[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 36.253803] audit: type=1800 audit(1539222918.976:25): pid=5639 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 36.277260] audit: type=1800 audit(1539222918.986:26): pid=5639 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 36.299644] audit: type=1800 audit(1539222918.986:27): pid=5639 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.10.15' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 46.616213] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details. [ 46.637318] ------------[ cut here ]------------ [ 46.642095] kernel BUG at arch/x86/kvm/x86.c:353! [ 46.646971] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 46.652312] CPU: 0 PID: 5794 Comm: syz-executor135 Not tainted 4.19.0-rc7+ #54 [ 46.659656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 46.668991] RIP: 0010:kvm_spurious_fault+0x9/0x10 [ 46.673827] Code: 45 10 50 e8 e9 44 7c 00 58 5a 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 0f 1f 84 00 00 00 00 00 55 48 89 e5 e8 97 03 73 00 <0f> 0b 0f 1f 44 00 00 55 48 89 e5 41 57 41 56 41 55 41 89 fd 41 54 [ 46.692733] RSP: 0018:ffff8801d373edc0 EFLAGS: 00010093 [ 46.698087] RAX: ffff8801d3d121c0 RBX: 1ffff1003a6e7dbc RCX: ffffffff81385bcc [ 46.705332] RDX: 0000000000000000 RSI: ffffffff810bd1f9 RDI: ffff8801d373ee00 [ 46.712578] RBP: ffff8801d373edc0 R08: ffff8801d3d121c0 R09: fffff520003cea47 [ 46.719825] R10: fffff520003cea47 R11: ffffc90001e7523b R12: ffff8801d373ee40 [ 46.727173] R13: dffffc0000000000 R14: ffff8801bba7f000 R15: ffff8801d373ee00 [ 46.734425] FS: 00000000020e8880(0000) GS:ffff8801dae00000(0000) knlGS:0000000000000000 [ 46.742633] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 46.748499] CR2: ffff8801d373ee00 CR3: 00000001bfd37000 CR4: 00000000001426f0 [ 46.755750] Call Trace: [ 46.758344] kvm_fastop_exception+0x50b/0x5455 [ 46.762900] ? vmcs_clear+0x94/0x100 [ 46.766588] ? vmx_set_cr3+0x7a0/0x7a0 [ 46.770450] ? kasan_check_write+0x14/0x20 [ 46.774687] __loaded_vmcs_clear+0x2d6/0x690 [ 46.779090] ? trace_hardirqs_off+0xb8/0x310 [ 46.783493] ? vmx_set_virtual_apic_mode+0x790/0x790 [ 46.788579] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 46.794095] ? check_preemption_disabled+0x48/0x200 [ 46.799113] ? vmx_set_virtual_apic_mode+0x790/0x790 [ 46.804190] generic_exec_single+0x373/0x5f0 [ 46.808575] ? smp_call_on_cpu+0x560/0x560 [ 46.812794] ? kvm_mmu_free_roots+0x2c8/0x730 [ 46.817268] ? lock_downgrade+0x900/0x900 [ 46.821409] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 46.826953] ? check_preemption_disabled+0x48/0x200 [ 46.831976] smp_call_function_single+0x1b2/0x660 [ 46.836799] ? kvm_arch_vcpu_put+0x1d2/0x420 [ 46.841190] ? vmx_set_virtual_apic_mode+0x790/0x790 [ 46.846270] ? generic_exec_single+0x5f0/0x5f0 [ 46.850837] ? hardware_disable+0x530/0x530 [ 46.855134] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 46.860648] ? tg_nop+0x10/0x10 [ 46.863931] ? native_set_debugreg+0x31/0x40 [ 46.868349] free_loaded_vmcs+0x13c/0x1b0 [ 46.872486] vmx_free_vcpu+0x204/0x300 [ 