Warning: Permanently added '10.128.0.80' (ECDSA) to the list of known hosts.
2021/06/07 14:44:30 parsed 1 programs
2021/06/07 14:44:31 executed programs: 0
syzkaller login: [ 1583.483126] IPVS: ftp: loaded support on port[0] = 21
[ 1583.589780] chnl_net:caif_netlink_parms(): no params data found
[ 1583.653714] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1583.660746] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1583.668525] device bridge_slave_0 entered promiscuous mode
[ 1583.676056] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1583.682878] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1583.690366] device bridge_slave_1 entered promiscuous mode
[ 1583.708145] bond0: Enslaving bond_slave_0 as an active interface with an up link
[ 1583.718402] bond0: Enslaving bond_slave_1 as an active interface with an up link
[ 1583.737273] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[ 1583.744719] team0: Port device team_slave_0 added
[ 1583.751021] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[ 1583.758744] team0: Port device team_slave_1 added
[ 1583.774577] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1583.781271] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1583.806780] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1583.818859] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1583.825388] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1583.851489] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1583.862460] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[ 1583.870172] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[ 1583.890591] device hsr_slave_0 entered promiscuous mode
[ 1583.896554] device hsr_slave_1 entered promiscuous mode
[ 1583.902822] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[ 1583.910212] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[ 1583.976121] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1583.982804] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1583.989877] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1583.996340] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1584.031039] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready
[ 1584.037635] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1584.045558] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[ 1584.055702] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1584.064713] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1584.072984] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1584.081278] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 1584.092512] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[ 1584.098652] 8021q: adding VLAN 0 to HW filter on device team0
[ 1584.108883] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1584.116955] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1584.123661] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1584.140586] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1584.148908] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1584.155614] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1584.165218] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1584.180028] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1584.190888] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1584.201803] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[ 1584.208725] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1584.216025] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1584.224002] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1584.231990] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1584.241078] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1584.253945] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready
[ 1584.262388] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1584.269520] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1584.282161] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1584.295394] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready
[ 1584.305294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1584.339297] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready
[ 1584.346286] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready
[ 1584.354660] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready
[ 1584.364757] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1584.372556] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1584.380372] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1584.389723] device veth0_vlan entered promiscuous mode
[ 1584.400242] device veth1_vlan entered promiscuous mode
[ 1584.407170] IPv6: ADDRCONF(NETDEV_UP): macvlan0: link is not ready
[ 1584.416370] IPv6: ADDRCONF(NETDEV_UP): macvlan1: link is not ready
[ 1584.429347] IPv6: ADDRCONF(NETDEV_UP): veth0_macvtap: link is not ready
[ 1584.440001] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1584.447635] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1584.454919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1584.465345] device veth0_macvtap entered promiscuous mode
[ 1584.472151] IPv6: ADDRCONF(NETDEV_UP): macvtap0: link is not ready
[ 1584.480700] device veth1_macvtap entered promiscuous mode
[ 1584.489901] IPv6: ADDRCONF(NETDEV_UP): veth0_to_batadv: link is not ready
[ 1584.499903] IPv6: ADDRCONF(NETDEV_UP): veth1_to_batadv: link is not ready
[ 1584.510583] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1584.517963] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1584.526089] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1584.537244] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1584.543929] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1584.659737] IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready
[ 1584.667316] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1584.682478] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1584.690707] IPv6: ADDRCONF(NETDEV_UP): wlan1: link is not ready
[ 1584.699176] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1584.707318] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1584.715201] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1584.722371] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1585.507422] Bluetooth: hci0: command 0x0409 tx timeout
2021/06/07 14:44:36 executed programs: 181
[ 1587.588052] Bluetooth: hci0: command 0x041b tx timeout
[ 1589.667208] Bluetooth: hci0: command 0x040f tx timeout
[ 1591.746554] Bluetooth: hci0: command 0x0419 tx timeout
2021/06/07 14:44:41 executed programs: 680
2021/06/07 14:44:46 executed programs: 1166
2021/06/07 14:44:51 executed programs: 1651
2021/06/07 14:44:56 executed programs: 2154
[ 1608.308084] ieee802154 phy0 wpan0: encryption failed: -22
[ 1608.313845] ieee802154 phy1 wpan1: encryption failed: -22
2021/06/07 14:45:01 executed programs: 2648
2021/06/07 14:45:06 executed programs: 3132
2021/06/07 14:45:11 executed programs: 3632
2021/06/07 14:45:16 executed programs: 4121
2021/06/07 14:45:21 executed programs: 4613
2021/06/07 14:45:26 executed programs: 5099
2021/06/07 14:45:31 executed programs: 5575
2021/06/07 14:45:36 executed programs: 6056
2021/06/07 14:45:41 executed programs: 6547
2021/06/07 14:45:46 executed programs: 7021
2021/06/07 14:45:51 executed programs: 7498
2021/06/07 14:45:56 executed programs: 7986
[ 1669.757697] ieee802154 phy0 wpan0: encryption failed: -22
[ 1669.763509] ieee802154 phy1 wpan1: encryption failed: -22
2021/06/07 14:46:01 executed programs: 8465
2021/06/07 14:46:06 executed programs: 8946
2021/06/07 14:46:11 executed programs: 9427
2021/06/07 14:46:16 executed programs: 9906
2021/06/07 14:46:21 executed programs: 10381
2021/06/07 14:46:26 executed programs: 10863
2021/06/07 14:46:31 executed programs: 11325
2021/06/07 14:46:36 executed programs: 11810
[ 1707.668370] Bluetooth: hci0: command 0x0406 tx timeout
2021/06/07 14:46:41 executed programs: 12294
2021/06/07 14:46:46 executed programs: 12777
2021/06/07 14:46:51 executed programs: 13257
2021/06/07 14:46:56 executed programs: 13720
