[   51.846275] audit: type=1800 audit(1541494092.894:26): pid=5981 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   51.866022] audit: type=1800 audit(1541494092.894:27): pid=5981 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[   51.885830] audit: type=1800 audit(1541494092.914:28): pid=5981 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   53.750743] audit: type=1800 audit(1541494094.794:29): pid=5981 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.10.11' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [   88.073750] PANIC: double fault, error_code: 0x0
[   88.078598] CPU: 0 PID: 6132 Comm: syz-executor971 Not tainted 4.19.0+ #77
[   88.085614] ==================================================================
[   88.093082] BUG: KMSAN: uninit-value in irq_work_claim+0x153/0x390
[   88.099391] CPU: 0 PID: 6132 Comm: syz-executor971 Not tainted 4.19.0+ #77
[   88.106387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   88.115730] Call Trace:
[   88.118298]  <#DF>
[   88.120439]  dump_stack+0x32d/0x480
[   88.124053]  ? irq_work_claim+0x153/0x390
[   88.128190]  kmsan_report+0x1a2/0x2e0
[   88.131986]  kmsan_internal_check_memory+0x34c/0x430
[   88.137088]  kmsan_check_memory+0xb/0x10
[   88.141152]  irq_work_claim+0x153/0x390
[   88.145137]  irq_work_queue+0x44/0x280
[   88.149018]  vprintk_emit+0x693/0x790
[   88.152823]  vprintk_default+0x90/0xa0
[   88.156703]  vprintk_func+0x26b/0x2a0
[   88.160496]  printk+0x1a3/0x1f0
[   88.163776]  dump_stack_print_info+0x2c4/0x3c0
[   88.168355]  show_regs_print_info+0x37/0x40
[   88.172820]  show_regs+0x38/0x170
[   88.176270]  df_debug+0x86/0xb0
[   88.179537]  do_double_fault+0x362/0x480
[   88.183591]  double_fault+0x1e/0x30
[   88.187210] RIP: 0010:kmsan_get_origin_address+0xa/0x370
[   88.192649] Code: eb fe 0f 0b 66 90 66 2e 0f 1f 84 00 00 00 00 00 eb fe 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 41 57 41 56 41 55 <41> 54 53 48 83 ec 10 48 89 75 c8 48 89 fb 49 bc 00 00 00 00 00 78
[   88.211540] RSP: 0018:fffffe0000002000 EFLAGS: 00010086
[   88.216888] RAX: 00000000000001a8 RBX: 0000000000000000 RCX: 0000000000000001
[   88.224229] RDX: 0000000000000001 RSI: 0000000000000088 RDI: fffffe0000002150
[   88.231566] RBP: fffffe0000002018 R08: 0000000000000000 R09: 0000000000000000
[   88.238820] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000088
[   88.246078] R13: fffffe00000021c0 R14: fffffe00000021a8 R15: fffffe00000021a8
[   88.253340]  </#DF>
[   88.255565]  <ENTRY_TRAMPOLINE>
[   88.258838]  kmsan_memmove_origins+0xbd/0x1d0
[   88.263338]  ? kmsan_memmove_shadow+0xad/0xe0
[   88.267826]  __msan_memmove+0x6c/0x80
[   88.271615]  fixup_bad_iret+0x9b/0x130
[   88.275504]  error_entry+0xad/0xc0
[   88.279044] RIP: 0000:          (null)
[   88.282977] Code: Bad RIP value.
[   88.286331] RSP: 401440:0000000000000000 EFLAGS: 00000000 ORIG_RAX: 0000000000302f2e
[   88.294214] RAX: 0000000000000000 RBX: ffffffff8ae00e58 RCX: 0000000000000000
[   88.301477] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000003100000005
[   88.309074] RBP: 0000000000000000 R08: 0000006e0000005b R09: 0000000000000000
[   88.316450] R10: 00000000004009ae R11: 0000000044000004 R12: 0000006e0000005b
[   88.323712] R13: 0000000000000000 R14: 00000000004009ae R15: 0000000044000004
[   88.330978]  ? general_protection+0x8/0x30
[   88.335196]  ? general_protection+0x8/0x30
[   88.339414]  </ENTRY_TRAMPOLINE>
[   88.342757] 
[   88.344397] Local variable description: ----__ai_ptr@irq_work_claim
[   88.350786] Variable was created at:
[   88.354496]  irq_work_claim+0x4b/0x390
[   88.358374]  irq_work_queue+0x44/0x280
[   88.362239] 
[   88.363865] Byte 7 of 8 is uninitialized
[   88.367903] Memory access of size 8 starts at fffffe000000aa38
[   88.373853] ==================================================================
[   88.381186] Disabling lock debugging due to kernel taint
[   88.386612] Kernel panic - not syncing: panic_on_warn set ...
