Warning: Permanently added '10.128.1.106' (ECDSA) to the list of known hosts.
executing program
[   65.759638][ T8426] kernel profiling enabled (shift: 0)
[   66.889761][    C1] ==================================================================
[   66.898152][    C1] BUG: KASAN: stack-out-of-bounds in profile_pc+0xa4/0xe0
[   66.905270][    C1] Read of size 8 at addr ffffc9000163f620 by task syz-executor815/8426
[   66.913482][    C1] 
[   66.915808][    C1] CPU: 1 PID: 8426 Comm: syz-executor815 Not tainted 5.13.0-rc4-syzkaller #0
[   66.924554][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   66.934588][    C1] Call Trace:
[   66.937848][    C1]  <IRQ>
[   66.940676][    C1]  dump_stack+0x202/0x31e
[   66.944983][    C1]  ? show_regs_print_info+0x12/0x12
[   66.950180][    C1]  ? printk+0xc0/0x108
[   66.954226][    C1]  ? wake_up_klogd+0xb2/0xf0
[   66.958793][    C1]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[   66.964500][    C1]  ? _raw_spin_lock_irqsave+0xbf/0x100
[   66.970024][    C1]  print_address_description+0x5f/0x3b0
[   66.975561][    C1]  kasan_report+0x15c/0x200
[   66.980040][    C1]  ? profile_pc+0xa4/0xe0
[   66.984345][    C1]  ? _raw_spin_unlock_irqrestore+0xbc/0x120
[   66.990320][    C1]  profile_pc+0xa4/0xe0
[   66.994455][    C1]  profile_tick+0xcd/0x120
[   66.998851][    C1]  tick_sched_timer+0x287/0x420
[   67.003683][    C1]  __hrtimer_run_queues+0x4cb/0xa60
[   67.008880][    C1]  ? tick_setup_sched_timer+0x2c0/0x2c0
[   67.014424][    C1]  ? hrtimer_interrupt+0x1040/0x1040
[   67.019776][    C1]  ? ktime_get_update_offsets_now+0x449/0x460
[   67.025825][    C1]  hrtimer_interrupt+0x3b3/0x1040
[   67.030855][    C1]  ? do_sync_core+0x1d/0x20
[   67.035343][    C1]  __sysvec_apic_timer_interrupt+0xf9/0x270
[   67.041257][    C1]  sysvec_apic_timer_interrupt+0x8c/0xb0
[   67.046939][    C1]  </IRQ>
[   67.049929][    C1]  asm_sysvec_apic_timer_interrupt+0x12/0x20
[   67.055911][    C1] RIP: 0010:_raw_spin_unlock_irqrestore+0xbc/0x120
[   67.062423][    C1] Code: f0 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 f7 e8 ea e7 03 f8 f6 44 24 21 02 75 4e 41 f7 c7 00 02 00 00 74 01 fb bf 01 00 00 00 <e8> 1f b3 93 f7 65 8b 05 50 c4 3e 76 85 c0 74 3f 48 c7 04 24 0e 36
[   67.082020][    C1] RSP: 0018:ffffc9000163f620 EFLAGS: 00000206
[   67.088073][    C1] RAX: 1ffff920002c7ec8 RBX: ffffffff9117f258 RCX: ffffffff90e85703
[   67.096025][    C1] RDX: dffffc0000000000 RSI: 0000000000000001 RDI: 0000000000000001
[   67.103982][    C1] RBP: ffffc9000163f6b8 R08: ffffffff818560c0 R09: fffffbfff222fe4c
[   67.111948][    C1] R10: fffffbfff222fe4c R11: 0000000000000000 R12: dffffc0000000000
[   67.119899][    C1] R13: 1ffff920002c7ec4 R14: ffffc9000163f640 R15: 0000000000000a02
[   67.128009][    C1]  ? trace_hardirqs_on+0x30/0x80
[   67.133077][    C1]  ? _raw_spin_unlock+0x40/0x40
[   67.137915][    C1]  ? do_exit+0x6b9/0x23d0
[   67.142272][    C1]  ? __do_sys_exit_group+0x13/0x20
[   67.147362][    C1]  ? __se_sys_exit_group+0x10/0x10
[   67.152453][    C1]  ? __x64_sys_exit_group+0x37/0x40
[   67.157634][    C1]  debug_check_no_obj_freed+0x5a2/0x650
[   67.163171][    C1]  __free_pages_ok+0x2f5/0x1180
[   67.168013][    C1]  ? set_pageblock_migratetype+0x40/0x40
[   67.173624][    C1]  ? page_memcg+0x169/0x280
[   67.178118][    C1]  release_pages+0x600/0x1b80
[   67.182777][    C1]  ? lru_cache_disable+0x30/0x30
