Warning: Permanently added '[localhost]:9941' (ED25519) to the list of known hosts.
2025/12/02 04:37:51 parsed 1 programs
syzkaller login: [   88.108990][ T5316] cgroup: Unknown subsys name 'net'
[   88.165211][ T5316] cgroup: Unknown subsys name 'cpuset'
[   88.172600][ T5316] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   89.826831][ T5316] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   91.855551][   T10] cfg80211: failed to load regulatory.db
[   93.678141][ T5333] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   94.803877][ T5351] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   94.807847][ T5351] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   94.812716][ T5351] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   94.816381][ T5351] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   94.820253][ T5351] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   97.025943][ T5378] chnl_net:caif_netlink_parms(): no params data found
[   97.172922][ T5378] bridge0: port 1(bridge_slave_0) entered blocking state
[   97.180619][ T5378] bridge0: port 1(bridge_slave_0) entered disabled state
[   97.183868][ T5378] bridge_slave_0: entered allmulticast mode
[   97.200126][ T5378] bridge_slave_0: entered promiscuous mode
[   97.205669][ T5378] bridge0: port 2(bridge_slave_1) entered blocking state
[   97.208803][ T5378] bridge0: port 2(bridge_slave_1) entered disabled state
[   97.222178][ T5378] bridge_slave_1: entered allmulticast mode
[   97.225976][ T5378] bridge_slave_1: entered promiscuous mode
[   97.256056][ T5378] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   97.263120][ T5378] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   97.289106][ T5378] team0: Port device team_slave_0 added
[   97.293669][ T5378] team0: Port device team_slave_1 added
[   97.315816][ T5378] batman_adv: batadv0: Adding interface: batadv_slave_0
[   97.318774][ T5378] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   97.331022][ T5378] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   97.337521][ T5378] batman_adv: batadv0: Adding interface: batadv_slave_1
[   97.341038][ T5378] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   97.352234][ T5378] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   97.384241][ T5378] hsr_slave_0: entered promiscuous mode
[   97.387270][ T5378] hsr_slave_1: entered promiscuous mode
[   97.536662][ T5378] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   97.546115][ T5378] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   97.553724][ T5378] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   97.560564][ T5378] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   97.587458][ T5378] bridge0: port 2(bridge_slave_1) entered blocking state
[   97.590694][ T5378] bridge0: port 2(bridge_slave_1) entered forwarding state
[   97.594206][ T5378] bridge0: port 1(bridge_slave_0) entered blocking state
[   97.597270][ T5378] bridge0: port 1(bridge_slave_0) entered forwarding state
[   97.658384][ T5378] 8021q: adding VLAN 0 to HW filter on device bond0
[   97.671807][ T1043] bridge0: port 1(bridge_slave_0) entered disabled state
[   97.676059][ T1043] bridge0: port 2(bridge_slave_1) entered disabled state
[   97.686902][ T5378] 8021q: adding VLAN 0 to HW filter on device team0
[   97.697592][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   97.700843][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   97.755195][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   97.758561][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   98.018528][ T5378] 8021q: adding VLAN 0 to HW filter on device batadv0
[   98.062970][ T5378] veth0_vlan: entered promiscuous mode
[   98.074520][ T5378] veth1_vlan: entered promiscuous mode
[   98.103000][ T5378] veth0_macvtap: entered promiscuous mode
[   98.107963][ T5378] veth1_macvtap: entered promiscuous mode
[   98.122915][ T5378] batman_adv: batadv0: Interface activated: batadv_slave_0
[   98.135463][ T5378] batman_adv: batadv0: Interface activated: batadv_slave_1
[   98.147421][ T1043] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   98.156526][ T1043] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   98.168768][ T1043] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   98.191504][ T1043] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   98.369052][   T31] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.412041][   T31] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.448583][   T31] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.492375][   T31] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.719201][ T1043] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   98.723609][ T1043] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   98.801158][ T1043] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   98.804607][ T1043] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  100.705851][   T31] bridge_slave_1: left allmulticast mode
