INIT: Entering runlevel: 2

[info] Using makefile-style concurrent boot in runlevel 2.
[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added 'ci-upstream-next-kasan-gce-3,10.128.0.56' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [   32.441863] kvm: KVM_SET_TSS_ADDR need to be called before entering vcpu
[   32.446526] usercopy: kernel memory overwrite attempt detected to ffff8801d1e29bd4 (kvm_vcpu) (1320 bytes)
[   32.447918] ------------[ cut here ]------------
[   32.448578] kernel BUG at mm/usercopy.c:84!
[   32.449171] invalid opcode: 0000 [#1] SMP KASAN
[   32.449807] Dumping ftrace buffer:
[   32.450281]    (ftrace buffer empty)
[   32.450777] Modules linked in:
[   32.451212] CPU: 1 PID: 2989 Comm: syzkaller242756 Not tainted 4.14.0-rc5-next-20171018+ #36
[   32.452330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   32.453547] task: ffff8801d1de8100 task.stack: ffff8801d1cb8000
[   32.454351] RIP: 0010:__check_object_size+0x3a2/0x4f0
[   32.455037] RSP: 0018:ffff8801d1cbf148 EFLAGS: 00010286
[   32.455745] RAX: 000000000000005e RBX: ffffffff8511a0e0 RCX: 0000000000000000
[   32.456698] RDX: 000000000000005e RSI: 1ffff1003a397de9 RDI: ffffed003a397e1d
[   32.457649] RBP: ffff8801d1cbf238 R08: 0000000000000001 R09: 0000000000000000
[   32.458599] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff8511a0a0
[   32.459550] R13: ffff8801d1e29bd4 R14: 0000000000000528 R15: ffffea0007478a00
[   32.460502] FS:  0000000001b2a880(0000) GS:ffff8801db300000(0000) knlGS:0000000000000000
[   32.461587] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   32.462360] CR2: 0000000020005ff0 CR3: 00000001d1d97000 CR4: 00000000001426e0
[   32.469597] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   32.476841] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   32.484075] Call Trace:
[   32.486629]  ? lock_release+0xa40/0xa40
[   32.490571]  ? check_stack_object+0x140/0x140
[   32.495032]  ? check_noncircular+0x20/0x20
[   32.499235]  ? __might_sleep+0x95/0x190
[   32.503178]  kvm_vcpu_ioctl_set_cpuid2+0x75/0x1a0
[   32.507988]  kvm_arch_vcpu_ioctl+0x1718/0x4710
[   32.512534]  ? find_held_lock+0x35/0x1d0
[   32.516564]  ? kvm_arch_vcpu_put+0x3e0/0x3e0
[   32.520938]  ? depot_save_stack+0x3b5/0x490
[   32.525233]  ? lock_downgrade+0x990/0x990
[   32.529366]  ? do_raw_spin_trylock+0x190/0x190
[   32.533923]  ? is_bpf_text_address+0xa4/0x120
[   32.538385]  ? kernel_text_address+0x102/0x140
[   32.542931]  ? __kernel_text_address+0xd/0x40
[   32.547391]  ? unwind_get_return_address+0x61/0xa0
[   32.552288]  ? trace_hardirqs_off+0xd/0x10
[   32.556487]  ? _raw_spin_unlock_irqrestore+0xa6/0xba
[   32.561555]  ? depot_save_stack+0x3b5/0x490
[   32.565843]  ? __vunmap+0x247/0x2e0
[   32.569433]  ? save_stack+0xa3/0xd0
[   32.573025]  ? lock_acquire+0x1d5/0x580
[   32.576971]  ? lock_acquire+0x1d5/0x580
[   32.580908]  ? vcpu_load+0x1c/0x70
[   32.584415]  ? lock_release+0xa40/0xa40
[   32.588355]  ? trace_event_raw_event_sched_switch+0x8a0/0x8a0
[   32.594205]  ? rcu_note_context_switch+0x710/0x710
[   32.599100]  ? __might_sleep+0x95/0x190
[   32.603038]  ? vcpu_load+0x1c/0x70
[   32.606542]  ? __mutex_lock+0x16f/0x19d0
[   32.610567]  ? vcpu_load+0x1c/0x70
