Warning: Permanently added '[localhost]:26417' (ED25519) to the list of known hosts. 1970/01/01 00:24:24 parsed 1 programs [ 1619.429295][ T4394] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 1792.031836][ T4628] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1792.192687][ T4628] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1808.004977][ T4628] hsr_slave_0: entered promiscuous mode [ 1808.033966][ T4628] hsr_slave_1: entered promiscuous mode [ 1814.052463][ T4628] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 1814.158855][ T4628] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 1814.422951][ T4628] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 1814.520656][ T4628] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 1823.755229][ T4628] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1855.174853][ T4628] veth0_vlan: entered promiscuous mode [ 1855.564874][ T4628] veth1_vlan: entered promiscuous mode [ 1856.784418][ T4628] veth0_macvtap: entered promiscuous mode [ 1856.985192][ T4628] veth1_macvtap: entered promiscuous mode [ 1858.744831][ T4412] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1858.753498][ T4412] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1858.790562][ T4412] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1858.793140][ T4412] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 1970/01/01 00:31:00 executed programs: 0 [ 1870.093295][ T3357] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1870.912713][ T3357] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1872.130440][ T3357] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1873.412749][ T3357] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1883.401841][ T3357] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1883.525440][ T3357] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1883.600863][ T3357] bond0 (unregistering): Released all slaves [ 1885.222418][ T3357] hsr_slave_0: left promiscuous mode [ 1885.295473][ T3357] hsr_slave_1: left promiscuous mode [ 1885.630957][ T3357] veth1_macvtap: left promiscuous mode [ 1885.632898][ T3357] veth0_macvtap: left promiscuous mode [ 1885.669377][ T3357] veth1_vlan: left promiscuous mode [ 1885.672039][ T3357] veth0_vlan: left promiscuous mode [ 1936.653542][ T5080] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1937.690163][ T5080] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1937.974730][ T5078] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1939.098006][ T5078] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1963.974981][ T5080] hsr_slave_0: entered promiscuous mode [ 1964.429417][ T5080] hsr_slave_1: entered promiscuous mode [ 1969.160814][ T5078] hsr_slave_0: entered promiscuous mode [ 1969.253881][ T5078] hsr_slave_1: entered promiscuous mode [ 1969.301169][ T5078] debugfs: 'hsr0' already exists in 'hsr' [ 1969.303123][ T5078] Cannot create hsr debugfs directory [ 1986.704021][ T5080] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 1986.960521][ T5080] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 1987.898269][ T5080] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 1988.175906][ T5080] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 1994.513721][ T5078] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 