watchdog: BUG: soft lockup - CPU#0 stuck for 114s! [syz-executor.0:12529]
Modules linked in:
irq event stamp: 18370019
hardirqs last  enabled at (18370018): [<ffffffff89000d42>] asm_sysvec_irq_work+0x12/0x20 syzkaller/managers/upstream-kasan-gce-root/kernel/./arch/x86/include/asm/idtentry.h:655
hardirqs last disabled at (18370019): [<ffffffff88fa783c>] sysvec_apic_timer_interrupt+0xc/0x100 syzkaller/managers/upstream-kasan-gce-root/kernel/arch/x86/kernel/apic/apic.c:1096
softirqs last  enabled at (17897048): [<ffffffff89000eaf>] asm_call_irq_on_stack+0xf/0x20
softirqs last disabled at (17897051): [<ffffffff89000eaf>] asm_call_irq_on_stack+0xf/0x20
CPU: 0 PID: 12529 Comm: syz-executor.0 Not tainted 5.11.0-rc6-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:check_kcov_mode syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/kcov.c:163 [inline]
RIP: 0010:__sanitizer_cov_trace_pc+0x1c/0x60 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/kcov.c:197
Code: e9 00 fd ff ff 66 0f 1f 84 00 00 00 00 00 65 8b 05 59 1e 8f 7e 89 c1 48 8b 34 24 81 e1 00 01 00 00 65 48 8b 14 25 00 f0 01 00 <a9> 00 01 ff 00 74 0e 85 c9 74 35 8b 82 cc 14 00 00 85 c0 74 2b 8b
RSP: 0018:ffffc90000007918 EFLAGS: 00000206
RAX: 0000000000000302 RBX: 0000000000000000 RCX: 0000000000000100
RDX: ffff88801b301bc0 RSI: ffffffff8857b581 RDI: ffff888013538070
RBP: 0000000000000080 R08: 0000000000000000 R09: 0000000000000000
R10: ffffffff8857b461 R11: 0000000000000000 R12: dffffc0000000000
R13: 000000000000004c R14: ffff888017910c50 R15: 0000000000000000
FS:  0000000000000000(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000055d10478ac38 CR3: 0000000028b3d000 CR4: 0000000000350ef0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
Call Trace:
 <IRQ>
 ieee80211_rx_h_action syzkaller/managers/upstream-kasan-gce-root/kernel/net/mac80211/rx.c:3128 [inline]
 ieee80211_rx_handlers+0x3731/0xae60 syzkaller/managers/upstream-kasan-gce-root/kernel/net/mac80211/rx.c:3788
 ieee80211_invoke_rx_handlers syzkaller/managers/upstream-kasan-gce-root/kernel/net/mac80211/rx.c:3823 [inline]
 ieee80211_prepare_and_rx_handle+0x245f/0x6210 syzkaller/managers/upstream-kasan-gce-root/kernel/net/mac80211/rx.c:4505
 __ieee80211_rx_handle_packet syzkaller/managers/upstream-kasan-gce-root/kernel/net/mac80211/rx.c:4566 [inline]
 ieee80211_rx_list+0x1077/0x2430 syzkaller/managers/upstream-kasan-gce-root/kernel/net/mac80211/rx.c:4746
 ieee80211_rx_napi+0xf7/0x3d0 syzkaller/managers/upstream-kasan-gce-root/kernel/net/mac80211/rx.c:4769
 ieee80211_rx syzkaller/managers/upstream-kasan-gce-root/kernel/./include/net/mac80211.h:4508 [inline]
 ieee80211_tasklet_handler+0xd4/0x130 syzkaller/managers/upstream-kasan-gce-root/kernel/net/mac80211/main.c:235
 tasklet_action_common.constprop.0+0x1d7/0x2d0 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/softirq.c:555
 __do_softirq+0x29b/0x9f6 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/softirq.c:343
 asm_call_irq_on_stack+0xf/0x20
 </IRQ>
 __run_on_irqstack syzkaller/managers/upstream-kasan-gce-root/kernel/./arch/x86/include/asm/irq_stack.h:26 [inline]
 run_on_irqstack_cond syzkaller/managers/upstream-kasan-gce-root/kernel/./arch/x86/include/asm/irq_stack.h:77 [inline]
 do_softirq_own_stack+0xaa/0xd0 syzkaller/managers/upstream-kasan-gce-root/kernel/arch/x86/kernel/irq_64.c:77
 invoke_softirq syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/softirq.c:226 [inline]
