Warning: Permanently added '10.128.0.168' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [   27.570918] ==================================================================
[   27.578298] BUG: KASAN: stack-out-of-bounds in unwind_next_frame+0x146f/0x17d0
[   27.585634] Read of size 8 at addr ffff8880b38bf9a8 by task syz-executor162/7954
[   27.593142] 
[   27.594771] CPU: 0 PID: 7954 Comm: syz-executor162 Not tainted 4.14.286-syzkaller #0
[   27.602622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[   27.611953] Call Trace:
[   27.614520]  dump_stack+0x1b2/0x281
[   27.618128]  print_address_description.cold+0x54/0x1d3
[   27.623382]  kasan_report_error.cold+0x8a/0x191
[   27.628031]  ? unwind_next_frame+0x146f/0x17d0
[   27.632593]  __asan_report_load8_noabort+0x68/0x70
[   27.637500]  ? unwind_next_frame+0x146f/0x17d0
[   27.642065]  unwind_next_frame+0x146f/0x17d0
[   27.646449]  ? entry_SYSCALL_64_after_hwframe+0x46/0xbb
[   27.651803]  ? deref_stack_reg+0x1a0/0x1a0
[   27.656013]  ? is_bpf_text_address+0xb8/0x150
[   27.660490]  ? check_preemption_disabled+0x35/0x240
[   27.665499]  ? entry_SYSCALL_64_after_hwframe+0x46/0xbb
[   27.670839]  perf_callchain_kernel+0x38c/0x520
[   27.675404]  ? arch_perf_update_userpage+0x300/0x300
[   27.680483]  ? entry_SYSCALL_64_after_hwframe+0x46/0xbb
[   27.685826]  ? deref_stack_reg+0x1a0/0x1a0
[   27.690043]  ? arch_perf_update_userpage+0x300/0x300
[   27.695125]  ? check_preemption_disabled+0x35/0x240
[   27.700116]  get_perf_callchain+0x2de/0x740
[   27.704458]  ? put_callchain_buffers+0x60/0x60
[   27.709014]  ? perf_output_begin_forward+0x69a/0xa10
[   27.714106]  ? kernel_text_address+0xbd/0xf0
[   27.718492]  ? tracing_generic_entry_update+0x162/0x1d0
[   27.723828]  ? perf_swevent_event+0xf8/0x460
[   27.728210]  perf_callchain+0x147/0x190
[   27.732177]  perf_prepare_sample+0xc9a/0x1370
[   27.736651]  ? perf_output_sample+0x16f0/0x16f0
[   27.741302]  perf_event_output_forward+0xc9/0x1f0
[   27.746123]  ? perf_prepare_sample+0x1370/0x1370
[   27.750854]  ? perf_swevent_event+0x460/0x460
[   27.755328]  ? put_callchain_buffers+0x60/0x60
[   27.759884]  ? check_preemption_disabled+0x35/0x240
[   27.764874]  __perf_event_overflow+0x113/0x310
[   27.769431]  perf_swevent_event+0x3c8/0x460
[   27.773726]  perf_tp_event+0x540/0x6e0
[   27.777591]  ? lock_downgrade+0x740/0x740
[   27.781717]  ? perf_swevent_event+0x460/0x460
[   27.786203]  ? perf_trace_run_bpf_submit+0x119/0x200
[   27.791292]  ? perf_trace_run_bpf_submit+0x119/0x200
[   27.796378]  ? __read_once_size_nocheck.constprop.0+0x10/0x10
[   27.802249]  ? perf_trace_run_bpf_submit+0x119/0x200
[   27.807328]  ? perf_trace_lock_acquire+0x510/0x510
[   27.812231]  ? __save_stack_trace+0x63/0x160
[   27.816618]  ? deref_stack_reg+0x124/0x1a0
[   27.820826]  ? is_bpf_text_address+0x91/0x150
[   27.825298]  ? lock_acquire+0x170/0x3f0
[   27.829267]  ? lock_downgrade+0x740/0x740
[   27.833405]  ? __lock_acquire+0x5fc/0x3f20
[   27.837617]  ? perf_trace_run_bpf_submit+0x119/0x200
[   27.842789]  ? check_preemption_disabled+0x35/0x240
[   27.847778]  perf_trace_run_bpf_submit+0x119/0x200
[   27.853118]  perf_trace_lock+0x2d6/0x490
[   27.857154]  ? kasan_slab_free+0x12d/0x1a0
