[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   92.519212][   T30] audit: type=1800 audit(1572029290.587:25): pid=12560 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[   92.543003][   T30] audit: type=1800 audit(1572029290.617:26): pid=12560 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   92.580040][   T30] audit: type=1800 audit(1572029290.637:27): pid=12560 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.147' (ECDSA) to the list of known hosts.
syzkaller login: [  117.161106][T12712] IPVS: ftp: loaded support on port[0] = 21
[  117.240124][T12712] chnl_net:caif_netlink_parms(): no params data found
[  117.278419][T12712] bridge0: port 1(bridge_slave_0) entered blocking state
[  117.285928][T12712] bridge0: port 1(bridge_slave_0) entered disabled state
[  117.294749][T12712] device bridge_slave_0 entered promiscuous mode
[  117.304027][T12712] bridge0: port 2(bridge_slave_1) entered blocking state
[  117.311166][T12712] bridge0: port 2(bridge_slave_1) entered disabled state
[  117.319930][T12712] device bridge_slave_1 entered promiscuous mode
[  117.342653][T12712] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  117.354763][T12712] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  117.378626][T12712] team0: Port device team_slave_0 added
[  117.386874][T12712] team0: Port device team_slave_1 added
[  117.445428][T12712] device hsr_slave_0 entered promiscuous mode
[  117.482910][T12712] device hsr_slave_1 entered promiscuous mode
[  117.619202][T12712] bridge0: port 2(bridge_slave_1) entered blocking state
[  117.626533][T12712] bridge0: port 2(bridge_slave_1) entered forwarding state
[  117.634359][T12712] bridge0: port 1(bridge_slave_0) entered blocking state
[  117.641603][T12712] bridge0: port 1(bridge_slave_0) entered forwarding state
[  117.858380][T12712] 8021q: adding VLAN 0 to HW filter on device bond0
[  117.917723][ T3912] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  117.942756][ T3912] bridge0: port 1(bridge_slave_0) entered disabled state
[  117.963856][ T3912] bridge0: port 2(bridge_slave_1) entered disabled state
[  117.984632][ T3912] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  118.041592][T12712] 8021q: adding VLAN 0 to HW filter on device team0
[  118.083784][ T3912] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  118.093724][ T3912] bridge0: port 1(bridge_slave_0) entered blocking state
[  118.100937][ T3912] bridge0: port 1(bridge_slave_0) entered forwarding state
[  118.176475][ T3912] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  118.187112][ T3912] bridge0: port 2(bridge_slave_1) entered blocking state
[  118.194397][ T3912] bridge0: port 2(bridge_slave_1) entered forwarding state
[  118.204919][ T3912] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  118.215391][ T3912] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  118.225070][ T3912] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  118.252960][T12712] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  118.266190][T12712] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  118.356818][ T3912] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  118.366295][ T3912] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  118.381661][T12712] 8021q: adding VLAN 0 to HW filter on device batadv0
executing program
[  118.621529][T12712] =====================================================
[  118.628765][T12712] BUG: KMSAN: uninit-value in ip_tunnel_xmit+0x3c6/0x3320
[  118.635864][T12712] CPU: 1 PID: 12712 Comm: syz-executor862 Not tainted 5.4.0-rc3+ #0
[  118.643921][T12712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  118.655882][T12712] Call Trace:
[  118.659162][T12712]  dump_stack+0x191/0x1f0
[  118.663479][T12712]  kmsan_report+0x128/0x220
[  118.667981][T12712]  __msan_warning+0x73/0xe0
[  118.672676][T12712]  ip_tunnel_xmit+0x3c6/0x3320
[  118.677424][T12712]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  118.683563][T12712]  ? skb_push+0x15b/0x250
[  118.687885][T12712]  ? gre_build_header+0x3ec/0x9f0
[  118.692918][T12712]  ? kmsan_get_shadow_origin_ptr+0x91/0x4b0
[  118.699130][T12712]  ipgre_xmit+0xff3/0x1120
[  118.703542][T12712]  ? ipgre_close+0x240/0x240
[  118.708132][T12712]  dev_hard_start_xmit+0x51a/0xab0
[  118.713260][T12712]  ? kmsan_get_shadow_origin_ptr+0x91/0x4b0
[  118.719342][T12712]  __dev_queue_xmit+0x35b6/0x4200
[  118.724397][T12712]  dev_queue_xmit+0x4b/0x60
[  118.728893][T12712]  ? netdev_core_pick_tx+0x4d0/0x4d0
[  118.734268][T12712]  packet_sendmsg+0x82d7/0x92e0
[  118.739105][T12712]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  118.745327][T12712]  ? aa_label_sk_perm+0x6d6/0x940
[  118.750426][T12712]  ? kmsan_get_metadata+0x39/0x350
[  118.755526][T12712]  ? kmsan_internal_set_origin+0x6a/0xb0
[  118.761147][T12712]  ? kmsan_get_shadow_origin_ptr+0x91/0x4b0
[  118.767196][T12712]  ? aa_sk_perm+0x730/0xaf0
