[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 80.573862][ T32] audit: type=1800 audit(1567993306.639:25): pid=11998 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 80.611863][ T32] audit: type=1800 audit(1567993306.659:26): pid=11998 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 80.632049][ T32] audit: type=1800 audit(1567993306.669:27): pid=11998 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.201' (ECDSA) to the list of known hosts. syzkaller login: [ 95.184956][T12149] IPVS: ftp: loaded support on port[0] = 21 [ 95.253724][T12149] chnl_net:caif_netlink_parms(): no params data found [ 95.287065][T12149] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.294356][T12149] bridge0: port 1(bridge_slave_0) entered disabled state [ 95.302802][T12149] device bridge_slave_0 entered promiscuous mode [ 95.310900][T12149] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.318187][T12149] bridge0: port 2(bridge_slave_1) entered disabled state [ 95.326588][T12149] device bridge_slave_1 entered promiscuous mode [ 95.347820][T12149] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 95.359121][T12149] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 95.381067][T12149] team0: Port device team_slave_0 added [ 95.388740][T12149] team0: Port device team_slave_1 added [ 95.454593][T12149] device hsr_slave_0 entered promiscuous mode [ 95.512393][T12149] device hsr_slave_1 entered promiscuous mode [ 95.563177][T12149] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.570437][T12149] bridge0: port 2(bridge_slave_1) entered forwarding state [ 95.578132][T12149] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.585375][T12149] bridge0: port 1(bridge_slave_0) entered forwarding state [ 95.629471][T12149] 8021q: adding VLAN 0 to HW filter on device bond0 [ 95.646391][ T31] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 95.656851][ T31] bridge0: port 1(bridge_slave_0) entered disabled state [ 95.666176][ T31] bridge0: port 2(bridge_slave_1) entered disabled state [ 95.674754][ T31] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 95.689441][T12149] 8021q: adding VLAN 0 to HW filter on device team0 [ 95.701645][ T3369] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 95.710640][ T3369] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.717849][ T3369] bridge0: port 1(bridge_slave_0) entered forwarding state [ 95.731085][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 95.740208][ T5] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.747607][ T5] bridge0: port 2(bridge_slave_1) entered forwarding state [ 95.770171][ T3369] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 95.780596][ T3369] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 95.796062][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 95.809761][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 95.823662][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready executing program [ 95.835115][T12149] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 95.859532][T12149] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 96.172419][ T17] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 96.411990][ T17] usb 1-1: Using ep0 maxpacket: 8 [ 96.572225][ T17] usb 1-1: unable to get BOS descriptor or descriptor too short [ 96.662157][ T17] usb 1-1: config 1 has an invalid interface number: 191 but max is 0 [ 96.670383][ T17] usb 1-1: config 1 has an invalid interface association descriptor of length 2, skipping [ 96.680511][ T17] usb 1-1: config 1 contains an unexpected descriptor of type 0x2, skipping [ 96.689375][ T17] usb 1-1: config 1 has no interface number 0 [ 96.695648][ T17] usb 1-1: config 1 