[info] Using makefile-style concurrent boot in runlevel 2. [ 25.173132] audit: type=1800 audit(1540707155.445:21): pid=5398 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="bootlogs" dev="sda1" ino=2419 res=0 [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.10.11' (ECDSA) to the list of known hosts. 2018/10/28 06:12:55 parsed 1 programs 2018/10/28 06:12:57 executed programs: 0 syzkaller login: [ 47.307727] IPVS: ftp: loaded support on port[0] = 21 [ 47.314677] IPVS: ftp: loaded support on port[0] = 21 [ 47.318124] IPVS: ftp: loaded support on port[0] = 21 [ 47.330552] IPVS: ftp: loaded support on port[0] = 21 [ 47.330886] IPVS: ftp: loaded support on port[0] = 21 [ 47.340605] IPVS: ftp: loaded support on port[0] = 21 [ 48.100672] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.108669] bridge0: port 1(bridge_slave_0) entered disabled state [ 48.116304] device bridge_slave_0 entered promiscuous mode [ 48.140455] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.148457] bridge0: port 2(bridge_slave_1) entered disabled state [ 48.156213] device bridge_slave_1 entered promiscuous mode [ 48.203661] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.210547] bridge0: port 1(bridge_slave_0) entered disabled state [ 48.223026] device bridge_slave_0 entered promiscuous mode [ 48.230715] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 48.241780] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.249769] bridge0: port 1(bridge_slave_0) entered disabled state [ 48.257019] device bridge_slave_0 entered promiscuous mode [ 48.264040] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.270485] bridge0: port 1(bridge_slave_0) entered disabled state [ 48.278368] device bridge_slave_0 entered promiscuous mode [ 48.286311] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.294057] bridge0: port 1(bridge_slave_0) entered disabled state [ 48.301474] device bridge_slave_0 entered promiscuous mode [ 48.310354] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.316950] bridge0: port 1(bridge_slave_0) entered disabled state [ 48.324795] device bridge_slave_0 entered promiscuous mode [ 48.333414] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 48.341854] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.353474] bridge0: port 2(bridge_slave_1) entered disabled state [ 48.360881] device bridge_slave_1 entered promiscuous mode [ 48.379959] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.389101] bridge0: port 2(bridge_slave_1) entered disabled state [ 48.398134] device bridge_slave_1 entered promiscuous mode [ 48.407422] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.414212] bridge0: port 2(bridge_slave_1) entered disabled state [ 48.422554] device bridge_slave_1 entered promiscuous mode [ 48.429794] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.438238] bridge0: port 2(bridge_slave_1) entered disabled state [ 48.446216] device bridge_slave_1 entered promiscuous mode [ 48.455248] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 48.478011] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 48.489159] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 48.507270] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.516578] bridge0: port 2(bridge_slave_1) entered disabled state [ 48.525461] device bridge_slave_1 entered promiscuous mode [ 48.534063] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 48.541696] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 48.570517] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 48.585023] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 48.592390] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 48.615127] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 48.622543] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 48.672572] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 48.706323] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 48.828310] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 48.841776] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 48.874318] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 48.884636] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 48.900188] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 48.926208] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 48.949130] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 48.967915] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 48.998123] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 49.005867] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 