QAT: Invalid ioctl kasan: CONFIG_KASAN_INLINE enabled kasan: GPF could be caused by NULL-ptr deref or user memory access general protection fault: 0000 [#1] SMP KASAN QAT: Invalid ioctl Dumping ftrace buffer: (ftrace buffer empty) Modules linked in: CPU: 0 PID: 4949 Comm: syz-executor5 Not tainted 4.14.0-rc8+ #77 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 task: ffff8801c64b66c0 task.stack: ffff8801ca500000 RIP: 0010:fanout_demux_rollover+0xb6/0x4d0 net/packet/af_packet.c:1392 RSP: 0018:ffff8801db2058e8 EFLAGS: 00010246 RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000002 RDX: 0000000000000000 RSI: ffff8801c64b70a8 RDI: ffffffff85cc66d8 RBP: ffff8801db205948 R08: 1ffff1003b640ade R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000000 R12: ffff880195216800 R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000001 FS: 0000000000000000(0000) GS:ffff8801db200000(0063) knlGS:00000000f7746b40 CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 CR2: 0000000020594000 CR3: 00000001d4d0c000 CR4: 00000000001426f0 DR0: 0000000020000000 DR1: 0000000020000008 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000600 Call Trace: packet_rcv_fanout+0x649/0x7c8 net/packet/af_packet.c:1487 deliver_skb net/core/dev.c:1859 [inline] dev_queue_xmit_nit+0x2d4/0xc10 net/core/dev.c:1915 xmit_one net/core/dev.c:2975 [inline] dev_hard_start_xmit+0x16b/0xac0 net/core/dev.c:2995 __dev_queue_xmit+0x17a4/0x2050 net/core/dev.c:3476 dev_queue_xmit+0x17/0x20 net/core/dev.c:3509 neigh_hh_output include/net/neighbour.h:472 [inline] neigh_output include/net/neighbour.h:480 [inline] ip_finish_output2+0xece/0x1460 net/ipv4/ip_output.c:229 ip_finish_output+0x85e/0xd10 net/ipv4/ip_output.c:317 NF_HOOK_COND include/linux/netfilter.h:239 [inline] ip_output+0x1cc/0x860 net/ipv4/ip_output.c:405 dst_output include/net/dst.h:459 [inline] ip_local_out+0x95/0x160 net/ipv4/ip_output.c:124 ip_queue_xmit+0x8c6/0x18e0 net/ipv4/ip_output.c:504 tcp_transmit_skb+0x19a1/0x3450 net/ipv4/tcp_output.c:1125 tcp_send_ack.part.34+0x386/0x610 net/ipv4/tcp_output.c:3557 tcp_send_ack+0x49/0x60 net/ipv4/tcp_output.c:3527 tcp_send_dupack+0xc1/0x370 net/ipv4/tcp_input.c:4165 tcp_validate_incoming+0x49c/0x1390 net/ipv4/tcp_input.c:5237 tcp_rcv_established+0x65f/0x1890 net/ipv4/tcp_input.c:5495 tcp_v4_do_rcv+0x2ab/0x7d0 net/ipv4/tcp_ipv4.c:1464 tcp_v4_rcv+0x249f/0x2f20 net/ipv4/tcp_ipv4.c:1725 ip_local_deliver_finish+0x2e2/0xba0 net/ipv4/ip_input.c:216 NF_HOOK include/linux/netfilter.h:250 [inline] ip_local_deliver+0x1ce/0x6e0 net/ipv4/ip_input.c:257 dst_input include/net/dst.h:465 [inline] ip_rcv_finish+0x887/0x19a0 net/ipv4/ip_input.c:397 NF_HOOK include/linux/netfilter.h:250 [inline] ip_rcv+0xc3f/0x17d0 net/ipv4/ip_input.c:493 __netif_receive_skb_core+0x19af/0x33d0 net/core/dev.c:4428 __netif_receive_skb+0x2c/0x1b0 net/core/dev.c:4466 process_backlog+0x203/0x740 net/core/dev.c:5144 napi_poll net/core/dev.c:5542 [inline] net_rx_action+0x792/0x1910 net/core/dev.c:5608 __do_softirq+0x2d7/0xb85 kernel/softirq.c:284 invoke_softirq kernel/softirq.c:364 [inline] irq_exit+0x1cc/0x200 kernel/softirq.c:405 exiting_irq arch/x86/include/asm/apic.h:638 [inline] smp_apic_timer_interrupt+0x177/0x710 arch/x86/kernel/apic/apic.c:1059 apic_timer_interrupt+0x9d/0xb0 arch/x86/entry/entry_64.S:771 RIP: 0010:arch_local_irq_restore arch/x86/include/asm/paravirt.h:778 [inline] RIP: 0010:lock_acquire+0x256/0x580 kernel/locking/lockdep.c:3997 RSP: 0018:ffff8801ca506de0 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff10 RAX: dffffc0000000000 RBX: ffff8801c64b66c0 RCX: 0000000000000000 RDX: 1ffffffff0b98cd9 RSI: 00000000b5f53574 RDI: 0000000000000282 RBP: ffff8801ca506ed8 R08: 1ffff100394a0d1f R09: 0000000000000002 R10: ffff8801ca506dc0 R11: 0000000000000000 R12: 1ffff100394a0dc2 R13: 0000000000000000 R14: 0000000000000002 R15: 0000000000000000 rcu_lock_acquire include/linux/rcupdate.h:244 [inline] rcu_read_lock include/linux/rcupdate.h:631 [inline] __is_insn_slot_addr+0xb4/0x330 kernel/kprobes.c:293 is_kprobe_optinsn_slot include/linux/kprobes.h:344 [inline] kernel_text_address+0x11b/0x140 kernel/extable.c:148 __kernel_text_address+0xd/0x40 kernel/extable.c:105 unwind_get_return_address+0x61/0xa0 arch/x86/kernel/unwind_frame.c:18 __save_stack_trace+0x7e/0xd0 arch/x86/kernel/stacktrace.c:45 save_stack_trace+0x16/0x20 arch/x86/kernel/stacktrace.c:59 save_stack+0x43/0xd0 mm/kasan/kasan.c:447 set_track mm/kasan/kasan.c:459 [inline] kasan_kmalloc+0xad/0xe0 mm/kasan/kasan.c:551 kasan_slab_alloc+0x12/0x20 mm/kasan/kasan.c:489 kmem_cache_alloc+0x12e/0x760 mm/slab.c:3562 kmem_cache_zalloc include/linux/slab.h:657 [inline] mmu_topup_memory_cache arch/x86/kvm/mmu.c:851 [inline] mmu_topup_memory_caches+0xd2/0x310 arch/x86/kvm/mmu.c:897 kvm_mmu_load+0x21/0xf90 arch/x86/kvm/mmu.c:4639 kvm_mmu_reload arch/x86/kvm/mmu.h:86 [inline] vcpu_enter_guest arch/x86/kvm/x86.c:6903 [inline] vcpu_run arch/x86/kvm/x86.c:7100 [inline] kvm_arch_vcpu_ioctl_run+0x2e40/0x5c70 arch/x86/kvm/x86.c:7270 kvm_vcpu_ioctl+0x64c/0x1010 arch/x86/kvm/../../../virt/kvm/kvm_main.c:2551 kvm_vcpu_compat_ioctl+0x3c1/0x4c0 arch/x86/kvm/../../../virt/kvm/kvm_main.c:2749 C_SYSC_ioctl fs/compat_ioctl.c:1594 [inline] compat_SyS_ioctl+0x1d7/0x3290 fs/compat_ioctl.c:1541 do_syscall_32_irqs_on arch/x86/entry/common.c:329 [inline] do_fast_syscall_32+0x3f2/0xf05 arch/x86/entry/common.c:391 entry_SYSENTER_compat+0x51/0x60 arch/x86/entry/entry_64_compat.S:125 RIP: 0023:0xf7f4ac79 RSP: 002b:00000000f774601c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 RAX: ffffffffffffffda RBX: 0000000000000019 RCX: 000000000000ae80 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 Code: df 48 c1 ea 03 80 3c 02 00 0f 85 f8 03 00 00 48 8b 45 c0 48 8b 98 08 07 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 <0f> b6 04 02 84 c0 74 08 3c 03 0f 8e ee 03 00 00 45 8d 77 ff 44 RIP: fanout_demux_rollover+0xb6/0x4d0 net/packet/af_packet.c:1392 RSP: ffff8801db2058e8 ---[ end trace 235d7bdbbd47bb97 ]---