[  100.708513][   T31] bridge_slave_1: left promiscuous mode
[  100.721184][   T31] bridge0: port 2(bridge_slave_1) entered disabled state
[  100.728659][   T31] bridge_slave_0: left allmulticast mode
[  100.746850][   T31] bridge_slave_0: left promiscuous mode
[  100.749333][   T31] bridge0: port 1(bridge_slave_0) entered disabled state
[  101.114594][   T31] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  101.121459][   T31] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  101.125736][   T31] bond0 (unregistering): Released all slaves
[  101.236201][   T31] hsr_slave_0: left promiscuous mode
[  101.239302][   T31] hsr_slave_1: left promiscuous mode
[  101.251209][   T31] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  101.254574][   T31] batman_adv: batadv0: Removing interface: batadv_slave_0
[  101.280853][   T31] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  101.284240][   T31] batman_adv: batadv0: Removing interface: batadv_slave_1
[  101.334181][   T31] veth1_macvtap: left promiscuous mode
[  101.336844][   T31] veth0_macvtap: left promiscuous mode
[  101.346528][   T31] veth1_vlan: left promiscuous mode
[  101.349290][   T31] veth0_vlan: left promiscuous mode
[  102.003141][   T31] team0 (unregistering): Port device team_slave_1 removed
[  102.027007][   T31] team0 (unregistering): Port device team_slave_0 removed
2025/12/02 04:38:10 executed programs: 0
[  104.153455][ T4672] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  104.157546][ T4672] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  104.162217][ T4672] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  104.165870][ T4672] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  104.169503][ T4672] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  104.428535][ T5455] chnl_net:caif_netlink_parms(): no params data found
[  104.505347][ T5455] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.508633][ T5455] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.512362][ T5455] bridge_slave_0: entered allmulticast mode
[  104.516218][ T5455] bridge_slave_0: entered promiscuous mode
[  104.521133][ T5455] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.523981][ T5455] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.527079][ T5455] bridge_slave_1: entered allmulticast mode
[  104.531548][ T5455] bridge_slave_1: entered promiscuous mode
[  104.558468][ T5455] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  104.565265][ T5455] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  104.592389][ T5455] team0: Port device team_slave_0 added
[  104.596773][ T5455] team0: Port device team_slave_1 added
[  104.633923][ T5455] batman_adv: batadv0: Adding interface: batadv_slave_0
[  104.636961][ T5455] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  104.648864][ T5455] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  104.656873][ T5455] batman_adv: batadv0: Adding interface: batadv_slave_1
[  104.660258][ T5455] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  104.673757][ T5455] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  104.726637][ T5455] hsr_slave_0: entered promiscuous mode
[  104.730881][ T5455] hsr_slave_1: entered promiscuous mode
[  105.224532][ T5455] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  105.251774][ T5455] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  105.259424][ T5455] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  105.280980][ T5455] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  105.322378][ T5455] bridge0: port 2(bridge_slave_1) entered blocking state
[  105.325175][ T5455] bridge0: port 2(bridge_slave_1) entered forwarding state
[  105.328085][ T5455] bridge0: port 1(bridge_slave_0) entered blocking state
[  105.331117][ T5455] bridge0: port 1(bridge_slave_0) entered forwarding state
[  105.448742][ T5455] 8021q: adding VLAN 0 to HW filter on device bond0
[  105.466602][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  105.472847][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  105.505871][ T5455] 8021q: adding VLAN 0 to HW filter on device team0
[  105.525983][   T55] bridge0: port 1(bridge_slave_0) entered blocking state
[  105.529035][   T55] bridge0: port 1(bridge_slave_0) entered forwarding state
[  105.562203][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  105.565308][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  105.894883][ T5455] 8021q: adding VLAN 0 to HW filter on device batadv0