 __irq_exit_rcu syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/softirq.c:420 [inline]
 irq_exit_rcu+0x134/0x200 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/softirq.c:432
 sysvec_apic_timer_interrupt+0x4d/0x100 syzkaller/managers/upstream-kasan-gce-root/kernel/arch/x86/kernel/apic/apic.c:1096
 asm_sysvec_apic_timer_interrupt+0x12/0x20 syzkaller/managers/upstream-kasan-gce-root/kernel/./arch/x86/include/asm/idtentry.h:629
RIP: 0010:preempt_schedule_irq+0x49/0x90 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/sched/core.c:5340
Code: 55 53 65 48 8b 1c 25 00 f0 01 00 48 89 dd 48 c1 ed 03 48 01 c5 bf 01 00 00 00 e8 b2 93 51 f8 e8 fd 9b 7c f8 fb bf 01 00 00 00 <e8> 02 d1 ff ff 9c 58 fa f6 c4 02 75 27 bf 01 00 00 00 e8 c0 81 51
RSP: 0018:ffffc900095df608 EFLAGS: 00000202
RAX: 000000000040a0cb RBX: ffff88801b301bc0 RCX: 1ffffffff1b46a21
RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001
RBP: ffffed1003660378 R08: 0000000000000001 R09: 0000000000000001
R10: ffffffff8178a418 R11: 0000000000000001 R12: 0000000000000000
R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
 irqentry_exit_cond_resched syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/entry/common.c:393 [inline]
 irqentry_exit_cond_resched syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/entry/common.c:385 [inline]
 irqentry_exit+0x7a/0xa0 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/entry/common.c:423
 asm_sysvec_apic_timer_interrupt+0x12/0x20 syzkaller/managers/upstream-kasan-gce-root/kernel/./arch/x86/include/asm/idtentry.h:629
RIP: 0010:check_kcov_mode syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/kcov.c:163 [inline]
RIP: 0010:__sanitizer_cov_trace_pc+0x7/0x60 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/kcov.c:197
Code: 0f bd c8 49 8b 14 24 48 63 c9 e9 66 ff ff ff 4c 01 ca 49 89 13 e9 00 fd ff ff 66 0f 1f 84 00 00 00 00 00 65 8b 05 59 1e 8f 7e <89> c1 48 8b 34 24 81 e1 00 01 00 00 65 48 8b 14 25 00 f0 01 00 a9
RSP: 0018:ffffc900095df6d8 EFLAGS: 00000246
RAX: 0000000080000000 RBX: ffffea0000d7af40 RCX: 0000000000000000
RDX: 0000000000000000 RSI: ffff88801b301bc0 RDI: 0000000000000003
RBP: ffffea0000d7af40 R08: 0000000000000000 R09: 0000000000000000
R10: ffffffff81ae4a7f R11: 0000000000000000 R12: ffffea0000d7af40
R13: ffffea0000d7af48 R14: 0000000000000000 R15: ffffea0000d0ea88
 PagePoisoned syzkaller/managers/upstream-kasan-gce-root/kernel/./include/linux/page-flags.h:204 [inline]
 PageSwapBacked syzkaller/managers/upstream-kasan-gce-root/kernel/./include/linux/page-flags.h:357 [inline]
 PageSwapCache syzkaller/managers/upstream-kasan-gce-root/kernel/./include/linux/page-flags.h:401 [inline]
 free_swap_cache+0x9d/0x300 syzkaller/managers/upstream-kasan-gce-root/kernel/mm/swap_state.c:326
 free_pages_and_swap_cache+0x58/0x90 syzkaller/managers/upstream-kasan-gce-root/kernel/mm/swap_state.c:354
 tlb_batch_pages_flush syzkaller/managers/upstream-kasan-gce-root/kernel/mm/mmu_gather.c:49 [inline]
 tlb_flush_mmu_free syzkaller/managers/upstream-kasan-gce-root/kernel/mm/mmu_gather.c:242 [inline]
 tlb_flush_mmu+0xe9/0x6b0 syzkaller/managers/upstream-kasan-gce-root/kernel/mm/mmu_gather.c:249
 zap_pte_range syzkaller/managers/upstream-kasan-gce-root/kernel/mm/memory.c:1330 [inline]
 zap_pmd_range syzkaller/managers/upstream-kasan-gce-root/kernel/mm/memory.c:1368 [inline]
 zap_pud_range syzkaller/managers/upstream-kasan-gce-root/kernel/mm/memory.c:1397 [inline]
