[ 40.651462] audit: type=1800 audit(1550995121.672:32): pid=7837 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0 Starting mcstransd: [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 44.804940] kauditd_printk_skb: 2 callbacks suppressed [ 44.804955] audit: type=1400 audit(1550995125.852:35): avc: denied { map } for pid=8012 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added '10.128.0.158' (ECDSA) to the list of known hosts. [ 51.337750] audit: type=1400 audit(1550995132.382:36): avc: denied { map } for pid=8024 comm="syz-executor181" path="/root/syz-executor181955600" dev="sda1" ino=16483 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 51.377782] IPVS: ftp: loaded support on port[0] = 21 executing program [ 51.403420] audit: type=1400 audit(1550995132.442:37): avc: denied { associate } for pid=8025 comm="syz-executor181" name="syz0" scontext=unconfined_u:object_r:unlabeled_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=filesystem permissive=1 [ 51.442010] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details. executing program executing program executing program executing program [ 51.985049] ------------[ cut here ]------------ [ 51.989834] kernel BUG at arch/x86/kvm/x86.c:357! [ 51.994691] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 52.000054] CPU: 1 PID: 8041 Comm: syz-executor181 Not tainted 5.0.0-rc7+ #85 [ 52.007321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 52.016681] RIP: 0010:kvm_spurious_fault+0x9/0x10 [ 52.021519] Code: e8 9c ce 65 00 41 bd 03 00 00 00 5b 44 89 e8 41 5c 41 5d 5d c3 66 90 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 e8 77 ce 65 00 <0f> 0b 0f 1f 44 00 00 55 48 89 e5 41 57 41 56 49 89 d6 41 55 41 54 [ 52.040416] RSP: 0018:ffff8880ae907e80 EFLAGS: 00010006 [ 52.045778] RAX: ffff8880935cc3c0 RBX: ffff88809838f810 RCX: ffffffff81329baa [ 52.053041] RDX: 0000000000010000 RSI: ffffffff810a1309 RDI: 0000000000000007 [ 52.060307] RBP: ffff8880ae907e80 R08: ffff8880935cc3c0 R09: ffffed1015d25be9 [ 52.067569] R10: ffffed1015d25be8 R11: ffff8880ae92df47 R12: 1ffff11015d20fd3 [ 52.074845] R13: ffff888094f64000 R14: ffff8880ae907ef8 R15: 0000000000000001 [ 52.082117] FS: 0000000002584940(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000 [ 52.090336] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 52.096212] CR2: ffff8880ae907eb8 CR3: 00000000a86c1000 CR4: 00000000001426e0 [ 52.103479] Call Trace: [ 52.106060] [ 52.108216] loaded_vmcs_init+0x95/0x250 [ 52.112288] ? find_msr_entry+0x170/0x170 [ 52.116437] __loaded_vmcs_clear+0x229/0x360 [ 52.120844] flush_smp_call_function_queue+0x14a/0x500 [ 52.126118] ? loaded_vmcs_init+0x250/0x250 [ 52.130441] generic_smp_call_function_single_interrupt+0x13/0x2b [ 52.136673] smp_call_function_single_interrupt+0xa3/0x460 [ 52.142299] call_function_single_interrupt+0xf/0x20 [ 52.147397] [ 52.149635] RIP: 0010:_raw_spin_unlock_irqrestore+0x95/0xe0 [ 52.155345] Code: 48 c7 c0 f0 82 92 88 48 ba 00 00 00 00 00 fc ff df 48 c1 e8 03 80 3c 10 00 75 39 48 83 3d 32 2e 8f 01 00 74 24 48 89 df 57 9d <0f> 1f 44 00 00 bf 01 00 00 00 e8 5c 5e 4a fa 65 8b 05 f5 98 fe 78 [ 52.174246] RSP: 0018:ffff8880934df9d0 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff04 [ 52.181951] RAX: 1ffffffff112505e RBX: 0000000000000286 