[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   57.518948] audit: type=1800 audit(1540208930.560:25): pid=6049 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[   57.538239] audit: type=1800 audit(1540208930.580:26): pid=6049 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   57.557767] audit: type=1800 audit(1540208930.590:27): pid=6049 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.127' (ECDSA) to the list of known hosts.
2018/10/22 11:49:41 parsed 1 programs
2018/10/22 11:49:47 executed programs: 0
syzkaller login: [  114.729909] IPVS: ftp: loaded support on port[0] = 21
[  115.323207] bridge0: port 1(bridge_slave_0) entered blocking state
[  115.329624] bridge0: port 1(bridge_slave_0) entered disabled state
[  115.337696] device bridge_slave_0 entered promiscuous mode
[  115.375021] bridge0: port 2(bridge_slave_1) entered blocking state
[  115.381455] bridge0: port 2(bridge_slave_1) entered disabled state
[  115.389492] device bridge_slave_1 entered promiscuous mode
[  115.426804] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  115.464105] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  115.583867] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  115.624983] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  115.803586] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  115.811090] team0: Port device team_slave_0 added
[  115.848089] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  115.855647] team0: Port device team_slave_1 added
[  115.893230] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  115.933325] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  115.973538] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  116.014286] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  116.392633] bridge0: port 2(bridge_slave_1) entered blocking state
[  116.399227] bridge0: port 2(bridge_slave_1) entered forwarding state
[  116.406212] bridge0: port 1(bridge_slave_0) entered blocking state
[  116.412654] bridge0: port 1(bridge_slave_0) entered forwarding state
[  116.420392] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  117.222522] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  117.799096] 8021q: adding VLAN 0 to HW filter on device bond0
[  117.929337] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  118.059309] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  118.065657] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  118.073735] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  118.217690] 8021q: adding VLAN 0 to HW filter on device team0
[  119.047254] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details.
[  119.352437] ==================================================================
[  119.359841] BUG: KMSAN: kernel-infoleak in kvm_write_guest_page+0x366/0x4c0
[  119.366943] CPU: 1 PID: 6479 Comm: syz-executor0 Not tainted 4.19.0-rc8+ #70
[  119.374126] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  119.383495] Call Trace:
[  119.386100]  dump_stack+0x306/0x460
[  119.389753]  ? kvm_write_guest_page+0x366/0x4c0
[  119.394470]  kmsan_report+0x1a2/0x2e0
[  119.398340]  kmsan_internal_check_memory+0x374/0x460
[  119.403455]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  119.408911]  kmsan_copy_to_user+0x89/0xe0
[  119.413058]  kvm_write_guest_page+0x366/0x4c0
[  119.417563]  kvm_write_guest+0x1d6/0x350
[  119.421661]  kvm_emulate_hypercall+0x1cb9/0x20d0
[  119.426459]  handle_vmcall+0x41/0x50
[  119.430169]  ? handle_rdpmc+0x80/0x80
[  119.433973]  vmx_handle_exit+0x20f5/0xb900
[  119.438244]  ? vmx_flush_tlb_gva+0x450/0x450
[  119.442653]  kvm_arch_vcpu_ioctl_run+0xa22b/0x10ab0
[  119.447666]  ? kmsan_set_origin_inline+0x6b/0x120
[  119.452521]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  119.458339]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  119.463716]  ? __list_del_entry_valid+0x123/0x440
[  119.468561]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  119.474015]  ? wait_for_common+0x791/0x960
[  119.478264]  ? kmsan_set_origin+0x83/0x140
[  119.482515]  ? kmsan_internal_unpoison_shadow+0x83/0xe0
[  119.487899]  ? __msan_get_context_state+0x9/0x30
[  119.492655]  ? INIT_BOOL+0x17/0x30
