[....] Starting enhanced syslogd: rsyslogd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[ 85.741549][ T32] audit: type=1800 audit(1569921051.786:25): pid=12689 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[ 85.780357][ T32] audit: type=1800 audit(1569921051.816:26): pid=12689 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[ 85.801044][ T32] audit: type=1800 audit(1569921051.826:27): pid=12689 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[....] Starting OpenBSD Secure Shell server: sshd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
Debian GNU/Linux 7 syzkaller ttyS0
Warning: Permanently added '10.128.0.31' (ECDSA) to the list of known hosts.
2019/10/01 09:11:04 fuzzer started
2019/10/01 09:11:08 dialing manager at 10.128.0.26:42183
2019/10/01 09:11:09 syscalls: 2385
2019/10/01 09:11:09 code coverage: enabled
2019/10/01 09:11:09 comparison tracing: CONFIG_KCOV_ENABLE_COMPARISONS is not enabled
2019/10/01 09:11:09 extra coverage: enabled
2019/10/01 09:11:09 setuid sandbox: enabled
2019/10/01 09:11:09 namespace sandbox: enabled
2019/10/01 09:11:09 Android sandbox: /sys/fs/selinux/policy does not exist
2019/10/01 09:11:09 fault injection: enabled
2019/10/01 09:11:09 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2019/10/01 09:11:09 net packet injection: enabled
2019/10/01 09:11:09 net device setup: enabled
syzkaller login: [ 258.973229][ C1] =====================================================
[ 258.980500][ C1] BUG: KMSAN: uninit-value in __alloc_skb+0x215/0xa10
[ 258.987250][ C1] CPU: 1 PID: 12842 Comm: syz-fuzzer Not tainted 5.3.0-rc7+ #0
[ 258.994779][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 259.004928][ C1] Call Trace:
[ 259.008198][ C1]
[ 259.011115][ C1] dump_stack+0x191/0x1f0
[ 259.015438][ C1] kmsan_report+0x13a/0x2b0
[ 259.019941][ C1] __msan_warning+0x73/0xe0
[ 259.024449][ C1] kmem_cache_alloc_node+0x5d0/0xe70
[ 259.029718][ C1] ? __alloc_skb+0x215/0xa10
[ 259.034300][ C1] __alloc_skb+0x215/0xa10
[ 259.038705][ C1] aoecmd_cfg+0x205/0xa80
[ 259.043026][ C1] discover_timer+0x86/0xa0
[ 259.047511][ C1] call_timer_fn+0x232/0x530
[ 259.052084][ C1] ? skbfree+0x4a0/0x4a0
[ 259.056313][ C1] __run_timers+0xcdc/0x11a0
[ 259.060883][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 259.066937][ C1] ? skbfree+0x4a0/0x4a0
[ 259.071169][ C1] ? timers_dead_cpu+0x9d0/0x9d0
[ 259.076090][ C1] ? kmsan_get_shadow_origin_ptr+0x6e/0x4c0
[ 259.081970][ C1] run_timer_softirq+0x2d/0x50
[ 259.086711][ C1] ? timers_dead_cpu+0x9d0/0x9d0
[ 259.091673][ C1] __do_softirq+0x4a1/0x83a
[ 259.096165][ C1] irq_exit+0x230/0x280
[ 259.100309][ C1] exiting_irq+0xe/0x10
[ 259.104445][ C1] smp_apic_timer_interrupt+0x48/0x70
[ 259.109816][ C1] apic_timer_interrupt+0x2e/0x40
[ 259.114814][ C1]
[ 259.117731][ C1] RIP: 0033:0x40993d
[ 259.121612][ C1] Code: 89 74 24 50 48 8b 7e 30 4c 8b 40 50 4c 8b 48 28 44 0f b6 50 4b 48 8b 40 58 48 8b 7f 18 48 89 7c 24 78 e9 d2 04 00 00 41 ff c2 <41> 80 fa 08 0f 83 b2 04 00 00 4c 8b 9c 24 98 00 00 00 41 84 01 45
[ 259.142159][ C1] RSP: 002b:000000c423aed708 EFLAGS: 00000202 ORIG_RAX: ffffffffffffff13
[ 259.150560][ C1] RAX: ffffffffffffffff RBX: 000000c42c09d3b0 RCX: 000000c420000180
[ 259.158545][ C1] RDX: 000000c426a594f8 RSI: 000000000087f8a0 RDI: 0000000001727a00
[ 259.166502][ C1] RBP: 000000c423aed790 R08: 0000000000000058 R09: 000000c42b361308
[ 259.174466][ C1] R10: 0000000000000007 R11: 000000c42b361332 R12: 0000000000000002
[ 259.182417][ C1] R13: 000000c42b361318 R14: 0000000000000000 R15: 000000c42b361308
[ 259.190382][ C1]
[ 259.192687][ C1] Uninit was stored to memory at:
