WARNING in __apply_to_page_range ------------[ cut here ]------------ WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pte_range mm/memory.c:2936 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pmd_range mm/memory.c:2985 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pud_range mm/memory.c:3021 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_p4d_range mm/memory.c:3057 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 Modules linked in: CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] pc : apply_to_pte_range mm/memory.c:2936 [inline] pc : apply_to_pmd_range mm/memory.c:2985 [inline] pc : apply_to_pud_range mm/memory.c:3021 [inline] pc : apply_to_p4d_range mm/memory.c:3057 [inline] pc : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 lr : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] lr : apply_to_pte_range mm/memory.c:2936 [inline] lr : apply_to_pmd_range mm/memory.c:2985 [inline] lr : apply_to_pud_range mm/memory.c:3021 [inline] lr : apply_to_p4d_range mm/memory.c:3057 [inline] lr : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 sp : ffff800080017900 x29: ffff800080017a20 x28: ffff0001ffbd4fff x27: ffff0001fec50fe8 x26: ffff0001ffbd5000 x25: dfff800000000000 x24: ffff0001ffbd4000 x23: ffff0001fea8eea0 x22: 0000000000000100 x21: ffff0000c1a0db80 x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386f276 x17: 0000000000000000 x16: ffff80008051bab8 x15: 0000000000000001 x14: 1ffff00012dfba22 x13: 0000000000000000 x12: 0000000000000000 x11: ffff700012dfba23 x10: 0000000000ff0100 x9 : 0000000000000000 x8 : ffff0000c1a0db80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 x5 : 0000000000000001 x4 : ffff800080017b00 x3 : ffff8000802595f4 x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 Call trace: arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] (P) apply_to_pte_range mm/memory.c:2936 [inline] (P) apply_to_pmd_range mm/memory.c:2985 [inline] (P) apply_to_pud_range mm/memory.c:3021 [inline] (P) apply_to_p4d_range mm/memory.c:3057 [inline] (P) __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 (P) apply_to_page_range+0x4c/0x64 mm/memory.c:3112 __change_memory_common+0xac/0x3f8 arch/arm64/mm/pageattr.c:64 set_memory_valid+0x68/0x7c arch/arm64/mm/pageattr.c:-1 kfence_protect_page arch/arm64/include/asm/kfence.h:17 [inline] kfence_protect mm/kfence/core.c:247 [inline] kfence_guarded_free+0x278/0x5a8 mm/kfence/core.c:565 __kfence_free+0x104/0x198 mm/kfence/core.c:1187 kfence_free include/linux/kfence.h:187 [inline] slab_free_hook mm/slub.c:2318 [inline] slab_free mm/slub.c:4642 [inline] kfree+0x268/0x474 mm/slub.c:4841 slab_free_after_rcu_debug+0x78/0x2f4 mm/slub.c:4679 rcu_do_batch kernel/rcu/tree.c:2568 [inline] rcu_core+0x848/0x17a4 kernel/rcu/tree.c:2824 rcu_core_si+0x10/0x1c kernel/rcu/tree.c:2841 handle_softirqs+0x328/0xc88 kernel/softirq.c:579 __do_softirq+0x14/0x20 kernel/softirq.c:613 ____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:81 call_on_irq_stack+0x24/0x30 arch/arm64/kernel/entry.S:891 do_softirq_own_stack+0x20/0x2c arch/arm64/kernel/irq.c:86 invoke_softirq kernel/softirq.c:460 [inline] __irq_exit_rcu+0x1b0/0x478 kernel/softirq.c:680 irq_exit_rcu+0x14/0x84 kernel/softirq.c:696 __el1_irq arch/arm64/kernel/entry-common.c:584 [inline] el1_interrupt+0x38/0x54 arch/arm64/kernel/entry-common.c:598 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:603 el1h_64_irq+0x6c/0x70 arch/arm64/kernel/entry.S:596 __daif_local_irq_enable arch/arm64/include/asm/irqflags.h:26 [inline] (P) arch_local_irq_enable+0x8/0xc arch/arm64/include/asm/irqflags.h:48 (P) cpuidle_idle_call kernel/sched/idle.c:185 [inline] do_idle+0x1d8/0x454 kernel/sched/idle.c:325 cpu_startup_entry+0x5c/0x74 kernel/sched/idle.c:423 secondary_start_kernel+0x1b8/0x1e0 arch/arm64/kernel/smp.c:279 __secondary_switched+0xc0/0xc4 arch/arm64/kernel/head.S:401 irq event stamp: 132265 hardirqs last enabled at (132264): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline] hardirqs last enabled at (132264): [] _raw_spin_unlock_irqrestore+0x38/0x98 kernel/locking/spinlock.c:194 hardirqs last disabled at (132265): [] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:511 softirqs last enabled at (132222): [] softirq_handle_end kernel/softirq.c:425 [inline] softirqs last enabled at (132222): [] handle_softirqs+0xaf8/0xc88 kernel/softirq.c:607 softirqs last disabled at (132247): [] __do_softirq+0x14/0x20 kernel/softirq.c:613 ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pte_range mm/memory.c:2936 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pmd_range mm/memory.c:2985 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pud_range mm/memory.c:3021 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_p4d_range mm/memory.c:3057 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 Modules linked in: CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] pc : apply_to_pte_range mm/memory.c:2936 [inline] pc : apply_to_pmd_range mm/memory.c:2985 [inline] pc : apply_to_pud_range mm/memory.c:3021 [inline] pc : apply_to_p4d_range mm/memory.c:3057 [inline] pc : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 lr : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] lr : apply_to_pte_range mm/memory.c:2936 [inline] lr : apply_to_pmd_range mm/memory.c:2985 [inline] lr : apply_to_pud_range mm/memory.c:3021 [inline] lr : apply_to_p4d_range mm/memory.c:3057 [inline] lr : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 sp : ffff800080017900 x29: ffff800080017a20 x28: ffff0001ffbd8fff x27: ffff0001fec50fe8 x26: ffff0001ffbd9000 x25: dfff800000000000 x24: ffff0001ffbd8000 x23: ffff0001fea8eec0 x22: 0000000000000100 x21: ffff0000c1a0db80 x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386f276 x17: ffff80010d10c000 x16: ffff80008051bab8 x15: 0000000000000001 x14: 1ffff00012dfba0f x13: 0000000000000000 x12: 0000000000000000 x11: ffff700012dfba10 x10: 0000000000ff0100 x9 : 0000000000000000 x8 : ffff0000c1a0db80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 x5 : 0000000000000001 x4 : ffff800080017b00 x3 : ffff8000802595f4 x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 Call trace: arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] (P) apply_to_pte_range mm/memory.c:2936 [inline] (P) apply_to_pmd_range mm/memory.c:2985 [inline] (P) apply_to_pud_range mm/memory.c:3021 [inline] (P) apply_to_p4d_range mm/memory.c:3057 [inline] (P) __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 (P) apply_to_page_range+0x4c/0x64 mm/memory.c:3112 __change_memory_common+0xac/0x3f8 arch/arm64/mm/pageattr.c:64 set_memory_valid+0x68/0x7c arch/arm64/mm/pageattr.c:-1 kfence_protect_page arch/arm64/include/asm/kfence.h:17 [inline] kfence_protect mm/kfence/core.c:247 [inline] kfence_guarded_free+0x278/0x5a8 mm/kfence/core.c:565 __kfence_free+0x104/0x198 mm/kfence/core.c:1187 kfence_free include/linux/kfence.h:187 [inline] slab_free_hook mm/slub.c:2318 [inline] slab_free mm/slub.c:4642 [inline] kfree+0x268/0x474 mm/slub.c:4841 slab_free_after_rcu_debug+0x78/0x2f4 mm/slub.c:4679 rcu_do_batch kernel/rcu/tree.c:2568 [inline] rcu_core+0x848/0x17a4 kernel/rcu/tree.c:2824 rcu_core_si+0x10/0x1c kernel/rcu/tree.c:2841 handle_softirqs+0x328/0xc88 kernel/softirq.c:579 __do_softirq+0x14/0x20 kernel/softirq.c:613 ____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:81 call_on_irq_stack+0x24/0x30 arch/arm64/kernel/entry.S:891 do_softirq_own_stack+0x20/0x2c arch/arm64/kernel/irq.c:86 invoke_softirq kernel/softirq.c:460 [inline] __irq_exit_rcu+0x1b0/0x478 kernel/softirq.c:680 irq_exit_rcu+0x14/0x84 kernel/softirq.c:696 __el1_irq arch/arm64/kernel/entry-common.c:584 [inline] el1_interrupt+0x38/0x54 arch/arm64/kernel/entry-common.c:598 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:603 el1h_64_irq+0x6c/0x70 arch/arm64/kernel/entry.S:596 __daif_local_irq_enable arch/arm64/include/asm/irqflags.h:26 [inline] (P) arch_local_irq_enable+0x8/0xc arch/arm64/include/asm/irqflags.h:48 (P) cpuidle_idle_call kernel/sched/idle.c:185 [inline] do_idle+0x1d8/0x454 kernel/sched/idle.c:325 cpu_startup_entry+0x5c/0x74 kernel/sched/idle.c:423 secondary_start_kernel+0x1b8/0x1e0 arch/arm64/kernel/smp.c:279 __secondary_switched+0xc0/0xc4 arch/arm64/kernel/head.S:401 irq event stamp: 133885 hardirqs last enabled at (133884): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline] hardirqs last enabled at (133884): [] _raw_spin_unlock_irqrestore+0x38/0x98 kernel/locking/spinlock.c:194 hardirqs last disabled at (133885): [] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:511 softirqs last enabled at (133838): [] softirq_handle_end kernel/softirq.c:425 [inline] softirqs last enabled at (133838): [] handle_softirqs+0xaf8/0xc88 kernel/softirq.c:607 softirqs last disabled at (133851): [] __do_softirq+0x14/0x20 kernel/softirq.c:613 ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pte_range mm/memory.c:2936 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pmd_range mm/memory.c:2985 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pud_range mm/memory.c:3021 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_p4d_range mm/memory.c:3057 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 Modules linked in: CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] pc : apply_to_pte_range mm/memory.c:2936 [inline] pc : apply_to_pmd_range mm/memory.c:2985 [inline] pc : apply_to_pud_range mm/memory.c:3021 [inline] pc : apply_to_p4d_range mm/memory.c:3057 [inline] pc : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 lr : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] lr : apply_to_pte_range mm/memory.c:2936 [inline] lr : apply_to_pmd_range mm/memory.c:2985 [inline] lr : apply_to_pud_range mm/memory.c:3021 [inline] lr : apply_to_p4d_range mm/memory.c:3057 [inline] lr : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 sp : ffff800080017160 x29: ffff800080017280 x28: ffff0001ffbe0fff x27: ffff0001fec50fe8 x26: ffff0001ffbe1000 x25: dfff800000000000 x24: ffff0001ffbe0000 x23: ffff0001fea8ef00 x22: 0000000000000500 x21: ffff0000c1a0db80 x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386f276 x17: ffff80010d10c000 x16: ffff80008051bab8 x15: 0000000000000001 x14: 1ffff00012dfb965 x13: 0000000000000000 x12: 0000000000000000 x11: ffff700012dfb966 x10: 0000000000ff0100 x9 : 0000000000000000 x8 : ffff0000c1a0db80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 x5 : 0000000000000001 x4 : ffff800080017360 x3 : ffff8000802595f4 x2 : 0000000000001000 x1 : 0000000000000500 x0 : 0000000000000000 Call trace: arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] (P) apply_to_pte_range mm/memory.c:2936 [inline] (P) apply_to_pmd_range mm/memory.c:2985 [inline] (P) apply_to_pud_range mm/memory.c:3021 [inline] (P) apply_to_p4d_range mm/memory.c:3057 [inline] (P) __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 (P) apply_to_page_range+0x4c/0x64 mm/memory.c:3112 __change_memory_common+0xac/0x3f8 arch/arm64/mm/pageattr.c:64 set_memory_valid+0x68/0x7c arch/arm64/mm/pageattr.c:-1 kfence_protect_page arch/arm64/include/asm/kfence.h:17 [inline] kfence_protect mm/kfence/core.c:247 [inline] kfence_guarded_free+0x278/0x5a8 mm/kfence/core.c:565 __kfence_free+0x104/0x198 mm/kfence/core.c:1187 kfence_free include/linux/kfence.h:187 [inline] slab_free_hook mm/slub.c:2318 [inline] slab_free_freelist_hook mm/slub.c:2394 [inline] slab_free_bulk mm/slub.c:4666 [inline] kmem_cache_free_bulk+0x490/0x51c mm/slub.c:5243 kfree_skb_list_reason+0x3ac/0x418 net/core/skbuff.c:1264 __dev_xmit_skb net/core/dev.c:4093 [inline] __dev_queue_xmit+0x1ac8/0x31f0 net/core/dev.c:4595 dev_queue_xmit include/linux/netdevice.h:3350 [inline] lapbeth_data_transmit+0x1fc/0x2a8 drivers/net/wan/lapbether.c:260 lapb_data_transmit+0x8c/0xb0 net/lapb/lapb_iface.c:447 lapb_transmit_buffer+0x160/0x208 net/lapb/lapb_out.c:149 lapb_send_control+0x21c/0x320 net/lapb/lapb_subr.c:251 lapb_t1timer_expiry+0x490/0x864 net/lapb/lapb_timer.c:-1 call_timer_fn+0x1b4/0x818 kernel/time/timer.c:1789 expire_timers kernel/time/timer.c:1840 [inline] __run_timers kernel/time/timer.c:2414 [inline] __run_timer_base+0x51c/0x76c kernel/time/timer.c:2426 run_timer_base kernel/time/timer.c:2435 [inline] run_timer_softirq+0xcc/0x194 kernel/time/timer.c:2445 handle_softirqs+0x328/0xc88 kernel/softirq.c:579 __do_softirq+0x14/0x20 kernel/softirq.c:613 ____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:81 call_on_irq_stack+0x24/0x30 arch/arm64/kernel/entry.S:891 do_softirq_own_stack+0x20/0x2c arch/arm64/kernel/irq.c:86 invoke_softirq kernel/softirq.c:460 [inline] __irq_exit_rcu+0x1b0/0x478 kernel/softirq.c:680 irq_exit_rcu+0x14/0x84 kernel/softirq.c:696 __el1_irq arch/arm64/kernel/entry-common.c:584 [inline] el1_interrupt+0x38/0x54 arch/arm64/kernel/entry-common.c:598 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:603 el1h_64_irq+0x6c/0x70 arch/arm64/kernel/entry.S:596 __daif_local_irq_enable arch/arm64/include/asm/irqflags.h:26 [inline] (P) arch_local_irq_enable+0x8/0xc arch/arm64/include/asm/irqflags.h:48 (P) cpuidle_idle_call kernel/sched/idle.c:185 [inline] do_idle+0x1d8/0x454 kernel/sched/idle.c:325 cpu_startup_entry+0x5c/0x74 kernel/sched/idle.c:423 secondary_start_kernel+0x1b8/0x1e0 arch/arm64/kernel/smp.c:279 __secondary_switched+0xc0/0xc4 arch/arm64/kernel/head.S:401 irq event stamp: 135145 hardirqs last enabled at (135144): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline] hardirqs last enabled at (135144): [] _raw_spin_unlock_irqrestore+0x38/0x98 kernel/locking/spinlock.c:194 hardirqs last disabled at (135145): [] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:511 softirqs last enabled at (135118): [] softirq_handle_end kernel/softirq.c:425 [inline] softirqs last enabled at (135118): [] handle_softirqs+0xaf8/0xc88 kernel/softirq.c:607 softirqs last disabled at (135125): [] __do_softirq+0x14/0x20 kernel/softirq.c:613 ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pte_range mm/memory.c:2936 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pmd_range mm/memory.c:2985 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pud_range mm/memory.c:3021 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_p4d_range mm/memory.c:3057 [inline] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 Modules linked in: CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] pc : apply_to_pte_range mm/memory.c:2936 [inline] pc : apply_to_pmd_range mm/memory.c:2985 [inline] pc : apply_to_pud_range mm/memory.c:3021 [inline] pc : apply_to_p4d_range mm/memory.c:3057 [inline] pc : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 lr : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] lr : apply_to_pte_range mm/memory.c:2936 [inline] lr : apply_to_pmd_range mm/memory.c:2985 [inline] lr : apply_to_pud_range mm/memory.c:3021 [inline] lr : apply_to_p4d_range mm/memory.c:3057 [inline] lr : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 sp : ffff800080017160 x29: ffff800080017280 x28: ffff0001ffbe6fff x27: ffff0001fec50fe8 x26: ffff0001ffbe7000 x25: dfff800000000000 x24: ffff0001ffbe6000 x23: ffff0001fea8ef30 x22: 0000000000000500 x21: ffff0000c1a0db80 x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386f276 x17: ffff80010d10c000 x16: ffff80008051bab8 x15: 0000000000000001 x14: 1ffff00012dfb965 x13: 0000000000000000 x12: 0000000000000000 x11: ffff700012dfb966 x10: 0000000000ff0100 x9 : 0000000000000000 x8 : ffff0000c1a0db80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 x5 : 0000000000000001 x4 : ffff800080017360 x3 : ffff8000802595f4 x2 : 0000000000001000 x1 : 0000000000000500 x0 : 0000000000000000 Call trace: arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] (P) apply_to_pte_range mm/memory.c:2936 [inline] (P) apply_to_pmd_range mm/memory.c:2985 [inline] (P) apply_to_pud_range mm/memory.c:3021 [inline] (P) apply_to_p4d_range mm/memory.c:3057 [inline] (P) __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 (P) apply_to_page_range+0x4c/0x64 mm/memory.c:3112 __change_memory_common+0xac/0x3f8 arch/arm64/mm/pageattr.c:64 set_memory_valid+0x68/0x7c arch/arm64/mm/pageattr.c:-1 kfence_protect_page arch/arm64/include/asm/kfence.h:17 [inline] kfence_protect mm/kfence/core.c:247 [inline] kfence_guarded_free+0x278/0x5a8 mm/kfence/core.c:565 __kfence_free+0x104/0x198 mm/kfence/core.c:1187 kfence_free include/linux/kfence.h:187 [inline] slab_free_hook mm/slub.c:2318 [inline] slab_free_freelist_hook mm/slub.c:2394 [inline] slab_free_bulk mm/slub.c:4666 [inline] kmem_cache_free_bulk+0x490/0x51c mm/slub.c:5243 kfree_skb_list_reason+0x3ac/0x418 net/core/skbuff.c:1264 __dev_xmit_skb net/core/dev.c:4093 [inline] __dev_queue_xmit+0x1ac8/0x31f0 net/core/dev.c:4595 dev_queue_xmit include/linux/netdevice.h:3350 [inline] lapbeth_data_transmit+0x1fc/0x2a8 drivers/net/wan/lapbether.c:260 lapb_data_transmit+0x8c/0xb0 net/lapb/lapb_iface.c:447 lapb_transmit_buffer+0x160/0x208 net/lapb/lapb_out.c:149 lapb_send_control+0x21c/0x320 net/lapb/lapb_subr.c:251 lapb_t1timer_expiry+0x490/0x864 net/lapb/lapb_timer.c:-1 call_timer_fn+0x1b4/0x818 kernel/time/timer.c:1789 expire_timers kernel/time/timer.c:1840 [inline] __run_timers kernel/time/timer.c:2414 [inline] __run_timer_base+0x51c/0x76c kernel/time/timer.c:2426 run_timer_base kernel/time/timer.c:2435 [inline] run_timer_softirq+0xcc/0x194 kernel/time/timer.c:2445 handle_softirqs+0x328/0xc88 kernel/softirq.c:579 __do_softirq+0x14/0x20 kernel/softirq.c:613 ____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:81 call_on_irq_stack+0x24/0x30 arch/arm64/kernel/entry.S:891 do_softirq_own_stack+0x20/0x2c arch/arm64/kernel/irq.c:86 invoke_softirq kernel/softirq.c:460 [inline] __irq_exit_rcu+0x1b0/0x478 kernel/softirq.c:680 irq_exit_rcu+0x14/0x84 kernel/softirq.c:696 __el1_irq arch/arm64/kernel/entry-common.c:584 [inline] el1_interrupt+0x38/0x54 arch/arm64/kernel/entry-common.c:598 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:603 el1h_64_irq+0x6c/0x70 arch/arm64/kernel/entry.S:596 __daif_local_irq_enable arch/arm64/include/asm/irqflags.h:26 [inline] (P) arch_local_irq_enable+0x8/0xc arch/arm64/include/asm/irqflags.h:48 (P) cpuidle_idle_call kernel/sched/idle.c:185 [inline] do_idle+0x1d8/0x454 kernel/sched/idle.c:325 cpu_startup_entry+0x5c/0x74 kernel/sched/idle.c:423 secondary_start_kernel+0x1b8/0x1e0 arch/arm64/kernel/smp.c:279 __secondary_switched+0xc0/0xc4 arch/arm64/kernel/head.S:401 irq event stamp: 135857 hardirqs last enabled at (135856): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline] hardirqs last enabled at (135856): [] _raw_spin_unlock_irqrestore+0x38/0x98 kernel/locking/spinlock.c:194 hardirqs last disabled at (135857): [] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:511 softirqs last enabled at (135830): [] softirq_handle_end kernel/softirq.c:425 [inline] softirqs last enabled at (135830): [] handle_softirqs+0xaf8/0xc88 kernel/softirq.c:607 softirqs last disabled at (135837): [] __do_softirq+0x14/0x20 kernel/softirq.c:613 ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 23 at ./arch/arm64/include/asm/pgtable.h:82 arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] WARNING: CPU: 1 PID: 23 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pte_range mm/memory.c:2936 [inline] WARNING: CPU: 1 PID: 23 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pmd_range mm/memory.c:2985 [inline] WARNING: CPU: 1 PID: 23 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pud_range mm/memory.c:3021 [inline] WARNING: CPU: 1 PID: 23 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_p4d_range mm/memory.c:3057 [inline] WARNING: CPU: 1 PID: 23 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 Modules linked in: CPU: 1 UID: 0 PID: 23 Comm: ksoftirqd/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] pc : apply_to_pte_range mm/memory.c:2936 [inline] pc : apply_to_pmd_range mm/memory.c:2985 [inline] pc : apply_to_pud_range mm/memory.c:3021 [inline] pc : apply_to_p4d_range mm/memory.c:3057 [inline] pc : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 lr : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] lr : apply_to_pte_range mm/memory.c:2936 [inline] lr : apply_to_pmd_range mm/memory.c:2985 [inline] lr : apply_to_pud_range mm/memory.c:3021 [inline] lr : apply_to_p4d_range mm/memory.c:3057 [inline] lr : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 sp : ffff800097717640 x29: ffff800097717760 x28: ffff0001ffbf6fff x27: ffff0001fec50fe8 x26: ffff0001ffbf7000 x25: dfff800000000000 x24: ffff0001ffbf6000 x23: ffff0001fea8efb0 x22: 0000000000000100 x21: ffff0000c1b95b80 x20: 100000023ea8e403 x19: 0000000000000001 x18: 0000000000000000 x17: ffff0001fea8b870 x16: ffff80008051bab8 x15: 0000000000000001 x14: 1ffff00012dfba0f x13: 0000000000000000 x12: 0000000000000000 x11: ffff700012dfba10 x10: 0000000000ff0100 x9 : 0000000000000000 x8 : ffff0000c1b95b80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 x5 : 0000000000000001 x4 : ffff800097717840 x3 : ffff8000802595f4 x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 Call trace: arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] (P) apply_to_pte_range mm/memory.c:2936 [inline] (P) apply_to_pmd_range mm/memory.c:2985 [inline] (P) apply_to_pud_range mm/memory.c:3021 [inline] (P) apply_to_p4d_range mm/memory.c:3057 [inline] (P) __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 (P) apply_to_page_range+0x4c/0x64 mm/memory.c:3112 __change_memory_common+0xac/0x3f8 arch/arm64/mm/pageattr.c:64 set_memory_valid+0x68/0x7c arch/arm64/mm/pageattr.c:-1 kfence_protect_page arch/arm64/include/asm/kfence.h:17 [inline] kfence_protect mm/kfence/core.c:247 [inline] kfence_guarded_free+0x278/0x5a8 mm/kfence/core.c:565 __kfence_free+0x104/0x198 mm/kfence/core.c:1187 kfence_free include/linux/kfence.h:187 [inline] slab_free_hook mm/slub.c:2318 [inline] slab_free mm/slub.c:4642 [inline] kfree+0x268/0x474 mm/slub.c:4841 slab_free_after_rcu_debug+0x78/0x2f4 mm/slub.c:4679 rcu_do_batch kernel/rcu/tree.c:2568 [inline] rcu_core+0x848/0x17a4 kernel/rcu/tree.c:2824 rcu_core_si+0x10/0x1c kernel/rcu/tree.c:2841 handle_softirqs+0x328/0xc88 kernel/softirq.c:579 run_ksoftirqd+0x70/0xc0 kernel/softirq.c:968 smpboot_thread_fn+0x4d8/0x9cc kernel/smpboot.c:164 kthread+0x5fc/0x75c kernel/kthread.c:464 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:847 irq event stamp: 557977 hardirqs last enabled at (557976): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline] hardirqs last enabled at (557976): [] _raw_spin_unlock_irqrestore+0x38/0x98 kernel/locking/spinlock.c:194 hardirqs last disabled at (557977): [] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:511 softirqs last enabled at (556678): [] softirq_handle_end kernel/softirq.c:425 [inline] softirqs last enabled at (556678): [] handle_softirqs+0xaf8/0xc88 kernel/softirq.c:607 softirqs last disabled at (556683): [] run_ksoftirqd+0x70/0xc0 kernel/softirq.c:968 ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 6488 at ./arch/arm64/include/asm/pgtable.h:82 arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] WARNING: CPU: 1 PID: 6488 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pte_range mm/memory.c:2936 [inline] WARNING: CPU: 1 PID: 6488 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pmd_range mm/memory.c:2985 [inline] WARNING: CPU: 1 PID: 6488 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_pud_range mm/memory.c:3021 [inline] WARNING: CPU: 1 PID: 6488 at ./arch/arm64/include/asm/pgtable.h:82 apply_to_p4d_range mm/memory.c:3057 [inline] WARNING: CPU: 1 PID: 6488 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 Modules linked in: CPU: 1 UID: 0 PID: 6488 Comm: syz-execprog Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] pc : apply_to_pte_range mm/memory.c:2936 [inline] pc : apply_to_pmd_range mm/memory.c:2985 [inline] pc : apply_to_pud_range mm/memory.c:3021 [inline] pc : apply_to_p4d_range mm/memory.c:3057 [inline] pc : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 lr : arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] lr : apply_to_pte_range mm/memory.c:2936 [inline] lr : apply_to_pmd_range mm/memory.c:2985 [inline] lr : apply_to_pud_range mm/memory.c:3021 [inline] lr : apply_to_p4d_range mm/memory.c:3057 [inline] lr : __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 sp : ffff8000800179c0 x29: ffff800080017ae0 x28: ffff0001ffa1afff x27: ffff0001fec50fe8 x26: ffff0001ffa1b000 x25: dfff800000000000 x24: ffff0001ffa1a000 x23: ffff0001fea8e0d0 x22: 0000000000000100 x21: ffff0000dd4b8000 x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386f276 x17: ffff80010d10c000 x16: ffff80008051bab8 x15: 0000000000000001 x14: 1ffff00012dfb93e x13: 0000000000000000 x12: 0000000000000000 x11: ffff700012dfb93f x10: 0000000000ff0100 x9 : 0000000000000000 x8 : ffff0000dd4b8000 x7 : ffff800080c2b0a4 x6 : 0000000000000000 x5 : 0000000000000001 x4 : ffff800080017bc0 x3 : ffff8000802595f4 