INIT: Entering runlevel: 2
[[36minfo[39;49m] Using makefile-style concurrent boot in runlevel 2.
[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   22.202831] sshd (4389) used greatest stack depth: 16424 bytes left
Warning: Permanently added '10.128.0.41' (ECDSA) to the list of known hosts.
[   30.582356] kasan: CONFIG_KASAN_INLINE enabled
[   30.587113] kasan: GPF could be caused by NULL-ptr deref or user memory access
[   30.594484] general protection fault: 0000 [#1] SMP KASAN
[   30.600020] Dumping ftrace buffer:
[   30.603557]    (ftrace buffer empty)
[   30.607267] Modules linked in:
[   30.610469] CPU: 1 PID: 4434 Comm: syzkaller087285 Not tainted 4.16.0+ #3
[   30.617393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   30.626762] RIP: 0010:vmx_vcpu_run+0xa2f/0x25f0
[   30.631425] RSP: 0018:ffff8801b7d7f380 EFLAGS: 00010046
[   30.636790] RAX: dffffc0000000000 RBX: 0000000010000000 RCX: ffffffff811f62cf
[   30.644063] RDX: 0000000000000000 RSI: ffffffff811f62dc RDI: 0000000000000005
[   30.651333] RBP: ffff8801b8260140 R08: ffff8801b7dca180 R09: 0000000000000000
[   30.658603] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[   30.665878] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   30.673152] FS:  00007fd885018700(0000) GS:ffff8801db100000(0000) knlGS:0000000000000000
[   30.681378] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   30.687264] CR2: 0000000000000000 CR3: 00000001b9b05000 CR4: 00000000001426e0
[   30.694533] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   30.701798] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   30.709075] Call Trace:
[   30.711674]  ? debug_check_no_locks_freed+0x310/0x310
[   30.716873]  ? vmx_save_host_state+0xa60/0xa60
[   30.721469]  ? handle_vmfunc+0x9c0/0x9c0
[   30.725541]  ? vcpu_enter_guest+0x117a/0x6070
[   30.730042]  ? graph_lock+0x170/0x170
[   30.733841]  ? vmcs_load+0x139/0x180
[   30.737557]  ? crash_vmclear_local_loaded_vmcss+0x170/0x170
[   30.743272]  ? kvm_set_msr_common+0x2660/0x2660
[   30.747943]  ? find_held_lock+0x36/0x1c0
[   30.752008]  ? lock_downgrade+0x8e0/0x8e0
[   30.756155]  ? find_held_lock+0x36/0x1c0
[   30.760216]  ? get_cpu_entry_area+0xc/0x30
[   30.764452]  ? load_fixmap_gdt+0x111/0x180
[   30.768687]  ? load_direct_gdt+0x1c0/0x1c0
[   30.772930]  ? lock_downgrade+0x8e0/0x8e0
[   30.777081]  ? kasan_check_write+0x14/0x20
[   30.781320]  ? __mutex_unlock_slowpath+0x180/0x8a0
[   30.786246]  ? nested_vmx_setup_ctls_msrs+0xaf0/0xaf0
[   30.791442]  ? wait_for_completion+0x870/0x870
[   30.796028]  ? kick_process+0x110/0x110
[   30.800005]  ? kasan_check_read+0x11/0x20
[   30.804154]  ? rcu_is_watching+0x85/0x140
[   30.808304]  ? rcu_pm_notify+0xc0/0xc0
[   30.812198]  ? kvm_vcpu_ioctl+0x2ad/0x12e0
[   30.816431]  ? rcu_read_lock_sched_held+0x108/0x120
[   30.821447]  ? kfree+0x1e9/0x260
[   30.824817]  ? kvm_vcpu_ioctl+0x2b2/0x12e0
[   30.829050]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[   30.834744]  ? exit_robust_list+0x290/0x290
[   30.839048]  ? find_held_lock+0x36/0x1c0
[   30.843096]  ? lock_downgrade+0x8e0/0x8e0
[   30.847229]  ? kasan_check_read+0x11/0x20
[   30.851358]  ? rcu_is_watching+0x85/0x140
[   30.855487]  ? rcu_bh_force_quiescent_state+0x20/0x20
[   30.860661]  ? __fget+0x40c/0x650
[   30.864097]  ? expand_files.part.8+0x9a0/0x9a0
[   30.868659]  ? __fget_light+0x2ef/0x430
[   30.872615]  ? fget_raw+0x20/0x20
[   30.876056]  ? __sanitizer_cov_trace_switch+0x53/0x90
[   30.881229]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[   30.886926]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   30.892445]  ? do_vfs_ioctl+0x1f2/0x16a0