 zap_p4d_range syzkaller/managers/upstream-kasan-gce-root/kernel/mm/memory.c:1418 [inline]
 unmap_page_range+0x1a75/0x2640 syzkaller/managers/upstream-kasan-gce-root/kernel/mm/memory.c:1439
 unmap_single_vma+0x198/0x300 syzkaller/managers/upstream-kasan-gce-root/kernel/mm/memory.c:1484
 unmap_vmas+0x168/0x2e0 syzkaller/managers/upstream-kasan-gce-root/kernel/mm/memory.c:1516
 exit_mmap+0x2b1/0x5a0 syzkaller/managers/upstream-kasan-gce-root/kernel/mm/mmap.c:3220
 __mmput+0x122/0x470 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/fork.c:1082
 mmput+0x53/0x60 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/fork.c:1103
 exit_mm syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/exit.c:501 [inline]
 do_exit+0xb6a/0x2ae0 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/exit.c:812
 do_group_exit+0x125/0x310 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/exit.c:922
 get_signal+0x427/0x20f0 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/signal.c:2773
 arch_do_signal_or_restart+0x2a8/0x1eb0 syzkaller/managers/upstream-kasan-gce-root/kernel/arch/x86/kernel/signal.c:811
 handle_signal_work syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/entry/common.c:147 [inline]
 exit_to_user_mode_loop syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/entry/common.c:171 [inline]
 exit_to_user_mode_prepare+0x148/0x250 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/entry/common.c:201
 __syscall_exit_to_user_mode_work syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/entry/common.c:291 [inline]
 syscall_exit_to_user_mode+0x19/0x50 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/entry/common.c:302
 entry_SYSCALL_64_after_hwframe+0x44/0xa9
RIP: 0033:0x465b09
Code: Unable to access opcode bytes at RIP 0x465adf.
RSP: 002b:00007f151a085188 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
RAX: 0000000020ffc000 RBX: 000000000056bf60 RCX: 0000000000465b09
RDX: 0000000000000000 RSI: 0000000000003000 RDI: 0000000020ffc000
RBP: 00000000004b069f R08: 0000000000000005 R09: 0000000000000000
R10: 0000000000000011 R11: 0000000000000246 R12: 000000000056bf60
R13: 00007ffea6c7908f R14: 00007f151a085300 R15: 0000000000022000
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1
CPU: 1 PID: 12525 Comm: syz-executor.2 Not tainted 5.11.0-rc6-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:native_apic_mem_write+0x8/0x10 syzkaller/managers/upstream-kasan-gce-root/kernel/./arch/x86/include/asm/apic.h:110
Code: c7 a0 9a 13 8f e8 78 9e 84 00 eb b0 66 0f 1f 44 00 00 be 01 00 00 00 e9 a6 71 2c 00 cc cc cc cc cc cc 89 ff 89 b7 00 c0 5f ff <c3> 0f 1f 80 00 00 00 00 48 b8 00 00 00 00 00 fc ff df 53 89 fb 48
RSP: 0018:ffffc90000db0650 EFLAGS: 00000046
RAX: dffffc0000000000 RBX: ffffffff8ae6f8a0 RCX: 1ffff110173a3fe8
RDX: 1ffffffff15cdf14 RSI: 0000000000000000 RDI: 00000000000000b0
RBP: ffffc90000db0688 R08: ffffffff8f145058 R09: ffffffff8f14504f
R10: ffffffff8f145057 R11: 0000000000000001 R12: 0000000000000000
R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
FS:  0000000000000000(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000055d10473ab18 CR3: 0000000028b3d000 CR4: 0000000000350ee0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
Call Trace:
 <IRQ>
 apic_eoi syzkaller/managers/upstream-kasan-gce-root/kernel/./arch/x86/include/asm/apic.h:408 [inline]
 ack_APIC_irq syzkaller/managers/upstream-kasan-gce-root/kernel/./arch/x86/include/asm/apic.h:454 [inline]
