[ OK ] Started Getty on tty2. [ OK ] Started Getty on tty1. [ OK ] Started Serial Getty on ttyS0. [ OK ] Reached target Login Prompts. [ OK ] Started OpenBSD Secure Shell server. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.116' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 67.560988][ T8469] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 67.618069][ T8469] ------------[ cut here ]------------ [ 67.623810][ T8469] WARNING: CPU: 0 PID: 8469 at arch/x86/kvm/x86.c:525 exception_type+0x98/0xb0 [ 67.633826][ T8469] Modules linked in: [ 67.637952][ T8469] CPU: 1 PID: 8469 Comm: syz-executor531 Not tainted 5.14.0-rc7-syzkaller #0 [ 67.647287][ T8469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 67.657969][ T8469] RIP: 0010:exception_type+0x98/0xb0 [ 67.663286][ T8469] Code: 31 ff 45 31 ed 44 89 e6 e8 25 75 69 00 45 85 e4 41 0f 95 c5 45 01 ed e8 d6 6d 69 00 44 89 e8 5b 41 5c 41 5d c3 e8 c8 6d 69 00 <0f> 0b e8 c1 6d 69 00 41 bd 03 00 00 00 5b 44 89 e8 41 5c 41 5d c3 [ 67.683074][ T8469] RSP: 0018:ffffc90000f1f8f0 EFLAGS: 00010293 [ 67.689348][ T8469] RAX: 0000000000000000 RBX: 00000000000000a2 RCX: 0000000000000000 [ 67.697396][ T8469] RDX: ffff888018461c40 RSI: ffffffff810c3b28 RDI: 0000000000000003 [ 67.705448][ T8469] RBP: ffff888020868000 R08: 000000000000001f R09: 00000000000000a2 [ 67.713433][ T8469] R10: ffffffff810c3aaa R11: 0000000000000006 R12: 00000000000000a2 [ 67.721638][ T8469] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000040 [ 67.729761][ T8469] FS: 000000000179c300(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000 [ 67.738770][ T8469] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 67.745427][ T8469] CR2: 00007fffd362aad8 CR3: 00000000182ef000 CR4: 00000000001526e0 [ 67.753404][ T8469] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 67.761417][ T8469] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 67.769507][ T8469] Call Trace: [ 67.772815][ T8469] x86_emulate_instruction+0xef6/0x1460 [ 67.778455][ T8469] ? mmio_info_in_cache+0x18b/0x540 [ 67.783674][ T8469] kvm_mmu_page_fault+0x2f0/0x1810 [ 67.788914][ T8469] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 67.795246][ T8469] ? __kvm_io_bus_write+0x2d6/0x390 [ 67.800467][ T8469] ? kvm_mmu_unprotect_page+0x360/0x360 [ 67.806071][ T8469] ? kvm_io_bus_write+0x13a/0x250 [ 67.811108][ T8469] ? __bpf_trace_kvm_dirty_ring_exit+0xc0/0xc0 [ 67.817326][ T8469] ? lock_release+0x720/0x720 [ 67.822017][ T8469] handle_ept_misconfig+0xdf/0x3e0 [ 67.827194][ T8469] ? vmentry_l1d_flush_set+0x330/0x330 [ 67.832671][ T8469] vmx_handle_exit+0x336/0x1800 [ 67.837667][ T8469] vcpu_enter_guest+0x2a1c/0x4430 [ 67.842814][ T8469] ? kvm_vcpu_reload_apic_access_page+0x70/0x70 [ 67.849128][ T8469] ? lock_release+0x720/0x720 [ 67.853821][ T8469] ? mark_held_locks+0x9f/0xe0 [ 67.858660][ T8469] ? kvm_arch_vcpu_ioctl_run+0x47d/0x1b20 [ 67.864448][ T8469] kvm_arch_vcpu_ioctl_run+0x47d/0x1b20 [ 67.870013][ T8469] kvm_vcpu_ioctl+0x49e/0xe50 [ 67.874742][ T8469] ? gfn_to_page_many_atomic+0x190/0x190 [ 67.880492][ T8469] ? find_held_lock+0x2d/0x110 [ 67.885353][ T8469] ? __context_tracking_exit+0xb8/0xe0 [ 67.890837][ T8469] ? lock_downgrade+0x6e0/0x6e0 [ 67.895941][ T8469] ? lock_downgrade+0x6e0/0x6e0 [ 67.900820][ T8469] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 67.907173][ T8469] ? gfn_to_page_many_atomic+0x190/0x190 [ 67.912830][ T8469] __x64_sys_ioctl+0x193/0x200 [ 67.917691][ T8469] do_syscall_64+0x35/0xb0 [ 67.922122][ T8469] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 67.928082][ T8469] RIP: 0033:0x441159 [ 67.931984][ T8469] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 67.951649][ T8469] RSP: 002b:00007fffd362c598 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 67.960140][ T8469] RAX: ffffffffffffffda RBX: 0000000000400488 RCX: 0000000000441159 [ 67.968187][ T8469] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 67.976253][ T8469] RBP: 0000000000404c50 R08: 0000000000400488 R09: 0000000000400488 [ 67.984397][ T8469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000404ce0 [ 67.992377][ T8469] R13: 0000000000000000 R14: 00000000004ae018 R15: 0000000000400488 [ 68.000468][ T8469] Kernel panic - not syncing: panic_on_warn set ... [ 68.007056][ T8469] CPU: 1 PID: 8469 Comm: syz-executor531 Not tainted 5.14.0-rc7-syzkaller #0 [ 68.015827][ T8469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 68.025874][ T8469] Call Trace: [ 68.029154][ T8469] dump_stack_lvl+0xcd/0x134 [ 68.033747][ T8469] panic+0x306/0x73d [ 68.037660][ T8469] ? __warn_printk+0xf3/0xf3 [ 68.042248][ T8469] ? __warn.cold+0x1a/0x44 [ 68.046666][ T8469] ? exception_type+0x98/0xb0 [ 68.051338][ T8469] __warn.cold+0x35/0x44 [ 68.055572][ T8469] ? exception_type+0x98/0xb0 [ 68.060334][ T8469] report_bug+0x1bd/0x210 [ 68.064664][ T8469] handle_bug+0x3c/0x60 [ 68.068818][ T8469] exc_invalid_op+0x14/0x40 [ 68.073326][ T8469] asm_exc_invalid_op+0x12/0x20 [ 68.078172][ T8469] RIP: 0010:exception_type+0x98/0xb0 [ 68.083455][ T8469] Code: 31 ff 45 31 ed 44 89 e6 e8 25 75 69 00 45 85 e4 41 0f 95 c5 45 01 ed e8 d6 6d 69 00 44 89 e8 5b 41 5c 41 5d c3 e8 c8 6d 69 00 <0f> 0b e8 c1 6d 69 00 41 bd 03 00 00 00 5b 44 89 e8 41 5c 41 5d c3 [ 68.103057][ T8469] RSP: 0018:ffffc90000f1f8f0 EFLAGS: 00010293 [ 68.109123][ T8469] RAX: 0000000000000000 RBX: 00000000000000a2 RCX: 0000000000000000 [ 68.117096][ T8469] RDX: ffff888018461c40 RSI: ffffffff810c3b28 RDI: 0000000000000003 [ 68.125062][ T8469] RBP: ffff888020868000 R08: 000000000000001f R09: 00000000000000a2 [ 68.133023][ T8469] R10: ffffffff810c3aaa R11: 0000000000000006 R12: 00000000000000a2 [ 68.141031][ T8469] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000040 [ 68.148996][ T8469] ? exception_type+0x1a/0xb0 [ 68.153677][ T8469] ? exception_type+0x98/0xb0 [ 68.158357][ T8469] x86_emulate_instruction+0xef6/0x1460 [ 68.164019][ T8469] ? mmio_info_in_cache+0x18b/0x540 [ 68.169225][ T8469] kvm_mmu_page_fault+0x2f0/0x1810 [ 68.174354][ T8469] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 68.180592][ T8469] ? __kvm_io_bus_write+0x2d6/0x390 [ 68.185973][ T8469] ? kvm_mmu_unprotect_page+0x360/0x360 [ 68.191532][ T8469] ? kvm_io_bus_write+0x13a/0x250 [ 68.196552][ T8469] ? __bpf_trace_kvm_dirty_ring_exit+0xc0/0xc0 [ 68.202705][ T8469] ? lock_release+0x720/0x720 [ 68.207382][ T8469] handle_ept_misconfig+0xdf/0x3e0 [ 68.212493][ T8469] ? vmentry_l1d_flush_set+0x330/0x330 [ 68.217948][ T8469] vmx_handle_exit+0x336/0x1800 [ 68.222803][ T8469] vcpu_enter_guest+0x2a1c/0x4430 [ 68.227829][ T8469] ? kvm_vcpu_reload_apic_access_page+0x70/0x70 [ 68.234071][ T8469] ? lock_release+0x720/0x720 [ 68.238757][ T8469] ? mark_held_locks+0x9f/0xe0 [ 68.243522][ T8469] ? kvm_arch_vcpu_ioctl_run+0x47d/0x1b20 [ 68.249238][ T8469] kvm_arch_vcpu_ioctl_run+0x47d/0x1b20 [ 68.254792][ T8469] kvm_vcpu_ioctl+0x49e/0xe50 [ 68.259463][ T8469] ? gfn_to_page_many_atomic+0x190/0x190 [ 68.265103][ T8469] ? find_held_lock+0x2d/0x110 [ 68.269867][ T8469] ? __context_tracking_exit+0xb8/0xe0 [ 68.275330][ T8469] ? lock_downgrade+0x6e0/0x6e0 [ 68.280363][ T8469] ? lock_downgrade+0x6e0/0x6e0 [ 68.285242][ T8469] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 68.291610][ T8469] ? gfn_to_page_many_atomic+0x190/0x190 [ 68.297247][ T8469] __x64_sys_ioctl+0x193/0x200 [ 68.302030][ T8469] do_syscall_64+0x35/0xb0 [ 68.306443][ T8469] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 68.312330][ T8469] RIP: 0033:0x441159 [ 68.316223][ T8469] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 68.335837][ T8469] RSP: 002b:00007fffd362c598 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 68.344246][ T8469] RAX: ffffffffffffffda RBX: 0000000000400488 RCX: 0000000000441159 [ 68.352218][ T8469] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 68.360187][ T8469] RBP: 0000000000404c50 R08: 0000000000400488 R09: 0000000000400488 [ 68.368690][ T8469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000404ce0 [ 68.376654][ T8469] R13: 0000000000000000 R14: 00000000004ae018 R15: 0000000000400488 [ 68.386251][ T8469] Kernel Offset: disabled [ 68.390667][ T8469] Rebooting in 86400 seconds..