Warning: Permanently added '10.128.1.61' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [   66.800243][ T7036] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   66.840090][ T7036] ==================================================================
[   66.848341][ T7036] BUG: KASAN: slab-out-of-bounds in __kvm_gfn_to_hva_cache_init+0x5fb/0x670
[   66.857158][ T7036] Read of size 8 at addr ffff8880a66ca468 by task syz-executor781/7036
[   66.865392][ T7036] 
[   66.867871][ T7036] CPU: 0 PID: 7036 Comm: syz-executor781 Not tainted 5.6.0-syzkaller #0
[   66.876189][ T7036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   66.886456][ T7036] Call Trace:
[   66.889859][ T7036]  dump_stack+0x188/0x20d
[   66.894185][ T7036]  print_address_description.constprop.0.cold+0xd3/0x315
[   66.901213][ T7036]  ? __kvm_gfn_to_hva_cache_init+0x5fb/0x670
[   66.907209][ T7036]  __kasan_report.cold+0x35/0x4d
[   66.912142][ T7036]  ? __kvm_gfn_to_hva_cache_init+0x5fb/0x670
[   66.918271][ T7036]  ? __kvm_gfn_to_hva_cache_init+0x5fb/0x670
[   66.924242][ T7036]  kasan_report+0x33/0x50
[   66.928745][ T7036]  __kvm_gfn_to_hva_cache_init+0x5fb/0x670
[   66.934556][ T7036]  ? __kvm_write_guest_page+0x170/0x170
[   66.940117][ T7036]  kvm_lapic_set_vapic_addr+0x88/0x180
[   66.945568][ T7036]  kvm_arch_vcpu_ioctl+0xf0d/0x2c20
[   66.950750][ T7036]  ? kvm_arch_vcpu_put+0x530/0x530
[   66.955845][ T7036]  ? lock_acquire+0x1f2/0x8f0
[   66.960579][ T7036]  ? kvm_vcpu_ioctl+0x175/0xe60
[   66.965434][ T7036]  ? lock_release+0x800/0x800
[   66.970110][ T7036]  ? find_held_lock+0x2d/0x110
[   66.974877][ T7036]  ? __mutex_lock+0x458/0x13c0
[   66.979671][ T7036]  ? find_held_lock+0x2d/0x110
[   66.984725][ T7036]  ? kvm_vcpu_ioctl+0x175/0xe60
[   66.989594][ T7036]  ? tomoyo_path_number_perm+0x1ee/0x4d0
[   66.995228][ T7036]  ? mutex_trylock+0x2c0/0x2c0
[   67.000002][ T7036]  ? lock_downgrade+0x840/0x840
[   67.004998][ T7036]  ? quarantine_put+0x119/0x1c0
[   67.009870][ T7036]  ? kfree+0x1eb/0x2b0
[   67.013938][ T7036]  ? tomoyo_path_number_perm+0x411/0x4d0
[   67.019580][ T7036]  ? lockdep_hardirqs_on+0x463/0x620
[   67.024879][ T7036]  ? tomoyo_path_number_perm+0x238/0x4d0
[   67.030512][ T7036]  kvm_vcpu_ioctl+0x866/0xe60
[   67.035177][ T7036]  ? kvm_get_dirty_log_protect.isra.0+0x670/0x670
[   67.041606][ T7036]  ? __sanitizer_cov_trace_switch+0x45/0x70
[   67.047498][ T7036]  ? do_vfs_ioctl+0x50c/0x12d0
[   67.052279][ T7036]  ? ioctl_file_clone+0x180/0x180
[   67.057303][ T7036]  kvm_vcpu_compat_ioctl+0x1ab/0x350
[   67.062577][ T7036]  ? rcu_read_lock_any_held.part.0+0x50/0x50
[   67.068561][ T7036]  ? kvm_vcpu_ioctl+0xe60/0xe60
[   67.073407][ T7036]  ? do_sys_open+0xc3/0x140
[   67.077904][ T7036]  ? kvm_vcpu_ioctl+0xe60/0xe60
[   67.082756][ T7036]  __ia32_compat_sys_ioctl+0x23d/0x2b0
[   67.088206][ T7036]  do_fast_syscall_32+0x270/0xe90
[   67.093244][ T7036]  entry_SYSENTER_compat+0x70/0x7f
[   67.098362][ T7036] 
