[ 61.377975] audit: type=1800 audit(1539242504.411:27): pid=6134 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 63.042426] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 66.798624] random: sshd: uninitialized urandom read (32 bytes read) [ 67.184298] random: sshd: uninitialized urandom read (32 bytes read) [ 69.576738] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.10.13' (ECDSA) to the list of known hosts. [ 75.426502] random: sshd: uninitialized urandom read (32 bytes read) 2018/10/11 07:22:00 fuzzer started [ 80.021224] random: cc1: uninitialized urandom read (8 bytes read) 2018/10/11 07:22:05 dialing manager at 10.128.0.26:39089 2018/10/11 07:22:05 syscalls: 1 2018/10/11 07:22:05 code coverage: enabled 2018/10/11 07:22:05 comparison tracing: CONFIG_KCOV_ENABLE_COMPARISONS is not enabled 2018/10/11 07:22:05 setuid sandbox: enabled 2018/10/11 07:22:05 namespace sandbox: enabled 2018/10/11 07:22:05 Android sandbox: /sys/fs/selinux/policy does not exist 2018/10/11 07:22:05 fault injection: enabled 2018/10/11 07:22:05 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2018/10/11 07:22:05 net packed injection: /dev/net/tun can't be opened (open /dev/net/tun: cannot allocate memory) 2018/10/11 07:22:05 net device setup: enabled [ 85.511897] random: crng init done 07:24:04 executing program 0: preadv(0xffffffffffffffff, &(0x7f0000001540)=[{&(0x7f0000000100)=""/159, 0x9f}], 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/softnet_stat\x00') preadv(r0, &(0x7f0000000480), 0x1000000000000268, 0x7a) [ 202.641540] IPVS: ftp: loaded support on port[0] = 21 [ 204.049479] bridge0: port 1(bridge_slave_0) entered blocking state [ 204.056060] bridge0: port 1(bridge_slave_0) entered disabled state [ 204.064892] device bridge_slave_0 entered promiscuous mode [ 204.229976] bridge0: port 2(bridge_slave_1) entered blocking state [ 204.236633] bridge0: port 2(bridge_slave_1) entered disabled state [ 204.245452] device bridge_slave_1 entered promiscuous mode [ 204.391432] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 204.533044] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 204.985096] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 205.134518] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 205.420133] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 205.427305] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 205.887966] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 205.896396] team0: Port device team_slave_0 added 07:24:09 executing program 1: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhost-net\x00', 0x2, 0x0) preadv(r0, &(0x7f0000000040)=[{&(0x7f00000001c0)=""/159, 0x9f}], 0x120, 0x0) [ 206.122718] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 206.130986] team0: Port device team_slave_1 added [ 206.418915] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 206.426072] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 206.435266] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 206.730816] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 206.738060] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 206.748896] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 206.754303] IPVS: ftp: loaded support on port[0] = 21 [ 206.918377] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 206.926248] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 206.935696] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 207.087919] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 207.095681] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 207.104893] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 209.115533] bridge0: port 1(bridge_slave_0) entered blocking state [ 209.122253] bridge0: port 1(bridge_slave_0) entered disabled state [ 209.130847] device bridge_slave_0 entered promiscuous mode [ 209.383545] bridge0: port 2(bridge_slave_1) entered blocking state [ 209.390048] bridge0: port 2(bridge_slave_1) entered disabled state [ 209.398771] device bridge_slave_1 entered promiscuous mode [ 209.461628] bridge0: port 2(bridge_slave_1) entered blocking state [ 209.468236] bridge0: port 2(bridge_slave_1) entered forwarding state [ 209.475360] bridge0: port 1(bridge_slave_0) entered blocking state [ 209.481904] bridge0: port 1(bridge_slave_0) entered forwarding state [ 209.491143] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 209.715077] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 209.955684] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 210.492347] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 210.680668] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 210.876381] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 211.032678] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 211.039757] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 211.245193] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 211.252402] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 211.776313] ip (6434) used greatest stack depth: 53056 bytes left 07:24:15 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000)) [ 212.016562] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 212.024984] team0: Port device team_slave_0 added [ 212.290143] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 212.298530] team0: Port device team_slave_1 added [ 212.606193] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 212.613344] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 212.622640] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 212.896246] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 212.903626] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 