Warning: Permanently added '10.128.1.131' (ECDSA) to the list of known hosts.
executing program
executing program
executing program
executing program
executing program
executing program
syzkaller login: [   42.317055][ T4992] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=4992 'syz-executor263'
[   42.328845][ T4992] loop0: detected capacity change from 0 to 16
[   42.338648][ T4992] erofs: (device loop0): mounted with root inode @ nid 36.
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[   48.214640][ T7002] Sequential nulls end at ffff8880770ab000[10]
[   48.220976][ T7002] BUG at mt_validate_nulls:7177 (1)
[   48.226229][ T7002] maple_tree(ffff88802c491cc0) flags 30B, height 2 root ffff888020c7441e
[   48.234707][ T7002] 0-ffffffffffffffff: node ffff888020c74400 depth 0 type 3 parent ffff88802c491cc1 contents: 93824454733824 18446603337425620992 0 0 0 0 0 0 0 0 | 01 01| ffff88807708820c 140424465911807 ffff888020c7520c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[   48.270010][ T7002]   0-7fb71e688fff: node ffff888077088200 depth 1 type 1 parent ffff888020c74406 contents: 0000000000000000 1FFFEFFF ffff88802bcfdc00 1FFFFFFF ffff88802bcfd300 20FFFFFF ffff88802bcfdb00 21000FFF 0000000000000000 5555564BBFFF ffff88802bcfd100 5555564DDFFF 0000000000000000 7FB716268FFF ffff888029799400 7FB716269FFF ffff88802b651500 7FB71E687FFF ffff888029799200 7FB71E688FFF 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000009
[   48.314813][ T7002]     0-1fffefff: 0000000000000000
[   48.319946][ T7002]     1ffff000-1fffffff: ffff88802bcfdc00
[   48.325725][ T7002]     20000000-20ffffff: ffff88802bcfd300
[   48.331443][ T7002]     21000000-21000fff: ffff88802bcfdb00
[   48.337366][ T7002]     21001000-5555564bbfff: 0000000000000000
[   48.343495][ T7002]     5555564bc000-5555564ddfff: ffff88802bcfd100
[   48.350050][ T7002]     5555564de000-7fb716268fff: 0000000000000000
[   48.356539][ T7002]     7fb716269000-7fb716269fff: ffff888029799400
[   48.363066][ T7002]     7fb71626a000-7fb71e687fff: ffff88802b651500
[   48.369498][ T7002]     7fb71e688000-7fb71e688fff: ffff888029799200
[   48.375960][ T7002]   7fb71e689000-ffffffffffffffff: node ffff888020c75200 depth 1 type 1 parent ffff888020c7440e contents: ffff888029799300 7FB71E6A8FFF ffff888029799000 7FB71E6A9FFF ffff888029799100 7FB71E6C9FFF ffff88802aafc900 7FB71E6D2FFF ffff88802aafca00 7FB71E76DFFF ffff8880791b3600 7FB71E79AFFF ffff88801ecc9300 7FB71E79EFFF ffff88801ecc9d00 7FB71E7A1FFF ffff88801ecc9800 7FB71E7A7FFF 0000000000000000 7FFFB81F4FFF ffff88801ecc9400 7FFFB8215FFF 0000000000000000 7FFFB8358FFF ffff88801ecc9700 7FFFB835CFFF ffff88801ecc9b00 7FFFB835EFFF 0000000000000000 FFFFFFFFFFFFFFFF 000000000000000e
[   48.428323][ T7002]     7fb71e689000-7fb71e6a8fff: ffff888029799300
[   48.434845][ T7002]     7fb71e6a9000-7fb71e6a9fff: ffff888029799000
[   48.441363][ T7002]     7fb71e6aa000-7fb71e6c9fff: ffff888029799100
[   48.447823][ T7002]     7fb71e6ca000-7fb71e6d2fff: ffff88802aafc900
[   48.454261][ T7002]     7fb71e6d3000-7fb71e76dfff: ffff88802aafca00
[   48.460736][ T7002]     7fb71e76e000-7fb71e79afff: ffff8880791b3600
[   48.467198][ T7002]     7fb71e79b000-7fb71e79efff: ffff88801ecc9300
[   48.473608][ T7002]     7fb71e79f000-7fb71e7a1fff: ffff88801ecc9d00
[   48.480047][ T7002]     7fb71e7a2000-7fb71e7a7fff: ffff88801ecc9800
[   48.486496][ T7002]     7fb71e7a8000-7fffb81f4fff: 0000000000000000
[   48.492913][ T7002]     7fffb81f5000-7fffb8215fff: ffff88801ecc9400
[   48.499373][ T7002]     7fffb8216000-7fffb8358fff: 0000000000000000
[   48.505828][ T7002]     7fffb8359000-7fffb835cfff: ffff88801ecc9700
[   48.512223][ T7002]     7fffb835d000-7fffb835efff: ffff88801ecc9b00
[   48.518671][ T7002]     7fffb835f000-ffffffffffffffff: 0000000000000000
[   48.525580][ T7002] Pass: 6497211 Run:6497212
[   48.530170][ T7002] CPU: 1 PID: 7002 Comm: syz-executor263 Not tainted 6.4.0-syzkaller-10173-ga901a3568fd2 #0
[   48.540327][ T7002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023
[   48.550538][ T7002] Call Trace:
[   48.553824][ T7002]  <TASK>
[   48.556737][ T7002]  dump_stack_lvl+0x136/0x150
[   48.561401][ T7002]  mt_validate_nulls+0x93d/0xd10
[   48.566322][ T7002]  ? mas_parent_gap+0x7f0/0x7f0
[   48.571157][ T7002]  mt_validate+0x17e3/0x4370
[   48.575732][ T7002]  ? mas_split.isra.0+0x1810/0x1810
[   48.580914][ T7002]  ? rwsem_wake.isra.0+0xc3/0x110
[   48.585937][ T7002]  validate_mm+0x9d/0x470
[   48.590263][ T7002]  ? vma_iter_store+0x9a0/0x9a0
[   48.595118][ T7002]  do_vmi_align_munmap+0x1199/0x1680
[   48.600488][ T7002]  ? __split_vma+0x830/0x830
[   48.605070][ T7002]  ? mtree_range_walk+0x63e/0x940
[   48.610098][ T7002]  ? mas_walk+0x5c7/0x7c0
[   48.614428][ T7002]  do_vmi_munmap+0x266/0x430
[   48.619051][ T7002]  __vm_munmap+0x137/0x380
[   48.623462][ T7002]  ? do_vmi_munmap+0x430/0x430