[  105.975500][ T5455] veth0_vlan: entered promiscuous mode
[  105.994577][ T5455] veth1_vlan: entered promiscuous mode
[  106.050599][ T5455] veth0_macvtap: entered promiscuous mode
[  106.057227][ T5455] veth1_macvtap: entered promiscuous mode
[  106.078993][ T5455] batman_adv: batadv0: Interface activated: batadv_slave_0
[  106.107966][ T5455] batman_adv: batadv0: Interface activated: batadv_slave_1
[  106.125938][   T31] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  106.131460][   T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  106.135376][   T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  106.139040][   T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  106.266939][ T4672] Bluetooth: hci0: command tx timeout
[  106.362739][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  106.366269][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  106.449164][   T55] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  106.453584][   T55] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  106.582052][ T5501] FAULT_INJECTION: forcing a failure.
[  106.582052][ T5501] name failslab, interval 1, probability 0, space 0, times 1
[  106.587548][ T5501] CPU: 0 UID: 0 PID: 5501 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[  106.587564][ T5501] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  106.587572][ T5501] Call Trace:
[  106.587578][ T5501]  <TASK>
[  106.587583][ T5501]  dump_stack_lvl+0x189/0x250
[  106.587702][ T5501]  ? __pfx____ratelimit+0x10/0x10
[  106.587742][ T5501]  ? __pfx_dump_stack_lvl+0x10/0x10
[  106.587757][ T5501]  ? __pfx__printk+0x10/0x10
[  106.587771][ T5501]  ? __pfx___might_resched+0x10/0x10
[  106.587784][ T5501]  ? fs_reclaim_acquire+0x7d/0x100
[  106.587802][ T5501]  should_fail_ex+0x414/0x560
[  106.587838][ T5501]  should_failslab+0xa8/0x100
[  106.587846][ T5501]  __kmalloc_cache_noprof+0x6f/0x6f0
[  106.587855][ T5501]  ? drm_atomic_helper_setup_commit+0x1c9/0x1370
[  106.587866][ T5501]  ? drm_self_refresh_helper_alter_state+0x4af/0x540
[  106.587876][ T5501]  drm_atomic_helper_setup_commit+0x1c9/0x1370
[  106.587888][ T5501]  ? __pfx___drm_dev_dbg+0x10/0x10
[  106.587899][ T5501]  drm_atomic_helper_commit+0x6a/0xb10
[  106.587910][ T5501]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[  106.587919][ T5501]  drm_atomic_commit+0x262/0x2c0
[  106.587928][ T5501]  ? __pfx_drm_atomic_commit+0x10/0x10
[  106.587935][ T5501]  ? __pfx___drm_printfn_info+0x10/0x10
[  106.587951][ T5501]  ? drm_mode_object_get+0xcf/0x140
[  106.587963][ T5501]  ? drm_atomic_set_fb_for_plane+0x1f5/0x280
[  106.587977][ T5501]  drm_atomic_helper_update_plane+0x248/0x3b0
[  106.587996][ T5501]  drm_mode_cursor_common+0xb7e/0x12d0
[  106.588027][ T5501]  ? __pfx_drm_mode_cursor_common+0x10/0x10
[  106.588036][ T5501]  ? __kasan_save_free_info+0x46/0x50
[  106.588059][ T5501]  ? __lock_acquire+0xab9/0xd20
[  106.588071][ T5501]  ? drm_mode_cursor_ioctl+0xa6/0x110
[  106.588090][ T5501]  drm_mode_cursor_ioctl+0xbf/0x110
[  106.588107][ T5501]  ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[  106.588125][ T5501]  ? do_raw_spin_unlock+0x4d/0x240
[  106.588141][ T5501]  ? _raw_spin_unlock+0x28/0x50
[  106.588158][ T5501]  ? drm_is_current_master+0x19f/0x200
[  106.588173][ T5501]  drm_ioctl_kernel+0x2cf/0x390
[  106.588189][ T5501]  ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[  106.588205][ T5501]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  106.588227][ T5501]  drm_ioctl+0x67f/0xb10
[  106.588244][ T5501]  ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[  106.588264][ T5501]  ? __pfx_drm_ioctl+0x10/0x10
[  106.588287][ T5501]  ? ksys_write+0x1e1/0x250
[  106.588304][ T5501]  ? bpf_lsm_file_ioctl+0x9/0x20
[  106.588316][ T5501]  ? __pfx_drm_ioctl+0x10/0x10
[  106.588331][ T5501]  __se_sys_ioctl+0xfc/0x170
[  106.588347][ T5501]  do_syscall_64+0xfa/0xfa0
[  106.588365][ T5501]  ? lockdep_hardirqs_on+0x9c/0x150
[  106.588374][ T5501]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.588383][ T5501]  ? clear_bhb_loop+0x60/0xb0
[  106.588395][ T5501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.588405][ T5501] RIP: 0033:0x7f07e578f7c9
[  106.588417][ T5501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  106.588426][ T5501] RSP: 002b:00007ffdfc17c0f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  106.588439][ T5501] RAX: ffffffffffffffda RBX: 00007f07e59e5fa0 RCX: 00007f07e578f7c9
[  106.588447][ T5501] RDX: 0000200000000280 RSI: 00000000c01c64a3 RDI: 0000000000000003
[  106.588454][ T5501] RBP: 00007ffdfc17c150 R08: 0000000000000000 R09: 0000000000000000
