[   63.185399] audit: type=1800 audit(1541047147.226:27): pid=6226 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   65.380318] kauditd_printk_skb: 1 callbacks suppressed
[   65.380356] audit: type=1800 audit(1541047149.426:29): pid=6226 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
[   65.405688] audit: type=1800 audit(1541047149.436:30): pid=6226 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.97' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [   77.043034] PANIC: double fault, error_code: 0x0
[   77.047930] CPU: 1 PID: 6379 Comm: syz-executor471 Not tainted 4.19.0+ #77
[   77.054965] ==================================================================
[   77.062357] BUG: KMSAN: uninit-value in irq_work_claim+0x153/0x390
[   77.068729] CPU: 1 PID: 6379 Comm: syz-executor471 Not tainted 4.19.0+ #77
[   77.075734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   77.085087] Call Trace:
[   77.087711]  <#DF>
[   77.089889]  dump_stack+0x32d/0x480
[   77.093545]  ? irq_work_claim+0x153/0x390
[   77.097720]  kmsan_report+0x1a2/0x2e0
[   77.101525]  kmsan_internal_check_memory+0x34c/0x430
[   77.106639]  kmsan_check_memory+0xb/0x10
[   77.110713]  irq_work_claim+0x153/0x390
[   77.114702]  irq_work_queue+0x44/0x280
[   77.118598]  vprintk_emit+0x693/0x790
[   77.122417]  vprintk_default+0x90/0xa0
[   77.126318]  vprintk_func+0x26b/0x2a0
[   77.130122]  printk+0x1a3/0x1f0
[   77.133483]  dump_stack_print_info+0x2c4/0x3c0
[   77.138093]  show_regs_print_info+0x37/0x40
[   77.142449]  show_regs+0x38/0x170
[   77.145972]  df_debug+0x86/0xb0
[   77.149282]  do_double_fault+0x362/0x480
[   77.153382]  double_fault+0x1e/0x30
[   77.157007] RIP: 0010:kmsan_get_origin_address+0xa/0x370
[   77.162465] Code: eb fe 0f 0b 66 90 66 2e 0f 1f 84 00 00 00 00 00 eb fe 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 41 57 41 56 41 55 <41> 54 53 48 83 ec 10 48 89 75 c8 48 89 fb 49 bc 00 00 00 00 00 78
[   77.181383] RSP: 0018:fffffe000003d000 EFLAGS: 00010086
[   77.186756] RAX: 00000000000001a8 RBX: 0000000000000000 RCX: 0000000000000001
[   77.194042] RDX: 0000000000000001 RSI: 0000000000000088 RDI: fffffe000003d150
[   77.201327] RBP: fffffe000003d018 R08: 0000000000000000 R09: 0000000000000000
[   77.208623] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000088
[   77.215891] R13: fffffe000003d1c0 R14: fffffe000003d1a8 R15: fffffe000003d1a8
[   77.223175]  </#DF>
[   77.225403]  <ENTRY_TRAMPOLINE>
[   77.228700]  kmsan_memmove_origins+0xbd/0x1d0
[   77.233225]  ? kmsan_memmove_shadow+0xad/0xe0
[   77.237720]  __msan_memmove+0x6c/0x80
[   77.241524]  fixup_bad_iret+0x9b/0x130
[   77.245422]  error_entry+0xad/0xc0
[   77.248954] RIP: 0000:          (null)
[   77.252854] Code: Bad RIP value.
[   77.256233] RSP: 0000:0000000000000000 EFLAGS: 00000000 ORIG_RAX: 0000000000000000
[   77.263960] RAX: 0000000000000000 RBX: ffffffff8ae00e58 RCX: 0000000000000000
[   77.271255] RDX: 0000000000000000 RSI: 0000006e0000005b RDI: 0000000000000000
[   77.278635] RBP: 0000000000000000 R08: 00000000004009ae R09: 0000000044000004
[   77.285902] R10: 00000000004012e0 R11: 0000000000000000 R12: 00000000004009ae
[   77.293164] R13: 0000000044000004 R14: 00000000004012e0 R15: 0000000000000000
[   77.300437]  ? general_protection+0x8/0x30
[   77.304671]  ? general_protection+0x8/0x30
[   77.308934]  </ENTRY_TRAMPOLINE>
[   77.312292] 
[   77.313910] Local variable description: ----__ai_ptr@irq_work_claim
[   77.320300] Variable was created at:
[   77.324009]  irq_work_claim+0x4b/0x390
[   77.327933]  irq_work_queue+0x44/0x280
[   77.331918] 
[   77.333543] Byte 7 of 8 is uninitialized
[   77.337601] Memory access of size 8 starts at fffffe0000045a38
[   77.343593] ==================================================================
[   77.350982] Disabling lock debugging due to kernel taint
[   77.356424] Kernel panic - not syncing: panic_on_warn set ...
