[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   60.088792] audit: type=1800 audit(1541261090.149:25): pid=6155 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[   60.108273] audit: type=1800 audit(1541261090.149:26): pid=6155 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   60.128058] audit: type=1800 audit(1541261090.169:27): pid=6155 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.115' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [   71.377199] PANIC: double fault, error_code: 0x0
[   71.382101] CPU: 0 PID: 6306 Comm: syz-executor898 Not tainted 4.19.0+ #77
[   71.389155] ==================================================================
[   71.396537] BUG: KMSAN: uninit-value in irq_work_claim+0x153/0x390
[   71.402854] CPU: 0 PID: 6306 Comm: syz-executor898 Not tainted 4.19.0+ #77
[   71.409853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   71.419201] Call Trace:
[   71.421777]  <#DF>
[   71.423988]  dump_stack+0x32d/0x480
[   71.427615]  ? irq_work_claim+0x153/0x390
[   71.431770]  kmsan_report+0x1a2/0x2e0
[   71.435586]  kmsan_internal_check_memory+0x34c/0x430
[   71.440704]  kmsan_check_memory+0xb/0x10
[   71.444779]  irq_work_claim+0x153/0x390
[   71.448762]  irq_work_queue+0x44/0x280
[   71.452651]  vprintk_emit+0x693/0x790
[   71.456475]  vprintk_default+0x90/0xa0
[   71.460384]  vprintk_func+0x26b/0x2a0
[   71.464211]  printk+0x1a3/0x1f0
[   71.467521]  dump_stack_print_info+0x2c4/0x3c0
[   71.472144]  show_regs_print_info+0x37/0x40
[   71.476473]  show_regs+0x38/0x170
[   71.479929]  df_debug+0x86/0xb0
[   71.483225]  do_double_fault+0x362/0x480
[   71.487298]  double_fault+0x1e/0x30
[   71.490933] RIP: 0010:kmsan_get_origin_address+0xa/0x370
[   71.496397] Code: eb fe 0f 0b 66 90 66 2e 0f 1f 84 00 00 00 00 00 eb fe 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 41 57 41 56 41 55 <41> 54 53 48 83 ec 10 48 89 75 c8 48 89 fb 49 bc 00 00 00 00 00 78
[   71.515318] RSP: 0018:fffffe0000002000 EFLAGS: 00010086
[   71.520700] RAX: 00000000000001a8 RBX: 0000000000000000 RCX: 0000000000000001
[   71.527964] RDX: 0000000000000001 RSI: 0000000000000088 RDI: fffffe0000002150
[   71.535227] RBP: fffffe0000002018 R08: 0000000000000000 R09: 0000000000000000
[   71.542499] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000088
[   71.549791] R13: fffffe00000021c0 R14: fffffe00000021a8 R15: fffffe00000021a8
[   71.557076]  </#DF>
[   71.559320]  <ENTRY_TRAMPOLINE>
[   71.562605]  kmsan_memmove_origins+0xbd/0x1d0
[   71.567121]  ? kmsan_memmove_shadow+0xad/0xe0
[   71.571620]  __msan_memmove+0x6c/0x80
[   71.575432]  fixup_bad_iret+0x9b/0x130
[   71.579330]  error_entry+0xad/0xc0
[   71.582860] RIP: 0000:          (null)
[   71.586755] Code: Bad RIP value.
[   71.590126] RSP: 0000:0000000000000000 EFLAGS: 00000000 ORIG_RAX: 0000000000000000
[   71.597850] RAX: 0000000000000000 RBX: ffffffff8ae00e58 RCX: 0000000000000000
[   71.605111] RDX: 0000000000000000 RSI: 0000006e0000005b RDI: 0000000000000000
[   71.612395] RBP: 0000000000000000 R08: 00000000004009ae R09: 0000000044000004
[   71.619659] R10: 00000000004012e0 R11: 0000000000000000 R12: 00000000004009ae
[   71.626920] R13: 0000000044000004 R14: 00000000004012e0 R15: 0000000000000000
[   71.634204]  ? general_protection+0x8/0x30
[   71.638454]  ? general_protection+0x8/0x30
[   71.642704]  </ENTRY_TRAMPOLINE>
[   71.646065] 
[   71.647709] Local variable description: ----__ai_ptr@irq_work_claim
[   71.654098] Variable was created at:
[   71.657806]  irq_work_claim+0x4b/0x390
[   71.661709]  irq_work_queue+0x44/0x280
[   71.665581] 
[   71.667196] Byte 7 of 8 is uninitialized
[   71.671247] Memory access of size 8 starts at fffffe000000aa38
[   71.677220] ==================================================================
[   71.684589] Disabling lock debugging due to kernel taint
[   71.690042] Kernel panic - not syncing: panic_on_warn set ...