[  106.588461][ T5501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  106.588467][ T5501] R13: 00007f07e59e5fa0 R14: 00007f07e59e5fa0 R15: 0000000000000003
[  106.588486][ T5501]  </TASK>
[  106.936167][ T5505] FAULT_INJECTION: forcing a failure.
[  106.936167][ T5505] name failslab, interval 1, probability 0, space 0, times 0
[  106.962074][ T5505] CPU: 0 UID: 0 PID: 5505 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT(full) 
[  106.962088][ T5505] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  106.962093][ T5505] Call Trace:
[  106.962102][ T5505]  <TASK>
[  106.962106][ T5505]  dump_stack_lvl+0x189/0x250
[  106.962131][ T5505]  ? __pfx____ratelimit+0x10/0x10
[  106.962145][ T5505]  ? __pfx_dump_stack_lvl+0x10/0x10
[  106.962155][ T5505]  ? __pfx__printk+0x10/0x10
[  106.962171][ T5505]  ? __pfx___might_resched+0x10/0x10
[  106.962183][ T5505]  ? fs_reclaim_acquire+0x7d/0x100
[  106.962202][ T5505]  should_fail_ex+0x414/0x560
[  106.962224][ T5505]  should_failslab+0xa8/0x100
[  106.962235][ T5505]  __kmalloc_cache_node_noprof+0x74/0x6f0
[  106.962251][ T5505]  ? __get_vm_area_node+0x13f/0x300
[  106.962269][ T5505]  __get_vm_area_node+0x13f/0x300
[  106.962288][ T5505]  __vmalloc_node_range_noprof+0x30c/0x12d0
[  106.962303][ T5505]  ? system_heap_vmap+0x1ff/0x550
[  106.962320][ T5505]  ? trace_contention_end+0x39/0x120
[  106.962337][ T5505]  ? system_heap_vmap+0xaa/0x550
[  106.962348][ T5505]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  106.962365][ T5505]  ? __mutex_trylock_common+0x153/0x260
[  106.962379][ T5505]  ? system_heap_vmap+0x1ff/0x550
[  106.962395][ T5505]  vmalloc_noprof+0xb2/0xf0
[  106.962410][ T5505]  ? system_heap_vmap+0x1ff/0x550
[  106.962426][ T5505]  system_heap_vmap+0x1ff/0x550
[  106.962442][ T5505]  ? trace_contention_end+0x39/0x120
[  106.962456][ T5505]  ? __pfx_system_heap_vmap+0x10/0x10
[  106.962477][ T5505]  ? __pfx_system_heap_vmap+0x10/0x10
[  106.962492][ T5505]  ? __pfx_system_heap_vmap+0x10/0x10
[  106.962508][ T5505]  dma_buf_vmap+0x246/0x3b0
[  106.962523][ T5505]  ? drm_gem_vmap+0x4c/0x1d0
[  106.962539][ T5505]  ? __pfx_dma_buf_vmap+0x10/0x10
[  106.962563][ T5505]  drm_gem_shmem_vmap_locked+0x14c/0x790
[  106.962577][ T5505]  ? dma_resv_get_singleton+0x81/0x280
[  106.962593][ T5505]  ? __pfx_drm_gem_shmem_vmap_locked+0x10/0x10
[  106.962611][ T5505]  drm_gem_vmap+0x10a/0x1d0
[  106.962628][ T5505]  drm_gem_fb_vmap+0xaa/0x8d0
[  106.962649][ T5505]  drm_atomic_helper_prepare_planes+0x2d6/0xb60
[  106.962671][ T5505]  drm_atomic_helper_commit+0x19a/0xb10
[  106.962695][ T5505]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[  106.962710][ T5505]  drm_atomic_commit+0x262/0x2c0
[  106.962725][ T5505]  ? __pfx_drm_atomic_commit+0x10/0x10
[  106.962736][ T5505]  ? __pfx___drm_printfn_info+0x10/0x10
[  106.962755][ T5505]  ? drm_mode_object_get+0xcf/0x140
[  106.962769][ T5505]  ? drm_atomic_set_fb_for_plane+0x1f5/0x280
[  106.962784][ T5505]  drm_atomic_helper_update_plane+0x248/0x3b0
[  106.962803][ T5505]  drm_mode_cursor_common+0xb7e/0x12d0
[  106.962839][ T5505]  ? __pfx_drm_mode_cursor_common+0x10/0x10
[  106.962855][ T5505]  ? __kasan_save_free_info+0x46/0x50
[  106.962889][ T5505]  ? __lock_acquire+0xab9/0xd20
[  106.962902][ T5505]  ? drm_mode_cursor_ioctl+0xa6/0x110
[  106.962922][ T5505]  drm_mode_cursor_ioctl+0xbf/0x110
[  106.962940][ T5505]  ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[  106.962960][ T5505]  ? do_raw_spin_unlock+0x4d/0x240
[  106.962976][ T5505]  ? _raw_spin_unlock+0x28/0x50
[  106.962987][ T5505]  ? drm_is_current_master+0x19f/0x200
[  106.963002][ T5505]  drm_ioctl_kernel+0x2cf/0x390
[  106.963018][ T5505]  ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[  106.963034][ T5505]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  106.963056][ T5505]  drm_ioctl+0x67f/0xb10
[  106.963070][ T5505]  ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[  106.963081][ T5505]  ? __pfx_drm_ioctl+0x10/0x10
[  106.963103][ T5505]  ? ksys_write+0x1e1/0x250
[  106.963123][ T5505]  ? bpf_lsm_file_ioctl+0x9/0x20
[  106.963136][ T5505]  ? __pfx_drm_ioctl+0x10/0x10
[  106.963152][ T5505]  __se_sys_ioctl+0xfc/0x170
[  106.963168][ T5505]  do_syscall_64+0xfa/0xfa0
[  106.963181][ T5505]  ? lockdep_hardirqs_on+0x9c/0x150
[  106.963193][ T5505]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.963204][ T5505]  ? clear_bhb_loop+0x60/0xb0
[  106.963218][ T5505]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.963228][ T5505] RIP: 0033:0x7f07e578f7c9
[  106.963239][ T5505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  106.963248][ T5505] RSP: 002b:00007ffdfc17c0f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  106.963262][ T5505] RAX: ffffffffffffffda RBX: 00007f07e59e5fa0 RCX: 00007f07e578f7c9
