[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[   26.322275] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   29.469550] random: sshd: uninitialized urandom read (32 bytes read)
[   29.855277] random: sshd: uninitialized urandom read (32 bytes read)
[   30.432954] random: sshd: uninitialized urandom read (32 bytes read)
[   30.650004] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.0.28' (ECDSA) to the list of known hosts.
[   36.365838] random: sshd: uninitialized urandom read (32 bytes read)
executing program
[   36.491498] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details.
[   36.518927] kasan: CONFIG_KASAN_INLINE enabled
[   36.525914] kasan: GPF could be caused by NULL-ptr deref or user memory access
[   36.533286] general protection fault: 0000 [#1] PREEMPT SMP KASAN
[   36.539548] CPU: 1 PID: 5358 Comm: syz-executor868 Not tainted 4.19.0-rc3+ #10
[   36.546922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   36.556289] RIP: 0010:__schedule+0xfb7/0x1ed0
[   36.560807] Code: 89 e0 48 c1 e8 03 42 80 3c 28 00 0f 85 b9 09 00 00 4d 8b 24 24 4d 85 e4 0f 84 0b f7 ff ff 49 8d 7c 24 10 48 89 f8 48 c1 e8 03 <42> 80 3c 28 00 74 a4 e8 ad 0b 04 fa eb 9d 48 89 de 4c 89 ff e8 c0
[   36.579712] RSP: 0018:ffff8801bae66bd0 EFLAGS: 00010806
[   36.585092] RAX: 1bd5a00000000022 RBX: ffff8801beda4040 RCX: 1ffff10037c4988f
[   36.592367] RDX: 0000000040000000 RSI: 0000000000000000 RDI: dead000000000110
[   36.599647] RBP: ffff8801bae66da8 R08: ffff8801c3f14680 R09: fffff520003ca247
[   36.606922] R10: fffff520003ca247 R11: ffffc90001e5123b R12: dead000000000100
[   36.614200] R13: dffffc0000000000 R14: ffff8801daf2cb40 R15: ffff8801c3f14680
[   36.621476] FS:  000000000154d880(0000) GS:ffff8801daf00000(0000) knlGS:0000000000000000
[   36.629701] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   36.635692] CR2: 000000000043ec9e CR3: 000000000946a000 CR4: 00000000001426e0
[   36.642965] Call Trace:
[   36.645555]  ? generic_exec_single+0x5f0/0x5f0
[   36.650148]  ? __sched_text_start+0x8/0x8
[   36.654298]  ? __set_pte_vaddr+0x135/0x1a0
[   36.658535]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[   36.663555]  ? find_next_and_bit+0x183/0x1e0
[   36.667987]  ? smp_call_function_many+0x13f/0xb60
[   36.672842]  ? mark_held_locks+0xc7/0x130
[   36.676992]  ? text_poke+0x405/0x5e0
[   36.680706]  ? on_each_cpu+0xdd/0x1e0
[   36.684525]  ? on_each_cpu+0xdd/0x1e0
[   36.688327]  ? kvm_arch_vcpu_ioctl+0x441/0x3af0
[   36.693026]  ? lockdep_hardirqs_on+0x421/0x5c0
[   36.697631]  ? preempt_schedule+0x4d/0x60
[   36.701787]  ? kvm_arch_vcpu_ioctl+0x441/0x3af0
[   36.706458]  preempt_schedule_common+0x1f/0xd0
[   36.711052]  preempt_schedule+0x4d/0x60
[   36.715027]  ___preempt_schedule+0x16/0x18
[   36.719263]  ? on_each_cpu+0x13b/0x1e0
[   36.723149]  ? on_each_cpu+0x1a6/0x1e0
[   36.727031]  on_each_cpu+0x1ab/0x1e0
[   36.730749]  ? kvm_arch_vcpu_ioctl+0x440/0x3af0
[   36.735424]  text_poke_bp+0x102/0x1de
[   36.739232]  ? __mutex_unlock_slowpath+0x197/0x8c0
[   36.744159]  ? poke_int3_handler+0x90/0x90
[   36.748402]  ? wait_for_completion+0x8a0/0x8a0
[   36.752987]  ? kvm_arch_vcpu_ioctl+0x440/0x3af0
[   36.757661]  __jump_label_transform.isra.0+0x478/0x8f0
