WARNING in __apply_to_page_range ------------[ cut here ]------------ WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pte_range mm/memory.c:2936 [inline] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pmd_range mm/memory.c:2985 [inline] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pud_range mm/memory.c:3021 [inline] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_p4d_range mm/memory.c:3057 [inline] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 Modules linked in: CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] pc : apply_to_pte_range mm/memory.c:2936 [inline] pc : apply_to_pmd_range mm/memory.c:2985 [inline] pc : apply_to_pud_range mm/memory.c:3021 [inline] pc : apply_to_p4d_range mm/memory.c:3057 [inline] pc : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 lr : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] lr : apply_to_pte_range mm/memory.c:2936 [inline] lr : apply_to_pmd_range mm/memory.c:2985 [inline] lr : apply_to_pud_range mm/memory.c:3021 [inline] lr : apply_to_p4d_range mm/memory.c:3057 [inline] lr : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 sp : ffff800080007900 x29: ffff800080007a20 x28: ffff0001ffbf0fff x27: ffff0001fec50fe8 x26: ffff0001ffbf1000 x25: dfff800000000000 x24: ffff0001ffbf0000 x23: ffff0001fea8ef80 x22: 0000000000000100 x21: ffff80008f346040 x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386aa76 x17: ffff80010d0e8000 x16: ffff80008051bab8 x15: 0000000000000001 x14: 1ffff00012dfb959 x13: 0000000000000000 x12: 0000000000000000 x11: ffff700012dfb95a x10: 0000000000ff0100 x9 : 0000000000000000 x8 : ffff80008f346040 x7 : ffff800080c2b0a4 x6 : 0000000000000000 x5 : 0000000000000001 x4 : ffff800080007b00 x3 : ffff8000802595f4 x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 Call trace: arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] (P) apply_to_pte_range mm/memory.c:2936 [inline] (P) apply_to_pmd_range mm/memory.c:2985 [inline] (P) apply_to_pud_range mm/memory.c:3021 [inline] (P) apply_to_p4d_range mm/memory.c:3057 [inline] (P) __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 (P) apply_to_page_range+0x4c/0x64 mm/memory.c:3112 __change_memory_common+0xac/0x3f8 arch/arm64/mm/pageattr.c:64 set_memory_valid+0x68/0x7c arch/arm64/mm/pageattr.c:-1 kfence_protect_page arch/arm64/include/asm/kfence.h:17 [inline] kfence_protect mm/kfence/core.c:247 [inline] kfence_guarded_free+0x278/0x5a8 mm/kfence/core.c:565 __kfence_free+0x104/0x198 mm/kfence/core.c:1187 kfence_free include/linux/kfence.h:187 [inline] slab_free_hook mm/slub.c:2318 [inline] slab_free mm/slub.c:4642 [inline] kfree+0x268/0x474 mm/slub.c:4841 slab_free_after_rcu_debug+0x78/0x2f4 mm/slub.c:4679 rcu_do_batch kernel/rcu/tree.c:2568 [inline] rcu_core+0x848/0x17a4 kernel/rcu/tree.c:2824 rcu_core_si+0x10/0x1c kernel/rcu/tree.c:2841 handle_softirqs+0x328/0xc88 kernel/softirq.c:579 __do_softirq+0x14/0x20 kernel/softirq.c:613 ____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:81 call_on_irq_stack+0x24/0x30 arch/arm64/kernel/entry.S:891 do_softirq_own_stack+0x20/0x2c arch/arm64/kernel/irq.c:86 invoke_softirq kernel/softirq.c:460 [inline] __irq_exit_rcu+0x1b0/0x478 kernel/softirq.c:680 irq_exit_rcu+0x14/0x84 kernel/softirq.c:696 __el1_irq arch/arm64/kernel/entry-common.c:584 [inline] el1_interrupt+0x38/0x54 arch/arm64/kernel/entry-common.c:598 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:603 el1h_64_irq+0x6c/0x70 arch/arm64/kernel/entry.S:596 __daif_local_irq_enable arch/arm64/include/asm/irqflags.h:26 [inline] (P) arch_local_irq_enable+0x8/0xc arch/arm64/include/asm/irqflags.h:48 (P) cpuidle_idle_call kernel/sched/idle.c:185 [inline] do_idle+0x1d8/0x454 kernel/sched/idle.c:325 cpu_startup_entry+0x5c/0x74 kernel/sched/idle.c:423 rest_init+0x2d8/0x2f4 init/main.c:743 start_kernel+0x44c/0x4a8 init/main.c:1099 __primary_switched+0x8c/0x94 arch/arm64/kernel/head.S:246 irq event stamp: 148843 hardirqs last enabled at (148842): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline] hardirqs last enabled at (148842): [] _raw_spin_unlock_irqrestore+0x38/0x98 kernel/locking/spinlock.c:194 hardirqs last disabled at (148843): [] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:511 softirqs last enabled at (148794): [] softirq_handle_end kernel/softirq.c:425 [inline] softirqs last enabled at (148794): [] handle_softirqs+0xaf8/0xc88 kernel/softirq.c:607 softirqs last disabled at (148807): [] __do_softirq+0x14/0x20 kernel/softirq.c:613 ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pte_range mm/memory.c:2936 [inline] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pmd_range mm/memory.c:2985 [inline] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pud_range mm/memory.c:3021 [inline] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_p4d_range mm/memory.c:3057 [inline] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 Modules linked in: CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] pc : apply_to_pte_range mm/memory.c:2936 [inline] pc : apply_to_pmd_range mm/memory.c:2985 [inline] pc : apply_to_pud_range mm/memory.c:3021 [inline] pc : apply_to_p4d_range mm/memory.c:3057 [inline] pc : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 lr : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] lr : apply_to_pte_range mm/memory.c:2936 [inline] lr : apply_to_pmd_range mm/memory.c:2985 [inline] lr : apply_to_pud_range mm/memory.c:3021 [inline] lr : apply_to_p4d_range mm/memory.c:3057 [inline] lr : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 sp : ffff800080007160 x29: ffff800080007280 x28: ffff0001ffbf2fff x27: ffff0001fec50fe8 x26: ffff0001ffbf3000 x25: dfff800000000000 x24: ffff0001ffbf2000 x23: ffff0001fea8ef90 x22: 0000000000000100 x21: ffff80008f346040 x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386aa76 x17: 0000000000020010 x16: ffff80008051bab8 x15: 0000000000000001 x14: 1ffff00012dfb9ef x13: 0000000000000000 x12: 0000000000000000 x11: ffff700012dfb9f0 x10: 0000000000ff0100 x9 : 0000000000000000 x8 : ffff80008f346040 x7 : ffff800080c2b0a4 x6 : 0000000000000000 x5 : 0000000000000001 x4 : ffff800080007360 x3 : ffff8000802595f4 x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 Call trace: arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] (P) apply_to_pte_range mm/memory.c:2936 [inline] (P) apply_to_pmd_range mm/memory.c:2985 [inline] (P) apply_to_pud_range mm/memory.c:3021 [inline] (P) apply_to_p4d_range mm/memory.c:3057 [inline] (P) __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 (P) apply_to_page_range+0x4c/0x64 mm/memory.c:3112 __change_memory_common+0xac/0x3f8 arch/arm64/mm/pageattr.c:64 set_memory_valid+0x68/0x7c arch/arm64/mm/pageattr.c:-1 kfence_protect_page arch/arm64/include/asm/kfence.h:17 [inline] kfence_protect mm/kfence/core.c:247 [inline] kfence_guarded_free+0x278/0x5a8 mm/kfence/core.c:565 __kfence_free+0x104/0x198 mm/kfence/core.c:1187 kfence_free include/linux/kfence.h:187 [inline] slab_free_hook mm/slub.c:2318 [inline] slab_free mm/slub.c:4642 [inline] kmem_cache_free+0x250/0x550 mm/slub.c:4744 skb_kfree_head net/core/skbuff.c:1056 [inline] skb_free_head+0xbc/0x198 net/core/skbuff.c:1070 skb_release_data+0x66c/0x820 net/core/skbuff.c:1097 skb_release_all net/core/skbuff.c:1162 [inline] __kfree_skb net/core/skbuff.c:1176 [inline] consume_skb+0xb0/0x130 net/core/skbuff.c:1408 arp_process+0xb78/0x12b8 net/ipv4/arp.c:941 NF_HOOK+0x2b8/0x34c include/linux/netfilter.h:314 arp_rcv+0x2a8/0x430 net/ipv4/arp.c:991 __netif_receive_skb_list_ptype net/core/dev.c:5935 [inline] __netif_receive_skb_list_core+0x60c/0x67c net/core/dev.c:5977 __netif_receive_skb_list net/core/dev.c:6029 [inline] netif_receive_skb_list_internal+0x74c/0x9e0 net/core/dev.c:6120 gro_normal_list include/net/gro.h:532 [inline] napi_complete_done+0x250/0x614 net/core/dev.c:6490 gve_napi_poll+0x1f4/0x3ac drivers/net/ethernet/google/gve/gve_main.c:388 __napi_poll+0xb4/0x3fc net/core/dev.c:7324 napi_poll net/core/dev.c:7388 [inline] net_rx_action+0x5d4/0xcc8 net/core/dev.c:7510 handle_softirqs+0x328/0xc88 kernel/softirq.c:579 __do_softirq+0x14/0x20 kernel/softirq.c:613 ____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:81 call_on_irq_stack+0x24/0x30 arch/arm64/kernel/entry.S:891 do_softirq_own_stack+0x20/0x2c arch/arm64/kernel/irq.c:86 invoke_softirq kernel/softirq.c:460 [inline] __irq_exit_rcu+0x1b0/0x478 kernel/softirq.c:680 irq_exit_rcu+0x14/0x84 kernel/softirq.c:696 __el1_irq arch/arm64/kernel/entry-common.c:584 [inline] el1_interrupt+0x38/0x54 arch/arm64/kernel/entry-common.c:598 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:603 el1h_64_irq+0x6c/0x70 arch/arm64/kernel/entry.S:596 __daif_local_irq_enable arch/arm64/include/asm/irqflags.h:26 [inline] (P) arch_local_irq_enable+0x8/0xc arch/arm64/include/asm/irqflags.h:48 (P) cpuidle_idle_call kernel/sched/idle.c:185 [inline] do_idle+0x1d8/0x454 kernel/sched/idle.c:325 cpu_startup_entry+0x5c/0x74 kernel/sched/idle.c:423 rest_init+0x2d8/0x2f4 init/main.c:743 start_kernel+0x44c/0x4a8 init/main.c:1099 __primary_switched+0x8c/0x94 arch/arm64/kernel/head.S:246 irq event stamp: 149031 hardirqs last enabled at (149030): [] __el1_irq arch/arm64/kernel/entry-common.c:588 [inline] hardirqs last enabled at (149030): [] el1_interrupt+0x44/0x54 arch/arm64/kernel/entry-common.c:598 hardirqs last disabled at (149031): [] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:511 softirqs last enabled at (148992): [] softirq_handle_end kernel/softirq.c:425 [inline] softirqs last enabled at (148992): [] handle_softirqs+0xaf8/0xc88 kernel/softirq.c:607 softirqs last disabled at (149005): [] __do_softirq+0x14/0x20 kernel/softirq.c:613 ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 0 PID: 4378 at ./arch/arm64/include/asm/pgtable.h:82 arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] WARNING: CPU: 0 PID: 4378 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pte_range mm/memory.c:2936 [inline] WARNING: CPU: 0 PID: 4378 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pmd_range mm/memory.c:2985 [inline] WARNING: CPU: 0 PID: 4378 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pud_range mm/memory.c:3021 [inline] WARNING: CPU: 0 PID: 4378 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_p4d_range mm/memory.c:3057 [inline] WARNING: CPU: 0 PID: 4378 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 Modules linked in: CPU: 0 UID: 0 PID: 4378 Comm: kworker/u8:10 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 Workqueue: events_unbound toggle_allocation_gate pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] pc : apply_to_pte_range mm/memory.c:2936 [inline] pc : apply_to_pmd_range mm/memory.c:2985 [inline] pc : apply_to_pud_range mm/memory.c:3021 [inline] pc : apply_to_p4d_range mm/memory.c:3057 [inline] pc : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 lr : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] lr : apply_to_pte_range mm/memory.c:2936 [inline] lr : apply_to_pmd_range mm/memory.c:2985 [inline] lr : apply_to_pud_range mm/memory.c:3021 [inline] lr : apply_to_p4d_range mm/memory.c:3057 [inline] lr : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 sp : ffff800080007640 x29: ffff800080007760 x28: ffff0001ffbf8fff x27: ffff0001fec50fe8 x26: ffff0001ffbf9000 x25: dfff800000000000 x24: ffff0001ffbf8000 x23: ffff0001fea8efc0 x22: 0000000000000100 x21: ffff0000d4ea5b80 x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386aa76 x17: ffff80010d0e8000 x16: ffff80008051bab8 x15: 0000000000000001 x14: 1ffff00012dfba24 x13: 0000000000000000 x12: 0000000000000000 x11: ffff700012dfba25 x10: 0000000000ff0100 x9 : 0000000000000000 x8 : ffff0000d4ea5b80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 x5 : 0000000000000001 x4 : ffff800080007840 x3 : ffff8000802595f4 x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 Call trace: arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] (P) apply_to_pte_range mm/memory.c:2936 [inline] (P) apply_to_pmd_range mm/memory.c:2985 [inline] (P) apply_to_pud_range mm/memory.c:3021 [inline] (P) apply_to_p4d_range mm/memory.c:3057 [inline] (P) __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 (P) apply_to_page_range+0x4c/0x64 mm/memory.c:3112 __change_memory_common+0xac/0x3f8 arch/arm64/mm/pageattr.c:64 set_memory_valid+0x68/0x7c arch/arm64/mm/pageattr.c:-1 kfence_protect_page arch/arm64/include/asm/kfence.h:17 [inline] kfence_protect mm/kfence/core.c:247 [inline] kfence_guarded_free+0x278/0x5a8 mm/kfence/core.c:565 __kfence_free+0x104/0x198 mm/kfence/core.c:1187 kfence_free include/linux/kfence.h:187 [inline] slab_free_hook mm/slub.c:2318 [inline] slab_free mm/slub.c:4642 [inline] kmem_cache_free+0x250/0x550 mm/slub.c:4744 kfree_skbmem+0x14c/0x1dc net/core/skbuff.c:-1 __kfree_skb net/core/skbuff.c:1177 [inline] sk_skb_reason_drop+0x150/0x1b0 net/core/skbuff.c:1214 kfree_skb_reason include/linux/skbuff.h:1279 [inline] dev_kfree_skb_any_reason+0x94/0xd0 net/core/dev.c:3391 dev_consume_skb_any include/linux/netdevice.h:4130 [inline] gve_clean_tx_done+0x240/0xaa8 drivers/net/ethernet/google/gve/gve_tx.c:908 gve_tx_poll+0x11c/0x1d0 drivers/net/ethernet/google/gve/gve_tx.c:1029 gve_napi_poll+0xc0/0x3ac drivers/net/ethernet/google/gve/gve_main.c:363 __napi_poll+0xb4/0x3fc net/core/dev.c:7324 napi_poll net/core/dev.c:7388 [inline] net_rx_action+0x5d4/0xcc8 net/core/dev.c:7510 handle_softirqs+0x328/0xc88 kernel/softirq.c:579 __do_softirq+0x14/0x20 kernel/softirq.c:613 ____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:81 call_on_irq_stack+0x24/0x30 arch/arm64/kernel/entry.S:891 do_softirq_own_stack+0x20/0x2c arch/arm64/kernel/irq.c:86 invoke_softirq kernel/softirq.c:460 [inline] __irq_exit_rcu+0x1b0/0x478 kernel/softirq.c:680 irq_exit_rcu+0x14/0x84 kernel/softirq.c:696 __el1_irq arch/arm64/kernel/entry-common.c:584 [inline] el1_interrupt+0x38/0x54 arch/arm64/kernel/entry-common.c:598 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:603 el1h_64_irq+0x6c/0x70 arch/arm64/kernel/entry.S:596 gic_write_sgi1r arch/arm64/include/asm/arch_gicv3.h:109 [inline] (P) gic_send_sgi drivers/irqchip/irq-gic-v3.c:1425 [inline] (P) gic_ipi_send_mask+0x318/0x384 drivers/irqchip/irq-gic-v3.c:1446 (P) __ipi_send_mask+0x84/0x2c0 kernel/irq/ipi.c:285 smp_cross_call+0x130/0x2f8 arch/arm64/kernel/smp.c:1023 arch_send_call_function_single_ipi+0x3c/0x4c arch/arm64/kernel/smp.c:862 send_call_function_single_ipi kernel/smp.c:118 [inline] smp_call_function_many_cond+0xbb4/0x1308 kernel/smp.c:867 smp_call_function_many kernel/smp.c:909 [inline] smp_call_function kernel/smp.c:931 [inline] kick_all_cpus_sync+0x40/0xa0 kernel/smp.c:1076 arch_jump_label_transform_apply+0x14/0x20 arch/arm64/kernel/jump_label.c:34 __jump_label_update+0x30c/0x334 kernel/jump_label.c:521 jump_label_update+0x3f0/0x484 kernel/jump_label.c:919 static_key_disable_cpuslocked+0xd0/0x1e0 kernel/jump_label.c:240 static_key_disable+0x24/0x38 kernel/jump_label.c:248 toggle_allocation_gate+0x1a4/0x240 mm/kfence/core.c:855 process_one_work+0x7e8/0x156c kernel/workqueue.c:3238 process_scheduled_works kernel/workqueue.c:3319 [inline] worker_thread+0x958/0xed8 kernel/workqueue.c:3400 kthread+0x5fc/0x75c kernel/kthread.c:464 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:847 irq event stamp: 123343 hardirqs last enabled at (123342): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline] hardirqs last enabled at (123342): [] _raw_spin_unlock_irqrestore+0x38/0x98 kernel/locking/spinlock.c:194 hardirqs last disabled at (123343): [] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:511 softirqs last enabled at (123244): [] softirq_handle_end kernel/softirq.c:425 [inline] softirqs last enabled at (123244): [] handle_softirqs+0xaf8/0xc88 kernel/softirq.c:607 softirqs last disabled at (123331): [] __do_softirq+0x14/0x20 kernel/softirq.c:613 ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pte_range mm/memory.c:2936 [inline] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pmd_range mm/memory.c:2985 [inline] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pud_range mm/memory.c:3021 [inline] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_p4d_range mm/memory.c:3057 [inline] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 Modules linked in: CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] pc : apply_to_pte_range mm/memory.c:2936 [inline] pc : apply_to_pmd_range mm/memory.c:2985 [inline] pc : apply_to_pud_range mm/memory.c:3021 [inline] pc : apply_to_p4d_range mm/memory.c:3057 [inline] pc : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 lr : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] lr : apply_to_pte_range mm/memory.c:2936 [inline] lr : apply_to_pmd_range mm/memory.c:2985 [inline] lr : apply_to_pud_range mm/memory.c:3021 [inline] lr : apply_to_p4d_range mm/memory.c:3057 [inline] lr : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 sp : ffff800080006f60 x29: ffff800080007080 x28: ffff0001ffbfafff x27: ffff0001fec50fe8 x26: ffff0001ffbfb000 x25: dfff800000000000 x24: ffff0001ffbfa000 x23: ffff0001fea8efd0 x22: 0000000000000500 x21: ffff80008f346040 x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386aa76 x17: ffff80010d0e8000 x16: ffff80008051bab8 x15: 0000000000000001 x14: 1ffff00012dfba24 x13: 0000000000000000 x12: 0000000000000000 x11: ffff700012dfba25 x10: 0000000000ff0100 x9 : 0000000000000000 x8 : ffff80008f346040 x7 : ffff800080c2b0a4 x6 : 0000000000000000 x5 : 