49.023946] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 49.032580] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 49.058033] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 49.072496] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 49.083469] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 49.095411] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 49.109059] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 49.117893] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 49.131922] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 49.141178] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 49.155666] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 49.170748] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 49.180553] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 49.212316] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 49.223515] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 49.259763] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 49.269028] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 49.277796] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 49.296200] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 49.306253] team0: Port device team_slave_0 added [ 49.314120] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 49.350517] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 49.386400] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 49.403029] team0: Port device team_slave_0 added [ 49.411580] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 49.420758] team0: Port device team_slave_1 added [ 49.450266] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 49.458941] team0: Port device team_slave_0 added [ 49.469573] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 49.483662] team0: Port device team_slave_0 added [ 49.494384] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 49.501750] team0: Port device team_slave_1 added [ 49.519697] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 49.542955] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 49.552135] team0: Port device team_slave_0 added [ 49.563251] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 49.570667] team0: Port device team_slave_1 added [ 49.589574] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 49.603573] team0: Port device team_slave_1 added [ 49.621953] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 49.630575] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 49.638824] team0: Port device team_slave_1 added [ 49.657450] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 49.671093] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 49.685396] team0: Port device team_slave_0 added [ 49.692049] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 49.708971] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 49.727720] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 49.736175] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 49.745353] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 49.765029] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 49.775951] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 49.787797] team0: Port device team_slave_1 added [ 49.798535] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 49.810390] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 49.832328] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 49.846861] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 49.855291] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 49.863200] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 49.871352] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 49.884096] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 49.898929] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 49.907056] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 49.926264] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 49.934809] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 49.943693] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 49.951732] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 49.974502] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 49.985653] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 50.001268] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 50.017504] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 50.028450] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 50.037266] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 