[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[  100.814759][   T32] audit: type=1800 audit(1564734451.869:25): pid=11757 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[  100.839077][   T32] audit: type=1800 audit(1564734451.889:26): pid=11757 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[  100.877965][   T32] audit: type=1800 audit(1564734451.919:27): pid=11757 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.16' (ECDSA) to the list of known hosts.
syzkaller login: [  112.075670][T11909] IPVS: ftp: loaded support on port[0] = 21
[  112.172740][T11909] chnl_net:caif_netlink_parms(): no params data found
[  112.217489][T11909] bridge0: port 1(bridge_slave_0) entered blocking state
[  112.224873][T11909] bridge0: port 1(bridge_slave_0) entered disabled state
[  112.233724][T11909] device bridge_slave_0 entered promiscuous mode
[  112.244529][T11909] bridge0: port 2(bridge_slave_1) entered blocking state
[  112.252812][T11909] bridge0: port 2(bridge_slave_1) entered disabled state
[  112.261628][T11909] device bridge_slave_1 entered promiscuous mode
[  112.288629][T11909] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  112.301459][T11909] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  112.328104][T11909] team0: Port device team_slave_0 added
[  112.336848][T11909] team0: Port device team_slave_1 added
[  112.396183][T11909] device hsr_slave_0 entered promiscuous mode
[  112.442385][T11909] device hsr_slave_1 entered promiscuous mode
[  112.518619][T11909] bridge0: port 2(bridge_slave_1) entered blocking state
[  112.525951][T11909] bridge0: port 2(bridge_slave_1) entered forwarding state
[  112.534269][T11909] bridge0: port 1(bridge_slave_0) entered blocking state
[  112.541469][T11909] bridge0: port 1(bridge_slave_0) entered forwarding state
[  112.608074][T11909] 8021q: adding VLAN 0 to HW filter on device bond0
[  112.625247][ T3879] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  112.635892][ T3879] bridge0: port 1(bridge_slave_0) entered disabled state
[  112.644929][ T3879] bridge0: port 2(bridge_slave_1) entered disabled state
[  112.655533][ T3879] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  112.672408][T11909] 8021q: adding VLAN 0 to HW filter on device team0
[  112.686736][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  112.695948][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  112.703263][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  112.722827][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  112.732033][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  112.739389][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  112.765535][   T54] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  112.776782][   T54] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  112.796182][   T54] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  112.820287][T11909] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  112.831099][T11909] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  112.846705][   T54] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  112.856402][   T54] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  112.866852][   T54] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  112.901459][T11909] 8021q: adding VLAN 0 to HW filter on device batadv0
executing program
[  112.967645][    C0] ==================================================================
[  112.976044][    C0] BUG: KMSAN: uninit-value in br_nf_forward_arp+0x88a/0xea0
[  112.983330][    C0] CPU: 0 PID: 11909 Comm: syz-executor995 Not tainted 5.2.0+ #15
[  112.991254][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  113.001413][    C0] Call Trace:
[  113.004719][    C0]  <IRQ>
[  113.007608][    C0]  dump_stack+0x191/0x1f0
[  113.011958][    C0]  kmsan_report+0x162/0x2d0
[  113.016634][    C0]  __msan_warning+0x75/0xe0
[  113.021145][    C0]  br_nf_forward_arp+0x88a/0xea0
[  113.026095][    C0]  ? kmsan_get_shadow_origin_ptr+0x71/0x470
[  113.032072][    C0]  ? br_nf_forward_ip+0x18f0/0x18f0
[  113.037281][    C0]  nf_hook_slow+0x18b/0x410
[  113.041897][    C0]  __br_forward+0x78f/0xe30
[  113.046523][    C0]  ? br_dev_queue_push_xmit+0x8b0/0x8b0
[  113.052150][    C0]  br_flood+0xef0/0xfe0