 __sysvec_irq_work+0x4b/0x3d0 syzkaller/managers/upstream-kasan-gce-root/kernel/arch/x86/kernel/irq_work.c:19
 run_sysvec_on_irqstack_cond syzkaller/managers/upstream-kasan-gce-root/kernel/./arch/x86/include/asm/irq_stack.h:91 [inline]
 sysvec_irq_work+0x48/0x100 syzkaller/managers/upstream-kasan-gce-root/kernel/arch/x86/kernel/irq_work.c:17
 asm_sysvec_irq_work+0x12/0x20 syzkaller/managers/upstream-kasan-gce-root/kernel/./arch/x86/include/asm/idtentry.h:655
RIP: 0010:__kernel_text_address+0x1/0x30 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/extable.c:104
Code: 89 ef e8 a2 c5 33 00 0f b6 c0 eb cf 48 c7 c7 04 51 a3 8d e8 41 ad 6a 00 e9 64 ff ff ff 66 66 2e 0f 1f 84 00 00 00 00 00 90 53 <48> 89 fb e8 07 ff ff ff 85 c0 75 17 48 81 fb 00 f0 d6 8e 72 0c 31
RSP: 0018:ffffc90000db0730 EFLAGS: 00000246
RAX: dffffc0000000000 RBX: ffffc90000db0758 RCX: 0000000000000000
RDX: 1ffff920001b60f4 RSI: ffffc90000db0a98 RDI: ffffffff81b54570
RBP: ffffc90000db07a0 R08: ffffffff8e25592c R09: 0000000000000001
R10: 0000000000082083 R11: 0000000000000001 R12: ffffc90000db0810
R13: 0000000000000000 R14: ffff88804b009bc0 R15: 0000000000000200
 unwind_get_return_address syzkaller/managers/upstream-kasan-gce-root/kernel/arch/x86/kernel/unwind_orc.c:318 [inline]
 unwind_get_return_address+0x51/0x90 syzkaller/managers/upstream-kasan-gce-root/kernel/arch/x86/kernel/unwind_orc.c:313
 arch_stack_walk+0x93/0xe0 syzkaller/managers/upstream-kasan-gce-root/kernel/arch/x86/kernel/stacktrace.c:26
 stack_trace_save+0x8c/0xc0 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/stacktrace.c:121
 kasan_save_stack+0x1b/0x40 syzkaller/managers/upstream-kasan-gce-root/kernel/mm/kasan/common.c:38
 kasan_set_track syzkaller/managers/upstream-kasan-gce-root/kernel/mm/kasan/common.c:46 [inline]
 set_alloc_info syzkaller/managers/upstream-kasan-gce-root/kernel/mm/kasan/common.c:401 [inline]
 ____kasan_kmalloc.constprop.0+0x82/0xa0 syzkaller/managers/upstream-kasan-gce-root/kernel/mm/kasan/common.c:429
 kasan_slab_alloc syzkaller/managers/upstream-kasan-gce-root/kernel/./include/linux/kasan.h:209 [inline]
 slab_post_alloc_hook syzkaller/managers/upstream-kasan-gce-root/kernel/mm/slab.h:512 [inline]
 slab_alloc_node syzkaller/managers/upstream-kasan-gce-root/kernel/mm/slub.c:2892 [inline]
 __kmalloc_node_track_caller+0x1e0/0x3f0 syzkaller/managers/upstream-kasan-gce-root/kernel/mm/slub.c:4496
 __kmalloc_reserve syzkaller/managers/upstream-kasan-gce-root/kernel/net/core/skbuff.c:142 [inline]
 __alloc_skb+0xae/0x5a0 syzkaller/managers/upstream-kasan-gce-root/kernel/net/core/skbuff.c:210
 __netdev_alloc_skb+0x70/0x400 syzkaller/managers/upstream-kasan-gce-root/kernel/net/core/skbuff.c:446
 netdev_alloc_skb syzkaller/managers/upstream-kasan-gce-root/kernel/./include/linux/skbuff.h:2832 [inline]
 dev_alloc_skb syzkaller/managers/upstream-kasan-gce-root/kernel/./include/linux/skbuff.h:2845 [inline]
 __ieee80211_beacon_get+0xebe/0x1aa0 syzkaller/managers/upstream-kasan-gce-root/kernel/net/mac80211/tx.c:4814
 ieee80211_beacon_get_tim+0x88/0x910 syzkaller/managers/upstream-kasan-gce-root/kernel/net/mac80211/tx.c:4928
 ieee80211_beacon_get syzkaller/managers/upstream-kasan-gce-root/kernel/./include/net/mac80211.h:4918 [inline]
 mac80211_hwsim_beacon_tx+0x111/0x910 syzkaller/managers/upstream-kasan-gce-root/kernel/drivers/net/wireless/mac80211_hwsim.c:1729