[   36.762943]  ? modules_open+0xa0/0xa0
[   36.766744]  ? kvm_vm_release+0x42/0x50
[   36.770716]  ? get_trap_addr+0x1d0/0x1d0
[   36.774785]  ? do_group_exit+0x177/0x440
[   36.778853]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   36.784400]  ? jump_label_type+0x139/0x1e0
[   36.788642]  arch_jump_label_transform+0x2f/0x40
[   36.793404]  __jump_label_update+0x16e/0x1a0
[   36.797815]  jump_label_update+0x174/0x320
[   36.802053]  __static_key_slow_dec_cpuslocked+0xb8/0x210
[   36.807502]  ? static_key_disable+0x30/0x30
[   36.811824]  ? rcu_read_lock_sched_held+0x108/0x120
[   36.816853]  static_key_slow_dec+0x63/0xa0
[   36.821095]  kvm_arch_vcpu_uninit+0x18e/0x1d0
[   36.825615]  kvm_vcpu_uninit+0x44/0x90
[   36.829505]  vmx_free_vcpu+0x23a/0x300
[   36.833394]  kvm_arch_destroy_vm+0x365/0x7c0
[   36.837810]  ? check_memory_region+0x143/0x1b0
[   36.842391]  ? kvm_arch_sync_events+0x30/0x30
[   36.846895]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   36.852431]  ? mmu_notifier_unregister+0x474/0x600
[   36.857359]  ? kfree+0x107/0x230
[   36.860751]  ? __mmu_notifier_register+0x30/0x30
[   36.865511]  ? __free_pages+0x10a/0x190
[   36.869487]  ? free_unref_page+0x960/0x960
[   36.873731]  kvm_put_kvm+0x6c8/0xff0
[   36.877453]  ? kvm_write_guest_cached+0x40/0x40
[   36.882138]  ? kvm_irqfd_release+0xd1/0x120
[   36.886462]  ? _raw_spin_unlock_irq+0x27/0x80
[   36.890953]  ? _raw_spin_unlock_irq+0x27/0x80
[   36.895456]  ? kasan_check_write+0x14/0x20
[   36.899689]  ? do_raw_spin_lock+0xc1/0x200
[   36.903941]  ? kvm_irqfd_release+0xdd/0x120
[   36.908266]  ? kvm_irqfd_release+0xdd/0x120
[   36.912598]  ? kvm_put_kvm+0xff0/0xff0
[   36.916483]  kvm_vm_release+0x42/0x50
[   36.920284]  __fput+0x385/0xa30
[   36.923563]  ? get_max_files+0x20/0x20
[   36.927467]  ? trace_hardirqs_on+0xbd/0x310
[   36.931790]  ? ___might_sleep+0x1ed/0x300
[   36.935952]  ? __bpf_trace_preemptirq_template+0x30/0x30
[   36.941410]  ? arch_local_save_flags+0x40/0x40
[   36.946006]  ? kasan_check_write+0x14/0x20
[   36.950243]  ? do_raw_spin_lock+0xc1/0x200
[   36.954474]  ____fput+0x15/0x20
[   36.957751]  task_work_run+0x1e8/0x2a0
[   36.961640]  ? task_work_cancel+0x240/0x240
[   36.965964]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   36.971500]  ? switch_task_namespaces+0x9d/0xd0
[   36.976182]  do_exit+0x1ad7/0x2610
[   36.979724]  ? mm_update_next_owner+0x990/0x990
[   36.984413]  ? kvm_vcpu_ioctl+0x29c/0x1150
[   36.988650]  ? rcu_read_lock_sched_held+0x108/0x120
[   36.993674]  ? kfree+0x1fa/0x230
[   36.997054]  ? kvm_vcpu_ioctl+0x2a1/0x1150
[   37.001304]  ? kvm_vcpu_block+0x1030/0x1030
[   37.005627]  ? is_bpf_text_address+0xd3/0x170
[   37.010426]  ? kernel_text_address+0x79/0xf0
[   37.014836]  ? __kernel_text_address+0xd/0x40
[   37.019329]  ? unwind_get_return_address+0x61/0xa0
[   37.024259]  ? __save_stack_trace+0x8d/0xf0
[   37.028588]  ? save_stack+0xa9/0xd0
[   37.032213]  ? save_stack+0x43/0xd0
[   37.035837]  ? __kasan_slab_free+0x102/0x150
[   37.040243]  ? kasan_slab_free+0xe/0x10
[   37.044220]  ? putname+0xf2/0x130
[   37.047671]  ? __x64_sys_openat+0x9d/0x100
[   37.051903]  ? do_syscall_64+0x1b9/0x820