50.047477] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 50.060001] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 50.076368] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 50.092267] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 50.101776] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 50.110240] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 50.118391] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 50.126562] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 50.134544] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 50.142325] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 50.161080] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 50.172536] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 50.190047] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 50.197708] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 50.208642] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 50.222862] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 50.230937] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 50.239315] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 50.247303] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 50.797046] bridge0: port 2(bridge_slave_1) entered blocking state [ 50.803686] bridge0: port 2(bridge_slave_1) entered forwarding state [ 50.810648] bridge0: port 1(bridge_slave_0) entered blocking state [ 50.817134] bridge0: port 1(bridge_slave_0) entered forwarding state [ 50.831965] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 50.955344] bridge0: port 2(bridge_slave_1) entered blocking state [ 50.961776] bridge0: port 2(bridge_slave_1) entered forwarding state [ 50.968500] bridge0: port 1(bridge_slave_0) entered blocking state [ 50.974921] bridge0: port 1(bridge_slave_0) entered forwarding state [ 50.985507] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 50.994756] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.001132] bridge0: port 2(bridge_slave_1) entered forwarding state [ 51.007859] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.014297] bridge0: port 1(bridge_slave_0) entered forwarding state [ 51.024493] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 51.041290] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.047728] bridge0: port 2(bridge_slave_1) entered forwarding state [ 51.054483] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.060870] bridge0: port 1(bridge_slave_0) entered forwarding state [ 51.068885] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 51.075418] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 51.086078] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 51.093979] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 51.101154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 51.110884] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.117296] bridge0: port 2(bridge_slave_1) entered forwarding state [ 51.124472] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.130850] bridge0: port 1(bridge_slave_0) entered forwarding state [ 51.138951] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 51.192561] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.199035] bridge0: port 2(bridge_slave_1) entered forwarding state [ 51.205801] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.212187] bridge0: port 1(bridge_slave_0) entered forwarding state [ 51.227026] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 52.150523] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 52.157999] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 53.770845] 8021q: adding VLAN 0 to HW filter on device bond0 [ 53.918584] 8021q: adding VLAN 0 to HW filter on device bond0 [ 53.954122] 8021q: adding VLAN 0 to HW filter on device bond0 [ 54.037139] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 54.058345] 8021q: adding VLAN 0 to HW filter on device bond0 [ 54.074992] 8021q: adding VLAN 0 to HW filter on device bond0 [ 54.169757] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 54.187083] 8021q: adding VLAN 0 to HW filter on device bond0 [ 54.282286] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 54.296686] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 54.367364] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 54.383095] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 54.390549] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 54.403531] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 54.438162] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 