[   77.356424] 
[   77.363789] CPU: 1 PID: 6379 Comm: syz-executor471 Tainted: G    B             4.19.0+ #77
[   77.372195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   77.381551] Call Trace:
[   77.384130]  <#DF>
[   77.386286]  dump_stack+0x32d/0x480
[   77.389926]  panic+0x57e/0xb28
[   77.393151]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[   77.398604]  kmsan_report+0x2d3/0x2e0
[   77.402434]  kmsan_internal_check_memory+0x34c/0x430
[   77.407566]  kmsan_check_memory+0xb/0x10
[   77.411624]  irq_work_claim+0x153/0x390
[   77.415636]  irq_work_queue+0x44/0x280
[   77.419547]  vprintk_emit+0x693/0x790
[   77.423365]  vprintk_default+0x90/0xa0
[   77.427254]  vprintk_func+0x26b/0x2a0
[   77.431075]  printk+0x1a3/0x1f0
[   77.434411]  dump_stack_print_info+0x2c4/0x3c0
[   77.439002]  show_regs_print_info+0x37/0x40
[   77.443324]  show_regs+0x38/0x170
[   77.446794]  df_debug+0x86/0xb0
[   77.450075]  do_double_fault+0x362/0x480
[   77.454144]  double_fault+0x1e/0x30
[   77.457771] RIP: 0010:kmsan_get_origin_address+0xa/0x370
[   77.463216] Code: eb fe 0f 0b 66 90 66 2e 0f 1f 84 00 00 00 00 00 eb fe 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 41 57 41 56 41 55 <41> 54 53 48 83 ec 10 48 89 75 c8 48 89 fb 49 bc 00 00 00 00 00 78
[   77.482123] RSP: 0018:fffffe000003d000 EFLAGS: 00010086
[   77.487504] RAX: 00000000000001a8 RBX: 0000000000000000 RCX: 0000000000000001
[   77.494766] RDX: 0000000000000001 RSI: 0000000000000088 RDI: fffffe000003d150
[   77.502039] RBP: fffffe000003d018 R08: 0000000000000000 R09: 0000000000000000
[   77.509319] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000088
[   77.516582] R13: fffffe000003d1c0 R14: fffffe000003d1a8 R15: fffffe000003d1a8
[   77.523863]  </#DF>
[   77.526096]  <ENTRY_TRAMPOLINE>
[   77.529380]  kmsan_memmove_origins+0xbd/0x1d0
[   77.533907]  ? kmsan_memmove_shadow+0xad/0xe0
[   77.538423]  __msan_memmove+0x6c/0x80
[   77.542240]  fixup_bad_iret+0x9b/0x130
[   77.546155]  error_entry+0xad/0xc0
[   77.549697] RIP: 0000:          (null)
[   77.553616] Code: Bad RIP value.
[   77.556973] RSP: 0000:0000000000000000 EFLAGS: 00000000 ORIG_RAX: 0000000000000000
[   77.564700] RAX: 0000000000000000 RBX: ffffffff8ae00e58 RCX: 0000000000000000
[   77.571965] RDX: 0000000000000000 RSI: 0000006e0000005b RDI: 0000000000000000
[   77.579228] RBP: 0000000000000000 R08: 00000000004009ae R09: 0000000044000004
[   77.586492] R10: 00000000004012e0 R11: 0000000000000000 R12: 00000000004009ae
[   77.594035] R13: 0000000044000004 R14: 00000000004012e0 R15: 0000000000000000
[   77.601312]  ? general_protection+0x8/0x30
[   77.605551]  ? general_protection+0x8/0x30
[   77.609790]  </ENTRY_TRAMPOLINE>
[   77.614051] Kernel Offset: disabled
[   77.617689] Rebooting in 86400 seconds..