x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 Call trace: arch_enter_lazy_mmu_mode arch/arm64/include/asm/pgtable.h:82 [inline] (P) apply_to_pte_range mm/memory.c:2936 [inline] (P) apply_to_pmd_range mm/memory.c:2985 [inline] (P) apply_to_pud_range mm/memory.c:3021 [inline] (P) apply_to_p4d_range mm/memory.c:3057 [inline] (P) __apply_to_page_range+0xdb4/0x13e4 mm/memory.c:3093 (P) apply_to_page_range+0x4c/0x64 mm/memory.c:3112 __change_memory_common+0xac/0x3f8 arch/arm64/mm/pageattr.c:64 set_memory_valid+0x68/0x7c arch/arm64/mm/pageattr.c:-1 kfence_protect_page arch/arm64/include/asm/kfence.h:17 [inline] kfence_protect mm/kfence/core.c:247 [inline] kfence_guarded_free+0x278/0x5a8 mm/kfence/core.c:565 rcu_guarded_free+0x4c/0x5c mm/kfence/core.c:587 rcu_do_batch kernel/rcu/tree.c:2568 [inline] rcu_core+0x848/0x17a4 kernel/rcu/tree.c:2824 rcu_core_si+0x10/0x1c kernel/rcu/tree.c:2841 handle_softirqs+0x328/0xc88 kernel/softirq.c:579 __do_softirq+0x14/0x20 kernel/softirq.c:613 ____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:81 call_on_irq_stack+0x24/0x30 arch/arm64/kernel/entry.S:891 do_softirq_own_stack+0x20/0x2c arch/arm64/kernel/irq.c:86 invoke_softirq kernel/softirq.c:460 [inline] __irq_exit_rcu+0x1b0/0x478 kernel/softirq.c:680 irq_exit_rcu+0x14/0x84 kernel/softirq.c:696 __el1_irq arch/arm64/kernel/entry-common.c:584 [inline] el1_interrupt+0x38/0x54 arch/arm64/kernel/entry-common.c:598 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:603 el1h_64_irq+0x6c/0x70 arch/arm64/kernel/entry.S:596 __daif_local_irq_restore arch/arm64/include/asm/irqflags.h:175 [inline] (P) arch_local_irq_restore arch/arm64/include/asm/irqflags.h:195 [inline] (P) __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline] (P) _raw_spin_unlock_irqrestore+0x44/0x98 kernel/locking/spinlock.c:194 (P) __debug_check_no_obj_freed lib/debugobjects.c:1108 [inline] debug_check_no_obj_freed+0x454/0x470 lib/debugobjects.c:1129 free_pages_prepare mm/page_alloc.c:1269 [inline] free_unref_folios+0x568/0x14e0 mm/page_alloc.c:2782 folios_put_refs+0x608/0x718 mm/swap.c:992 free_pages_and_swap_cache+0x204/0x3a0 mm/swap_state.c:267 __tlb_batch_free_encoded_pages mm/mmu_gather.c:136 [inline] tlb_batch_pages_flush mm/mmu_gather.c:149 [inline] tlb_flush_mmu_free mm/mmu_gather.c:397 [inline] tlb_flush_mmu+0x14c/0x398 mm/mmu_gather.c:404 zap_pte_range mm/memory.c:1770 [inline] zap_pmd_range mm/memory.c:1823 [inline] zap_pud_range mm/memory.c:1852 [inline] zap_p4d_range mm/memory.c:1873 [inline] unmap_page_range+0x2afc/0x311c mm/memory.c:1894 unmap_single_vma mm/memory.c:1940 [inline] unmap_vmas+0x264/0x3d4 mm/memory.c:1984 exit_mmap+0x1bc/0xbec mm/mmap.c:1284 __mmput+0xec/0x3dc kernel/fork.c:1379 mmput+0x70/0xac kernel/fork.c:1401 exit_mm+0x13c/0x200 kernel/exit.c:589 do_exit+0x470/0x1998 kernel/exit.c:940 do_group_exit+0x194/0x22c kernel/exit.c:1102 __do_sys_exit_group kernel/exit.c:1113 [inline] __se_sys_exit_group kernel/exit.c:1111 [inline] pid_child_should_wake+0x0/0x1dc kernel/exit.c:1111 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline] invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:49 el0_svc_common+0x130/0x23c arch/arm64/kernel/syscall.c:132 do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151 el0_svc+0x58/0x17c arch/arm64/kernel/entry-common.c:767 el0t_64_sync_handler+0x78/0x108 arch/arm64/kernel/entry-common.c:786 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:600 irq event stamp: 66055 hardirqs last enabled at (66054): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline] hardirqs last enabled at (66054): [] _raw_spin_unlock_irqrestore+0x38/0x98 kernel/locking/spinlock.c:194 hardirqs last disabled at (66055): [] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:511 softirqs last enabled at (61378): [] softirq_handle_end kernel/softirq.c:425 [inline] softirqs last enabled at (61378): [] handle_softirqs+0xaf8/0xc88 kernel/softirq.c:607 softirqs last disabled at (65949): [] __do_softirq+0x14/0x20 kernel/softirq.c:613 ---[ end trace 0000000000000000 ]--- [ 32.855330][ C1] ------------[ cut here ]------------ [ 32.855368][ C1] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 32.859618][ C1] Modules linked in: [ 32.860652][ C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 32.863881][ C1] Tainted: [W]=WARN [ 32.864884][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 32.867516][ C1] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 32.869549][ C1] pc : __apply_to_page_range+0xdb4/0x13e4 [ 32.871081][ C1] lr : __apply_to_page_range+0xdb4/0x13e4 [ 32.872553][ C1] sp : ffff800080017900 [ 32.873631][ C1] x29: ffff800080017a20 x28: ffff0001ffbd4fff x27: ffff0001fec50fe8 [ 32.875726][ C1] x26: ffff0001ffbd5000 x25: dfff800000000000 x24: ffff0001ffbd4000 [ 32.877810][ C1] x23: ffff0001fea8eea0 x22: 0000000000000100 x21: ffff0000c1a0db80 [ 32.879964][ C1] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386f276 [ 32.882123][ C1] x17: 0000000000000000 x16: ffff80008051bab8 x15: 0000000000000001 [ 32.884272][ C1] x14: 1ffff00012dfba22 x13: 0000000000000000 x12: 0000000000000000 [ 32.886467][ C1] x11: ffff700012dfba23 x10: 0000000000ff0100 x9 : 0000000000000000 [ 32.888613][ C1] x8 : ffff0000c1a0db80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 32.890663][ C1] x5 : 0000000000000001 x4 : ffff800080017b00 x3 : ffff8000802595f4 [ 32.892786][ C1] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 32.894835][ C1] Call trace: [ 32.895671][ C1] __apply_to_page_range+0xdb4/0x13e4 (P) [ 32.897134][ C1] apply_to_page_range+0x4c/0x64 [ 32.898411][ C1] __change_memory_common+0xac/0x3f8 [ 32.899816][ C1] set_memory_valid+0x68/0x7c [ 32.901047][ C1] kfence_guarded_free+0x278/0x5a8 [ 32.902369][ C1] __kfence_free+0x104/0x198 [ 32.903654][ C1] kfree+0x268/0x474 [ 32.904610][ C1] slab_free_after_rcu_debug+0x78/0x2f4 [ 32.906121][ C1] rcu_core+0x848/0x17a4 [ 32.907283][ C1] rcu_core_si+0x10/0x1c [ 32.908388][ C1] handle_softirqs+0x328/0xc88 [ 32.909658][ C1] __do_softirq+0x14/0x20 [ 32.910833][ C1] ____do_softirq+0x14/0x20 [ 32.911979][ C1] call_on_irq_stack+0x24/0x30 [ 32.913266][ C1] do_softirq_own_stack+0x20/0x2c [ 32.914586][ C1] __irq_exit_rcu+0x1b0/0x478 [ 32.915858][ C1] irq_exit_rcu+0x14/0x84 [ 32.916996][ C1] el1_interrupt+0x38/0x54 [ 32.918114][ C1] el1h_64_irq_handler+0x18/0x24 [ 32.919403][ C1] el1h_64_irq+0x6c/0x70 [ 32.920555][ C1] arch_local_irq_enable+0x8/0xc (P) [ 32.922009][ C1] do_idle+0x1d8/0x454 [ 32.923096][ C1] cpu_startup_entry+0x5c/0x74 [ 32.924335][ C1] secondary_start_kernel+0x1b8/0x1e0 [ 32.925784][ C1] __secondary_switched+0xc0/0xc4 [ 32.927167][ C1] irq event stamp: 132265 [ 32.928235][ C1] hardirqs last enabled at (132264): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 32.930991][ C1] hardirqs last disabled at (132265): [] el1_dbg+0x24/0x80 [ 32.933303][ C1] softirqs last enabled at (132222): [] handle_softirqs+0xaf8/0xc88 [ 32.935794][ C1] softirqs last disabled at (132247): [] __do_softirq+0x14/0x20 [ 32.938295][ C1] ---[ end trace 0000000000000000 ]--- [ 33.115366][ C1] ------------[ cut here ]------------ [ 33.115405][ C1] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 33.119607][ C1] Modules linked in: [ 33.120608][ C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 33.123987][ C1] Tainted: [W]=WARN [ 33.124968][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 33.127648][ C1] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 33.129572][ C1] pc : __apply_to_page_range+0xdb4/0x13e4 [ 33.131055][ C1] lr : __apply_to_page_range+0xdb4/0x13e4 [ 33.132542][ C1] sp : ffff800080017900 [ 33.133598][ C1] x29: ffff800080017a20 x28: ffff0001ffbd8fff x27: ffff0001fec50fe8 [ 33.135573][ C1] x26: ffff0001ffbd9000 x25: dfff800000000000 x24: ffff0001ffbd8000 [ 33.137615][ C1] x23: ffff0001fea8eec0 x22: 0000000000000100 x21: ffff0000c1a0db80 [ 33.139719][ C1] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386f276 [ 33.141806][ C1] x17: ffff80010d10c000 x16: ffff80008051bab8 x15: 0000000000000001 [ 33.143754][ C1] x14: 1ffff00012dfba0f x13: 0000000000000000 x12: 0000000000000000 [ 33.145839][ C1] x11: ffff700012dfba10 x10: 0000000000ff0100 x9 : 0000000000000000 [ 33.147811][ C1] x8 : ffff0000c1a0db80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 33.149935][ C1] x5 : 