[ OK ] Started getty on tty2-tty6 if dbus and logind are not available. [ OK ] Started OpenBSD Secure Shell server. [ OK ] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch. [ OK ] Started Getty on tty6. [ OK ] Started Getty on tty5. [ OK ] Started Getty on tty4. [ OK ] Started Getty on tty1. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty2. [ OK ] Started Serial Getty on ttyS0. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.90' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 35.109243] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 35.151580] ------------[ cut here ]------------ [ 35.156466] WARNING: CPU: 0 PID: 8091 at arch/x86/kvm/vmx.c:4719 free_loaded_vmcs.cold+0x11/0x18 [ 35.165650] Kernel panic - not syncing: panic_on_warn set ... [ 35.165650] [ 35.173100] CPU: 0 PID: 8091 Comm: syz-executor330 Not tainted 4.19.211-syzkaller #0 [ 35.181138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 35.190477] Call Trace: [ 35.193052] dump_stack+0x1fc/0x2ef [ 35.196664] panic+0x26a/0x50e [ 35.199838] ? __warn_printk+0xf3/0xf3 [ 35.203710] ? free_loaded_vmcs.cold+0x11/0x18 [ 35.208292] ? __probe_kernel_read+0x130/0x1b0 [ 35.212867] ? __warn.cold+0x5/0x5a [ 35.216474] ? __warn+0xe4/0x200 [ 35.219881] ? free_loaded_vmcs.cold+0x11/0x18 [ 35.224445] __warn.cold+0x20/0x5a [ 35.227967] ? io_schedule_timeout+0x140/0x140 [ 35.232532] ? free_loaded_vmcs.cold+0x11/0x18 [ 35.237106] report_bug+0x262/0x2b0 [ 35.240720] do_error_trap+0x1d7/0x310 [ 35.244615] ? math_error+0x310/0x310 [ 35.248397] ? __irq_work_queue_local+0x101/0x160 [ 35.253227] ? irq_work_queue+0x29/0x80 [ 35.257198] ? error_entry+0x72/0xd0 [ 35.260897] ? trace_hardirqs_off_caller+0x6e/0x210 [ 35.265897] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 35.270722] invalid_op+0x14/0x20 [ 35.274172] RIP: 0010:free_loaded_vmcs.cold+0x11/0x18 [ 35.279344] Code: ee 48 c7 c7 80 d1 63 88 c6 05 07 d4 34 03 01 e8 fc c4 01 00 e9 30 4b 27 f9 e8 87 93 70 f9 48 c7 c7 e0 c5 63 88 e8 e6 c4 01 00 <0f> 0b e9 13 7e 27 f9 e8 6f 93 70 f9 48 c7 c7 e0 c5 63 88 e8 ce c4 [ 35.298227] RSP: 0018:ffff8880956df928 EFLAGS: 00010282 [ 35.303571] RAX: 0000000000000024 RBX: ffff8880924ed768 RCX: 0000000000000000 [ 35.310830] RDX: 0000000000000000 RSI: ffffffff814dff01 RDI: ffffed1012adbf17 [ 35.318343] RBP: ffff8880ab2e3000 R08: 0000000000000024 R09: 0000000000000000 [ 35.325597] R10: 0000000000000005 R11: 0000000000000000 R12: 0000000000000000 [ 35.332850] R13: ffff8880924ed768 R14: 0000000000000003 R15: ffff8880924e8040 [ 35.340120] ? vprintk_func+0x81/0x180 [ 35.343993] ? free_loaded_vmcs.cold+0x11/0x18 [ 35.348654] vmx_free_vcpu+0x1a9/0x320 [ 35.352524] kvm_arch_destroy_vm+0x2f6/0x600 [ 35.356918] ? mmu_notifier_unregister+0x2cd/0x380 [ 35.361829] kvm_put_kvm+0x457/0xc70 [ 35.365525] ? kvm_dev_ioctl+0x16e0/0x16e0 [ 35.369738] kvm_vm_release+0x3f/0x50 [ 35.373522] __fput+0x2ce/0x890 [ 35.376783] task_work_run+0x148/0x1c0 [ 35.380654] do_exit+0xbf3/0x2be0 [ 35.384090] ? futex_wake+0x159/0x480 [ 35.387875] ? mm_update_next_owner+0x650/0x650 [ 35.392525] ? get_signal+0x388/0x1f70 [ 35.396396] ? lock_downgrade+0x720/0x720 [ 35.400522] ? lock_acquire+0x170/0x3c0 [ 35.404481] do_group_exit+0x125/0x310 [ 35.408352] get_signal+0x3f2/0x1f70 [ 35.412063] do_signal+0x8f/0x1670 [ 35.415592] ? do_vfs_ioctl+0x110/0x12e0 [ 35.419646] ? setup_sigcontext+0x820/0x820 [ 35.423953] ? ioctl_preallocate+0x200/0x200 [ 35.428349] ? __fget+0x356/0x510 [ 35.431791] ? __se_sys_futex+0x28f/0x3b0 [ 35.435955] ? __se_sys_futex+0x298/0x3b0 [ 35.440085] ? do_futex+0x1880/0x1880 [ 35.443870] ? exit_to_usermode_loop+0x36/0x2a0 [ 35.448967] exit_to_usermode_loop+0x204/0x2a0 [ 35.453534] do_syscall_64+0x538/0x620 [ 35.457407] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 35.462580] RIP: 0033:0x7f0653de1729 [ 35.466277] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 35.485170] RSP: 002b:00007f0653d91308 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 35.492897] RAX: fffffffffffffe00 RBX: 00007f0653e6a408 RCX: 00007f0653de1729 [ 35.500155] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f0653e6a408 [ 35.507418] RBP: 00007f0653e6a400 R08: 0000000000000000 R09: 0000000000000000 [ 35.514677] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f0653e6a40c [ 35.521932] R13: 00007f0653e370b8 R14: 6d766b2f7665642f R15: 0000000000022000 [ 35.529617] Kernel Offset: disabled [ 35.533286] Rebooting in 86400 seconds..