BUG: unable to handle kernel paging request in free

BUG: unable to handle kernel paging request in free_block (2)
Status: closed as invalid on 2018/03/21 12:59
Reported-by: syzbot+@syzkaller.appspotmail.com
First crash: 916d, last: 916d

similar bugs (4):
Kernel	Title	Repro	Bisected	Count	Last	Reported	Patched	Status
linux-4.19	BUG: unable to handle kernel paging request in free_block			1	63d	63d	0/1	upstream: reported on 2020/07/21 03:09
upstream	BUG: unable to handle kernel paging request in free_block (4)			2	587d	617d	0/17	closed as dup on 2019/01/14 17:27
upstream	BUG: unable to handle kernel paging request in free_block (3)			11	879d	908d	0/17	closed as invalid on 2018/09/05 11:23
upstream	BUG: unable to handle kernel paging request in free_block (5)	syz	cause+fix	3	124d	523d	0/17	upstream: reported syz repro on 2019/04/18 05:08

Sample crash report:

SELinux: unrecognized netlink message: protocol=0 nlmsg_type=34590 sclass=netlink_route_socket pig=23173 comm=syz-executor5
BUG: unable to handle kernel paging request at ffff8802d6ea29ff
IP: slab_put_obj mm/slab.c:2612 [inline]
IP: free_block+0x158/0x280 mm/slab.c:3405
PGD 8fee067 P4D 8fee067 PUD 0 
Oops: 0002 [#1] SMP KASAN
Dumping ftrace buffer:
   (ftrace buffer empty)
Modules linked in:
CPU: 0 PID: 23191 Comm: modprobe Not tainted 4.16.0-rc4+ #275
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:slab_put_obj mm/slab.c:2612 [inline]
RIP: 0010:free_block+0x158/0x280 mm/slab.c:3405
RSP: 0018:ffff8801a831fa18 EFLAGS: 00010086
RAX: 00000000000f0f0e RBX: ffffe8ffffc042b8 RCX: 00000000ffffffff
RDX: ffff8801d6ea2a00 RSI: ffff8801d6ea2a00 RDI: 0000000000000000
RBP: ffff8801a831fa60 R08: 00000000075ba880 R09: ffff8801da5d0158
R10: ffff8801a831f928 R11: 0000000000000000 R12: ffff8801da5d6600
R13: ffffea00075ba8a0 R14: ffff8801da5d0100 R15: ffffea00075ba880
FS:  00007f83886b3700(0000) GS:ffff8801db200000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: ffff8802d6ea29ff CR3: 00000001d4a4c006 CR4: 00000000001606f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 cache_flusharray mm/slab.c:3456 [inline]
 ___cache_free+0x20a/0x2f0 mm/slab.c:3514
 qlink_free mm/kasan/quarantine.c:147 [inline]
 qlist_free_all+0x8c/0x160 mm/kasan/quarantine.c:166
 quarantine_reduce+0x141/0x170 mm/kasan/quarantine.c:259
 kasan_kmalloc+0xca/0xe0 mm/kasan/kasan.c:537
 kasan_slab_alloc+0x12/0x20 mm/kasan/kasan.c:489
 slab_post_alloc_hook mm/slab.h:443 [inline]
 slab_alloc mm/slab.c:3379 [inline]
 kmem_cache_alloc+0x11b/0x760 mm/slab.c:3539
 __split_vma+0x10b/0x7b0 mm/mmap.c:2564
 do_munmap+0xb54/0xdf0 mm/mmap.c:2687
 vm_munmap+0x10b/0x180 mm/mmap.c:2745
 SYSC_munmap mm/mmap.c:2755 [inline]
 SyS_munmap+0x25/0x30 mm/mmap.c:2752
 do_syscall_64+0x281/0x940 arch/x86/entry/common.c:287
 entry_SYSCALL_64_after_hwframe+0x42/0xb7
RIP: 0033:0x7f8387fd3d37
RSP: 002b:00007fff6f8fad38 EFLAGS: 00000206 ORIG_RAX: 000000000000000b
RAX: ffffffffffffffda RBX: 0000555b28931260 RCX: 00007f8387fd3d37
RDX: 0000000000000000 RSI: 0000000000001000 RDI: 00007f83886b8000
RBP: 0000000000000000 R08: 00007f83886b3700 R09: 00007f838801e090
R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
R13: 0000555b28939210 R14: 0000555b28931210 R15: 00007fff6f8fafc0
Code: 0f b6 4c 24 1c 48 c1 ee 20 29 f0 d3 e8 41 0f b6 4c 24 1d 01 f0 49 8b 77 10 d3 e8 8d 4f ff 48 85 f6 41 89 4f 18 0f 84 05 01 00 00 <88> 04 0e 41 8b 47 18 85 c0 0f 84 e0 fe ff ff 49 8b 4e 40 4d 8d 
RIP: slab_put_obj mm/slab.c:2612 [inline] RSP: ffff8801a831fa18
RIP: free_block+0x158/0x280 mm/slab.c:3405 RSP: ffff8801a831fa18
CR2: ffff8802d6ea29ff
---[ end trace 3754799ee6a15427 ]---

Crashes (1):
Manager	Time	Kernel	Commit	Syzkaller	Config	Log	Report	Syz repro	C repro	VM info	Maintainers
ci-upstream-net-kasan-gce	2018/03/21 11:49	net-next	0466080c	f63eeee9	.config	log	report				aarcange@redhat.com, akpm@linux-foundation.org, dan.j.williams@intel.com, deller@gmx.de, hughd@google.com, linux-kernel@vger.kernel.org, linux-mm@kvack.org, mhocko@suse.com, oleg@redhat.com