[   48.628226][ T7002]  ? syscall_enter_from_user_mode+0x26/0x80
[   48.634121][ T7002]  __x64_sys_munmap+0x62/0x80
[   48.638794][ T7002]  do_syscall_64+0x39/0xb0
[   48.643203][ T7002]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   48.649091][ T7002] RIP: 0033:0x7fb71e71cef7
[   48.653492][ T7002] Code: 00 00 00 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb 85 66 2e 0f 1f 84 00 00 00 00 00 90 b8 0b 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   48.673110][ T7002] RSP: 002b:00007fb71e6c9168 EFLAGS: 00000246 ORIG_RAX: 000000000000000b
[   48.681512][ T7002] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fb71e71cef7
[   48.689472][ T7002] RDX: 0000000000002000 RSI: 0000000000002000 RDI: 00007fb716288000
[   48.697430][ T7002] RBP: 00007fb716288000 R08: 0000000000000000 R09: 0000000000000176
[   48.705390][ T7002] R10: 0000000000002000 R11: 0000000000000246 R12: 00007fb71e6c96b8
[   48.713348][ T7002] R13: 00007fb71e6c9180 R14: 00007fb71e6c91c0 R15: 00007fb71e7a16e8
[   48.721325][ T7002]  </TASK>
[   48.724628][ T7002] Sequential nulls end at ffff8880770ab000[11]
[   48.730942][ T7002] BUG at mt_validate_nulls:7177 (1)
[   48.736172][ T7002] maple_tree(ffff88802c491cc0) flags 30B, height 2 root ffff888020c7441e
[   48.744653][ T7002] 0-ffffffffffffffff: node ffff888020c74400 depth 0 type 3 parent ffff88802c491cc1 contents: 93824454733824 18446603337425620992 0 0 0 0 0 0 0 0 | 01 01| ffff88807708820c 140424465911807 ffff888020c7520c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[   48.779562][ T7002]   0-7fb71e688fff: node ffff888077088200 depth 1 type 1 parent ffff888020c74406 contents: 0000000000000000 1FFFEFFF ffff88802bcfdc00 1FFFFFFF ffff88802bcfd300 20FFFFFF ffff88802bcfdb00 21000FFF 0000000000000000 5555564BBFFF ffff88802bcfd100 5555564DDFFF 0000000000000000 7FB716268FFF ffff888029799400 7FB716269FFF ffff88802b651500 7FB71E687FFF ffff888029799200 7FB71E688FFF 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000009
[   48.824207][ T7002]     0-1fffefff: 0000000000000000
[   48.829429][ T7002]     1ffff000-1fffffff: ffff88802bcfdc00
[   48.835338][ T7002]     20000000-20ffffff: ffff88802bcfd300
[   48.841131][ T7002]     21000000-21000fff: ffff88802bcfdb00
[   48.846922][ T7002]     21001000-5555564bbfff: 0000000000000000
[   48.853012][ T7002]     5555564bc000-5555564ddfff: ffff88802bcfd100
[   48.859494][ T7002]     5555564de000-7fb716268fff: 0000000000000000
[   48.866000][ T7002]     7fb716269000-7fb716269fff: ffff888029799400
[   48.872448][ T7002]     7fb71626a000-7fb71e687fff: ffff88802b651500
[   48.878909][ T7002]     7fb71e688000-7fb71e688fff: ffff888029799200
[   48.885395][ T7002]   7fb71e689000-ffffffffffffffff: node ffff888020c75200 depth 1 type 1 parent ffff888020c7440e contents: ffff888029799300 7FB71E6A8FFF ffff888029799000 7FB71E6A9FFF ffff888029799100 7FB71E6C9FFF ffff88802aafc900 7FB71E6D2FFF ffff88802aafca00 7FB71E76DFFF ffff8880791b3600 7FB71E79AFFF ffff88801ecc9300 7FB71E79EFFF ffff88801ecc9d00 7FB71E7A1FFF ffff88801ecc9800 7FB71E7A7FFF 0000000000000000 7FFFB81F4FFF ffff88801ecc9400 7FFFB8215FFF 0000000000000000 7FFFB8358FFF ffff88801ecc9700 7FFFB835CFFF ffff88801ecc9b00 7FFFB835EFFF 0000000000000000 FFFFFFFFFFFFFFFF 000000000000000e
[   48.937753][ T7002]     7fb71e689000-7fb71e6a8fff: ffff888029799300
[   48.944183][ T7002]     7fb71e6a9000-7fb71e6a9fff: ffff888029799000
[   48.950637][ T7002]     7fb71e6aa000-7fb71e6c9fff: ffff888029799100
[   48.957099][ T7002]     7fb71e6ca000-7fb71e6d2fff: ffff88802aafc900
[   48.963502][ T7002]     7fb71e6d3000-7fb71e76dfff: ffff88802aafca00
[   48.970006][ T7002]     7fb71e76e000-7fb71e79afff: ffff8880791b3600
[   48.976588][ T7002]     7fb71e79b000-7fb71e79efff: ffff88801ecc9300
[   48.983017][ T7002]     7fb71e79f000-7fb71e7a1fff: ffff88801ecc9d00
[   48.989458][ T7002]     7fb71e7a2000-7fb71e7a7fff: ffff88801ecc9800
[   48.995928][ T7002]     7fb71e7a8000-7fffb81f4fff: 0000000000000000
[   49.002382][ T7002]     7fffb81f5000-7fffb8215fff: ffff88801ecc9400
[   49.008832][ T7002]     7fffb8216000-7fffb8358fff: 0000000000000000
[   49.015305][ T7002]     7fffb8359000-7fffb835cfff: ffff88801ecc9700
[   49.021795][ T7002]     7fffb835d000-7fffb835efff: ffff88801ecc9b00
[   49.028234][ T7002]     7fffb835f000-ffffffffffffffff: 0000000000000000
[   49.035025][ T7002] Pass: 6497211 Run:6497213
[   49.039516][ T7002] CPU: 0 PID: 7002 Comm: syz-executor263 Not tainted 6.4.0-syzkaller-10173-ga901a3568fd2 #0
[   49.049574][ T7002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023
[   49.059622][ T7002] Call Trace:
[   49.062895][ T7002]  <TASK>
[   49.065847][ T7002]  dump_stack_lvl+0x136/0x150
[   49.070540][ T7002]  mt_validate_nulls+0x93d/0xd10
[   49.075475][ T7002]  ? mas_parent_gap+0x7f0/0x7f0
[   49.080408][ T7002]  mt_validate+0x17e3/0x4370
[   49.084991][ T7002]  ? mas_split.isra.0+0x1810/0x1810