0000000000000001 x4 : ffff800080007160 x3 : ffff8000802595f4 x2 : 0000000000001000 x1 : 0000000000000500 x0 : 0000000000000000 Call trace: arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] (P) apply_to_pte_range mm/memory.c:2936 [inline] (P) apply_to_pmd_range mm/memory.c:2985 [inline] (P) apply_to_pud_range mm/memory.c:3021 [inline] (P) apply_to_p4d_range mm/memory.c:3057 [inline] (P) __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 (P) apply_to_page_range+0x4c/0x64 mm/memory.c:3112 __change_memory_common+0xac/0x3f8 arch/arm64/mm/pageattr.c:64 set_memory_valid+0x68/0x7c arch/arm64/mm/pageattr.c:-1 kfence_protect_page arch/arm64/include/asm/kfence.h:17 [inline] kfence_protect mm/kfence/core.c:247 [inline] kfence_guarded_free+0x278/0x5a8 mm/kfence/core.c:565 __kfence_free+0x104/0x198 mm/kfence/core.c:1187 kfence_free include/linux/kfence.h:187 [inline] slab_free_hook mm/slub.c:2318 [inline] slab_free_freelist_hook mm/slub.c:2394 [inline] slab_free_bulk mm/slub.c:4666 [inline] kmem_cache_free_bulk+0x490/0x51c mm/slub.c:5243 kfree_skb_list_reason+0x3ac/0x418 net/core/skbuff.c:1264 __dev_xmit_skb net/core/dev.c:4093 [inline] __dev_queue_xmit+0x1ac8/0x31f0 net/core/dev.c:4595 dev_queue_xmit include/linux/netdevice.h:3350 [inline] lapbeth_data_transmit+0x1fc/0x2a8 drivers/net/wan/lapbether.c:260 lapb_data_transmit+0x8c/0xb0 net/lapb/lapb_iface.c:447 lapb_transmit_buffer+0x160/0x208 net/lapb/lapb_out.c:149 lapb_send_control+0x21c/0x320 net/lapb/lapb_subr.c:251 lapb_t1timer_expiry+0x490/0x864 net/lapb/lapb_timer.c:-1 call_timer_fn+0x1b4/0x818 kernel/time/timer.c:1789 expire_timers kernel/time/timer.c:1840 [inline] __run_timers kernel/time/timer.c:2414 [inline] __run_timer_base+0x51c/0x76c kernel/time/timer.c:2426 timer_expire_remote+0x78/0xa0 kernel/time/timer.c:2177 tmigr_handle_remote_cpu kernel/time/timer_migration.c:944 [inline] tmigr_handle_remote_up kernel/time/timer_migration.c:1035 [inline] __walk_groups kernel/time/timer_migration.c:533 [inline] tmigr_handle_remote+0x8d4/0x1340 kernel/time/timer_migration.c:1094 run_timer_softirq+0x190/0x194 kernel/time/timer.c:2449 handle_softirqs+0x328/0xc88 kernel/softirq.c:579 __do_softirq+0x14/0x20 kernel/softirq.c:613 ____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:81 call_on_irq_stack+0x24/0x30 arch/arm64/kernel/entry.S:891 do_softirq_own_stack+0x20/0x2c arch/arm64/kernel/irq.c:86 invoke_softirq kernel/softirq.c:460 [inline] __irq_exit_rcu+0x1b0/0x478 kernel/softirq.c:680 irq_exit_rcu+0x14/0x84 kernel/softirq.c:696 __el1_irq arch/arm64/kernel/entry-common.c:584 [inline] el1_interrupt+0x38/0x54 arch/arm64/kernel/entry-common.c:598 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:603 el1h_64_irq+0x6c/0x70 arch/arm64/kernel/entry.S:596 __daif_local_irq_enable arch/arm64/include/asm/irqflags.h:26 [inline] (P) arch_local_irq_enable+0x8/0xc arch/arm64/include/asm/irqflags.h:48 (P) cpuidle_idle_call kernel/sched/idle.c:185 [inline] do_idle+0x1d8/0x454 kernel/sched/idle.c:325 cpu_startup_entry+0x5c/0x74 kernel/sched/idle.c:423 rest_init+0x2d8/0x2f4 init/main.c:743 start_kernel+0x44c/0x4a8 init/main.c:1099 __primary_switched+0x8c/0x94 arch/arm64/kernel/head.S:246 irq event stamp: 153653 hardirqs last enabled at (153652): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline] hardirqs last enabled at (153652): [] _raw_spin_unlock_irqrestore+0x38/0x98 kernel/locking/spinlock.c:194 hardirqs last disabled at (153653): [] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:511 softirqs last enabled at (153614): [] softirq_handle_end kernel/softirq.c:425 [inline] softirqs last enabled at (153614): [] handle_softirqs+0xaf8/0xc88 kernel/softirq.c:607 softirqs last disabled at (153621): [] __do_softirq+0x14/0x20 kernel/softirq.c:613 ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 0 PID: 15 at ./arch/arm64/include/asm/pgtable.h:82 arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] WARNING: CPU: 0 PID: 15 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pte_range mm/memory.c:2936 [inline] WARNING: CPU: 0 PID: 15 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pmd_range mm/memory.c:2985 [inline] WARNING: CPU: 0 PID: 15 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pud_range mm/memory.c:3021 [inline] WARNING: CPU: 0 PID: 15 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_p4d_range mm/memory.c:3057 [inline] WARNING: CPU: 0 PID: 15 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 Modules linked in: CPU: 0 UID: 0 PID: 15 Comm: ksoftirqd/0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] pc : apply_to_pte_range mm/memory.c:2936 [inline] pc : apply_to_pmd_range mm/memory.c:2985 [inline] pc : apply_to_pud_range mm/memory.c:3021 [inline] pc : apply_to_p4d_range mm/memory.c:3057 [inline] pc : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 lr : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] lr : apply_to_pte_range mm/memory.c:2936 [inline] lr : apply_to_pmd_range mm/memory.c:2985 [inline] lr : apply_to_pud_range mm/memory.c:3021 [inline] lr : apply_to_p4d_range mm/memory.c:3057 [inline] lr : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 sp : ffff800097687620 x29: ffff800097687740 x28: ffff0001ffa20fff x27: ffff0001fec50fe8 x26: ffff0001ffa21000 x25: dfff800000000000 x24: ffff0001ffa20000 x23: ffff0001fea8e100 x22: 0000000000000100 x21: ffff0000c19f3d00 x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386aa76 x17: ffff80008f31e000 x16: ffff80008051bab8 x15: 0000000000000001 x14: 1ffff00012dfb968 x13: 0000000000000000 x12: 0000000000000000 x11: ffff700012dfb969 x10: 0000000000ff0100 x9 : 0000000000000000 x8 : ffff0000c19f3d00 x7 : ffff800080c2b0a4 x6 : 0000000000000000 x5 : 0000000000000001 x4 : ffff800097687820 x3 : ffff8000802595f4 x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 Call trace: arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] (P) apply_to_pte_range mm/memory.c:2936 [inline] (P) apply_to_pmd_range mm/memory.c:2985 [inline] (P) apply_to_pud_range mm/memory.c:3021 [inline] (P) apply_to_p4d_range mm/memory.c:3057 [inline] (P) __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 (P) apply_to_page_range+0x4c/0x64 mm/memory.c:3112 __change_memory_common+0xac/0x3f8 arch/arm64/mm/pageattr.c:64 set_memory_valid+0x68/0x7c arch/arm64/mm/pageattr.c:-1 kfence_protect_page arch/arm64/include/asm/kfence.h:17 [inline] kfence_protect mm/kfence/core.c:247 [inline] kfence_guarded_free+0x278/0x5a8 mm/kfence/core.c:565 __kfence_free+0x104/0x198 mm/kfence/core.c:1187 kfence_free include/linux/kfence.h:187 [inline] slab_free_hook mm/slub.c:2318 [inline] slab_free mm/slub.c:4642 [inline] kfree+0x268/0x474 mm/slub.c:4841 kfree_const+0x4c/0x5c mm/util.c:45 kernfs_free_rcu+0x44/0x10c fs/kernfs/dir.c:548 rcu_do_batch kernel/rcu/tree.c:2568 [inline] rcu_core+0x848/0x17a4 kernel/rcu/tree.c:2824 rcu_core_si+0x10/0x1c kernel/rcu/tree.c:2841 handle_softirqs+0x328/0xc88 kernel/softirq.c:579 run_ksoftirqd+0x70/0xc0 kernel/softirq.c:968 smpboot_thread_fn+0x4d8/0x9cc kernel/smpboot.c:164 kthread+0x5fc/0x75c kernel/kthread.c:464 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:847 irq event stamp: 728985 hardirqs last enabled at (728984): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline] hardirqs last enabled at (728984): [] _raw_spin_unlock_irqrestore+0x38/0x98 kernel/locking/spinlock.c:194 hardirqs last disabled at (728985): [] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:511 softirqs last enabled at (728900): [] softirq_handle_end kernel/softirq.c:425 [inline] softirqs last enabled at (728900): [] handle_softirqs+0xaf8/0xc88 kernel/softirq.c:607 softirqs last disabled at (728905): [] run_ksoftirqd+0x70/0xc0 kernel/softirq.c:968 ---[ end trace 0000000000000000 ]--- [ 35.274380][ C0] ------------[ cut here ]------------ [ 35.274420][ C0] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 35.278721][ C0] Modules linked in: [ 35.279754][ C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 35.283110][ C0] Tainted: [W]=WARN [ 35.284106][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 35.286747][ C0] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 35.288835][ C0] pc : __apply_to_page_range+0xdb4/0x13e4 [ 35.290375][ C0] lr : __apply_to_page_range+0xdb4/0x13e4 [ 35.291889][ C0] sp : ffff800080007900 [ 35.292982][ C0] x29: ffff800080007a20 x28: ffff0001ffbf0fff x27: ffff0001fec50fe8 [ 35.295107][ C0] x26: ffff0001ffbf1000 x25: dfff800000000000 x24: ffff0001ffbf0000 [ 35.297238][ C0] x23: ffff0001fea8ef80 x22: 0000000000000100 x21: ffff80008f346040 [ 35.299368][ C0] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386aa76 [ 35.301492][ C0] x17: ffff80010d0e8000 x16: ffff80008051bab8 x15: 0000000000000001 [ 35.303614][ C0] x14: 1ffff00012dfb959 x13: 0000000000000000 x12: 0000000000000000 [ 35.305729][ C0] x11: ffff700012dfb95a x10: 0000000000ff0100 x9 : 0000000000000000 [ 35.307893][ C0] x8 : ffff80008f346040 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 35.310014][ C0] x5 : 0000000000000001 x4 : ffff800080007b00 x3 : ffff8000802595f4 [ 35.312140][ C0] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 35.314260][ C0] Call trace: [ 35.315123][ C0] __apply_to_page_range+0xdb4/0x13e4 (P) [ 35.316647][ C0] apply_to_page_range+0x4c/0x64 [ 35.318003][ C0] __change_memory_common+0xac/0x3f8 [ 35.319398][ C0] set_memory_valid+0x68/0x7c [ 35.320628][ C0] kfence_guarded_free+0x278/0x5a8 [ 35.322000][ C0] __kfence_free+0x104/0x198 [ 35.323266][ C0] kfree+0x268/0x474 [ 35.324302][ C0] slab_free_after_rcu_debug+0x78/0x2f4 [ 35.325802][ C0] rcu_core+0x848/0x17a4 [ 35.326946][ C0] rcu_core_si+0x10/0x1c [ 35.328065][ C0] handle_softirqs+0x328/0xc88 [ 35.329357][ C0] __do_softirq+0x14/0x20 [ 35.330533][ C0] ____do_softirq+0x14/0x20 [ 35.331772][ C0] call_on_irq_stack+0x24/0x30 [ 35.333042][ C0] do_softirq_own_stack+0x20/0x2c [ 35.334373][ C0] __irq_exit_rcu+0x1b0/0x478 [ 35.335600][ C0] irq_exit_rcu+0x14/0x84 [ 35.336755][ C0] el1_interrupt+0x38/0x54 [ 35.337982][ C0] el1h_64_irq_handler+0x18/0x24 [ 35.339284][ C0] el1h_64_irq+0x6c/0x70 [ 35.340411][ C0] arch_local_irq_enable+0x8/0xc (P) [ 35.341795][ C0] do_idle+0x1d8/0x454 [ 35.342874][ C0] cpu_startup_entry+0x5c/0x74 [ 35.344140][ C0] rest_init+0x2d8/0x2f4 [ 35.345278][ C0] start_kernel+0x44c/0x4a8 [ 35.346486][ C0] __primary_switched+0x8c/0x94 [ 35.347853][ C0] irq event stamp: 148843 [ 35.349025][ C0] hardirqs last enabled at (148842): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 35.351778][ C0] hardirqs last disabled at (148843): [] el1_dbg+0x24/0x80 [ 35.354094][ C0] softirqs last enabled at (148794): [] handle_softirqs+0xaf8/0xc88 [ 35.356661][ C0] softirqs last disabled at (148807): [] __do_softirq+0x14/0x20 [ 35.359140][ C0] ---[ end trace 0000000000000000 ]--- [ 35.586280][ C0] ------------[ cut here ]------------ [ 35.586315][ C0] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 35.590706][ C0] Modules linked in: [ 35.591742][ C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 35.595093][ C0] Tainted: [W]=WARN [ 35.596083][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 35.598747][ C0] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 35.600830][ C0] pc : __apply_to_page_range+0xdb4/0x13e4 [ 35.602370][ C0] lr : __apply_to_page_range+0xdb4/0x13e4 [ 35.603860][ C0] sp : ffff800080007160 [ 35.604967][ C0] x29: ffff800080007280 x28: ffff0001ffbf2fff x27: ffff0001fec50fe8 [ 35.607081][ C0] x26: ffff0001ffbf3000 x25: dfff800000000000 x24: ffff0001ffbf2000 [ 35.609187][ C0] x23: ffff0001fea8ef90 x22: 0000000000000100 x21: ffff80008f346040 [ 35.611288][ C0] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386aa76 [ 35.613408][ C0] x17: 0000000000020010 x16: ffff80008051bab8 x15: 0000000000000001 [ 35.615583][ C0] x14: 1ffff00012dfb9ef x13: 0000000000000000 x12: 0000000000000000 [ 35.617715][ C0] x11: ffff700012dfb9f0 x10: 0000000000ff0100 x9 : 0000000000000000 [ 35.619912][ C0] x8 : ffff80008f346040 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 35.622047][ C0] x5 : 0000000000000001 x4 : ffff800080007360 x3 : ffff8000802595f4 [ 35.624177][ C0] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 35.626303][ C0] Call trace: [ 35.627177][ C0] __apply_to_page_range+0xdb4/0x13e4 (P) [ 35.628706][ C0] apply_to_page_range+0x4c/0x64 [ 35.630022][ C0] __change_memory_common+0xac/0x3f8 [ 35.631403][ C0] set_memory_valid+0x68/0x7c [ 35.632645][ C0] kfence_guarded_free+0x278/0x5a8 [ 35.633999][ C0] __kfence_free+0x104/0x198 [ 35.635226][ C0] kmem_cache_free+0x250/0x550 [ 35.636487][ C0] skb_free_head+0xbc/0x198 [ 35.637690][ C0] skb_release_data+0x66c/0x820 [ 35.638991][ C0] consume_skb+0xb0/0x130 [ 35.640142][ C0] arp_process+0xb78/0x12b8 [ 35.641340][ C0] NF_HOOK+0x2b8/0x34c [ 35.642432][ C0] arp_rcv+0x2a8/0x430 [ 35.643534][ C0] __netif_receive_skb_list_core+0x60c/0x67c [ 35.645122][ C0] netif_receive_skb_list_internal+0x74c/0x9e0 [ 35.646749][ C0] napi_complete_done+0x250/0x614 [ 35.648095][ C0] gve_napi_poll+0x1f4/0x3ac [ 35.649345][ C0] __napi_poll+0xb4/0x3fc [ 35.650498][ C0] net_rx_action+0x5d4/0xcc8 [ 35.651756][ C0] handle_softirqs+0x328/0xc88 [ 35.653052][ C0] __do_softirq+0x14/0x20 [ 35.654209][ C0] ____do_softirq+0x14/0x20 [ 35.655469][ C0] call_on_irq_stack+0x24/0x30 [ 35.656740][ C0] do_softirq_own_stack+0x20/0x2c [ 35.658104][ C0] __irq_exit_rcu+0x1b0/0x478 [ 35.659334][ C0] irq_exit_rcu+0x14/0x84 [ 35.660479][ C0] el1_interrupt+0x38/0x54 [ 35.661648][ C0] el1h_64_irq_handler+0x18/0x24 [ 35.662965][ C0] el1h_64_irq+0x6c/0x70 [ 35.664090][ C0] arch_local_irq_enable+0x8/0xc (P) [ 35.665487][ C0] do_idle+0x1d8/0x454 [ 35.666569][ C0] cpu_startup_entry+0x5c/0x74 [ 35.667826][ C0] rest_init+0x2d8/0x2f4 [ 35.668968][ C0] start_kernel+0x44c/0x4a8 [ 35.670157][ C0] __primary_switched+0x8c/0x94 [ 35.671439][ C0] irq event stamp: 149031 [ 35.672583][ C0] hardirqs last enabled at (149030): [] el1_interrupt+0x44/0x54 [ 35.675076][ C0] hardirqs last disabled at (149031): [] el1_dbg+0x24/0x80 [ 35.677380][ C0] softirqs last enabled at (148992): [] handle_softirqs+0xaf8/0xc88 [ 35.679913][ C0] softirqs last disabled at (149005): [] __do_softirq+0x14/0x20 [ 35.682388][ C0] ---[ end trace 0000000000000000 ]--- [ 39.624427][ C1] ------------[ cut here ]------------ [ 39.624460][ C1] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 39.628839][ C1] Modules linked in: [ 39.629886][ C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 39.633213][ C1] Tainted: [W]=WARN [ 39.634179][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 39.636758][ C1] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 39.638801][ C1] pc : __apply_to_page_range+0xdb4/0x13e4 [ 39.640301][ C1] lr : __apply_to_page_range+0xdb4/0x13e4 [ 39.641755][ C1] sp : ffff800080016f60 [ 39.642826][ C1] x29: ffff800080017080 x28: ffff0001ffbf6fff x27: ffff0001fec50fe8 [ 39.644948][ C1] x26: ffff0001ffbf7000 x25: dfff800000000000 x24: ffff0001ffbf6000 [ 39.647088][ C1] x23: ffff0001fea8efb0 x22: 0000000000000500 x21: ffff0000c1a0db80 [ 39.649174][ C1] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386f276 [ 39.651247][ C1] x17: ffff80010d10c000 x16: ffff80008051bab8 x15: 0000000000000001 [ 39.653325][ C1] x14: 1ffff00012dfba24 x13: 0000000000000000 x12: 0000000000000000 [ 39.655395][ C1] x11: ffff700012dfba25 x10: 0000000000ff0100 x9 : 0000000000000000 [ 39.657512][ C1] x8 : ffff0000c1a0db80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 39.659659][ C1] x5 : 0000000000000001 x4 : ffff800080017160 x3 : ffff8000802595f4 [ 39.661873][ C1] x2 : 0000000000001000 x1 : 0000000000000500 x0 : 0000000000000000 [ 39.664065][ C1] Call trace: [ 39.664904][ C1] __apply_to_page_range+0xdb4/0x13e4 (P) [ 39.666389][ C1] apply_to_page_range+0x4c/0x64 [ 39.667792][ C1] __change_memory_common+0xac/0x3f8 [ 39.669258][ C1] set_memory_valid+0x68/0x7c [ 39.670605][ C1] kfence_guarded_free+0x278/0x5a8 [ 39.671968][ C1] __kfence_free+0x104/0x198 [ 39.673279][ C1] kmem_cache_free_bulk+0x490/0x51c [ 39.674634][ C1] kfree_skb_list_reason+0x3ac/0x418 [ 39.676044][ C1] __dev_queue_xmit+0x1ac8/0x31f0 [ 39.677366][ C1] lapbeth_data_transmit+0x1fc/0x2a8 [ 39.678722][ C1] lapb_data_transmit+0x8c/0xb0 [ 39.679989][ C1] lapb_transmit_buffer+0x160/0x208 [ 39.681312][ C1] lapb_send_control+0x21c/0x320 [ 39.682593][ C1] lapb_t1timer_expiry+0x490/0x864 [ 39.683958][ C1] call_timer_fn+0x1b4/0x818 [ 39.685151][ C1] __run_timer_base+0x51c/0x76c [ 39.686399][ C1] timer_expire_remote+0x78/0xa0 [ 39.687780][ C1] tmigr_handle_remote+0x8d4/0x1340 [ 39.689244][ C1] run_timer_softirq+0x190/0x194 [ 39.690587][ C1] handle_softirqs+0x328/0xc88 [ 39.691825][ C1] __do_softirq+0x14/0x20 [ 39.692994][ C1] ____do_softirq+0x14/0x20 [ 39.694227][ C1] call_on_irq_stack+0x24/0x30 [ 39.695479][ C1] do_softirq_own_stack+0x20/0x2c [ 39.696885][ C1] __irq_exit_rcu+0x1b0/0x478 [ 39.698195][ C1] irq_exit_rcu+0x14/0x84 [ 39.699390][ C1] el1_interrupt+0x38/0x54 [ 39.700536][ C1] el1h_64_irq_handler+0x18/0x24 [ 39.701885][ C1] el1h_64_irq+0x6c/0x70 [ 39.703012][ C1] arch_local_irq_enable+0x8/0xc (P) [ 39.704447][ C1] do_idle+0x1d8/0x454 [ 39.705600][ C1] cpu_startup_entry+0x5c/0x74 [ 39.706949][ C1] secondary_start_kernel+0x1b8/0x1e0 [ 39.708380][ C1] __secondary_switched+0xc0/0xc4 [ 39.709767][ C1] irq event stamp: 124681 [ 39.710986][ C1] hardirqs last enabled at (124680): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 39.713770][ C1] hardirqs last disabled at (124681): [] el1_dbg+0x24/0x80 [ 39.716097][ C1] softirqs last enabled at (124648): [] handle_softirqs+0xaf8/0xc88 [ 39.718653][ C1] softirqs last disabled at (124655): [] __do_softirq+0x14/0x20 [ 39.721096][ C1] ---[ end trace 0000000000000000 ]--- [ 40.024552][ C0] ------------[ cut here ]------------ [ 40.024589][ C0] WARNING: CPU: 0 PID: 4378 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 40.028983][ C0] Modules linked in: [ 40.030002][ C0] CPU: 0 UID: 0 PID: 4378 Comm: kworker/u8:10 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 40.033541][ C0] Tainted: [W]=WARN [ 40.034570][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 40.037222][ C0] Workqueue: events_unbound toggle_allocation_gate [ 40.038964][ C0] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 40.041034][ C0] pc : __apply_to_page_range+0xdb4/0x13e4 [ 40.042550][ C0] lr : __apply_to_page_range+0xdb4/0x13e4 [ 40.044081][ C0] sp : ffff800080007640 [ 40.045167][ C0] x29: ffff800080007760 x28: ffff0001ffbf8fff x27: ffff0001fec50fe8 [ 40.047301][ C0] x26: ffff0001ffbf9000 x25: dfff800000000000 x24: ffff0001ffbf8000 [ 40.049461][ C0] x23: ffff0001fea8efc0 x22: 0000000000000100 x21: ffff0000d4ea5b80 [ 40.051602][ C0] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386aa76 [ 40.053740][ C0] x17: ffff80010d0e8000 x16: ffff80008051bab8 x15: 0000000000000001 [ 40.055887][ C0] x14: 1ffff00012dfba24 x13: 0000000000000000 x12: 0000000000000000 [ 40.058112][ C0] x11: ffff700012dfba25 x10: 0000000000ff0100 x9 : 0000000000000000 [ 40.060362][ C0] x8 : ffff0000d4ea5b80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 40.062651][ C0] x5 : 0000000000000001 x4 : ffff800080007840 x3 : ffff8000802595f4 [ 40.064903][ C0] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 40.067131][ C0] Call trace: [ 40.068021][ C0] __apply_to_page_range+0xdb4/0x13e4 (P) [ 40.069573][ C0] apply_to_page_range+0x4c/0x64 [ 40.070916][ C0] __change_memory_common+0xac/0x3f8 [ 40.072355][ C0] set_memory_valid+0x68/0x7c [ 40.073651][ C0] kfence_guarded_free+0x278/0x5a8 [ 40.075097][ C0] __kfence_free+0x104/0x198 [ 40.076325][ C0] kmem_cache_free+0x250/0x550 [ 40.077577][ C0] kfree_skbmem+0x14c/0x1dc [ 40.078808][ C0] sk_skb_reason_drop+0x150/0x1b0 [ 40.080137][ C0] dev_kfree_skb_any_reason+0x94/0xd0 [ 40.081616][ C0] gve_clean_tx_done+0x240/0xaa8 [ 40.083005][ C0] gve_tx_poll+0x11c/0x1d0 [ 40.084241][ C0] gve_napi_poll+0xc0/0x3ac [ 40.085381][ C0] __napi_poll+0xb4/0x3fc [ 40.086350][ C0] net_rx_action+0x5d4/0xcc8 [ 40.087382][ C0] handle_softirqs+0x328/0xc88 [ 40.088407][ C0] __do_softirq+0x14/0x20 [ 40.089299][ C0] ____do_softirq+0x14/0x20 [ 40.090229][ C0] call_on_irq_stack+0x24/0x30 [ 40.091236][ C0] do_softirq_own_stack+0x20/0x2c [ 40.092254][ C0] __irq_exit_rcu+0x1b0/0x478 [ 40.093318][ C0] irq_exit_rcu+0x14/0x84 [ 40.094200][ C0] el1_interrupt+0x38/0x54 [ 40.095173][ C0] el1h_64_irq_handler+0x18/0x24 [ 40.096294][ C0] el1h_64_irq+0x6c/0x70 [ 40.097161][ C0] gic_ipi_send_mask+0x318/0x384 (P) [ 40.098332][ C0] __ipi_send_mask+0x84/0x2c0 [ 40.099601][ C0] smp_cross_call+0x130/0x2f8 [ 40.100926][ C0] arch_send_call_function_single_ipi+0x3c/0x4c [ 40.102628][ C0] smp_call_function_many_cond+0xbb4/0x1308 [ 40.104290][ C0] kick_all_cpus_sync+0x40/0xa0 [ 40.105628][ C0] arch_jump_label_transform_apply+0x14/0x20 [ 40.107290][ C0] __jump_label_update+0x30c/0x334 [ 40.108657][ C0] jump_label_update+0x3f0/0x484 [ 40.109963][ C0] static_key_disable_cpuslocked+0xd0/0x1e0 [ 40.111543][ C0] static_key_disable+0x24/0x38 [ 40.112832][ C0] toggle_allocation_gate+0x1a4/0x240 [ 40.114314][ C0] process_one_work+0x7e8/0x156c [ 40.115639][ C0] worker_thread+0x958/0xed8 [ 40.116885][ C0] kthread+0x5fc/0x75c [ 40.117955][ C0] ret_from_fork+0x10/0x20 [ 40.119159][ C0] irq event stamp: 123343 [ 40.120290][ C0] hardirqs last enabled at (123342): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 40.123103][ C0] hardirqs last disabled at (123343): [] el1_dbg+0x24/0x80 [ 40.125412][ C0] softirqs last enabled at (123244): [] handle_softirqs+0xaf8/0xc88 [ 40.128021][ C0] softirqs last disabled at (123331): [] __do_softirq+0x14/0x20 [ 40.130601][ C0] ---[ end trace 0000000000000000 ]--- [ 40.264453][ C0] ------------[ cut here ]------------ [ 40.264487][ C0] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 40.268796][ C0] Modules linked in: [ 40.269838][ C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 40.273084][ C0] Tainted: [W]=WARN [ 40.274037][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 40.276577][ C0] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 40.278542][ C0] pc : __apply_to_page_range+0xdb4/0x13e4 [ 40.280009][ C0] lr : __apply_to_page_range+0xdb4/0x13e4 [ 40.281482][ C0] sp : ffff800080006f60 [ 40.282560][ C0] x29: ffff800080007080 x28: ffff0001ffbfafff x27: ffff0001fec50fe8 [ 40.284651][ C0] x26: ffff0001ffbfb000 x25: dfff800000000000 x24: ffff0001ffbfa000 [ 40.286768][ C0] x23: ffff0001fea8efd0 x22: 0000000000000500 x21: ffff80008f346040 [ 40.288806][ C0] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386aa76 [ 40.290858][ C0] x17: ffff80010d0e8000 x16: ffff80008051bab8 x15: 0000000000000001 [ 40.292878][ C0] x14: 1ffff00012dfba24 x13: 0000000000000000 x12: 0000000000000000 [ 40.295020][ C0] x11: ffff700012dfba25 x10: 0000000000ff0100 x9 : 0000000000000000 [ 40.297210][ C0] x8 : ffff80008f346040 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 40.299429][ C0] x5 : 0000000000000001 x4 : ffff800080007160 x3 : ffff8000802595f4 [ 40.301576][ C0] x2 : 0000000000001000 x1 : 0000000000000500 x0 : 0000000000000000 [ 40.303850][ C0] Call trace: [ 40.304727][ C0] __apply_to_page_range+0xdb4/0x13e4 (P) [ 40.306393][ C0] apply_to_page_range+0x4c/0x64 [ 40.307726][ C0] __change_memory_common+0xac/0x3f8 [ 40.309222][ C0] set_memory_valid+0x68/0x7c [ 40.310529][ C0] kfence_guarded_free+0x278/0x5a8 [ 40.312006][ C0] __kfence_free+0x104/0x198 [ 40.313213][ C0] kmem_cache_free_bulk+0x490/0x51c [ 40.314621][ C0] kfree_skb_list_reason+0x3ac/0x418 [ 40.316149][ C0] __dev_queue_xmit+0x1ac8/0x31f0 [ 40.317622][ C0] lapbeth_data_transmit+0x1fc/0x2a8 [ 40.319127][ C0] lapb_data_transmit+0x8c/0xb0 [ 40.320449][ C0] lapb_transmit_buffer+0x160/0x208 [ 40.321907][ C0] lapb_send_control+0x21c/0x320 [ 40.323292][ C0] lapb_t1timer_expiry+0x490/0x864 [ 40.324712][ C0] call_timer_fn+0x1b4/0x818 [ 40.325972][ C0] __run_timer_base+0x51c/0x76c [ 40.327384][ C0] timer_expire_remote+0x78/0xa0 [ 40.328815][ C0] tmigr_handle_remote+0x8d4/0x1340 [ 40.330316][ C0] run_timer_softirq+0x190/0x194 [ 40.331697][ C0] handle_softirqs+0x328/0xc88 [ 40.333046][ C0] __do_softirq+0x14/0x20 [ 40.334287][ C0] ____do_softirq+0x14/0x20 [ 40.335613][ C0] call_on_irq_stack+0x24/0x30 [ 40.336945][ C0] do_softirq_own_stack+0x20/0x2c [ 40.338332][ C0] __irq_exit_rcu+0x1b0/0x478 [ 40.339617][ C0] irq_exit_rcu+0x14/0x84 [ 40.340890][ C0] el1_interrupt+0x38/0x54 [ 40.342151][ C0] el1h_64_irq_handler+0x18/0x24 [ 40.343488][ C0] el1h_64_irq+0x6c/0x70 [ 40.344700][ C0] arch_local_irq_enable+0x8/0xc (P) [ 40.346193][ C0] do_idle+0x1d8/0x454 [ 40.347317][ C0] cpu_startup_entry+0x5c/0x74 [ 40.348656][ C0] rest_init+0x2d8/0x2f4 [ 40.349840][ C0] start_kernel+0x44c/0x4a8 [ 40.351183][ C0] __primary_switched+0x8c/0x94 [ 40.352528][ C0] irq event stamp: 153653 [ 40.353759][ C0] hardirqs last enabled at (153652): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 40.356626][ C0] hardirqs last disabled at (153653): [] el1_dbg+0x24/0x80 [ 40.359163][ C0] softirqs last enabled at (153614): [] handle_softirqs+0xaf8/0xc88 [ 40.361814][ C0] softirqs last disabled at (153621): [] __do_softirq+0x14/0x20 [ 40.364431][ C0] ---[ end trace 0000000000000000 ]--- [ 40.692815][ T6485] ------------[ cut here ]------------ [ 40.692890][ T6485] WARNING: CPU: 0 PID: 6485 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 40.697541][ T6485] Modules linked in: [ 40.698573][ T6485] CPU: 0 UID: 101 PID: 6485 Comm: sshd-session Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 40.702235][ T6485] Tainted: [W]=WARN [ 40.703255][ T6485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 40.705972][ T6485] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 40.708047][ T6485] pc : __apply_to_page_range+0xdb4/0x13e4 [ 40.709564][ T6485] lr : __apply_to_page_range+0xdb4/0x13e4 [ 40.711088][ T6485] sp : ffff8000a1576f40 [ 40.712178][ T6485] x29: ffff8000a1577060 x28: ffff0001ffbfcfff x27: ffff0001fec50fe8 [ 40.714309][ T6485] x26: ffff0001ffbfd000 x25: dfff800000000000 x24: ffff0001ffbfc000 [ 40.716408][ T6485] x23: ffff0001fea8efe0 x22: 0000000000000200 x21: ffff0000c9465b80 [ 40.718574][ T6485] x20: 100000023ea8e403 x19: 0000000000000001 x18: 0000000000000000 [ 40.720696][ T6485] x17: 