[ 32.402616] audit: type=1800 audit(1579294516.141:33): pid=7139 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op="collect_data" cause="failed(directio)" comm="startpar" name="rc.local" dev="sda1" ino=2465 res=0 [ 32.430808] audit: type=1800 audit(1579294516.141:34): pid=7139 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op="collect_data" cause="failed(directio)" comm="startpar" name="rmnologin" dev="sda1" ino=2456 res=0 Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 37.968794] random: sshd: uninitialized urandom read (32 bytes read) [ 38.214766] audit: type=1400 audit(1579294521.951:35): avc: denied { map } for pid=7312 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 38.268456] random: sshd: uninitialized urandom read (32 bytes read) [ 38.948448] random: sshd: uninitialized urandom read (32 bytes read) [ 39.135359] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.1.38' (ECDSA) to the list of known hosts. [ 44.686756] random: sshd: uninitialized urandom read (32 bytes read) executing program [ 44.804427] audit: type=1400 audit(1579294528.541:36): avc: denied { map } for pid=7324 comm="syz-executor374" path="/root/syz-executor374653520" dev="sda1" ino=16484 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 executing program [ 44.904309] ================================================================== [ 44.912528] BUG: KASAN: stack-out-of-bounds in update_stack_state+0x522/0x590 [ 44.919810] Read of size 8 at addr ffff88808e487380 by task syz-executor374/7329 [ 44.930385] [ 44.932011] CPU: 0 PID: 7329 Comm: syz-executor374 Not tainted 4.14.166-syzkaller #0 [ 44.940114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 44.949579] Call Trace: [ 44.953001] dump_stack+0x142/0x197 [ 44.956755] ? update_stack_state+0x522/0x590 [ 44.961422] print_address_description.cold+0x7c/0x1dc [ 44.967143] ? update_stack_state+0x522/0x590 [ 44.971661] kasan_report.cold+0xa9/0x2af [ 44.975832] __asan_report_load8_noabort+0x14/0x20 [ 44.980784] update_stack_state+0x522/0x590 [ 44.985123] ? perf_output_begin_forward+0x692/0xa20 [ 44.990429] ? __read_once_size_nocheck.constprop.0+0x10/0x10 [ 44.996332] __unwind_start+0x189/0x3d0 [ 45.000429] perf_callchain_kernel+0x26e/0x510 [ 45.005033] ? arch_perf_update_userpage+0x360/0x360 [ 45.010277] ? check_preemption_disabled+0x3c/0x250 [ 45.015362] get_perf_callchain+0x30a/0x7c0 [ 45.019699] ? put_callchain_buffers+0x60/0x60 [ 45.024289] ? startup_64+0x1/0x30 [ 45.027839] ? sched_clock_cpu+0x1b/0x1c0 [ 45.032027] ? check_preemption_disabled+0x3c/0x250 [ 45.037194] perf_callchain+0x14e/0x1a0 [ 45.041184] perf_prepare_sample+0x77c/0x1350 [ 45.045720] ? perf_output_sample+0x1840/0x1840 [ 45.050412] perf_event_output_forward+0xe7/0x200 [ 45.055278] ? perf_prepare_sample+0x1350/0x1350 [ 45.060044] ? perf_tp_event+0x4b2/0x7d0 [ 45.064119] ? check_preemption_disabled+0x3c/0x250 [ 45.069152] ? __this_cpu_preempt_check+0x1d/0x30 [ 45.074006] ? __perf_event_account_interrupt+0xe2/0x290 [ 45.079479] __perf_event_overflow+0x11e/0x330 [ 45.084165] perf_swevent_overflow+0x17c/0x210 [ 45.088750] perf_swevent_event+0x1ac/0x280 [ 45.093089] ___perf_sw_event+0x295/0x470 [ 45.097248] ? check_preemption_disabled+0x3c/0x250 [ 45.102295] ? perf_pending_event+0xe0/0xe0 [ 45.106634] ? lock_release+0x50d/0x940 [ 45.110684] ? SOFTIRQ_verbose+0x10/0x10 [ 45.114752] ? __update_idle_core+0x1e7/0x3f0 [ 45.119264] ? find_held_lock+0x35/0x130 [ 45.123340] ? __update_idle_core+0x1e7/0x3f0 [ 45.127901] ? save_trace+0x290/0x290 [ 45.131757] ? save_trace+0x290/0x290 [ 45.135576] ? lock_downgrade+0x740/0x740 [ 45.139737] ? __lock_is_held+0xb6/0x140 [ 45.143813] ? check_preemption_disabled+0x3c/0x250 [ 45.148857] __schedule+0xcc0/0x1cd0 [ 45.152592] ? __schedule+0xcc0/0x1cd0 [ 45.156494] ? firmware_map_remove+0x196/0x196 [ 45.161094] ? lock_downgrade+0x740/0x740 [ 45.165258] ? plist_add+0x34b/0x460 [ 45.169002] schedule+0x92/0x1c0 [ 45.172384] futex_wait_queue_me+0x2ec/0x5a0 [ 45.176861] ? __unqueue_futex+0x100/0x100 [ 45.181110] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 45.186228] ? try_to_wake_up+0xa8/0xf90 [ 45.190824] futex_wait+0x1f9/0x580 [ 45.194464] ? futex_wait_setup+0x2f0/0x2f0 [ 45.198908] ? wake_up_q+0x95/0xf0 [ 45.202458] ? drop_futex_key_refs.isra.0+0x56/0xb0 [ 45.207660] ? futex_wake+0x134/0x430 [ 45.211496] do_futex+0x14a/0x19e0 [ 45.215050] ? __fd_install+0x236/0x5f0 [ 45.219192] ? get_unused_fd_flags+0xd0/0xd0 [ 45.223731] ? futex_exit_release+0x70/0x70 [ 45.228060] ? wait_for_completion+0x420/0x420 [ 45.232670] ? fd_install+0x4d/0x60 [ 45.236740] ? SYSC_perf_event_open+0x61c/0x2690 [ 45.241511] ? find_held_lock+0x35/0x130 [ 45.245768] ? perf_event_set_output+0x460/0x460 [ 45.250524] SyS_futex+0x215/0x310 [ 45.254088] ? do_futex+0x19e0/0x19e0 [ 45.257924] ? do_syscall_64+0x53/0x640 [ 45.261921] ? do_futex+0x19e0/0x19e0 [ 45.265740] do_syscall_64+0x1e8/0x640 [ 45.269642] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 45.274513] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 45.279715] RIP: 0033:0x446849 [ 45.282928] RSP: 002b:00007f7db89fadb8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 45.290667] RAX: ffffffffffffffda RBX: 00000000006dbc28 RCX: 0000000000446849 [ 45.297996] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00000000006dbc28 [ 45.305290] RBP: 00000000006dbc20 R08: 0000000000000000 R09: 0000000000000000 [ 45.312556] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc2c [ 45.319848] R13: 00007ffd4d4a0cdf R14: 00007f7db89fb9c0 R15: 20c49ba5e353f7cf [ 45.327146] [ 45.328895] The buggy address belongs to the page: [ 45.333825] page:ffffea00023921c0 count:0 mapcount:0 mapping: (null) index:0x0 [ 45.341990] flags: 0xfffe0000000000() [ 45.345795] raw: 00fffe0000000000 0000000000000000 0000000000000000 00000000ffffffff [ 45.353703] raw: 0000000000000000 0000000100000001 0000000000000000 0000000000000000 [ 45.361787] page dumped because: kasan: bad access detected [ 45.367581] [ 45.369213] Memory state around the buggy address: [ 45.374277] ffff88808e487280: 00 00 00 00 00 00 f3 f3 f3 f3 00 00 00 00 00 00 [ 45.381667] ffff88808e487300: 00 00 00 00 00 00 00 00 f1 f1 f1 f1 00 00 00 f3 [ 45.389147] >ffff88808e487380: f3 f3 f3 f3 00 00 00 00 00 00 00 00 00 00 00 00 [ 45.396517] ^ [ 45.399882] ffff88808e487400: 00 00 00 00 00 00 00 00 00 00 00 00 f1 f1 f1 f1 [ 45.407403] ffff88808e487480: 00 f3 f3 f3 00 00 00 00 00 00 00 00 f1 f1 f1 f1 [ 45.414768] ================================================================== [ 45.422147] Kernel panic - not syncing: panic_on_warn set ... [ 45.422147] [ 45.429533] CPU: 0 PID: 7329 Comm: syz-executor374 Tainted: G B 4.14.166-syzkaller #0 [ 45.438876] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 45.448253] Call Trace: [ 45.450877] dump_stack+0x142/0x197 [ 45.454520] ? update_stack_state+0x522/0x590 [ 45.459036] panic+0x1f9/0x42d [ 45.462520] ? add_taint.cold+0x16/0x16 [ 45.466515] ? lock_downgrade+0x740/0x740 [ 45.470801] kasan_end_report+0x47/0x4f [ 45.474911] kasan_report.cold+0x130/0x2af [ 45.479301] __asan_report_load8_noabort+0x14/0x20 [ 45.484369] update_stack_state+0x522/0x590 [ 45.488705] ? perf_output_begin_forward+0x692/0xa20 [ 45.493831] ? __read_once_size_nocheck.constprop.0+0x10/0x10 [ 45.499754] __unwind_start+0x189/0x3d0 [ 45.503958] perf_callchain_kernel+0x26e/0x510 [ 45.508550] ? arch_perf_update_userpage+0x360/0x360 [ 45.513684] ? check_preemption_disabled+0x3c/0x250 [ 45.518863] get_perf_callchain+0x30a/0x7c0 [ 45.523310] ? put_callchain_buffers+0x60/0x60 [ 45.528032] ? startup_64+0x1/0x30 [ 45.531567] ? sched_clock_cpu+0x1b/0x1c0 [ 45.535725] ? check_preemption_disabled+0x3c/0x250 [ 45.540766] perf_callchain+0x14e/0x1a0 [ 45.545001] perf_prepare_sample+0x77c/0x1350 [ 45.549584] ? perf_output_sample+0x1840/0x1840 [ 45.554291] perf_event_output_forward+0xe7/0x200 [ 45.559149] ? perf_prepare_sample+0x1350/0x1350 [ 45.563922] ? perf_tp_event+0x4b2/0x7d0 [ 45.567992] ? check_preemption_disabled+0x3c/0x250 [ 45.573025] ? __this_cpu_preempt_check+0x1d/0x30 [ 45.577880] ? __perf_event_account_interrupt+0xe2/0x290 [ 45.583422] __perf_event_overflow+0x11e/0x330 [ 45.588058] perf_swevent_overflow+0x17c/0x210 [ 45.592650] perf_swevent_event+0x1ac/0x280 [ 45.597081] ___perf_sw_event+0x295/0x470 [ 45.601348] ? check_preemption_disabled+0x3c/0x250 [ 45.606553] ? perf_pending_event+0xe0/0xe0 [ 45.611006] ? lock_release+0x50d/0x940 [ 45.615272] ? SOFTIRQ_verbose+0x10/0x10 [ 45.619484] ? __update_idle_core+0x1e7/0x3f0 [ 45.623991] ? find_held_lock+0x35/0x130 [ 45.628069] ? __update_idle_core+0x1e7/0x3f0 [ 45.633104] ? save_trace+0x290/0x290 [ 45.636918] ? save_trace+0x290/0x290 [ 45.640728] ? lock_downgrade+0x740/0x740 [ 45.645630] ? __lock_is_held+0xb6/0x140 [ 45.649689] ? check_preemption_disabled+0x3c/0x250 [ 45.654717] __schedule+0xcc0/0x1cd0 [ 45.658444] ? __schedule+0xcc0/0x1cd0 [ 