[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[   25.476140] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   29.131562] random: sshd: uninitialized urandom read (32 bytes read)
[   29.532643] random: sshd: uninitialized urandom read (32 bytes read)
[   30.116102] random: sshd: uninitialized urandom read (32 bytes read)
[   30.326574] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.0.24' (ECDSA) to the list of known hosts.
[   36.093967] random: sshd: uninitialized urandom read (32 bytes read)
executing program
[   36.223021] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details.
[   36.252241] kasan: CONFIG_KASAN_INLINE enabled
[   36.259197] kasan: GPF could be caused by NULL-ptr deref or user memory access
[   36.266559] general protection fault: 0000 [#1] PREEMPT SMP KASAN
[   36.272789] CPU: 1 PID: 5345 Comm: syz-executor559 Not tainted 4.19.0-rc2+ #131
[   36.280232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   36.289593] RIP: 0010:__schedule+0xfb7/0x1ed0
[   36.294087] Code: 89 e0 48 c1 e8 03 42 80 3c 28 00 0f 85 b9 09 00 00 4d 8b 24 24 4d 85 e4 0f 84 0b f7 ff ff 49 8d 7c 24 10 48 89 f8 48 c1 e8 03 <42> 80 3c 28 00 74 a4 e8 ad 19 04 fa eb 9d 48 89 de 4c 89 ff e8 a0
[   36.312987] RSP: 0018:ffff8801bbc76b80 EFLAGS: 00010806
[   36.318349] RAX: 1bd5a00000000022 RBX: ffff8801bdaea1c0 RCX: 1ffff1003891788f
[   36.325614] RDX: 0000000040000000 RSI: 0000000000000000 RDI: dead000000000110
[   36.332879] RBP: ffff8801bbc76d58 R08: ffff8801c0bea080 R09: fffff520003c7e47
[   36.340145] R10: fffff520003c7e47 R11: ffffc90001e3f23b R12: dead000000000100
[   36.347411] R13: dffffc0000000000 R14: ffff8801daf2cb40 R15: ffff8801c0bea080
[   36.354682] FS:  0000000000000000(0000) GS:ffff8801daf00000(0000) knlGS:0000000000000000
[   36.362914] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[   36.368790] CR2: 00000000f7fe7c7f CR3: 000000000946a000 CR4: 00000000001426e0
[   36.376061] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   36.383326] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   36.390591] Call Trace:
[   36.393183]  ? add_nops+0x90/0x90
[   36.396647]  ? __sched_text_start+0x8/0x8
[   36.400795]  ? __set_pte_vaddr+0x135/0x1a0
[   36.405032]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[   36.410048]  ? find_next_and_bit+0x183/0x1e0
[   36.414462]  ? smp_call_function_many+0x13f/0xb60
[   36.419303]  ? mark_held_locks+0xc7/0x130
[   36.423450]  ? text_poke+0x405/0x5e0
[   36.427160]  ? on_each_cpu+0xdd/0x1e0
[   36.430957]  ? on_each_cpu+0xdd/0x1e0
[   36.434756]  ? kvm_arch_vcpu_uninit+0x135/0x1d0
[   36.439432]  ? lockdep_hardirqs_on+0x421/0x5c0
[   36.444018]  ? preempt_schedule+0x4d/0x60
[   36.448163]  ? kvm_arch_vcpu_uninit+0x135/0x1d0
[   36.452834]  preempt_schedule_common+0x1f/0xd0
[   36.457420]  preempt_schedule+0x4d/0x60
[   36.461394]  ___preempt_schedule+0x16/0x18
[   36.465629]  ? on_each_cpu+0x13b/0x1e0
[   36.469512]  ? on_each_cpu+0x1a6/0x1e0
[   36.473392]  on_each_cpu+0x1ab/0x1e0
[   36.477104]  ? kvm_arch_vcpu_uninit+0x134/0x1d0
