BUG: sleeping function called from invalid context at arch/x86/mm/fault.c:1346 in_atomic(): 0, irqs_disabled(): 1, pid: 17421, name: syz-executor7 1 lock held by syz-executor7/17421: #0: 000000004296b477 (&mm->mmap_sem){++++}, at: __do_page_fault+0x389/0xe50 arch/x86/mm/fault.c:1332 irq event stamp: 6670 hardirqs last enabled at (6669): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] hardirqs last enabled at (6669): [] _raw_spin_unlock_irqrestore+0x74/0xc0 kernel/locking/spinlock.c:184 hardirqs last disabled at (6670): [] slab_alloc_node mm/slab.c:3304 [inline] hardirqs last disabled at (6670): [] kmem_cache_alloc_node_trace+0xb3/0x770 mm/slab.c:3661 softirqs last enabled at (6446): [] __do_softirq+0x780/0xb17 kernel/softirq.c:310 softirqs last disabled at (6437): [] invoke_softirq kernel/softirq.c:364 [inline] softirqs last disabled at (6437): [] irq_exit+0x1d1/0x200 kernel/softirq.c:404 CPU: 0 PID: 17421 Comm: syz-executor7 Not tainted 4.18.0-rc1+ #110 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x1c9/0x2b4 lib/dump_stack.c:113 ___might_sleep.cold.85+0x11f/0x13a kernel/sched/core.c:6190 __might_sleep+0x95/0x190 kernel/sched/core.c:6143 __do_page_fault+0x3b6/0xe50 arch/x86/mm/fault.c:1346 do_page_fault+0xf6/0x8c0 arch/x86/mm/fault.c:1478 page_fault+0x1e/0x30 arch/x86/entry/entry_64.S:1160 RIP: 0010:msr_write_intercepted arch/x86/kvm/vmx.c:2327 [inline] RIP: 0010:vmx_vcpu_run+0x1328/0x2600 arch/x86/kvm/vmx.c:10149 Code: 91 00 00 00 e8 39 c8 5c 00 48 8b 54 24 08 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 8c 10 00 00 48 8b 04 24 <48> 8b 98 40 57 00 00 48 b8 00 00 00 00 00 fc ff df 48 8d 7b 40 48 RSP: 0018:ffff880183387370 EFLAGS: 00010046 RAX: 0000000000000001 RBX: 0000000010000000 RCX: ffffc90007638000 RDX: 1ffff10030670e73 RSI: ffffffff811f4687 RDI: 0000000000000005 RBP: ffffe8ff0005ff82 R08: ffff8801a87de4c0 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 WARNING: kernel stack regs at 00000000e56f4e4c in syz-executor7:17421 has bad 'bp' value 0000000004423cd0 unwind stack type:0 next_sp: (null) mask:0x2 graph_idx:0 000000007b0d6e08: ffff880183386ed8 (0xffff880183386ed8) 00000000319d7e03: ffffffff812a8b05 (show_trace_log_lvl+0x1f6/0x28c) 00000000b12c343e: ffffffff811f46a8 (vmx_vcpu_run+0x1328/0x2600) 0000000019e7b327: ffff880183387348 (0xffff880183387348) 00000000c40fbc90: 0000000000000002 (0x2) 00000000e4d697d0: 0000000000000001 (0x1) 00000000f87c1555: ffff880183380000 (0xffff880183380000) 00000000441a61a7: ffff880183388000 (0xffff880183388000) 000000004d5c8bfa: 0000000000000000 ... 00000000ea44d4ca: ffff880183380000 (0xffff880183380000) 000000006aeb293b: ffff880183388000 (0xffff880183388000) 00000000a926ad5b: 0000000000000000 ... 00000000bc94f64b: 0000000000000002 (0x2) 0000000075ee5010: ffff8801a87de4c0 (0xffff8801a87de4c0) 00000000f8b509fb: 0000010100000000 (0x10100000000) 0000000029b74866: 0000000000000000 ... 0000000009ccb47a: ffff880183386e08 (0xffff880183386e08) 0000000057565ffc: ffffffff811f46a8 (vmx_vcpu_run+0x1328/0x2600) 0000000080ef2461: ffff8801833872c8 (0xffff8801833872c8) 00000000a5fab9df: 870923d16b442400 (0x870923d16b442400) 000000005da8c1de: 0000000000000016 (0x16) 00000000fc7c4cc1: 0000000000000000 ... 00000000cf3ce9b0: ffffffff88f1afe0 (pv_cpu_ops+0x120/0x120) 00000000f4a28307: 00000000ffffffff (0xffffffff) 00000000ddf17355: ffff880183386ee8 (0xffff880183386ee8) 0000000084b904c5: ffffffff812a8bd3 (show_stack+0x38/0x3a) 00000000578ef9c7: ffff880183386f98 (0xffff880183386f98) 000000005813f4c2: ffffffff878ab7d5 (dump_stack+0x1c9/0x2b4) 000000005aacb1e5: fffffbfff11e35fc (0xfffffbfff11e35fc) 00000000683eebde: dffffc0000000000 (0xdffffc0000000000) 00000000c04cdf55: 1ffff10030670de2 (0x1ffff10030670de2) 00000000d805230f: 0000000041b58ab3 (0x41b58ab3) 0000000036c002dc: ffffffff88bd77a4 (regoff.34018+0x367ea4/0x37a9c0) 00000000d8ac8de3: ffffffff878ab60c (dump_stack_print_info.cold.2+0x52/0x52) 00000000b135953e: ffff880183386f58 (0xffff880183386f58) 000000009dcbe1cf: 870923d16b442400 (0x870923d16b442400) 00000000214f0128: ffffffff88f925a0 (rcu_callback_map+0x40/0x40) 000000003aad19ed: 0000000000001925 (0x1925) 00000000c3fbabe3: ffffffff81491e21 (irq_exit+0x1d1/0x200) 00000000b65a3d46: ffffffff81491e21 (irq_exit+0x1d1/0x200) 0000000083e08b01: ffff8801a87de4c0 (0xffff8801a87de4c0) 000000002c6bd641: ffffed003b5c3ec2 (0xffffed003b5c3ec2) 00000000bafc2fe8: 870923d16b442400 (0x870923d16b442400) 00000000ad375fb6: 1ffff10030670df5 (0x1ffff10030670df5) 0000000047ef0ca2: ffff8801a87de4c0 (0xffff8801a87de4c0) 0000000038af02ea: 000000000000440d (0x440d) 00000000a83b4e28: 0000000000000542 (0x542) 0000000047f610a4: 0000000000000000 ... 