 __iterate_interfaces+0x1e5/0x520 syzkaller/managers/upstream-kasan-gce-root/kernel/net/mac80211/util.c:793
 ieee80211_iterate_active_interfaces_atomic+0x8d/0x170 syzkaller/managers/upstream-kasan-gce-root/kernel/net/mac80211/util.c:829
 mac80211_hwsim_beacon+0xd5/0x1a0 syzkaller/managers/upstream-kasan-gce-root/kernel/drivers/net/wireless/mac80211_hwsim.c:1782
 __run_hrtimer syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/time/hrtimer.c:1519 [inline]
 __hrtimer_run_queues+0x609/0xe40 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/time/hrtimer.c:1583
 hrtimer_run_softirq+0x17b/0x360 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/time/hrtimer.c:1600
 __do_softirq+0x29b/0x9f6 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/softirq.c:343
 asm_call_irq_on_stack+0xf/0x20
 </IRQ>
 __run_on_irqstack syzkaller/managers/upstream-kasan-gce-root/kernel/./arch/x86/include/asm/irq_stack.h:26 [inline]
 run_on_irqstack_cond syzkaller/managers/upstream-kasan-gce-root/kernel/./arch/x86/include/asm/irq_stack.h:77 [inline]
 do_softirq_own_stack+0xaa/0xd0 syzkaller/managers/upstream-kasan-gce-root/kernel/arch/x86/kernel/irq_64.c:77
 invoke_softirq syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/softirq.c:226 [inline]
 __irq_exit_rcu syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/softirq.c:420 [inline]
 irq_exit_rcu+0x134/0x200 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/softirq.c:432
 sysvec_apic_timer_interrupt+0x4d/0x100 syzkaller/managers/upstream-kasan-gce-root/kernel/arch/x86/kernel/apic/apic.c:1096
 asm_sysvec_apic_timer_interrupt+0x12/0x20 syzkaller/managers/upstream-kasan-gce-root/kernel/./arch/x86/include/asm/idtentry.h:629
RIP: 0010:schedule_debug syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/sched/core.c:4826 [inline]
RIP: 0010:__schedule+0x136/0x21a0 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/sched/core.c:4972
Code: fe 1a 00 00 48 b8 00 00 00 00 00 fc ff df 4d 8b 7d 20 4c 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 c7 1b 00 00 49 81 3f 9d 6e ac 57 <0f> 85 44 20 00 00 49 8d 45 18 84 db 48 89 85 68 ff ff ff 75 28 48
RSP: 0018:ffffc90003b7f390 EFLAGS: 00000246
RAX: dffffc0000000000 RBX: 0000000000000001 RCX: 1ffff9200076fe7a
RDX: 1ffff9200076f000 RSI: 0000000000000001 RDI: ffff88804b009be0
RBP: ffffc90003b7f458 R08: 0000000000000001 R09: 0000000000000001
R10: ffffffff8178a418 R11: 0000000000000001 R12: ffff8880b9d34c40
R13: ffff88804b009bc0 R14: 0000000000034c40 R15: ffffc90003b78000
 preempt_schedule_irq+0x4e/0x90 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/sched/core.c:5340
 irqentry_exit_cond_resched syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/entry/common.c:393 [inline]
 irqentry_exit_cond_resched syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/entry/common.c:385 [inline]
 irqentry_exit+0x7a/0xa0 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/entry/common.c:423
 asm_sysvec_apic_timer_interrupt+0x12/0x20 syzkaller/managers/upstream-kasan-gce-root/kernel/./arch/x86/include/asm/idtentry.h:629
RIP: 0010:__debug_check_no_obj_freed syzkaller/managers/upstream-kasan-gce-root/kernel/lib/debugobjects.c:999 [inline]
RIP: 0010:debug_check_no_obj_freed+0x213/0x420 syzkaller/managers/upstream-kasan-gce-root/kernel/lib/debugobjects.c:1018
Code: f2 fd 4c 8b 44 24 38 e9 17 ff ff ff 44 01 64 24 0c 45 89 e5 48 8b 74 24 28 48 8b 7c 24 10 e8 84 7f 39 05 44 39 2d 75 56 e0 09 <7d> 07 44 89 2d 6c 56 e0 09 48 81 44 24 18 00 10 00 00 48 8b 44 24