45.662469] ? firmware_map_remove+0x196/0x196 [ 45.667056] ? lock_downgrade+0x740/0x740 [ 45.671212] ? plist_add+0x34b/0x460 [ 45.674944] schedule+0x92/0x1c0 [ 45.678348] futex_wait_queue_me+0x2ec/0x5a0 [ 45.682767] ? __unqueue_futex+0x100/0x100 [ 45.687009] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 45.692120] ? try_to_wake_up+0xa8/0xf90 [ 45.696189] futex_wait+0x1f9/0x580 [ 45.699830] ? futex_wait_setup+0x2f0/0x2f0 [ 45.704164] ? wake_up_q+0x95/0xf0 [ 45.707717] ? drop_futex_key_refs.isra.0+0x56/0xb0 [ 45.713003] ? futex_wake+0x134/0x430 [ 45.716994] do_futex+0x14a/0x19e0 [ 45.720593] ? __fd_install+0x236/0x5f0 [ 45.724589] ? get_unused_fd_flags+0xd0/0xd0 [ 45.729137] ? futex_exit_release+0x70/0x70 [ 45.733487] ? wait_for_completion+0x420/0x420 [ 45.738071] ? fd_install+0x4d/0x60 [ 45.744751] ? SYSC_perf_event_open+0x61c/0x2690 [ 45.749515] ? find_held_lock+0x35/0x130 [ 45.753788] ? perf_event_set_output+0x460/0x460 [ 45.758556] SyS_futex+0x215/0x310 [ 45.762111] ? do_futex+0x19e0/0x19e0 [ 45.765935] ? do_syscall_64+0x53/0x640 [ 45.769904] ? do_futex+0x19e0/0x19e0 [ 45.773720] do_syscall_64+0x1e8/0x640 [ 45.777598] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 45.782554] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 45.787753] RIP: 0033:0x446849 [ 45.791037] RSP: 002b:00007f7db89fadb8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 45.798843] RAX: ffffffffffffffda RBX: 00000000006dbc28 RCX: 0000000000446849 [ 45.806119] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00000000006dbc28 [ 45.813397] RBP: 00000000006dbc20 R08: 0000000000000000 R09: 0000000000000000 [ 45.820684] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc2c [ 45.827958] R13: 00007ffd4d4a0cdf R14: 00007f7db89fb9c0 R15: 20c49ba5e353f7cf [ 45.835261] [ 45.835264] ====================================================== [ 45.835267] WARNING: possible circular locking dependency detected [ 45.835269] 4.14.166-syzkaller #0 Not tainted [ 45.835272] ------------------------------------------------------ [ 45.835274] syz-executor374/7329 is trying to acquire lock: [ 45.835275] ((console_sem).lock){-...}, at: [] down_trylock+0x13/0x70 [ 45.835283] [ 45.835285] but task is already holding lock: [ 45.835286] (report_lock){....}, at: [] kasan_report+0x6e/0xe0 [ 45.835293] [ 45.835295] which lock already depends on the new lock. [ 45.835296] [ 45.835298] [ 45.835300] the existing dependency chain (in reverse order) is: [ 45.835301] [ 45.835303] -> #3 (report_lock){....}: [ 45.835310] lock_acquire+0x16f/0x430 [ 45.835312] _raw_spin_lock_irqsave+0x95/0xcd [ 45.835314] kasan_report+0x6e/0xe0 [ 45.835316] __asan_report_load8_noabort+0x14/0x20 [ 45.835378] update_stack_state+0x522/0x590 [ 45.835384] __unwind_start+0x189/0x3d0 [ 45.835386] perf_callchain_kernel+0x26e/0x510 [ 45.835389] get_perf_callchain+0x30a/0x7c0 [ 45.835391] perf_callchain+0x14e/0x1a0 [ 45.835393] perf_prepare_sample+0x77c/0x1350 [ 45.835395] perf_event_output_forward+0xe7/0x200 [ 45.835397] __perf_event_overflow+0x11e/0x330 [ 45.835400] perf_swevent_overflow+0x17c/0x210 [ 45.835402] perf_swevent_event+0x1ac/0x280 [ 45.835404] ___perf_sw_event+0x295/0x470 [ 45.835406] __schedule+0xcc0/0x1cd0 [ 45.835408] schedule+0x92/0x1c0 [ 45.835410] futex_wait_queue_me+0x2ec/0x5a0 [ 45.835412] futex_wait+0x1f9/0x580 [ 45.835414] do_futex+0x14a/0x19e0 [ 45.835416] SyS_futex+0x215/0x310 [ 45.835418] do_syscall_64+0x1e8/0x640 [ 45.835420] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 45.835421] [ 45.835423] -> #2 (&rq->lock){-.-.}: [ 45.835430] lock_acquire+0x16f/0x430 [ 45.835432] _raw_spin_lock+0x2f/0x40 [ 45.835434] task_fork_fair+0x63/0x5b0 [ 45.835436] sched_fork+0x3a6/0xc10 [ 45.835438] copy_process.part.0+0x15b7/0x6a70 [ 45.835440] _do_fork+0x19e/0xce0 [ 45.835442] kernel_thread+0x34/0x40 [ 45.835444] rest_init+0x24/0x1e2 [ 45.835446] start_kernel+0x6df/0x6fd [ 45.835448] x86_64_start_reservations+0x29/0x2b [ 45.835450] x86_64_start_kernel+0x77/0x7b [ 45.835452] secondary_startup_64+0xa5/0xb0 [ 45.835453] [ 45.835455] -> #1 (&p->pi_lock){-.-.}: [ 45.835462] lock_acquire+0x16f/0x430 [ 45.835464] _raw_spin_lock_irqsave+0x95/0xcd [ 45.835466] try_to_wake_up+0x79/0xf90 [ 45.835468] wake_up_process+0x10/0x20 [ 45.835470] __up.isra.0+0x136/0x1a0 [ 45.835471] up+0x9c/0xe0 [ 45.835473] __up_console_sem+0xad/0x1b0 [ 45.835475] console_unlock+0x59d/0xed0 [ 45.835477] vprintk_emit+0x1f9/0x600 [ 45.835479] vprintk_default+0x28/0x30 [ 45.835481] vprintk_func+0x5d/0x159 [ 45.835483] printk+0x9e/0xbc [ 45.835485] kauditd_hold_skb.cold+0x3e/0x4d [ 45.835487] kauditd_send_queue+0xfe/0x140 [ 45.835489] kauditd_thread+0x644/0x860 [ 45.835491] kthread+0x319/0x430 [ 45.835493] ret_from_fork+0x24/0x30 [ 45.835494] [ 45.835496] -> #0 ((console_sem).lock){-...}: [ 45.835503] __lock_acquire+0x2cb3/0x4620 [ 45.835505] lock_acquire+0x16f/0x430 [ 45.835507] _raw_spin_lock_irqsave+0x95/0xcd [ 45.835509] down_trylock+0x13/0x70 [ 45.835511] __down_trylock_console_sem+0x9c/0x200 [ 45.835513] console_trylock+0x17/0x80 [ 45.835515] vprintk_emit+0x1eb/0x600 [ 45.835517] vprintk_default+0x28/0x30 [ 45.835519] vprintk_func+0x5d/0x159 [ 45.835521] printk+0x9e/0xbc [ 45.835523] kasan_report+0x7e/0xe0 [ 45.835526] __asan_report_load8_noabort+0x14/0x20 [ 45.835528] update_stack_state+0x522/0x590 [ 45.835530] __unwind_start+0x189/0x3d0 [ 45.835532] perf_callchain_kernel+0x26e/0x510 [ 45.835534] get_perf_callchain+0x30a/0x7c0 [ 45.835536] perf_callchain+0x14e/0x1a0 [ 45.835538] perf_prepare_sample+0x77c/0x1350 [ 45.835540] perf_event_output_forward+0xe7/0x200 [ 45.835543] __perf_event_overflow+0x11e/0x330 [ 45.835545] perf_swevent_overflow+0x17c/0x210 [ 45.835547] perf_swevent_event+0x1ac/0x280 [ 45.835549] ___perf_sw_event+0x295/0x470 [ 45.835551] __schedule+0xcc0/0x1cd0 [ 45.835553] schedule+0x92/0x1c0 [ 45.835555] futex_wait_queue_me+0x2ec/0x5a0 [ 45.835557] futex_wait+0x1f9/0x580 [ 45.835559] do_futex+0x14a/0x19e0 [ 