[ 1731.187992] ieee802154 phy0 wpan0: encryption failed: -22
[ 1731.193750] ieee802154 phy1 wpan1: encryption failed: -22
2021/06/07 14:47:01 executed programs: 14186
2021/06/07 14:47:06 executed programs: 14664
2021/06/07 14:47:11 executed programs: 15143
2021/06/07 14:47:16 executed programs: 15611
2021/06/07 14:47:21 executed programs: 16101
2021/06/07 14:47:26 executed programs: 16566
2021/06/07 14:47:31 executed programs: 17028
2021/06/07 14:47:36 executed programs: 17489
2021/06/07 14:47:41 executed programs: 17967
2021/06/07 14:47:46 executed programs: 18445
2021/06/07 14:47:51 executed programs: 18917
2021/06/07 14:47:56 executed programs: 19390
2021/06/07 14:48:01 executed programs: 19851
[ 1792.639052] ieee802154 phy0 wpan0: encryption failed: -22
[ 1792.644720] ieee802154 phy1 wpan1: encryption failed: -22
2021/06/07 14:48:06 executed programs: 20298
2021/06/07 14:48:11 executed programs: 20780
2021/06/07 14:48:16 executed programs: 21271
2021/06/07 14:48:21 executed programs: 21738
2021/06/07 14:48:26 executed programs: 22205
2021/06/07 14:48:31 executed programs: 22645
2021/06/07 14:48:36 executed programs: 23093
2021/06/07 14:48:41 executed programs: 23575
2021/06/07 14:48:46 executed programs: 24052
2021/06/07 14:48:51 executed programs: 24517
2021/06/07 14:48:56 executed programs: 24987
2021/06/07 14:49:01 executed programs: 25440
[ 1854.068338] ieee802154 phy0 wpan0: encryption failed: -22
[ 1854.073977] ieee802154 phy1 wpan1: encryption failed: -22
2021/06/07 14:49:06 executed programs: 25906
2021/06/07 14:49:11 executed programs: 26394
2021/06/07 14:49:16 executed programs: 26874
2021/06/07 14:49:21 executed programs: 27354
2021/06/07 14:49:26 executed programs: 27810
2021/06/07 14:49:31 executed programs: 28268
2021/06/07 14:49:36 executed programs: 28729
2021/06/07 14:49:41 executed programs: 29198
2021/06/07 14:49:46 executed programs: 29692
2021/06/07 14:49:51 executed programs: 30161
2021/06/07 14:49:56 executed programs: 30630
2021/06/07 14:50:01 executed programs: 31107
[ 1915.508353] ieee802154 phy0 wpan0: encryption failed: -22
[ 1915.514076] ieee802154 phy1 wpan1: encryption failed: -22
2021/06/07 14:50:06 executed programs: 31564
2021/06/07 14:50:11 executed programs: 32045
2021/06/07 14:50:16 executed programs: 32538
2021/06/07 14:50:21 executed programs: 33026
2021/06/07 14:50:26 executed programs: 33505
2021/06/07 14:50:31 executed programs: 33971
2021/06/07 14:50:36 executed programs: 34447
2021/06/07 14:50:41 executed programs: 34930
2021/06/07 14:50:46 executed programs: 35430
2021/06/07 14:50:51 executed programs: 35916
2021/06/07 14:50:56 executed programs: 36410
2021/06/07 14:51:01 executed programs: 36896
[ 1976.947777] ieee802154 phy0 wpan0: encryption failed: -22
[ 1976.953597] ieee802154 phy1 wpan1: encryption failed: -22
2021/06/07 14:51:06 executed programs: 37378
2021/06/07 14:51:11 executed programs: 37875
[ 1984.526734] ==================================================================
[ 1984.534320] BUG: KASAN: use-after-free in vgem_gem_dumb_create+0x22c/0x240
[ 1984.541531] Read of size 8 at addr ffff8880a49bc8c0 by task syz-executor.0/26464
[ 1984.549044] 
[ 1984.550662] CPU: 0 PID: 26464 Comm: syz-executor.0 Not tainted 4.19.193-syzkaller #0
[ 1984.558653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1984.568194] Call Trace:
[ 1984.570803]  dump_stack+0x1fc/0x2ef
[ 1984.574444]  print_address_description.cold+0x54/0x219
[ 1984.579999]  kasan_report_error.cold+0x8a/0x1b9
[ 1984.584677]  ? vgem_gem_dumb_create+0x22c/0x240
[ 1984.589428]  __asan_report_load8_noabort+0x88/0x90
[ 1984.594360]  ? drm_gem_object_put_unlocked+0xd0/0x180
[ 1984.599629]  ? vgem_gem_dumb_create+0x22c/0x240
[ 1984.604307]  vgem_gem_dumb_create+0x22c/0x240
[ 1984.608793]  drm_mode_create_dumb+0x27c/0x300
[ 1984.613279]  drm_ioctl_kernel+0x208/0x2a0
[ 1984.617435]  ? drm_mode_create_dumb+0x300/0x300
[ 1984.622357]  ? drm_ioctl_permit+0x210/0x210
[ 1984.626669]  ? __might_fault+0x192/0x1d0
[ 1984.630733]  drm_ioctl+0x507/0x9c0
