[....] Starting enhanced syslogd: rsyslogd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[ 98.579114][ T31] audit: type=1800 audit(1562481009.625:25): pid=13099 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[ 98.604650][ T31] audit: type=1800 audit(1562481009.655:26): pid=13099 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[ 98.641752][ T31] audit: type=1800 audit(1562481009.675:27): pid=13099 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[....] Starting OpenBSD Secure Shell server: sshd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
Debian GNU/Linux 7 syzkaller ttyS0
Warning: Permanently added '10.128.15.192' (ECDSA) to the list of known hosts.
syzkaller login: [ 111.988134][T13251] IPVS: ftp: loaded support on port[0] = 21
[ 112.064206][T13251] chnl_net:caif_netlink_parms(): no params data found
[ 112.101323][T13251] bridge0: port 1(bridge_slave_0) entered blocking state
[ 112.108629][T13251] bridge0: port 1(bridge_slave_0) entered disabled state
[ 112.117115][T13251] device bridge_slave_0 entered promiscuous mode
[ 112.125449][T13251] bridge0: port 2(bridge_slave_1) entered blocking state
[ 112.132796][T13251] bridge0: port 2(bridge_slave_1) entered disabled state
[ 112.141057][T13251] device bridge_slave_1 entered promiscuous mode
[ 112.162940][T13251] bond0: Enslaving bond_slave_0 as an active interface with an up link
[ 112.173982][T13251] bond0: Enslaving bond_slave_1 as an active interface with an up link
[ 112.196662][T13251] team0: Port device team_slave_0 added
[ 112.204777][T13251] team0: Port device team_slave_1 added
[ 112.265045][T13251] device hsr_slave_0 entered promiscuous mode
[ 112.322549][T13251] device hsr_slave_1 entered promiscuous mode
[ 112.374606][T13251] bridge0: port 2(bridge_slave_1) entered blocking state
[ 112.381811][T13251] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 112.389605][T13251] bridge0: port 1(bridge_slave_0) entered blocking state
[ 112.396875][T13251] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 112.447889][T13251] 8021q: adding VLAN 0 to HW filter on device bond0
[ 112.463194][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 112.473561][ T37] bridge0: port 1(bridge_slave_0) entered disabled state
[ 112.481864][ T37] bridge0: port 2(bridge_slave_1) entered disabled state
[ 112.490822][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 112.506637][T13251] 8021q: adding VLAN 0 to HW filter on device team0
[ 112.520479][ T4081] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 112.529423][ T4081] bridge0: port 1(bridge_slave_0) entered blocking state
[ 112.536711][ T4081] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 112.550753][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 112.560123][ T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 112.567508][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 112.590530][ T4081] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 112.600709][ T4081] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 112.623760][ T4081] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 112.633952][ T4081] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 112.642903][ T4081] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
executing program
[ 112.656996][T13251] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 112.681516][T13251] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 112.732623][ C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters.