45.835561] SyS_futex+0x215/0x310 [ 45.835563] do_syscall_64+0x1e8/0x640 [ 45.835565] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 45.835566] [ 45.835569] other info that might help us debug this: [ 45.835570] [ 45.835572] Chain exists of: [ 45.835573] (console_sem).lock --> &rq->lock --> report_lock [ 45.835582] [ 45.835584] Possible unsafe locking scenario: [ 45.835585] [ 45.835587] CPU0 CPU1 [ 45.835590] ---- ---- [ 45.835591] lock(report_lock); [ 45.835595] lock(&rq->lock); [ 45.835600] lock(report_lock); [ 45.835604] lock((console_sem).lock); [ 45.835609] [ 45.835610] *** DEADLOCK *** [ 45.835611] [ 45.835614] 4 locks held by syz-executor374/7329: [ 45.835615] #0: (&rq->lock){-.-.}, at: [] __schedule+0x1da/0x1cd0 [ 45.835623] #1: (rcu_read_lock){....}, at: [] ___perf_sw_event+0x10c/0x470 [ 45.835631] #2: (rcu_read_lock){....}, at: [] perf_event_output_forward+0x0/0x200 [ 45.835639] #3: (report_lock){....}, at: [] kasan_report+0x6e/0xe0 [ 45.835647] [ 45.835649] stack backtrace: [ 45.835652] CPU: 0 PID: 7329 Comm: syz-executor374 Not tainted 4.14.166-syzkaller #0 [ 45.835655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 45.835656] Call Trace: [ 45.835658] dump_stack+0x142/0x197 [ 45.835661] print_circular_bug.isra.0.cold+0x1cc/0x28f [ 45.835663] __lock_acquire+0x2cb3/0x4620 [ 45.835666] ? add_lock_to_list.isra.0+0x17c/0x330 [ 45.835668] ? trace_hardirqs_on+0x10/0x10 [ 45.835670] ? perf_trace_run_bpf_submit+0x113/0x170 [ 45.835672] ? perf_trace_lock+0x30d/0x500 [ 45.835674] ? SOFTIRQ_verbose+0x10/0x10 [ 45.835676] lock_acquire+0x16f/0x430 [ 45.835678] ? down_trylock+0x13/0x70 [ 45.835680] ? vprintk_emit+0x109/0x600 [ 45.835682] _raw_spin_lock_irqsave+0x95/0xcd [ 45.835684] ? down_trylock+0x13/0x70 [ 45.835686] ? vprintk_emit+0x1eb/0x600 [ 45.835687] down_trylock+0x13/0x70 [ 45.835689] ? vprintk_emit+0x1eb/0x600 [ 45.835692] __down_trylock_console_sem+0x9c/0x200 [ 45.835694] console_trylock+0x17/0x80 [ 45.835695] vprintk_emit+0x1eb/0x600 [ 45.835697] ? update_stack_state+0x522/0x590 [ 45.835699] vprintk_default+0x28/0x30 [ 45.835701] vprintk_func+0x5d/0x159 [ 45.835703] printk+0x9e/0xbc [ 45.835705] ? show_regs_print_info+0x63/0x63 [ 45.835707] ? kasan_report+0x6e/0xe0 [ 45.835709] kasan_report+0x7e/0xe0 [ 45.835711] __asan_report_load8_noabort+0x14/0x20 [ 45.835713] update_stack_state+0x522/0x590 [ 45.835715] ? perf_output_begin_forward+0x692/0xa20 [ 45.835717] ? __read_once_size_nocheck.constprop.0+0x10/0x10 [ 45.835719] __unwind_start+0x189/0x3d0 [ 45.835721] perf_callchain_kernel+0x26e/0x510 [ 45.835724] ? arch_perf_update_userpage+0x360/0x360 [ 45.835726] ? check_preemption_disabled+0x3c/0x250 [ 45.835728] get_perf_callchain+0x30a/0x7c0 [ 45.835730] ? put_callchain_buffers+0x60/0x60 [ 45.835732] ? startup_64+0x1/0x30 [ 45.835734] ? sched_clock_cpu+0x1b/0x1c0 [ 45.835736] ? check_preemption_disabled+0x3c/0x250 [ 45.835738] perf_callchain+0x14e/0x1a0 [ 45.835740] perf_prepare_sample+0x77c/0x1350 [ 