program:
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/21], 0x48)
syz_read_part_table(0x1057, &(0x7f0000001080)="$eJzsz7ttw1AMBdDLQAqUJRJNkBmyRBpPI03i3lOo8jhuXcqQ8LSC7eKc4n0IXgIML/WRdZdKzve/fGbNUqkl+Um6ZNy6hjnJXHviqyXXPn2Gbpzb/7fdt1TqGD/Vqb2+k9R01K/bUfm/PGVJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHhzjwAAAP//M+YRxg==")
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f0000000000)=ANY=[@ANYBLOB="1808000007000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bca900000000000035090100000000009500000000000000b5090200020000007b9a00fe000000004409000000000000c39a04fee1000000bf8600000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018220000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7050000080000004608f0ff76000000bf9800000000000056080000000000008500000007000000b7000000000000009500000000000000937576430cd7a011575d4e93d55a6f3676ec8ac8913e297b5f01e66287034faaec6a5ef85b5dc4d7464f5d4469dc9e0687e8ae3710ec4b094b4f562ae14d4adac4497ed6ec8852d14d77b742cb437b7c7a034bceddd34b3917cd74dc2ce0c5b94ea4dc773d23928b425ddb0eafb56c2f47be4cc105b49a49527645a5b07dbf384cb4372c6d86e6ed1989a5a737ee8964f6f1f6576ee564a43805177a60"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
[ 69.779584][ T4661] Bluetooth: hci0: command tx timeout
[ 69.923806][ T5320] loop0: detected capacity change from 0 to 8192
[ 70.511311][ T5320] ==================================================================
[ 70.514078][ T5320] BUG: KASAN: vmalloc-out-of-bounds in vrealloc_noprof+0x340/0x3a0
[ 70.516851][ T5320] Write of size 4064 at addr ffffc9000d3b5020 by task syz.0.0/5320
[ 70.519599][ T5320]
[ 70.520430][ T5320] CPU: 0 UID: 0 PID: 5320 Comm: syz.0.0 Not tainted 6.12.0-syzkaller-12128-gf788b5ef1ca9 #0
[ 70.523850][ T5320] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 70.527501][ T5320] Call Trace:
[ 70.528658][ T5320]
[ 70.529721][ T5320] dump_stack_lvl+0x241/0x360
[ 70.531323][ T5320] ? __pfx_dump_stack_lvl+0x10/0x10
[ 70.533102][ T5320] ? __pfx__printk+0x10/0x10
[ 70.534687][ T5320] ? _printk+0xd5/0x120
[ 70.536152][ T5320] print_report+0x169/0x550
[ 70.537704][ T5320] ? __virt_addr_valid+0xbd/0x530
[ 70.539534][ T5320] ? vrealloc_noprof+0x340/0x3a0
[ 70.541263][ T5320] kasan_report+0x143/0x180
[ 70.542833][ T5320] ? vrealloc_noprof+0x340/0x3a0
[ 70.544561][ T5320] kasan_check_range+0x282/0x290
[ 70.546250][ T5320] __asan_memset+0x23/0x50
[ 70.547780][ T5320] vrealloc_noprof+0x340/0x3a0
[ 70.549489][ T5320] push_insn_history+0x16c/0x6a0
[ 70.551259][ T5320] do_check+0x692f/0xfcd0
[ 70.552765][ T5320] ? __pfx_do_check+0x10/0x10
[ 70.554431][ T5320] ? mark_reg_not_init+0xd4/0x4b0
[ 70.556317][ T5320] ? __asan_memcpy+0x40/0x70
[ 70.557933][ T5320] ? mark_reg_not_init+0xd4/0x4b0
[ 70.559787][ T5320] do_check_common+0x1564/0x2010
[ 70.561540][ T5320] bpf_check+0x19380/0x1f1b0
[ 70.563166][ T5320] ? _raw_spin_unlock_irqrestore+0x8f/0x140
[ 70.565242][ T5320] ? validate_chain+0x11e/0x5920