[   37.055965]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   37.061334]  ? trace_hardirqs_off+0xb8/0x310
[   37.065741]  ? kasan_check_read+0x11/0x20
[   37.069890]  ? do_raw_spin_unlock+0xa7/0x2f0
[   37.074300]  ? trace_hardirqs_on+0x310/0x310
[   37.078719]  ? __bpf_trace_initcall_finish+0x2a/0x30
[   37.083823]  ? trace_hardirqs_off+0xb8/0x310
[   37.088232]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   37.093766]  ? check_preemption_disabled+0x48/0x200
[   37.098780]  ? check_preemption_disabled+0x48/0x200
[   37.103798]  ? kvm_vcpu_block+0x1030/0x1030
[   37.108122]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   37.113680]  ? do_vfs_ioctl+0x201/0x1720
[   37.119224]  ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160
[   37.124504]  ? ioctl_preallocate+0x300/0x300
[   37.128914]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   37.134457]  ? __fget_light+0x2e9/0x430
[   37.138430]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   37.143971]  ? smack_file_ioctl+0x210/0x3c0
[   37.148287]  ? fget_raw+0x20/0x20
[   37.151742]  ? smack_file_lock+0x2e0/0x2e0
[   37.155986]  do_group_exit+0x177/0x440
[   37.159876]  ? trace_hardirqs_on+0xbd/0x310
[   37.164199]  ? __ia32_sys_exit+0x50/0x50
[   37.169135]  ? __bpf_trace_preemptirq_template+0x30/0x30
[   37.174584]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   37.180138]  ? ksys_ioctl+0x81/0xd0
[   37.183768]  __x64_sys_exit_group+0x3e/0x50
[   37.188088]  do_syscall_64+0x1b9/0x820
[   37.191993]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[   37.197357]  ? syscall_return_slowpath+0x5e0/0x5e0
[   37.202282]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   37.207142]  ? trace_hardirqs_on_caller+0x310/0x310
[   37.212160]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[   37.217176]  ? prepare_exit_to_usermode+0x291/0x3b0
[   37.222206]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   37.227054]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   37.232246] RIP: 0033:0x43ecc8
[   37.235438] Code: Bad RIP value.
[   37.238796] RSP: 002b:00007ffede41c358 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   37.246504] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000043ecc8
[   37.253945] RDX: 0000000000000000 RSI: 000000000000003c RDI: 0000000000000000
[   37.261231] RBP: 00000000004be588 R08: 00000000000000e7 R09: ffffffffffffffd0
[   37.268494] R10: 00000000004002c8 R11: 0000000000000246 R12: 0000000000000001
[   37.275762] R13: 00000000006d0180 R14: 0000000000000000 R15: 0000000000000000
[   37.283036] Modules linked in:
[   37.286239] 
[   37.286246] ======================================================
[   37.286251] WARNING: possible circular locking dependency detected
[   37.286255] 4.19.0-rc3+ #10 Not tainted
[   37.286261] ------------------------------------------------------
[   37.286266] syz-executor868/5358 is trying to acquire lock:
[   37.286270] 000000008b203824 ((console_sem).lock){-...}, at: down_trylock+0x13/0x70
[   37.286285] 
[   37.286289] but task is already holding lock:
[   37.286292] 000000008e1630fd (&rq->lock){-.-.}, at: __schedule+0x236/0x1ed0
[   37.286307] 
[   37.286312] which lock already depends on the new lock.