[   49.090182][ T7002]  ? rwsem_wake.isra.0+0xc3/0x110
[   49.095199][ T7002]  validate_mm+0x9d/0x470
[   49.099539][ T7002]  ? vma_iter_store+0x9a0/0x9a0
[   49.104398][ T7002]  do_vmi_align_munmap+0x1199/0x1680
[   49.109715][ T7002]  ? __split_vma+0x830/0x830
[   49.114313][ T7002]  ? mtree_range_walk+0x63e/0x940
[   49.119356][ T7002]  ? mas_walk+0x5c7/0x7c0
[   49.123731][ T7002]  do_vmi_munmap+0x266/0x430
[   49.128338][ T7002]  __vm_munmap+0x137/0x380
[   49.132761][ T7002]  ? do_vmi_munmap+0x430/0x430
[   49.137525][ T7002]  ? syscall_enter_from_user_mode+0x26/0x80
[   49.143420][ T7002]  __x64_sys_munmap+0x62/0x80
[   49.148092][ T7002]  do_syscall_64+0x39/0xb0
[   49.152509][ T7002]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   49.158397][ T7002] RIP: 0033:0x7fb71e71cef7
[   49.162800][ T7002] Code: 00 00 00 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb 85 66 2e 0f 1f 84 00 00 00 00 00 90 b8 0b 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   49.182420][ T7002] RSP: 002b:00007fb71e6c9168 EFLAGS: 00000246 ORIG_RAX: 000000000000000b
[   49.190840][ T7002] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fb71e71cef7
[   49.198890][ T7002] RDX: 0000000000002000 RSI: 0000000000002000 RDI: 00007fb716288000
[   49.206852][ T7002] RBP: 00007fb716288000 R08: 0000000000000000 R09: 0000000000000176
[   49.214815][ T7002] R10: 0000000000002000 R11: 0000000000000246 R12: 00007fb71e6c96b8
[   49.222775][ T7002] R13: 00007fb71e6c9180 R14: 00007fb71e6c91c0 R15: 00007fb71e7a16e8
[   49.230745][ T7002]  </TASK>
[   49.235528][ T7002] Sequential nulls end at ffff8880770ab000[12]
[   49.241669][ T7002] BUG at mt_validate_nulls:7177 (1)
[   49.246935][ T7002] maple_tree(ffff88802c491cc0) flags 30B, height 2 root ffff888020c7441e
[   49.255497][ T7002] 0-ffffffffffffffff: node ffff888020c74400 depth 0 type 3 parent ffff88802c491cc1 contents: 93824454733824 18446603337425620992 0 0 0 0 0 0 0 0 | 01 01| ffff88807708820c 140424465911807 ffff888020c7520c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[   49.290335][ T7002]   0-7fb71e688fff: node ffff888077088200 depth 1 type 1 parent ffff888020c74406 contents: 0000000000000000 1FFFEFFF ffff88802bcfdc00 1FFFFFFF ffff88802bcfd300 20FFFFFF ffff88802bcfdb00 21000FFF 0000000000000000 5555564BBFFF ffff88802bcfd100 5555564DDFFF 0000000000000000 7FB716268FFF ffff888029799400 7FB716269FFF ffff88802b651500 7FB71E687FFF ffff888029799200 7FB71E688FFF 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000009
[   49.335063][ T7002]     0-1fffefff: 0000000000000000
[   49.340194][ T7002]     1ffff000-1fffffff: ffff88802bcfdc00
[   49.345990][ T7002]     20000000-20ffffff: ffff88802bcfd300
[   49.351713][ T7002]     21000000-21000fff: ffff88802bcfdb00
[   49.357486][ T7002]     21001000-5555564bbfff: 0000000000000000
[   49.363763][ T7002]     5555564bc000-5555564ddfff: ffff88802bcfd100
[   49.370237][ T7002]     5555564de000-7fb716268fff: 0000000000000000
[   49.376673][ T7002]     7fb716269000-7fb716269fff: ffff888029799400
[   49.383073][ T7002]     7fb71626a000-7fb71e687fff: ffff88802b651500
[   49.389507][ T7002]     7fb71e688000-7fb71e688fff: ffff888029799200
[   49.395977][ T7002]   7fb71e689000-ffffffffffffffff: node ffff888020c75200 depth 1 type 1 parent ffff888020c7440e contents: ffff888029799300 7FB71E6A8FFF ffff888029799000 7FB71E6A9FFF ffff888029799100 7FB71E6C9FFF ffff88802aafc900 7FB71E6D2FFF ffff88802aafca00 7FB71E76DFFF ffff8880791b3600 7FB71E79AFFF ffff88801ecc9300 7FB71E79EFFF ffff88801ecc9d00 7FB71E7A1FFF ffff88801ecc9800 7FB71E7A7FFF 0000000000000000 7FFFB81F4FFF ffff88801ecc9400 7FFFB8215FFF 0000000000000000 7FFFB8358FFF ffff88801ecc9700 7FFFB835CFFF ffff88801ecc9b00 7FFFB835EFFF 0000000000000000 FFFFFFFFFFFFFFFF 000000000000000e
[   49.448401][ T7002]     7fb71e689000-7fb71e6a8fff: ffff888029799300
[   49.454879][ T7002]     7fb71e6a9000-7fb71e6a9fff: ffff888029799000
[   49.461304][ T7002]     7fb71e6aa000-7fb71e6c9fff: ffff888029799100
[   49.467769][ T7002]     7fb71e6ca000-7fb71e6d2fff: ffff88802aafc900
[   49.474183][ T7002]     7fb71e6d3000-7fb71e76dfff: ffff88802aafca00
[   49.480612][ T7002]     7fb71e76e000-7fb71e79afff: ffff8880791b3600
[   49.487051][ T7002]     7fb71e79b000-7fb71e79efff: ffff88801ecc9300
[   49.493471][ T7002]     7fb71e79f000-7fb71e7a1fff: ffff88801ecc9d00
[   49.499920][ T7002]     7fb71e7a2000-7fb71e7a7fff: ffff88801ecc9800
[   49.506367][ T7002]     7fb71e7a8000-7fffb81f4fff: 0000000000000000
[   49.512768][ T7002]     7fffb81f5000-7fffb8215fff: ffff88801ecc9400
[   49.519203][ T7002]     7fffb8216000-7fffb8358fff: 0000000000000000
[   49.525646][ T7002]     7fffb8359000-7fffb835cfff: ffff88801ecc9700
[   49.532042][ T7002]     7fffb835d000-7fffb835efff: ffff88801ecc9b00
[   49.538468][ T7002]     7fffb835f000-ffffffffffffffff: 0000000000000000
[   49.545281][ T7002] Pass: 6497211 Run:6497214
