[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 22.901316] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 25.385827] random: sshd: uninitialized urandom read (32 bytes read) [ 25.759215] random: sshd: uninitialized urandom read (32 bytes read) [ 26.310736] random: sshd: uninitialized urandom read (32 bytes read) [ 28.349277] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.0.29' (ECDSA) to the list of known hosts. [ 34.045480] random: sshd: uninitialized urandom read (32 bytes read) executing program [ 34.144168] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details. [ 34.167184] kasan: CONFIG_KASAN_INLINE enabled [ 34.174149] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 34.181510] general protection fault: 0000 [#1] SMP KASAN [ 34.187047] CPU: 1 PID: 4657 Comm: syz-executor076 Not tainted 4.19.0-rc1-next-20180831+ #53 [ 34.195610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 34.204953] RIP: 0010:__schedule+0xf48/0x1df0 [ 34.209444] Code: 4c 89 e8 48 c1 e8 03 42 80 3c 30 00 0f 85 94 09 00 00 4d 8b 6d 00 4d 85 ed 0f 84 84 f7 ff ff 49 8d 7d 10 48 89 f8 48 c1 e8 03 <42> 80 3c 30 00 74 a6 e8 3c af e6 fa eb 9f 4c 89 e6 48 89 df e8 bf [ 34.228395] RSP: 0018:ffff8801b6346a30 EFLAGS: 00010806 [ 34.233769] RAX: 1bd5a00000000022 RBX: ffff8801bd7ce380 RCX: 1ffff10036e3088f [ 34.241040] RDX: 0000000040000000 RSI: 0000000000000000 RDI: dead000000000110 [ 34.248311] RBP: ffff8801b6346c00 R08: ffff8801bd7ce380 R09: fffff520003d5a47 [ 34.255578] R10: fffff520003d5a47 R11: ffffc90001ead23b R12: ffff8801ce0be000 [ 34.262854] R13: dead000000000100 R14: dffffc0000000000 R15: ffff8801db12cc80 [ 34.270126] FS: 0000000002664880(0000) GS:ffff8801db100000(0000) knlGS:0000000000000000 [ 34.278354] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 34.284233] CR2: 000000000043ecae CR3: 000000000806a000 CR4: 00000000001426e0 [ 34.291497] Call Trace: [ 34.294094] ? __sched_text_start+0x8/0x8 [ 34.298243] ? generic_exec_single+0x1ea/0x5e0 [ 34.302822] ? __lock_is_held+0xb5/0x140 [ 34.306879] ? retint_kernel+0x10/0x10 [ 34.310778] ? check_same_owner+0x340/0x340 [ 34.315123] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 34.320695] ? rcu_note_context_switch+0x680/0x680 [ 34.325626] ? add_nops+0x90/0x90 [ 34.329081] ? arch_jump_label_transform+0x1b/0x40 [ 34.334007] preempt_schedule_common+0x22/0x60 [ 34.338598] _cond_resched+0x1d/0x30 [ 34.342311] __mutex_lock+0x13d/0x1700 [ 34.346219] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 34.351752] ? fill_pte+0xd6/0x420 [ 34.355290] ? arch_jump_label_transform+0x1b/0x40 [ 34.360216] ? find_next_and_bit+0x165/0x1d0 [ 34.364624] ? mutex_trylock+0x2b0/0x2b0 [ 34.368688] ? find_held_lock+0x36/0x1c0 [ 34.372749] ? lock_downgrade+0x8f0/0x8f0 [ 34.376895] ? trace_hardirqs_on+0xbd/0x2c0 [ 34.381209] ? trace_hardirqs_off_caller+0x2b0/0x2b0 [ 34.386310] ? text_poke_bp+0x10c/0x16a [ 34.390279] ? trace_hardirqs_off_caller+0x2b0/0x2b0 [ 34.395381] ? kvm_arch_vcpu_ioctl_set_mpstate+0x1e/0x3a0 [ 34.400914] ? kvm_arch_vcpu_ioctl_set_mpstate+0x1f/0x3a0 [ 34.406450] ? kasan_check_write+0x14/0x20 [ 34.410694] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 34.415635] ? wait_for_completion+0x8d0/0x8d0 [ 34.420228] ? kvm_arch_vcpu_ioctl_set_mpstate+0x1e/0x3a0 [ 34.425774] ? __jump_label_transform.isra.0+0x478/0x8f0 [ 34.431221] ? modules_open+0xa0/0xa0 [ 34.435021] ? kvm_vm_release+0x42/0x50 [ 34.438991] ? get_trap_addr+0x1d0/0x1d0 [ 34.443050] ? do_group_exit+0x177/0x440 [ 34.447111] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 34.452647] ? jump_label_type+0x132/0x1d0 [ 34.456921] mutex_lock_nested+0x16/0x20 [ 34.460982] ? mutex_lock_nested+0x16/0x20 [ 34.465230] arch_jump_label_transform+0x1b/0x40 [ 34.469995] __jump_label_update+0x16e/0x1a0 [ 34.474416] jump_label_update+0x151/0x2e0 [ 34.478691] __static_key_slow_dec_cpuslocked+0xb8/0x210 [ 34.484151] ? static_key_disable+0x30/0x30 [ 34.488474] ? rcu_read_lock_sched_held+0x108/0x120 [ 34.493490] static_key_slow_dec+0x63/0xa0 [ 34.497732] kvm_arch_vcpu_uninit+0x18e/0x1d0 [ 34.502226] kvm_vcpu_uninit+0x44/0x90 [ 34.506109] vmx_free_vcpu+0x23a/0x300 [ 34.509992] kvm_arch_destroy_vm+0x365/0x7c0 [ 34.514403] ? kasan_check_read+0x13/0x20 [ 34.518548] ? kvm_arch_sync_events+0x30/0x30 [ 34.523047] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 34.528585] ? mmu_notifier_unregister+0x474/0x600 [ 34.533518] ? trace_hardirqs_on+0x2c0/0x2c0 [ 34.537923] ? kfree+0x111/0x210 [ 34.541301] ? __mmu_notifier_register+0x30/0x30 [ 34.546050] ? __free_pages+0x10a/0x190 [ 34.550018] ? free_unref_page+0x930/0x930 [ 34.554260] kvm_put_kvm+0x73f/0x1060 [ 34.558062] ? kvm_write_guest_cached+0x40/0x40 [ 34.562740] ? _raw_spin_unlock_irq+0x27/0x70 [ 34.567236] ? _raw_spin_unlock_irq+0x27/0x70 [ 34.571743] ? kasan_check_write+0x14/0x20 [ 34.576003] ? do_raw_spin_lock+0xc1/0x200 [ 34.580257] ? kvm_irqfd_release+0xdd/0x120 [ 34.584586] ? kvm_irqfd_release+0xdd/0x120 [ 34.588916] kvm_vm_release+0x42/0x50 [ 34.592719] __fput+0x3c1/0xa80 [ 34.596001] ? kvm_put_kvm+0x1060/0x1060 [ 34.600078] ? __alloc_file+0x400/0x400 [ 34.604052] ? check_same_owner+0x340/0x340 [ 34.608370] ? kasan_check_write+0x14/0x20 [ 34.612610] ? do_raw_spin_lock+0xc1/0x200 [ 34.616844] ____fput+0x15/0x20 [ 34.620116] task_work_run+0x1e8/0x2a0 [ 34.624002] ? task_work_cancel+0x240/0x240 [ 34.628334] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 34.633882] ? switch_task_namespaces+0xa2/0xd0 [ 34.638549] do_exit+0x1ae4/0x26e0 [ 34.642094] ? mm_update_next_owner+0x9a0/0x9a0 [ 34.646768] ? kvm_vcpu_ioctl+0x2b5/0x1280 [ 34.651004] ? rcu_read_lock_sched_held+0x108/0x120 [ 34.656044] ? kfree+0x1d7/0x210 [ 34.659415] ? kvm_vcpu_ioctl+0x2ba/0x1280 [ 34.663650] ? kvm_uevent_notify_change.part.32+0x440/0x440 [ 34.669365] ? is_bpf_text_address+0xd7/0x170 [ 34.673860] ? kernel_text_address+0x79/0xf0 [ 34.678264] ? __kernel_text_address+0xd/0x40 [ 34.682760] ? unwind_get_return_address+0x61/0xa0 [ 34.687702] ? __save_stack_trace+0x8d/0xf0 [ 34.692087] ? save_stack+0xa9/0xd0 [ 34.695710] ? save_stack+0x43/0xd0 [ 34.699331] ? __kasan_slab_free+0x11a/0x170 [ 34.703739] ? kasan_slab_free+0xe/0x10 [ 34.707709] ? putname+0xf2/0x130 [ 34.711161] ? __x64_sys_openat+0x9d/0x100 [ 34.715394] ? do_syscall_64+0x1b9/0x820 [ 34.719456] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 34.724816] ? trace_hardirqs_off+0xb8/0x2b0 [ 34.729229] ? kasan_check_read+0x11/0x20 [ 34.733390] ? do_raw_spin_unlock+0xa7/0x2f0 [ 34.737795] ? trace_hardirqs_on+0x2c0/0x2c0 [ 34.742205] ? initcall_blacklisted+0x9a/0x1e0 [ 34.746793] ? _raw_spin_unlock_irqrestore+0x63/0xc0 [ 34.751895] ? kvm_uevent_notify_change.part.32+0x440/0x440 [ 34.757615] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 34.763150] ? do_vfs_ioctl+0x201/0x1720 [ 34.767213] ? rcu_is_watching+0x8c/0x150 [ 34.771354] ? trace_hardirqs_on+0xbd/0x2c0 [ 34.775679] ? ioctl_preallocate+0x300/0x300 [ 34.780084] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 34.785638] ? __fget_light+0x2f7/0x440 [ 34.789618] ? fget_raw+0x20/0x20 [ 34.793069] ? putname+0xf2/0x130 [ 34.796522] ? rcu_read_lock_sched_held+0x108/0x120 [ 34.801530] ? kmem_cache_free+0x246/0x280 [ 34.805771] ? putname+0xf7/0x130 [ 34.809227] do_group_exit+0x177/0x440 [ 34.813113] ? trace_hardirqs_on+0xbd/0x2c0 [ 34.817431] ? __ia32_sys_exit+0x50/0x50 [ 34.821484] ? trace_hardirqs_off_caller+0x2b0/0x2b0 [ 34.826594] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 34.832135] ? ksys_ioctl+0x81/0xd0 [ 34.835761] __x64_sys_exit_group+0x3e/0x50 [ 34.840079] do_syscall_64+0x1b9/0x820 [ 34.843964] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 34.849323] ? syscall_return_slowpath+0x5e0/0x5e0 [ 34.854247] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 34.859110] ? trace_hardirqs_on_caller+0x2b0/0x2b0 [ 34.864138] ? prepare_exit_to_usermode+0x291/0x3b0 [ 34.869154] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 34.874013] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 34.879196] RIP: 0033:0x43ecd8 [ 34.882387] Code: Bad RIP value. [ 34.885747] RSP: 002b:00007ffe815bc2b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 34.893454] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000043ecd8 [ 34.900723] RDX: 0000000000000000 RSI: 000000000000003c RDI: 0000000000000000 [ 34.907985] RBP: 00000000004be588 R08: 00000000000000e7 R09: ffffffffffffffd0 [ 34.915256] R10: 00000000004002c8 R11: 0000000000000246 R12: 0000000000000001 [ 34.922526] R13: 00000000006d0180 R14: 0000000000000000 R15: 0000000000000000 [ 