[   30.896488]  ? ioctl_preallocate+0x2e0/0x2e0
[   30.900877]  ? fget_raw+0x20/0x20
[   30.904321]  ? sockfd_lookup_light+0xc5/0x160
[   30.908799]  ? SyS_futex+0x3a4/0x56d
[   30.912496]  ? exit_to_usermode_loop+0x87/0x310
[   30.917148]  ? kasan_check_write+0x14/0x20
[   30.921362]  ? fput+0x1f/0x1a0
[   30.924538]  ? ksys_ioctl+0xbb/0xd0
[   30.928147]  ? SyS_ioctl+0x24/0x30
[   30.931667]  ? ksys_ioctl+0xd0/0xd0
[   30.935278]  ? do_syscall_64+0x29e/0x9d0
[   30.939336]  ? _raw_spin_unlock_irq+0x27/0x70
[   30.943815]  ? finish_task_switch+0x1ca/0x810
[   30.948293]  ? syscall_return_slowpath+0x5c0/0x5c0
[   30.953206]  ? syscall_return_slowpath+0x30f/0x5c0
[   30.958121]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[   30.963467]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   30.968292]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[   30.973635] Code: 00 00 00 10 89 de e8 d1 c7 57 00 85 db 0f 84 91 00 00 00 e8 b4 c6 57 00 48 8b 54 24 08 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 36 19 00 00 48 8b 04 24 48 8b 98 40 57 00 00 
[   30.992833] RIP: vmx_vcpu_run+0xa2f/0x25f0 RSP: ffff8801b7d7f380
[   30.998963] ---[ end trace 6f54c85d45fd385a ]---
[   30.998965] BUG: unable to handle kernel paging request at 0000000041b5e1f3
[   31.003701] Kernel panic - not syncing: Fatal exception
[   31.016135] PGD 1bab5f067 P4D 1bab5f067 PUD 0 
[   31.020708] Oops: 0000 [#2] SMP KASAN
[   31.024490] Dumping ftrace buffer:
[   31.028006]    (ftrace buffer empty)
[   31.031693] Modules linked in:
[   31.034872] CPU: 0 PID: 4423 Comm: syzkaller087285 Tainted: G      D           4.16.0+ #3
[   31.043164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   31.052502] RIP: 0010:vmx_vcpu_run+0xa3d/0x25f0
[   31.057146] RSP: 0018:ffff8801b5a4f380 EFLAGS: 00010046
[   31.062486] ==================================================================
[   31.069831] BUG: KASAN: stack-out-of-bounds in __show_regs.cold.7+0x4e/0x54a
[   31.076997] Read of size 8 at addr ffff8801b5a4f300 by task syzkaller087285/4423
[   31.084503] 
[   31.086115] CPU: 0 PID: 4423 Comm: syzkaller087285 Tainted: G      D           4.16.0+ #3
[   31.094409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   31.103743] Call Trace:
[   31.106306] 
[   31.107913] The buggy address belongs to the page:
[   31.112823] page:ffffea0006d693c0 count:0 mapcount:0 mapping:0000000000000000 index:0x0
[   31.120946] flags: 0x2fffc0000000000()
[   31.124820] raw: 02fffc0000000000 0000000000000000 0000000000000000 00000000ffffffff
[   31.132683] raw: 0000000000000000 ffffea0006d60101 0000000000000000 0000000000000000
[   31.140536] page dumped because: kasan: bad access detected
[   31.146223] 
[   31.147827] Memory state around the buggy address:
[   31.152735]  ffff8801b5a4f200: f2 f2 f2 f2 00 f2 f2 f2 f2 f2 f2 f2 00 f2 f2 f2
[   31.160076]  ffff8801b5a4f280: f3 f3 f3 f3 f2 f2 f8 f2 f2 f2 f2 f2 f2 f2 00 00
[   31.167416] >ffff8801b5a4f300: f2 f2 f3 f3 f3 f3 00 00 00 00 00 00 00 00 00 00
[   31.174749]                    ^
[   31.178096]  ffff8801b5a4f380: f1 f1 f1 f1 00 f2 f2 f2 f2 f2 f2 f2 00 f2 f2 f2
[   31.185436]  ffff8801b5a4f400: f2 f2 f2 f2 00 f2 f2 f2 f3 f3 f3 f3 00 00 00 00
[   31.192772] ==================================================================
[   32.075851] Shutting down cpus with NMI
[   32.080339] Dumping ftrace buffer:
[   32.083857]    (ftrace buffer empty)
[   32.087543] Kernel Offset: disabled
[   32.091152] Rebooting in 86400 seconds..