[   27.861363]  ? perf_trace_lock_acquire+0x510/0x510
[   27.866282]  ? free_pgd_range+0x84b/0xcd0
[   27.870507]  ? free_pgtables+0x1ec/0x2b0
[   27.874545]  ? exit_mmap+0x27f/0x4d0
[   27.878233]  ? do_exit+0x984/0x2850
[   27.881841]  ? SyS_exit_group+0x19/0x20
[   27.885789]  ? do_syscall_64+0x1d5/0x640
[   27.889826]  ? entry_SYSCALL_64_after_hwframe+0x46/0xbb
[   27.895166]  ? debug_check_no_obj_freed+0x2c0/0x680
[   27.900157]  ? perf_trace_lock_acquire+0x510/0x510
[   27.905062]  lock_release+0x4df/0x870
[   27.908837]  ? lock_acquire+0x170/0x3f0
[   27.912792]  ? lock_downgrade+0x740/0x740
[   27.916918]  _raw_spin_unlock_irqrestore+0x1b/0xe0
[   27.921824]  debug_check_no_obj_freed+0x2c0/0x680
[   27.926643]  ? debug_object_activate+0x490/0x490
[   27.931414]  kmem_cache_free+0x156/0x2b0
[   27.935454]  ___pmd_free_tlb+0xa3/0xf0
[   27.939319]  free_pgd_range+0x697/0xcd0
[   27.943273]  free_pgtables+0x1ec/0x2b0
[   27.947135]  exit_mmap+0x27f/0x4d0
[   27.951089]  ? SyS_remap_file_pages+0x6a0/0x6a0
[   27.955740]  ? kmem_cache_free+0x23a/0x2b0
[   27.959952]  ? __khugepaged_exit+0x29b/0x3c0
[   27.964335]  mmput+0xfa/0x420
[   27.967421]  do_exit+0x984/0x2850
[   27.970856]  ? __do_page_fault+0x571/0xad0
[   27.975073]  ? mm_update_next_owner+0x5b0/0x5b0
[   27.979724]  ? lock_downgrade+0x740/0x740
[   27.983848]  do_group_exit+0x100/0x2e0
[   27.987710]  SyS_exit_group+0x19/0x20
[   27.991486]  ? do_group_exit+0x2e0/0x2e0
[   27.995523]  do_syscall_64+0x1d5/0x640
[   27.999387]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[   28.004552] RIP: 0033:0x7fb4337a0aa9
[   28.008238] RSP: 002b:00007ffd66704d48 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   28.015934] RAX: ffffffffffffffda RBX: 00007fb433814330 RCX: 00007fb4337a0aa9
[   28.023178] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000
[   28.030422] RBP: 0000000000000000 R08: ffffffffffffffc0 R09: 00007ffd66704f38
[   28.037671] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb433814330
[   28.044931] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000001
[   28.052176] 
[   28.053782] The buggy address belongs to the page:
[   28.058692] page:ffffea0002ce2fc0 count:0 mapcount:0 mapping:          (null) index:0x0
[   28.066841] flags: 0xfff00000000000()
[   28.070617] raw: 00fff00000000000 0000000000000000 0000000000000000 00000000ffffffff
[   28.078590] raw: 0000000000000000 0000000100000001 0000000000000000 0000000000000000
[   28.086441] page dumped because: kasan: bad access detected
[   28.092132] 
[   28.093749] Memory state around the buggy address:
[   28.098656]  ffff8880b38bf880: 00 00 00 00 00 00 00 00 00 f1 f1 f1 f1 f1 f1 04
[   28.105997]  ffff8880b38bf900: f2 00 f3 f3 f3 00 00 00 00 00 00 00 00 00 00 f1
[   28.113328] >ffff8880b38bf980: f1 f1 f1 04 f3 f3 f3 00 00 00 00 00 00 00 00 00
[   28.120660]                                   ^
[   28.125320]  ffff8880b38bfa00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 f1 f1
[   28.132656]  ffff8880b38bfa80: f1 f1 00 f3 f3 f3 00 00 00 00 00 00 00 00 00 00
[   28.139993] ==================================================================
[   28.147329] Disabling lock debugging due to kernel taint
[   28.152752] Kernel panic - not syncing: panic_on_warn set ...
