[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[   24.150870] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   26.765933] random: sshd: uninitialized urandom read (32 bytes read)
[   27.113371] random: sshd: uninitialized urandom read (32 bytes read)
[   27.658043] random: sshd: uninitialized urandom read (32 bytes read)
[   27.836633] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.0.17' (ECDSA) to the list of known hosts.
[   33.532484] random: sshd: uninitialized urandom read (32 bytes read)
executing program
[   33.627905] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details.
[   33.651800] kasan: CONFIG_KASAN_INLINE enabled
[   33.658778] kasan: GPF could be caused by NULL-ptr deref or user memory access
[   33.666134] general protection fault: 0000 [#1] SMP KASAN
[   33.671679] CPU: 0 PID: 4489 Comm: syz-executor653 Not tainted 4.18.0+ #202
[   33.678779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   33.688132] RIP: 0010:__schedule+0xf48/0x1df0
[   33.692621] Code: 4c 89 e8 48 c1 e8 03 42 80 3c 30 00 0f 85 94 09 00 00 4d 8b 6d 00 4d 85 ed 0f 84 84 f7 ff ff 49 8d 7d 10 48 89 f8 48 c1 e8 03 <42> 80 3c 30 00 74 a6 e8 4c 3a 0a fb eb 9f 4c 89 e6 48 89 df e8 4f
[   33.711534] RSP: 0018:ffff8801ac82ea80 EFLAGS: 00010806
[   33.716903] RAX: 1bd5a00000000022 RBX: ffff8801ac9d2240 RCX: 1ffff1003b33b88f
[   33.724168] RDX: 0000000040000000 RSI: 0000000000000000 RDI: dead000000000110
[   33.731429] RBP: ffff8801ac82ec50 R08: ffff8801ac9d2240 R09: fffff520003c1a47
[   33.738691] R10: fffff520003c1a47 R11: ffffc90001e0d23b R12: ffff8801ce17c740
[   33.745950] R13: dead000000000100 R14: dffffc0000000000 R15: ffff8801db02cc40
[   33.753226] FS:  0000000001066880(0000) GS:ffff8801db000000(0000) knlGS:0000000000000000
[   33.761457] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   33.767351] CR2: 000000000043eede CR3: 0000000007e6a000 CR4: 00000000001426f0
[   33.774624] Call Trace:
[   33.777204]  ? mark_held_locks+0x160/0x160
[   33.781435]  ? print_usage_bug+0xc0/0xc0
[   33.785504]  ? __sched_text_start+0x8/0x8
[   33.789647]  ? generic_exec_single+0x1ea/0x5e0
[   33.794225]  ? __lock_is_held+0xb5/0x140
[   33.798286]  ? check_same_owner+0x340/0x340
[   33.802604]  ? check_same_owner+0x340/0x340
[   33.806937]  ? smp_call_function_single+0x2d6/0x5c0
[   33.811954]  ? add_nops+0x90/0x90
[   33.815406]  ? arch_jump_label_transform+0x1b/0x40
[   33.820330]  preempt_schedule_common+0x22/0x60
[   33.824907]  _cond_resched+0x1d/0x30
[   33.828614]  __mutex_lock+0x13d/0x1700
[   33.832497]  ? retint_kernel+0x10/0x10
[   33.836384]  ? arch_jump_label_transform+0x1b/0x40
[   33.841313]  ? mutex_trylock+0x2b0/0x2b0
[   33.845366]  ? find_held_lock+0x36/0x1c0
[   33.849438]  ? lock_downgrade+0x8f0/0x8f0
[   33.853594]  ? trace_hardirqs_on+0xbd/0x2c0
[   33.857908]  ? text_poke_bp+0x10c/0x16a
[   33.861876]  ? trace_hardirqs_off_caller+0x2b0/0x2b0
[   33.866991]  ? text_poke+0x3f9/0x5e0
[   33.870705]  ? kvm_can_do_async_pf+0x10/0x2f0
[   33.875199]  ? kasan_check_write+0x14/0x20
[   33.879427]  ? __mutex_unlock_slowpath+0x197/0x8c0
[   33.884350]  ? wait_for_completion+0x8d0/0x8d0
[   33.888932]  ? kvm_can_do_async_pf+0xf/0x2f0
