INIT: Entering runlevel: 2 [info] Using makefile-style concurrent boot in runlevel 2. [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added 'ci-upstream-mmots-kasan-gce-2,10.128.15.197' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program syzkaller login: [ 37.731838] kvm: KVM_SET_TSS_ADDR need to be called before entering vcpu [ 37.756436] *** Guest State *** [ 37.756443] CR0: actual=0x0000000080000031, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 executing program executing program [ 37.756448] CR4: actual=0x0000000000002051, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 37.756451] CR3 = 0x00000000fffbc000 [ 37.756454] RSP = 0x000000000000fffa RIP = 0x0000000000000000 [ 37.756458] RFLAGS=0x00023000 DR7 = 0x0000000000000402 [ 37.756464] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 37.756469] CS: sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000 [ 37.756476] DS: sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000 executing program executing program executing program executing program executing program executing program executing program [ 37.756483] SS: sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000 [ 37.756489] ES: sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000 [ 37.756495] FS: sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000 [ 37.756502] GS: sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000 executing program [ 37.756507] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 37.756514] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 37.756519] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 37.756525] TR: sel=0x0000, attr=0x0008b, limit=0x00002088, base=0x0000000000000000 [ 37.756530] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 37.756534] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 37.756538] Interruptibility = 00000000 ActivityState = 00000000 [ 37.756541] *** Host State *** [ 37.756546] RIP = 0xffffffff811b9fe3 RSP = 0xffff8801ce66f4c8 [ 37.756554] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 37.756559] FSBase=00007fd591cfc700 GSBase=ffff8801db300000 TRBase=ffff8801db3232c0 [ 37.756564] GDTBase=ffffffffff576000 IDTBase=ffffffffff57b000 [ 37.756570] CR0=0000000080050033 CR3=00000001ceb68000 CR4=00000000001426e0 [ 37.756576] Sysenter RSP=0000000000000000 CS:RIP=0010:ffffffff84d79d70 [ 37.756581] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 37.756583] *** Control State *** [ 37.756587] PinBased=0000003f CPUBased=b699edfa SecondaryExec=00000042 [ 37.756590] EntryControls=0000d1ff ExitControls=0023efff [ 37.756595] ExceptionBitmap=ffffbfff PFECmask=00000000 PFECmatch=00000000 [ 37.756599] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 37.756602] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 37.756605] reason=80000021 qualification=0000000000000000 [ 37.756609] IDTVectoring: info=00000000 errcode=00000000 [ 37.756612] TSC Offset = 0xffffffe8b9f1d5f3 [ 37.756615] EPT pointer = 0x00000001cd25d01e [ 37.764202] *** Guest State *** [ 37.764208] CR0: actual=0x0000000080000031, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 37.764213] CR4: actual=0x0000000000002051, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 37.764216] CR3 = 0x00000000fffbc000 [ 37.764219] RSP = 0x000000000000fffa RIP = 0x0000000000000000 [ 37.764224] RFLAGS=0x00033000 