================================================================== BUG: KASAN: invalid-access in kill_pending_fw_fallback_reqs+0x3c/0xe0 drivers/base/firmware_loader/fallback.c:116 Read at addr f8ff00002824d688 by task syz-executor.0/8638 Pointer tag: [f8], memory tag: [f6] CPU: 0 PID: 8638 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) Call trace: dump_backtrace+0x0/0x1b0 arch/arm64/kernel/stacktrace.c:76 show_stack+0x18/0x24 arch/arm64/kernel/stacktrace.c:215 __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0x68/0x84 lib/dump_stack.c:105 print_address_description+0x7c/0x2b4 mm/kasan/report.c:233 __kasan_report mm/kasan/report.c:419 [inline] kasan_report+0x134/0x380 mm/kasan/report.c:436 report_tag_fault arch/arm64/mm/fault.c:330 [inline] do_tag_recovery arch/arm64/mm/fault.c:342 [inline] __do_kernel_fault+0x1a8/0x1dc arch/arm64/mm/fault.c:383 do_bad_area arch/arm64/mm/fault.c:479 [inline] do_tag_check_fault+0x74/0x90 arch/arm64/mm/fault.c:750 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 kill_pending_fw_fallback_reqs+0x3c/0xe0 drivers/base/firmware_loader/fallback.c:116 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 Allocated by task 6385: kasan_save_stack+0x28/0x60 mm/kasan/common.c:38 kasan_set_track mm/kasan/common.c:46 [inline] set_alloc_info mm/kasan/common.c:434 [inline] ____kasan_kmalloc mm/kasan/common.c:513 [inline] ____kasan_kmalloc mm/kasan/common.c:472 [inline] __kasan_kmalloc+0xac/0xc4 mm/kasan/common.c:522 kasan_kmalloc include/linux/kasan.h:264 [inline] kmem_cache_alloc_trace include/linux/slab.h:489 [inline] kmalloc include/linux/slab.h:591 [inline] newseg+0xa8/0x3a0 ipc/shm.c:622 ipcget_new ipc/util.c:345 [inline] ipcget+0x5c/0x250 ipc/util.c:677 ksys_shmget ipc/shm.c:741 [inline] __do_sys_shmget ipc/shm.c:746 [inline] __se_sys_shmget ipc/shm.c:744 [inline] __arm64_sys_shmget+0x58/0x84 ipc/shm.c:744 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 Freed by task 6330: kasan_save_stack+0x28/0x60 mm/kasan/common.c:38 kasan_set_track+0x28/0x3c mm/kasan/common.c:46 kasan_set_free_info+0x20/0x30 mm/kasan/tags.c:36 ____kasan_slab_free.constprop.0+0x178/0x1e0 mm/kasan/common.c:366 __kasan_slab_free+0x10/0x1c mm/kasan/common.c:374 kasan_slab_free include/linux/kasan.h:230 [inline] slab_free_hook mm/slub.c:1625 [inline] slab_free_freelist_hook+0xc4/0x220 mm/slub.c:1650 slab_free mm/slub.c:3210 [inline] kfree+0x2f4/0x43c mm/slub.c:4262 smk_fetch security/smack/smack_lsm.c:300 [inline] smk_fetch+0xc8/0x100 security/smack/smack_lsm.c:278 smack_d_instantiate+0x1b8/0x3b0 security/smack/smack_lsm.c:3445 security_d_instantiate+0x3c/0x6c security/security.c:2038 d_instantiate_new+0x34/0xa0 fs/dcache.c:2027 ext4_add_nondir+0xcc/0x100 fs/ext4/namei.c:2706 ext4_symlink+0x29c/0x400 fs/ext4/namei.c:3535 vfs_symlink fs/namei.c:4182 [inline] vfs_symlink+0x148/0x1f0 fs/namei.c:4167 do_symlinkat+0x138/0x150 fs/namei.c:4212 __do_sys_symlinkat fs/namei.c:4228 [inline] __se_sys_symlinkat fs/namei.c:4225 [inline] __arm64_sys_symlinkat+0x24/0x30 fs/namei.c:4225 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 The buggy address belongs to the object at ffff00002824d600 which belongs to the cache kmalloc-256 of size 256 The buggy address is located 136 bytes inside of 256-byte region [ffff00002824d600, ffff00002824d700) The buggy address belongs to the page: page:00000000a3d779cf refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x6824c head:00000000a3d779cf order:1 compound_mapcount:0 flags: 0x1ffc00000010200(slab|head|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0) raw: 01ffc00000010200 fffffc00009bf700 0000000700000006 fdff000002801300 raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000 page dumped because: kasan: bad access detected Memory state around the buggy address: ffff00002824d400: fc fc fc fc fc fc fc fc fc fc fe fe fe fe fe fe ffff00002824d500: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe >ffff00002824d600: f6 f6 f6 f6 f6 f6 f6 f6 f6 f6 f6 f6 f6 f6 f6 f6 ^ ffff00002824d700: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe ffff00002824d800: f2 f2 f2 f2 f2 f2 f2 f2 f2 f2 fe fe fe fe fe fe ================================================================== ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 0000000000000000 x17: 0000000000000000 x16: 0000000000000000 x15: 000070625fa5360d x14: 000000000000002e x13: 000000000000002e x12: 0000000000000000 x11: ffff800011dc0fc0 x10: fa8094f1e7880c45 