[....] Starting enhanced syslogd: rsyslogd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[ 80.749328][ T30] audit: type=1800 audit(1574758541.806:25): pid=11681 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[ 80.773006][ T30] audit: type=1800 audit(1574758541.836:26): pid=11681 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[ 80.807451][ T30] audit: type=1800 audit(1574758541.856:27): pid=11681 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[....] Starting OpenBSD Secure Shell server: sshd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
Debian GNU/Linux 7 syzkaller ttyS0
Warning: Permanently added '10.128.0.73' (ECDSA) to the list of known hosts.
syzkaller login: [ 94.166122][T11833] IPVS: ftp: loaded support on port[0] = 21
[ 94.237533][T11833] chnl_net:caif_netlink_parms(): no params data found
[ 94.272754][T11833] bridge0: port 1(bridge_slave_0) entered blocking state
[ 94.280565][T11833] bridge0: port 1(bridge_slave_0) entered disabled state
[ 94.288965][T11833] device bridge_slave_0 entered promiscuous mode
[ 94.297543][T11833] bridge0: port 2(bridge_slave_1) entered blocking state
[ 94.304904][T11833] bridge0: port 2(bridge_slave_1) entered disabled state
[ 94.313483][T11833] device bridge_slave_1 entered promiscuous mode
[ 94.335089][T11833] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 94.346796][T11833] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 94.369775][T11833] team0: Port device team_slave_0 added
[ 94.378347][T11833] team0: Port device team_slave_1 added
[ 94.435878][T11833] device hsr_slave_0 entered promiscuous mode
[ 94.482785][T11833] device hsr_slave_1 entered promiscuous mode
[ 94.624646][T11833] bridge0: port 2(bridge_slave_1) entered blocking state
[ 94.632343][T11833] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 94.640104][T11833] bridge0: port 1(bridge_slave_0) entered blocking state
[ 94.647490][T11833] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 94.919204][T11833] 8021q: adding VLAN 0 to HW filter on device bond0
[ 94.963411][ T3392] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 94.994798][ T3392] bridge0: port 1(bridge_slave_0) entered disabled state
[ 95.022786][ T3392] bridge0: port 2(bridge_slave_1) entered disabled state
[ 95.064511][ T3392] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 95.102251][T11833] 8021q: adding VLAN 0 to HW filter on device team0
[ 95.141885][ T3392] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 95.151453][ T3392] bridge0: port 1(bridge_slave_0) entered blocking state
[ 95.158755][ T3392] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 95.248889][T11833] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 95.260181][T11833] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 95.282068][ T3392] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 95.291082][ T3392] bridge0: port 2(bridge_slave_1) entered blocking state
[ 95.298455][ T3392] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 95.309982][ T3392] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 95.320237][ T3392] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 95.329825][ T3392] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 95.339422][ T3392] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 95.353035][ T3392] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 95.362665][ T3392] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 95.427781][ T4053] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 95.435536][ T4053] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 95.453429][T11833] 8021q: adding VLAN 0 to HW filter on device batadv0
executing program
[ 95.627255][ C0] =====================================================
[ 95.634729][ C0] BUG: KMSAN: uninit-value in can_receive+0x23c/0x5e0
[ 95.641555][ C0] CPU: 0 PID: 11833 Comm: syz-executor463 Not tainted 5.4.0-rc8-syzkaller #0