34.929798] Modules linked in: [ 34.932995] Dumping ftrace buffer: [ 34.936524] (ftrace buffer empty) [ 34.940236] [ 34.940242] ====================================================== [ 34.940247] WARNING: possible circular locking dependency detected [ 34.940252] 4.19.0-rc1-next-20180831+ #53 Not tainted [ 34.940257] ------------------------------------------------------ [ 34.940262] syz-executor076/4657 is trying to acquire lock: [ 34.940265] 000000002bf48bc0 ((console_sem).lock){-...}, at: down_trylock+0x13/0x70 [ 34.940280] [ 34.940284] but task is already holding lock: [ 34.940287] 0000000049255d08 (&rq->lock){-.-.}, at: __schedule+0x24d/0x1df0 [ 34.940301] [ 34.940306] which lock already depends on the new lock. [ 34.940308] [ 34.940311] [ 34.940316] the existing dependency chain (in reverse order) is: [ 34.940318] [ 34.940320] -> #2 (&rq->lock){-.-.}: [ 34.940334] _raw_spin_lock+0x2a/0x40 [ 34.940338] task_fork_fair+0x93/0x680 [ 34.940342] sched_fork+0x44b/0xbd0 [ 34.940346] copy_process+0x235e/0x7af0 [ 34.940350] _do_fork+0x1ca/0x1170 [ 34.940353] kernel_thread+0x34/0x40 [ 34.940357] rest_init+0x22/0xe4 [ 34.940361] start_kernel+0x913/0x94e [ 34.940365] x86_64_start_reservations+0x29/0x2b [ 34.940369] x86_64_start_kernel+0x76/0x79 [ 34.940373] secondary_startup_64+0xa4/0xb0 [ 34.940376] [ 34.940378] -> #1 (&p->pi_lock){-.-.}: [ 34.940392] _raw_spin_lock_irqsave+0x96/0xc0 [ 34.940396] try_to_wake_up+0xd2/0x1250 [ 34.940400] wake_up_process+0x10/0x20 [ 34.940404] __up.isra.1+0x1c0/0x2a0 [ 34.940407] up+0x13c/0x1c0 [ 34.940411] __up_console_sem+0xbe/0x1b0 [ 34.940415] console_unlock+0x506/0x10d0 [ 34.940419] vprintk_emit+0x33a/0x910 [ 34.940422] vprintk_default+0x28/0x30 [ 34.940426] vprintk_func+0x7a/0x117 [ 34.940430] printk+0xa7/0xcf [ 34.940433] load_umh+0x51/0xbd [ 34.940437] do_one_initcall+0x127/0x838 [ 34.940441] kernel_init_freeable+0x4bb/0x5ae [ 34.940445] kernel_init+0x11/0x1b3 [ 34.940448] ret_from_fork+0x3a/0x50 [ 34.940451] [ 34.940453] -> #0 ((console_sem).lock){-...}: [ 34.940467] lock_acquire+0x1e4/0x4f0 [ 34.940471] _raw_spin_lock_irqsave+0x96/0xc0 [ 34.940475] down_trylock+0x13/0x70 [ 34.940480] __down_trylock_console_sem+0xae/0x200 [ 34.940483] console_trylock+0x15/0xa0 [ 34.940487] vprintk_emit+0x31f/0x910 [ 34.940491] vprintk_default+0x28/0x30 [ 34.940495] vprintk_func+0x7a/0x117 [ 34.940498] printk+0xa7/0xcf [ 34.940502] kasan_die_handler.cold.22+0x11/0x30 [ 34.940507] notifier_call_chain+0x180/0x390 [ 34.940511] atomic_notifier_call_chain+0x98/0x190 [ 34.940515] notify_die+0x1be/0x2e0 [ 34.940519] do_general_protection+0x248/0x2f0 [ 34.940523] general_protection+0x1e/0x30 [ 34.940526] __schedule+0xf48/0x1df0 [ 34.940531] preempt_schedule_common+0x22/0x60 [ 34.940534] _cond_resched+0x1d/0x30 [ 34.940538] __mutex_lock+0x13d/0x1700 [ 34.940542] mutex_lock_nested+0x16/0x20 [ 