[   36.481773]  text_poke_bp+0x14e/0x1de
[   36.485574]  ? __mutex_unlock_slowpath+0x197/0x8c0
[   36.490501]  ? poke_int3_handler+0x90/0x90
[   36.494737]  ? wait_for_completion+0x8a0/0x8a0
[   36.499321]  ? kvm_arch_vcpu_uninit+0x134/0x1d0
[   36.503994]  __jump_label_transform.isra.0+0x478/0x8f0
[   36.509267]  ? modules_open+0xa0/0xa0
[   36.513068]  ? kvm_vm_release+0x42/0x50
[   36.517042]  ? get_trap_addr+0x1d0/0x1d0
[   36.521102]  ? do_group_exit+0x177/0x440
[   36.525164]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   36.530709]  ? jump_label_type+0x139/0x1e0
[   36.534955]  arch_jump_label_transform+0x2f/0x40
[   36.539718]  __jump_label_update+0x16e/0x1a0
[   36.544159]  jump_label_update+0x174/0x320
[   36.548397]  __static_key_slow_dec_cpuslocked+0xb8/0x210
[   36.553847]  ? static_key_disable+0x30/0x30
[   36.558171]  ? rcu_read_lock_sched_held+0x108/0x120
[   36.563189]  static_key_slow_dec+0x63/0xa0
[   36.567428]  kvm_arch_vcpu_uninit+0x18e/0x1d0
[   36.571926]  kvm_vcpu_uninit+0x44/0x90
[   36.575811]  vmx_free_vcpu+0x23a/0x300
[   36.579709]  kvm_arch_destroy_vm+0x365/0x7c0
[   36.584123]  ? check_memory_region+0x1a3/0x1b0
[   36.588710]  ? kvm_arch_sync_events+0x30/0x30
[   36.593215]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   36.598754]  ? mmu_notifier_unregister+0x474/0x600
[   36.603681]  ? kfree+0x107/0x230
[   36.607057]  ? __mmu_notifier_register+0x30/0x30
[   36.611815]  ? __free_pages+0x10a/0x190
[   36.615786]  ? free_unref_page+0x960/0x960
[   36.620031]  kvm_put_kvm+0x6c8/0xff0
[   36.623753]  ? kvm_write_guest_cached+0x40/0x40
[   36.628426]  ? kvm_irqfd_release+0xd1/0x120
[   36.632748]  ? _raw_spin_unlock_irq+0x27/0x80
[   36.637240]  ? _raw_spin_unlock_irq+0x27/0x80
[   36.641746]  ? kasan_check_write+0x14/0x20
[   36.645981]  ? do_raw_spin_lock+0xc1/0x200
[   36.650220]  ? kvm_irqfd_release+0xdd/0x120
[   36.654536]  ? kvm_irqfd_release+0xdd/0x120
[   36.658861]  ? kvm_put_kvm+0xff0/0xff0
[   36.662750]  kvm_vm_release+0x42/0x50
[   36.666548]  __fput+0x385/0xa30
[   36.669831]  ? get_max_files+0x20/0x20
[   36.673726]  ? ___might_sleep+0x1ed/0x300
[   36.677876]  ? __bpf_trace_preemptirq_template+0x30/0x30
[   36.683327]  ? arch_local_save_flags+0x40/0x40
[   36.687912]  ? kasan_check_write+0x14/0x20
[   36.692147]  ? do_raw_spin_lock+0xc1/0x200
[   36.696378]  ____fput+0x15/0x20
[   36.699660]  task_work_run+0x1e8/0x2a0
[   36.703545]  ? task_work_cancel+0x240/0x240
[   36.707869]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   36.713409]  ? switch_task_namespaces+0x9d/0xd0
[   36.718081]  do_exit+0x1ad7/0x2610
[   36.721620]  ? do_sys_poll+0xb91/0x1180
[   36.725595]  ? mm_update_next_owner+0x990/0x990
[   36.730262]  ? find_held_lock+0x36/0x1c0
[   36.734326]  ? __handle_mm_fault+0x3dde/0x53e0
[   36.738909]  ? lock_downgrade+0x900/0x900
[   36.743053]  ? graph_lock+0x170/0x170
[   36.746853]  ? unwind_dump+0x190/0x190
[   36.750743]  ? kasan_check_read+0x11/0x20
[   36.754891]  ? do_raw_spin_unlock+0xa7/0x2f0