[ 95.650376][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 95.660487][ C0] Call Trace:
[ 95.663768][ C0]
[ 95.666652][ C0] dump_stack+0x1c9/0x220
[ 95.670976][ C0] kmsan_report+0x128/0x220
[ 95.675475][ C0] __msan_warning+0x64/0xc0
[ 95.679973][ C0] can_receive+0x23c/0x5e0
[ 95.684391][ C0] canfd_rcv+0x188/0x3a0
[ 95.688627][ C0] ? can_proto_unregister+0x180/0x180
[ 95.693993][ C0] process_backlog+0x12a6/0x13c0
[ 95.699058][ C0] ? can_proto_unregister+0x180/0x180
[ 95.704432][ C0] ? rps_trigger_softirq+0x2e0/0x2e0
[ 95.709706][ C0] net_rx_action+0x7a6/0x1aa0
[ 95.714385][ C0] ? net_tx_action+0xc40/0xc40
[ 95.719140][ C0] __do_softirq+0x4a1/0x83a
[ 95.723642][ C0] do_softirq_own_stack+0x49/0x80
[ 95.728651][ C0]
[ 95.731585][ C0] __local_bh_enable_ip+0x184/0x1d0
[ 95.736819][ C0] local_bh_enable+0x36/0x40
[ 95.741435][ C0] __dev_queue_xmit+0x38e8/0x4200
[ 95.746469][ C0] dev_queue_xmit+0x4b/0x60
[ 95.750967][ C0] ? netdev_core_pick_tx+0x4d0/0x4d0
[ 95.756331][ C0] packet_sendmsg+0x8234/0x9100
[ 95.761220][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 95.767279][ C0] ? aa_label_sk_perm+0x6d6/0x940
[ 95.772299][ C0] ? kmsan_get_metadata+0x51/0x350
[ 95.777401][ C0] ? kmsan_internal_set_origin+0x6a/0xb0
[ 95.783102][ C0] ? kmsan_internal_check_memory+0x3d0/0x440
[ 95.789077][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 95.795192][ C0] ? aa_sk_perm+0x730/0xaf0
[ 95.799794][ C0] ? compat_packet_setsockopt+0x360/0x360
[ 95.805505][ C0] ___sys_sendmsg+0x14ff/0x1590
[ 95.810355][ C0] ? kmsan_get_shadow_origin_ptr+0x91/0x4d0
[ 95.816341][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 95.822404][ C0] ? balance_callback+0x48/0x260
[ 95.827330][ C0] ? kmsan_get_metadata+0x51/0x350
[ 95.832434][ C0] ? kmsan_internal_check_memory+0x99/0x440
[ 95.838356][ C0] ? __msan_get_context_state+0x9/0x20
[ 95.843941][ C0] ? rcu_all_qs+0x23/0x240
[ 95.848351][ C0] __sys_sendmmsg+0x53a/0xae0
[ 95.853079][ C0] ? kmsan_get_shadow_origin_ptr+0x91/0x4d0
[ 95.858967][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 95.865026][ C0] ? prepare_exit_to_usermode+0x19a/0x4d0
[ 95.870743][ C0] ? kmsan_get_shadow_origin_ptr+0x91/0x4d0
[ 95.876641][ C0] __se_sys_sendmmsg+0xbd/0xe0
[ 95.881394][ C0] __x64_sys_sendmmsg+0x56/0x70
[ 95.886428][ C0] do_syscall_64+0xb6/0x160
[ 95.890923][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 95.896808][ C0] RIP: 0033:0x442129
[ 95.900692][ C0] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 5b 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[ 95.920291][ C0] RSP: 002b:00007fffef5083a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 95.928710][ C0] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000442129
[ 95.936676][ C0] RDX: 000000000400004e RSI: 0000000020000d00 RDI: 0000000000000003
[ 95.944694][ C0] RBP: 0000000000000004 R08: 0000000000000025 R09: 0000000000000025
[ 95.952662][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 95.960779][ C0] R13: 00000000004036a0 R14: 0000000000000000 R15: 0000000000000000
[ 95.968904][ C0]
[ 95.971226][ C0] Uninit was created at:
[ 95.975713][ C0] kmsan_internal_poison_shadow+0x60/0x120
[ 95.981667][ C0] kmsan_slab_alloc+0x97/0x100
[ 95.986632][ C0] __kmalloc_node_track_caller+0xe27/0x11a0
[ 95.992518][ C0] __alloc_skb+0x306/0xa10
[ 95.997108][ C0] alloc_skb_with_frags+0x18c/0xa80
[ 96.002406][ C0] sock_alloc_send_pskb+0xafd/0x10a0
[ 96.007939][ C0] packet_sendmsg+0x63a6/0x9100
[ 96.012777][ C0] ___sys_sendmsg+0x14ff/0x1590
[ 96.017615][ C0] __sys_sendmmsg+0x53a/0xae0
[ 96.022344][ C0] __se_sys_sendmmsg+0xbd/0xe0
[ 96.027099][ C0] __x64_sys_sendmmsg+0x56/0x70
[ 96.031940][ C0] do_syscall_64+0xb6/0x160
[ 96.036451][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 96.042416][ C0] =====================================================
[ 96.049481][ C0] Disabling lock debugging due to kernel taint
[ 96.055978][ C0] Kernel panic - not syncing: panic_on_warn set ...