34.940547] arch_jump_label_transform+0x1b/0x40 [ 34.940551] __jump_label_update+0x16e/0x1a0 [ 34.940555] jump_label_update+0x151/0x2e0 [ 34.940559] __static_key_slow_dec_cpuslocked+0xb8/0x210 [ 34.940563] static_key_slow_dec+0x63/0xa0 [ 34.940568] kvm_arch_vcpu_uninit+0x18e/0x1d0 [ 34.940571] kvm_vcpu_uninit+0x44/0x90 [ 34.940575] vmx_free_vcpu+0x23a/0x300 [ 34.940579] kvm_arch_destroy_vm+0x365/0x7c0 [ 34.940583] kvm_put_kvm+0x73f/0x1060 [ 34.940587] kvm_vm_release+0x42/0x50 [ 34.940591] __fput+0x3c1/0xa80 [ 34.940594] ____fput+0x15/0x20 [ 34.940598] task_work_run+0x1e8/0x2a0 [ 34.940610] do_exit+0x1ae4/0x26e0 [ 34.940614] do_group_exit+0x177/0x440 [ 34.940618] __x64_sys_exit_group+0x3e/0x50 [ 34.940622] do_syscall_64+0x1b9/0x820 [ 34.940626] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 34.940628] [ 34.940633] other info that might help us debug this: [ 34.940635] [ 34.940638] Chain exists of: [ 34.940640] (console_sem).lock --> &p->pi_lock --> &rq->lock [ 34.940658] [ 34.940662] Possible unsafe locking scenario: [ 34.940664] [ 34.940668] CPU0 CPU1 [ 34.940678] ---- ---- [ 34.940681] lock(&rq->lock); [ 34.940690] lock(&p->pi_lock); [ 34.940699] lock(&rq->lock); [ 34.940707] lock((console_sem).lock); [ 34.940715] [ 34.940718] *** DEADLOCK *** [ 34.940720] [ 34.940725] 4 locks held by syz-executor076/4657: [ 34.940727] #0: 000000007464f320 (cpu_hotplug_lock.rw_sem){++++}, at: static_key_slow_dec+0x57/0xa0 [ 34.940745] #1: 000000001c1d7db9 (jump_label_mutex){+.+.}, at: __static_key_slow_dec_cpuslocked+0x82/0x210 [ 34.940763] #2: 0000000049255d08 (&rq->lock){-.-.}, at: __schedule+0x24d/0x1df0 [ 34.940780] #3: 0000000017566f78 (rcu_read_lock){....}, at: atomic_notifier_call_chain+0x0/0x190 [ 34.940797] [ 34.940800] stack backtrace: [ 34.940807] CPU: 1 PID: 4657 Comm: syz-executor076 Not tainted 4.19.0-rc1-next-20180831+ #53 [ 34.940814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 34.940817] Call Trace: [ 34.940821] dump_stack+0x1c9/0x2b4 [ 34.940825] ? dump_stack_print_info.cold.2+0x52/0x52 [ 34.940829] ? vprintk_func+0x100/0x117 [ 34.940834] print_circular_bug.isra.34.cold.55+0x1bd/0x27d [ 34.940838] ? save_trace+0xe0/0x290 [ 34.940842] __lock_acquire+0x3449/0x5020 [ 34.940846] ? mark_held_locks+0x160/0x160 [ 34.940850] ? mark_held_locks+0x160/0x160 [ 34.940854] ? update_load_avg+0x389/0x27d0 [ 34.940859] ? __update_load_avg_blocked_se+0x730/0x730 [ 34.940863] ? attach_entity_load_avg+0x860/0x860 [ 34.940867] ? attach_entity_load_avg+0x860/0x860 [ 34.940871] ? graph_lock+0x170/0x170 [ 34.940876] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 34.940880] lock_acquire+0x1e4/0x4f0 [ 34.940883] ? down_trylock+0x13/0x70 [ 34.940887] ? lock_release+0x9f0/0x9f0 [ 34.940891] ? trace_hardirqs_off+0xb8/0x2b0 [ 34.940895] ? trace_hardirqs_on+0x2c0/0x2c0 [ 34.940899] ? trace_hardirqs_off+0xb8/0x2b0 [ 34.940903] ? log_store+0x34f/0x4c0 [ 34.940907] ? vprintk_emit+0x31f/0x910 [ 34.940911] _raw_spin_lock_irqsave+0x96/0xc0 [ 34.940915] ? down_trylock+0x13/0x70 [ 34.940918] down_trylock+0x13/0x70 [ 34.940923] __down_trylock_console_sem+0xae/0x200 [ 34.940926] console_trylock+0x15/0xa0 [ 34.940930] vprintk_emit+0x31f/0x910 [ 34.940934] ? wake_up_klogd+0x110/0x110 [ 34.940938] ? __lock_acquire+0x7fc/0x5020 [ 34.940942] ? mark_held_locks+0x160/0x160 [ 34.940946] vprintk_default+0x28/0x30 [ 34.940950] vprintk_func+0x7a/0x117 [ 34.940953] printk+0xa7/0xcf [ 34.940957] ? kmsg_dump_rewind_nolock+0xe4/0xe4 [ 34.940962] ? kasan_die_handler.cold.22+0x5/0x30 [ 34.940966] ? kasan_die_handler+0x1a/0x31 [ 34.940970] kasan_die_handler.cold.22+0x11/0x30 [ 34.940974] notifier_call_chain+0x180/0x390 [ 34.940978] ? unregister_die_notifier+0x20/0x20 [ 34.940982] ? rcu_is_watching+0x8c/0x150 [ 34.940986] ? rcu_cleanup_dead_rnp+0x200/0x200 [ 34.940991] ? rcu_cleanup_dead_rnp+0x200/0x200 [ 34.940995] ? cmp_ex_search+0x8c/0xb0 [ 34.940999] atomic_notifier_call_chain+0x98/0x190 [ 34.941003] notify_die+0x1be/0x2e0 [ 34.941007] ? __atomic_notifier_call_chain+0x1a0/0x1a0 [ 34.941011] ? search_module_extables+0x18/0xc0 [ 34.941015] ? __schedule+0xf48/0x1df0 [ 34.941019] ? __schedule+0xf48/0x1df0 [ 34.941023] ? search_exception_tables+0x47/0x50 [ 34.941028] do_general_protection+0x248/0x2f0 [ 34.941031] general_protection+0x1e/0x30 [ 34.941036] RIP: 0010:__schedule+0xf48/0x1df0 [ 34.941048] Code: 4c 89 e8 48 c1 e8 03 42 80 3c 30 00 0f 85 94 09 00 00 4d 8b 6d 00 4d 85 ed 0f 84 84 f7 ff ff 49 8d 7d 10 48 89 f8 48 c1 e8 03 <42> 80 3c 30 00 74 a6 e8 3c af e6 fa eb 9f 4c 89 e6 48 89 df e8 bf [ 34.941052] RSP: 0018:ffff8801b6346a30 EFLAGS: 00010806 [ 34.941061] RAX: 1bd5a00000000022 RBX: ffff8801bd7ce380 RCX: 1ffff10036e3088f [ 34.941067] RDX: 0000000040000000 RSI: 0000000000000000 RDI: dead000000000110 [ 34.941072] RBP: ffff8801b6346c00 R08: ffff8801bd7ce380 R09: fffff520003d5a47 [ 34.941078] R10: fffff520003d5a47 R11: ffffc90001ead23b R12: ffff8801ce0be000 [ 34.941084] R13: dead000000000100 R14: dffffc0000000000 R15: ffff8801db12cc80 [ 34.941088] ? __sched_text_start+0x8/0x8 [ 34.941092] ? generic_exec_single+0x1ea/0x5e0 [ 34.941096] ? __lock_is_held+0xb5/0x140 [ 34.941100] ? retint_kernel+0x10/0x10 [ 34.941104] ? check_same_owner+0x340/0x340 [ 34.941109] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 34.941114] ? rcu_note_context_switch+0x680/0x680 [ 34.941117] ? add_nops+0x90/0x90 [ 34.941122] ? arch_jump_label_transform+0x1b/0x40 [ 34.941126] preempt_schedule_common+0x22/0x60 [ 34.941130] _cond_resched+0x1d/0x30 [ 34.941133] __mutex_lock+0x13d/0x1700 [ 34.941138] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 34.941142] ? fill_pte+0xd6/0x420 [ 34.941146] ? arch_jump_label_transform+0x1b/0x40 [ 