[ 70.566948][ T5320] ? page_ext_get+0x20/0x2a0
[ 70.568525][ T5320] ? post_alloc_hook+0x206/0x230
[ 70.570284][ T5320] ? __pfx_validate_chain+0x10/0x10
[ 70.572085][ T5320] ? validate_chain+0x11e/0x5920
[ 70.573776][ T5320] ? validate_chain+0x11e/0x5920
[ 70.575509][ T5320] ? mark_lock+0x9a/0x360
[ 70.577010][ T5320] ? __pfx___might_resched+0x10/0x10
[ 70.578864][ T5320] ? validate_chain+0x11e/0x5920
[ 70.580575][ T5320] ? validate_chain+0x11e/0x5920
[ 70.582335][ T5320] ? __pfx_validate_chain+0x10/0x10
[ 70.584156][ T5320] ? validate_chain+0x11e/0x5920
[ 70.585842][ T5320] ? validate_chain+0x11e/0x5920
[ 70.587599][ T5320] ? validate_chain+0x11e/0x5920
[ 70.589280][ T5320] ? __pfx_validate_chain+0x10/0x10
[ 70.591139][ T5320] ? __pfx_validate_chain+0x10/0x10
[ 70.592930][ T5320] ? __pfx_bpf_check+0x10/0x10
[ 70.594569][ T5320] ? __pfx_validate_chain+0x10/0x10
[ 70.596388][ T5320] ? mark_lock+0x9a/0x360
[ 70.597917][ T5320] ? mark_lock+0x9a/0x360
[ 70.599452][ T5320] ? __lock_acquire+0x1397/0x2100
[ 70.601325][ T5320] ? mark_lock+0x9a/0x360
[ 70.602875][ T5320] ? __lock_acquire+0x1397/0x2100
[ 70.604608][ T5320] ? __pfx_lock_acquire+0x10/0x10
[ 70.606325][ T5320] ? ktime_get_with_offset+0x8c/0x290
[ 70.608218][ T5320] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 70.610400][ T5320] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 70.612686][ T5320] ? ktime_get_with_offset+0x8c/0x290
[ 70.614621][ T5320] ? seqcount_lockdep_reader_access+0x157/0x220
[ 70.616873][ T5320] ? lockdep_hardirqs_on+0x99/0x150
[ 70.618821][ T5320] ? seqcount_lockdep_reader_access+0x1d7/0x220
[ 70.621041][ T5320] ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[ 70.623304][ T5320] ? _raw_spin_unlock+0x28/0x50
[ 70.625092][ T5320] ? __asan_memset+0x23/0x50
[ 70.626671][ T5320] ? bpf_obj_name_cpy+0x18a/0x1d0
[ 70.628471][ T5320] bpf_prog_load+0x1667/0x20f0
[ 70.630133][ T5320] ? __pfx_bpf_prog_load+0x10/0x10
[ 70.631960][ T5320] ? __pfx___might_resched+0x10/0x10
[ 70.633791][ T5320] ? __might_fault+0xc6/0x120
[ 70.635443][ T5320] __sys_bpf+0x4ee/0x810
[ 70.636899][ T5320] ? __pfx___sys_bpf+0x10/0x10
[ 70.638601][ T5320] ? __rseq_handle_notify_resume+0x34d/0x14e0
[ 70.640794][ T5320] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 70.642901][ T5320] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 70.645055][ T5320] ? do_syscall_64+0x100/0x230
[ 70.646719][ T5320] __x64_sys_bpf+0x7c/0x90
[ 70.648304][ T5320] do_syscall_64+0xf3/0x230
[ 70.649892][ T5320] ? clear_bhb_loop+0x35/0x90
[ 70.651702][ T5320] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 70.653841][ T5320] RIP: 0033:0x7ff4b9980849
[ 70.655372][ T5320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 70.662340][ T5320] RSP: 002b:00007ff4ba7cf058 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 70.665205][ T5320] RAX: ffffffffffffffda RBX: 00007ff4b9b45fa0 RCX: 00007ff4b9980849
