[[36minfo[39;49m] Using makefile-style concurrent boot in runlevel 2.
[   23.294105] audit: type=1800 audit(1539703449.951:21): pid=5128 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="bootlogs" dev="sda1" ino=2419 res=0
[   23.313709] audit: type=1800 audit(1539703449.951:22): pid=5128 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="motd" dev="sda1" ino=2447 res=0
[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.32' (ECDSA) to the list of known hosts.
2018/10/16 15:24:59 parsed 1 programs
2018/10/16 15:25:01 executed programs: 0
syzkaller login: [   74.652712] IPVS: ftp: loaded support on port[0] = 21
[   74.891918] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.899141] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.906795] device bridge_slave_0 entered promiscuous mode
[   74.926084] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.932594] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.939733] device bridge_slave_1 entered promiscuous mode
[   74.957224] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   74.976044] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   75.023277] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   75.044240] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   75.118017] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   75.125621] team0: Port device team_slave_0 added
[   75.142683] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   75.149887] team0: Port device team_slave_1 added
[   75.167553] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   75.188628] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   75.206809] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   75.226243] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   75.368398] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.375068] bridge0: port 2(bridge_slave_1) entered forwarding state
[   75.381885] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.388300] bridge0: port 1(bridge_slave_0) entered forwarding state
[   75.893404] 8021q: adding VLAN 0 to HW filter on device bond0
[   75.944809] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   75.998496] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[   76.004806] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   76.014058] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   76.057360] 8021q: adding VLAN 0 to HW filter on device team0
[   76.359350] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details.
[   76.415602] kasan: CONFIG_KASAN_INLINE enabled
[   76.420417] kasan: GPF could be caused by NULL-ptr deref or user memory access
[   76.430379] general protection fault: 0000 [#1] PREEMPT SMP KASAN
[   76.436667] CPU: 0 PID: 5556 Comm: syz-executor0 Not tainted 4.19.0-rc8+ #285
[   76.443926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   76.453546] RIP: 0010:kvm_pv_send_ipi+0x364/0xdd0
[   76.458382] Code: 45 84 ed 0f 84 da 07 00 00 e8 58 ad 65 00 48 8d 4b 14 48 b8 00 00 00 00 00 fc ff df 48 89 ca 48 89 8d 70 fe ff ff 48 c1 ea 03 <0f> b6 14 02 48 89 c8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 f5
[   76.477398] RSP: 0018:ffff8801b92a7028 EFLAGS: 00010203
[   76.482747] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000014
[   76.490184] RDX: 0000000000000002 RSI: ffffffff8118fbf8 RDI: 0000000000000005
[   76.497448] RBP: ffff8801b92a71c8 R08: ffff8801b91f6080 R09: 1ffffffff1273955
[   76.505120] R10: ffffed003b5c4732 R11: ffff8801dae23993 R12: ffff8801b92a71a0
[   76.512378] R13: 0000000000000001 R14: 0000000000000000 R15: ffff8801b92a7120
[   76.519638] FS:  00007f3e3bdc6700(0000) GS:ffff8801dae00000(0000) knlGS:0000000000000000
[   76.527850] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   76.533726] CR2: 0000000000000000 CR3: 00000001cbf3f000 CR4: 00000000001426f0
[   76.540982] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   76.548533] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   76.555964] Call Trace:
[   76.558549]  ? __lock_is_held+0xb5/0x140
[   76.563405]  ? graph_lock+0x170/0x170
[   76.567319]  ? kvm_apic_set_irq+0x170/0x170
[   76.571652]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   76.577189]  ? check_preemption_disabled+0x48/0x200
[   76.582189]  ? check_preemption_disabled+0x48/0x200
[   76.587193]  ? __lock_is_held+0xb5/0x140
[   76.591239]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   76.596785]  ? vmx_read_guest_seg_ar+0x221/0x270
[   76.601527]  kvm_emulate_hypercall+0xa1a/0xf20
[   76.606097]  ? kvm_load_guest_fpu+0x560/0x560
[   76.610577]  ? graph_lock+0x170/0x170
[   76.614365]  ? vmx_vcpu_run+0x1383/0x289d
[   76.618502]  ? vmx_vcpu_run+0x1377/0x289d
[   76.622643]  ? vmx_vcpu_run+0x1383/0x289d
[   76.626775]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   76.632296]  ? check_preemption_disabled+0x48/0x200
[   76.637293]  ? check_preemption_disabled+0x48/0x200
[   76.642298]  ? __lock_is_held+0xb5/0x140
[   76.646387]  handle_vmcall+0x15/0x20
[   76.650084]  ? handle_io+0x100/0x100
[   76.653783]  vmx_handle_exit+0x2f7/0x17e0
[   76.657970]  ? lock_acquire+0x1ed/0x520
