2017/08/13 20:06:29 parsed 1 programs
2017/08/13 20:06:29 executed programs: 0
syzkaller login: [   22.375209] pte_list_remove: ffff88006a2f2008 0->BUG
[   22.375564] ------------[ cut here ]------------
[   22.375871] kernel BUG at arch/x86/kvm/mmu.c:1194!
[   22.376219] invalid opcode: 0000 [#1] SMP KASAN
[   22.376526] Dumping ftrace buffer:
[   22.376755]    (ftrace buffer empty)
[   22.376996] Modules linked in:
[   22.377224] CPU: 1 PID: 3022 Comm: syz-executor0 Not tainted 4.13.0-rc4-next-20170811 #2
[   22.377798] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Bochs 01/01/2011
[   22.378329] task: ffff88003d86a700 task.stack: ffff88003d6f8000
[   22.378724] RIP: 0010:pte_list_remove+0x3ae/0x3c0
[   22.379140] RSP: 0018:ffff88003d6fe8c8 EFLAGS: 00010282
[   22.379580] RAX: 0000000000000028 RBX: ffff88006db6df48 RCX: 0000000000000000
[   22.380210] RDX: 0000000000000028 RSI: 1ffff10007adfcd9 RDI: ffffed0007adfd0d
[   22.380797] RBP: ffff88003d6fe908 R08: 0000000000000000 R09: 1ffff10007adfcab
[   22.381730] R10: ffff88003d6fecb0 R11: ffffffff85b2d3b8 R12: ffff88006a2f2008
[   22.382208] R13: 0000000000000000 R14: ffff88006a961ec0 R15: ffff88006a961ee8
[   22.382681] FS:  0000000000000000(0000) GS:ffff88003ed00000(0000) knlGS:0000000000000000
[   22.383193] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   22.383586] CR2: 0000000000000000 CR3: 000000006c152000 CR4: 00000000000026e0
[   22.384093] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   22.384578] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   22.385070] Call Trace:
[   22.385242]  drop_spte+0x15a/0x250
[   22.385474]  mmu_page_zap_pte+0x224/0x340
[   22.385764]  ? kvm_mmu_zap_collapsible_spte+0x3f0/0x3f0
[   22.386134]  ? percpu_counter_add_batch+0xce/0x130
[   22.386463]  kvm_mmu_prepare_zap_page+0x1c5/0x1310
[   22.386799]  ? check_same_owner+0x320/0x320
[   22.387111]  ? mmio_info_in_cache+0x670/0x670
[   22.387415]  ? __get_user_pages+0x59f/0x15f0
[   22.387725]  ? lock_acquire+0x1d5/0x580
[   22.387994]  ? lock_acquire+0x1d5/0x580
[   22.388287]  ? __is_insn_slot_addr+0x1fc/0x330
[   22.388597]  ? lock_downgrade+0x990/0x990
[   22.388877]  ? lock_release+0xa40/0xa40
[   22.389152]  ? __read_once_size_nocheck.constprop.8+0x10/0x10
[   22.389541]  ? entry_SYSCALL_64_fastpath+0xbc/0xbe
[   22.389874]  ? bpf_prog_kallsyms_find+0xbd/0x440
[   22.390199]  ? kvm_make_all_cpus_request+0x444/0x580
[   22.390546]  ? gfn_to_pfn_atomic+0x650/0x650
[   22.390851]  ? lock_release+0xa40/0xa40
[   22.391133]  ? do_raw_spin_trylock+0x190/0x190
[   22.391447]  ? lock_acquire+0x1d5/0x580
[   22.391719]  ? depot_save_stack+0x3b5/0x490
[   22.392032]  ? lock_downgrade+0x990/0x990
[   22.392304]  ? unwind_dump+0x4c0/0x4c0
[   22.392559]  ? do_raw_spin_trylock+0x190/0x190
[   22.392862]  kvm_mmu_invalidate_zap_all_pages+0x4a0/0x680
[   22.393235]  ? kvm_mmu_zap_collapsible_sptes+0xb0/0xb0
[   22.393580]  ? lock_downgrade+0x990/0x990
[   22.393854]  ? lock_release+0xa40/0xa40
[   22.394124]  ? lock_release+0xa40/0xa40
[   22.394387]  ? __khugepaged_exit+0x410/0x650
[   22.394678]  ? kvm_vcpu_on_spin+0x710/0x710
[   22.394964]  kvm_arch_flush_shadow_all+0x15/0x20
[   22.395286]  kvm_mmu_notifier_release+0x59/0x90
[   22.395591]  ? kvm_vcpu_on_spin+0x710/0x710
[   22.395877]  __mmu_notifier_release+0x1d5/0x690
[   22.396237]  ? __mmu_notifier_invalidate_range_end+0x350/0x350
[   22.396680]  ? __khugepaged_exit+0x3f7/0x650
[   22.396980]  ? lock_downgrade+0x990/0x990
[   22.397255]  ? do_raw_spin_trylock+0x190/0x190
[   22.397556]  ? trace_hardirqs_off+0xd/0x10
[   22.397833]  ? quarantine_put+0xeb/0x190
[   22.398122]  exit_mmap+0x479/0x560
[   22.398370]  ? __khugepaged_exit+0x43d/0x650
[   22.398672]  ? SyS_munmap+0x30/0x30
[   22.398923]  ? hugepage_madvise+0xf0/0xf0
[   22.399251]  ? check_same_owner+0x320/0x320