[   67.100709][ T7036] Allocated by task 7036:
[   67.105036][ T7036]  save_stack+0x1b/0x40
[   67.109178][ T7036]  __kasan_kmalloc.constprop.0+0xbf/0xd0
[   67.114806][ T7036]  kvmalloc_node+0x61/0xf0
[   67.119209][ T7036]  kvm_set_memslot+0x115/0x1530
[   67.124045][ T7036]  __kvm_set_memory_region+0xcf7/0x1320
[   67.129687][ T7036]  __x86_set_memory_region+0x2a3/0x5a0
[   67.135137][ T7036]  vmx_create_vcpu+0x2107/0x2b40
[   67.140081][ T7036]  kvm_arch_vcpu_create+0x6ef/0xb80
[   67.145299][ T7036]  kvm_vm_ioctl+0x15f7/0x23e0
[   67.150167][ T7036]  kvm_vm_compat_ioctl+0x125/0x240
[   67.155274][ T7036]  __ia32_compat_sys_ioctl+0x23d/0x2b0
[   67.160730][ T7036]  do_fast_syscall_32+0x270/0xe90
[   67.165739][ T7036]  entry_SYSENTER_compat+0x70/0x7f
[   67.170824][ T7036] 
[   67.173144][ T7036] Freed by task 6955:
[   67.177110][ T7036]  save_stack+0x1b/0x40
[   67.181243][ T7036]  __kasan_slab_free+0xf7/0x140
[   67.186165][ T7036]  kfree+0x109/0x2b0
[   67.190158][ T7036]  tty_port_put+0x16a/0x1d0
[   67.194660][ T7036]  vt_ioctl+0x1c67/0x26b0
[   67.199021][ T7036]  tty_ioctl+0xedc/0x1440
[   67.203361][ T7036]  ksys_ioctl+0x11a/0x180
[   67.207679][ T7036]  __x64_sys_ioctl+0x6f/0xb0
[   67.214425][ T7036]  do_syscall_64+0xf6/0x7d0
[   67.219136][ T7036]  entry_SYSCALL_64_after_hwframe+0x49/0xb3
[   67.225122][ T7036] 
[   67.227445][ T7036] The buggy address belongs to the object at ffff8880a66ca000
[   67.227445][ T7036]  which belongs to the cache kmalloc-2k of size 2048
[   67.241509][ T7036] The buggy address is located 1128 bytes inside of
[   67.241509][ T7036]  2048-byte region [ffff8880a66ca000, ffff8880a66ca800)
[   67.255224][ T7036] The buggy address belongs to the page:
[   67.260874][ T7036] page:ffffea000299b280 refcount:1 mapcount:0 mapping:0000000080985d54 index:0x0
[   67.269967][ T7036] flags: 0xfffe0000000200(slab)
[   67.274829][ T7036] raw: 00fffe0000000200 ffffea000299b1c8 ffffea000299b2c8 ffff8880aa000e00
[   67.283426][ T7036] raw: 0000000000000000 ffff8880a66ca000 0000000100000001 0000000000000000
[   67.292020][ T7036] page dumped because: kasan: bad access detected
[   67.298957][ T7036] 
[   67.301270][ T7036] Memory state around the buggy address:
[   67.306898][ T7036]  ffff8880a66ca300: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   67.315101][ T7036]  ffff8880a66ca380: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   67.323361][ T7036] >ffff8880a66ca400: 00 00 00 00 00 00 00 00 00 00 00 00 00 fc fc fc
[   67.331435][ T7036]                                                           ^
[   67.339054][ T7036]  ffff8880a66ca480: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   67.347341][ T7036]  ffff8880a66ca500: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   67.355391][ T7036] ==================================================================
[   67.363441][ T7036] Disabling lock debugging due to kernel taint
[   67.370653][ T7036] Kernel panic - not syncing: panic_on_warn set ...