x9 : 67818f0c35b91300 x8 : f5ff0000067bdaf8 x7 : 0000000000000004 x6 : 0000004005ca4384 x5 : 0000000000000000 x4 : ffff00007fb7b988 x3 : ffff00007fb9e578 x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f108484 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 000000000000051f x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f108485 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 0000000000000000 x17: 0000000000000000 x16: 0000000000000000 x15: 0000b66685e7f402 x14: 0000000000000136 x13: 0000000000000136 x12: 0000000000000000 x11: ffff800011dc0fc0 x10: fa8094f1e7880c45 x9 : 67818f0c35b91300 x8 : f5ff0000067bdaf8 x7 : 0000000000000004 x6 : 0000004005ca4384 x5 : 0000000000000001 x4 : 0000000000000008 x3 : ffffffffffffefff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f108486 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 0000000000000000 x17: 0000000000000000 x16: 0000000000000000 x15: 0000b077e4718da0 x14: 0000000000000292 x13: 0000000000000292 x12: 0000000000000000 x11: ffff800011dc0fc0 x10: fa8094f1e7880c45 x9 : 67818f0c35b91300 x8 : f5ff0000067bdaf8 x7 : 0000000000000004 x6 : 0000004005ca4384 x5 : 0000000000000001 x4 : 0000000000000008 x3 : ffffffffffffefff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f108487 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 0000000000000000 x17: 0000000000000000 x16: 0000000000000000 x15: 0000b64b1f80642a x14: 0000000000000224 x13: 0000000000000224 x12: 0000000000000000 x11: ffff800011dc0fc0 x10: fa8094f1e7880c45 x9 : 67818f0c35b91300 x8 : f5ff0000067bdaf8 x7 : 0000000000000004 x6 : 0000004005ca4384 x5 : 0000000000000001 x4 : 0000000000000008 x3 : ffffffffffffefff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f108488 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 0000000000000000 x17: 0000000000000000 x16: 0000000000000000 x15: 0000b631ae203a06 x14: 0000000000000119 x13: 0000000000000119 x12: 0000000000000000 x11: ffff800011dc0fc0 x10: fa8094f1e7880c45 x9 : 67818f0c35b91300 x8 : f5ff0000067bdaf8 x7 : 0000000000000004 x6 : 0000004005ca4384 x5 : 0000000000000001 x4 : 0000000000000008 x3 : ffffffffffffefff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f108489 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000614 x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f10848a ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 0000000000000000 x17: 0000000000000000 x16: 0000000000000000 x15: 0000b544dda127f2 x14: 0000000000000008 x13: 0000000000000008 x12: 0000000000000000 x11: ffff800011dc0fc0 x10: fa8094f1e7880c45 x9 : 67818f0c35b91300 x8 : f5ff0000067bdaf8 x7 : 0000000000000004 x6 : 0000004005ca4384 x5 : 0000000000000001 x4 : 0000000000000008 x3 : ffffffffffffefff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f10848b ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 0000000000000000 x17: 0000000000000000 x16: 0000000000000000 x15: 0000a9fa97c4778e x14: 00000000000000cc x13: 00000000000000cc x12: 0000000000000000 x11: ffff800011dc0fc0 x10: fa8094f1e7880c45 x9 : 67818f0c35b91300 x8 : f5ff0000067bdaf8 x7 : 0000000000000004 x6 : 0000004005ca4384 x5 : 0000000000000001 x4 : 0000000000000008 x3 : ffffffffffffefff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f10848c ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 0000000000000000 x17: 0000000000000000 x16: 0000000000000000 x15: 0000ffffddd55ef8 x14: 000000000000037a x13: 0000000000000001 x12: 0000000000000000 x11: ffff800011dc0fc0 x10: fa8094f1e7880c45 x9 : 67818f0c35b91300 x8 : f5ff0000067bdaf8 x7 : 0000000000000004 x6 : 0000004005ca4384 x5 : 0000000000000001 x4 : 0000000000000008 x3 : ffffffffffffefff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f10848d ]--- __do_kernel_fault: 39905 callbacks suppressed ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 00000000000006d9 x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : ffff00007fb7b988 x4 : 0000000000015ff5 x3 : 0000000000000001 x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f10848e ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 000000000000070a x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f10848f ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 000000000000073b x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f108490 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 000000000000076c x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f108491 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 