[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[  102.120231][   T33] audit: type=1800 audit(1584821073.173:25): pid=10949 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[  102.144916][   T33] audit: type=1800 audit(1584821073.203:26): pid=10949 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[  102.195169][   T33] audit: type=1800 audit(1584821073.233:27): pid=10949 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.77' (ECDSA) to the list of known hosts.
syzkaller login: [  115.600858][T11101] IPVS: ftp: loaded support on port[0] = 21
[  115.688946][T11101] chnl_net:caif_netlink_parms(): no params data found
[  115.764639][T11101] bridge0: port 1(bridge_slave_0) entered blocking state
[  115.771768][T11101] bridge0: port 1(bridge_slave_0) entered disabled state
[  115.780105][T11101] device bridge_slave_0 entered promiscuous mode
[  115.789175][T11101] bridge0: port 2(bridge_slave_1) entered blocking state
[  115.796458][T11101] bridge0: port 2(bridge_slave_1) entered disabled state
[  115.805234][T11101] device bridge_slave_1 entered promiscuous mode
[  115.832704][T11101] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  115.844532][T11101] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  115.870736][T11101] team0: Port device team_slave_0 added
[  115.878871][T11101] team0: Port device team_slave_1 added
[  115.900798][T11101] batman_adv: batadv0: Adding interface: batadv_slave_0
[  115.908014][T11101] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  115.934025][T11101] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  115.946131][T11101] batman_adv: batadv0: Adding interface: batadv_slave_1
[  115.953289][T11101] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  115.979306][T11101] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  116.045334][T11101] device hsr_slave_0 entered promiscuous mode
[  116.102435][T11101] device hsr_slave_1 entered promiscuous mode
[  116.250411][T11101] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  116.296227][T11101] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  116.356362][T11101] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  116.416359][T11101] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  116.498481][T11101] bridge0: port 2(bridge_slave_1) entered blocking state
[  116.505766][T11101] bridge0: port 2(bridge_slave_1) entered forwarding state
[  116.513602][T11101] bridge0: port 1(bridge_slave_0) entered blocking state
[  116.520746][T11101] bridge0: port 1(bridge_slave_0) entered forwarding state
[  116.581956][T11101] 8021q: adding VLAN 0 to HW filter on device bond0
[  116.599244][ T4945] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  116.610254][ T4945] bridge0: port 1(bridge_slave_0) entered disabled state
[  116.620288][ T4945] bridge0: port 2(bridge_slave_1) entered disabled state
[  116.630136][ T4945] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  116.647386][T11101] 8021q: adding VLAN 0 to HW filter on device team0
[  116.661336][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  116.670746][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[  116.677935][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[  116.692319][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  116.702133][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  116.711348][    T5] bridge0: port 2(bridge_slave_1) entered blocking state
[  116.718705][    T5] bridge0: port 2(bridge_slave_1) entered forwarding state
[  116.732816][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  116.752415][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  116.762641][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  116.772564][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  116.793919][T11101] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  116.804671][T11101] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  116.819256][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  116.829062][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  116.839239][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  116.848711][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  116.857619][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  116.867112][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  116.876360][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  116.886615][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  116.909281][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  116.917079][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  116.935460][T11101] 8021q: adding VLAN 0 to HW filter on device batadv0
[  116.959722][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  116.969538][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  116.997385][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  117.007159][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  117.019647][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  117.028191][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  117.040385][T11101] device veth0_vlan entered promiscuous mode
[  117.055742][T11101] device veth1_vlan entered promiscuous mode
[  117.083735][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  117.093046][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  117.101977][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  117.110962][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  117.126028][T11101] device veth0_macvtap entered promiscuous mode
[  117.137175][T11101] device veth1_macvtap entered promiscuous mode
[  117.162743][T11101] batman_adv: batadv0: Interface activated: batadv_slave_0
[  117.170697][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  117.180377][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  117.188914][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  117.198325][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  117.214426][T11101] batman_adv: batadv0: Interface activated: batadv_slave_1
[  117.223178][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  117.233158][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
executing program
[  117.448234][T11128] netlink: 'syz-executor176': attribute type 5 has an invalid length.
[  117.461671][T11128] device gretap0 entered promiscuous mode
[  117.467587][T11128] device macvlan2 entered promiscuous mode
[  117.478586][T11128] device gretap0 left promiscuous mode
executing program
[  117.582649][T11129] netlink: 'syz-executor176': attribute type 5 has an invalid length.