[   33.893336]  ? __jump_label_transform.isra.0+0x478/0x8f0
[   33.898779]  ? modules_open+0xa0/0xa0
[   33.902579]  ? kvm_vm_release+0x42/0x50
[   33.906555]  ? get_trap_addr+0x1d0/0x1d0
[   33.910618]  ? do_group_exit+0x177/0x440
[   33.914681]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   33.920219]  ? jump_label_type+0x132/0x1d0
[   33.924455]  ? static_key_count+0x130/0x130
[   33.928798]  mutex_lock_nested+0x16/0x20
[   33.932855]  ? mutex_lock_nested+0x16/0x20
[   33.937089]  arch_jump_label_transform+0x1b/0x40
[   33.941844]  __jump_label_update+0x16e/0x1a0
[   33.946271]  jump_label_update+0x151/0x2e0
[   33.950522]  __static_key_slow_dec_cpuslocked+0xb8/0x210
[   33.955968]  ? static_key_disable+0x30/0x30
[   33.960292]  ? rcu_read_lock_sched_held+0x108/0x120
[   33.965306]  static_key_slow_dec+0x63/0xa0
[   33.969541]  kvm_arch_vcpu_uninit+0x18e/0x1d0
[   33.974034]  kvm_vcpu_uninit+0x44/0x90
[   33.977917]  vmx_free_vcpu+0x23a/0x300
[   33.981812]  kvm_arch_destroy_vm+0x365/0x7c0
[   33.986255]  ? check_memory_region+0x183/0x1b0
[   33.990832]  ? kvm_arch_sync_events+0x30/0x30
[   33.995330]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   34.000864]  ? mmu_notifier_unregister+0x474/0x600
[   34.005788]  ? trace_hardirqs_on+0x2c0/0x2c0
[   34.010187]  ? kfree+0x111/0x210
[   34.013557]  ? __mmu_notifier_register+0x30/0x30
[   34.018325]  ? __free_pages+0x10a/0x190
[   34.022300]  ? free_unref_page+0x930/0x930
[   34.026550]  kvm_put_kvm+0x73f/0x1060
[   34.030364]  ? kvm_write_guest_cached+0x40/0x40
[   34.035036]  ? _raw_spin_unlock_irq+0x27/0x70
[   34.039533]  ? _raw_spin_unlock_irq+0x27/0x70
[   34.044025]  ? lockdep_hardirqs_on+0x421/0x5c0
[   34.048608]  ? kasan_check_write+0x14/0x20
[   34.052838]  ? do_raw_spin_lock+0xc1/0x200
[   34.057070]  ? kvm_irqfd_release+0xdd/0x120
[   34.061418]  ? kvm_put_kvm+0x1060/0x1060
[   34.065505]  kvm_vm_release+0x42/0x50
[   34.069313]  __fput+0x36e/0x8c0
[   34.072590]  ? __alloc_file+0x400/0x400
[   34.076578]  ? check_same_owner+0x340/0x340
[   34.080908]  ? kasan_check_write+0x14/0x20
[   34.085172]  ? do_raw_spin_lock+0xc1/0x200
[   34.089399]  ____fput+0x15/0x20
[   34.092682]  task_work_run+0x1e8/0x2a0
[   34.096583]  ? task_work_cancel+0x240/0x240
[   34.100904]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   34.106437]  ? switch_task_namespaces+0xa2/0xd0
[   34.111112]  do_exit+0x1ae4/0x26e0
[   34.114650]  ? mm_update_next_owner+0x9a0/0x9a0
[   34.119328]  ? kvm_vcpu_ioctl+0x2b5/0x1280
[   34.123572]  ? rcu_read_lock_sched_held+0x108/0x120
[   34.128583]  ? kfree+0x1d7/0x210
[   34.131947]  ? kvm_vcpu_ioctl+0x2ba/0x1280
[   34.136182]  ? kvm_uevent_notify_change.part.32+0x440/0x440
[   34.141893]  ? is_bpf_text_address+0xd7/0x170
[   34.146382]  ? kernel_text_address+0x79/0xf0
[   34.150797]  ? __kernel_text_address+0xd/0x40
[   34.155325]  ? unwind_get_return_address+0x61/0xa0
[   34.160260]  ? __save_stack_trace+0x8d/0xf0
[   34.164582]  ? save_stack+0xa9/0xd0
[   34.168203]  ? save_stack+0x43/0xd0
[   34.171828]  ? __kasan_slab_free+0x11a/0x170
[   34.176230]  ? kasan_slab_free+0xe/0x10
[   34.180199]  ? putname+0xf2/0x130