34.941150] ? find_next_and_bit+0x165/0x1d0 [ 34.941154] ? mutex_trylock+0x2b0/0x2b0 [ 34.941158] ? find_held_lock+0x36/0x1c0 [ 34.941162] ? lock_downgrade+0x8f0/0x8f0 [ 34.941166] ? trace_hardirqs_on+0xbd/0x2c0 [ 34.941171] ? trace_hardirqs_off_caller+0x2b0/0x2b0 [ 34.941175] ? text_poke_bp+0x10c/0x16a [ 34.941180] ? trace_hardirqs_off_caller+0x2b0/0x2b0 [ 34.941184] ? kvm_arch_vcpu_ioctl_set_mpstate+0x1e/0x3a0 [ 34.941189] ? kvm_arch_vcpu_ioctl_set_mpstate+0x1f/0x3a0 [ 34.941193] ? kasan_check_write+0x14/0x20 [ 34.941198] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 34.941202] ? wait_for_completion+0x8d0/0x8d0 [ 34.941206] ? kvm_arch_vcpu_ioctl_set_mpstate+0x1e/0x3a0 [ 34.941211] ? __jump_label_transform.isra.0+0x478/0x8f0 [ 34.941215] ? modules_open+0xa0/0xa0 [ 34.941219] ? kvm_vm_release+0x42/0x50 [ 34.941223] ? get_trap_addr+0x1d0/0x1d0 [ 34.941227] ? do_group_exit+0x177/0x440 [ 34.941231] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 34.941235] ? jump_label_type+0x132/0x1d0 [ 34.941239] mutex_lock_nested+0x16/0x20 [ 34.941244] ? mutex_lock_nested+0x16/0x20 [ 34.941248] arch_jump_label_transform+0x1b/0x40 [ 34.941252] __jump_label_update+0x16e/0x1a0 [ 34.941256] jump_label_update+0x151/0x2e0 [ 34.941261] __static_key_slow_dec_cpuslocked+0xb8/0x210 [ 34.941265] ? static_key_disable+0x30/0x30 [ 34.941270] ? rcu_read_lock_sched_held+0x108/0x120 [ 34.941274] static_key_slow_dec+0x63/0xa0 [ 34.941278] kvm_arch_vcpu_uninit+0x18e/0x1d0 [ 34.941282] kvm_vcpu_uninit+0x44/0x90 [ 34.941286] vmx_free_vcpu+0x23a/0x300 [ 34.941289] kvm_arch_destroy_vm+0x36 [ 34.941297] Lost 92 message(s)! [ 35.964446] ---[ end trace 2d79bb16d8294b6b ]--- [ 35.969203] RIP: 0010:__schedule+0xf48/0x1df0 [ 35.973708] Code: 4c 89 e8 48 c1 e8 03 42 80 3c 30 00 0f 85 94 09 00 00 4d 8b 6d 00 4d 85 ed 0f 84 84 f7 ff ff 49 8d 7d 10 48 89 f8 48 c1 e8 03 <42> 80 3c 30 00 74 a6 e8 3c af e6 fa eb 9f 4c 89 e6 48 89 df e8 bf [ 35.992633] RSP: 0018:ffff8801b6346a30 EFLAGS: 00010806 [ 35.998010] RAX: 1bd5a00000000022 RBX: ffff8801bd7ce380 RCX: 1ffff10036e3088f [ 36.005277] RDX: 0000000040000000 RSI: 0000000000000000 RDI: dead000000000110 [ 36.012545] RBP: ffff8801b6346c00 R08: ffff8801bd7ce380 R09: fffff520003d5a47 [ 36.019812] R10: fffff520003d5a47 R11: ffffc90001ead23b R12: ffff8801ce0be000 [ 36.027076] R13: dead000000000100 R14: dffffc0000000000 R15: ffff8801db12cc80 [ 36.034346] FS: 0000000002664880(0000) GS:ffff8801db100000(0000) knlGS:0000000000000000 [ 36.042566] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 36.048437] CR2: 000000000043ecae CR3: 000000000806a000 CR4: 00000000001426e0 [ 36.055702] Kernel panic - not syncing: Fatal exception [ 37.158905] Shutting down cpus with NMI [ 37.163239] Dumping ftrace buffer: [ 37.166763] (ftrace buffer empty) [ 37.170453] Kernel Offset: disabled [ 37.174059] Rebooting in 86400 seconds..