[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   77.901389] audit: type=1800 audit(1552839116.943:25): pid=9861 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[   77.920629] audit: type=1800 audit(1552839116.943:26): pid=9861 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   77.940080] audit: type=1800 audit(1552839116.943:27): pid=9861 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.44' (ECDSA) to the list of known hosts.
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
syzkaller login: [   95.502723] ------------[ cut here ]------------
[   95.507541] kernel BUG at mm/kmsan/kmsan_hooks.c:259!
[   95.512850] invalid opcode: 0000 [#1] SMP
[   95.517009] CPU: 0 PID: 10039 Comm: syz-executor121 Not tainted 5.0.0+ #15
[   95.524023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   95.533412] RIP: 0010:kmsan_free_page+0x13e/0x2f0
[   95.538253] Code: 66 90 66 2e 0f 1f 84 00 00 00 00 00 44 39 e8 0f 8d 45 01 00 00 48 63 c8 48 8d 0c 89 48 c1 e1 04 ff c0 48 83 7c 0b 40 00 74 e2 <0f> 0b 41 83 fe 1f 0f 84 24 01 00 00 49 63 c5 48 83 c3 40 31 c9 0f
[   95.557195] RSP: 0018:ffff88804c52e538 EFLAGS: 00010286
[   95.562571] RAX: 0000000000000002 RBX: ffffea0008a66000 RCX: 0000000000000050
[   95.569863] RDX: ffffffff8c626000 RSI: 0000000000000008 RDI: ffffea0008a66000
[   95.577156] RBP: ffff88804c52e580 R08: 0000000000050601 R09: ffff88812fc39010
[   95.584480] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000008
[   95.591777] R13: 0000000000000100 R14: 0000000000000008 R15: ffffea0008a66000
[   95.599072] FS:  0000000000feb880(0000) GS:ffff88812fc00000(0000) knlGS:0000000000000000
[   95.607314] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   95.613221] CR2: 00000000004bf7a8 CR3: 00000000b56ca000 CR4: 00000000001406f0
[   95.620515] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   95.627817] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   95.635135] Call Trace:
[   95.637782]  __free_pages_ok+0x250/0x1990
[   95.641976]  __free_pages+0x10e/0x260
[   95.645818]  ion_system_heap_free+0x315/0x4d0
[   95.650439]  ? ion_system_heap_allocate+0x1400/0x1400
[   95.655659]  ion_buffer_destroy+0x187/0x4d0
[   95.660013]  ? __list_del_entry_valid+0x11f/0x410
[   95.664878]  _ion_heap_freelist_drain+0x526/0x840
[   95.669774]  ion_heap_shrink_scan+0x13e/0x350
[   95.674313]  ? ion_heap_shrink_count+0x220/0x220
[   95.679095]  do_shrink_slab+0xb63/0x1240
[   95.683214]  shrink_slab+0x307/0xe30
[   95.687052]  shrink_node+0x76c/0x2130
[   95.690923]  do_try_to_free_pages+0x55e/0x20b0
[   95.695579]  try_to_free_pages+0xc58/0x1690
[   95.699961]  ? psi_memstall_enter+0x15b/0x1c0
[   95.705266]  __alloc_pages_nodemask+0x3078/0x5e30
[   95.710306]  ? kmsan_internal_poison_shadow+0x92/0x150
[   95.715589]  ? vm_map_ram+0x898/0x1290
[   95.719576]  ? ion_heap_sglist_zero+0x258/0x4e0
[   95.724255]  ? ion_heap_buffer_zero+0x19f/0x1d0
[   95.728934]  ? ion_system_heap_free+0xe6/0x4d0
[   95.733517]  ? ion_ioctl+0x326/0x5c0
[   95.737268]  ? kmsan_internal_poison_shadow+0x92/0x150
[   95.742573]  ? alloc_pages_current+0x33f/0x9b0
[   95.747165]  alloc_pages_current+0x69d/0x9b0
[   95.751589]  __get_free_pages+0x33/0xc0