[   37.286314] 
[   37.286317] 
[   37.286322] the existing dependency chain (in reverse order) is:
[   37.286324] 
[   37.286327] -> #2 (&rq->lock){-.-.}:
[   37.286341]        _raw_spin_lock+0x2d/0x40
[   37.286345]        task_fork_fair+0xb0/0x6d0
[   37.286349]        sched_fork+0x443/0xba0
[   37.286353]        copy_process+0x2586/0x8780
[   37.286357]        _do_fork+0x1cb/0x11d0
[   37.286361]        kernel_thread+0x34/0x40
[   37.286365]        rest_init+0x22/0xe5
[   37.286369]        start_kernel+0x8f4/0x92f
[   37.286374]        x86_64_start_reservations+0x29/0x2b
[   37.286378]        x86_64_start_kernel+0x76/0x79
[   37.286382]        secondary_startup_64+0xa4/0xb0
[   37.286385] 
[   37.286387] -> #1 (&p->pi_lock){-.-.}:
[   37.286407]        _raw_spin_lock_irqsave+0x99/0xd0
[   37.286411]        try_to_wake_up+0xd2/0x12f0
[   37.286415]        wake_up_process+0x10/0x20
[   37.286419]        __up.isra.1+0x1c0/0x2a0
[   37.286423]        up+0x13c/0x1c0
[   37.286427]        __up_console_sem+0xbe/0x1b0
[   37.286432]        console_unlock+0x524/0x11a0
[   37.286436]        vprintk_emit+0x33d/0x930
[   37.286440]        vprintk_default+0x28/0x30
[   37.286444]        vprintk_func+0x7e/0x181
[   37.286447]        printk+0xa7/0xcf
[   37.286451]        load_umh+0x51/0xbd
[   37.286455]        do_one_initcall+0x145/0x957
[   37.286459]        kernel_init_freeable+0x4bb/0x5ae
[   37.286463]        kernel_init+0x11/0x1b2
[   37.286467]        ret_from_fork+0x3a/0x50
[   37.286470] 
[   37.286472] -> #0 ((console_sem).lock){-...}:
[   37.286487]        lock_acquire+0x1ed/0x520
[   37.286491]        _raw_spin_lock_irqsave+0x99/0xd0
[   37.286495]        down_trylock+0x13/0x70
[   37.286500]        __down_trylock_console_sem+0xae/0x200
[   37.286504]        console_trylock+0x15/0xa0
[   37.286508]        vprintk_emit+0x322/0x930
[   37.286512]        vprintk_default+0x28/0x30
[   37.286516]        vprintk_func+0x7e/0x181
[   37.286520]        printk+0xa7/0xcf
[   37.286525]        kasan_die_handler.cold.22+0x11/0x30
[   37.286529]        notifier_call_chain+0x17e/0x380
[   37.286534]        atomic_notifier_call_chain+0x96/0x190
[   37.286538]        notify_die+0x1bd/0x2d0
[   37.286542]        do_general_protection+0x248/0x2f0
[   37.286547]        general_protection+0x1e/0x30
[   37.286551]        __schedule+0xfb7/0x1ed0
[   37.286555]        preempt_schedule_common+0x1f/0xd0
[   37.286559]        preempt_schedule+0x4d/0x60
[   37.286564]        ___preempt_schedule+0x16/0x18
[   37.286568]        on_each_cpu+0x1ab/0x1e0
[   37.286572]        text_poke_bp+0x102/0x1de
[   37.286576]        __jump_label_transform.isra.0+0x478/0x8f0
[   37.286581]        arch_jump_label_transform+0x2f/0x40
[   37.286586]        __jump_label_update+0x16e/0x1a0
[   37.286598]        jump_label_update+0x174/0x320
[   37.286603]        __static_key_slow_dec_cpuslocked+0xb8/0x210
[   37.286607]        static_key_slow_dec+0x63/0xa0
