[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   28.816345] kauditd_printk_skb: 7 callbacks suppressed
[   28.816356] audit: type=1800 audit(1545020434.556:29): pid=5866 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
[   28.848882] audit: type=1800 audit(1545020434.556:30): pid=5866 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   32.769426] sshd (6005) used greatest stack depth: 15744 bytes left
Warning: Permanently added '10.128.0.110' (ECDSA) to the list of known hosts.
executing program
[   39.502841] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details.
[   39.529544] kasan: CONFIG_KASAN_INLINE enabled
[   39.534225] kasan: GPF could be caused by NULL-ptr deref or user memory access
[   39.541693] general protection fault: 0000 [#1] PREEMPT SMP KASAN
[   39.547927] CPU: 0 PID: 6021 Comm: syz-executor309 Not tainted 4.20.0-rc7+ #278
[   39.555385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   39.564726] RIP: 0010:kvm_arch_vcpu_ioctl_run+0x5296/0x7320
[   39.570420] Code: 03 00 00 48 89 f8 48 c1 e8 03 42 80 3c 20 00 0f 85 b4 1e 00 00 49 8b 9f e0 03 00 00 48 8d bb 88 00 00 00 48 89 f8 48 c1 e8 03 <42> 80 3c 20 00 0f 85 8a 1e 00 00 48 8b 9b 88 00 00 00 48 8d bb d8
[   39.589317] RSP: 0018:ffff8881c2bf75a0 EFLAGS: 00010206
[   39.594664] RAX: 0000000000000011 RBX: 0000000000000000 RCX: ffffffff8110198b
[   39.601916] RDX: 0000000000000000 RSI: ffffffff81103a68 RDI: 0000000000000088
[   39.609171] RBP: ffff8881c2bf7940 R08: ffff8881b39c41c0 R09: 0000000000000008
[   39.616428] R10: 0000000000000028 R11: ffffffff810feb0f R12: dffffc0000000000
[   39.623682] R13: 0000000000000000 R14: ffffc90005dfbdb8 R15: ffff8881c2278080
[   39.630973] FS:  0000000000000000(0000) GS:ffff8881dae00000(0063) knlGS:000000000838b840
[   39.639186] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[   39.645069] CR2: 00007f5f34e27000 CR3: 00000001c20c6000 CR4: 00000000001426f0
[   39.652328] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   39.659576] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   39.666824] Call Trace:
[   39.669395]  ? kvm_vcpu_ioctl+0x1e5/0x1150
[   39.673615]  ? trace_hardirqs_on+0xbd/0x310
[   39.677938]  ? kvm_arch_vcpu_runnable+0x710/0x710
[   39.682769]  ? zap_class+0x640/0x640
[   39.686481]  ? kvm_vcpu_ioctl+0x28c/0x1150
[   39.690712]  ? lock_downgrade+0x900/0x900
[   39.694858]  ? kvm_arch_vcpu_postcreate+0xdf/0x290
[   39.699771]  ? find_held_lock+0x36/0x1c0
[   39.703817]  ? get_task_pid+0x1ea/0x3b0
[   39.707793]  ? lock_downgrade+0x900/0x900
[   39.711925]  ? check_preemption_disabled+0x48/0x280
[   39.716943]  ? rcu_read_unlock_special+0x1c0/0x1c0
[   39.721854]  ? kasan_check_read+0x11/0x20
[   39.725999]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[   39.731271]  ? rcu_softirq_qs+0x20/0x20
[   39.735233]  ? get_task_pid+0x211/0x3b0
[   39.739192]  ? find_get_pid+0x270/0x270
[   39.743155]  kvm_vcpu_ioctl+0x5c8/0x1150
[   39.747213]  ? kvm_vcpu_ioctl+0x5c8/0x1150
[   39.751450]  ? kvm_uevent_notify_change.part.32+0x450/0x450
[   39.757162]  ? kvm_dev_ioctl+0x18a/0x1ae0
[   39.761303]  ? save_stack+0xa9/0xd0
[   39.764914]  ? save_stack+0x43/0xd0
[   39.768522]  ? __kasan_slab_free+0x102/0x150
[   39.772912]  ? kmem_cache_free+0x83/0x290
[   39.777045]  ? do_sys_open+0x54d/0x700
[   39.780927]  ? __ia32_compat_sys_openat+0x98/0xf0
[   39.785755]  ? do_fast_syscall_32+0x34d/0xfb2
[   39.790233]  ? entry_SYSENTER_compat+0x70/0x7f
[   39.794800]  ? trace_hardirqs_off+0xb8/0x310