46.876348] kvm_arch_destroy_vm+0x365/0x7c0 [ 46.880733] ? check_memory_region+0x1a3/0x1b0 [ 46.885298] ? kvm_arch_sync_events+0x30/0x30 [ 46.889770] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 46.895312] ? mmu_notifier_unregister+0x474/0x600 [ 46.900252] ? debug_check_no_obj_freed+0x305/0x58d [ 46.905252] ? __mmu_notifier_register+0x30/0x30 [ 46.909984] ? __free_pages+0x10a/0x190 [ 46.913932] ? free_unref_page+0x960/0x960 [ 46.918154] kvm_put_kvm+0x6c8/0xff0 [ 46.921857] ? kvm_write_guest_cached+0x40/0x40 [ 46.926509] ? kvm_irqfd_release+0xd1/0x120 [ 46.930808] ? lock_downgrade+0x900/0x900 [ 46.934936] ? kasan_check_write+0x14/0x20 [ 46.939147] ? do_raw_spin_lock+0xc1/0x200 [ 46.943359] ? kvm_irqfd_release+0xdd/0x120 [ 46.947670] ? kvm_irqfd_release+0xdd/0x120 [ 46.951991] ? kvm_put_kvm+0xff0/0xff0 [ 46.955864] kvm_vm_release+0x42/0x50 [ 46.959652] __fput+0x385/0xa30 [ 46.962924] ? get_max_files+0x20/0x20 [ 46.966791] ? trace_hardirqs_on+0xbd/0x310 [ 46.971085] ? kasan_check_read+0x11/0x20 [ 46.975224] ? ___might_sleep+0x1ed/0x300 [ 46.979358] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 46.984801] ? arch_local_save_flags+0x40/0x40 [ 46.989369] ? kasan_check_write+0x14/0x20 [ 46.993600] ? do_raw_spin_lock+0xc1/0x200 [ 46.997828] ____fput+0x15/0x20 [ 47.001086] task_work_run+0x1e8/0x2a0 [ 47.004951] ? task_work_cancel+0x240/0x240 [ 47.009291] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 47.014822] ? switch_task_namespaces+0x9d/0xd0 [ 47.019488] do_exit+0x1ad7/0x2610 [ 47.023022] ? mm_update_next_owner+0x990/0x990 [ 47.027667] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 47.033236] ? vcpu_put+0x4b/0x60 [ 47.036681] ? kvm_arch_vcpu_ioctl_run+0xb01/0x16e0 [ 47.041694] ? kfree+0x1bf/0x230 [ 47.045040] ? kvm_vcpu_ioctl+0x2a1/0x1150 [ 47.049281] ? kvm_vcpu_block+0x1030/0x1030 [ 47.053626] ? is_bpf_text_address+0xd3/0x170 [ 47.058098] ? kernel_text_address+0x79/0xf0 [ 47.062483] ? __kernel_text_address+0xd/0x40 [ 47.066956] ? unwind_get_return_address+0x61/0xa0 [ 47.071879] ? __save_stack_trace+0x8d/0xf0 [ 47.076197] ? save_stack+0xa9/0xd0 [ 47.079804] ? save_stack+0x43/0xd0 [ 47.083416] ? __kasan_slab_free+0x102/0x150 [ 47.087813] ? kasan_slab_free+0xe/0x10 [ 47.091768] ? putname+0xf2/0x130 [ 47.095275] ? __x64_sys_openat+0x9d/0x100 [ 47.099617] ? do_syscall_64+0x1b9/0x820 [ 47.103690] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 47.109250] ? trace_hardirqs_off+0xb8/0x310 [ 47.113639] ? kasan_check_read+0x11/0x20 [ 47.117873] ? do_raw_spin_unlock+0xa7/0x2f0 [ 47.122303] ? trace_hardirqs_on+0x310/0x310 [ 47.126697] ? __bpf_trace_initcall_finish+0x2a/0x30 [ 47.131787] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 47.137316] ? check_preemption_disabled+0x48/0x200 [ 47.142317] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 47.147939] ? user_return_notifier_unregister+0x267/0x3c0 [ 47.153553] ? trace_hardirqs_on+0xbd/0x310 [ 47.158008] ? fire_user_return_notifiers+0xd1/0x160 [ 47.163193] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 