[ 1984.634303]  ? drm_mode_create_dumb+0x300/0x300
[ 1984.639048]  ? drm_getstats+0x20/0x20
[ 1984.642948]  ? cmp_ex_sort+0xc0/0xc0
[ 1984.646738]  ? __do_page_fault+0x180/0xd60
[ 1984.650965]  ? retint_kernel+0x2d/0x2d
[ 1984.654844]  ? futex_exit_release+0x220/0x220
[ 1984.659335]  ? drm_getstats+0x20/0x20
[ 1984.663123]  do_vfs_ioctl+0xcdb/0x12e0
[ 1984.667002]  ? lock_downgrade+0x720/0x720
[ 1984.671184]  ? check_preemption_disabled+0x41/0x280
[ 1984.676191]  ? ioctl_preallocate+0x200/0x200
[ 1984.680960]  ? __fget+0x356/0x510
[ 1984.684400]  ? do_dup2+0x450/0x450
[ 1984.687929]  ? __se_sys_futex+0x298/0x3b0
[ 1984.692247]  ksys_ioctl+0x9b/0xc0
[ 1984.695710]  __x64_sys_ioctl+0x6f/0xb0
[ 1984.699657]  ? lockdep_hardirqs_on+0x3a8/0x5c0
[ 1984.704240]  do_syscall_64+0xf9/0x620
[ 1984.708082]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1984.713400] RIP: 0033:0x4665d9
[ 1984.716597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1984.736512] RSP: 002b:00007fa217edf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1984.744578] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 1984.751947] RDX: 00000000200000c0 RSI: 00000000c02064b2 RDI: 0000000000000004
[ 1984.759306] RBP: 00000000004bfcb9 R08: 0000000000000000 R09: 0000000000000000
[ 1984.766760] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000056bf80
[ 1984.774061] R13: 00007ffdc69d6c5f R14: 00007fa217edf300 R15: 0000000000022000
[ 1984.781327] 
[ 1984.782994] Allocated by task 26464:
[ 1984.786882]  kmem_cache_alloc_trace+0x12f/0x380
[ 1984.791567]  __vgem_gem_create+0x44/0xf0
[ 1984.795722]  vgem_gem_dumb_create+0xcf/0x240
[ 1984.800121]  drm_mode_create_dumb+0x27c/0x300
[ 1984.804623]  drm_ioctl_kernel+0x208/0x2a0
[ 1984.808861]  drm_ioctl+0x507/0x9c0
[ 1984.812399]  do_vfs_ioctl+0xcdb/0x12e0
[ 1984.816599]  ksys_ioctl+0x9b/0xc0
[ 1984.820318]  __x64_sys_ioctl+0x6f/0xb0
[ 1984.824213]  do_syscall_64+0xf9/0x620
[ 1984.828095]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1984.833466] 
[ 1984.835209] Freed by task 26464:
[ 1984.839022]  kfree+0xcc/0x210
[ 1984.842124]  drm_gem_object_free+0x91/0x1c0
[ 1984.846475]  drm_gem_object_put_unlocked+0xd1/0x180
[ 1984.851608]  vgem_gem_dumb_create+0x10c/0x240
[ 1984.856098]  drm_mode_create_dumb+0x27c/0x300
[ 1984.860582]  drm_ioctl_kernel+0x208/0x2a0
[ 1984.864807]  drm_ioctl+0x507/0x9c0
[ 1984.868336]  do_vfs_ioctl+0xcdb/0x12e0
[ 1984.872207]  ksys_ioctl+0x9b/0xc0
[ 1984.875646]  __x64_sys_ioctl+0x6f/0xb0
[ 1984.879792]  do_syscall_64+0xf9/0x620
[ 1984.883672]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1984.889040] 
[ 1984.890656] The buggy address belongs to the object at ffff8880a49bc7c0
[ 1984.890656]  which belongs to the cache kmalloc-512 of size 512
[ 1984.903307] The buggy address is located 256 bytes inside of
[ 1984.903307]  512-byte region [ffff8880a49bc7c0, ffff8880a49bc9c0)
[ 1984.915190] The buggy address belongs to the page:
[ 1984.920477] page:ffffea0002926f00 count:1 mapcount:0 mapping:ffff88813bff0940 index:0x0
[ 1984.928808] flags: 0xfff00000000100(slab)
[ 1984.933059] raw: 00fff00000000100 ffffea0002925c48 ffffea0002925588 ffff88813bff0940
[ 1984.940956] raw: 0000000000000000 ffff8880a49bc040 0000000100000006 0000000000000000
[ 1984.948917] page dumped because: kasan: bad access detected
[ 1984.954792] 
[ 1984.956418] Memory state around the buggy address:
[ 1984.961353]  ffff8880a49bc780: fc fc fc fc fc fc fc fc fb fb fb fb fb fb fb fb
[ 1984.968703]  ffff8880a49bc800: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1984.976059] >ffff8880a49bc880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1984.983401]                                            ^
[ 1984.988838]  ffff8880a49bc900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1984.996611]  ffff8880a49bc980: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[ 1985.003990] ==================================================================
[ 1985.011359] Disabling lock debugging due to kernel taint
[ 1985.026946] Kernel panic - not syncing: panic_on_warn set ...