[ 259.197697][ C1] kmsan_internal_chain_origin+0xd2/0x170
[ 259.203395][ C1] __msan_chain_origin+0x6b/0xe0
[ 259.208308][ C1] ___slab_alloc+0x1dbc/0x1fb0
[ 259.213055][ C1] kmem_cache_alloc_node+0x769/0xe70
[ 259.218333][ C1] __alloc_skb+0x215/0xa10
[ 259.222725][ C1] aoecmd_cfg+0x205/0xa80
[ 259.227048][ C1] discover_timer+0x86/0xa0
[ 259.231535][ C1] call_timer_fn+0x232/0x530
[ 259.236100][ C1] __run_timers+0xcdc/0x11a0
[ 259.240684][ C1] run_timer_softirq+0x2d/0x50
[ 259.245438][ C1] __do_softirq+0x4a1/0x83a
[ 259.249918][ C1] irq_exit+0x230/0x280
[ 259.254051][ C1] exiting_irq+0xe/0x10
[ 259.258196][ C1] smp_apic_timer_interrupt+0x48/0x70
[ 259.263553][ C1] apic_timer_interrupt+0x2e/0x40
[ 259.268552][ C1]
[ 259.270857][ C1] Uninit was created at:
[ 259.275087][ C1] kmsan_internal_poison_shadow+0x53/0x100
[ 259.280878][ C1] kmsan_slab_free+0x8d/0x100
[ 259.285532][ C1] kmem_cache_free_bulk+0x3ad9/0x3f50
[ 259.290879][ C1] napi_consume_skb+0x593/0x5d0
[ 259.295720][ C1] free_old_xmit_skbs+0x1a1/0x450
[ 259.300721][ C1] virtnet_poll_tx+0x24c/0x4c0
[ 259.305530][ C1] net_rx_action+0x74b/0x1950
[ 259.310194][ C1] __do_softirq+0x4a1/0x83a
[ 259.314765][ C1] irq_exit+0x230/0x280
[ 259.318911][ C1] do_IRQ+0x20d/0x3a0
[ 259.322869][ C1] ret_from_intr+0x0/0x33
[ 259.327171][ C1] =====================================================
[ 259.334087][ C1] Disabling lock debugging due to kernel taint
[ 259.340227][ C1] Kernel panic - not syncing: panic_on_warn set ...
[ 259.346816][ C1] CPU: 1 PID: 12842 Comm: syz-fuzzer Tainted: G B 5.3.0-rc7+ #0
[ 259.355722][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 259.365842][ C1] Call Trace:
[ 259.369109][ C1]
[ 259.371958][ C1] dump_stack+0x191/0x1f0
[ 259.376274][ C1] panic+0x3c9/0xc1e
[ 259.381205][ C1] kmsan_report+0x2a2/0x2b0
[ 259.385707][ C1] __msan_warning+0x73/0xe0
[ 259.390200][ C1] kmem_cache_alloc_node+0x5d0/0xe70
[ 259.395554][ C1] ? __alloc_skb+0x215/0xa10
[ 259.400135][ C1] __alloc_skb+0x215/0xa10
[ 259.404539][ C1] aoecmd_cfg+0x205/0xa80
[ 259.409033][ C1] discover_timer+0x86/0xa0
[ 259.413516][ C1] call_timer_fn+0x232/0x530
[ 259.418085][ C1] ? skbfree+0x4a0/0x4a0
[ 259.422328][ C1] __run_timers+0xcdc/0x11a0
[ 259.426909][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 259.432959][ C1] ? skbfree+0x4a0/0x4a0
[ 259.437196][ C1] ? timers_dead_cpu+0x9d0/0x9d0
[ 259.442141][ C1] ? kmsan_get_shadow_origin_ptr+0x6e/0x4c0
[ 259.448284][ C1] run_timer_softirq+0x2d/0x50
[ 259.453033][ C1] ? timers_dead_cpu+0x9d0/0x9d0
[ 259.458189][ C1] __do_softirq+0x4a1/0x83a
[ 259.462885][ C1] irq_exit+0x230/0x280
[ 259.467081][ C1] exiting_irq+0xe/0x10
[ 259.471224][ C1] smp_apic_timer_interrupt+0x48/0x70
[ 259.476603][ C1] apic_timer_interrupt+0x2e/0x40
[ 259.481608][ C1]
[ 259.484550][ C1] RIP: 0033:0x40993d
[ 259.488425][ C1] Code: 89 74 24 50 48 8b 7e 30 4c 8b 40 50 4c 8b 48 28 44 0f b6 50 4b 48 8b 40 58 48 8b 7f 18 48 89 7c 24 78 e9 d2 04 00 00 41 ff c2 <41> 80 fa 08 0f 83 b2 04 00 00 4c 8b 9c 24 98 00 00 00 41 84 01 45
[ 259.508011][ C1] RSP: 002b:000000c423aed708 EFLAGS: 00000202 ORIG_RAX: ffffffffffffff13
[ 259.516405][ C1] RAX: ffffffffffffffff RBX: 000000c42c09d3b0 RCX: 000000c420000180
[ 259.524369][ C1] RDX: 000000c426a594f8 RSI: 000000000087f8a0 RDI: 0000000001727a00
[ 259.532359][ C1] RBP: 000000c423aed790 R08: 0000000000000058 R09: 000000c42b361308
[ 259.540332][ C1] R10: 0000000000000007 R11: 000000c42b361332 R12: 0000000000000002
[ 259.548297][ C1] R13: 000000c42b361318 R14: 0000000000000000 R15: 000000c42b361308
[ 259.557596][ C1] Kernel Offset: disabled
[ 259.561918][ C1] Rebooting in 86400 seconds..