./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2974860393

<...>
Warning: Permanently added '10.128.0.194' (ED25519) to the list of known hosts.
execve("./syz-executor2974860393", ["./syz-executor2974860393"], 0x7ffe5c42d810 /* 10 vars */) = 0
brk(NULL)                               = 0x555556107000
brk(0x555556107d40)                     = 0x555556107d40
arch_prctl(ARCH_SET_FS, 0x5555561073c0) = 0
set_tid_address(0x555556107690)         = 5020
set_robust_list(0x5555561076a0, 24)     = 0
rseq(0x555556107ce0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor2974860393", 4096) = 28
getrandom("\x28\x00\xe4\x9d\xe0\x77\x82\x29", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x555556107d40
brk(0x555556128d40)                     = 0x555556128d40
brk(0x555556129000)                     = 0x555556129000
mprotect(0x7fbff53e0000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5021 attached
, child_tidptr=0x555556107690) = 5021
[pid  5021] set_robust_list(0x5555561076a0, 24) = 0
[pid  5021] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5021] setpgid(0, 0)               = 0
[pid  5021] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5021] write(3, "1000", 4)         = 4
[pid  5021] close(3)                    = 0
[pid  5021] futex(0x7fbff53e632c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5021] rt_sigaction(SIGRT_1, {sa_handler=0x7fbff5382320, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fbff53739a0}, NULL, 8) = 0
[pid  5021] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
[pid  5021] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fbff52fd000
[pid  5021] mprotect(0x7fbff52fe000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5021] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid  5021] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fbff531d990, parent_tid=0x7fbff531d990, exit_signal=0, stack=0x7fbff52fd000, stack_size=0x20300, tls=0x7fbff531d6c0}./strace-static-x86_64: Process 5022 attached
 <unfinished ...>
[pid  5022] rseq(0x7fbff531dfe0, 0x20, 0, 0x53053053) = 0
[pid  5022] set_robust_list(0x7fbff531d9a0, 24) = 0
[pid  5022] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid  5022] futex(0x7fbff53e6328, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5021] <... clone3 resumed> => {parent_tid=[5022]}, 88) = 5022
[pid  5021] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid  5021] futex(0x7fbff53e6328, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5022] <... futex resumed>)        = 0
[pid  5022] socket(AF_ALG, SOCK_SEQPACKET, 0 <unfinished ...>
[pid  5021] futex(0x7fbff53e632c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5022] <... socket resumed>)       = 3
[pid  5022] futex(0x7fbff53e632c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5021] <... futex resumed>)        = 0
[pid  5022] futex(0x7fbff53e6328, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5021] futex(0x7fbff53e6328, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5022] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  5021] <... futex resumed>)        = 0
[pid  5021] futex(0x7fbff53e632c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5022] bind(3, {sa_family=AF_ALG, salg_type="hash", salg_feat=0, salg_mask=0, salg_name="wp512"}, 88) = 0
[pid  5022] futex(0x7fbff53e632c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5022] futex(0x7fbff53e6328, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5021] <... futex resumed>)        = 0
[pid  5021] futex(0x7fbff53e6328, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5022] <... futex resumed>)        = 0
[pid  5021] <... futex resumed>)        = 1
[pid  5022] accept4(3, NULL, NULL, 0 <unfinished ...>
[pid  5021] futex(0x7fbff53e632c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5022] <... accept4 resumed>)      = 4
[pid  5022] futex(0x7fbff53e632c, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5021] <... futex resumed>)        = 0
[pid  5022] futex(0x7fbff53e6328, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5021] futex(0x7fbff53e6328, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5022] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  5021] <... futex resumed>)        = 0
[pid  5022] sendmsg(4, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=4294966594}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0 <unfinished ...>
[pid  5021] futex(0x7fbff53e632c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out)
[pid  5021] futex(0x7fbff53e632c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=0}) = -1 ETIMEDOUT (Connection timed out)
[pid  5021] exit_group(0)               = ?