[   32.614071]  ? vcpu_load+0x1c/0x70
[   32.617577]  ? trace_hardirqs_off+0xd/0x10
[   32.621782]  ? mutex_lock_io_nested+0x1880/0x1880
[   32.626590]  ? find_held_lock+0x35/0x1d0
[   32.630621]  ? __might_fault+0x110/0x1d0
[   32.634646]  ? lock_downgrade+0x990/0x990
[   32.638758]  ? vmx_vcpu_load+0x9c6/0xdd0
[   32.642791]  ? handle_invept+0x5f0/0x5f0
[   32.646818]  ? __might_sleep+0x95/0x190
[   32.650762]  ? kasan_check_read+0x11/0x20
[   32.654877]  ? _copy_to_user+0xa2/0xc0
[   32.658734]  ? kvm_arch_dev_ioctl+0xc7/0x3b0
[   32.663107]  ? kvm_vm_ioctl_check_extension+0x510/0x510
[   32.668436]  ? kvm_arch_vcpu_load+0x1c1/0x890
[   32.672895]  ? kvm_arch_vcpu_load+0x4b1/0x890
[   32.677355]  ? find_held_lock+0x35/0x1d0
[   32.681380]  ? kvm_arch_dev_ioctl+0x3b0/0x3b0
[   32.685841]  ? __hrtick_start+0x1d0/0x1d0
[   32.689954]  ? avc_has_extended_perms+0x6e5/0x12c0
[   32.694849]  ? vcpu_load+0x4b/0x70
[   32.698354]  kvm_vcpu_ioctl+0x240/0x1010
[   32.702382]  ? __kvm_gfn_to_hva_cache_init+0xbb0/0xbb0
[   32.707623]  ? is_bpf_text_address+0xa4/0x120
[   32.712086]  ? avc_has_extended_perms+0x7fa/0x12c0
[   32.716977]  ? unwind_get_return_address+0x6e/0xa0
[   32.721873]  ? avc_ss_reset+0x110/0x110
[   32.725814]  ? putname+0xee/0x130
[   32.729232]  ? save_stack+0xa3/0xd0
[   32.732823]  ? save_stack+0x43/0xd0
[   32.736413]  ? kasan_slab_free+0x71/0xc0
[   32.740439]  ? kmem_cache_free+0x77/0x280
[   32.744547]  ? putname+0xee/0x130
[   32.747963]  ? do_sys_open+0x31b/0x6d0
[   32.751815]  ? __lock_is_held+0xb6/0x140
[   32.755849]  ? trace_event_raw_event_sched_switch+0x8a0/0x8a0
[   32.761699]  ? rcu_note_context_switch+0x710/0x710
[   32.766593]  ? get_unused_fd_flags+0x190/0x190
[   32.771140]  ? __kvm_gfn_to_hva_cache_init+0xbb0/0xbb0
[   32.776379]  do_vfs_ioctl+0x1b1/0x1520
[   32.780229]  ? _cond_resched+0x14/0x30
[   32.784080]  ? ioctl_preallocate+0x2b0/0x2b0
[   32.788453]  ? selinux_capable+0x40/0x40
[   32.792478]  ? putname+0xf3/0x130
[   32.795896]  ? do_sys_open+0x320/0x6d0
[   32.799753]  ? security_file_ioctl+0x89/0xb0
[   32.804138]  SyS_ioctl+0x8f/0xc0
[   32.807472]  entry_SYSCALL_64_fastpath+0x1f/0xbe
[   32.812189] RIP: 0033:0x442f77
[   32.815344] RSP: 002b:00007ffdcf2fe028 EFLAGS: 00000217 ORIG_RAX: 0000000000000010
[   32.823017] RAX: ffffffffffffffda RBX: 00007ffdcf2fe700 RCX: 0000000000442f77
[   32.830253] RDX: 00007ffdcf2fe700 RSI: 000000004008ae90 RDI: 0000000000000005
[   32.837487] RBP: 0000000000000082 R08: 0000000000000001 R09: 0000000000000040
[   32.844723] R10: 0000000000000000 R11: 0000000000000217 R12: 0000000000404090
[   32.851958] R13: 0000000000404120 R14: 0000000000000000 R15: 0000000000000000
[   32.859209] Code: 48 0f 44 da e8 70 f0 c3 ff 48 8b 85 28 ff ff ff 4d 89 f1 4c 89 e9 4c 89 e2 48 89 de 48 c7 c7 a0 a1 11 85 49 89 c0 e8 c3 fb ad ff <0f> 0b 48 c7 c0 60 9f 11 85 eb 96 48 c7 c0 a0 9f 11 85 eb 8d 48 
[   32.878272] RIP: __check_object_size+0x3a2/0x4f0 RSP: ffff8801d1cbf148
[   32.884994] ---[ end trace 5a7a2c8de75c9704 ]---
[   32.889862] Kernel panic - not syncing: Fatal exception
[   32.895229] Dumping ftrace buffer:
[   32.898737]    (ftrace buffer empty)
[   32.902414] Kernel Offset: disabled
[   32.906006] Rebooting in 86400 seconds..