[   36.759297]  ? do_raw_spin_trylock+0x1c0/0x1c0
[   36.763881]  ? add_mm_counter_fast+0xd0/0xd0
[   36.768292]  ? _raw_spin_unlock+0x2c/0x50
[   36.772436]  ? __handle_mm_fault+0x9ab/0x53e0
[   36.777024]  ? vmf_insert_mixed_mkwrite+0xa0/0xa0
[   36.781870]  ? print_usage_bug+0xc0/0xc0
[   36.785933]  ? graph_lock+0x170/0x170
[   36.789733]  ? graph_lock+0x170/0x170
[   36.793533]  ? graph_lock+0x170/0x170
[   36.797345]  ? find_held_lock+0x36/0x1c0
[   36.801408]  ? __do_page_fault+0x6c1/0xed0
[   36.805641]  ? lock_downgrade+0x900/0x900
[   36.809797]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   36.815335]  ? handle_mm_fault+0x56e/0xc70
[   36.819571]  ? __handle_mm_fault+0x53e0/0x53e0
[   36.824161]  do_group_exit+0x177/0x440
[   36.828047]  ? trace_hardirqs_on+0xbd/0x310
[   36.832367]  ? __ia32_sys_exit+0x50/0x50
[   36.836428]  ? __bpf_trace_preemptirq_template+0x30/0x30
[   36.841884]  ? mm_fault_error+0x380/0x380
[   36.846041]  ? __ia32_compat_sys_ioctl+0x17a/0x630
[   36.850973]  __ia32_sys_exit_group+0x3e/0x50
[   36.855382]  do_fast_syscall_32+0x34d/0xfb2
[   36.859714]  ? do_int80_syscall_32+0x890/0x890
[   36.864298]  ? entry_SYSENTER_compat+0x68/0x7f
[   36.868881]  ? trace_hardirqs_off_caller+0xbb/0x310
[   36.873898]  ? syscall_return_slowpath+0x5e0/0x5e0
[   36.878828]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   36.883671]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   36.888519]  ? trace_hardirqs_on_caller+0x310/0x310
[   36.893534]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[   36.898550]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   36.904086]  ? prepare_exit_to_usermode+0x291/0x3b0
[   36.909105]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   36.913953]  entry_SYSENTER_compat+0x70/0x7f
[   36.918358] RIP: 0023:0xf7fe7ca9
[   36.921732] Code: Bad RIP value.
[   36.925095] RSP: 002b:00000000ffcbe6dc EFLAGS: 00000292 ORIG_RAX: 00000000000000fc
[   36.932806] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000080f02b8
[   36.940073] RDX: 0000000000000000 RSI: 00000000080d9e98 RDI: 00000000080f02c0
[   36.947338] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[   36.955080] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[   36.962344] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   36.969614] Modules linked in:
[   36.972812] Dumping ftrace buffer:
[   36.976341]    (ftrace buffer empty)
[   36.980051] 
[   36.980058] ======================================================
[   36.980064] WARNING: possible circular locking dependency detected
[   36.980068] 4.19.0-rc2+ #131 Not tainted
[   36.980074] ------------------------------------------------------
[   36.980079] syz-executor559/5345 is trying to acquire lock:
[   36.980083] 00000000a46a5448 ((console_sem).lock){-...}, at: down_trylock+0x13/0x70
[   36.980098] 
[   36.980103] but task is already holding lock:
[   36.980106] 0000000053e1b538 (&rq->lock){-.-.}, at: __schedule+0x236/0x1ed0
[   36.980121] 
[   36.980125] which lock already depends on the new lock.