[pid  5022] <... sendmsg resumed>)      = ?
[pid  5022] +++ exited with 0 +++
[pid  5021] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5021, si_uid=0, si_status=0, si_utime=0, si_stime=18 /* 0.18 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556107690) = 5023
./strace-static-x86_64: Process 5023 attached
[pid  5023] set_robust_list(0x5555561076a0, 24) = 0
[pid  5023] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5023] setpgid(0, 0)               = 0
[pid  5023] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5023] write(3, "1000", 4)         = 4
[pid  5023] close(3)                    = 0
[pid  5023] futex(0x7fbff53e632c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5023] rt_sigaction(SIGRT_1, {sa_handler=0x7fbff5382320, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fbff53739a0}, NULL, 8) = 0
[pid  5023] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
[pid  5023] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fbff52fd000
[pid  5023] mprotect(0x7fbff52fe000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5023] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid  5023] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fbff531d990, parent_tid=0x7fbff531d990, exit_signal=0, stack=0x7fbff52fd000, stack_size=0x20300, tls=0x7fbff531d6c0}./strace-static-x86_64: Process 5024 attached
 => {parent_tid=[5024]}, 88) = 5024
[pid  5024] rseq(0x7fbff531dfe0, 0x20, 0, 0x53053053) = 0
[pid  5024] set_robust_list(0x7fbff531d9a0, 24 <unfinished ...>
[pid  5023] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid  5024] <... set_robust_list resumed>) = 0
[pid  5024] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid  5023] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid  5024] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid  5024] futex(0x7fbff53e6328, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5023] futex(0x7fbff53e6328, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5024] <... futex resumed>)        = 0
[pid  5024] socket(AF_ALG, SOCK_SEQPACKET, 0) = 3
[pid  5023] futex(0x7fbff53e632c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5024] futex(0x7fbff53e632c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5024] futex(0x7fbff53e6328, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5023] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  5023] futex(0x7fbff53e6328, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5024] <... futex resumed>)        = 0
[pid  5024] bind(3, {sa_family=AF_ALG, salg_type="hash", salg_feat=0, salg_mask=0, salg_name="wp512"}, 88) = 0
[pid  5024] futex(0x7fbff53e632c, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5024] futex(0x7fbff53e6328, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5023] futex(0x7fbff53e632c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 EAGAIN (Resource temporarily unavailable)
[pid  5023] futex(0x7fbff53e6328, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5024] <... futex resumed>)        = 0
[pid  5023] futex(0x7fbff53e632c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5024] accept4(3, NULL, NULL, 0)   = 4
[pid  5024] futex(0x7fbff53e632c, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5023] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  5023] futex(0x7fbff53e6328, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5023] futex(0x7fbff53e632c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5024] <... futex resumed>)        = 0
[pid  5024] sendmsg(4, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=4294966594}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0 <unfinished ...>
[pid  5023] <... futex resumed>)        = -1 ETIMEDOUT (Connection timed out)
[pid  5023] futex(0x7fbff53e632c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=0}) = -1 ETIMEDOUT (Connection timed out)
[pid  5023] exit_group(0)               = ?
[   50.071884][ T5024] BUG: Bad page state in process syz-executor297  pfn:10394
[   50.079377][ T5024] page:ffffea000040e500 refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10394
[   50.089788][ T5024] flags: 0xfff18000001042(referenced|workingset|reserved|node=0|zone=1|lastcpupid=0x7ff)
[   50.099655][ T5024] page_type: 0xffffffff()
[   50.104064][ T5024] raw: 00fff18000001042 ffffea000040e508 ffffea000040e508 0000000000000000
[   50.112726][ T5024] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[   50.121351][ T5024] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[   50.128649][ T5024] page_owner info is not present (never set?)