[   49.549793][ T7002] CPU: 0 PID: 7002 Comm: syz-executor263 Not tainted 6.4.0-syzkaller-10173-ga901a3568fd2 #0
[   49.559938][ T7002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023
[   49.569978][ T7002] Call Trace:
[   49.573247][ T7002]  <TASK>
[   49.576173][ T7002]  dump_stack_lvl+0x136/0x150
[   49.580847][ T7002]  mt_validate_nulls+0x93d/0xd10
[   49.585776][ T7002]  ? mas_parent_gap+0x7f0/0x7f0
[   49.590622][ T7002]  mt_validate+0x17e3/0x4370
[   49.595208][ T7002]  ? mas_split.isra.0+0x1810/0x1810
[   49.600489][ T7002]  ? rwsem_wake.isra.0+0xc3/0x110
[   49.605509][ T7002]  validate_mm+0x9d/0x470
[   49.609829][ T7002]  ? vma_iter_store+0x9a0/0x9a0
[   49.614676][ T7002]  do_vmi_align_munmap+0x1199/0x1680
[   49.619979][ T7002]  ? __split_vma+0x830/0x830
[   49.624565][ T7002]  ? mtree_range_walk+0x63e/0x940
[   49.629592][ T7002]  ? mas_walk+0x5c7/0x7c0
[   49.633919][ T7002]  do_vmi_munmap+0x266/0x430
[   49.638504][ T7002]  __vm_munmap+0x137/0x380
[   49.642913][ T7002]  ? do_vmi_munmap+0x430/0x430
[   49.647674][ T7002]  ? syscall_enter_from_user_mode+0x26/0x80
[   49.653570][ T7002]  __x64_sys_munmap+0x62/0x80
[   49.658238][ T7002]  do_syscall_64+0x39/0xb0
[   49.662649][ T7002]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   49.668536][ T7002] RIP: 0033:0x7fb71e71cef7
[   49.672936][ T7002] Code: 00 00 00 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb 85 66 2e 0f 1f 84 00 00 00 00 00 90 b8 0b 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   49.692532][ T7002] RSP: 002b:00007fb71e6c9168 EFLAGS: 00000246 ORIG_RAX: 000000000000000b
[   49.700932][ T7002] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fb71e71cef7
[   49.708891][ T7002] RDX: 0000000000002000 RSI: 0000000000002000 RDI: 00007fb716288000
[   49.716849][ T7002] RBP: 00007fb716288000 R08: 0000000000000000 R09: 0000000000000176
[   49.724806][ T7002] R10: 0000000000002000 R11: 0000000000000246 R12: 00007fb71e6c96b8
[   49.732792][ T7002] R13: 00007fb71e6c9180 R14: 00007fb71e6c91c0 R15: 00007fb71e7a16e8
[   49.740761][ T7002]  </TASK>
[   49.745324][ T7002] Sequential nulls end at ffff8880770ab000[13]
[   49.751501][ T7002] BUG at mt_validate_nulls:7177 (1)
[   49.756765][ T7002] maple_tree(ffff88802c491cc0) flags 30B, height 2 root ffff888020c7441e
[   49.765244][ T7002] 0-ffffffffffffffff: node ffff888020c74400 depth 0 type 3 parent ffff88802c491cc1 contents: 93824454733824 18446603337425620992 0 0 0 0 0 0 0 0 | 01 01| ffff88807708820c 140424465911807 ffff888020c7520c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[   49.800151][ T7002]   0-7fb71e688fff: node ffff888077088200 depth 1 type 1 parent ffff888020c74406 contents: 0000000000000000 1FFFEFFF ffff88802bcfdc00 1FFFFFFF ffff88802bcfd300 20FFFFFF ffff88802bcfdb00 21000FFF 0000000000000000 5555564BBFFF ffff88802bcfd100 5555564DDFFF 0000000000000000 7FB716268FFF ffff888029799400 7FB716269FFF ffff88802b651500 7FB71E687FFF ffff888029799200 7FB71E688FFF 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000009
[   49.844765][ T7002]     0-1fffefff: 0000000000000000
[   49.849897][ T7002]     1ffff000-1fffffff: ffff88802bcfdc00
[   49.855667][ T7002]     20000000-20ffffff: ffff88802bcfd300
[   49.861482][ T7002]     21000000-21000fff: ffff88802bcfdb00
[   49.867258][ T7002]     21001000-5555564bbfff: 0000000000000000
[   49.873337][ T7002]     5555564bc000-5555564ddfff: ffff88802bcfd100
[   49.879788][ T7002]     5555564de000-7fb716268fff: 0000000000000000
[   49.886228][ T7002]     7fb716269000-7fb716269fff: ffff888029799400
[   49.892628][ T7002]     7fb71626a000-7fb71e687fff: ffff88802b651500
[   49.899081][ T7002]     7fb71e688000-7fb71e688fff: ffff888029799200
[   49.905525][ T7002]   7fb71e689000-ffffffffffffffff: node ffff888020c75200 depth 1 type 1 parent ffff888020c7440e contents: ffff888029799300 7FB71E6A8FFF ffff888029799000 7FB71E6A9FFF ffff888029799100 7FB71E6C9FFF ffff88802aafc900 7FB71E6D2FFF ffff88802aafca00 7FB71E76DFFF ffff8880791b3600 7FB71E79AFFF ffff88801ecc9300 7FB71E79EFFF ffff88801ecc9d00 7FB71E7A1FFF ffff88801ecc9800 7FB71E7A7FFF 0000000000000000 7FFFB81F4FFF ffff88801ecc9400 7FFFB8215FFF 0000000000000000 7FFFB8358FFF ffff88801ecc9700 7FFFB835CFFF ffff88801ecc9b00 7FFFB835EFFF 0000000000000000 FFFFFFFFFFFFFFFF 000000000000000e
[   49.958237][ T7002]     7fb71e689000-7fb71e6a8fff: ffff888029799300
[   49.964699][ T7002]     7fb71e6a9000-7fb71e6a9fff: ffff888029799000
[   49.971103][ T7002]     7fb71e6aa000-7fb71e6c9fff: ffff888029799100
[   49.977581][ T7002]     7fb71e6ca000-7fb71e6d2fff: ffff88802aafc900
[   49.984010][ T7002]     7fb71e6d3000-7fb71e76dfff: ffff88802aafca00
[   49.990475][ T7002]     7fb71e76e000-7fb71e79afff: ffff8880791b3600
[   49.996958][ T7002]     7fb71e79b000-7fb71e79efff: ffff88801ecc9300
[   50.003375][ T7002]     7fb71e79f000-7fb71e7a1fff: ffff88801ecc9d00
[   50.009804][ T7002]     7fb71e7a2000-7fb71e7a7fff: ffff88801ecc9800