1994.660249][ T5078] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 1994.877589][ T5078] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 1995.105718][ T5078] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 2008.681485][ T5080] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2014.031664][ T5078] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2072.404063][ T5080] veth0_vlan: entered promiscuous mode [ 2072.834771][ T5080] veth1_vlan: entered promiscuous mode [ 2075.673608][ T5080] veth0_macvtap: entered promiscuous mode [ 2076.080928][ T5080] veth1_macvtap: entered promiscuous mode [ 2079.969581][ T5101] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2080.009812][ T5101] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2080.030835][ T4785] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2080.122367][ T27] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2083.972454][ T5078] veth0_vlan: entered promiscuous mode [ 2085.021842][ T5078] veth1_vlan: entered promiscuous mode 1970/01/01 00:34:45 executed programs: 4 [ 2087.875436][ T5078] veth0_macvtap: entered promiscuous mode [ 2088.204483][ T5078] veth1_macvtap: entered promiscuous mode [ 2090.902193][ T4213] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 2091.322011][ T4213] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 2091.325843][ T4213] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 2091.358155][ T4213] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 2091.480379][ T4412] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2091.503215][ T4412] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2091.650920][ T4412] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2091.667782][ T4412] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2091.715233][ T4213] usb 2-1: config 0 descriptor?? [ 2093.185780][ T4213] keytouch 0003:0926:3333.0001: fixing up Keytouch IEC report descriptor [ 2093.652453][ T4213] input: HID 0926:3333 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0926:3333.0001/input/input0 [ 2094.818315][ T4213] keytouch 0003:0926:3333.0001: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.1-1/input0 [ 2095.145396][ C1] Mem-Info: [ 2095.148709][ C1] active_anon:20774 inactive_anon:0 isolated_anon:0 [ 2095.148709][ C1] active_file:7179 inactive_file:46809 isolated_file:0 [ 2095.148709][ C1] unevictable:768 dirty:12 writeback:0 [ 2095.148709][ C1] slab_reclaimable:3624 slab_unreclaimable:25956 [ 2095.148709][ C1] mapped:10434 shmem:809 pagetables:903 [ 2095.148709][ C1] sec_pagetables:0 bounce:0 [ 2095.148709][ C1] kernel_misc_reclaimable:0 [ 2095.148709][ C1] free:212869 free_pcp:5443 free_cma:52608 [ 2095.154100][ C1] Node 0 active_anon:83096kB inactive_anon:0kB active_file:28716kB inactive_file:187236kB unevictable:3072kB isolated(anon):0kB isolated(file):0kB mapped:41736kB dirty:48kB writeback:0kB shmem:3236kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:6880kB pagetables:3612kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 2095.158381][ C1] Node 0 DMA32 free:851476kB boost:0kB min:22528kB low:28160kB high:33792kB reserved_highatomic:0KB free_highatomic:0KB active_anon:83096kB inactive_anon:0kB active_file:28716kB inactive_file:187236kB unevictable:3072kB writepending:48kB zspages:0kB