[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   78.511052][   T31] audit: type=1800 audit(1574505224.559:25): pid=11352 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[   78.536568][   T31] audit: type=1800 audit(1574505224.589:26): pid=11352 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   78.569660][   T31] audit: type=1800 audit(1574505224.619:27): pid=11352 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.194' (ECDSA) to the list of known hosts.
syzkaller login: [   88.025355][T11504] IPVS: ftp: loaded support on port[0] = 21
[   88.096874][T11504] chnl_net:caif_netlink_parms(): no params data found
[   88.129723][T11504] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.137017][T11504] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.145203][T11504] device bridge_slave_0 entered promiscuous mode
[   88.153519][T11504] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.160594][T11504] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.168816][T11504] device bridge_slave_1 entered promiscuous mode
[   88.189182][T11504] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   88.200317][T11504] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   88.222152][T11504] team0: Port device team_slave_0 added
[   88.229768][T11504] team0: Port device team_slave_1 added
[   88.285244][T11504] device hsr_slave_0 entered promiscuous mode
[   88.322698][T11504] device hsr_slave_1 entered promiscuous mode
[   88.461913][T11504] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.469188][T11504] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.477031][T11504] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.484408][T11504] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.729229][T11504] 8021q: adding VLAN 0 to HW filter on device bond0
[   88.765003][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   88.783758][    T5] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.813000][    T5] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.844762][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   88.881496][T11504] 8021q: adding VLAN 0 to HW filter on device team0
[   88.910396][ T3229] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   88.919647][ T3229] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.926881][ T3229] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.993483][ T3229] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   89.002461][ T3229] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.009703][ T3229] bridge0: port 2(bridge_slave_1) entered forwarding state
[   89.087415][ T3229] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   89.097344][ T3229] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   89.106790][ T3229] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   89.126321][T11504] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   89.139002][T11504] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   89.183625][ T3229] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   89.192855][ T3229] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   89.201924][ T3229] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   89.265394][T11504] 8021q: adding VLAN 0 to HW filter on device batadv0
[   89.283410][ T3229] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   89.291078][ T3229] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
executing program
[   89.438407][T11504] =====================================================
[   89.445376][T11504] BUG: KMSAN: uninit-value in ip_tunnel_xmit+0x3c6/0x3320
[   89.452462][T11504] CPU: 1 PID: 11504 Comm: syz-executor514 Not tainted 5.4.0-rc8-syzkaller #0
[   89.461193][T11504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   89.471226][T11504] Call Trace:
[   89.472751][    C0] protocol 88fb is buggy, dev hsr_slave_0
[   89.474560][T11504]  dump_stack+0x1c9/0x220
[   89.480630][    C0] protocol 88fb is buggy, dev hsr_slave_1
[   89.484579][T11504]  kmsan_report+0x128/0x220
[   89.484601][T11504]  __msan_warning+0x64/0xc0
[   89.484620][T11504]  ip_tunnel_xmit+0x3c6/0x3320
[   89.484640][T11504]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[   89.484704][T11504]  ? skb_push+0x15b/0x250
[   89.514430][T11504]  ? gre_build_header+0x3ec/0x9f0
[   89.519441][T11504]  ? kmsan_get_shadow_origin_ptr+0x91/0x4d0
[   89.525325][T11504]  ipgre_xmit+0xff3/0x1120
[   89.529740][T11504]  ? ipgre_close+0x240/0x240
[   89.534312][T11504]  dev_hard_start_xmit+0x51a/0xab0
[   89.539410][T11504]  ? kmsan_get_shadow_origin_ptr+0x91/0x4d0
[   89.545290][T11504]  __dev_queue_xmit+0x35b6/0x4200
[   89.550350][T11504]  dev_queue_xmit+0x4b/0x60
[   89.554867][T11504]  ? netdev_core_pick_tx+0x4d0/0x4d0
[   89.560132][T11504]  packet_sendmsg+0x8234/0x9100
[   89.564988][T11504]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[   89.571033][T11504]  ? aa_label_sk_perm+0x6d6/0x940
[   89.576127][T11504]  ? kmsan_get_metadata+0x51/0x350
[   89.581219][T11504]  ? kmsan_internal_set_origin+0x6a/0xb0
[   89.586831][T11504]  ? metadata_is_contiguous+0x270/0x270
[   89.592373][T11504]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[   89.592798][    C0] protocol 88fb is buggy, dev hsr_slave_0
[   89.598492][T11504]  ? aa_sk_perm+0x730/0xaf0