[   50.016257][ T7002]     7fb71e7a8000-7fffb81f4fff: 0000000000000000
[   50.022657][ T7002]     7fffb81f5000-7fffb8215fff: ffff88801ecc9400
[   50.029104][ T7002]     7fffb8216000-7fffb8358fff: 0000000000000000
[   50.035562][ T7002]     7fffb8359000-7fffb835cfff: ffff88801ecc9700
[   50.041964][ T7002]     7fffb835d000-7fffb835efff: ffff88801ecc9b00
[   50.048394][ T7002]     7fffb835f000-ffffffffffffffff: 0000000000000000
[   50.055221][ T7002] Pass: 6497211 Run:6497215
[   50.059718][ T7002] CPU: 0 PID: 7002 Comm: syz-executor263 Not tainted 6.4.0-syzkaller-10173-ga901a3568fd2 #0
[   50.069759][ T7002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023
[   50.079811][ T7002] Call Trace:
[   50.083080][ T7002]  <TASK>
[   50.085998][ T7002]  dump_stack_lvl+0x136/0x150
[   50.090668][ T7002]  mt_validate_nulls+0x93d/0xd10
[   50.095593][ T7002]  ? mas_parent_gap+0x7f0/0x7f0
[   50.100518][ T7002]  mt_validate+0x17e3/0x4370
[   50.105107][ T7002]  ? mas_split.isra.0+0x1810/0x1810
[   50.110301][ T7002]  ? rwsem_wake.isra.0+0xc3/0x110
[   50.115320][ T7002]  validate_mm+0x9d/0x470
[   50.119649][ T7002]  ? vma_iter_store+0x9a0/0x9a0
[   50.124496][ T7002]  do_vmi_align_munmap+0x1199/0x1680
[   50.129780][ T7002]  ? __split_vma+0x830/0x830
[   50.134363][ T7002]  ? mtree_range_walk+0x63e/0x940
[   50.139480][ T7002]  ? mas_walk+0x5c7/0x7c0
[   50.143814][ T7002]  do_vmi_munmap+0x266/0x430
[   50.148402][ T7002]  __vm_munmap+0x137/0x380
[   50.152807][ T7002]  ? do_vmi_munmap+0x430/0x430
[   50.157590][ T7002]  ? syscall_enter_from_user_mode+0x26/0x80
[   50.163486][ T7002]  __x64_sys_munmap+0x62/0x80
[   50.168160][ T7002]  do_syscall_64+0x39/0xb0
[   50.172571][ T7002]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   50.178458][ T7002] RIP: 0033:0x7fb71e71cef7
[   50.182865][ T7002] Code: 00 00 00 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb 85 66 2e 0f 1f 84 00 00 00 00 00 90 b8 0b 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   50.202481][ T7002] RSP: 002b:00007fb71e6c9168 EFLAGS: 00000246 ORIG_RAX: 000000000000000b
[   50.210891][ T7002] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fb71e71cef7
[   50.218850][ T7002] RDX: 0000000000002000 RSI: 0000000000002000 RDI: 00007fb716288000
[   50.226812][ T7002] RBP: 00007fb716288000 R08: 0000000000000000 R09: 0000000000000176
[   50.234793][ T7002] R10: 0000000000002000 R11: 0000000000000246 R12: 00007fb71e6c96b8
[   50.242766][ T7002] R13: 00007fb71e6c9180 R14: 00007fb71e6c91c0 R15: 00007fb71e7a16e8
[   50.250761][ T7002]  </TASK>
[   50.255778][ T7002] Sequential nulls end at ffff8880770ab000[14]
[   50.261936][ T7002] BUG at mt_validate_nulls:7177 (1)
[   50.267203][ T7002] maple_tree(ffff88802c491cc0) flags 30B, height 2 root ffff888020c7441e
[   50.275657][ T7002] 0-ffffffffffffffff: node ffff888020c74400 depth 0 type 3 parent ffff88802c491cc1 contents: 93824454733824 18446603337425620992 0 0 0 0 0 0 0 0 | 01 01| ffff88807708820c 140424465911807 ffff888020c7520c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[   50.310463][ T7002]   0-7fb71e688fff: node ffff888077088200 depth 1 type 1 parent ffff888020c74406 contents: 0000000000000000 1FFFEFFF ffff88802bcfdc00 1FFFFFFF ffff88802bcfd300 20FFFFFF ffff88802bcfdb00 21000FFF 0000000000000000 5555564BBFFF ffff88802bcfd100 5555564DDFFF 0000000000000000 7FB716268FFF ffff888029799400 7FB716269FFF ffff88802b651500 7FB71E687FFF ffff888029799200 7FB71E688FFF 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000009
[   50.355197][ T7002]     0-1fffefff: 0000000000000000
[   50.360427][ T7002]     1ffff000-1fffffff: ffff88802bcfdc00
[   50.366390][ T7002]     20000000-20ffffff: ffff88802bcfd300
[   50.372146][ T7002]     21000000-21000fff: ffff88802bcfdb00
[   50.378073][ T7002]     21001000-5555564bbfff: 0000000000000000
[   50.384163][ T7002]     5555564bc000-5555564ddfff: ffff88802bcfd100
[   50.391108][ T7002]     5555564de000-7fb716268fff: 0000000000000000
[   50.397657][ T7002]     7fb716269000-7fb716269fff: ffff888029799400
[   50.404105][ T7002]     7fb71626a000-7fb71e687fff: ffff88802b651500
[   50.410541][ T7002]     7fb71e688000-7fb71e688fff: ffff888029799200
[   50.416994][ T7002]   7fb71e689000-ffffffffffffffff: node ffff888020c75200 depth 1 type 1 parent ffff888020c7440e contents: ffff888029799300 7FB71E6A8FFF ffff888029799000 7FB71E6A9FFF ffff888029799100 7FB71E6C9FFF ffff88802aafc900 7FB71E6D2FFF ffff88802aafca00 7FB71E76DFFF ffff8880791b3600 7FB71E79AFFF ffff88801ecc9300 7FB71E79EFFF ffff88801ecc9d00 7FB71E7A1FFF ffff88801ecc9800 7FB71E7A7FFF 0000000000000000 7FFFB81F4FFF ffff88801ecc9400 7FFFB8215FFF 0000000000000000 7FFFB8358FFF ffff88801ecc9700 7FFFB835CFFF ffff88801ecc9b00 7FFFB835EFFF 0000000000000000 FFFFFFFFFFFFFFFF 000000000000000e
[   50.469360][ T7002]     7fb71e689000-7fb71e6a8fff: ffff888029799300