000000000000079d x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f108492 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 00000000000007ce x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f108493 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 0000000000000000 x17: 0000000000000000 x16: 0000000000000000 x15: 0000ffffddd55ef8 x14: 000000000000022d x13: 0000000000000001 x12: 0000000000000000 x11: ffff800011dc0fc0 x10: fa8094f1e7880c45 x9 : 67818f0c35b91300 x8 : f5ff0000067bdaf8 x7 : 0000000000000004 x6 : 0000004005ca4384 x5 : 0000000000000001 x4 : 0000000000000009 x3 : ffffffffffffefff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f108494 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 0000000000000000 x17: 0000000000000000 x16: 0000000000000000 x15: 0000ffffddd55ef8 x14: 00000000000002a7 x13: 0000000000000001 x12: 0000000000000000 x11: ffff800011dc0fc0 x10: fa8094f1e7880c45 x9 : 67818f0c35b91300 x8 : f5ff0000067bdaf8 x7 : 0000000000000004 x6 : 0000004005ca4384 x5 : 0000000000000001 x4 : 0000000000000009 x3 : ffffffffffffefff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f108495 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 0000000000000000 x17: 0000000000000000 x16: 0000000000000000 x15: 00008e36332868d0 x14: 00000000000001bf x13: 00000000000001bf x12: 0000000000000000 x11: ffff800011dc0fc0 x10: fa8094f1e7880c45 x9 : 67818f0c35b91300 x8 : f5ff0000067bdaf8 x7 : 0000000000000004 x6 : 0000004005ca4384 x5 : 0000000000000001 x4 : 0000000000000009 x3 : ffffffffffffefff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f108496 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 0000000000000000 x17: 0000000000000000 x16: 0000000000000000 x15: 0000b5e0756d3d58 x14: 00000000000000ee x13: 00000000000000ee x12: 0000000000000000 x11: ffff800011dc0fc0 x10: fa8094f1e7880c45 x9 : 67818f0c35b91300 x8 : f5ff0000067bdaf8 x7 : 0000000000000004 x6 : 0000004005ca4384 x5 : 0000000000000001 x4 : 0000000000000009 x3 : ffffffffffffefff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f108497 ]--- __do_kernel_fault: 49408 callbacks suppressed ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 00000000000008c4 x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : ffff00007fb7b988 x4 : 0000000000015ff5 x3 : 0000000000000001 x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f108498 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 00000000000008f5 x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f108499 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000926 x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f10849a ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000957 x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f10849b ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000988 x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f10849c ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 00000000000009b9 x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f10849d ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 0000000000000000 x17: 0000000000000000 x16: 0000000000000000 x15: 0000b5df7ae98a7e x14: 00000000000000cc x13: 00000000000000cc x12: 0000000000000000 x11: ffff800011dc0fc0 x10: fa8094f1e7880c45 x9 : 67818f0c35b91300 x8 : f5ff0000067bdaf8 x7 : 0000000000000004 x6 : 0000004005ca4384 x5 : 0000000000000001 x4 : 0000000000000009 x3 : ffffffffffffefff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f10849e ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 0000000000000000 x17: 0000000000000000 x16: 0000000000000000 x15: 0000b5cfd2ae5cde x14: 000000000000009e x13: 000000000000009e x12: 0000000000000000 x11: ffff800011dc0fc0 x10: fa8094f1e7880c45 x9 : 67818f0c35b91300 x8 : f5ff0000067bdaf8 x7 : 0000000000000004 x6 : 0000004005ca4384 x5 : 0000000000000001 x4 : 0000000000000009 x3 : ffffffffffffefff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f10849f ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 0000000000000000 x17: 0000000000000000 x16: 0000000000000000 x15: 0000ffffddd55ef8 x14: 00000000000003e1 x13: 0000000000000001 x12: 0000000000000000 x11: ffff800011dc0fc0 x10: fa8094f1e7880c45 x9 : 67818f0c35b91300 x8 : f5ff0000067bdaf8 x7 : 0000000000000004 x6 : 0000004005ca4384 x5 : 0000000000000001 x4 : 0000000000000009 x3 : ffffffffffffefff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084a0 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 