[   59.544602] audit: type=1800 audit(1539230527.575:27): pid=5999 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[   61.080681] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   62.026929] random: sshd: uninitialized urandom read (32 bytes read)
[   62.392035] random: sshd: uninitialized urandom read (32 bytes read)

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   64.993095] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.0.74' (ECDSA) to the list of known hosts.
[   70.995096] random: sshd: uninitialized urandom read (32 bytes read)
2018/10/11 04:02:21 fuzzer started
[   75.835395] random: cc1: uninitialized urandom read (8 bytes read)
2018/10/11 04:02:26 dialing manager at 10.128.0.26:39089
2018/10/11 04:02:26 syscalls: 1
2018/10/11 04:02:26 code coverage: enabled
2018/10/11 04:02:26 comparison tracing: CONFIG_KCOV_ENABLE_COMPARISONS is not enabled
2018/10/11 04:02:26 setuid sandbox: enabled
2018/10/11 04:02:26 namespace sandbox: enabled
2018/10/11 04:02:26 Android sandbox: /sys/fs/selinux/policy does not exist
2018/10/11 04:02:26 fault injection: enabled
2018/10/11 04:02:26 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2018/10/11 04:02:26 net packed injection: /dev/net/tun can't be opened (open /dev/net/tun: cannot allocate memory)
2018/10/11 04:02:26 net device setup: enabled
[   81.584815] random: crng init done
04:04:25 executing program 0:

[  198.178528] IPVS: ftp: loaded support on port[0] = 21
[  199.599298] bridge0: port 1(bridge_slave_0) entered blocking state
[  199.606105] bridge0: port 1(bridge_slave_0) entered disabled state
[  199.615034] device bridge_slave_0 entered promiscuous mode
[  199.784536] bridge0: port 2(bridge_slave_1) entered blocking state
[  199.791075] bridge0: port 2(bridge_slave_1) entered disabled state
[  199.800214] device bridge_slave_1 entered promiscuous mode
[  199.949936] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  200.096417] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  200.556924] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  200.711165] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  201.000185] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  201.007417] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  201.466115] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  201.474652] team0: Port device team_slave_0 added
04:04:29 executing program 1:

[  201.646254] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  201.654719] team0: Port device team_slave_1 added
[  201.975643] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  201.982892] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  201.992570] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  202.144545] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  202.151675] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  202.161018] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  202.370549] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  202.378502] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  202.387980] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  202.558830] IPVS: ftp: loaded support on port[0] = 21
[  202.668051] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  202.675865] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  202.685269] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  205.031854] bridge0: port 1(bridge_slave_0) entered blocking state
[  205.038348] bridge0: port 1(bridge_slave_0) entered disabled state
[  205.047332] device bridge_slave_0 entered promiscuous mode
[  205.234240] bridge0: port 2(bridge_slave_1) entered blocking state
[  205.240742] bridge0: port 2(bridge_slave_1) entered disabled state
[  205.249729] device bridge_slave_1 entered promiscuous mode
[  205.438051] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  205.563467] bridge0: port 2(bridge_slave_1) entered blocking state
[  205.569999] bridge0: port 2(bridge_slave_1) entered forwarding state
[  205.577166] bridge0: port 1(bridge_slave_0) entered blocking state
[  205.583859] bridge0: port 1(bridge_slave_0) entered forwarding state
[  205.593199] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  205.685648] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  206.013907] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  206.396747] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  206.562103] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  206.827303] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  206.836757] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  207.023439] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  207.030577] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
04:04:35 executing program 2:

[  207.590046] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  207.598698] team0: Port device team_slave_0 added
[  207.939273] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  207.947973] team0: Port device team_slave_1 added
[  208.266866] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  208.274212] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  208.283447] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  208.540614] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  208.547858] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  208.557121] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  208.624414] IPVS: ftp: loaded support on port[0] = 21
[  208.835116] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  208.842937] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  208.852319] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  209.156667] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  209.164598] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  209.174045] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  211.537260] bridge0: port 1(bridge_slave_0) entered blocking state
[  211.543897] bridge0: port 1(bridge_slave_0) entered disabled state
[  211.552891] device bridge_slave_0 entered promiscuous mode
[  211.907596] bridge0: port 2(bridge_slave_1) entered blocking state
[  211.914242] bridge0: port 2(bridge_slave_1) entered disabled state
[  211.922932] device bridge_slave_1 entered promiscuous mode
[  212.195113] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  212.429159] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  212.813076] bridge0: port 2(bridge_slave_1) entered blocking state
[  212.819607] bridge0: port 2(bridge_slave_1) entered forwarding state
[  212.826759] bridge0: port 1(bridge_slave_0) entered blocking state
[  212.833328] bridge0: port 1(bridge_slave_0) entered forwarding state
[  212.842499] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  213.183797] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  213.351669] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  213.633616] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  213.903428] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  213.931948] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  214.213329] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  214.220417] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  215.073134] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  215.081446] team0: Port device team_slave_0 added
[  215.417236] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  215.425865] team0: Port device team_slave_1 added
[  215.719999] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  215.727419] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  215.736500] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  216.009717] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  216.017116] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  216.026293] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
04:04:44 executing program 3:

[  216.460984] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  216.469261] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  216.478616] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  216.839139] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  216.846965] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  216.856331] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  217.579241] IPVS: ftp: loaded support on port[0] = 21
[  218.515048] 8021q: adding VLAN 0 to HW filter on device bond0
[  220.005148] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  220.952590] bridge0: port 2(bridge_slave_1) entered blocking state
[  220.959094] bridge0: port 2(bridge_slave_1) entered forwarding state
[  220.966247] bridge0: port 1(bridge_slave_0) entered blocking state
[  220.972794] bridge0: port 1(bridge_slave_0) entered forwarding state
[  220.981934] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  221.114404] bridge0: port 1(bridge_slave_0) entered blocking state
[  221.120917] bridge0: port 1(bridge_slave_0) entered disabled state
[  221.129959] device bridge_slave_0 entered promiscuous mode
[  221.293125] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  221.435622] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  221.442166] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  221.450466] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  221.510843] bridge0: port 2(bridge_slave_1) entered blocking state
[  221.517502] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.526332] device bridge_slave_1 entered promiscuous mode
[  221.864051] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  222.197412] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  222.914235] 8021q: adding VLAN 0 to HW filter on device team0
[  223.329029] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  223.650188] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  224.048712] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[  224.055993] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  224.400185] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready
[  224.407450] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  225.526548] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  225.534959] team0: Port device team_slave_0 added
04:04:53 executing program 4:

[  225.828878] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  225.837018] team0: Port device team_slave_1 added
[  226.243742] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  226.250896] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  226.260042] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  226.706562] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  226.713906] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  226.722941] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  227.090178] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  227.098001] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  227.107252] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  227.503479] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  227.511119] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  227.520642] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  227.734563] IPVS: ftp: loaded support on port[0] = 21
[  228.320839] 8021q: adding VLAN 0 to HW filter on device bond0
[  229.712147] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  231.315142] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  231.321551] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  231.329837] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  232.018991] bridge0: port 1(bridge_slave_0) entered blocking state
[  232.025564] bridge0: port 1(bridge_slave_0) entered disabled state
[  232.034261] device bridge_slave_0 entered promiscuous mode
[  232.535300] bridge0: port 2(bridge_slave_1) entered blocking state
[  232.541950] bridge0: port 2(bridge_slave_1) entered disabled state
[  232.550581] device bridge_slave_1 entered promiscuous mode
[  232.788549] bridge0: port 2(bridge_slave_1) entered blocking state
[  232.795639] bridge0: port 2(bridge_slave_1) entered forwarding state
[  232.803780] bridge0: port 1(bridge_slave_0) entered blocking state
[  232.810260] bridge0: port 1(bridge_slave_0) entered forwarding state
[  232.819972] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  232.952602] 8021q: adding VLAN 0 to HW filter on device team0
[  233.023989] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
04:05:01 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4040ae9e, &(0x7f0000000640)={"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"})