[   50.475827][ T7002]     7fb71e6a9000-7fb71e6a9fff: ffff888029799000
[   50.482320][ T7002]     7fb71e6aa000-7fb71e6c9fff: ffff888029799100
[   50.488783][ T7002]     7fb71e6ca000-7fb71e6d2fff: ffff88802aafc900
[   50.495231][ T7002]     7fb71e6d3000-7fb71e76dfff: ffff88802aafca00
[   50.501653][ T7002]     7fb71e76e000-7fb71e79afff: ffff8880791b3600
[   50.508116][ T7002]     7fb71e79b000-7fb71e79efff: ffff88801ecc9300
[   50.514560][ T7002]     7fb71e79f000-7fb71e7a1fff: ffff88801ecc9d00
[   50.520972][ T7002]     7fb71e7a2000-7fb71e7a7fff: ffff88801ecc9800
[   50.527430][ T7002]     7fb71e7a8000-7fffb81f4fff: 0000000000000000
[   50.533850][ T7002]     7fffb81f5000-7fffb8215fff: ffff88801ecc9400
[   50.540294][ T7002]     7fffb8216000-7fffb8358fff: 0000000000000000
[   50.546756][ T7002]     7fffb8359000-7fffb835cfff: ffff88801ecc9700
[   50.553153][ T7002]     7fffb835d000-7fffb835efff: ffff88801ecc9b00
[   50.559679][ T7002]     7fffb835f000-ffffffffffffffff: 0000000000000000
[   50.566488][ T7002] Pass: 6497214 Run:6497219
[   50.570980][ T7002] CPU: 0 PID: 7002 Comm: syz-executor263 Not tainted 6.4.0-syzkaller-10173-ga901a3568fd2 #0
[   50.581064][ T7002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023
[   50.591114][ T7002] Call Trace:
[   50.594381][ T7002]  <TASK>
[   50.597391][ T7002]  dump_stack_lvl+0x136/0x150
[   50.602064][ T7002]  mt_validate_nulls+0x93d/0xd10
[   50.607013][ T7002]  ? mas_parent_gap+0x7f0/0x7f0
[   50.611864][ T7002]  mt_validate+0x17e3/0x4370
[   50.616456][ T7002]  ? mas_split.isra.0+0x1810/0x1810
[   50.621651][ T7002]  ? rwsem_wake.isra.0+0xc3/0x110
[   50.626669][ T7002]  validate_mm+0x9d/0x470
[   50.631000][ T7002]  ? vma_iter_store+0x9a0/0x9a0
[   50.635855][ T7002]  do_vmi_align_munmap+0x1199/0x1680
[   50.641145][ T7002]  ? __split_vma+0x830/0x830
[   50.645733][ T7002]  ? mtree_range_walk+0x63e/0x940
[   50.650762][ T7002]  ? mas_walk+0x5c7/0x7c0
[   50.655094][ T7002]  do_vmi_munmap+0x266/0x430
[   50.659686][ T7002]  __vm_munmap+0x137/0x380
[   50.664098][ T7002]  ? do_vmi_munmap+0x430/0x430
[   50.668860][ T7002]  ? syscall_enter_from_user_mode+0x26/0x80
[   50.674754][ T7002]  __x64_sys_munmap+0x62/0x80
[   50.679426][ T7002]  do_syscall_64+0x39/0xb0
[   50.683835][ T7002]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   50.689731][ T7002] RIP: 0033:0x7fb71e71cef7
[   50.694137][ T7002] Code: 00 00 00 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb 85 66 2e 0f 1f 84 00 00 00 00 00 90 b8 0b 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   50.713772][ T7002] RSP: 002b:00007fb71e6c9168 EFLAGS: 00000246 ORIG_RAX: 000000000000000b
[   50.722175][ T7002] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fb71e71cef7
[   50.730141][ T7002] RDX: 0000000000002000 RSI: 0000000000002000 RDI: 00007fb716288000
[   50.738114][ T7002] RBP: 00007fb716288000 R08: 0000000000000000 R09: 0000000000000176
[   50.746101][ T7002] R10: 0000000000002000 R11: 0000000000000246 R12: 00007fb71e6c96b8
[   50.754076][ T7002] R13: 00007fb71e6c9180 R14: 00007fb71e6c91c0 R15: 00007fb71e7a16e8
[   50.762056][ T7002]  </TASK>
[   50.766724][ T7002] ==================================================================
[   50.774799][ T7002] BUG: KASAN: slab-out-of-bounds in mt_validate_nulls+0xc04/0xd10
[   50.782589][ T7002] Read of size 8 at addr ffff8880770ab100 by task syz-executor263/7002
[   50.790806][ T7002] 
[   50.793109][ T7002] CPU: 0 PID: 7002 Comm: syz-executor263 Not tainted 6.4.0-syzkaller-10173-ga901a3568fd2 #0
[   50.803178][ T7002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023
[   50.813219][ T7002] Call Trace:
[   50.816478][ T7002]  <TASK>
[   50.819392][ T7002]  dump_stack_lvl+0xd9/0x150
[   50.823967][ T7002]  print_address_description.constprop.0+0x2c/0x3c0
[   50.830543][ T7002]  kasan_report+0x11d/0x130
[   50.835030][ T7002]  ? mt_validate_nulls+0xc04/0xd10
[   50.840122][ T7002]  mt_validate_nulls+0xc04/0xd10
[   50.845047][ T7002]  ? mas_parent_gap+0x7f0/0x7f0
[   50.849897][ T7002]  mt_validate+0x17e3/0x4370
[   50.854486][ T7002]  ? mas_split.isra.0+0x1810/0x1810
[   50.859668][ T7002]  ? rwsem_wake.isra.0+0xc3/0x110
[   50.864696][ T7002]  validate_mm+0x9d/0x470
[   50.869011][ T7002]  ? vma_iter_store+0x9a0/0x9a0
[   50.873845][ T7002]  do_vmi_align_munmap+0x1199/0x1680
[   50.879120][ T7002]  ? __split_vma+0x830/0x830
[   50.883713][ T7002]  ? mtree_range_walk+0x63e/0x940
[   50.888736][ T7002]  ? mas_walk+0x5c7/0x7c0
[   50.893061][ T7002]  do_vmi_munmap+0x266/0x430
[   50.897727][ T7002]  __vm_munmap+0x137/0x380
[   50.902132][ T7002]  ? do_vmi_munmap+0x430/0x430
[   50.906887][ T7002]  ? syscall_enter_from_user_mode+0x26/0x80
[   50.912779][ T7002]  __x64_sys_munmap+0x62/0x80
[   50.917528][ T7002]  do_syscall_64+0x39/0xb0
[   50.921935][ T7002]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   50.927820][ T7002] RIP: 0033:0x7fb71e71cef7
