executing program
syzkaller login: [   19.339960] BUG: unable to handle kernel paging request at ffffed010d6dafff
[   19.341394] IP: ata_bmdma_qc_prep+0x30a/0x3d0
[   19.342147] PGD 7fff6067 P4D 7fff6067 PUD 0 
[   19.342895] Oops: 0000 [#1] SMP KASAN
[   19.343524] Dumping ftrace buffer:
[   19.344490]    (ftrace buffer empty)
[   19.344854] Modules linked in:
[   19.345192] CPU: 0 PID: 2984 Comm: syzkaller781870 Not tainted 4.13.0-next-20170915+ #5
[   19.346012] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS Bochs 01/01/2011
[   19.347320] task: ffff88006afb03c0 task.stack: ffff88006caa0000
[   19.348300] RIP: 0010:ata_bmdma_qc_prep+0x30a/0x3d0
[   19.349075] RSP: 0018:ffff88006caa7040 EFLAGS: 00010807
[   19.350000] RAX: dffffc0000000000 RBX: ffff88086b6d7ff8 RCX: ffff88003ae23340
[   19.351209] RDX: 1ffff1010d6dafff RSI: 0000000000000001 RDI: ffff88086b6d7ffc
[   19.352456] RBP: ffff88006caa70a0 R08: ffff88006b710234 R09: ffff88006b710238
[   19.353678] R10: 0000000000000003 R11: ffffed000d6e2043 R12: 0000000000000000
[   19.354888] R13: 0000000000000000 R14: 0000000000000000 R15: dffffc0000000000
[   19.355652] FS:  0000000001071880(0000) GS:ffff88003ec00000(0000) knlGS:0000000000000000
[   19.356470] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   19.357093] CR2: ffffed010d6dafff CR3: 000000003d9a9000 CR4: 00000000000006f0
[   19.358586] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   19.359349] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   19.360103] Call Trace:
[   19.360367]  ata_qc_issue+0x625/0xea0
[   19.360767]  ? lock_acquire+0x1d5/0x580
[   19.361172]  ? ata_qc_complete_multiple+0x200/0x200
[   19.361651]  ? atapi_check_dma+0x11e/0x170
[   19.362118]  ? atapi_xlat+0x4f4/0x740
[   19.362482]  ? memset+0x31/0x40
[   19.362837]  ? ata_scsiop_inq_std+0xcd0/0xcd0
[   19.363738]  ata_scsi_translate+0x34a/0x5e0
[   19.364492]  ? ata_scsiop_inq_std+0xcd0/0xcd0
[   19.365323]  ata_scsi_queuecmd+0x2ae/0x6b0
[   19.365928]  scsi_dispatch_cmd+0x432/0xb60
[   19.366393]  ? _find_next_bit+0xee/0x120
[   19.366856]  ? scsi_mq_init_request+0x2f0/0x2f0
[   19.367396]  ? blk_queue_start_tag+0x2f8/0x900
[   19.368242]  ? do_raw_spin_trylock+0x190/0x190
[   19.368708]  ? blk_queue_find_tag+0x100/0x100
[   19.369186]  ? _raw_spin_unlock_irq+0x27/0x70
[   19.369659]  ? memset+0x31/0x40
[   19.370027]  scsi_request_fn+0xdf0/0x1e50
[   19.370480]  ? blk_execute_rq+0x200/0x200
[   19.370960]  ? scsi_softirq_done+0x490/0x490
[   19.371408]  ? blk_queue_bounce+0x2b0/0x13e0
[   19.371880]  ? init_emergency_isa_pool+0x70/0x70
[   19.372379]  ? check_noncircular+0x20/0x20
[   19.372844]  ? bio_phys_segments+0x47/0x90
[   19.373320]  ? blk_rq_bio_prep+0x138/0x260
[   19.373819]  ? __lock_is_held+0xbc/0x140
[   19.374283]  ? check_noncircular+0x20/0x20
