program: r0 = semget(0x3, 0x2, 0x80) semop(r0, &(0x7f0000000080)=[{0x2, 0xa}, {0x3, 0x2}, {0x3, 0x3, 0x800}], 0x3) r1 = socket(0x2b, 0x1, 0x0) listen(r1, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x3, &(0x7f0000000640)=0x6, 0x4) r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) syz_usb_disconnect(r2) syz_usb_connect(0x0, 0x24, &(0x7f0000000100)={{0x12, 0x1, 0x0, 0xdb, 0x9d, 0x1b, 0x8, 0x12d1, 0xfae2, 0x708b, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xff, 0x4, 0x1a}}]}}]}}, 0x0) socket$netlink(0x10, 0x3, 0x1) syz_mount_image$fuse(0x0, &(0x7f0000000740)='./file0\x00', 0x8000, 0x0, 0x1, 0x0, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f00000003c0), 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_ENABLE(r3, &(0x7f0000001880)={0x0, 0x0, &(0x7f0000001840)={&(0x7f00000000c0)={0x54, r4, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e20, @multicast1}}, {0x14, 0x2, @in={0x2, 0x4e24, @loopback}}}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x8181}, 0x4040) sendmsg$TIPC_NL_KEY_SET(r2, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000200)={&(0x7f0000000bc0)={0x42c, r4, 0x2, 0x70bd25, 0x25dfdbfd, {}, [@TIPC_NLA_PUBL={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x94}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xfffffffb}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x8}]}, @TIPC_NLA_NET={0x28, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0xf}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x2ad9}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x9}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xb9bc}]}, @TIPC_NLA_LINK={0xc8, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x4c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7fff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000001}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x101}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xbd0a}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x26}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}, @TIPC_NLA_MEDIA={0x80, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}]}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x400}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}]}, @TIPC_NLA_PUBL={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x7}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x7}]}, @TIPC_NLA_SOCK={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x10001}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7fffffff}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x9}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xfffffff7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x9}, @TIPC_NLA_CON_NODE={0x8}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x73114dde}, @TIPC_NLA_SOCK_CON={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x401}]}]}, @TIPC_NLA_LINK={0x158, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4d}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x20}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}]}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x58}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xa5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}]}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xc0000000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xc}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x99}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7fff}]}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fffffff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xda}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xeb1c}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xc87}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x73}]}