[   22.399564]  ? rcu_note_context_switch+0x710/0x710
[   22.399939]  ? lock_release+0xa40/0xa40
[   22.400312]  ? __might_sleep+0x95/0x190
[   22.400694]  mmput+0x223/0x6e0
[   22.401009]  ? get_task_exe_file+0xc0/0xc0
[   22.401479]  ? is_current_pgrp_orphaned+0xa0/0xa0
[   22.401999]  ? do_exit+0x991/0x1b30
[   22.402353]  ? lock_downgrade+0x990/0x990
[   22.403001]  ? do_raw_spin_trylock+0x190/0x190
[   22.403473]  ? down_read+0x96/0x150
[   22.403823]  ? do_exit+0x4ad/0x1b30
[   22.404198]  ? __down_interruptible+0x6a0/0x6a0
[   22.404682]  ? trace_hardirqs_on+0xd/0x10
[   22.405084]  ? _raw_spin_unlock_irq+0x27/0x70
[   22.405558]  do_exit+0x9a1/0x1b30
[   22.405922]  ? reexecute_instruction.part.165+0x260/0x260
[   22.406486]  ? debug_check_no_locks_freed+0x3c0/0x3c0
[   22.407049]  ? mm_update_next_owner+0x930/0x930
[   22.407590]  ? kvm_arch_vcpu_ioctl_run+0xed7/0x58b0
[   22.408073]  ? lock_downgrade+0x990/0x990
[   22.408475]  ? kvm_clear_async_pf_completion_queue+0x7a0/0x7a0
[   22.409019]  ? apic_has_pending_timer+0x1c9/0x2a0
[   22.409489]  ? kvm_lapic_reset+0xe90/0xe90
[   22.409905]  ? kvm_apic_accept_pic_intr+0xd5/0x170
[   22.410365]  ? vmx_interrupt_allowed+0x77/0x90
[   22.410794]  ? kvm_vcpu_ready_for_interrupt_injection+0x4f/0x150
[   22.411378]  ? kvm_arch_vcpu_ioctl_run+0x11cc/0x58b0
[   22.411933]  ? kvm_arch_vcpu_runnable+0x520/0x520
[   22.412386]  ? wait_for_completion+0xdb/0x730
[   22.412800]  ? __dequeue_signal+0x103/0x7b0
[   22.413241]  ? recalc_sigpending_tsk+0x117/0x150
[   22.413695]  ? get_signal+0x855/0x17e0
[   22.414070]  ? lock_downgrade+0x990/0x990
[   22.414469]  do_group_exit+0x149/0x400
[   22.414841]  ? SyS_exit+0x30/0x30
[   22.415181]  get_signal+0x7e8/0x17e0
[   22.415548]  ? ptrace_notify+0x130/0x130
[   22.415944]  ? __schedule+0x8f0/0x2070
[   22.416267]  ? __sched_text_start+0x8/0x8
[   22.416546]  ? lock_acquire+0x1d5/0x580
[   22.416807]  ? __fget+0x333/0x570
[   22.417038]  do_signal+0x94/0x1ee0
[   22.417271]  ? lock_release+0xa40/0xa40
[   22.417538]  ? setup_sigcontext+0x7d0/0x7d0
[   22.417827]  ? schedule+0x108/0x440
[   22.418065]  ? __schedule+0x2070/0x2070
[   22.418332]  ? finish_task_switch+0x1d3/0x740
[   22.418627]  ? __kvm_gfn_to_hva_cache_init+0xb80/0xb80
[   22.418978]  exit_to_usermode_loop+0x224/0x300
[   22.419283]  ? trace_event_raw_event_sys_exit+0x260/0x260
[   22.419644]  ? selinux_capable+0x40/0x40
[   22.419913]  syscall_return_slowpath+0x42f/0x500
[   22.420231]  ? prepare_exit_to_usermode+0x2c0/0x2c0
[   22.420563]  ? security_file_ioctl+0x7d/0xb0
[   22.420851]  ? security_file_ioctl+0x89/0xb0
[   22.421146]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   22.421462]  entry_SYSCALL_64_fastpath+0xbc/0xbe
[   22.421776] RIP: 0033:0x446739
[   22.421983] RSP: 002b:00007f9d9d0f8c08 EFLAGS: 00000282 ORIG_RAX: 0000000000000010
[   22.422491] RAX: fffffffffffffffc RBX: 0000000000000006 RCX: 0000000000446739
[   22.422967] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[   22.423429] RBP: 0000000000708150 R08: 0000000000000000 R09: 0000000000000000
[   22.423903] R10: 0000000000000000 R11: 0000000000000282 R12: 00000000ffffffff
[   22.424811] R13: 0000000000002050 R14: 00000000006e4110 R15: 000000000000ae80
[   22.425495] Code: 09 8b 5e 00 48 8b 75 d0 48 c7 c7 40 4d e2 84 e8 8e 6b 49 00 0f 0b e8 f2 8a 5e 00 48 8b 75 d0 48 c7 c7 00 4d e2 84 e8 77 6b 49 00 <0f> 0b 4c 89 ef e8 88 8b 92 00 e9 01 fe ff ff 0f 1f 00 55 48 89 
[   22.427474] RIP: pte_list_remove+0x3ae/0x3c0 RSP: ffff88003d6fe8c8
[   22.428040] ---[ end trace 549bb74034e7c799 ]---
[   22.428455] Kernel panic - not syncing: Fatal exception
[   22.428959] Dumping ftrace buffer:
[   22.429266]    (ftrace buffer empty)
[   22.429586] Kernel Offset: disabled
[   22.429901] Rebooting in 86400 seconds..