[  113.056324][    C0]  br_handle_frame_finish+0x1a02/0x1bd0
[  113.061881][    C0]  br_handle_frame+0xfc3/0x1ec0
[  113.066758][    C0]  ? brport_get_ownership+0xf0/0xf0
[  113.071964][    C0]  ? br_pass_frame_up+0x9e0/0x9e0
[  113.076981][    C0]  __netif_receive_skb_core+0x20a9/0x5360
[  113.082738][    C0]  ? kmsan_get_shadow_origin_ptr+0x71/0x470
[  113.088650][    C0]  ? kmsan_get_shadow_origin_ptr+0x71/0x470
[  113.094553][    C0]  ? net_rx_action+0x738/0x1940
[  113.099543][    C0]  process_backlog+0x612/0x1410
[  113.104413][    C0]  ? kmsan_get_shadow_origin_ptr+0x71/0x470
[  113.110409][    C0]  ? kmsan_get_shadow_origin_ptr+0x71/0x470
[  113.116494][    C0]  ? rps_trigger_softirq+0x2e0/0x2e0
[  113.121776][    C0]  net_rx_action+0x738/0x1940
[  113.126478][    C0]  ? net_tx_action+0xb70/0xb70
[  113.131234][    C0]  __do_softirq+0x4ad/0x858
[  113.135829][    C0]  do_softirq_own_stack+0x49/0x80
[  113.140853][    C0]  </IRQ>
[  113.143795][    C0]  __local_bh_enable_ip+0x199/0x1e0
[  113.149031][    C0]  local_bh_enable+0x36/0x40
[  113.153704][    C0]  __dev_queue_xmit+0x304d/0x4270
[  113.158858][    C0]  dev_queue_xmit+0x4b/0x60
[  113.163352][    C0]  ? netdev_core_pick_tx+0x4d0/0x4d0
[  113.168627][    C0]  packet_sendmsg+0x83f7/0x9290
[  113.173469][    C0]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  113.179526][    C0]  ? aa_label_sk_perm+0x6d6/0x940
[  113.184549][    C0]  ? kmsan_get_shadow_origin_ptr+0x71/0x470
[  113.190442][    C0]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  113.196581][    C0]  ? rw_copy_check_uvector+0x149/0x650
[  113.202046][    C0]  ? kmsan_get_shadow_origin_ptr+0x71/0x470
[  113.207939][    C0]  ? aa_sk_perm+0x730/0xaf0
[  113.212500][    C0]  ? compat_packet_setsockopt+0x360/0x360
[  113.218321][    C0]  ___sys_sendmsg+0x12ff/0x13c0
[  113.223189][    C0]  ? kmsan_get_shadow_origin_ptr+0x71/0x470
[  113.229083][    C0]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  113.235136][    C0]  ? __fget_light+0x1b8/0x710
[  113.239811][    C0]  ? kmsan_get_shadow_origin_ptr+0x71/0x470
[  113.245712][    C0]  __sys_sendmmsg+0x53a/0xae0
[  113.250412][    C0]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  113.256466][    C0]  ? prepare_exit_to_usermode+0x19a/0x4d0
[  113.262171][    C0]  ? kmsan_get_shadow_origin_ptr+0x71/0x470
[  113.268061][    C0]  __se_sys_sendmmsg+0xbd/0xe0
[  113.272825][    C0]  __x64_sys_sendmmsg+0x56/0x70
[  113.277667][    C0]  do_syscall_64+0xbc/0xf0
[  113.282081][    C0]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  113.287958][    C0] RIP: 0033:0x441ae9
[  113.291838][    C0] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[  113.311480][    C0] RSP: 002b:00007ffc24098708 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  113.319886][    C0] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000441ae9
[  113.327844][    C0] RDX: 0000000000000001 RSI: 0000000020004e80 RDI: 0000000000000004
[  113.335916][    C0] RBP: 00007ffc24098720 R08: 0000000001bbbbbb R09: 0000000001bbbbbb
[  113.343902][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  113.351945][    C0] R13: 0000000000403080 R14: 0000000000000000 R15: 0000000000000000
[  113.359918][    C0] 
[  113.362249][    C0] Uninit was created at:
[  113.366479][    C0]  kmsan_internal_poison_shadow+0x53/0xa0
[  113.372182][    C0]  kmsan_slab_alloc+0xaa/0x120
[  113.376935][    C0]  __kmalloc_node_track_caller+0xc8f/0xf10
[  113.382725][    C0]  __alloc_skb+0x306/0xa10
[  113.387149][    C0]  alloc_skb_with_frags+0x18c/0xa80
[  113.392332][    C0]  sock_alloc_send_pskb+0xafd/0x10a0
[  113.397687][    C0]  packet_sendmsg+0x6627/0x9290
[  113.402547][    C0]  ___sys_sendmsg+0x12ff/0x13c0
[  113.407380][    C0]  __sys_sendmmsg+0x53a/0xae0
[  113.412040][    C0]  __se_sys_sendmmsg+0xbd/0xe0
[  113.416788][    C0]  __x64_sys_sendmmsg+0x56/0x70
[  113.421624][    C0]  do_syscall_64+0xbc/0xf0
[  113.426027][    C0]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  113.431896][    C0] ==================================================================
[  113.439938][    C0] Disabling lock debugging due to kernel taint
[  113.446087][    C0] Kernel panic - not syncing: panic_on_warn set ...
