WARNING in __apply_to_page_range softirqs last enabled at (633504): [] softirq_handle_end kernel/softirq.c:425 [inline] softirqs last enabled at (633504): [] handle_softirqs+0xaf8/0xc88 kernel/softirq.c:607 softirqs last disabled at (633507): [] run_ksoftirqd+0x70/0xc0 kernel/softirq.c:968 ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 23 at ./arch/arm64/include/asm/pgtable.h:82 arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] WARNING: CPU: 1 PID: 23 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pte_range mm/memory.c:2936 [inline] WARNING: CPU: 1 PID: 23 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pmd_range mm/memory.c:2985 [inline] WARNING: CPU: 1 PID: 23 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pud_range mm/memory.c:3021 [inline] WARNING: CPU: 1 PID: 23 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_p4d_range mm/memory.c:3057 [inline] WARNING: CPU: 1 PID: 23 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 Modules linked in: CPU: 1 UID: 0 PID: 23 Comm: ksoftirqd/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] pc : apply_to_pte_range mm/memory.c:2936 [inline] pc : apply_to_pmd_range mm/memory.c:2985 [inline] pc : apply_to_pud_range mm/memory.c:3021 [inline] pc : apply_to_p4d_range mm/memory.c:3057 [inline] pc : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 lr : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] lr : apply_to_pte_range mm/memory.c:2936 [inline] lr : apply_to_pmd_range mm/memory.c:2985 [inline] lr : apply_to_pud_range mm/memory.c:3021 [inline] lr : apply_to_p4d_range mm/memory.c:3057 [inline] lr : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 sp : ffff800097717700 x29: ffff800097717820 x28: ffff0001ffbd2fff x27: ffff0001fec50fe8 x26: ffff0001ffbd3000 x25: dfff800000000000 x24: ffff0001ffbd2000 x23: ffff0001fea8ee90 x22: 0000000000000100 x21: ffff0000c1b95b80 x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386f276 x17: ffff80008f31e000 x16: ffff80008051bab8 x15: 0000000000000001 x14: 1ffff00012dfb930 x13: 0000000000000000 x12: 0000000000000000 x11: ffff700012dfb931 x10: 0000000000ff0100 x9 : 0000000000000000 x8 : ffff0000c1b95b80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 x5 : 0000000000000001 x4 : ffff800097717900 x3 : ffff8000802595f4 x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 Call trace: arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] (P) apply_to_pte_range mm/memory.c:2936 [inline] (P) apply_to_pmd_range mm/memory.c:2985 [inline] (P) apply_to_pud_range mm/memory.c:3021 [inline] (P) apply_to_p4d_range mm/memory.c:3057 [inline] (P) __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 (P) apply_to_page_range+0x4c/0x64 mm/memory.c:3112 __change_memory_common+0xac/0x3f8 arch/arm64/mm/pageattr.c:64 set_memory_valid+0x68/0x7c arch/arm64/mm/pageattr.c:-1 kfence_protect_page arch/arm64/include/asm/kfence.h:17 [inline] kfence_protect mm/kfence/core.c:247 [inline] kfence_guarded_free+0x278/0x5a8 mm/kfence/core.c:565 rcu_guarded_free+0x4c/0x5c mm/kfence/core.c:587 rcu_do_batch kernel/rcu/tree.c:2568 [inline] rcu_core+0x848/0x17a4 kernel/rcu/tree.c:2824 rcu_core_si+0x10/0x1c kernel/rcu/tree.c:2841 handle_softirqs+0x328/0xc88 kernel/softirq.c:579 run_ksoftirqd+0x70/0xc0 kernel/softirq.c:968 smpboot_thread_fn+0x4d8/0x9cc kernel/smpboot.c:164 kthread+0x5fc/0x75c kernel/kthread.c:464 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:847 irq event stamp: 635271 hardirqs last enabled at (635270): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline] hardirqs last enabled at (635270): [] _raw_spin_unlock_irqrestore+0x38/0x98 kernel/locking/spinlock.c:194 hardirqs last disabled at (635271): [] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:511 softirqs last enabled at (634826): [] softirq_handle_end kernel/softirq.c:425 [inline] softirqs last enabled at (634826): [] handle_softirqs+0xaf8/0xc88 kernel/softirq.c:607 softirqs last disabled at (634831): [] run_ksoftirqd+0x70/0xc0 kernel/softirq.c:968 ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pte_range mm/memory.c:2936 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pmd_range mm/memory.c:2985 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pud_range mm/memory.c:3021 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_p4d_range mm/memory.c:3057 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 Modules linked in: CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] pc : apply_to_pte_range mm/memory.c:2936 [inline] pc : apply_to_pmd_range mm/memory.c:2985 [inline] pc : apply_to_pud_range mm/memory.c:3021 [inline] pc : apply_to_p4d_range mm/memory.c:3057 [inline] pc : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 lr : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] lr : apply_to_pte_range mm/memory.c:2936 [inline] lr : apply_to_pmd_range mm/memory.c:2985 [inline] lr : apply_to_pud_range mm/memory.c:3021 [inline] lr : apply_to_p4d_range mm/memory.c:3057 [inline] lr : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 sp : ffff800080017900 x29: ffff800080017a20 x28: ffff0001ffbd6fff x27: ffff0001fec50fe8 x26: ffff0001ffbd7000 x25: dfff800000000000 x24: ffff0001ffbd6000 x23: ffff0001fea8eeb0 x22: 0000000000000100 x21: ffff0000c1a0db80 x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386f276 x17: ffff80010d10c000 x16: ffff80008051bab8 x15: 0000000000000001 x14: 1ffff00012dfba1c x13: 0000000000000000 x12: 0000000000000000 x11: ffff700012dfba1d x10: 0000000000ff0100 x9 : 0000000000000000 x8 : ffff0000c1a0db80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 x5 : 0000000000000001 x4 : ffff800080017b00 x3 : ffff8000802595f4 x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 Call trace: arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] (P) apply_to_pte_range mm/memory.c:2936 [inline] (P) apply_to_pmd_range mm/memory.c:2985 [inline] (P) apply_to_pud_range mm/memory.c:3021 [inline] (P) apply_to_p4d_range mm/memory.c:3057 [inline] (P) __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 (P) apply_to_page_range+0x4c/0x64 mm/memory.c:3112 __change_memory_common+0xac/0x3f8 arch/arm64/mm/pageattr.c:64 set_memory_valid+0x68/0x7c arch/arm64/mm/pageattr.c:-1 kfence_protect_page arch/arm64/include/asm/kfence.h:17 [inline] kfence_protect mm/kfence/core.c:247 [inline] kfence_guarded_free+0x278/0x5a8 mm/kfence/core.c:565 __kfence_free+0x104/0x198 mm/kfence/core.c:1187 kfence_free include/linux/kfence.h:187 [inline] slab_free_hook mm/slub.c:2318 [inline] slab_free mm/slub.c:4642 [inline] kfree+0x268/0x474 mm/slub.c:4841 slab_free_after_rcu_debug+0x78/0x2f4 mm/slub.c:4679 rcu_do_batch kernel/rcu/tree.c:2568 [inline] rcu_core+0x848/0x17a4 kernel/rcu/tree.c:2824 rcu_core_si+0x10/0x1c kernel/rcu/tree.c:2841 handle_softirqs+0x328/0xc88 kernel/softirq.c:579 __do_softirq+0x14/0x20 kernel/softirq.c:613 ____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:81 call_on_irq_stack+0x24/0x30 arch/arm64/kernel/entry.S:891 do_softirq_own_stack+0x20/0x2c arch/arm64/kernel/irq.c:86 invoke_softirq kernel/softirq.c:460 [inline] __irq_exit_rcu+0x1b0/0x478 kernel/softirq.c:680 irq_exit_rcu+0x14/0x84 kernel/softirq.c:696 __el1_irq arch/arm64/kernel/entry-common.c:584 [inline] el1_interrupt+0x38/0x54 arch/arm64/kernel/entry-common.c:598 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:603 el1h_64_irq+0x6c/0x70 arch/arm64/kernel/entry.S:596 __daif_local_irq_enable arch/arm64/include/asm/irqflags.h:26 [inline] (P) arch_local_irq_enable+0x8/0xc arch/arm64/include/asm/irqflags.h:48 (P) cpuidle_idle_call kernel/sched/idle.c:185 [inline] do_idle+0x1d8/0x454 kernel/sched/idle.c:325 cpu_startup_entry+0x5c/0x74 kernel/sched/idle.c:423 secondary_start_kernel+0x1b8/0x1e0 arch/arm64/kernel/smp.c:279 __secondary_switched+0xc0/0xc4 arch/arm64/kernel/head.S:401 irq event stamp: 190947 hardirqs last enabled at (190946): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline] hardirqs last enabled at (190946): [] _raw_spin_unlock_irqrestore+0x38/0x98 kernel/locking/spinlock.c:194 hardirqs last disabled at (190947): [] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:511 softirqs last enabled at (190900): [] softirq_handle_end kernel/softirq.c:425 [inline] softirqs last enabled at (190900): [] handle_softirqs+0xaf8/0xc88 kernel/softirq.c:607 softirqs last disabled at (190913): [] __do_softirq+0x14/0x20 kernel/softirq.c:613 ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pte_range mm/memory.c:2936 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pmd_range mm/memory.c:2985 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pud_range mm/memory.c:3021 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_p4d_range mm/memory.c:3057 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 Modules linked in: CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] pc : apply_to_pte_range mm/memory.c:2936 [inline] pc : apply_to_pmd_range mm/memory.c:2985 [inline] pc : apply_to_pud_range mm/memory.c:3021 [inline] pc : apply_to_p4d_range mm/memory.c:3057 [inline] pc : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 lr : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] lr : apply_to_pte_range mm/memory.c:2936 [inline] lr : apply_to_pmd_range mm/memory.c:2985 [inline] lr : apply_to_pud_range mm/memory.c:3021 [inline] lr : apply_to_p4d_range mm/memory.c:3057 [inline] lr : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 sp : ffff800080017900 x29: ffff800080017a20 x28: ffff0001ffbe2fff x27: ffff0001fec50fe8 x26: ffff0001ffbe3000 x25: dfff800000000000 x24: ffff0001ffbe2000 x23: ffff0001fea8ef10 x22: 0000000000000100 x21: ffff0000c1a0db80 x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386f276 x17: 0000000000000000 x16: ffff80008051bab8 x15: 0000000000000001 x14: 1ffff00012dfb9c9 x13: 0000000000000000 x12: 0000000000000000 x11: ffff700012dfb9ca x10: 0000000000ff0100 x9 : 0000000000000000 x8 : ffff0000c1a0db80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 x5 : 0000000000000001 x4 : ffff800080017b00 x3 : ffff8000802595f4 x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 Call trace: arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] (P) apply_to_pte_range mm/memory.c:2936 [inline] (P) apply_to_pmd_range mm/memory.c:2985 [inline] (P) apply_to_pud_range mm/memory.c:3021 [inline] (P) apply_to_p4d_range mm/memory.c:3057 [inline] (P) __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 (P) apply_to_page_range+0x4c/0x64 mm/memory.c:3112 __change_memory_common+0xac/0x3f8 arch/arm64/mm/pageattr.c:64 set_memory_valid+0x68/0x7c arch/arm64/mm/pageattr.c:-1 kfence_protect_page arch/arm64/include/asm/kfence.h:17 [inline] kfence_protect mm/kfence/core.c:247 [inline] kfence_guarded_free+0x278/0x5a8 mm/kfence/core.c:565 __kfence_free+0x104/0x198 mm/kfence/core.c:1187 kfence_free include/linux/kfence.h:187 [inline] slab_free_hook mm/slub.c:2318 [inline] slab_free mm/slub.c:4642 [inline] kfree+0x268/0x474 mm/slub.c:4841 slab_free_after_rcu_debug+0x78/0x2f4 mm/slub.c:4679 rcu_do_batch kernel/rcu/tree.c:2568 [inline] rcu_core+0x848/0x17a4 kernel/rcu/tree.c:2824 rcu_core_si+0x10/0x1c kernel/rcu/tree.c:2841 handle_softirqs+0x328/0xc88 kernel/softirq.c:579 __do_softirq+0x14/0x20 kernel/softirq.c:613 ____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:81 call_on_irq_stack+0x24/0x30 arch/arm64/kernel/entry.S:891 do_softirq_own_stack+0x20/0x2c arch/arm64/kernel/irq.c:86 invoke_softirq kernel/softirq.c:460 [inline] __irq_exit_rcu+0x1b0/0x478 kernel/softirq.c:680 irq_exit_rcu+0x14/0x84 kernel/softirq.c:696 __el1_irq arch/arm64/kernel/entry-common.c:584 [inline] el1_interrupt+0x38/0x54 arch/arm64/kernel/entry-common.c:598 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:603 el1h_64_irq+0x6c/0x70 arch/arm64/kernel/entry.S:596 __daif_local_irq_enable arch/arm64/include/asm/irqflags.h:26 [inline] (P) arch_local_irq_enable+0x8/0xc arch/arm64/include/asm/irqflags.h:48 (P) cpuidle_idle_call kernel/sched/idle.c:185 [inline] do_idle+0x1d8/0x454 kernel/sched/idle.c:325 cpu_startup_entry+0x5c/0x74 kernel/sched/idle.c:423 secondary_start_kernel+0x1b8/0x1e0 arch/arm64/kernel/smp.c:279 __secondary_switched+0xc0/0xc4 arch/arm64/kernel/head.S:401 irq event stamp: 195921 hardirqs last enabled at (195920): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline] hardirqs last enabled at (195920): [] _raw_spin_unlock_irqrestore+0x38/0x98 kernel/locking/spinlock.c:194 hardirqs last disabled at (195921): [] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:511 softirqs last enabled at (195018): [] softirq_handle_end kernel/softirq.c:425 [inline] softirqs last enabled at (195018): [] handle_softirqs+0xaf8/0xc88 kernel/softirq.c:607 softirqs last disabled at (195037): [] __do_softirq+0x14/0x20 kernel/softirq.c:613 ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pte_range mm/memory.c:2936 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pmd_range mm/memory.c:2985 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pud_range mm/memory.c:3021 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_p4d_range mm/memory.c:3057 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 Modules linked in: CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] pc : apply_to_pte_range mm/memory.c:2936 [inline] pc : apply_to_pmd_range mm/memory.c:2985 [inline] pc : apply_to_pud_range mm/memory.c:3021 [inline] pc : apply_to_p4d_range mm/memory.c:3057 [inline] pc : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 lr : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] lr : apply_to_pte_range mm/memory.c:2936 [inline] lr : apply_to_pmd_range mm/memory.c:2985 [inline] lr : apply_to_pud_range mm/memory.c:3021 [inline] lr : apply_to_p4d_range mm/memory.c:3057 [inline] lr : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 sp : ffff800080017120 x29: ffff800080017240 x28: ffff0001ffbf8fff x27: ffff0001fec50fe8 x26: ffff0001ffbf9000 x25: dfff800000000000 x24: ffff0001ffbf8000 x23: ffff0001fea8efc0 x22: 0000000000000500 x21: ffff0000c1a0db80 x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386f276 x17: 0000000000a000ae x16: ffff80008051bab8 x15: 0000000000000001 x14: 1ffff00012dfb9ee x13: 0000000000000000 x12: 0000000000000000 x11: ffff700012dfb9ef x10: 0000000000ff0100 x9 : 0000000000000000 x8 : ffff0000c1a0db80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 x5 : 0000000000000001 x4 : ffff800080017320 x3 : ffff8000802595f4 x2 : 0000000000001000 x1 : 0000000000000500 x0 : 0000000000000000 Call trace: arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] (P) apply_to_pte_range mm/memory.c:2936 [inline] (P) apply_to_pmd_range mm/memory.c:2985 [inline] (P) apply_to_pud_range mm/memory.c:3021 [inline] (P) apply_to_p4d_range mm/memory.c:3057 [inline] (P) __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 (P) apply_to_page_range+0x4c/0x64 mm/memory.c:3112 __change_memory_common+0xac/0x3f8 arch/arm64/mm/pageattr.c:64 set_memory_valid+0x68/0x7c arch/arm64/mm/pageattr.c:-1 kfence_protect_page arch/arm64/include/asm/kfence.h:17 [inline] kfence_protect mm/kfence/core.c:247 [inline] kfence_guarded_free+0x278/0x5a8 mm/kfence/core.c:565 __kfence_free+0x104/0x198 mm/kfence/core.c:1187 kfence_free include/linux/kfence.h:187 [inline] slab_free_hook mm/slub.c:2318 [inline] slab_free mm/slub.c:4642 [inline] kmem_cache_free+0x250/0x550 mm/slub.c:4744 kfree_skbmem+0x14c/0x1dc net/core/skbuff.c:-1 __kfree_skb net/core/skbuff.c:1177 [inline] consume_skb+0xb8/0x130 net/core/skbuff.c:1408 ifb_xmit+0x174/0x53c drivers/net/ifb.c:346 __netdev_start_xmit include/linux/netdevice.h:5203 [inline] netdev_start_xmit include/linux/netdevice.h:5212 [inline] xmit_one net/core/dev.c:3776 [inline] dev_hard_start_xmit+0x2b0/0x8ac net/core/dev.c:3792 sch_direct_xmit+0x1fc/0x468 net/sched/sch_generic.c:343 __dev_xmit_skb net/core/dev.c:4018 [inline] __dev_queue_xmit+0x13b4/0x31f0 net/core/dev.c:4595 dev_queue_xmit include/linux/netdevice.h:3350 [inline] lapbeth_data_transmit+0x1fc/0x2a8 drivers/net/wan/lapbether.c:260 lapb_data_transmit+0x8c/0xb0 net/lapb/lapb_iface.c:447 lapb_transmit_buffer+0x160/0x208 net/lapb/lapb_out.c:149 lapb_send_control+0x21c/0x320 net/lapb/lapb_subr.c:251 lapb_t1timer_expiry+0x490/0x864 net/lapb/lapb_timer.c:-1 call_timer_fn+0x1b4/0x818 kernel/time/timer.c:1789 expire_timers kernel/time/timer.c:1840 [inline] __run_timers kernel/time/timer.c:2414 [inline] __run_timer_base+0x51c/0x76c kernel/time/timer.c:2426 run_timer_base kernel/time/timer.c:2435 [inline] run_timer_softirq+0xcc/0x194 kernel/time/timer.c:2445 handle_softirqs+0x328/0xc88 kernel/softirq.c:579 __do_softirq+0x14/0x20 kernel/softirq.c:613 ____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:81 call_on_irq_stack+0x24/0x30 arch/arm64/kernel/entry.S:891 do_softirq_own_stack+0x20/0x2c arch/arm64/kernel/irq.c:86 invoke_softirq kernel/softirq.c:460 [inline] __irq_exit_rcu+0x1b0/0x478 kernel/softirq.c:680 irq_exit_rcu+0x14/0x84 kernel/softirq.c:696 __el1_irq arch/arm64/kernel/entry-common.c:584 [inline] el1_interrupt+0x38/0x54 arch/arm64/kernel/entry-common.c:598 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:603 el1h_64_irq+0x6c/0x70 arch/arm64/kernel/entry.S:596 __daif_local_irq_enable arch/arm64/include/asm/irqflags.h:26 [inline] (P) arch_local_irq_enable+0x8/0xc arch/arm64/include/asm/irqflags.h:48 (P) cpuidle_idle_call kernel/sched/idle.c:185 [inline] do_idle+0x1d8/0x454 kernel/sched/idle.c:325 cpu_startup_entry+0x5c/0x74 kernel/sched/idle.c:423 secondary_start_kernel+0x1b8/0x1e0 arch/arm64/kernel/smp.c:279 __secondary_switched+0xc0/0xc4 arch/arm64/kernel/head.S:401 irq event stamp: 201541 hardirqs last enabled at (201540): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline] hardirqs last enabled at (201540): [] _raw_spin_unlock_irqrestore+0x38/0x98 kernel/locking/spinlock.c:194 hardirqs last disabled at (201541): [] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:511 softirqs last enabled at (201510): [] softirq_handle_end kernel/softirq.c:425 [inline] softirqs last enabled at (201510): [] handle_softirqs+0xaf8/0xc88 kernel/softirq.c:607 softirqs last disabled at (201517): [] __do_softirq+0x14/0x20 kernel/softirq.c:613 ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pte_range mm/memory.c:2936 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pmd_range mm/memory.c:2985 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pud_range mm/memory.c:3021 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_p4d_range mm/memory.c:3057 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 Modules linked in: CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] pc : apply_to_pte_range mm/memory.c:2936 [inline] pc : apply_to_pmd_range mm/memory.c:2985 [inline] pc : apply_to_pud_range mm/memory.c:3021 [inline] pc : apply_to_p4d_range mm/memory.c:3057 [inline] pc : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 lr : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] lr : apply_to_pte_range mm/memory.c:2936 [inline] lr : apply_to_pmd_range mm/memory.c:2985 [inline] lr : apply_to_pud_range mm/memory.c:3021 [inline] lr : apply_to_p4d_range mm/memory.c:3057 [inline] lr : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 sp : ffff800080017160 x29: ffff800080017280 x28: ffff0001ffbfafff x27: ffff0001fec50fe8 x26: ffff0001ffbfb000 x25: dfff800000000000 x24: ffff0001ffbfa000 x23: ffff0001fea8efd0 x22: 