[   53.664965] audit: type=1800 audit(1544897610.713:25): pid=6366 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   55.371270] kauditd_printk_skb: 3 callbacks suppressed
[   55.371300] audit: type=1800 audit(1544897612.413:29): pid=6366 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
[   55.396211] audit: type=1800 audit(1544897612.433:30): pid=6366 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.167' (ECDSA) to the list of known hosts.
2018/12/15 18:13:45 parsed 1 programs
2018/12/15 18:13:51 executed programs: 0
syzkaller login: [   74.996021] IPVS: ftp: loaded support on port[0] = 21
[   75.216024] ip (6545) used greatest stack depth: 53624 bytes left
[   75.469278] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.475881] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.483748] device bridge_slave_0 entered promiscuous mode
[   75.515254] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.521903] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.529565] device bridge_slave_1 entered promiscuous mode
[   75.560316] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   75.590588] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   75.679687] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   75.713372] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   75.855577] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   75.863593] team0: Port device team_slave_0 added
[   75.892909] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   75.900916] team0: Port device team_slave_1 added
[   75.932414] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   75.966846] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   76.003619] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   76.037062] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   76.331413] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.338041] bridge0: port 2(bridge_slave_1) entered forwarding state
[   76.345291] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.351814] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.403773] 8021q: adding VLAN 0 to HW filter on device bond0
[   77.508131] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   77.616845] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   77.623200] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   77.631013] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   77.733744] 8021q: adding VLAN 0 to HW filter on device team0
[   78.411871] ==================================================================
[   78.419427] BUG: KMSAN: uninit-value in check_6rd+0x65a/0x710
[   78.425331] CPU: 1 PID: 6784 Comm: syz-executor0 Not tainted 4.20.0-rc5+ #2
[   78.432479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   78.441899] Call Trace:
[   78.444516]  dump_stack+0x1c9/0x220
[   78.448158]  kmsan_report+0x12d/0x290
[   78.451967]  __msan_warning+0x76/0xc0
[   78.455903]  check_6rd+0x65a/0x710
[   78.459479]  sit_tunnel_xmit+0xb58/0x34d0
[   78.463661]  ? dev_hard_start_xmit+0xb3/0xc80
[   78.468156]  ? __dev_queue_xmit+0x3173/0x3cf0
[   78.472654]  ? ipip6_tunnel_uninit+0x800/0x800
[   78.477238]  dev_hard_start_xmit+0x627/0xc80
[   78.481818]  __dev_queue_xmit+0x3173/0x3cf0
[   78.486194]  dev_queue_xmit+0x4b/0x60
[   78.490000]  ? __netdev_pick_tx+0x1290/0x1290
[   78.494603]  packet_sendmsg+0x7cbd/0x9200
[   78.498882]  ? kmsan_memcpy_memmove_metadata+0x1a9/0xf30
[   78.504335]  ? kmsan_memcpy_metadata+0xb/0x10
[   78.508835]  ? sock_write_iter+0x102/0x4f0
[   78.513073]  ? __se_sys_write+0x17a/0x370
[   78.517232]  ? do_syscall_64+0xcd/0x110
[   78.521211]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[   78.526583]  ? vmalloc_to_page+0x585/0x6c0
[   78.530839]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[   78.536210]  ? aa_sk_perm+0x7ab/0x9e0
[   78.540025]  ? srp_create_target+0x2b7d/0x8910
[   78.544640]  ? compat_packet_setsockopt+0x360/0x360
[   78.549659]  sock_write_iter+0x3f4/0x4f0
[   78.553742]  ? sock_read_iter+0x4e0/0x4e0
[   78.557891]  __vfs_write+0x888/0xb80
[   78.561658]  vfs_write+0x4b4/0x900
