drm_fbdev_generic_client_hotplug+0x1a7/0x270 drivers/gpu/drm/drm_fbdev_generic.c:279 drm_client_register+0x195/0x280 drivers/gpu/drm/drm_client.c:149 drm_fbdev_generic_setup+0x11c/0x330 drivers/gpu/drm/drm_fbdev_generic.c:341 vkms_create drivers/gpu/drm/vkms/vkms_drv.c:226 [inline] vkms_init+0x625/0x760 drivers/gpu/drm/vkms/vkms_drv.c:252 do_one_initcall+0x117/0x630 init/main.c:1232 do_initcall_level init/main.c:1294 [inline] do_initcalls init/main.c:1310 [inline] do_basic_setup init/main.c:1329 [inline] kernel_init_freeable+0x5c2/0x8f0 init/main.c:1547 page_owner free stack trace missing ------------[ cut here ]------------ kernel BUG at mm/memory.c:2944! invalid opcode: 0000 [#1] PREEMPT SMP KASAN CPU: 1 PID: 30881 Comm: syz-executor.4 Not tainted 6.6.0-rc1-syzkaller-00115-g9fdfb15a3dbf #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023 RIP: 0010:do_page_mkwrite+0x2d6/0x380 mm/memory.c:2944 Code: 7c 24 18 00 74 5c e8 69 42 c0 ff 81 cd 00 02 00 00 e9 5f ff ff ff e8 59 42 c0 ff 48 c7 c6 a0 3d 99 8a 4c 89 e7 e8 1a 5c fe ff <0f> 0b 4c 89 ef e8 50 07 16 00 e9 55 fd ff ff 4c 89 ef e8 e3 07 16 RSP: 0018:ffffc900149a7bc0 EFLAGS: 00010293 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 RDX: ffff88803c421dc0 RSI: ffffffff81c78c36 RDI: 0000000000000000 RBP: 0000000000000200 R08: 0000000000000000 R09: fffffbfff1d9c4b2 R10: ffffffff8ece2597 R11: 0000000000000800 R12: ffffea000071b240 R13: ffffc900149a7dc0 R14: 0000000000000a55 R15: 0000000000000000 FS: 0000555555655480(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007fc942177978 CR3: 00000000a0374000 CR4: 0000000000350ee0 Call Trace: wp_page_shared mm/memory.c:3291 [inline] do_wp_page+0xc66/0x34c0 mm/memory.c:3376 handle_pte_fault mm/memory.c:4994 [inline] __handle_mm_fault+0x1d20/0x3e20 mm/memory.c:5119 handle_mm_fault+0x47a/0xa00 mm/memory.c:5284 do_user_addr_fault+0x3d1/0x1010 arch/x86/mm/fault.c:1413 handle_page_fault arch/x86/mm/fault.c:1505 [inline] exc_page_fault+0x5c/0xd0 arch/x86/mm/fault.c:1561 asm_exc_page_fault+0x26/0x30 arch/x86/include/asm/idtentry.h:570 RIP: 0033:0x7fd47ae5d408 Code: fc 89 37 c3 c5 fa 6f 06 c5 fa 6f 4c 16 f0 c5 fa 7f 07 c5 fa 7f 4c 17 f0 c3 66 0f 1f 84 00 00 00 00 00 48 8b 4c 16 f8 48 8b 36 <48> 89 37 48 89 4c 17 f8 c3 c5 fe 6f 54 16 e0 c5 fe 6f 5c 16 c0 c5 RSP: 002b:00007ffd3b3bb9e8 EFLAGS: 00010246 RAX: 0000000020000180 RBX: 00007ffd3b3bbaf8 RCX: 0070616d65676170 RDX: 0000000000000008 RSI: 0070616d65676170 RDI: 0000000020000180 RBP: 0000000000000032 R08: 00007fd47ae00000 R09: 0000000000000ff6 R10: 0000000081c79f89 R11: 0000000000000246 R12: 00007fd47aa00578 R13: fffffffffffffffe R14: 00007fd47aa00000 R15: 00007fd47aa00580 Modules linked in: ---[ end trace 0000000000000000 ]--- RIP: 0010:do_page_mkwrite+0x2d6/0x380 mm/memory.c:2944 Code: 7c 24 18 00 74 5c e8 69 42 c0 ff 81 cd 00 02 00 00 e9 5f ff ff ff e8 59 42 c0 ff 48 c7 c6 a0 3d 99 8a 4c 89 e7 e8 1a 5c fe ff <0f> 0b 4c 89 ef e8 50 07 16 00 e9 55 fd ff ff 4c 89 ef e8 e3 07 16 RSP: 0018:ffffc900149a7bc0 EFLAGS: 00010293 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 RDX: ffff88803c421dc0 RSI: ffffffff81c78c36 RDI: 0000000000000000 RBP: 0000000000000200 R08: 0000000000000000 R09: fffffbfff1d9c4b2 R10: ffffffff8ece2597 R11: 0000000000000800 R12: ffffea000071b240 R13: ffffc900149a7dc0 R14: 0000000000000a55 R15: 0000000000000000 FS: 0000555555655480(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007fc942177978 CR3: 00000000a0374000 CR4: 0000000000350ee0