[....] Starting enhanced syslogd: rsyslogd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[ 95.016921][ T30] audit: type=1800 audit(1562662708.063:25): pid=12268 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[ 95.041755][ T30] audit: type=1800 audit(1562662708.093:26): pid=12268 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[ 95.079047][ T30] audit: type=1800 audit(1562662708.113:27): pid=12268 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[....] Starting OpenBSD Secure Shell server: sshd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
Debian GNU/Linux 7 syzkaller ttyS0
Warning: Permanently added '10.128.1.30' (ECDSA) to the list of known hosts.
syzkaller login: [ 106.303492][T12422] IPVS: ftp: loaded support on port[0] = 21
[ 106.381119][T12422] chnl_net:caif_netlink_parms(): no params data found
[ 106.418047][T12422] bridge0: port 1(bridge_slave_0) entered blocking state
[ 106.425396][T12422] bridge0: port 1(bridge_slave_0) entered disabled state
[ 106.434039][T12422] device bridge_slave_0 entered promiscuous mode
[ 106.442478][T12422] bridge0: port 2(bridge_slave_1) entered blocking state
[ 106.449642][T12422] bridge0: port 2(bridge_slave_1) entered disabled state
[ 106.458139][T12422] device bridge_slave_1 entered promiscuous mode
[ 106.480375][T12422] bond0: Enslaving bond_slave_0 as an active interface with an up link
[ 106.490872][T12422] bond0: Enslaving bond_slave_1 as an active interface with an up link
[ 106.514039][T12422] team0: Port device team_slave_0 added
[ 106.521891][T12422] team0: Port device team_slave_1 added
[ 106.585429][T12422] device hsr_slave_0 entered promiscuous mode
[ 106.633058][T12422] device hsr_slave_1 entered promiscuous mode
[ 106.715473][T12422] bridge0: port 2(bridge_slave_1) entered blocking state
[ 106.722758][T12422] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 106.730237][T12422] bridge0: port 1(bridge_slave_0) entered blocking state
[ 106.737709][T12422] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 106.789289][T12422] 8021q: adding VLAN 0 to HW filter on device bond0
[ 106.804324][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 106.814026][ T12] bridge0: port 1(bridge_slave_0) entered disabled state
[ 106.822606][ T12] bridge0: port 2(bridge_slave_1) entered disabled state
[ 106.831262][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 106.846002][T12422] 8021q: adding VLAN 0 to HW filter on device team0
[ 106.858573][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 106.867523][ T33] bridge0: port 1(bridge_slave_0) entered blocking state
[ 106.874701][ T33] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 106.904383][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 106.913533][ T33] bridge0: port 2(bridge_slave_1) entered blocking state
[ 106.920774][ T33] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 106.930055][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 106.939279][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 106.954799][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 106.963735][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 106.979759][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 106.991295][T12422] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
executing program
[ 107.019855][T12422] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 107.071925][ C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters.
[ 107.085382][ C0] ==================================================================