[  106.963270][ T5505] RDX: 0000200000000280 RSI: 00000000c01c64a3 RDI: 0000000000000003
[  106.963276][ T5505] RBP: 00007ffdfc17c150 R08: 0000000000000000 R09: 0000000000000000
[  106.963283][ T5505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  106.963289][ T5505] R13: 00007f07e59e5fa0 R14: 00007f07e59e5fa0 R15: 0000000000000003
[  106.963307][ T5505]  </TASK>
[  106.963459][ T5505] syz.0.18: vmalloc error: size 264, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[  107.350488][ T5505] CPU: 0 UID: 0 PID: 5505 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT(full) 
[  107.350506][ T5505] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  107.350514][ T5505] Call Trace:
[  107.350518][ T5505]  <TASK>
[  107.350524][ T5505]  dump_stack_lvl+0x189/0x250
[  107.350546][ T5505]  ? __pfx_dump_stack_lvl+0x10/0x10
[  107.350560][ T5505]  ? __pfx__printk+0x10/0x10
[  107.350572][ T5505]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  107.350589][ T5505]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  107.350605][ T5505]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  107.350623][ T5505]  warn_alloc+0x214/0x310
[  107.350645][ T5505]  ? __pfx_warn_alloc+0x10/0x10
[  107.350667][ T5505]  ? __get_vm_area_node+0x2b5/0x300
[  107.350686][ T5505]  __vmalloc_node_range_noprof+0x331/0x12d0
[  107.350702][ T5505]  ? trace_contention_end+0x39/0x120
[  107.350729][ T5505]  ? system_heap_vmap+0xaa/0x550
[  107.350751][ T5505]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  107.350769][ T5505]  ? __mutex_trylock_common+0x153/0x260
[  107.350784][ T5505]  ? system_heap_vmap+0x1ff/0x550
[  107.350800][ T5505]  vmalloc_noprof+0xb2/0xf0
[  107.350817][ T5505]  ? system_heap_vmap+0x1ff/0x550
[  107.350835][ T5505]  system_heap_vmap+0x1ff/0x550
[  107.350853][ T5505]  ? trace_contention_end+0x39/0x120
[  107.350869][ T5505]  ? __pfx_system_heap_vmap+0x10/0x10
[  107.350888][ T5505]  ? __pfx_system_heap_vmap+0x10/0x10
[  107.350904][ T5505]  ? __pfx_system_heap_vmap+0x10/0x10
[  107.350921][ T5505]  dma_buf_vmap+0x246/0x3b0
[  107.350936][ T5505]  ? drm_gem_vmap+0x4c/0x1d0
[  107.350955][ T5505]  ? __pfx_dma_buf_vmap+0x10/0x10
[  107.350978][ T5505]  drm_gem_shmem_vmap_locked+0x14c/0x790
[  107.350992][ T5505]  ? dma_resv_get_singleton+0x81/0x280
[  107.351008][ T5505]  ? __pfx_drm_gem_shmem_vmap_locked+0x10/0x10
[  107.351025][ T5505]  drm_gem_vmap+0x10a/0x1d0
[  107.351041][ T5505]  drm_gem_fb_vmap+0xaa/0x8d0
[  107.351060][ T5505]  drm_atomic_helper_prepare_planes+0x2d6/0xb60
[  107.351081][ T5505]  drm_atomic_helper_commit+0x19a/0xb10
[  107.351099][ T5505]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[  107.351113][ T5505]  drm_atomic_commit+0x262/0x2c0
[  107.351128][ T5505]  ? __pfx_drm_atomic_commit+0x10/0x10
[  107.351139][ T5505]  ? __pfx___drm_printfn_info+0x10/0x10
[  107.351158][ T5505]  ? drm_mode_object_get+0xcf/0x140
[  107.351167][ T5505]  ? drm_atomic_set_fb_for_plane+0x1f5/0x280
[  107.351176][ T5505]  drm_atomic_helper_update_plane+0x248/0x3b0
[  107.351188][ T5505]  drm_mode_cursor_common+0xb7e/0x12d0
[  107.351209][ T5505]  ? __pfx_drm_mode_cursor_common+0x10/0x10
[  107.351218][ T5505]  ? __kasan_save_free_info+0x46/0x50
[  107.351240][ T5505]  ? __lock_acquire+0xab9/0xd20
[  107.351248][ T5505]  ? drm_mode_cursor_ioctl+0xa6/0x110
[  107.351259][ T5505]  drm_mode_cursor_ioctl+0xbf/0x110
[  107.351270][ T5505]  ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[  107.351282][ T5505]  ? do_raw_spin_unlock+0x4d/0x240
[  107.351292][ T5505]  ? _raw_spin_unlock+0x28/0x50
[  107.351300][ T5505]  ? drm_is_current_master+0x19f/0x200
[  107.351309][ T5505]  drm_ioctl_kernel+0x2cf/0x390
[  107.351319][ T5505]  ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[  107.351329][ T5505]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  107.351348][ T5505]  drm_ioctl+0x67f/0xb10
[  107.351359][ T5505]  ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[  107.351371][ T5505]  ? __pfx_drm_ioctl+0x10/0x10
[  107.351385][ T5505]  ? ksys_write+0x1e1/0x250
[  107.351397][ T5505]  ? bpf_lsm_file_ioctl+0x9/0x20
[  107.351406][ T5505]  ? __pfx_drm_ioctl+0x10/0x10
[  107.351421][ T5505]  __se_sys_ioctl+0xfc/0x170
[  107.351431][ T5505]  do_syscall_64+0xfa/0xfa0
[  107.351439][ T5505]  ? lockdep_hardirqs_on+0x9c/0x150
[  107.351446][ T5505]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.351453][ T5505]  ? clear_bhb_loop+0x60/0xb0
[  107.351462][ T5505]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.351470][ T5505] RIP: 0033:0x7f07e578f7c9