[   71.690042] 
[   71.697425] CPU: 0 PID: 6306 Comm: syz-executor898 Tainted: G    B             4.19.0+ #77
[   71.705823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   71.715171] Call Trace:
[   71.717768]  <#DF>
[   71.719924]  dump_stack+0x32d/0x480
[   71.723560]  panic+0x57e/0xb28
[   71.726776]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[   71.732226]  kmsan_report+0x2d3/0x2e0
[   71.736034]  kmsan_internal_check_memory+0x34c/0x430
[   71.741173]  kmsan_check_memory+0xb/0x10
[   71.745261]  irq_work_claim+0x153/0x390
[   71.749273]  irq_work_queue+0x44/0x280
[   71.753193]  vprintk_emit+0x693/0x790
[   71.757026]  vprintk_default+0x90/0xa0
[   71.760922]  vprintk_func+0x26b/0x2a0
[   71.764728]  printk+0x1a3/0x1f0
[   71.768034]  dump_stack_print_info+0x2c4/0x3c0
[   71.772627]  show_regs_print_info+0x37/0x40
[   71.776975]  show_regs+0x38/0x170
[   71.780462]  df_debug+0x86/0xb0
[   71.783766]  do_double_fault+0x362/0x480
[   71.787838]  double_fault+0x1e/0x30
[   71.791467] RIP: 0010:kmsan_get_origin_address+0xa/0x370
[   71.796926] Code: eb fe 0f 0b 66 90 66 2e 0f 1f 84 00 00 00 00 00 eb fe 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 41 57 41 56 41 55 <41> 54 53 48 83 ec 10 48 89 75 c8 48 89 fb 49 bc 00 00 00 00 00 78
[   71.815863] RSP: 0018:fffffe0000002000 EFLAGS: 00010086
[   71.821239] RAX: 00000000000001a8 RBX: 0000000000000000 RCX: 0000000000000001
[   71.828505] RDX: 0000000000000001 RSI: 0000000000000088 RDI: fffffe0000002150
[   71.835771] RBP: fffffe0000002018 R08: 0000000000000000 R09: 0000000000000000
[   71.843036] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000088
[   71.850319] R13: fffffe00000021c0 R14: fffffe00000021a8 R15: fffffe00000021a8
[   71.857603]  </#DF>
[   71.859832]  <ENTRY_TRAMPOLINE>
[   71.863570]  kmsan_memmove_origins+0xbd/0x1d0
[   71.868067]  ? kmsan_memmove_shadow+0xad/0xe0
[   71.872562]  __msan_memmove+0x6c/0x80
[   71.876363]  fixup_bad_iret+0x9b/0x130
[   71.880254]  error_entry+0xad/0xc0
[   71.883785] RIP: 0000:          (null)
[   71.887707] Code: Bad RIP value.
[   71.891074] RSP: 0000:0000000000000000 EFLAGS: 00000000 ORIG_RAX: 0000000000000000
[   71.898795] RAX: 0000000000000000 RBX: ffffffff8ae00e58 RCX: 0000000000000000
[   71.906063] RDX: 0000000000000000 RSI: 0000006e0000005b RDI: 0000000000000000
[   71.913338] RBP: 0000000000000000 R08: 00000000004009ae R09: 0000000044000004
[   71.920605] R10: 00000000004012e0 R11: 0000000000000000 R12: 00000000004009ae
[   71.927872] R13: 0000000044000004 R14: 00000000004012e0 R15: 0000000000000000
[   71.935179]  ? general_protection+0x8/0x30
[   71.939432]  ? general_protection+0x8/0x30
[   71.943676]  </ENTRY_TRAMPOLINE>
[   71.948031] Kernel Offset: disabled
[   71.951672] Rebooting in 86400 seconds..