0000000000000000 x17: 0000000000000000 x16: 0000000000000000 x15: 0000ffffddd55ef8 x14: 0000000000000214 x13: 0000000000000001 x12: 0000000000000000 x11: ffff800011dc0fc0 x10: fa8094f1e7880c45 x9 : 67818f0c35b91300 x8 : f5ff0000067bdaf8 x7 : 0000000000000004 x6 : 0000004005ca4384 x5 : 0000000000000001 x4 : 0000000000000009 x3 : ffffffffffffefff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084a1 ]--- __do_kernel_fault: 38361 callbacks suppressed ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 1 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 1 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000aaf x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : ffff00007fbb0988 x4 : 0000000000015ff5 x3 : 0000000000000001 x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084a2 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 1 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 1 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 000000000000000c x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000030 x14: 0000000000000000 x13: 0000000000000ae0 x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084a3 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 1 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 1 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000b11 x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084a4 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 1 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 1 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000b42 x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084a5 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 1 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 1 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000b73 x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084a6 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 1 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 1 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000ba4 x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084a7 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 1 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 1 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000bd5 x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084a8 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 1 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 1 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000c06 x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084a9 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 1 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 1 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000c37 x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084aa ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 1 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 1 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000c68 x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084ab ]--- __do_kernel_fault: 57016 callbacks suppressed ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000c9a x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : ffff00007fb7b988 x4 : 0000000000015ff5 x3 : 0000000000000001 x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084ac ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000ccb x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084ad ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000cfc x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084ae ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000d2d x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084af ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000d5e x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084b0 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000d8f x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084b1 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000dc0 x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084b2 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000df1 x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084b3 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000e22 x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084b4 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000e53 x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084b5 ]--- __do_kernel_fault: 66180 callbacks suppressed ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000e85 x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : ffff00007fb7b988 x4 : 0000000000015ff5 x3 : 0000000000000001 x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084b6 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000eb6 x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084b7 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000ee7 x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084b8 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000f18 x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084b9 ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000f49 x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084ba ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000f7a x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084bb ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000fab x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084bc ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 0000000000000fdc x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084bd ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 000000000000100d x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084be ]--- ------------[ cut here ]------------ Ignoring spurious kernel translation fault at virtual address 0000000000001000 WARNING: CPU: 0 PID: 8638 at arch/arm64/mm/fault.c:378 __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 Modules linked in: CPU: 0 PID: 8638 Comm: syz-executor.0 Tainted: G B W 5.14.0-rc2-syzkaller #0 Hardware name: linux,dummy-virt (DT) pstate: 60400009 (nZCv daif +PAN -UAO -TCO BTYPE=--) pc : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 lr : __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 sp : ffff8000154db6f0 x29: ffff8000154db6f0 x28: f5ff0000067bcc40 x27: 0000000000000000 x26: 0000000000000003 x25: f8ff00002824d620 x24: f7ff000005c67c00 x23: 0000000097c18006 x22: 0000000000001000 x21: 0000000000000025 x20: ffff8000154db820 x19: 0000000097c18006 x18: 00000000fffffffb x17: 3030207373657264 x16: 6461206c61757472 x15: 697620746120746c x14: 756166206e6f6974 x13: 000000000000103e x12: ffff8000154db3c0 x11: ffff8000122bcd38 x10: 00000000ffffe000 x9 : ffff8000122bcd38 x8 : ffff80001220cd38 x7 : ffff8000122bcd38 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000015ff5 x3 : 00000000ffffffff x2 : 0000000000000000 x1 : 0000000000000000 x0 : f5ff0000067bcc40 Call trace: __do_kernel_fault+0x16c/0x1dc arch/arm64/mm/fault.c:378 do_page_fault+0x1c0/0x3b0 arch/arm64/mm/fault.c:682 do_translation_fault+0xb0/0xc0 arch/arm64/mm/fault.c:693 do_mem_abort+0x44/0xb4 arch/arm64/mm/fault.c:826 el1_abort+0x40/0x60 arch/arm64/kernel/entry-common.c:243 el1h_64_sync_handler+0xb0/0xd0 arch/arm64/kernel/entry-common.c:318 el1h_64_sync+0x78/0x7c arch/arm64/kernel/entry.S:569 __list_del_entry_valid+0x30/0xb0 lib/list_debug.c:48 __list_del_entry include/linux/list.h:132 [inline] list_del_init include/linux/list.h:204 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:97 [inline] __fw_load_abort drivers/base/firmware_loader/fallback.c:88 [inline] kill_pending_fw_fallback_reqs+0x7c/0xe0 drivers/base/firmware_loader/fallback.c:119 fw_pm_notify+0x50/0x110 drivers/base/firmware_loader/main.c:1450 notifier_call_chain kernel/notifier.c:83 [inline] notifier_call_chain_robust kernel/notifier.c:118 [inline] blocking_notifier_call_chain_robust kernel/notifier.c:302 [inline] blocking_notifier_call_chain_robust+0x78/0xe4 kernel/notifier.c:290 pm_notifier_call_chain_robust+0x24/0x44 kernel/power/main.c:87 snapshot_open+0xa0/0x124 kernel/power/user.c:75 misc_open+0x130/0x174 drivers/char/misc.c:141 chrdev_open+0xc0/0x260 fs/char_dev.c:414 do_dentry_open+0x12c/0x3c0 fs/open.c:826 vfs_open+0x30/0x3c fs/open.c:949 do_open fs/namei.c:3374 [inline] path_openat+0x488/0xf10 fs/namei.c:3507 do_filp_open+0x80/0x130 fs/namei.c:3534 do_sys_openat2+0xb4/0x15c fs/open.c:1204 do_sys_open fs/open.c:1220 [inline] __do_sys_openat fs/open.c:1236 [inline] __se_sys_openat fs/open.c:1231 [inline] __arm64_sys_openat+0x64/0xb0 fs/open.c:1231 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x40/0xdc arch/arm64/kernel/syscall.c:145 do_el0_svc+0x78/0x90 arch/arm64/kernel/syscall.c:184 el0_svc+0x2c/0x54 arch/arm64/kernel/entry-common.c:511 el0t_64_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:527 el0t_64_sync+0x1b4/0x1b8 arch/arm64/kernel/entry.S:574 ---[ end trace 6de35aec8f1084bf ]---