[ 112.745804][ C1] ==================================================================
[ 112.753992][ C1] BUG: KMSAN: uninit-value in tcp_create_openreq_child+0x157f/0x1cc0
[ 112.762048][ C1] CPU: 1 PID: 13251 Comm: syz-executor611 Not tainted 5.2.0-rc4+ #10
[ 112.770117][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 112.780160][ C1] Call Trace:
[ 112.783435][ C1]
[ 112.786307][ C1] dump_stack+0x191/0x1f0
[ 112.790636][ C1] kmsan_report+0x162/0x2d0
[ 112.795140][ C1] __msan_warning+0x75/0xe0
[ 112.799649][ C1] tcp_create_openreq_child+0x157f/0x1cc0
[ 112.805386][ C1] tcp_v6_syn_recv_sock+0x761/0x2d80
[ 112.810687][ C1] ? __msan_poison_alloca+0x1c0/0x270
[ 112.816058][ C1] ? kmsan_get_shadow_origin_ptr+0x71/0x470
[ 112.821939][ C1] ? cookie_v6_check+0x27e0/0x29a0
[ 112.827068][ C1] ? tcp_v6_conn_request+0x2d0/0x2d0
[ 112.832346][ C1] tcp_get_cookie_sock+0x16e/0x6b0
[ 112.837459][ C1] cookie_v6_check+0x27e0/0x29a0
[ 112.842429][ C1] tcp_v6_do_rcv+0xf1c/0x1ce0
[ 112.847095][ C1] ? kmsan_memcpy_memmove_metadata+0x8bc/0xe00
[ 112.853253][ C1] tcp_v6_rcv+0x60b7/0x6a30
[ 112.857781][ C1] ? usb_get_string+0x281/0x5a0
[ 112.862660][ C1] ip6_protocol_deliver_rcu+0x1433/0x22f0
[ 112.868408][ C1] ip6_input+0x2af/0x340
[ 112.872646][ C1] ? ip6_input+0x340/0x340
[ 112.877049][ C1] ? ip6_protocol_deliver_rcu+0x22f0/0x22f0
[ 112.882931][ C1] ipv6_rcv+0x683/0x710
[ 112.887089][ C1] ? local_bh_enable+0x40/0x40
[ 112.891847][ C1] process_backlog+0x721/0x1410
[ 112.896699][ C1] ? kmsan_get_shadow_origin_ptr+0x71/0x470
[ 112.902610][ C1] ? kmsan_get_shadow_origin_ptr+0x71/0x470
[ 112.908498][ C1] ? rps_trigger_softirq+0x2e0/0x2e0
[ 112.913770][ C1] net_rx_action+0x738/0x1940
[ 112.918469][ C1] ? net_tx_action+0xb70/0xb70
[ 112.923253][ C1] __do_softirq+0x4ad/0x858
[ 112.927757][ C1] do_softirq_own_stack+0x49/0x80
[ 112.932789][ C1]
[ 112.935741][ C1] __local_bh_enable_ip+0x199/0x1e0
[ 112.940940][ C1] local_bh_enable+0x36/0x40
[ 112.945523][ C1] ip6_finish_output2+0x213f/0x2670
[ 112.950742][ C1] ? kmsan_get_shadow_origin_ptr+0x71/0x470
[ 112.956642][ C1] ip6_finish_output+0xae4/0xbc0
[ 112.961584][ C1] ip6_output+0x5d3/0x720
[ 112.965920][ C1] ? ip6_output+0x720/0x720
[ 112.970412][ C1] ? ac6_seq_show+0x200/0x200
[ 112.978295][ C1] ip6_xmit+0x1f53/0x2650
[ 112.982656][ C1] ? ip6_xmit+0x2650/0x2650
[ 112.987164][ C1] inet6_csk_xmit+0x3df/0x4f0
[ 112.991857][ C1] ? inet6_csk_addr2sockaddr+0x2c0/0x2c0
[ 112.997476][ C1] __tcp_transmit_skb+0x4076/0x5b40
[ 113.002703][ C1] tcp_write_xmit+0x39a9/0xa730
[ 113.007604][ C1] ? kmsan_get_shadow_origin_ptr+0x20/0x470
[ 113.013505][ C1] __tcp_push_pending_frames+0x124/0x4e0
[ 113.019136][ C1] tcp_send_fin+0xd43/0x1540
[ 113.023818][ C1] tcp_close+0x16ba/0x1860
[ 113.028313][ C1] ? ip_mc_drop_socket+0x69b/0x6e0
[ 113.033438][ C1] ? kmsan_internal_memset_shadow+0x104/0x3a0
[ 113.039508][ C1] ? tcp_check_oom+0x530/0x530
[ 113.044272][ C1] inet_release+0x1f7/0x270
[ 113.048781][ C1] inet6_release+0xaf/0x100
[ 113.053298][ C1] sock_close+0x156/0x490
[ 113.057625][ C1] ? __inet6_bind+0x1b70/0x1b70
[ 113.062476][ C1] ? sock_mmap+0x130/0x130
[ 113.066879][ C1] __fput+0x4c9/0xba0