[   37.286612]        kvm_arch_vcpu_uninit+0x18e/0x1d0
[   37.286616]        kvm_vcpu_uninit+0x44/0x90
[   37.286620]        vmx_free_vcpu+0x23a/0x300
[   37.286624]        kvm_arch_destroy_vm+0x365/0x7c0
[   37.286628]        kvm_put_kvm+0x6c8/0xff0
[   37.286632]        kvm_vm_release+0x42/0x50
[   37.286636]        __fput+0x385/0xa30
[   37.286640]        ____fput+0x15/0x20
[   37.286644]        task_work_run+0x1e8/0x2a0
[   37.286648]        do_exit+0x1ad7/0x2610
[   37.286652]        do_group_exit+0x177/0x440
[   37.286656]        __x64_sys_exit_group+0x3e/0x50
[   37.286660]        do_syscall_64+0x1b9/0x820
[   37.286665]        entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   37.286667] 
[   37.286672] other info that might help us debug this:
[   37.286674] 
[   37.286677] Chain exists of:
[   37.286680]   (console_sem).lock --> &p->pi_lock --> &rq->lock
[   37.286698] 
[   37.286703]  Possible unsafe locking scenario:
[   37.286705] 
[   37.286709]        CPU0                    CPU1
[   37.286714]        ----                    ----
[   37.286716]   lock(&rq->lock);
[   37.286726]                                lock(&p->pi_lock);
[   37.286735]                                lock(&rq->lock);
[   37.286743]   lock((console_sem).lock);
[   37.286752] 
[   37.286755]  *** DEADLOCK ***
[   37.286757] 
[   37.286762] 5 locks held by syz-executor868/5358:
[   37.286764]  #0: 000000004c029e9c (cpu_hotplug_lock.rw_sem){++++}, at: static_key_slow_dec+0x57/0xa0
[   37.286783]  #1: 00000000527004a6 (jump_label_mutex){+.+.}, at: __static_key_slow_dec_cpuslocked+0x82/0x210
[   37.286802]  #2: 00000000a412f2b0 (text_mutex){+.+.}, at: arch_jump_label_transform+0x1b/0x40
[   37.286820]  #3: 000000008e1630fd (&rq->lock){-.-.}, at: __schedule+0x236/0x1ed0
[   37.286838]  #4: 00000000983d1029 (rcu_read_lock){....}, at: atomic_notifier_call_chain+0x0/0x190
[   37.286856] 
[   37.286859] stack backtrace:
[   37.286865] CPU: 1 PID: 5358 Comm: syz-executor868 Not tainted 4.19.0-rc3+ #10
[   37.286873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   37.286876] Call Trace:
[   37.286880]  dump_stack+0x1c4/0x2b4
[   37.286885]  ? dump_stack_print_info.cold.2+0x52/0x52
[   37.286889]  ? vprintk_func+0x85/0x181
[   37.286894]  print_circular_bug.isra.33.cold.54+0x1bd/0x27d
[   37.286897]  ? save_trace+0xe0/0x290
[   37.286902]  __lock_acquire+0x33e4/0x4ec0
[   37.286907]  ? mark_held_locks+0x130/0x130
[   37.286911]  ? mark_held_locks+0x130/0x130
[   37.286915]  ? update_load_avg+0x387/0x2470
[   37.286920]  ? __update_load_avg_blocked_se+0x730/0x730
[   37.286925]  ? attach_entity_load_avg+0x860/0x860
[   37.286929]  ? update_load_avg+0x387/0x2470
[   37.286933]  ? __lock_is_held+0xb5/0x140
[   37.286937]  ? __lock_acquire+0x7ec/0x4ec0
[   37.286942]  ? attach_entity_load_avg+0x860/0x860
[   37.286946]  ? graph_lock+0x170/0x170
