Warning: Permanently added '10.128.0.69' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program executing program executing program executing program syzkaller login: [ 90.264624] ================================================================== [ 90.272193] BUG: KASAN: global-out-of-bounds in tpg_print_str_4+0xbc9/0xd70 [ 90.279286] Read of size 1 at addr ffffffff88632850 by task vivid-000-vid-c/5989 [ 90.286798] [ 90.288419] CPU: 0 PID: 5989 Comm: vivid-000-vid-c Not tainted 4.20.0-rc2+ #236 [ 90.295963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 90.305306] Call Trace: [ 90.307988] dump_stack+0x244/0x39d [ 90.311610] ? dump_stack_print_info.cold.1+0x20/0x20 [ 90.316784] ? printk+0xa7/0xcf [ 90.320046] ? kmsg_dump_rewind_nolock+0xe4/0xe4 [ 90.324787] ? enable_ptr_key_workfn+0x30/0x30 [ 90.329361] print_address_description.cold.7+0x58/0x1ff [ 90.334795] kasan_report.cold.8+0x242/0x309 [ 90.339190] ? tpg_print_str_4+0xbc9/0xd70 [ 90.343412] __asan_report_load1_noabort+0x14/0x20 [ 90.348439] tpg_print_str_4+0xbc9/0xd70 [ 90.352495] ? vsnprintf+0x14d0/0x1b60 [ 90.356370] tpg_gen_text+0x4ba/0x540 [ 90.360162] vivid_fillbuff+0x3ff7/0x68e0 [ 90.364315] ? __mutex_lock+0x85e/0x16f0 [ 90.368364] ? vivid_thread_vid_cap+0x361/0x2650 [ 90.373107] ? mutex_trylock+0x2b0/0x2b0 [ 90.377158] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 90.382696] ? vivid_grab_controls+0x380/0x380 [ 90.387271] ? find_held_lock+0x36/0x1c0 [ 90.391326] ? find_held_lock+0x36/0x1c0 [ 90.395376] ? lock_downgrade+0x900/0x900 [ 90.399517] ? v4l2_ctrl_request_setup+0x477/0xad0 [ 90.404432] ? __refrigerator+0x420/0x420 [ 90.408568] vivid_thread_vid_cap+0xbc1/0x2650 [ 90.413133] ? vivid_thread_vid_cap+0xbc1/0x2650 [ 90.417874] ? zap_class+0x640/0x640 [ 90.421575] ? zap_class+0x640/0x640 [ 90.425272] ? find_held_lock+0x36/0x1c0 [ 90.429330] ? vivid_fillbuff+0x68e0/0x68e0 [ 90.433633] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 90.438724] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 90.443814] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 90.448381] ? trace_hardirqs_on+0xbd/0x310 [ 90.452694] ? kasan_check_read+0x11/0x20 [ 90.456825] ? __kthread_parkme+0xce/0x1a0 [ 90.461042] ? trace_hardirqs_off_caller+0x310/0x310 [ 90.466131] ? trace_hardirqs_off_caller+0x310/0x310 [ 90.471268] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 90.476369] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 90.481895] ? __kthread_parkme+0xfb/0x1a0 [ 90.486113] ? vivid_fillbuff+0x68e0/0x68e0 [ 90.490418] kthread+0x35a/0x440 [ 90.493773] ? kthread_stop+0x900/0x900 [ 90.497732] ret_from_fork+0x3a/0x50 [ 90.501433] [ 90.503042] The buggy address belongs to the variable: [ 90.508309] font_vga_8x16+0x50/0x60 [ 90.512001] [ 90.513606] Memory state around the buggy address: [ 90.518514] ffffffff88632700: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 90.525853] ffffffff88632780: 00 00 00 00 fa fa fa fa 00 fa fa fa fa fa fa fa [ 90.533197] >ffffffff88632800: 00 00 00 00 00 fa fa fa fa fa fa fa 00 00 00 00 [ 90.540670] ^ [ 90.546733] ffffffff88632880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 90.554081] ffffffff88632900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 90.561423] ================================================================== [ 90.568767] Disabling lock debugging due to kernel taint [ 90.574782] Kernel panic - not syncing: panic_on_warn set ... [ 90.580663] CPU: 0 PID: 5989 Comm: vivid-000-vid-c Tainted: G B 4.20.0-rc2+ #236 [ 90.589598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 90.598936] Call Trace: [ 90.601511] dump_stack+0x244/0x39d [ 90.605124] ? dump_stack_print_info.cold.1+0x20/0x20 [ 90.610299] panic+0x2ad/0x55c [ 90.613474] ? add_taint.cold.5+0x16/0x16 [ 90.617608] ? preempt_schedule+0x4d/0x60 [ 90.621742] ? ___preempt_schedule+0x16/0x18 [ 90.626135] ? trace_hardirqs_on+0xb4/0x310 [ 90.630444] kasan_end_report+0x47/0x4f [ 90.634402] kasan_report.cold.8+0x76/0x309 [ 90.638865] ? tpg_print_str_4+0xbc9/0xd70 [ 90.643088] __asan_report_load1_noabort+0x14/0x20 [ 90.648002] tpg_print_str_4+0xbc9/0xd70 [ 90.652048] ? vsnprintf+0x14d0/0x1b60 [ 90.655917] tpg_gen_text+0x4ba/0x540 [ 90.659709] vivid_fillbuff+0x3ff7/0x68e0 [ 90.663858] ? __mutex_lock+0x85e/0x16f0 [ 90.667906] ? vivid_thread_vid_cap+0x361/0x2650 [ 90.672644] ? mutex_trylock+0x2b0/0x2b0 [ 90.676693] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 90.682219] ? vivid_grab_controls+0x380/0x380 [ 90.686788] ? find_held_lock+0x36/0x1c0 [ 90.690848] ? find_held_lock+0x36/0x1c0 [ 90.694894] ? lock_downgrade+0x900/0x900 [ 90.699027] ? v4l2_ctrl_request_setup+0x477/0xad0 [ 90.703937] ? __refrigerator+0x420/0x420 [ 90.708072] vivid_thread_vid_cap+0xbc1/0x2650 [ 90.712635] ? vivid_thread_vid_cap+0xbc1/0x2650 [ 90.717376] ? zap_class+0x640/0x640 [ 90.721072] ? zap_class+0x640/0x640 [ 90.724771] ? find_held_lock+0x36/0x1c0 [ 90.728825] ? vivid_fillbuff+0x68e0/0x68e0 [ 90.733137] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 90.738229] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 90.743318] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 90.747884] ? trace_hardirqs_on+0xbd/0x310 [ 90.752189] ? kasan_check_read+0x11/0x20 [ 90.756323] ? __kthread_parkme+0xce/0x1a0 [ 90.760540] ? trace_hardirqs_off_caller+0x310/0x310 [ 90.765625] ? trace_hardirqs_off_caller+0x310/0x310 [ 90.770719] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 90.775815] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 90.781339] ? __kthread_parkme+0xfb/0x1a0 [ 90.785560] ? vivid_fillbuff+0x68e0/0x68e0 [ 90.789867] kthread+0x35a/0x440 [ 90.793294] ? kthread_stop+0x900/0x900 [ 90.797259] ret_from_fork+0x3a/0x50 [ 90.801835] Kernel Offset: disabled [ 90.805458] Rebooting in 86400 seconds..