[   28.152752] 
[   28.160092] CPU: 0 PID: 7954 Comm: syz-executor162 Tainted: G    B           4.14.286-syzkaller #0
[   28.169158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[   28.178484] Call Trace:
[   28.181049]  dump_stack+0x1b2/0x281
[   28.184650]  panic+0x1f9/0x42d
[   28.187815]  ? add_taint.cold+0x16/0x16
[   28.191767]  ? lock_downgrade+0x740/0x740
[   28.195894]  kasan_end_report+0x43/0x49
[   28.199848]  kasan_report_error.cold+0xa7/0x191
[   28.204491]  ? unwind_next_frame+0x146f/0x17d0
[   28.209100]  __asan_report_load8_noabort+0x68/0x70
[   28.214147]  ? unwind_next_frame+0x146f/0x17d0
[   28.218706]  unwind_next_frame+0x146f/0x17d0
[   28.223092]  ? entry_SYSCALL_64_after_hwframe+0x46/0xbb
[   28.228441]  ? deref_stack_reg+0x1a0/0x1a0
[   28.232652]  ? is_bpf_text_address+0xb8/0x150
[   28.237128]  ? check_preemption_disabled+0x35/0x240
[   28.242119]  ? entry_SYSCALL_64_after_hwframe+0x46/0xbb
[   28.247460]  perf_callchain_kernel+0x38c/0x520
[   28.252020]  ? arch_perf_update_userpage+0x300/0x300
[   28.257100]  ? entry_SYSCALL_64_after_hwframe+0x46/0xbb
[   28.262466]  ? deref_stack_reg+0x1a0/0x1a0
[   28.266686]  ? arch_perf_update_userpage+0x300/0x300
[   28.271771]  ? check_preemption_disabled+0x35/0x240
[   28.276792]  get_perf_callchain+0x2de/0x740
[   28.281093]  ? put_callchain_buffers+0x60/0x60
[   28.285652]  ? perf_output_begin_forward+0x69a/0xa10
[   28.290737]  ? kernel_text_address+0xbd/0xf0
[   28.295125]  ? tracing_generic_entry_update+0x162/0x1d0
[   28.300468]  ? perf_swevent_event+0xf8/0x460
[   28.304851]  perf_callchain+0x147/0x190
[   28.308799]  perf_prepare_sample+0xc9a/0x1370
[   28.313270]  ? perf_output_sample+0x16f0/0x16f0
[   28.317915]  perf_event_output_forward+0xc9/0x1f0
[   28.322735]  ? perf_prepare_sample+0x1370/0x1370
[   28.327526]  ? perf_swevent_event+0x460/0x460
[   28.332017]  ? put_callchain_buffers+0x60/0x60
[   28.336581]  ? check_preemption_disabled+0x35/0x240
[   28.341572]  __perf_event_overflow+0x113/0x310
[   28.346130]  perf_swevent_event+0x3c8/0x460
[   28.350429]  perf_tp_event+0x540/0x6e0
[   28.354294]  ? lock_downgrade+0x740/0x740
[   28.358423]  ? perf_swevent_event+0x460/0x460
[   28.362893]  ? perf_trace_run_bpf_submit+0x119/0x200
[   28.367971]  ? perf_trace_run_bpf_submit+0x119/0x200
[   28.373050]  ? __read_once_size_nocheck.constprop.0+0x10/0x10
[   28.378912]  ? perf_trace_run_bpf_submit+0x119/0x200
[   28.383992]  ? perf_trace_lock_acquire+0x510/0x510
[   28.388894]  ? __save_stack_trace+0x63/0x160
[   28.393277]  ? deref_stack_reg+0x124/0x1a0