[   78.565242]  __se_sys_write+0x17a/0x370
[   78.569234]  __x64_sys_write+0x4a/0x70
[   78.573126]  do_syscall_64+0xcd/0x110
[   78.576935]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[   78.582140] RIP: 0033:0x457659
[   78.585352] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   78.604252] RSP: 002b:00007ffd3afacbc8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   78.611970] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457659
[   78.619292] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   78.626564] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[   78.633871] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000002523914
[   78.641143] R13: 00000000004c6084 R14: 00000000004dac10 R15: 00000000ffffffff
[   78.648425] 
[   78.650065] Uninit was created at:
[   78.653606]  kmsan_internal_poison_shadow+0x92/0x150
[   78.658706]  kmsan_kmalloc+0xa1/0x100
[   78.662510]  kmsan_slab_alloc+0xe/0x10
[   78.666394]  __kmalloc_node_track_caller+0xf06/0x1120
[   78.671593]  __alloc_skb+0x318/0xa40
[   78.675325]  alloc_skb_with_frags+0x1c9/0xa80
[   78.679818]  sock_alloc_send_pskb+0xb5d/0x1140
[   78.684398]  packet_sendmsg+0x66a2/0x9200
[   78.688585]  sock_write_iter+0x3f4/0x4f0
[   78.692643]  __vfs_write+0x888/0xb80
[   78.696351]  vfs_write+0x4b4/0x900
[   78.699887]  __se_sys_write+0x17a/0x370
[   78.703861]  __x64_sys_write+0x4a/0x70
[   78.707746]  do_syscall_64+0xcd/0x110
[   78.711544]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[   78.716737] ==================================================================
[   78.724089] Disabling lock debugging due to kernel taint
[   78.729533] Kernel panic - not syncing: panic_on_warn set ...
[   78.735419] CPU: 1 PID: 6784 Comm: syz-executor0 Tainted: G    B             4.20.0-rc5+ #2
[   78.743923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   78.753273] Call Trace:
[   78.755863]  dump_stack+0x1c9/0x220
[   78.759499]  panic+0x3f0/0x98f
[   78.762728]  kmsan_report+0x290/0x290
[   78.766542]  __msan_warning+0x76/0xc0
[   78.770353]  check_6rd+0x65a/0x710
[   78.773913]  sit_tunnel_xmit+0xb58/0x34d0
[   78.778092]  ? dev_hard_start_xmit+0xb3/0xc80
[   78.782591]  ? __dev_queue_xmit+0x3173/0x3cf0
[   78.787088]  ? ipip6_tunnel_uninit+0x800/0x800
[   78.791687]  dev_hard_start_xmit+0x627/0xc80
[   78.796142]  __dev_queue_xmit+0x3173/0x3cf0
[   78.800512]  dev_queue_xmit+0x4b/0x60
[   78.804319]  ? __netdev_pick_tx+0x1290/0x1290
[   78.808816]  packet_sendmsg+0x7cbd/0x9200
[   78.813038]  ? kmsan_memcpy_memmove_metadata+0x1a9/0xf30
[   78.818510]  ? kmsan_memcpy_metadata+0xb/0x10
[   78.823010]  ? sock_write_iter+0x102/0x4f0
[   78.827245]  ? __se_sys_write+0x17a/0x370
[   78.831395]  ? do_syscall_64+0xcd/0x110
[   78.835374]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[   78.840739]  ? vmalloc_to_page+0x585/0x6c0
[   78.844992]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[   78.850355]  ? aa_sk_perm+0x7ab/0x9e0
[   78.854222]  ? srp_create_target+0x2b7d/0x8910
[   78.858836]  ? compat_packet_setsockopt+0x360/0x360
[   78.863853]  sock_write_iter+0x3f4/0x4f0
[   78.867935]  ? sock_read_iter+0x4e0/0x4e0
[   78.872084]  __vfs_write+0x888/0xb80
[   78.875824]  vfs_write+0x4b4/0x900
[   78.879383]  __se_sys_write+0x17a/0x370
[   78.883480]  __x64_sys_write+0x4a/0x70
[   78.887368]  do_syscall_64+0xcd/0x110
[   78.891171]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[   78.896360] RIP: 0033:0x457659
[   78.899556] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   78.918502] RSP: 002b:00007ffd3afacbc8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   78.926215] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457659
[   78.933491] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   78.940804] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[   78.948120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000002523914
[   78.955389] R13: 00000000004c6084 R14: 00000000004dac10 R15: 00000000ffffffff
[   78.963921] Kernel Offset: disabled
[   78.967569] Rebooting in 86400 seconds..