[   37.286951]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   37.286955]  lock_acquire+0x1ed/0x520
[   37.286959]  ? down_trylock+0x13/0x70
[   37.286963]  ? find_held_lock+0x36/0x1c0
[   37.286967]  ? lock_release+0x970/0x970
[   37.286971]  ? trace_hardirqs_off+0xb8/0x310
[   37.286976]  ? vprintk_emit+0x1d3/0x930
[   37.286980]  ? trace_hardirqs_on+0x310/0x310
[   37.286984]  ? trace_hardirqs_off+0xb8/0x310
[   37.286988]  ? log_store+0x344/0x4c0
[   37.286992]  ? vprintk_emit+0x322/0x930
[   37.286997]  _raw_spin_lock_irqsave+0x99/0xd0
[   37.287001]  ? down_trylock+0x13/0x70
[   37.287005]  down_trylock+0x13/0x70
[   37.287009]  __down_trylock_console_sem+0xae/0x200
[   37.287013]  console_trylock+0x15/0xa0
[   37.287017]  vprintk_emit+0x322/0x930
[   37.287022]  ? wake_up_klogd+0x180/0x180
[   37.287026]  ? __lock_acquire+0x7ec/0x4ec0
[   37.287030]  ? mark_held_locks+0x130/0x130
[   37.287034]  vprintk_default+0x28/0x30
[   37.287038]  vprintk_func+0x7e/0x181
[   37.287042]  printk+0xa7/0xcf
[   37.287046]  ? kmsg_dump_rewind_nolock+0xe4/0xe4
[   37.287051]  ? kasan_die_handler.cold.22+0x5/0x30
[   37.287055]  ? kasan_die_handler+0x1a/0x31
[   37.287060]  kasan_die_handler.cold.22+0x11/0x30
[   37.287064]  notifier_call_chain+0x17e/0x380
[   37.287069]  ? unregister_die_notifier+0x20/0x20
[   37.287073]  ? kasan_check_read+0x11/0x20
[   37.287078]  ? rcu_dynticks_curr_cpu_in_eqs+0x9f/0x160
[   37.287082]  ? rcu_bh_qs+0xc0/0xc0
[   37.287085]  ? rcu_bh_qs+0xc0/0xc0
[   37.287090]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[   37.287095]  atomic_notifier_call_chain+0x96/0x190
[   37.287099]  notify_die+0x1bd/0x2d0
[   37.287104]  ? __atomic_notifier_call_chain+0x1a0/0x1a0
[   37.287108]  ? search_module_extables+0x98/0xe0
[   37.287112]  ? __schedule+0xfb7/0x1ed0
[   37.287116]  ? __schedule+0xfb7/0x1ed0
[   37.287121]  ? search_exception_tables+0x47/0x50
[   37.287125]  do_general_protection+0x248/0x2f0
[   37.287129]  general_protection+0x1e/0x30
[   37.287134] RIP: 0010:__schedule+0xfb7/0x1ed0
[   37.287147] Code: 89 e0 48 c1 e8 03 42 80 3c 28 00 0f 85 b9 09 00 00 4d 8b 24 24 4d 85 e4 0f 84 0b f7 ff ff 49 8d 7c 24 10 48 89 f8 48 c1 e8 03 <42> 80 3c 28 00 74 a4 e8 ad 0b 04 fa eb 9d 48 89 de 4c 89 ff e8 c0
[   37.287152] RSP: 0018:ffff8801bae66bd0 EFLAGS: 00010806
[   37.287160] RAX: 1bd5a00000000022 RBX: ffff8801beda4040 RCX: 1ffff10037c4988f
[   37.287167] RDX: 0000000040000000 RSI: 0000000000000000 RDI: dead000000000110
[   37.287173] RBP: ffff8801bae66da8 R08: ffff8801c3f14680 R09: fffff520003ca247
[   37.287179] R10: fffff520003ca247 R11: ffffc90001e5123b R12: dead000000000100
[   37.287185] R13: dffffc0000000000 R14: ffff8801daf2cb40 R15: ffff8801c3f14680
[   37.287189]  ? generic_exec_single+0x5f0/0x5f0
[   37.287194]  ? __sched_text_start+0x8/0x8
[   37.287198]  ? __set_pte_vaddr+0x135/0x1a0
[   37.287203]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[   37.287207]  ? find_next_and_bit+0x183/0x1e0
