[ 0.000000][ T0] Linux version 5.6.0-syzkaller (syzkaller@syzkaller) (gcc version 9.0.0 20181231 (experimental) (GCC)) #0 SMP PREEMPT now [ 0.000000][ T0] Command line: BOOT_IMAGE=/vmlinuz root=/dev/sda1 console=ttyS0 earlyprintk=serial vsyscall=native rodata=n oops=panic panic_on_warn=1 nmi_watchdog=panic panic=86400 security=selinux lsm=lockdown,yama,safesetid,integrity,selinux,tomoyo ima_policy=tcb workqueue.watchdog_thresh=140 kvm-intel.nested=1 nf-conntrack-ftp.ports=20000 nf-conntrack-tftp.ports=20000 nf-conntrack-sip.ports=20000 nf-conntrack-irc.ports=20000 nf-conntrack-sane.ports=20000 vivid.n_devs=16 vivid.multiplanar=1,2,1,2,1,2,1,2,1,2,1,2,1,2,1,2 netrom.nr_ndevs=16 rose.rose_ndevs=16 spec_store_bypass_disable=prctl numa=fake=2 nopcid dummy_hcd.num=8 binder.debug_mask=0 [ 0.000000][ T0] KERNEL supported cpus: [ 0.000000][ T0] Intel GenuineIntel [ 0.000000][ T0] AMD AuthenticAMD [ 0.000000][ T0] Centaur CentaurHauls [ 0.000000][ T0] x86/fpu: Supporting XSAVE feature 0x001: 'x87 floating point registers' [ 0.000000][ T0] x86/fpu: Supporting XSAVE feature 0x002: 'SSE registers' [ 0.000000][ T0] x86/fpu: Supporting XSAVE feature 0x004: 'AVX registers' [ 0.000000][ T0] x86/fpu: Supporting XSAVE feature 0x020: 'AVX-512 opmask' [ 0.000000][ T0] x86/fpu: Supporting XSAVE feature 0x040: 'AVX-512 Hi256' [ 0.000000][ T0] x86/fpu: Supporting XSAVE feature 0x080: 'AVX-512 ZMM_Hi256' [ 0.000000][ T0] x86/fpu: xstate_offset[2]: 576, xstate_sizes[2]: 256 [ 0.000000][ T0] x86/fpu: xstate_offset[5]: 1088, xstate_sizes[5]: 64 [ 0.000000][ T0] x86/fpu: xstate_offset[6]: 1152, xstate_sizes[6]: 512 [ 0.000000][ T0] x86/fpu: xstate_offset[7]: 1664, xstate_sizes[7]: 1024 [ 0.000000][ T0] x86/fpu: Enabled xstate features 0xe7, context size is 2688 bytes, using 'standard' format. [ 0.000000][ T0] BIOS-provided physical RAM map: [ 0.000000][ T0] BIOS-e820: [mem 0x0000000000000000-0x000000000009fbff] usable [ 0.000000][ T0] BIOS-e820: [mem 0x000000000009fc00-0x000000000009ffff] reserved [ 0.000000][ T0] BIOS-e820: [mem 0x00000000000f0000-0x00000000000fffff] reserved [ 0.000000][ T0] BIOS-e820: [mem 0x0000000000100000-0x000000007ffdcfff] usable [ 0.000000][ T0] BIOS-e820: [mem 0x000000007ffdd000-0x000000007fffffff] reserved [ 0.000000][ T0] BIOS-e820: [mem 0x00000000b0000000-0x00000000bfffffff] reserved [ 0.000000][ T0] BIOS-e820: [mem 0x00000000fed1c000-0x00000000fed1ffff] reserved [ 0.000000][ T0] BIOS-e820: [mem 0x00000000feffc000-0x00000000feffffff] reserved [ 0.000000][ T0] BIOS-e820: [mem 0x00000000fffc0000-0x00000000ffffffff] reserved [ 0.000000][ T0] printk: bootconsole [earlyser0] enabled [ 0.000000][ T0] Malformed early option 'vsyscall' [ 0.000000][ T0] nopcid: PCID feature disabled [ 0.000000][ T0] NX (Execute Disable) protection: active [ 0.000000][ T0] SMBIOS 2.8 present. [ 0.000000][ T0] DMI: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014 [ 0.000000][ T0] Hypervisor detected: KVM [ 0.000000][ T0] kvm-clock: Using msrs 4b564d01 and 4b564d00 [ 0.000152][ T0] kvm-clock: cpu 0, msr bb9b001, primary cpu clock [ 0.000152][ T0] kvm-clock: using sched offset of 27781469283 cycles [ 0.037359][ T0] clocksource: kvm-clock: mask: 0xffffffffffffffff max_cycles: 0x1cd42e4dffb, max_idle_ns: 881590591483 ns [ 0.171055][ T0] tsc: Detected 2000.196 MHz processor [ 0.247531][ T0] last_pfn = 0x7ffdd max_arch_pfn = 0x400000000 [ 0.302651][ T0] x86/PAT: Configuration [0-7]: WB WC UC- UC WB WP UC- WT [ 0.366488][ T0] found SMP MP-table at [mem 0x000f5a40-0x000f5a4f] [ 0.407455][ T0] check: Scanning 1 areas for low memory corruption [ 0.455564][ T0] ACPI: Early table checksum verification disabled [ 0.491814][ T0] ACPI: RSDP 0x00000000000F5870 000014 (v00 BOCHS ) [ 0.522145][ T0] ACPI: RSDT 0x000000007FFE1F9D 000040 (v01 BOCHS BXPCRSDT 00000001 BXPC 00000001) [ 0.585451][ T0] ACPI: FACP 0x000000007FFE1860 0000F4 (v03 BOCHS BXPCFACP 00000001 BXPC 00000001) [ 0.642135][ T0] ACPI: DSDT 0x000000007FFDF040 002820 (v01 BOCHS BXPCDSDT 00000001 BXPC 00000001) [ 0.679892][ T0] ACPI: FACS 0x000000007FFDF000 000040 [ 0.702912][ T0] ACPI: APIC 0x000000007FFE1954 0000B0 (v01 BOCHS BXPCAPIC 00000001 BXPC 00000001) [ 0.745345][ T0] ACPI: HPET 0x000000007FFE1A04 000038 (v01 BOCHS BXPCHPET 00000001 BXPC 00000001) [ 0.795073][ T0] ACPI: SRAT 0x000000007FFE1A3C 000178 (v01 BOCHS BXPCSRAT 00000001 BXPC 00000001) [ 0.862996][ T0] ACPI: MCFG 0x000000007FFE1BB4 00003C (v01 BOCHS BXPCMCFG 00000001 BXPC 00000001) [ 0.918716][ T0] ACPI: SSDT 0x000000007FFE1BF0 0002CD (v01 BOCHS NVDIMM 00000001 BXPC 00000001) [ 0.965836][ T0] ACPI: NFIT 0x000000007FFE1EBD 0000E0 (v01 BOCHS BXPCNFIT 00000001 BXPC 00000001) [ 1.037346][ T0] SRAT: PXM 0 -> APIC 0x00 -> Node 0 [ 1.056873][ T0] SRAT: PXM 0 -> APIC 0x01 -> Node 0 [ 1.076722][ T0] SRAT: PXM 0 -> APIC 0x02 -> Node 0 [ 1.097013][ T0] SRAT: PXM 0 -> APIC 0x03 -> Node 0 [ 1.120743][ T0] SRAT: PXM 1 -> APIC 0x04 -> Node 1 [ 1.140947][ T0] SRAT: PXM 1 -> APIC 0x05 -> Node 1 [ 1.162622][ T0] SRAT: PXM 1 -> APIC 0x06 -> Node 1 [ 1.183524][ T0] SRAT: PXM 1 -> APIC 0x07 -> Node 1 [ 1.204332][ T0] ACPI: SRAT: Node 0 PXM 0 [mem 0x00000000-0x0009ffff] [ 1.229063][ T0] ACPI: SRAT: Node 0 PXM 0 [mem 0x00100000-0x3fffffff] [ 1.252697][ T0] ACPI: SRAT: Node 1 PXM 1 [mem 0x40000000-0x7fffffff] [ 1.274090][ T0] ACPI: SRAT: Node 1 PXM 1 [mem 0x100000000-0x57fffffff] hotplug [ 1.312608][ T0] NUMA: Node 0 [mem 0x00000000-0x0009ffff] + [mem 0x00100000-0x3fffffff] -> [mem 0x00000000-0x3fffffff] [ 1.366099][ T0] Faking node 0 at [mem 0x0000000000000000-0x000000003fffffff] (1024MB) [ 1.416687][ T0] Faking node 1 at [mem 0x0000000040000000-0x000000007ffdcfff] (1023MB) [ 1.459807][ T0] NODE_DATA(0) allocated [mem 0x3fffb000-0x3fffffff] [ 1.491541][ T0] NODE_DATA(1) allocated [mem 0x7ffd7000-0x7ffdbfff] [ 1.648061][ T0] Zone ranges: [ 1.661907][ T0] DMA [mem 0x0000000000001000-0x0000000000ffffff] [ 1.687983][ T0] DMA32 [mem 0x0000000001000000-0x000000007ffdcfff] [ 1.714065][ T0] Normal empty [ 1.724760][ T0] Device empty [ 1.733935][ T0] Movable zone start for each node [ 1.747858][ T0] Early memory node ranges [ 1.760008][ T0] node 0: [mem 0x0000000000001000-0x000000000009efff] [ 1.779809][ T0] node 0: [mem 0x0000000000100000-0x000000003fffffff] [ 1.801181][ T0] node 1: [mem 0x0000000040000000-0x000000007ffdcfff] [ 1.827777][ T0] Zeroed struct page in unavailable ranges: 133 pages [ 1.827806][ T0] Initmem setup node 0 [mem 0x0000000000001000-0x000000003fffffff] [ 1.889958][ T0] Initmem setup node 1 [mem 0x0000000040000000-0x000000007ffdcfff] [ 3.900283][ T0] kasan: KernelAddressSanitizer initialized [ 3.945857][ T0] ACPI: PM-Timer IO Port: 0x608 [ 3.966942][ T0] ACPI: LAPIC_NMI (acpi_id[0xff] dfl dfl lint[0x1]) [ 3.996537][ T0] IOAPIC[0]: apic_id 0, version 17, address 0xfec00000, GSI 0-23 [ 4.022838][ T0] ACPI: INT_SRC_OVR (bus 0 bus_irq 0 global_irq 2 dfl dfl) [ 4.048500][ T0] ACPI: INT_SRC_OVR (bus 0 bus_irq 5 global_irq 5 high level) [ 4.070152][ T0] ACPI: INT_SRC_OVR (bus 0 bus_irq 9 global_irq 9 high level) [ 4.095640][ T0] ACPI: INT_SRC_OVR (bus 0 bus_irq 10 global_irq 10 high level) [ 4.120580][ T0] ACPI: INT_SRC_OVR (bus 0 bus_irq 11 global_irq 11 high level) [ 4.140748][ T0] Using ACPI (MADT) for SMP configuration information [ 4.175615][ T0] ACPI: HPET id: 0x8086a201 base: 0xfed00000 [ 4.213645][ T0] smpboot: Allowing 8 CPUs, 4 hotplug CPUs [ 4.248195][ T0] KVM setup pv remote TLB flush [ 4.267123][ T0] PM: hibernation: Registered nosave memory: [mem 0x00000000-0x00000fff] [ 4.300553][ T0] PM: hibernation: Registered nosave memory: [mem 0x0009f000-0x0009ffff] [ 4.329339][ T0] PM: hibernation: Registered nosave memory: [mem 0x000a0000-0x000effff] [ 4.355384][ T0] PM: hibernation: Registered nosave memory: [mem 0x000f0000-0x000fffff] [ 4.384875][ T0] [mem 0xc0000000-0xfed1bfff] available for PCI devices [ 4.413036][ T0] Booting paravirtualized kernel on KVM [ 4.441858][ T0] clocksource: refined-jiffies: mask: 0xffffffff max_cycles: 0xffffffff, max_idle_ns: 19112604462750000 ns [ 4.609215][ T0] setup_percpu: NR_CPUS:64 nr_cpumask_bits:64 nr_cpu_ids:8 nr_node_ids:2 [ 4.703327][ T0] percpu: Embedded 67 pages/cpu s233544 r8192 d32696 u1048576 [ 4.758679][ T0] KVM setup async PF for cpu 0 [ 4.783101][ T0] kvm-stealtime: cpu 0, msr 2ce22a40 [ 4.817348][ T0] PV qspinlock hash table entries: 256 (order: 0, 4096 bytes, linear) [ 4.868386][ T0] Built 2 zonelists, mobility grouping on. Total pages: 515942 [ 4.908917][ T0] Policy zone: DMA32 [ 4.930001][ T0] Kernel command line: BOOT_IMAGE=/vmlinuz root=/dev/sda1 console=ttyS0 earlyprintk=serial vsyscall=native rodata=n oops=panic panic_on_warn=1 nmi_watchdog=panic panic=86400 security=selinux lsm=lockdown,yama,safesetid,integrity,selinux,tomoyo ima_policy=tcb workqueue.watchdog_thresh=140 kvm-intel.nested=1 nf-conntrack-ftp.ports=20000 nf-conntrack-tftp.ports=20000 nf-conntrack-sip.ports=20000 nf-conntrack-irc.ports=20000 nf-conntrack-sane.ports=20000 vivid.n_devs=16 vivid.multiplanar=1,2,1,2,1,2,1,2,1,2,1,2,1,2,1,2 netrom.nr_ndevs=16 rose.rose_ndevs=16 spec_store_bypass_disable=prctl numa=fake=2 nopcid dummy_hcd.num=8 binder.debug_mask=0 [ 5.172492][ T0] mem auto-init: stack:off, heap alloc:on, heap free:off [ 6.030468][ T0] Memory: 1505664K/2096620K available (114697K kernel code, 17033K rwdata, 21276K rodata, 2756K init, 25164K bss, 590956K reserved, 0K cma-reserved) [ 6.200883][ T0] Running RCU self tests [ 6.219705][ T0] rcu: Preemptible hierarchical RCU implementation. [ 6.245786][ T0] rcu: RCU lockdep checking is enabled. [ 6.279273][ T0] rcu: RCU restricting CPUs from NR_CPUS=64 to nr_cpu_ids=8. [ 6.329135][ T0] rcu: RCU callback double-/use-after-free debug enabled. [ 6.372564][ T0] Tasks RCU enabled. [ 6.392889][ T0] rcu: RCU calculated value of scheduler-enlistment delay is 10 jiffies. [ 6.423294][ T0] rcu: Adjusting geometry for rcu_fanout_leaf=16, nr_cpu_ids=8 [ 6.496261][ T0] NR_IRQS: 4352, nr_irqs: 488, preallocated irqs: 16 [ 6.553349][ T0] random: get_random_bytes called from start_kernel+0x516/0x8a1 with crng_init=0 [ 7.110895][ T0] Console: colour VGA+ 80x25 [ 7.173696][ T0] printk: console [ttyS0] enabled [ 7.173696][ T0] printk: console [ttyS0] enabled [ 7.226073][ T0] printk: bootconsole [earlyser0] disabled [ 7.226073][ T0] printk: bootconsole [earlyser0] disabled [ 7.291369][ T0] Lock dependency validator: Copyright (c) 2006 Red Hat, Inc., Ingo Molnar [ 7.345424][ T0] ... MAX_LOCKDEP_SUBCLASSES: 8 [ 7.380491][ T0] ... MAX_LOCK_DEPTH: 48 [ 7.414985][ T0] ... MAX_LOCKDEP_KEYS: 8192 [ 7.445862][ T0] ... CLASSHASH_SIZE: 4096 [ 7.478001][ T0] ... MAX_LOCKDEP_ENTRIES: 32768 [ 7.508471][ T0] ... MAX_LOCKDEP_CHAINS: 65536 [ 7.537238][ T0] ... CHAINHASH_SIZE: 32768 [ 7.572768][ T0] memory used by lock dependency info: 6301 kB [ 7.619438][ T0] memory used for stack traces: 4224 kB [ 7.657031][ T0] per task-struct memory footprint: 1920 bytes [ 7.700262][ T0] mempolicy: Enabling automatic NUMA balancing. Configure with numa_balancing= or the kernel.numa_balancing sysctl [ 7.772735][ T0] ACPI: Core revision 20200214 [ 7.833172][ T0] clocksource: hpet: mask: 0xffffffff max_cycles: 0xffffffff, max_idle_ns: 19112604467 ns [ 7.928409][ T0] APIC: Switch to symmetric I/O mode setup [ 7.980457][ T0] x2apic enabled [ 8.018526][ T0] Switched APIC routing to physical x2apic. [ 8.051527][ T0] KVM setup pv IPIs [ 8.194160][ T0] ..TIMER: vector=0x30 apic1=0 pin1=2 apic2=-1 pin2=-1 [ 8.230832][ T0] clocksource: tsc-early: mask: 0xffffffffffffffff max_cycles: 0x1cd4e75f6d2, max_idle_ns: 440795251066 ns [ 8.312483][ T0] Calibrating delay loop (skipped) preset value.. 