BUG: unable to handle kernel paging request in qlist_free

Kernel	Title	Repro	Count	Last	Reported	Patched	Status
linux-4.19	BUG: unable to handle kernel NULL pointer dereference in qlist_free_all (2)		8	834d	1071d	0/1	auto-closed as invalid on 2022/05/13 11:55
upstream	BUG: unable to handle kernel paging request in qlist_free_all (2) mm		4	2336d	2341d	0/26	closed as invalid on 2017/12/05 10:45
upstream	BUG: unable to handle kernel paging request in qlist_free_all (5) fs		2	1856d	1858d	0/26	auto-closed as invalid on 2019/09/24 08:20
upstream	BUG: unable to handle kernel paging request in qlist_free_all (7) kernel		20	875d	1096d	0/26	auto-closed as invalid on 2022/03/03 13:56
upstream	BUG: unable to handle kernel paging request in qlist_free_all (4) kernel	syz	17	2119d	2239d	0/26	closed as dup on 2018/07/08 14:57
upstream	BUG: unable to handle kernel paging request in qlist_free_all (6) kernfs		1	1299d	1295d	0/26	auto-closed as invalid on 2021/01/03 14:25

BUG: unable to handle kernel paging request at ffffebe004000020 IP: virt_to_head_page include/linux/mm.h:603 [inline] IP: qlink_to_cache mm/kasan/quarantine.c:127 [inline] IP: qlist_free_all+0x12b/0x160 mm/kasan/quarantine.c:163 PGD 0 P4D 0 Oops: 0000 [#1] SMP KASAN Dumping ftrace buffer: (ftrace buffer empty) Modules linked in: CPU: 1 PID: 28175 Comm: modprobe Not tainted 4.14.0-rc7+ #154 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 task: ffff8801cda0a700 task.stack: ffff8801c2588000 RIP: 0010:virt_to_head_page include/linux/mm.h:603 [inline] RIP: 0010:qlink_to_cache mm/kasan/quarantine.c:127 [inline] RIP: 0010:qlist_free_all+0x12b/0x160 mm/kasan/quarantine.c:163 RSP: 0018:ffff8801c258f990 EFLAGS: 00010286 RAX: 0000000100000001 RBX: 0000000000000282 RCX: ffffea0000000000 RDX: ffffebe004000000 RSI: ffff8801cda0afa8 RDI: 0000000000000282 RBP: ffff8801c258f9c8 R08: 0000000000000001 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 R13: 0000000000000000 R14: 0000000100000001 R15: ffffffff85ac6400 FS: 0000000000000000(0000) GS:ffff8801db300000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: ffffebe004000020 CR3: 00000001cbb43000 CR4: 00000000001406e0 Call Trace: quarantine_reduce+0x141/0x170 mm/kasan/quarantine.c:259 kasan_kmalloc+0xca/0xe0 mm/kasan/kasan.c:536 kasan_slab_alloc+0x12/0x20 mm/kasan/kasan.c:489 slab_post_alloc_hook mm/slab.h:444 [inline] slab_alloc mm/slab.c:3397 [inline] kmem_cache_alloc+0x11b/0x760 mm/slab.c:3559 kmem_cache_zalloc include/linux/slab.h:656 [inline] mmap_region+0x7ee/0x15a0 mm/mmap.c:1658 do_mmap+0x69b/0xd40 mm/mmap.c:1468 do_mmap_pgoff include/linux/mm.h:2150 [inline] vm_mmap_pgoff+0x1de/0x280 mm/util.c:333 SYSC_mmap_pgoff mm/mmap.c:1518 [inline] SyS_mmap_pgoff+0x462/0x5f0 mm/mmap.c:1476 SYSC_mmap arch/x86/kernel/sys_x86_64.c:99 [inline] SyS_mmap+0x16/0x20 arch/x86/kernel/sys_x86_64.c:90 entry_SYSCALL_64_fastpath+0x1f/0xbe RIP: 0033:0x7f6cf0e9c3ea RSP: 002b:00007ffd92737ea8 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 RAX: ffffffffffffffda RBX: 00007f6cf10a49a8 RCX: 00007f6cf0e9c3ea RDX: 0000000000000005 RSI: 000000000038c838 RDI: 0000000000000000 RBP: 0000000000000082 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000802 R11: 0000000000000246 R12: 00007ffd92738318 R13: 000000006fffff48 R14: 00007ffd92738010 R15: 00007ffd92737fb0 Code: 00 00 00 80 48 01 c2 72 44 48 b9 00 00 00 80 ff 77 00 00 48 01 ca 48 b9 00 00 00 00 00 ea ff ff 48 c1 ea 0c 48 c1 e2 06 48 01 ca <48> 8b 4a 20 48 8d 71 ff 83 e1 01 48 0f 45 d6 4c 8b 6a 30 e9 f4 RIP: virt_to_head_page include/linux/mm.h:603 [inline] RSP: ffff8801c258f990 RIP: qlink_to_cache mm/kasan/quarantine.c:127 [inline] RSP: ffff8801c258f990 RIP: qlist_free_all+0x12b/0x160 mm/kasan/quarantine.c:163 RSP: ffff8801c258f990 CR2: ffffebe004000020 ---[ end trace 2a865c0ac405b2d3 ]---