[  118.771700][T12712]  ? compat_packet_setsockopt+0x360/0x360
[  118.777505][T12712]  ___sys_sendmsg+0x14ff/0x1590
[  118.782362][T12712]  ? kmsan_get_shadow_origin_ptr+0x91/0x4b0
[  118.788326][T12712]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  118.794392][T12712]  ? __fget_light+0x1b8/0x710
[  118.799071][T12712]  __se_sys_sendmsg+0x305/0x460
[  118.804007][T12712]  __x64_sys_sendmsg+0x4a/0x70
[  118.808931][T12712]  do_syscall_64+0xb6/0x160
[  118.813421][T12712]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  118.819314][T12712] RIP: 0033:0x441a29
[  118.823193][T12712] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[  118.842876][T12712] RSP: 002b:00007ffdf4580438 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  118.851301][T12712] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000441a29
[  118.859460][T12712] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000004
[  118.867782][T12712] RBP: 00007ffdf4580450 R08: 0000000001bbbbbb R09: 0000000001bbbbbb
[  118.875872][T12712] R10: 0000000001bbbbbb R11: 0000000000000246 R12: 0000000000000000
[  118.884266][T12712] R13: 0000000000402fc0 R14: 0000000000000000 R15: 0000000000000000
[  118.892235][T12712] 
[  118.894542][T12712] Uninit was created at:
[  118.898790][T12712]  kmsan_internal_poison_shadow+0x60/0x120
[  118.904712][T12712]  kmsan_slab_alloc+0xaa/0x120
[  118.909461][T12712]  __kmalloc_node_track_caller+0xda2/0x13d0
[  118.915429][T12712]  __alloc_skb+0x306/0xa10
[  118.919827][T12712]  alloc_skb_with_frags+0x18c/0xa80
[  118.925004][T12712]  sock_alloc_send_pskb+0xafd/0x10a0
[  118.930274][T12712]  packet_sendmsg+0x6785/0x92e0
[  118.935365][T12712]  ___sys_sendmsg+0x14ff/0x1590
[  118.940200][T12712]  __se_sys_sendmsg+0x305/0x460
[  118.945032][T12712]  __x64_sys_sendmsg+0x4a/0x70
[  118.949813][T12712]  do_syscall_64+0xb6/0x160
[  118.954411][T12712]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  118.960276][T12712] =====================================================
[  118.967198][T12712] Disabling lock debugging due to kernel taint
[  118.973335][T12712] Kernel panic - not syncing: panic_on_warn set ...
[  118.979920][T12712] CPU: 1 PID: 12712 Comm: syz-executor862 Tainted: G    B             5.4.0-rc3+ #0
[  118.989578][T12712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  118.999624][T12712] Call Trace:
[  119.002934][T12712]  dump_stack+0x191/0x1f0
[  119.007253][T12712]  panic+0x3c9/0xc1e
[  119.011171][T12712]  kmsan_report+0x215/0x220
[  119.016205][T12712]  __msan_warning+0x73/0xe0
[  119.021137][T12712]  ip_tunnel_xmit+0x3c6/0x3320
[  119.025891][T12712]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  119.031972][T12712]  ? skb_push+0x15b/0x250
[  119.036483][T12712]  ? gre_build_header+0x3ec/0x9f0
[  119.041896][T12712]  ? kmsan_get_shadow_origin_ptr+0x91/0x4b0
[  119.047849][T12712]  ipgre_xmit+0xff3/0x1120
[  119.052273][T12712]  ? ipgre_close+0x240/0x240
[  119.057032][T12712]  dev_hard_start_xmit+0x51a/0xab0
[  119.062233][T12712]  ? kmsan_get_shadow_origin_ptr+0x91/0x4b0
[  119.068129][T12712]  __dev_queue_xmit+0x35b6/0x4200
[  119.073246][T12712]  dev_queue_xmit+0x4b/0x60
[  119.077756][T12712]  ? netdev_core_pick_tx+0x4d0/0x4d0
[  119.083034][T12712]  packet_sendmsg+0x82d7/0x92e0
[  119.087881][T12712]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  119.093937][T12712]  ? aa_label_sk_perm+0x6d6/0x940
[  119.098961][T12712]  ? kmsan_get_metadata+0x39/0x350
[  119.104059][T12712]  ? kmsan_internal_set_origin+0x6a/0xb0
[  119.109688][T12712]  ? kmsan_get_shadow_origin_ptr+0x91/0x4b0
[  119.116195][T12712]  ? aa_sk_perm+0x730/0xaf0
[  119.120731][T12712]  ? compat_packet_setsockopt+0x360/0x360
[  119.126438][T12712]  ___sys_sendmsg+0x14ff/0x1590
[  119.131467][T12712]  ? kmsan_get_shadow_origin_ptr+0x91/0x4b0
[  119.137344][T12712]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[  119.143391][T12712]  ? __fget_light+0x1b8/0x710
[  119.148058][T12712]  __se_sys_sendmsg+0x305/0x460
[  119.152899][T12712]  __x64_sys_sendmsg+0x4a/0x70
[  119.157747][T12712]  do_syscall_64+0xb6/0x160
[  119.162250][T12712]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  119.168123][T12712] RIP: 0033:0x441a29
[  119.172001][T12712] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[  119.191689][T12712] RSP: 002b:00007ffdf4580438 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  119.200180][T12712] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000441a29
[  119.208154][T12712] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000004
[  119.216110][T12712] RBP: 00007ffdf4580450 R08: 0000000001bbbbbb R09: 0000000001bbbbbb
[  119.224062][T12712] R10: 0000000001bbbbbb R11: 0000000000000246 R12: 0000000000000000
[  119.232018][T12712] R13: 0000000000402fc0 R14: 0000000000000000 R15: 0000000000000000
[  119.241728][T12712] Kernel Offset: disabled
[  119.246067][T12712] Rebooting in 86400 seconds..