54.445368] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 54.452434] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 54.479173] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 54.560267] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 54.576589] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 54.586482] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 54.598324] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 54.609089] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 54.623240] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 54.703624] 8021q: adding VLAN 0 to HW filter on device team0 [ 54.714863] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 54.727457] 8021q: adding VLAN 0 to HW filter on device team0 [ 54.740929] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 54.758421] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 54.803102] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 54.809267] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 54.822326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 54.840352] 8021q: adding VLAN 0 to HW filter on device team0 [ 54.930839] 8021q: adding VLAN 0 to HW filter on device team0 [ 54.941475] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.111036] 8021q: adding VLAN 0 to HW filter on device team0 [ 56.421762] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details. 2018/10/28 06:13:06 executed programs: 6 [ 56.672956] ------------[ cut here ]------------ [ 56.677883] kernel BUG at arch/x86/kvm/x86.c:353! [ 56.682902] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 56.688295] CPU: 1 PID: 7108 Comm: syz-executor4 Not tainted 4.19.0+ #84 [ 56.695148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 56.704554] RIP: 0010:kvm_spurious_fault+0x9/0x10 [ 56.708799] kobject: 'kvm' (000000008db7a717): kobject_uevent_env [ 56.709453] Code: 45 10 50 e8 79 97 7c 00 58 5a 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 0f 1f 84 00 00 00 00 00 55 48 89 e5 e8 67 3d 73 00 <0f> 0b 0f 1f 44 00 00 55 48 89 e5 41 57 41 56 41 55 49 89 f5 41 54 [ 56.709462] RSP: 0018:ffff8801b84671d0 EFLAGS: 00010293 [ 56.709473] RAX: ffff8801cb3940c0 RBX: ffff8801b8467248 RCX: ffffffff8139ec8c [ 56.709487] RDX: 0000000000000000 RSI: ffffffff810bfc59 RDI: ffff8801b8467208 [ 56.720878] kobject: 'kvm' (000000008db7a717): kobject_uevent_env [ 56.734654] RBP: ffff8801b84671d0 R08: ffff8801cb3940c0 R09: fffff520003f6846 [ 56.734663] R10: fffff520003f6846 R11: ffffc90001fb4237 R12: 1ffff1003708ce3d [ 56.734671] R13: dffffc0000000000 R14: ffff8801bc38d000 R15: 00000001bc38d000 [ 56.734683] FS: 00007f656018a700(0000) GS:ffff8801daf00000(0000) knlGS:0000000000000000 [ 56.734691] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 56.734699] CR2: ffff8801b8467208 CR3: 00000001be3c6000 CR4: 00000000001426e0 [ 56.734710] Call Trace: [ 56.740219] kobject: 'kvm' (000000008db7a717): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 56.747456] kvm_fastop_exception+0x51b/0x5602 [ 56.747472] ? vmcs_load+0x98/0x110 [ 56.747486] ? crash_vmclear_local_loaded_vmcss+0x1a0/0x1a0 [ 56.747504] vmx_vcpu_load+0x496/0x1030 [ 56.747523] ? print_usage_bug+0xc0/0xc0 [ 56.756898] kobject: 'kvm' (000000008db7a717): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 56.761049] ? vmx_set_cr4+0x7c0/0x7c0 [ 56.761063] ? retint_kernel+0x2d/0x2d [ 56.761085] ? zap_class+0x640/0x640 [ 56.784904] kobject: 'kvm' (000000008db7a717): kobject_uevent_env [ 56.791257] ? print_usage_bug+0xc0/0xc0 [ 56.791271] ? zap_class+0x640/0x640 [ 56.791285] ? print_usage_bug+0xc0/0xc0 [ 56.791303] ? print_usage_bug+0xc0/0xc0 [ 56.802185] kobject: 'kvm' (000000008db7a717): kobject_uevent_env [ 56.807470] kvm_arch_vcpu_load+0x1d4/0x960 [ 56.807487] ? mark_held_locks+0xc7/0x130 [ 56.807509] ? kvm_arch_dev_ioctl+0x620/0x620 [ 56.811379] kobject: 'kvm' (000000008db7a717): kobject_uevent_env [ 56.819131] ? preempt_notifier_dec+0x20/0x20 [ 56.819149] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 56.819166] ? check_preemption_disabled+0x48/0x280 [ 56.819184] vcpu_load+0x35/0x70 [ 56.823889] kobject: 'kvm' (000000008db7a717): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 56.827407] kvm_arch_vcpu_ioctl_run+0x109/0x72a0 [ 56.827427] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 56.827445] ? __free_object+0x173/0x340 [ 56.835062] kobject: 'kvm' (000000008db7a717): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 56.837142] ? __list_add_valid.cold.2+0x2a/0x2a [ 