[ 107.093470][ C0] BUG: KMSAN: uninit-value in tcp_create_openreq_child+0x157f/0x1cc0
[ 107.101526][ C0] CPU: 0 PID: 12422 Comm: syz-executor240 Not tainted 5.2.0-rc4+ #10
[ 107.109576][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 107.119622][ C0] Call Trace:
[ 107.122903][ C0]
[ 107.125756][ C0] dump_stack+0x191/0x1f0
[ 107.130093][ C0] kmsan_report+0x162/0x2d0
[ 107.134813][ C0] __msan_warning+0x75/0xe0
[ 107.139377][ C0] tcp_create_openreq_child+0x157f/0x1cc0
[ 107.145160][ C0] tcp_v6_syn_recv_sock+0x761/0x2d80
[ 107.150465][ C0] ? __msan_poison_alloca+0x1c0/0x270
[ 107.155833][ C0] ? kmsan_get_shadow_origin_ptr+0x71/0x470
[ 107.161718][ C0] ? cookie_v6_check+0x27e0/0x29a0
[ 107.166828][ C0] ? tcp_v6_conn_request+0x2d0/0x2d0
[ 107.172105][ C0] tcp_get_cookie_sock+0x16e/0x6b0
[ 107.177225][ C0] cookie_v6_check+0x27e0/0x29a0
[ 107.182198][ C0] tcp_v6_do_rcv+0xf1c/0x1ce0
[ 107.186924][ C0] ? kmsan_memcpy_memmove_metadata+0x8bc/0xe00
[ 107.193087][ C0] tcp_v6_rcv+0x60b7/0x6a30
[ 107.197643][ C0] ip6_protocol_deliver_rcu+0x1433/0x22f0
[ 107.203404][ C0] ip6_input+0x2af/0x340
[ 107.207650][ C0] ? ip6_input+0x340/0x340
[ 107.212104][ C0] ? ip6_protocol_deliver_rcu+0x22f0/0x22f0
[ 107.217988][ C0] ipv6_rcv+0x683/0x710
[ 107.222195][ C0] ? local_bh_enable+0x40/0x40
[ 107.227000][ C0] process_backlog+0x721/0x1410
[ 107.231855][ C0] ? kmsan_get_shadow_origin_ptr+0x71/0x470
[ 107.237746][ C0] ? kmsan_get_shadow_origin_ptr+0x71/0x470
[ 107.243638][ C0] ? rps_trigger_softirq+0x2e0/0x2e0
[ 107.248912][ C0] net_rx_action+0x738/0x1940
[ 107.253650][ C0] ? net_tx_action+0xb70/0xb70
[ 107.258412][ C0] __do_softirq+0x4ad/0x858
[ 107.262973][ C0] do_softirq_own_stack+0x49/0x80
[ 107.267981][ C0]
[ 107.270913][ C0] __local_bh_enable_ip+0x199/0x1e0
[ 107.276111][ C0] local_bh_enable+0x36/0x40
[ 107.280694][ C0] ip6_finish_output2+0x213f/0x2670
[ 107.285921][ C0] ? kmsan_get_shadow_origin_ptr+0x71/0x470
[ 107.291811][ C0] ip6_finish_output+0xae4/0xbc0
[ 107.296760][ C0] ip6_output+0x5d3/0x720
[ 107.301096][ C0] ? ip6_output+0x720/0x720
[ 107.305594][ C0] ? ac6_seq_show+0x200/0x200
[ 107.310264][ C0] ip6_xmit+0x1f53/0x2650
[ 107.314618][ C0] ? ip6_xmit+0x2650/0x2650
[ 107.319122][ C0] inet6_csk_xmit+0x3df/0x4f0
[ 107.323814][ C0] ? inet6_csk_addr2sockaddr+0x2c0/0x2c0
[ 107.329440][ C0] __tcp_transmit_skb+0x4076/0x5b40
[ 107.334673][ C0] tcp_write_xmit+0x39a9/0xa730
[ 107.339577][ C0] ? kmsan_get_shadow_origin_ptr+0x20/0x470
[ 107.345479][ C0] __tcp_push_pending_frames+0x124/0x4e0
[ 107.351112][ C0] tcp_send_fin+0xd43/0x1540
[ 107.355719][ C0] tcp_close+0x16ba/0x1860
[ 107.360131][ C0] ? ip_mc_drop_socket+0x69b/0x6e0
[ 107.365275][ C0] ? kmsan_internal_memset_shadow+0x104/0x3a0
[ 107.371344][ C0] ? tcp_check_oom+0x530/0x530
[ 107.376104][ C0] inet_release+0x1f7/0x270
[ 107.380611][ C0] inet6_release+0xaf/0x100
[ 107.385157][ C0] sock_close+0x156/0x490
[ 107.389486][ C0] ? __inet6_bind+0x1b70/0x1b70
[ 107.394334][ C0] ? sock_mmap+0x130/0x130
[ 107.398740][ C0] __fput+0x4c9/0xba0
[ 107.402729][ C0] ____fput+0x37/0x40
[ 107.406703][ C0] ? fput_many+0x2a0/0x2a0
[ 107.411115][ C0] task_work_run+0x22e/0x2a0
[ 107.415709][ C0] prepare_exit_to_usermode+0x39d/0x4d0
[ 107.421253][ C0] syscall_return_slowpath+0x90/0x5c0
[ 107.426738][ C0] ? kmsan_get_shadow_origin_ptr+0x71/0x470
[ 107.432633][ C0] do_syscall_64+0xe2/0xf0
[ 107.437046][ C0] entry_SYSCALL_64_after_hwframe+0x63/0xe7
[ 107.442931][ C0] RIP: 0033:0x401d50
