[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   26.621376] kauditd_printk_skb: 7 callbacks suppressed
[   26.621388] audit: type=1800 audit(1538090448.974:29): pid=5207 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
[   26.646734] audit: type=1800 audit(1538090448.974:30): pid=5207 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0
[   26.717226] startpar (5207) used greatest stack depth: 15992 bytes left

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.22' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [   36.412066] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details.
[   36.431022] kasan: CONFIG_KASAN_INLINE enabled
[   36.435609] kasan: GPF could be caused by NULL-ptr deref or user memory access
[   36.442962] general protection fault: 0000 [#1] PREEMPT SMP KASAN
[   36.449196] CPU: 1 PID: 5361 Comm: syz-executor948 Not tainted 4.19.0-rc5+ #257
[   36.456631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   36.465982] RIP: 0010:__lock_acquire+0x237/0x4ec0
[   36.470813] Code: 28 00 00 00 0f 85 aa 33 00 00 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 48 b8 00 00 00 00 00 fc ff df 4c 89 ea 48 c1 ea 03 <80> 3c 02 00 0f 85 6d 35 00 00 49 81 7d 00 20 c6 8e 8a 0f 84 54 ff
[   36.489707] RSP: 0018:ffff8801c6d7efb0 EFLAGS: 00010006
[   36.495053] RAX: dffffc0000000000 RBX: 1ffff10038dafe72 RCX: 0000000000000000
[   36.502302] RDX: 0000000000000039 RSI: 0000000000000000 RDI: ffffffff89723ac0
[   36.509563] RBP: ffff8801c6d7f338 R08: 0000000000000001 R09: 0000000000000001
[   36.516830] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000
[   36.524081] R13: 00000000000001c8 R14: ffff8801d84103c0 R15: 0000000000000000
[   36.531335] FS:  0000000001148880(0000) GS:ffff8801dad00000(0000) knlGS:0000000000000000
[   36.539541] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   36.545409] CR2: 0000000020000280 CR3: 00000001d8ffe000 CR4: 00000000001426e0
[   36.552672] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   36.559937] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   36.567185] Call Trace:
[   36.569756]  ? tg_nop+0x10/0x10
[   36.573018]  ? vmx_vcpu_put+0x1d/0x20
[   36.576805]  ? native_set_debugreg+0x31/0x40
[   36.581214]  ? kvm_arch_vcpu_put+0x2ef/0x420
[   36.585610]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   36.591142]  ? mark_held_locks+0x130/0x130
[   36.595369]  ? __lock_acquire+0x7ec/0x4ec0
[   36.599600]  ? kvm_arch_vcpu_put+0x420/0x420
[   36.603996]  ? lock_downgrade+0x900/0x900
[   36.608130]  ? mark_held_locks+0x130/0x130
[   36.612349]  ? add_timer+0x63f/0x1490
[   36.616135]  ? lock_downgrade+0x900/0x900
[   36.620271]  ? check_preemption_disabled+0x48/0x200
[   36.625275]  ? trace_hardirqs_off+0xb8/0x310
[   36.629671]  ? kasan_check_read+0x11/0x20
[   36.633808]  ? do_raw_spin_unlock+0xa7/0x2f0
[   36.638203]  ? trace_hardirqs_on+0x310/0x310
[   36.642593]  ? calc_wheel_index+0x220/0x220
[   36.646899]  ? print_usage_bug+0xc0/0xc0
[   36.650961]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[   36.656047]  ? add_timer+0x644/0x1490
[   36.659830]  lock_acquire+0x1ed/0x520
[   36.663617]  ? kvm_ioapic_scan_entry+0x7f/0x3c0
[   36.668279]  ? lock_release+0x970/0x970
[   36.672234]  ? vmx_flush_tlb_gva+0x380/0x380
[   36.676654]  ? kvm_arch_vcpu_postcreate+0x1bf/0x290
[   36.681667]  _raw_spin_lock+0x2d/0x40
[   36.685473]  ? kvm_ioapic_scan_entry+0x7f/0x3c0
[   36.690127]  kvm_ioapic_scan_entry+0x7f/0x3c0
[   36.694607]  ? find_held_lock+0x36/0x1c0
[   36.698663]  vcpu_enter_guest+0x492f/0x62b0
[   36.702972]  ? __mutex_lock+0x85e/0x1700
[   36.707018]  ? queue_delayed_work_on+0xec/0x1f0
[   36.711673]  ? emulator_read_emulated+0x50/0x50
[   36.716326]  ? hardware_disable+0x530/0x530
[   36.720635]  ? vmx_vcpu_load+0xb06/0x1030
[   36.724770]  ? find_held_lock+0x36/0x1c0
[   36.728816]  ? vmx_write_tsc_offset+0x680/0x680
[   36.733467]  ? graph_lock+0x170/0x170
[   36.737254]  ? kvm_vcpu_ioctl+0x28c/0x1150
[   36.741490]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   36.747182]  ? check_preemption_disabled+0x48/0x200
[   36.752179]  ? check_preemption_disabled+0x48/0x200
[   36.757183]  ? __lock_is_held+0xb5/0x140
[   36.761242]  ? lock_acquire+0x1ed/0x520
[   36.765201]  ? kvm_arch_vcpu_ioctl_run+0x234/0x16e0
[   36.770201]  ? lock_release+0x970/0x970
[   36.774163]  ? kvm_gen_update_masterclock+0x350/0x350
[   36.779342]  ? kvm_arch_dev_ioctl+0x630/0x630
[   36.783842]  ? preempt_notifier_dec+0x20/0x20
[   36.788324]  kvm_arch_vcpu_ioctl_run+0x375/0x16e0
[   36.793171]  ? kvm_arch_vcpu_ioctl_run+0x375/0x16e0
[   36.798177]  kvm_vcpu_ioctl+0x72b/0x1150
