[    6.490724] page must be ballooned
[    6.490727] ------------[ cut here ]------------
[    6.490744] WARNING: CPU: 0 PID: 470 at arch/x86/xen/p2m.c:720 set_foreign_p2m_mapping+0x14a/0x380
[    6.490754] Modules linked in: xenfs u2mfn(OE) crct10dif_pclmul crc32_pclmul crc32c_intel ata_generic pata_acpi ghash_clmulni_intel serio_raw xen_blkfront uinput xen_privcmd xen_gntdev xen_gntalloc xen_blkback xen_evtchn
[    6.490781] CPU: 0 PID: 470 Comm: qubesdb-daemon Tainted: G           OE   4.14.6-200.fc26.x86_64 #1
[    6.490790] Hardware name: Xen HVM domU, BIOS 4.8.2 11/28/2017
[    6.490797] task: ffff8ea6c89fbe80 task.stack: ffffb06c40958000
[    6.490805] RIP: 0010:set_foreign_p2m_mapping+0x14a/0x380
[    6.490811] RSP: 0018:ffffb06c4095bc68 EFLAGS: 00010286
[    6.490817] RAX: 0000000000000016 RBX: 0000000000000001 RCX: ffffffffb9e510c8
[    6.490826] RDX: 0000000000000000 RSI: 0000000000000086 RDI: 0000000000000247
[    6.490834] RBP: ffffb06c4095bcb8 R08: 00000000000001d6 R09: ffffffffba1e95e0
[    6.490842] R10: 0000000000000075 R11: 0000000000000000 R12: ffff8ea6c9dcdc40
[    6.490850] R13: ffff8ea7c34cc1e0 R14: 8000000000000000 R15: 0000000000000000
[    6.490858] FS:  00007fa409728cc0(0000) GS:ffff8ea7c8c00000(0000) knlGS:0000000000000000
[    6.490867] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[    6.490873] CR2: 00007f38c441c4e0 CR3: 00000000341ac003 CR4: 00000000001606f0
[    6.490883] Call Trace:
[    6.490890]  ? get_page_from_freelist+0x8e2/0xb50
[    6.490899]  gnttab_map_refs+0xb5/0x170
[    6.490905]  gntdev_mmap+0x31c/0x610 [xen_gntdev]
[    6.490914]  mmap_region+0x3a0/0x5d0
[    6.490919]  do_mmap+0x2b3/0x400
[    6.490926]  vm_mmap_pgoff+0xcc/0x120
[    6.490931]  SyS_mmap_pgoff+0x1e1/0x280
[    6.490937]  SyS_mmap+0x1b/0x30
[    6.490944]  do_syscall_64+0x67/0x180
[    6.490950]  entry_SYSCALL64_slow_path+0x25/0x25
[    6.490956] RIP: 0033:0x7fa4090d89ca
[    6.490961] RSP: 002b:00007ffd0da30078 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[    6.490969] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa4090d89ca
[    6.490980] RDX: 0000000000000003 RSI: 0000000000001000 RDI: 0000000000000000
[    6.490993] RBP: 0000000000001000 R08: 0000000000000007 R09: 0000000000000000
[    6.491008] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000003
[    6.491017] R13: 0000000000000001 R14: 0000000000000007 R15: 0000000000000000
[    6.491027] Code: 83 b4 00 00 00 48 8b 05 8d 9e f5 00 48 83 3c d0 ff 0f 84 50 01 00 00 48 c7 c7 c8 fd c6 b9 48 89 55 c8 48 89 75 d0 e8 d7 16 0f 00 <0f> ff 48 8b 75 d0 48 8b 55 c8 4c 09 f6 48 89 d7 e8 51 fe ff ff 
[    6.491063] ---[ end trace ca8d27acd5910fcf ]---
[    6.491084] ------------[ cut here ]------------
[    6.491090] kernel BUG at arch/x86/xen/p2m.c:651!
[    6.491098] invalid opcode: 0000 [#1] SMP
[    6.491103] Modules linked in: xenfs u2mfn(OE) crct10dif_pclmul crc32_pclmul crc32c_intel ata_generic pata_acpi ghash_clmulni_intel serio_raw xen_blkfront uinput xen_privcmd xen_gntdev xen_gntalloc xen_blkback xen_evtchn
[    6.491127] CPU: 0 PID: 470 Comm: qubesdb-daemon Tainted: G        W  OE   4.14.6-200.fc26.x86_64 #1
[    6.491137] Hardware name: Xen HVM domU, BIOS 4.8.2 11/28/2017
[    6.491144] task: ffff8ea6c89fbe80 task.stack: ffffb06c40958000
[    6.491152] RIP: 0010:__set_phys_to_machine+0x76/0x180
[    6.491158] RSP: 0018:ffffb06c4095bc18 EFLAGS: 00010293
[    6.491164] RAX: 0000000000000000 RBX: 000000000000d527 RCX: ffffffffb9e510c8
[    6.491172] RDX: 000000000000d527 RSI: 80000000002715a7 RDI: 000000000000d527
[    6.491180] RBP: ffffb06c4095bc38 R08: 00000000000001d6 R09: ffffffffba1e95e0
[    6.491187] R10: 0000000000000075 R11: 0000000000000000 R12: 80000000002715a7
[    6.491195] R13: ffff8ea7c34cc1e0 R14: 8000000000000000 R15: 0000000000000000
[    6.491204] FS:  00007fa409728cc0(0000) GS:ffff8ea7c8c00000(0000) knlGS:0000000000000000
[    6.491212] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[    6.491219] CR2: 00007f38c441c4e0 CR3: 00000000341ac003 CR4: 00000000001606f0
[    6.491227] Call Trace:
[    6.491231]  set_phys_to_machine+0x17/0x50
[    6.491236]  set_foreign_p2m_mapping+0x15f/0x380
[    6.491243]  ? get_page_from_freelist+0x8e2/0xb50
[    6.491249]  gnttab_map_refs+0xb5/0x170
[    6.491254]  gntdev_mmap+0x31c/0x610 [xen_gntdev]
[    6.491263]  mmap_region+0x3a0/0x5d0
[    6.491268]  do_mmap+0x2b3/0x400
[    6.491274]  vm_mmap_pgoff+0xcc/0x120
[    6.491279]  SyS_mmap_pgoff+0x1e1/0x280
[    6.491284]  SyS_mmap+0x1b/0x30
[    6.491289]  do_syscall_64+0x67/0x180
[    6.491295]  entry_SYSCALL64_slow_path+0x25/0x25
[    6.491301] RIP: 0033:0x7fa4090d89ca
[    6.491307] RSP: 002b:00007ffd0da30078 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[    6.491319] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa4090d89ca
[    6.491330] RDX: 0000000000000003 RSI: 0000000000001000 RDI: 0000000000000000
[    6.491341] RBP: 0000000000001000 R08: 0000000000000007 R09: 0000000000000000
[    6.491353] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000003
[    6.491364] R13: 0000000000000001 R14: 0000000000000007 R15: 0000000000000000
[    6.491377] Code: 85 c0 75 29 b8 01 00 00 00 48 8b 4d e8 65 48 33 0c 25 28 00 00 00 0f 85 f8 00 00 00 48 83 c4 10 5b 41 5c 5d c3 48 83 fe ff 74 d9 <0f> 0b 48 03 3d 09 a1 f5 00 48 8d 75 e4 e8 58 23 05 00 48 85 c0 
[    6.491413] RIP: __set_phys_to_machine+0x76/0x180 RSP: ffffb06c4095bc18
[    6.491421] ---[ end trace ca8d27acd5910fd0 ]---