[   50.932220][ T7002] Code: 00 00 00 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb 85 66 2e 0f 1f 84 00 00 00 00 00 90 b8 0b 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   50.951813][ T7002] RSP: 002b:00007fb71e6c9168 EFLAGS: 00000246 ORIG_RAX: 000000000000000b
[   50.960214][ T7002] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fb71e71cef7
[   50.968174][ T7002] RDX: 0000000000002000 RSI: 0000000000002000 RDI: 00007fb716288000
[   50.976135][ T7002] RBP: 00007fb716288000 R08: 0000000000000000 R09: 0000000000000176
[   50.984097][ T7002] R10: 0000000000002000 R11: 0000000000000246 R12: 00007fb71e6c96b8
[   50.992056][ T7002] R13: 00007fb71e6c9180 R14: 00007fb71e6c91c0 R15: 00007fb71e7a16e8
[   51.000017][ T7002]  </TASK>
[   51.003020][ T7002] 
[   51.005325][ T7002] Allocated by task 7002:
[   51.009628][ T7002]  kasan_save_stack+0x22/0x40
[   51.014294][ T7002]  kasan_set_track+0x25/0x30
[   51.018872][ T7002]  __kasan_slab_alloc+0x7f/0x90
[   51.023708][ T7002]  kmem_cache_alloc+0x16c/0x380
[   51.028545][ T7002]  mas_alloc_nodes+0x4ec/0x8b0
[   51.033301][ T7002]  mas_node_count_gfp+0x106/0x140
[   51.038315][ T7002]  mas_wr_node_store+0xa64/0x1170
[   51.043321][ T7002]  mas_wr_modify+0x28b/0x10d0
[   51.047983][ T7002]  mas_wr_store_entry.isra.0+0x495/0x1030
[   51.053686][ T7002]  mas_store_gfp+0xce/0x1f0
[   51.058261][ T7002]  do_vmi_align_munmap+0xd02/0x1680
[   51.063447][ T7002]  do_vmi_munmap+0x266/0x430
[   51.068024][ T7002]  __vm_munmap+0x137/0x380
[   51.072425][ T7002]  __x64_sys_munmap+0x62/0x80
[   51.077112][ T7002]  do_syscall_64+0x39/0xb0
[   51.081517][ T7002]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   51.087400][ T7002] 
[   51.089705][ T7002] Last potentially related work creation:
[   51.095422][ T7002]  kasan_save_stack+0x22/0x40
[   51.100107][ T7002]  __kasan_record_aux_stack+0xb9/0xd0
[   51.105497][ T7002]  __call_rcu_common.constprop.0+0x99/0x7e0
[   51.111395][ T7002]  mas_replace+0x98c/0xfa0
[   51.115804][ T7002]  mas_wr_node_store+0xcab/0x1170
[   51.120816][ T7002]  mas_wr_modify+0x28b/0x10d0
[   51.125476][ T7002]  mas_wr_store_entry.isra.0+0x495/0x1030
[   51.131189][ T7002]  mas_store_prealloc+0xb3/0x270
[   51.136114][ T7002]  mmap_region+0x91c/0x2570
[   51.140611][ T7002]  do_mmap+0x850/0xee0
[   51.144671][ T7002]  vm_mmap_pgoff+0x1a2/0x3b0
[   51.149280][ T7002]  ksys_mmap_pgoff+0x7d/0x5b0
[   51.153963][ T7002]  do_syscall_64+0x39/0xb0
[   51.158368][ T7002]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   51.164252][ T7002] 
[   51.166558][ T7002] Second to last potentially related work creation:
[   51.173118][ T7002]  kasan_save_stack+0x22/0x40
[   51.177793][ T7002]  __kasan_record_aux_stack+0xb9/0xd0
[   51.183165][ T7002]  __call_rcu_common.constprop.0+0x99/0x7e0
[   51.189049][ T7002]  mas_replace+0x98c/0xfa0
[   51.193455][ T7002]  mas_wr_node_store+0xcab/0x1170
[   51.198468][ T7002]  mas_wr_modify+0x28b/0x10d0
[   51.203139][ T7002]  mas_wr_store_entry.isra.0+0x495/0x1030
[   51.208848][ T7002]  mas_store_prealloc+0xb3/0x270
[   51.213782][ T7002]  vma_complete+0x8fd/0xdc0
[   51.218280][ T7002]  __split_vma+0x53b/0x830
[   51.222685][ T7002]  split_vma+0xc6/0x110
[   51.226827][ T7002]  mprotect_fixup+0x891/0xbd0
[   51.231490][ T7002]  do_mprotect_pkey+0x883/0xd40
[   51.236329][ T7002]  __x64_sys_mprotect+0x78/0xb0
[   51.241171][ T7002]  do_syscall_64+0x39/0xb0
[   51.245575][ T7002]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   51.251480][ T7002] 
[   51.253786][ T7002] The buggy address belongs to the object at ffff8880770ab000
[   51.253786][ T7002]  which belongs to the cache maple_node of size 256
[   51.267741][ T7002] The buggy address is located 0 bytes to the right of
[   51.267741][ T7002]  allocated 256-byte region [ffff8880770ab000, ffff8880770ab100)
[   51.282216][ T7002] 
[   51.284525][ T7002] The buggy address belongs to the physical page:
[   51.290947][ T7002] page:ffffea0001dc2a80 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x770aa
[   51.301081][ T7002] head:ffffea0001dc2a80 order:1 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[   51.309999][ T7002] anon flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[   51.318394][ T7002] page_type: 0xffffffff()
[   51.322706][ T7002] raw: 00fff00000010200 ffff88801324d000 0000000000000000 dead000000000001
[   51.331273][ T7002] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[   51.339836][ T7002] page dumped because: kasan: bad access detected
[   51.346228][ T7002] page_owner tracks the page as allocated
[   51.351921][ T7002] page last allocated via order 1, migratetype Unmovable, gfp_mask 0x52800(GFP_NOWAIT|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 4689, tgid 4689 (dhcpcd-run-hook), ts 21566309288, free_ts 20023594773
[   51.371540][ T7002]  post_alloc_hook+0x2db/0x350