[  119.496193]  ? put_pid+0x3de/0x410
[  119.499739]  kvm_vcpu_ioctl+0x11a7/0x20b0
[  119.503898]  ? do_vfs_ioctl+0x187/0x2ca0
[  119.507956]  ? __se_sys_ioctl+0x1da/0x270
[  119.512108]  ? kvm_vm_release+0x90/0x90
[  119.516099]  do_vfs_ioctl+0xf28/0x2ca0
[  119.520020]  ? security_file_ioctl+0x92/0x200
[  119.524540]  __se_sys_ioctl+0x1da/0x270
[  119.528539]  __x64_sys_ioctl+0x4a/0x70
[  119.532423]  do_syscall_64+0xbe/0x100
[  119.536222]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  119.541408] RIP: 0033:0x457569
[  119.544595] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  119.563506] RSP: 002b:00007fcef4e47c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  119.571211] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569
[  119.578495] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  119.585773] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000
[  119.593050] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcef4e486d4
[  119.600623] R13: 00000000004c0027 R14: 00000000004d0108 R15: 00000000ffffffff
[  119.607921] 
[  119.609550] Local variable description: ----clock_pairing.i@kvm_emulate_hypercall
[  119.617158] Variable was created at:
[  119.620883]  kvm_emulate_hypercall+0x60/0x20d0
[  119.625484]  handle_vmcall+0x41/0x50
[  119.629180] 
[  119.630796] Bytes 28-63 of 64 are uninitialized
[  119.635453] Memory access of size 64 starts at ffff8801a16bf440
[  119.641499] ==================================================================
[  119.648843] Disabling lock debugging due to kernel taint
[  119.654281] Kernel panic - not syncing: panic_on_warn set ...
[  119.654281] 
[  119.661661] CPU: 1 PID: 6479 Comm: syz-executor0 Tainted: G    B             4.19.0-rc8+ #70
[  119.670260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  119.679605] Call Trace:
[  119.682200]  dump_stack+0x306/0x460
[  119.685838]  panic+0x54c/0xafa
[  119.689087]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  119.694550]  kmsan_report+0x2d3/0x2e0
[  119.698356]  kmsan_internal_check_memory+0x374/0x460
[  119.703468]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[  119.708926]  kmsan_copy_to_user+0x89/0xe0
[  119.713075]  kvm_write_guest_page+0x366/0x4c0
[  119.717583]  kvm_write_guest+0x1d6/0x350
[  119.721682]  kvm_emulate_hypercall+0x1cb9/0x20d0
[  119.726480]  handle_vmcall+0x41/0x50
[  119.730214]  ? handle_rdpmc+0x80/0x80
[  119.734031]  vmx_handle_exit+0x20f5/0xb900
[  119.738281]  ? vmx_flush_tlb_gva+0x450/0x450
[  119.742687]  kvm_arch_vcpu_ioctl_run+0xa22b/0x10ab0
[  119.747700]  ? kmsan_set_origin_inline+0x6b/0x120
[  119.752555]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  119.757984]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  119.763343]  ? __list_del_entry_valid+0x123/0x440
[  119.768195]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  119.773647]  ? wait_for_common+0x791/0x960
[  119.777899]  ? kmsan_set_origin+0x83/0x140
[  119.782152]  ? kmsan_internal_unpoison_shadow+0x83/0xe0
[  119.787531]  ? __msan_get_context_state+0x9/0x30
[  119.792284]  ? INIT_BOOL+0x17/0x30
[  119.795827]  ? put_pid+0x3de/0x410
[  119.799381]  kvm_vcpu_ioctl+0x11a7/0x20b0
[  119.803545]  ? do_vfs_ioctl+0x187/0x2ca0
[  119.807622]  ? __se_sys_ioctl+0x1da/0x270
[  119.811779]  ? kvm_vm_release+0x90/0x90
[  119.815766]  do_vfs_ioctl+0xf28/0x2ca0
[  119.819679]  ? security_file_ioctl+0x92/0x200
[  119.824199]  __se_sys_ioctl+0x1da/0x270
[  119.828199]  __x64_sys_ioctl+0x4a/0x70
[  119.832084]  do_syscall_64+0xbe/0x100
[  119.835892]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  119.841074] RIP: 0033:0x457569
[  119.844261] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  119.863167] RSP: 002b:00007fcef4e47c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  119.870888] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569
[  119.878193] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  119.885525] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000
[  119.892806] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcef4e486d4
[  119.900085] R13: 00000000004c0027 R14: 00000000004d0108 R15: 00000000ffffffff
[  119.908253] Kernel Offset: disabled
[  119.911889] Rebooting in 86400 seconds..