[ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty2. [ OK ] Started Getty on tty1. [ OK ] Started Serial Getty on ttyS0. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.1.113' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 67.365944][ T8370] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 67.413626][ T8370] general protection fault, probably for non-canonical address 0xdffffc0000000028: 0000 [#1] PREEMPT SMP KASAN [ 67.425369][ T8370] KASAN: null-ptr-deref in range [0x0000000000000140-0x0000000000000147] [ 67.433809][ T8370] CPU: 1 PID: 8370 Comm: syz-executor859 Not tainted 5.11.0-syzkaller #0 [ 67.442228][ T8370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 67.452286][ T8370] RIP: 0010:kvm_hv_irq_routing_update+0x230/0x460 [ 67.458819][ T8370] Code: 80 19 00 00 48 89 f8 48 c1 e8 03 80 3c 28 00 0f 85 ff 01 00 00 4d 8b ad 80 19 00 00 49 8d bd 40 01 00 00 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 06 0f 8e d2 01 00 00 45 0f b6 bd 40 01 00 00 [ 67.478474][ T8370] RSP: 0018:ffffc90001b3fac0 EFLAGS: 00010206 [ 67.484532][ T8370] RAX: 0000000000000028 RBX: ffff888012df5900 RCX: 0000000000000000 [ 67.492490][ T8370] RDX: ffff888022193780 RSI: ffffffff81174d43 RDI: 0000000000000140 [ 67.500456][ T8370] RBP: dffffc0000000000 R08: 0000000000000000 R09: ffffc900018819eb [ 67.508409][ T8370] R10: ffffffff81170f3e R11: 0000000000000000 R12: 0000000000000000 [ 67.516359][ T8370] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000001 [ 67.524321][ T8370] FS: 0000000000a73300(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000 [ 67.533242][ T8370] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 67.539807][ T8370] CR2: 0000557e8c876888 CR3: 0000000013c0b000 CR4: 00000000001526e0 [ 67.547758][ T8370] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 67.555708][ T8370] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 67.563657][ T8370] Call Trace: [ 67.566918][ T8370] kvm_set_irq_routing+0x69b/0x940 [ 67.572030][ T8370] kvm_vm_ioctl+0x12d0/0x2800 [ 67.576694][ T8370] ? tomoyo_path_number_perm+0x204/0x590 [ 67.582336][ T8370] ? lock_downgrade+0x6d0/0x6d0 [ 67.587170][ T8370] ? slab_free_freelist_hook+0x51/0x130 [ 67.592700][ T8370] ? kvm_unregister_device_ops+0x90/0x90 [ 67.598313][ T8370] ? tomoyo_path_number_perm+0x441/0x590 [ 67.603930][ T8370] ? kfree+0xdb/0x3b0 [ 67.607908][ T8370] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 67.614141][ T8370] ? tomoyo_path_number_perm+0x24e/0x590 [ 67.619755][ T8370] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 67.625546][ T8370] ? lock_is_held_type+0xd5/0x130 [ 67.630565][ T8370] ? fd_install+0x1e3/0x640 [ 67.635050][ T8370] ? __sanitizer_cov_trace_switch+0x63/0xf0 [ 67.640955][ T8370] ? __sanitizer_cov_trace_const_cmp2+0x22/0x80 [ 67.647186][ T8370] ? do_vfs_ioctl+0x27d/0x1090 [ 67.651948][ T8370] ? generic_block_fiemap+0x60/0x60 [ 67.657130][ T8370] ? kvm_dev_ioctl+0xdd/0x13a0 [ 67.661891][ T8370] ? kvm_put_kvm+0xb10/0xb10 [ 67.666463][ T8370] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 67.672689][ T8370] ? kvm_unregister_device_ops+0x90/0x90 [ 67.678322][ T8370] __x64_sys_ioctl+0x193/0x200 [ 67.683071][ T8370] do_syscall_64+0x2d/0x70 [ 67.687472][ T8370] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 67.693348][ T8370] RIP: 0033:0x43ef29 [ 67.697222][ T8370] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 67.716823][ T8370] RSP: 002b:00007ffe391eb808 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 67.725217][ T8370] RAX: ffffffffffffffda RBX: 0000000000400488 RCX: 000000000043ef29 [ 67.733171][ T8370] RDX: 0000000020000140 RSI: 000000004008ae6a RDI: 0000000000000004 [ 67.741122][ T8370] RBP: 0000000000402f10 R08: 0000000000400488 R09: 0000000000400488 [ 67.749085][ T8370] R10: 0000000000400488 R11: 0000000000000246 R12: 0000000000402fa0 [ 67.757038][ T8370] R13: 0000000000000000 R14: 00000000004ac018 R15: 0000000000400488 [ 67.766034][ T8370] Modules linked in: [ 67.770395][ T8370] ---[ end trace 2aa75ec1dd148710 ]--- [ 67.775863][ T8370] RIP: 0010:kvm_hv_irq_routing_update+0x230/0x460 [ 67.782349][ T8370] Code: 80 19 00 00 48 89 f8 48 c1 e8 03 80 3c 28 00 0f 85 ff 01 00 00 4d 8b ad 80 19 00 00 49 8d bd 40 01 00 00 48 89 f8 48 c1 e8 03 <0f> b6 04 28 84 c0 74 06 0f 8e d2 01 00 00 45 0f b6 bd 40 01 00 00 [ 67.802087][ T8370] RSP: 0018:ffffc90001b3fac0 EFLAGS: 00010206 [ 67.808189][ T8370] RAX: 0000000000000028 RBX: ffff888012df5900 RCX: 0000000000000000 [ 67.816876][ T8370] RDX: ffff888022193780 RSI: ffffffff81174d43 RDI: 0000000000000140 [ 67.824854][ T8370] RBP: dffffc0000000000 R08: 0000000000000000 R09: ffffc900018819eb [ 67.833249][ T8370] R10: ffffffff81170f3e R11: 0000000000000000 R12: 0000000000000000 [ 67.841556][ T8370] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000001 [ 67.849585][ T8370] FS: 0000000000a73300(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000 [ 67.858606][ T8370] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 67.865197][ T8370] CR2: 0000557e8c876888 CR3: 0000000013c0b000 CR4: 00000000001526e0 [ 67.873187][ T8370] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 67.881207][ T8370] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 67.889246][ T8370] Kernel panic - not syncing: Fatal exception [ 67.895763][ T8370] Kernel Offset: disabled [ 67.900089][ T8370] Rebooting in 86400 seconds..