[   34.183664]  ? __x64_sys_openat+0x9d/0x100
[   34.187892]  ? do_syscall_64+0x1b9/0x820
[   34.191954]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   34.197328]  ? trace_hardirqs_off+0xb8/0x2b0
[   34.201999]  ? kasan_check_read+0x11/0x20
[   34.206147]  ? do_raw_spin_unlock+0xa7/0x2f0
[   34.210552]  ? trace_hardirqs_on+0x2c0/0x2c0
[   34.214956]  ? initcall_blacklisted+0x9a/0x1e0
[   34.219537]  ? _raw_spin_unlock_irqrestore+0x63/0xc0
[   34.224639]  ? kvm_uevent_notify_change.part.32+0x440/0x440
[   34.230347]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   34.235880]  ? do_vfs_ioctl+0x201/0x1720
[   34.239936]  ? rcu_is_watching+0x8c/0x150
[   34.244076]  ? trace_hardirqs_on+0xbd/0x2c0
[   34.248394]  ? ioctl_preallocate+0x300/0x300
[   34.253049]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   34.258581]  ? __fget_light+0x2f7/0x440
[   34.262550]  ? fget_raw+0x20/0x20
[   34.265994]  ? putname+0xf2/0x130
[   34.269488]  ? rcu_read_lock_sched_held+0x108/0x120
[   34.274500]  ? kmem_cache_free+0x246/0x280
[   34.278734]  ? putname+0xf7/0x130
[   34.282185]  do_group_exit+0x177/0x440
[   34.286065]  ? trace_hardirqs_on+0xbd/0x2c0
[   34.290385]  ? __ia32_sys_exit+0x50/0x50
[   34.294442]  ? trace_hardirqs_off_caller+0x2b0/0x2b0
[   34.299552]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   34.305084]  ? ksys_ioctl+0x81/0xd0
[   34.308716]  __x64_sys_exit_group+0x3e/0x50
[   34.313037]  do_syscall_64+0x1b9/0x820
[   34.316917]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[   34.322276]  ? syscall_return_slowpath+0x5e0/0x5e0
[   34.327196]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   34.332035]  ? trace_hardirqs_on_caller+0x2b0/0x2b0
[   34.337063]  ? prepare_exit_to_usermode+0x291/0x3b0
[   34.342081]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   34.346923]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   34.352106] RIP: 0033:0x43ef08
[   34.355298] Code: Bad RIP value.
[   34.358657] RSP: 002b:00007ffeb4105d28 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   34.366381] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000043ef08
[   34.373640] RDX: 0000000000000000 RSI: 000000000000003c RDI: 0000000000000000
[   34.380902] RBP: 00000000004be7c8 R08: 00000000000000e7 R09: ffffffffffffffd0
[   34.388162] R10: 00000000004002c8 R11: 0000000000000246 R12: 0000000000000001
[   34.395423] R13: 00000000006d0180 R14: 0000000000000000 R15: 0000000000000000
[   34.402685] Modules linked in:
[   34.405873] Dumping ftrace buffer:
[   34.409398]    (ftrace buffer empty)
[   34.413099] 
[   34.413105] ======================================================
[   34.413110] WARNING: possible circular locking dependency detected
[   34.413113] 4.18.0+ #202 Not tainted
[   34.413118] ------------------------------------------------------
[   34.413123] syz-executor653/4489 is trying to acquire lock:
[   34.413127] 00000000b3d2a781 ((console_sem).lock){-...}, at: down_trylock+0x13/0x70
[   34.413141] 
[   34.413145] but task is already holding lock:
[   34.413148] 000000007967ba69 (&rq->lock){-.-.}, at: __schedule+0x24d/0x1df0
[   34.413162] 
[   34.413166] which lock already depends on the new lock.
