[....] Starting periodic command scheduler: cron�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[ 18.752378] random: sshd: uninitialized urandom read (32 bytes read)
�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
Debian GNU/Linux 7 syzkaller ttyS0
syzkaller login: [ 20.992983] random: sshd: uninitialized urandom read (32 bytes read)
[ 21.325804] random: sshd: uninitialized urandom read (32 bytes read)
[ 22.195092] random: sshd: uninitialized urandom read (32 bytes read)
[ 83.970105] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.10.53' (ECDSA) to the list of known hosts.
[ 89.381779] random: sshd: uninitialized urandom read (32 bytes read)
[ 89.509314] ==================================================================
[ 89.518051] BUG: KASAN: stack-out-of-bounds in rb_erase+0x19e9/0x3550
[ 89.524805] Read of size 8 at addr ffff8801c2dd7718 by task syz-executor396/4530
[ 89.532309]
[ 89.533918] CPU: 1 PID: 4530 Comm: syz-executor396 Not tainted 4.18.0-rc3+ #134
[ 89.541337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 89.550671] Call Trace:
[ 89.553229]
[ 89.555357] dump_stack+0x1c9/0x2b4
[ 89.558961] ? dump_stack_print_info.cold.2+0x52/0x52
[ 89.564127] ? printk+0xa7/0xcf
[ 89.567383] ? kmsg_dump_rewind_nolock+0xe4/0xe4
[ 89.572114] ? rb_erase+0x19e9/0x3550
[ 89.575888] print_address_description+0x6c/0x20b
[ 89.580705] ? rb_erase+0x19e9/0x3550
[ 89.584481] kasan_report.cold.7+0x242/0x2fe
[ 89.588865] __asan_report_load8_noabort+0x14/0x20
[ 89.593777] rb_erase+0x19e9/0x3550
[ 89.597379] ? update_load_avg+0x2de/0x2590
[ 89.601677] ? rb_insert_color+0x1480/0x1480
[ 89.606071] ? print_usage_bug+0xc0/0xc0
[ 89.610108] ? attach_entity_load_avg+0x860/0x860
[ 89.614925] ? print_usage_bug+0xc0/0xc0
[ 89.618962] ? print_usage_bug+0xc0/0xc0
[ 89.622999] ? find_held_lock+0x36/0x1c0
[ 89.627036] ? rb_erase+0x3550/0x3550
[ 89.630814] ? print_usage_bug+0xc0/0xc0
[ 89.634851] ? graph_lock+0x170/0x170
[ 89.638627] ? graph_lock+0x170/0x170
[ 89.642416] ? __lock_acquire+0x7fc/0x5020
[ 89.646629] ? __lock_is_held+0xb5/0x140
[ 89.650667] ? print_usage_bug+0xc0/0xc0
[ 89.654705] ? rcu_read_lock_sched_held+0x108/0x120
[ 89.659697] ? update_cfs_rq_load_avg.part.67+0x253/0x2e0
[ 89.665211] ? tg_unthrottle_up+0x220/0x220
[ 89.669511] ? __update_load_avg_cfs_rq.isra.35+0x435/0x590
[ 89.675216] ? print_usage_bug+0xc0/0xc0
[ 89.679265] ? attach_entity_load_avg+0x860/0x860
[ 89.684089] ? trace_hardirqs_on+0x10/0x10
[ 89.688299] ? __lock_acquire+0x7fc/0x5020
[ 89.692513] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 89.698026] ? run_posix_cpu_timers+0x6c7/0x2580
[ 89.702761] ? trace_hardirqs_on+0x10/0x10
[ 89.706971] ? __lock_acquire+0x7fc/0x5020
[ 89.711190] ? __lock_is_held+0xb5/0x140