[ 70.667970][ T5320] RDX: 0000000000000094 RSI: 0000000020000840 RDI: 0000000000000005
[ 70.670813][ T5320] RBP: 00007ff4b99f3986 R08: 0000000000000000 R09: 0000000000000000
[ 70.673640][ T5320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 70.676387][ T5320] R13: 0000000000000000 R14: 00007ff4b9b45fa0 R15: 00007fff1bc1c7f8
[ 70.679153][ T5320]
[ 70.680305][ T5320]
[ 70.681219][ T5320] The buggy address belongs to the virtual mapping at
[ 70.681219][ T5320] [ffffc9000d375000, ffffc9000d3b7000) created by:
[ 70.681219][ T5320] kvrealloc_noprof+0xc7/0x120
[ 70.687316][ T5320]
[ 70.688154][ T5320] The buggy address belongs to the physical page:
[ 70.690371][ T5320] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xe9 pfn:0x63a
[ 70.693722][ T5320] flags: 0x7ff00000000000(node=0|zone=0|lastcpupid=0x7ff)
[ 70.696329][ T5320] raw: 007ff00000000000 0000000000000000 dead000000000122 0000000000000000
[ 70.699479][ T5320] raw: 00000000000000e9 0000000000000000 00000001ffffffff 0000000000000000
[ 70.702746][ T5320] page dumped because: kasan: bad access detected
[ 70.705156][ T5320] page_owner tracks the page as allocated
[ 70.707244][ T5320] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x102cc2(GFP_HIGHUSER|__GFP_NOWARN), pid 5320, tgid 5319 (syz.0.0), ts 70511156819, free_ts 52286199995
[ 70.713320][ T5320] post_alloc_hook+0x1f3/0x230
[ 70.715124][ T5320] get_page_from_freelist+0x365c/0x37a0
[ 70.717219][ T5320] __alloc_pages_slowpath+0x414/0x1020
[ 70.719162][ T5320] __alloc_pages_noprof+0x49b/0x710
[ 70.721131][ T5320] alloc_pages_mpol_noprof+0x3e8/0x680
[ 70.722982][ T5320] __vmalloc_node_range_noprof+0x9c9/0x1380
[ 70.725057][ T5320] __kvmalloc_node_noprof+0x142/0x190
[ 70.727007][ T5320] kvrealloc_noprof+0xc7/0x120
[ 70.728800][ T5320] push_insn_history+0x16c/0x6a0
[ 70.730595][ T5320] do_check+0x692f/0xfcd0
[ 70.732116][ T5320] do_check_common+0x1564/0x2010
[ 70.733968][ T5320] bpf_check+0x19380/0x1f1b0
[ 70.735780][ T5320] bpf_prog_load+0x1667/0x20f0
[ 70.737529][ T5320] __sys_bpf+0x4ee/0x810
[ 70.739111][ T5320] __x64_sys_bpf+0x7c/0x90
[ 70.740801][ T5320] do_syscall_64+0xf3/0x230
[ 70.742559][ T5320] page last free pid 5263 tgid 5263 stack trace:
[ 70.744839][ T5320] free_unref_folios+0xf62/0x1a90
[ 70.746636][ T5320] folios_put_refs+0x76c/0x860
[ 70.748412][ T5320] free_pages_and_swap_cache+0x2ea/0x690
[ 70.750426][ T5320] tlb_flush_mmu+0x3a3/0x680
[ 70.752231][ T5320] tlb_finish_mmu+0xd4/0x200
[ 70.753995][ T5320] exit_mmap+0x496/0xc20
[ 70.755601][ T5320] __mmput+0x115/0x3c0
[ 70.757145][ T5320] exit_mm+0x220/0x310
[ 70.758703][ T5320] do_exit+0x9b2/0x28e0
[ 70.760240][ T5320] do_group_exit+0x207/0x2c0
[ 70.762052][ T5320] __x64_sys_exit_group+0x3f/0x40
[ 70.763908][ T5320] x64_sys_call+0x26a8/0x26b0
[ 70.765605][ T5320] do_syscall_64+0xf3/0x230
[ 70.767299][ T5320] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 70.769481][ T5320]