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffffc}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}]}]}, @TIPC_NLA_LINK={0x9c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x52}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfb8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}]}]}, @TIPC_NLA_NET={0x30, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x5}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x6}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x8000000000000001}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x6}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x1b0b}]}]}, 0x42c}, 0x1, 0x0, 0x0, 0x1}, 0x20000000) mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000140)='ramfs\x00', 0x14010, 0x0) syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x480a8, &(0x7f0000000380)=ANY=[], 0x21, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) symlinkat(&(0x7f0000000400)='./file1/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00') syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0/file1\x00', 0x200810, 0x0, 0x0, 0x0, 0x0) syz_mount_image$fuse(0x0, &(0x7f0000000740)='./bus\x00', 0x283016, 0x0, 0x11, 0x0, 0x0) r5 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$IOMMU_OPTION$IOMMU_OPTION_RLIMIT_MODE(r5, 0x3b87, &(0x7f0000000040)={0x18}) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000a80)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]}) unlinkat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file1\x00', 0x200) umount2(&(0x7f00000002c0)='./file0\x00', 0x9) mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000040)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]}) ioctl$EVIOCRMFF(r2, 0xc0085508, &(0x7f0000000400)=0x1d) [ 76.287831][ T4684] Bluetooth: hci0: command tx timeout [ 76.370652][ T1311] ieee802154 phy0 wpan0: encryption failed: -22 [ 76.373645][ T1311] ieee802154 phy1 wpan1: encryption failed: -22 [ 76.768786][ T5334] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 76.916204][ T5334] usb 5-1: Using ep0 maxpacket: 8 [ 76.923592][ T5334] usb 5-1: New USB device found, idVendor=12d1, idProduct=fae2, bcdDevice=70.8b [ 76.928601][ T5334] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 76.931660][ T5334] usb 5-1: Product: syz [ 76.933332][ T5334] usb 5-1: Manufacturer: syz [ 76.935437][ T5334] usb 5-1: SerialNumber: syz [ 76.946612][ T5334] usb 5-1: config 0 descriptor?? [ 76.954021][ T5334] option 5-1:0.0: GSM modem (1-port) converter detected [ 77.191297][ T5336] tipc: Started in network mode [ 77.193468][ T5336] tipc: Node identity e0000001, cluster identity 4711 [ 77.197425][ T5336] tipc: Enabling of bearer rejected, failed to enable media [ 77.210377][ T5336] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 77.213511][ T5336] overlayfs: failed to set xattr on upper [ 77.215861][ T5336] overlayfs: ...falling back to redirect_dir=nofollow. [ 77.220643][ T5336] overlayfs: ...falling back to index=off. [ 77.223228][ T5336] overlayfs: ...falling back to uuid=null. [ 77.233618][ T5336] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 77.236907][ T5336] overlayfs: failed to set xattr on upper [ 77.239443][ T5336] overlayfs: ...falling back to redirect_dir=nofollow. [ 77.242549][ T5336] overlayfs: ...falling back to index=off. [ 77.245127][ T5336] overlayfs: ...falling back to uuid=null. [ 77.251535][ T5336] ------------[ cut here ]------------ [ 77.253973][ T5336] WARNING: mm/page_alloc.c:5159 at __alloc_frozen_pages_noprof+0x2c8/0x370, CPU#0: syz.0.0/5336 [ 77.259000][ T5336] Modules linked in: [ 77.260929][ T5336] CPU: 0 UID: 0 PID: 5336 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 77.265134][ T5336] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 77.270101][ T5336] RIP: 