interface 191 altsetting 9 bulk endpoint 0xF has invalid maxpacket 56 [ 96.705692][ T17] usb 1-1: config 1 interface 191 altsetting 9 has a duplicate endpoint with address 0xF, skipping [ 96.716516][ T17] usb 1-1: config 1 interface 191 altsetting 9 endpoint 0x9 has invalid maxpacket 120, setting to 64 [ 96.727864][ T17] usb 1-1: config 1 interface 191 altsetting 9 has an invalid endpoint with address 0x0, skipping [ 96.738621][ T17] usb 1-1: config 1 interface 191 altsetting 9 bulk endpoint 0x6 has invalid maxpacket 8 [ 96.748569][ T17] usb 1-1: config 1 interface 191 has no altsetting 0 [ 96.992222][ T17] usb 1-1: string descriptor 0 read error: -22 [ 96.998553][ T17] usb 1-1: New USB device found, idVendor=1618, idProduct=9116, bcdDevice=7b.8c [ 97.007768][ T17] usb 1-1: New USB device strings: Mfr=4, Product=7, SerialNumber=1 [ 97.054881][ T17] rsi_91x: rsi_probe: Failed to init usb interface [ 97.062874][ T17] rsi_91x: rsi_probe: Failed in probe...Exiting [ 97.069257][ T17] RSI-USB WLAN: probe of 1-1:1.191 failed with error -22 [ 97.124487][ T17] ================================================================== [ 97.132606][ T17] BUG: KMSAN: uninit-value in __list_add_valid+0x292/0x430 [ 97.139835][ T17] CPU: 1 PID: 17 Comm: kworker/1:0 Not tainted 5.3.0-rc7+ #0 [ 97.147183][ T17] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 97.157230][ T17] Workqueue: ipv6_addrconf addrconf_dad_work [ 97.163185][ T17] Call Trace: [ 97.166459][ T17] dump_stack+0x191/0x1f0 [ 97.170771][ T17] kmsan_report+0x162/0x2d0 [ 97.175255][ T17] __msan_warning+0x75/0xe0 [ 97.179740][ T17] __list_add_valid+0x292/0x430 [ 97.184607][ T17] ___neigh_create+0x2783/0x2c40 [ 97.189539][ T17] __neigh_create+0xbd/0xd0 [ 97.194027][ T17] ip6_finish_output2+0x149a/0x2670 [ 97.199218][ T17] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0 [ 97.205177][ T17] __ip6_finish_output+0x83d/0x8f0 [ 97.210272][ T17] ip6_finish_output+0x2db/0x420 [ 97.215190][ T17] ip6_output+0x5d3/0x720 [ 97.219582][ T17] ? ip6_output+0x720/0x720 [ 97.224131][ T17] ? ac6_seq_show+0x200/0x200 [ 97.228793][ T17] ndisc_send_skb+0x1083/0x15e0 [ 97.233636][ T17] ? ndisc_error_report+0x1a0/0x1a0 [ 97.238817][ T17] ndisc_send_ns+0xda8/0xe10 [ 97.243399][ T17] ndisc_solicit+0x498/0x5d0 [ 97.247975][ T17] ? ndisc_cleanup+0x70/0x70 [ 97.252549][ T17] __neigh_event_send+0x10fd/0x1d40 [ 97.257729][ T17] ? ___neigh_create+0x2a81/0x2c40 [ 97.262832][ T17] neigh_resolve_output+0x25e/0xb50 [ 97.268033][ T17] ? neigh_event_ns+0x8a0/0x8a0 [ 97.272866][ T17] ip6_finish_output2+0x2129/0x2670 [ 97.278072][ T17] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0 [ 97.284050][ T17] __ip6_finish_output+0x83d/0x8f0 [ 97.289147][ T17] ip6_finish_output+0x2db/0x420 [ 97.294084][ T17] ip6_output+0x5d3/0x720 [ 97.298398][ T17] ? ip6_output+0x720/0x720 [ 97.302882][ T17] ? ac6_seq_show+0x200/0x200 [ 97.307537][ T17] ndisc_send_skb+0x1083/0x15e0 [ 97.312380][ T17] ? ndisc_error_report+0x1a0/0x1a0 [ 97.317561][ T17] ndisc_send_rs+0xb5d/0xb90 [ 97.322141][ T17] addrconf_dad_completed+0xc03/0x1490 [ 97.327602][ T17] addrconf_dad_work+0x17b3/0x26e0 [ 97.332714][ T17] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0 [ 97.338670][ T17] ? ipv6_get_saddr_eval+0x13b0/0x13b0 [ 97.344106][ T17] ? ipv6_get_saddr_eval+0x13b0/0x13b0 [ 97.349546][ T17] process_one_work+0x1572/0x1ef0 [ 97.354563][ T17] worker_thread+0x111b/0x2460 [ 97.359320][ T17] kthread+0x4b5/0x4f0 [ 97.363382][ T17] ? process_one_work+0x1ef0/0x1ef0 [ 97.368585][ T17] ? kthread_blkcg+0xf0/0xf0 [ 97.373173][ T17] ret_from_fork+0x35/0x40 [ 97.377568][ T17] [ 97.379875][ T17] Uninit was created at: [ 97.384111][ T17] kmsan_internal_poison_shadow+0x58/0xb0 [ 97.389806][ T17] kmsan_slab_alloc+0xaa/0x120 [ 97.394563][ T17] __kmalloc_node_track_caller+0xb55/0x1320 [ 97.400432][ T17] __alloc_skb+0x306/0xa10 [ 97.404840][ T17] ndisc_alloc_skb+0x1ba/0x5b0 [ 97.409581][ T17] ndisc_send_ns+0x5e9/0xe10 [ 97.414160][ T17] ndisc_solicit+0x498/0x5d0 [ 97.418728][ T17] __neigh_event_send+0x10fd/0x1d40 [ 97.423907][ T17] neigh_resolve_output+0x25e/0xb50 [ 97.429094][ T17] ip6_finish_output2+0x2129/0x2670 [ 97.434270][ T17] __ip6_finish_output+0x83d/0x8f0 [ 97.439356][ T17] ip6_finish_output+0x2db/0x420 [ 97.444267][ T17] ip6_output+0x5d3/0x720 [ 97.448571][ T17] ndisc_send_skb+0x1083/0x15e0 [ 97.453396][ T17] ndisc_send_rs+0xb5d/0xb90 [ 97.457982][ T17] addrconf_dad_completed+0xc03/0x1490 [ 97.463445][ T17] addrconf_dad_work+0x17b3/0x26e0 [ 97.468534][ T17] process_one_work+0x1572/0x1ef0 [ 97.473537][ T17] worker_thread+0x111b/0x2460 [ 97.478279][ T17] kthread+0x4b5/0x4f0 [ 97.482344][ T17] ret_from_fork+0x35/0x40 [ 97.486747][ T17] ================================================================== [ 97.494791][ T17] Disabling lock debugging due to kernel taint [ 97.500928][ T17] Kernel panic - not syncing: panic_on_warn set ... [ 97.507500][ T17] CPU: 1 PID: 17 Comm: kworker/1:0 Tainted: G B 5.3.0-rc7+ #0 [ 97.516231][ T17] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 97.526329][ T17] Workqueue: ipv6_addrconf addrconf_dad_work [ 97.532283][ T17] Call Trace: [ 97.535571][ T17] dump_stack+0x191/0x1f0 [ 97.539886][ T17] panic+0x3c9/0xc1e [ 97.543777][ T17] kmsan_report+0x2ca/0x2d0 [ 97.548263][ T17] __msan_warning+0x75/0xe0 [ 97.552763][ T17] __list_add_valid+0x292/0x430 [ 97.557600][ T17] ___neigh_create+0x2783/0x2c40 [ 97.562535][ T17] __neigh_create+0xbd/0xd0 [ 97.567024][ T17] ip6_finish_output2+0x149a/0x2670 [ 97.572315][ T17] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0 [ 97.578285][ T17] __ip6_finish_output+0x83d/0x8f0 [ 97.583382][ T17] ip6_finish_output+0x2db/0x420 [ 97.588303][ T17] ip6_output+0x5d3/0x720 [ 97.592614][ T17] ? ip6_output+0x720/0x720 [ 97.597106][ T17] ? ac6_seq_show+0x200/0x200 [ 97.601770][ T17] ndisc_send_skb+0x1083/0x15e0 [ 97.606617][ T17] ? ndisc_error_report+0x1a0/0x1a0 [ 97.611797][ T17] ndisc_send_ns+0xda8/0xe10 [ 97.616387][ T17] ndisc_solicit+0x498/0x5d0 [ 97.620964][ T17] ? ndisc_cleanup+0x70/0x70 [ 97.625533][ T17] __neigh_event_send+0x10fd/0x1d40 [ 97.630715][ T17] ? ___neigh_create+0x2a81/0x2c40 [ 97.635814][ T17] neigh_resolve_output+0x25e/0xb50 [ 97.641001][ T17] ? neigh_event_ns+0x8a0/0x8a0 [ 97.645833][ T17] ip6_finish_output2+0x2129/0x2670 [ 97.651028][ T17] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0 [ 97.657001][ T17] __ip6_finish_output+0x83d/0x8f0 [ 97.662102][ T17] ip6_finish_output+0x2db/0x420 [ 97.667047][ T17] ip6_output+0x5d3/0x720 [ 97.671361][ T17] ? ip6_output+0x720/0x720 [ 97.675842][ T17] ? ac6_seq_show+0x200/0x200 [ 97.680495][ T17] ndisc_send_skb+0x1083/0x15e0 [ 97.685336][ T17] ? ndisc_error_report+0x1a0/0x1a0 [ 97.690514][ T17] ndisc_send_rs+0xb5d/0xb90 [ 97.695094][ T17] addrconf_dad_completed+0xc03/0x1490 [ 97.700571][ T17] addrconf_dad_work+0x17b3/0x26e0 [ 97.705670][ T17] ? kmsan_get_shadow_origin_ptr+0x28c/0x3a0 [ 97.711626][ T17] ? ipv6_get_saddr_eval+0x13b0/0x13b0 [ 97.717072][ T17] ? ipv6_get_saddr_eval+0x13b0/0x13b0 [ 97.722530][ T17] process_one_work+0x1572/0x1ef0 [ 97.727579][ T17] worker_thread+0x111b/0x2460 [ 97.732343][ T17] kthread+0x4b5/0x4f0 [ 97.736393][ T17] ? process_one_work+0x1ef0/0x1ef0 [ 97.741572][ T17] ? kthread_blkcg+0xf0/0xf0 [ 97.746144][ T17] ret_from_fork+0x35/0x40 [ 97.752235][ T17] Kernel Offset: disabled [ 97.756630][ T17] Rebooting in 86400 seconds..