[   34.413168] 
[   34.413171] 
[   34.413175] the existing dependency chain (in reverse order) is:
[   34.413178] 
[   34.413180] -> #2 (&rq->lock){-.-.}:
[   34.413193]        _raw_spin_lock+0x2a/0x40
[   34.413197]        task_fork_fair+0x93/0x680
[   34.413201]        sched_fork+0x44b/0xbd0
[   34.413218]        copy_process+0x235e/0x7a00
[   34.413221]        _do_fork+0x1ca/0x1170
[   34.413225]        kernel_thread+0x34/0x40
[   34.413245]        rest_init+0x22/0xe4
[   34.413250]        start_kernel+0x913/0x94e
[   34.413267]        x86_64_start_reservations+0x29/0x2b
[   34.413271]        x86_64_start_kernel+0x76/0x79
[   34.413275]        secondary_startup_64+0xa4/0xb0
[   34.413277] 
[   34.413279] -> #1 (&p->pi_lock){-.-.}:
[   34.413293]        _raw_spin_lock_irqsave+0x96/0xc0
[   34.413297]        try_to_wake_up+0xd2/0x1250
[   34.413300]        wake_up_process+0x10/0x20
[   34.413304]        __up.isra.1+0x1c0/0x2a0
[   34.413307]        up+0x13c/0x1c0
[   34.413311]        __up_console_sem+0xbe/0x1b0
[   34.413315]        console_unlock+0x506/0x10d0
[   34.413318]        vprintk_emit+0x33a/0x910
[   34.413322]        vprintk_default+0x28/0x30
[   34.413325]        vprintk_func+0x7a/0x117
[   34.413329]        printk+0xa7/0xcf
[   34.413332]        load_umh+0x51/0xbd
[   34.413336]        do_one_initcall+0x127/0x838
[   34.413340]        kernel_init_freeable+0x49b/0x58e
[   34.413343]        kernel_init+0x11/0x1b3
[   34.413347]        ret_from_fork+0x3a/0x50
[   34.413349] 
[   34.413351] -> #0 ((console_sem).lock){-...}:
[   34.413365]        lock_acquire+0x1e4/0x4f0
[   34.413369]        _raw_spin_lock_irqsave+0x96/0xc0
[   34.413372]        down_trylock+0x13/0x70
[   34.413376]        __down_trylock_console_sem+0xae/0x200
[   34.413380]        console_trylock+0x15/0xa0
[   34.413384]        vprintk_emit+0x31f/0x910
[   34.413387]        vprintk_default+0x28/0x30
[   34.413391]        vprintk_func+0x7a/0x117
[   34.413394]        printk+0xa7/0xcf
[   34.413398]        kasan_die_handler.cold.22+0x11/0x30
[   34.413402]        notifier_call_chain+0x180/0x390
[   34.413407]        atomic_notifier_call_chain+0x98/0x190
[   34.413410]        notify_die+0x1be/0x2e0
[   34.413414]        do_general_protection+0x248/0x2f0
[   34.413430]        general_protection+0x1e/0x30
[   34.413433]        __schedule+0xf48/0x1df0
[   34.413437]        preempt_schedule_common+0x22/0x60
[   34.413453]        _cond_resched+0x1d/0x30
[   34.413456]        __mutex_lock+0x13d/0x1700
[   34.413460]        mutex_lock_nested+0x16/0x20
[   34.413473]        arch_jump_label_transform+0x1b/0x40
[   34.413489]        __jump_label_update+0x16e/0x1a0
[   34.413493]        jump_label_update+0x151/0x2e0
[   34.413498]        __static_key_slow_dec_cpuslocked+0xb8/0x210
[   34.413502]        static_key_slow_dec+0x63/0xa0
[   34.413506]        kvm_arch_vcpu_uninit+0x18e/0x1d0
[   34.413510]        kvm_vcpu_uninit+0x44/0x90