[ 89.715225] ? print_usage_bug+0xc0/0xc0
[ 89.719272] ? print_usage_bug+0xc0/0xc0
[ 89.723309] ? graph_lock+0x170/0x170
[ 89.727100] ? trace_hardirqs_on+0x10/0x10
[ 89.731318] ? nohz_balance_enter_idle+0x680/0x680
[ 89.736223] ? __lock_acquire+0x7fc/0x5020
[ 89.740443] ? graph_lock+0x170/0x170
[ 89.744219] ? trace_hardirqs_on+0x10/0x10
[ 89.748432] ? find_held_lock+0x36/0x1c0
[ 89.752485] ? lock_downgrade+0x8f0/0x8f0
[ 89.756633] ? kasan_check_read+0x11/0x20
[ 89.760757] ? do_raw_spin_unlock+0xa7/0x2f0
[ 89.765147] ? do_raw_spin_trylock+0x1c0/0x1c0
[ 89.769706] ? graph_lock+0x170/0x170
[ 89.773484] ? kasan_check_write+0x14/0x20
[ 89.777695] ? do_raw_spin_lock+0xc1/0x200
[ 89.781909] ? trace_hardirqs_off+0xd/0x10
[ 89.786123] ? _raw_spin_unlock_irqrestore+0x63/0xc0
[ 89.791207] timerqueue_del+0x86/0x150
[ 89.795074] __remove_hrtimer+0xa8/0x1b0
[ 89.799115] __hrtimer_run_queues+0x369/0x10c0
[ 89.803688] ? hrtimer_start_range_ns+0xd20/0xd20
[ 89.808520] ? pvclock_read_flags+0x160/0x160
[ 89.813003] ? kvm_clock_read+0x25/0x30
[ 89.816956] ? kvm_clock_read+0x25/0x30
[ 89.820909] ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 89.825903] ? ktime_get_update_offsets_now+0x3db/0x5d0
[ 89.831247] ? do_timer+0x50/0x50
[ 89.834678] ? rcu_nmi_exit+0xe0/0x2d0
[ 89.838551] ? do_raw_spin_lock+0xc1/0x200
[ 89.842775] hrtimer_interrupt+0x2f3/0x750
[ 89.846991] smp_apic_timer_interrupt+0x165/0x730
[ 89.851823] ? smp_call_function_single_interrupt+0x660/0x660
[ 89.857687] ? _raw_spin_unlock+0x22/0x30
[ 89.861829] ? handle_edge_irq+0x330/0x870
[ 89.866057] ? task_prio+0x50/0x50
[ 89.869585] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 89.874406] apic_timer_interrupt+0xf/0x20
[ 89.878613]
[ 89.880821]
[ 89.882424] The buggy address belongs to the page:
[ 89.887340] page:ffffea00070b75c0 count:0 mapcount:0 mapping:0000000000000000 index:0x0
[ 89.895458] flags: 0x2fffc0000000000()
[ 89.899324] raw: 02fffc0000000000 0000000000000000 ffffffff070b0101 0000000000000000
[ 89.907180] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 89.915032] page dumped because: kasan: bad access detected
[ 89.921173]
[ 89.922778] Memory state around the buggy address:
[ 89.927681] ffff8801c2dd7600: f2 f2 f2 f2 f2 f2 f2 00 f2 f2 f2 00 00 00 00 00
[ 89.935016] ffff8801c2dd7680: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 89.942349] >ffff8801c2dd7700: f1 f1 f1 f1 00 f2 f2 f2 f2 f2 f2 f2 00 f2 f2 f2
[ 89.949678] ^
[ 89.953809] ffff8801c2dd7780: f2 f2 f2 f2 00 f2 f2 f2 f2 f2 f2 f2 f8 f2 f2 f2
[ 89.961147] ffff8801c2dd7800: f2 f2 f2 f2 00 f2 f2 f2 00 00 00 00 00 00 00 00
[ 89.968478] ==================================================================
[ 89.975810] Kernel panic - not syncing: panic_on_warn set ...