212.912831] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 213.154522] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 213.162389] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 213.171609] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 213.356755] IPVS: ftp: loaded support on port[0] = 21 [ 213.523732] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 213.531367] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 213.540953] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 216.230800] bridge0: port 1(bridge_slave_0) entered blocking state [ 216.237434] bridge0: port 1(bridge_slave_0) entered disabled state [ 216.246079] device bridge_slave_0 entered promiscuous mode [ 216.440456] bridge0: port 2(bridge_slave_1) entered blocking state [ 216.447247] bridge0: port 2(bridge_slave_1) entered disabled state [ 216.455980] device bridge_slave_1 entered promiscuous mode [ 216.740388] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 216.945493] bridge0: port 2(bridge_slave_1) entered blocking state [ 216.952098] bridge0: port 2(bridge_slave_1) entered forwarding state [ 216.959070] bridge0: port 1(bridge_slave_0) entered blocking state [ 216.965692] bridge0: port 1(bridge_slave_0) entered forwarding state [ 216.975017] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 217.020825] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 217.772937] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 218.086534] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 218.368140] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 218.718488] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 218.725807] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 219.020776] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 219.029182] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 220.042385] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 220.050576] team0: Port device team_slave_0 added [ 220.280431] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 220.288986] team0: Port device team_slave_1 added 07:24:23 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000180)={0x7a, 0x0, [0x4b564d01, 0xfffffffffffffffb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 220.703913] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 220.710998] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 220.720066] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 221.045823] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 221.053487] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 221.062679] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 221.495659] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 221.503568] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 221.513107] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 221.939760] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 221.947687] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 221.956895] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 222.010564] 8021q: adding VLAN 0 to HW filter on device bond0 [ 222.134557] IPVS: ftp: loaded support on port[0] = 21 [ 223.443111] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 224.728886] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 224.735434] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 224.743770] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 225.460045] bridge0: port 1(bridge_slave_0) entered blocking state [ 225.466779] bridge0: port 1(bridge_slave_0) entered disabled state [ 225.475660] device bridge_slave_0 entered promiscuous mode [ 225.834239] bridge0: port 2(bridge_slave_1) entered blocking state [ 225.840717] bridge0: port 2(bridge_slave_1) entered disabled state [ 225.849554] device bridge_slave_1 entered promiscuous mode [ 226.222985] bridge0: port 2(bridge_slave_1) entered blocking state [ 226.229512] bridge0: port 2(bridge_slave_1) entered forwarding state [ 226.236600] bridge0: port 1(bridge_slave_0) entered blocking state [ 226.243164] bridge0: port 1(bridge_slave_0) entered forwarding state [ 226.252448] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 226.271888] 8021q: adding VLAN 0 to HW filter on device team0 [ 226.279571] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 226.551288] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 226.702098] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 227.699364] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 228.038050] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 228.371082] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 228.378351] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 228.758692] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 228.766020] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 229.941181] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 229.949406] team0: Port device team_slave_0 added [ 230.319980] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 230.328529] team0: Port device team_slave_1 added 07:24:33 executing program 4: r0 = syz_open_dev$sndseq(&(0x7f0000000140)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000080)={0x0, 0x0, 0x0, "71756575653000000000000000000000000000000000002791179800ecffffffffffffff0000000000009e613cee00"}) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r0, 0x402c5342, &(0x7f00000003c0)={0x0, 0x7f, 0x8}) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x0, 0x0) [ 230.732074] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 230.739231] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 230.748677] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 