0000000011e2d83b: ffff880183387028 (0xffff880183387028) 00000000f6335618: ffffffff8155cc61 (___might_sleep.cold.85+0x11f/0x13a) 00000000f05b135e: 0000000041b58ab3 (0x41b58ab3) 0000000027fff765: ffffffff88be7e47 (regoff.34018+0x378547/0x37a9c0) 0000000069dcef7a: ffffffff81542720 (check_same_owner+0x340/0x340) 00000000e5a4558f: 0000000000000001 (0x1) 00000000eedea70f: ffff880183386fd8 (0xffff880183386fd8) 000000005e996422: ffffffff81b9c9a1 (kasan_check_read+0x11/0x20) 00000000fe8cac52: ffff880183387070 (0xffff880183387070) 000000000865a649: ffffffff81601b87 (do_raw_spin_unlock+0xa7/0x2f0) 0000000007b85785: 0000000041b58ab3 (0x41b58ab3) 00000000b426ab06: ffffffff88bd77a4 (regoff.34018+0x367ea4/0x37a9c0) 000000004b3ce07c: ffffffff81601ae0 (do_raw_spin_trylock+0x1c0/0x1c0) 0000000065591106: 870923d16b442400 (0x870923d16b442400) 0000000057edad12: ffff8801a87de4c0 (0xffff8801a87de4c0) 00000000e6f88323: ffffffff87e7a4a0 (__func__.46913+0x1e0/0x940) 00000000e488aafd: 0000000000000542 (0x542) 00000000d128fea2: 0000000000000000 ... 00000000a10b8df9: ffff880183387068 (0xffff880183387068) 00000000d9f37b3b: ffffffff81542ae5 (__might_sleep+0x95/0x190) 0000000032b92607: 870923d16b442400 (0x870923d16b442400) 00000000b434ee6a: 0000000000005741 (0x5741) 000000009b38bfdf: 0000000000005741 (0x5741) 000000001aa0d6de: ffff8801833872c8 (0xffff8801833872c8) 0000000071d45926: 0000000000000001 (0x1) 00000000fea206d2: 0000000000000000 ... 00000000f7f5c2c0: ffff880183387150 (0xffff880183387150) 00000000f1f1c480: ffffffff81362e06 (__do_page_fault+0x3b6/0xe50) 00000000307aa6de: 0000000000000559 (0x559) 00000000b8f307c0: ffff8801a87ded1a (0xffff8801a87ded1a) 000000009f9d054f: 0000000000000000 ... 000000005d0e569e: 0000001483387440 (0x1483387440) 000000001f1b132d: 1ffff10030670e19 (0x1ffff10030670e19) 0000000066303b8c: ffff8801afa840e8 (0xffff8801afa840e8) 000000001e819103: ffff8801afa84040 (0xffff8801afa84040) 00000000ae7951f6: ffff8801a87de4c0 (0xffff8801a87de4c0) 00000000d2c1a714: 0000000041b58ab3 (0x41b58ab3) 00000000217a4c43: ffffffff88be9363 (regoff.34018+0x379a63/0x37a9c0) 00000000264d8623: ffffffff81362a50 (mm_fault_error+0x380/0x380) 000000006d6ed369: ffffffff8ab53e48 (obj_hash+0x25a88/0x100020) 000000002a939239: ffffffff88f9c960 (firsttime.44516+0x160/0x160) 00000000f2f6a5f5: 0000000041b58ab3 (0x41b58ab3) 000000002640a213: ffffffff88c599f8 (K512_4+0x6d538/0x12032c) 0000000096898054: ffffffff83608bc0 (debug_object_free+0x690/0x690) 00000000ec5155ad: 0000000000025a80 (0x25a80) 00000000da10d8d2: ffff8801a87ded10 (0xffff8801a87ded10) 000000002a13fa00: ffff880100000000 (0xffff880100000000) 00000000dceb2c71: 870923d16b442400 (0x870923d16b442400) 000000008821cb41: 1ffff10030670e2e (0x1ffff10030670e2e) 00000000ff235b5c: ffff8801833872c8 (0xffff8801833872c8) 00000000c8bc9504: 0000000000000000 ... 000000001dc55cae: 0000000000005741 (0x5741) 000000000821f552: ffff880183387290 (0xffff880183387290) 0000000086ff769d: ffff8801833872b8 (0xffff8801833872b8) 000000000fe6cd9e: ffffffff813639c6 (do_page_fault+0xf6/0x8c0) 00000000705b6432: ffffffff815ea850 (debug_check_no_locks_freed+0x310/0x310) 00000000addd040e: ffff8801833873b0 (0xffff8801833873b0) 00000000287894f2: 0000000041b58ab3 (0x41b58ab3) 000000004fe01c29: ffffffff88bd7420 (regoff.34018+0x367b20/0x37a9c0) 00000000d3ffb17d: ffffffff813638d0 (vmalloc_sync_all+0x30/0x30) 000000002c9dfcd3: ffffed0030670e50 (0xffffed0030670e50) 000000002df33163: ffff880183387240 (0xffff880183387240) 000000007c57211f: ffff88010007a2c0 (0xffff88010007a2c0) 00000000f79ce519: ffff8801da867720 (0xffff8801da867720) 000000006ed38cff: 1ffff10000000000 (0x1ffff10000000000) 00000000616b5c6c: 1ffff10030670e3a (0x1ffff10030670e3a) 00000000ce091b26: 0000000000000282 (0x282) 000000005107408d: ffffffff8ab53e48 (obj_hash+0x25a88/0x100020) 00000000f377d6b8: ffffffff88f63800 (dev_attr_per_cpu+0x60/0x60) 00000000f8a48345: 0000000041b58ab3 (0x41b58ab3) 00000000fbc42bad: ffffffff88c599f8 (K512_4+0x6d538/0x12032c) 000000002090446c: ffffffff83608bc0 (debug_object_free+0x690/0x690) 0000000033c527d0: ffffffff88c03cc0 (K512_4+0x17800/0x12032c) 00000000456ef70c: ffffffff81a71580 (pcpu_balance_workfn+0x1700/0x1700) 000000007f3b0d66: 1ffff10030670e44 (0x1ffff10030670e44) 000000002a8848f6: ffff88010000007b (0xffff88010000007b) 0000000013252a2c: ffff8801a87decf0 (0xffff8801a87decf0) 00000000daafab01: ffff880186620f50 (0xffff880186620f50) 00000000d162e3ba: 1ffff10030670e4a (0x1ffff10030670e4a) 00000000850df224: 870923d16b442400 (0x870923d16b442400) 000000004995e0fa: 0000000000000090 (0x90) 000000004f6ab0bc: ffff8801a87ded1a (0xffff8801a87ded1a) 00000000c4033e44: 0000000000000082 (0x82) 000000002f419d61: 0000000000000001 (0x1) 000000002d2848df: 0000000000000000 ... 000000009bfb3f9d: ffff8801833872b0 (0xffff8801833872b0) 000000002343178a: ffffffff81007d20 (trace_hardirqs_off_thunk+0x1a/0x1c) 00000000339ba83f: 0000000000000000 ... 00000000ef02063e: 870923d16b442400 (0x870923d16b442400) 00000000699c6bab: 0000000000000001 (0x1) 00000000ae447851: 0000000000000000 ... 000000008ff2dd57: ffff8801833872c9 (0xffff8801833872c9) 00000000835e0191: ffffffff87a00fce (page_fault+0x1e/0x30) 00000000e56f4e4c: 0000000000000000 ... 00000000e15d7e31: ffffe8ff0005ff82 (0xffffe8ff0005ff82) 000000001b5aa4f8: 0000000010000000 (0x10000000) 00000000f6fc794f: 0000000000000000 ... 00000000f6dd1bd4: ffff8801a87de4c0 (0xffff8801a87de4c0) 0000000014e3cd62: 0000000000000001 (0x1) 000000003b8df20d: ffffc90007638000 (0xffffc90007638000) 000000007e124dc9: 1ffff10030670e73 (0x1ffff10030670e73) 00000000ad7a8c00: ffffffff811f4687 (vmx_vcpu_run+0x1307/0x2600) 000000005fff6ea9: 0000000000000005 (0x5) 0000000056135a8c: ffffffffffffffff (0xffffffffffffffff) 00000000f426dc44: ffffffff811f46a8 (vmx_vcpu_run+0x1328/0x2600) 00000000925cd7db: 0000000000000010 (0x10) 0000000091e00ef3: 0000000000010046 (0x10046) 00000000f5e95ec9: ffff880183387370 (0xffff880183387370) 00000000c687f210: 0000000000000018 (0x18) 0000000019982bda: 0000000000000001 (0x1) 000000005cc44570: ffff880183387398 (0xffff880183387398) 00000000af49d417: ffffffff815e9bb1 (trace_hardirqs_on_caller+0x421/0x5c0) 000000001f8a1656: ffffe8ffffd7a300 (0xffffe8ffffd7a300) 0000000092ce0b8b: 0000000000000282 (0x282) 000000002b67677f: ffff8801833873e0 (0xffff8801833873e0) 000000009f218d6a: ffffffff88f1a940 (kvmapf+0x660/0x660) 0000000009fcc4c3: 0000000000000000 ... 00000000df14c1d5: ffff8801a87ded10 (0xffff8801a87ded10) 00000000b0645a1f: 1ffff10000000000 (0x1ffff10000000000) 00000000e8cb3d5f: ffff8801a87ded18 (0xffff8801a87ded18) 000000002b7645fc: ffff8801a87decf0 (0xffff8801a87decf0) 00000000e01a043c: ffff8801a87dece8 (0xffff8801a87dece8) 000000003c704c98: ffff8801a87decf8 (0xffff8801a87decf8) 00000000d398d3a8: 1ffff10030670e7e (0x1ffff10030670e7e) 0000000064133811: ffffffff8a526c68 (chainhash_table+0x8328/0x40020) 00000000eca00ee9: ffff8801dae236a0 (0xffff8801dae236a0) 00000000d65d1de5: 1ffff10030670e86 (0x1ffff10030670e86) 000000002f4e1223: ffff8801dae236b0 (0xffff8801dae236b0) 00000000e2f94cea: ffff880183387418 (0xffff880183387418) 000000003e21da5f: ffffffff81b9c9a1 (kasan_check_read+0x11/0x20) 00000000a94b0e83: ffff8801833874b8 (0xffff8801833874b8) 000000000a3161e1: ffffffff8166786c (rcu_is_watching+0x8c/0x150) 000000002cd846e6: 0000000000000000 ... 00000000c7c0d603: 0000000041b58ab3 (0x41b58ab3) 00000000b2406c22: ffffffff88bd74fe (regoff.34018+0x367bfe/0x37a9c0) 0000000047cdae98: ffffffff8166b900 (rcu_pm_notify+0xc0/0xc0) 000000001d186997: ffffffffa87decf0 (0xffffffffa87decf0) 00000000ddcbfc24: ffff8801a87decf0 (0xffff8801a87decf0) 00000000da831953: ffffffff88f925a0 (rcu_callback_map+0x40/0x40) 0000000002c29380: 0000000000000082 (0x82) 00000000885e3c51: ffff8801a87de4c0 (0xffff8801a87de4c0) 00000000c7ff4f24: ffffffff88f925a0 (rcu_callback_map+0x40/0x40) 000000007e09708d: ffffea000608b000 (0xffffea000608b000) 0000000086600de2: 1ffff10030670ecb (0x1ffff10030670ecb) 000000008bccdd91: ffff8801833874b8 (0xffff8801833874b8) 000000006e94d24b: 0000000000000082 (0x82) 000000007f7795cf: ffff880183387698 (0xffff880183387698) 0000000037140483: 0000000000000003 (0x3) 0000000075cd2e91: ffff880183387698 (0xffff880183387698) 000000007ae5b5c7: 0000000000000000 ... 