DR7 = 0x0000000000000400 [ 37.764229] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 37.764234] CS: sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000 [ 37.764243] DS: sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000 [ 37.764250] SS: sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000 [ 37.764256] ES: sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000 [ 37.764262] FS: sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000 [ 37.764269] GS: sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000 [ 37.764275] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 37.764281] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 37.764286] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 37.764293] TR: sel=0x0000, attr=0x0008b, limit=0x00002088, base=0x0000000000000000 [ 37.764297] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 37.764302] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 37.764306] Interruptibility = 00000000 ActivityState = 00000000 [ 37.764309] *** Host State *** [ 37.764314] RIP = 0xffffffff811b9fe3 RSP = 0xffff8801bf8c74c8 [ 37.764322] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 37.764327] FSBase=00007fd58e4f5700 GSBase=ffff8801db200000 TRBase=ffff8801db2232c0 [ 37.764332] GDTBase=ffffffffff577000 IDTBase=ffffffffff57b000 [ 37.764338] CR0=0000000080050033 CR3=00000001ce409000 CR4=00000000001426f0 [ 37.764344] Sysenter RSP=0000000000000000 CS:RIP=0010:ffffffff84d79d70 [ 37.764349] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 37.764351] *** Control State *** [ 37.764355] PinBased=0000003f CPUBased=b699edfa SecondaryExec=00000042 [ 37.764358] EntryControls=0000d1ff ExitControls=0023efff [ 37.764363] ExceptionBitmap=ffffbfff PFECmask=00000000 PFECmatch=00000000 [ 37.764367] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 37.764370] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 37.764373] reason=80000021 qualification=0000000000000000 [ 37.764376] IDTVectoring: info=00000000 errcode=00000000 [ 37.764379] TSC Offset = 0xffffffe8b8243caa [ 37.764383] EPT pointer = 0x00000001cc96d01e [ 37.923219] ------------[ cut here ]------------ [ 37.923234] WARNING: CPU: 1 PID: 3228 at arch/x86/kvm/x86.c:7265 kvm_arch_vcpu_ioctl_run+0x213/0x5c70 [ 37.923239] Kernel panic - not syncing: panic_on_warn set ... [ 37.923239] [ 37.923245] CPU: 1 PID: 3228 Comm: syzkaller953031 Not tainted 4.14.0-rc3-mm1+ #14 [ 37.923249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 37.923252] Call Trace: [ 37.923262] dump_stack+0x194/0x257 [ 37.923272] ? arch_local_irq_restore+0x53/0x53 [ 37.923291] panic+0x1e4/0x41c [ 37.923298] ? refcount_error_report+0x214/0x214 [ 37.923304] ? show_regs_print_info+0x65/0x65 [ 37.923324] ? kvm_arch_vcpu_ioctl_run+0x213/0x5c70 [ 37.923330] __warn+0x1c4/0x1e0 [ 37.923340] ? kvm_arch_vcpu_ioctl_run+0x213/0x5c70 [ 37.923349] report_bug+0x211/0x2d0 [ 37.923362] fixup_bug+0x40/0x90 [ 37.923369] do_trap+0x260/0x390 [ 37.923382] do_error_trap+0x120/0x390 [ 37.923389] ? lock_downgrade+0x990/0x990 [ 37.923398] ? do_trap+0x390/0x390 [ 37.923405] ? bpf_prog_alloc+0x310/0x310 [ 37.923412] ? kvm_arch_vcpu_ioctl_run+0x213/0x5c70 [ 37.923418] ? fpu__initialize+0xed/0x650 [ 37.923426] ? fpu__save+0x6a0/0x6a0 [ 37.923437] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 37.923450] do_invalid_op+0x1b/0x20 [ 