[   39.799196]  ? kasan_check_read+0x11/0x20
[   39.803328]  ? do_raw_spin_unlock+0xa7/0x330
[   39.807721]  ? trace_hardirqs_on+0x310/0x310
[   39.812157]  ? trace_hardirqs_off+0xb8/0x310
[   39.816588]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   39.822141]  ? check_preemption_disabled+0x48/0x280
[   39.827158]  ? rcu_lockdep_current_cpu_online+0x1a4/0x210
[   39.832681]  ? rcu_pm_notify+0xc0/0xc0
[   39.836554]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   39.842073]  ? __fget_light+0x2e9/0x430
[   39.846036]  kvm_vcpu_compat_ioctl+0x210/0x4a0
[   39.850603]  ? kvm_vcpu_ioctl+0x1150/0x1150
[   39.854923]  ? do_fast_syscall_32+0x150/0xfb2
[   39.859409]  ? lockdep_hardirqs_on+0x3bb/0x5b0
[   39.863973]  ? kvm_vcpu_ioctl+0x1150/0x1150
[   39.868277]  __ia32_compat_sys_ioctl+0x20e/0x630
[   39.873017]  do_fast_syscall_32+0x34d/0xfb2
[   39.877323]  ? do_int80_syscall_32+0x890/0x890
[   39.881890]  ? entry_SYSENTER_compat+0x68/0x7f
[   39.886460]  ? trace_hardirqs_off_caller+0xbb/0x310
[   39.891460]  ? syscall_return_slowpath+0x5e0/0x5e0
[   39.896418]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   39.901255]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   39.906085]  ? trace_hardirqs_on_caller+0x310/0x310
[   39.911084]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[   39.916082]  ? prepare_exit_to_usermode+0x291/0x3b0
[   39.921094]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   39.925920]  entry_SYSENTER_compat+0x70/0x7f
[   39.930307] RIP: 0023:0xf7fe9a29
[   39.933654] Code: 85 d2 74 02 89 0a 5b 5d c3 8b 04 24 c3 8b 14 24 c3 8b 3c 24 c3 90 90 90 90 90 90 90 90 90 90 90 90 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[   39.952537] RSP: 002b:00000000ffa98f0c EFLAGS: 00000207 ORIG_RAX: 0000000000000036
[   39.960234] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 000000000000ae80
[   39.967485] RDX: 0000000000000000 RSI: 0000000000000036 RDI: 0000000000000008
[   39.974736] RBP: 000000004008ae89 R08: 0000000000000000 R09: 0000000000000000
[   39.981987] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[   39.989236] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   39.996516] Modules linked in:
[   40.000254] ---[ end trace 7052aad2d3353ad7 ]---
[   40.005246] RIP: 0010:kvm_arch_vcpu_ioctl_run+0x5296/0x7320
[   40.010947] Code: 03 00 00 48 89 f8 48 c1 e8 03 42 80 3c 20 00 0f 85 b4 1e 00 00 49 8b 9f e0 03 00 00 48 8d bb 88 00 00 00 48 89 f8 48 c1 e8 03 <42> 80 3c 20 00 0f 85 8a 1e 00 00 48 8b 9b 88 00 00 00 48 8d bb d8
[   40.029866] RSP: 0018:ffff8881c2bf75a0 EFLAGS: 00010206
[   40.035243] RAX: 0000000000000011 RBX: 0000000000000000 RCX: ffffffff8110198b
[   40.042492] RDX: 0000000000000000 RSI: ffffffff81103a68 RDI: 0000000000000088
[   40.049775] RBP: ffff8881c2bf7940 R08: ffff8881b39c41c0 R09: 0000000000000008
[   40.057057] R10: 0000000000000028 R11: ffffffff810feb0f R12: dffffc0000000000
[   40.064309] R13: 0000000000000000 R14: ffffc90005dfbdb8 R15: ffff8881c2278080
[   40.071614] FS:  0000000000000000(0000) GS:ffff8881dae00000(0063) knlGS:000000000838b840
[   40.079873] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[   40.085998] CR2: 00007f5f34e27000 CR3: 00000001c20c6000 CR4: 00000000001426f0
[   40.093283] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   40.100567] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   40.107852] Kernel panic - not syncing: Fatal exception
[   40.114216] Kernel Offset: disabled
[   40.117860] Rebooting in 86400 seconds..