[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   62.049665] audit: type=1800 audit(1541869375.091:25): pid=6225 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[   62.068987] audit: type=1800 audit(1541869375.111:26): pid=6225 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   62.088523] audit: type=1800 audit(1541869375.131:27): pid=6225 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.31' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [   77.507691] PANIC: double fault, error_code: 0x0
[   77.512553] CPU: 1 PID: 6378 Comm: syz-executor824 Not tainted 4.19.0+ #81
[   77.519568] ==================================================================
[   77.526936] BUG: KMSAN: uninit-value in irq_work_claim+0x153/0x390
[   77.533551] CPU: 1 PID: 6378 Comm: syz-executor824 Not tainted 4.19.0+ #81
[   77.540553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   77.549896] Call Trace:
[   77.552473]  <#DF>
[   77.554641]  dump_stack+0x32d/0x480
[   77.558297]  ? irq_work_claim+0x153/0x390
[   77.562468]  kmsan_report+0x19f/0x300
[   77.566292]  kmsan_internal_check_memory+0x35f/0x450
[   77.571415]  ? __msan_poison_alloca+0x1e0/0x2b0
[   77.576124]  kmsan_check_memory+0xd/0x10
[   77.580198]  irq_work_claim+0x153/0x390
[   77.584179]  irq_work_queue+0x44/0x280
[   77.588084]  vprintk_emit+0x693/0x790
[   77.591909]  vprintk_default+0x90/0xa0
[   77.595809]  vprintk_func+0x26b/0x2a0
[   77.599614]  printk+0x1a3/0x1f0
[   77.602922]  dump_stack_print_info+0x2c4/0x3c0
[   77.607523]  show_regs_print_info+0x37/0x40
[   77.611870]  show_regs+0x38/0x170
[   77.615353]  df_debug+0x86/0xb0
[   77.618631]  do_double_fault+0x362/0x480
[   77.622703]  double_fault+0x1e/0x30
[   77.626369] RIP: 0010:kmsan_get_origin_address+0xa/0x370
[   77.631828] Code: eb fe 0f 0b 66 90 66 2e 0f 1f 84 00 00 00 00 00 eb fe 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 41 57 41 56 41 55 <41> 54 53 48 83 ec 10 48 89 75 c8 48 89 fb 49 bc 00 00 00 00 00 78
[   77.650723] RSP: 0018:fffffe000003d000 EFLAGS: 00010086
[   77.656101] RAX: 00000000000001a8 RBX: 0000000000000000 RCX: 0000000000000001
[   77.663380] RDX: 0000000000000001 RSI: 0000000000000088 RDI: fffffe000003d150
[   77.670640] RBP: fffffe000003d018 R08: 0000000000000000 R09: 0000000000000000
[   77.677904] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000088
[   77.685169] R13: fffffe000003d1c0 R14: fffffe000003d1a8 R15: fffffe000003d1a8
[   77.692446]  </#DF>
[   77.694673]  <ENTRY_TRAMPOLINE>
[   77.697972]  kmsan_memmove_origins+0xbd/0x1d0
[   77.702488]  ? kmsan_memmove_shadow+0xad/0xe0
[   77.707012]  __msan_memmove+0x6c/0x80
[   77.710825]  fixup_bad_iret+0x9b/0x130
[   77.714763]  error_entry+0xad/0xc0
[   77.718298] RIP: 0000:          (null)
[   77.722206] Code: Bad RIP value.
[   77.725563] RSP: 0000:0000000000000000 EFLAGS: 00000000 ORIG_RAX: 0000000000000000
[   77.733266] RAX: 0000000000000000 RBX: ffffffff8ae00e58 RCX: 0000000000000000
[   77.740531] RDX: 0000000000000000 RSI: 0000006e0000005b RDI: 0000000000000000
[   77.747813] RBP: 0000000000000000 R08: 00000000004009ae R09: 0000000044000004
[   77.755092] R10: 00000000004012e0 R11: 0000000000000000 R12: 00000000004009ae
[   77.762351] R13: 0000000044000004 R14: 00000000004012e0 R15: 0000000000000000
[   77.769623]  ? general_protection+0x8/0x30
[   77.773859]  ? general_protection+0x8/0x30
[   77.778094]  </ENTRY_TRAMPOLINE>
[   77.781447] 
[   77.783063] Local variable description: ----__ai_ptr@irq_work_claim
[   77.789464] Variable was created at:
[   77.793209]  irq_work_claim+0x4b/0x390
[   77.797087]  irq_work_queue+0x44/0x280
[   77.800959] 
[   77.802589] Byte 7 of 8 is uninitialized
[   77.806653] Memory access of size 8 starts at fffffe0000045a38
[   77.812608] ==================================================================
[   77.819952] Disabling lock debugging due to kernel taint
[   77.825408] Kernel panic - not syncing: panic_on_warn set ...