[ 70.770381][ T5320] Memory state around the buggy address:
[ 70.772483][ T5320] ffffc9000d3b4f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 70.775474][ T5320] ffffc9000d3b4f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 70.778473][ T5320] >ffffc9000d3b5000: 00 00 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 70.781516][ T5320] ^
[ 70.783334][ T5320] ffffc9000d3b5080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 70.786161][ T5320] ffffc9000d3b5100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 70.788905][ T5320] ==================================================================
[ 71.075177][ T1306] ieee802154 phy0 wpan0: encryption failed: -22
[ 71.077558][ T1306] ieee802154 phy1 wpan1: encryption failed: -22
[ 71.109818][ T5320] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 71.112482][ T5320] CPU: 0 UID: 0 PID: 5320 Comm: syz.0.0 Not tainted 6.12.0-syzkaller-12128-gf788b5ef1ca9 #0
[ 71.116049][ T5320] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 71.119849][ T5320] Call Trace:
[ 71.121069][ T5320]
[ 71.122143][ T5320] dump_stack_lvl+0x241/0x360
[ 71.123857][ T5320] ? __pfx_dump_stack_lvl+0x10/0x10
[ 71.125680][ T5320] ? __pfx__printk+0x10/0x10
[ 71.127337][ T5320] ? preempt_schedule+0xe1/0xf0
[ 71.129060][ T5320] ? vscnprintf+0x5d/0x90
[ 71.130601][ T5320] panic+0x349/0x880
[ 71.132075][ T5320] ? check_panic_on_warn+0x21/0xb0
[ 71.133876][ T5320] ? __pfx_panic+0x10/0x10
[ 71.135460][ T5320] ? _raw_spin_unlock_irqrestore+0x130/0x140
[ 71.137264][ T5320] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 71.139270][ T5320] ? print_report+0x502/0x550
[ 71.140731][ T5320] check_panic_on_warn+0x86/0xb0
[ 71.142350][ T5320] ? vrealloc_noprof+0x340/0x3a0
[ 71.143874][ T5320] end_report+0x77/0x160
[ 71.145200][ T5320] kasan_report+0x154/0x180
[ 71.146751][ T5320] ? vrealloc_noprof+0x340/0x3a0
[ 71.148523][ T5320] kasan_check_range+0x282/0x290
[ 71.150287][ T5320] __asan_memset+0x23/0x50
[ 71.151904][ T5320] vrealloc_noprof+0x340/0x3a0
[ 71.153589][ T5320] push_insn_history+0x16c/0x6a0
[ 71.155366][ T5320] do_check+0x692f/0xfcd0
[ 71.156936][ T5320] ? __pfx_do_check+0x10/0x10
[ 71.158595][ T5320] ? mark_reg_not_init+0xd4/0x4b0
[ 71.160366][ T5320] ? __asan_memcpy+0x40/0x70
[ 71.162010][ T5320] ? mark_reg_not_init+0xd4/0x4b0
[ 71.163834][ T5320] do_check_common+0x1564/0x2010
[ 71.165613][ T5320] bpf_check+0x19380/0x1f1b0
[ 71.167257][ T5320] ? _raw_spin_unlock_irqrestore+0x8f/0x140
[ 71.169349][ T5320] ? validate_chain+0x11e/0x5920
[ 71.171288][ T5320] ? page_ext_get+0x20/0x2a0
[ 71.172938][ T5320] ? post_alloc_hook+0x206/0x230
[ 71.174822][ T5320] ? __pfx_validate_chain+0x10/0x10
[ 71.176626][ T5320] ? validate_chain+0x11e/0x5920
[ 71.178318][ T5320] ? validate_chain+0x11e/0x5920
[ 71.180145][ T5320] ? mark_lock+0x9a/0x360
[ 71.181757][ T5320] ? __pfx___might_resched+0x10/0x10
[ 71.183709][ T5320] ? validate_chain+0x11e/0x5920