[ 89.975810]
[ 89.983152] CPU: 1 PID: 4530 Comm: syz-executor396 Tainted: G B 4.18.0-rc3+ #134
[ 89.991959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 90.001287] Call Trace:
[ 90.003847]
[ 90.005983] dump_stack+0x1c9/0x2b4
[ 90.009591] ? dump_stack_print_info.cold.2+0x52/0x52
[ 90.014759] ? lock_downgrade+0x8f0/0x8f0
[ 90.018884] ? rb_erase+0x19e9/0x3550
[ 90.022663] panic+0x238/0x4e7
[ 90.025832] ? add_taint.cold.5+0x16/0x16
[ 90.029958] ? print_shadow_for_address+0xba/0x116
[ 90.034862] ? do_raw_spin_unlock+0xa7/0x2f0
[ 90.039248] ? rb_erase+0x19e9/0x3550
[ 90.043023] kasan_end_report+0x47/0x4f
[ 90.046983] kasan_report.cold.7+0x76/0x2fe
[ 90.051294] __asan_report_load8_noabort+0x14/0x20
[ 90.056196] rb_erase+0x19e9/0x3550
[ 90.059801] ? update_load_avg+0x2de/0x2590
[ 90.064101] ? rb_insert_color+0x1480/0x1480
[ 90.068487] ? print_usage_bug+0xc0/0xc0
[ 90.072545] ? attach_entity_load_avg+0x860/0x860
[ 90.077374] ? print_usage_bug+0xc0/0xc0
[ 90.081413] ? print_usage_bug+0xc0/0xc0
[ 90.085460] ? find_held_lock+0x36/0x1c0
[ 90.089500] ? rb_erase+0x3550/0x3550
[ 90.093276] ? print_usage_bug+0xc0/0xc0
[ 90.097309] ? graph_lock+0x170/0x170
[ 90.101086] ? graph_lock+0x170/0x170
[ 90.104864] ? __lock_acquire+0x7fc/0x5020
[ 90.109075] ? __lock_is_held+0xb5/0x140
[ 90.113117] ? print_usage_bug+0xc0/0xc0
[ 90.117154] ? rcu_read_lock_sched_held+0x108/0x120
[ 90.122150] ? update_cfs_rq_load_avg.part.67+0x253/0x2e0
[ 90.127663] ? tg_unthrottle_up+0x220/0x220
[ 90.131961] ? __update_load_avg_cfs_rq.isra.35+0x435/0x590
[ 90.137651] ? print_usage_bug+0xc0/0xc0
[ 90.141690] ? attach_entity_load_avg+0x860/0x860
[ 90.146512] ? trace_hardirqs_on+0x10/0x10
[ 90.150725] ? __lock_acquire+0x7fc/0x5020
[ 90.154939] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 90.160453] ? run_posix_cpu_timers+0x6c7/0x2580
[ 90.165185] ? trace_hardirqs_on+0x10/0x10
[ 90.169397] ? __lock_acquire+0x7fc/0x5020
[ 90.173609] ? __lock_is_held+0xb5/0x140
[ 90.177655] ? print_usage_bug+0xc0/0xc0
[ 90.181695] ? print_usage_bug+0xc0/0xc0
[ 90.185732] ? graph_lock+0x170/0x170
[ 90.189510] ? trace_hardirqs_on+0x10/0x10
[ 90.193721] ? nohz_balance_enter_idle+0x680/0x680
[ 90.198629] ? __lock_acquire+0x7fc/0x5020
[ 90.202843] ? graph_lock+0x170/0x170
[ 90.206723] ? trace_hardirqs_on+0x10/0x10
[ 90.210938] ? find_held_lock+0x36/0x1c0
[ 90.214980] ? lock_downgrade+0x8f0/0x8f0
[ 90.219125] ? kasan_check_read+0x11/0x20
[ 90.223259] ? do_raw_spin_unlock+0xa7/0x2f0
[ 90.227650] ? do_raw_spin_trylock+0x1c0/0x1c0
[ 90.232321] ? graph_lock+0x170/0x170
[ 90.236106] ? kasan_check_write+0x14/0x20
[ 90.240315] ? do_raw_spin_lock+0xc1/0x200
[ 90.244524] ? trace_hardirqs_off+0xd/0x10
[ 90.248737] ? _raw_spin_unlock_irqrestore+0x63/0xc0
[ 90.253932] timerqueue_del+0x86/0x150
[ 90.257886] __remove_hrtimer+0xa8/0x1b0
