8<--- cut here ---
Unable to handle kernel paging request at virtual address e03c4000
pgd = 86eae340
[e03c4000] *pgd=80000080007003, *pmd=84473003, *pte=00000000
Internal error: Oops: a07 [#1] PREEMPT SMP ARM
Modules linked in:
CPU: 0 PID: 16416 Comm: syz-executor.0 Not tainted 5.12.0-rc3-syzkaller #0
Hardware name: ARM-Versatile Express
PC is at fast_imageblit drivers/video/fbdev/core/sysimgblt.c:229 [inline]
PC is at sys_imageblit+0x4b0/0x52c drivers/video/fbdev/core/sysimgblt.c:275
LR is at 0xe03c4000
pc : [<808f4744>]    lr : [<e03c4000>]    psr: 00000113
sp : 8378dad8  ip : 83ca7210  fp : 8378db2c
r10: 81b0a288  r9 : 00018000  r8 : e03c4000
r7 : 0000000f  r6 : 83ca7210  r5 : 00000001  r4 : 00018000
r3 : 00018000  r2 : 00000007  r1 : 00000001  r0 : 00000006
Flags: nzcv  IRQs on  FIQs on  Mode SVC_32  ISA ARM  Segment user
Control: 30c5387d  Table: 86eae340  DAC: fffffffd
Process syz-executor.0 (pid: 16416, stack limit = 0x8378c210)
Stack: (0x8378dad8 to 0x8378e000)
dac0:                                                       8378db64 00000001
dae0: 00000001 00000010 00000001 8378dbb4 00000007 00000008 83ca7210 844a7c00
db00: 82b5a808 8378dbb4 844a7c00 00000001 86dd08c2 00000000 000000ff 83420800
db20: 8378db4c 8378db30 809b5200 808f42a0 00000001 00000001 ffffffff 83ca7211
db40: 8378dc1c 8378db50 808edbf8 809b51c4 83ca4000 00000000 82b5a808 00000000
db60: 83420a60 ffffffff ffffffff 844a7e3c 00000000 00000000 00000000 00000200
db80: 844a7c00 00000001 86dd08c0 00000001 808ed764 833a7b34 83e92400 83e93818
dba0: 00000000 00000001 00000010 00000001 844a7c00 00000000 00000300 00000008
dbc0: 00000010 00000007 00000000 844a7c01 83ca7210 00000000 00000000 00000400
dbe0: 00000300 00000400 00000300 56b92eae 8378dc1c 83420800 86dd08c0 00000001
dc00: 844a7c00 808ed9d8 00000030 00000007 8378dc64 8378dc20 808e7f48 808ed9e4
dc20: 00000030 00000000 00000007 00000000 00000000 00000007 00000060 86dd08c2
dc40: 808e7e60 0000039e 83420800 00000060 86dd08c2 00000001 8378dcac 8378dc68
dc60: 8095a3b8 808e7e6c 00000000 8378dc78 808e83c4 00000000 00000000 56b92eae
dc80: 00000001 83420800 00000000 00000001 00000001 00000000 83e92400 00000000
dca0: 8378dce4 8378dcb0 8095bdc8 8095a2b4 00000000 00000000 00000000 56b92eae
dcc0: 00000000 844a7c00 83420800 83e92400 00000001 00000000 8378ddc4 8378dce8
dce0: 808ebb40 8095bbc0 8378dd04 8378dcf8 8181dacc 00000400 00000300 00000400
dd00: 00000300 00000000 00000000 00000020 00000000 00000010 00000008 00000000
dd20: 00000008 00000008 00000000 00000000 00000008 00000000 00000000 00000000
dd40: 00000000 00000000 00000280 00000000 00000000 00000001 00000000 00000000
dd60: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000
dd80: 00000000 00000000 00000000 00000000 00000000 56b92eae 00000001 833aa120
dda0: 83420800 00000001 00000000 0000003a 83420800 86f0a400 8378dde4 8378ddc8
ddc0: 8095bea8 808eb994 00000000 86f0a400 00004b3a 83420800 8378de64 8378dde8
dde0: 809535a8 8095be08 8181dacc 8181d97c 8378de2c 8378de00 8181c9a4 8181dabc
de00: 00000000 00000000 81f94a4c 00000103 82bfd371 8663e280 00000003 00000036
de20: 8378de54 8378de30 8027ea14 8181c88c 00000000 56b92eae 81f94a4c fffffdfd
de40: 00004b3a 86f0a400 8663e280 fffff73a 00000000 86f0a400 8378df0c 8378de68
de60: 8093f890 80951c38 00000000 56b92eae 83711518 0000003a 837575e8 0000004b
de80: 00000001 8663e280 00000003 00000036 8378deec 8378dea0 80701b40 806f7810
dea0: 00000001 0000004b 0000003a 8378debc 857b56d0 83843480 00004b3a 8663e20b
dec0: 8378deb0 8663e280 00000003 56b92eae 821280c8 00000000 8663e280 56b92eae
dee0: 8378df0c 00004b3a 00000000 8663e281 00000000 8663e280 00000003 837575e8
df00: 8378dfa4 8378df10 804f33f4 8093f4d8 8020d140 8020e34c 00000000 80200e90
df20: 828a2438 80200e90 86a9e180 80200060 8378df4c 8378df40 8181dacc 8181d97c