[   95.755586]  pte_alloc_one_kernel+0x36/0x40
[   95.759915]  __pte_alloc_kernel+0x4f/0x300
[   95.764158]  __vmap_page_range_noflush+0xa38/0xeb0
[   95.769128]  kmsan_vmap_page_range_noflush+0x16f/0x220
[   95.774417]  vm_map_ram+0x1018/0x1290
[   95.778240]  ion_heap_sglist_zero+0x258/0x4e0
[   95.782782]  ion_heap_buffer_zero+0x19f/0x1d0
[   95.787286]  ion_system_heap_free+0xe6/0x4d0
[   95.791702]  ? kmsan_internal_memset_shadow+0x14c/0x430
[   95.797955]  ? kmsan_get_shadow_origin_ptr+0x70/0x490
[   95.803150]  ? ion_system_heap_allocate+0x1400/0x1400
[   95.808777]  ? ion_system_heap_allocate+0x1400/0x1400
[   95.813977]  ion_buffer_destroy+0x187/0x4d0
[   95.818659]  _ion_heap_freelist_drain+0x526/0x840
[   95.823529]  ion_heap_freelist_drain+0x6e/0x80
[   95.828121]  ion_alloc+0x57f/0x1650
[   95.831760]  ? kmsan_internal_memset_shadow+0x14c/0x430
[   95.837151]  ion_ioctl+0x326/0x5c0
[   95.840702]  ? debug_shrink_set+0x220/0x220
[   95.845037]  do_vfs_ioctl+0xebd/0x2bf0
[   95.848946]  ? security_file_ioctl+0x92/0x200
[   95.853452]  __se_sys_ioctl+0x1da/0x270
[   95.857442]  __x64_sys_ioctl+0x4a/0x70
[   95.861420]  do_syscall_64+0xbc/0xf0
[   95.865146]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[   95.870429] RIP: 0033:0x4412c9
[   95.873627] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb 08 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   95.892540] RSP: 002b:00007fffe4011158 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   95.900253] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000004412c9
[   95.907696] RDX: 00000000200004c0 RSI: 00000000c0184900 RDI: 0000000000000003
[   95.915053] RBP: 00000000000160f2 R08: 00000000004002c8 R09: 00000000004002c8
[   95.922326] R10: 00000000fffffffa R11: 0000000000000246 R12: 0000000000402040
[   95.929603] R13: 00000000004020d0 R14: 0000000000000000 R15: 0000000000000000
[   95.936890] Modules linked in:
[   95.940241] ---[ end trace 702040f6d316e9d3 ]---
[   95.945057] RIP: 0010:kmsan_free_page+0x13e/0x2f0
[   95.949900] Code: 66 90 66 2e 0f 1f 84 00 00 00 00 00 44 39 e8 0f 8d 45 01 00 00 48 63 c8 48 8d 0c 89 48 c1 e1 04 ff c0 48 83 7c 0b 40 00 74 e2 <0f> 0b 41 83 fe 1f 0f 84 24 01 00 00 49 63 c5 48 83 c3 40 31 c9 0f
[   95.968959] RSP: 0018:ffff88804c52e538 EFLAGS: 00010286
[   95.974356] RAX: 0000000000000002 RBX: ffffea0008a66000 RCX: 0000000000000050
[   95.981633] RDX: ffffffff8c626000 RSI: 0000000000000008 RDI: ffffea0008a66000
[   95.989143] RBP: ffff88804c52e580 R08: 0000000000050601 R09: ffff88812fc39010
[   95.996461] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000008
[   96.003791] R13: 0000000000000100 R14: 0000000000000008 R15: ffffea0008a66000
[   96.011240] FS:  0000000000feb880(0000) GS:ffff88812fc00000(0000) knlGS:0000000000000000
[   96.019502] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   96.025432] CR2: 00000000004bf7a8 CR3: 00000000b56ca000 CR4: 00000000001406f0
[   96.032736] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   96.040006] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   96.047346] Kernel panic - not syncing: Fatal exception
[   96.053677] Kernel Offset: disabled
[   96.057337] Rebooting in 86400 seconds..