[   77.825408] 
[   77.832786] CPU: 1 PID: 6378 Comm: syz-executor824 Tainted: G    B             4.19.0+ #81
[   77.841178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   77.850525] Call Trace:
[   77.853100]  <#DF>
[   77.855256]  dump_stack+0x32d/0x480
[   77.858894]  panic+0x57e/0xb28
[   77.862150]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[   77.867619]  kmsan_report+0x300/0x300
[   77.871426]  kmsan_internal_check_memory+0x35f/0x450
[   77.876537]  ? __msan_poison_alloca+0x1e0/0x2b0
[   77.881237]  kmsan_check_memory+0xd/0x10
[   77.885297]  irq_work_claim+0x153/0x390
[   77.889280]  irq_work_queue+0x44/0x280
[   77.893168]  vprintk_emit+0x693/0x790
[   77.896982]  vprintk_default+0x90/0xa0
[   77.900870]  vprintk_func+0x26b/0x2a0
[   77.904692]  printk+0x1a3/0x1f0
[   77.907999]  dump_stack_print_info+0x2c4/0x3c0
[   77.912595]  show_regs_print_info+0x37/0x40
[   77.916926]  show_regs+0x38/0x170
[   77.920396]  df_debug+0x86/0xb0
[   77.923693]  do_double_fault+0x362/0x480
[   77.927770]  double_fault+0x1e/0x30
[   77.931416] RIP: 0010:kmsan_get_origin_address+0xa/0x370
[   77.936859] Code: eb fe 0f 0b 66 90 66 2e 0f 1f 84 00 00 00 00 00 eb fe 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 41 57 41 56 41 55 <41> 54 53 48 83 ec 10 48 89 75 c8 48 89 fb 49 bc 00 00 00 00 00 78
[   77.955764] RSP: 0018:fffffe000003d000 EFLAGS: 00010086
[   77.961126] RAX: 00000000000001a8 RBX: 0000000000000000 RCX: 0000000000000001
[   77.968386] RDX: 0000000000000001 RSI: 0000000000000088 RDI: fffffe000003d150
[   77.975647] RBP: fffffe000003d018 R08: 0000000000000000 R09: 0000000000000000
[   77.982908] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000088
[   77.990171] R13: fffffe000003d1c0 R14: fffffe000003d1a8 R15: fffffe000003d1a8
[   77.997448]  </#DF>
[   77.999673]  <ENTRY_TRAMPOLINE>
[   78.002956]  kmsan_memmove_origins+0xbd/0x1d0
[   78.007451]  ? kmsan_memmove_shadow+0xad/0xe0
[   78.011945]  __msan_memmove+0x6c/0x80
[   78.015768]  fixup_bad_iret+0x9b/0x130
[   78.019662]  error_entry+0xad/0xc0
[   78.023195] RIP: 0000:          (null)
[   78.027088] Code: Bad RIP value.
[   78.030445] RSP: 0000:0000000000000000 EFLAGS: 00000000 ORIG_RAX: 0000000000000000
[   78.038169] RAX: 0000000000000000 RBX: ffffffff8ae00e58 RCX: 0000000000000000
[   78.045458] RDX: 0000000000000000 RSI: 0000006e0000005b RDI: 0000000000000000
[   78.052749] RBP: 0000000000000000 R08: 00000000004009ae R09: 0000000044000004
[   78.060030] R10: 00000000004012e0 R11: 0000000000000000 R12: 00000000004009ae
[   78.067300] R13: 0000000044000004 R14: 00000000004012e0 R15: 0000000000000000
[   78.074576]  ? general_protection+0x8/0x30
[   78.078835]  ? general_protection+0x8/0x30
[   78.083112]  </ENTRY_TRAMPOLINE>
[   78.087428] Kernel Offset: disabled
[   78.091065] Rebooting in 86400 seconds..