[   19.374777]  ? __elv_add_request+0x49c/0xce0
[   19.375305]  ? elv_drain_elevator+0x290/0x290
[   19.375808]  ? blk_execute_rq_nowait+0x1b6/0x310
[   19.376322]  ? import_single_range+0x1ee/0x2e0
[   19.376842]  ? __lock_is_held+0xbc/0x140
[   19.377313]  __blk_run_queue+0x1a6/0x370
[   19.377775]  blk_execute_rq_nowait+0x200/0x310
[   19.378277]  ? sg_release+0x1f0/0x1f0
[   19.378699]  sg_common_write.isra.17+0xbf8/0x1cb0
[   19.379247]  ? sg_open+0x1190/0x1190
[   19.379671]  ? __might_fault+0xe0/0x1d0
[   19.380456]  ? check_stack_object+0x68/0x140
[   19.381368]  ? __check_object_size+0x25d/0x4f0
[   19.382311]  ? lock_release+0xd70/0xd70
[   19.383141]  ? __might_sleep+0x95/0x190
[   19.383952]  sg_write+0x7a6/0xca0
[   19.385050]  ? sg_ioctl+0x2ed0/0x2ed0
[   19.386464]  ? __pmd_alloc+0x4e0/0x4e0
[   19.388010]  ? find_held_lock+0x39/0x1d0
[   19.390214]  ? lock_downgrade+0x990/0x990
[   19.392427]  ? sg_ioctl+0x2ed0/0x2ed0
[   19.394322]  __vfs_write+0xef/0x970
[   19.395561]  ? kernel_read+0x120/0x120
[   19.397328]  ? __might_sleep+0x95/0x190
[   19.398739]  ? __inode_security_revalidate+0xd9/0x130
[   19.400011]  ? avc_policy_seqno+0x9/0x20
[   19.400881]  ? selinux_file_permission+0x82/0x460
[   19.401809]  ? security_file_permission+0x89/0x1f0
[   19.402756]  ? rw_verify_area+0xe5/0x2b0
[   19.403606]  ? __fdget_raw+0x20/0x20
[   19.404370]  vfs_write+0x18f/0x510
[   19.405069]  SyS_write+0xef/0x220
[   19.405740]  ? lockdep_sys_exit+0x47/0xf0
[   19.406489]  ? SyS_read+0x220/0x220
[   19.407202]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   19.408726]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   19.409338]  entry_SYSCALL_64_fastpath+0x1f/0xbe
[   19.409844] RIP: 0033:0x4391a9
[   19.410258] RSP: 002b:00007ffdb9e3ae48 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   19.411156] RAX: ffffffffffffffda RBX: 00000000004002c8 RCX: 00000000004391a9
[   19.411817] RDX: 00000000000000c7 RSI: 0000000020515000 RDI: 0000000000000003
[   19.412442] RBP: 0000000000000082 R08: 0000000000000000 R09: 0000000000000000
[   19.413419] R10: 00000000000000fe R11: 0000000000000293 R12: 0000000000000000
[   19.414480] R13: 0000000000401e00 R14: 0000000000401e90 R15: 0000000000000000
[   19.415429] Code: 41 8d 5e ff e8 18 5c 07 fe 48 c1 e3 03 e8 0f 5c 07 fe 48 03 5d c8 48 b8 00 00 00 00 00 fc ff df 48 8d 7b 04 48 89 fa 48 c1 ea 03 <0f> b6 14 02 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 04 84 d2 75 0c 
[   19.417670] RIP: ata_bmdma_qc_prep+0x30a/0x3d0 RSP: ffff88006caa7040
[   19.418381] CR2: ffffed010d6dafff
[   19.418773] ---[ end trace f22b269ecd4dbac4 ]---
[   19.419631] Kernel panic - not syncing: Fatal exception
[   19.420781] Dumping ftrace buffer:
[   19.421286]    (ftrace buffer empty)
[   19.421709] Kernel Offset: disabled
[   19.422129] Rebooting in 86400 seconds..