[  233.474441] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  233.605487] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details.
[  233.692134] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  233.733021] ==================================================================
[  233.740448] BUG: KMSAN: uninit-value in vmx_set_constant_host_state+0x1778/0x1830
[  233.748119] CPU: 0 PID: 6852 Comm: syz-executor0 Not tainted 4.19.0-rc4+ #66
[  233.755330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  233.764696] Call Trace:
[  233.767312]  dump_stack+0x306/0x460
[  233.770967]  ? vmx_set_constant_host_state+0x1778/0x1830
[  233.776463]  kmsan_report+0x1a2/0x2e0
[  233.780322]  __msan_warning+0x7c/0xe0
[  233.784174]  vmx_set_constant_host_state+0x1778/0x1830
[  233.789506]  vmx_create_vcpu+0x3e6f/0x7870
[  233.793788]  ? kmsan_set_origin_inline+0x6b/0x120
[  233.799276]  ? __msan_poison_alloca+0x17a/0x210
[  233.804251]  ? vmx_vm_init+0x340/0x340
[  233.808177]  kvm_arch_vcpu_create+0x25d/0x2f0
[  233.812896]  kvm_vm_ioctl+0x13fd/0x33d0
[  233.816936]  ? __msan_poison_alloca+0x17a/0x210
[  233.821654]  ? do_vfs_ioctl+0x18a/0x2810
[  233.825751]  ? __se_sys_ioctl+0x1da/0x270
[  233.829929]  ? vcpu_stat_clear_per_vm+0x420/0x420
[  233.834798]  ? vcpu_stat_clear_per_vm+0x420/0x420
[  233.839703]  do_vfs_ioctl+0xcf3/0x2810
[  233.843679]  ? security_file_ioctl+0x92/0x200
[  233.848250]  __se_sys_ioctl+0x1da/0x270
[  233.852276]  __x64_sys_ioctl+0x4a/0x70
[  233.856200]  do_syscall_64+0xbe/0x100
[  233.860480]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  233.866820] RIP: 0033:0x457519
[  233.870663] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  233.890131] RSP: 002b:00007fac4255dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  233.897881] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457519
[  233.905177] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[  233.912473] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000
[  233.919764] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fac4255e6d4
[  233.927067] R13: 00000000004bfbb7 R14: 00000000004cfc40 R15: 00000000ffffffff
[  233.934381] 
[  233.936026] Local variable description: ----dt@vmx_set_constant_host_state
[  233.943062] Variable was created at:
[  233.946833]  vmx_set_constant_host_state+0x2b0/0x1830
[  233.952055]  vmx_create_vcpu+0x3e6f/0x7870
[  233.956316] ==================================================================
[  233.963690] Disabling lock debugging due to kernel taint
[  233.969163] Kernel panic - not syncing: panic_on_warn set ...
[  233.969163] 
[  233.976573] CPU: 0 PID: 6852 Comm: syz-executor0 Tainted: G    B             4.19.0-rc4+ #66
[  233.985518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  233.997104] Call Trace:
[  234.000158]  dump_stack+0x306/0x460
[  234.004630]  panic+0x54c/0xafa
[  234.008784]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  234.014286]  kmsan_report+0x2d3/0x2e0
[  234.018141]  __msan_warning+0x7c/0xe0
[  234.021982]  vmx_set_constant_host_state+0x1778/0x1830
[  234.027310]  vmx_create_vcpu+0x3e6f/0x7870
[  234.031586]  ? kmsan_set_origin_inline+0x6b/0x120
[  234.036470]  ? __msan_poison_alloca+0x17a/0x210
[  234.041194]  ? vmx_vm_init+0x340/0x340
[  234.045126]  kvm_arch_vcpu_create+0x25d/0x2f0
[  234.049848]  kvm_vm_ioctl+0x13fd/0x33d0
[  234.054656]  ? __msan_poison_alloca+0x17a/0x210
[  234.059367]  ? do_vfs_ioctl+0x18a/0x2810
[  234.063459]  ? __se_sys_ioctl+0x1da/0x270
[  234.067643]  ? vcpu_stat_clear_per_vm+0x420/0x420
[  234.072518]  ? vcpu_stat_clear_per_vm+0x420/0x420
[  234.077625]  do_vfs_ioctl+0xcf3/0x2810
[  234.081568]  ? security_file_ioctl+0x92/0x200
[  234.086142]  __se_sys_ioctl+0x1da/0x270
[  234.090167]  __x64_sys_ioctl+0x4a/0x70
[  234.094096]  do_syscall_64+0xbe/0x100
[  234.097936]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[  234.103152] RIP: 0033:0x457519
[  234.106372] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  234.125297] RSP: 002b:00007fac4255dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  234.133033] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457519
[  234.140331] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[  234.147667] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000
[  234.154957] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fac4255e6d4
[  234.162247] R13: 00000000004bfbb7 R14: 00000000004cfc40 R15: 00000000ffffffff
[  234.170829] Kernel Offset: disabled
[  234.174471] Rebooting in 86400 seconds..