[ 90.261926] __hrtimer_run_queues+0x369/0x10c0
[ 90.266496] ? hrtimer_start_range_ns+0xd20/0xd20
[ 90.271320] ? pvclock_read_flags+0x160/0x160
[ 90.275798] ? kvm_clock_read+0x25/0x30
[ 90.279750] ? kvm_clock_read+0x25/0x30
[ 90.283701] ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 90.288698] ? ktime_get_update_offsets_now+0x3db/0x5d0
[ 90.294049] ? do_timer+0x50/0x50
[ 90.297483] ? rcu_nmi_exit+0xe0/0x2d0
[ 90.301347] ? do_raw_spin_lock+0xc1/0x200
[ 90.305562] hrtimer_interrupt+0x2f3/0x750
[ 90.309776] smp_apic_timer_interrupt+0x165/0x730
[ 90.314603] ? smp_call_function_single_interrupt+0x660/0x660
[ 90.320467] ? _raw_spin_unlock+0x22/0x30
[ 90.324595] ? handle_edge_irq+0x330/0x870
[ 90.328811] ? task_prio+0x50/0x50
[ 90.332340] ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 90.337170] apic_timer_interrupt+0xf/0x20
[ 90.341387]
[ 90.343598]
[ 90.343602] ======================================================
[ 90.343605] WARNING: possible circular locking dependency detected
[ 90.343607] 4.18.0-rc3+ #134 Not tainted
[ 90.343610] ------------------------------------------------------
[ 90.343613] syz-executor396/4530 is trying to acquire lock:
[ 90.343615] (____ptrval____) ((console_sem).lock){-...}, at: down_trylock+0x13/0x70
[ 90.343624]
[ 90.343626] but task is already holding lock:
[ 90.343628] (____ptrval____) (report_lock){-...}, at: kasan_report+0x8e/0x110
[ 90.343635]
[ 90.343638] which lock already depends on the new lock.
[ 90.343639]
[ 90.343640]
[ 90.343643] the existing dependency chain (in reverse order) is:
[ 90.343644]
[ 90.343646] -> #5 (report_lock){-...}:
[ 90.343653] _raw_spin_lock_irqsave+0x96/0xc0
[ 90.343656] kasan_report+0x8e/0x110
[ 90.343658] __asan_report_load8_noabort+0x14/0x20
[ 90.343660] rb_erase+0x19e9/0x3550
[ 90.343662] timerqueue_del+0x86/0x150
[ 90.343665] __remove_hrtimer+0xa8/0x1b0
[ 90.343667] __hrtimer_run_queues+0x369/0x10c0
[ 90.343670] hrtimer_interrupt+0x2f3/0x750
[ 90.343672] smp_apic_timer_interrupt+0x165/0x730
[ 90.343675] apic_timer_interrupt+0xf/0x20
[ 90.343676]
[ 90.343677] -> #4 (hrtimer_bases.lock){-.-.}:
[ 90.343685] _raw_spin_lock_irqsave+0x96/0xc0
[ 90.343687] lock_hrtimer_base.isra.18+0x75/0x130
[ 90.343690] hrtimer_start_range_ns+0x128/0xd20
[ 90.343692] enqueue_task_rt+0x96a/0xfd0
[ 90.343694] enqueue_task+0xa2/0x1d0
[ 90.343697] __sched_setscheduler+0xe80/0x20b0
[ 90.343699] _sched_setscheduler+0x20c/0x370
[ 90.343701] sched_setscheduler+0xe/0x10
[ 90.343703] watchdog_enable+0x12d/0x1a0
[ 90.343706] smpboot_thread_fn+0x4c0/0x870
[ 90.343708] kthread+0x345/0x410
[ 90.343710] ret_from_fork+0x3a/0x50
[ 90.343711]
[ 90.343712] -> #3 (&rt_b->rt_runtime_lock){-.-.}:
[ 90.343720] _raw_spin_lock+0x2a/0x40
[ 90.343722] enqueue_task_rt+0x618/0xfd0
[ 90.343724] enqueue_task+0xa2/0x1d0