00000000cc9127fa: ffff8801833874d0 (0xffff8801833874d0) 000000009aeb7efc: ffffffff8165d448 (rcu_read_lock_sched_held+0x108/0x120) 000000007e908533: 1ffff10030670ea3 (0x1ffff10030670ea3) 0000000026a7d047: ffff8801833876c0 (0xffff8801833876c0) 000000009ccb7b8e: ffffffff819cf390 (__alloc_pages_nodemask+0xb10/0xdb0) 00000000d40fe537: 0000000041b58ab3 (0x41b58ab3) 000000003cfd80c3: ffffffff88bd77a4 (regoff.34018+0x367ea4/0x37a9c0) 0000000005e55a71: ffffffff81601ae0 (do_raw_spin_trylock+0x1c0/0x1c0) 00000000a0caaf61: 1ffff10030670ead (0x1ffff10030670ead) 00000000c3c9b00c: ffff880183387578 (0xffff880183387578) 000000000e35e07f: 0000000000000000 ... 00000000f8361c01: ffffffff00000005 (0xffffffff00000005) 00000000ea1a8de0: 0000000041b58ab3 (0x41b58ab3) 00000000e272dd50: ffffffff88c00aa8 (K512_4+0x145e8/0x12032c) 000000002d174dc3: ffffffff819ce880 (__alloc_pages_slowpath+0x2d90/0x2d90) 00000000449017fe: ffffffff816017e1 (do_raw_spin_lock+0xc1/0x200) 000000007f09cf4f: 870923d100000001 (0x870923d100000001) 00000000179deead: ffffc900158c3000 (0xffffc900158c3000) 00000000e4889078: ffffffff88eaed98 (kvm_count_lock+0x18/0x60) 00000000d3d4f84a: 0000000000000000 ... 00000000e216e8e1: 870923d16b442400 (0x870923d16b442400) 00000000fbd5b1ce: 1ffff10030670ec1 (0x1ffff10030670ec1) 000000002c00fc40: ffff8801a87decf8 (0xffff8801a87decf8) 00000000e28317e5: ffffffff88ffaae0 (numa_zonelist_order+0x40/0x40) 0000000059825597: ffffffff000652c0 (0xffffffff000652c0) 0000000053df568b: 0000000000000000 ... 00000000e15aeee7: ffff8801833875d0 (0xffff8801833875d0) 0000000050b6ae2a: ffffffff815e1eb6 (find_held_lock+0x36/0x1c0) 00000000787ab8c8: 0000000141b58ab3 (0x141b58ab3) 00000000fedb1280: ffff880183387628 (0xffff880183387628) 00000000a96313ea: 1ffff10030670ec1 (0x1ffff10030670ec1) 000000009b24e0b0: ffff8801833876e8 (0xffff8801833876e8) 00000000356aeaa1: ffff88021fffc510 (0xffff88021fffc510) 0000000012c2ccf4: ffff8801a87df508 (0xffff8801a87df508) 0000000010c51e90: ffff88021fffc510 (0xffff88021fffc510) 00000000ee7e0f47: 0000000200000000 (0x200000000) 00000000dd385e32: 0000000000000000 ... 00000000ccc28cd5: ffff880100000001 (0xffff880100000001) 00000000d90f8c1a: ffffffffa87decf0 (0xffffffffa87decf0) 0000000044b4128b: ffff8801a87decf0 (0xffff8801a87decf0) 000000001350303e: ffffffff88f925a0 (rcu_callback_map+0x40/0x40) 000000007c42e909: 0000000000000282 (0x282) 0000000049c7b774: ffff8801a87de4c0 (0xffff8801a87de4c0) 000000008bfefe02: ffffffff88f925a0 (rcu_callback_map+0x40/0x40) 0000000080329657: 0000000000000bfa (0xbfa) 00000000f1b8f494: 00000000ffffffff (0xffffffff) 00000000fb1377bc: ffff880183387660 (0xffff880183387660) 00000000317ab149: 0000000000000282 (0x282) 00000000ddc9d8dd: 0000000041b58ab3 (0x41b58ab3) 0000000064906c1d: 1ffff10030670ece (0x1ffff10030670ece) 000000003f621b44: 0000000000000000 ... 000000007782df84: 0000000000000020 (0x20) 0000000063fec696: 000000000003050f (0x3050f) 000000008310480d: ffff88021fffd838 (0xffff88021fffd838) 00000000165272c2: ffff880183387680 (0xffff880183387680) 000000008d605ef4: ffffffff81b9c9c4 (kasan_check_write+0x14/0x20) 00000000928c95d5: ffff8801833876c0 (0xffff8801833876c0) 00000000d18afc79: ffffffff81a5bb49 (__mod_node_page_state+0xa9/0xd0) 00000000d439fa37: 0000000000000082 (0x82) 00000000b1fb7610: ffff8801da802500 (0xffff8801da802500) 00000000ea623549: 00000000000492c0 (0x492c0) 00000000ee961006: 0000000000000020 (0x20) 00000000d416c651: ffff8801833876c0 (0xffff8801833876c0) 00000000566c331c: ffffffff81b9d391 (kasan_init_slab_obj+0x21/0x30) 000000009ea2b380: ffff880183387730 (0xffff880183387730) 00000000ac040054: ffffffff81b96c2f (cache_grow_begin+0x42f/0x710) 00000000cbe7fe65: ffff8801a87de4c0 (0xffff8801a87de4c0) 00000000c8555b63: ffffffff88c08764 (K512_4+0x1c2a4/0x12032c) 00000000401026fe: 0000000000000bfa (0xbfa) 00000000d8a717bc: 0000000000000082 (0x82) 000000005077a5cf: 000492c083387730 (0x492c083387730) 00000000dd686059: 870923d16b442400 (0x870923d16b442400) 00000000b0f70b39: 870923d16b442400 (0x870923d16b442400) 0000000024e1355a: 00000000006092c0 (0x6092c0) 000000007b05da9d: ffff8801da802500 (0xffff8801da802500) 00000000735225b9: ffff8801da802500 (0xffff8801da802500) 00000000ba855c13: ffff8801dae30258 (0xffff8801dae30258) 00000000228a0f97: 00000000ffffffff (0xffffffff) 00000000aaaf5577: ffff8801833877c0 (0xffff8801833877c0) 00000000ffb8aa82: ffffffff81b99a72 (kmem_cache_alloc_node_trace+0x692/0x770) 00000000cc911c81: ffffffff88bd6b27 (regoff.34018+0x367227/0x37a9c0) 00000000aeaed3db: ffffffff88eaed80 (vm_list+0x40/0x40) 000000000daa6568: ffff8801dae30258 (0xffff8801dae30258) 000000007bbf3786: 1ffff10030670ef0 (0x1ffff10030670ef0) 0000000019fbedee: 0000000083387770 (0x83387770) 00000000ada70d9a: ffffffff81b9c9a1 (kasan_check_read+0x11/0x20) 00000000f2effbde: ffff880183387808 (0xffff880183387808) 0000000053c87c7d: ffff880100000004 (0xffff880100000004) 00000000b153212b: 0000000000000282 (0x282) 00000000220173fc: 000000000000b410 (0xb410) 00000000d5680c34: 006092c000000000 (0x6092c000000000) 00000000de910757: ffff8801da802500 (0xffff8801da802500) 000000004a8976b4: 000000000000b410 (0xb410) 000000000ce69ee6: 00000000006092c0 (0x6092c0) 000000008ab4a3b2: 00000000ffffffff (0xffffffff) 00000000594425e2: ffffc900158c3000 (0xffffc900158c3000) 00000000bc38e510: ffff8801833877f0 (0xffff8801833877f0) 00000000101f6547: ffffffff81b99bf3 (__kmalloc_node+0x33/0x70) 0000000099ec8128: 00000000006080c0 (0x6080c0) 000000003092e506: 00000000006092c0 (0x6092c0) 000000009221e0d9: 000000000000b410 (0xb410) 00000000ca7e612f: 00000000ffffffff (0xffffffff) 000000007e176e95: ffff880183387820 (0xffff880183387820) 0000000052a11634: ffffffff81a54cc9 (kvmalloc_node+0xb9/0xf0) 00000000b6bedf12: ffff880183387be0 (0xffff880183387be0) 000000002dae8793: 0000000000000002 (0x2) 00000000685bd68e: 0000000000000000 ... 0000000009a8c0fc: 1ffff10030670f44 (0x1ffff10030670f44) 0000000084d858cf: ffff880183387c08 (0xffff880183387c08) 00000000dcc7d2cd: ffffffff8107e9c8 (kvm_dev_ioctl+0xf48/0x1b10) 00000000b7fa1fe9: ffff8801a87decf0 (0xffff8801a87decf0) 000000002fd5b0f1: 0000000000000082 (0x82) 00000000bb6ff72c: ffffffff00000001 (0xffffffff00000001) 000000001d41580e: ffffc900158c30c0 (0xffffc900158c30c0) 00000000f3c1ab0a: ffffc900158c3000 (0xffffc900158c3000) 00000000674f9c81: ffffed0030670f4c (0xffffed0030670f4c) 0000000034b89ad2: ffffc900158cc6a8 (0xffffc900158cc6a8) 00000000940fb5de: 0000000000000000 ... 0000000029ed418f: ffffc900158c30c0 (0xffffc900158c30c0) 00000000f4d3f475: 1ffff10030670f10 (0x1ffff10030670f10) 000000009ddfb381: 0000000041b58ab3 (0x41b58ab3) 000000003e0a74d0: ffffffff88bdc0e8 (regoff.34018+0x36c7e8/0x37a9c0) 0000000008dc9c90: ffffffff8107da80 (kvm_debugfs_release+0x90/0x90) 000000006724cf61: ffff8801a87de4c0 (0xffff8801a87de4c0) 00000000640f3840: 1ffff10030670f19 (0x1ffff10030670f19) 00000000f590efdf: ffff8801833878b8 (0xffff8801833878b8) 000000007d043dc6: ffffffff81b9c9a1 (kasan_check_read+0x11/0x20) 00000000d9a3b9fd: ffff880183387950 (0xffff880183387950) 00000000981066b4: 0000000041b58ab3 (0x41b58ab3) 000000003dfa6b87: ffffffff88bd6b27 (regoff.34018+0x367227/0x37a9c0) 000000001fca3826: ffffffff815e15b0 (graph_lock+0x170/0x170) 0000000020f0bd17: ffffffff81601ae0 (do_raw_spin_trylock+0x1c0/0x1c0) 00000000e94a0384: ffff880100000001 (0xffff880100000001) 000000008ae49ec5: 0000000000000001 (0x1) 00000000a2562632: ffffffff81293a80 (compat_start_thread+0x80/0x80) 00000000edc1e0ff: ffff8801a87de4c0 (0xffff8801a87de4c0) 00000000908322e7: ffffffff87921597 (_raw_spin_unlock_irq+0x27/0x70) 0000000043f0357b: ffff880186afc6c0 (0xffff880186afc6c0) 00000000bc185fa1: 0000000000000000 ... 00000000aa24fe75: dffffc0000000000 (0xdffffc0000000000) 0000000028424198: ffff880183387940 (0xffff880183387940) 000000009995f859: ffffffff815e9bb1 (trace_hardirqs_on_caller+0x421/0x5c0) 000000003d9e1c7b: ffff8801dae2c9c0 (0xffff8801dae2c9c0) 00000000dd468702: ffff8801a87de4c0 (0xffff8801a87de4c0) 0000000098196587: ffff880183387950 (0xffff880183387950) 0000000077b49826: ffffffff815e9d5d (trace_hardirqs_on+0xd/0x10) 000000000eda7668: 0000000000000000 ... 