[  107.351481][ T5505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.351490][ T5505] RSP: 002b:00007ffdfc17c0f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  107.351501][ T5505] RAX: ffffffffffffffda RBX: 00007f07e59e5fa0 RCX: 00007f07e578f7c9
[  107.351509][ T5505] RDX: 0000200000000280 RSI: 00000000c01c64a3 RDI: 0000000000000003
[  107.351515][ T5505] RBP: 00007ffdfc17c150 R08: 0000000000000000 R09: 0000000000000000
[  107.351521][ T5505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  107.351527][ T5505] R13: 00007f07e59e5fa0 R14: 00007f07e59e5fa0 R15: 0000000000000003
[  107.351540][ T5505]  </TASK>
[  107.351543][ T5505] Mem-Info:
[  107.701809][ T5505] active_anon:38151 inactive_anon:3 isolated_anon:0
[  107.701809][ T5505]  active_file:9104 inactive_file:29648 isolated_file:0
[  107.701809][ T5505]  unevictable:1768 dirty:57 writeback:0
[  107.701809][ T5505]  slab_reclaimable:5264 slab_unreclaimable:31041
[  107.701809][ T5505]  mapped:10052 shmem:2151 pagetables:776
[  107.701809][ T5505]  sec_pagetables:290 bounce:0
[  107.701809][ T5505]  kernel_misc_reclaimable:0
[  107.701809][ T5505]  free:16371 free_pcp:11117 free_cma:0
[  107.740376][ T5505] Node 0 active_anon:2504kB inactive_anon:12kB active_file:20kB inactive_file:4kB unevictable:1140kB isolated(anon):0kB isolated(file):0kB mapped:8kB dirty:12kB writeback:0kB shmem:1140kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:3088kB pagetables:1124kB sec_pagetables:1124kB all_unreclaimable? yes Balloon:0kB
[  107.770604][ T5505] Node 1 active_anon:150280kB inactive_anon:0kB active_file:36396kB inactive_file:118588kB unevictable:5932kB isolated(anon):0kB isolated(file):0kB mapped:40740kB dirty:216kB writeback:0kB shmem:7464kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:6928kB pagetables:2016kB sec_pagetables:36kB all_unreclaimable? no Balloon:0kB
[  107.803600][ T5505] Node 0 DMA free:1788kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:524kB inactive_anon:12kB active_file:4kB inactive_file:0kB unevictable:316kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:832kB local_pcp:832kB free_cma:0kB
[  107.829917][ T5505] lowmem_reserve[]: 0 125 125 125 125
[  107.832286][ T5505] Node 0 DMA32 free:6196kB boost:0kB min:4980kB low:6224kB high:7468kB reserved_highatomic:0KB free_highatomic:0KB active_anon:1980kB inactive_anon:0kB active_file:16kB inactive_file:4kB unevictable:824kB writepending:12kB zspages:0kB present:770052kB managed:128248kB mlocked:0kB bounce:0kB free_pcp:5224kB local_pcp:5224kB free_cma:0kB
[  107.874319][ T5505] lowmem_reserve[]: 0 0 0 0 0
[  107.876459][ T5505] Node 1 DMA32 free:57500kB boost:0kB min:34308kB low:42884kB high:51460kB reserved_highatomic:0KB free_highatomic:0KB active_anon:150376kB inactive_anon:0kB active_file:36396kB inactive_file:118588kB unevictable:5932kB writepending:216kB zspages:2768kB present:786288kB managed:690812kB mlocked:0kB bounce:0kB free_pcp:37848kB local_pcp:37848kB free_cma:0kB
[  107.910035][ T5505] lowmem_reserve[]: 0 0 0 0 0
[  107.912013][ T5505] Node 0 DMA: 29*4kB (U) 29*8kB (U) 8*16kB (UM) 21*32kB (U) 6*64kB (UM) 2*128kB (UM) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 1788kB
[  107.917999][ T5505] Node 0 DMA32: 41*4kB (UE) 16*8kB (UM) 23*16kB (U) 59*32kB (U) 1*64kB (U) 2*128kB (U) 3*256kB (U) 1*512kB (U) 2*1024kB (M) 0*2048kB 0*4096kB = 6196kB
[  107.950142][ T5505] Node 1 DMA32: 764*4kB (UME) 151*8kB (UME) 20*16kB (UM) 74*32kB (UME) 68*64kB (UME) 43*128kB (UME) 31*256kB (UME) 16*512kB (UM) 12*1024kB (UME) 6*2048kB (UM) 0*4096kB = 57512kB
[  107.957873][ T5505] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  107.984256][ T5505] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  107.988610][ T5505] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  107.993217][ T5505] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  107.997460][ T5505] 41268 total pagecache pages
[  108.003193][ T5505] 369 pages in swap cache
[  108.005141][ T5505] Free swap  = 119108kB
[  108.007109][ T5505] Total swap = 124996kB
[  108.009067][ T5505] 393083 pages RAM
[  108.011928][ T5505] 0 pages HighMem/MovableOnly
[  108.014057][ T5505] 184478 pages reserved
[  108.015958][ T5505] 0 pages cma reserved
[  108.018118][ T5505] ------------[ cut here ]------------
[  108.020933][ T5505] WARNING: CPU: 0 PID: 5505 at drivers/dma-buf/dma-buf.c:1536 dma_buf_vmap+0x306/0x3b0
[  108.025486][ T5505] Modules linked in:
[  108.027342][ T5505] CPU: 0 UID: 0 PID: 5505 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT(full) 
[  108.031281][ T5505] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  108.035703][ T5505] RIP: 0010:dma_buf_vmap+0x306/0x3b0