0000000000000500 x21: ffff0000c1a0db80 x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386f276 x17: ffff80010d10c000 x16: ffff80008051bab8 x15: 0000000000000001 x14: 1ffff00012dfb9ee x13: 0000000000000000 x12: 0000000000000000 x11: ffff700012dfb9ef x10: 0000000000ff0100 x9 : 0000000000000000 x8 : ffff0000c1a0db80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 x5 : 0000000000000001 x4 : ffff800080017360 x3 : ffff8000802595f4 x2 : 0000000000001000 x1 : 0000000000000500 x0 : 0000000000000000 Call trace: arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] (P) apply_to_pte_range mm/memory.c:2936 [inline] (P) apply_to_pmd_range mm/memory.c:2985 [inline] (P) apply_to_pud_range mm/memory.c:3021 [inline] (P) apply_to_p4d_range mm/memory.c:3057 [inline] (P) __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 (P) apply_to_page_range+0x4c/0x64 mm/memory.c:3112 __change_memory_common+0xac/0x3f8 arch/arm64/mm/pageattr.c:64 set_memory_valid+0x68/0x7c arch/arm64/mm/pageattr.c:-1 kfence_protect_page arch/arm64/include/asm/kfence.h:17 [inline] kfence_protect mm/kfence/core.c:247 [inline] kfence_guarded_free+0x278/0x5a8 mm/kfence/core.c:565 __kfence_free+0x104/0x198 mm/kfence/core.c:1187 kfence_free include/linux/kfence.h:187 [inline] slab_free_hook mm/slub.c:2318 [inline] slab_free_freelist_hook mm/slub.c:2394 [inline] slab_free_bulk mm/slub.c:4666 [inline] kmem_cache_free_bulk+0x490/0x51c mm/slub.c:5243 kfree_skb_list_reason+0x3ac/0x418 net/core/skbuff.c:1264 __dev_xmit_skb net/core/dev.c:4093 [inline] __dev_queue_xmit+0x1ac8/0x31f0 net/core/dev.c:4595 dev_queue_xmit include/linux/netdevice.h:3350 [inline] lapbeth_data_transmit+0x1fc/0x2a8 drivers/net/wan/lapbether.c:260 lapb_data_transmit+0x8c/0xb0 net/lapb/lapb_iface.c:447 lapb_transmit_buffer+0x160/0x208 net/lapb/lapb_out.c:149 lapb_send_control+0x21c/0x320 net/lapb/lapb_subr.c:251 lapb_t1timer_expiry+0x490/0x864 net/lapb/lapb_timer.c:-1 call_timer_fn+0x1b4/0x818 kernel/time/timer.c:1789 expire_timers kernel/time/timer.c:1840 [inline] __run_timers kernel/time/timer.c:2414 [inline] __run_timer_base+0x51c/0x76c kernel/time/timer.c:2426 run_timer_base kernel/time/timer.c:2435 [inline] run_timer_softirq+0xcc/0x194 kernel/time/timer.c:2445 handle_softirqs+0x328/0xc88 kernel/softirq.c:579 __do_softirq+0x14/0x20 kernel/softirq.c:613 ____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:81 call_on_irq_stack+0x24/0x30 arch/arm64/kernel/entry.S:891 do_softirq_own_stack+0x20/0x2c arch/arm64/kernel/irq.c:86 invoke_softirq kernel/softirq.c:460 [inline] __irq_exit_rcu+0x1b0/0x478 kernel/softirq.c:680 irq_exit_rcu+0x14/0x84 kernel/softirq.c:696 __el1_irq arch/arm64/kernel/entry-common.c:584 [inline] el1_interrupt+0x38/0x54 arch/arm64/kernel/entry-common.c:598 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:603 el1h_64_irq+0x6c/0x70 arch/arm64/kernel/entry.S:596 __daif_local_irq_enable arch/arm64/include/asm/irqflags.h:26 [inline] (P) arch_local_irq_enable+0x8/0xc arch/arm64/include/asm/irqflags.h:48 (P) cpuidle_idle_call kernel/sched/idle.c:185 [inline] do_idle+0x1d8/0x454 kernel/sched/idle.c:325 cpu_startup_entry+0x5c/0x74 kernel/sched/idle.c:423 secondary_start_kernel+0x1b8/0x1e0 arch/arm64/kernel/smp.c:279 __secondary_switched+0xc0/0xc4 arch/arm64/kernel/head.S:401 irq event stamp: 202017 hardirqs last enabled at (202016): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline] hardirqs last enabled at (202016): [] _raw_spin_unlock_irqrestore+0x38/0x98 kernel/locking/spinlock.c:194 hardirqs last disabled at (202017): [] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:511 softirqs last enabled at (201990): [] softirq_handle_end kernel/softirq.c:425 [inline] softirqs last enabled at (201990): [] handle_softirqs+0xaf8/0xc88 kernel/softirq.c:607 softirqs last disabled at (201997): [] __do_softirq+0x14/0x20 kernel/softirq.c:613 ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pte_range mm/memory.c:2936 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pmd_range mm/memory.c:2985 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pud_range mm/memory.c:3021 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_p4d_range mm/memory.c:3057 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 Modules linked in: CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 pstate: 404000c5 (nZcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] pc : apply_to_pte_range mm/memory.c:2936 [inline] pc : apply_to_pmd_range mm/memory.c:2985 [inline] pc : apply_to_pud_range mm/memory.c:3021 [inline] pc : apply_to_p4d_range mm/memory.c:3057 [inline] pc : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 lr : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] lr : apply_to_pte_range mm/memory.c:2936 [inline] lr : apply_to_pmd_range mm/memory.c:2985 [inline] lr : apply_to_pud_range mm/memory.c:3021 [inline] lr : apply_to_p4d_range mm/memory.c:3057 [inline] lr : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 sp : ffff800080017180 x29: ffff8000800172a0 x28: ffff0001ffa12fff x27: ffff0001fec50fe8 x26: ffff0001ffa13000 x25: dfff800000000000 x24: ffff0001ffa12000 x23: ffff0001fea8e090 x22: 0000000000000100 x21: ffff0000c1a0db80 x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386f276 x17: ffff80010d10c000 x16: ffff80008adb82bc x15: ffff700010002e78 x14: 1ffff00010002e78 x13: 0000000000000004 x12: ffffffffffffffff x11: 00000000e8469ace x10: 0000000000ff0100 x9 : 0000000000000000 x8 : ffff0000c1a0db80 x7 : ffff800080c2c30c x6 : 0000000000000000 x5 : 0000000000000001 x4 : ffff800080017380 x3 : ffff8000802595f4 x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 Call trace: arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] (P) apply_to_pte_range mm/memory.c:2936 [inline] (P) apply_to_pmd_range mm/memory.c:2985 [inline] (P) apply_to_pud_range mm/memory.c:3021 [inline] (P) apply_to_p4d_range mm/memory.c:3057 [inline] (P) __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 (P) apply_to_page_range+0x4c/0x64 mm/memory.c:3112 __change_memory_common+0xac/0x3f8 arch/arm64/mm/pageattr.c:64 set_memory_valid+0x68/0x7c arch/arm64/mm/pageattr.c:-1 kfence_protect_page arch/arm64/include/asm/kfence.h:17 [inline] kfence_unprotect mm/kfence/core.c:252 [inline] kfence_guarded_alloc+0x2e8/0xb08 mm/kfence/core.c:459 __kfence_alloc+0x394/0x45c mm/kfence/core.c:1138 kfence_alloc include/linux/kfence.h:129 [inline] slab_alloc_node mm/slub.c:4180 [inline] kmem_cache_alloc_node_noprof+0x34c/0x3f4 mm/slub.c:4248 __alloc_skb+0x144/0x2ec net/core/skbuff.c:658 alloc_skb include/linux/skbuff.h:1340 [inline] __tcp_send_ack+0xa4/0x55c net/ipv4/tcp_output.c:4254 tcp_send_ack+0x50/0x6c net/ipv4/tcp_output.c:4286 tcp_delack_timer_handler+0x280/0x444 net/ipv4/tcp_timer.c:344 tcp_delack_timer+0x238/0x3c4 net/ipv4/tcp_timer.c:375 call_timer_fn+0x1b4/0x818 kernel/time/timer.c:1789 expire_timers kernel/time/timer.c:1840 [inline] __run_timers kernel/time/timer.c:2414 [inline] __run_timer_base+0x51c/0x76c kernel/time/timer.c:2426 timer_expire_remote+0x78/0xa0 kernel/time/timer.c:2177 tmigr_handle_remote_cpu kernel/time/timer_migration.c:944 [inline] tmigr_handle_remote_up kernel/time/timer_migration.c:1035 [inline] __walk_groups kernel/time/timer_migration.c:533 [inline] tmigr_handle_remote+0x8d4/0x1340 kernel/time/timer_migration.c:1094 run_timer_softirq+0x190/0x194 kernel/time/timer.c:2449 handle_softirqs+0x328/0xc88 kernel/softirq.c:579 __do_softirq+0x14/0x20 kernel/softirq.c:613 ____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:81 call_on_irq_stack+0x24/0x30 arch/arm64/kernel/entry.S:891 do_softirq_own_stack+0x20/0x2c arch/arm64/kernel/irq.c:86 invoke_softirq kernel/softirq.c:460 [inline] __irq_exit_rcu+0x1b0/0x478 kernel/softirq.c:680 irq_exit_rcu+0x14/0x84 kernel/softirq.c:696 __el1_irq arch/arm64/kernel/entry-common.c:584 [inline] el1_interrupt+0x38/0x54 arch/arm64/kernel/entry-common.c:598 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:603 el1h_64_irq+0x6c/0x70 arch/arm64/kernel/entry.S:596 __daif_local_irq_enable arch/arm64/include/asm/irqflags.h:26 [inline] (P) arch_local_irq_enable+0x8/0xc arch/arm64/include/asm/irqflags.h:48 (P) cpuidle_idle_call kernel/sched/idle.c:185 [inline] do_idle+0x1d8/0x454 kernel/sched/idle.c:325 cpu_startup_entry+0x5c/0x74 kernel/sched/idle.c:423 secondary_start_kernel+0x1b8/0x1e0 arch/arm64/kernel/smp.c:279 __secondary_switched+0xc0/0xc4 arch/arm64/kernel/head.S:401 irq event stamp: 208323 hardirqs last enabled at (208322): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline] hardirqs last enabled at (208322): [] _raw_spin_unlock_irqrestore+0x38/0x98 kernel/locking/spinlock.c:194 hardirqs last disabled at (208323): [] kfence_guarded_alloc+0x190/0xb08 mm/kfence/core.c:438 softirqs last enabled at (208292): [] softirq_handle_end kernel/softirq.c:425 [inline] softirqs last enabled at (208292): [] handle_softirqs+0xaf8/0xc88 kernel/softirq.c:607 softirqs last disabled at (208299): [] __do_softirq+0x14/0x20 kernel/softirq.c:613 ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:67 queue_pte_barriers arch/arm64/include/asm/pgtable.h:67 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:67 __set_pte_complete arch/arm64/include/asm/pgtable.h:387 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:67 __set_pte arch/arm64/include/asm/pgtable.h:393 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:67 change_page_range+0x188/0x1cc arch/arm64/mm/pageattr.c:48 Modules linked in: CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 pstate: 404000c5 (nZcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : queue_pte_barriers arch/arm64/include/asm/pgtable.h:67 [inline] pc : __set_pte_complete arch/arm64/include/asm/pgtable.h:387 [inline] pc : __set_pte arch/arm64/include/asm/pgtable.h:393 [inline] pc : change_page_range+0x188/0x1cc arch/arm64/mm/pageattr.c:48 lr : queue_pte_barriers arch/arm64/include/asm/pgtable.h:67 [inline] lr : __set_pte_complete arch/arm64/include/asm/pgtable.h:387 [inline] lr : __set_pte arch/arm64/include/asm/pgtable.h:393 [inline] lr : change_page_range+0x188/0x1cc arch/arm64/mm/pageattr.c:48 sp : ffff800080017140 x29: ffff800080017140 x28: ffff0001ffa12fff x27: ffff0001fec50fe8 x26: ffff0001ffa13000 x25: ffff0001ffa12000 x24: ffff0001ffa12000 x23: 006800023fa12707 x22: 0040000000000001 x21: dfff800000000000 x20: 0000000000000100 x19: ffff0000c1a0db80 x18: 1fffe0003386f276 x17: ffff80010d10c000 x16: ffff80008adb82bc x15: 0000000000000001 x14: 1fffe00018341b70 x13: 0000000000000000 x12: 0000000000000000 x11: ffff600018341b71 x10: 0000000000ff0100 x9 : 0000000000000000 x8 : ffff0000c1a0db80 x7 : ffff800080c2c30c x6 : 0000000000000000 x5 : 0000000000000001 x4 : ffff800080017380 x3 : ffff800080ac62d0 x2 : ffff800080017380 x1 : 0000000000000100 x0 : 0000000000000000 Call trace: queue_pte_barriers arch/arm64/include/asm/pgtable.h:67 [inline] (P) __set_pte_complete arch/arm64/include/asm/pgtable.h:387 [inline] (P) __set_pte arch/arm64/include/asm/pgtable.h:393 [inline] (P) change_page_range+0x188/0x1cc arch/arm64/mm/pageattr.c:48 (P) apply_to_pte_range mm/memory.c:2941 [inline] apply_to_pmd_range mm/memory.c:2985 [inline] apply_to_pud_range mm/memory.c:3021 [inline] apply_to_p4d_range mm/memory.c:3057 [inline] __apply_to_page_range+0xd58/0x13e4 mm/memory.c:3093 apply_to_page_range+0x4c/0x64 mm/memory.c:3112 __change_memory_common+0xac/0x3f8 arch/arm64/mm/pageattr.c:64 set_memory_valid+0x68/0x7c arch/arm64/mm/pageattr.c:-1 kfence_protect_page arch/arm64/include/asm/kfence.h:17 [inline] kfence_unprotect mm/kfence/core.c:252 [inline] kfence_guarded_alloc+0x2e8/0xb08 mm/kfence/core.c:459 __kfence_alloc+0x394/0x45c mm/kfence/core.c:1138 kfence_alloc include/linux/kfence.h:129 [inline] slab_alloc_node mm/slub.c:4180 [inline] kmem_cache_alloc_node_noprof+0x34c/0x3f4 mm/slub.c:4248 __alloc_skb+0x144/0x2ec net/core/skbuff.c:658 alloc_skb include/linux/skbuff.h:1340 [inline] __tcp_send_ack+0xa4/0x55c net/ipv4/tcp_output.c:4254 tcp_send_ack+0x50/0x6c net/ipv4/tcp_output.c:4286 tcp_delack_timer_handler+0x280/0x444 net/ipv4/tcp_timer.c:344 tcp_delack_timer+0x238/0x3c4 net/ipv4/tcp_timer.c:375 call_timer_fn+0x1b4/0x818 kernel/time/timer.c:1789 expire_timers kernel/time/timer.c:1840 [inline] __run_timers kernel/time/timer.c:2414 [inline] __run_timer_base+0x51c/0x76c kernel/time/timer.c:2426 timer_expire_remote+0x78/0xa0 kernel/time/timer.c:2177 tmigr_handle_remote_cpu kernel/time/timer_migration.c:944 [inline] tmigr_handle_remote_up kernel/time/timer_migration.c:1035 [inline] __walk_groups kernel/time/timer_migration.c:533 [inline] tmigr_handle_remote+0x8d4/0x1340 kernel/time/timer_migration.c:1094 run_timer_softirq+0x190/0x194 kernel/time/timer.c:2449 handle_softirqs+0x328/0xc88 kernel/softirq.c:579 __do_softirq+0x14/0x20 kernel/softirq.c:613 ____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:81 call_on_irq_stack+0x24/0x30 arch/arm64/kernel/entry.S:891 do_softirq_own_stack+0x20/0x2c arch/arm64/kernel/irq.c:86 invoke_softirq kernel/softirq.c:460 [inline] __irq_exit_rcu+0x1b0/0x478 kernel/softirq.c:680 irq_exit_rcu+0x14/0x84 kernel/softirq.c:696 __el1_irq arch/arm64/kernel/entry-common.c:584 [inline] el1_interrupt+0x38/0x54 arch/arm64/kernel/entry-common.c:598 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:603 el1h_64_irq+0x6c/0x70 arch/arm64/kernel/entry.S:596 __daif_local_irq_enable arch/arm64/include/asm/irqflags.h:26 [inline] (P) arch_local_irq_enable+0x8/0xc arch/arm64/include/asm/irqflags.h:48 (P) cpuidle_idle_call kernel/sched/idle.c:185 [inline] do_idle+0x1d8/0x454 kernel/sched/idle.c:325 cpu_startup_entry+0x5c/0x74 kernel/sched/idle.c:423 secondary_start_kernel+0x1b8/0x1e0 arch/arm64/kernel/smp.c:279 __secondary_switched+0xc0/0xc4 arch/arm64/kernel/head.S:401 irq event stamp: 208323 hardirqs last enabled at (208322): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline] hardirqs last enabled at (208322): [] _raw_spin_unlock_irqrestore+0x38/0x98 kernel/locking/spinlock.c:194 hardirqs last disabled at (208323): [] kfence_guarded_alloc+0x190/0xb08 mm/kfence/core.c:438 softirqs last enabled at (208292): [] softirq_handle_end kernel/softirq.c:425 [inline] softirqs last enabled at (208292): [] handle_softirqs+0xaf8/0xc88 kernel/softirq.c:607 softirqs last disabled at (208299): [] __do_softirq+0x14/0x20 kernel/softirq.c:613 ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pte_range mm/memory.c:2936 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pmd_range mm/memory.c:2985 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pud_range mm/memory.c:3021 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_p4d_range mm/memory.c:3057 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 Modules linked in: CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 pstate: 404000c5 (nZcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] pc : apply_to_pte_range mm/memory.c:2936 [inline] pc : apply_to_pmd_range mm/memory.c:2985 [inline] pc : apply_to_pud_range mm/memory.c:3021 [inline] pc : apply_to_p4d_range mm/memory.c:3057 [inline] pc : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 lr : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] lr : apply_to_pte_range mm/memory.c:2936 [inline] lr : apply_to_pmd_range mm/memory.c:2985 [inline] lr : apply_to_pud_range mm/memory.c:3021 [inline] lr : apply_to_p4d_range mm/memory.c:3057 [inline] lr : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 sp : ffff8000800171e0 x29: ffff800080017300 x28: ffff0001ffa34fff x27: ffff0001fec50fe8 x26: ffff0001ffa35000 x25: dfff800000000000 x24: ffff0001ffa34000 x23: ffff0001fea8e1a0 x22: 0000000000000300 x21: ffff0000c1a0db80 x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386f276 x17: ffff80010d10c000 x16: ffff80008adb82bc x15: ffff700010002e84 x14: 1ffff00010002e84 x13: 0000000000000004 x12: ffffffffffffffff x11: 00000000678ea1de x10: 0000000000ff0100 x9 : 0000000000000000 x8 : ffff0000c1a0db80 x7 : ffff800080c2c30c x6 : 0000000000000000 x5 : 0000000000000001 x4 : ffff8000800173e0 x3 : ffff8000802595f4 x2 : 0000000000001000 x1 : 0000000000000300 x0 : 0000000000000000 Call trace: arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] (P) apply_to_pte_range mm/memory.c:2936 [inline] (P) apply_to_pmd_range mm/memory.c:2985 [inline] (P) apply_to_pud_range mm/memory.c:3021 [inline] (P) apply_to_p4d_range mm/memory.c:3057 [inline] (P) __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 (P) apply_to_page_range+0x4c/0x64 mm/memory.c:3112 __change_memory_common+0xac/0x3f8 arch/arm64/mm/pageattr.c:64 set_memory_valid+0x68/0x7c arch/arm64/mm/pageattr.c:-1 kfence_protect_page arch/arm64/include/asm/kfence.h:17 [inline] kfence_unprotect mm/kfence/core.c:252 [inline] kfence_guarded_alloc+0x2e8/0xb08 mm/kfence/core.c:459 __kfence_alloc+0x394/0x45c mm/kfence/core.c:1138 kfence_alloc include/linux/kfence.h:129 [inline] slab_alloc_node mm/slub.c:4180 [inline] kmem_cache_alloc_node_noprof+0x34c/0x3f4 mm/slub.c:4248 __alloc_skb+0x144/0x2ec net/core/skbuff.c:658 alloc_skb include/linux/skbuff.h:1340 [inline] lapb_send_control+0x48/0x320 net/lapb/lapb_subr.c:227 lapb_t1timer_expiry+0x490/0x864 net/lapb/lapb_timer.c:-1 call_timer_fn+0x1b4/0x818 kernel/time/timer.c:1789 expire_timers kernel/time/timer.c:1840 [inline] __run_timers kernel/time/timer.c:2414 [inline] __run_timer_base+0x51c/0x76c kernel/time/timer.c:2426 timer_expire_remote+0x78/0xa0 kernel/time/timer.c:2177 tmigr_handle_remote_cpu kernel/time/timer_migration.c:944 [inline] tmigr_handle_remote_up kernel/time/timer_migration.c:1035 [inline] __walk_groups kernel/time/timer_migration.c:533 [inline] tmigr_handle_remote+0x8d4/0x1340 kernel/time/timer_migration.c:1094 run_timer_softirq+0x190/0x194 kernel/time/timer.c:2449 handle_softirqs+0x328/0xc88 kernel/softirq.c:579 __do_softirq+0x14/0x20 kernel/softirq.c:613 ____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:81 call_on_irq_stack+0x24/0x30 arch/arm64/kernel/entry.S:891 do_softirq_own_stack+0x20/0x2c arch/arm64/kernel/irq.c:86 invoke_softirq kernel/softirq.c:460 [inline] __irq_exit_rcu+0x1b0/0x478 kernel/softirq.c:680 irq_exit_rcu+0x14/0x84 kernel/softirq.c:696 __el1_irq arch/arm64/kernel/entry-common.c:584 [inline] el1_interrupt+0x38/0x54 arch/arm64/kernel/entry-common.c:598 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:603 el1h_64_irq+0x6c/0x70 arch/arm64/kernel/entry.S:596 __daif_local_irq_enable arch/arm64/include/asm/irqflags.h:26 [inline] (P) arch_local_irq_enable+0x8/0xc arch/arm64/include/asm/irqflags.h:48 (P) cpuidle_idle_call kernel/sched/idle.c:185 [inline] do_idle+0x1d8/0x454 kernel/sched/idle.c:325 cpu_startup_entry+0x5c/0x74 kernel/sched/idle.c:423 secondary_start_kernel+0x1b8/0x1e0 arch/arm64/kernel/smp.c:279 __secondary_switched+0xc0/0xc4 arch/arm64/kernel/head.S:401 irq event stamp: 213449 hardirqs last enabled at (213448): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline] hardirqs last enabled at (213448): [] _raw_spin_unlock_irqrestore+0x38/0x98 kernel/locking/spinlock.c:194 hardirqs last disabled at (213449): [] kfence_guarded_alloc+0x190/0xb08 mm/kfence/core.c:438 softirqs last enabled at (213420): [] softirq_handle_end kernel/softirq.c:425 [inline] softirqs last enabled at (213420): [] handle_softirqs+0xaf8/0xc88 kernel/softirq.c:607 softirqs last disabled at (213427): [] __do_softirq+0x14/0x20 kernel/softirq.c:613 ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:67 queue_pte_barriers arch/arm64/include/asm/pgtable.h:67 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:67 __set_pte_complete arch/arm64/include/asm/pgtable.h:387 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:67 __set_pte arch/arm64/include/asm/pgtable.h:393 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:67 change_page_range+0x188/0x1cc arch/arm64/mm/pageattr.c:48 Modules linked in: CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 pstate: 404000c5 (nZcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : queue_pte_barriers arch/arm64/include/asm/pgtable.h:67 [inline] pc : __set_pte_complete arch/arm64/include/asm/pgtable.h:387 [inline] pc : __set_pte arch/arm64/include/asm/pgtable.h:393 [inline] pc : change_page_range+0x188/0x1cc arch/arm64/mm/pageattr.c:48 lr : queue_pte_barriers arch/arm64/include/asm/pgtable.h:67 [inline] lr : __set_pte_complete arch/arm64/include/asm/pgtable.h:387 [inline] lr : __set_pte arch/arm64/include/asm/pgtable.h:393 [inline] lr : change_page_range+0x188/0x1cc arch/arm64/mm/pageattr.c:48 sp : ffff8000800171a0 x29: ffff8000800171a0 x28: ffff0001ffa34fff x27: ffff0001fec50fe8 x26: ffff0001ffa35000 x25: ffff0001ffa34000 x24: ffff0001ffa34000 x23: 006800023fa34707 x22: 0040000000000001 x21: dfff800000000000 x20: 0000000000000300 x19: ffff0000c1a0db80 x18: 1fffe0003386f276 x17: ffff80010d10c000 x16: ffff80008adb82bc x15: 0000000000000001 x14: 1fffe00018341b70 x13: 0000000000000000 x12: 0000000000000000 x11: ffff600018341b71 x10: 0000000000ff0100 x9 : 0000000000000000 x8 : ffff0000c1a0db80 x7 : ffff800080c2c30c x6 : 0000000000000000 x5 : 0000000000000001 x4 : ffff8000800173e0 x3 : ffff800080ac62d0 x2 : ffff8000800173e0 x1 : 0000000000000300 x0 : 0000000000000000 Call trace: queue_pte_barriers arch/arm64/include/asm/pgtable.h:67 [inline] (P) __set_pte_complete arch/arm64/include/asm/pgtable.h:387 [inline] (P) __set_pte arch/arm64/include/asm/pgtable.h:393 [inline] (P) change_page_range+0x188/0x1cc arch/arm64/mm/pageattr.c:48 (P) apply_to_pte_range mm/memory.c:2941 [inline] apply_to_pmd_range mm/memory.c:2985 [inline] apply_to_pud_range mm/memory.c:3021 [inline] apply_to_p4d_range mm/memory.c:3057 [inline] __apply_to_page_range+0xd58/0x13e4 mm/memory.c:3093 apply_to_page_range+0x4c/0x64 mm/memory.c:3112 __change_memory_common+0xac/0x3f8 arch/arm64/mm/pageattr.c:64 set_memory_valid+0x68/0x7c arch/arm64/mm/pageattr.c:-1 kfence_protect_page arch/arm64/include/asm/kfence.h:17 [inline] kfence_unprotect mm/kfence/core.c:252 [inline] kfence_guarded_alloc+0x2e8/0xb08 mm/kfence/core.c:459 __kfence_alloc+0x394/0x45c mm/kfence/core.c:1138 kfence_alloc include/linux/kfence.h:129 [inline] slab_alloc_node mm/slub.c:4180 [inline] kmem_cache_alloc_node_noprof+0x34c/0x3f4 mm/slub.c:4248 __alloc_skb+0x144/0x2ec net/core/skbuff.c:658 alloc_skb include/linux/skbuff.h:1340 [inline] lapb_send_control+0x48/0x320 net/lapb/lapb_subr.c:227 lapb_t1timer_expiry+0x490/0x864 net/lapb/lapb_timer.c:-1 call_timer_fn+0x1b4/0x818 kernel/time/timer.c:1789 expire_timers kernel/time/timer.c:1840 [inline] __run_timers kernel/time/timer.c:2414 [inline] __run_timer_base+0x51c/0x76c kernel/time/timer.c:2426 timer_expire_remote+0x78/0xa0 kernel/time/timer.c:2177 tmigr_handle_remote_cpu kernel/time/timer_migration.c:944 [inline] tmigr_handle_remote_up kernel/time/timer_migration.c:1035 [inline] __walk_groups kernel/time/timer_migration.c:533 [inline] tmigr_handle_remote+0x8d4/0x1340 kernel/time/timer_migration.c:1094 run_timer_softirq+0x190/0x194 kernel/time/timer.c:2449 handle_softirqs+0x328/0xc88 kernel/softirq.c:579 __do_softirq+0x14/0x20 kernel/softirq.c:613 ____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:81 call_on_irq_stack+0x24/0x30 arch/arm64/kernel/entry.S:891 do_softirq_own_stack+0x20/0x2c arch/arm64/kernel/irq.c:86 invoke_softirq kernel/softirq.c:460 [inline] __irq_exit_rcu+0x1b0/0x478 kernel/softirq.c:680 irq_exit_rcu+0x14/0x84 kernel/softirq.c:696 __el1_irq arch/arm64/kernel/entry-common.c:584 [inline] el1_interrupt+0x38/0x54 arch/arm64/kernel/entry-common.c:598 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:603 el1h_64_irq+0x6c/0x70 arch/arm64/kernel/entry.S:596 __daif_local_irq_enable arch/arm64/include/asm/irqflags.h:26 [inline] (P) arch_local_irq_enable+0x8/0xc arch/arm64/include/asm/irqflags.h:48 (P) cpuidle_idle_call kernel/sched/idle.c:185 [inline] do_idle+0x1d8/0x454 kernel/sched/idle.c:325 cpu_startup_entry+0x5c/0x74 kernel/sched/idle.c:423 secondary_start_kernel+0x1b8/0x1e0 arch/arm64/kernel/smp.c:279 __secondary_switched+0xc0/0xc4 arch/arm64/kernel/head.S:401 irq event stamp: 213449 hardirqs last enabled at (213448): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline] hardirqs last enabled at (213448): [] _raw_spin_unlock_irqrestore+0x38/0x98 kernel/locking/spinlock.c:194 hardirqs last disabled at (213449): [] kfence_guarded_alloc+0x190/0xb08 mm/kfence/core.c:438 softirqs last enabled at (213420): [] softirq_handle_end kernel/softirq.c:425 [inline] softirqs last enabled at (213420): [] handle_softirqs+0xaf8/0xc88 kernel/softirq.c:607 softirqs last disabled at (213427): [] __do_softirq+0x14/0x20 kernel/softirq.c:613 ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pte_range mm/memory.c:2936 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pmd_range mm/memory.c:2985 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pud_range mm/memory.c:3021 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_p4d_range mm/memory.c:3057 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 Modules linked in: CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] pc : apply_to_pte_range mm/memory.c:2936 [inline] pc : apply_to_pmd_range mm/memory.c:2985 [inline] pc : apply_to_pud_range mm/memory.c:3021 [inline] pc : apply_to_p4d_range mm/memory.c:3057 [inline] pc : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 lr : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] lr : apply_to_pte_range mm/memory.c:2936 [inline] lr : apply_to_pmd_range mm/memory.c:2985 [inline] lr : apply_to_pud_range mm/memory.c:3021 [inline] lr : apply_to_p4d_range mm/memory.c:3057 [inline] lr : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 sp : ffff800080016f60 x29: ffff800080017080 x28: ffff0001ffa34fff x27: ffff0001fec50fe8 x26: ffff0001ffa35000 x25: dfff800000000000 x24: ffff0001ffa34000 x23: ffff0001fea8e1a0 x22: 0000000000000500 x21: ffff0000c1a0db80 x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386f276 x17: ffff80010d10c000 x16: ffff80008051bab8 x15: 0000000000000001 x14: 1ffff00012dfb9a3 x13: 0000000000000000 x12: 0000000000000000 x11: ffff700012dfb9a4 x10: 0000000000ff0100 x9 : 0000000000000000 x8 : ffff0000c1a0db80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 x5 : 0000000000000001 x4 : ffff800080017160 x3 : ffff8000802595f4 x2 : 0000000000001000 x1 : 0000000000000500 x0 : 0000000000000000 Call trace: arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] (P) apply_to_pte_range mm/memory.c:2936 [inline] (P) apply_to_pmd_range mm/memory.c:2985 [inline] (P) apply_to_pud_range mm/memory.c:3021 [inline] (P) apply_to_p4d_range mm/memory.c:3057 [inline] (P) __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 (P) apply_to_page_range+0x4c/0x64 mm/memory.c:3112 __change_memory_common+0xac/0x3f8 arch/arm64/mm/pageattr.c:64 set_memory_valid+0x68/0x7c arch/arm64/mm/pageattr.c:-1 kfence_protect_page arch/arm64/include/asm/kfence.h:17 [inline] kfence_protect mm/kfence/core.c:247 [inline] kfence_guarded_free+0x278/0x5a8 mm/kfence/core.c:565 __kfence_free+0x104/0x198 mm/kfence/core.c:1187 kfence_free include/linux/kfence.h:187 [inline] slab_free_hook mm/slub.c:2318 [inline] slab_free_freelist_hook mm/slub.c:2394 [inline] slab_free_bulk mm/slub.c:4666 [inline] kmem_cache_free_bulk+0x490/0x51c mm/slub.c:5243 kfree_skb_list_reason+0x3ac/0x418 net/core/skbuff.c:1264 __dev_xmit_skb net/core/dev.c:4093 [inline] __dev_queue_xmit+0x1ac8/0x31f0 net/core/dev.c:4595 dev_queue_xmit include/linux/netdevice.h:3350 [inline] lapbeth_data_transmit+0x1fc/0x2a8 drivers/net/wan/lapbether.c:260 lapb_data_transmit+0x8c/0xb0 net/lapb/lapb_iface.c:447 lapb_transmit_buffer+0x160/0x208 net/lapb/lapb_out.c:149 lapb_send_control+0x21c/0x320 net/lapb/lapb_subr.c:251 lapb_t1timer_expiry+0x490/0x864 net/lapb/lapb_timer.c:-1 call_timer_fn+0x1b4/0x818 kernel/time/timer.c:1789 expire_timers kernel/time/timer.c:1840 [inline] __run_timers kernel/time/timer.c:2414 [inline] __run_timer_base+0x51c/0x76c kernel/time/timer.c:2426 timer_expire_remote+0x78/0xa0 kernel/time/timer.c:2177 tmigr_handle_remote_cpu kernel/time/timer_migration.c:944 [inline] tmigr_handle_remote_up kernel/time/timer_migration.c:1035 [inline] __walk_groups kernel/time/timer_migration.c:533 [inline] tmigr_handle_remote+0x8d4/0x1340 kernel/time/timer_migration.c:1094 run_timer_softirq+0x190/0x194 kernel/time/timer.c:2449 handle_softirqs+0x328/0xc88 kernel/softirq.c:579 __do_softirq+0x14/0x20 kernel/softirq.c:613 ____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:81 call_on_irq_stack+0x24/0x30 arch/arm64/kernel/entry.S:891 do_softirq_own_stack+0x20/0x2c arch/arm64/kernel/irq.c:86 invoke_softirq kernel/softirq.c:460 [inline] __irq_exit_rcu+0x1b0/0x478 kernel/softirq.c:680 irq_exit_rcu+0x14/0x84 kernel/softirq.c:696 __el1_irq arch/arm64/kernel/entry-common.c:584 [inline] el1_interrupt+0x38/0x54 arch/arm64/kernel/entry-common.c:598 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:603 el1h_64_irq+0x6c/0x70 arch/arm64/kernel/entry.S:596 __daif_local_irq_enable arch/arm64/include/asm/irqflags.h:26 [inline] (P) arch_local_irq_enable+0x8/0xc arch/arm64/include/asm/irqflags.h:48 (P) cpuidle_idle_call kernel/sched/idle.c:185 [inline] do_idle+0x1d8/0x454 kernel/sched/idle.c:325 cpu_startup_entry+0x5c/0x74 kernel/sched/idle.c:423 secondary_start_kernel+0x1b8/0x1e0 arch/arm64/kernel/smp.c:279 __secondary_switched+0xc0/0xc4 arch/arm64/kernel/head.S:401 irq event stamp: 213461 hardirqs last enabled at (213460): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline] hardirqs last enabled at (213460): [] _raw_spin_unlock_irqrestore+0x38/0x98 kernel/locking/spinlock.c:194 hardirqs last disabled at (213461): [] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:511 softirqs last enabled at (213420): [] softirq_handle_end kernel/softirq.c:425 [inline] softirqs last enabled at (213420): [] handle_softirqs+0xaf8/0xc88 kernel/softirq.c:607 softirqs last disabled at (213427): [] __do_softirq+0x14/0x20 kernel/softirq.c:613 ---[ end trace 0000000000000000 ]--- [ 31.467354][ C1] sp : ffff800097717640 [ 31.468441][ C1] x29: ffff800097717760 x28: ffff0001ffbd0fff x27: ffff0001fec50fe8 [ 31.470556][ C1] x26: ffff0001ffbd1000 x25: dfff800000000000 x24: ffff0001ffbd0000 [ 31.472660][ C1] x23: ffff0001fea8ee80 x22: 0000000000000100 x21: ffff0000c1b95b80 [ 31.474774][ C1] x20: 100000023ea8e403 x19: 0000000000000001 x18: 0000000000000000 [ 31.476988][ C1] x17: ffff0001fea8b870 x16: ffff80008051bab8 x15: 0000000000000001 [ 31.479133][ C1] x14: 1ffff00012dfb9c9 x13: 0000000000000000 x12: 0000000000000000 [ 31.481309][ C1] x11: ffff700012dfb9ca x10: 0000000000ff0100 x9 : 0000000000000000 [ 31.483421][ C1] x8 : ffff0000c1b95b80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 31.485534][ C1] x5 : 0000000000000001 x4 : ffff800097717840 x3 : ffff8000802595f4 [ 31.487653][ C1] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 31.489757][ C1] Call trace: [ 31.490602][ C1] __apply_to_page_range+0xdb4/0x13e4 (P) [ 31.492090][ C1] apply_to_page_range+0x4c/0x64 [ 31.493395][ C1] __change_memory_common+0xac/0x3f8 [ 31.494777][ C1] set_memory_valid+0x68/0x7c [ 31.496005][ C1] kfence_guarded_free+0x278/0x5a8 [ 31.497359][ C1] __kfence_free+0x104/0x198 [ 31.498586][ C1] kfree+0x268/0x474 [ 31.499606][ C1] slab_free_after_rcu_debug+0x78/0x2f4 [ 31.501055][ C1] rcu_core+0x848/0x17a4 [ 31.502175][ C1] rcu_core_si+0x10/0x1c [ 31.503298][ C1] handle_softirqs+0x328/0xc88 [ 31.504552][ C1] run_ksoftirqd+0x70/0xc0 [ 31.505701][ C1] smpboot_thread_fn+0x4d8/0x9cc [ 31.506995][ C1] kthread+0x5fc/0x75c [ 31.508062][ C1] ret_from_fork+0x10/0x20 [ 31.509209][ C1] irq event stamp: 634037 [ 31.510345][ C1] hardirqs last enabled at (634036): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 31.513075][ C1] hardirqs last disabled at (634037): [] el1_dbg+0x24/0x80 [ 31.515378][ C1] softirqs last enabled at (633504): [] handle_softirqs+0xaf8/0xc88 [ 31.517917][ C1] softirqs last disabled at (633507): [] run_ksoftirqd+0x70/0xc0 [ 31.520341][ C1] ---[ end trace 0000000000000000 ]--- [ 31.569906][ C1] ------------[ cut here ]------------ [ 31.569936][ C1] WARNING: CPU: 1 PID: 23 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 31.574209][ C1] Modules linked in: [ 31.575214][ C1] CPU: 1 UID: 0 PID: 23 Comm: ksoftirqd/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 31.578512][ C1] Tainted: [W]=WARN [ 31.579501][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 31.582114][ C1] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 31.584169][ C1] pc : __apply_to_page_range+0xdb4/0x13e4 [ 31.585688][ C1] lr : __apply_to_page_range+0xdb4/0x13e4 [ 31.587185][ C1] sp : ffff800097717700 [ 31.588277][ C1] x29: ffff800097717820 x28: ffff0001ffbd2fff x27: ffff0001fec50fe8 [ 31.590376][ C1] x26: ffff0001ffbd3000 x25: dfff800000000000 x24: ffff0001ffbd2000 [ 31.592473][ C1] x23: ffff0001fea8ee90 x22: 0000000000000100 x21: ffff0000c1b95b80 [ 31.594606][ C1] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386f276 [ 31.596717][ C1] x17: ffff80008f31e000 x16: ffff80008051bab8 x15: 0000000000000001 [ 31.598827][ C1] x14: 1ffff00012dfb930 x13: 0000000000000000 x12: 0000000000000000 [ 31.600938][ C1] x11: ffff700012dfb931 x10: 0000000000ff0100 x9 : 0000000000000000 [ 31.603066][ C1] x8 : ffff0000c1b95b80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 31.605172][ C1] x5 : 0000000000000001 x4 : ffff800097717900 x3 : ffff8000802595f4 [ 31.607284][ C1] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 31.609406][ C1] Call trace: [ 31.610264][ C1] __apply_to_page_range+0xdb4/0x13e4 (P) [ 31.611771][ C1] apply_to_page_range+0x4c/0x64 [ 31.613064][ C1] __change_memory_common+0xac/0x3f8 [ 31.614501][ C1] set_memory_valid+0x68/0x7c [ 31.615750][ C1] kfence_guarded_free+0x278/0x5a8 [ 31.617107][ C1] rcu_guarded_free+0x4c/0x5c [ 31.618345][ C1] rcu_core+0x848/0x17a4 [ 31.619468][ C1] rcu_core_si+0x10/0x1c [ 31.620586][ C1] handle_softirqs+0x328/0xc88 [ 31.621835][ C1] run_ksoftirqd+0x70/0xc0 [ 31.622990][ C1] smpboot_thread_fn+0x4d8/0x9cc [ 31.624374][ C1] kthread+0x5fc/0x75c [ 31.625446][ C1] ret_from_fork+0x10/0x20 [ 31.626613][ C1] irq event stamp: 635271 [ 31.627737][ C1] hardirqs last enabled at (635270): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 31.630488][ C1] hardirqs last disabled at (635271): [] el1_dbg+0x24/0x80 [ 31.632799][ C1] softirqs last enabled at (634826): [] handle_softirqs+0xaf8/0xc88 [ 31.635331][ C1] softirqs last disabled at (634831): [] run_ksoftirqd+0x70/0xc0 [ 31.637746][ C1] ---[ end trace 0000000000000000 ]--- [ 31.687407][ C0] ------------[ cut here ]------------ [ 31.687437][ C0] WARNING: CPU: 0 PID: 15 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 31.691761][ C0] Modules linked in: [ 31.692784][ C0] CPU: 0 UID: 0 PID: 15 Comm: ksoftirqd/0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 31.696182][ C0] Tainted: [W]=WARN [ 31.697176][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 31.699799][ C0] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 31.701856][ C0] pc : __apply_to_page_range+0xdb4/0x13e4 [ 31.703365][ C0] lr : __apply_to_page_range+0xdb4/0x13e4 [ 31.704847][ C0] sp : ffff800097687700 [ 31.705908][ C0] x29: ffff800097687820 x28: ffff0001ffbd4fff x27: ffff0001fec50fe8 [ 31.707993][ C0] x26: ffff0001ffbd5000 x25: dfff800000000000 x24: ffff0001ffbd4000 [ 31.710120][ C0] x23: ffff0001fea8eea0 x22: 0000000000000100 x21: ffff0000c19f3d00 [ 31.712243][ C0] x20: 100000023ea8e403 x19: 0000000000000001 x18: 0000000000000000 [ 31.714357][ C0] x17: ffff80010d0e8000 x16: ffff80008051bab8 x15: 0000000000000001 [ 31.716447][ C0] x14: 1ffff00012dfb944 x13: 0000000000000000 x12: 0000000000000000 [ 31.718547][ C0] x11: ffff700012dfb945 x10: 0000000000ff0100 x9 : 0000000000000000 [ 31.720645][ C0] x8 : ffff0000c19f3d00 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 31.722724][ C0] x5 : 0000000000000001 x4 : ffff800097687900 x3 : ffff8000802595f4 [ 31.724832][ C0] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 31.726935][ C0] Call trace: [ 31.727798][ C0] __apply_to_page_range+0xdb4/0x13e4 (P) [ 31.729303][ C0] apply_to_page_range+0x4c/0x64 [ 31.730580][ C0] __change_memory_common+0xac/0x3f8 [ 31.731992][ C0] set_memory_valid+0x68/0x7c [ 31.733233][ C0] kfence_guarded_free+0x278/0x5a8 [ 31.734580][ C0] rcu_guarded_free+0x4c/0x5c [ 31.735789][ C0] rcu_core+0x848/0x17a4 [ 31.736932][ C0] rcu_core_si+0x10/0x1c [ 31.738053][ C0] handle_softirqs+0x328/0xc88 [ 31.739355][ C0] run_ksoftirqd+0x70/0xc0 [ 31.740508][ C0] smpboot_thread_fn+0x4d8/0x9cc [ 31.741793][ C0] kthread+0x5fc/0x75c [ 31.742855][ C0] ret_from_fork+0x10/0x20 [ 31.744002][ C0] irq event stamp: 617215 [ 31.745126][ C0] hardirqs last enabled at (617214): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 31.747920][ C0] hardirqs last disabled at (617215): [] el1_dbg+0x24/0x80 [ 31.750209][ C0] softirqs last enabled at (616734): [] handle_softirqs+0xaf8/0xc88 [ 31.752726][ C0] softirqs last disabled at (616737): [] run_ksoftirqd+0x70/0xc0 [ 31.755112][ C0] ---[ end trace 0000000000000000 ]--- [ 31.809388][ C1] ------------[ cut here ]------------ [ 31.809419][ C1] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 31.813767][ C1] Modules linked in: [ 31.814786][ C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 31.818055][ C1] Tainted: [W]=WARN [ 31.819040][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 31.821669][ C1] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 31.823681][ C1] pc : __apply_to_page_range+0xdb4/0x13e4 [ 31.825162][ C1] lr : __apply_to_page_range+0xdb4/0x13e4 [ 31.826653][ C1] sp : ffff800080017900 [ 31.827759][ C1] x29: ffff800080017a20 x28: ffff0001ffbd6fff x27: ffff0001fec50fe8 [ 31.829854][ C1] x26: ffff0001ffbd7000 x25: dfff800000000000 x24: ffff0001ffbd6000 [ 31.831961][ C1] x23: ffff0001fea8eeb0 x22: 0000000000000100 x21: ffff0000c1a0db80 [ 31.834103][ C1] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386f276 [ 31.836222][ C1] x17: ffff80010d10c000 x16: ffff80008051bab8 x15: 0000000000000001 [ 31.838352][ C1] x14: 1ffff00012dfba1c x13: 0000000000000000 x12: 0000000000000000 [ 31.840517][ C1] x11: ffff700012dfba1d x10: 0000000000ff0100 x9 : 0000000000000000 [ 31.842675][ C1] x8 : ffff0000c1a0db80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 31.844799][ C1] x5 : 0000000000000001 x4 : ffff800080017b00 x3 : ffff8000802595f4 [ 31.846942][ C1] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 31.849037][ C1] Call trace: [ 31.849910][ C1] __apply_to_page_range+0xdb4/0x13e4 (P) [ 31.851487][ C1] apply_to_page_range+0x4c/0x64 [ 31.852773][ C1] __change_memory_common+0xac/0x3f8 [ 31.854185][ C1] set_memory_valid+0x68/0x7c [ 31.855435][ C1] kfence_guarded_free+0x278/0x5a8 [ 31.856764][ C1] __kfence_free+0x104/0x198 [ 31.857959][ C1] kfree+0x268/0x474 [ 31.858978][ C1] slab_free_after_rcu_debug+0x78/0x2f4 [ 31.860427][ C1] rcu_core+0x848/0x17a4 [ 31.861540][ C1] rcu_core_si+0x10/0x1c [ 31.862682][ C1] handle_softirqs+0x328/0xc88 [ 31.863939][ C1] __do_softirq+0x14/0x20 [ 31.865079][ C1] ____do_softirq+0x14/0x20 [ 31.866258][ C1] call_on_irq_stack+0x24/0x30 [ 31.867530][ C1] do_softirq_own_stack+0x20/0x2c [ 31.868846][ C1] __irq_exit_rcu+0x1b0/0x478 [ 31.870112][ C1] irq_exit_rcu+0x14/0x84 [ 31.871247][ C1] el1_interrupt+0x38/0x54 [ 31.872410][ C1] el1h_64_irq_handler+0x18/0x24 [ 31.873729][ C1] el1h_64_irq+0x6c/0x70 [ 31.874841][ C1] arch_local_irq_enable+0x8/0xc (P) [ 31.876262][ C1] do_idle+0x1d8/0x454 [ 31.877336][ C1] cpu_startup_entry+0x5c/0x74 [ 31.878630][ C1] secondary_start_kernel+0x1b8/0x1e0 [ 31.880005][ C1] __secondary_switched+0xc0/0xc4 [ 31.881353][ C1] irq event stamp: 190947 [ 31.882481][ C1] hardirqs last enabled at (190946): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 31.885267][ C1] hardirqs last disabled at (190947): [] el1_dbg+0x24/0x80 [ 31.887617][ C1] softirqs last enabled at (190900): [] handle_softirqs+0xaf8/0xc88 [ 31.890208][ C1] softirqs last disabled at (190913): [] __do_softirq+0x14/0x20 [ 31.892608][ C1] ---[ end trace 0000000000000000 ]--- [ 32.660376][ C1] ------------[ cut here ]------------ [ 32.660414][ C1] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 32.664734][ C1] Modules linked in: [ 32.665730][ C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 32.668984][ C1] Tainted: [W]=WARN [ 32.669942][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 32.672536][ C1] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 32.674552][ C1] pc : __apply_to_page_range+0xdb4/0x13e4 [ 32.676067][ C1] lr : __apply_to_page_range+0xdb4/0x13e4 [ 32.677604][ C1] sp : ffff800080017900 [ 32.678683][ C1] x29: ffff800080017a20 x28: ffff0001ffbe2fff x27: ffff0001fec50fe8 [ 32.680821][ C1] x26: ffff0001ffbe3000 x25: dfff800000000000 x24: ffff0001ffbe2000 [ 32.682919][ C1] x23: ffff0001fea8ef10 x22: 0000000000000100 x21: ffff0000c1a0db80 [ 32.685035][ C1] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386f276 [ 32.687138][ C1] x17: 0000000000000000 x16: ffff80008051bab8 x15: 0000000000000001 [ 32.689250][ C1] x14: 1ffff00012dfb9c9 x13: 0000000000000000 x12: 0000000000000000 [ 32.691357][ C1] x11: ffff700012dfb9ca x10: 0000000000ff0100 x9 : 0000000000000000 [ 32.693473][ C1] x8 : ffff0000c1a0db80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 32.695593][ C1] x5 : 0000000000000001 x4 : ffff800080017b00 x3 : ffff8000802595f4 [ 32.697682][ C1] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 32.699824][ C1] Call trace: [ 32.700702][ C1] __apply_to_page_range+0xdb4/0x13e4 (P) [ 32.702205][ C1] apply_to_page_range+0x4c/0x64 [ 32.703522][ C1] __change_memory_common+0xac/0x3f8 [ 32.704931][ C1] set_memory_valid+0x68/0x7c [ 32.706150][ C1] kfence_guarded_free+0x278/0x5a8 [ 32.707510][ C1] __kfence_free+0x104/0x198 [ 32.708709][ C1] kfree+0x268/0x474 [ 32.709717][ C1] slab_free_after_rcu_debug+0x78/0x2f4 [ 32.711149][ C1] rcu_core+0x848/0x17a4 [ 32.712259][ C1] rcu_core_si+0x10/0x1c [ 32.713383][ C1] handle_softirqs+0x328/0xc88 [ 32.714629][ C1] __do_softirq+0x14/0x20 [ 32.715770][ C1] ____do_softirq+0x14/0x20 [ 32.716942][ C1] call_on_irq_stack+0x24/0x30 [ 32.718199][ C1] do_softirq_own_stack+0x20/0x2c [ 32.719516][ C1] __irq_exit_rcu+0x1b0/0x478 [ 32.720734][ C1] irq_exit_rcu+0x14/0x84 [ 32.721868][ C1] el1_interrupt+0x38/0x54 [ 32.723023][ C1] el1h_64_irq_handler+0x18/0x24 [ 32.724353][ C1] el1h_64_irq+0x6c/0x70 [ 32.725481][ C1] arch_local_irq_enable+0x8/0xc (P) [ 32.726862][ C1] do_idle+0x1d8/0x454 [ 32.727923][ C1] cpu_startup_entry+0x5c/0x74 [ 32.729172][ C1] secondary_start_kernel+0x1b8/0x1e0 [ 32.730620][ C1] __secondary_switched+0xc0/0xc4 [ 32.731954][ C1] irq event stamp: 195921 [ 32.733117][ C1] hardirqs last enabled at (195920): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 32.735915][ C1] hardirqs last disabled at (195921): [] el1_dbg+0x24/0x80 [ 32.738314][ C1] softirqs last enabled at (195018): [] handle_softirqs+0xaf8/0xc88 [ 32.740846][ C1] softirqs last disabled at (195037): [] __do_softirq+0x14/0x20 [ 32.743267][ C1] ---[ end trace 0000000000000000 ]--- [ 33.049557][ C0] ------------[ cut here ]------------ [ 33.049594][ C0] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 33.053784][ C0] Modules linked in: [ 33.054796][ C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 33.058023][ C0] Tainted: [W]=WARN [ 33.058996][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 33.061608][ C0] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 33.063649][ C0] pc : __apply_to_page_range+0xdb4/0x13e4 [ 33.065130][ C0] lr : __apply_to_page_range+0xdb4/0x13e4 [ 33.066606][ C0] sp : ffff800080007900 [ 33.067669][ C0] x29: ffff800080007a20 x28: ffff0001ffbe8fff x27: ffff0001fec50fe8 [ 33.069767][ C0] x26: ffff0001ffbe9000 x25: dfff800000000000 x24: ffff0001ffbe8000 [ 33.071844][ C0] x23: ffff0001fea8ef40 x22: 0000000000000100 x21: ffff80008f346040 [ 33.073995][ C0] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386aa76 [ 33.076110][ C0] x17: ffff80010d0e8000 x16: ffff80008051bab8 x15: 0000000000000001 [ 33.078287][ C0] x14: 1ffff00012dfba1c x13: 0000000000000000 x12: 0000000000000000 [ 33.080402][ C0] x11: ffff700012dfba1d x10: 0000000000ff0100 x9 : 0000000000000000 [ 33.082513][ C0] x8 : ffff80008f346040 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 33.084569][ C0] x5 : 0000000000000001 x4 : ffff800080007b00 x3 : ffff8000802595f4 [ 33.086592][ C0] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 33.088619][ C0] Call trace: [ 33.089442][ C0] __apply_to_page_range+0xdb4/0x13e4 (P) [ 33.090891][ C0] apply_to_page_range+0x4c/0x64 [ 33.092144][ C0] __change_memory_common+0xac/0x3f8 [ 33.093501][ C0] set_memory_valid+0x68/0x7c [ 33.094687][ C0] kfence_guarded_free+0x278/0x5a8 [ 33.095992][ C0] __kfence_free+0x104/0x198 [ 33.097191][ C0] kfree+0x268/0x474 [ 33.098217][ C0] slab_free_after_rcu_debug+0x78/0x2f4 [ 33.099697][ C0] rcu_core+0x848/0x17a4 [ 33.100817][ C0] rcu_core_si+0x10/0x1c [ 33.101925][ C0] handle_softirqs+0x328/0xc88 [ 33.103188][ C0] __do_softirq+0x14/0x20 [ 33.104343][ C0] ____do_softirq+0x14/0x20 [ 33.105529][ C0] call_on_irq_stack+0x24/0x30 [ 33.106789][ C0] do_softirq_own_stack+0x20/0x2c [ 33.108119][ C0] __irq_exit_rcu+0x1b0/0x478 [ 33.109374][ C0] irq_exit_rcu+0x14/0x84 [ 33.110514][ C0] el1_interrupt+0x38/0x54 [ 33.111677][ C0] el1h_64_irq_handler+0x18/0x24 [ 33.112967][ C0] el1h_64_irq+0x6c/0x70 [ 33.114068][ C0] arch_local_irq_enable+0x8/0xc (P) [ 33.115431][ C0] do_idle+0x1d8/0x454 [ 33.116504][ C0] cpu_startup_entry+0x5c/0x74 [ 33.117756][ C0] rest_init+0x2d8/0x2f4 [ 33.118862][ C0] start_kernel+0x44c/0x4a8 [ 33.120070][ C0] __primary_switched+0x8c/0x94 [ 33.121414][ C0] irq event stamp: 148159 [ 33.122610][ C0] hardirqs last enabled at (148158): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 33.125533][ C0] hardirqs last disabled at (148159): [] el1_dbg+0x24/0x80 [ 33.127916][ C0] softirqs last enabled at (148110): [] handle_softirqs+0xaf8/0xc88 [ 33.130506][ C0] softirqs last disabled at (148125): [] __do_softirq+0x14/0x20 [ 33.133006][ C0] ---[ end trace 0000000000000000 ]--- [ 34.339460][ C1] ------------[ cut here ]------------ [ 34.339494][ C1] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 34.343749][ C1] Modules linked in: [ 34.344732][ C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 34.347953][ C1] Tainted: [W]=WARN [ 34.348912][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 34.351483][ C1] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 34.353553][ C1] pc : __apply_to_page_range+0xdb4/0x13e4 [ 34.355048][ C1] lr : __apply_to_page_range+0xdb4/0x13e4 [ 34.356539][ C1] sp : ffff800080017120 [ 34.357628][ C1] x29: ffff800080017240 x28: ffff0001ffbf8fff x27: ffff0001fec50fe8 [ 34.359758][ C1] x26: ffff0001ffbf9000 x25: dfff800000000000 x24: ffff0001ffbf8000 [ 34.361843][ C1] x23: ffff0001fea8efc0 x22: 0000000000000500 x21: ffff0000c1a0db80 [ 34.363944][ C1] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386f276 [ 34.366091][ C1] x17: 0000000000a000ae x16: ffff80008051bab8 x15: 0000000000000001 [ 34.368160][ C1] x14: 1ffff00012dfb9ee x13: 0000000000000000 x12: 0000000000000000 [ 34.370253][ C1] x11: ffff700012dfb9ef x10: 0000000000ff0100 x9 : 0000000000000000 [ 34.372337][ C1] x8 : ffff0000c1a0db80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 34.374440][ C1] x5 : 0000000000000001 x4 : ffff800080017320 x3 : ffff8000802595f4 [ 34.376520][ C1] x2 : 0000000000001000 x1 : 0000000000000500 x0 : 0000000000000000 [ 34.378620][ C1] Call trace: [ 34.379481][ C1] __apply_to_page_range+0xdb4/0x13e4 (P) [ 34.381016][ C1] apply_to_page_range+0x4c/0x64 [ 34.382330][ C1] __change_memory_common+0xac/0x3f8 [ 34.383721][ C1] set_memory_valid+0x68/0x7c [ 34.384922][ C1] kfence_guarded_free+0x278/0x5a8 [ 34.386253][ C1] __kfence_free+0x104/0x198 [ 34.387450][ C1] kmem_cache_free+0x250/0x550 [ 34.388663][ C1] kfree_skbmem+0x14c/0x1dc [ 34.389843][ C1] consume_skb+0xb8/0x130 [ 34.390957][ C1] ifb_xmit+0x174/0x53c [ 34.392025][ C1] dev_hard_start_xmit+0x2b0/0x8ac [ 34.393361][ C1] sch_direct_xmit+0x1fc/0x468 [ 34.394608][ C1] __dev_queue_xmit+0x13b4/0x31f0 [ 34.395907][ C1] lapbeth_data_transmit+0x1fc/0x2a8 [ 34.397298][ C1] lapb_data_transmit+0x8c/0xb0 [ 34.398566][ C1] lapb_transmit_buffer+0x160/0x208 [ 34.399908][ C1] lapb_send_control+0x21c/0x320 [ 34.401213][ C1] lapb_t1timer_expiry+0x490/0x864 [ 34.402551][ C1] call_timer_fn+0x1b4/0x818 [ 34.403745][ C1] __run_timer_base+0x51c/0x76c [ 34.405013][ C1] run_timer_softirq+0xcc/0x194 [ 34.406271][ C1] handle_softirqs+0x328/0xc88 [ 34.407525][ C1] __do_softirq+0x14/0x20 [ 34.408652][ C1] ____do_softirq+0x14/0x20 [ 34.409845][ C1] call_on_irq_stack+0x24/0x30 [ 34.411260][ C1] do_softirq_own_stack+0x20/0x2c [ 34.412580][ C1] __irq_exit_rcu+0x1b0/0x478 [ 34.413898][ C1] irq_exit_rcu+0x14/0x84 [ 34.415035][ C1] el1_interrupt+0x38/0x54 [ 34.416322][ C1] el1h_64_irq_handler+0x18/0x24 [ 34.417657][ C1] el1h_64_irq+0x6c/0x70 [ 34.418812][ C1] arch_local_irq_enable+0x8/0xc (P) [ 34.420323][ C1] do_idle+0x1d8/0x454 [ 34.421499][ C1] cpu_startup_entry+0x5c/0x74 [ 34.422812][ C1] secondary_start_kernel+0x1b8/0x1e0 [ 34.424262][ C1] __secondary_switched+0xc0/0xc4 [ 34.425639][ C1] irq event stamp: 201541 [ 34.426876][ C1] hardirqs last enabled at (201540): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 34.429730][ C1] hardirqs last disabled at (201541): [] el1_dbg+0x24/0x80 [ 34.432258][ C1] softirqs last enabled at (201510): [] handle_softirqs+0xaf8/0xc88 [ 34.434874][ C1] softirqs last disabled at (201517): [] __do_softirq+0x14/0x20 [ 34.437423][ C1] ---[ end trace 0000000000000000 ]--- [ 34.659483][ C1] ------------[ cut here ]------------ [ 34.659517][ C1] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 34.663843][ C1] Modules linked in: [ 34.664816][ C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 34.668047][ C1] Tainted: [W]=WARN [ 34.669006][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 34.671619][ C1] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 34.673638][ C1] pc : __apply_to_page_range+0xdb4/0x13e4 [ 34.675092][ C1] lr : __apply_to_page_range+0xdb4/0x13e4 [ 34.676558][ C1] sp : ffff800080017160 [ 34.677602][ C1] x29: ffff800080017280 x28: ffff0001ffbfafff x27: ffff0001fec50fe8 [ 34.679626][ C1] x26: ffff0001ffbfb000 x25: dfff800000000000 x24: ffff0001ffbfa000 [ 34.681670][ C1] x23: ffff0001fea8efd0 x22: 0000000000000500 x21: ffff0000c1a0db80 [ 34.683716][ C1] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386f276 [ 34.685757][ C1] x17: ffff80010d10c000 x16: ffff80008051bab8 x15: 0000000000000001 [ 34.687788][ C1] x14: 1ffff00012dfb9ee x13: 0000000000000000 x12: 0000000000000000 [ 34.689820][ C1] x11: ffff700012dfb9ef x10: 0000000000ff0100 x9 : 0000000000000000 [ 34.691860][ C1] x8 : ffff0000c1a0db80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 34.693907][ C1] x5 : 0000000000000001 x4 : ffff800080017360 x3 : ffff8000802595f4 [ 34.695942][ C1] x2 : 0000000000001000 x1 : 0000000000000500 x0 : 0000000000000000 [ 34.698004][ C1] Call trace: [ 34.698823][ C1] __apply_to_page_range+0xdb4/0x13e4 (P) [ 34.700255][ C1] apply_to_page_range+0x4c/0x64 [ 34.701533][ C1] __change_memory_common+0xac/0x3f8 [ 34.702878][ C1] set_memory_valid+0x68/0x7c [ 34.704073][ C1] kfence_guarded_free+0x278/0x5a8 [ 34.705341][ C1] __kfence_free+0x104/0x198 [ 34.706509][ C1] kmem_cache_free_bulk+0x490/0x51c [ 34.707848][ C1] kfree_skb_list_reason+0x3ac/0x418 [ 34.709159][ C1] __dev_queue_xmit+0x1ac8/0x31f0 [ 34.710439][ C1] lapbeth_data_transmit+0x1fc/0x2a8 [ 34.711761][ C1] lapb_data_transmit+0x8c/0xb0 [ 34.712969][ C1] lapb_transmit_buffer+0x160/0x208 [ 34.714286][ C1] lapb_send_control+0x21c/0x320 [ 34.715529][ C1] lapb_t1timer_expiry+0x490/0x864 [ 34.716821][ C1] call_timer_fn+0x1b4/0x818 [ 34.717978][ C1] __run_timer_base+0x51c/0x76c [ 34.719187][ C1] run_timer_softirq+0xcc/0x194 [ 34.720429][ C1] handle_softirqs+0x328/0xc88 [ 34.721631][ C1] __do_softirq+0x14/0x20 [ 34.722717][ C1] ____do_softirq+0x14/0x20 [ 34.723880][ C1] call_on_irq_stack+0x24/0x30 [ 34.725070][ C1] do_softirq_own_stack+0x20/0x2c [ 34.726341][ C1] __irq_exit_rcu+0x1b0/0x478 [ 34.727515][ C1] irq_exit_rcu+0x14/0x84 [ 34.728600][ C1] el1_interrupt+0x38/0x54 [ 34.729759][ C1] el1h_64_irq_handler+0x18/0x24 [ 34.731086][ C1] el1h_64_irq+0x6c/0x70 [ 34.732180][ C1] arch_local_irq_enable+0x8/0xc (P) [ 34.733603][ C1] do_idle+0x1d8/0x454 [ 34.734645][ C1] cpu_startup_entry+0x5c/0x74 [ 34.735817][ C1] secondary_start_kernel+0x1b8/0x1e0 [ 34.737167][ C1] __secondary_switched+0xc0/0xc4 [ 34.738531][ C1] irq event stamp: 202017 [ 34.739705][ C1] hardirqs last enabled at (202016): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 34.742537][ C1] hardirqs last disabled at (202017): [] el1_dbg+0x24/0x80 [ 34.744834][ C1] softirqs last enabled at (201990): [] handle_softirqs+0xaf8/0xc88 [ 34.747451][ C1] softirqs last disabled at (201997): [] __do_softirq+0x14/0x20 [ 34.749898][ C1] ---[ end trace 0000000000000000 ]--- [ 35.635125][ C0] ------------[ cut here ]------------ [ 35.635160][ C0] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 35.639469][ C0] Modules linked in: [ 35.640483][ C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 35.643756][ C0] Tainted: [W]=WARN [ 35.644749][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 35.647366][ C0] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 35.649356][ C0] pc : __apply_to_page_range+0xdb4/0x13e4 [ 35.650826][ C0] lr : __apply_to_page_range+0xdb4/0x13e4 [ 35.652313][ C0] sp : ffff800080007160 [ 35.653375][ C0] x29: ffff800080007280 x28: ffff0001ffbfcfff x27: ffff0001fec50fe8 [ 35.655421][ C0] x26: ffff0001ffbfd000 x25: dfff800000000000 x24: ffff0001ffbfc000 [ 35.657474][ C0] x23: ffff0001fea8efe0 x22: 0000000000000100 x21: ffff80008f346040 [ 35.659529][ C0] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386aa76 [ 35.661577][ C0] x17: 0000000000020010 x16: ffff80008051bab8 x15: 0000000000000001 [ 35.663664][ C0] x14: 1ffff00012dfb9f5 x13: 0000000000000000 x12: 0000000000000000 [ 35.665703][ C0] x11: ffff700012dfb9f6 x10: 0000000000ff0100 x9 : 0000000000000000 [ 35.667754][ C0] x8 : ffff80008f346040 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 35.669847][ C0] x5 : 0000000000000001 x4 : ffff800080007360 x3 : ffff8000802595f4 [ 35.671914][ C0] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 35.673958][ C0] Call trace: [ 35.674820][ C0] __apply_to_page_range+0xdb4/0x13e4 (P) [ 35.676310][ C0] apply_to_page_range+0x4c/0x64 [ 35.677575][ C0] __change_memory_common+0xac/0x3f8 [ 35.678914][ C0] set_memory_valid+0x68/0x7c [ 35.680174][ C0] kfence_guarded_free+0x278/0x5a8 [ 35.681564][ C0] __kfence_free+0x104/0x198 [ 35.682764][ C0] kmem_cache_free+0x250/0x550 [ 35.683996][ C0] skb_free_head+0xbc/0x198 [ 35.685169][ C0] skb_release_data+0x66c/0x820 [ 35.686465][ C0] consume_skb+0xb0/0x130 [ 35.687609][ C0] arp_process+0xb78/0x12b8 [ 35.688777][ C0] NF_HOOK+0x2b8/0x34c [ 35.689828][ C0] arp_rcv+0x2a8/0x430 [ 35.690895][ C0] __netif_receive_skb_list_core+0x60c/0x67c [ 35.692451][ C0] netif_receive_skb_list_internal+0x74c/0x9e0 [ 35.694070][ C0] napi_complete_done+0x250/0x614 [ 35.695382][ C0] gve_napi_poll+0x1f4/0x3ac [ 35.696573][ C0] __napi_poll+0xb4/0x3fc [ 35.697722][ C0] net_rx_action+0x5d4/0xcc8 [ 35.698944][ C0] handle_softirqs+0x328/0xc88 [ 35.700181][ C0] __do_softirq+0x14/0x20 [ 35.701321][ C0] ____do_softirq+0x14/0x20 [ 35.702519][ C0] call_on_irq_stack+0x24/0x30 [ 35.703788][ C0] do_softirq_own_stack+0x20/0x2c [ 35.705130][ C0] __irq_exit_rcu+0x1b0/0x478 [ 35.706423][ C0] irq_exit_rcu+0x14/0x84 [ 35.707554][ C0] el1_interrupt+0x38/0x54 [ 35.708840][ C0] el1h_64_irq_handler+0x18/0x24 [ 35.710158][ C0] el1h_64_irq+0x6c/0x70 [ 35.711395][ C0] arch_local_irq_enable+0x8/0xc (P) [ 35.712856][ C0] do_idle+0x1d8/0x454 [ 35.713981][ C0] cpu_startup_entry+0x5c/0x74 [ 35.715282][ C0] rest_init+0x2d8/0x2f4 [ 35.716424][ C0] start_kernel+0x44c/0x4a8 [ 35.717647][ C0] __primary_switched+0x8c/0x94 [ 35.718996][ C0] irq event stamp: 244315 [ 35.720191][ C0] hardirqs last enabled at (244314): [] el1_interrupt+0x44/0x54 [ 35.722773][ C0] hardirqs last disabled at (244315): [] el1_dbg+0x24/0x80 [ 35.725183][ C0] softirqs last enabled at (244264): [] handle_softirqs+0xaf8/0xc88 [ 35.727886][ C0] softirqs last disabled at (244271): [] __do_softirq+0x14/0x20 [ 35.730452][ C0] ---[ end trace 0000000000000000 ]--- [ 36.524012][ C0] ------------[ cut here ]------------ [ 36.524052][ C0] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 36.528340][ C0] Modules linked in: [ 36.529387][ C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 36.532652][ C0] Tainted: [W]=WARN [ 36.533615][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 36.536245][ C0] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 36.538406][ C0] pc : __apply_to_page_range+0xdb4/0x13e4 [ 36.539889][ C0] lr : __apply_to_page_range+0xdb4/0x13e4 [ 36.541389][ C0] sp : ffff800080006b20 [ 36.542489][ C0] x29: ffff800080006c40 x28: ffff0001ffbfefff x27: ffff0001fec50fe8 [ 36.544585][ C0] x26: ffff0001ffbff000 x25: dfff800000000000 x24: ffff0001ffbfe000 [ 36.546649][ C0] x23: ffff0001fea8eff0 x22: 0000000000000100 x21: ffff80008f346040 [ 36.548769][ C0] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386aa76 [ 36.550847][ C0] x17: e7b60a0802048c05 x16: ffff80008051bab8 x15: 0000000000000001 [ 36.552938][ C0] x14: 1ffff00012dfb9f5 x13: 0000000000000000 x12: 0000000000000000 [ 36.555005][ C0] x11: ffff700012dfb9f6 x10: 0000000000ff0100 x9 : 0000000000000000 [ 36.557106][ C0] x8 : ffff80008f346040 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 36.559178][ C0] x5 : 0000000000000001 x4 : ffff800080006d20 x3 : ffff8000802595f4 [ 36.561277][ C0] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 36.563337][ C0] Call trace: [ 36.564169][ C0] __apply_to_page_range+0xdb4/0x13e4 (P) [ 36.565683][ C0] apply_to_page_range+0x4c/0x64 [ 36.567006][ C0] __change_memory_common+0xac/0x3f8 [ 36.568394][ C0] set_memory_valid+0x68/0x7c [ 36.569590][ C0] kfence_guarded_free+0x278/0x5a8 [ 36.570906][ C0] __kfence_free+0x104/0x198 [ 36.572138][ C0] kmem_cache_free+0x250/0x550 [ 36.573427][ C0] skb_free_head+0xbc/0x198 [ 36.574610][ C0] skb_release_data+0x66c/0x820 [ 36.575914][ C0] consume_skb+0xb0/0x130 [ 36.577058][ C0] tcp_rcv_state_process+0x1288/0x3630 [ 36.578521][ C0] tcp_v4_do_rcv+0x704/0xbc4 [ 36.579758][ C0] tcp_v4_rcv+0x1dd0/0x28b8 [ 36.580944][ C0] ip_protocol_deliver_rcu+0x1f8/0x484 [ 36.582359][ C0] ip_local_deliver_finish+0x27c/0x4e8 [ 36.583772][ C0] NF_HOOK+0x2c4/0x358 [ 36.584805][ C0] ip_local_deliver+0x120/0x194 [ 36.586053][ C0] ip_sublist_rcv+0x8a0/0xb68 [ 36.587253][ C0] ip_list_rcv+0x398/0x3ec [ 36.588402][ C0] __netif_receive_skb_list_core+0x4e4/0x67c [ 36.589968][ C0] netif_receive_skb_list_internal+0x74c/0x9e0 [ 36.591580][ C0] napi_complete_done+0x250/0x614 [ 36.592902][ C0] gve_napi_poll+0x1f4/0x3ac [ 36.594100][ C0] __napi_poll+0xb4/0x3fc [ 36.595282][ C0] net_rx_action+0x5d4/0xcc8 [ 36.596513][ C0] handle_softirqs+0x328/0xc88 [ 36.597793][ C0] __do_softirq+0x14/0x20 [ 36.598960][ C0] ____do_softirq+0x14/0x20 [ 36.600183][ C0] call_on_irq_stack+0x24/0x30 [ 36.601463][ C0] do_softirq_own_stack+0x20/0x2c [ 36.602801][ C0] __irq_exit_rcu+0x1b0/0x478 [ 36.604043][ C0] irq_exit_rcu+0x14/0x84 [ 36.605162][ C0] el1_interrupt+0x38/0x54 [ 36.606340][ C0] el1h_64_irq_handler+0x18/0x24 [ 36.607749][ C0] el1h_64_irq+0x6c/0x70 [ 36.608872][ C0] arch_local_irq_enable+0x8/0xc (P) [ 36.610339][ C0] do_idle+0x1d8/0x454 [ 36.611528][ C0] cpu_startup_entry+0x5c/0x74 [ 36.612853][ C0] rest_init+0x2d8/0x2f4 [ 36.614011][ C0] start_kernel+0x44c/0x4a8 [ 36.615232][ C0] __primary_switched+0x8c/0x94 [ 36.616570][ C0] irq event stamp: 245127 [ 36.617745][ C0] hardirqs last enabled at (245126): [] el1_interrupt+0x44/0x54 [ 36.620248][ C0] hardirqs last disabled at (245127): [] el1_dbg+0x24/0x80 [ 36.622564][ C0] softirqs last enabled at (245068): [] handle_softirqs+0xaf8/0xc88 [ 36.625167][ C0] softirqs last disabled at (245075): [] __do_softirq+0x14/0x20 [ 36.627703][ C0] ---[ end trace 0000000000000000 ]--- [ 36.629527][ C0] ------------[ cut here ]------------ [ 36.629586][ C0] WARNING: CPU: 0 PID: 15 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 36.633905][ C0] Modules linked in: [ 36.634957][ C0] CPU: 0 UID: 0 PID: 15 Comm: ksoftirqd/0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 36.638340][ C0] Tainted: [W]=WARN [ 36.639379][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 36.642142][ C0] pstate: 404000c5 (nZcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 36.644181][ C0] pc : __apply_to_page_range+0xdb4/0x13e4 [ 36.645723][ C0] lr : __apply_to_page_range+0xdb4/0x13e4 [ 36.647316][ C0] sp : ffff8000976863e0 [ 36.648406][ C0] x29: ffff800097686500 x28: ffff0001ffa06fff x27: ffff0001fec50fe8 [ 36.650631][ C0] x26: ffff0001ffa07000 x25: dfff800000000000 x24: ffff0001ffa06000 [ 36.652773][ C0] x23: ffff0001fea8e030 x22: 0000000000000100 x21: ffff0000c19f3d00 [ 36.654890][ C0] x20: 100000023ea8e403 x19: 0000000000000001 x18: 00000000ffffffff [ 36.657058][ C0] x17: ffff800092f37000 x16: ffff80008adb82bc x15: ffff700012ed0cc4 [ 36.659179][ C0] x14: 1ffff00012ed0cc4 x13: 0000000000000004 x12: ffffffffffffffff [ 36.661310][ C0] x11: 000000004407a50d x10: 0000000000ff0100 x9 : 0000000000000000 [ 36.663437][ C0] x8 : ffff0000c19f3d00 x7 : ffff800080c2c30c x6 : 0000000000000000 [ 36.665641][ C0] x5 : 0000000000000001 x4 : ffff8000976865e0 x3 : ffff8000802595f4 [ 36.667826][ C0] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 36.670043][ C0] Call trace: [ 36.670946][ C0] __apply_to_page_range+0xdb4/0x13e4 (P) [ 36.672552][ C0] apply_to_page_range+0x4c/0x64 [ 36.673865][ C0] __change_memory_common+0xac/0x3f8 [ 36.675290][ C0] set_memory_valid+0x68/0x7c [ 36.676526][ C0] kfence_guarded_alloc+0x2e8/0xb08 [ 36.677941][ C0] __kfence_alloc+0x394/0x45c [ 36.679216][ C0] kmem_cache_alloc_noprof+0x344/0x3e8 [ 36.680685][ C0] sk_prot_alloc+0x60/0x1f0 [ 36.681859][ C0] sk_clone_lock+0x78/0xdc4 [ 36.683086][ C0] inet_csk_clone_lock+0x34/0x4e4 [ 36.684491][ C0] tcp_create_openreq_child+0x44/0x1380 [ 36.685975][ C0] tcp_v4_syn_recv_sock+0x1b4/0xcac [ 36.687390][ C0] tcp_check_req+0xe9c/0x171c [ 36.688689][ C0] tcp_v4_rcv+0x138c/0x28b8 [ 36.689900][ C0] ip_protocol_deliver_rcu+0x1f8/0x484 [ 36.691349][ C0] ip_local_deliver_finish+0x27c/0x4e8 [ 36.692875][ C0] NF_HOOK+0x2c4/0x358 [ 36.694026][ C0] ip_local_deliver+0x120/0x194 [ 36.695364][ C0] ip_sublist_rcv+0x8a0/0xb68 [ 36.696647][ C0] ip_list_rcv+0x398/0x3ec [ 36.697858][ C0] __netif_receive_skb_list_core+0x4e4/0x67c [ 36.699567][ C0] netif_receive_skb_list_internal+0x74c/0x9e0 [ 36.701239][ C0] napi_complete_done+0x250/0x614 [ 36.702622][ C0] gve_napi_poll+0x1f4/0x3ac [ 36.703818][ C0] __napi_poll+0xb4/0x3fc [ 36.705002][ C0] net_rx_action+0x5d4/0xcc8 [ 36.706210][ C0] handle_softirqs+0x328/0xc88 [ 36.707570][ C0] run_ksoftirqd+0x70/0xc0 [ 36.708761][ C0] smpboot_thread_fn+0x4d8/0x9cc [ 36.710094][ C0] kthread+0x5fc/0x75c [ 36.711265][ C0] ret_from_fork+0x10/0x20 [ 36.712529][ C0] irq event stamp: 630819 [ 36.713734][ C0] hardirqs last enabled at (630818): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 36.716606][ C0] hardirqs last disabled at (630819): [] kfence_guarded_alloc+0x190/0xb08 [ 36.719433][ C0] softirqs last enabled at (630790): [] handle_softirqs+0xaf8/0xc88 [ 36.722087][ C0] softirqs last disabled at (630795): [] run_ksoftirqd+0x70/0xc0 [ 36.724649][ C0] ---[ end trace 0000000000000000 ]--- [ 36.726063][ C0] ------------[ cut here ]------------ [ 36.726077][ C0] WARNING: CPU: 0 PID: 15 at ./arch/arm64/include/asm/pgtable.h:67 change_page_range+0x188/0x1cc [ 36.730519][ C0] Modules linked in: [ 36.731575][ C0] CPU: 0 UID: 0 PID: 15 Comm: ksoftirqd/0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 36.735175][ C0] Tainted: [W]=WARN [ 36.736296][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 36.739167][ C0] pstate: 404000c5 (nZcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 36.741362][ C0] pc : change_page_range+0x188/0x1cc [ 36.742764][ C0] lr : change_page_range+0x188/0x1cc [ 36.744302][ C0] sp : ffff8000976863a0 [ 36.745384][ C0] x29: ffff8000976863a0 x28: ffff0001ffa06fff x27: ffff0001fec50fe8 [ 36.747567][ C0] x26: ffff0001ffa07000 x25: ffff0001ffa06000 x24: ffff0001ffa06000 [ 36.749865][ C0] x23: 006800023fa06707 x22: 0040000000000001 x21: dfff800000000000 [ 36.752097][ C0] x20: 0000000000000100 x19: ffff0000c19f3d00 x18: 00000000ffffffff [ 36.754402][ C0] x17: ffff800092f37000 x16: ffff80008adb82bc x15: 0000000000000001 [ 36.756638][ C0] x14: 1fffe0001833e7a0 x13: 0000000000000000 x12: 0000000000000000 [ 36.758882][ C0] x11: ffff60001833e7a1 x10: 0000000000ff0100 x9 : 0000000000000000 [ 36.761085][ C0] x8 : ffff0000c19f3d00 x7 : ffff800080c2c30c x6 : 0000000000000000 [ 36.763364][ C0] x5 : 0000000000000001 x4 : ffff8000976865e0 x3 : ffff800080ac62d0 [ 36.765507][ C0] x2 : ffff8000976865e0 x1 : 0000000000000100 x0 : 0000000000000000 [ 36.767620][ C0] Call trace: [ 36.768535][ C0] change_page_range+0x188/0x1cc (P) [ 36.769996][ C0] __apply_to_page_range+0xd58/0x13e4 [ 36.771480][ C0] apply_to_page_range+0x4c/0x64 [ 36.772801][ C0] __change_memory_common+0xac/0x3f8 [ 36.774272][ C0] set_memory_valid+0x68/0x7c [ 36.775534][ C0] kfence_guarded_alloc+0x2e8/0xb08 [ 36.776959][ C0] __kfence_alloc+0x394/0x45c [ 36.778239][ C0] kmem_cache_alloc_noprof+0x344/0x3e8 [ 36.779761][ C0] sk_prot_alloc+0x60/0x1f0 [ 36.780983][ C0] sk_clone_lock+0x78/0xdc4 [ 36.782178][ C0] inet_csk_clone_lock+0x34/0x4e4 [ 36.783554][ C0] tcp_create_openreq_child+0x44/0x1380 [ 36.785032][ C0] tcp_v4_syn_recv_sock+0x1b4/0xcac [ 36.786411][ C0] tcp_check_req+0xe9c/0x171c [ 36.787695][ C0] tcp_v4_rcv+0x138c/0x28b8 [ 36.788911][ C0] ip_protocol_deliver_rcu+0x1f8/0x484 [ 36.790360][ C0] ip_local_deliver_finish+0x27c/0x4e8 [ 36.791841][ C0] NF_HOOK+0x2c4/0x358 [ 36.792939][ C0] ip_local_deliver+0x120/0x194 [ 36.794271][ C0] ip_sublist_rcv+0x8a0/0xb68 [ 36.795576][ C0] ip_list_rcv+0x398/0x3ec [ 36.796735][ C0] __netif_receive_skb_list_core+0x4e4/0x67c [ 36.798356][ C0] netif_receive_skb_list_internal+0x74c/0x9e0 [ 36.800025][ C0] napi_complete_done+0x250/0x614 [ 36.801416][ C0] gve_napi_poll+0x1f4/0x3ac [ 36.802686][ C0] __napi_poll+0xb4/0x3fc [ 36.803913][ C0] net_rx_action+0x5d4/0xcc8 [ 36.805146][ C0] handle_softirqs+0x328/0xc88 [ 36.806470][ C0] run_ksoftirqd+0x70/0xc0 [ 36.807638][ C0] smpboot_thread_fn+0x4d8/0x9cc [ 36.808909][ C0] kthread+0x5fc/0x75c [ 36.810046][ C0] ret_from_fork+0x10/0x20 [ 36.811265][ C0] irq event stamp: 630819 [ 36.812492][ C0] hardirqs last enabled at (630818): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 36.815321][ C0] hardirqs last disabled at (630819): [] kfence_guarded_alloc+0x190/0xb08 [ 36.818066][ C0] softirqs last enabled at (630790): [] handle_softirqs+0xaf8/0xc88 [ 36.820673][ C0] softirqs last disabled at (630795): [] run_ksoftirqd+0x70/0xc0 [ 36.823324][ C0] ---[ end trace 0000000000000000 ]--- [ 37.313103][ C0] ------------[ cut here ]------------ [ 37.313179][ C0] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 37.317565][ C0] Modules linked in: [ 37.318618][ C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 37.321933][ C0] Tainted: [W]=WARN [ 37.322898][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 37.325566][ C0] pstate: 404000c5 (nZcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 37.327666][ C0] pc : __apply_to_page_range+0xdb4/0x13e4 [ 37.329177][ C0] lr : __apply_to_page_range+0xdb4/0x13e4 [ 37.330666][ C0] sp : ffff800080006f40 [ 37.331742][ C0] x29: ffff800080007060 x28: ffff0001ffa0cfff x27: ffff0001fec50fe8 [ 37.333832][ C0] x26: ffff0001ffa0d000 x25: dfff800000000000 x24: ffff0001ffa0c000 [ 37.335897][ C0] x23: ffff0001fea8e060 x22: 0000000000000100 x21: ffff80008f346040 [ 37.338025][ C0] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386aa76 [ 37.340107][ C0] x17: ffff80010d0e8000 x16: ffff80008adb82bc x15: ffff700010000e30 [ 37.342218][ C0] x14: 1ffff00010000e30 x13: 0000000000000004 x12: ffffffffffffffff [ 37.344370][ C0] x11: 000000008e6001b3 x10: 0000000000ff0100 x9 : 0000000000000000 [ 37.346436][ C0] x8 : ffff80008f346040 x7 : ffff800080c2c30c x6 : 0000000000000000 [ 37.348501][ C0] x5 : 0000000000000001 x4 : ffff800080007140 x3 : ffff8000802595f4 [ 37.350624][ C0] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 37.352750][ C0] Call trace: [ 37.353626][ C0] __apply_to_page_range+0xdb4/0x13e4 (P) [ 37.355170][ C0] apply_to_page_range+0x4c/0x64 [ 37.356457][ C0] __change_memory_common+0xac/0x3f8 [ 37.357816][ C0] set_memory_valid+0x68/0x7c [ 37.359043][ C0] kfence_guarded_alloc+0x2e8/0xb08 [ 37.360404][ C0] __kfence_alloc+0x394/0x45c [ 37.361625][ C0] kmem_cache_alloc_node_noprof+0x34c/0x3f4 [ 37.363193][ C0] kmalloc_reserve+0xc4/0x268 [ 37.364433][ C0] __alloc_skb+0x170/0x2ec [ 37.365611][ C0] napi_alloc_skb+0xa0/0x5fc [ 37.366812][ C0] napi_get_frags+0x74/0x144 [ 37.368019][ C0] gve_rx_add_frags+0x1a0/0x3d8 [ 37.369284][ C0] gve_rx_poll+0xf14/0x365c [ 37.370450][ C0] gve_napi_poll+0x140/0x3ac [ 37.371657][ C0] __napi_poll+0xb4/0x3fc [ 37.372777][ C0] net_rx_action+0x5d4/0xcc8 [ 37.373944][ C0] handle_softirqs+0x328/0xc88 [ 37.375176][ C0] __do_softirq+0x14/0x20 [ 37.376303][ C0] ____do_softirq+0x14/0x20 [ 37.377469][ C0] call_on_irq_stack+0x24/0x30 [ 37.378690][ C0] do_softirq_own_stack+0x20/0x2c [ 37.380012][ C0] __irq_exit_rcu+0x1b0/0x478 [ 37.381268][ C0] irq_exit_rcu+0x14/0x84 [ 37.382444][ C0] el1_interrupt+0x38/0x54 [ 37.383621][ C0] el1h_64_irq_handler+0x18/0x24 [ 37.384953][ C0] el1h_64_irq+0x6c/0x70 [ 37.386035][ C0] arch_local_irq_enable+0x8/0xc (P) [ 37.387458][ C0] do_idle+0x1d8/0x454 [ 37.388553][ C0] cpu_startup_entry+0x5c/0x74 [ 37.389835][ C0] rest_init+0x2d8/0x2f4 [ 37.390986][ C0] start_kernel+0x44c/0x4a8 [ 37.392301][ C0] __primary_switched+0x8c/0x94 [ 37.393614][ C0] irq event stamp: 245773 [ 37.394812][ C0] hardirqs last enabled at (245772): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 37.397664][ C0] hardirqs last disabled at (245773): [] kfence_guarded_alloc+0x190/0xb08 [ 37.400400][ C0] softirqs last enabled at (245750): [] handle_softirqs+0xaf8/0xc88 [ 37.403033][ C0] softirqs last disabled at (245763): [] __do_softirq+0x14/0x20 [ 37.405501][ C0] ---[ end trace 0000000000000000 ]--- [ 37.406988][ C0] ------------[ cut here ]------------ [ 37.407002][ C0] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:67 change_page_range+0x188/0x1cc [ 37.411322][ C0] Modules linked in: [ 37.412353][ C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 37.415935][ C0] Tainted: [W]=WARN [ 37.416911][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 37.419672][ C0] pstate: 404000c5 (nZcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 37.421829][ C0] pc : change_page_range+0x188/0x1cc [ 37.423291][ C0] lr : change_page_range+0x188/0x1cc [ 37.424678][ C0] sp : ffff800080006f00 [ 37.425739][ C0] x29: ffff800080006f00 x28: ffff0001ffa0cfff x27: ffff0001fec50fe8 [ 37.427894][ C0] x26: ffff0001ffa0d000 x25: ffff0001ffa0c000 x24: ffff0001ffa0c000 [ 37.430004][ C0] x23: 006800023fa0c707 x22: 0040000000000001 x21: dfff800000000000 [ 37.432178][ C0] x20: 0000000000000100 x19: ffff80008f346040 x18: 1fffe0003386aa76 [ 37.434388][ C0] x17: ffff80010d0e8000 x16: ffff80008adb82bc x15: 0000000000000001 [ 37.436553][ C0] x14: 1ffff00011e68c08 x13: 0000000000000000 x12: 0000000000000000 [ 37.438857][ C0] x11: ffff700011e68c09 x10: 0000000000ff0100 x9 : 0000000000000000 [ 37.441002][ C0] x8 : ffff80008f346040 x7 : ffff800080c2c30c x6 : 0000000000000000 [ 37.443238][ C0] x5 : 0000000000000001 x4 : ffff800080007140 x3 : ffff800080ac62d0 [ 37.445411][ C0] x2 : ffff800080007140 x1 : 0000000000000100 x0 : 0000000000000000 [ 37.447641][ C0] Call trace: [ 37.448500][ C0] change_page_range+0x188/0x1cc (P) [ 37.449953][ C0] __apply_to_page_range+0xd58/0x13e4 [ 37.451471][ C0] apply_to_page_range+0x4c/0x64 [ 37.452793][ C0] __change_memory_common+0xac/0x3f8 [ 37.454303][ C0] set_memory_valid+0x68/0x7c [ 37.455624][ C0] kfence_guarded_alloc+0x2e8/0xb08 [ 37.457043][ C0] __kfence_alloc+0x394/0x45c [ 37.458290][ C0] kmem_cache_alloc_node_noprof+0x34c/0x3f4 [ 37.459923][ C0] kmalloc_reserve+0xc4/0x268 [ 37.461172][ C0] __alloc_skb+0x170/0x2ec [ 37.462375][ C0] napi_alloc_skb+0xa0/0x5fc [ 37.463613][ C0] napi_get_frags+0x74/0x144 [ 37.464854][ C0] gve_rx_add_frags+0x1a0/0x3d8 [ 37.466133][ C0] gve_rx_poll+0xf14/0x365c [ 37.467353][ C0] gve_napi_poll+0x140/0x3ac [ 37.468616][ C0] __napi_poll+0xb4/0x3fc Warning: Permanently added '10.128.0.150' (ED25519) to the list of known hosts. [ 37.469786][ C0] net_rx_action+0x5d4/0xcc8 [ 37.471046][ C0] handle_softirqs+0x328/0xc88 [ 37.472348][ C0] __do_softirq+0x14/0x20 [ 37.473554][ C0] ____do_softirq+0x14/0x20 [ 37.474790][ C0] call_on_irq_stack+0x24/0x30 [ 37.476155][ C0] do_softirq_own_stack+0x20/0x2c [ 37.477529][ C0] __irq_exit_rcu+0x1b0/0x478 [ 37.478775][ C0] irq_exit_rcu+0x14/0x84 [ 37.479994][ C0] el1_interrupt+0x38/0x54 [ 37.481152][ C0] el1h_64_irq_handler+0x18/0x24 [ 37.482478][ C0] el1h_64_irq+0x6c/0x70 [ 37.483674][ C0] arch_local_irq_enable+0x8/0xc (P) [ 37.485067][ C0] do_idle+0x1d8/0x454 [ 37.486186][ C0] cpu_startup_entry+0x5c/0x74 [ 37.487525][ C0] rest_init+0x2d8/0x2f4 [ 37.488675][ C0] start_kernel+0x44c/0x4a8 [ 37.489884][ C0] __primary_switched+0x8c/0x94 [ 37.491213][ C0] irq event stamp: 245773 [ 37.492402][ C0] hardirqs last enabled at (245772): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 37.495300][ C0] hardirqs last disabled at (245773): [] kfence_guarded_alloc+0x190/0xb08 [ 37.498072][ C0] softirqs last enabled at (245750): [] handle_softirqs+0xaf8/0xc88 [ 37.500655][ C0] softirqs last disabled at (245763): [] __do_softirq+0x14/0x20 [ 37.503116][ C0] ---[ end trace 0000000000000000 ]--- [ 37.513605][ C0] ------------[ cut here ]------------ [ 37.513632][ C0] WARNING: CPU: 0 PID: 6095 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 37.518114][ C0] Modules linked in: [ 37.519163][ C0] CPU: 0 UID: 0 PID: 6095 Comm: klogd Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 37.522684][ C0] Tainted: [W]=WARN [ 37.523737][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 37.526578][ C0] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 37.528740][ C0] pc : __apply_to_page_range+0xdb4/0x13e4 [ 37.530365][ C0] lr : __apply_to_page_range+0xdb4/0x13e4 [ 37.531884][ C0] sp : ffff8000800077e0 [ 37.533022][ C0] x29: ffff800080007900 x28: ffff0001ffa0cfff x27: ffff0001fec50fe8 [ 37.535202][ C0] x26: ffff0001ffa0d000 x25: dfff800000000000 x24: ffff0001ffa0c000 [ 37.537447][ C0] x23: ffff0001fea8e060 x22: 0000000000000100 x21: ffff0000d9743d00 [ 37.539755][ C0] x20: 100000023ea8e403 x19: 0000000000000001 x18: 0000000000000000 [ 37.541956][ C0] x17: ffff80010d0e8000 x16: ffff80008051bab8 x15: 0000000000000001 [ 37.544211][ C0] x14: 1ffff00012dfb9fa x13: 0000000000000000 x12: 0000000000000000 [ 37.546623][ C0] x11: ffff700012dfb9fb x10: 0000000000ff0100 x9 : 0000000000000000 [ 37.548871][ C0] x8 : ffff0000d9743d00 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 37.551141][ C0] x5 : 0000000000000001 x4 : ffff8000800079e0 x3 : ffff8000802595f4 [ 37.553359][ C0] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 37.555686][ C0] Call trace: [ 37.556556][ C0] __apply_to_page_range+0xdb4/0x13e4 (P) [ 37.558125][ C0] apply_to_page_range+0x4c/0x64 [ 37.559517][ C0] __change_memory_common+0xac/0x3f8 [ 37.560981][ C0] set_memory_valid+0x68/0x7c [ 37.562304][ C0] kfence_guarded_free+0x278/0x5a8 [ 37.563732][ C0] __kfence_free+0x104/0x198 [ 37.564990][ C0] kmem_cache_free+0x250/0x550 [ 37.566345][ C0] skb_free_head+0xbc/0x198 [ 37.567652][ C0] skb_release_data+0x66c/0x820 [ 37.568998][ C0] napi_consume_skb+0x15c/0x21c [ 37.570348][ C0] net_rx_action+0x42c/0xcc8 [ 37.571628][ C0] handle_softirqs+0x328/0xc88 [ 37.572979][ C0] __do_softirq+0x14/0x20 [ 37.574145][ C0] ____do_softirq+0x14/0x20 [ 37.575371][ C0] call_on_irq_stack+0x24/0x30 [ 37.576632][ C0] do_softirq_own_stack+0x20/0x2c [ 37.577976][ C0] __irq_exit_rcu+0x1b0/0x478 [ 37.579223][ C0] irq_exit_rcu+0x14/0x84 [ 37.580374][ C0] el1_interrupt+0x38/0x54 [ 37.581561][ C0] el1h_64_irq_handler+0x18/0x24 [ 37.582867][ C0] el1h_64_irq+0x6c/0x70 [ 37.584024][ C0] smack_privileged+0x98/0xd0 (P) [ 37.585441][ C0] smack_unix_may_send+0x1c4/0x280 [ 37.586865][ C0] security_unix_may_send+0xd4/0x2c0 [ 37.588243][ C0] unix_dgram_sendmsg+0x7dc/0x121c [ 37.589660][ C0] __sys_sendto+0x36c/0x4f4 [ 37.590883][ C0] __arm64_sys_sendto+0xd8/0xf8 [ 37.592218][ C0] invoke_syscall+0x98/0x2b8 [ 37.593505][ C0] el0_svc_common+0x130/0x23c [ 37.594721][ C0] do_el0_svc+0x48/0x58 [ 37.595857][ C0] el0_svc+0x58/0x17c [ 37.596913][ C0] el0t_64_sync_handler+0x78/0x108 [ 37.598345][ C0] el0t_64_sync+0x198/0x19c [ 37.599635][ C0] irq event stamp: 89271 [ 37.600778][ C0] hardirqs last enabled at (89270): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 37.603690][ C0] hardirqs last disabled at (89271): [] el1_dbg+0x24/0x80 [ 37.606056][ C0] softirqs last enabled at (89246): [] local_bh_enable+0x10/0x34 [ 37.608713][ C0] softirqs last disabled at (89263): [] __do_softirq+0x14/0x20 [ 37.611218][ C0] ---[ end trace 0000000000000000 ]--- [ 37.659454][ C1] ------------[ cut here ]------------ [ 37.659535][ C1] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 37.663802][ C1] Modules linked in: [ 37.664904][ C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 37.668211][ C1] Tainted: [W]=WARN [ 37.669312][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 37.671934][ C1] pstate: 404000c5 (nZcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 37.673979][ C1] pc : __apply_to_page_range+0xdb4/0x13e4 [ 37.675555][ C1] lr : __apply_to_page_range+0xdb4/0x13e4 [ 37.677144][ C1] sp : ffff800080017180 [ 37.678269][ C1] x29: ffff8000800172a0 x28: ffff0001ffa12fff x27: ffff0001fec50fe8 [ 37.680406][ C1] x26: ffff0001ffa13000 x25: dfff800000000000 x24: ffff0001ffa12000 [ 37.682552][ C1] x23: ffff0001fea8e090 x22: 0000000000000100 x21: ffff0000c1a0db80 [ 37.684596][ C1] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386f276 [ 37.686686][ C1] x17: ffff80010d10c000 x16: ffff80008adb82bc x15: ffff700010002e78 [ 37.688751][ C1] x14: 1ffff00010002e78 x13: 0000000000000004 x12: ffffffffffffffff [ 37.690831][ C1] x11: 00000000e8469ace x10: 0000000000ff0100 x9 : 0000000000000000 [ 37.692886][ C1] x8 : ffff0000c1a0db80 x7 : ffff800080c2c30c x6 : 0000000000000000 [ 37.694960][ C1] x5 : 0000000000000001 x4 : ffff800080017380 x3 : ffff8000802595f4 [ 37.697002][ C1] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 37.699100][ C1] Call trace: [ 37.699927][ C1] __apply_to_page_range+0xdb4/0x13e4 (P) [ 37.701387][ C1] apply_to_page_range+0x4c/0x64 [ 37.702646][ C1] __change_memory_common+0xac/0x3f8 [ 37.703983][ C1] set_memory_valid+0x68/0x7c [ 37.705179][ C1] kfence_guarded_alloc+0x2e8/0xb08 [ 37.706526][ C1] __kfence_alloc+0x394/0x45c [ 37.707729][ C1] kmem_cache_alloc_node_noprof+0x34c/0x3f4 [ 37.709234][ C1] __alloc_skb+0x144/0x2ec [ 37.710350][ C1] __tcp_send_ack+0xa4/0x55c [ 37.711526][ C1] tcp_send_ack+0x50/0x6c [ 37.712668][ C1] tcp_delack_timer_handler+0x280/0x444 [ 37.714073][ C1] tcp_delack_timer+0x238/0x3c4 [ 37.715299][ C1] call_timer_fn+0x1b4/0x818 [ 37.716516][ C1] __run_timer_base+0x51c/0x76c [ 37.717754][ C1] timer_expire_remote+0x78/0xa0 [ 37.718995][ C1] tmigr_handle_remote+0x8d4/0x1340 [ 37.720315][ C1] run_timer_softirq+0x190/0x194 [ 37.721581][ C1] handle_softirqs+0x328/0xc88 [ 37.722785][ C1] __do_softirq+0x14/0x20 [ 37.723909][ C1] ____do_softirq+0x14/0x20 [ 37.725051][ C1] call_on_irq_stack+0x24/0x30 [ 37.726253][ C1] do_softirq_own_stack+0x20/0x2c [ 37.727525][ C1] __irq_exit_rcu+0x1b0/0x478 [ 37.728718][ C1] irq_exit_rcu+0x14/0x84 [ 37.729856][ C1] el1_interrupt+0x38/0x54 [ 37.731061][ C1] el1h_64_irq_handler+0x18/0x24 [ 37.732422][ C1] el1h_64_irq+0x6c/0x70 [ 37.733530][ C1] arch_local_irq_enable+0x8/0xc (P) [ 37.734924][ C1] do_idle+0x1d8/0x454 [ 37.735983][ C1] cpu_startup_entry+0x5c/0x74 [ 37.737266][ C1] secondary_start_kernel+0x1b8/0x1e0 [ 37.738767][ C1] __secondary_switched+0xc0/0xc4 [ 37.740132][ C1] irq event stamp: 208323 [ 37.741267][ C1] hardirqs last enabled at (208322): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 37.744048][ C1] hardirqs last disabled at (208323): [] kfence_guarded_alloc+0x190/0xb08 [ 37.746734][ C1] softirqs last enabled at (208292): [] handle_softirqs+0xaf8/0xc88 [ 37.749306][ C1] softirqs last disabled at (208299): [] __do_softirq+0x14/0x20 [ 37.751743][ C1] ---[ end trace 0000000000000000 ]--- [ 37.753241][ C1] ------------[ cut here ]------------ [ 37.753257][ C1] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:67 change_page_range+0x188/0x1cc [ 37.757527][ C1] Modules linked in: [ 37.758595][ C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 37.761920][ C1] Tainted: [W]=WARN [ 37.762933][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 37.765487][ C1] pstate: 404000c5 (nZcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 37.767511][ C1] pc : change_page_range+0x188/0x1cc [ 37.768876][ C1] lr : change_page_range+0x188/0x1cc [ 37.770218][ C1] sp : ffff800080017140 [ 37.771353][ C1] x29: ffff800080017140 x28: ffff0001ffa12fff x27: ffff0001fec50fe8 [ 37.773507][ C1] x26: ffff0001ffa13000 x25: ffff0001ffa12000 x24: ffff0001ffa12000 [ 37.775632][ C1] x23: 006800023fa12707 x22: 0040000000000001 x21: dfff800000000000 [ 37.777736][ C1] x20: 0000000000000100 x19: ffff0000c1a0db80 x18: 1fffe0003386f276 [ 37.779929][ C1] x17: ffff80010d10c000 x16: ffff80008adb82bc x15: 0000000000000001 [ 37.782095][ C1] x14: 1fffe00018341b70 x13: 0000000000000000 x12: 0000000000000000 [ 37.784256][ C1] x11: ffff600018341b71 x10: 0000000000ff0100 x9 : 0000000000000000 [ 37.786419][ C1] x8 : ffff0000c1a0db80 x7 : ffff800080c2c30c x6 : 0000000000000000 [ 37.788580][ C1] x5 : 0000000000000001 x4 : ffff800080017380 x3 : ffff800080ac62d0 [ 37.790739][ C1] x2 : ffff800080017380 x1 : 0000000000000100 x0 : 0000000000000000 [ 37.792830][ C1] Call trace: [ 37.793725][ C1] change_page_range+0x188/0x1cc (P) [ 37.795162][ C1] __apply_to_page_range+0xd58/0x13e4 [ 37.796595][ C1] apply_to_page_range+0x4c/0x64 [ 37.797888][ C1] __change_memory_common+0xac/0x3f8 [ 37.799297][ C1] set_memory_valid+0x68/0x7c [ 37.800543][ C1] kfence_guarded_alloc+0x2e8/0xb08 [ 37.801932][ C1] __kfence_alloc+0x394/0x45c [ 37.803248][ C1] kmem_cache_alloc_node_noprof+0x34c/0x3f4 [ 37.804841][ C1] __alloc_skb+0x144/0x2ec [ 37.806010][ C1] __tcp_send_ack+0xa4/0x55c [ 37.807234][ C1] tcp_send_ack+0x50/0x6c [ 37.808396][ C1] tcp_delack_timer_handler+0x280/0x444 [ 37.809909][ C1] tcp_delack_timer+0x238/0x3c4 [ 37.811257][ C1] call_timer_fn+0x1b4/0x818 [ 37.812517][ C1] __run_timer_base+0x51c/0x76c [ 37.813775][ C1] timer_expire_remote+0x78/0xa0 [ 37.815144][ C1] tmigr_handle_remote+0x8d4/0x1340 [ 37.816577][ C1] run_timer_softirq+0x190/0x194 [ 37.817930][ C1] handle_softirqs+0x328/0xc88 [ 37.819222][ C1] __do_softirq+0x14/0x20 [ 37.820327][ C1] ____do_softirq+0x14/0x20 [ 37.821532][ C1] call_on_irq_stack+0x24/0x30 [ 37.822823][ C1] do_softirq_own_stack+0x20/0x2c [ 37.824202][ C1] __irq_exit_rcu+0x1b0/0x478 [ 37.825485][ C1] irq_exit_rcu+0x14/0x84 [ 37.826637][ C1] el1_interrupt+0x38/0x54 [ 37.827870][ C1] el1h_64_irq_handler+0x18/0x24 [ 37.829206][ C1] el1h_64_irq+0x6c/0x70 [ 37.830433][ C1] arch_local_irq_enable+0x8/0xc (P) [ 37.831887][ C1] do_idle+0x1d8/0x454 [ 37.832948][ C1] cpu_startup_entry+0x5c/0x74 [ 37.834280][ C1] secondary_start_kernel+0x1b8/0x1e0 [ 37.835753][ C1] __secondary_switched+0xc0/0xc4 [ 37.837055][ C1] irq event stamp: 208323 [ 37.838155][ C1] hardirqs last enabled at (208322): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 37.840998][ C1] hardirqs last disabled at (208323): [] kfence_guarded_alloc+0x190/0xb08 [ 37.843715][ C1] softirqs last enabled at (208292): [] handle_softirqs+0xaf8/0xc88 [ 37.846357][ C1] softirqs last disabled at (208299): [] __do_softirq+0x14/0x20 [ 37.848767][ C1] ---[ end trace 0000000000000000 ]--- [ 37.850586][ C0] ------------[ cut here ]------------ [ 37.850615][ C0] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 37.855202][ C0] Modules linked in: [ 37.856319][ C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 37.859700][ C0] Tainted: [W]=WARN [ 37.860756][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 37.863437][ C0] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 37.865630][ C0] pc : __apply_to_page_range+0xdb4/0x13e4 [ 37.867250][ C0] lr : __apply_to_page_range+0xdb4/0x13e4 [ 37.868818][ C0] sp : ffff800080007640 [ 37.869985][ C0] x29: ffff800080007760 x28: ffff0001ffa12fff x27: ffff0001fec50fe8 [ 37.872271][ C0] x26: ffff0001ffa13000 x25: dfff800000000000 x24: ffff0001ffa12000 [ 37.874422][ C0] x23: ffff0001fea8e090 x22: 0000000000000100 x21: ffff80008f346040 [ 37.876558][ C0] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386aa76 [ 37.878785][ C0] x17: ffff80010d0e8000 x16: ffff80008051bab8 x15: 0000000000000001 [ 37.881014][ C0] x14: 1ffff00012dfba05 x13: 0000000000000000 x12: 0000000000000000 [ 37.883159][ C0] x11: ffff700012dfba06 x10: 0000000000ff0100 x9 : 0000000000000000 [ 37.885385][ C0] x8 : ffff80008f346040 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 37.887562][ C0] x5 : 0000000000000001 x4 : ffff800080007840 x3 : ffff8000802595f4 [ 37.889736][ C0] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 37.892049][ C0] Call trace: [ 37.893022][ C0] __apply_to_page_range+0xdb4/0x13e4 (P) [ 37.894635][ C0] apply_to_page_range+0x4c/0x64 [ 37.896056][ C0] __change_memory_common+0xac/0x3f8 [ 37.897611][ C0] set_memory_valid+0x68/0x7c [ 37.898920][ C0] kfence_guarded_free+0x278/0x5a8 [ 37.900334][ C0] __kfence_free+0x104/0x198 [ 37.901656][ C0] kmem_cache_free+0x250/0x550 [ 37.902878][ C0] kfree_skbmem+0x14c/0x1dc [ 37.904086][ C0] sk_skb_reason_drop+0x150/0x1b0 [ 37.905463][ C0] dev_kfree_skb_any_reason+0x94/0xd0 [ 37.906927][ C0] gve_clean_tx_done+0x240/0xaa8 [ 37.908304][ C0] gve_tx_poll+0x11c/0x1d0 [ 37.909460][ C0] gve_napi_poll+0xc0/0x3ac [ 37.910756][ C0] __napi_poll+0xb4/0x3fc [ 37.911953][ C0] net_rx_action+0x5d4/0xcc8 [ 37.913206][ C0] handle_softirqs+0x328/0xc88 [ 37.914505][ C0] __do_softirq+0x14/0x20 [ 37.915688][ C0] ____do_softirq+0x14/0x20 [ 37.916950][ C0] call_on_irq_stack+0x24/0x30 [ 37.918313][ C0] do_softirq_own_stack+0x20/0x2c [ 37.919767][ C0] __irq_exit_rcu+0x1b0/0x478 [ 37.921089][ C0] irq_exit_rcu+0x14/0x84 [ 37.922255][ C0] el1_interrupt+0x38/0x54 [ 37.923474][ C0] el1h_64_irq_handler+0x18/0x24 [ 37.924840][ C0] el1h_64_irq+0x6c/0x70 [ 37.925946][ C0] arch_local_irq_enable+0x8/0xc (P) [ 37.927438][ C0] do_idle+0x1d8/0x454 [ 37.928574][ C0] cpu_startup_entry+0x5c/0x74 [ 37.929934][ C0] rest_init+0x2d8/0x2f4 [ 37.931074][ C0] start_kernel+0x44c/0x4a8 [ 37.932324][ C0] __primary_switched+0x8c/0x94 [ 37.933717][ C0] irq event stamp: 245849 [ 37.934874][ C0] hardirqs last enabled at (245848): [] el1_interrupt+0x44/0x54 [ 37.937583][ C0] hardirqs last disabled at (245849): [] el1_dbg+0x24/0x80 [ 37.940002][ C0] softirqs last enabled at (245792): [] handle_softirqs+0xaf8/0xc88 [ 37.942666][ C0] softirqs last disabled at (245831): [] __do_softirq+0x14/0x20 [ 37.945188][ C0] ---[ end trace 0000000000000000 ]--- [ 38.018184][ C0] ------------[ cut here ]------------ [ 38.018224][ C0] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 38.022565][ C0] Modules linked in: [ 38.023613][ C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 38.027001][ C0] Tainted: [W]=WARN [ 38.028030][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 38.030750][ C0] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 38.032860][ C0] pc : __apply_to_page_range+0xdb4/0x13e4 [ 38.034429][ C0] lr : __apply_to_page_range+0xdb4/0x13e4 [ 38.035975][ C0] sp : ffff800080006820 [ 38.037060][ C0] x29: ffff800080006940 x28: ffff0001ffa14fff x27: ffff0001fec50fe8 [ 38.039147][ C0] x26: ffff0001ffa15000 x25: dfff800000000000 x24: ffff0001ffa14000 [ 38.041289][ C0] x23: ffff0001fea8e0a0 x22: 0000000000000100 x21: ffff80008f346040 [ 38.043384][ C0] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386aa76 [ 38.045464][ C0] x17: e7b61c334c2b0a08 x16: ffff80008051bab8 x15: 0000000000000001 [ 38.047575][ C0] x14: 1ffff00012dfba2a x13: 0000000000000000 x12: 0000000000000000 [ 38.049625][ C0] x11: ffff700012dfba2b x10: 0000000000ff0100 x9 : 0000000000000000 [ 38.051746][ C0] x8 : ffff80008f346040 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 38.053837][ C0] x5 : 0000000000000001 x4 : ffff800080006a20 x3 : ffff8000802595f4 [ 38.055919][ C0] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 38.058053][ C0] Call trace: [ 38.058901][ C0] __apply_to_page_range+0xdb4/0x13e4 (P) [ 38.060401][ C0] apply_to_page_range+0x4c/0x64 [ 38.061716][ C0] __change_memory_common+0xac/0x3f8 [ 38.063084][ C0] set_memory_valid+0x68/0x7c [ 38.064340][ C0] kfence_guarded_free+0x278/0x5a8 [ 38.065662][ C0] __kfence_free+0x104/0x198 [ 38.066882][ C0] kmem_cache_free+0x250/0x550 [ 38.068143][ C0] kfree_skbmem+0x14c/0x1dc [ 38.069332][ C0] __kfree_skb+0x60/0x78 [ 38.070444][ C0] tcp_rtx_queue_unlink_and_free+0x2e8/0x4a0 [ 38.072010][ C0] tcp_ack+0x1a3c/0x49b4 [ 38.073124][ C0] tcp_rcv_established+0xe04/0x1cc0 [ 38.074528][ C0] tcp_v4_do_rcv+0x3c0/0xbc4 [ 38.075786][ C0] tcp_v4_rcv+0x202c/0x28b8 [ 38.076996][ C0] ip_protocol_deliver_rcu+0x1f8/0x484 [ 38.078451][ C0] ip_local_deliver_finish+0x27c/0x4e8 [ 38.079893][ C0] NF_HOOK+0x2c4/0x358 [ 38.081023][ C0] ip_local_deliver+0x120/0x194 [ 38.082302][ C0] ip_sublist_rcv+0x8a0/0xb68 [ 38.083550][ C0] ip_list_rcv+0x398/0x3ec [ 38.084724][ C0] __netif_receive_skb_list_core+0x4e4/0x67c [ 38.086292][ C0] netif_receive_skb_list_internal+0x74c/0x9e0 [ 38.087902][ C0] napi_complete_done+0x250/0x614 [ 38.089351][ C0] gve_napi_poll+0x1f4/0x3ac [ 38.090607][ C0] __napi_poll+0xb4/0x3fc [ 38.091722][ C0] net_rx_action+0x5d4/0xcc8 [ 38.092964][ C0] handle_softirqs+0x328/0xc88 [ 38.094261][ C0] __do_softirq+0x14/0x20 [ 38.095488][ C0] ____do_softirq+0x14/0x20 [ 38.096766][ C0] call_on_irq_stack+0x24/0x30 [ 38.098112][ C0] do_softirq_own_stack+0x20/0x2c [ 38.099440][ C0] __irq_exit_rcu+0x1b0/0x478 [ 38.100753][ C0] irq_exit_rcu+0x14/0x84 [ 38.101931][ C0] el1_interrupt+0x38/0x54 [ 38.103137][ C0] el1h_64_irq_handler+0x18/0x24 [ 38.104471][ C0] el1h_64_irq+0x6c/0x70 [ 38.105674][ C0] arch_local_irq_enable+0x8/0xc (P) [ 38.107104][ C0] do_idle+0x1d8/0x454 [ 38.108239][ C0] cpu_startup_entry+0x5c/0x74 [ 38.109516][ C0] rest_init+0x2d8/0x2f4 [ 38.110695][ C0] start_kernel+0x44c/0x4a8 [ 38.111907][ C0] __primary_switched+0x8c/0x94 [ 38.113260][ C0] irq event stamp: 246263 [ 38.114473][ C0] hardirqs last enabled at (246262): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 38.117535][ C0] hardirqs last disabled at (246263): [] el1_dbg+0x24/0x80 [ 38.119905][ C0] softirqs last enabled at (246242): [] handle_softirqs+0xaf8/0xc88 [ 38.122514][ C0] softirqs last disabled at (246249): [] __do_softirq+0x14/0x20 [ 38.124989][ C0] ---[ end trace 0000000000000000 ]--- 1970/01/01 00:00:37 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:00:37 ignoring optional flag "type"="gce" 1970/01/01 00:00:38 parsed 1 programs [ 38.454433][ T6492] cgroup: Unknown subsys name 'net' [ 38.701883][ T6492] cgroup: Unknown subsys name 'cpuset' [ 38.705659][ T6492] cgroup: Unknown subsys name 'rlimit' 1970/01/01 00:00:38 executed programs: 0 [ 39.539467][ C0] ------------[ cut here ]------------ [ 39.539549][ C0] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 39.543989][ C0] Modules linked in: [ 39.545072][ C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 39.548418][ C0] Tainted: [W]=WARN [ 39.549413][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 39.552029][ C0] pstate: 404000c5 (nZcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 39.554092][ C0] pc : __apply_to_page_range+0xdb4/0x13e4 [ 39.555637][ C0] lr : __apply_to_page_range+0xdb4/0x13e4 [ 39.557126][ C0] sp : ffff8000800073e0 [ 39.558247][ C0] x29: ffff800080007500 x28: ffff0001ffa32fff x27: ffff0001fec50fe8 [ 39.560416][ C0] x26: ffff0001ffa33000 x25: dfff800000000000 x24: ffff0001ffa32000 [ 39.562583][ C0] x23: ffff0001fea8e190 x22: 0000000000000300 x21: ffff80008f346040 [ 39.564784][ C0] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386aa76 [ 39.566949][ C0] x17: ffff80010d0e8000 x16: ffff80008adb82bc x15: ffff700010000ec4 [ 39.569087][ C0] x14: 1ffff00010000ec4 x13: 0000000000000004 x12: ffffffffffffffff [ 39.571169][ C0] x11: 00000000678ea1de x10: 0000000000ff0100 x9 : 0000000000000000 [ 39.573250][ C0] x8 : ffff80008f346040 x7 : ffff800080c2c30c x6 : 0000000000000000 [ 39.575317][ C0] x5 : 0000000000000001 x4 : ffff8000800075e0 x3 : ffff8000802595f4 [ 39.577433][ C0] x2 : 0000000000001000 x1 : 0000000000000300 x0 : 0000000000000000 [ 39.579543][ C0] Call trace: [ 39.580387][ C0] __apply_to_page_range+0xdb4/0x13e4 (P) [ 39.581870][ C0] apply_to_page_range+0x4c/0x64 [ 39.583154][ C0] __change_memory_common+0xac/0x3f8 [ 39.584558][ C0] set_memory_valid+0x68/0x7c [ 39.585771][ C0] kfence_guarded_alloc+0x2e8/0xb08 [ 39.587139][ C0] __kfence_alloc+0x394/0x45c [ 39.588367][ C0] kmem_cache_alloc_node_noprof+0x34c/0x3f4 [ 39.589936][ C0] __alloc_skb+0x144/0x2ec [ 39.591116][ C0] lapb_send_control+0x48/0x320 [ 39.592383][ C0] lapb_t1timer_expiry+0x490/0x864 [ 39.593725][ C0] call_timer_fn+0x1b4/0x818 [ 39.594920][ C0] __run_timer_base+0x51c/0x76c [ 39.596188][ C0] run_timer_softirq+0xcc/0x194 [ 39.597518][ C0] handle_softirqs+0x328/0xc88 [ 39.598805][ C0] __do_softirq+0x14/0x20 [ 39.599957][ C0] ____do_softirq+0x14/0x20 [ 39.601160][ C0] call_on_irq_stack+0x24/0x30 [ 39.602454][ C0] do_softirq_own_stack+0x20/0x2c [ 39.603994][ C0] __irq_exit_rcu+0x1b0/0x478 [ 39.605223][ C0] irq_exit_rcu+0x14/0x84 [ 39.606384][ C0] el1_interrupt+0x38/0x54 [ 39.607545][ C0] el1h_64_irq_handler+0x18/0x24 [ 39.608849][ C0] el1h_64_irq+0x6c/0x70 [ 39.609985][ C0] arch_local_irq_enable+0x8/0xc (P) [ 39.611445][ C0] do_idle+0x1d8/0x454 [ 39.612574][ C0] cpu_startup_entry+0x5c/0x74 [ 39.613896][ C0] rest_init+0x2d8/0x2f4 [ 39.615086][ C0] start_kernel+0x44c/0x4a8 [ 39.616335][ C0] __primary_switched+0x8c/0x94 [ 39.617655][ C0] irq event stamp: 251213 [ 39.618798][ C0] hardirqs last enabled at (251212): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 39.621929][ C0] hardirqs last disabled at (251213): [] kfence_guarded_alloc+0x190/0xb08 [ 39.624665][ C0] softirqs last enabled at (251196): [] handle_softirqs+0xaf8/0xc88 [ 39.627360][ C0] softirqs last disabled at (251203): [] __do_softirq+0x14/0x20 [ 39.629844][ C0] ---[ end trace 0000000000000000 ]--- [ 39.631388][ C0] ------------[ cut here ]------------ [ 39.631402][ C0] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:67 change_page_range+0x188/0x1cc [ 39.635668][ C0] Modules linked in: [ 39.636739][ C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 39.640136][ C0] Tainted: [W]=WARN [ 39.641198][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 39.643986][ C0] pstate: 404000c5 (nZcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 39.646171][ C0] pc : change_page_range+0x188/0x1cc [ 39.647587][ C0] lr : change_page_range+0x188/0x1cc [ 39.648983][ C0] sp : ffff8000800073a0 [ 39.650115][ C0] x29: ffff8000800073a0 x28: ffff0001ffa32fff x27: ffff0001fec50fe8 [ 39.652341][ C0] x26: ffff0001ffa33000 x25: ffff0001ffa32000 x24: ffff0001ffa32000 [ 39.654721][ C0] x23: 006800023fa32707 x22: 0040000000000001 x21: dfff800000000000 [ 39.656978][ C0] x20: 0000000000000300 x19: ffff80008f346040 x18: 1fffe0003386aa76 [ 39.659188][ C0] x17: ffff80010d0e8000 x16: ffff80008adb82bc x15: 0000000000000001 [ 39.661429][ C0] x14: 1ffff00011e68c08 x13: 0000000000000000 x12: 0000000000000000 [ 39.663633][ C0] x11: ffff700011e68c09 x10: 0000000000ff0100 x9 : 0000000000000000 [ 39.665773][ C0] x8 : ffff80008f346040 x7 : ffff800080c2c30c x6 : 0000000000000000 [ 39.668090][ C0] x5 : 0000000000000001 x4 : ffff8000800075e0 x3 : ffff800080ac62d0 [ 39.670325][ C0] x2 : ffff8000800075e0 x1 : 0000000000000300 x0 : 0000000000000000 [ 39.672488][ C0] Call trace: [ 39.673359][ C0] change_page_range+0x188/0x1cc (P) [ 39.674857][ C0] __apply_to_page_range+0xd58/0x13e4 [ 39.676346][ C0] apply_to_page_range+0x4c/0x64 [ 39.677735][ C0] __change_memory_common+0xac/0x3f8 [ 39.679210][ C0] set_memory_valid+0x68/0x7c [ 39.680629][ C0] kfence_guarded_alloc+0x2e8/0xb08 [ 39.682148][ C0] __kfence_alloc+0x394/0x45c [ 39.683444][ C0] kmem_cache_alloc_node_noprof+0x34c/0x3f4 [ 39.685078][ C0] __alloc_skb+0x144/0x2ec [ 39.686286][ C0] lapb_send_control+0x48/0x320 [ 39.687590][ C0] lapb_t1timer_expiry+0x490/0x864 [ 39.688993][ C0] call_timer_fn+0x1b4/0x818 [ 39.690292][ C0] __run_timer_base+0x51c/0x76c [ 39.691607][ C0] run_timer_softirq+0xcc/0x194 [ 39.692986][ C0] handle_softirqs+0x328/0xc88 [ 39.694353][ C0] __do_softirq+0x14/0x20 [ 39.695587][ C0] ____do_softirq+0x14/0x20 [ 39.696877][ C0] call_on_irq_stack+0x24/0x30 [ 39.698176][ C0] do_softirq_own_stack+0x20/0x2c [ 39.699664][ C0] __irq_exit_rcu+0x1b0/0x478 [ 39.700978][ C0] irq_exit_rcu+0x14/0x84 [ 39.702140][ C0] el1_interrupt+0x38/0x54 [ 39.703384][ C0] el1h_64_irq_handler+0x18/0x24 [ 39.704764][ C0] el1h_64_irq+0x6c/0x70 [ 39.705884][ C0] arch_local_irq_enable+0x8/0xc (P) [ 39.707362][ C0] do_idle+0x1d8/0x454 [ 39.708523][ C0] cpu_startup_entry+0x5c/0x74 [ 39.709907][ C0] rest_init+0x2d8/0x2f4 [ 39.711044][ C0] start_kernel+0x44c/0x4a8 [ 39.712282][ C0] __primary_switched+0x8c/0x94 [ 39.713589][ C0] irq event stamp: 251213 [ 39.714757][ C0] hardirqs last enabled at (251212): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 39.717778][ C0] hardirqs last disabled at (251213): [] kfence_guarded_alloc+0x190/0xb08 [ 39.720451][ C0] softirqs last enabled at (251196): [] handle_softirqs+0xaf8/0xc88 [ 39.723017][ C0] softirqs last disabled at (251203): [] __do_softirq+0x14/0x20 [ 39.725637][ C0] ---[ end trace 0000000000000000 ]--- [ 39.727878][ C0] ------------[ cut here ]------------ [ 39.727905][ C0] WARNING: CPU: 0 PID: 6095 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 39.732437][ C0] Modules linked in: [ 39.733537][ C0] CPU: 0 UID: 0 PID: 6095 Comm: klogd Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 39.736897][ C0] Tainted: [W]=WARN [ 39.737858][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 39.740545][ C0] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 39.742680][ C0] pc : __apply_to_page_range+0xdb4/0x13e4 [ 39.744300][ C0] lr : __apply_to_page_range+0xdb4/0x13e4 [ 39.745839][ C0] sp : ffff800080007640 [ 39.746959][ C0] x29: ffff800080007760 x28: ffff0001ffa32fff x27: ffff0001fec50fe8 [ 39.749072][ C0] x26: ffff0001ffa33000 x25: dfff800000000000 x24: ffff0001ffa32000 [ 39.751250][ C0] x23: ffff0001fea8e190 x22: 0000000000000100 x21: ffff0000d9743d00 [ 39.753414][ C0] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386aa76 [ 39.755637][ C0] x17: ffff80010d0e8000 x16: ffff80008051bab8 x15: 0000000000000001 [ 39.757796][ C0] x14: 1ffff00012dfb9ee x13: 0000000000000000 x12: 0000000000000000 [ 39.760153][ C0] x11: ffff700012dfb9ef x10: 0000000000ff0100 x9 : 0000000000000000 [ 39.762367][ C0] x8 : ffff0000d9743d00 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 39.764597][ C0] x5 : 0000000000000001 x4 : ffff800080007840 x3 : ffff8000802595f4 [ 39.766746][ C0] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 39.768883][ C0] Call trace: [ 39.769753][ C0] __apply_to_page_range+0xdb4/0x13e4 (P) [ 39.771291][ C0] apply_to_page_range+0x4c/0x64 [ 39.772632][ C0] __change_memory_common+0xac/0x3f8 [ 39.774010][ C0] set_memory_valid+0x68/0x7c [ 39.775263][ C0] kfence_guarded_free+0x278/0x5a8 [ 39.776608][ C0] __kfence_free+0x104/0x198 [ 39.777834][ C0] kmem_cache_free+0x250/0x550 [ 39.779073][ C0] kfree_skbmem+0x14c/0x1dc [ 39.780254][ C0] sk_skb_reason_drop+0x150/0x1b0 [ 39.781591][ C0] dev_kfree_skb_any_reason+0x94/0xd0 [ 39.783004][ C0] gve_clean_tx_done+0x240/0xaa8 [ 39.784363][ C0] gve_tx_poll+0x11c/0x1d0 [ 39.785523][ C0] gve_napi_poll+0xc0/0x3ac [ 39.786722][ C0] __napi_poll+0xb4/0x3fc [ 39.787872][ C0] net_rx_action+0x5d4/0xcc8 [ 39.789075][ C0] handle_softirqs+0x328/0xc88 [ 39.790342][ C0] __do_softirq+0x14/0x20 [ 39.791541][ C0] ____do_softirq+0x14/0x20 [ 39.792771][ C0] call_on_irq_stack+0x24/0x30 [ 39.794031][ C0] do_softirq_own_stack+0x20/0x2c [ 39.795357][ C0] do_softirq+0x90/0xf8 [ 39.796461][ C0] __local_bh_enable_ip+0x240/0x35c [ 39.797817][ C0] local_bh_enable+0x28/0x34 [ 39.799083][ C0] fpsimd_restore_current_state+0x1d4/0x708 [ 39.800652][ C0] do_notify_resume+0x144/0x1ec [ 39.801925][ C0] el0_svc+0xb4/0x17c [ 39.803018][ C0] el0t_64_sync_handler+0x78/0x108 [ 39.804356][ C0] el0t_64_sync+0x198/0x19c [ 39.805596][ C0] irq event stamp: 92155 [ 39.806722][ C0] hardirqs last enabled at (92154): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 39.809558][ C0] hardirqs last disabled at (92155): [] el1_dbg+0x24/0x80 [ 39.811942][ C0] softirqs last enabled at (92142): [] local_bh_enable+0x10/0x34 [ 39.814509][ C0] softirqs last disabled at (92143): [] __do_softirq+0x14/0x20 [ 39.817032][ C0] ---[ end trace 0000000000000000 ]--- [ 39.859445][ C1] ------------[ cut here ]------------ [ 39.859477][ C1] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 39.863722][ C1] Modules linked in: [ 39.864734][ C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 39.868011][ C1] Tainted: [W]=WARN [ 39.869005][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 39.871678][ C1] pstate: 404000c5 (nZcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 39.873744][ C1] pc : __apply_to_page_range+0xdb4/0x13e4 [ 39.875272][ C1] lr : __apply_to_page_range+0xdb4/0x13e4 [ 39.876892][ C1] sp : ffff8000800171e0 [ 39.877998][ C1] x29: ffff800080017300 x28: ffff0001ffa34fff x27: ffff0001fec50fe8 [ 39.880148][ C1] x26: ffff0001ffa35000 x25: dfff800000000000 x24: ffff0001ffa34000 [ 39.882330][ C1] x23: ffff0001fea8e1a0 x22: 0000000000000300 x21: ffff0000c1a0db80 [ 39.884429][ C1] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386f276 [ 39.886567][ C1] x17: ffff80010d10c000 x16: ffff80008adb82bc x15: ffff700010002e84 [ 39.888753][ C1] x14: 1ffff00010002e84 x13: 0000000000000004 x12: ffffffffffffffff [ 39.890808][ C1] x11: 00000000678ea1de x10: 0000000000ff0100 x9 : 0000000000000000 [ 39.892878][ C1] x8 : ffff0000c1a0db80 x7 : ffff800080c2c30c x6 : 0000000000000000 [ 39.894968][ C1] x5 : 0000000000000001 x4 : ffff8000800173e0 x3 : ffff8000802595f4 [ 39.897037][ C1] x2 : 0000000000001000 x1 : 0000000000000300 x0 : 0000000000000000 [ 39.899134][ C1] Call trace: [ 39.899968][ C1] __apply_to_page_range+0xdb4/0x13e4 (P) [ 39.901473][ C1] apply_to_page_range+0x4c/0x64 [ 39.902748][ C1] __change_memory_common+0xac/0x3f8 [ 39.904099][ C1] set_memory_valid+0x68/0x7c [ 39.905304][ C1] kfence_guarded_alloc+0x2e8/0xb08 [ 39.906645][ C1] __kfence_alloc+0x394/0x45c [ 39.907849][ C1] kmem_cache_alloc_node_noprof+0x34c/0x3f4 [ 39.909381][ C1] __alloc_skb+0x144/0x2ec [ 39.910522][ C1] lapb_send_control+0x48/0x320 [ 39.911775][ C1] lapb_t1timer_expiry+0x490/0x864 [ 39.913098][ C1] call_timer_fn+0x1b4/0x818 [ 39.914289][ C1] __run_timer_base+0x51c/0x76c [ 39.915546][ C1] timer_expire_remote+0x78/0xa0 [ 39.916818][ C1] tmigr_handle_remote+0x8d4/0x1340 [ 39.918161][ C1] run_timer_softirq+0x190/0x194 [ 39.919448][ C1] handle_softirqs+0x328/0xc88 [ 39.920671][ C1] __do_softirq+0x14/0x20 [ 39.921777][ C1] ____do_softirq+0x14/0x20 [ 39.922957][ C1] call_on_irq_stack+0x24/0x30 [ 39.924200][ C1] do_softirq_own_stack+0x20/0x2c [ 39.925499][ C1] __irq_exit_rcu+0x1b0/0x478 [ 39.926701][ C1] irq_exit_rcu+0x14/0x84 [ 39.927823][ C1] el1_interrupt+0x38/0x54 [ 39.928960][ C1] el1h_64_irq_handler+0x18/0x24 [ 39.930246][ C1] el1h_64_irq+0x6c/0x70 [ 39.931376][ C1] arch_local_irq_enable+0x8/0xc (P) [ 39.932729][ C1] do_idle+0x1d8/0x454 [ 39.933773][ C1] cpu_startup_entry+0x5c/0x74 [ 39.935089][ C1] secondary_start_kernel+0x1b8/0x1e0 [ 39.936692][ C1] __secondary_switched+0xc0/0xc4 [ 39.937990][ C1] irq event stamp: 213449 [ 39.939112][ C1] hardirqs last enabled at (213448): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 39.941979][ C1] hardirqs last disabled at (213449): [] kfence_guarded_alloc+0x190/0xb08 [ 39.944620][ C1] softirqs last enabled at (213420): [] handle_softirqs+0xaf8/0xc88 [ 39.947143][ C1] softirqs last disabled at (213427): [] __do_softirq+0x14/0x20 [ 39.949699][ C1] ---[ end trace 0000000000000000 ]--- [ 39.951175][ C1] ------------[ cut here ]------------ [ 39.951188][ C1] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:67 change_page_range+0x188/0x1cc [ 39.955332][ C1] Modules linked in: [ 39.956354][ C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 39.959741][ C1] Tainted: [W]=WARN [ 39.960770][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 39.963536][ C1] pstate: 404000c5 (nZcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 39.965609][ C1] pc : change_page_range+0x188/0x1cc [ 39.966960][ C1] lr : change_page_range+0x188/0x1cc [ 39.968337][ C1] sp : ffff8000800171a0 [ 39.969443][ C1] x29: ffff8000800171a0 x28: ffff0001ffa34fff x27: ffff0001fec50fe8 [ 39.971505][ C1] x26: ffff0001ffa35000 x25: ffff0001ffa34000 x24: ffff0001ffa34000 [ 39.973561][ C1] x23: 006800023fa34707 x22: 0040000000000001 x21: dfff800000000000 [ 39.975638][ C1] x20: 0000000000000300 x19: ffff0000c1a0db80 x18: 1fffe0003386f276 [ 39.977720][ C1] x17: ffff80010d10c000 x16: ffff80008adb82bc x15: 0000000000000001 [ 39.979813][ C1] x14: 1fffe00018341b70 x13: 0000000000000000 x12: 0000000000000000 [ 39.981880][ C1] x11: ffff600018341b71 x10: 0000000000ff0100 x9 : 0000000000000000 [ 39.983996][ C1] x8 : ffff0000c1a0db80 x7 : ffff800080c2c30c x6 : 0000000000000000 [ 39.986092][ C1] x5 : 0000000000000001 x4 : ffff8000800173e0 x3 : ffff800080ac62d0 [ 39.988176][ C1] x2 : ffff8000800173e0 x1 : 0000000000000300 x0 : 0000000000000000 [ 39.990305][ C1] Call trace: [ 39.991119][ C1] change_page_range+0x188/0x1cc (P) [ 39.992494][ C1] __apply_to_page_range+0xd58/0x13e4 [ 39.993880][ C1] apply_to_page_range+0x4c/0x64 [ 39.995159][ C1] __change_memory_common+0xac/0x3f8 [ 39.996522][ C1] set_memory_valid+0x68/0x7c [ 39.997724][ C1] kfence_guarded_alloc+0x2e8/0xb08 [ 39.999071][ C1] __kfence_alloc+0x394/0x45c [ 40.000280][ C1] kmem_cache_alloc_node_noprof+0x34c/0x3f4 [ 40.001768][ C1] __alloc_skb+0x144/0x2ec [ 40.002914][ C1] lapb_send_control+0x48/0x320 [ 40.004183][ C1] lapb_t1timer_expiry+0x490/0x864 [ 40.005603][ C1] call_timer_fn+0x1b4/0x818 [ 40.006834][ C1] __run_timer_base+0x51c/0x76c [ 40.008113][ C1] timer_expire_remote+0x78/0xa0 [ 40.009393][ C1] tmigr_handle_remote+0x8d4/0x1340 [ 40.010806][ C1] run_timer_softirq+0x190/0x194 [ 40.012171][ C1] handle_softirqs+0x328/0xc88 [ 40.013455][ C1] __do_softirq+0x14/0x20 [ 40.014614][ C1] ____do_softirq+0x14/0x20 [ 40.015842][ C1] call_on_irq_stack+0x24/0x30 [ 40.017204][ C1] do_softirq_own_stack+0x20/0x2c [ 40.018585][ C1] __irq_exit_rcu+0x1b0/0x478 [ 40.019873][ C1] irq_exit_rcu+0x14/0x84 [ 40.020994][ C1] el1_interrupt+0x38/0x54 [ 40.022191][ C1] el1h_64_irq_handler+0x18/0x24 [ 40.023508][ C1] el1h_64_irq+0x6c/0x70 [ 40.024602][ C1] arch_local_irq_enable+0x8/0xc (P) [ 40.026097][ C1] do_idle+0x1d8/0x454 [ 40.027132][ C1] cpu_startup_entry+0x5c/0x74 [ 40.028394][ C1] secondary_start_kernel+0x1b8/0x1e0 [ 40.029858][ C1] __secondary_switched+0xc0/0xc4 [ 40.031223][ C1] irq event stamp: 213449 [ 40.032352][ C1] hardirqs last enabled at (213448): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 40.035185][ C1] hardirqs last disabled at (213449): [] kfence_guarded_alloc+0x190/0xb08 [ 40.037763][ C1] softirqs last enabled at (213420): [] handle_softirqs+0xaf8/0xc88 [ 40.040282][ C1] softirqs last disabled at (213427): [] __do_softirq+0x14/0x20 [ 40.042655][ C1] ---[ end trace 0000000000000000 ]--- [ 40.044224][ C1] ------------[ cut here ]------------ [ 40.044253][ C1] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 40.048414][ C1] Modules linked in: [ 40.049421][ C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 40.052663][ C1] Tainted: [W]=WARN [ 40.053645][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 40.056241][ C1] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 40.058247][ C1] pc : __apply_to_page_range+0xdb4/0x13e4 [ 40.059765][ C1] lr : __apply_to_page_range+0xdb4/0x13e4 [ 40.061267][ C1] sp : ffff800080016f60 [ 40.062331][ C1] x29: ffff800080017080 x28: ffff0001ffa34fff x27: ffff0001fec50fe8 [ 40.064481][ C1] x26: ffff0001ffa35000 x25: dfff800000000000 x24: ffff0001ffa34000 [ 40.066593][ C1] x23: ffff0001fea8e1a0 x22: 0000000000000500 x21: ffff0000c1a0db80 [ 40.068641][ C1] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386f276 [ 40.070730][ C1] x17: ffff80010d10c000 x16: ffff80008051bab8 x15: 0000000000000001 [ 40.072941][ C1] x14: 1ffff00012dfb9a3 x13: 0000000000000000 x12: 0000000000000000 [ 40.075104][ C1] x11: ffff700012dfb9a4 x10: 0000000000ff0100 x9 : 0000000000000000 [ 40.077185][ C1] x8 : ffff0000c1a0db80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 40.079341][ C1] x5 : 0000000000000001 x4 : ffff800080017160 x3 : ffff8000802595f4 [ 40.081484][ C1] x2 : 0000000000001000 x1 : 0000000000000500 x0 : 0000000000000000 [ 40.083554][ C1] Call trace: [ 40.084468][ C1] __apply_to_page_range+0xdb4/0x13e4 (P) [ 40.085907][ C1] apply_to_page_range+0x4c/0x64 [ 40.087223][ C1] __change_memory_common+0xac/0x3f8 [ 40.088666][ C1] set_memory_valid+0x68/0x7c [ 40.089873][ C1] kfence_guarded_free+0x278/0x5a8 [ 40.091263][ C1] __kfence_free+0x104/0x198 [ 40.092479][ C1] kmem_cache_free_bulk+0x490/0x51c [ 40.093915][ C1] kfree_skb_list_reason+0x3ac/0x418 [ 40.095374][ C1] __dev_queue_xmit+0x1ac8/0x31f0 [ 40.096716][ C1] lapbeth_data_transmit+0x1fc/0x2a8 [ 40.098139][ C1] lapb_data_transmit+0x8c/0xb0 [ 40.099453][ C1] lapb_transmit_buffer+0x160/0x208 [ 40.100822][ C1] lapb_send_control+0x21c/0x320 [ 40.102154][ C1] lapb_t1timer_expiry+0x490/0x864 [ 40.103523][ C1] call_timer_fn+0x1b4/0x818 [ 40.104716][ C1] __run_timer_base+0x51c/0x76c [ 40.106028][ C1] timer_expire_remote+0x78/0xa0 [ 40.107368][ C1] tmigr_handle_remote+0x8d4/0x1340 [ 40.108835][ C1] run_timer_softirq+0x190/0x194 [ 40.110176][ C1] handle_softirqs+0x328/0xc88 [ 40.111532][ C1] __do_softirq+0x14/0x20 [ 40.112697][ C1] ____do_softirq+0x14/0x20 [ 40.113840][ C1] call_on_irq_stack+0x24/0x30 [ 40.115130][ C1] do_softirq_own_stack+0x20/0x2c [ 40.116519][ C1] __irq_exit_rcu+0x1b0/0x478 [ 40.117764][ C1] irq_exit_rcu+0x14/0x84 [ 40.118921][ C1] el1_interrupt+0x38/0x54 [ 40.120074][ C1] el1h_64_irq_handler+0x18/0x24 [ 40.121447][ C1] el1h_64_irq+0x6c/0x70 [ 40.122582][ C1] arch_local_irq_enable+0x8/0xc (P) [ 40.124047][ C1] do_idle+0x1d8/0x454 [ 40.125129][ C1] cpu_startup_entry+0x5c/0x74 [ 40.126459][ C1] secondary_start_kernel+0x1b8/0x1e0 [ 40.127968][ C1] __secondary_switched+0xc0/0xc4 [ 40.129358][ C1] irq event stamp: 213461 [ 40.130531][ C1] hardirqs last enabled at (213460): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 40.133284][ C1] hardirqs last disabled at (213461): [] el1_dbg+0x24/0x80 [ 40.135826][ C1] softirqs last enabled at (213420): [] handle_softirqs+0xaf8/0xc88 [ 40.138536][ C1] softirqs last disabled at (213427): [] __do_softirq+0x14/0x20 [ 40.141079][ C1] ---[ end trace 0000000000000000 ]--- [ 40.148076][ T6499] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 40.150802][ T6499] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 40.153377][ T6499] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 40.156442][ T6499] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 40.158930][ T6499] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 40.259915][ T6498] chnl_net:caif_netlink_parms(): no params data found [ 40.303117][ T6498] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.303210][ T6498] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.303358][ T6498] bridge_slave_0: entered allmulticast mode [ 40.304245][ T6498] bridge_slave_0: entered promiscuous mode [ 40.305728][ T6498] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.305781][ T6498] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.305870][ T6498] bridge_slave_1: entered allmulticast mode [ 40.306662][ T6498] bridge_slave_1: entered promiscuous mode [ 40.326256][ T6498] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 40.327742][ T6498] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 40.343203][ T6498] team0: Port device team_slave_0 added [ 40.344919][ T6498] team0: Port device team_slave_1 added [ 40.359925][ T6498] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 40.359978][ T6498] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 40.360007][ T6498] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 40.361294][ T6498] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 40.361320][ T6498] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 40.361349][ T6498] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 40.391497][ T6498] hsr_slave_0: entered promiscuous mode [ 40.392067][ T6498] hsr_slave_1: entered promiscuous mode [ 40.473023][ T6498] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 40.477398][ T6498] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 40.481166][ T6498] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 40.484882][ T6498] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 40.490542][ T6498] ------------[ cut here ]------------ [ 40.490591][ T6498] WARNING: CPU: 0 PID: 6498 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 40.495010][ T6498] Modules linked in: [ 40.496046][ T6498] CPU: 0 UID: 0 PID: 6498 Comm: syz-executor.0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 40.499526][ T6498] Tainted: [W]=WARN [ 40.500546][ T6498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 40.503251][ T6498] pstate: 804000c5 (Nzcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 40.505335][ T6498] pc : __apply_to_page_range+0xdb4/0x13e4 [ 40.506839][ T6498] lr : __apply_to_page_range+0xdb4/0x13e4 [ 40.508411][ T6498] sp : ffff8000a2dd6980 [ 40.509520][ T6498] x29: ffff8000a2dd6aa0 x28: ffff0001ffa3cfff x27: ffff0001fec50fe8 [ 40.511675][ T6498] x26: ffff0001ffa3d000 x25: dfff800000000000 x24: ffff0001ffa3c000 [ 40.513827][ T6498] x23: ffff0001fea8e1e0 x22: 0000000000000200 x21: ffff0000cae73d00 [ 40.515999][ T6498] x20: 100000023ea8e403 x19: 0000000000000001 x18: 00000000ffffffff [ 40.518146][ T6498] x17: ffff800092f37000 x16: ffff80008adb82bc x15: ffff7000145bad78 [ 40.520270][ T6498] x14: 1ffff000145bad78 x13: 0000000000000004 x12: ffffffffffffffff [ 40.522393][ T6498] x11: 000000004d2ab64a x10: 0000000000ff0100 x9 : 0000000000000000 [ 40.524517][ T6498] x8 : ffff0000cae73d00 x7 : ffff800080c2c30c x6 : 0000000000000000 [ 40.526629][ T6498] x5 : 0000000000000001 x4 : ffff8000a2dd6b80 x3 : ffff8000802595f4 [ 40.528748][ T6498] x2 : 0000000000001000 x1 : 0000000000000200 x0 : 0000000000000000 [ 40.530938][ T6498] Call trace: [ 40.531809][ T6498] __apply_to_page_range+0xdb4/0x13e4 (P) [ 40.533362][ T6498] apply_to_page_range+0x4c/0x64 [ 40.534684][ T6498] __change_memory_common+0xac/0x3f8 [ 40.536069][ T6498] set_memory_valid+0x68/0x7c [ 40.537292][ T6498] kfence_guarded_alloc+0x2e8/0xb08 [ 40.538663][ T6498] __kfence_alloc+0x394/0x45c [ 40.539893][ T6498] kmem_cache_alloc_node_noprof+0x34c/0x3f4 [ 40.541476][ T6498] kmalloc_reserve+0xc4/0x268 [ 40.542720][ T6498] __alloc_skb+0x170/0x2ec [ 40.543947][ T6498] napi_alloc_skb+0xa0/0x5fc [ 40.545179][ T6498] napi_get_frags+0x74/0x144 [ 40.546419][ T6498] netif_napi_add_weight_locked+0x474/0x804 [ 40.547978][ T6498] wg_peer_create+0x488/0x77c [ 40.549219][ T6498] wg_set_device+0xea0/0x1960 [ 40.550491][ T6498] genl_family_rcv_msg_doit+0x1d8/0x2bc [ 40.552030][ T6498] genl_rcv_msg+0x450/0x624 [ 40.553281][ T6498] netlink_rcv_skb+0x230/0x414 [ 40.554535][ T6498] genl_rcv+0x38/0x50 [ 40.555624][ T6498] netlink_unicast+0x60c/0x824 [ 40.556934][ T6498] netlink_sendmsg+0x648/0x930 [ 40.558206][ T6498] __sys_sendto+0x36c/0x4f4 [ 40.559403][ T6498] __arm64_sys_sendto+0xd8/0xf8 [ 40.560701][ T6498] invoke_syscall+0x98/0x2b8 [ 40.561926][ T6498] el0_svc_common+0x130/0x23c [ 40.563236][ T6498] do_el0_svc+0x48/0x58 [ 40.564500][ T6498] el0_svc+0x58/0x17c [ 40.565636][ T6498] el0t_64_sync_handler+0x78/0x108 [ 40.566973][ T6498] el0t_64_sync+0x198/0x19c [ 40.568249][ T6498] irq event stamp: 67837 [ 40.569352][ T6498] hardirqs last enabled at (67836): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 40.572240][ T6498] hardirqs last disabled at (67837): [] kfence_guarded_alloc+0x190/0xb08 [ 40.575107][ T6498] softirqs last enabled at (67804): [] local_bh_enable+0x10/0x34 [ 40.577751][ T6498] softirqs last disabled at (67830): [] local_bh_disable+0x10/0x34 [ 40.580436][ T6498] ---[ end trace 0000000000000000 ]--- [ 40.581966][ T6498] ------------[ cut here ]------------ [ 40.581981][ T6498] WARNING: CPU: 0 PID: 6498 at ./arch/arm64/include/asm/pgtable.h:67 change_page_range+0x188/0x1cc [ 40.586397][ T6498] Modules linked in: [ 40.587461][ T6498] CPU: 0 UID: 0 PID: 6498 Comm: syz-executor.0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 40.591004][ T6498] Tainted: [W]=WARN [ 40.592030][ T6498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 40.594711][ T6498] pstate: 804000c5 (Nzcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 40.596792][ T6498] pc : change_page_range+0x188/0x1cc [ 40.598246][ T6498] lr : change_page_range+0x188/0x1cc [ 40.599662][ T6498] sp : ffff8000a2dd6940 [ 40.600757][ T6498] x29: ffff8000a2dd6940 x28: ffff0001ffa3cfff x27: ffff0001fec50fe8 [ 40.602868][ T6498] x26: ffff0001ffa3d000 x25: ffff0001ffa3c000 x24: ffff0001ffa3c000 [ 40.605040][ T6498] x23: 006800023fa3c707 x22: 0040000000000001 x21: dfff800000000000 [ 40.607384][ T6498] x20: 0000000000000200 x19: ffff0000cae73d00 x18: 00000000ffffffff [ 40.609569][ T6498] x17: ffff800092f37000 x16: ffff80008adb82bc x15: 0000000000000001 [ 40.611816][ T6498] x14: 1fffe000195ce7a0 x13: 0000000000000000 x12: 0000000000000000 [ 40.614023][ T6498] x11: ffff6000195ce7a1 x10: 0000000000ff0100 x9 : 0000000000000000 [ 40.616256][ T6498] x8 : ffff0000cae73d00 x7 : ffff800080c2c30c x6 : 0000000000000000 [ 40.618431][ T6498] x5 : 0000000000000001 x4 : ffff8000a2dd6b80 x3 : ffff800080ac62d0 [ 40.620567][ T6498] x2 : ffff8000a2dd6b80 x1 : 0000000000000200 x0 : 0000000000000000 [ 40.622742][ T6498] Call trace: [ 40.623611][ T6498] change_page_range+0x188/0x1cc (P) [ 40.625029][ T6498] __apply_to_page_range+0xd58/0x13e4 [ 40.626477][ T6498] apply_to_page_range+0x4c/0x64 [ 40.627805][ T6498] __change_memory_common+0xac/0x3f8 [ 40.629193][ T6498] set_memory_valid+0x68/0x7c [ 40.630404][ T6498] kfence_guarded_alloc+0x2e8/0xb08 [ 40.631797][ T6498] __kfence_alloc+0x394/0x45c [ 40.633068][ T6498] kmem_cache_alloc_node_noprof+0x34c/0x3f4 [ 40.634659][ T6498] kmalloc_reserve+0xc4/0x268 [ 40.635974][ T6498] __alloc_skb+0x170/0x2ec [ 40.637204][ T6498] napi_alloc_skb+0xa0/0x5fc [ 40.638491][ T6498] napi_get_frags+0x74/0x144 [ 40.639740][ T6498] netif_napi_add_weight_locked+0x474/0x804 [ 40.641389][ T6498] wg_peer_create+0x488/0x77c [ 40.642662][ T6498] wg_set_device+0xea0/0x1960 [ 40.643946][ T6498] genl_family_rcv_msg_doit+0x1d8/0x2bc [ 40.645452][ T6498] genl_rcv_msg+0x450/0x624 [ 40.646623][ T6498] netlink_rcv_skb+0x230/0x414 [ 40.647904][ T6498] genl_rcv+0x38/0x50 [ 40.648973][ T6498] netlink_unicast+0x60c/0x824 [ 40.650238][ T6498] netlink_sendmsg+0x648/0x930 [ 40.651586][ T6498] __sys_sendto+0x36c/0x4f4 [ 40.652851][ T6498] __arm64_sys_sendto+0xd8/0xf8 [ 40.654225][ T6498] invoke_syscall+0x98/0x2b8 [ 40.655495][ T6498] el0_svc_common+0x130/0x23c [ 40.656752][ T6498] do_el0_svc+0x48/0x58 [ 40.657876][ T6498] el0_svc+0x58/0x17c [ 40.658957][ T6498] el0t_64_sync_handler+0x78/0x108 [ 40.660358][ T6498] el0t_64_sync+0x198/0x19c [ 40.661591][ T6498] irq event stamp: 67837 [ 40.662764][ T6498] hardirqs last enabled at (67836): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 40.665719][ T6498] hardirqs last disabled at (67837): [] kfence_guarded_alloc+0x190/0xb08 [ 40.668522][ T6498] softirqs last enabled at (67804): [] local_bh_enable+0x10/0x34 [ 40.671091][ T6498] softirqs last disabled at (67830): [] local_bh_disable+0x10/0x34 [ 40.673792][ T6498] ---[ end trace 0000000000000000 ]--- [ 40.675539][ T6498] ------------[ cut here ]------------ [ 40.675587][ T6498] WARNING: CPU: 0 PID: 6498 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 40.679934][ T6498] Modules linked in: [ 40.680947][ T6498] CPU: 0 UID: 0 PID: 6498 Comm: syz-executor.0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 40.684500][ T6498] Tainted: [W]=WARN [ 40.685465][ T6498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 40.688147][ T6498] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 40.690318][ T6498] pc : __apply_to_page_range+0xdb4/0x13e4 [ 40.691877][ T6498] lr : __apply_to_page_range+0xdb4/0x13e4 [ 40.693416][ T6498] sp : ffff8000a2dd6d00 [ 40.694633][ T6498] x29: ffff8000a2dd6e20 x28: ffff0001ffa3cfff x27: ffff0001fec50fe8 [ 40.696755][ T6498] x26: ffff0001ffa3d000 x25: dfff800000000000 x24: ffff0001ffa3c000 [ 40.698910][ T6498] x23: ffff0001fea8e1e0 x22: 0000000000000200 x21: ffff0000cae73d00 [ 40.701147][ T6498] x20: 100000023ea8e403 x19: 0000000000000001 x18: 00000000ffffffff [ 40.703340][ T6498] x17: ffff800092f37000 x16: ffff80008051bab8 x15: 0000000000000001 [ 40.705504][ T6498] x14: 1ffff00012dfb933 x13: 0000000000000000 x12: 0000000000000000 [ 40.707987][ T6498] x11: ffff700012dfb934 x10: 0000000000ff0100 x9 : 0000000000000000 [ 40.710141][ T6498] x8 : ffff0000cae73d00 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 40.712266][ T6498] x5 : 0000000000000001 x4 : ffff8000a2dd6f00 x3 : ffff8000802595f4 [ 40.714357][ T6498] x2 : 0000000000001000 x1 : 0000000000000200 x0 : 0000000000000000 [ 40.716543][ T6498] Call trace: [ 40.717449][ T6498] __apply_to_page_range+0xdb4/0x13e4 (P) [ 40.718958][ T6498] apply_to_page_range+0x4c/0x64 [ 40.720335][ T6498] __change_memory_common+0xac/0x3f8 [ 40.721752][ T6498] set_memory_valid+0x68/0x7c [ 40.722990][ T6498] kfence_guarded_free+0x278/0x5a8 [ 40.724341][ T6498] __kfence_free+0x104/0x198 [ 40.725606][ T6498] kmem_cache_free+0x250/0x550 [ 40.726915][ T6498] skb_free_head+0xbc/0x198 [ 40.728202][ T6498] skb_release_data+0x66c/0x820 [ 40.729530][ T6498] sk_skb_reason_drop+0x148/0x1b0 [ 40.730845][ T6498] netif_napi_add_weight_locked+0x4cc/0x804 [ 40.732550][ T6498] wg_peer_create+0x488/0x77c [ 40.733822][ T6498] wg_set_device+0xea0/0x1960 [ 40.735067][ T6498] genl_family_rcv_msg_doit+0x1d8/0x2bc [ 40.736606][ T6498] genl_rcv_msg+0x450/0x624 [ 40.737879][ T6498] netlink_rcv_skb+0x230/0x414 [ 40.739133][ T6498] genl_rcv+0x38/0x50 [ 40.740219][ T6498] netlink_unicast+0x60c/0x824 [ 40.741552][ T6498] netlink_sendmsg+0x648/0x930 [ 40.742841][ T6498] __sys_sendto+0x36c/0x4f4 [ 40.744064][ T6498] __arm64_sys_sendto+0xd8/0xf8 [ 40.745379][ T6498] invoke_syscall+0x98/0x2b8 [ 40.746669][ T6498] el0_svc_common+0x130/0x23c [ 40.748039][ T6498] do_el0_svc+0x48/0x58 [ 40.749137][ T6498] el0_svc+0x58/0x17c [ 40.750243][ T6498] el0t_64_sync_handler+0x78/0x108 [ 40.751661][ T6498] el0t_64_sync+0x198/0x19c [ 40.752849][ T6498] irq event stamp: 67849 [ 40.753975][ T6498] hardirqs last enabled at (67848): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 40.756787][ T6498] hardirqs last disabled at (67849): [] el1_dbg+0x24/0x80 [ 40.759124][ T6498] softirqs last enabled at (67804): [] local_bh_enable+0x10/0x34 [ 40.761623][ T6498] softirqs last disabled at (67830): [] local_bh_disable+0x10/0x34 [ 40.764204][ T6498] ---[ end trace 0000000000000000 ]--- [ 40.776089][ T6498] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.776195][ T6498] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.776544][ T6498] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.776608][ T6498] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.789852][ T668] ------------[ cut here ]------------ [ 40.789906][ T668] WARNING: CPU: 1 PID: 668 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 40.794347][ T668] Modules linked in: [ 40.795441][ T668] CPU: 1 UID: 0 PID: 668 Comm: kworker/u8:8 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 40.798992][ T668] Tainted: [W]=WARN [ 40.799976][ T668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 40.802752][ T668] Workqueue: ipv6_addrconf addrconf_dad_work [ 40.804405][ T668] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 40.806460][ T668] pc : __apply_to_page_range+0xdb4/0x13e4 [ 40.807965][ T668] lr : __apply_to_page_range+0xdb4/0x13e4 [ 40.809561][ T668] sp : ffff80009cfe6c20 [ 40.810711][ T668] x29: ffff80009cfe6d40 x28: ffff0001ffa3efff x27: ffff0001fec50fe8 [ 40.812868][ T668] x26: ffff0001ffa3f000 x25: dfff800000000000 x24: ffff0001ffa3e000 [ 40.815139][ T668] x23: ffff0001fea8e1f0 x22: 0000000000000200 x21: ffff0000c77d1e80 [ 40.817295][ T668] x20: 100000023ea8e403 x19: 0000000000000001 x18: 00000000ffffffff [ 40.819476][ T668] x17: ffff800092f37000 x16: ffff80008051bab8 x15: 0000000000000001 [ 40.821649][ T668] x14: 1ffff00012dfba08 x13: 0000000000000000 x12: 0000000000000000 [ 40.823806][ T668] x11: ffff700012dfba09 x10: 0000000000ff0100 x9 : 0000000000000000 [ 40.826060][ T668] x8 : ffff0000c77d1e80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 40.828342][ T668] x5 : 0000000000000001 x4 : ffff80009cfe6e20 x3 : ffff8000802595f4 [ 40.830524][ T668] x2 : 0000000000001000 x1 : 0000000000000200 x0 : 0000000000000000 [ 40.832703][ T668] Call trace: [ 40.833647][ T668] __apply_to_page_range+0xdb4/0x13e4 (P) [ 40.835191][ T668] apply_to_page_range+0x4c/0x64 [ 40.836490][ T668] __change_memory_common+0xac/0x3f8 [ 40.837886][ T668] set_memory_valid+0x68/0x7c [ 40.839107][ T668] kfence_guarded_free+0x278/0x5a8 [ 40.840443][ T668] __kfence_free+0x104/0x198 [ 40.841625][ T668] kmem_cache_free+0x250/0x550 [ 40.842884][ T668] kfree_skbmem+0x14c/0x1dc [ 40.844090][ T668] consume_skb+0xb8/0x130 [ 40.845238][ T668] nsim_start_xmit+0x1cc/0x6d8 [ 40.846494][ T668] dev_hard_start_xmit+0x2b0/0x8ac [ 40.847906][ T668] __dev_queue_xmit+0x15a4/0x31f0 [ 40.849307][ T668] neigh_resolve_output+0x550/0x654 [ 40.850710][ T668] ip6_finish_output2+0x1544/0x1c7c [ 40.852092][ T668] ip6_finish_output+0x418/0x7b4 [ 40.853463][ T668] ip6_output+0x274/0x504 [ 40.854614][ T668] ndisc_send_skb+0xb48/0x1524 [ 40.855916][ T668] ndisc_send_ns+0xd4/0x164 [ 40.857142][ T668] addrconf_dad_work+0x770/0x10cc [ 40.858451][ T668] process_one_work+0x7e8/0x156c [ 40.859758][ T668] worker_thread+0x958/0xed8 [ 40.861031][ T668] kthread+0x5fc/0x75c [ 40.862145][ T668] ret_from_fork+0x10/0x20 [ 40.863403][ T668] irq event stamp: 476599 [ 40.864567][ T668] hardirqs last enabled at (476598): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 40.867387][ T668] hardirqs last disabled at (476599): [] el1_dbg+0x24/0x80 [ 40.869886][ T668] softirqs last enabled at (476578): [] neigh_resolve_output+0x25c/0x654 [ 40.872630][ T668] softirqs last disabled at (476582): [] local_bh_disable+0x10/0x34 [ 40.875251][ T668] ---[ end trace 0000000000000000 ]--- [ 40.895105][ T6498] 8021q: adding VLAN 0 to HW filter on device bond0 [ 40.901514][ T44] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.904313][ T44] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.913322][ T6498] 8021q: adding VLAN 0 to HW filter on device team0 [ 40.918235][ T44] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.918318][ T44] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.931969][ T2216] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.932048][ T2216] bridge0: port 2(bridge_slave_1) entered forwarding state [ 41.019133][ T6498] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 41.043504][ T6498] veth0_vlan: entered promiscuous mode [ 41.048409][ T6498] veth1_vlan: entered promiscuous mode [ 41.061376][ T6498] veth0_macvtap: entered promiscuous mode [ 41.063262][ T6498] veth1_macvtap: entered promiscuous mode [ 41.071895][ T6498] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 41.073984][ T6498] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 41.075647][ T6498] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 41.075756][ T6498] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 41.075787][ T6498] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 41.075829][ T6498] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 41.100076][ T6498] ------------[ cut here ]------------ [ 41.100169][ T6498] WARNING: CPU: 1 PID: 6498 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 41.104484][ T6498] Modules linked in: [ 41.105578][ T6498] CPU: 1 UID: 0 PID: 6498 Comm: syz-executor.0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 41.109037][ T6498] Tainted: [W]=WARN [ 41.110063][ T6498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 41.112697][ T6498] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 41.114739][ T6498] pc : __apply_to_page_range+0xdb4/0x13e4 [ 41.116290][ T6498] lr : __apply_to_page_range+0xdb4/0x13e4 [ 41.117815][ T6498] sp : ffff8000a2dd6a60 [ 41.118904][ T6498] x29: ffff8000a2dd6b80 x28: ffff0001ffa46fff x27: ffff0001fec50fe8 [ 41.121099][ T6498] x26: ffff0001ffa47000 x25: dfff800000000000 x24: ffff0001ffa46000 [ 41.123216][ T6498] x23: ffff0001fea8e230 x22: 0000000000000200 x21: ffff0000cae73d00 [ 41.125336][ T6498] x20: 100000023ea8e403 x19: 0000000000000001 x18: 00000000ffffffff [ 41.127428][ T6498] x17: ffff800092f37000 x16: ffff80008051bab8 x15: 0000000000000001 [ 41.129522][ T6498] x14: 1ffff00012dfb9ec x13: 0000000000000000 x12: 0000000000000000 [ 41.131656][ T6498] x11: ffff700012dfb9ed x10: 0000000000ff0100 x9 : 0000000000000000 [ 41.133923][ T6498] x8 : ffff0000cae73d00 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 41.136032][ T6498] x5 : 0000000000000001 x4 : ffff8000a2dd6c60 x3 : ffff8000802595f4 [ 41.138138][ T6498] x2 : 0000000000001000 x1 : 0000000000000200 x0 : 0000000000000000 [ 41.140244][ T6498] Call trace: [ 41.141092][ T6498] __apply_to_page_range+0xdb4/0x13e4 (P) [ 41.142678][ T6498] apply_to_page_range+0x4c/0x64 [ 41.144080][ T6498] __change_memory_common+0xac/0x3f8 [ 41.145591][ T6498] set_memory_valid+0x68/0x7c [ 41.146862][ T6498] kfence_guarded_free+0x278/0x5a8 [ 41.148295][ T6498] __kfence_free+0x104/0x198 [ 41.149509][ T6498] kmem_cache_free+0x250/0x550 [ 41.150821][ T6498] kfree_skbmem+0x14c/0x1dc [ 41.152091][ T6498] consume_skb+0xb8/0x130 [ 41.153274][ T6498] nlmon_xmit+0xf8/0x178 [ 41.154427][ T6498] dev_hard_start_xmit+0x2b0/0x8ac [ 41.155837][ T6498] __dev_queue_xmit+0x15a4/0x31f0 [ 41.157157][ T6498] __netlink_deliver_tap+0x484/0x708 [ 41.158581][ T6498] netlink_deliver_tap+0x1ac/0x1b0 [ 41.159938][ T6498] netlink_sendskb+0x78/0x164 [ 41.161205][ T6498] netlink_unicast+0x2d0/0x824 [ 41.162486][ T6498] ctrl_getfamily+0x410/0x4ec [ 41.163736][ T6498] genl_family_rcv_msg_doit+0x1d8/0x2bc [ 41.165205][ T6498] genl_rcv_msg+0x450/0x624 [ 41.166392][ T6498] netlink_rcv_skb+0x230/0x414 [ 41.167631][ T6498] genl_rcv+0x38/0x50 [ 41.168674][ T6498] netlink_unicast+0x60c/0x824 [ 41.169948][ T6498] netlink_sendmsg+0x648/0x930 [ 41.171311][ T6498] __sys_sendto+0x36c/0x4f4 [ 41.172508][ T6498] __arm64_sys_sendto+0xd8/0xf8 [ 41.173888][ T6498] invoke_syscall+0x98/0x2b8 [ 41.175146][ T6498] el0_svc_common+0x130/0x23c [ 41.176454][ T6498] do_el0_svc+0x48/0x58 [ 41.177590][ T6498] el0_svc+0x58/0x17c [ 41.178704][ T6498] el0t_64_sync_handler+0x78/0x108 [ 41.180096][ T6498] el0t_64_sync+0x198/0x19c [ 41.181358][ T6498] irq event stamp: 123269 [ 41.182596][ T6498] hardirqs last enabled at (123268): [] exit_to_kernel_mode+0xc0/0xf0 [ 41.185401][ T6498] hardirqs last disabled at (123269): [] el1_dbg+0x24/0x80 [ 41.187844][ T6498] softirqs last enabled at (123250): [] local_bh_enable+0x10/0x34 [ 41.190499][ T6498] softirqs last disabled at (123262): [] local_bh_disable+0x10/0x34 [ 41.193241][ T6498] ---[ end trace 0000000000000000 ]--- [ 41.224012][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 41.224283][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 41.243976][ T2216] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 41.244032][ T2216] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 syzkaller build log: go env (err=) GO111MODULE='auto' GOARCH='amd64' GOBIN='' GOCACHE='/syzkaller/.cache/go-build' GOENV='/syzkaller/.config/go/env' GOEXE='' GOEXPERIMENT='' GOFLAGS='' GOHOSTARCH='amd64' GOHOSTOS='linux' GOINSECURE='' GOMODCACHE='/syzkaller/jobs-2/linux/gopath/pkg/mod' GONOPROXY='' GONOSUMDB='' GOOS='linux' GOPATH='/syzkaller/jobs-2/linux/gopath' GOPRIVATE='' GOPROXY='https://proxy.golang.org,direct' GOROOT='/usr/local/go' GOSUMDB='sum.golang.org' GOTMPDIR='' GOTOOLCHAIN='auto' GOTOOLDIR='/usr/local/go/pkg/tool/linux_amd64' GOVCS='' GOVERSION='go1.22.7' GCCGO='gccgo' GOAMD64='v1' AR='ar' CC='gcc' CXX='g++' CGO_ENABLED='1' GOMOD='/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/go.mod' GOWORK='' CGO_CFLAGS='-O2 -g' CGO_CPPFLAGS='' CGO_CXXFLAGS='-O2 -g' CGO_FFLAGS='-O2 -g' CGO_LDFLAGS='-O2 -g' PKG_CONFIG='pkg-config' GOGCCFLAGS='-fPIC -m64 -pthread -Wl,--no-gc-sections -fmessage-length=0 -ffile-prefix-map=/tmp/go-build3296440248=/tmp/go-build -gno-record-gcc-switches' git status (err=) HEAD detached at 67cb024cd1a nothing to commit, working tree clean tput: No value for $TERM and no -T specified tput: No value for $TERM and no -T specified Makefile:32: run command via tools/syz-env for best compatibility, see: Makefile:33: https://github.com/google/syzkaller/blob/master/docs/contributing.md#using-syz-env go list -f '{{.Stale}}' ./sys/syz-sysgen | grep -q false || go install ./sys/syz-sysgen make .descriptions tput: No value for $TERM and no -T specified tput: No value for $TERM and no -T specified bin/syz-sysgen touch .descriptions GOOS=linux GOARCH=arm64 go build "-ldflags=-s -w -X github.com/google/syzkaller/prog.GitRevision=67cb024cd1a3c95e311263a5c95e957f9abfd8ca -X 'github.com/google/syzkaller/prog.gitRevisionDate=20221014-131057'" "-tags=syz_target syz_os_linux syz_arch_arm64 " -o ./bin/linux_arm64/syz-fuzzer github.com/google/syzkaller/syz-fuzzer GOOS=linux GOARCH=arm64 go build "-ldflags=-s -w -X github.com/google/syzkaller/prog.GitRevision=67cb024cd1a3c95e311263a5c95e957f9abfd8ca -X 'github.com/google/syzkaller/prog.gitRevisionDate=20221014-131057'" "-tags=syz_target syz_os_linux syz_arch_arm64 " -o ./bin/linux_arm64/syz-execprog github.com/google/syzkaller/tools/syz-execprog GOOS=linux GOARCH=arm64 go build "-ldflags=-s -w -X github.com/google/syzkaller/prog.GitRevision=67cb024cd1a3c95e311263a5c95e957f9abfd8ca -X 'github.com/google/syzkaller/prog.gitRevisionDate=20221014-131057'" "-tags=syz_target syz_os_linux syz_arch_arm64 " -o ./bin/linux_arm64/syz-stress github.com/google/syzkaller/tools/syz-stress mkdir -p ./bin/linux_arm64 aarch64-linux-gnu-gcc -o ./bin/linux_arm64/syz-executor executor/executor.cc \ -O2 -pthread -Wall -Werror -Wparentheses -Wunused-const-variable -Wframe-larger-than=16384 -Wno-stringop-overflow -Wno-array-bounds -Wno-format-overflow -static-pie -fpermissive -w -DGOOS_linux=1 -DGOARCH_arm64=1 \ -DHOSTGOOS_linux=1 -DGIT_REVISION=\"67cb024cd1a3c95e311263a5c95e957f9abfd8ca\"