[ 1985.026946] 
[ 1985.034604] CPU: 1 PID: 26464 Comm: syz-executor.0 Tainted: G    B             4.19.193-syzkaller #0
[ 1985.044138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1985.053610] Call Trace:
[ 1985.056300]  dump_stack+0x1fc/0x2ef
[ 1985.060008]  panic+0x26a/0x50e
[ 1985.063192]  ? __warn_printk+0xf3/0xf3
[ 1985.067080]  ? preempt_schedule_common+0x45/0xc0
[ 1985.072026]  ? ___preempt_schedule+0x16/0x18
[ 1985.076452]  ? trace_hardirqs_on+0x55/0x210
[ 1985.080812]  kasan_end_report+0x43/0x49
[ 1985.084774]  kasan_report_error.cold+0xa7/0x1b9
[ 1985.089832]  ? vgem_gem_dumb_create+0x22c/0x240
[ 1985.094641]  __asan_report_load8_noabort+0x88/0x90
[ 1985.099863]  ? drm_gem_object_put_unlocked+0xd0/0x180
[ 1985.105042]  ? vgem_gem_dumb_create+0x22c/0x240
[ 1985.109716]  vgem_gem_dumb_create+0x22c/0x240
[ 1985.114204]  drm_mode_create_dumb+0x27c/0x300
[ 1985.118699]  drm_ioctl_kernel+0x208/0x2a0
[ 1985.122843]  ? drm_mode_create_dumb+0x300/0x300
[ 1985.127502]  ? drm_ioctl_permit+0x210/0x210
[ 1985.131810]  ? __might_fault+0x192/0x1d0
[ 1985.135864]  drm_ioctl+0x507/0x9c0
[ 1985.139393]  ? drm_mode_create_dumb+0x300/0x300
[ 1985.144044]  ? drm_getstats+0x20/0x20
[ 1985.147844]  ? cmp_ex_sort+0xc0/0xc0
[ 1985.151557]  ? __do_page_fault+0x180/0xd60
[ 1985.155773]  ? retint_kernel+0x2d/0x2d
[ 1985.159732]  ? futex_exit_release+0x220/0x220
[ 1985.164222]  ? drm_getstats+0x20/0x20
[ 1985.168094]  do_vfs_ioctl+0xcdb/0x12e0
[ 1985.171971]  ? lock_downgrade+0x720/0x720
[ 1985.176101]  ? check_preemption_disabled+0x41/0x280
[ 1985.181276]  ? ioctl_preallocate+0x200/0x200
[ 1985.185669]  ? __fget+0x356/0x510
[ 1985.189108]  ? do_dup2+0x450/0x450
[ 1985.193032]  ? __se_sys_futex+0x298/0x3b0
[ 1985.197171]  ksys_ioctl+0x9b/0xc0
[ 1985.200647]  __x64_sys_ioctl+0x6f/0xb0
[ 1985.204519]  ? lockdep_hardirqs_on+0x3a8/0x5c0
[ 1985.209102]  do_syscall_64+0xf9/0x620
[ 1985.212887]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1985.218171] RIP: 0033:0x4665d9
[ 1985.221455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1985.240535] RSP: 002b:00007fa217edf188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1985.248342] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665d9
[ 1985.255623] RDX: 00000000200000c0 RSI: 00000000c02064b2 RDI: 0000000000000004
[ 1985.262881] RBP: 00000000004bfcb9 R08: 0000000000000000 R09: 0000000000000000
[ 1985.270149] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000056bf80
[ 1985.277413] R13: 00007ffdc69d6c5f R14: 00007fa217edf300 R15: 0000000000022000
[ 1985.285360] Kernel Offset: disabled
[ 1985.289000] Rebooting in 86400 seconds..