4000.39 BogoMIPS (lpj=20001960) [ 8.338662][ T0] pid_max: default: 32768 minimum: 301 [ 8.368802][ T0] LSM: Security Framework initializing [ 8.379493][ T0] LSM: security= is ignored because it is superseded by lsm= [ 8.390062][ T0] Yama: becoming mindful. [ 8.412874][ T0] SELinux: Initializing. [ 8.436489][ T0] *** VALIDATE selinux *** [ 8.440056][ T0] TOMOYO Linux initialized [ 8.496448][ T0] Dentry cache hash table entries: 262144 (order: 9, 2097152 bytes, vmalloc) [ 8.530653][ T0] Inode-cache hash table entries: 131072 (order: 8, 1048576 bytes, vmalloc) [ 8.540357][ T0] Mount-cache hash table entries: 4096 (order: 3, 32768 bytes, vmalloc) [ 8.549699][ T0] Mountpoint-cache hash table entries: 4096 (order: 3, 32768 bytes, vmalloc) [ 8.582996][ T0] *** VALIDATE tmpfs *** [ 8.662853][ T0] *** VALIDATE proc *** [ 8.713378][ T0] *** VALIDATE cgroup *** [ 8.728827][ T0] *** VALIDATE cgroup2 *** [ 8.796838][ T0] x86/cpu: User Mode Instruction Prevention (UMIP) activated [ 8.835444][ T0] Last level iTLB entries: 4KB 0, 2MB 0, 4MB 0 [ 8.848611][ T0] Last level dTLB entries: 4KB 0, 2MB 0, 4MB 0, 1GB 0 [ 8.872643][ T0] Spectre V1 : Mitigation: usercopy/swapgs barriers and __user pointer sanitization [ 8.889270][ T0] Spectre V2 : Spectre mitigation: kernel not compiled with retpoline; no mitigation available! [ 8.889507][ T0] Speculative Store Bypass: Mitigation: Speculative Store Bypass disabled via prctl [ 8.919031][ T0] TAA: Mitigation: Clear CPU buffers [ 8.928610][ T0] MDS: Mitigation: Clear CPU buffers [ 9.086426][ T0] Freeing SMP alternatives memory: 96K [ 9.414877][ T1] smpboot: CPU0: Intel(R) Xeon(R) CPU @ 2.00GHz (family: 0x6, model: 0x55, stepping: 0x3) [ 9.495552][ T1] Performance Events: unsupported p6 CPU model 85 no PMU driver, software events only. [ 9.533770][ T1] rcu: Hierarchical SRCU implementation. [ 9.574606][ T1] NMI watchdog: Perf NMI watchdog permanently disabled [ 9.625318][ T1] smp: Bringing up secondary CPUs ... [ 9.670508][ T1] x86: Booting SMP configuration: [ 9.678838][ T1] .... node #0, CPUs: #1 [ 1.663149][ T0] kvm-clock: cpu 1, msr bb9b041, secondary cpu clock [ 9.809636][ T15] KVM setup async PF for cpu 1 [ 9.809636][ T15] kvm-stealtime: cpu 1, msr 2cf22a40 [ 9.913227][ T1] MDS CPU bug present and SMT on, data leak possible. See https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/mds.html for more details. [ 9.919098][ T1] TAA CPU bug present and SMT on, data leak possible. See https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/tsx_async_abort.html for more details. [ 9.975706][ T1] #2 [ 1.663149][ T0] kvm-clock: cpu 2, msr bb9b081, secondary cpu clock [ 10.118585][ T20] KVM setup async PF for cpu 2 [ 10.118585][ T20] kvm-stealtime: cpu 2, msr 2d022a40 [ 10.219467][ T1] #3 [ 1.663149][ T0] kvm-clock: cpu 3, msr bb9b0c1, secondary cpu clock [ 10.374806][ T25] KVM setup async PF for cpu 3 [ 10.378584][ T25] kvm-stealtime: cpu 3, msr 2d122a40 [ 10.481715][ T1] smp: Brought up 2 nodes, 4 CPUs [ 10.489252][ T1] smpboot: Max logical packages: 2 [ 10.498945][ T1] smpboot: Total of 4 processors activated (16001.56 BogoMIPS) [ 10.630775][ T1] devtmpfs: initialized [ 10.678584][ T1] x86/mm: Memory block size: 128MB [ 10.901830][ T1] clocksource: jiffies: mask: 0xffffffff max_cycles: 0xffffffff, max_idle_ns: 19112604462750000 ns [ 10.908584][ T33] kworker/u17:1 (33) used greatest stack depth: 27320 bytes left [ 10.940494][ T1] futex hash table entries: 2048 (order: 6, 262144 bytes, vmalloc) [ 10.988778][ T1] xor: automatically using best checksumming function avx [ 11.070444][ T1] PM: RTC time: 23:19:01, date: 2020-04-01 [ 11.086124][ T1] thermal_sys: Registered thermal governor 'step_wise' [ 11.086235][ T1] thermal_sys: Registered thermal governor 'user_space' [ 11.143645][ T1] NET: Registered protocol family 16 [ 11.185167][ T1] audit: initializing netlink subsys (disabled) [ 11.207555][ T38] audit: type=2000 audit(1585783138.653:1): state=initialized audit_enabled=0 res=1 [ 11.299443][ T1] cpuidle: using governor menu [ 11.332441][ T1] ACPI: bus type PCI registered [ 11.385377][ T1] dca service started, version 1.12.1 [ 11.427380][ T1] PCI: MMCONFIG for domain 0000 [bus 00-ff] at [mem 0xb0000000-0xbfffffff] (base 0xb0000000) [ 11.501108][ T1] PCI: MMCONFIG at [mem 0xb0000000-0xbfffffff] reserved in E820 [ 12.174448][ T1] PCI: Using configuration type 1 for base access [ 12.347751][ T197] kworker/u17:0 (197) used greatest stack depth: 26992 bytes left [ 12.932199][ T1] HugeTLB registered 2.00 MiB page size, pre-allocated 0 pages [ 13.370933][ T1] cryptd: max_cpu_qlen set to 1000 [ 13.993571][ T1] raid6: avx512x4 gen() 11753 MB/s [ 14.211179][ T1] raid6: avx512x4 xor() 4782 MB/s [ 14.410762][ T1] raid6: avx512x2 gen() 10011 MB/s [ 14.628280][ T1] raid6: avx512x2 xor() 4932 MB/s [ 14.818941][ T1] raid6: avx512x1 gen() 7135 MB/s [ 