[ 107.446858][ C0] Code: 01 f0 ff ff 0f 83 40 0d 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 3d dd 8d 2d 00 00 75 14 b8 03 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 14 0d 00 00 c3 48 83 ec 08 e8 7a 02 00 00
[ 107.466454][ C0] RSP: 002b:00007ffdb6549408 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[ 107.474858][ C0] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 0000000000401d50
[ 107.482993][ C0] RDX: 000000000000001c RSI: 0000000000000000 RDI: 0000000000000003
[ 107.490955][ C0] RBP: 00000000004a9050 R08: 0000000020000040 R09: 000000000000001c
[ 107.498915][ C0] R10: 0000000020004004 R11: 0000000000000246 R12: 0000000000402ef0
[ 107.506878][ C0] R13: 0000000000402f80 R14: 0000000000000000 R15: 0000000000000000
[ 107.514907][ C0]
[ 107.517224][ C0] Uninit was created at:
[ 107.521462][ C0] kmsan_internal_poison_shadow+0x53/0xa0
[ 107.527173][ C0] kmsan_kmalloc+0xa4/0x130
[ 107.531662][ C0] kmem_cache_alloc+0x534/0xb00
[ 107.536500][ C0] inet_reqsk_alloc+0xa8/0x600
[ 107.541254][ C0] cookie_v6_check+0xadb/0x29a0
[ 107.546093][ C0] tcp_v6_do_rcv+0xf1c/0x1ce0
[ 107.550756][ C0] tcp_v6_rcv+0x60b7/0x6a30
[ 107.555253][ C0] ip6_protocol_deliver_rcu+0x1433/0x22f0
[ 107.560958][ C0] ip6_input+0x2af/0x340
[ 107.565190][ C0] ipv6_rcv+0x683/0x710
[ 107.569377][ C0] process_backlog+0x721/0x1410
[ 107.574218][ C0] net_rx_action+0x738/0x1940
[ 107.578883][ C0] __do_softirq+0x4ad/0x858
[ 107.583380][ C0] do_softirq_own_stack+0x49/0x80
[ 107.588395][ C0] __local_bh_enable_ip+0x199/0x1e0
[ 107.593582][ C0] local_bh_enable+0x36/0x40
[ 107.598162][ C0] ip6_finish_output2+0x213f/0x2670
[ 107.603351][ C0] ip6_finish_output+0xae4/0xbc0
[ 107.608277][ C0] ip6_output+0x5d3/0x720
[ 107.612637][ C0] ip6_xmit+0x1f53/0x2650
[ 107.616959][ C0] inet6_csk_xmit+0x3df/0x4f0
[ 107.621628][ C0] __tcp_transmit_skb+0x4076/0x5b40
[ 107.626833][ C0] tcp_write_xmit+0x39a9/0xa730
[ 107.631726][ C0] __tcp_push_pending_frames+0x124/0x4e0
[ 107.637346][ C0] tcp_send_fin+0xd43/0x1540
[ 107.641927][ C0] tcp_close+0x16ba/0x1860
[ 107.646373][ C0] inet_release+0x1f7/0x270
[ 107.650869][ C0] inet6_release+0xaf/0x100
[ 107.655369][ C0] sock_close+0x156/0x490
[ 107.659689][ C0] __fput+0x4c9/0xba0
[ 107.663659][ C0] ____fput+0x37/0x40
[ 107.667633][ C0] task_work_run+0x22e/0x2a0
[ 107.672211][ C0] prepare_exit_to_usermode+0x39d/0x4d0
[ 107.677742][ C0] syscall_return_slowpath+0x90/0x5c0
[ 107.683100][ C0] do_syscall_64+0xe2/0xf0
[ 107.687509][ C0] entry_SYSCALL_64_after_hwframe+0x63/0xe7
[ 107.693385][ C0] ==================================================================
[ 107.703340][ C0] Disabling lock debugging due to kernel taint
[ 107.709482][ C0] Kernel panic - not syncing: panic_on_warn set ...
[ 107.716061][ C0] CPU: 0 PID: 12422 Comm: syz-executor240 Tainted: G B 5.2.0-rc4+ #10
[ 107.725496][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 107.735539][ C0] Call Trace:
[ 107.738813][ C0]
[ 107.741667][ C0] dump_stack+0x191/0x1f0
[ 107.745999][ C0] panic+0x3c9/0xc1e
[ 107.749925][ C0] kmsan_report+0x2ca/0x2d0
[ 107.754431][ C0] __msan_warning+0x75/0xe0
[ 107.758937][ C0] tcp_create_openreq_child+0x157f/0x1cc0
[ 107.764908][ C0] tcp_v6_syn_recv_sock+0x761/0x2d80
[ 107.770211][ C0] ? __msan_poison_alloca+0x1c0/0x270
[ 107.775581][ C0] ? kmsan_get_shadow_origin_ptr+0x71/0x470
[ 107.781505][ C0] ? cookie_v6_check+0x27e0/0x29a0
[ 107.786613][ C0] ? tcp_v6_conn_request+0x2d0/0x2d0
[ 107.791936][ C0] tcp_get_cookie_sock+0x16e/0x6b0