[   34.413514]        vmx_free_vcpu+0x23a/0x300
[   34.413518]        kvm_arch_destroy_vm+0x365/0x7c0
[   34.413522]        kvm_put_kvm+0x73f/0x1060
[   34.413525]        kvm_vm_release+0x42/0x50
[   34.413529]        __fput+0x36e/0x8c0
[   34.413532]        ____fput+0x15/0x20
[   34.413536]        task_work_run+0x1e8/0x2a0
[   34.413540]        do_exit+0x1ae4/0x26e0
[   34.413544]        do_group_exit+0x177/0x440
[   34.413548]        __x64_sys_exit_group+0x3e/0x50
[   34.413551]        do_syscall_64+0x1b9/0x820
[   34.413556]        entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   34.413558] 
[   34.413563] other info that might help us debug this:
[   34.413565] 
[   34.413568] Chain exists of:
[   34.413570]   (console_sem).lock --> &p->pi_lock --> &rq->lock
[   34.413587] 
[   34.413591]  Possible unsafe locking scenario:
[   34.413594] 
[   34.413597]        CPU0                    CPU1
[   34.413601]        ----                    ----
[   34.413604]   lock(&rq->lock);
[   34.413613]                                lock(&p->pi_lock);
[   34.413622]                                lock(&rq->lock);
[   34.413629]   lock((console_sem).lock);
[   34.413637] 
[   34.413640]  *** DEADLOCK ***
[   34.413643] 
[   34.413647] 4 locks held by syz-executor653/4489:
[   34.413649]  #0: 00000000e7d5c036 (cpu_hotplug_lock.rw_sem){++++}, at: static_key_slow_dec+0x57/0xa0
[   34.413666]  #1: 0000000030ccc7cb (jump_label_mutex){+.+.}, at: __static_key_slow_dec_cpuslocked+0x82/0x210
[   34.413684]  #2: 000000007967ba69 (&rq->lock){-.-.}, at: __schedule+0x24d/0x1df0
[   34.413700]  #3: 00000000eac95e5b (rcu_read_lock){....}, at: atomic_notifier_call_chain+0x0/0x190
[   34.413718] 
[   34.413721] stack backtrace:
[   34.413732] CPU: 0 PID: 4489 Comm: syz-executor653 Not tainted 4.18.0+ #202
[   34.413739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   34.413742] Call Trace:
[   34.413746]  dump_stack+0x1c9/0x2b4
[   34.413750]  ? dump_stack_print_info.cold.2+0x52/0x52
[   34.413754]  ? vprintk_func+0x100/0x117
[   34.413759]  print_circular_bug.isra.34.cold.55+0x1bd/0x27d
[   34.413762]  ? save_trace+0xe0/0x290
[   34.413766]  __lock_acquire+0x3449/0x5020
[   34.413770]  ? mark_held_locks+0x160/0x160
[   34.413774]  ? mark_held_locks+0x160/0x160
[   34.413778]  ? update_load_avg+0x389/0x27d0
[   34.413783]  ? __update_load_avg_blocked_se+0x730/0x730
[   34.413787]  ? attach_entity_load_avg+0x860/0x860
[   34.413791]  ? attach_entity_load_avg+0x860/0x860
[   34.413795]  ? graph_lock+0x170/0x170
[   34.413800]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   34.413804]  lock_acquire+0x1e4/0x4f0
[   34.413807]  ? down_trylock+0x13/0x70
[   34.413811]  ? lock_release+0x9f0/0x9f0
[   34.413815]  ? trace_hardirqs_off+0xb8/0x2b0
[   34.413819]  ? trace_hardirqs_on+0x2c0/0x2c0
[   34.413823]  ? trace_hardirqs_off+0xb8/0x2b0
[   34.413827]  ? log_store+0x34f/0x4c0
[   34.413831]  ? vprintk_emit+0x31f/0x910
[   34.413835]  _raw_spin_lock_irqsave+0x96/0xc0