231.188082] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 231.195745] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 231.204978] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 231.609561] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 231.617407] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 231.626643] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 232.007557] 8021q: adding VLAN 0 to HW filter on device bond0 [ 232.033900] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 232.041673] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 232.051052] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 232.265573] IPVS: ftp: loaded support on port[0] = 21 [ 233.550249] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 235.221901] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 235.230561] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 235.238889] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready 07:24:39 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_X86_SETUP_MCE(r2, 0x4008ae9c, &(0x7f00000000c0)={0x14, 0x4}) [ 236.752797] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details. [ 236.817727] bridge0: port 1(bridge_slave_0) entered blocking state [ 236.824346] bridge0: port 1(bridge_slave_0) entered disabled state [ 236.833007] device bridge_slave_0 entered promiscuous mode [ 236.861161] ================================================================== [ 236.868613] BUG: KMSAN: uninit-value in vmx_set_constant_host_state+0x1778/0x1830 [ 236.876307] CPU: 0 PID: 6964 Comm: syz-executor0 Not tainted 4.19.0-rc4+ #66 [ 236.883518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 236.892891] Call Trace: [ 236.895515] dump_stack+0x306/0x460 [ 236.899172] ? vmx_set_constant_host_state+0x1778/0x1830 [ 236.904699] kmsan_report+0x1a2/0x2e0 [ 236.908542] __msan_warning+0x7c/0xe0 [ 236.912405] vmx_set_constant_host_state+0x1778/0x1830 [ 236.917739] vmx_create_vcpu+0x3e6f/0x7870 [ 236.922054] ? kmsan_set_origin_inline+0x6b/0x120 [ 236.926936] ? __msan_poison_alloca+0x17a/0x210 [ 236.931661] ? vmx_vm_init+0x340/0x340 [ 236.935609] kvm_arch_vcpu_create+0x25d/0x2f0 [ 236.940154] kvm_vm_ioctl+0x13fd/0x33d0 [ 236.944184] ? __msan_poison_alloca+0x17a/0x210 [ 236.948891] ? do_vfs_ioctl+0x18a/0x2810 [ 236.952985] ? __se_sys_ioctl+0x1da/0x270 [ 236.957192] ? vcpu_stat_clear_per_vm+0x420/0x420 [ 236.962063] ? vcpu_stat_clear_per_vm+0x420/0x420 [ 236.966933] do_vfs_ioctl+0xcf3/0x2810 [ 236.970872] ? security_file_ioctl+0x92/0x200 [ 236.975414] __se_sys_ioctl+0x1da/0x270 [ 236.979435] __x64_sys_ioctl+0x4a/0x70 [ 236.983353] do_syscall_64+0xbe/0x100 [ 236.987193] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 236.992407] RIP: 0033:0x457519 [ 236.995643] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 237.014569] RSP: 002b:00007faaaa005c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 237.022325] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457519 [ 237.029648] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 237.036940] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 237.044232] R10: 0000000000000000 R11: 0000000000000246 R12: 00007faaaa0066d4 [ 237.051560] R13: 00000000004bfbb7 R14: 00000000004cfc40 R15: 00000000ffffffff [ 237.058876] [ 237.060518] Local variable description: ----dt@vmx_set_constant_host_state [ 237.067536] Variable was created at: [ 237.071678] vmx_set_constant_host_state+0x2b0/0x1830 [ 237.076896] vmx_create_vcpu+0x3e6f/0x7870 [ 237.081178] ================================================================== [ 237.088549] Disabling lock debugging due to kernel taint [ 237.094110] Kernel panic - not syncing: panic_on_warn set ... [ 237.094110] [ 237.101510] CPU: 0 PID: 6964 Comm: syz-executor0 Tainted: G B 4.19.0-rc4+ #66 [ 237.110102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 237.112657] 8021q: adding VLAN 0 to HW filter on device team0 [ 237.119469] Call Trace: [ 237.119510] dump_stack+0x306/0x460 [ 237.131659] panic+0x54c/0xafa [ 237.134924] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 237.140425] kmsan_report+0x2d3/0x2e0 [ 237.144265] __msan_warning+0x7c/0xe0 [ 237.148151] vmx_set_constant_host_state+0x1778/0x1830 [ 237.153486] vmx_create_vcpu+0x3e6f/0x7870 [ 237.157759] ? kmsan_set_origin_inline+0x6b/0x120 [ 237.162645] ? __msan_poison_alloca+0x17a/0x210 [ 237.167356] ? vmx_vm_init+0x340/0x340 [ 237.171277] kvm_arch_vcpu_create+0x25d/0x2f0 [ 237.175821] kvm_vm_ioctl+0x13fd/0x33d0 [ 237.179831] ? __msan_poison_alloca+0x17a/0x210 [ 237.184536] ? do_vfs_ioctl+0x18a/0x2810 [ 237.188632] ? __se_sys_ioctl+0x1da/0x270 [ 237.192833] ? vcpu_stat_clear_per_vm+0x420/0x420 [ 237.197709] ? vcpu_stat_clear_per_vm+0x420/0x420 [ 237.202612] do_vfs_ioctl+0xcf3/0x2810 [ 237.206560] ? security_file_ioctl+0x92/0x200 [ 237.211107] __se_sys_ioctl+0x1da/0x270 [ 237.215134] __x64_sys_ioctl+0x4a/0x70 [ 237.219047] do_syscall_64+0xbe/0x100 [ 237.222875] entry_SYSCALL_64_after_hwframe+0x63/0xe7 [ 237.228085] RIP: 0033:0x457519 [ 237.231305] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 237.250226] RSP: 002b:00007faaaa005c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 237.257975] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457519 [ 237.265297] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 237.272605] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 237.279906] R10: 0000000000000000 R11: 0000000000000246 R12: 00007faaaa0066d4 [ 237.287197] R13: 00000000004bfbb7 R14: 00000000004cfc40 R15: 00000000ffffffff [ 237.295498] Kernel Offset: disabled [ 237.299137] Rebooting in 86400 seconds..