[   76.661933]  ? vcpu_enter_guest+0x12f2/0x6380
[   76.666432]  ? vcpu_enter_guest+0x1271/0x6380
[   76.670914]  ? handle_vmfunc+0x9d0/0x9d0
[   76.675063]  ? trace_hardirqs_on+0xbd/0x310
[   76.679368]  ? kvm_arch_vcpu_ioctl_run+0x375/0x16e0
[   76.684372]  ? check_preemption_disabled+0x48/0x200
[   76.689386]  ? check_preemption_disabled+0x48/0x200
[   76.694400]  vcpu_enter_guest+0x14a9/0x6380
[   76.698706]  ? __phys_addr+0xa6/0x120
[   76.702492]  ? emulator_read_emulated+0x50/0x50
[   76.707146]  ? check_preemption_disabled+0x48/0x200
[   76.712148]  ? vmx_vcpu_load+0xb06/0x1030
[   76.716278]  ? vmx_write_tsc_offset+0x680/0x680
[   76.720931]  ? graph_lock+0x170/0x170
[   76.724730]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   76.730254]  ? check_preemption_disabled+0x48/0x200
[   76.735259]  ? check_preemption_disabled+0x48/0x200
[   76.740262]  ? __lock_is_held+0xb5/0x140
[   76.744312]  ? kvm_check_async_pf_completion+0x3ae/0x5c0
[   76.749759]  ? kvm_clear_async_pf_completion_queue+0x770/0x770
[   76.755724]  ? kvm_arch_dev_ioctl+0x630/0x630
[   76.760203]  ? preempt_notifier_dec+0x20/0x20
[   76.764685]  kvm_arch_vcpu_ioctl_run+0x375/0x16e0
[   76.769529]  ? kvm_arch_vcpu_ioctl_run+0x375/0x16e0
[   76.774548]  kvm_vcpu_ioctl+0x72b/0x1150
[   76.778595]  ? kvm_vcpu_block+0x1030/0x1030
[   76.782899]  ? find_held_lock+0x36/0x1c0
[   76.786965]  ? __fget+0x4aa/0x740
[   76.790407]  ? check_preemption_disabled+0x48/0x200
[   76.795412]  ? kasan_check_read+0x11/0x20
[   76.799547]  ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160
[   76.804807]  ? rcu_bh_qs+0xc0/0xc0
[   76.808521]  ? __fget+0x4d1/0x740
[   76.811967]  ? ksys_dup3+0x680/0x680
[   76.815670]  ? __might_fault+0x12b/0x1e0
[   76.819717]  ? lock_downgrade+0x900/0x900
[   76.823853]  ? lock_release+0x970/0x970
[   76.827814]  ? arch_local_save_flags+0x40/0x40
[   76.832395]  ? kvm_vcpu_block+0x1030/0x1030
[   76.836710]  do_vfs_ioctl+0x1de/0x1720
[   76.840594]  ? ioctl_preallocate+0x300/0x300
[   76.844990]  ? __fget_light+0x2e9/0x430
[   76.848954]  ? fget_raw+0x20/0x20
[   76.852393]  ? _copy_to_user+0xc8/0x110
[   76.856355]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[   76.861887]  ? put_timespec64+0x10f/0x1b0
[   76.866019]  ? nsecs_to_jiffies+0x30/0x30
[   76.870152]  ? do_syscall_64+0x9a/0x820
[   76.874109]  ? do_syscall_64+0x9a/0x820
[   76.878068]  ? lockdep_hardirqs_on+0x421/0x5c0
[   76.882644]  ? security_file_ioctl+0x94/0xc0
[   76.887035]  ksys_ioctl+0xa9/0xd0
[   76.890472]  __x64_sys_ioctl+0x73/0xb0
[   76.894345]  do_syscall_64+0x1b9/0x820
[   76.898219]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[   76.903570]  ? syscall_return_slowpath+0x5e0/0x5e0
[   76.908500]  ? trace_hardirqs_on_caller+0x310/0x310
[   76.913504]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[   76.918503]  ? recalc_sigpending_tsk+0x180/0x180
[   76.923244]  ? kasan_check_write+0x14/0x20
[   76.927463]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   76.932416]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   76.937599] RIP: 0033:0x457569
[   76.940800] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   76.959700] RSP: 002b:00007f3e3bdc5c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   76.967395] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457569
[   76.974649] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007
[   76.981906] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000
[   76.989163] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3e3bdc66d4
[   76.996437] R13: 00000000004c0027 R14: 00000000004d0108 R15: 00000000ffffffff
[   77.003702] Modules linked in:
[   77.010918] kobject: 'kvm' (00000000af64627b): kobject_uevent_env
[   77.017322] kobject: 'kvm' (00000000af64627b): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[   77.027036] ---[ end trace dd36b70cd0d7584f ]---
[   77.031889] RIP: 0010:kvm_pv_send_ipi+0x364/0xdd0
[   77.036898] Code: 45 84 ed 0f 84 da 07 00 00 e8 58 ad 65 00 48 8d 4b 14 48 b8 00 00 00 00 00 fc ff df 48 89 ca 48 89 8d 70 fe ff ff 48 c1 ea 03 <0f> b6 14 02 48 89 c8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 f5
[   77.055848] RSP: 0018:ffff8801b92a7028 EFLAGS: 00010203
[   77.061220] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000014
[   77.068513] RDX: 0000000000000002 RSI: ffffffff8118fbf8 RDI: 0000000000000005
[   77.075813] RBP: ffff8801b92a71c8 R08: ffff8801b91f6080 R09: 1ffffffff1273955
[   77.083078] R10: ffffed003b5c4732 R11: ffff8801dae23993 R12: ffff8801b92a71a0
[   77.090373] R13: 0000000000000001 R14: 0000000000000000 R15: ffff8801b92a7120
[   77.097752] FS:  00007f3e3bdc6700(0000) GS:ffff8801daf00000(0000) knlGS:0000000000000000
[   77.106435] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   77.112307] CR2: 00007fbf0b287000 CR3: 00000001cbf3f000 CR4: 00000000001426e0
[   77.119600] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   77.126893] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   77.134153] Kernel panic - not syncing: Fatal exception
[   77.140105] Kernel Offset: disabled
[   77.143728] Rebooting in 86400 seconds..