00000000ce1bc6cf: 870923d16b442400 (0x870923d16b442400) 00000000b701a5b6: 1ffff10030670f41 (0x1ffff10030670f41) 00000000dbfaf3d8: ffff8801a87decf8 (0xffff8801a87decf8) 000000006bdad68c: ffffffff88f92620 (rcu_bh_lock_map+0x40/0x40) 000000006481c051: ffffffff88f92620 (rcu_bh_lock_map+0x40/0x40) 000000000854b69e: 0000000000000000 ... 000000007817366b: ffff8801833879d0 (0xffff8801833879d0) 000000008b3f9973: ffffffff815e1eb6 (find_held_lock+0x36/0x1c0) 00000000b112b274: 0000000100000001 (0x100000001) 0000000077e1d361: ffff880183387a28 (0xffff880183387a28) 000000000b111f18: 1ffff10030670f41 (0x1ffff10030670f41) 000000008faf6126: ffff880183387ae8 (0xffff880183387ae8) 00000000e6a9e89e: ffffffff88f92620 (rcu_bh_lock_map+0x40/0x40) 00000000310f63af: ffff8801a87de4c0 (0xffff8801a87de4c0) 00000000eb6ec87e: ffff880183387a28 (0xffff880183387a28) 000000002e96186f: ffff880183387b10 (0xffff880183387b10) 00000000f7aa6751: 0000000000000282 (0x282) 0000000042c65978: 0000000000000000 ... 0000000008a49e66: ffff880100000001 (0xffff880100000001) 00000000cc5f7a12: ffff8801a87decf0 (0xffff8801a87decf0) 00000000bb220c38: 0000000000000282 (0x282) 0000000035dd4d47: ffffffff00000001 (0xffffffff00000001) 000000002e100b07: 0000000041b58ab3 (0x41b58ab3) 00000000c8a1634e: ffffffff88bf2cd8 (K512_4+0x6818/0x12032c) 00000000cb224c59: ffffffff815f0d60 (lock_downgrade+0x8f0/0x8f0) 0000000038253ea9: ffffc900158cc7c0 (0xffffc900158cc7c0) 000000002676b192: 0000000000000000 ... 00000000d43ac3ea: 0000000086afc6c0 (0x86afc6c0) 00000000c79dfd90: ffff8801dae236a0 (0xffff8801dae236a0) 0000000021092471: 1ffff10030670f4f (0x1ffff10030670f4f) 0000000011ae4e84: ffff8801dae236a0 (0xffff8801dae236a0) 0000000003ecfac3: 1ffff10030670f51 (0x1ffff10030670f51) 000000007d4c5acc: ffff8801dae236b0 (0xffff8801dae236b0) 000000006cc60fb1: ffff880183387a70 (0xffff880183387a70) 0000000011d4f35c: ffffffff81b9c9a1 (kasan_check_read+0x11/0x20) 00000000daac4ae6: ffff880183387b10 (0xffff880183387b10) 00000000fcd24adf: ffffffff8166786c (rcu_is_watching+0x8c/0x150) 0000000059da8994: ffff880183387ad0 (0xffff880183387ad0) 0000000058c613b4: 0000000041b58ab3 (0x41b58ab3) 00000000fb2cb654: ffffffff88bd77a4 (regoff.34018+0x367ea4/0x37a9c0) 000000008f26d708: ffffffff816677e0 (rcu_report_qs_rnp+0x7a0/0x7a0) 00000000a5b89bb7: ffffffff88f92620 (rcu_bh_lock_map+0x40/0x40) 0000000089d31af2: 0000000000000000 ... 000000004dfa944e: ffff8801a87de4c0 (0xffff8801a87de4c0) 0000000007272fc8: ffffffff88f92620 (rcu_bh_lock_map+0x40/0x40) 0000000019305b5f: ffff880183387c48 (0xffff880183387c48) 000000009800e185: ffff8801b4402800 (0xffff8801b4402800) 000000003f8e4114: ffff880183387b00 (0xffff880183387b00) 000000003d2e08ed: 0000000000000282 (0x282) 000000000050c658: 870923d16b442400 (0x870923d16b442400) 000000003222cc8c: 0000000000000001 (0x1) 00000000d73af253: ffff8801c72dadb0 (0xffff8801c72dadb0) 00000000bed55a89: dffffc0000000000 (0xdffffc0000000000) 00000000f5df9f94: ffff880183387c48 (0xffff880183387c48) 00000000bfc25be4: 0000000000000001 (0x1) 00000000e41b6b9f: ffff880183387c70 (0xffff880183387c70) 000000002ac5c352: ffffffff81cc7a94 (__fget+0x414/0x670) 00000000b07277dd: ffff880183387bc8 (0xffff880183387bc8) 00000000b93c2250: 1ffff10030670f6d (0x1ffff10030670f6d) 00000000eee8e8b8: 0000001700004000 (0x1700004000) 00000000c6a166a3: ffff8801b4402850 (0xffff8801b4402850) 00000000a95ed85b: ffff8801c72dad40 (0xffff8801c72dad40) 0000000099e84ba4: ffff8801b4402800 (0xffff8801b4402800) 0000000025776fc7: ffffffff8ac13201 (obj_hash+0xe4e41/0x100020) 00000000d3156a4c: ffff880183387c08 (0xffff880183387c08) 000000005c72b2f7: ffffed0030670f79 (0xffffed0030670f79) 000000002f26ae4b: 0000000041b58ab3 (0x41b58ab3) 0000000006ed7ace: ffffffff88bd73f8 (regoff.34018+0x367af8/0x37a9c0) 000000008ff2ac91: ffffffff81cc7680 (expand_files.part.8+0x9c0/0x9c0) 00000000becec3b5: 0000000000000082 (0x82) 000000003621b7c0: 0000000000000001 (0x1) 0000000017928ff0: 0000000000000000 ... 0000000046f7ce5e: ffff880183387ba8 (0xffff880183387ba8) 00000000c8b6f7ee: ffffffff815e0f8d (trace_hardirqs_off+0xd/0x10) 00000000d855d419: ffff880183387bc8 (0xffff880183387bc8) 000000006496fb46: ffffffff87921a23 (_raw_spin_unlock_irqrestore+0x63/0xc0) 000000003f98a7aa: ffffffff8ac13248 (obj_hash+0xe4e88/0x100020) 000000009deacd59: 0000000000000000 ... 