RCX: 0000000000000000 [ 52.189219] RDX: dffffc0000000000 RSI: 0000000000000001 RDI: 0000000000000286 [ 52.196488] RBP: ffff8880934df9e0 R08: ffff8880935cc3c0 R09: 0000000000000000 [ 52.203750] R10: 0000000000000000 R11: 0000000000000000 R12: ffff888080986bc0 [ 52.211016] R13: ffff888080986400 R14: ffff8880ae82d000 R15: ffff8880ae82d018 [ 52.218304] try_to_wake_up+0xc6/0xff0 [ 52.222199] ? migrate_swap_stop+0x920/0x920 [ 52.226607] ? lock_downgrade+0x810/0x810 [ 52.230752] wake_up_q+0x99/0x100 [ 52.234211] futex_wake+0x429/0x4d0 [ 52.237846] ? get_futex_key+0x1690/0x1690 [ 52.242087] do_futex+0x34c/0x1d50 [ 52.245625] ? mark_held_locks+0x100/0x100 [ 52.249854] ? __might_fault+0x12b/0x1e0 [ 52.253927] ? exit_robust_list+0x290/0x290 [ 52.258245] ? __x64_sys_futex+0x4c2/0x590 [ 52.262487] ? ktime_get+0x105/0x300 [ 52.266203] ? kvm_clock_read+0x18/0x30 [ 52.270176] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 52.275186] ? ktime_get+0x208/0x300 [ 52.278902] __x64_sys_futex+0x3f7/0x590 [ 52.282965] ? do_futex+0x1d50/0x1d50 [ 52.286765] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 52.291527] ? do_syscall_64+0x26/0x610 [ 52.295503] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 52.300865] ? do_syscall_64+0x26/0x610 [ 52.304843] ? lockdep_hardirqs_on+0x415/0x5d0 [ 52.309426] ? trace_hardirqs_on+0x67/0x230 [ 52.313747] do_syscall_64+0x103/0x610 [ 52.317638] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 52.322820] RIP: 0033:0x449b09 [ 52.326012] Code: e8 cc b2 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b ff fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 52.344915] RSP: 002b:00007ffe337b0278 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 52.352620] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000449b09 [ 52.359887] RDX: 0000000000449b09 RSI: 0000000000000081 RDI: 00000000006dfc48 [ 52.367156] RBP: 00000000006dfc4c R08: 0000000000000000 R09: 0000000000000000 [ 52.374435] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dfc60 [ 52.381699] R13: 0000000000000000 R14: 000000000000002d R15: 20c49ba5e353f7cf [ 52.388967] Modules linked in: [ 52.392165] ---[ end trace 285e1020b1602a2c ]--- [ 52.396920] RIP: 0010:kvm_spurious_fault+0x9/0x10 [ 52.401761] Code: e8 9c ce 65 00 41 bd 03 00 00 00 5b 44 89 e8 41 5c 41 5d 5d c3 66 90 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 e8 77 ce 65 00 <0f> 0b 0f 1f 44 00 00 55 48 89 e5 41 57 41 56 49 89 d6 41 55 41 54 [ 52.420659] RSP: 0018:ffff8880ae907e80 EFLAGS: 00010006 [ 52.426013] RAX: ffff8880935cc3c0 RBX: ffff88809838f810 RCX: ffffffff81329baa [ 52.433288] RDX: 0000000000010000 RSI: ffffffff810a1309 RDI: 0000000000000007 [ 52.440553] RBP: ffff8880ae907e80 R08: ffff8880935cc3c0 R09: ffffed1015d25be9 [ 52.447822] R10: ffffed1015d25be8 R11: ffff8880ae92df47 R12: 1ffff11015d20fd3 [ 52.455093] R13: ffff888094f64000 R14: ffff8880ae907ef8 R15: 0000000000000001 [ 52.462358] FS: 0000000002584940(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000 [ 52.470578] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 52.476468] CR2: ffff8880ae907eb8 CR3: 00000000a86c1000 CR4: 00000000001426e0 [ 52.483759] Kernel panic - not syncing: Fatal exception in interrupt [ 52.491133] Kernel Offset: disabled [ 52.494755] Rebooting in 86400 seconds..