[   28.397488]  ? is_bpf_text_address+0x91/0x150
[   28.401960]  ? lock_acquire+0x170/0x3f0
[   28.405908]  ? lock_downgrade+0x740/0x740
[   28.410028]  ? __lock_acquire+0x5fc/0x3f20
[   28.414234]  ? perf_trace_run_bpf_submit+0x119/0x200
[   28.419311]  ? check_preemption_disabled+0x35/0x240
[   28.424301]  perf_trace_run_bpf_submit+0x119/0x200
[   28.429206]  perf_trace_lock+0x2d6/0x490
[   28.433242]  ? kasan_slab_free+0x12d/0x1a0
[   28.437460]  ? perf_trace_lock_acquire+0x510/0x510
[   28.442370]  ? free_pgd_range+0x84b/0xcd0
[   28.446495]  ? free_pgtables+0x1ec/0x2b0
[   28.450528]  ? exit_mmap+0x27f/0x4d0
[   28.454220]  ? do_exit+0x984/0x2850
[   28.457827]  ? SyS_exit_group+0x19/0x20
[   28.461785]  ? do_syscall_64+0x1d5/0x640
[   28.465829]  ? entry_SYSCALL_64_after_hwframe+0x46/0xbb
[   28.471178]  ? debug_check_no_obj_freed+0x2c0/0x680
[   28.476181]  ? perf_trace_lock_acquire+0x510/0x510
[   28.481094]  lock_release+0x4df/0x870
[   28.485030]  ? lock_acquire+0x170/0x3f0
[   28.488988]  ? lock_downgrade+0x740/0x740
[   28.493128]  _raw_spin_unlock_irqrestore+0x1b/0xe0
[   28.498040]  debug_check_no_obj_freed+0x2c0/0x680
[   28.502978]  ? debug_object_activate+0x490/0x490
[   28.507733]  kmem_cache_free+0x156/0x2b0
[   28.511773]  ___pmd_free_tlb+0xa3/0xf0
[   28.515639]  free_pgd_range+0x697/0xcd0
[   28.519589]  free_pgtables+0x1ec/0x2b0
[   28.523471]  exit_mmap+0x27f/0x4d0
[   28.526990]  ? SyS_remap_file_pages+0x6a0/0x6a0
[   28.531638]  ? kmem_cache_free+0x23a/0x2b0
[   28.535850]  ? __khugepaged_exit+0x29b/0x3c0
[   28.540232]  mmput+0xfa/0x420
[   28.543312]  do_exit+0x984/0x2850
[   28.546741]  ? __do_page_fault+0x571/0xad0
[   28.550951]  ? mm_update_next_owner+0x5b0/0x5b0
[   28.555604]  ? lock_downgrade+0x740/0x740
[   28.559729]  do_group_exit+0x100/0x2e0
[   28.563591]  SyS_exit_group+0x19/0x20
[   28.567364]  ? do_group_exit+0x2e0/0x2e0
[   28.571431]  do_syscall_64+0x1d5/0x640
[   28.575293]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[   28.580455] RIP: 0033:0x7fb4337a0aa9
[   28.584147] RSP: 002b:00007ffd66704d48 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   28.591829] RAX: ffffffffffffffda RBX: 00007fb433814330 RCX: 00007fb4337a0aa9
[   28.599079] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000
[   28.606339] RBP: 0000000000000000 R08: ffffffffffffffc0 R09: 00007ffd66704f38
[   28.613600] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb433814330
[   28.620844] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000001
[   28.628280] Kernel Offset: disabled
[   28.631884] Rebooting in 86400 seconds..