[ 90.343727] __sched_setscheduler+0xe80/0x20b0
[ 90.343729] _sched_setscheduler+0x20c/0x370
[ 90.343731] sched_setscheduler+0xe/0x10
[ 90.343734] watchdog_enable+0x12d/0x1a0
[ 90.343736] smpboot_thread_fn+0x4c0/0x870
[ 90.343738] kthread+0x345/0x410
[ 90.343740] ret_from_fork+0x3a/0x50
[ 90.343741]
[ 90.343742] -> #2 (&rq->lock){-.-.}:
[ 90.343750] _raw_spin_lock+0x2a/0x40
[ 90.343752] task_fork_fair+0x93/0x680
[ 90.343754] sched_fork+0x446/0xb40
[ 90.343757] copy_process.part.39+0x1c09/0x7220
[ 90.343759] _do_fork+0x291/0x12a0
[ 90.343761] kernel_thread+0x34/0x40
[ 90.343763] rest_init+0x22/0xe4
[ 90.343765] start_kernel+0x90e/0x949
[ 90.343768] x86_64_start_reservations+0x29/0x2b
[ 90.343770] x86_64_start_kernel+0x76/0x79
[ 90.343772] secondary_startup_64+0xa5/0xb0
[ 90.343773]
[ 90.343775] -> #1 (&p->pi_lock){-.-.}:
[ 90.343782] _raw_spin_lock_irqsave+0x96/0xc0
[ 90.343785] try_to_wake_up+0xd2/0x12b0
[ 90.343787] wake_up_process+0x10/0x20
[ 90.343789] __up.isra.1+0x1c0/0x2a0
[ 90.343791] up+0x13c/0x1c0
[ 90.343793] __up_console_sem+0xbe/0x1b0
[ 90.343796] console_unlock+0x7a2/0x10b0
[ 90.343798] vprintk_emit+0x6c6/0xdf0
[ 90.343800] vprintk_default+0x28/0x30
[ 90.343802] vprintk_func+0x7a/0xe7
[ 90.343804] printk+0xa7/0xcf
[ 90.343806] load_umh+0x51/0xbd
[ 90.343808] do_one_initcall+0x127/0x913
[ 90.343811] kernel_init_freeable+0x49b/0x58e
[ 90.343813] kernel_init+0x11/0x1b3
[ 90.343815] ret_from_fork+0x3a/0x50
[ 90.343816]
[ 90.343817] -> #0 ((console_sem).lock){-...}:
[ 90.343825] lock_acquire+0x1e4/0x540
[ 90.343828] _raw_spin_lock_irqsave+0x96/0xc0
[ 90.343830] down_trylock+0x13/0x70
[ 90.343832] __down_trylock_console_sem+0xae/0x200
[ 90.343835] console_trylock+0x15/0xa0
[ 90.343837] vprintk_emit+0x6ad/0xdf0
[ 90.343839] vprintk_default+0x28/0x30
[ 90.343841] vprintk_func+0x7a/0xe7
[ 90.343843] printk+0xa7/0xcf
[ 90.343845] kasan_report+0x9e/0x110
[ 90.343848] __asan_report_load8_noabort+0x14/0x20
[ 90.343850] rb_erase+0x19e9/0x3550
[ 90.343852] timerqueue_del+0x86/0x150
[ 90.343854] __remove_hrtimer+0xa8/0x1b0
[ 90.343857] __hrtimer_run_queues+0x369/0x10c0
[ 90.343859] hrtimer_interrupt+0x2f3/0x750
[ 90.343862] smp_apic_timer_interrupt+0x165/0x730
[ 90.343864] apic_timer_interrupt+0xf/0x20
[ 90.343865]
[ 90.343868] other info that might help us debug this:
[ 90.343869]
[ 90.343870] Chain exists of:
[ 90.343872] (console_sem).lock --> hrtimer_bases.lock --> report_lock
[ 90.343881]
[ 90.343884] Possible unsafe locking scenario:
[ 90.343885]
[ 90.343887] CPU0 CPU1
[ 90.343889] ---- ----
[ 90.343891] lock(report_lock);
[ 90.343896] lock(hrtimer_bases.lock);
[ 90.343901] lock(report_lock);
[ 90.343905] lock((console_sem).lock);
[ 90.343909]
[ 90.343911] *** DEADLOCK ***
[ 90.343912]
[ 90.343915] 4 locks held by syz-executor396/4530:
[ 90.343916] #0: (____ptrval____) (&sb->s_type->i_mutex_key#11){+.+.}, at: __sock_release+0x8b/0x260
[ 90.343926] #1: (____ptrval____) (rcu_read_lock){....}, at: bpf_tcp_close+0x0/0x1050
[ 90.343935] #2: (____ptrval____) (hrtimer_bases.lock){-.-.}, at: hrtimer_interrupt+0xd2/0x750
[ 90.343945] #3: (____ptrval____) (report_lock){-...}, at: kasan_report+0x8e/0x110
[ 90.343954]
[ 90.343955] stack backtrace:
[ 90.343959] CPU: 1 PID: 4530 Comm: syz-executor396 Not tainted 4.18.0-rc3+ #134
[ 90.343963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 90.343965] Call Trace:
[ 90.343966]
[ 90.343968] dump_stack+0x1c9/0x2b4
[ 90.343971] ? dump_stack_print_info.cold.2+0x52/0x52
[ 90.343973] ? vprintk_func+0xd0/0xe7
[ 90.343976] print_circular_bug.isra.36.cold.57+0x1bd/0x27d
[ 90.343978] ? save_trace+0xe0/0x290
[ 90.343980] __lock_acquire+0x3449/0x5020
[ 90.343982] ? trace_hardirqs_on+0x10/0x10
[ 90.343985] ? trace_hardirqs_on+0x10/0x10
[ 90.343987] ? unwind_next_frame+0x3e/0x50
[ 90.343989] ? __save_stack_trace+0x7d/0xf0
[ 90.343992] ? add_lock_to_list.isra.29+0x1ec/0x4b0
[ 90.343994] ? trace_hardirqs_off+0x10/0x10
[ 90.343996] ? save_stack_trace+0x1a/0x20
[ 90.343998] ? save_trace+0xe0/0x290
[ 90.344000] ? graph_lock+0x170/0x170
[ 90.344003] ? kasan_check_read+0x11/0x20
[ 90.344005] ? __lock_acquire+0x28d9/0x5020
[ 90.344007] ? trace_hardirqs_on+0x10/0x10
[ 90.344009] lock_acquire+0x1e4/0x540
[ 90.344012] ? down_trylock+0x13/0x70
[ 90.344014] ? lock_release+0xa30/0xa30
[ 90.344016] ? lock_downgrade+0x8f0/0x8f0
[ 90.344018] ? kvm_sched_clock_read+0x9/0x20
[ 90.344020] ? sched_clock+0x31/0x40
[ 90.344023] ? vprintk_emit+0x6ad/0xdf0
[ 90.344025] _raw_spin_lock_irqsave+0x96/0xc0
[ 90.344027] ? down_trylock+0x13/0x70
[ 90.344029] down_trylock+0x13/0x70
[ 90.344032] __down_trylock_console_sem+0xae/0x200
[ 90.344034] console_trylock+0x15/0xa0
[ 90.344036] vprintk_emit+0x6ad/0xdf0
[ 90.344038] ? __lock_acquire+0x7fc/0x5020
[ 90.344040] ? wake_up_klogd+0x110/0x110
[ 90.344042] ? graph_lock+0x170/0x170
[ 90.344045] ? __lock_acquire+0x7fc/0x5020
[ 90.344047] ? trace_hardirqs_on+0x10/0x10
[ 90.344049] ? lock_downgrade+0x8f0/0x8f0
[ 90.344051] ? print_usage_bug+0xc0/0xc0
[ 90.344053] ? lock_acquire+0x1e4/0x540
[ 90.344056] ? kasan_report+0x8e/0x110
[ 90.344058] ? rb_erase+0x19e9/0x3550
[ 90.344060] vprintk_default+0x28/0x30
[ 90.344062] vprintk_func+0x7a/0xe7
[ 90.344064] printk+0xa7/0xcf
[ 90.344066] ? kmsg_dump_rewind_nolock+0xe4/0xe4
[ 90.344068] ? kasan_check_write+0x14/0x20
[ 90.344071] ? do_raw_spin_lock+0xc1/0x200
[ 90.344073] ? do_raw_spin_lock+0xc1/0x200
[ 90.344075] kasan_report+0x9e/0x110
[ 90.344077] __asan_report_load8_noabort+0x14/0x20
[ 90.344079] rb_erase+0x19e9/0x3550
[ 90.344082] ? update_load_avg+0x2de/0x2590
[ 90.344084] ? rb_insert_color+0x1480/0x1480