present:2097152kB managed:1427184kB mlocked:0kB bounce:0kB free_pcp:21772kB local_pcp:8272kB free_cma:210432kB [ 2095.163251][ C1] lowmem_reserve[]: 0 0 0 [ 2095.165657][ C1] Node 0 DMA32: 1419*4kB (UE) 607*8kB (UE) 299*16kB (U) 2*32kB (ME) 190*64kB (U) 101*128kB (UM) 28*256kB (UE) 10*512kB (UC) 8*1024kB (UMC) 4*2048kB (UM) 191*4096kB (MC) = 851476kB [ 2095.175514][ C1] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 2095.177125][ C1] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 2095.178806][ C1] 54799 total pagecache pages [ 2095.180360][ C1] 0 pages in swap cache [ 2095.181863][ C1] Free swap = 124996kB [ 2095.182784][ C1] Total swap = 124996kB [ 2095.183900][ C1] 524288 pages RAM [ 2095.184708][ C1] 0 pages HighMem/MovableOnly [ 2095.185541][ C1] 167492 pages reserved [ 2095.186712][ C1] 52736 pages cma reserved [ 2095.415575][ C1] task:init state:S stack:0 pid:1 tgid:1 ppid:0 task_flags:0x400100 flags:0x00000000 [ 2095.420554][ C1] Call Trace: [ 2095.422140][ C1] [] __schedule+0x1042/0x4114 [ 2095.426105][ C1] [] schedule+0xc4/0x35e [ 2095.427903][ C1] [] schedule_hrtimeout_range_clock+0x2f2/0x330 [ 2095.430141][ C1] [] schedule_hrtimeout_range+0x28/0x36 [ 2095.431953][ C1] [] do_sigtimedwait.isra.0+0x3da/0x538 [ 2095.434116][ C1] [] __riscv_sys_rt_sigtimedwait+0x1c8/0x2ac [ 2095.435866][ C1] [] syscall_handler+0x94/0x118 [ 2095.437840][ C1] [] do_trap_ecall_u+0x39e/0x53a [ 2095.439599][ C1] [] handle_exception+0x146/0x152 [ 2095.442066][ C1] task:kthreadd state:S stack:0 pid:2 tgid:2 ppid:0 task_flags:0x208040 flags:0x00000000 [ 2095.444256][ C1] Call Trace: [ 2095.445000][ C1] [] __schedule+0x1042/0x4114 [ 2095.446713][ C1] [] schedule+0xc4/0x35e [ 2095.448229][ C1] [] kthreadd+0x590/0x73c [ 2095.449600][ C1] [] ret_from_fork_kernel+0x2a/0xbc6 [ 2095.450920][ C1] [] ret_from_fork_kernel_asm+0x16/0x18 [ 2095.452437][ C1] task:pool_workqueue_ state:S stack:0 pid:3 tgid:3 ppid:2 task_flags:0x208040 flags:0x00000000 [ 2095.454262][ C1] Call Trace: [ 2095.454983][ C1] [] __schedule+0x1042/0x4114 [ 2095.456684][ C1] [] schedule+0xc4/0x35e [ 2095.458220][ C1] [] kthread_worker_fn+0x5c6/0xec0 [ 2095.459600][ C1] [] kthread+0x39c/0x7d6 [ 2095.460950][ C1] [] ret_from_fork_kernel+0x2a/0xbc6 [ 2095.462315][ C1] [] ret_from_fork_kernel_asm+0x16/0x18 [ 2095.463915][ C1] task:kworker/R-rcu_g state:I stack:0 pid:4 tgid:4 ppid:2 task_flags:0x4208060 flags:0x00000000 [ 2095.466736][ C1] Workqueue: 0x0 (rcu_gp) [ 2095.469341][ C1] Call Trace: [ 2095.470173][ C1] [] __schedule+0x1042/0x4114 [ 2095.471778][ C1] [] schedule+0xc4/0x35e [ 2095.473251][ C1] [] rescuer_thread+0x8aa/0xd68 [ 2095.474555][ C1] [] kthread+0x39c/0x7d6 [ 2095.475789][ C1] [] ret_from_fork_kernel+0x2a/0xbc6 [ 2095.477259][ C1] [] ret_from_fork_kernel_asm+0x16/0x18 [ 2095.478735][ C1] task:kworker/R-sync_ state:I stack:0 pid:5 tgid:5 ppid:2 task_flags:0x4208060 flags:0x00000000 [ 2095.480636][ C1] Call Trace: [ 2095.481433][ C1] [] __schedule+0x1042/0x4114 [ 2095.482923][ C1] [] schedule+0xc4/0x35e [ 2095.484352][ C1] [] rescuer_thread+0x8aa/0xd68 [ 2095.485660][ C1] [] kthread+0x39c/0x7d6 [ 2095.487058][ C1] [] ret_from_fork_kernel+0x2a/0xbc6 [ 2095.488389][ C1] [] ret_from_fork_kernel_asm+0x16/0x18 [ 2095.489890][ C1] task:kworker/R-kvfre state:I stack:0 pid:6 tgid:6 ppid:2 