[ 38.549517] audit: type=1800 audit(1550180125.617:27): pid=7651 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [ 38.582232] audit: type=1800 audit(1550180125.627:28): pid=7651 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 39.476611] audit: type=1800 audit(1550180126.587:29): pid=7651 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 [ 39.496244] audit: type=1800 audit(1550180126.587:30): pid=7651 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.10.37' (ECDSA) to the list of known hosts. 2019/02/14 21:35:38 parsed 1 programs 2019/02/14 21:35:40 executed programs: 0 syzkaller login: [ 53.061546] IPVS: ftp: loaded support on port[0] = 21 [ 53.124789] chnl_net:caif_netlink_parms(): no params data found [ 53.157402] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.164591] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.172320] device bridge_slave_0 entered promiscuous mode [ 53.179848] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.186744] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.193845] device bridge_slave_1 entered promiscuous mode [ 53.209786] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 53.220038] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 53.237372] team0: Port device team_slave_0 added [ 53.243749] team0: Port device team_slave_1 added [ 53.293975] device hsr_slave_0 entered promiscuous mode [ 53.331614] device hsr_slave_1 entered promiscuous mode [ 53.388756] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.395256] bridge0: port 2(bridge_slave_1) entered forwarding state [ 53.402412] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.408780] bridge0: port 1(bridge_slave_0) entered forwarding state [ 53.440174] 8021q: adding VLAN 0 to HW filter on device bond0 [ 53.452426] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 53.473204] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.480731] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.489182] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 53.499588] 8021q: adding VLAN 0 to HW filter on device team0 [ 53.508243] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 53.516869] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.523270] bridge0: port 1(bridge_slave_0) entered forwarding state [ 53.543341] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 53.551022] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.557450] bridge0: port 2(bridge_slave_1) entered forwarding state [ 53.565955] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 53.574223] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 53.581988] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 53.590251] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 53.599467] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 53.610013] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 53.626262] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 53.675931] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details. [ 57.069743] BUG: unable to handle kernel paging request at ffff888097c02000 [ 57.076877] #PF error: [PROT] [WRITE] [RSVD] [ 57.081286] PGD b201067 P4D b201067 PUD 21ffff067 PMD 8000000097c001e3 [ 57.088049] Oops: 000b [#1] PREEMPT SMP KASAN [ 57.092571] CPU: 0 PID: 7983 Comm: syz-executor.0 Not tainted 5.0.0-rc6+ #71 [ 57.099904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 57.109260] RIP: 0010:mmu_page_zap_pte+0x18a/0x250 [ 57.114187] Code: 8b 73 28 4c 89 e7 48 83 c6 48 e8 b1 3f ff ff 4c 89 e2 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 a4 00 00 00 <49> c7 04 24 00 00 00 00 41 be 01 00 00 00 e9 fd fe ff ff e8 1e 4c [ 57.133142] RSP: 0018:ffff88808562fb40 EFLAGS: 00010246 [ 57.138606] RAX: dffffc0000000000 RBX: ffffea00026dd5c0 RCX: ffffffff810ed4eb [ 57.145868] RDX: 1ffff11012f80400 RSI: ffffffff810ed514 RDI: 0000000000000007 [ 57.153128] RBP: ffff88808562fb68 R08: ffff888095958340 R09: ffffed1015d05bd0 [ 57.160389] R10: ffffed1015d05bcf R11: ffff8880ae82de7b R12: ffff888097c02000 [ 57.167649] R13: 0000000000000004 R14: ffffc9000666f000 R15: 0000000000000000 [ 57.174912] FS: 00007f87c65c0700(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000 [ 57.183242] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 57.189224] CR2: ffff888097c02000 CR3: 000000009b1db000 CR4: 00000000001426f0 [ 57.196506] Call Trace: [ 57.199090] kvm_mmu_prepare_zap_page+0x163/0x1170 [ 57.204015] ? paging64_gva_to_gpa_nested+0x1d0/0x1d0 [ 57.209197] kvm_mmu_invalidate_zap_all_pages+0x3ca/0x550 [ 57.214728] kvm_arch_flush_shadow_all+0x16/0x20 [ 57.219565] kvm_mmu_notifier_release+0x5c/0x90 [ 57.224229] ? kvm_vcpu_on_spin+0x550/0x550 [ 57.228548] mmu_notifier_unregister+0x137/0x410 [ 57.233295] ? free_pages+0x46/0x50 [ 57.236913] ? kvm_vcpu_on_spin+0x550/0x550 [ 57.241262] kvm_put_kvm+0x553/0xc70 [ 57.244983] ? kvm_vm_release+0x60/0x60 [ 57.248950] kvm_vcpu_release+0x7b/0xa0 [ 57.252919] __fput+0x2df/0x8d0 [ 57.256193] ____fput+0x16/0x20 [ 57.259483] task_work_run+0x14a/0x1c0 [ 57.263478] exit_to_usermode_loop+0x273/0x2c0 [ 57.268057] do_syscall_64+0x52d/0x610 [ 57.271942] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 57.277175] RIP: 0033:0x457e29 [ 57.280360] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 57.299355] RSP: 002b:00007f87c65bfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 57.307087] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000457e29 [ 57.314348] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 57.321614] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 57.328885] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f87c65c06d4 [ 57.336147] R13: 00000000004c0d62 R14: 00000000004d2b18 R15: 00000000ffffffff [ 57.343410] Modules linked in: [ 57.346650] CR2: ffff888097c02000 [ 57.350162] ---[ end trace dc399781be29b33c ]--- [ 57.355002] RIP: 0010:mmu_page_zap_pte+0x18a/0x250 [ 57.359924] Code: 8b 73 28 4c 89 e7 48 83 c6 48 e8 b1 3f ff ff 4c 89 e2 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 a4 00 00 00 <49> c7 04 24 00 00 00 00 41 be 01 00 00 00 e9 fd fe ff ff e8 1e 4c [ 57.378922] RSP: 0018:ffff88808562fb40 EFLAGS: 00010246 [ 57.384276] RAX: dffffc0000000000 RBX: ffffea00026dd5c0 RCX: ffffffff810ed4eb [ 57.391536] RDX: 1ffff11012f80400 RSI: ffffffff810ed514 RDI: 0000000000000007 [ 57.398794] RBP: ffff88808562fb68 R08: ffff888095958340 R09: ffffed1015d05bd0 [ 57.406076] R10: ffffed1015d05bcf R11: ffff8880ae82de7b R12: ffff888097c02000 [ 57.413345] R13: 0000000000000004 R14: ffffc9000666f000 R15: 0000000000000000 [ 57.420611] FS: 00007f87c65c0700(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000 [ 57.428935] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 57.434808] CR2: ffff888097c02000 CR3: 000000009b1db000 CR4: 00000000001426f0 [ 57.442072] Kernel panic - not syncing: Fatal exception [ 57.448546] Kernel Offset: disabled [ 57.452176] Rebooting in 86400 seconds..