[   51.376300][ T7002]  get_page_from_freelist+0xfed/0x2d30
[   51.381749][ T7002]  __alloc_pages+0x1cb/0x4a0
[   51.386333][ T7002]  alloc_pages+0x1aa/0x270
[   51.390736][ T7002]  allocate_slab+0x25f/0x390
[   51.395313][ T7002]  ___slab_alloc+0xbc3/0x15d0
[   51.400000][ T7002]  kmem_cache_alloc_bulk+0x270/0x860
[   51.405276][ T7002]  mas_alloc_nodes+0x341/0x8b0
[   51.410035][ T7002]  mas_node_count_gfp+0x106/0x140
[   51.415054][ T7002]  mas_expected_entries+0x117/0x200
[   51.420243][ T7002]  dup_mmap+0x4e4/0x19b0
[   51.424473][ T7002]  copy_process+0x6663/0x75c0
[   51.429138][ T7002]  kernel_clone+0xeb/0x890
[   51.433537][ T7002]  __do_sys_clone+0xba/0x100
[   51.438111][ T7002]  do_syscall_64+0x39/0xb0
[   51.442521][ T7002]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   51.448406][ T7002] page last free stack trace:
[   51.453059][ T7002]  free_unref_page_prepare+0x62e/0xcb0
[   51.458797][ T7002]  free_unref_page+0x33/0x370
[   51.463466][ T7002]  qlist_free_all+0x6a/0x170
[   51.468039][ T7002]  kasan_quarantine_reduce+0x195/0x220
[   51.473483][ T7002]  __kasan_slab_alloc+0x63/0x90
[   51.478413][ T7002]  kmem_cache_alloc+0x16c/0x380
[   51.483348][ T7002]  getname_flags.part.0+0x50/0x4f0
[   51.488564][ T7002]  getname_flags+0x9e/0xe0
[   51.492970][ T7002]  user_path_at_empty+0x2f/0x60
[   51.497803][ T7002]  do_readlinkat+0xcd/0x2f0
[   51.502297][ T7002]  __x64_sys_readlink+0x78/0xb0
[   51.507142][ T7002]  do_syscall_64+0x39/0xb0
[   51.511545][ T7002]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   51.517427][ T7002] 
[   51.519733][ T7002] Memory state around the buggy address:
[   51.525341][ T7002]  ffff8880770ab000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   51.533387][ T7002]  ffff8880770ab080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   51.541431][ T7002] >ffff8880770ab100: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   51.549478][ T7002]                    ^
[   51.553525][ T7002]  ffff8880770ab180: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   51.561661][ T7002]  ffff8880770ab200: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   51.569789][ T7002] ==================================================================
[   51.579813][ T7002] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   51.587016][ T7002] CPU: 0 PID: 7002 Comm: syz-executor263 Not tainted 6.4.0-syzkaller-10173-ga901a3568fd2 #0
[   51.597098][ T7002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023
[   51.607165][ T7002] Call Trace:
[   51.610434][ T7002]  <TASK>
[   51.613351][ T7002]  dump_stack_lvl+0xd9/0x150
[   51.617942][ T7002]  panic+0x686/0x730
[   51.621831][ T7002]  ? panic_smp_self_stop+0xa0/0xa0
[   51.626936][ T7002]  ? preempt_schedule_thunk+0x1a/0x30
[   51.632342][ T7002]  ? preempt_schedule_common+0x45/0xb0
[   51.637799][ T7002]  check_panic_on_warn+0xb1/0xc0
[   51.642749][ T7002]  end_report+0x108/0x150
[   51.647072][ T7002]  kasan_report+0xfa/0x130
[   51.651482][ T7002]  ? mt_validate_nulls+0xc04/0xd10
[   51.656670][ T7002]  mt_validate_nulls+0xc04/0xd10
[   51.661591][ T7002]  ? mas_parent_gap+0x7f0/0x7f0
[   51.666429][ T7002]  mt_validate+0x17e3/0x4370
[   51.671008][ T7002]  ? mas_split.isra.0+0x1810/0x1810
[   51.676197][ T7002]  ? rwsem_wake.isra.0+0xc3/0x110
[   51.681214][ T7002]  validate_mm+0x9d/0x470
[   51.685533][ T7002]  ? vma_iter_store+0x9a0/0x9a0
[   51.690372][ T7002]  do_vmi_align_munmap+0x1199/0x1680
[   51.695667][ T7002]  ? __split_vma+0x830/0x830
[   51.700245][ T7002]  ? mtree_range_walk+0x63e/0x940
[   51.705268][ T7002]  ? mas_walk+0x5c7/0x7c0
[   51.709592][ T7002]  do_vmi_munmap+0x266/0x430
[   51.714175][ T7002]  __vm_munmap+0x137/0x380
[   51.718579][ T7002]  ? do_vmi_munmap+0x430/0x430
[   51.723332][ T7002]  ? syscall_enter_from_user_mode+0x26/0x80
[   51.729220][ T7002]  __x64_sys_munmap+0x62/0x80
[   51.733884][ T7002]  do_syscall_64+0x39/0xb0
[   51.738295][ T7002]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   51.744178][ T7002] RIP: 0033:0x7fb71e71cef7
[   51.748576][ T7002] Code: 00 00 00 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb 85 66 2e 0f 1f 84 00 00 00 00 00 90 b8 0b 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   51.768259][ T7002] RSP: 002b:00007fb71e6c9168 EFLAGS: 00000246 ORIG_RAX: 000000000000000b
[   51.776657][ T7002] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fb71e71cef7
[   51.784614][ T7002] RDX: 0000000000002000 RSI: 0000000000002000 RDI: 00007fb716288000
[   51.792569][ T7002] RBP: 00007fb716288000 R08: 0000000000000000 R09: 0000000000000176
[   51.800525][ T7002] R10: 0000000000002000 R11: 0000000000000246 R12: 00007fb71e6c96b8
[   51.808485][ T7002] R13: 00007fb71e6c9180 R14: 00007fb71e6c91c0 R15: 00007fb71e7a16e8
[   51.816447][ T7002]  </TASK>
[   51.820496][ T7002] Kernel Offset: disabled
[   51.824802][ T7002] Rebooting in 86400 seconds..