[ 113.070878][ C1] ____fput+0x37/0x40
[ 113.074844][ C1] ? fput_many+0x2a0/0x2a0
[ 113.079270][ C1] task_work_run+0x22e/0x2a0
[ 113.083858][ C1] prepare_exit_to_usermode+0x39d/0x4d0
[ 113.089402][ C1] syscall_return_slowpath+0x90/0x5c0
[ 113.094775][ C1] ? kmsan_get_shadow_origin_ptr+0x71/0x470
[ 113.100658][ C1] do_syscall_64+0xe2/0xf0
[ 113.105064][ C1] entry_SYSCALL_64_after_hwframe+0x63/0xe7
[ 113.110959][ C1] RIP: 0033:0x401d50
[ 113.114862][ C1] Code: 01 f0 ff ff 0f 83 40 0d 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 3d dd 8d 2d 00 00 75 14 b8 03 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 14 0d 00 00 c3 48 83 ec 08 e8 7a 02 00 00
[ 113.134451][ C1] RSP: 002b:00007fffe3c9d988 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[ 113.142847][ C1] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 0000000000401d50
[ 113.150821][ C1] RDX: 000000000000001c RSI: 0000000000000000 RDI: 0000000000000003
[ 113.158783][ C1] RBP: 00000000004a9050 R08: 0000000020000040 R09: 000000000000001c
[ 113.166740][ C1] R10: 0000000020004004 R11: 0000000000000246 R12: 0000000000402ef0
[ 113.174720][ C1] R13: 0000000000402f80 R14: 0000000000000000 R15: 0000000000000000
[ 113.182804][ C1]
[ 113.185120][ C1] Uninit was created at:
[ 113.189373][ C1] kmsan_internal_poison_shadow+0x53/0xa0
[ 113.195079][ C1] kmsan_kmalloc+0xa4/0x130
[ 113.199590][ C1] kmem_cache_alloc+0x534/0xb00
[ 113.204427][ C1] inet_reqsk_alloc+0xa8/0x600
[ 113.209188][ C1] cookie_v6_check+0xadb/0x29a0
[ 113.214022][ C1] tcp_v6_do_rcv+0xf1c/0x1ce0
[ 113.218677][ C1] tcp_v6_rcv+0x60b7/0x6a30
[ 113.223176][ C1] ip6_protocol_deliver_rcu+0x1433/0x22f0
[ 113.228900][ C1] ip6_input+0x2af/0x340
[ 113.233154][ C1] ipv6_rcv+0x683/0x710
[ 113.237295][ C1] process_backlog+0x721/0x1410
[ 113.242132][ C1] net_rx_action+0x738/0x1940
[ 113.246799][ C1] __do_softirq+0x4ad/0x858
[ 113.251292][ C1] do_softirq_own_stack+0x49/0x80
[ 113.256303][ C1] __local_bh_enable_ip+0x199/0x1e0
[ 113.261585][ C1] local_bh_enable+0x36/0x40
[ 113.266160][ C1] ip6_finish_output2+0x213f/0x2670
[ 113.271339][ C1] ip6_finish_output+0xae4/0xbc0
[ 113.276314][ C1] ip6_output+0x5d3/0x720
[ 113.280646][ C1] ip6_xmit+0x1f53/0x2650
[ 113.284958][ C1] inet6_csk_xmit+0x3df/0x4f0
[ 113.289625][ C1] __tcp_transmit_skb+0x4076/0x5b40
[ 113.294809][ C1] tcp_write_xmit+0x39a9/0xa730
[ 113.299668][ C1] __tcp_push_pending_frames+0x124/0x4e0
[ 113.305318][ C1] tcp_send_fin+0xd43/0x1540
[ 113.309893][ C1] tcp_close+0x16ba/0x1860
[ 113.314292][ C1] inet_release+0x1f7/0x270
[ 113.318775][ C1] inet6_release+0xaf/0x100
[ 113.323295][ C1] sock_close+0x156/0x490
[ 113.327698][ C1] __fput+0x4c9/0xba0
[ 113.331659][ C1] ____fput+0x37/0x40
[ 113.335625][ C1] task_work_run+0x22e/0x2a0
[ 113.340211][ C1] prepare_exit_to_usermode+0x39d/0x4d0
[ 113.345737][ C1] syscall_return_slowpath+0x90/0x5c0
[ 113.351758][ C1] do_syscall_64+0xe2/0xf0
[ 113.356161][ C1] entry_SYSCALL_64_after_hwframe+0x63/0xe7
[ 113.362032][ C1] ==================================================================
[ 113.370082][ C1] Disabling lock debugging due to kernel taint
[ 113.376218][ C1] Kernel panic - not syncing: panic_on_warn set ...