[   37.287212]  ? smp_call_function_many+0x13f/0xb60
[   37.287216]  ? mark_held_locks+0xc7/0x130
[   37.287220]  ? text_poke+0x405/0x5e0
[   37.287224]  ? on_each_cpu+0xdd/0x1e0
[   37.287228]  ? on_each_cpu+0xdd/0x1e0
[   37.287232]  ? kvm_arch_vcpu_ioctl+0x441/0x3af0
[   37.287237]  ? lockdep_hardirqs_on+0x421/0x5c0
[   37.287241]  ? preempt_schedule+0x4d/0x60
[   37.287245]  ? kvm_arch_vcpu_ioctl+0x441/0x3af0
[   37.287250]  preempt_schedule_common+0x1f/0xd0
[   37.287254]  preempt_schedule+0x4d/0x60
[   37.287258]  ___preempt_schedule+0x16/0x18
[   37.287262]  ? on_each_cpu+0x13b/0x1e0
[   37.287266]  ? on_each_cpu+0x1a6/0x1e0
[   37.287270]  on_each_cpu+0x1ab/0x1e0
[   37.287275]  ? kvm_arch_vcpu_ioctl+0x440/0x3af0
[   37.287278]  text_poke_bp+0x102/0x1de
[   37.287283]  ? __mutex_unlock_slowpath+0x197/0x8c0
[   37.287287]  ? poke_int3_handler+0x90/0x90
[   37.287292]  ? wait_for_completion+0x8a0/0x8a0
[   37.287296]  ? kvm_arch_vcpu_ioctl+0x440/0x3af0
[   37.287301]  __jump_label_transform.isra.0+0x478/0x8f0
[   37.287305]  ? modules_open+0xa0/0xa0
[   37.287309]  ? kvm_vm_release+0x42/0x50
[   37.287313]  ? get_trap_addr+0x1d0/0x1d0
[   37.287317]  ? do_group_exit+0x177/0x440
[   37.287322]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   37.287327]  ? jump_label_type+0x139/0x1e0
[   37.287331]  arch_jump_label_transform+0x2f/0x40
[   37.287335]  __jump_label_update+0x16e/0x1a0
[   37.287340]  jump_label_update+0x174/0x320
[   37.287345]  __static_key_slow_dec_cpuslocked+0xb8/0x210
[   37.287349]  ? static_key_disable+0x30/0x30
[   37.287354]  ? rcu_read_lock_sched_held+0x108/0x120
[   37.287358]  static_key_slow_dec+0x63/0xa0
[   37.287362]  kvm_arch_vcpu_uninit+0x18e
[   37.287369] Lost 100 message(s)!
[   38.314437] ---[ end trace 54471a0aa5f0b3e0 ]---
[   38.319204] RIP: 0010:__schedule+0xfb7/0x1ed0
[   38.323707] Code: 89 e0 48 c1 e8 03 42 80 3c 28 00 0f 85 b9 09 00 00 4d 8b 24 24 4d 85 e4 0f 84 0b f7 ff ff 49 8d 7c 24 10 48 89 f8 48 c1 e8 03 <42> 80 3c 28 00 74 a4 e8 ad 0b 04 fa eb 9d 48 89 de 4c 89 ff e8 c0
[   38.342633] RSP: 0018:ffff8801bae66bd0 EFLAGS: 00010806
[   38.348099] RAX: 1bd5a00000000022 RBX: ffff8801beda4040 RCX: 1ffff10037c4988f
[   38.355372] RDX: 0000000040000000 RSI: 0000000000000000 RDI: dead000000000110
[   38.362647] RBP: ffff8801bae66da8 R08: ffff8801c3f14680 R09: fffff520003ca247
[   38.369921] R10: fffff520003ca247 R11: ffffc90001e5123b R12: dead000000000100
[   38.377208] R13: dffffc0000000000 R14: ffff8801daf2cb40 R15: ffff8801c3f14680
[   38.384495] FS:  000000000154d880(0000) GS:ffff8801daf00000(0000) knlGS:0000000000000000
[   38.392719] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   38.398598] CR2: 000000000043ec9e CR3: 000000000946a000 CR4: 00000000001426e0
[   38.405873] Kernel panic - not syncing: Fatal exception
[   39.551987] Shutting down cpus with NMI
[   39.556947] Kernel Offset: disabled
[   39.560591] Rebooting in 86400 seconds..