[ 107.797054][ C0] cookie_v6_check+0x27e0/0x29a0
[ 107.802041][ C0] tcp_v6_do_rcv+0xf1c/0x1ce0
[ 107.806712][ C0] ? kmsan_memcpy_memmove_metadata+0x8bc/0xe00
[ 107.812890][ C0] tcp_v6_rcv+0x60b7/0x6a30
[ 107.817465][ C0] ip6_protocol_deliver_rcu+0x1433/0x22f0
[ 107.823219][ C0] ip6_input+0x2af/0x340
[ 107.827766][ C0] ? ip6_input+0x340/0x340
[ 107.832335][ C0] ? ip6_protocol_deliver_rcu+0x22f0/0x22f0
[ 107.838235][ C0] ipv6_rcv+0x683/0x710
[ 107.842411][ C0] ? local_bh_enable+0x40/0x40
[ 107.847179][ C0] process_backlog+0x721/0x1410
[ 107.852037][ C0] ? kmsan_get_shadow_origin_ptr+0x71/0x470
[ 107.857930][ C0] ? kmsan_get_shadow_origin_ptr+0x71/0x470
[ 107.863823][ C0] ? rps_trigger_softirq+0x2e0/0x2e0
[ 107.869146][ C0] net_rx_action+0x738/0x1940
[ 107.873842][ C0] ? net_tx_action+0xb70/0xb70
[ 107.878600][ C0] __do_softirq+0x4ad/0x858
[ 107.883153][ C0] do_softirq_own_stack+0x49/0x80
[ 107.888163][ C0]
[ 107.891093][ C0] __local_bh_enable_ip+0x199/0x1e0
[ 107.896293][ C0] local_bh_enable+0x36/0x40
[ 107.900925][ C0] ip6_finish_output2+0x213f/0x2670
[ 107.906147][ C0] ? kmsan_get_shadow_origin_ptr+0x71/0x470
[ 107.912082][ C0] ip6_finish_output+0xae4/0xbc0
[ 107.917040][ C0] ip6_output+0x5d3/0x720
[ 107.921371][ C0] ? ip6_output+0x720/0x720
[ 107.925870][ C0] ? ac6_seq_show+0x200/0x200
[ 107.930537][ C0] ip6_xmit+0x1f53/0x2650
[ 107.934887][ C0] ? ip6_xmit+0x2650/0x2650
[ 107.939407][ C0] inet6_csk_xmit+0x3df/0x4f0
[ 107.944099][ C0] ? inet6_csk_addr2sockaddr+0x2c0/0x2c0
[ 107.949728][ C0] __tcp_transmit_skb+0x4076/0x5b40
[ 107.954960][ C0] tcp_write_xmit+0x39a9/0xa730
[ 107.959873][ C0] ? kmsan_get_shadow_origin_ptr+0x20/0x470
[ 107.965776][ C0] __tcp_push_pending_frames+0x124/0x4e0
[ 107.971410][ C0] tcp_send_fin+0xd43/0x1540
[ 107.976014][ C0] tcp_close+0x16ba/0x1860
[ 107.980423][ C0] ? ip_mc_drop_socket+0x69b/0x6e0
[ 107.985593][ C0] ? kmsan_internal_memset_shadow+0x104/0x3a0
[ 107.991747][ C0] ? tcp_check_oom+0x530/0x530
[ 107.996505][ C0] inet_release+0x1f7/0x270
[ 108.001011][ C0] inet6_release+0xaf/0x100
[ 108.005516][ C0] sock_close+0x156/0x490
[ 108.009841][ C0] ? __inet6_bind+0x1b70/0x1b70
[ 108.014690][ C0] ? sock_mmap+0x130/0x130
[ 108.019177][ C0] __fput+0x4c9/0xba0
[ 108.023169][ C0] ____fput+0x37/0x40
[ 108.027142][ C0] ? fput_many+0x2a0/0x2a0
[ 108.031551][ C0] task_work_run+0x22e/0x2a0
[ 108.036147][ C0] prepare_exit_to_usermode+0x39d/0x4d0
[ 108.041692][ C0] syscall_return_slowpath+0x90/0x5c0
[ 108.047061][ C0] ? kmsan_get_shadow_origin_ptr+0x71/0x470
[ 108.052950][ C0] do_syscall_64+0xe2/0xf0
[ 108.057362][ C0] entry_SYSCALL_64_after_hwframe+0x63/0xe7
[ 108.063242][ C0] RIP: 0033:0x401d50
[ 108.067128][ C0] Code: 01 f0 ff ff 0f 83 40 0d 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 3d dd 8d 2d 00 00 75 14 b8 03 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 14 0d 00 00 c3 48 83 ec 08 e8 7a 02 00 00
[ 108.086724][ C0] RSP: 002b:00007ffdb6549408 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[ 108.095129][ C0] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 0000000000401d50
[ 108.103090][ C0] RDX: 000000000000001c RSI: 0000000000000000 RDI: 0000000000000003
[ 108.111052][ C0] RBP: 00000000004a9050 R08: 0000000020000040 R09: 000000000000001c
[ 108.119044][ C0] R10: 0000000020004004 R11: 0000000000000246 R12: 0000000000402ef0
[ 108.127003][ C0] R13: 0000000000402f80 R14: 0000000000000000 R15: 0000000000000000
[ 108.136236][ C0] Kernel Offset: disabled
[ 108.140575][ C0] Rebooting in 86400 seconds..