[   36.980128] 
[   36.980131] 
[   36.980136] the existing dependency chain (in reverse order) is:
[   36.980138] 
[   36.980141] -> #2 (&rq->lock){-.-.}:
[   36.980156]        _raw_spin_lock+0x2d/0x40
[   36.980160]        task_fork_fair+0xb0/0x6d0
[   36.980164]        sched_fork+0x443/0xba0
[   36.980168]        copy_process+0x2586/0x8780
[   36.980172]        _do_fork+0x1cb/0x11d0
[   36.980176]        kernel_thread+0x34/0x40
[   36.980180]        rest_init+0x22/0xe5
[   36.980184]        start_kernel+0x8f4/0x92f
[   36.980189]        x86_64_start_reservations+0x29/0x2b
[   36.980193]        x86_64_start_kernel+0x76/0x79
[   36.980198]        secondary_startup_64+0xa4/0xb0
[   36.980200] 
[   36.980202] -> #1 (&p->pi_lock){-.-.}:
[   36.980224]        _raw_spin_lock_irqsave+0x99/0xd0
[   36.980228]        try_to_wake_up+0xd2/0x12f0
[   36.980232]        wake_up_process+0x10/0x20
[   36.980236]        __up.isra.1+0x1c0/0x2a0
[   36.980240]        up+0x13c/0x1c0
[   36.980244]        __up_console_sem+0xbe/0x1b0
[   36.980248]        console_unlock+0x524/0x11a0
[   36.980252]        vprintk_emit+0x33d/0x930
[   36.980257]        vprintk_default+0x28/0x30
[   36.980261]        vprintk_func+0x7e/0x181
[   36.980264]        printk+0xa7/0xcf
[   36.980268]        load_umh+0x51/0xbd
[   36.980272]        do_one_initcall+0x145/0x957
[   36.980277]        kernel_init_freeable+0x4bb/0x5ae
[   36.980281]        kernel_init+0x11/0x1b2
[   36.980285]        ret_from_fork+0x3a/0x50
[   36.980287] 
[   36.980290] -> #0 ((console_sem).lock){-...}:
[   36.980305]        lock_acquire+0x1ed/0x520
[   36.980310]        _raw_spin_lock_irqsave+0x99/0xd0
[   36.980314]        down_trylock+0x13/0x70
[   36.980319]        __down_trylock_console_sem+0xae/0x200
[   36.980323]        console_trylock+0x15/0xa0
[   36.980327]        vprintk_emit+0x322/0x930
[   36.980331]        vprintk_default+0x28/0x30
[   36.980335]        vprintk_func+0x7e/0x181
[   36.980339]        printk+0xa7/0xcf
[   36.980344]        kasan_die_handler.cold.22+0x11/0x30
[   36.980348]        notifier_call_chain+0x17e/0x380
[   36.980353]        atomic_notifier_call_chain+0x96/0x190
[   36.980357]        notify_die+0x1bd/0x2d0
[   36.980362]        do_general_protection+0x248/0x2f0
[   36.980366]        general_protection+0x1e/0x30
[   36.980370]        __schedule+0xfb7/0x1ed0
[   36.980375]        preempt_schedule_common+0x1f/0xd0
[   36.980379]        preempt_schedule+0x4d/0x60
[   36.980384]        ___preempt_schedule+0x16/0x18
[   36.980388]        on_each_cpu+0x1ab/0x1e0
[   36.980392]        text_poke_bp+0x14e/0x1de
[   36.980397]        __jump_label_transform.isra.0+0x478/0x8f0
[   36.980401]        arch_jump_label_transform+0x2f/0x40
[   36.980406]        __jump_label_update+0x16e/0x1a0
[   36.980410]        jump_label_update+0x174/0x320
[   36.980415]        __static_key_slow_dec_cpuslocked+0xb8/0x210
[   36.980420]        static_key_slow_dec+0x63/0xa0
[   36.980424]        kvm_arch_vcpu_uninit+0x18e/0x1d0
