8<--- cut here ---
Unable to handle kernel paging request at virtual address e03c4000
pgd = 86d6cf80
[e03c4000] *pgd=80000080007003, *pmd=8407f003, *pte=00000000
Internal error: Oops: a07 [#1] PREEMPT SMP ARM
Modules linked in:
CPU: 0 PID: 11133 Comm: syz-executor.1 Not tainted 5.12.0-rc3-syzkaller #0
Hardware name: ARM-Versatile Express
PC is at fast_imageblit drivers/video/fbdev/core/sysimgblt.c:229 [inline]
PC is at sys_imageblit+0x4b0/0x52c drivers/video/fbdev/core/sysimgblt.c:275
LR is at 0xe03c4000
pc : [<808f4744>]    lr : [<e03c4000>]    psr: 00000113
sp : 86905ad8  ip : 84493fc0  fp : 86905b2c
r10: 81b0a288  r9 : 00000000  r8 : e03c4000
r7 : 0000000f  r6 : 84493fc0  r5 : 00000001  r4 : 00000000
r3 : 00000000  r2 : 00000007  r1 : 00000001  r0 : 00000016
Flags: nzcv  IRQs on  FIQs on  Mode SVC_32  ISA ARM  Segment user
Control: 30c5387d  Table: 86d6cf80  DAC: fffffffd
Process syz-executor.1 (pid: 11133, stack limit = 0x86904210)
Stack: (0x86905ad8 to 0x86906000)
5ac0:                                                       86905b64 00000001
5ae0: 00000001 00000010 00000003 86905bb4 00000017 00000018 84493fc0 844ab400
5b00: 82b5a808 86905bb4 844ab400 00000003 86c26246 00000000 000000ff 83420800
5b20: 86905b4c 86905b30 809b5200 808f42a0 00000003 00000001 ffffffff 84493fc3
5b40: 86905c1c 86905b50 808edbf8 809b51c4 84490000 00000000 82b5a808 00000000
5b60: 83420a60 ffffffff ffffffff 844ab63c 00000000 00000000 00000000 00000200
5b80: 844ab400 00000003 86c26240 00000003 808ed764 833a7b34 84386200 84387a18
5ba0: 00000000 00000001 00000010 00000001 844ab400 00000000 00000300 00000018
5bc0: 00000010 00000007 00000000 844ab401 84493fc0 00000000 86905c2c 00000400
5be0: 00000300 00000400 00000300 56b92eae 86905c1c 83420800 86c26240 00000003
5c00: 844ab400 808ed9d8 00000030 00000007 86905c64 86905c20 808e7f48 808ed9e4
5c20: 00000030 00000000 00000007 00000000 00000000 00000007 00000120 86c26246
5c40: 808e7e60 00000add 83420800 00000060 86c26246 00000003 86905cac 86905c68
5c60: 8095a3b8 808e7e6c 00000000 86905c78 808e83c4 00000000 00000000 56b92eae
5c80: 00000001 83420800 00000000 00000001 00000001 00000000 84386200 00000000
5ca0: 86905ce4 86905cb0 8095bdc8 8095a2b4 808df644 808df160 00000007 56b92eae
5cc0: 844ab400 844ab400 83420800 84386200 00000001 00000000 86905dc4 86905ce8
5ce0: 808ebb40 8095bbc0 86905d04 86905cf8 8181dacc 00000400 00000300 00000400
5d00: 00000300 00000000 00000000 00000020 00000000 00000010 00000008 00000000
5d20: 00000008 00000008 00000000 00000000 00000008 00000000 00000000 00000000
5d40: 00000000 00000000 00000280 00000000 00000000 00000001 00000000 00000000
5d60: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000
5d80: 00000000 00000000 00000000 00000000 00000000 56b92eae 00000001 833aa120
5da0: 83420800 00000001 00000000 0000003a 83420800 86b88000 86905de4 86905dc8
5dc0: 8095bea8 808eb994 00000000 86b88000 00004b3a 83420800 86905e64 86905de8
5de0: 809535a8 8095be08 8181dacc 8181d97c 86905e2c 86905e00 8181c9a4 8181dabc
5e00: 00000000 00000000 81f94a4c 00000103 82bfd371 83552640 00000003 00000036
5e20: 86905e54 86905e30 8027ea14 8181c88c 00000000 56b92eae 81f94a4c fffffdfd
5e40: 00004b3a 86b88000 83552640 fffff73a 00000000 86b88000 86905f0c 86905e68
5e60: 8093f890 80951c38 00000000 56b92eae 837e3830 0000003a 834eb8e0 0000004b
5e80: 00000001 83552640 00000003 00000036 86905eec 86905ea0 80701b40 806f7810
5ea0: 00000001 0000004b 0000003a 86905ebc 858c10d0 83dc6a80 00004b3a 8355260b
5ec0: 86905eb0 83552640 00000003 56b92eae 821280c8 00000000 83552640 56b92eae
5ee0: 86905f0c 00004b3a 00000000 83552641 00000000 83552640 00000003 834eb8e0
5f00: 86905fa4 86905f10 804f33f4 8093f4d8 8020d140 8020e34c 00000000 80200e90
5f20: 828a2438 80200e90 86b9c100 80200060 86905f4c 86905f40 8181dacc 8181d97c