[   36.802224]  ? kvm_vcpu_block+0x1030/0x1030
[   36.806536]  ? is_bpf_text_address+0xd3/0x170
[   36.811030]  ? kernel_text_address+0x79/0xf0
[   36.815422]  ? __kernel_text_address+0xd/0x40
[   36.819899]  ? unwind_get_return_address+0x61/0xa0
[   36.824813]  ? __save_stack_trace+0x8d/0xf0
[   36.829121]  ? save_stack+0xa9/0xd0
[   36.832732]  ? save_stack+0x43/0xd0
[   36.836338]  ? __kasan_slab_free+0x102/0x150
[   36.840731]  ? kasan_slab_free+0xe/0x10
[   36.844689]  ? putname+0xf2/0x130
[   36.848126]  ? do_sys_open+0x54d/0x700
[   36.852002]  ? __x64_sys_openat+0x9d/0x100
[   36.856222]  ? do_syscall_64+0x1b9/0x820
[   36.860267]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   36.865629]  ? trace_hardirqs_off+0xb8/0x310
[   36.870040]  ? kasan_check_read+0x11/0x20
[   36.874178]  ? do_raw_spin_unlock+0xa7/0x2f0
[   36.878573]  ? trace_hardirqs_on+0x310/0x310
[   36.882967]  ? __bpf_trace_initcall_finish+0x2a/0x30
[   36.888056]  ? trace_hardirqs_off+0xb8/0x310
[   36.892450]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   36.897969]  ? check_preemption_disabled+0x48/0x200
[   36.902983]  ? check_preemption_disabled+0x48/0x200
[   36.907988]  ? kvm_vcpu_block+0x1030/0x1030
[   36.912293]  do_vfs_ioctl+0x1de/0x1720
[   36.916169]  ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160
[   36.921431]  ? ioctl_preallocate+0x300/0x300
[   36.925831]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   36.931358]  ? __fget_light+0x2e9/0x430
[   36.935313]  ? fget_raw+0x20/0x20
[   36.935453] kobject: 'regulatory.0' (00000000bd42a5df): kobject_uevent_env
[   36.938768]  ? putname+0xf2/0x130
[   36.945886] kobject: 'regulatory.0' (00000000bd42a5df): fill_kobj_path: path = '/devices/platform/regulatory.0'
[   36.949221]  ? rcu_read_lock_sched_held+0x108/0x120
[   36.964456]  ? kmem_cache_free+0x24f/0x290
[   36.968707]  ? putname+0xf7/0x130
[   36.972190]  ? do_syscall_64+0x9a/0x820
[   36.976180]  ? do_syscall_64+0x9a/0x820
[   36.980164]  ? lockdep_hardirqs_on+0x421/0x5c0
[   36.984738]  ? security_file_ioctl+0x94/0xc0
[   36.989132]  ksys_ioctl+0xa9/0xd0
[   36.992572]  __x64_sys_ioctl+0x73/0xb0
[   36.996449]  do_syscall_64+0x1b9/0x820
[   37.000340]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[   37.005691]  ? syscall_return_slowpath+0x5e0/0x5e0
[   37.010609]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   37.015447]  ? trace_hardirqs_on_caller+0x310/0x310
[   37.020448]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[   37.025478]  ? prepare_exit_to_usermode+0x291/0x3b0
[   37.030495]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   37.035329]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   37.040510] RIP: 0033:0x440099
[   37.043688] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 fb 13 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[   37.062580] RSP: 002b:00007ffd73e2d128 EFLAGS: 00000207 ORIG_RAX: 0000000000000010
[   37.070290] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 0000000000440099
[   37.077562] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   37.084832] RBP: 00000000006ca018 R08: 00000000004002c8 R09: 00000000004002c8
[   37.092086] R10: 00000000004002c8 R11: 0000000000000207 R12: 0000000000401920
[   37.099338] R13: 00000000004019b0 R14: 0000000000000000 R15: 0000000000000000
[   37.106592] Modules linked in:
[   37.109776] ---[ end trace 28ff8ddbf74f3f80 ]---
[   37.114520] RIP: 0010:__lock_acquire+0x237/0x4ec0
[   37.119362] Code: 28 00 00 00 0f 85 aa 33 00 00 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 48 b8 00 00 00 00 00 fc ff df 4c 89 ea 48 c1 ea 03 <80> 3c 02 00 0f 85 6d 35 00 00 49 81 7d 00 20 c6 8e 8a 0f 84 54 ff
[   37.138265] RSP: 0018:ffff8801c6d7efb0 EFLAGS: 00010006
[   37.143614] RAX: dffffc0000000000 RBX: 1ffff10038dafe72 RCX: 0000000000000000
[   37.150873] RDX: 0000000000000039 RSI: 0000000000000000 RDI: ffffffff89723ac0
[   37.158128] RBP: ffff8801c6d7f338 R08: 0000000000000001 R09: 0000000000000001
[   37.165398] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000
[   37.172662] R13: 00000000000001c8 R14: ffff8801d84103c0 R15: 0000000000000000
[   37.179921] FS:  0000000001148880(0000) GS:ffff8801dad00000(0000) knlGS:0000000000000000
[   37.188158] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   37.194026] CR2: 0000000020000280 CR3: 00000001d8ffe000 CR4: 00000000001426e0
[   37.201290] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   37.208543] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   37.215795] Kernel panic - not syncing: Fatal exception
[   37.221790] Kernel Offset: disabled
[   37.225414] Rebooting in 86400 seconds..