BUG: unable to handle page fault for address: fffffffffffffff0
#PF: supervisor read access in kernel mode
#PF: error_code(0x0000) - not-present page
PGD db82067 P4D db82067 PUD db84067 PMD 0
Oops: Oops: 0000 [#1] PREEMPT SMP KASAN PTI
CPU: 1 UID: 0 PID: 5919 Comm: kworker/u8:8 Not tainted 6.13.0-rc2-syzkaller-00362-g2d8308bf5b67 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
Workqueue: netns cleanup_net
RIP: 0010:__hlist_del include/linux/list.h:977 [inline]
RIP: 0010:hlist_del_rcu include/linux/rculist.h:516 [inline]
RIP: 0010:netdev_name_node_del net/core/dev.c:303 [inline]
RIP: 0010:unlist_netdevice+0x132/0x610 net/core/dev.c:433
Code: 00 00 00 fc ff df 49 bd 22 01 00 00 00 00 ad de e8 23 a6 9b f8 48 89 d8 48 c1 e8 03 80 3c 28 00 0f 85 e7 03 00 00 48 8d 7b 08 <4c> 8b 33 48 89 fa 48 c1 ea 03 80 3c 2a 00 0f 85 ae 03 00 00 4c 8b
RSP: 0018:ffffc90004347a18 EFLAGS: 00010246
RAX: 1ffffffffffffffe RBX: fffffffffffffff0 RCX: 0000000000000000
RDX: ffff888025a49e00 RSI: ffffffff88fd97cd RDI: fffffffffffffff8
RBP: dffffc0000000000 R08: 0000000000000000 R09: ffffed100fdd4064
R10: ffff88807eea0323 R11: 0000000000000004 R12: ffff88802a2b6000
R13: dead000000000122 R14: ffff88807f826188 R15: ffffc90004347c58
FS: 0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: fffffffffffffff0 CR3: 000000002c910000 CR4: 00000000003526f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
<TASK>
unregister_netdevice_many_notify+0x4d0/0x1e60 net/core/dev.c:11504
cleanup_net+0x58c/0xbd0 net/core/net_namespace.c:643
process_one_work+0x958/0x1b30 kernel/workqueue.c:3229
process_scheduled_works kernel/workqueue.c:3310 [inline]
worker_thread+0x6c8/0xf00 kernel/workqueue.c:3391
kthread+0x2c1/0x3a0 kernel/kthread.c:389
ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:147
ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244
</TASK>
Modules linked in:
CR2: fffffffffffffff0
---[ end trace 0000000000000000 ]---
RIP: 0010:__hlist_del include/linux/list.h:977 [inline]
RIP: 0010:hlist_del_rcu include/linux/rculist.h:516 [inline]
RIP: 0010:netdev_name_node_del net/core/dev.c:303 [inline]
RIP: 0010:unlist_netdevice+0x132/0x610 net/core/dev.c:433
Code: 00 00 00 fc ff df 49 bd 22 01 00 00 00 00 ad de e8 23 a6 9b f8 48 89 d8 48 c1 e8 03 80 3c 28 00 0f 85 e7 03 00 00 48 8d 7b 08 <4c> 8b 33 48 89 fa 48 c1 ea 03 80 3c 2a 00 0f 85 ae 03 00 00 4c 8b
RSP: 0018:ffffc90004347a18 EFLAGS: 00010246
RAX: 1ffffffffffffffe RBX: fffffffffffffff0 RCX: 0000000000000000
RDX: ffff888025a49e00 RSI: ffffffff88fd97cd RDI: fffffffffffffff8
RBP: dffffc0000000000 R08: 0000000000000000 R09: ffffed100fdd4064
R10: ffff88807eea0323 R11: 0000000000000004 R12: ffff88802a2b6000
R13: dead000000000122 R14: ffff88807f826188 R15: ffffc90004347c58
FS: 0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: fffffffffffffff0 CR3: 000000002c910000 CR4: 00000000003526f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
----------------
Code disassembly (best guess), 5 bytes skipped:
0: df 49 bd fisttps -0x43(%rcx)
3: 22 01 and (%rcx),%al
5: 00 00 add %al,(%rax)
7: 00 00 add %al,(%rax)
9: ad lods %ds:(%rsi),%eax
a: de e8 fsubrp %st,%st(0)
c: 23 a6 9b f8 48 89 and -0x76b70765(%rsi),%esp
12: d8 48 c1 fmuls -0x3f(%rax)
15: e8 03 80 3c 28 call 0x283c801d
1a: 00 0f add %cl,(%rdi)
1c: 85 e7 test %esp,%edi
1e: 03 00 add (%rax),%eax
20: 00 48 8d add %cl,-0x73(%rax)
23: 7b 08 jnp 0x2d
* 25: 4c 8b 33 mov (%rbx),%r14 <-- trapping instruction
28: 48 89 fa mov %rdi,%rdx
2b: 48 c1 ea 03 shr $0x3,%rdx
2f: 80 3c 2a 00 cmpb $0x0,(%rdx,%rbp,1)
33: 0f 85 ae 03 00 00 jne 0x3e7
39: 4c rex.WR
3a: 8b .byte 0x8b