[   50.134816][ T5024] Modules linked in:
[   50.138740][ T5024] CPU: 1 PID: 5024 Comm: syz-executor297 Not tainted 6.5.0-rc5-syzkaller-00063-g374a7f47bf40 #0
[   50.149157][ T5024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[   50.159193][ T5024] Call Trace:
[   50.162467][ T5024]  <TASK>
[   50.165412][ T5024]  dump_stack_lvl+0x125/0x1b0
[   50.170093][ T5024]  bad_page+0xb4/0x200
[   50.174154][ T5024]  ? zone_batchsize+0xa0/0xa0
[   50.178834][ T5024]  ? page_bad_reason+0x9d/0x190
[   50.183701][ T5024]  free_unref_page_prepare+0x598/0xb90
[   50.189141][ T5024]  ? mem_cgroup_swapin_charge_folio+0x2f0/0x300
[   50.195373][ T5024]  free_unref_page+0x33/0x3b0
[   50.200040][ T5024]  __folio_put+0xc5/0x140
[   50.204353][ T5024]  extract_iter_to_sg+0x1604/0x19e0
[   50.209541][ T5024]  ? sg_init_one+0x140/0x140
[   50.214129][ T5024]  ? gup_put_folio+0x71/0x2a0
[   50.218821][ T5024]  ? sanity_check_pinned_pages+0xf60/0xf60
[   50.224611][ T5024]  ? af_alg_free_sg+0xa1/0x260
[   50.229366][ T5024]  hash_sendmsg+0x459/0x1030
[   50.233947][ T5024]  ? hash_recvmsg_nokey+0x80/0x80
[   50.238953][ T5024]  sock_sendmsg+0xd9/0x180
[   50.243352][ T5024]  ____sys_sendmsg+0x6ac/0x940
[   50.248121][ T5024]  ? copy_msghdr_from_user+0x10b/0x160
[   50.253607][ T5024]  ? kernel_sendmsg+0x50/0x50
[   50.258298][ T5024]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[   50.264264][ T5024]  ___sys_sendmsg+0x135/0x1d0
[   50.268928][ T5024]  ? do_recvmmsg+0x740/0x740
[   50.273505][ T5024]  ? lock_sync+0x190/0x190
[   50.277913][ T5024]  ? ptrace_stop.part.0+0x4b4/0x8f0
[   50.283126][ T5024]  ? __fget_light+0xe6/0x260
[   50.287720][ T5024]  __sys_sendmsg+0x117/0x1e0
[   50.292303][ T5024]  ? __sys_sendmsg_sock+0x30/0x30
[   50.297311][ T5024]  ? ptrace_notify+0xf4/0x130
[   50.301975][ T5024]  ? lockdep_hardirqs_on+0x7d/0x100
[   50.307159][ T5024]  ? _raw_spin_unlock_irq+0x2e/0x50
[   50.312344][ T5024]  ? ptrace_notify+0xf4/0x130
[   50.317004][ T5024]  do_syscall_64+0x38/0xb0
[   50.321415][ T5024]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   50.327338][ T5024] RIP: 0033:0x7fbff535c3e9
[   50.331734][ T5024] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   50.351323][ T5024] RSP: 002b:00007fbff531d238 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   50.359831][ T5024] RAX: ffffffffffffffda RBX: 00007fbff53e6328 RCX: 00007fbff535c3e9
[   50.367819][ T5024] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000004
[   50.375792][ T5024] RBP: 00007fbff53e6320 R08: 00007fbff531d6c0 R09: 00007fbff531d6c0
[   50.383743][ T5024] R10: 00007fbff531d6c0 R11: 0000000000000246 R12: 00007fbff53e632c
[   50.391696][ T5024] R13: 0000000000000000 R14: 00007ffe89c55cc0 R15: 00007ffe89c55da8
[   50.399654][ T5024]  </TASK>
[   50.402896][ T5024] Disabling lock debugging due to kernel taint
[   50.409071][ T5024] page:ffffea000040e500 refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10394
[   50.419256][ T5024] flags: 0xfff18000001042(referenced|workingset|reserved|node=0|zone=1|lastcpupid=0x7ff)
[   50.429085][ T5024] page_type: 0xffffffff()
[   50.433420][ T5024] raw: 00fff18000001042 ffffea000040e508 ffffea000040e508 0000000000000000
[   50.442024][ T5024] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[   50.450626][ T5024] page dumped because: VM_BUG_ON_PAGE(page_ref_count(page) == 0)
[   50.458357][ T5024] page_owner info is not present (never set?)