[   36.980428]        kvm_vcpu_uninit+0x44/0x90
[   36.980433]        vmx_free_vcpu+0x23a/0x300
[   36.980437]        kvm_arch_destroy_vm+0x365/0x7c0
[   36.980441]        kvm_put_kvm+0x6c8/0xff0
[   36.980445]        kvm_vm_release+0x42/0x50
[   36.980449]        __fput+0x385/0xa30
[   36.980453]        ____fput+0x15/0x20
[   36.980457]        task_work_run+0x1e8/0x2a0
[   36.980461]        do_exit+0x1ad7/0x2610
[   36.980466]        do_group_exit+0x177/0x440
[   36.980470]        __ia32_sys_exit_group+0x3e/0x50
[   36.980475]        do_fast_syscall_32+0x34d/0xfb2
[   36.980479]        entry_SYSENTER_compat+0x70/0x7f
[   36.980481] 
[   36.980486] other info that might help us debug this:
[   36.980488] 
[   36.980492] Chain exists of:
[   36.980494]   (console_sem).lock --> &p->pi_lock --> &rq->lock
[   36.980513] 
[   36.980517]  Possible unsafe locking scenario:
[   36.980520] 
[   36.980524]        CPU0                    CPU1
[   36.980528]        ----                    ----
[   36.980531]   lock(&rq->lock);
[   36.980541]                                lock(&p->pi_lock);
[   36.980550]                                lock(&rq->lock);
[   36.980559]   lock((console_sem).lock);
[   36.980567] 
[   36.980570]  *** DEADLOCK ***
[   36.980573] 
[   36.980577] 5 locks held by syz-executor559/5345:
[   36.980580]  #0: 0000000054d2a99d (cpu_hotplug_lock.rw_sem){++++}, at: static_key_slow_dec+0x57/0xa0
[   36.980599]  #1: 0000000065b2c5a5 (jump_label_mutex){+.+.}, at: __static_key_slow_dec_cpuslocked+0x82/0x210
[   36.980618]  #2: 000000004471e3d7 (text_mutex){+.+.}, at: arch_jump_label_transform+0x1b/0x40
[   36.980636]  #3: 0000000053e1b538 (&rq->lock){-.-.}, at: __schedule+0x236/0x1ed0
[   36.980654]  #4: 000000005fe3812b (rcu_read_lock){....}, at: atomic_notifier_call_chain+0x0/0x190
[   36.980672] 
[   36.980676] stack backtrace:
[   36.980682] CPU: 1 PID: 5345 Comm: syz-executor559 Not tainted 4.19.0-rc2+ #131
[   36.980689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   36.980693] Call Trace:
[   36.980705]  dump_stack+0x1c4/0x2b4
[   36.980709]  ? dump_stack_print_info.cold.2+0x52/0x52
[   36.980714]  ? vprintk_func+0x85/0x181
[   36.980720]  print_circular_bug.isra.33.cold.54+0x1bd/0x27d
[   36.980723]  ? save_trace+0xe0/0x290
[   36.980728]  __lock_acquire+0x33e4/0x4ec0
[   36.980732]  ? mark_held_locks+0x130/0x130
[   36.980736]  ? mark_held_locks+0x130/0x130
[   36.980741]  ? update_load_avg+0x387/0x2470
[   36.980746]  ? __update_load_avg_blocked_se+0x730/0x730
[   36.980750]  ? attach_entity_load_avg+0x860/0x860
[   36.980755]  ? update_load_avg+0x387/0x2470
[   36.980759]  ? __lock_is_held+0xb5/0x140
[   36.980763]  ? __lock_acquire+0x7ec/0x4ec0
[   36.980768]  ? attach_entity_load_avg+0x860/0x860
[   36.980772]  ? graph_lock+0x170/0x170
[   36.980777]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   36.980781]  lock_acquire+0x1ed/0x520
[   36.980785]  ? down_trylock+0x13/0x70
[   36.980789]  ? find_held_lock+0x36/0x1c0