[  108.038003][ T5505] Code: 64 05 cc e8 0c 99 d7 fb 90 0f 0b 90 b8 ea ff ff ff eb bc e8 fc 98 d7 fb 90 0f 0b 90 e9 0d fe ff ff e8 ee 98 d7 fb 44 89 f0 90 <0f> 0b 90 49 bd 00 00 00 00 00 fc ff df eb 91 e8 c6 9c 61 05 48 c7
[  108.046106][ T5505] RSP: 0018:ffffc90002aaf3a0 EFLAGS: 00010293
[  108.048716][ T5505] RAX: 00000000fffffff4 RBX: ffff888058f38c28 RCX: ffff888000a0a480
[  108.052185][ T5505] RDX: 0000000000000000 RSI: 00000000fffffff4 RDI: 0000000000000000
[  108.055428][ T5505] RBP: ffffc90002aaf450 R08: ffffc90002aaf227 R09: 1ffff92000555e44
[  108.059007][ T5505] R10: dffffc0000000000 R11: fffff52000555e45 R12: ffffffff85ea4500
[  108.062632][ T5505] R13: ffff888058f38c30 R14: 00000000fffffff4 R15: 1ffff1100b1e7185
[  108.065939][ T5505] FS:  0000555570a4a500(0000) GS:ffff88808d722000(0000) knlGS:0000000000000000
[  108.069433][ T5505] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  108.072268][ T5505] CR2: 00005613e17af138 CR3: 00000000592aa000 CR4: 0000000000352ef0
[  108.075569][ T5505] Call Trace:
[  108.076858][ T5505]  <TASK>
[  108.078161][ T5505]  ? drm_gem_vmap+0x4c/0x1d0
[  108.080296][ T5505]  ? __pfx_dma_buf_vmap+0x10/0x10
[  108.082336][ T5505]  drm_gem_shmem_vmap_locked+0x14c/0x790
[  108.084618][ T5505]  ? dma_resv_get_singleton+0x81/0x280
[  108.086767][ T5505]  ? __pfx_drm_gem_shmem_vmap_locked+0x10/0x10
[  108.089160][ T5505]  drm_gem_vmap+0x10a/0x1d0
[  108.091311][ T5505]  drm_gem_fb_vmap+0xaa/0x8d0
[  108.093218][ T5505]  drm_atomic_helper_prepare_planes+0x2d6/0xb60
[  108.095725][ T5505]  drm_atomic_helper_commit+0x19a/0xb10
[  108.098076][ T5505]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[  108.101123][ T5505]  drm_atomic_commit+0x262/0x2c0
[  108.103247][ T5505]  ? __pfx_drm_atomic_commit+0x10/0x10
[  108.105702][ T5505]  ? __pfx___drm_printfn_info+0x10/0x10
[  108.108736][ T5505]  ? drm_mode_object_get+0xcf/0x140
[  108.111253][ T5505]  ? drm_atomic_set_fb_for_plane+0x1f5/0x280
[  108.114710][ T5505]  drm_atomic_helper_update_plane+0x248/0x3b0
[  108.121477][ T5505]  drm_mode_cursor_common+0xb7e/0x12d0
[  108.124082][ T5505]  ? __pfx_drm_mode_cursor_common+0x10/0x10
[  108.126662][ T5505]  ? __kasan_save_free_info+0x46/0x50
[  108.128844][ T5505]  ? __lock_acquire+0xab9/0xd20
[  108.131330][ T5505]  ? drm_mode_cursor_ioctl+0xa6/0x110
[  108.133626][ T5505]  drm_mode_cursor_ioctl+0xbf/0x110
[  108.135919][ T5505]  ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[  108.138449][ T5505]  ? do_raw_spin_unlock+0x4d/0x240
[  108.140747][ T5505]  ? _raw_spin_unlock+0x28/0x50
[  108.142940][ T5505]  ? drm_is_current_master+0x19f/0x200
[  108.145380][ T5505]  drm_ioctl_kernel+0x2cf/0x390
[  108.147505][ T5505]  ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[  108.150345][ T5505]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  108.152757][ T5505]  drm_ioctl+0x67f/0xb10
[  108.154689][ T5505]  ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[  108.157228][ T5505]  ? __pfx_drm_ioctl+0x10/0x10
[  108.159548][ T5505]  ? ksys_write+0x1e1/0x250
[  108.161680][ T5505]  ? bpf_lsm_file_ioctl+0x9/0x20
[  108.163902][ T5505]  ? __pfx_drm_ioctl+0x10/0x10
[  108.165978][ T5505]  __se_sys_ioctl+0xfc/0x170
[  108.167927][ T5505]  do_syscall_64+0xfa/0xfa0
[  108.170545][ T5505]  ? lockdep_hardirqs_on+0x9c/0x150
[  108.172832][ T5505]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.175574][ T5505]  ? clear_bhb_loop+0x60/0xb0
[  108.177732][ T5505]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.180518][ T5505] RIP: 0033:0x7f07e578f7c9
[  108.182487][ T5505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.190938][ T5505] RSP: 002b:00007ffdfc17c0f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  108.194569][ T5505] RAX: ffffffffffffffda RBX: 00007f07e59e5fa0 RCX: 00007f07e578f7c9
[  108.198042][ T5505] RDX: 0000200000000280 RSI: 00000000c01c64a3 RDI: 0000000000000003
[  108.201617][ T5505] RBP: 00007ffdfc17c150 R08: 0000000000000000 R09: 0000000000000000
[  108.205685][ T5505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  108.209805][ T5505] R13: 00007f07e59e5fa0 R14: 00007f07e59e5fa0 R15: 0000000000000003
[  108.213222][ T5505]  </TASK>
[  108.214638][ T5505] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  108.217729][ T5505] CPU: 0 UID: 0 PID: 5505 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT(full) 
[  108.221594][ T5505] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  108.226272][ T5505] Call Trace:
[  108.227739][ T5505]  <TASK>
[  108.229087][ T5505]  dump_stack_lvl+0x99/0x250
[  108.231127][ T5505]  ? __asan_memcpy+0x40/0x70
[  108.233116][ T5505]  ? __pfx_dump_stack_lvl+0x10/0x10
[  108.235355][ T5505]  ? __pfx__printk+0x10/0x10
[  108.237281][ T5505]  vpanic+0x237/0x6d0