0000000000000000 x16: ffff80008051bab8 x15: 0000000000000001 [ 40.722862][ T6485] x14: 1ffff00012dfb9be x13: 0000000000000000 x12: 0000000000000000 [ 40.724988][ T6485] x11: ffff700012dfb9bf x10: 0000000000ff0100 x9 : 0000000000000000 [ 40.727182][ T6485] x8 : ffff0000c9465b80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 40.729398][ T6485] x5 : 0000000000000001 x4 : ffff8000a1577140 x3 : ffff8000802595f4 [ 40.731590][ T6485] x2 : 0000000000001000 x1 : 0000000000000200 x0 : 0000000000000000 [ 40.733778][ T6485] Call trace: [ 40.734697][ T6485] __apply_to_page_range+0xdb4/0x13e4 (P) [ 40.736218][ T6485] apply_to_page_range+0x4c/0x64 [ 40.737596][ T6485] __change_memory_common+0xac/0x3f8 [ 40.739129][ T6485] set_memory_valid+0x68/0x7c [ 40.740443][ T6485] kfence_guarded_free+0x278/0x5a8 [ 40.741855][ T6485] __kfence_free+0x104/0x198 [ 40.743116][ T6485] kmem_cache_free+0x250/0x550 [ 40.744425][ T6485] skb_free_head+0xbc/0x198 [ 40.745654][ T6485] skb_release_data+0x66c/0x820 [ 40.747030][ T6485] skb_attempt_defer_free+0x3a0/0x530 [ 40.748528][ T6485] tcp_recvmsg_locked+0x1c50/0x29fc [ 40.749860][ T6485] tcp_recvmsg+0x18c/0x694 [ 40.751082][ T6485] inet_recvmsg+0x110/0x1b8 [ 40.752314][ T6485] sock_read_iter+0x258/0x33c [ 40.753661][ T6485] vfs_read+0x5fc/0x898 [ 40.754749][ T6485] ksys_read+0x120/0x210 Warning: Permanently added '10.128.0.176' (ED25519) to the list of known hosts. [ 40.755957][ T6485] __arm64_sys_read+0x7c/0x90 [ 40.757315][ T6485] invoke_syscall+0x98/0x2b8 [ 40.758548][ T6485] el0_svc_common+0x1e0/0x23c [ 40.759787][ T6485] do_el0_svc+0x48/0x58 [ 40.760872][ T6485] el0_svc+0x58/0x17c [ 40.762034][ T6485] el0t_64_sync_handler+0x78/0x108 [ 40.763412][ T6485] el0t_64_sync+0x198/0x19c [ 40.764585][ T6485] irq event stamp: 1221 [ 40.765754][ T6485] hardirqs last enabled at (1220): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 40.768572][ T6485] hardirqs last disabled at (1221): [] el1_dbg+0x24/0x80 [ 40.770867][ T6485] softirqs last enabled at (1212): [] lock_sock_nested+0xc8/0x118 [ 40.773483][ T6485] softirqs last disabled at (1216): [] local_bh_disable+0x10/0x34 [ 40.776060][ T6485] ---[ end trace 0000000000000000 ]--- [ 40.908522][ T6485] ------------[ cut here ]------------ [ 40.908557][ T6485] WARNING: CPU: 0 PID: 6485 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 40.913121][ T6485] Modules linked in: [ 40.914181][ T6485] CPU: 0 UID: 101 PID: 6485 Comm: sshd-session Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 40.917851][ T6485] Tainted: [W]=WARN [ 40.918863][ T6485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 40.921539][ T6485] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 40.923657][ T6485] pc : __apply_to_page_range+0xdb4/0x13e4 [ 40.925245][ T6485] lr : __apply_to_page_range+0xdb4/0x13e4 [ 40.926772][ T6485] sp : ffff8000a1576f40 [ 40.927870][ T6485] x29: ffff8000a1577060 x28: ffff0001ffbfefff x27: ffff0001fec50fe8 [ 40.930061][ T6485] x26: ffff0001ffbff000 x25: dfff800000000000 x24: ffff0001ffbfe000 [ 40.932228][ T6485] x23: ffff0001fea8eff0 x22: 0000000000000200 x21: ffff0000c9465b80 [ 40.934402][ T6485] x20: 100000023ea8e403 x19: 0000000000000001 x18: 0000000000000000 [ 40.936618][ T6485] x17: 0000000000000000 x16: ffff80008051bab8 x15: 0000000000000001 [ 40.938742][ T6485] x14: 1ffff00012dfb9ef x13: 0000000000000000 x12: 0000000000000000 [ 40.940999][ T6485] x11: ffff700012dfb9f0 x10: 0000000000ff0100 x9 : 0000000000000000 [ 40.943315][ T6485] x8 : ffff0000c9465b80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 40.945620][ T6485] x5 : 0000000000000001 x4 : ffff8000a1577140 x3 : ffff8000802595f4 [ 40.947896][ T6485] x2 : 0000000000001000 x1 : 0000000000000200 x0 : 0000000000000000 [ 40.950180][ T6485] Call trace: [ 40.951087][ T6485] __apply_to_page_range+0xdb4/0x13e4 (P) [ 40.952731][ T6485] apply_to_page_range+0x4c/0x64 [ 40.954167][ T6485] __change_memory_common+0xac/0x3f8 [ 40.955646][ T6485] set_memory_valid+0x68/0x7c [ 40.956923][ T6485] kfence_guarded_free+0x278/0x5a8 [ 40.958288][ T6485] __kfence_free+0x104/0x198 [ 40.959514][ T6485] kmem_cache_free+0x250/0x550 [ 40.960863][ T6485] skb_free_head+0xbc/0x198 [ 40.962078][ T6485] skb_release_data+0x66c/0x820 [ 40.963482][ T6485] skb_attempt_defer_free+0x3a0/0x530 [ 40.964962][ T6485] tcp_recvmsg_locked+0x1c50/0x29fc [ 40.966459][ T6485] tcp_recvmsg+0x18c/0x694 [ 40.967694][ T6485] inet_recvmsg+0x110/0x1b8 [ 40.968951][ T6485] sock_read_iter+0x258/0x33c [ 40.970244][ T6485] vfs_read+0x5fc/0x898 [ 40.971450][ T6485] ksys_read+0x120/0x210 [ 40.972596][ T6485] __arm64_sys_read+0x7c/0x90 [ 40.973923][ T6485] invoke_syscall+0x98/0x2b8 [ 40.975179][ T6485] el0_svc_common+0x1e0/0x23c [ 40.976501][ T6485] do_el0_svc+0x48/0x58 [ 40.977616][ T6485] el0_svc+0x58/0x17c [ 40.978723][ T6485] el0t_64_sync_handler+0x78/0x108 [ 40.980135][ T6485] el0t_64_sync+0x198/0x19c [ 40.981372][ T6485] irq event stamp: 1867 [ 40.982505][ T6485] hardirqs last enabled at (1866): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 40.985493][ T6485] hardirqs last disabled at (1867): [] el1_dbg+0x24/0x80 [ 40.987921][ T6485] softirqs last enabled at (1858): [] lock_sock_nested+0xc8/0x118 [ 40.990532][ T6485] softirqs last disabled at (1862): [] local_bh_disable+0x10/0x34 [ 40.993173][ T6485] ---[ end trace 0000000000000000 ]--- 1970/01/01 00:00:40 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:00:40 ignoring optional flag "type"="gce" 1970/01/01 00:00:41 parsed 1 programs [ 41.386662][ T6492] cgroup: Unknown subsys name 'net' [ 41.624587][ C0] ------------[ cut here ]------------ [ 41.624627][ C0] WARNING: CPU: 0 PID: 15 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 41.628911][ C0] Modules linked in: [ 41.629951][ C0] CPU: 0 UID: 0 PID: 15 Comm: ksoftirqd/0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 41.633322][ C0] Tainted: [W]=WARN [ 41.634306][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 41.636944][ C0] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 41.638978][ C0] pc : __apply_to_page_range+0xdb4/0x13e4 [ 41.640530][ C0] lr : __apply_to_page_range+0xdb4/0x13e4 [ 41.642036][ C0] sp : ffff800097687620 [ 41.643115][ C0] x29: ffff800097687740 x28: ffff0001ffa20fff x27: ffff0001fec50fe8 [ 41.645238][ C0] x26: ffff0001ffa21000 x25: dfff800000000000 x24: ffff0001ffa20000 [ 41.647387][ C0] x23: ffff0001fea8e100 x22: 0000000000000100 x21: ffff0000c19f3d00 [ 41.649523][ C0] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386aa76 [ 41.651667][ C0] x17: ffff80008f31e000 x16: ffff80008051bab8 x15: 0000000000000001 [ 41.653765][ C0] x14: 1ffff00012dfb968 x13: 0000000000000000 x12: 0000000000000000 [ 41.655934][ C0] x11: ffff700012dfb969 x10: 0000000000ff0100 x9 : 0000000000000000 [ 41.658179][ C0] x8 : ffff0000c19f3d00 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 41.660464][ C0] x5 : 0000000000000001 x4 : ffff800097687820 x3 : ffff8000802595f4 [ 41.662679][ C0] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 41.664891][ C0] Call trace: [ 41.665759][ C0] __apply_to_page_range+0xdb4/0x13e4 (P) [ 41.667342][ C0] apply_to_page_range+0x4c/0x64 [ 41.668732][ C0] __change_memory_common+0xac/0x3f8 [ 41.670173][ C0] set_memory_valid+0x68/0x7c [ 41.671394][ C0] kfence_guarded_free+0x278/0x5a8 [ 41.672744][ C0] __kfence_free+0x104/0x198 [ 41.674043][ C0] kfree+0x268/0x474 [ 41.675094][ C0] kfree_const+0x4c/0x5c [ 41.676297][ C0] kernfs_free_rcu+0x44/0x10c [ 41.677576][ C0] rcu_core+0x848/0x17a4 [ 41.678686][ C0] rcu_core_si+0x10/0x1c [ 41.679807][ C0] handle_softirqs+0x328/0xc88 [ 41.681086][ C0] run_ksoftirqd+0x70/0xc0 [ 41.682225][ C0] smpboot_thread_fn+0x4d8/0x9cc [ 41.683555][ C0] kthread+0x5fc/0x75c [ 41.684605][ C0] ret_from_fork+0x10/0x20 [ 41.685748][ C0] irq event stamp: 728985 [ 41.686913][ C0] hardirqs last enabled at (728984): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 41.689820][ C0] hardirqs last disabled at (728985): [] el1_dbg+0x24/0x80 [ 41.692179][ C0] softirqs last enabled at (728900): [] handle_softirqs+0xaf8/0xc88 [ 41.694868][ C0] softirqs last disabled at (728905): [] run_ksoftirqd+0x70/0xc0 [ 41.697343][ C0] ---[ end trace 0000000000000000 ]--- [ 41.701821][ T6492] cgroup: Unknown subsys name 'cpuset' [ 41.705904][ T6492] cgroup: Unknown subsys name 'rlimit' [ 41.824442][ C1] ------------[ cut here ]------------ [ 41.824476][ C1] WARNING: CPU: 1 PID: 6492 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 41.828795][ C1] Modules linked in: [ 41.829789][ C1] CPU: 1 UID: 0 PID: 6492 Comm: syz-executor Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 41.833220][ C1] Tainted: [W]=WARN [ 41.834195][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 41.836828][ C1] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 41.838866][ C1] pc : __apply_to_page_range+0xdb4/0x13e4 [ 41.840375][ C1] lr : __apply_to_page_range+0xdb4/0x13e4 [ 41.841842][ C1] sp : ffff8000800178e0 [ 41.842942][ C1] x29: ffff800080017a00 x28: ffff0001ffa2afff x27: ffff0001fec50fe8 [ 41.845050][ C1] x26: ffff0001ffa2b000 x25: dfff800000000000 x24: ffff0001ffa2a000 [ 41.847093][ C1] x23: ffff0001fea8e150 x22: 0000000000000100 x21: ffff0000cbe58000 [ 41.849164][ C1] x20: 100000023ea8e403 x19: 0000000000000001 x18: 00000000ffffffff [ 41.851328][ C1] x17: ffff80010d10c000 x16: ffff80008051bab8 x15: 0000000000000001 [ 41.853467][ C1] x14: 1ffff00012dfb968 x13: 0000000000000000 x12: 0000000000000000 [ 41.855686][ C1] x11: ffff700012dfb969 x10: 0000000000ff0100 x9 : 0000000000000000 [ 41.857912][ C1] x8 : ffff0000cbe58000 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 41.860165][ C1] x5 : 0000000000000001 x4 : ffff800080017ae0 x3 : ffff8000802595f4 [ 41.862319][ C1] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 41.864453][ C1] Call trace: [ 41.865349][ C1] __apply_to_page_range+0xdb4/0x13e4 (P) [ 41.866936][ C1] apply_to_page_range+0x4c/0x64 [ 41.868236][ C1] __change_memory_common+0xac/0x3f8 [ 41.869739][ C1] set_memory_valid+0x68/0x7c [ 41.871072][ C1] kfence_guarded_free+0x278/0x5a8 [ 41.872445][ C1] __kfence_free+0x104/0x198 [ 41.873734][ C1] kfree+0x268/0x474 [ 41.874787][ C1] kfree_const+0x4c/0x5c [ 41.875984][ C1] kernfs_free_rcu+0x44/0x10c [ 41.877314][ C1] rcu_core+0x848/0x17a4 [ 41.878512][ C1] rcu_core_si+0x10/0x1c [ 41.879641][ C1] handle_softirqs+0x328/0xc88 [ 41.880931][ C1] __do_softirq+0x14/0x20 [ 41.882098][ C1] ____do_softirq+0x14/0x20 [ 41.883283][ C1] call_on_irq_stack+0x24/0x30 [ 41.884544][ C1] do_softirq_own_stack+0x20/0x2c [ 41.885924][ C1] __irq_exit_rcu+0x1b0/0x478 [ 41.887168][ C1] irq_exit_rcu+0x14/0x84 [ 41.888296][ C1] el1_interrupt+0x38/0x54 [ 41.889478][ C1] el1h_64_irq_handler+0x18/0x24 [ 41.890809][ C1] el1h_64_irq+0x6c/0x70 [ 41.891990][ C1] _raw_spin_unlock_irqrestore+0x44/0x98 (P) [ 41.893679][ C1] free_pcppages_bulk+0x5b0/0x5e8 [ 41.895030][ C1] free_frozen_page_commit+0x46c/0xe18 [ 41.896488][ C1] __free_frozen_pages+0x6c8/0xd14 [ 41.897911][ C1] free_frozen_pages+0x14/0x20 [ 41.899214][ C1] __free_slab+0x110/0x1e8 [ 41.900356][ C1] free_slab+0x24/0x120 [ 41.901546][ C1] __put_partials+0x19c/0x244 [ 41.902820][ C1] put_cpu_partial+0x164/0x1c0 [ 41.904145][ C1] __slab_free+0x1b0/0x280 [ 41.905281][ C1] ___cache_free+0x150/0x170 [ 41.906507][ C1] qlink_free+0x48/0x94 [ 41.907687][ C1] qlist_free_all+0x44/0xb8 [ 41.908978][ C1] kasan_quarantine_reduce+0x118/0x124 [ 41.910466][ C1] __kasan_slab_alloc+0x2c/0x88 [ 41.911770][ C1] __kmalloc_cache_noprof+0x238/0x3fc [ 41.913206][ C1] ref_tracker_alloc+0x12c/0x3dc [ 41.914573][ C1] netdev_queue_update_kobjects+0x1a4/0x5e0 [ 41.916199][ C1] netdev_register_kobject+0x200/0x2bc [ 41.917684][ C1] register_netdevice+0xb58/0x1258 [ 41.919086][ C1] lowpan_register_netdevice+0x27c/0x444 [ 41.920585][ C1] lowpan_newlink+0x340/0x5a4 [ 41.921868][ C1] rtnl_newlink_create+0x28c/0x9ac [ 41.923281][ C1] rtnl_newlink+0x1194/0x15dc [ 41.924554][ C1] rtnetlink_rcv_msg+0x664/0x97c [ 41.925942][ C1] netlink_rcv_skb+0x230/0x414 [ 41.927287][ C1] rtnetlink_rcv+0x28/0x38 [ 41.928438][ C1] netlink_unicast+0x60c/0x824 [ 41.929697][ C1] netlink_sendmsg+0x648/0x930 [ 41.931054][ C1] __sys_sendto+0x36c/0x4f4 [ 41.932309][ C1] __arm64_sys_sendto+0xd8/0xf8 [ 41.933624][ C1] invoke_syscall+0x98/0x2b8 [ 41.934896][ C1] el0_svc_common+0x130/0x23c [ 41.936274][ C1] do_el0_svc+0x48/0x58 [ 41.937456][ C1] el0_svc+0x58/0x17c [ 41.938509][ C1] el0t_64_sync_handler+0x78/0x108 1970/01/01 00:00:41 executed programs: 0 [ 41.939873][ C1] el0t_64_sync+0x198/0x19c [ 41.941079][ C1] irq event stamp: 10969 [ 41.942261][ C1] hardirqs last enabled at (10968): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 41.945091][ C1] hardirqs last disabled at (10969): [] el1_dbg+0x24/0x80 [ 41.947348][ C1] softirqs last enabled at (10418): [] igmpv3_del_delrec+0x530/0x62c [ 41.949994][ C1] softirqs last disabled at (10949): [] __do_softirq+0x14/0x20 [ 41.952441][ C1] ---[ end trace 0000000000000000 ]--- [ 42.036860][ T6503] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 42.039462][ T6503] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 42.042773][ T6503] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 42.045220][ T6503] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 42.045831][ T6503] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 42.145444][ T6500] chnl_net:caif_netlink_parms(): no params data found [ 42.198332][ T6500] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.198483][ T6500] bridge0: port 1(bridge_slave_0) entered disabled state [ 42.198629][ T6500] bridge_slave_0: entered allmulticast mode [ 42.199527][ T6500] bridge_slave_0: entered promiscuous mode [ 42.201537][ T6500] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.201610][ T6500] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.201702][ T6500] bridge_slave_1: entered allmulticast mode [ 42.202489][ T6500] bridge_slave_1: entered promiscuous mode [ 42.220304][ T6500] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 42.221834][ T6500] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 42.237537][ T6500] team0: Port device team_slave_0 added [ 42.239216][ T6500] team0: Port device team_slave_1 added [ 42.252032][ T6500] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 42.252078][ T6500] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 42.252107][ T6500] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 42.253429][ T6500] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 42.253456][ T6500] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 42.253484][ T6500] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 42.283414][ T6500] hsr_slave_0: entered promiscuous mode [ 42.284016][ T6500] hsr_slave_1: entered promiscuous mode [ 42.365156][ T6500] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 42.369864][ T6500] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 42.373520][ T6500] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 42.377193][ T6500] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 42.393163][ T6500] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.393269][ T6500] bridge0: port 2(bridge_slave_1) entered forwarding state [ 42.393564][ T6500] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.393627][ T6500] bridge0: port 1(bridge_slave_0) entered forwarding state [ 42.420863][ T6500] 8021q: adding VLAN 0 to HW filter on device bond0 [ 42.427861][ T45] bridge0: port 1(bridge_slave_0) entered disabled state [ 42.430135][ T45] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.439793][ T6500] 8021q: adding VLAN 0 to HW filter on device team0 [ 42.447264][ T197] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.447342][ T197] bridge0: port 1(bridge_slave_0) entered forwarding state [ 42.452872][ T197] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.452962][ T197] bridge0: port 2(bridge_slave_1) entered forwarding state [ 42.504840][ T9] ------------[ cut here ]------------ [ 42.504914][ T9] WARNING: CPU: 0 PID: 9 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 42.509218][ T9] Modules linked in: [ 42.510270][ T9] CPU: 0 UID: 0 PID: 9 Comm: kworker/0:0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 42.513687][ T9] Tainted: [W]=WARN [ 42.514686][ T9] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 42.517368][ T9] Workqueue: mld mld_ifc_work [ 42.518618][ T9] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 42.520723][ T9] pc : __apply_to_page_range+0xdb4/0x13e4 [ 42.522257][ T9] lr : __apply_to_page_range+0xdb4/0x13e4 [ 42.523776][ T9] sp : ffff800097626b00 [ 42.524915][ T9] x29: ffff800097626c20 x28: ffff0001ffa3afff x27: ffff0001fec50fe8 [ 42.527083][ T9] x26: ffff0001ffa3b000 x25: dfff800000000000 x24: ffff0001ffa3a000 [ 42.529200][ T9] x23: ffff0001fea8e1d0 x22: 0000000000000400 x21: ffff0000c19e8000 [ 42.531303][ T9] x20: 100000023ea8e403 x19: 0000000000000001 x18: 00000000ffffffff [ 42.533463][ T9] x17: ffff800092f37000 x16: ffff80008051bab8 x15: 0000000000000001 [ 42.535605][ T9] x14: 1ffff00012dfb966 x13: 0000000000000000 x12: 0000000000000000 [ 42.537805][ T9] x11: ffff700012dfb967 x10: 0000000000ff0100 x9 : 0000000000000000 [ 42.540029][ T9] x8 : ffff0000c19e8000 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 42.542242][ T9] x5 : 0000000000000001 x4 : ffff800097626d00 x3 : ffff8000802595f4 [ 42.544472][ T9] x2 : 0000000000001000 x1 : 0000000000000400 x0 : 0000000000000000 [ 42.546699][ T9] Call trace: [ 42.547627][ T9] __apply_to_page_range+0xdb4/0x13e4 (P) [ 42.549199][ T9] apply_to_page_range+0x4c/0x64 [ 42.550589][ T9] __change_memory_common+0xac/0x3f8 [ 42.552000][ T9] set_memory_valid+0x68/0x7c [ 42.552601][ T6500] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 42.555350][ T9] kfence_guarded_free+0x278/0x5a8 [ 42.556805][ T9] __kfence_free+0x104/0x198 [ 42.558012][ T9] kmem_cache_free+0x250/0x550 [ 42.559331][ T9] kfree_skbmem+0x14c/0x1dc [ 42.560526][ T9] sk_skb_reason_drop+0x150/0x1b0 [ 42.561901][ T9] hsr_forward_skb+0x1620/0x21d0 [ 42.563222][ T9] hsr_dev_xmit+0x16c/0x200 [ 42.564442][ T9] dev_hard_start_xmit+0x2b0/0x8ac [ 42.565859][ T9] __dev_queue_xmit+0x15a4/0x31f0 [ 42.567301][ T9] neigh_connected_output+0x358/0x3ec [ 42.568731][ T9] ip6_finish_output2+0x1544/0x1c7c [ 42.570192][ T9] ip6_finish_output+0x418/0x7b4 [ 42.571556][ T9] ip6_output+0x274/0x504 [ 42.572418][ T6500] veth0_vlan: entered promiscuous mode [ 42.574262][ T9] NF_HOOK+0x15c/0x430 [ 42.575348][ T9] mld_sendpack+0x764/0xf50 [ 42.576559][ T9] mld_ifc_work+0x770/0xce8 [ 42.577789][ T9] process_one_work+0x7e8/0x156c [ 42.579133][ T9] worker_thread+0x958/0xed8 [ 42.579963][ T6500] veth1_vlan: entered promiscuous mode [ 42.581826][ T9] kthread+0x5fc/0x75c [ 42.582986][ T9] ret_from_fork+0x10/0x20 [ 42.584176][ T9] irq event stamp: 120391 [ 42.585338][ T9] hardirqs last enabled at (120390): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 42.588223][ T9] hardirqs last disabled at (120391): [] el1_dbg+0x24/0x80 [ 42.590656][ T9] softirqs last enabled at (120360): [] ___neigh_create+0x1a4c/0x21e8 [ 42.593364][ T9] softirqs last disabled at (120364): [] local_bh_disable+0x10/0x34 [ 42.596014][ T9] ---[ end trace 0000000000000000 ]--- [ 42.609527][ T6500] veth0_macvtap: entered promiscuous mode [ 42.611315][ T6500] veth1_macvtap: entered promiscuous mode [ 42.620386][ T6500] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 42.626696][ T6500] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 42.631819][ T6500] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 42.631916][ T6500] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 42.631948][ T6500] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 42.631978][ T6500] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 42.675117][ T197] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 42.675193][ T197] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 42.691005][ T4378] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 42.691062][ T4378] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 42.725215][ T45] ------------[ cut here ]------------ [ 42.725270][ T45] WARNING: CPU: 0 PID: 45 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 42.729679][ T45] Modules linked in: [ 42.730769][ T45] CPU: 0 UID: 0 PID: 45 Comm: kworker/u8:3 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 42.734160][ T45] Tainted: [W]=WARN [ 42.735169][ T45] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 42.737838][ T45] Workqueue: ipv6_addrconf addrconf_dad_work [ 42.739445][ T45] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 42.741560][ T45] pc : __apply_to_page_range+0xdb4/0x13e4 [ 42.743099][ T45] lr : __apply_to_page_range+0xdb4/0x13e4 [ 42.744619][ T45] sp : ffff800097d66aa0 [ 42.745727][ T45] x29: ffff800097d66bc0 x28: ffff0001ffa44fff x27: ffff0001fec50fe8 [ 42.748000][ T45] x26: ffff0001ffa45000 x25: dfff800000000000 x24: ffff0001ffa44000 [ 42.750176][ T45] x23: ffff0001fea8e220 x22: 0000000000000400 x21: ffff0000c2759e80 [ 42.752347][ T45] x20: 100000023ea8e403 x19: 0000000000000001 x18: 00000000ffffffff [ 42.754504][ T45] x17: ffff800092f37000 x16: ffff80008051bab8 x15: 0000000000000001 [ 42.756793][ T45] x14: 1ffff00012dfb954 x13: 0000000000000000 x12: 0000000000000000 [ 42.759119][ T45] x11: ffff700012dfb955 x10: 0000000000ff0100 x9 : 0000000000000000 [ 42.761366][ T45] x8 : ffff0000c2759e80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 42.763565][ T45] x5 : 0000000000000001 x4 : ffff800097d66ca0 x3 : ffff8000802595f4 [ 42.765734][ T45] x2 : 0000000000001000 x1 : 0000000000000400 x0 : 0000000000000000 [ 42.768035][ T45] Call trace: [ 42.768978][ T45] __apply_to_page_range+0xdb4/0x13e4 (P) [ 42.770513][ T45] apply_to_page_range+0x4c/0x64 [ 42.771864][ T45] __change_memory_common+0xac/0x3f8 [ 42.773293][ T45] set_memory_valid+0x68/0x7c [ 42.774572][ T45] kfence_guarded_free+0x278/0x5a8 [ 42.775943][ T45] __kfence_free+0x104/0x198 [ 42.777157][ T45] kmem_cache_free+0x250/0x550 [ 42.778534][ T45] kfree_skbmem+0x14c/0x1dc [ 42.779811][ T45] sk_skb_reason_drop+0x150/0x1b0 [ 42.781145][ T45] hsr_forward_skb+0x1620/0x21d0 [ 42.782456][ T45] hsr_dev_xmit+0x16c/0x200 [ 42.783769][ T45] dev_hard_start_xmit+0x2b0/0x8ac [ 42.785179][ T45] __dev_queue_xmit+0x15a4/0x31f0 [ 42.786566][ T45] neigh_connected_output+0x358/0x3ec [ 42.788007][ T45] ip6_finish_output2+0x1544/0x1c7c [ 42.789378][ T45] ip6_finish_output+0x418/0x7b4 [ 42.790721][ T45] ip6_output+0x274/0x504 [ 42.791978][ T45] ndisc_send_skb+0xb48/0x1524 [ 42.793293][ T45] ndisc_send_ns+0xd4/0x164 [ 42.794518][ T45] addrconf_dad_work+0x770/0x10cc [ 42.795951][ T45] process_one_work+0x7e8/0x156c [ 42.797294][ T45] worker_thread+0x958/0xed8 [ 42.798567][ T45] kthread+0x5fc/0x75c [ 42.799653][ T45] ret_from_fork+0x10/0x20 [ 42.800862][ T45] irq event stamp: 97367 [ 42.802008][ T45] hardirqs last enabled at (97366): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 42.804841][ T45] hardirqs last disabled at (97367): [] el1_dbg+0x24/0x80 [ 42.807190][ T45] softirqs last enabled at (97330): [] ___neigh_create+0x1a4c/0x21e8 [ 42.809778][ T45] softirqs last disabled at (97334): [] local_bh_disable+0x10/0x34 [ 42.812360][ T45] ---[ end trace 0000000000000000 ]--- syzkaller build log: go env (err=) GO111MODULE='auto' GOARCH='amd64' GOBIN='' GOCACHE='/syzkaller/.cache/go-build' GOENV='/syzkaller/.config/go/env' GOEXE='' GOEXPERIMENT='' GOFLAGS='' GOHOSTARCH='amd64' GOHOSTOS='linux' GOINSECURE='' GOMODCACHE='/syzkaller/jobs-2/linux/gopath/pkg/mod' GONOPROXY='' GONOSUMDB='' GOOS='linux' GOPATH='/syzkaller/jobs-2/linux/gopath' GOPRIVATE='' GOPROXY='https://proxy.golang.org,direct' GOROOT='/usr/local/go' GOSUMDB='sum.golang.org' GOTMPDIR='' GOTOOLCHAIN='auto' GOTOOLDIR='/usr/local/go/pkg/tool/linux_amd64' GOVCS='' GOVERSION='go1.22.7' GCCGO='gccgo' GOAMD64='v1' AR='ar' CC='gcc' CXX='g++' CGO_ENABLED='1' GOMOD='/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/go.mod' GOWORK='' CGO_CFLAGS='-O2 -g' CGO_CPPFLAGS='' CGO_CXXFLAGS='-O2 -g' CGO_FFLAGS='-O2 -g' CGO_LDFLAGS='-O2 -g' PKG_CONFIG='pkg-config' GOGCCFLAGS='-fPIC -m64 -pthread -Wl,--no-gc-sections -fmessage-length=0 -ffile-prefix-map=/tmp/go-build2641647293=/tmp/go-build -gno-record-gcc-switches' git status (err=) HEAD detached at 1dac8c7a01e nothing to commit, working tree clean tput: No value for $TERM and no -T specified tput: No value for $TERM and no -T specified Makefile:32: run command via tools/syz-env for best compatibility, see: Makefile:33: https://github.com/google/syzkaller/blob/master/docs/contributing.md#using-syz-env go list -f '{{.Stale}}' ./sys/syz-sysgen | grep -q false || go install ./sys/syz-sysgen make .descriptions tput: No value for $TERM and no -T specified tput: No value for $TERM and no -T specified bin/syz-sysgen touch .descriptions GOOS=linux GOARCH=arm64 go build "-ldflags=-s -w -X github.com/google/syzkaller/prog.GitRevision=1dac8c7a01e2bdd35cb04eb4901ddb157291ac2d -X 'github.com/google/syzkaller/prog.gitRevisionDate=20230103-123455'" "-tags=syz_target syz_os_linux syz_arch_arm64 " -o ./bin/linux_arm64/syz-fuzzer github.com/google/syzkaller/syz-fuzzer GOOS=linux GOARCH=arm64 go build "-ldflags=-s -w -X github.com/google/syzkaller/prog.GitRevision=1dac8c7a01e2bdd35cb04eb4901ddb157291ac2d -X 'github.com/google/syzkaller/prog.gitRevisionDate=20230103-123455'" "-tags=syz_target syz_os_linux syz_arch_arm64 " -o ./bin/linux_arm64/syz-execprog github.com/google/syzkaller/tools/syz-execprog GOOS=linux GOARCH=arm64 go build "-ldflags=-s -w -X github.com/google/syzkaller/prog.GitRevision=1dac8c7a01e2bdd35cb04eb4901ddb157291ac2d -X 'github.com/google/syzkaller/prog.gitRevisionDate=20230103-123455'" "-tags=syz_target syz_os_linux syz_arch_arm64 " -o ./bin/linux_arm64/syz-stress github.com/google/syzkaller/tools/syz-stress mkdir -p ./bin/linux_arm64 aarch64-linux-gnu-gcc -o ./bin/linux_arm64/syz-executor executor/executor.cc \ -O2 -pthread -Wall -Werror -Wparentheses -Wunused-const-variable -Wframe-larger-than=16384 -Wno-stringop-overflow -Wno-array-bounds -Wno-format-overflow -static-pie -fpermissive -w -DGOOS_linux=1 -DGOARCH_arm64=1 \ -DHOSTGOOS_linux=1 -DGIT_REVISION=\"1dac8c7a01e2bdd35cb04eb4901ddb157291ac2d\"