[   36.980793]  ? lock_release+0x970/0x970
[   36.980797]  ? trace_hardirqs_off+0xb8/0x310
[   36.980801]  ? vprintk_emit+0x1d3/0x930
[   36.980806]  ? trace_hardirqs_on+0x310/0x310
[   36.980810]  ? trace_hardirqs_off+0xb8/0x310
[   36.980814]  ? log_store+0x344/0x4c0
[   36.980818]  ? vprintk_emit+0x322/0x930
[   36.980823]  _raw_spin_lock_irqsave+0x99/0xd0
[   36.980827]  ? down_trylock+0x13/0x70
[   36.980831]  down_trylock+0x13/0x70
[   36.980836]  __down_trylock_console_sem+0xae/0x200
[   36.980840]  console_trylock+0x15/0xa0
[   36.980844]  vprintk_emit+0x322/0x930
[   36.980848]  ? wake_up_klogd+0x180/0x180
[   36.980852]  ? __lock_acquire+0x7ec/0x4ec0
[   36.980856]  ? mark_held_locks+0x130/0x130
[   36.980860]  vprintk_default+0x28/0x30
[   36.980864]  vprintk_func+0x7e/0x181
[   36.980868]  printk+0xa7/0xcf
[   36.980873]  ? kmsg_dump_rewind_nolock+0xe4/0xe4
[   36.980877]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   36.980882]  ? kasan_die_handler.cold.22+0x5/0x30
[   36.980886]  ? kasan_die_handler+0x1a/0x31
[   36.980891]  kasan_die_handler.cold.22+0x11/0x30
[   36.980895]  notifier_call_chain+0x17e/0x380
[   36.980900]  ? unregister_die_notifier+0x20/0x20
[   36.980904]  ? kasan_check_read+0x11/0x20
[   36.980909]  ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160
[   36.980913]  ? rcu_bh_qs+0xc0/0xc0
[   36.980917]  ? rcu_bh_qs+0xc0/0xc0
[   36.980921]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[   36.980926]  atomic_notifier_call_chain+0x96/0x190
[   36.980930]  notify_die+0x1bd/0x2d0
[   36.980935]  ? __atomic_notifier_call_chain+0x1a0/0x1a0
[   36.980939]  ? search_module_extables+0x98/0xe0
[   36.980943]  ? __schedule+0xfb7/0x1ed0
[   36.980948]  ? __schedule+0xfb7/0x1ed0
[   36.980952]  ? search_exception_tables+0x47/0x50
[   36.980957]  do_general_protection+0x248/0x2f0
[   36.980961]  general_protection+0x1e/0x30
[   36.980965] RIP: 0010:__schedule+0xfb7/0x1ed0
[   36.980979] Code: 89 e0 48 c1 e8 03 42 80 3c 28 00 0f 85 b9 09 00 00 4d 8b 24 24 4d 85 e4 0f 84 0b f7 ff ff 49 8d 7c 24 10 48 89 f8 48 c1 e8 03 <42> 80 3c 28 00 74 a4 e8 ad 19 04 fa eb 9d 48 89 de 4c 89 ff e8 a0
[   36.980983] RSP: 0018:ffff8801bbc76b80 EFLAGS: 00010806
[   36.980992] RAX: 1bd5a00000000022 RBX: ffff8801bdaea1c0 RCX: 1ffff1003891788f
[   36.980999] RDX: 0000000040000000 RSI: 0000000000000000 RDI: dead000000000110
[   36.981005] RBP: ffff8801bbc76d58 R08: ffff8801c0bea080 R09: fffff520003c7e47
[   36.981011] R10: fffff520003c7e47 R11: ffffc90001e3f23b R12: dead000000000100
[   36.981017] R13: dffffc0000000000 R14: ffff8801daf2cb40 R15: ffff8801c0bea080
[   36.981021]  ? add_nops+0x90/0x90
[   36.981025]  ? __sched_text_start+0x8/0x8
[   36.981029]  ? __set_pte_vaddr+0x135/0x1a0
[   36.981034]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[   36.981039]  ? find_next_and_bit+0x183/0x1e0
[   36.981043]  ? smp_call_function_many+0x13f/0xb60
[   36.981048]  ? mark_held_locks+0xc7/0x130
[   36.981052]  ? text_poke+0x405/0x5e0