5f40: 86905f74 86905f50 8181cb8c 8181dabc 86905f98 80384d84 828abd1c 80200e90
5f60: 60000093 30c5387d 86905f94 86905f78 828abd1c 56b92eae 00000000 00000000
5f80: 00000000 ffffffff 00000036 80200224 86904000 00000036 00000000 86905fa8
5fa0: 80200060 804f32e0 00000000 00000000 00000003 00004b3a 00000000 00000000
5fc0: 00000000 00000000 ffffffff 00000036 7ee2332a 76f636d0 7ee234ac 76f6320c
5fe0: 76f63048 76f63038 00018d58 0004b630 60000010 00000003 00000000 00000000
Backtrace: 
[<808f4294>] (sys_imageblit) from [<809b5200>] (drm_fb_helper_sys_imageblit drivers/gpu/drm/drm_fb_helper.c:794 [inline])
[<808f4294>] (sys_imageblit) from [<809b5200>] (drm_fbdev_fb_imageblit+0x48/0x4c drivers/gpu/drm/drm_fb_helper.c:2276)
 r10:83420800 r9:000000ff r8:00000000 r7:86c26246 r6:00000003 r5:844ab400
 r4:86905bb4
[<809b51b8>] (drm_fbdev_fb_imageblit) from [<808edbf8>] (bit_putcs_unaligned drivers/video/fbdev/core/bitblit.c:139 [inline])
[<809b51b8>] (drm_fbdev_fb_imageblit) from [<808edbf8>] (bit_putcs+0x220/0x470 drivers/video/fbdev/core/bitblit.c:188)
 r5:84493fc3 r4:ffffffff
[<808ed9d8>] (bit_putcs) from [<808e7f48>] (fbcon_putcs+0xe8/0xf0 drivers/video/fbdev/core/fbcon.c:1296)
 r10:00000007 r9:00000030 r8:808ed9d8 r7:844ab400 r6:00000003 r5:86c26240
 r4:83420800
[<808e7e60>] (fbcon_putcs) from [<8095a3b8>] (do_update_region+0x110/0x1ac drivers/tty/vt/vt.c:676)
 r10:00000003 r9:86c26246 r8:00000060 r7:83420800 r6:00000add r5:808e7e60
 r4:86c26246
[<8095a2a8>] (do_update_region) from [<8095bdc8>] (redraw_screen+0x214/0x248 drivers/tty/vt/vt.c:1035)
 r10:00000000 r9:84386200 r8:00000000 r7:00000001 r6:00000001 r5:00000000
 r4:83420800
[<8095bbb4>] (redraw_screen) from [<808ebb40>] (fbcon_blank+0x1b8/0x250 drivers/video/fbdev/core/fbcon.c:2204)
 r8:00000000 r7:00000001 r6:84386200 r5:83420800 r4:844ab400
[<808eb988>] (fbcon_blank) from [<8095bea8>] (do_unblank_screen+0xac/0x17c drivers/tty/vt/vt.c:4405)
 r10:86b88000 r9:83420800 r8:0000003a r7:00000000 r6:00000001 r5:83420800
 r4:833aa120
[<8095bdfc>] (do_unblank_screen) from [<809535a8>] (vt_kdsetmode drivers/tty/vt/vt_ioctl.c:276 [inline])
[<8095bdfc>] (do_unblank_screen) from [<809535a8>] (vt_k_ioctl drivers/tty/vt/vt_ioctl.c:381 [inline])
[<8095bdfc>] (do_unblank_screen) from [<809535a8>] (vt_ioctl+0x197c/0x1be8 drivers/tty/vt/vt_ioctl.c:713)
 r7:83420800 r6:00004b3a r5:86b88000 r4:00000000
[<80951c2c>] (vt_ioctl) from [<8093f890>] (tty_ioctl+0x3c4/0xc1c drivers/tty/tty_io.c:2801)
 r10:86b88000 r9:00000000 r8:fffff73a r7:83552640 r6:86b88000 r5:00004b3a
 r4:fffffdfd
[<8093f4cc>] (tty_ioctl) from [<804f33f4>] (vfs_ioctl fs/ioctl.c:48 [inline])
[<8093f4cc>] (tty_ioctl) from [<804f33f4>] (do_vfs_ioctl fs/ioctl.c:725 [inline])
[<8093f4cc>] (tty_ioctl) from [<804f33f4>] (__do_sys_ioctl fs/ioctl.c:751 [inline])
[<8093f4cc>] (tty_ioctl) from [<804f33f4>] (sys_ioctl+0x120/0xaa4 fs/ioctl.c:739)
 r10:834eb8e0 r9:00000003 r8:83552640 r7:00000000 r6:83552641 r5:00000000
 r4:00004b3a
[<804f32d4>] (sys_ioctl) from [<80200060>] (ret_fast_syscall+0x0/0x2c arch/arm/mm/proc-v7.S:64)
Exception stack(0x86905fa8 to 0x86905ff0)
5fa0:                   00000000 00000000 00000003 00004b3a 00000000 00000000
5fc0: 00000000 00000000 ffffffff 00000036 7ee2332a 76f636d0 7ee234ac 76f6320c
5fe0: 76f63048 76f63038 00018d58 0004b630
 r10:00000036 r9:86904000 r8:80200224 r7:00000036 r6:ffffffff r5:00000000
 r4:00000000
Code: e3700001 e79a3103 e0033004 e0233009 (e48e3004) 
---[ end trace 5a5f7063339ed5ce ]---
----------------
Code disassembly (best guess):
   0:	e3700001 	cmn	r0, #1
   4:	e79a3103 	ldr	r3, [sl, r3, lsl #2]
   8:	e0033004 	and	r3, r3, r4
   c:	e0233009 	eor	r3, r3, r9
* 10:	e48e3004 	str	r3, [lr], #4 <-- trapping instruction