binder: 24991:24998 ERROR: BC_REGISTER_LOOPER called without request binder: 24991:24998 ERROR: BC_ENTER_LOOPER called after BC_REGISTER_LOOPER kasan: GPF could be caused by NULL-ptr deref or user memory access general protection fault: 0000 [#1] PREEMPT SMP KASAN Modules linked in: CPU: 0 PID: 24984 Comm: syz-executor.1 Not tainted 4.4.174+ #4 task: ffff8801d97f5f00 task.stack: ffff8801cb448000 RIP: 0010:[] [] file_end_write include/linux/fs.h:2555 [inline] RIP: 0010:[] [] aio_run_iocb+0x532/0x6f0 fs/aio.c:1480 RSP: 0018:ffff8801cb44fbc0 EFLAGS: 00010246 RAX: dffffc0000000000 RBX: fffffffffffffdef RCX: ffffc90002d77000 RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8801d97f6f60 RBP: ffff8801cb44fd78 R08: 0000000000000000 R09: 0000000000000001 R10: 0000000000000000 R11: 0000000000000000 R12: ffff8800b3503180 R13: 1ffff10039689f7e R14: 0000000000000000 R15: ffff8800b7dc8c20 FS: 00007fa25ae7b700(0000) GS:ffff8801db600000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000000002500318 CR3: 00000001d84c0000 CR4: 00000000001606b0 Stack: ffff8801d97f67c8 ffffffff8154fcc0 0000000000000002 ffff880100000001 00000000fffffcdd 0000000020000000 0000000041b58ab3 ffffffff82c5ee80 ffffffff8157f8d0 ffff8801d97f67b8 0000000041b58ab3 ffffffff82c4d560 Call Trace: [] io_submit_one fs/aio.c:1579 [inline] [] do_io_submit+0x639/0xf10 fs/aio.c:1637 [] SYSC_io_submit fs/aio.c:1662 [inline] [] SyS_io_submit+0x28/0x30 fs/aio.c:1659 [] entry_SYSCALL_64_fastpath+0x1e/0x9a Code: ea 03 48 b8 00 00 00 00 00 fc ff df 80 3c 02 00 0f 85 7c 01 00 00 48 b8 00 00 00 00 00 fc ff df 4d 8b 76 20 4c 89 f2 48 c1 ea 03 <0f> b6 04 02 84 c0 74 08 3c 01 0f 8e 64 01 00 00 41 0f b7 06 66 RIP [] file_end_write include/linux/fs.h:2555 [inline] RIP [] aio_run_iocb+0x532/0x6f0 fs/aio.c:1480 RSP ---[ end trace c5e43fd821ab6b1a ]---