BUG: KASAN: out-of-bounds in i801_isr_byte_done drivers/i2c/busses/i2c-i801.c:608 [inline]
BUG: KASAN: out-of-bounds in i801_isr drivers/i2c/busses/i2c-i801.c:668 [inline]
BUG: KASAN: out-of-bounds in i801_isr+0xc70/0xd60 drivers/i2c/busses/i2c-i801.c:649
Read of size 1 at addr ffffc900064d7d60 by task swapper/2/0

CPU: 2 PID: 0 Comm: swapper/2 Not tainted 5.13.0-rc6-syzkaller #0
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
Call Trace:
 <IRQ>
 __dump_stack lib/dump_stack.c:79 [inline]
 dump_stack+0x141/0x1d7 lib/dump_stack.c:120
 print_address_description.constprop.0.cold+0x5/0x2f8 mm/kasan/report.c:233
 __kasan_report mm/kasan/report.c:419 [inline]
 kasan_report.cold+0x7c/0xd8 mm/kasan/report.c:436
 i801_isr_byte_done drivers/i2c/busses/i2c-i801.c:608 [inline]
 i801_isr drivers/i2c/busses/i2c-i801.c:668 [inline]
 i801_isr+0xc70/0xd60 drivers/i2c/busses/i2c-i801.c:649
 __handle_irq_event_percpu+0x303/0x8f0 kernel/irq/handle.c:156
 handle_irq_event_percpu kernel/irq/handle.c:196 [inline]
 handle_irq_event+0x102/0x290 kernel/irq/handle.c:213
 handle_fasteoi_irq+0x22f/0x9f0 kernel/irq/chip.c:714
 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline]
 handle_irq arch/x86/kernel/irq.c:231 [inline]
 __common_interrupt+0x9e/0x200 arch/x86/kernel/irq.c:250
 common_interrupt+0x4c/0xd0 arch/x86/kernel/irq.c:240
 asm_common_interrupt+0x1e/0x40 arch/x86/include/asm/idtentry.h:638
RIP: 0010:__raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:161 [inline]
RIP: 0010:_raw_spin_unlock_irqrestore+0x38/0x70 kernel/locking/spinlock.c:191
Code: 74 24 10 e8 6a 36 41 f8 48 89 ef e8 02 af 41 f8 81 e3 00 02 00 00 75 25 9c 58 f6 c4 02 75 2d 48 85 db 74 01 fb bf 01 00 00 00 <e8> 73 a5 35 f8 65 8b 05 6c a7 e8 76 85 c0 74 0a 5b 5d c3 e8 50 a3
RSP: 0018:ffffc90000550f38 EFLAGS: 00000206
RAX: 0000000000000006 RBX: 0000000000000200 RCX: 1ffffffff1b925c1
RDX: 0000000000000000 RSI: 0000000000000102 RDI: 0000000000000001
RBP: ffff88802cc35640 R08: 0000000000000001 R09: 0000000000000001
R10: ffffffff817aebe8 R11: 0000000000000001 R12: 0000000000000101
R13: 0000000000000280 R14: 0000000000000007 R15: 0000000000000008
 run_rebalance_domains+0xf1/0x1a0 kernel/sched/fair.c:10725
 __do_softirq+0x29b/0x9f6 kernel/softirq.c:559
 invoke_softirq kernel/softirq.c:433 [inline]
 __irq_exit_rcu+0x136/0x200 kernel/softirq.c:637
 irq_exit_rcu+0x5/0x20 kernel/softirq.c:649
 sysvec_apic_timer_interrupt+0x93/0xc0 arch/x86/kernel/apic/apic.c:1100
 </IRQ>
 asm_sysvec_apic_timer_interrupt+0x12/0x20 arch/x86/include/asm/idtentry.h:647
RIP: 0010:default_idle+0xe/0x10 arch/x86/kernel/process.c:701
Code: ff ff ff 48 89 df e8 c1 aa a0 f8 e9 52 ff ff ff 4c 89 e7 e8 b4 aa a0 f8 eb 93 66 90 e9 07 00 00 00 0f 00 2d 44 c7 4c 00 fb f4 <c3> cc 41 55 41 54 55 48 89 fd 53 e8 42 a1 5b f8 e8 2d 60 fd ff 48
RSP: 0018:ffffc9000043fdf8 EFLAGS: 00000202
RAX: 000000000013b983 RBX: ffff888011a09c40 RCX: ffffffff89168fc1
RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
RBP: 0000000000000002 R08: 0000000000000001 R09: ffff88802cc365cb
R10: ffffed1005986cb9 R11: 0000000000000000 R12: ffffed1002341388
R13: 0000000000000002 R14: ffffffff8dc96950 R15: 0000000000000000
 default_idle_call+0x87/0xd0 kernel/sched/idle.c:112
 cpuidle_idle_call kernel/sched/idle.c:194 [inline]
 do_idle+0x401/0x590 kernel/sched/idle.c:306
 cpu_startup_entry+0x14/0x20 kernel/sched/idle.c:403
 start_secondary+0x274/0x350 arch/x86/kernel/smpboot.c:272
 secondary_startup_64_no_verify+0xb0/0xbb


Memory state around the buggy address:
 ffffc900064d7c00: f2 f2 00 00 f3 f3 00 00 00 00 00 00 00 00 00 00
 ffffc900064d7c80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
>ffffc900064d7d00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
                                                       ^
 ffffc900064d7d80: 00 00 00 00 00 00 00 00 00 00 00 f1 f1 f1 f1 00
 ffffc900064d7e00: f2 f2 f2 00 00 00 00 00 00 00 00 00 00 00 f3 f3
==================================================================