[   89.604596][    C0] protocol 88fb is buggy, dev hsr_slave_1
[   89.608744][T11504]  ? compat_packet_setsockopt+0x360/0x360
[   89.620147][T11504]  ___sys_sendmsg+0x14ff/0x1590
[   89.624992][T11504]  ? kmsan_get_shadow_origin_ptr+0x91/0x4d0
[   89.630863][T11504]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[   89.636911][T11504]  ? __fget_light+0x1b8/0x710
[   89.641572][T11504]  __se_sys_sendmsg+0x305/0x460
[   89.646411][T11504]  __x64_sys_sendmsg+0x4a/0x70
[   89.651150][T11504]  do_syscall_64+0xb6/0x160
[   89.655636][T11504]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   89.661504][T11504] RIP: 0033:0x441fb9
[   89.665376][T11504] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 5b 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   89.685140][T11504] RSP: 002b:00007fffe25687a8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   89.693529][T11504] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000441fb9
[   89.701488][T11504] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003
[   89.710235][T11504] RBP: 0000000000000004 R08: 0000000000000025 R09: 0000000000000025
[   89.718206][T11504] R10: 0000000000000025 R11: 0000000000000246 R12: 0000000000000000
[   89.726159][T11504] R13: 0000000000403530 R14: 0000000000000000 R15: 0000000000000000
[   89.734127][T11504] 
[   89.736442][T11504] Uninit was created at:
[   89.740668][T11504]  kmsan_internal_poison_shadow+0x60/0x120
[   89.746452][T11504]  kmsan_slab_alloc+0x97/0x100
[   89.751193][T11504]  __kmalloc_node_track_caller+0xe27/0x11a0
[   89.757240][T11504]  __alloc_skb+0x306/0xa10
[   89.761634][T11504]  alloc_skb_with_frags+0x18c/0xa80
[   89.766821][T11504]  sock_alloc_send_pskb+0xafd/0x10a0
[   89.772097][T11504]  packet_sendmsg+0x63a6/0x9100
[   89.776921][T11504]  ___sys_sendmsg+0x14ff/0x1590
[   89.781745][T11504]  __se_sys_sendmsg+0x305/0x460
[   89.786575][T11504]  __x64_sys_sendmsg+0x4a/0x70
[   89.791325][T11504]  do_syscall_64+0xb6/0x160
[   89.795806][T11504]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   89.801666][T11504] =====================================================
[   89.808579][T11504] Disabling lock debugging due to kernel taint
[   89.814705][T11504] Kernel panic - not syncing: panic_on_warn set ...
[   89.821282][T11504] CPU: 1 PID: 11504 Comm: syz-executor514 Tainted: G    B             5.4.0-rc8-syzkaller #0
[   89.831488][T11504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   89.841519][T11504] Call Trace:
[   89.844789][T11504]  dump_stack+0x1c9/0x220
[   89.849100][T11504]  panic+0x3c9/0xc1e
[   89.853076][T11504]  kmsan_report+0x215/0x220
[   89.857562][T11504]  __msan_warning+0x64/0xc0
[   89.862059][T11504]  ip_tunnel_xmit+0x3c6/0x3320
[   89.866808][T11504]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[   89.872853][T11504]  ? skb_push+0x15b/0x250
[   89.877164][T11504]  ? gre_build_header+0x3ec/0x9f0
[   89.882173][T11504]  ? kmsan_get_shadow_origin_ptr+0x91/0x4d0
[   89.888055][T11504]  ipgre_xmit+0xff3/0x1120
[   89.892455][T11504]  ? ipgre_close+0x240/0x240
[   89.897021][T11504]  dev_hard_start_xmit+0x51a/0xab0
[   89.902117][T11504]  ? kmsan_get_shadow_origin_ptr+0x91/0x4d0
[   89.907986][T11504]  __dev_queue_xmit+0x35b6/0x4200
[   89.913003][T11504]  dev_queue_xmit+0x4b/0x60
[   89.917484][T11504]  ? netdev_core_pick_tx+0x4d0/0x4d0
[   89.922751][T11504]  packet_sendmsg+0x8234/0x9100
[   89.927581][T11504]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[   89.933638][T11504]  ? aa_label_sk_perm+0x6d6/0x940
[   89.938645][T11504]  ? kmsan_get_metadata+0x51/0x350
[   89.943756][T11504]  ? kmsan_internal_set_origin+0x6a/0xb0
[   89.949384][T11504]  ? metadata_is_contiguous+0x270/0x270
[   89.954912][T11504]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[   89.960952][T11504]  ? aa_sk_perm+0x730/0xaf0
[   89.965456][T11504]  ? compat_packet_setsockopt+0x360/0x360
[   89.971162][T11504]  ___sys_sendmsg+0x14ff/0x1590
[   89.976002][T11504]  ? kmsan_get_shadow_origin_ptr+0x91/0x4d0
[   89.981875][T11504]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[   89.987920][T11504]  ? __fget_light+0x1b8/0x710
[   89.992585][T11504]  __se_sys_sendmsg+0x305/0x460
[   89.997434][T11504]  __x64_sys_sendmsg+0x4a/0x70
[   90.002182][T11504]  do_syscall_64+0xb6/0x160
[   90.006690][T11504]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   90.012557][T11504] RIP: 0033:0x441fb9
[   90.016437][T11504] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 5b 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   90.036022][T11504] RSP: 002b:00007fffe25687a8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   90.044412][T11504] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000441fb9
[   90.052363][T11504] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003
[   90.060322][T11504] RBP: 0000000000000004 R08: 0000000000000025 R09: 0000000000000025
[   90.068271][T11504] R10: 0000000000000025 R11: 0000000000000246 R12: 0000000000000000
[   90.076220][T11504] R13: 0000000000403530 R14: 0000000000000000 R15: 0000000000000000
[   90.085504][T11504] Kernel Offset: 0x13800000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff)
[   90.097132][T11504] Rebooting in 86400 seconds..