[   50.464617][ T5024] ------------[ cut here ]------------
[   50.470079][ T5024] kernel BUG at include/linux/mm.h:1027!
[   50.475722][ T5024] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[   50.481780][ T5024] CPU: 1 PID: 5024 Comm: syz-executor297 Tainted: G    B              6.5.0-rc5-syzkaller-00063-g374a7f47bf40 #0
[   50.493658][ T5024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[   50.503694][ T5024] RIP: 0010:extract_iter_to_sg+0x1768/0x19e0
[   50.509660][ T5024] Code: 73 69 fd 49 8d 5e ff e9 28 fe ff ff 4c 8b 6c 24 28 e9 12 f4 ff ff e8 87 73 69 fd 48 c7 c6 e0 b3 c7 8a 48 89 df e8 f8 18 a6 fd <0f> 0b e8 61 7d bd fd e9 ca f8 ff ff 4c 89 ef e8 74 7d bd fd e9 2c
[   50.529247][ T5024] RSP: 0018:ffffc9000395f898 EFLAGS: 00010293
[   50.535299][ T5024] RAX: 0000000000000000 RBX: ffffea000040e500 RCX: 0000000000000000
[   50.543250][ T5024] RDX: ffff888028135940 RSI: ffffffff841c9528 RDI: 0000000000000000
[   50.551204][ T5024] RBP: dffffc0000000000 R08: 0000000000000000 R09: fffffbfff1d5739a
[   50.559158][ T5024] R10: ffffffff8eab9cd7 R11: 0000000000000001 R12: ffffea000040e534
[   50.567146][ T5024] R13: 0000000000000000 R14: 0000000000000000 R15: ffff88802cdf0800
[   50.575110][ T5024] FS:  00007fbff531d6c0(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
[   50.584547][ T5024] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   50.591134][ T5024] CR2: 00007fbff53b2a78 CR3: 000000007cf96000 CR4: 0000000000350ee0
[   50.599094][ T5024] Call Trace:
[   50.602361][ T5024]  <TASK>
[   50.605274][ T5024]  ? die+0x31/0x80
[   50.608987][ T5024]  ? do_trap+0x1ab/0x3b0
[   50.613223][ T5024]  ? extract_iter_to_sg+0x1768/0x19e0
[   50.618587][ T5024]  ? do_error_trap+0x9e/0x160
[   50.623254][ T5024]  ? extract_iter_to_sg+0x1768/0x19e0
[   50.628619][ T5024]  ? handle_invalid_op+0x2c/0x30
[   50.633547][ T5024]  ? extract_iter_to_sg+0x1768/0x19e0
[   50.638910][ T5024]  ? exc_invalid_op+0x2d/0x40
[   50.643575][ T5024]  ? asm_exc_invalid_op+0x1a/0x20
[   50.648585][ T5024]  ? extract_iter_to_sg+0x1768/0x19e0
[   50.653947][ T5024]  ? extract_iter_to_sg+0x1768/0x19e0
[   50.659309][ T5024]  ? extract_iter_to_sg+0x1768/0x19e0
[   50.664674][ T5024]  ? sg_init_one+0x140/0x140
[   50.669268][ T5024]  ? gup_put_folio+0x71/0x2a0
[   50.673936][ T5024]  ? sanity_check_pinned_pages+0xf60/0xf60
[   50.679733][ T5024]  ? af_alg_free_sg+0xa1/0x260
[   50.684492][ T5024]  hash_sendmsg+0x459/0x1030
[   50.689073][ T5024]  ? hash_recvmsg_nokey+0x80/0x80
[   50.694083][ T5024]  sock_sendmsg+0xd9/0x180
[   50.698487][ T5024]  ____sys_sendmsg+0x6ac/0x940
[   50.703237][ T5024]  ? copy_msghdr_from_user+0x10b/0x160
[   50.708686][ T5024]  ? kernel_sendmsg+0x50/0x50