df40: 8378df74 8378df50 8181cb8c 8181dabc 8378df98 80384d84 828abd1c 80200e90
df60: 60000093 30c5387d 8378df94 8378df78 828abd1c 56b92eae 00000000 00000000
df80: 00000000 00000000 00000036 80200224 8378c000 00000036 00000000 8378dfa8
dfa0: 80200060 804f32e0 00000000 00000000 00000003 00004b3a 00000000 00000000
dfc0: 00000000 00000000 00000000 00000036 7ee6a32a 76f816d0 7ee6a4ac 76f8120c
dfe0: 76f81048 76f81038 00018d58 0004b630 60000010 00000003 00000000 00000000
Backtrace: 
[<808f4294>] (sys_imageblit) from [<809b5200>] (drm_fb_helper_sys_imageblit drivers/gpu/drm/drm_fb_helper.c:794 [inline])
[<808f4294>] (sys_imageblit) from [<809b5200>] (drm_fbdev_fb_imageblit+0x48/0x4c drivers/gpu/drm/drm_fb_helper.c:2276)
 r10:83420800 r9:000000ff r8:00000000 r7:86dd08c2 r6:00000001 r5:844a7c00
 r4:8378dbb4
[<809b51b8>] (drm_fbdev_fb_imageblit) from [<808edbf8>] (bit_putcs_unaligned drivers/video/fbdev/core/bitblit.c:139 [inline])
[<809b51b8>] (drm_fbdev_fb_imageblit) from [<808edbf8>] (bit_putcs+0x220/0x470 drivers/video/fbdev/core/bitblit.c:188)
 r5:83ca7211 r4:ffffffff
[<808ed9d8>] (bit_putcs) from [<808e7f48>] (fbcon_putcs+0xe8/0xf0 drivers/video/fbdev/core/fbcon.c:1296)
 r10:00000007 r9:00000030 r8:808ed9d8 r7:844a7c00 r6:00000001 r5:86dd08c0
 r4:83420800
[<808e7e60>] (fbcon_putcs) from [<8095a3b8>] (do_update_region+0x110/0x1ac drivers/tty/vt/vt.c:676)
 r10:00000001 r9:86dd08c2 r8:00000060 r7:83420800 r6:0000039e r5:808e7e60
 r4:86dd08c2
[<8095a2a8>] (do_update_region) from [<8095bdc8>] (redraw_screen+0x214/0x248 drivers/tty/vt/vt.c:1035)
 r10:00000000 r9:83e92400 r8:00000000 r7:00000001 r6:00000001 r5:00000000
 r4:83420800
[<8095bbb4>] (redraw_screen) from [<808ebb40>] (fbcon_blank+0x1b8/0x250 drivers/video/fbdev/core/fbcon.c:2204)
 r8:00000000 r7:00000001 r6:83e92400 r5:83420800 r4:844a7c00
[<808eb988>] (fbcon_blank) from [<8095bea8>] (do_unblank_screen+0xac/0x17c drivers/tty/vt/vt.c:4405)
 r10:86f0a400 r9:83420800 r8:0000003a r7:00000000 r6:00000001 r5:83420800
 r4:833aa120
[<8095bdfc>] (do_unblank_screen) from [<809535a8>] (vt_kdsetmode drivers/tty/vt/vt_ioctl.c:276 [inline])
[<8095bdfc>] (do_unblank_screen) from [<809535a8>] (vt_k_ioctl drivers/tty/vt/vt_ioctl.c:381 [inline])
[<8095bdfc>] (do_unblank_screen) from [<809535a8>] (vt_ioctl+0x197c/0x1be8 drivers/tty/vt/vt_ioctl.c:713)
 r7:83420800 r6:00004b3a r5:86f0a400 r4:00000000
[<80951c2c>] (vt_ioctl) from [<8093f890>] (tty_ioctl+0x3c4/0xc1c drivers/tty/tty_io.c:2801)
 r10:86f0a400 r9:00000000 r8:fffff73a r7:8663e280 r6:86f0a400 r5:00004b3a
 r4:fffffdfd
[<8093f4cc>] (tty_ioctl) from [<804f33f4>] (vfs_ioctl fs/ioctl.c:48 [inline])
[<8093f4cc>] (tty_ioctl) from [<804f33f4>] (do_vfs_ioctl fs/ioctl.c:725 [inline])
[<8093f4cc>] (tty_ioctl) from [<804f33f4>] (__do_sys_ioctl fs/ioctl.c:751 [inline])
[<8093f4cc>] (tty_ioctl) from [<804f33f4>] (sys_ioctl+0x120/0xaa4 fs/ioctl.c:739)
 r10:837575e8 r9:00000003 r8:8663e280 r7:00000000 r6:8663e281 r5:00000000
 r4:00004b3a
[<804f32d4>] (sys_ioctl) from [<80200060>] (ret_fast_syscall+0x0/0x2c arch/arm/mm/proc-v7.S:64)
Exception stack(0x8378dfa8 to 0x8378dff0)
dfa0:                   00000000 00000000 00000003 00004b3a 00000000 00000000
dfc0: 00000000 00000000 00000000 00000036 7ee6a32a 76f816d0 7ee6a4ac 76f8120c
dfe0: 76f81048 76f81038 00018d58 0004b630
 r10:00000036 r9:8378c000 r8:80200224 r7:00000036 r6:00000000 r5:00000000
 r4:00000000
Code: e3700001 e79a3103 e0033004 e0233009 (e48e3004) 
---[ end trace 81b5e8cb26d473fd ]---
----------------
Code disassembly (best guess):
   0:	e3700001 	cmn	r0, #1
   4:	e79a3103 	ldr	r3, [sl, r3, lsl #2]
   8:	e0033004 	and	r3, r3, r4
   c:	e0233009 	eor	r3, r3, r9
* 10:	e48e3004 	str	r3, [lr], #4 <-- trapping instruction