[   36.981056]  ? on_each_cpu+0xdd/0x1e0
[   36.981059]  ? on_each_cpu+0xdd/0x1e0
[   36.981064]  ? kvm_arch_vcpu_uninit+0x135/0x1d0
[   36.981069]  ? lockdep_hardirqs_on+0x421/0x5c0
[   36.981073]  ? preempt_schedule+0x4d/0x60
[   36.981077]  ? kvm_arch_vcpu_uninit+0x135/0x1d0
[   36.981082]  preempt_schedule_common+0x1f/0xd0
[   36.981086]  preempt_schedule+0x4d/0x60
[   36.981090]  ___preempt_schedule+0x16/0x18
[   36.981094]  ? on_each_cpu+0x13b/0x1e0
[   36.981098]  ? on_each_cpu+0x1a6/0x1e0
[   36.981102]  on_each_cpu+0x1ab/0x1e0
[   36.981107]  ? kvm_arch_vcpu_uninit+0x134/0x1d0
[   36.981111]  text_poke_bp+0x14e/0x1de
[   36.981115]  ? __mutex_unlock_slowpath+0x197/0x8c0
[   36.981120]  ? poke_int3_handler+0x90/0x90
[   36.981124]  ? wait_for_completion+0x8a0/0x8a0
[   36.981129]  ? kvm_arch_vcpu_uninit+0x134/0x1d0
[   36.981134]  __jump_label_transform.isra.0+0x478/0x8f0
[   36.981138]  ? modules_open+0xa0/0xa0
[   36.981142]  ? kvm_vm_release+0x42/0x50
[   36.981146]  ? get_trap_addr+0x1d0/0x1d0
[   36.981150]  ? do_group_exit+0x177/0x440
[   36.981155]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   36.981159]  ? jump_label_type+0x139/0x1e0
[   36.981164]  arch_jump_label_transform+0x2f/0x40
[   36.981169]  __jump_label_update+0x16e/0x1a0
[   36.981173]  jump_label_update+0x174/0x320
[   36.981178]  __static_key_slow_dec_cpuslocked+0xb8/0x210
[   36.981182]  ? static_key_disable+0x30/0x30
[   36.981187]  ? rcu_read_lock_sched_held+0x108/0x120
[   36.981191]  static_key_slow_dec+0x63/0xa0
[   36.981194]  k
[   36.981201] Lost 88 message(s)!
[   38.007746] ---[ end trace 064a28865527b8ed ]---
[   38.012513] RIP: 0010:__schedule+0xfb7/0x1ed0
[   38.017005] Code: 89 e0 48 c1 e8 03 42 80 3c 28 00 0f 85 b9 09 00 00 4d 8b 24 24 4d 85 e4 0f 84 0b f7 ff ff 49 8d 7c 24 10 48 89 f8 48 c1 e8 03 <42> 80 3c 28 00 74 a4 e8 ad 19 04 fa eb 9d 48 89 de 4c 89 ff e8 a0
[   38.035987] RSP: 0018:ffff8801bbc76b80 EFLAGS: 00010806
[   38.041355] RAX: 1bd5a00000000022 RBX: ffff8801bdaea1c0 RCX: 1ffff1003891788f
[   38.048624] RDX: 0000000040000000 RSI: 0000000000000000 RDI: dead000000000110
[   38.055890] RBP: ffff8801bbc76d58 R08: ffff8801c0bea080 R09: fffff520003c7e47
[   38.063181] R10: fffff520003c7e47 R11: ffffc90001e3f23b R12: dead000000000100
[   38.070462] R13: dffffc0000000000 R14: ffff8801daf2cb40 R15: ffff8801c0bea080
[   38.077732] FS:  0000000000000000(0000) GS:ffff8801daf00000(0000) knlGS:0000000000000000
[   38.085955] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[   38.091832] CR2: 00000000f7fe7c7f CR3: 000000000946a000 CR4: 00000000001426e0
[   38.099100] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   38.106372] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   38.113635] Kernel panic - not syncing: Fatal exception
[   39.254855] Shutting down cpus with NMI
[   39.259271] Dumping ftrace buffer:
[   39.262794]    (ftrace buffer empty)
[   39.267088] Kernel Offset: disabled
[   39.270719] Rebooting in 86400 seconds..