[   34.413838]  ? down_trylock+0x13/0x70
[   34.413842]  down_trylock+0x13/0x70
[   34.413846]  __down_trylock_console_sem+0xae/0x200
[   34.413850]  console_trylock+0x15/0xa0
[   34.413854]  vprintk_emit+0x31f/0x910
[   34.413858]  ? wake_up_klogd+0x110/0x110
[   34.413862]  ? __lock_acquire+0x7fc/0x5020
[   34.413866]  ? mark_held_locks+0x160/0x160
[   34.413869]  vprintk_default+0x28/0x30
[   34.413873]  vprintk_func+0x7a/0x117
[   34.413876]  printk+0xa7/0xcf
[   34.413894]  ? kmsg_dump_rewind_nolock+0xe4/0xe4
[   34.413898]  ? kasan_die_handler.cold.22+0x5/0x30
[   34.413902]  ? kasan_die_handler+0x1a/0x31
[   34.413906]  kasan_die_handler.cold.22+0x11/0x30
[   34.413922]  notifier_call_chain+0x180/0x390
[   34.413926]  ? unregister_die_notifier+0x20/0x20
[   34.413930]  ? rcu_is_watching+0x8c/0x150
[   34.413934]  ? rcu_cleanup_dead_rnp+0x200/0x200
[   34.413938]  ? rcu_cleanup_dead_rnp+0x200/0x200
[   34.413942]  ? cmp_ex_search+0x8c/0xb0
[   34.413946]  atomic_notifier_call_chain+0x98/0x190
[   34.413950]  notify_die+0x1be/0x2e0
[   34.413954]  ? __atomic_notifier_call_chain+0x1a0/0x1a0
[   34.413959]  ? search_module_extables+0x18/0xc0
[   34.413962]  ? __schedule+0xf48/0x1df0
[   34.413966]  ? __schedule+0xf48/0x1df0
[   34.413970]  ? search_exception_tables+0x47/0x50
[   34.413974]  do_general_protection+0x248/0x2f0
[   34.413978]  general_protection+0x1e/0x30
[   34.413982] RIP: 0010:__schedule+0xf48/0x1df0
[   34.413995] Code: 4c 89 e8 48 c1 e8 03 42 80 3c 30 00 0f 85 94 09 00 00 4d 8b 6d 00 4d 85 ed 0f 84 84 f7 ff ff 49 8d 7d 10 48 89 f8 48 c1 e8 03 <42> 80 3c 30 00 74 a6 e8 4c 3a 0a fb eb 9f 4c 89 e6 48 89 df e8 4f
[   34.413999] RSP: 0018:ffff8801ac82ea80 EFLAGS: 00010806
[   34.414008] RAX: 1bd5a00000000022 RBX: ffff8801ac9d2240 RCX: 1ffff1003b33b88f
[   34.414013] RDX: 0000000040000000 RSI: 0000000000000000 RDI: dead000000000110
[   34.414019] RBP: ffff8801ac82ec50 R08: ffff8801ac9d2240 R09: fffff520003c1a47
[   34.414025] R10: fffff520003c1a47 R11: ffffc90001e0d23b R12: ffff8801ce17c740
[   34.414030] R13: dead000000000100 R14: dffffc0000000000 R15: ffff8801db02cc40
[   34.414034]  ? mark_held_locks+0x160/0x160
[   34.414038]  ? print_usage_bug+0xc0/0xc0
[   34.414042]  ? __sched_text_start+0x8/0x8
[   34.414046]  ? generic_exec_single+0x1ea/0x5e0
[   34.414050]  ? __lock_is_held+0xb5/0x140
[   34.414054]  ? check_same_owner+0x340/0x340
[   34.414058]  ? check_same_owner+0x340/0x340
[   34.414076]  ? smp_call_function_single+0x2d6/0x5c0
[   34.414079]  ? add_nops+0x90/0x90
[   34.414083]  ? arch_jump_label_transform+0x1b/0x40
[   34.414087]  preempt_schedule_common+0x22/0x60
[   34.414091]  _cond_resched+0x1d/0x30
[   34.414095]  __mutex_lock+0x13d/0x1700
[   34.414098]  ? retint_kernel+0x10/0x10
[   34.414102]  ? arch_jump_label_transform+0x1b/0x40
[   34.414106]  ? mutex_trylock+0x2b0/0x2b0
[   34.414110]  ? find_held_lock+0x36/0x1c0
[   34.414114]  ? lock_downgrade+0x8f0/0x8f0