[  113.452666][    C0] CPU: 0 PID: 11909 Comm: syz-executor995 Tainted: G    B             5.2.0+ #15
[  113.461755][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  113.471804][    C0] Call Trace:
[  113.475089][    C0]  <IRQ>
[  113.478047][    C0]  dump_stack+0x191/0x1f0
[  113.482464][    C0]  panic+0x3c9/0xc1e
[  113.486478][    C0]  kmsan_report+0x2ca/0x2d0
[  113.490991][    C0]  __msan_warning+0x75/0xe0
[  113.495506][    C0]  br_nf_forward_arp+0x88a/0xea0
[  113.500547][    C0]  ? kmsan_get_shadow_origin_ptr+0x71/0x470
[  113.506700][    C0]  ? br_nf_forward_ip+0x18f0/0x18f0
[  113.511903][    C0]  nf_hook_slow+0x18b/0x410
[  113.516423][    C0]  __br_forward+0x78f/0xe30
[  113.520931][    C0]  ? br_dev_queue_push_xmit+0x8b0/0x8b0
[  113.526473][    C0]  br_flood+0xef0/0xfe0
[  113.530646][    C0]  br_handle_frame_finish+0x1a02/0x1bd0
[  113.536205][    C0]  br_handle_frame+0xfc3/0x1ec0
[  113.541065][    C0]  ? brport_get_ownership+0xf0/0xf0
[  113.546330][    C0]  ? br_pass_frame_up+0x9e0/0x9e0
[  113.551365][    C0]  __netif_receive_skb_core+0x20a9/0x5360
[  113.557251][    C0]  ? kmsan_get_shadow_origin_ptr+0x71/0x470
[  113.563154][    C0]  ? kmsan_get_shadow_origin_ptr+0x71/0x470
[  113.569058][    C0]  ? net_rx_action+0x738/0x1940
[  113.573904][    C0]  process_backlog+0x612/0x1410
[  113.578755][    C0]  ? kmsan_get_shadow_origin_ptr+0x71/0x470
[  113.585123][    C0]  ? kmsan_get_shadow_origin_ptr+0x71/0x470
[  113.591018][    C0]  ? rps_trigger_softirq+0x2e0/0x2e0
[  113.596470][    C0]  net_rx_action+0x738/0x1940
[  113.601180][    C0]  ? net_tx_action+0xb70/0xb70
[  113.605961][    C0]  __do_softirq+0x4ad/0x858
[  113.610470][    C0]  do_softirq_own_stack+0x49/0x80
[  113.615489][    C0]  </IRQ>
[  113.618418][    C0]  __local_bh_enable_ip+0x199/0x1e0
[  113.623613][    C0]  local_bh_enable+0x36/0x40
[  113.628193][    C0]  __dev_queue_xmit+0x304d/0x4270
[  113.633239][    C0]  dev_queue_xmit+0x4b/0x60
[  113.637730][    C0]  ? netdev_core_pick_tx+0x4d0/0x4d0
[  113.643025][    C0]  packet_sendmsg+0x83f7/0x9290
[  113.648036][    C0]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  113.654090][    C0]  ? aa_label_sk_perm+0x6d6/0x940
[  113.659109][    C0]  ? kmsan_get_shadow_origin_ptr+0x71/0x470
[  113.664995][    C0]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[  113.671144][    C0]  ? rw_copy_check_uvector+0x149/0x650
[  113.676602][    C0]  ? kmsan_get_shadow_origin_ptr+0x71/0x470
[  113.682492][    C0]  ? aa_sk_perm+0x730/0xaf0
[  113.687117][    C0]  ? compat_packet_setsockopt+0x360/0x360
[  113.692831][    C0]  ___sys_sendmsg+0x12ff/0x13c0
[  113.697800][    C0]  ? kmsan_get_shadow_origin_ptr+0x71/0x470
[  113.703692][    C0]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  113.709756][    C0]  ? __fget_light+0x1b8/0x710
[  113.714517][    C0]  ? kmsan_get_shadow_origin_ptr+0x71/0x470
[  113.720402][    C0]  __sys_sendmmsg+0x53a/0xae0
[  113.725096][    C0]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  113.731162][    C0]  ? prepare_exit_to_usermode+0x19a/0x4d0
[  113.736900][    C0]  ? kmsan_get_shadow_origin_ptr+0x71/0x470
[  113.742791][    C0]  __se_sys_sendmmsg+0xbd/0xe0
[  113.747559][    C0]  __x64_sys_sendmmsg+0x56/0x70
[  113.752398][    C0]  do_syscall_64+0xbc/0xf0
[  113.756802][    C0]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  113.762680][    C0] RIP: 0033:0x441ae9
[  113.766574][    C0] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[  113.786259][    C0] RSP: 002b:00007ffc24098708 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  113.794656][    C0] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000441ae9
[  113.802633][    C0] RDX: 0000000000000001 RSI: 0000000020004e80 RDI: 0000000000000004
[  113.810713][    C0] RBP: 00007ffc24098720 R08: 0000000001bbbbbb R09: 0000000001bbbbbb
[  113.818759][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  113.826831][    C0] R13: 0000000000403080 R14: 0000000000000000 R15: 0000000000000000
[  113.835979][    C0] Kernel Offset: disabled
[  113.840852][    C0] Rebooting in 86400 seconds..