI: 0000000000000003
[   77.707834] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[   77.715092] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000001645914
[   77.722354] R13: 00000000004c39e8 R14: 00000000004dae38 R15: 00000000ffffffff
[   77.730650] Kernel Offset: disabled
[   77.734300] Rebooting in 86400 seconds..