[ 71.185446][ T5320] ? validate_chain+0x11e/0x5920
[ 71.187208][ T5320] ? __pfx_validate_chain+0x10/0x10
[ 71.189067][ T5320] ? validate_chain+0x11e/0x5920
[ 71.190859][ T5320] ? validate_chain+0x11e/0x5920
[ 71.192724][ T5320] ? validate_chain+0x11e/0x5920
[ 71.194302][ T5320] ? __pfx_validate_chain+0x10/0x10
[ 71.195899][ T5320] ? __pfx_validate_chain+0x10/0x10
[ 71.197700][ T5320] ? __pfx_bpf_check+0x10/0x10
[ 71.199481][ T5320] ? __pfx_validate_chain+0x10/0x10
[ 71.201411][ T5320] ? mark_lock+0x9a/0x360
[ 71.202977][ T5320] ? mark_lock+0x9a/0x360
[ 71.204440][ T5320] ? __lock_acquire+0x1397/0x2100
[ 71.206288][ T5320] ? mark_lock+0x9a/0x360
[ 71.207873][ T5320] ? __lock_acquire+0x1397/0x2100
[ 71.209686][ T5320] ? __pfx_lock_acquire+0x10/0x10
[ 71.211540][ T5320] ? ktime_get_with_offset+0x8c/0x290
[ 71.213480][ T5320] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 71.215672][ T5320] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 71.217948][ T5320] ? ktime_get_with_offset+0x8c/0x290
[ 71.219901][ T5320] ? seqcount_lockdep_reader_access+0x157/0x220
[ 71.222834][ T5320] ? lockdep_hardirqs_on+0x99/0x150
[ 71.224745][ T5320] ? seqcount_lockdep_reader_access+0x1d7/0x220
[ 71.227037][ T5320] ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[ 71.229299][ T5320] ? _raw_spin_unlock+0x28/0x50
[ 71.231228][ T5320] ? __asan_memset+0x23/0x50
[ 71.232839][ T5320] ? bpf_obj_name_cpy+0x18a/0x1d0
[ 71.234547][ T5320] bpf_prog_load+0x1667/0x20f0
[ 71.236213][ T5320] ? __pfx_bpf_prog_load+0x10/0x10
[ 71.237947][ T5320] ? __pfx___might_resched+0x10/0x10
[ 71.239761][ T5320] ? __might_fault+0xc6/0x120
[ 71.241588][ T5320] __sys_bpf+0x4ee/0x810
[ 71.243059][ T5320] ? __pfx___sys_bpf+0x10/0x10
[ 71.244755][ T5320] ? __rseq_handle_notify_resume+0x34d/0x14e0
[ 71.246816][ T5320] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 71.248762][ T5320] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 71.250879][ T5320] ? do_syscall_64+0x100/0x230
[ 71.252487][ T5320] __x64_sys_bpf+0x7c/0x90
[ 71.253958][ T5320] do_syscall_64+0xf3/0x230
[ 71.255497][ T5320] ? clear_bhb_loop+0x35/0x90
[ 71.257084][ T5320] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 71.259118][ T5320] RIP: 0033:0x7ff4b9980849
[ 71.260597][ T5320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 71.266981][ T5320] RSP: 002b:00007ff4ba7cf058 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 71.269756][ T5320] RAX: ffffffffffffffda RBX: 00007ff4b9b45fa0 RCX: 00007ff4b9980849
[ 71.272390][ T5320] RDX: 0000000000000094 RSI: 0000000020000840 RDI: 0000000000000005
[ 71.275029][ T5320] RBP: 00007ff4b99f3986 R08: 0000000000000000 R09: 0000000000000000
[ 71.277649][ T5320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 71.280281][ T5320] R13: 0000000000000000 R14: 00007ff4b9b45fa0 R15: 00007fff1bc1c7f8
[ 71.282948][ T5320]
[ 71.284220][ T5320] Kernel Offset: disabled
[ 71.285650][ T5320] Rebooting in 86400 seconds..