[  117.596472][T11129] device gretap0 entered promiscuous mode
[  117.602686][T11129] device macvlan2 entered promiscuous mode
[  117.611694][T11129] device gretap0 left promiscuous mode
executing program
[  117.709813][T11130] netlink: 'syz-executor176': attribute type 5 has an invalid length.
[  117.723322][T11130] device gretap0 entered promiscuous mode
[  117.729279][T11130] device macvlan2 entered promiscuous mode
[  117.738437][T11130] device gretap0 left promiscuous mode
executing program
[  117.839770][T11131] netlink: 'syz-executor176': attribute type 5 has an invalid length.
[  117.853266][T11131] device gretap0 entered promiscuous mode
[  117.859056][T11131] device macvlan2 entered promiscuous mode
[  117.868097][T11131] device gretap0 left promiscuous mode
executing program
[  117.969310][T11132] netlink: 'syz-executor176': attribute type 5 has an invalid length.
[  117.982418][T11132] device gretap0 entered promiscuous mode
[  117.988220][T11132] device macvlan2 entered promiscuous mode
[  117.997345][T11132] device gretap0 left promiscuous mode
executing program
[  118.138945][T11133] netlink: 'syz-executor176': attribute type 5 has an invalid length.
[  118.152408][T11133] device gretap0 entered promiscuous mode
[  118.158244][T11133] device macvlan2 entered promiscuous mode
[  118.167938][T11133] device gretap0 left promiscuous mode
executing program
[  118.279735][T11134] netlink: 'syz-executor176': attribute type 5 has an invalid length.
[  118.293998][T11134] device gretap0 entered promiscuous mode
[  118.299786][T11134] device macvlan2 entered promiscuous mode
[  118.309624][T11134] device gretap0 left promiscuous mode
executing program
[  118.439509][T11135] netlink: 'syz-executor176': attribute type 5 has an invalid length.
[  118.452942][T11135] device gretap0 entered promiscuous mode
[  118.458837][T11135] device macvlan2 entered promiscuous mode
[  118.468307][T11135] device gretap0 left promiscuous mode
executing program
[  118.590026][T11136] netlink: 'syz-executor176': attribute type 5 has an invalid length.
[  118.603594][T11136] device gretap0 entered promiscuous mode
[  118.609374][T11136] device macvlan2 entered promiscuous mode
[  118.619504][T11136] device gretap0 left promiscuous mode
executing program
[  118.753361][T11137] netlink: 'syz-executor176': attribute type 5 has an invalid length.
[  118.766931][T11137] device gretap0 entered promiscuous mode
[  118.772933][T11137] device macvlan2 entered promiscuous mode
[  118.782364][T11137] device gretap0 left promiscuous mode
executing program
executing program
[  118.914507][T11138] device gretap0 entered promiscuous mode
[  118.920367][T11138] device macvlan2 entered promiscuous mode
[  118.928877][T11138] bridge0: port 3(macvlan2) entered blocking state
[  118.935540][T11138] bridge0: port 3(macvlan2) entered disabled state
[  118.944684][T11138] bridge0: port 3(macvlan2) entered blocking state
[  118.951286][T11138] bridge0: port 3(macvlan2) entered forwarding state
[  118.972016][T11139] device macvlan3 entered promiscuous mode
executing program
[  119.094599][T11140] device macvlan3 entered promiscuous mode
[  119.103267][T11140] bond0: (slave macvlan3): slave is up - this may be due to an out of date ifenslave
executing program
[  119.215040][T11141] device macvlan3 entered promiscuous mode
[  119.223741][T11141] team0: Device macvlan3 is up. Set it down before adding it as a team port
executing program
[  119.354870][T11142] device macvlan3 entered promiscuous mode
executing program
[  119.454661][T11143] device macvlan3 entered promiscuous mode
executing program
[  119.563302][T11144] device macvlan3 entered promiscuous mode
executing program
executing program
[  119.684730][T11145] device macvlan3 entered promiscuous mode