47.168752] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 47.174290] ? smack_file_ioctl+0x210/0x3c0 [ 47.178593] ? fget_raw+0x20/0x20 [ 47.182045] ? trace_hardirqs_off+0xb8/0x310 [ 47.186435] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 47.191430] ? do_syscall_64+0x6be/0x820 [ 47.195545] ? trace_hardirqs_on+0x310/0x310 [ 47.199973] do_group_exit+0x177/0x440 [ 47.203849] ? trace_hardirqs_on+0xbd/0x310 [ 47.208212] ? __ia32_sys_exit+0x50/0x50 [ 47.212278] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 47.217742] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 47.223273] ? ksys_ioctl+0x81/0xd0 [ 47.226886] __x64_sys_exit_group+0x3e/0x50 [ 47.231186] do_syscall_64+0x1b9/0x820 [ 47.235057] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 47.240409] ? syscall_return_slowpath+0x5e0/0x5e0 [ 47.245323] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 47.250148] ? trace_hardirqs_on_caller+0x310/0x310 [ 47.255158] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 47.260162] ? prepare_exit_to_usermode+0x291/0x3b0 [ 47.265158] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 47.269984] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 47.275157] RIP: 0033:0x43f328 [ 47.278330] Code: 50 02 48 89 54 24 18 0f b6 50 02 83 e2 df 80 fa 50 75 8e 48 83 c0 03 41 bd 09 00 00 00 48 89 44 24 18 8d 41 fd 85 c0 89 44 24 <14> 0f 84 70 ff ff ff 48 8b 44 24 18 0f b6 10 48 8d 70 01 48 89 74 [ 47.297354] RSP: 002b:00007ffd60a95018 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 47.305058] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000043f328 [ 47.312402] RDX: 0000000000000000 RSI: 000000000000003c RDI: 0000000000000000 [ 47.319656] RBP: 00000000004bf3e8 R08: 00000000000000e7 R09: ffffffffffffffd0 [ 47.326912] R10: 6c616b7a79732f2e R11: 0000000000000246 R12: 0000000000000001 [ 47.334453] R13: 00000000006d1180 R14: 0000000000000000 R15: 0000000000000000 [ 47.341716] Modules linked in: [ 47.344967] ---[ end trace 31451759bc4fae62 ]--- [ 47.349722] RIP: 0010:kvm_spurious_fault+0x9/0x10 [ 47.354560] Code: 45 10 50 e8 e9 44 7c 00 58 5a 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 0f 1f 84 00 00 00 00 00 55 48 89 e5 e8 97 03 73 00 <0f> 0b 0f 1f 44 00 00 55 48 89 e5 41 57 41 56 41 55 41 89 fd 41 54 [ 47.373548] RSP: 0018:ffff8801d373edc0 EFLAGS: 00010093 [ 47.378939] RAX: ffff8801d3d121c0 RBX: 1ffff1003a6e7dbc RCX: ffffffff81385bcc [ 47.386190] RDX: 0000000000000000 RSI: ffffffff810bd1f9 RDI: ffff8801d373ee00 [ 47.393440] RBP: ffff8801d373edc0 R08: ffff8801d3d121c0 R09: fffff520003cea47 [ 47.400703] R10: fffff520003cea47 R11: ffffc90001e7523b R12: ffff8801d373ee40 [ 47.407953] R13: dffffc0000000000 R14: ffff8801bba7f000 R15: ffff8801d373ee00 [ 47.415204] FS: 00000000020e8880(0000) GS:ffff8801dae00000(0000) knlGS:0000000000000000 [ 47.423416] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 47.429402] CR2: ffff8801d373ee00 CR3: 00000001bfd37000 CR4: 00000000001426f0 [ 47.436652] Kernel panic - not syncing: Fatal exception [ 47.442873] Kernel Offset: disabled [ 47.446529] Rebooting in 86400 seconds..