0010:__alloc_frozen_pages_noprof+0x2c8/0x370 [ 77.273861][ T5336] Code: 74 10 4c 89 e7 89 54 24 0c e8 e4 9b 0d 00 8b 54 24 0c 49 83 3c 24 00 0f 85 a5 fe ff ff e9 a6 fe ff ff c6 05 f8 14 50 0d 01 90 <0f> 0b 90 e9 18 ff ff ff a9 00 00 08 00 48 8b 4c 24 10 4c 8d 44 24 [ 77.282518][ T5336] RSP: 0018:ffffc9000d597940 EFLAGS: 00010246 [ 77.285242][ T5336] RAX: ffffc9000d597900 RBX: 0000000000000012 RCX: 0000000000000000 [ 77.288730][ T5336] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc9000d5979a8 [ 77.292223][ T5336] RBP: ffffc9000d597a28 R08: ffffc9000d5979a7 R09: 0000000000000000 [ 77.295428][ T5336] R10: ffffc9000d597980 R11: fffff52001ab2f35 R12: 0000000000000000 [ 77.298706][ T5336] R13: 1ffff92001ab2f2c R14: 0000000000040cc0 R15: dffffc0000000000 [ 77.302275][ T5336] FS: 00007fb36c4626c0(0000) GS:ffff88808d683000(0000) knlGS:0000000000000000 [ 77.306255][ T5336] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 77.309131][ T5336] CR2: 0000000000000000 CR3: 0000000041e55000 CR4: 0000000000352ef0 [ 77.312735][ T5336] Call Trace: [ 77.314171][ T5336] [ 77.315527][ T5336] ? __kasan_slab_free+0x5c/0x80 [ 77.317676][ T5336] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 77.320364][ T5336] ? policy_nodemask+0x27c/0x720 [ 77.322559][ T5336] alloc_pages_mpol+0x232/0x4a0 [ 77.324794][ T5336] ___kmalloc_large_node+0x4e/0x100 [ 77.327974][ T5336] __kmalloc_large_node_noprof+0x18/0x90 [ 77.330471][ T5336] __kmalloc_noprof+0x4bd/0x800 [ 77.332617][ T5336] ? raw_ioctl+0x18fb/0x3bc0 [ 77.334692][ T5336] raw_ioctl+0x18fb/0x3bc0 [ 77.336758][ T5336] ? tomoyo_path_number_perm+0x1bc/0x5a0 [ 77.339526][ T5336] ? do_vfs_ioctl+0xbe8/0x1430 [ 77.341770][ T5336] ? tomoyo_path_number_perm+0x1bc/0x5a0 [ 77.344224][ T5336] ? __pfx_raw_ioctl+0x10/0x10 [ 77.346407][ T5336] ? do_futex+0x395/0x420 [ 77.348278][ T5336] ? __fget_files+0x2a/0x420 [ 77.350312][ T5336] ? __fget_files+0x3a0/0x420 [ 77.352756][ T5336] ? __fget_files+0x2a/0x420 [ 77.354873][ T5336] ? bpf_lsm_file_ioctl+0x9/0x20 [ 77.357354][ T5336] ? __pfx_raw_ioctl+0x10/0x10 [ 77.359454][ T5336] __se_sys_ioctl+0xfc/0x170 [ 77.361651][ T5336] do_syscall_64+0xfa/0xf80 [ 77.363680][ T5336] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 77.366392][ T5336] ? clear_bhb_loop+0x60/0xb0 [ 77.368471][ T5336] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 77.371182][ T5336] RIP: 0033:0x7fb36b58f7c9 [ 77.373127][ T5336] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 77.381669][ T5336] RSP: 002b:00007fb36c462038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 77.385337][ T5336] RAX: ffffffffffffffda RBX: 00007fb36b7e5fa0 RCX: 00007fb36b58f7c9 [ 77.388839][ T5336] RDX: 0000200000000400 RSI: 00000000c0085508 RDI: 0000000000000004 [ 77.392114][ T5336] RBP: 00007fb36b613f91 R08: 0000000000000000 R09: 0000000000000000 [ 77.395598][ T5336] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 77.399116][ T5336] R13: 00007fb36b7e6038 R14: 00007fb36b7e5fa0 R15: 00007ffeeb4006c8 [ 77.402550][ T5336] [ 77.403943][ T5336] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 77.407092][ T5336] CPU: 0 UID: 0 PID: 5336 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 77.411049][ T5336] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 77.415655][ T5336] Call Trace: [ 77.417163][ T5336] [ 77.418474][ T5336] dump_stack_lvl+0x99/0x250 [ 77.420541][ T5336] ? __asan_memcpy+0x40/0x70 [ 77.422621][ T5336] ? __pfx_dump_stack_lvl+0x10/0x10 [ 77.424887][ T5336] ? __pfx__printk+0x10/0x10 [ 77.426959][ T5336] vpanic+0x237/0x6d0 [ 77.428732][ T5336] ? __pfx_vpanic+0x10/0x10 [ 77.430738][ T5336] ? is_bpf_text_address+0x292/0x2b0 [ 77.433059][ T5336] ? is_bpf_text_address+0x26/0x2b0 [ 77.435401][ T5336] panic+0xb9/0xc0 [ 77.437090][ T5336] ? __pfx_panic+0x10/0x10 [ 77.439087][ T5336] __warn+0x317/0x4b0 [ 77.440886][ T5336] ? __alloc_frozen_pages_noprof+0x2c8/0x370 [ 77.443478][ T5336] ? __alloc_frozen_pages_noprof+0x2c8/0x370 [ 77.446030][ T5336] __report_bug+0x288/0x500 [ 77.448022][ T5336] ? __alloc_frozen_pages_noprof+0x2c8/0x370 [ 77.450657][ T5336] ? __pfx___report_bug+0x10/0x10 [ 77.452865][ T5336] ? is_bpf_text_address+0x292/0x2b0 [ 77.455189][ T5336] ? is_bpf_text_address+0x26/0x2b0 [ 77.457505][ T5336] ? kernel_text_address+0xa5/0xe0 [ 77.459801][ T5336] ? __kernel_text_address+0xd/0x40 [ 77.462087][ T5336] ? unwind_get_return_address+0x4d/0x90 [ 77.464514][ T5336] ? __alloc_frozen_pages_noprof+0x2c8/0x370 [ 77.467114][ T5336] report_bug+0x16a/0x220 [ 77.469043][ T5336] ? __alloc_frozen_pages_noprof+0x2c8/0x370 [ 77.471670][ T5336] ? __alloc_frozen_pages_noprof+0x2ca/0x370 [ 77.474279][ T5336] handle_bug+0x98/0x200 [ 77.476164][ T5336] exc_invalid_op+0x1a/0x50 [ 77.478168][ T5336] asm_exc_invalid_op+0x1a/0x20 [ 77.480279][ T5336] RIP: 0010:__alloc_frozen_pages_noprof+0x2c8/0x370 [ 77.483251][ T5336] Code: 74 10 4c 89 e7 89 54 24 0c e8 e4 9b 0d 00 8b 54 24 0c 49 83 3c 24 00 0f 85 a5 fe ff ff e9 a6 fe ff ff c6 05 f8 14 50 0d 01 90 <0f> 0b 90 e9 18 ff ff ff a9 00 00 08 00 48 8b 4c 24 10 4c 8d 44 24 [ 77.491546][ T5336] RSP: 0018:ffffc9000d597940 EFLAGS: 00010246 [ 77.494236][ T5336] RAX: ffffc9000d597900 RBX: 0000000000000012 RCX: 0000000000000000 [ 77.497714][ T5336] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc9000d5979a8 [ 77.501233][ T5336] RBP: ffffc9000d597a28 R08: ffffc9000d5979a7 R09: 0000000000000000 [ 77.504718][ T5336] R10: ffffc9000d597980 R11: fffff52001ab2f35 R12: 0000000000000000 [ 77.508187][ T5336] R13: 1ffff92001ab2f2c R14: 0000000000040cc0 R15: dffffc0000000000 [ 77.511667][ T5336] ? __kasan_slab_free+0x5c/0x80 [ 77.513869][ T5336] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 77.516662][ T5336] ? policy_nodemask+0x27c/0x720 [ 77.518837][ T5336] alloc_pages_mpol+0x232/0x4a0 [ 77.521001][ T5336] ___kmalloc_large_node+0x4e/0x100 [ 77.523298][ T5336] __kmalloc_large_node_noprof+0x18/0x90 [ 77.525700][ T5336] __kmalloc_noprof+0x4bd/0x800 [ 77.527811][ T5336] ? raw_ioctl+0x18fb/0x3bc0 [ 77.529821][ T5336] raw_ioctl+0x18fb/0x3bc0 [ 77.531833][ T5336] ? tomoyo_path_number_perm+0x1bc/0x5a0 [ 77.534256][ T5336] ? do_vfs_ioctl+0xbe8/0x1430 [ 77.536343][ T5336] ? tomoyo_path_number_perm+0x1bc/0x5a0 [ 77.538658][ T5336] ? __pfx_raw_ioctl+0x10/0x10 [ 77.540808][ T5336] ? do_futex+0x395/0x420 [ 77.542707][ T5336] ? __fget_files+0x2a/0x420 [ 77.544736][ T5336] ? __fget_files+0x3a0/0x420 [ 77.546835][ T5336] ? __fget_files+0x2a/0x420 [ 77.548868][ T5336] ? bpf_lsm_file_ioctl+0x9/0x20 [ 77.551024][ T5336] ? __pfx_raw_ioctl+0x10/0x10 [ 77.553166][ T5336] __se_sys_ioctl+0xfc/0x170 [ 77.556111][ T5336] do_syscall_64+0xfa/0xf80 [ 77.558495][ T5336] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 77.561157][ T5336] ? clear_bhb_loop+0x60/0xb0 [ 77.563253][ T5336] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 77.565912][ T5336] RIP: 0033:0x7fb36b58f7c9 [ 77.567962][ T5336] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 77.576344][ T5336] RSP: 002b:00007fb36c462038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 77.579735][ T5336] RAX: ffffffffffffffda RBX: 00007fb36b7e5fa0 RCX: 00007fb36b58f7c9 [ 77.583140][ T5336] RDX: 0000200000000400 RSI: 00000000c0085508 RDI: 0000000000000004 [ 77.586431][ T5336] RBP: 00007fb36b613f91 R08: 0000000000000000 R09: 0000000000000000 [ 77.589711][ T5336] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 77.593098][ T5336] R13: 00007fb36b7e6038 R14: 00007fb36b7e5fa0 R15: 00007ffeeb4006c8 [ 77.596509][ T5336] [ 77.598258][ T5336] Kernel Offset: disabled [ 77.600206][ T5336] Rebooting in 86400 seconds..