BUG: unable to handle page fault for address: 0000000707000800
#PF: supervisor read access in kernel mode
#PF: error_code(0x0000) - not-present page
PGD 0 P4D 0 
Oops: 0000 [#1] PREEMPT SMP KASAN
CPU: 0 PID: 4874 Comm: systemd-udevd Tainted: G        W         5.13.0-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:freelist_dereference mm/slub.c:301 [inline]
RIP: 0010:get_freepointer mm/slub.c:308 [inline]
RIP: 0010:get_freepointer_safe mm/slub.c:322 [inline]
RIP: 0010:slab_alloc_node mm/slub.c:2938 [inline]
RIP: 0010:slab_alloc mm/slub.c:2978 [inline]
RIP: 0010:kmem_cache_alloc_trace+0x178/0x3c0 mm/slub.c:2995
Code: 39 f2 75 e7 48 8b 01 48 83 79 10 00 48 89 04 24 0f 84 ae 01 00 00 48 85 c0 0f 84 a5 01 00 00 48 8b 7d 00 8b 4d 28 40 f6 c7 0f <48> 8b 1c 08 0f 85 af 01 00 00 48 8d 4a 08 65 48 0f c7 0f 0f 94 c0
RSP: 0018:ffffc90000edfb00 EFLAGS: 00010246
RAX: 0000000707000000 RBX: 0000000000000dc0 RCX: 0000000000000800
RDX: 000000000053a588 RSI: 000000000053a588 RDI: 0000000000039470
RBP: ffff888011042140 R08: 0000000000000000 R09: ffffffff8deb5217
R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
R13: 0000000000000dc0 R14: 0000000000000a20 R15: ffffffff845e165c
FS:  00007f7e2847a8c0(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000707000800 CR3: 0000000017b83000 CR4: 0000000000350ef0
Call Trace:
 kmalloc include/linux/slab.h:591 [inline]
 kzalloc include/linux/slab.h:721 [inline]
 uevent_show+0x15c/0x390 drivers/base/core.c:2348
 dev_attr_show+0x4b/0x90 drivers/base/core.c:2055
 sysfs_kf_seq_show+0x1f8/0x400 fs/sysfs/file.c:61
 seq_read_iter+0x4d4/0x11e0 fs/seq_file.c:227
 kernfs_fop_read_iter+0x44f/0x5f0 fs/kernfs/file.c:241
 call_read_iter include/linux/fs.h:2108 [inline]
 new_sync_read+0x41e/0x6e0 fs/read_write.c:415
 vfs_read+0x35c/0x570 fs/read_write.c:496
 ksys_read+0x12d/0x250 fs/read_write.c:634
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7f7e272ec910
Code: b6 fe ff ff 48 8d 3d 0f be 08 00 48 83 ec 08 e8 06 db 01 00 66 0f 1f 44 00 00 83 3d f9 2d 2c 00 00 75 10 b8 00 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 de 9b 01 00 48 89 04 24
RSP: 002b:00007ffc7ff2bce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
RAX: ffffffffffffffda RBX: 0000559ae3d97fe0 RCX: 00007f7e272ec910
RDX: 0000000000001000 RSI: 0000559ae3dc21f0 RDI: 000000000000000e
RBP: 00007f7e275a7440 R08: 00007f7e275ab2c8 R09: 0000000000001010
R10: 0000559ae3d97fe0 R11: 0000000000000246 R12: 0000000000001000
R13: 0000000000000d68 R14: 0000559ae3dc21f0 R15: 00007f7e275a6900
Modules linked in:
CR2: 0000000707000800
---[ end trace b097d5fa9ed19640 ]---
RIP: 0010:freelist_dereference mm/slub.c:301 [inline]
RIP: 0010:get_freepointer mm/slub.c:308 [inline]
RIP: 0010:get_freepointer_safe mm/slub.c:322 [inline]
RIP: 0010:slab_alloc_node mm/slub.c:2938 [inline]
RIP: 0010:slab_alloc mm/slub.c:2978 [inline]
RIP: 0010:kmem_cache_alloc_trace+0x178/0x3c0 mm/slub.c:2995
Code: 39 f2 75 e7 48 8b 01 48 83 79 10 00 48 89 04 24 0f 84 ae 01 00 00 48 85 c0 0f 84 a5 01 00 00 48 8b 7d 00 8b 4d 28 40 f6 c7 0f <48> 8b 1c 08 0f 85 af 01 00 00 48 8d 4a 08 65 48 0f c7 0f 0f 94 c0
RSP: 0018:ffffc90000edfb00 EFLAGS: 00010246
RAX: 0000000707000000 RBX: 0000000000000dc0 RCX: 0000000000000800
RDX: 000000000053a588 RSI: 000000000053a588 RDI: 0000000000039470
RBP: ffff888011042140 R08: 0000000000000000 R09: ffffffff8deb5217
R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
R13: 0000000000000dc0 R14: 0000000000000a20 R15: ffffffff845e165c
FS:  00007f7e2847a8c0(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000707000800 CR3: 0000000017b83000 CR4: 0000000000350ef0