14.998724][ T1] raid6: avx512x1 xor() 3032 MB/s [ 15.181366][ T1] raid6: avx2x4 gen() 9929 MB/s [ 15.370968][ T1] raid6: avx2x4 xor() 4770 MB/s [ 15.571962][ T1] raid6: avx2x2 gen() 6134 MB/s [ 15.776161][ T1] raid6: avx2x2 xor() 2943 MB/s [ 15.977225][ T1] raid6: avx2x1 gen() 3712 MB/s [ 16.181141][ T1] raid6: avx2x1 xor() 1470 MB/s [ 16.406661][ T1] raid6: sse2x4 gen() 4565 MB/s [ 16.614085][ T1] raid6: sse2x4 xor() 2204 MB/s [ 16.822538][ T1] raid6: sse2x2 gen() 2842 MB/s [ 17.018584][ T1] raid6: sse2x2 xor() 1385 MB/s [ 17.248285][ T1] raid6: sse2x1 gen() 1710 MB/s [ 17.480569][ T1] raid6: sse2x1 xor() 655 MB/s [ 17.488866][ T1] raid6: using algorithm avx512x4 gen() 11753 MB/s [ 17.498997][ T1] raid6: .... xor() 4782 MB/s, rmw enabled [ 17.509484][ T1] raid6: using avx512x2 recovery algorithm [ 17.814406][ T1] ACPI: Added _OSI(Module Device) [ 17.823055][ T1] ACPI: Added _OSI(Processor Device) [ 17.830071][ T1] ACPI: Added _OSI(3.0 _SCP Extensions) [ 17.839330][ T1] ACPI: Added _OSI(Processor Aggregator Device) [ 17.850103][ T1] ACPI: Added _OSI(Linux-Dell-Video) [ 17.858928][ T1] ACPI: Added _OSI(Linux-Lenovo-NV-HDMI-Audio) [ 17.868881][ T1] ACPI: Added _OSI(Linux-HPI-Hybrid-Graphics) [ 18.053771][ T1] ACPI: 2 ACPI AML tables successfully acquired and loaded [ 18.330770][ T1] ACPI: Interpreter enabled [ 18.358584][ T1] ACPI: (supports S0 S3 S4 S5) [ 18.366090][ T1] ACPI: Using IOAPIC for interrupt routing [ 18.389732][ T1] PCI: Using host bridge windows from ACPI; if necessary, use "pci=nocrs" and report a bug [ 18.416086][ T1] ACPI: Enabled 3 GPEs in block 00 to 3F [ 18.816484][ T1] ACPI: PCI Root Bridge [PCI0] (domain 0000 [bus 00-ff]) [ 18.823773][ T1] acpi PNP0A08:00: _OSC: OS supports [ExtendedConfig ASPM ClockPM Segments MSI HPX-Type3] [ 18.854291][ T1] acpi PNP0A08:00: _OSC: platform does not support [LTR] [ 18.864206][ T1] acpi PNP0A08:00: _OSC: OS now controls [PCIeHotplug PME AER PCIeCapability] [ 18.908584][ T1] PCI host bridge to bus 0000:00 [ 18.919133][ T1] pci_bus 0000:00: Unknown NUMA node; performance will be reduced [ 18.929092][ T1] pci_bus 0000:00: root bus resource [io 0x0000-0x0cf7 window] [ 18.939016][ T1] pci_bus 0000:00: root bus resource [io 0x0d00-0xffff window] [ 18.948926][ T1] pci_bus 0000:00: root bus resource [mem 0x000a0000-0x000bffff window] [ 18.959036][ T1] pci_bus 0000:00: root bus resource [mem 0x80000000-0xafffffff window] [ 18.968994][ T1] pci_bus 0000:00: root bus resource [mem 0xc0000000-0xfebfffff window] [ 18.979138][ T1] pci_bus 0000:00: root bus resource [mem 0x580000000-0xd7fffffff window] [ 18.989156][ T1] pci_bus 0000:00: root bus resource [bus 00-ff] [ 19.014435][ T1] pci 0000:00:00.0: [8086:29c0] type 00 class 0x060000 [ 19.097459][ T1] pci 0000:00:01.0: [1af4:1050] type 00 class 0x030000 [ 19.208584][ T1] pci 0000:00:01.0: reg 0x10: [mem 0xfe000000-0xfe7fffff pref] [ 19.348584][ T1] pci 0000:00:01.0: reg 0x18: [mem 0xfe800000-0xfe803fff 64bit pref] [ 19.588584][ T1] pci 0000:00:01.0: reg 0x20: [mem 0xfebf4000-0xfebf4fff] [ 19.698584][ T1] pci 0000:00:01.0: reg 0x30: [mem 0xfebe0000-0xfebeffff pref] [ 20.098584][ T1] pci 0000:00:02.0: [8086:100e] type 00 class 0x020000 [ 20.126608][ T1] pci 0000:00:02.0: reg 0x10: [mem 0xfebc0000-0xfebdffff] [ 20.136931][ T1] pci 0000:00:02.0: reg 0x14: [io 0xc600-0xc63f] [ 20.162495][ T1] pci 0000:00:02.0: reg 0x30: [mem 0xfeb40000-0xfeb7ffff pref] [ 20.197703][ T1] pci 0000:00:03.0: [1af4:1000] type 00 class 0x020000 [ 20.213924][ T1] pci 0000:00:03.0: reg 0x10: [io 0xc680-0xc69f] [ 20.234021][ T1] pci 0000:00:03.0: reg 0x14: [mem 0xfebf5000-0xfebf5fff] [ 20.263175][ T1] pci 0000:00:03.0: reg 0x20: [mem 0xfe804000-0xfe807fff 64bit pref] [ 20.276440][ T1] pci 0000:00:03.0: reg 0x30: [mem 0xfeb80000-0xfebbffff pref] [ 20.341669][ T1] pci 0000:00:04.0: [1274:5000] type 00 class 0x040100 [ 20.356572][ T1] pci 0000:00:04.0: reg 0x10: [io 0xc400-0xc4ff] [ 20.403350][ T1] pci 0000:00:05.0: [8086:2415] type 00 class 0x040100 [ 20.417090][ T1] pci 0000:00:05.0: reg 0x10: [io 0xc000-0xc3ff] [ 20.424191][ T1] pci 0000:00:05.0: reg 0x14: [io 0xc500-0xc5ff] [ 20.468084][ T1] pci 0000:00:06.0: [8086:2668] type 00 class 0x040300 [ 20.476190][ T1] pci 0000:00:06.0: reg 0x10: [mem 0xfebf0000-0xfebf3fff] [ 20.523923][ T1] pci 0000:00:07.0: [1af4:1009] type 00 class 0x000200 [ 20.541182][ T1] pci 0000:00:07.0: reg 0x10: [io 0xc6a0-0xc6bf] [ 20.554454][ T1] pci 0000:00:07.0: reg 0x14: [mem 0xfebf6000-0xfebf6fff] [ 20.572953][ T1] pci 0000:00:07.0: reg 0x20: [mem 0xfe808000-0xfe80bfff 64bit pref] [ 20.606218][ T1] pci 0000:00:1d.0: [8086:2934] type 00 class 0x0c0300 [ 20.619693][ T1] pci 0000:00:1d.0: reg 0x20: [io 0xc6c0-0xc6df] [ 20.639591][ T1] pci 0000:00:1d.1: [8086:2935] type 00 class 0x0c0300 [ 20.660520][ T1] pci 0000:00:1d.1: reg 0x20: [io 0xc6e0-0xc6ff] [ 20.678023][ T1] pci 0000:00:1d.2: [8086:2936] type 00 class 0x0c0300 [ 20.697986][ T1] pci 0000:00:1d.2: reg 0x20: [io 0xc700-0xc71f] [ 20.708371][ T1] pci 0000:00:1d.7: [8086:293a] type 00 class 0x0c0320 [ 20.712084][ T1] pci 0000:00:1d.7: reg 0x10: [mem 0xfebf7000-0xfebf7fff] [ 20.732859][ T1] pci 0000:00:1f.0: [8086:2918] type 00 class 0x060100 [ 20.759660][ T1] pci 0000:00:1f.0: quirk: [io 0x0600-0x067f] claimed by ICH6 ACPI/GPIO/TCO [ 20.775103][ T1] pci 0000:00:1f.0: quirk_ich7_lpc+0x0/0x70 took 19531 usecs [ 20.797561][ T1] pci 0000:00:1f.2: [8086:2922] type 00 class 0x010601 [ 20.821923][ T1] pci 0000:00:1f.2: reg 0x20: [io 0xc720-0xc73f] [ 20.831548][ T1] pci 0000:00:1f.2: reg 0x24: [mem 0xfebf8000-0xfebf8fff] [ 20.852570][ T1] pci 0000:00:1f.3: [8086:2930] type 00 class 0x0c0500 [ 20.874237][ T1] pci 0000:00:1f.3: reg 0x20: [io 0x0700-0x073f] [ 20.995216][ T1] ACPI: PCI Interrupt Link [LNKA] (IRQs 5 *10 11) [ 21.004598][ T1] ACPI: PCI Interrupt Link [LNKB] (IRQs 5 *10 11) [ 21.012031][ T1] ACPI: PCI Interrupt Link [LNKC] (IRQs 5 10 *11) [ 21.022033][ T1] ACPI: PCI Interrupt Link [LNKD] (IRQs 5 10 *11) [ 21.032530][ T1] ACPI: PCI Interrupt Link [LNKE] (IRQs 5 *10 11) [ 21.042253][ T1] ACPI: PCI Interrupt Link [LNKF] (IRQs 5 *10 11) [ 21.052033][ T1] ACPI: PCI Interrupt Link [LNKG] (IRQs 5 10 *11) [ 21.061654][ T1] ACPI: PCI Interrupt Link [LNKH] (IRQs 5 10 *11) [ 21.070591][ T1] ACPI: PCI Interrupt Link [GSIA] (IRQs *16) [ 21.079355][ T1] ACPI: PCI Interrupt Link [GSIB] (IRQs *17) [ 21.089217][ T1] ACPI: PCI Interrupt Link [GSIC] (IRQs *18) [ 21.099193][ T1] ACPI: PCI Interrupt Link [GSID] (IRQs *19) [ 21.109950][ T1] ACPI: PCI Interrupt Link [GSIE] (IRQs *20) [ 21.119173][ T1] ACPI: PCI Interrupt Link [GSIF] (IRQs *21) [ 21.129071][ T1] ACPI: PCI Interrupt Link [GSIG] (IRQs *22) [ 21.139262][ T1] ACPI: PCI Interrupt Link [GSIH] (IRQs *23) [ 21.308584][ T1] iommu: Default domain type: Translated [ 21.346698][ T1] pci 0000:00:01.0: vgaarb: setting as boot VGA device [ 21.348584][ T1] pci 0000:00:01.0: vgaarb: VGA device added: decodes=io+mem,owns=io+mem,locks=none [ 21.353767][ T1] pci 0000:00:01.0: vgaarb: bridge control possible [ 21.359695][ T1] vgaarb: loaded [ 21.448385][ T1] SCSI subsystem initialized [ 21.501010][ T1] ACPI: bus type USB registered [ 21.523432][ T1] usbcore: registered new interface driver usbfs [ 21.531294][ T1] usbcore: registered new interface driver hub [ 21.540218][ T1] usbcore: registered new device driver usb [ 21.563430][ T1] mc: Linux media interface: v0.10 [ 21.569210][ T1] videodev: Linux video capture interface: v2.00 [ 21.586866][ T1] pps_core: LinuxPPS API ver. 1 registered [ 21.596208][ T1] pps_core: Software ver. 5.3.6 - Copyright 2005-2007 Rodolfo Giometti <giometti@linux.it> [ 21.603379][ T1] PTP clock support registered [ 21.621441][ T1] EDAC MC: Ver: 3.0.0 [ 21.675289][ T1] Advanced Linux Sound Architecture Driver Initialized. [ 21.701049][ T1] PCI: Using ACPI for IRQ routing [ 24.517259][ T1] Bluetooth: Core ver 2.22 [ 24.541639][ T1] NET: Registered protocol family 31 [ 24.569117][ T1] Bluetooth: HCI device and connection manager initialized [ 24.603136][ T1] Bluetooth: HCI socket layer initialized [ 24.628904][ T1] Bluetooth: L2CAP socket layer initialized [ 24.659694][ T1] Bluetooth: SCO socket layer initialized [ 24.679952][ T1] NET: Registered protocol family 8 [ 24.698733][ T1] NET: Registered protocol family 20 [ 24.725884][ T1] NetLabel: Initializing [ 24.738724][ T1] NetLabel: domain hash size = 128 [ 24.758691][ T1] NetLabel: protocols = UNLABELED CIPSOv4 CALIPSO [ 24.786707][ T1] NetLabel: unlabeled traffic allowed by default [ 24.827581][ T1] nfc: nfc_init: NFC Core ver 0.1 [ 24.848585][ T1] NET: Registered protocol family 39 [ 24.887845][ T1] hpet0: at MMIO 0xfed00000, IRQs 2, 8, 0 [ 24.908829][ T1] hpet0: 3 comparators, 64-bit 100.000000 MHz counter [ 24.952111][ T1] clocksource: Switched to clocksource kvm-clock [ 28.818755][ T1] *** VALIDATE bpf *** [ 28.884143][ T1] VFS: Disk quotas dquot_6.6.0 [ 28.934126][ T1] VFS: Dquot-cache hash table entries: 512 (order 0, 4096 bytes) [ 29.061000][ T1] FS-Cache: Loaded [ 29.089695][ T1] *** VALIDATE ramfs *** [ 29.120154][ T1] *** VALIDATE hugetlbfs *** [ 29.179266][ T1] CacheFiles: Loaded [ 29.206879][ T1] TOMOYO: 2.6.0 [ 29.222381][ T1] Mandatory Access Control activated. [ 29.262957][ T1] pnp: PnP ACPI init [ 29.358409][ T1] pnp: PnP ACPI: found 6 devices [ 29.654490][ T1] clocksource: acpi_pm: mask: 0xffffff max_cycles: 0xffffff, max_idle_ns: 2085701024 ns [ 29.727001][ T1] pci_bus 0000:00: resource 4 [io 0x0000-0x0cf7 window] [ 29.779545][ T1] pci_bus 0000:00: resource 5 [io 0x0d00-0xffff window] [ 29.837898][ T1] pci_bus 0000:00: resource 6 [mem 0x000a0000-0x000bffff window] [ 29.899809][ T1] pci_bus 0000:00: resource 7 [mem 0x80000000-0xafffffff window] [ 29.954941][ T1] pci_bus 0000:00: resource 8 [mem 0xc0000000-0xfebfffff window] [ 30.014945][ T1] pci_bus 0000:00: resource 9 [mem 0x580000000-0xd7fffffff window] [ 30.094213][ T1] NET: Registered protocol family 2 [ 30.210084][ T1] tcp_listen_portaddr_hash hash table entries: 1024 (order: 4, 81920 bytes, vmalloc) [ 30.323583][ T1] TCP established hash table entries: 16384 (order: 5, 131072 bytes, vmalloc) [ 30.420902][ T1] TCP bind hash table entries: 16384 (order: 8, 1179648 bytes, vmalloc) [ 30.495264][ T1] TCP: Hash tables configured (established 16384 bind 16384) [ 30.621326][ T1] UDP hash table entries: 1024 (order: 5, 163840 bytes, vmalloc) [ 30.695164][ T1] UDP-Lite hash table entries: 1024 (order: 5, 163840 bytes, vmalloc) [ 30.802005][ T1] NET: Registered protocol family 1 [ 30.907850][ T1] RPC: Registered named UNIX socket transport module. [ 30.978312][ T1] RPC: Registered udp transport module. [ 31.048490][ T1] RPC: Registered tcp transport module. [ 31.111852][ T1] RPC: Registered tcp NFSv4.1 backchannel transport module. [ 31.207739][ T1] NET: Registered protocol family 44 [ 31.267566][ T1] pci 0000:00:01.0: Video device with shadowed ROM at [mem 0x000c0000-0x000dffff] [ 31.355793][ T1] pci 0000:00:01.0: pci_fixup_video+0x0/0x270 took 87240 usecs [ 31.511284][ T1] PCI Interrupt Link [GSIA] enabled at IRQ 16 [ 31.668031][ T1] pci 0000:00:1d.0: quirk_usb_early_handoff+0x0/0xfdf took 200692 usecs [ 31.783852][ T1] PCI Interrupt Link [GSIB] enabled at IRQ 17 [ 31.874020][ T1] pci 0000:00:1d.1: quirk_usb_early_handoff+0x0/0xfdf took 110344 usecs [ 31.957291][ T1] PCI Interrupt Link [GSIC] enabled at IRQ 18 [ 32.030116][ T1] pci 0000:00:1d.2: quirk_usb_early_handoff+0x0/0xfdf took 85383 usecs [ 32.123445][ T1] PCI Interrupt Link [GSID] enabled at IRQ 19 [ 32.217248][ T1] pci 0000:00:1d.7: quirk_usb_early_handoff+0x0/0xfdf took 109904 usecs [ 32.282425][ T1] PCI: CLS 0 bytes, default 64 [ 32.405414][ T1] PCI-DMA: Using software bounce buffering for IO (SWIOTLB) [ 32.471174][ T1] software IO TLB: mapped [mem 0x7ac00000-0x7ec00000] (64MB) [ 32.573255][ T1] kvm: no hardware support [ 32.607205][ T1] has_svm: not amd or hygon [ 32.631559][ T1] kvm: no hardware support [ 32.658793][ T1] clocksource: tsc: mask: 0xffffffffffffffff max_cycles: 0x1cd4e75f6d2, max_idle_ns: 440795251066 ns [ 32.720460][ T1] clocksource: Switched to clocksource tsc [ 32.760810][ T1] mce: Machine check injector initialized [ 32.846572][ T1] check: Scanning for low memory corruption every 60 seconds [ 33.437539][ T1] Initialise system trusted keyrings [ 33.486385][ T1] workingset: timestamp_bits=40 max_order=19 bucket_order=0 [ 33.522989][ T1] zbud: loaded [ 33.573460][ T1] DLM installed [ 33.602301][ T1] squashfs: version 4.0 (2009/01/31) Phillip Lougher [ 33.646109][ T1] FS-Cache: Netfs 'nfs' registered for caching [ 33.676775][ T1] *** VALIDATE nfs *** [ 33.695474][ T1] *** VALIDATE nfs4 *** [ 33.711092][ T1] NFS: Registering the id_resolver key type [ 33.730737][ T1] Key type id_resolver registered [ 33.749081][ T1] Key type id_legacy registered [ 33.769428][ T1] nfs4filelayout_init: NFSv4 File Layout Driver Registering... [ 33.802652][ T1] Installing knfsd (copyright (C) 1996 okir@monad.swb.de). [ 33.853293][ T1] FS-Cache: Netfs 'cifs' registered for caching [ 33.881128][ T1] Key type cifs.spnego registered [ 33.897555][ T1] Key type cifs.idmap registered [ 33.913842][ T1] ntfs: driver 2.1.32 [Flags: R/W]. [ 33.943703][ T1] fuse: init (API version 7.31) [ 33.972196][ T1] *** VALIDATE fuseblk *** [ 33.989901][ T1] *** VALIDATE fuse *** [ 34.015780][ T1] JFS: nTxBlock = 8192, nTxLock = 65536 [ 34.199885][ T1] SGI XFS with ACLs, security attributes, realtime, quota, no debug enabled [ 34.290432][ T1] *** VALIDATE xfs *** [ 34.322070][ T1] 9p: Installing v9fs 9p2000 file system support [ 34.363674][ T1] FS-Cache: Netfs '9p' registered for caching [ 34.401267][ T1] ocfs2: Registered cluster interface o2cb [ 34.443539][ T1] ocfs2: Registered cluster interface user [ 34.487445][ T1] OCFS2 User DLM kernel interface loaded [ 34.558514][ T1] *** VALIDATE gfs2 *** [ 34.590939][ T1] gfs2: GFS2 installed [ 34.632299][ T1] FS-Cache: Netfs 'ceph' registered for caching [ 34.686348][ T1] ceph: loaded (mds proto 32) [ 34.787970][ T1] NET: Registered protocol family 38 [ 34.817792][ T1] async_tx: api initialized (async) [ 34.836532][ T1] Key type asymmetric registered [ 34.847662][ T1] Asymmetric key parser 'x509' registered [ 34.864962][ T1] Asymmetric key parser 'pkcs8' registered [ 34.877993][ T1] Key type pkcs7_test registered [ 34.891079][ T1] Asymmetric key parser 'tpm_parser' registered [ 34.905955][ T1] Block layer SCSI generic (bsg) driver version 0.4 loaded (major 243) [ 34.937314][ T1] io scheduler mq-deadline registered [ 34.953798][ T1] io scheduler kyber registered [ 34.966871][ T1] io scheduler bfq registered [ 34.989678][ T1] hgafb: HGA card not detected. [ 35.000803][ T1] hgafb: probe of hgafb.0 failed with error -22 [ 35.014351][ T1] usbcore: registered new interface driver udlfb [ 35.033726][ T1] uvesafb: failed to execute /sbin/v86d [ 35.043680][ T1] uvesafb: make sure that the v86d helper is installed and executable [ 35.060778][ T1] uvesafb: Getting VBE info block failed (eax=0x4f00, err=-2) [ 35.097072][ T1] uvesafb: vbe_init() failed with -22 [ 35.120013][ T1] uvesafb: probe of uvesafb.0 failed with error -22 [ 35.141768][ T1] vga16fb: mapped to 0x00000000ba864d51 [ 65.847661][ T1] Console: switching to colour frame buffer device 80x30 [ 112.951658][ T1] fb0: VGA16 VGA frame buffer device [ 113.424562][ T1] input: Power Button as /devices/LNXSYSTM:00/LNXPWRBN:00/input/input0 [ 113.559104][ T1] ACPI: Power Button [PWRF] [ 114.222032][ T1] ioatdma: Intel(R) QuickData Technology Driver 5.00 [ 114.336186][ T1] PCI Interrupt Link [GSIF] enabled at IRQ 21 [ 114.538162][ T1] PCI Interrupt Link [GSIH] enabled at IRQ 23 [ 115.922167][ T1] N_HDLC line discipline registered with maxframe=4096 [ 115.982061][ T1] Serial: 8250/16550 driver, 4 ports, IRQ sharing enabled [ 116.062482][ T1] 00:05: ttyS0 at I/O 0x3f8 (irq = 4, base_baud = 115200) is a 16550A [ 116.175167][ T1] Cyclades driver 2.6 [ 116.199314][ T1] Initializing Nozomi driver 2.1d [ 116.233965][ T1] RocketPort device driver module, version 2.09, 12-June-2003 [ 116.285616][ T1] No rocketport ports found; unloading driver [ 116.334393][ T1] Non-volatile memory driver v1.3 [ 116.360112][ T1] Linux agpgart interface v0.103 [ 116.461401][ T1] [drm] Initialized vgem 1.0.0 20120112 for vgem on minor 0 [ 116.524265][ T1] [drm] Supports vblank timestamp caching Rev 2 (21.10.2013). [ 116.597265][ T1] [drm] Initialized vkms 1.0.0 20180514 for vkms on minor 1 [ 116.641343][ T1] usbcore: registered new interface driver udl [ 