[   67.187692][    C1]  ? free_swap_cache+0x16a/0x2c0
[   67.192631][    C1]  tlb_flush_mmu+0x780/0x910
[   67.197203][    C1]  tlb_finish_mmu+0xcb/0x200
[   67.201770][    C1]  exit_mmap+0x2c6/0x5f0
[   67.205984][    C1]  ? vm_brk+0x20/0x20
[   67.209979][    C1]  ? __khugepaged_exit+0x190/0x370
[   67.215077][    C1]  ? __mmput+0x101/0x370
[   67.219294][    C1]  __mmput+0x111/0x370
[   67.223367][    C1]  exit_mm+0x67e/0x7d0
[   67.227425][    C1]  ? lockdep_hardirqs_on+0x8d/0x130
[   67.232613][    C1]  ? _raw_spin_unlock_irq+0x2a/0x40
[   67.237789][    C1]  ? acct_collect+0x574/0x730
[   67.242451][    C1]  ? do_exit+0x23d0/0x23d0
[   67.246842][    C1]  ? acct_exit_ns+0xb0/0xb0
[   67.251322][    C1]  ? hrtimer_try_to_cancel+0x3e5/0x420
[   67.256766][    C1]  ? taskstats_exit+0x458/0xbe0
[   67.261614][    C1]  do_exit+0x6b9/0x23d0
[   67.265745][    C1]  ? __context_tracking_exit+0x7a/0xd0
[   67.271192][    C1]  ? __lock_acquire+0x6040/0x6040
[   67.276210][    C1]  ? mm_update_next_owner+0x6d0/0x6d0
[   67.281558][    C1]  ? lockdep_hardirqs_on_prepare+0x3e2/0x750
[   67.287533][    C1]  ? print_irqtrace_events+0x220/0x220
[   67.292985][    C1]  ? vtime_user_exit+0x2b2/0x3e0
[   67.297901][    C1]  do_group_exit+0x168/0x2d0
[   67.302467][    C1]  ? syscall_enter_from_user_mode+0x2e/0x1c0
[   67.308425][    C1]  __do_sys_exit_group+0x13/0x20
[   67.313354][    C1]  __se_sys_exit_group+0x10/0x10
[   67.318268][    C1]  __x64_sys_exit_group+0x37/0x40
[   67.323268][    C1]  do_syscall_64+0x3f/0xb0
[   67.327674][    C1]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[   67.333594][    C1] RIP: 0033:0x446bc9
[   67.337497][    C1] Code: Unable to access opcode bytes at RIP 0x446b9f.
[   67.344388][    C1] RSP: 002b:00007ffdae409208 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   67.352827][    C1] RAX: ffffffffffffffda RBX: 00000000004b8390 RCX: 0000000000446bc9
[   67.360780][    C1] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001
[   67.368740][    C1] RBP: 0000000000000001 R08: ffffffffffffffc4 R09: 0000000000000004
[   67.376806][    C1] R10: 00000000004004a0 R11: 0000000000000246 R12: 00000000004b8390
[   67.384881][    C1] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000001
[   67.392849][    C1] 
[   67.395171][    C1] 
[   67.397471][    C1] addr ffffc9000163f620 is located in stack of task syz-executor815/8426 at offset 0 in frame:
[   67.407780][    C1]  _raw_spin_unlock_irqrestore+0x0/0x120
[   67.413396][    C1] 
[   67.415699][    C1] this frame has 1 object:
[   67.420105][    C1]  [32, 40) 'flags.i.i.i.i'
[   67.420113][    C1] 
[   67.426905][    C1] Memory state around the buggy address:
[   67.432519][    C1]  ffffc9000163f500: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   67.440566][    C1]  ffffc9000163f580: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   67.448790][    C1] >ffffc9000163f600: 00 00 00 00 f1 f1 f1 f1 00 f3 f3 f3 00 00 00 00
[   67.456835][    C1]                                ^
[   67.461964][    C1]  ffffc9000163f680: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   67.470005][    C1]  ffffc9000163f700: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   67.478045][    C1] ==================================================================
[   67.486079][    C1] Disabling lock debugging due to kernel taint
[   67.492220][    C1] Kernel panic - not syncing: panic_on_warn set ...