[   88.386612] 
[   88.393955] CPU: 0 PID: 6132 Comm: syz-executor971 Tainted: G    B             4.19.0+ #77
[   88.402331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   88.411669] Call Trace:
[   88.414238]  <#DF>
[   88.416373]  dump_stack+0x32d/0x480
[   88.419988]  panic+0x57e/0xb28
[   88.423176]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[   88.428613]  kmsan_report+0x2d3/0x2e0
[   88.432402]  kmsan_internal_check_memory+0x34c/0x430
[   88.437496]  kmsan_check_memory+0xb/0x10
[   88.441536]  irq_work_claim+0x153/0x390
[   88.445501]  irq_work_queue+0x44/0x280
[   88.449382]  vprintk_emit+0x693/0x790
[   88.453198]  vprintk_default+0x90/0xa0
[   88.457075]  vprintk_func+0x26b/0x2a0
[   88.460863]  printk+0x1a3/0x1f0
[   88.464149]  dump_stack_print_info+0x2c4/0x3c0
[   88.468717]  show_regs_print_info+0x37/0x40
[   88.473028]  show_regs+0x38/0x170
[   88.476468]  df_debug+0x86/0xb0
[   88.479734]  do_double_fault+0x362/0x480
[   88.483786]  double_fault+0x1e/0x30
[   88.487396] RIP: 0010:kmsan_get_origin_address+0xa/0x370
[   88.492824] Code: eb fe 0f 0b 66 90 66 2e 0f 1f 84 00 00 00 00 00 eb fe 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 41 57 41 56 41 55 <41> 54 53 48 83 ec 10 48 89 75 c8 48 89 fb 49 bc 00 00 00 00 00 78
[   88.511708] RSP: 0018:fffffe0000002000 EFLAGS: 00010086
[   88.517058] RAX: 00000000000001a8 RBX: 0000000000000000 RCX: 0000000000000001
[   88.524309] RDX: 0000000000000001 RSI: 0000000000000088 RDI: fffffe0000002150
[   88.531561] RBP: fffffe0000002018 R08: 0000000000000000 R09: 0000000000000000
[   88.538824] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000088
[   88.546077] R13: fffffe00000021c0 R14: fffffe00000021a8 R15: fffffe00000021a8
[   88.553339]  </#DF>
[   88.555558]  <ENTRY_TRAMPOLINE>
[   88.558841]  kmsan_memmove_origins+0xbd/0x1d0
[   88.563320]  ? kmsan_memmove_shadow+0xad/0xe0
[   88.567802]  __msan_memmove+0x6c/0x80
[   88.571585]  fixup_bad_iret+0x9b/0x130
[   88.575460]  error_entry+0xad/0xc0
[   88.578987] RIP: 0000:          (null)
[   88.582870] Code: Bad RIP value.
[   88.586214] RSP: 401440:0000000000000000 EFLAGS: 00000000 ORIG_RAX: 0000000000302f2e
[   88.594077] RAX: 0000000000000000 RBX: ffffffff8ae00e58 RCX: 0000000000000000
[   88.601347] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000003100000005
[   88.608605] RBP: 0000000000000000 R08: 0000006e0000005b R09: 0000000000000000
[   88.615861] R10: 00000000004009ae R11: 0000000044000004 R12: 0000006e0000005b
[   88.623112] R13: 0000000000000000 R14: 00000000004009ae R15: 0000000044000004
[   88.630502]  ? general_protection+0x8/0x30
[   88.634741]  ? general_protection+0x8/0x30
[   88.639127]  </ENTRY_TRAMPOLINE>
[   88.643529] Kernel Offset: disabled
[   88.647151] Rebooting in 86400 seconds..