[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 25.154930] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 29.727752] random: sshd: uninitialized urandom read (32 bytes read) [ 30.151499] random: sshd: uninitialized urandom read (32 bytes read) [ 30.792366] random: sshd: uninitialized urandom read (32 bytes read) [ 31.015240] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.10.13' (ECDSA) to the list of known hosts. [ 36.576524] random: sshd: uninitialized urandom read (32 bytes read) 2018/09/10 11:40:11 parsed 1 programs [ 37.809858] random: cc1: uninitialized urandom read (8 bytes read) 2018/09/10 11:40:13 executed programs: 0 [ 38.982353] IPVS: ftp: loaded support on port[0] = 21 [ 39.239231] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.246536] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.253564] device bridge_slave_0 entered promiscuous mode [ 39.272022] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.278485] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.285411] device bridge_slave_1 entered promiscuous mode [ 39.303909] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 39.322386] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 39.374178] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 39.395121] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 39.472116] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 39.479751] team0: Port device team_slave_0 added [ 39.497247] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 39.504444] team0: Port device team_slave_1 added [ 39.521253] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 39.544641] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 39.563856] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 39.584780] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 39.730891] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.737633] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.744411] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.750956] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.285504] 8021q: adding VLAN 0 to HW filter on device bond0 [ 40.341288] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 40.393239] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 40.399690] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 40.408038] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 40.457189] 8021q: adding VLAN 0 to HW filter on device team0 [ 40.779281] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details. [ 40.810322] WARNING: CPU: 0 PID: 5608 at arch/x86/kvm/vmx.c:8247 enter_vmx_operation+0x391/0x470 [ 40.819370] Kernel panic - not syncing: panic_on_warn set ... [ 40.819370] [ 40.826740] CPU: 0 PID: 5608 Comm: syz-executor0 Not tainted 4.19.0-rc3+ #231 [ 40.834094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 40.843429] Call Trace: [ 40.846007] dump_stack+0x1c4/0x2b4 [ 40.849621] ? dump_stack_print_info.cold.2+0x52/0x52 [ 40.854811] panic+0x238/0x4e7 [ 40.857997] ? add_taint.cold.5+0x16/0x16 [ 40.862137] ? __warn.cold.8+0x148/0x1ba [ 40.866183] ? __warn.cold.8+0x117/0x1ba [ 40.870239] ? enter_vmx_operation+0x391/0x470 [ 40.875017] __warn.cold.8+0x163/0x1ba [ 40.879007] ? rcu_bh_qs+0xc0/0xc0 [ 40.882660] ? enter_vmx_operation+0x391/0x470 [ 40.887233] report_bug+0x254/0x2d0 [ 40.890858] do_error_trap+0x1fc/0x4d0 [ 40.894735] ? math_error+0x3f0/0x3f0 [ 40.898524] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 40.903383] ? trace_hardirqs_on_caller+0x310/0x310 [ 40.908424] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 40.913371] do_invalid_op+0x1b/0x20 [ 40.917073] invalid_op+0x14/0x20 [ 40.920625] RIP: 0010:enter_vmx_operation+0x391/0x470 [ 40.925810] Code: 00 4c 89 ef bb f4 ff ff ff e8 eb c6 ff ff e9 f2 fe ff ff e8 31 85 61 00 48 8b 4d d0 48 85 c9 0f 84 08 ff ff ff e8 1f 85 61 00 <0f> 0b e9 0e fe ff ff e8 d3 eb a4 00 e9 c1 fe ff ff e8 e9 eb a4 00 [ 40.944700] RSP: 0018:ffff8801b8c472d8 EFLAGS: 00010293 [ 40.950061] RAX: ffff8801b8c7a2c0 RBX: ffff8801b9f20040 RCX: ffff8801ca32a000 [ 40.957412] RDX: 0000000000000000 RSI: ffffffff811d4ba1 RDI: ffff8801b9f25820 [ 40.964669] RBP: ffff8801b8c47310 R08: ffff8801b8c7a2c0 R09: 1ffffffff12b43d5 [ 40.972047] R10: ffffed003b5c4732 R11: ffff8801dae23993 R12: ffff8801b9f25ba8 [ 40.979362] R13: ffff8801b9f25bb8 R14: ffff8801b9f25ba0 R15: ffff8801b9f257a8 [ 40.986645] ? enter_vmx_operation+0x391/0x470 [ 40.991329] ? enter_vmx_operation+0x391/0x470 [ 40.995896] handle_vmon+0x46b/0x500 [ 40.999591] ? nested_vmx_get_vmptr+0x1d0/0x1d0 [ 41.004244] ? nested_vmx_get_vmptr+0x1d0/0x1d0 [ 41.008894] vmx_handle_exit+0x2f7/0x17e0 [ 41.013022] ? lock_acquire+0x1ed/0x520 [ 41.016986] ? vcpu_enter_guest+0x12f2/0x62e0 [ 41.021597] ? vcpu_enter_guest+0x1271/0x62e0 [ 41.026166] ? handle_vmfunc+0x9d0/0x9d0 [ 41.030229] ? trace_hardirqs_on+0xbd/0x310 [ 41.034546] ? kvm_arch_vcpu_ioctl_run+0x375/0x16e0 [ 41.039552] ? check_preemption_disabled+0x48/0x200 [ 41.044551] ? check_preemption_disabled+0x48/0x200 [ 41.049564] vcpu_enter_guest+0x14a9/0x62e0 [ 41.053887] ? emulator_read_emulated+0x50/0x50 [ 41.058543] ? vmx_vcpu_load+0xb06/0x1030 [ 41.062685] ? find_held_lock+0x36/0x1c0 [ 41.066754] ? vmx_write_tsc_offset+0x680/0x680 [ 41.071502] ? graph_lock+0x170/0x170 [ 41.075420] ? kvm_vcpu_ioctl+0x28c/0x1150 [ 41.079672] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 41.085191] ? check_preemption_disabled+0x48/0x200 [ 41.090187] ? check_preemption_disabled+0x48/0x200 [ 41.095192] ? __lock_is_held+0xb5/0x140 [ 41.099246] ? kvm_check_async_pf_completion+0x3ae/0x5c0 [ 41.104687] ? kvm_clear_async_pf_completion_queue+0x770/0x770 [ 41.110647] ? kvm_arch_dev_ioctl+0x630/0x630 [ 41.115133] ? preempt_notifier_dec+0x20/0x20 [ 41.119624] kvm_arch_vcpu_ioctl_run+0x375/0x16e0 [ 41.124450] ? kvm_arch_vcpu_ioctl_run+0x375/0x16e0 [ 41.129460] kvm_vcpu_ioctl+0x72b/0x1150 [ 41.133514] ? kvm_vcpu_block+0x1030/0x1030 [ 41.137818] ? add_mm_counter_fast+0xd0/0xd0 [ 41.142208] ? exit_robust_list+0x280/0x280 [ 41.146511] ? _raw_spin_unlock+0x2c/0x50 [ 41.150639] ? __handle_mm_fault+0x9ab/0x53e0 [ 41.155320] ? vmf_insert_mixed_mkwrite+0xa0/0xa0 [ 41.160175] ? print_usage_bug+0xc0/0xc0 [ 41.164228] ? rcu_is_watching+0x30/0x30 [ 41.168271] ? __kasan_slab_free+0x119/0x150 [ 41.172665] ? graph_lock+0x170/0x170 [ 41.176449] ? graph_lock+0x170/0x170 [ 41.180241] ? graph_lock+0x170/0x170 [ 41.184035] ? find_held_lock+0x36/0x1c0 [ 41.188088] ? kvm_vcpu_block+0x1030/0x1030 [ 41.192509] do_vfs_ioctl+0x1de/0x1720 [ 41.196387] ? ioctl_preallocate+0x300/0x300 [ 41.200799] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 41.206343] ? __fget_light+0x2e9/0x430 [ 41.210302] ? fget_raw+0x20/0x20 [ 41.213801] ? __x64_sys_futex+0x47f/0x6a0 [ 41.218042] ? do_syscall_64+0x9a/0x820 [ 41.222004] ? do_syscall_64+0x9a/0x820 [ 41.225962] ? lockdep_hardirqs_on+0x421/0x5c0 [ 41.230648] ? security_file_ioctl+0x94/0xc0 [ 41.235046] ksys_ioctl+0xa9/0xd0 [ 41.238486] __x64_sys_ioctl+0x73/0xb0 [ 41.242373] do_syscall_64+0x1b9/0x820 [ 41.246252] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 41.251596] ? syscall_return_slowpath+0x5e0/0x5e0 [ 41.256573] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 41.261405] ? trace_hardirqs_on_caller+0x310/0x310 [ 41.266543] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 41.271544] ? prepare_exit_to_usermode+0x291/0x3b0 [ 41.276547] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 41.281373] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 41.286560] RIP: 0033:0x457099 [ 41.289742] Code: fd b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 41.308727] RSP: 002b:00007fff2d5871e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 41.316483] RAX: ffffffffffffffda RBX: 0000000001325914 RCX: 0000000000457099 [ 41.323739] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 41.330990] RBP: 00000000009300a0 R08: 0000000000000000 R09: 0000000000000000 [ 41.338435] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 41.345688] R13: 00000000004cf730 R14: 00000000004c59b9 R15: 0000000000000000 [ 41.353375] Dumping ftrace buffer: [ 41.357007] (ftrace buffer empty) [ 41.361325] Kernel Offset: disabled [ 41.364968] Rebooting in 86400 seconds..