[   67.498792][    C1] CPU: 1 PID: 8426 Comm: syz-executor815 Tainted: G    B             5.13.0-rc4-syzkaller #0
[   67.508916][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   67.518945][    C1] Call Trace:
[   67.522213][    C1]  <IRQ>
[   67.525036][    C1]  dump_stack+0x202/0x31e
[   67.529351][    C1]  ? show_regs_print_info+0x12/0x12
[   67.534525][    C1]  ? log_buf_vmcoreinfo_setup+0x498/0x498
[   67.540220][    C1]  ? snprintf+0xc0/0x110
[   67.544437][    C1]  panic+0x2e1/0x850
[   67.548325][    C1]  ? nmi_panic+0x90/0x90
[   67.552605][    C1]  ? _raw_spin_unlock_irqrestore+0xc1/0x120
[   67.558492][    C1]  ? print_memory_metadata+0xa7/0x100
[   67.563855][    C1]  kasan_report+0x1ff/0x200
[   67.568434][    C1]  ? profile_pc+0xa4/0xe0
[   67.572742][    C1]  ? _raw_spin_unlock_irqrestore+0xbc/0x120
[   67.578672][    C1]  profile_pc+0xa4/0xe0
[   67.582810][    C1]  profile_tick+0xcd/0x120
[   67.587203][    C1]  tick_sched_timer+0x287/0x420
[   67.592256][    C1]  __hrtimer_run_queues+0x4cb/0xa60
[   67.597463][    C1]  ? tick_setup_sched_timer+0x2c0/0x2c0
[   67.602992][    C1]  ? hrtimer_interrupt+0x1040/0x1040
[   67.608258][    C1]  ? ktime_get_update_offsets_now+0x449/0x460
[   67.614412][    C1]  hrtimer_interrupt+0x3b3/0x1040
[   67.619417][    C1]  ? do_sync_core+0x1d/0x20
[   67.623895][    C1]  __sysvec_apic_timer_interrupt+0xf9/0x270
[   67.629803][    C1]  sysvec_apic_timer_interrupt+0x8c/0xb0
[   67.635412][    C1]  </IRQ>
[   67.638321][    C1]  asm_sysvec_apic_timer_interrupt+0x12/0x20
[   67.644285][    C1] RIP: 0010:_raw_spin_unlock_irqrestore+0xbc/0x120
[   67.650760][    C1] Code: f0 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 f7 e8 ea e7 03 f8 f6 44 24 21 02 75 4e 41 f7 c7 00 02 00 00 74 01 fb bf 01 00 00 00 <e8> 1f b3 93 f7 65 8b 05 50 c4 3e 76 85 c0 74 3f 48 c7 04 24 0e 36
[   67.670340][    C1] RSP: 0018:ffffc9000163f620 EFLAGS: 00000206
[   67.676381][    C1] RAX: 1ffff920002c7ec8 RBX: ffffffff9117f258 RCX: ffffffff90e85703
[   67.684339][    C1] RDX: dffffc0000000000 RSI: 0000000000000001 RDI: 0000000000000001
[   67.692284][    C1] RBP: ffffc9000163f6b8 R08: ffffffff818560c0 R09: fffffbfff222fe4c
[   67.700319][    C1] R10: fffffbfff222fe4c R11: 0000000000000000 R12: dffffc0000000000
[   67.708275][    C1] R13: 1ffff920002c7ec4 R14: ffffc9000163f640 R15: 0000000000000a02
[   67.716237][    C1]  ? trace_hardirqs_on+0x30/0x80
[   67.721160][    C1]  ? _raw_spin_unlock+0x40/0x40
[   67.725996][    C1]  ? do_exit+0x6b9/0x23d0
[   67.730300][    C1]  ? __do_sys_exit_group+0x13/0x20
[   67.735384][    C1]  ? __se_sys_exit_group+0x10/0x10
[   67.740468][    C1]  ? __x64_sys_exit_group+0x37/0x40