[ 90.344086] ? print_usage_bug+0xc0/0xc0
[ 90.344089] ? attach_entity_load_avg+0x860/0x860
[ 90.344091] ? print_usage_bug+0xc0/0xc0
[ 90.344096] ? print_usage_bug+0xc0/0xc0
[ 90.344098] ? find_held_lock+0x36/0x1c0
[ 90.344101] ? rb_erase+0x3550/0x3550
[ 90.344103] ? print_usage_bug+0xc0/0xc0
[ 90.344105] ? graph_lock+0x170/0x170
[ 90.344107] ? graph_lock+0x170/0x170
[ 90.344109] ? __lock_acquire+0x7fc/0x5020
[ 90.344111] ? __lock_is_held+0xb5/0x140
[ 90.344114] ? print_usage_bug+0xc0/0xc0
[ 90.344116] ? rcu_read_lock_sched_held+0x108/0x120
[ 90.344119] ? update_cfs_rq_load_avg.part.67+0x253/0x2e0
[ 90.344121] ? tg_unthrottle_up+0x220/0x220
[ 90.344124] ? __update_load_avg_cfs_rq.isra.35+0x435/0x590
[ 90.344126] ? print_usage_bug+0xc0/0xc0
[ 90.344129] ? attach_entity_load_avg+0x860/0x860
[ 90.344131] ? trace_hardirqs_on+0x10/0x10
[ 90.344133] ? __lock_acquire+0x7fc/0x5020
[ 90.344136] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 90.344139] ? run_posix_cpu_timers+0x6c7/0x2580
[ 90.344141] ? trace_hardirqs_on+0x10/0x10
[ 90.344143] ? __lock_acquire+0x7fc/0x5020
[ 90.344145] ? __lock_is_held+0xb5/0x140
[ 90.344147] ? print_usage_bug+0xc0/0xc0
[ 90.344150] ? print_usage_bug+0xc0/0xc0
[ 90.344152] ? graph_lock+0x170/0x170
[ 90.344154] ? trace_hardirqs_on+0x10/0x10
[ 90.344157] ? nohz_balance_enter_idle+0x680/0x680
[ 90.344159] ? __lock_acquire+0x7fc/0x5020
[ 90.344161] ? graph_lock+0x170/0x170
[ 90.344163] ? trace_hardirqs_on+0x10/0x10
[ 90.344165] ? find_held_lock+0x36/0x1c0
[ 90.344167] ? lock_downgrade+0x8f0/0x8f0
[ 90.344170] ? kasan_check_read+0x11/0x20
[ 90.344172] ? do_raw_spin_unlock+0xa7/0x2f0
[ 90.344174] ? do_raw_spin_trylock+0x1c0/0x1c0
[ 90.344176] ? graph_lock+0x170/0x170
[ 90.344179] ? kasan_check_write+0x14/0x20
[ 90.344181] ? do_raw_spin_lock+0xc1/0x200
[ 90.344183] ? trace_hardirqs_off+0xd/0x10
[ 90.344186] ? _raw_spin_unlock_irqrestore+0x63/0xc0
[ 90.344188] timerqueue_del+0x86/0x150
[ 90.344190] __remove_hrtimer+0xa8/0x1b0
[ 90.344193] __hrtimer_run_queues+0x369/0x10c0
[ 90.344195] ? hrtimer_start_range_ns+0xd20/0xd20
[ 90.344197] ? pvclock_read_flags+0x160/0x160
[ 90.344200] ? kvm_clock_read+0x25/0x30
[ 90.344202] ? kvm_clock_read+0x25/0x30
[ 90.344204] ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 90.344207] ? ktime_get_update_offsets_now+0x3db/0x5d0
[ 90.344209] ? do_timer+0x50/0x50
[ 90.344211] ? rcu_nmi_exit+0xe0/0x2d0
[ 90.344213] ? do_raw_spin_lock+0xc1/0x200
[ 90.344216] hrtimer_interrupt+0x2f3/0x750
[ 90.344218] smp_apic_timer_interrupt+0x165/0x730
[ 90.344220] ? smp_call_function_single_interr
[ 90.344224] Lost 6 message(s)!
[ 91.431371] Shutting down cpus with NMI
[ 92.484855] Dumping ftrace buffer:
[ 92.488372] (ftrace buffer empty)
[ 92.492057] Kernel Offset: disabled
[ 92.495661] Rebooting in 86400 seconds..