[  119.694035][T11145] batman_adv: batadv0: Adding interface: macvlan3
[  119.700517][T11145] batman_adv: batadv0: The MTU of interface macvlan3 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  119.726675][T11145] batman_adv: batadv0: Interface activated: macvlan3
[  119.746553][T11146] device macvlan4 entered promiscuous mode
executing program
[  119.855143][T11147] device macvlan4 entered promiscuous mode
executing program
[  119.984589][T11148] device macvlan4 entered promiscuous mode
executing program
[  120.104485][T11149] device macvlan4 entered promiscuous mode
executing program
[  120.224028][T11150] device macvlan4 entered promiscuous mode
executing program
[  120.323937][T11151] device macvlan4 entered promiscuous mode
executing program
[  120.425284][T11152] device macvlan4 entered promiscuous mode
executing program
[  120.544787][T11153] device macvlan4 entered promiscuous mode
executing program
[  120.655380][T11154] device macvlan4 entered promiscuous mode
executing program
[  120.764826][T11155] device macvlan4 entered promiscuous mode
executing program
[  120.884586][T11156] device macvlan4 entered promiscuous mode
executing program
[  121.003799][T11157] device macvlan4 entered promiscuous mode
executing program
[  121.114070][T11158] device macvlan4 entered promiscuous mode
[  121.132264][  T804] =====================================================
[  121.139250][  T804] BUG: KMSAN: uninit-value in kmsan_check_skb+0x3c/0x210
[  121.146397][  T804] CPU: 1 PID: 804 Comm: kworker/u4:27 Not tainted 5.6.0-rc6-syzkaller #0
[  121.154810][  T804] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  121.164890][  T804] Workqueue: bat_events batadv_iv_send_outstanding_bat_ogm_packet
[  121.172698][  T804] Call Trace:
[  121.176005][  T804]  dump_stack+0x1c9/0x220
[  121.180467][  T804]  kmsan_report+0xf7/0x1e0
[  121.184906][  T804]  kmsan_internal_check_memory+0x238/0x3d0
[  121.190740][  T804]  kmsan_check_skb+0x3c/0x210
[  121.195427][  T804]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  121.201243][  T804]  pfifo_fast_dequeue+0xdb4/0xfd0
[  121.206308][  T804]  ? pfifo_fast_enqueue+0x960/0x960
[  121.211511][  T804]  __qdisc_run+0x3f1/0x3350
[  121.216031][  T804]  ? kmsan_get_metadata+0x11d/0x180
[  121.221225][  T804]  ? kmsan_set_origin_checked+0x95/0xf0
[  121.226774][  T804]  ? kmsan_get_metadata+0x11d/0x180
[  121.231976][  T804]  __dev_queue_xmit+0x23b7/0x3b20
[  121.236997][  T804]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  121.243075][  T804]  dev_queue_xmit_accel+0x67/0x80
[  121.248086][  T804]  macvlan_start_xmit+0x587/0xb50
[  121.253108][  T804]  ? macvlan_stop+0x720/0x720
[  121.257765][  T804]  dev_hard_start_xmit+0x531/0xab0
[  121.262867][  T804]  ? kmsan_get_metadata+0x11d/0x180
[  121.268099][  T804]  __dev_queue_xmit+0x2f8d/0x3b20
[  121.273106][  T804]  ? kmsan_get_metadata+0x11d/0x180
[  121.278310][  T804]  dev_queue_xmit+0x4b/0x60
[  121.282800][  T804]  batadv_send_skb_packet+0x59b/0x8c0
[  121.288434][  T804]  batadv_send_broadcast_skb+0x76/0x90
[  121.293899][  T804]  batadv_iv_send_outstanding_bat_ogm_packet+0x97e/0xd50
[  121.300942][  T804]  ? batadv_iv_ogm_queue_add+0x1900/0x1900
[  121.306736][  T804]  process_one_work+0x1555/0x1f40
[  121.311804][  T804]  worker_thread+0xef6/0x2450
[  121.316520][  T804]  kthread+0x4b5/0x4f0
[  121.320584][  T804]  ? process_one_work+0x1f40/0x1f40
[  121.325772][  T804]  ? kthread_blkcg+0xf0/0xf0
[  121.330348][  T804]  ret_from_fork+0x35/0x40
[  121.334750][  T804] 
[  121.337065][  T804] Uninit was stored to memory at:
[  121.342082][  T804]  kmsan_internal_chain_origin+0xad/0x130
[  121.347779][  T804]  kmsan_memcpy_memmove_metadata+0x272/0x2e0
[  121.353737][  T804]  kmsan_memcpy_metadata+0xb/0x10