[   50.713349][ T5024]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[   50.719320][ T5024]  ___sys_sendmsg+0x135/0x1d0
[   50.723986][ T5024]  ? do_recvmmsg+0x740/0x740
[   50.728568][ T5024]  ? lock_sync+0x190/0x190
[   50.732996][ T5024]  ? ptrace_stop.part.0+0x4b4/0x8f0
[   50.738188][ T5024]  ? __fget_light+0xe6/0x260
[   50.742772][ T5024]  __sys_sendmsg+0x117/0x1e0
[   50.747355][ T5024]  ? __sys_sendmsg_sock+0x30/0x30
[   50.752366][ T5024]  ? ptrace_notify+0xf4/0x130
[   50.757031][ T5024]  ? lockdep_hardirqs_on+0x7d/0x100
[   50.762309][ T5024]  ? _raw_spin_unlock_irq+0x2e/0x50
[   50.767497][ T5024]  ? ptrace_notify+0xf4/0x130
[   50.772159][ T5024]  do_syscall_64+0x38/0xb0
[   50.776559][ T5024]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   50.782438][ T5024] RIP: 0033:0x7fbff535c3e9
[   50.786839][ T5024] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   50.806431][ T5024] RSP: 002b:00007fbff531d238 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   50.814831][ T5024] RAX: ffffffffffffffda RBX: 00007fbff53e6328 RCX: 00007fbff535c3e9
[   50.822788][ T5024] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000004
[   50.830743][ T5024] RBP: 00007fbff53e6320 R08: 00007fbff531d6c0 R09: 00007fbff531d6c0
[   50.838695][ T5024] R10: 00007fbff531d6c0 R11: 0000000000000246 R12: 00007fbff53e632c
[   50.846650][ T5024] R13: 0000000000000000 R14: 00007ffe89c55cc0 R15: 00007ffe89c55da8
[   50.854608][ T5024]  </TASK>
[   50.857609][ T5024] Modules linked in:
[   50.861660][ T5024] ---[ end trace 0000000000000000 ]---
[   50.867180][ T5024] RIP: 0010:extract_iter_to_sg+0x1768/0x19e0
[   50.873203][ T5024] Code: 73 69 fd 49 8d 5e ff e9 28 fe ff ff 4c 8b 6c 24 28 e9 12 f4 ff ff e8 87 73 69 fd 48 c7 c6 e0 b3 c7 8a 48 89 df e8 f8 18 a6 fd <0f> 0b e8 61 7d bd fd e9 ca f8 ff ff 4c 89 ef e8 74 7d bd fd e9 2c
[   50.892858][ T5024] RSP: 0018:ffffc9000395f898 EFLAGS: 00010293
[   50.898942][ T5024] RAX: 0000000000000000 RBX: ffffea000040e500 RCX: 0000000000000000
[   50.906948][ T5024] RDX: ffff888028135940 RSI: ffffffff841c9528 RDI: 0000000000000000
[   50.914920][ T5024] RBP: dffffc0000000000 R08: 0000000000000000 R09: fffffbfff1d5739a
[   50.922934][ T5024] R10: ffffffff8eab9cd7 R11: 0000000000000001 R12: ffffea000040e534
[   50.930945][ T5024] R13: 0000000000000000 R14: 0000000000000000 R15: ffff88802cdf0800
[   50.938935][ T5024] FS:  00007fbff531d6c0(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
[   50.947897][ T5024] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   50.954509][ T5024] CR2: 00007fbff53b2a78 CR3: 000000007cf96000 CR4: 0000000000350ee0
[   50.962509][ T5024] Kernel panic - not syncing: Fatal exception
[   50.969354][ T5024] Kernel Offset: disabled
[   50.973659][ T5024] Rebooting in 86400 seconds..