00000000541144da: ffff8801ce0c2200 (0xffff8801ce0c2200) 00000000d8af7804: ffff880183387c08 (0xffff880183387c08) 00000000dd1c70ea: 870923d16b442400 (0x870923d16b442400) 00000000f01698a6: ffff8801c72dad40 (0xffff8801c72dad40) 00000000d9d4edf6: 1ffff10030670f8a (0x1ffff10030670f8a) 00000000cb3a26c6: ffffffff8107da80 (kvm_debugfs_release+0x90/0x90) 000000005b752390: ffff8801d4323b60 (0xffff8801d4323b60) 00000000e6fe73fb: 000000000000ae01 (0xae01) 000000008d385239: ffff880183387db8 (0xffff880183387db8) 000000007d35743f: ffffffff81c9353e (do_vfs_ioctl+0x1de/0x1720) 000000002f1ab74f: 870923d16b442400 (0x870923d16b442400) 000000001a570c94: ffff8801a87de4c0 (0xffff8801a87de4c0) 000000006a7a4bc2: dffffc0000000000 (0xdffffc0000000000) 0000000073d6142e: 1ffff10030670f8e (0x1ffff10030670f8e) 00000000e696946e: fffffbfff11e35fe (0xfffffbfff11e35fe) 00000000f82f1515: 870923d100002000 (0x870923d100002000) 00000000ea754bc6: 0000000000000000 ... 00000000a6a44602: 0000000041b58ab3 (0x41b58ab3) 0000000001845576: ffffffff88c0bae0 (K512_4+0x1f620/0x12032c) 00000000102900a8: ffffffff81c93360 (ioctl_preallocate+0x300/0x300) 00000000cfe2e716: ffff8801b4402800 (0xffff8801b4402800) 0000000090776acb: ffff880183387da0 (0xffff880183387da0) 00000000bf4aa36c: ffffffff81cc8027 (__fget_light+0x2f7/0x440) 00000000d5be4ceb: ffffffff8790b320 (__schedule+0x1ed0/0x1ed0) 000000008bea54c1: 0000400000000282 (0x400000000282) 00000000ce6fc9a7: ffff880100000003 (0xffff880100000003) 000000009c8bc0c2: 0000000041b58ab3 (0x41b58ab3) 0000000057d4fa1f: ffffffff88bd9160 (regoff.34018+0x369860/0x37a9c0) 00000000799bcb78: ffffffff81cc7d30 (fget_raw+0x20/0x20) 0000000044fc2074: ffff880183387cc8 (0xffff880183387cc8) 000000005f46fd02: ffffffff00000003 (0xffffffff00000003) 00000000e73a4cfc: ffff88018e868580 (0xffff88018e868580) 00000000bfc57eab: ffff880183387cf8 (0xffff880183387cf8) 00000000b9b83bd4: ffffffff81b9a32c (kmem_cache_free+0x25c/0x2d0) 000000000e583b4c: ffff88018e8685a0 (0xffff88018e8685a0) 00000000f5ad7835: 870923d16b442400 (0x870923d16b442400) 0000000016dcb61d: 1ffff10030670fab (0x1ffff10030670fab) 0000000028b34d99: 0000000000000001 (0x1) 0000000022d950a7: 0000000000000000 ... 000000009fe1edc7: ffff8801a87decf0 (0xffff8801a87decf0) 000000007e7d107e: ffff880183387e20 (0xffff880183387e20) 00000000be0f3efe: ffff880183387e20 (0xffff880183387e20) 0000000056e519d3: ffff8801a87de4c0 (0xffff8801a87de4c0) 00000000b3cfd6f5: ffffffff8100ab9c (exit_to_usermode_loop+0x8c/0x370) 00000000a338cd4f: ffff880183387df8 (0xffff880183387df8) 000000000c86de04: fffffbfff11e35fe (0xfffffbfff11e35fe) 0000000016a66ced: 1ffff10030670fdc (0x1ffff10030670fdc) 0000000080c4c11e: 0000000000000082 (0x82) 00000000b46c6993: 0000000000000000 ... 00000000b1612bdf: dffffc0000000000 (0xdffffc0000000000) 00000000ad6f27f6: ffff880183387df8 (0xffff880183387df8) 00000000981ded13: ffff880183387d78 (0xffff880183387d78) 000000006f99ee24: 870923d16b442400 (0x870923d16b442400) 00000000b356cce9: ffff880183387db8 (0xffff880183387db8) 000000000153bc5a: ffffffff83199b04 (security_file_ioctl+0x94/0xc0) 00000000c1ae15b1: 870923d16b442400 (0x870923d16b442400) 00000000af4d86ba: ffff8801c72dad41 (0xffff8801c72dad41) 00000000de490011: ffff8801c72dad40 (0xffff8801c72dad40) 00000000ed73b30b: 0000000000000000 ... 00000000e1b710ac: 0000000000000017 (0x17) 00000000677b2d3e: 0000000000000000 ... 00000000f7be49f3: ffff880183387df8 (0xffff880183387df8) 00000000f2d94922: ffffffff81c94b29 (ksys_ioctl+0xa9/0xd0) 0000000085e484f1: 0000ae01a87de4c0 (0xae01a87de4c0) 000000002141fd67: ffff880183387f58 (0xffff880183387f58) 00000000fa4496ff: 1ffff10030670fc8 (0x1ffff10030670fc8) 00000000f942142f: ffff880183387f20 (0xffff880183387f20) 00000000353d268d: ffff880183387f58 (0xffff880183387f58) 00000000aaa9d76d: dffffc0000000000 (0xdffffc0000000000) 000000006fbc3bb3: ffff880183387e20 (0xffff880183387e20) 000000005ebee354: ffffffff81c94bc3 (__x64_sys_ioctl+0x73/0xb0) 000000002baa4ae4: 1ffff10030670fc8 (0x1ffff10030670fc8) 00000000458ae169: ffff880183387e20 (0xffff880183387e20) 00000000b1b3c963: 0000000000000010 (0x10) 00000000e84f9234: ffff880183387f48 (0xffff880183387f48) 00000000c9931975: ffffffff8100c4d9 (do_syscall_64+0x1b9/0x820) 00000000209059d0: ffffffff8100ab10 (syscall_slow_exit_work+0x500/0x500) 00000000b557ec81: 0000000000000000 ... 