116.684592][ T1] [drm] pci: virtio-vga detected at 0000:00:01.0 [ 116.715191][ T1] fb0: switching to virtiodrmfb from VGA16 VGA [ 132.456515][ T1] Console: switching to colour VGA+ 80x25 [ 132.503817][ T1] virtio-pci 0000:00:01.0: vgaarb: deactivate vga console [ 132.564972][ T1] Console: switching to colour dummy device 80x25 [ 132.587037][ T1] [drm] features: -virgl +edid [ 132.673809][ T1] [drm] number of scanouts: 1 [ 132.693942][ T1] [drm] number of cap sets: 0 [ 132.759725][ T1] [drm] Initialized virtio_gpu 0.1.0 0 for virtio0 on minor 2 [ 132.870232][ T1] ================================================================== [ 132.879078][ T1] BUG: KASAN: slab-out-of-bounds in virtio_gpu_object_create+0x9f3/0xaa0 [ 132.879078][ T1] Write of size 8 at addr ffff888029be9388 by task swapper/0/1 [ 132.879078][ T1] [ 132.879078][ T1] CPU: 0 PID: 1 Comm: swapper/0 Not tainted 5.6.0-syzkaller #0 [ 132.879078][ T1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014 [ 132.879078][ T1] Call Trace: [ 132.879078][ T1] dump_stack+0x188/0x20d [ 132.879078][ T1] ? virtio_gpu_object_create+0x9f3/0xaa0 [ 132.879078][ T1] ? virtio_gpu_object_create+0x9f3/0xaa0 [ 132.879078][ T1] print_address_description.constprop.0.cold+0xd3/0x315 [ 132.879078][ T1] ? virtio_gpu_object_create+0x9f3/0xaa0 [ 132.879078][ T1] ? virtio_gpu_object_create+0x9f3/0xaa0 [ 132.879078][ T1] __kasan_report.cold+0x1a/0x32 [ 132.879078][ T1] ? virtio_gpu_object_create+0x9f3/0xaa0 [ 132.879078][ T1] kasan_report+0xe/0x20 [ 132.879078][ T1] virtio_gpu_object_create+0x9f3/0xaa0 [ 132.879078][ T1] ? bus_add_driver+0x4a2/0x5a0 [ 132.879078][ T1] ? driver_register+0x1c4/0x330 [ 132.879078][ T1] ? do_one_initcall+0x10a/0x7d0 [ 132.879078][ T1] virtio_gpu_gem_create+0xaa/0x1d0 [ 132.879078][ T1] ? virtio_gpu_init.cold+0xce5/0xce5 [ 132.879078][ T1] ? find_held_lock+0x2d/0x110 [ 132.879078][ T1] ? mark_lock+0x12b/0xf10 [ 132.879078][ T1] ? find_held_lock+0x2d/0x110 [ 132.879078][ T1] virtio_gpu_mode_dumb_create+0x21e/0x360 [ 132.879078][ T1] ? virtio_gpu_gem_create+0x1d0/0x1d0 [ 132.879078][ T1] ? drm_client_framebuffer_create+0x108/0x770 [ 132.879078][ T1] ? kmem_cache_alloc_trace+0x390/0x7d0 [ 132.879078][ T1] drm_mode_create_dumb+0x27c/0x300 [ 132.879078][ T1] drm_client_framebuffer_create+0x1b7/0x770 [ 132.879078][ T1] ? drm_client_framebuffer_delete+0x1a0/0x1a0 [ 132.879078][ T1] ? mutex_trylock+0x2c0/0x2c0 [ 132.879078][ T1] ? find_held_lock+0x2d/0x110 [ 132.879078][ T1] ? drm_dev_dbg+0xb4/0x17b [ 132.879078][ T1] ? __sanitizer_cov_trace_switch+0x45/0x70 [ 132.879078][ T1] drm_fb_helper_generic_probe+0x1e4/0x810 [ 132.879078][ T1] __drm_fb_helper_initial_config_and_unlock+0xb56/0x11e0 [ 132.879078][ T1] ? __mutex_unlock_slowpath+0xe2/0x660 [ 133.813190][ T1] ? drm_setup_crtcs_fb+0x6f0/0x6f0 [ 133.813190][ T1] drm_fbdev_client_hotplug+0x30f/0x580 [ 133.813190][ T1] drm_fbdev_generic_setup+0x18b/0x295 [ 133.813190][ T1] virtio_gpu_probe+0x28f/0x2de [ 133.813190][ T1] ? virtio_gpu_remove+0x60/0x60 [ 133.813190][ T1] ? ___might_sleep+0x110/0x2b0 [ 133.813190][ T1] ? ioread8+0x89/0xa0 [ 133.813190][ T1] ? vp_modern_find_vqs+0x170/0x170 [ 133.813190][ T1] ? vp_get_status+0x37/0x40 [ 133.813190][ T1] ? ioread8+0x89/0xa0 [ 133.813190][ T1] virtio_dev_probe+0x463/0x710 [ 133.813190][ T1] ? virtio_device_restore+0x1f0/0x1f0 [ 133.813190][ T1] really_probe+0x281/0x6d0 [ 133.813190][ T1] driver_probe_device+0x104/0x210 [ 133.813190][ T1] device_driver_attach+0x108/0x140 [ 133.813190][ T1] __driver_attach+0xda/0x240 [ 133.813190][ T1] ? device_driver_attach+0x140/0x140 [ 133.813190][ T1] bus_for_each_dev+0x14b/0x1d0 [ 133.813190][ T1] ? subsys_dev_iter_exit+0x20/0x20 [ 133.813190][ T1] bus_add_driver+0x4a2/0x5a0 [ 133.813190][ T1] driver_register+0x1c4/0x330 [ 133.813190][ T1] ? bochs_init+0x86/0x86 [ 133.813190][ T1] do_one_initcall+0x10a/0x7d0 [ 133.813190][ T1] ? perf_trace_initcall_level+0x420/0x420 [ 133.813190][ T1] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 133.813190][ T1] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 133.813190][ T1] kernel_init_freeable+0x501/0x5ae [ 133.813190][ T1] ? rest_init+0x365/0x365 [ 133.813190][ T1] kernel_init+0xd/0x1bb [ 133.813190][ T1] ret_from_fork+0x24/0x30 [ 133.813190][ T1] [ 133.813190][ T1] Allocated by task 1: [ 133.813190][ T1] save_stack+0x1b/0x80 [ 133.813190][ T1] __kasan_kmalloc.constprop.0+0xbf/0xd0 [ 133.813190][ T1] kmem_cache_alloc_trace+0x153/0x7d0 [ 133.813190][ T1] virtio_gpu_create_object+0x3c/0xe0 [ 133.813190][ T1] drm_gem_shmem_create+0x83/0x330 [ 133.813190][ T1] virtio_gpu_object_create+0xa5/0xaa0 [ 133.813190][ T1] virtio_gpu_gem_create+0xaa/0x1d0 [ 133.813190][ T1] virtio_gpu_mode_dumb_create+0x21e/0x360 [ 133.813190][ T1] drm_mode_create_dumb+0x27c/0x300 [ 133.813190][ T1] drm_client_framebuffer_create+0x1b7/0x770 [ 133.813190][ T1] drm_fb_helper_generic_probe+0x1e4/0x810 [ 133.813190][ T1] __drm_fb_helper_initial_config_and_unlock+0xb56/0x11e0 [ 133.813190][ T1] drm_fbdev_client_hotplug+0x30f/0x580 [ 133.813190][ T1] drm_fbdev_generic_setup+0x18b/0x295 [ 133.813190][ T1] virtio_gpu_probe+0x28f/0x2de [ 133.813190][ T1] virtio_dev_probe+0x463/0x710 [ 133.813190][ T1] really_probe+0x281/0x6d0 [ 133.813190][ T1] driver_probe_device+0x104/0x210 [ 133.813190][ T1] device_driver_attach+0x108/0x140 [ 133.813190][ T1] __driver_attach+0xda/0x240 [ 133.813190][ T1] bus_for_each_dev+0x14b/0x1d0 [ 133.813190][ T1] bus_add_driver+0x4a2/0x5a0 [ 133.813190][ T1] driver_register+0x1c4/0x330 [ 133.813190][ T1] do_one_initcall+0x10a/0x7d0 [ 133.813190][ T1] kernel_init_freeable+0x501/0x5ae [ 133.813190][ T1] kernel_init+0xd/0x1bb [ 133.813190][ T1] ret_from_fork+0x24/0x30 [ 133.813190][ T1] [ 133.813190][ T1] Freed by task 0: [ 133.813190][ T1] (stack is not available) [ 133.813190][ T1] [ 133.813190][ T1] The buggy address belongs to the object at ffff888029be9000 [ 133.813190][ T1] which belongs to the cache kmalloc-1k of size 1024 [ 133.813190][ T1] The buggy address is located 904 bytes inside of [ 133.813190][ T1] 1024-byte region [ffff888029be9000, ffff888029be9400) [ 133.813190][ T1] The buggy address belongs to the page: [ 133.813190][ T1] page:ffffea0000a6fa40 refcount:1 mapcount:0 mapping:ffff88802c800c40 index:0x0 [ 133.813190][ T1] flags: 0xfffe0000000200(slab) [ 133.813190][ T1] raw: 00fffe0000000200 ffffea000093ac88 ffff88802c801850 ffff88802c800c40 [ 133.813190][ T1] raw: 0000000000000000 ffff888029be9000 0000000100000002 0000000000000000 [ 133.813190][ T1] page dumped because: kasan: bad access detected [ 133.813190][ T1] [ 133.813190][ T1] Memory state around the buggy address: [ 133.813190][ T1] ffff888029be9280: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 133.813190][ T1] ffff888029be9300: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 133.813190][ T1] >ffff888029be9380: 00 fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 133.813190][ T1] ^ [ 133.813190][ T1] ffff888029be9400: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 133.813190][ T1] ffff888029be9480: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 133.813190][ T1] ================================================================== [ 133.813190][ T1] Disabling lock debugging due to kernel taint [ 135.923752][ T1] Kernel panic - not syncing: panic_on_warn set ... [ 135.931299][ T1] CPU: 0 PID: 1 Comm: swapper/0 Tainted: G B 5.6.0-syzkaller #0 [ 135.931299][ T1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014 [ 135.931299][ T1] Call Trace: [ 135.931299][ T1] dump_stack+0x188/0x20d [ 135.931299][ T1] panic+0x2e3/0x75c [ 135.931299][ T1] ? add_taint.cold+0x16/0x16 [ 135.931299][ T1] ? preempt_schedule_common+0x5e/0xc0 [ 135.931299][ T1] ? virtio_gpu_object_create+0x9f3/0xaa0 [ 135.931299][ T1] ? preempt_schedule_thunk+0x16/0x18 [ 135.931299][ T1] ? trace_hardirqs_on+0x55/0x220 [ 135.931299][ T1] ? virtio_gpu_object_create+0x9f3/0xaa0 [ 135.931299][ T1] end_report+0x43/0x49 [ 135.931299][ T1] ? virtio_gpu_object_create+0x9f3/0xaa0 [ 135.931299][ T1] __kasan_report.cold+0xd/0x32 [ 135.931299][ T1] ? virtio_gpu_object_create+0x9f3/0xaa0 [ 135.931299][ T1] kasan_report+0xe/0x20 [ 135.931299][ T1] virtio_gpu_object_create+0x9f3/0xaa0 [ 135.931299][ T1] ? bus_add_driver+0x4a2/0x5a0 [ 135.931299][ T1] ? driver_register+0x1c4/0x330 [ 135.931299][ T1] ? do_one_initcall+0x10a/0x7d0 [ 135.931299][ T1] virtio_gpu_gem_create+0xaa/0x1d0 [ 135.931299][ T1] ? virtio_gpu_init.cold+0xce5/0xce5 [ 135.931299][ T1] ? find_held_lock+0x2d/0x110 [ 135.931299][ T1] ? mark_lock+0x12b/0xf10 [ 135.931299][ T1] ? find_held_lock+0x2d/0x110 [ 135.931299][ T1] virtio_gpu_mode_dumb_create+0x21e/0x360 [ 135.931299][ T1] ? virtio_gpu_gem_create+0x1d0/0x1d0 [ 135.931299][ T1] ? drm_client_framebuffer_create+0x108/0x770 [ 135.931299][ T1] ? kmem_cache_alloc_trace+0x390/0x7d0 [ 135.931299][ T1] drm_mode_create_dumb+0x27c/0x300 [ 135.931299][ T1] drm_client_framebuffer_create+0x1b7/0x770 [ 135.931299][ T1] ? drm_client_framebuffer_delete+0x1a0/0x1a0 [ 135.931299][ T1] ? mutex_trylock+0x2c0/0x2c0 [ 135.931299][ T1] ? find_held_lock+0x2d/0x110 [ 135.931299][ T1] ? drm_dev_dbg+0xb4/0x17b [ 135.931299][ T1] ? __sanitizer_cov_trace_switch+0x45/0x70 [ 135.931299][ T1] drm_fb_helper_generic_probe+0x1e4/0x810 [ 135.931299][ T1] __drm_fb_helper_initial_config_and_unlock+0xb56/0x11e0 [ 135.931299][ T1] ? __mutex_unlock_slowpath+0xe2/0x660 [ 135.931299][ T1] ? drm_setup_crtcs_fb+0x6f0/0x6f0 [ 135.931299][ T1] drm_fbdev_client_hotplug+0x30f/0x580 [ 135.931299][ T1] drm_fbdev_generic_setup+0x18b/0x295 [ 135.931299][ T1] virtio_gpu_probe+0x28f/0x2de [ 135.931299][ T1] ? virtio_gpu_remove+0x60/0x60 [ 135.931299][ T1] ? ___might_sleep+0x110/0x2b0 [ 135.931299][ T1] ? ioread8+0x89/0xa0 [ 135.931299][ T1] ? vp_modern_find_vqs+0x170/0x170 [ 135.931299][ T1] ? vp_get_status+0x37/0x40 [ 135.931299][ T1] ? ioread8+0x89/0xa0 [ 135.931299][ T1] virtio_dev_probe+0x463/0x710 [ 135.931299][ T1] ? virtio_device_restore+0x1f0/0x1f0 [ 135.931299][ T1] really_probe+0x281/0x6d0 [ 135.931299][ T1] driver_probe_device+0x104/0x210 [ 135.931299][ T1] device_driver_attach+0x108/0x140 [ 135.931299][ T1] __driver_attach+0xda/0x240 [ 135.931299][ T1] ? device_driver_attach+0x140/0x140 [ 135.931299][ T1] bus_for_each_dev+0x14b/0x1d0 [ 135.931299][ T1] ? subsys_dev_iter_exit+0x20/0x20 [ 135.931299][ T1] bus_add_driver+0x4a2/0x5a0 [ 135.931299][ T1] driver_register+0x1c4/0x330 [ 135.931299][ T1] ? bochs_init+0x86/0x86 [ 135.931299][ T1] do_one_initcall+0x10a/0x7d0 [ 135.931299][ T1] ? perf_trace_initcall_level+0x420/0x420 [ 135.931299][ T1] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 135.931299][ T1] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 135.931299][ T1] kernel_init_freeable+0x501/0x5ae [ 135.931299][ T1] ? rest_init+0x365/0x365 [ 135.931299][ T1] kernel_init+0xd/0x1bb [ 135.931299][ T1] ret_from_fork+0x24/0x30 [ 135.931299][ T1] Kernel Offset: disabled [ 135.931299][ T1] Rebooting in 86400 seconds..