[   67.745663][    C1]  debug_check_no_obj_freed+0x5a2/0x650
[   67.751182][    C1]  __free_pages_ok+0x2f5/0x1180
[   67.756020][    C1]  ? set_pageblock_migratetype+0x40/0x40
[   67.761637][    C1]  ? page_memcg+0x169/0x280
[   67.766133][    C1]  release_pages+0x600/0x1b80
[   67.770785][    C1]  ? lru_cache_disable+0x30/0x30
[   67.775694][    C1]  ? free_swap_cache+0x16a/0x2c0
[   67.780603][    C1]  tlb_flush_mmu+0x780/0x910
[   67.785172][    C1]  tlb_finish_mmu+0xcb/0x200
[   67.789732][    C1]  exit_mmap+0x2c6/0x5f0
[   67.793944][    C1]  ? vm_brk+0x20/0x20
[   67.797896][    C1]  ? __khugepaged_exit+0x190/0x370
[   67.802978][    C1]  ? __mmput+0x101/0x370
[   67.807199][    C1]  __mmput+0x111/0x370
[   67.811239][    C1]  exit_mm+0x67e/0x7d0
[   67.815282][    C1]  ? lockdep_hardirqs_on+0x8d/0x130
[   67.820448][    C1]  ? _raw_spin_unlock_irq+0x2a/0x40
[   67.825613][    C1]  ? acct_collect+0x574/0x730
[   67.830268][    C1]  ? do_exit+0x23d0/0x23d0
[   67.834651][    C1]  ? acct_exit_ns+0xb0/0xb0
[   67.839121][    C1]  ? hrtimer_try_to_cancel+0x3e5/0x420
[   67.844632][    C1]  ? taskstats_exit+0x458/0xbe0
[   67.849460][    C1]  do_exit+0x6b9/0x23d0
[   67.853594][    C1]  ? __context_tracking_exit+0x7a/0xd0
[   67.859038][    C1]  ? __lock_acquire+0x6040/0x6040
[   67.864034][    C1]  ? mm_update_next_owner+0x6d0/0x6d0
[   67.869373][    C1]  ? lockdep_hardirqs_on_prepare+0x3e2/0x750
[   67.875323][    C1]  ? print_irqtrace_events+0x220/0x220
[   67.880756][    C1]  ? vtime_user_exit+0x2b2/0x3e0
[   67.885663][    C1]  do_group_exit+0x168/0x2d0
[   67.890222][    C1]  ? syscall_enter_from_user_mode+0x2e/0x1c0
[   67.896174][    C1]  __do_sys_exit_group+0x13/0x20
[   67.901098][    C1]  __se_sys_exit_group+0x10/0x10
[   67.906011][    C1]  __x64_sys_exit_group+0x37/0x40
[   67.911014][    C1]  do_syscall_64+0x3f/0xb0
[   67.915400][    C1]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[   67.921279][    C1] RIP: 0033:0x446bc9
[   67.925169][    C1] Code: Unable to access opcode bytes at RIP 0x446b9f.
[   67.931983][    C1] RSP: 002b:00007ffdae409208 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   67.940381][    C1] RAX: ffffffffffffffda RBX: 00000000004b8390 RCX: 0000000000446bc9
[   67.948326][    C1] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001
[   67.956274][    C1] RBP: 0000000000000001 R08: ffffffffffffffc4 R09: 0000000000000004
[   67.964232][    C1] R10: 00000000004004a0 R11: 0000000000000246 R12: 00000000004b8390
[   67.972189][    C1] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000001
[   67.980922][    C1] Kernel Offset: disabled
[   67.985246][    C1] Rebooting in 86400 seconds..