[   67.377271][ T7036] CPU: 1 PID: 7036 Comm: syz-executor781 Tainted: G    B             5.6.0-syzkaller #0
[   67.387106][ T7036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   67.397451][ T7036] Call Trace:
[   67.400751][ T7036]  dump_stack+0x188/0x20d
[   67.405197][ T7036]  panic+0x2e3/0x75c
[   67.409235][ T7036]  ? add_taint.cold+0x16/0x16
[   67.414008][ T7036]  ? preempt_schedule_common+0x5e/0xc0
[   67.419518][ T7036]  ? __kvm_gfn_to_hva_cache_init+0x5fb/0x670
[   67.425686][ T7036]  ? preempt_schedule_thunk+0x16/0x18
[   67.431068][ T7036]  ? trace_hardirqs_on+0x55/0x220
[   67.436794][ T7036]  ? __kvm_gfn_to_hva_cache_init+0x5fb/0x670
[   67.442779][ T7036]  end_report+0x4d/0x53
[   67.446950][ T7036]  __kasan_report.cold+0xd/0x4d
[   67.452110][ T7036]  ? __kvm_gfn_to_hva_cache_init+0x5fb/0x670
[   67.458295][ T7036]  ? __kvm_gfn_to_hva_cache_init+0x5fb/0x670
[   67.464284][ T7036]  kasan_report+0x33/0x50
[   67.468621][ T7036]  __kvm_gfn_to_hva_cache_init+0x5fb/0x670
[   67.474657][ T7036]  ? __kvm_write_guest_page+0x170/0x170
[   67.480216][ T7036]  kvm_lapic_set_vapic_addr+0x88/0x180
[   67.485692][ T7036]  kvm_arch_vcpu_ioctl+0xf0d/0x2c20
[   67.490878][ T7036]  ? kvm_arch_vcpu_put+0x530/0x530
[   67.496331][ T7036]  ? lock_acquire+0x1f2/0x8f0
[   67.501422][ T7036]  ? kvm_vcpu_ioctl+0x175/0xe60
[   67.506277][ T7036]  ? lock_release+0x800/0x800
[   67.510942][ T7036]  ? find_held_lock+0x2d/0x110
[   67.515736][ T7036]  ? __mutex_lock+0x458/0x13c0
[   67.520485][ T7036]  ? find_held_lock+0x2d/0x110
[   67.525249][ T7036]  ? kvm_vcpu_ioctl+0x175/0xe60
[   67.530213][ T7036]  ? tomoyo_path_number_perm+0x1ee/0x4d0
[   67.535837][ T7036]  ? mutex_trylock+0x2c0/0x2c0
[   67.540614][ T7036]  ? lock_downgrade+0x840/0x840
[   67.545464][ T7036]  ? quarantine_put+0x119/0x1c0
[   67.550315][ T7036]  ? kfree+0x1eb/0x2b0
[   67.554384][ T7036]  ? tomoyo_path_number_perm+0x411/0x4d0
[   67.560008][ T7036]  ? lockdep_hardirqs_on+0x463/0x620
[   67.565325][ T7036]  ? tomoyo_path_number_perm+0x238/0x4d0
[   67.570976][ T7036]  kvm_vcpu_ioctl+0x866/0xe60
[   67.575651][ T7036]  ? kvm_get_dirty_log_protect.isra.0+0x670/0x670
[   67.582094][ T7036]  ? __sanitizer_cov_trace_switch+0x45/0x70
[   67.588100][ T7036]  ? do_vfs_ioctl+0x50c/0x12d0
[   67.592855][ T7036]  ? ioctl_file_clone+0x180/0x180
[   67.598055][ T7036]  kvm_vcpu_compat_ioctl+0x1ab/0x350
[   67.603348][ T7036]  ? rcu_read_lock_any_held.part.0+0x50/0x50
[   67.609448][ T7036]  ? kvm_vcpu_ioctl+0xe60/0xe60
[   67.614306][ T7036]  ? do_sys_open+0xc3/0x140
[   67.618819][ T7036]  ? kvm_vcpu_ioctl+0xe60/0xe60
[   67.623658][ T7036]  __ia32_compat_sys_ioctl+0x23d/0x2b0
[   67.629119][ T7036]  do_fast_syscall_32+0x270/0xe90
[   67.634211][ T7036]  entry_SYSENTER_compat+0x70/0x7f
[   67.641052][ T7036] Kernel Offset: disabled
[   67.645387][ T7036] Rebooting in 86400 seconds..