[   34.414117]  ? trace_hardirqs_on+0xbd/0x2c0
[   34.414121]  ? text_poke_bp+0x10c/0x16a
[   34.414125]  ? trace_hardirqs_off_caller+0x2b0/0x2b0
[   34.414129]  ? text_poke+0x3f9/0x5e0
[   34.414133]  ? kvm_can_do_async_pf+0x10/0x2f0
[   34.414137]  ? kasan_check_write+0x14/0x20
[   34.414141]  ? __mutex_unlock_slowpath+0x197/0x8c0
[   34.414145]  ? wait_for_completion+0x8d0/0x8d0
[   34.414149]  ? kvm_can_do_async_pf+0xf/0x2f0
[   34.414153]  ? __jump_label_transform.isra.0+0x478/0x8f0
[   34.414157]  ? modules_open+0xa0/0xa0
[   34.414172]  ? kvm_vm_release+0x42/0x50
[   34.414176]  ? get_trap_addr+0x1d0/0x1d0
[   34.414180]  ? do_group_exit+0x177/0x440
[   34.414184]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   34.414188]  ? jump_label_type+0x132/0x1d0
[   34.414192]  ? static_key_count+0x130/0x130
[   34.414214]  mutex_lock_nested+0x16/0x20
[   34.414218]  ? mutex_lock_nested+0x16/0x20
[   34.414222]  arch_jump_label_transform+0x1b/0x40
[   34.414239]  __jump_label_update+0x16e/0x1a0
[   34.414243]  jump_label_update+0x151/0x2e0
[   34.414248]  __static_key_slow_dec_cpuslocked+0xb8/0x210
[   34.414251]  ? static_key_disable+0x30/0x30
[   34.414255]  ? rcu_read_lock_sched_held+0x108/0x120
[   34.414259]  static_key_slow_dec+0x63/0xa0
[   34.414263]  kvm_arch_vcpu_uninit+0x18e/0x1d0
[   34.414266]  kvm_vcpu_uninit+0x44/0x90
[   34.414270]  vmx_free_vcpu+0x23a/0x300
[   34.414274]  kvm_arch_destroy_vm+0x365/0x7c0
[   34.414278]  ? check_memory_region+0x183/0x1b0
[   34.414281]  ? kvm_arch_sync_events+0x30/0x30
[   34.414286]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   34.414288]  ? mmu_notifier
[   34.414295] Lost 88 message(s)!
[   35.440902] ---[ end trace 39468291e4f79d0c ]---
[   35.445664] RIP: 0010:__schedule+0xf48/0x1df0
[   35.450155] Code: 4c 89 e8 48 c1 e8 03 42 80 3c 30 00 0f 85 94 09 00 00 4d 8b 6d 00 4d 85 ed 0f 84 84 f7 ff ff 49 8d 7d 10 48 89 f8 48 c1 e8 03 <42> 80 3c 30 00 74 a6 e8 4c 3a 0a fb eb 9f 4c 89 e6 48 89 df e8 4f
[   35.469050] RSP: 0018:ffff8801ac82ea80 EFLAGS: 00010806
[   35.474407] RAX: 1bd5a00000000022 RBX: ffff8801ac9d2240 RCX: 1ffff1003b33b88f
[   35.481671] RDX: 0000000040000000 RSI: 0000000000000000 RDI: dead000000000110
[   35.488933] RBP: ffff8801ac82ec50 R08: ffff8801ac9d2240 R09: fffff520003c1a47
[   35.496193] R10: fffff520003c1a47 R11: ffffc90001e0d23b R12: ffff8801ce17c740
[   35.503475] R13: dead000000000100 R14: dffffc0000000000 R15: ffff8801db02cc40
[   35.510772] FS:  0000000001066880(0000) GS:ffff8801db000000(0000) knlGS:0000000000000000
[   35.518989] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   35.524867] CR2: 000000000043eede CR3: 0000000007e6a000 CR4: 00000000001426f0
[   35.532130] Kernel panic - not syncing: Fatal exception
[   36.631733] Shutting down cpus with NMI
[   36.636047] Dumping ftrace buffer:
[   36.639599]    (ftrace buffer empty)
[   36.643288] Kernel Offset: disabled
[   36.646897] Rebooting in 86400 seconds..