56.837156] ? debug_object_free+0x325/0x690 [ 56.837170] ? kvm_arch_vcpu_runnable+0x710/0x710 [ 56.837190] ? debug_object_free+0x32d/0x690 [ 56.841576] kobject: 'kvm' (000000008db7a717): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 56.850269] ? __init_waitqueue_head+0x9e/0x150 [ 56.850286] ? debug_object_destroy+0x2b0/0x2b0 [ 56.850307] ? __wait_rcu_gp+0x274/0x360 [ 56.850331] ? synchronize_rcu.part.53+0x104/0x120 [ 56.859185] kobject: 'kvm' (000000008db7a717): kobject_uevent_env [ 56.861846] ? synchronize_rcu_expedited+0xa0/0xa0 [ 56.861858] ? kfree_call_rcu+0x10/0x10 [ 56.861877] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 56.861896] ? put_pid.part.2+0x1c5/0x240 [ 56.868278] kobject: 'kvm' (000000008db7a717): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 56.872202] ? pid_task+0x200/0x200 [ 56.872226] kvm_vcpu_ioctl+0x5c8/0x1150 [ 56.872243] ? kvm_vcpu_ioctl+0x5c8/0x1150 [ 57.051934] ? kvm_uevent_notify_change.part.31+0x450/0x450 [ 57.057664] ? __call_rcu.constprop.55+0x3ea/0x950 [ 57.062633] ? find_held_lock+0x36/0x1c0 [ 57.066721] ? __fget+0x4aa/0x740 [ 57.070191] ? check_preemption_disabled+0x48/0x280 [ 57.075224] ? kasan_check_read+0x11/0x20 [ 57.079393] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 57.084745] ? rcu_softirq_qs+0x20/0x20 [ 57.088743] ? __fget+0x4d1/0x740 [ 57.092212] ? ksys_dup3+0x680/0x680 [ 57.095952] ? __might_fault+0x12b/0x1e0 [ 57.100029] ? lock_downgrade+0x900/0x900 [ 57.104761] ? lock_release+0xa00/0xa00 [ 57.108750] ? perf_trace_sched_process_exec+0x860/0x860 [ 57.114215] ? kvm_uevent_notify_change.part.31+0x450/0x450 [ 57.119939] do_vfs_ioctl+0x1de/0x1720 [ 57.123848] ? ioctl_preallocate+0x300/0x300 [ 57.128268] ? __fget_light+0x2e9/0x430 [ 57.132262] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 57.137815] ? smack_file_ioctl+0x210/0x3c0 [ 57.142165] ? fget_raw+0x20/0x20 [ 57.145655] ? smack_file_lock+0x2e0/0x2e0 [ 57.149906] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 57.155458] ? put_timespec64+0x10f/0x1b0 [ 57.159645] ? nsecs_to_jiffies+0x30/0x30 [ 57.163807] ? do_syscall_64+0x9a/0x820 [ 57.167935] ? do_syscall_64+0x9a/0x820 [ 57.171927] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 57.177476] ? security_file_ioctl+0x94/0xc0 [ 57.181902] ksys_ioctl+0xa9/0xd0 [ 57.185376] __x64_sys_ioctl+0x73/0xb0 [ 57.189278] do_syscall_64+0x1b9/0x820 [ 57.193211] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 57.198628] ? syscall_return_slowpath+0x5e0/0x5e0 [ 57.203574] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 57.208461] ? trace_hardirqs_on_caller+0x310/0x310 [ 57.213495] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 57.218528] ? prepare_exit_to_usermode+0x291/0x3b0 [ 57.223566] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 57.228454] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 57.233660] RIP: 0033:0x457569 [ 57.236870] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 57.255783] RSP: 002b:00007f6560189c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 57.263502] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 57.270781] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 57.278068] RBP: 000000000072c040 R08: 0000000000000000 R09: 0000000000000000 [ 57.285372] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f656018a6d4 [ 57.292656] R13: 00000000004c0027 R14: 00000000004d0108 R15: 00000000ffffffff [ 57.299941] Modules linked in: [ 57.303197] ------------[ cut here ]------------ [ 57.307962] kernel BUG at arch/x86/kvm/x86.c:353! [ 57.312815] invalid opcode: 0000 [#2] PREEMPT SMP KASAN [ 57.318195] CPU: 1 PID: 7108 Comm: syz-executor4 Tainted: G D 4.19.0+ #84 [ 57.326426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 57.335796] RIP: 0010:kvm_spurious_fault+0x9/0x10 [ 57.340657] Code: 45 10 50 e8 79 97 7c 00 58 5a 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 0f 1f 84 00 00 00 00 00 55 48 89 e5 e8 67 3d 73 00 <0f> 0b 0f 1f 44 00 00 55 48 89 e5 41 57 41 56 41 55 49 89 f5 41 54 [ 57.359570] RSP: 0018:ffff8801daf07be0 EFLAGS: 00010006 [ 57.364970] RAX: ffff8801cb3940c0 RBX: 1ffff1003b5e0f7f RCX: ffffffff8139ec8c [ 57.372245] RDX: 0000000000010000 RSI: ffffffff810bfc59 RDI: ffff8801daf07c18 [ 57.379523] RBP: ffff8801daf07be0 R08: ffff8801cb3940c0 R09: ffffed003b5e5b70 [ 57.386803] R10: ffffed003b5e5b70 R11: ffff8801daf2db87 R12: ffff8801daf07c58 [ 57.394222] R13: dffffc0000000000 R14: ffff8801bb2c9000 R15: 00000001bb2c9000 [ 57.401503] FS: 00007f656018a700(0000) GS:ffff8801daf00000(0000) knlGS:0000000000000000 [ 