RSP: 0018:ffffc90003b7f538 EFLAGS: 00000202
RAX: 0000000080000000 RBX: ffff888067e00000 RCX: 0000000000000000
RDX: 0000000000000001 RSI: 0000000000000001 RDI: 0000000000000001
RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000001
R10: ffffffff8178a418 R11: 0000000000000003 R12: 1ffffffff1fbda56
R13: 0000000000000000 R14: dead000000000100 R15: dffffc0000000000
 free_pages_prepare syzkaller/managers/upstream-kasan-gce-root/kernel/mm/page_alloc.c:1276 [inline]
 __free_pages_ok+0x2f9/0xec0 syzkaller/managers/upstream-kasan-gce-root/kernel/mm/page_alloc.c:1536
 release_pages+0x80c/0x1d20 syzkaller/managers/upstream-kasan-gce-root/kernel/mm/swap.c:909
 tlb_batch_pages_flush syzkaller/managers/upstream-kasan-gce-root/kernel/mm/mmu_gather.c:49 [inline]
 tlb_flush_mmu_free syzkaller/managers/upstream-kasan-gce-root/kernel/mm/mmu_gather.c:242 [inline]
 tlb_flush_mmu+0xe9/0x6b0 syzkaller/managers/upstream-kasan-gce-root/kernel/mm/mmu_gather.c:249
 zap_pte_range syzkaller/managers/upstream-kasan-gce-root/kernel/mm/memory.c:1330 [inline]
 zap_pmd_range syzkaller/managers/upstream-kasan-gce-root/kernel/mm/memory.c:1368 [inline]
 zap_pud_range syzkaller/managers/upstream-kasan-gce-root/kernel/mm/memory.c:1397 [inline]
 zap_p4d_range syzkaller/managers/upstream-kasan-gce-root/kernel/mm/memory.c:1418 [inline]
 unmap_page_range+0x1a75/0x2640 syzkaller/managers/upstream-kasan-gce-root/kernel/mm/memory.c:1439
 unmap_single_vma+0x198/0x300 syzkaller/managers/upstream-kasan-gce-root/kernel/mm/memory.c:1484
 unmap_vmas+0x168/0x2e0 syzkaller/managers/upstream-kasan-gce-root/kernel/mm/memory.c:1516
 exit_mmap+0x2b1/0x5a0 syzkaller/managers/upstream-kasan-gce-root/kernel/mm/mmap.c:3220
 __mmput+0x122/0x470 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/fork.c:1082
 mmput+0x53/0x60 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/fork.c:1103
 exit_mm syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/exit.c:501 [inline]
 do_exit+0xb6a/0x2ae0 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/exit.c:812
 do_group_exit+0x125/0x310 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/exit.c:922
 get_signal+0x427/0x20f0 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/signal.c:2773
 arch_do_signal_or_restart+0x2a8/0x1eb0 syzkaller/managers/upstream-kasan-gce-root/kernel/arch/x86/kernel/signal.c:811
 handle_signal_work syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/entry/common.c:147 [inline]
 exit_to_user_mode_loop syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/entry/common.c:171 [inline]
 exit_to_user_mode_prepare+0x148/0x250 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/entry/common.c:201
 __syscall_exit_to_user_mode_work syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/entry/common.c:291 [inline]
 syscall_exit_to_user_mode+0x19/0x50 syzkaller/managers/upstream-kasan-gce-root/kernel/kernel/entry/common.c:302
 entry_SYSCALL_64_after_hwframe+0x44/0xa9
RIP: 0033:0x465b09
Code: Unable to access opcode bytes at RIP 0x465adf.
RSP: 002b:00007f0fce19f188 EFLAGS: 00000246 ORIG_RAX: 000000000000010e
RAX: fffffffffffffdfe RBX: 000000000056bf60 RCX: 0000000000465b09
RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000040
RBP: 00000000004b069f R08: 0000000020000200 R09: 0000000000000000
R10: 0000000020000140 R11: 0000000000000246 R12: 000000000056bf60
R13: 00007ffc8cd0f03f R14: 00007f0fce19f300 R15: 0000000000022000