0000000050e6156a: 0000000041b58ab3 (0x41b58ab3) 000000000fd9a1ef: ffffffff88bd73f8 (regoff.34018+0x367af8/0x37a9c0) 0000000081ad6965: ffffffff8100c320 (syscall_return_slowpath+0x5e0/0x5e0) 0000000076fa93fe: ffff880183387e68 (0xffff880183387e68) 0000000059c4a2a7: 0000000000000000 ... 00000000af6de17d: ffff880183387f48 (0xffff880183387f48) 000000004adc8260: ffffffff8100c05d (syscall_return_slowpath+0x31d/0x5e0) 0000000015e31c5a: 870923d16b442400 (0x870923d16b442400) 0000000041c203e2: ffff8801a87de4c0 (0xffff8801a87de4c0) 00000000498e6963: 0000000000000008 (0x8) 000000001dbf70f5: ffff8801a87decf0 (0xffff8801a87decf0) 00000000e0ace429: ffff880183387ea8 (0xffff880183387ea8) 00000000b0d3c5bf: 0000000000000008 (0x8) 000000008d5ced9c: ffff8801a87de4c0 (0xffff8801a87de4c0) 000000008bddc84f: ffffffff87a0009d (entry_SYSCALL_64_after_hwframe+0x59/0xbe) 000000007027075e: 0000000000000000 ... 00000000851f2da5: 0000000000000082 (0x82) 0000000069b5d519: 0000000000000000 ... 00000000ca506445: ffff880183387f48 (0xffff880183387f48) 00000000eb429898: ffffffff81007d20 (trace_hardirqs_off_thunk+0x1a/0x1c) 00000000fef4f1e3: 0000000000000000 ... 0000000099969ea9: 870923d16b442400 (0x870923d16b442400) 0000000064adc24a: 0000000000000000 ... 0000000023ccd930: ffffffff87a0008d (entry_SYSCALL_64_after_hwframe+0x49/0xbe) 0000000010b4ff52: 0000000000000000 ... 0000000063d27b15: 00000000004cbc20 (0x4cbc20) 00000000afc8a3d0: 00000000004bd90f (0x4bd90f) 0000000089f1ce4c: 00000000ffffffff (0xffffffff) 000000001b07a8d1: 000000000072bea0 (0x72bea0) 000000005cb92a29: 00007f92ac87d6d4 (0x7f92ac87d6d4) 00000000f83ae625: 0000000000000246 (0x246) 00000000f40127c1: 0000000000000000 ... 00000000aaecb768: ffffffffffffffda (0xffffffffffffffda) 000000000233d40a: 0000000000455b29 (0x455b29) 0000000052db8f88: 0000000000000000 ... 000000008beecf1e: 000000000000ae01 (0xae01) 00000000a330cdad: 0000000000000017 (0x17) 0000000091c2fe1a: 0000000000000010 (0x10) 00000000115a0995: 0000000000455b29 (0x455b29) 000000008ef70a97: 0000000000000033 (0x33) 000000009a44e08d: 0000000000000246 (0x246) 00000000b524745f: 00007f92ac87cc68 (0x7f92ac87cc68) 00000000c8712d8a: 000000000000002b (0x2b) BUG: unable to handle kernel paging request at 0000000000005741 PGD 184de7067 P4D 184de7067 PUD 184de4067 PMD 0 Oops: 0000 [#1] SMP KASAN CPU: 0 PID: 17421 Comm: syz-executor7 Tainted: G W 4.18.0-rc1+ #110 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 RIP: 0010:msr_write_intercepted arch/x86/kvm/vmx.c:2327 [inline] RIP: 0010:vmx_vcpu_run+0x1328/0x2600 arch/x86/kvm/vmx.c:10149 Code: 91 00 00 00 e8 39 c8 5c 00 48 8b 54 24 08 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 8c 10 00 00 48 8b 04 24 <48> 8b 98 40 57 00 00 48 b8 00 00 00 00 00 fc ff df 48 8d 7b 40 48 RSP: 0018:ffff880183387370 EFLAGS: 00010046 RAX: 0000000000000001 RBX: 0000000010000000 RCX: ffffc90007638000 RDX: 1ffff10030670e73 RSI: ffffffff811f4687 RDI: 0000000000000005 RBP: ffffe8ff0005ff82 R08: ffff8801a87de4c0 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 FS: 00007f92ac87d700(0000) GS:ffff8801dae00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000000000005741 CR3: 00000001b845b000 CR4: 00000000001426f0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: Modules linked in: Dumping ftrace buffer: (ftrace buffer empty) CR2: 0000000000005741 ---[ end trace 20865055408f2db7 ]--- RIP: 0010:msr_write_intercepted arch/x86/kvm/vmx.c:2327 [inline] RIP: 0010:vmx_vcpu_run+0x1328/0x2600 arch/x86/kvm/vmx.c:10149 Code: 91 00 00 00 e8 39 c8 5c 00 48 8b 54 24 08 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 8c 10 00 00 48 8b 04 24 <48> 8b 98 40 57 00 00 48 b8 00 00 00 00 00 fc ff df 48 8d 7b 40 48 RSP: 0018:ffff880183387370 EFLAGS: 00010046 RAX: 0000000000000001 RBX: 0000000010000000 RCX: ffffc90007638000 RDX: 1ffff10030670e73 RSI: ffffffff811f4687 RDI: 0000000000000005 RBP: ffffe8ff0005ff82 R08: ffff8801a87de4c0 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 FS: 00007f92ac87d700(0000) GS:ffff8801dae00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000000000005741 CR3: 00000001b845b000 CR4: 00000000001426f0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400