57.409739] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 57.415649] CR2: ffff8801daf07c18 CR3: 00000001be3c6000 CR4: 00000000001426e0 [ 57.422929] Call Trace: [ 57.425520] [ 57.427687] kvm_fastop_exception+0x503/0x5602 [ 57.432292] ? vmcs_clear+0x8f/0xf0 [ 57.435937] ? kvm_pdptr_read+0x160/0x160 [ 57.440100] __loaded_vmcs_clear+0x2d6/0x690 [ 57.444534] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 57.450084] ? nested_get_vmcs12_pages+0x15b0/0x15b0 [ 57.455204] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 57.460758] ? check_preemption_disabled+0x48/0x280 [ 57.465789] ? nested_get_vmcs12_pages+0x15b0/0x15b0 [ 57.470913] flush_smp_call_function_queue+0x1d2/0x640 [ 57.476206] ? cpumask_weight+0x40/0x40 [ 57.480197] ? kvm_clock_read+0x18/0x30 [ 57.484193] ? kvm_sched_clock_read+0x9/0x20 [ 57.488629] ? sched_clock+0x31/0x50 [ 57.492358] ? sched_clock_cpu+0x1b/0x1b0 [ 57.496527] ? check_preemption_disabled+0x48/0x280 [ 57.501556] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 57.507121] ? check_preemption_disabled+0x48/0x280 [ 57.512155] generic_smp_call_function_single_interrupt+0x13/0x2b [ 57.518400] smp_call_function_single_interrupt+0x12f/0x650 [ 57.524132] ? smp_call_function_interrupt+0x650/0x650 [ 57.529421] ? interrupt_entry+0xb5/0xc0 [ 57.533499] ? trace_hardirqs_off_caller+0xbb/0x310 [ 57.538526] ? trace_hardirqs_off_caller+0xbb/0x310 [ 57.543553] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 57.548423] ? trace_hardirqs_on_caller+0x310/0x310 [ 57.553450] ? trace_hardirqs_on_caller+0x310/0x310 [ 57.558477] ? task_prio+0x50/0x50 [ 57.562030] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 57.567672] ? check_preemption_disabled+0x48/0x280 [ 57.572704] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 57.577563] call_function_single_interrupt+0xf/0x20 [ 57.582700] [ 57.584956] RIP: 0010:oops_end+0x69/0x100 [ 57.589134] Code: 05 98 40 02 08 ff ff ff ff e8 e3 3b 1c 00 83 2d f4 67 01 09 01 74 69 48 83 3d f2 4c 05 08 00 0f 84 8c 00 00 00 48 89 df 57 9d <0f> 1f 44 00 00 e8 7d 43 1c 00 be 02 00 00 00 48 c7 c7 80 17 2e 8a [ 57.608042] RSP: 0018:ffff8801b8467000 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff04 [ 57.615760] RAX: ffff8801cb3940c0 RBX: 0000000000000286 RCX: ffffffff8148ebb1 [ 57.623039] RDX: 0000000000000000 RSI: ffffffff8148eb79 RDI: 0000000000000286 [ 57.630318] RBP: ffff8801b8467018 R08: ffff8801cb3940c0 R09: fffffbfff13e638a [ 57.637625] R10: fffffbfff13e638a R11: ffffffff89f31c57 R12: 000000000000000b [ 57.644912] R13: ffff8801b8467128 R14: 0000000000000000 R15: ffff8801b8467128 [ 57.652202] ? add_taint+0x61/0x70 [ 57.655762] ? add_taint+0x29/0x70 [ 57.659320] die+0x3d/0x46 [ 57.662176] do_trap+0x1ad/0x250 [ 57.665555] do_error_trap+0xd6/0x200 [ 57.669368] ? kvm_spurious_fault+0x9/0x10 [ 57.673648] do_invalid_op+0x36/0x40 [ 57.677372] ? kvm_spurious_fault+0x9/0x10 [ 57.681642] invalid_op+0x14/0x20 [ 57.685145] RIP: 0010:kvm_spurious_fault+0x9/0x10 [ 57.690014] Code: 45 10 50 e8 79 97 7c 00 58 5a 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 0f 1f 84 00 00 00 00 00 55 48 89 e5 e8 67 3d 73 00 <0f> 0b 0f 1f 44 00 00 55 48 89 e5 41 57 41 56 41 55 49 89 f5 41 54 [ 57.708937] RSP: 0018:ffff8801b84671d0 EFLAGS: 00010293 [ 57.714307] RAX: ffff8801cb3940c0 RBX: ffff8801b8467248 RCX: ffffffff8139ec8c [ 57.721589] RDX: 0000000000000000 RSI: ffffffff810bfc59 RDI: ffff8801b8467208 [ 57.728900] RBP: ffff8801b84671d0 R08: ffff8801cb3940c0 R09: fffff520003f6846 [ 57.736186] R10: fffff520003f6846 R11: ffffc90001fb4237 R12: 1ffff1003708ce3d [ 57.743476] R13: dffffc0000000000 R14: ffff8801bc38d000 R15: 00000001bc38d000 [ 57.750763] ? __phys_addr+0x9c/0x120 [ 57.754574] ? kvm_spurious_fault+0x9/0x10 [ 57.758857] kvm_fastop_exception+0x51b/0x5602 [ 57.763451] ? vmcs_load+0x98/0x110 [ 57.767095] ? crash_vmclear_local_loaded_vmcss+0x1a0/0x1a0 [ 57.772826] vmx_vcpu_load+0x496/0x1030 [ 57.776817] ? print_usage_bug+0xc0/0xc0 [ 57.780893] ? vmx_set_cr4+0x7c0/0x7c0 [ 57.784798] ? retint_kernel+0x2d/0x2d [ 57.788711] ? zap_class+0x640/0x640 [ 57.792439] ? print_usage_bug+0xc0/0xc0 [ 57.796510] ? zap_class+0x640/0x640 [ 57.800243] ? print_usage_bug+0xc0/0xc0 [ 57.804319] ? print_usage_bug+0xc0/0xc0 [ 57.808404] kvm_arch_vcpu_load+0x1d4/0x960 [ 57.812737] ? mark_held_locks+0xc7/0x130 [ 57.816900] ? kvm_arch_dev_ioctl+0x620/0x620 [ 57.821505] ? preempt_notifier_dec+0x20/0x20 [ 57.826014] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 57.831567] ? check_preemption_disabled+0x48/0x280 [ 57.836652] vcpu_load+0x35/0x70 [ 57.840029] kvm_arch_vcpu_ioctl_run+0x109/0x72a0 [ 57.844892] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 57.850005] ? __free_object+0x173/0x340 [ 57.854076] ? __list_add_valid.cold.2+0x2a/0x2a [ 57.858849] ? debug_object_free+0x325/0x690 [ 57.863355] ? kvm_arch_vcpu_runnable+0x710/0x710 [ 57.868217] ? debug_object_free+0x32d/0x690 [ 57.872663] ? __init_waitqueue_head+0x9e/0x150 [ 57.877348] ? debug_object_destroy+0x2b0/0x2b0 [ 57.882037] ? __wait_rcu_gp+0x274/0x360 [ 57.886126] ? synchronize_rcu.part.53+0x104/0x120 [ 57.891068] ? synchronize_rcu_expedited+0xa0/0xa0 [ 57.896011] ? kfree_call_rcu+0x10/0x10 [ 57.900011] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 57.905561] ? put_pid.part.2+0x1c5/0x240 [ 57.909748] ? pid_task+0x200/0x200 [ 57.913394] kvm_vcpu_ioctl+0x5c8/0x1150 [ 57.917468] ? kvm_vcpu_ioctl+0x5c8/0x1150 [ 57.921717] ? kvm_uevent_notify_change.part.31+0x450/0x450 [ 57.927437] ? __call_rcu.constprop.55+0x3ea/0x950 [ 57.932378] ? find_held_lock+0x36/0x1c0 [ 57.936459] ? __fget+0x4aa/0x740 [ 57.939927] ? check_preemption_disabled+0x48/0x280 [ 57.944958] ? kasan_check_read+0x11/0x20 [ 57.949134] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 57.954428] ? rcu_softirq_qs+0x20/0x20 [ 57.958418] ? __fget+0x4d1/0x740 [ 57.961885] ? ksys_dup3+0x680/0x680 [ 57.965671] ? __might_fault+0x12b/0x1e0 [ 57.969764] ? lock_downgrade+0x900/0x900 [ 57.973929] ? lock_release+0xa00/0xa00 [ 57.977915] ? perf_trace_sched_process_exec+0x860/0x860 [ 57.983437] ? kvm_uevent_notify_change.part.31+0x450/0x450 [ 57.989163] do_vfs_ioctl+0x1de/0x1720 [ 57.993075] ? ioctl_preallocate+0x300/0x300 [ 57.997725] ? __fget_light+0x2e9/0x430 [ 58.001718] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 58.007266] ? smack_file_ioctl+0x210/0x3c0 [ 58.011614] ? fget_raw+0x20/0x20 [ 58.015081] ? smack_file_lock+0x2e0/0x2e0 [ 58.019329] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 58.024874] ? put_timespec64+0x10f/0x1b0 [ 58.029029] ? nsecs_to_jiffies+0x30/0x30 [ 58.033176] ? do_syscall_64+0x9a/0x820 [ 58.037154] ? do_syscall_64+0x9a/0x820 [ 58.041133] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 58.046674] ? security_file_ioctl+0x94/0xc0 [ 58.051086] ksys_ioctl+0xa9/0xd0 [ 58.054551] __x64_sys_ioctl+0x73/0xb0 [ 58.058438] do_syscall_64+0x1b9/0x820 [ 58.062329] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 58.067697] ? syscall_return_slowpath+0x5e0/0x5e0 [ 58.072629] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 58.077486] ? trace_hardirqs_on_caller+0x310/0x310 [ 58.082503] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 58.087521] ? prepare_exit_to_usermode+0x291/0x3b0 [ 58.092547] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 58.097397] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 58.102930] RIP: 0033:0x457569 [ 58.106130] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 58.125033] RSP: 002b:00007f6560189c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 58.132744] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569 [ 58.140016] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 58.147283] RBP: 000000000072c040 R08: 0000000000000000 R09: 0000000000000000 [ 58.154553] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f656018a6d4 [ 58.161828] R13: 00000000004c0027 R14: 00000000004d0108 R15: 00000000ffffffff [ 58.169101] Modules linked in: [ 58.172313] ---[ end trace 48b2cc847d4ea54f ]--- [ 58.177074] RIP: 0010:kvm_spurious_fault+0x9/0x10 [ 58.181928] Code: 45 10 50 e8 79 97 7c 00 58 5a 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 0f 1f 84 00 00 00 00 00 55 48 89 e5 e8 67 3d 73 00 <0f> 0b 0f 1f 44 00 00 55 48 89 e5 41 57 41 56 41 55 49 89 f5 41 54 [ 58.200882] RSP: 0018:ffff8801b84671d0 EFLAGS: 00010293 [ 58.206255] RAX: ffff8801cb3940c0 RBX: ffff8801b8467248 RCX: ffffffff8139ec8c [ 58.213529] RDX: 0000000000000000 RSI: ffffffff810bfc59 RDI: ffff8801b8467208 [ 58.220805] RBP: ffff8801b84671d0 R08: ffff8801cb3940c0 R09: fffff520003f6846 [ 58.228080] R10: fffff520003f6846 R11: ffffc90001fb4237 R12: 1ffff1003708ce3d [ 58.235364] R13: dffffc0000000000 R14: ffff8801bc38d000 R15: 00000001bc38d000 [ 58.242651] FS: 00007f656018a700(0000) GS:ffff8801daf00000(0000) knlGS:0000000000000000 [ 58.250888] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 58.256780] CR2: ffff8801daf07c18 CR3: 00000001be3c6000 CR4: 00000000001426e0 [ 58.264060] Kernel panic - not syncing: Fatal exception in interrupt [ 58.271470] Kernel Offset: disabled [ 58.275122] Rebooting in 86400 seconds..