45.835742] ? perf_output_sample+0x1840/0x1840 [ 45.835745] perf_event_output_forward+0xe7/0x200 [ 45.835747] ? perf_prepare_sample+0x1350/0x1350 [ 45.835749] ? perf_tp_event+0x4b2/0x7d0 [ 45.835751] ? check_preemption_disabled+0x3c/0x250 [ 45.835753] ? __this_cpu_preempt_check+0x1d/0x30 [ 45.835756] ? __perf_event_account_interrupt+0xe2/0x290 [ 45.835758] __perf_event_overflow+0x11e/0x330 [ 45.835760] perf_swevent_overflow+0x17c/0x210 [ 45.835762] perf_swevent_event+0x1ac/0x280 [ 45.835764] ___perf_sw_event+0x295/0x470 [ 45.835766] ? check_preemption_disabled+0x3c/0x250 [ 45.835768] ? perf_pending_event+0xe0/0xe0 [ 45.835770] ? lock_release+0x50d/0x940 [ 45.835772] ? SOFTIRQ_verbose+0x10/0x10 [ 45.835774] ? __update_idle_core+0x1e7/0x3f0 [ 45.835776] ? find_held_lock+0x35/0x130 [ 45.835778] ? __update_idle_core+0x1e7/0x3f0 [ 45.835780] ? save_trace+0x290/0x290 [ 45.835782] ? save_trace+0x290/0x290 [ 45.835784] ? lock_downgrade+0x740/0x740 [ 45.835786] ? __lock_is_held+0xb6/0x140 [ 45.835788] ? check_preemption_disabled+0x3c/0x250 [ 45.835790] __schedule+0xcc0/0x1cd0 [ 45.835792] ? __schedule+0xcc0/0x1cd0 [ 45.835794] ? firmware_map_remove+0x196/0x196 [ 45.835796] ? lock_downgrade+0x740/0x740 [ 45.835798] ? plist_add+0x34b/0x460 [ 45.835800] schedule+0x92/0x1c0 [ 45.835802] futex_wait_queue_me+0x2ec/0x5a0 [ 45.835804] ? __unqueue_futex+0x100/0x100 [ 45.835806] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 45.835808] ? try_to_wake_up+0xa8/0xf90 [ 45.835810] futex_wait+0x1f9/0x580 [ 45.835812] ? futex_wait_setup+0x2f0/0x2f0 [ 45.835814] ? wake_up_q+0x95/0xf0 [ 45.835816] ? drop_futex_key_refs.isra.0+0x56/0xb0 [ 45.835818] ? futex_wake+0x134/0x430 [ 45.835820] do_futex+0x14a/0x19e0 [ 45.835822] ? __fd_install+0x236/0x5f0 [ 45.835824] ? get_unused_fd_flags+0xd0/0xd0 [ 45.835826] ? futex_exit_release+0x70/0x70 [ 45.835828] ? wait_for_completion+0x420/0x420 [ 45.835830] ? fd_install+0x4d/0x60 [ 45.835832] ? SYSC_perf_event_open+0x61c/0x2690 [ 45.835834] ? find_held_lock+0x35/0x130 [ 45.835836] ? perf_event_set_output+0x460/0x460 [ 45.835838] SyS_futex+0x215/0x310 [ 45.835840] ? do_futex+0x19e0/0x19e0 [ 45.835842] ? do_syscall_64+0x53/0x640 [ 45.835844] ? do_futex+0x19e0/0x19e0 [ 45.835846] do_syscall_64+0x1e8/0x640 [ 45.835848] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 45.835850] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 45.835852] RIP: 0033:0x446849 [ 45.835854] RSP: 002b:00007f7db89fadb8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 45.835891] RAX: ffffffffffffffda RBX: 00000000006dbc28 RCX: 0000000000446849 [ 45.835898] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00000000006dbc28 [ 45.835901] RBP: 00000000006dbc20 R08: 0000000000000000 R09: 0000000000000000 [ 45.835904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000 [ 45.835909] Lost 1 message(s)! [ 46.965625] Shutting down cpus with NMI [ 48.037947] Kernel Offset: disabled [ 48.041598] Rebooting in 86400 seconds..