[  121.358738][  T804]  __msan_memcpy+0x43/0x50
[  121.363145][  T804]  pskb_expand_head+0x38b/0x1b00
[  121.368073][  T804]  batadv_skb_head_push+0x234/0x350
[  121.373247][  T804]  batadv_send_skb_packet+0x1a7/0x8c0
[  121.378603][  T804]  batadv_send_broadcast_skb+0x76/0x90
[  121.384044][  T804]  batadv_iv_send_outstanding_bat_ogm_packet+0x97e/0xd50
[  121.391056][  T804]  process_one_work+0x1555/0x1f40
[  121.396068][  T804]  worker_thread+0xef6/0x2450
[  121.400744][  T804]  kthread+0x4b5/0x4f0
[  121.404801][  T804]  ret_from_fork+0x35/0x40
[  121.409188][  T804] 
[  121.411495][  T804] Uninit was created at:
[  121.415722][  T804]  kmsan_save_stack_with_flags+0x3c/0x90
[  121.421345][  T804]  kmsan_alloc_page+0x12a/0x310
[  121.426199][  T804]  __alloc_pages_nodemask+0x5712/0x5e80
[  121.431723][  T804]  page_frag_alloc+0x3ae/0x910
[  121.436494][  T804]  __napi_alloc_skb+0x193/0xa60
[  121.441340][  T804]  page_to_skb+0x19f/0x1100
[  121.445830][  T804]  receive_buf+0xe79/0x8b30
[  121.450316][  T804]  virtnet_poll+0x64b/0x19f0
[  121.454902][  T804]  net_rx_action+0x786/0x1aa0
[  121.459571][  T804]  __do_softirq+0x311/0x83d
[  121.464055][  T804] 
[  121.466372][  T804] Bytes 52-53 of 146 are uninitialized
[  121.471807][  T804] Memory access of size 146 starts at ffff8ed3c0806c40
[  121.478635][  T804] =====================================================
[  121.485654][  T804] Disabling lock debugging due to kernel taint
[  121.491791][  T804] Kernel panic - not syncing: panic_on_warn set ...
[  121.498381][  T804] CPU: 1 PID: 804 Comm: kworker/u4:27 Tainted: G    B             5.6.0-rc6-syzkaller #0
[  121.508215][  T804] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  121.518274][  T804] Workqueue: bat_events batadv_iv_send_outstanding_bat_ogm_packet
[  121.526094][  T804] Call Trace:
[  121.529397][  T804]  dump_stack+0x1c9/0x220
[  121.533767][  T804]  panic+0x3d5/0xc3e
[  121.537693][  T804]  kmsan_report+0x1df/0x1e0
[  121.542206][  T804]  kmsan_internal_check_memory+0x238/0x3d0
[  121.548016][  T804]  kmsan_check_skb+0x3c/0x210
[  121.552723][  T804]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  121.558520][  T804]  pfifo_fast_dequeue+0xdb4/0xfd0
[  121.563559][  T804]  ? pfifo_fast_enqueue+0x960/0x960
[  121.568746][  T804]  __qdisc_run+0x3f1/0x3350
[  121.573245][  T804]  ? kmsan_get_metadata+0x11d/0x180
[  121.578435][  T804]  ? kmsan_set_origin_checked+0x95/0xf0
[  121.583978][  T804]  ? kmsan_get_metadata+0x11d/0x180
[  121.589160][  T804]  __dev_queue_xmit+0x23b7/0x3b20
[  121.594181][  T804]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  121.600249][  T804]  dev_queue_xmit_accel+0x67/0x80
[  121.605257][  T804]  macvlan_start_xmit+0x587/0xb50
[  121.610533][  T804]  ? macvlan_stop+0x720/0x720
[  121.615192][  T804]  dev_hard_start_xmit+0x531/0xab0
[  121.620325][  T804]  ? kmsan_get_metadata+0x11d/0x180
[  121.625507][  T804]  __dev_queue_xmit+0x2f8d/0x3b20
[  121.630514][  T804]  ? kmsan_get_metadata+0x11d/0x180
[  121.635710][  T804]  dev_queue_xmit+0x4b/0x60
[  121.640198][  T804]  batadv_send_skb_packet+0x59b/0x8c0
[  121.645583][  T804]  batadv_send_broadcast_skb+0x76/0x90
[  121.651041][  T804]  batadv_iv_send_outstanding_bat_ogm_packet+0x97e/0xd50
[  121.658057][  T804]  ? batadv_iv_ogm_queue_add+0x1900/0x1900
[  121.663850][  T804]  process_one_work+0x1555/0x1f40
[  121.668890][  T804]  worker_thread+0xef6/0x2450
[  121.673571][  T804]  kthread+0x4b5/0x4f0
[  121.677624][  T804]  ? process_one_work+0x1f40/0x1f40
[  121.682813][  T804]  ? kthread_blkcg+0xf0/0xf0
[  121.687391][  T804]  ret_from_fork+0x35/0x40
[  121.693084][  T804] Kernel Offset: 0x8600000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff)
[  121.704618][  T804] Rebooting in 86400 seconds..