[  108.239012][ T5505]  ? __pfx_vpanic+0x10/0x10
[  108.241025][ T5505]  panic+0xb9/0xc0
[  108.242673][ T5505]  ? __pfx_panic+0x10/0x10
[  108.244671][ T5505]  __warn+0x31b/0x4b0
[  108.246464][ T5505]  ? dma_buf_vmap+0x306/0x3b0
[  108.248601][ T5505]  ? dma_buf_vmap+0x306/0x3b0
[  108.250768][ T5505]  report_bug+0x2be/0x4f0
[  108.252734][ T5505]  ? dma_buf_vmap+0x306/0x3b0
[  108.254876][ T5505]  ? dma_buf_vmap+0x306/0x3b0
[  108.256830][ T5505]  ? dma_buf_vmap+0x308/0x3b0
[  108.258784][ T5505]  handle_bug+0x84/0x160
[  108.260512][ T5505]  exc_invalid_op+0x1a/0x50
[  108.263095][ T5505]  asm_exc_invalid_op+0x1a/0x20
[  108.265074][ T5505] RIP: 0010:dma_buf_vmap+0x306/0x3b0
[  108.267170][ T5505] Code: 64 05 cc e8 0c 99 d7 fb 90 0f 0b 90 b8 ea ff ff ff eb bc e8 fc 98 d7 fb 90 0f 0b 90 e9 0d fe ff ff e8 ee 98 d7 fb 44 89 f0 90 <0f> 0b 90 49 bd 00 00 00 00 00 fc ff df eb 91 e8 c6 9c 61 05 48 c7
[  108.275286][ T5505] RSP: 0018:ffffc90002aaf3a0 EFLAGS: 00010293
[  108.277864][ T5505] RAX: 00000000fffffff4 RBX: ffff888058f38c28 RCX: ffff888000a0a480
[  108.281252][ T5505] RDX: 0000000000000000 RSI: 00000000fffffff4 RDI: 0000000000000000
[  108.284511][ T5505] RBP: ffffc90002aaf450 R08: ffffc90002aaf227 R09: 1ffff92000555e44
[  108.287926][ T5505] R10: dffffc0000000000 R11: fffff52000555e45 R12: ffffffff85ea4500
[  108.291317][ T5505] R13: ffff888058f38c30 R14: 00000000fffffff4 R15: 1ffff1100b1e7185
[  108.294751][ T5505]  ? __pfx_system_heap_vmap+0x10/0x10
[  108.297167][ T5505]  ? drm_gem_vmap+0x4c/0x1d0
[  108.299256][ T5505]  ? __pfx_dma_buf_vmap+0x10/0x10
[  108.301436][ T5505]  drm_gem_shmem_vmap_locked+0x14c/0x790
[  108.303806][ T5505]  ? dma_resv_get_singleton+0x81/0x280
[  108.306253][ T5505]  ? __pfx_drm_gem_shmem_vmap_locked+0x10/0x10
[  108.308982][ T5505]  drm_gem_vmap+0x10a/0x1d0
[  108.310945][ T5505]  drm_gem_fb_vmap+0xaa/0x8d0
[  108.312840][ T5505]  drm_atomic_helper_prepare_planes+0x2d6/0xb60
[  108.315517][ T5505]  drm_atomic_helper_commit+0x19a/0xb10
[  108.317922][ T5505]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[  108.320547][ T5505]  drm_atomic_commit+0x262/0x2c0
[  108.322758][ T5505]  ? __pfx_drm_atomic_commit+0x10/0x10
[  108.325142][ T5505]  ? __pfx___drm_printfn_info+0x10/0x10
[  108.327597][ T5505]  ? drm_mode_object_get+0xcf/0x140
[  108.329906][ T5505]  ? drm_atomic_set_fb_for_plane+0x1f5/0x280
[  108.332397][ T5505]  drm_atomic_helper_update_plane+0x248/0x3b0
[  108.334942][ T5505]  drm_mode_cursor_common+0xb7e/0x12d0
[  108.337266][ T5505]  ? __pfx_drm_mode_cursor_common+0x10/0x10
[  108.339959][ T5505]  ? __kasan_save_free_info+0x46/0x50
[  108.342361][ T5505]  ? __lock_acquire+0xab9/0xd20
[  108.344489][ T5505]  ? drm_mode_cursor_ioctl+0xa6/0x110
[  108.346877][ T5505]  drm_mode_cursor_ioctl+0xbf/0x110
[  108.349177][ T5505]  ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[  108.351787][ T5505]  ? do_raw_spin_unlock+0x4d/0x240
[  108.354062][ T5505]  ? _raw_spin_unlock+0x28/0x50
[  108.356113][ T5505]  ? drm_is_current_master+0x19f/0x200
[  108.358467][ T5505]  drm_ioctl_kernel+0x2cf/0x390
[  108.360691][ T5505]  ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[  108.363236][ T5505]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  108.365622][ T5505]  drm_ioctl+0x67f/0xb10
[  108.367663][ T5505]  ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[  108.370355][ T5505]  ? __pfx_drm_ioctl+0x10/0x10
[  108.372406][ T5505]  ? ksys_write+0x1e1/0x250
[  108.374366][ T5505]  ? bpf_lsm_file_ioctl+0x9/0x20
[  108.376445][ T5505]  ? __pfx_drm_ioctl+0x10/0x10
[  108.378550][ T5505]  __se_sys_ioctl+0xfc/0x170
[  108.380614][ T5505]  do_syscall_64+0xfa/0xfa0
[  108.382623][ T5505]  ? lockdep_hardirqs_on+0x9c/0x150
[  108.384817][ T5505]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.387400][ T5505]  ? clear_bhb_loop+0x60/0xb0
[  108.389535][ T5505]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.392147][ T5505] RIP: 0033:0x7f07e578f7c9
[  108.394207][ T5505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.402406][ T5505] RSP: 002b:00007ffdfc17c0f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  108.406302][ T5505] RAX: ffffffffffffffda RBX: 00007f07e59e5fa0 RCX: 00007f07e578f7c9
[  108.409719][ T5505] RDX: 0000200000000280 RSI: 00000000c01c64a3 RDI: 0000000000000003
[  108.413166][ T5505] RBP: 00007ffdfc17c150 R08: 0000000000000000 R09: 0000000000000000
[  108.416956][ T5505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  108.420187][ T5505] R13: 00007f07e59e5fa0 R14: 00007f07e59e5fa0 R15: 0000000000000003
[  108.423498][ T5505]  </TASK>
[  108.425141][ T5505] Kernel Offset: disabled
[  108.426939][ T5505] Rebooting in 86400 seconds..