[ 113.382803][ C1] CPU: 1 PID: 13251 Comm: syz-executor611 Tainted: G B 5.2.0-rc4+ #10
[ 113.392233][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 113.402274][ C1] Call Trace:
[ 113.405545][ C1]
[ 113.408387][ C1] dump_stack+0x191/0x1f0
[ 113.412711][ C1] panic+0x3c9/0xc1e
[ 113.416623][ C1] kmsan_report+0x2ca/0x2d0
[ 113.421118][ C1] __msan_warning+0x75/0xe0
[ 113.425734][ C1] tcp_create_openreq_child+0x157f/0x1cc0
[ 113.431478][ C1] tcp_v6_syn_recv_sock+0x761/0x2d80
[ 113.436770][ C1] ? __msan_poison_alloca+0x1c0/0x270
[ 113.442136][ C1] ? kmsan_get_shadow_origin_ptr+0x71/0x470
[ 113.448031][ C1] ? cookie_v6_check+0x27e0/0x29a0
[ 113.453152][ C1] ? tcp_v6_conn_request+0x2d0/0x2d0
[ 113.458424][ C1] tcp_get_cookie_sock+0x16e/0x6b0
[ 113.463536][ C1] cookie_v6_check+0x27e0/0x29a0
[ 113.468502][ C1] tcp_v6_do_rcv+0xf1c/0x1ce0
[ 113.473166][ C1] ? kmsan_memcpy_memmove_metadata+0x8bc/0xe00
[ 113.479318][ C1] tcp_v6_rcv+0x60b7/0x6a30
[ 113.483841][ C1] ? usb_get_string+0x281/0x5a0
[ 113.488704][ C1] ip6_protocol_deliver_rcu+0x1433/0x22f0
[ 113.494450][ C1] ip6_input+0x2af/0x340
[ 113.498689][ C1] ? ip6_input+0x340/0x340
[ 113.503096][ C1] ? ip6_protocol_deliver_rcu+0x22f0/0x22f0
[ 113.508972][ C1] ipv6_rcv+0x683/0x710
[ 113.513122][ C1] ? local_bh_enable+0x40/0x40
[ 113.517874][ C1] process_backlog+0x721/0x1410
[ 113.522727][ C1] ? kmsan_get_shadow_origin_ptr+0x71/0x470
[ 113.528611][ C1] ? kmsan_get_shadow_origin_ptr+0x71/0x470
[ 113.534507][ C1] ? rps_trigger_softirq+0x2e0/0x2e0
[ 113.539789][ C1] net_rx_action+0x738/0x1940
[ 113.544617][ C1] ? net_tx_action+0xb70/0xb70
[ 113.549370][ C1] __do_softirq+0x4ad/0x858
[ 113.553870][ C1] do_softirq_own_stack+0x49/0x80
[ 113.558869][ C1]
[ 113.561799][ C1] __local_bh_enable_ip+0x199/0x1e0
[ 113.566992][ C1] local_bh_enable+0x36/0x40
[ 113.571625][ C1] ip6_finish_output2+0x213f/0x2670
[ 113.576841][ C1] ? kmsan_get_shadow_origin_ptr+0x71/0x470
[ 113.582746][ C1] ip6_finish_output+0xae4/0xbc0
[ 113.587683][ C1] ip6_output+0x5d3/0x720
[ 113.592025][ C1] ? ip6_output+0x720/0x720
[ 113.596517][ C1] ? ac6_seq_show+0x200/0x200
[ 113.601177][ C1] ip6_xmit+0x1f53/0x2650