[ 96.062634][ C0] CPU: 0 PID: 11833 Comm: syz-executor463 Tainted: G B 5.4.0-rc8-syzkaller #0
[ 96.072895][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 96.083098][ C0] Call Trace:
[ 96.086379][ C0]
[ 96.089334][ C0] dump_stack+0x1c9/0x220
[ 96.093665][ C0] panic+0x3c9/0xc1e
[ 96.097564][ C0] kmsan_report+0x215/0x220
[ 96.102075][ C0] __msan_warning+0x64/0xc0
[ 96.106581][ C0] can_receive+0x23c/0x5e0
[ 96.111395][ C0] canfd_rcv+0x188/0x3a0
[ 96.115674][ C0] ? can_proto_unregister+0x180/0x180
[ 96.121038][ C0] process_backlog+0x12a6/0x13c0
[ 96.126103][ C0] ? can_proto_unregister+0x180/0x180
[ 96.131611][ C0] ? rps_trigger_softirq+0x2e0/0x2e0
[ 96.137006][ C0] net_rx_action+0x7a6/0x1aa0
[ 96.141710][ C0] ? net_tx_action+0xc40/0xc40
[ 96.146486][ C0] __do_softirq+0x4a1/0x83a
[ 96.151143][ C0] do_softirq_own_stack+0x49/0x80
[ 96.156160][ C0]
[ 96.159092][ C0] __local_bh_enable_ip+0x184/0x1d0
[ 96.164292][ C0] local_bh_enable+0x36/0x40
[ 96.169049][ C0] __dev_queue_xmit+0x38e8/0x4200
[ 96.174086][ C0] dev_queue_xmit+0x4b/0x60
[ 96.178578][ C0] ? netdev_core_pick_tx+0x4d0/0x4d0
[ 96.183854][ C0] packet_sendmsg+0x8234/0x9100
[ 96.189043][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 96.195421][ C0] ? aa_label_sk_perm+0x6d6/0x940
[ 96.200649][ C0] ? kmsan_get_metadata+0x51/0x350
[ 96.205800][ C0] ? kmsan_internal_set_origin+0x6a/0xb0
[ 96.211422][ C0] ? kmsan_internal_check_memory+0x3d0/0x440
[ 96.217436][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 96.223496][ C0] ? aa_sk_perm+0x730/0xaf0
[ 96.228085][ C0] ? compat_packet_setsockopt+0x360/0x360
[ 96.233970][ C0] ___sys_sendmsg+0x14ff/0x1590
[ 96.238837][ C0] ? kmsan_get_shadow_origin_ptr+0x91/0x4d0
[ 96.244727][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 96.250783][ C0] ? balance_callback+0x48/0x260
[ 96.255753][ C0] ? kmsan_get_metadata+0x51/0x350
[ 96.260860][ C0] ? kmsan_internal_check_memory+0x99/0x440
[ 96.266752][ C0] ? __msan_get_context_state+0x9/0x20
[ 96.272206][ C0] ? rcu_all_qs+0x23/0x240
[ 96.276618][ C0] __sys_sendmmsg+0x53a/0xae0
[ 96.281299][ C0] ? kmsan_get_shadow_origin_ptr+0x91/0x4d0
[ 96.287469][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 96.293539][ C0] ? prepare_exit_to_usermode+0x19a/0x4d0
[ 96.299390][ C0] ? kmsan_get_shadow_origin_ptr+0x91/0x4d0
[ 96.305438][ C0] __se_sys_sendmmsg+0xbd/0xe0
[ 96.310270][ C0] __x64_sys_sendmmsg+0x56/0x70
[ 96.315261][ C0] do_syscall_64+0xb6/0x160
[ 96.319762][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 96.325793][ C0] RIP: 0033:0x442129
[ 96.329681][ C0] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 5b 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[ 96.349388][ C0] RSP: 002b:00007fffef5083a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 96.357794][ C0] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000442129
[ 96.366138][ C0] RDX: 000000000400004e RSI: 0000000020000d00 RDI: 0000000000000003
[ 96.374288][ C0] RBP: 0000000000000004 R08: 0000000000000025 R09: 0000000000000025
[ 96.382572][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 96.390845][ C0] R13: 00000000004036a0 R14: 0000000000000000 R15: 0000000000000000
[ 96.400750][ C0] Kernel Offset: 0x19000000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff)
[ 96.412636][ C0] Rebooting in 86400 seconds..