37.923455] invalid_op+0x18/0x20 [ 37.923461] RIP: 0010:kvm_arch_vcpu_ioctl_run+0x213/0x5c70 [ 37.923464] RSP: 0018:ffff8801cc2c7670 EFLAGS: 00010297 [ 37.923471] RAX: 0000000000000000 RBX: ffff8801cfe1d000 RCX: ffff8801cc89889c [ 37.923474] RDX: ffff8801cc3fe5c0 RSI: 0000000000000000 RDI: ffff8801cc8986b8 [ 37.923478] RBP: ffff8801cc2c7a40 R08: 0000000000000000 R09: 0000000000000001 [ 37.923481] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 37.923484] R13: 1ffff10039858f72 R14: ffff8801c1f1b380 R15: ffff8801cc898480 [ 37.923507] ? unwind_get_return_address+0x61/0xa0 [ 37.923514] ? __save_stack_trace+0x7e/0xd0 [ 37.923526] ? depot_save_stack+0x12c/0x490 [ 37.923536] ? print_usage_bug+0x480/0x480 [ 37.923540] ? put_pid+0x177/0x1f0 [ 37.923547] ? save_stack+0xa3/0xd0 [ 37.923553] ? kvm_arch_vcpu_runnable+0x560/0x560 [ 37.923558] ? save_stack_trace+0x16/0x20 [ 37.923562] ? save_stack+0x43/0xd0 [ 37.923566] ? kasan_slab_free+0x71/0xc0 [ 37.923570] ? kmem_cache_free+0x77/0x280 [ 37.923574] ? put_pid+0x177/0x1f0 [ 37.923580] ? kvm_vcpu_ioctl+0xd75/0x1010 [ 37.923586] ? do_vfs_ioctl+0x1b1/0x1530 [ 37.923591] ? SyS_ioctl+0x8f/0xc0 [ 37.923597] ? entry_SYSCALL_64_fastpath+0x1f/0xbe [ 37.923603] ? __init_waitqueue_head+0x97/0x140 [ 37.923611] ? wake_up_q+0xe0/0xe0 [ 37.923618] ? __lockdep_init_map+0xe4/0x650 [ 37.923625] ? check_noncircular+0x20/0x20 [ 37.923639] ? __wait_rcu_gp+0x25d/0x420 [ 37.923643] ? rcu_gp_is_normal+0x140/0x140 [ 37.923664] ? __lock_is_held+0xbc/0x140 [ 37.923674] ? put_pid+0x177/0x1f0 [ 37.923683] ? put_pid+0x177/0x1f0 [ 37.923688] ? rcu_read_lock_sched_held+0x108/0x120 [ 37.923696] ? put_pid_ns+0xe8/0x110 [ 37.923705] ? put_pid+0x184/0x1f0 [ 37.923712] ? task_active_pid_ns+0xd0/0xd0 [ 37.923721] ? __might_sleep+0x95/0x190 [ 37.923732] kvm_vcpu_ioctl+0x64c/0x1010 [ 37.923736] ? kvm_vcpu_ioctl+0x64c/0x1010 [ 37.923745] ? __kvm_gfn_to_hva_cache_init+0xbb0/0xbb0 [ 37.923760] ? lock_downgrade+0x990/0x990 [ 37.923775] ? __fget+0xbb/0x580 [ 37.923781] ? find_held_lock+0x39/0x1d0 [ 37.923792] ? lock_release+0xd70/0xd70 [ 37.923801] ? __lock_is_held+0xbc/0x140 [ 37.923824] ? __fget+0x362/0x580 [ 37.923839] ? iterate_fd+0x3f0/0x3f0 [ 37.923849] ? _raw_spin_unlock_irqrestore+0x31/0xba [ 37.923864] ? __kvm_gfn_to_hva_cache_init+0xbb0/0xbb0 [ 37.923870] do_vfs_ioctl+0x1b1/0x1530 [ 37.923882] ? ioctl_preallocate+0x2b0/0x2b0 [ 37.923892] ? selinux_capable+0x40/0x40 [ 37.923904] ? lockdep_invariant_state+0x9b/0x120 [ 37.923910] ? syscall_return_slowpath+0x2b3/0x510 [ 37.923915] ? finish_task_switch+0x4eb/0x740 [ 37.923930] ? security_file_ioctl+0x89/0xb0 [ 37.923940] SyS_ioctl+0x8f/0xc0 [ 37.923951] entry_SYSCALL_64_fastpath+0x1f/0xbe [ 37.923956] RIP: 0033:0x446039 [ 37.923959] RSP: 002b:00007fd5874e5dc8 EFLAGS: 00000202 ORIG_RAX: 0000000000000010 [ 37.923966] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000446039 [ 37.923969] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 000000000000000a [ 37.923972] RBP: 0000000000000086 R08: 00007fd5874e6700 R09: 00007fd5874e6700 [ 37.923976] R10: 00007fd5874e6700 R11: 0000000000000202 R12: 0000000000000000 [ 37.923979] R13: 00007ffff3a9646f R14: 00007fd5874e69c0 R15: 0000000000000000 [ 37.931631] Dumping ftrace buffer: [ 37.931670] (ftrace buffer empty) [ 37.931674] Kernel Offset: disabled [ 38.751283] Rebooting in 86400 seconds..