[ 113.605520][ C1] ? ip6_xmit+0x2650/0x2650
[ 113.610016][ C1] inet6_csk_xmit+0x3df/0x4f0
[ 113.614697][ C1] ? inet6_csk_addr2sockaddr+0x2c0/0x2c0
[ 113.620316][ C1] __tcp_transmit_skb+0x4076/0x5b40
[ 113.625537][ C1] tcp_write_xmit+0x39a9/0xa730
[ 113.630426][ C1] ? kmsan_get_shadow_origin_ptr+0x20/0x470
[ 113.636333][ C1] __tcp_push_pending_frames+0x124/0x4e0
[ 113.641981][ C1] tcp_send_fin+0xd43/0x1540
[ 113.646590][ C1] tcp_close+0x16ba/0x1860
[ 113.650991][ C1] ? ip_mc_drop_socket+0x69b/0x6e0
[ 113.656095][ C1] ? kmsan_internal_memset_shadow+0x104/0x3a0
[ 113.662161][ C1] ? tcp_check_oom+0x530/0x530
[ 113.666913][ C1] inet_release+0x1f7/0x270
[ 113.671770][ C1] inet6_release+0xaf/0x100
[ 113.676271][ C1] sock_close+0x156/0x490
[ 113.680601][ C1] ? __inet6_bind+0x1b70/0x1b70
[ 113.685444][ C1] ? sock_mmap+0x130/0x130
[ 113.689845][ C1] __fput+0x4c9/0xba0
[ 113.693840][ C1] ____fput+0x37/0x40
[ 113.697805][ C1] ? fput_many+0x2a0/0x2a0
[ 113.702205][ C1] task_work_run+0x22e/0x2a0
[ 113.706876][ C1] prepare_exit_to_usermode+0x39d/0x4d0
[ 113.712414][ C1] syscall_return_slowpath+0x90/0x5c0
[ 113.717795][ C1] ? kmsan_get_shadow_origin_ptr+0x71/0x470
[ 113.723697][ C1] do_syscall_64+0xe2/0xf0
[ 113.728120][ C1] entry_SYSCALL_64_after_hwframe+0x63/0xe7
[ 113.734009][ C1] RIP: 0033:0x401d50
[ 113.737885][ C1] Code: 01 f0 ff ff 0f 83 40 0d 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 3d dd 8d 2d 00 00 75 14 b8 03 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 14 0d 00 00 c3 48 83 ec 08 e8 7a 02 00 00
[ 113.757500][ C1] RSP: 002b:00007fffe3c9d988 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[ 113.765921][ C1] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 0000000000401d50
[ 113.773898][ C1] RDX: 000000000000001c RSI: 0000000000000000 RDI: 0000000000000003
[ 113.781857][ C1] RBP: 00000000004a9050 R08: 0000000020000040 R09: 000000000000001c
[ 113.789816][ C1] R10: 0000000020004004 R11: 0000000000000246 R12: 0000000000402ef0
[ 113.797801][ C1] R13: 0000000000402f80 R14: 0000000000000000 R15: 0000000000000000
[ 113.806799][ C1] Kernel Offset: disabled
[ 113.811130][ C1] Rebooting in 86400 seconds..