task_flags:0x4208060 flags:0x00000000 [ 2095.492024][ C1] Call Trace: [ 2095.492753][ C1] [] __schedule+0x1042/0x4114 [ 2095.494258][ C1] [] schedule+0xc4/0x35e [ 2095.495583][ C1] [] rescuer_thread+0x8aa/0xd68 [ 2095.497092][ C1] [] kthread+0x39c/0x7d6 [ 2095.498353][ C1] [] ret_from_fork_kernel+0x2a/0xbc6 [ 2095.499655][ C1] [] ret_from_fork_kernel_asm+0x16/0x18 [ 2095.501029][ C1] task:kworker/R-slub_ state:I stack:0 pid:7 tgid:7 ppid:2 task_flags:0x4208060 flags:0x00000000 [ 2095.503009][ C1] Call Trace: [ 2095.503844][ C1] [] __schedule+0x1042/0x4114 [ 2095.505335][ C1] [] schedule+0xc4/0x35e [ 2095.506961][ C1] [] rescuer_thread+0x8aa/0xd68 [ 2095.508490][ C1] [] kthread+0x39c/0x7d6 [ 2095.509770][ C1] [] ret_from_fork_kernel+0x2a/0xbc6 [ 2095.511107][ C1] [] ret_from_fork_kernel_asm+0x16/0x18 [ 2095.512587][ C1] task:kworker/R-netns state:I stack:0 pid:8 tgid:8 ppid:2 task_flags:0x4208060 flags:0x00000000 [ 2095.514568][ C1] Call Trace: [ 2095.515369][ C1] [] __schedule+0x1042/0x4114 [ 2095.516862][ C1] [] schedule+0xc4/0x35e [ 2095.518386][ C1] [] rescuer_thread+0x8aa/0xd68 [ 2095.519784][ C1] [] kthread+0x39c/0x7d6 [ 2095.521056][ C1] [] ret_from_fork_kernel+0x2a/0xbc6 [ 2095.522349][ C1] [] ret_from_fork_kernel_asm+0x16/0x18 [ 2095.523875][ C1] task:kworker/0:0H state:I stack:0 pid:10 tgid:10 ppid:2 task_flags:0x4208060 flags:0x00000000 [ 2095.525914][ C1] Workqueue: 0x0 (events_highpri) [ 2095.527531][ C1] Call Trace: [ 2095.528369][ C1] [] __schedule+0x1042/0x4114 [ 2095.529839][ C1] [] schedule+0xc4/0x35e [ 2095.531383][ C1] [] worker_thread+0x29c/0xde8 [ 2095.532793][ C1] [] kthread+0x39c/0x7d6 [ 2095.534031][ C1] [] ret_from_fork_kernel+0x2a/0xbc6 [ 2095.535348][ C1] [] ret_from_fork_kernel_asm+0x16/0x18 [ 2095.536960][ C1] task:kworker/R-mm_pe state:I stack:0 pid:14 tgid:14 ppid:2 task_flags:0x4208060 flags:0x00000000 [ 2095.538978][ C1] Workqueue: 0x0 (mm_percpu_wq) [ 2095.540433][ C1] Call Trace: [ 2095.541184][ C1] [] __schedule+0x1042/0x4114 [ 2095.542613][ C1] [] schedule+0xc4/0x35e [ 2095.544049][ C1] [] rescuer_thread+0x8aa/0xd68 [ 2095.545330][ C1] [] kthread+0x39c/0x7d6 [ 2095.546906][ C1] [] ret_from_fork_kernel+0x2a/0xbc6 [ 2095.548244][ C1] [] ret_from_fork_kernel_asm+0x16/0x18 [ 2095.549807][ C1] task:ksoftirqd/0 state:S stack:0 pid:15 tgid:15 ppid:2 task_flags:0x4208040 flags:0x00000000 [ 2095.552047][ C1] Call Trace: [ 2095.552801][ C1] [] __schedule+0x1042/0x4114 [ 2095.554432][ C1] [] schedule+0xc4/0x35e [ 2095.555916][ C1] [] smpboot_thread_fn+0x93a/0xc82 [ 2095.557416][ C1] [] kthread+0x39c/0x7d6 [ 2095.558675][ C1] [] ret_from_fork_kernel+0x2a/0xbc6 [ 2095.559967][ C1] [] ret_from_fork_kernel_asm+0x16/0x18 [ 2095.561410][ C1] task:rcu_preempt state:R running task stack:0 pid:16 tgid:16 ppid:2 task_flags:0x208040 flags:0x00000000 [ 2095.563477][ C1] Call Trace: [ 2095.564305][ C1] [] __schedule+0x1042/0x4114 [ 2095.565736][ C1] [] preempt_schedule+0xd2/0x1e2 [ 2095.567209][ C1] [] _raw_spin_unlock_irqrestore+0xb4/0xd6 [ 2095.569143][ C1] ================================================================== [ 2095.570563][ C1] BUG: KASAN: stack-out-of-bounds in walk_stackframe+0x3e0/0x44e [ 2095.571981][ C1] Read of size 8 at addr ffff8f80001179f8 by task kworker/u8:7/4232 [ 2095.573146][ C1] [ 2095.577271][ C1] CPU: 1 UID: 0 PID: 4232 Comm: kworker/u8:7 Not tainted syzkaller #0 PREEMPT [ 2095.578420][ C1] Hardware name: riscv-virtio,qemu (DT) [ 2095.578717][ C1] Workqueue: events_unbound nsim_dev_trap_report_work [ 2095.579631][ C1] Call Trace: [ 2095.579826][ C1] [] dump_backtrace+0x2e/0x3c [ 2095.580420][ C1] [] show_stack+0x30/0x3c [ 2095.580992][ C1] [] dump_stack_lvl+0x12a/0x1a2 [ 2095.581671][ C1] [] print_report+0x28c/0x59e [ 2095.582225][ C1] [] kasan_report+0xf0/0x218 [ 2095.582864][ C1] [] __asan_report_load8_noabort+0x12/0x1a [ 2095.583509][ C1] [] walk_stackframe+0x3e0/0x44e [ 2095.584101][ C1] [] dump_backtrace+0x2e/0x3c [ 2095.584633][ C1] [] show_stack+0x30/0x3c [ 2095.585070][ C1] [] sched_show_task+0x460/0x61c [ 2095.585649][ C1] [] show_state_filter+0xcc/0x302 [ 2095.586303][ C1] [] fn_show_state+0x1a/0x22 [ 2095.586781][ C1] [] k_spec+0x102/0x16c [ 2095.587254][ C1] [] kbd_event+0x8ac/0x10b6 [ 2095.587808][ C1] [] input_handle_events_default+0xfe/0x174 [ 2095.588516][ C1] [] input_pass_values+0x6f4/0x7f6 [ 2095.589362][ C1] [] input_handle_event+0x536/0x13e6 [ 2095.590135][ C1] [] input_event+0x9c/0xe6 [ 2095.590871][ C1] [] hidinput_hid_event+0x86c/0x2402 [ 2095.591448][ C1] [] hid_process_event+0x48a/0x59e [ 2095.592349][ C1] [] hid_input_array_field+0x49e/0x66e [ 2095.593114][ C1] [] hid_report_raw_event+0xa24/0x1146 [ 2095.593863][ C1] [] __hid_input_report.constprop.0+0x2f6/0x3fa [ 2095.594623][ C1] [] hid_input_report+0x32/0x44 [ 2095.595340][ C1] [] hid_irq_in+0x2f6/0x732 [ 2095.595991][ C1] [] __usb_hcd_giveback_urb+0x36e/0x61c [ 2095.596697][ C1] [] usb_hcd_giveback_urb+0x364/0x3fe [ 2095.597477][ C1] [] dummy_timer+0x134e/0x34a2 [ 2095.598012][ C1] [] __hrtimer_run_queues+0x1bc/0xfa8 [ 2095.598657][ C1] [] hrtimer_run_softirq+0x144/0x2f6 [ 2095.599328][ C1] [] handle_softirqs+0x4b2/0x1332 [ 2095.599988][ C1] [] __do_softirq+0x12/0x1a [ 2095.600587][ C1] [] ___do_softirq+0x18/0x20 [ 2095.601113][ C1] [] call_on_irq_stack+0x32/0x40 [ 2095.602068][ C1] [ 2095.627927][ C1] The buggy address belongs to a 8-page vmalloc region starting at 0xffff8f8000110000 allocated at kernel_clone+0x128/0xda2 [ 2095.630703][ C1] The buggy address belongs to the physical page: [ 2095.632734][ C1] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x9368a [ 2095.634271][ C1] flags: 0xffe000000000000(node=0|zone=0|lastcpupid=0x7ff) [ 2095.637406][ C1] raw: 0ffe000000000000 0000000000000000 dead000000000122 0000000000000000 [ 2095.638696][ C1] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 2095.640059][ C1] page dumped because: kasan: bad access detected [ 2095.641390][ C1] page_owner tracks the page as allocated [ 2095.642405][ C1] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 2, tgid 2 (kthreadd), ts 1066956200, free_ts 0 [ 2095.644776][ C1] __set_page_owner+0x94/0x4a8 [ 2095.646110][ C1] post_alloc_hook+0xdc/0x1ba [ 2095.647252][ C1] get_page_from_freelist+0xdfc/0x3672 [ 2095.648353][ C1] __alloc_frozen_pages_noprof+0x22e/0x2124 [ 2095.649598][ C1] alloc_pages_mpol+0x1fa/0x5be [ 2095.650642][ C1] alloc_frozen_pages_noprof+0x174/0x2f0 [ 2095.651803][ C1] alloc_pages_noprof+0x20/0x48 [ 2095.653049][ C1] __vmalloc_node_range_noprof+0x62a/0x121e [ 2095.654355][ C1] __vmalloc_node_noprof+0x104/0x142 [ 2095.655592][ C1] copy_process+0x330a/0x72e6 [ 2095.656856][ C1] kernel_clone+0x128/0xda2 [ 2095.658062][ C1] kernel_thread+0xde/0x11c [ 2095.659303][ C1] kthreadd+0x49a/0x73c [ 2095.660347][ C1] ret_from_fork_kernel+0x2a/0xbc6 [ 2095.661423][ C1] ret_from_fork_kernel_asm+0x16/0x18 [ 2095.662883][ C1] page_owner free stack trace missing [ 2095.664132][ C1] [ 2095.664896][ C1] Memory state around the buggy address: [ 2095.666553][ C1] ffff8f8000117880: 00 00 00 00 f1 f1 f1 f1 f1 f1 00 00 00 00 00 f3 [ 2095.667790][ C1] ffff8f8000117900: 00 f3 f3 f3 00 00 00 00 00 00 00 00 00 00 00 00 [ 2095.668983][ C1] >ffff8f8000117980: 00 00 00 00 00 00 00 00 00 00 00 00 f1 f1 f1 f1 [ 2095.670107][ C1] ^ [ 2095.671415][ C1] ffff8f8000117a00: 00 00 00 00 00 00 00 00 00 00 00 f3 f3 f3 f3 f3 [ 2095.672760][ C1] ffff8f8000117a80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 2095.673975][ C1] ================================================================== [ 2095.676187][ C1] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 2095.678240][ C1] CPU: 1 UID: 0 PID: 4232 Comm: kworker/u8:7 Not tainted syzkaller #0 PREEMPT [ 2095.679652][ C1] Hardware name: riscv-virtio,qemu (DT) [ 2095.680604][ C1] Workqueue: events_unbound nsim_dev_trap_report_work [ 2095.682100][ C1] Call Trace: [ 2095.682779][ C1] [] dump_backtrace+0x2e/0x3c [ 2095.684431][ C1] [] show_stack+0x30/0x3c [ 2095.685637][ C1] [] dump_stack_lvl+0x10c/0x1a2 [ 2095.687042][ C1] [] dump_stack+0x1c/0x24 [ 2095.688488][ C1] [] vpanic+0x2a4/0x6d4 [ 2095.689641][ C1] [] panic+0xa0/0xa2 [ 2095.690694][ C1] [] check_panic_on_warn+0xc0/0xe4 [ 2095.691914][ C1] [] end_report.part.0+0x4e/0xae [ 2095.693227][ C1] [] kasan_report+0x13c/0x218 [ 2095.694584][ C1] [] __asan_report_load8_noabort+0x12/0x1a [ 2095.695921][ C1] [] walk_stackframe+0x3e0/0x44e [ 2095.697338][ C1] [] dump_backtrace+0x2e/0x3c [ 2095.698602][ C1] [] show_stack+0x30/0x3c [ 2095.699846][ C1] [] sched_show_task+0x460/0x61c [ 2095.701206][ C1] [] show_state_filter+0xcc/0x302 [ 2095.702607][ C1] [] fn_show_state+0x1a/0x22 [ 2095.703748][ C1] [] k_spec+0x102/0x16c [ 2095.704867][ C1] [] kbd_event+0x8ac/0x10b6 [ 2095.706155][ C1] [] input_handle_events_default+0xfe/0x174 [ 2095.707800][ C1] [] input_pass_values+0x6f4/0x7f6 [ 2095.709230][ C1] [] input_handle_event+0x536/0x13e6 [ 2095.710607][ C1] [] input_event+0x9c/0xe6 [ 2095.712015][ C1] [] hidinput_hid_event+0x86c/0x2402 [ 2095.713276][ C1] [] hid_process_event+0x48a/0x59e [ 2095.714677][ C1] [] hid_input_array_field+0x49e/0x66e [ 2095.716263][ C1] [] hid_report_raw_event+0xa24/0x1146 [ 2095.717659][ C1] [] __hid_input_report.constprop.0+0x2f6/0x3fa [ 2095.719204][ C1] [] hid_input_report+0x32/0x44 [ 2095.720616][ C1] [] hid_irq_in+0x2f6/0x732 [ 2095.721948][ C1] [] __usb_hcd_giveback_urb+0x36e/0x61c [ 2095.723355][ C1] [] usb_hcd_giveback_urb+0x364/0x3fe [ 2095.724732][ C1] [] dummy_timer+0x134e/0x34a2 [ 2095.725948][ C1] [] __hrtimer_run_queues+0x1bc/0xfa8 [ 2095.727345][ C1] [] hrtimer_run_softirq+0x144/0x2f6 [ 2095.728805][ C1] [] handle_softirqs+0x4b2/0x1332 [ 2095.730339][ C1] [] __do_softirq+0x12/0x1a [ 2095.731721][ C1] [] ___do_softirq+0x18/0x20 [ 2095.732963][ C1] [] call_on_irq_stack+0x32/0x40 [ 2095.734715][ C1] SMP: stopping secondary CPUs [ 2095.738587][ C1] Rebooting in 86400 seconds..