0000000000000001 x4 : ffff800080017b00 x3 : ffff8000802595f4 [ 33.152079][ C1] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 33.154163][ C1] Call trace: [ 33.154958][ C1] __apply_to_page_range+0xdb4/0x13e4 (P) [ 33.156371][ C1] apply_to_page_range+0x4c/0x64 [ 33.157681][ C1] __change_memory_common+0xac/0x3f8 [ 33.159146][ C1] set_memory_valid+0x68/0x7c [ 33.160454][ C1] kfence_guarded_free+0x278/0x5a8 [ 33.161774][ C1] __kfence_free+0x104/0x198 [ 33.162899][ C1] kfree+0x268/0x474 [ 33.163818][ C1] slab_free_after_rcu_debug+0x78/0x2f4 [ 33.165169][ C1] rcu_core+0x848/0x17a4 [ 33.166174][ C1] rcu_core_si+0x10/0x1c [ 33.167276][ C1] handle_softirqs+0x328/0xc88 [ 33.168506][ C1] __do_softirq+0x14/0x20 [ 33.169533][ C1] ____do_softirq+0x14/0x20 [ 33.170637][ C1] call_on_irq_stack+0x24/0x30 [ 33.171865][ C1] do_softirq_own_stack+0x20/0x2c [ 33.173173][ C1] __irq_exit_rcu+0x1b0/0x478 [ 33.174455][ C1] irq_exit_rcu+0x14/0x84 [ 33.175553][ C1] el1_interrupt+0x38/0x54 [ 33.176666][ C1] el1h_64_irq_handler+0x18/0x24 [ 33.177907][ C1] el1h_64_irq+0x6c/0x70 [ 33.179003][ C1] arch_local_irq_enable+0x8/0xc (P) [ 33.180349][ C1] do_idle+0x1d8/0x454 [ 33.181402][ C1] cpu_startup_entry+0x5c/0x74 [ 33.182638][ C1] secondary_start_kernel+0x1b8/0x1e0 [ 33.184030][ C1] __secondary_switched+0xc0/0xc4 [ 33.185291][ C1] irq event stamp: 133885 [ 33.186503][ C1] hardirqs last enabled at (133884): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 33.189180][ C1] hardirqs last disabled at (133885): [] el1_dbg+0x24/0x80 [ 33.191522][ C1] softirqs last enabled at (133838): [] handle_softirqs+0xaf8/0xc88 [ 33.194010][ C1] softirqs last disabled at (133851): [] __do_softirq+0x14/0x20 [ 33.196400][ C1] ---[ end trace 0000000000000000 ]--- [ 34.135350][ C0] ------------[ cut here ]------------ [ 34.135391][ C0] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 34.139387][ C0] Modules linked in: [ 34.140374][ C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 34.143564][ C0] Tainted: [W]=WARN [ 34.144463][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 34.147175][ C0] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 34.149169][ C0] pc : __apply_to_page_range+0xdb4/0x13e4 [ 34.150659][ C0] lr : __apply_to_page_range+0xdb4/0x13e4 [ 34.152093][ C0] sp : ffff800080007900 [ 34.153082][ C0] x29: ffff800080007a20 x28: ffff0001ffbdefff x27: ffff0001fec50fe8 [ 34.155157][ C0] x26: ffff0001ffbdf000 x25: dfff800000000000 x24: ffff0001ffbde000 [ 34.157178][ C0] x23: ffff0001fea8eef0 x22: 0000000000000100 x21: ffff80008f346040 [ 34.159221][ C0] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386aa76 [ 34.161205][ C0] x17: ffff80010d0e8000 x16: ffff80008051bab8 x15: 0000000000000001 [ 34.163199][ C0] x14: 1ffff00012dfba0f x13: 0000000000000000 x12: 0000000000000000 [ 34.165257][ C0] x11: ffff700012dfba10 x10: 0000000000ff0100 x9 : 0000000000000000 [ 34.167199][ C0] x8 : ffff80008f346040 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 34.169081][ C0] x5 : 0000000000000001 x4 : ffff800080007b00 x3 : ffff8000802595f4 [ 34.171024][ C0] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 34.173047][ C0] Call trace: [ 34.173891][ C0] __apply_to_page_range+0xdb4/0x13e4 (P) [ 34.175366][ C0] apply_to_page_range+0x4c/0x64 [ 34.176617][ C0] __change_memory_common+0xac/0x3f8 [ 34.178024][ C0] set_memory_valid+0x68/0x7c [ 34.179195][ C0] kfence_guarded_free+0x278/0x5a8 [ 34.180499][ C0] __kfence_free+0x104/0x198 [ 34.181696][ C0] kfree+0x268/0x474 [ 34.182632][ C0] slab_free_after_rcu_debug+0x78/0x2f4 [ 34.184055][ C0] rcu_core+0x848/0x17a4 [ 34.185168][ C0] rcu_core_si+0x10/0x1c [ 34.186297][ C0] handle_softirqs+0x328/0xc88 [ 34.187406][ C0] __do_softirq+0x14/0x20 [ 34.188552][ C0] ____do_softirq+0x14/0x20 [ 34.189676][ C0] call_on_irq_stack+0x24/0x30 [ 34.190850][ C0] do_softirq_own_stack+0x20/0x2c [ 34.192074][ C0] __irq_exit_rcu+0x1b0/0x478 [ 34.193251][ C0] irq_exit_rcu+0x14/0x84 [ 34.194379][ C0] el1_interrupt+0x38/0x54 [ 34.195551][ C0] el1h_64_irq_handler+0x18/0x24 [ 34.196799][ C0] el1h_64_irq+0x6c/0x70 [ 34.197911][ C0] arch_local_irq_enable+0x8/0xc (P) [ 34.199230][ C0] do_idle+0x1d8/0x454 [ 34.200222][ C0] cpu_startup_entry+0x5c/0x74 [ 34.201418][ C0] rest_init+0x2d8/0x2f4 [ 34.202548][ C0] start_kernel+0x44c/0x4a8 [ 34.203753][ C0] __primary_switched+0x8c/0x94 [ 34.205010][ C0] irq event stamp: 156399 [ 34.206133][ C0] hardirqs last enabled at (156398): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 34.208806][ C0] hardirqs last disabled at (156399): [] el1_dbg+0x24/0x80 [ 34.211057][ C0] softirqs last enabled at (156352): [] handle_softirqs+0xaf8/0xc88 [ 34.213461][ C0] softirqs last disabled at (156365): [] __do_softirq+0x14/0x20 [ 34.215743][ C0] ---[ end trace 0000000000000000 ]--- [ 34.395494][ C1] ------------[ cut here ]------------ [ 34.395528][ C1] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 34.399709][ C1] Modules linked in: [ 34.400716][ C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 34.403954][ C1] Tainted: [W]=WARN [ 34.404886][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 34.407324][ C1] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 34.409244][ C1] pc : __apply_to_page_range+0xdb4/0x13e4 [ 34.410600][ C1] lr : __apply_to_page_range+0xdb4/0x13e4 [ 34.412003][ C1] sp : ffff800080017160 [ 34.413038][ C1] x29: ffff800080017280 x28: ffff0001ffbe0fff x27: ffff0001fec50fe8 [ 34.415022][ C1] x26: ffff0001ffbe1000 x25: dfff800000000000 x24: ffff0001ffbe0000 [ 34.416974][ C1] x23: ffff0001fea8ef00 x22: 0000000000000500 x21: ffff0000c1a0db80 [ 34.418927][ C1] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386f276 [ 34.420969][ C1] x17: ffff80010d10c000 x16: ffff80008051bab8 x15: 0000000000000001 [ 34.422936][ C1] x14: 1ffff00012dfb965 x13: 0000000000000000 x12: 0000000000000000 [ 34.425021][ C1] x11: ffff700012dfb966 x10: 0000000000ff0100 x9 : 0000000000000000 [ 34.427101][ C1] x8 : ffff0000c1a0db80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 34.429082][ C1] x5 : 0000000000000001 x4 : ffff800080017360 x3 : ffff8000802595f4 [ 34.431162][ C1] x2 : 0000000000001000 x1 : 0000000000000500 x0 : 0000000000000000 [ 34.433222][ C1] Call trace: [ 34.434025][ C1] __apply_to_page_range+0xdb4/0x13e4 (P) [ 34.435472][ C1] apply_to_page_range+0x4c/0x64 [ 34.436698][ C1] __change_memory_common+0xac/0x3f8 [ 34.438049][ C1] set_memory_valid+0x68/0x7c [ 34.439214][ C1] kfence_guarded_free+0x278/0x5a8 [ 34.440533][ C1] __kfence_free+0x104/0x198 [ 34.441652][ C1] kmem_cache_free_bulk+0x490/0x51c [ 34.442995][ C1] kfree_skb_list_reason+0x3ac/0x418 [ 34.444294][ C1] __dev_queue_xmit+0x1ac8/0x31f0 [ 34.445585][ C1] lapbeth_data_transmit+0x1fc/0x2a8 [ 34.446929][ C1] lapb_data_transmit+0x8c/0xb0 [ 34.448086][ C1] lapb_transmit_buffer+0x160/0x208 [ 34.449363][ C1] lapb_send_control+0x21c/0x320 [ 34.450610][ C1] lapb_t1timer_expiry+0x490/0x864 [ 34.451939][ C1] call_timer_fn+0x1b4/0x818 [ 34.452967][ C1] __run_timer_base+0x51c/0x76c [ 34.454185][ C1] run_timer_softirq+0xcc/0x194 [ 34.455364][ C1] handle_softirqs+0x328/0xc88 [ 34.456561][ C1] __do_softirq+0x14/0x20 [ 34.457673][ C1] ____do_softirq+0x14/0x20 [ 34.458878][ C1] call_on_irq_stack+0x24/0x30 [ 34.460115][ C1] do_softirq_own_stack+0x20/0x2c [ 34.461348][ C1] __irq_exit_rcu+0x1b0/0x478 [ 34.462532][ C1] irq_exit_rcu+0x14/0x84 [ 34.463626][ C1] el1_interrupt+0x38/0x54 [ 34.464784][ C1] el1h_64_irq_handler+0x18/0x24 [ 34.465997][ C1] el1h_64_irq+0x6c/0x70 [ 34.467092][ C1] arch_local_irq_enable+0x8/0xc (P) [ 34.468438][ C1] do_idle+0x1d8/0x454 [ 34.469468][ C1] cpu_startup_entry+0x5c/0x74 [ 34.470681][ C1] secondary_start_kernel+0x1b8/0x1e0 [ 34.472118][ C1] __secondary_switched+0xc0/0xc4 [ 34.473429][ C1] irq event stamp: 135145 [ 34.474509][ C1] hardirqs last enabled at (135144): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 34.477074][ C1] hardirqs last disabled at (135145): [] el1_dbg+0x24/0x80 [ 34.479266][ C1] softirqs last enabled at (135118): [] handle_softirqs+0xaf8/0xc88 [ 34.481742][ C1] softirqs last disabled at (135125): [] __do_softirq+0x14/0x20 [ 34.484109][ C1] ---[ end trace 0000000000000000 ]--- [ 34.715486][ C0] ------------[ cut here ]------------ [ 34.715543][ C0] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 34.719761][ C0] Modules linked in: [ 34.720850][ C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 34.723979][ C0] Tainted: [W]=WARN [ 34.724860][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 34.727350][ C0] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 34.729406][ C0] pc : __apply_to_page_range+0xdb4/0x13e4 [ 34.730841][ C0] lr : __apply_to_page_range+0xdb4/0x13e4 [ 34.732276][ C0] sp : ffff800080006f20 [ 34.733412][ C0] x29: ffff800080007040 x28: ffff0001ffbe2fff x27: ffff0001fec50fe8 [ 34.735516][ C0] x26: ffff0001ffbe3000 x25: dfff800000000000 x24: ffff0001ffbe2000 [ 34.737628][ C0] x23: ffff0001fea8ef10 x22: 0000000000000500 x21: ffff80008f346040 [ 34.739611][ C0] x20: 100000023ea8e403 x19: 0000000000000001 x18: 00000000ffffffff [ 34.741605][ C0] x17: ffff800092f37000 x16: ffff80008051bab8 x15: 0000000000000001 [ 34.743563][ C0] x14: 1ffff00012dfba06 x13: 0000000000000000 x12: 0000000000000000 [ 34.745456][ C0] x11: ffff700012dfba07 x10: 0000000000ff0100 x9 : 0000000000000000 [ 34.747515][ C0] x8 : ffff80008f346040 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 34.749580][ C0] x5 : 0000000000000001 x4 : ffff800080007120 x3 : ffff8000802595f4 [ 34.751596][ C0] x2 : 0000000000001000 x1 : 0000000000000500 x0 : 0000000000000000 [ 34.753610][ C0] Call trace: [ 34.754472][ C0] __apply_to_page_range+0xdb4/0x13e4 (P) [ 34.755933][ C0] apply_to_page_range+0x4c/0x64 [ 34.757259][ C0] __change_memory_common+0xac/0x3f8 [ 34.758578][ C0] set_memory_valid+0x68/0x7c [ 34.759604][ C0] kfence_guarded_free+0x278/0x5a8 [ 34.760858][ C0] __kfence_free+0x104/0x198 [ 34.762018][ C0] kmem_cache_free+0x250/0x550 [ 34.763147][ C0] kfree_skbmem+0x14c/0x1dc [ 34.764284][ C0] consume_skb+0xb8/0x130 [ 34.765257][ C0] ifb_xmit+0x174/0x53c [ 34.766332][ C0] dev_hard_start_xmit+0x2b0/0x8ac [ 34.767638][ C0] sch_direct_xmit+0x1fc/0x468 [ 34.768885][ C0] __dev_queue_xmit+0x13b4/0x31f0 [ 34.770154][ C0] lapbeth_data_transmit+0x1fc/0x2a8 [ 34.771476][ C0] lapb_data_transmit+0x8c/0xb0 [ 34.772765][ C0] lapb_transmit_buffer+0x160/0x208 [ 34.773947][ C0] lapb_send_control+0x21c/0x320 [ 34.775188][ C0] lapb_t1timer_expiry+0x490/0x864 [ 34.776462][ C0] call_timer_fn+0x1b4/0x818 [ 34.777601][ C0] __run_timer_base+0x51c/0x76c [ 34.778833][ C0] timer_expire_remote+0x78/0xa0 [ 34.780131][ C0] tmigr_handle_remote+0x8d4/0x1340 [ 34.781435][ C0] run_timer_softirq+0x190/0x194 [ 34.782805][ C0] handle_softirqs+0x328/0xc88 [ 34.784020][ C0] __do_softirq+0x14/0x20 [ 34.785073][ C0] ____do_softirq+0x14/0x20 [ 34.786180][ C0] call_on_irq_stack+0x24/0x30 [ 34.787381][ C0] do_softirq_own_stack+0x20/0x2c [ 34.788666][ C0] __irq_exit_rcu+0x1b0/0x478 [ 34.789895][ C0] irq_exit_rcu+0x14/0x84 [ 34.791018][ C0] el1_interrupt+0x38/0x54 [ 34.792107][ C0] el1h_64_irq_handler+0x18/0x24 [ 34.793343][ C0] el1h_64_irq+0x6c/0x70 [ 34.794396][ C0] arch_local_irq_enable+0x8/0xc (P) [ 34.795649][ C0] do_idle+0x1d8/0x454 [ 34.796692][ C0] cpu_startup_entry+0x5c/0x74 [ 34.798150][ C0] rest_init+0x2d8/0x2f4 [ 34.799202][ C0] start_kernel+0x44c/0x4a8 [ 34.800338][ C0] __primary_switched+0x8c/0x94 [ 34.801560][ C0] irq event stamp: 157223 [ 34.802649][ C0] hardirqs last enabled at (157222): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 34.805257][ C0] hardirqs last disabled at (157223): [] el1_dbg+0x24/0x80 [ 34.807522][ C0] softirqs last enabled at (157156): [] handle_softirqs+0xaf8/0xc88 [ 34.809862][ C0] softirqs last disabled at (157179): [] __do_softirq+0x14/0x20 [ 34.812361][ C0] ---[ end trace 0000000000000000 ]--- [ 35.035501][ C0] ------------[ cut here ]------------ [ 35.035537][ C0] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 35.039909][ C0] Modules linked in: [ 35.040910][ C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 35.044101][ C0] Tainted: [W]=WARN [ 35.045017][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 35.047446][ C0] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 35.049338][ C0] pc : __apply_to_page_range+0xdb4/0x13e4 [ 35.050757][ C0] lr : __apply_to_page_range+0xdb4/0x13e4 [ 35.052122][ C0] sp : ffff800080007640 [ 35.053092][ C0] x29: ffff800080007760 x28: ffff0001ffbe4fff x27: ffff0001fec50fe8 [ 35.055063][ C0] x26: ffff0001ffbe5000 x25: dfff800000000000 x24: ffff0001ffbe4000 [ 35.057000][ C0] x23: ffff0001fea8ef20 x22: 0000000000000100 x21: ffff80008f346040 [ 35.058908][ C0] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386aa76 [ 35.060846][ C0] x17: 0000000000000000 x16: ffff80008051bab8 x15: 0000000000000001 [ 35.062866][ C0] x14: 1ffff00012dfb965 x13: 0000000000000000 x12: 0000000000000000 [ 35.064946][ C0] x11: ffff700012dfb966 x10: 0000000000ff0100 x9 : 0000000000000000 [ 35.067011][ C0] x8 : ffff80008f346040 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 35.069089][ C0] x5 : 0000000000000001 x4 : ffff800080007840 x3 : ffff8000802595f4 [ 35.071166][ C0] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 35.073143][ C0] Call trace: [ 35.073995][ C0] __apply_to_page_range+0xdb4/0x13e4 (P) [ 35.075558][ C0] apply_to_page_range+0x4c/0x64 [ 35.076908][ C0] __change_memory_common+0xac/0x3f8 [ 35.078376][ C0] set_memory_valid+0x68/0x7c [ 35.079551][ C0] kfence_guarded_free+0x278/0x5a8 [ 35.080869][ C0] __kfence_free+0x104/0x198 [ 35.082070][ C0] kmem_cache_free+0x250/0x550 [ 35.083248][ C0] kfree_skbmem+0x14c/0x1dc [ 35.084449][ C0] sk_skb_reason_drop+0x150/0x1b0 [ 35.085808][ C0] dev_kfree_skb_any_reason+0x94/0xd0 [ 35.087196][ C0] gve_clean_tx_done+0x240/0xaa8 [ 35.088440][ C0] gve_tx_poll+0x11c/0x1d0 [ 35.089526][ C0] gve_napi_poll+0xc0/0x3ac [ 35.090622][ C0] __napi_poll+0xb4/0x3fc [ 35.091863][ C0] net_rx_action+0x5d4/0xcc8 [ 35.093083][ C0] handle_softirqs+0x328/0xc88 [ 35.094244][ C0] __do_softirq+0x14/0x20 [ 35.095404][ C0] ____do_softirq+0x14/0x20 [ 35.096506][ C0] call_on_irq_stack+0x24/0x30 [ 35.097666][ C0] do_softirq_own_stack+0x20/0x2c [ 35.098874][ C0] __irq_exit_rcu+0x1b0/0x478 [ 35.100096][ C0] irq_exit_rcu+0x14/0x84 [ 35.101258][ C0] el1_interrupt+0x38/0x54 [ 35.102450][ C0] el1h_64_irq_handler+0x18/0x24 [ 35.103799][ C0] el1h_64_irq+0x6c/0x70 [ 35.104745][ C0] arch_local_irq_enable+0x8/0xc (P) [ 35.106150][ C0] do_idle+0x1d8/0x454 [ 35.107171][ C0] cpu_startup_entry+0x5c/0x74 [ 35.108514][ C0] rest_init+0x2d8/0x2f4 [ 35.109582][ C0] start_kernel+0x44c/0x4a8 [ 35.110754][ C0] __primary_switched+0x8c/0x94 [ 35.111950][ C0] irq event stamp: 157531 [ 35.112963][ C0] hardirqs last enabled at (157530): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 35.115684][ C0] hardirqs last disabled at (157531): [] el1_dbg+0x24/0x80 [ 35.117976][ C0] softirqs last enabled at (157476): [] handle_softirqs+0xaf8/0xc88 [ 35.120314][ C0] softirqs last disabled at (157483): [] __do_softirq+0x14/0x20 [ 35.122752][ C0] ---[ end trace 0000000000000000 ]--- [ 35.275422][ C1] ------------[ cut here ]------------ [ 35.275458][ C1] WARNING: CPU: 1 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 35.279650][ C1] Modules linked in: [ 35.280627][ C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 35.283858][ C1] Tainted: [W]=WARN [ 35.284815][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 35.287391][ C1] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 35.289331][ C1] pc : __apply_to_page_range+0xdb4/0x13e4 [ 35.290746][ C1] lr : __apply_to_page_range+0xdb4/0x13e4 [ 35.292174][ C1] sp : ffff800080017160 [ 35.293248][ C1] x29: ffff800080017280 x28: ffff0001ffbe6fff x27: ffff0001fec50fe8 [ 35.295253][ C1] x26: ffff0001ffbe7000 x25: dfff800000000000 x24: ffff0001ffbe6000 [ 35.297236][ C1] x23: ffff0001fea8ef30 x22: 0000000000000500 x21: ffff0000c1a0db80 [ 35.299254][ C1] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386f276 [ 35.301277][ C1] x17: ffff80010d10c000 x16: ffff80008051bab8 x15: 0000000000000001 [ 35.303244][ C1] x14: 1ffff00012dfb965 x13: 0000000000000000 x12: 0000000000000000 [ 35.305331][ C1] x11: ffff700012dfb966 x10: 0000000000ff0100 x9 : 0000000000000000 [ 35.307423][ C1] x8 : ffff0000c1a0db80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 35.309524][ C1] x5 : 0000000000000001 x4 : ffff800080017360 x3 : ffff8000802595f4 [ 35.311515][ C1] x2 : 0000000000001000 x1 : 0000000000000500 x0 : 0000000000000000 [ 35.313577][ C1] Call trace: [ 35.314488][ C1] __apply_to_page_range+0xdb4/0x13e4 (P) [ 35.315971][ C1] apply_to_page_range+0x4c/0x64 [ 35.317180][ C1] __change_memory_common+0xac/0x3f8 [ 35.318564][ C1] set_memory_valid+0x68/0x7c [ 35.319743][ C1] kfence_guarded_free+0x278/0x5a8 [ 35.321048][ C1] __kfence_free+0x104/0x198 [ 35.322354][ C1] kmem_cache_free_bulk+0x490/0x51c [ 35.323658][ C1] kfree_skb_list_reason+0x3ac/0x418 [ 35.325004][ C1] __dev_queue_xmit+0x1ac8/0x31f0 [ 35.326314][ C1] lapbeth_data_transmit+0x1fc/0x2a8 [ 35.327663][ C1] lapb_data_transmit+0x8c/0xb0 [ 35.328920][ C1] lapb_transmit_buffer+0x160/0x208 [ 35.330297][ C1] lapb_send_control+0x21c/0x320 [ 35.331563][ C1] lapb_t1timer_expiry+0x490/0x864 [ 35.332795][ C1] call_timer_fn+0x1b4/0x818 [ 35.333928][ C1] __run_timer_base+0x51c/0x76c [ 35.335147][ C1] run_timer_softirq+0xcc/0x194 [ 35.336357][ C1] handle_softirqs+0x328/0xc88 [ 35.337514][ C1] __do_softirq+0x14/0x20 [ 35.338618][ C1] ____do_softirq+0x14/0x20 [ 35.339712][ C1] call_on_irq_stack+0x24/0x30 [ 35.340924][ C1] do_softirq_own_stack+0x20/0x2c [ 35.342227][ C1] __irq_exit_rcu+0x1b0/0x478 [ 35.343403][ C1] irq_exit_rcu+0x14/0x84 [ 35.344556][ C1] el1_interrupt+0x38/0x54 [ 35.345694][ C1] el1h_64_irq_handler+0x18/0x24 [ 35.346942][ C1] el1h_64_irq+0x6c/0x70 [ 35.348058][ C1] arch_local_irq_enable+0x8/0xc (P) [ 35.349313][ C1] do_idle+0x1d8/0x454 [ 35.350367][ C1] cpu_startup_entry+0x5c/0x74 [ 35.351569][ C1] secondary_start_kernel+0x1b8/0x1e0 [ 35.352909][ C1] __secondary_switched+0xc0/0xc4 [ 35.354148][ C1] irq event stamp: 135857 [ 35.355209][ C1] hardirqs last enabled at (135856): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 35.357893][ C1] hardirqs last disabled at (135857): [] el1_dbg+0x24/0x80 [ 35.360108][ C1] softirqs last enabled at (135830): [] handle_softirqs+0xaf8/0xc88 [ 35.362669][ C1] softirqs last disabled at (135837): [] __do_softirq+0x14/0x20 [ 35.365021][ C1] ---[ end trace 0000000000000000 ]--- [ 37.160783][ C0] ------------[ cut here ]------------ [ 37.160818][ C0] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 37.165028][ C0] Modules linked in: [ 37.166030][ C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 37.169308][ C0] Tainted: [W]=WARN [ 37.170269][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 37.172768][ C0] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 37.174746][ C0] pc : __apply_to_page_range+0xdb4/0x13e4 [ 37.176103][ C0] lr : __apply_to_page_range+0xdb4/0x13e4 [ 37.177567][ C0] sp : ffff800080006b20 [ 37.178648][ C0] x29: ffff800080006c40 x28: ffff0001ffbecfff x27: ffff0001fec50fe8 [ 37.180701][ C0] x26: ffff0001ffbed000 x25: dfff800000000000 x24: ffff0001ffbec000 [ 37.182812][ C0] x23: ffff0001fea8ef60 x22: 0000000000000100 x21: ffff80008f346040 [ 37.184892][ C0] x20: 100000023ea8e403 x19: 0000000000000001 x18: 00000000ffffffff [ 37.186982][ C0] x17: ffff800092f37000 x16: ffff80008051bab8 x15: 0000000000000001 [ 37.189038][ C0] x14: 1ffff00012dfb982 x13: 0000000000000000 x12: 0000000000000000 [ 37.191145][ C0] x11: ffff700012dfb983 x10: 0000000000ff0100 x9 : 0000000000000000 [ 37.193326][ C0] x8 : ffff80008f346040 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 37.195375][ C0] x5 : 0000000000000001 x4 : ffff800080006d20 x3 : ffff8000802595f4 [ 37.197542][ C0] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 37.199684][ C0] Call trace: [ 37.200537][ C0] __apply_to_page_range+0xdb4/0x13e4 (P) [ 37.202039][ C0] apply_to_page_range+0x4c/0x64 [ 37.203288][ C0] __change_memory_common+0xac/0x3f8 [ 37.204625][ C0] set_memory_valid+0x68/0x7c [ 37.205832][ C0] kfence_guarded_free+0x278/0x5a8 [ 37.207064][ C0] __kfence_free+0x104/0x198 [ 37.208231][ C0] kmem_cache_free+0x250/0x550 [ 37.209381][ C0] skb_free_head+0xbc/0x198 [ 37.210573][ C0] skb_release_data+0x66c/0x820 [ 37.211884][ C0] consume_skb+0xb0/0x130 [ 37.213059][ C0] tcp_rcv_state_process+0x1288/0x3630 [ 37.214485][ C0] tcp_v4_do_rcv+0x704/0xbc4 [ 37.215694][ C0] tcp_v4_rcv+0x1dd0/0x28b8 [ 37.216834][ C0] ip_protocol_deliver_rcu+0x1f8/0x484 [ 37.218312][ C0] ip_local_deliver_finish+0x27c/0x4e8 [ 37.219821][ C0] NF_HOOK+0x2c4/0x358 [ 37.220836][ C0] ip_local_deliver+0x120/0x194 [ 37.222035][ C0] ip_sublist_rcv+0x8a0/0xb68 [ 37.223241][ C0] ip_list_rcv+0x398/0x3ec [ 37.224348][ C0] __netif_receive_skb_list_core+0x4e4/0x67c [ 37.225855][ C0] netif_receive_skb_list_internal+0x74c/0x9e0 [ 37.227436][ C0] napi_complete_done+0x250/0x614 [ 37.228737][ C0] gve_napi_poll+0x1f4/0x3ac [ 37.229901][ C0] __napi_poll+0xb4/0x3fc [ 37.231113][ C0] net_rx_action+0x5d4/0xcc8 [ 37.232240][ C0] handle_softirqs+0x328/0xc88 [ 37.233412][ C0] __do_softirq+0x14/0x20 [ 37.234492][ C0] ____do_softirq+0x14/0x20 [ 37.235635][ C0] call_on_irq_stack+0x24/0x30 [ 37.236826][ C0] do_softirq_own_stack+0x20/0x2c [ 37.238070][ C0] __irq_exit_rcu+0x1b0/0x478 [ 37.239324][ C0] irq_exit_rcu+0x14/0x84 [ 37.240422][ C0] el1_interrupt+0x38/0x54 [ 37.241561][ C0] el1h_64_irq_handler+0x18/0x24 [ 37.242860][ C0] el1h_64_irq+0x6c/0x70 [ 37.244005][ C0] arch_local_irq_enable+0x8/0xc (P) [ 37.245362][ C0] do_idle+0x1d8/0x454 [ 37.246429][ C0] cpu_startup_entry+0x5c/0x74 [ 37.247615][ C0] rest_init+0x2d8/0x2f4 [ 37.248744][ C0] start_kernel+0x44c/0x4a8 [ 37.249943][ C0] __primary_switched+0x8c/0x94 [ 37.251268][ C0] irq event stamp: 160669 [ 37.252435][ C0] hardirqs last enabled at (160668): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 37.255071][ C0] hardirqs last disabled at (160669): [] el1_dbg+0x24/0x80 [ 37.257274][ C0] softirqs last enabled at (160608): [] handle_softirqs+0xaf8/0xc88 [ 37.259720][ C0] softirqs last disabled at (160615): [] __do_softirq+0x14/0x20 [ 37.262074][ C0] ---[ end trace 0000000000000000 ]--- [ 37.305855][ C0] ------------[ cut here ]------------ [ 37.305887][ C0] WARNING: CPU: 0 PID: 15 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 37.309960][ C0] Modules linked in: [ 37.310878][ C0] CPU: 0 UID: 0 PID: 15 Comm: ksoftirqd/0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 37.314002][ C0] Tainted: [W]=WARN [ 37.314887][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 37.317330][ C0] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 37.319243][ C0] pc : __apply_to_page_range+0xdb4/0x13e4 [ 37.320697][ C0] lr : __apply_to_page_range+0xdb4/0x13e4 [ 37.322096][ C0] sp : ffff8000976875e0 [ 37.323108][ C0] x29: ffff800097687700 x28: ffff0001ffbeefff x27: ffff0001fec50fe8 [ 37.325232][ C0] x26: ffff0001ffbef000 x25: dfff800000000000 x24: ffff0001ffbee000 [ 37.327274][ C0] x23: ffff0001fea8ef70 x22: 0000000000000100 x21: ffff0000c19f3d00 [ 37.329320][ C0] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386aa76 [ 37.331526][ C0] x17: ffff80008f31e000 x16: ffff80008051bab8 x15: 0000000000000001 [ 37.333506][ C0] x14: 1ffff00012dfb9ce x13: 0000000000000000 x12: 0000000000000000 [ 37.335521][ C0] x11: ffff700012dfb9cf x10: 0000000000ff0100 x9 : 0000000000000000 [ 37.337602][ C0] x8 : ffff0000c19f3d00 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 37.339794][ C0] x5 : 0000000000000001 x4 : ffff8000976877e0 x3 : ffff8000802595f4 [ 37.341879][ C0] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 37.343973][ C0] Call trace: [ 37.344746][ C0] __apply_to_page_range+0xdb4/0x13e4 (P) [ 37.346248][ C0] apply_to_page_range+0x4c/0x64 [ 37.347537][ C0] __change_memory_common+0xac/0x3f8 [ 37.348893][ C0] set_memory_valid+0x68/0x7c [ 37.350116][ C0] kfence_guarded_free+0x278/0x5a8 [ 37.351399][ C0] __kfence_free+0x104/0x198 [ 37.352527][ C0] kmem_cache_free+0x250/0x550 [ 37.353657][ C0] ptlock_free+0x54/0x6c [ 37.354637][ C0] __tlb_remove_table+0x30/0x274 [ 37.355801][ C0] tlb_remove_table_rcu+0x8c/0x19c [ 37.357048][ C0] rcu_core+0x848/0x17a4 [ 37.358116][ C0] rcu_core_si+0x10/0x1c [ 37.359184][ C0] handle_softirqs+0x328/0xc88 [ 37.360408][ C0] run_ksoftirqd+0x70/0xc0 [ 37.361553][ C0] smpboot_thread_fn+0x4d8/0x9cc [ 37.362805][ C0] kthread+0x5fc/0x75c [ 37.363844][ C0] ret_from_fork+0x10/0x20 [ 37.364868][ C0] irq event stamp: 658499 [ 37.365916][ C0] hardirqs last enabled at (658498): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 37.368579][ C0] hardirqs last disabled at (658499): [] el1_dbg+0x24/0x80 [ 37.370800][ C0] softirqs last enabled at (658096): [] handle_softirqs+0xaf8/0xc88 [ 37.373308][ C0] softirqs last disabled at (658101): [] run_ksoftirqd+0x70/0xc0 [ 37.375534][ C0] ---[ end trace 0000000000000000 ]--- [ 37.640250][ C0] ------------[ cut here ]------------ Warning: Permanently added '10.128.0.174' (ED25519) to the list of known hosts. [ 37.640287][ C0] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 37.644364][ C0] Modules linked in: [ 37.645384][ C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 37.648585][ C0] Tainted: [W]=WARN [ 37.649586][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 37.652104][ C0] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 37.654220][ C0] pc : __apply_to_page_range+0xdb4/0x13e4 [ 37.655766][ C0] lr : __apply_to_page_range+0xdb4/0x13e4 [ 37.657291][ C0] sp : ffff8000800077e0 [ 37.658399][ C0] x29: ffff800080007900 x28: ffff0001ffbf2fff x27: ffff0001fec50fe8 [ 37.660464][ C0] x26: ffff0001ffbf3000 x25: dfff800000000000 x24: ffff0001ffbf2000 [ 37.662492][ C0] x23: ffff0001fea8ef90 x22: 0000000000000100 x21: ffff80008f346040 [ 37.664621][ C0] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386aa76 [ 37.666786][ C0] x17: ffff80010d0e8000 x16: ffff80008051bab8 x15: 0000000000000001 [ 37.668762][ C0] x14: 1ffff00012dfb9a0 x13: 0000000000000000 x12: 0000000000000000 [ 37.670854][ C0] x11: ffff700012dfb9a1 x10: 0000000000ff0100 x9 : 0000000000000000 [ 37.672845][ C0] x8 : ffff80008f346040 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 37.674847][ C0] x5 : 0000000000000001 x4 : ffff8000800079e0 x3 : ffff8000802595f4 [ 37.676829][ C0] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 37.678940][ C0] Call trace: [ 37.679831][ C0] __apply_to_page_range+0xdb4/0x13e4 (P) [ 37.681368][ C0] apply_to_page_range+0x4c/0x64 [ 37.682649][ C0] __change_memory_common+0xac/0x3f8 [ 37.684107][ C0] set_memory_valid+0x68/0x7c [ 37.685337][ C0] kfence_guarded_free+0x278/0x5a8 [ 37.686637][ C0] __kfence_free+0x104/0x198 [ 37.687872][ C0] kmem_cache_free+0x250/0x550 [ 37.689067][ C0] skb_free_head+0xbc/0x198 [ 37.690242][ C0] skb_release_data+0x66c/0x820 [ 37.691532][ C0] napi_consume_skb+0x15c/0x21c [ 37.692837][ C0] net_rx_action+0x42c/0xcc8 [ 37.694002][ C0] handle_softirqs+0x328/0xc88 [ 37.695236][ C0] __do_softirq+0x14/0x20 [ 37.696343][ C0] ____do_softirq+0x14/0x20 [ 37.697450][ C0] call_on_irq_stack+0x24/0x30 [ 37.698740][ C0] do_softirq_own_stack+0x20/0x2c [ 37.700213][ C0] __irq_exit_rcu+0x1b0/0x478 [ 37.701386][ C0] irq_exit_rcu+0x14/0x84 [ 37.702460][ C0] el1_interrupt+0x38/0x54 [ 37.703594][ C0] el1h_64_irq_handler+0x18/0x24 [ 37.704947][ C0] el1h_64_irq+0x6c/0x70 [ 37.706076][ C0] arch_local_irq_enable+0x8/0xc (P) [ 37.707462][ C0] do_idle+0x1d8/0x454 [ 37.708547][ C0] cpu_startup_entry+0x5c/0x74 [ 37.709854][ C0] rest_init+0x2d8/0x2f4 [ 37.710981][ C0] start_kernel+0x44c/0x4a8 [ 37.712168][ C0] __primary_switched+0x8c/0x94 [ 37.713398][ C0] irq event stamp: 161377 [ 37.714529][ C0] hardirqs last enabled at (161376): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 37.717235][ C0] hardirqs last disabled at (161377): [] el1_dbg+0x24/0x80 [ 37.719480][ C0] softirqs last enabled at (161350): [] handle_softirqs+0xaf8/0xc88 [ 37.721983][ C0] softirqs last disabled at (161369): [] __do_softirq+0x14/0x20 [ 37.724350][ C0] ---[ end trace 0000000000000000 ]--- [ 37.775546][ C0] ------------[ cut here ]------------ [ 37.775580][ C0] WARNING: CPU: 0 PID: 0 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 37.779781][ C0] Modules linked in: [ 37.780737][ C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 37.783956][ C0] Tainted: [W]=WARN [ 37.784992][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 37.787655][ C0] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 37.789716][ C0] pc : __apply_to_page_range+0xdb4/0x13e4 [ 37.791215][ C0] lr : __apply_to_page_range+0xdb4/0x13e4 [ 37.792788][ C0] sp : ffff800080007640 [ 37.793921][ C0] x29: ffff800080007760 x28: ffff0001ffbf4fff x27: ffff0001fec50fe8 [ 37.796030][ C0] x26: ffff0001ffbf5000 x25: dfff800000000000 x24: ffff0001ffbf4000 [ 37.798065][ C0] x23: ffff0001fea8efa0 x22: 0000000000000100 x21: ffff80008f346040 [ 37.800185][ C0] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386aa76 [ 37.802252][ C0] x17: 0000000000000000 x16: ffff80008051bab8 x15: 0000000000000001 [ 37.804271][ C0] x14: 1ffff00012dfb96b x13: 0000000000000000 x12: 0000000000000000 [ 37.806256][ C0] x11: ffff700012dfb96c x10: 0000000000ff0100 x9 : 0000000000000000 [ 37.808392][ C0] x8 : ffff80008f346040 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 37.810516][ C0] x5 : 0000000000000001 x4 : ffff800080007840 x3 : ffff8000802595f4 [ 37.812580][ C0] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 37.814521][ C0] Call trace: [ 37.815411][ C0] __apply_to_page_range+0xdb4/0x13e4 (P) [ 37.816954][ C0] apply_to_page_range+0x4c/0x64 [ 37.818135][ C0] __change_memory_common+0xac/0x3f8 [ 37.819508][ C0] set_memory_valid+0x68/0x7c [ 37.820832][ C0] kfence_guarded_free+0x278/0x5a8 [ 37.822144][ C0] __kfence_free+0x104/0x198 [ 37.823347][ C0] kmem_cache_free+0x250/0x550 [ 37.824579][ C0] kfree_skbmem+0x14c/0x1dc [ 37.825743][ C0] sk_skb_reason_drop+0x150/0x1b0 [ 37.827043][ C0] dev_kfree_skb_any_reason+0x94/0xd0 [ 37.828423][ C0] gve_clean_tx_done+0x240/0xaa8 [ 37.829705][ C0] gve_tx_poll+0x11c/0x1d0 [ 37.830882][ C0] gve_napi_poll+0xc0/0x3ac [ 37.832080][ C0] __napi_poll+0xb4/0x3fc [ 37.833224][ C0] net_rx_action+0x5d4/0xcc8 [ 37.834403][ C0] handle_softirqs+0x328/0xc88 [ 37.835643][ C0] __do_softirq+0x14/0x20 [ 37.836778][ C0] ____do_softirq+0x14/0x20 [ 37.837949][ C0] call_on_irq_stack+0x24/0x30 [ 37.839111][ C0] do_softirq_own_stack+0x20/0x2c [ 37.840450][ C0] __irq_exit_rcu+0x1b0/0x478 [ 37.841599][ C0] irq_exit_rcu+0x14/0x84 [ 37.842741][ C0] el1_interrupt+0x38/0x54 [ 37.843827][ C0] el1h_64_irq_handler+0x18/0x24 [ 37.845080][ C0] el1h_64_irq+0x6c/0x70 [ 37.846187][ C0] arch_local_irq_enable+0x8/0xc (P) [ 37.847610][ C0] do_idle+0x1d8/0x454 [ 37.848749][ C0] cpu_startup_entry+0x5c/0x74 [ 37.849887][ C0] rest_init+0x2d8/0x2f4 [ 37.850909][ C0] start_kernel+0x44c/0x4a8 [ 37.852040][ C0] __primary_switched+0x8c/0x94 [ 37.853278][ C0] irq event stamp: 161559 [ 37.854394][ C0] hardirqs last enabled at (161558): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 37.856962][ C0] hardirqs last disabled at (161559): [] el1_dbg+0x24/0x80 [ 37.859241][ C0] softirqs last enabled at (161494): [] handle_softirqs+0xaf8/0xc88 [ 37.861656][ C0] softirqs last disabled at (161507): [] __do_softirq+0x14/0x20 [ 37.863962][ C0] ---[ end trace 0000000000000000 ]--- [ 37.936608][ C1] ------------[ cut here ]------------ [ 37.936642][ C1] WARNING: CPU: 1 PID: 23 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 37.940858][ C1] Modules linked in: [ 37.941905][ C1] CPU: 1 UID: 0 PID: 23 Comm: ksoftirqd/1 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 37.945393][ C1] Tainted: [W]=WARN [ 37.946480][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 37.949556][ C1] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 37.951724][ C1] pc : __apply_to_page_range+0xdb4/0x13e4 [ 37.953179][ C1] lr : __apply_to_page_range+0xdb4/0x13e4 [ 37.954722][ C1] sp : ffff800097717640 [ 37.955848][ C1] x29: ffff800097717760 x28: ffff0001ffbf6fff x27: ffff0001fec50fe8 [ 37.957979][ C1] x26: ffff0001ffbf7000 x25: dfff800000000000 x24: ffff0001ffbf6000 [ 37.960017][ C1] x23: ffff0001fea8efb0 x22: 0000000000000100 x21: ffff0000c1b95b80 [ 37.962177][ C1] x20: 100000023ea8e403 x19: 0000000000000001 x18: 0000000000000000 [ 37.964352][ C1] x17: ffff0001fea8b870 x16: ffff80008051bab8 x15: 0000000000000001 [ 37.966487][ C1] x14: 1ffff00012dfba0f x13: 0000000000000000 x12: 0000000000000000 [ 37.968578][ C1] x11: ffff700012dfba10 x10: 0000000000ff0100 x9 : 0000000000000000 [ 37.970631][ C1] x8 : ffff0000c1b95b80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 37.972779][ C1] x5 : 0000000000000001 x4 : ffff800097717840 x3 : ffff8000802595f4 [ 37.974831][ C1] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 37.976977][ C1] Call trace: [ 37.977859][ C1] __apply_to_page_range+0xdb4/0x13e4 (P) [ 37.979290][ C1] apply_to_page_range+0x4c/0x64 [ 37.980488][ C1] __change_memory_common+0xac/0x3f8 [ 37.981920][ C1] set_memory_valid+0x68/0x7c [ 37.983180][ C1] kfence_guarded_free+0x278/0x5a8 [ 37.984475][ C1] __kfence_free+0x104/0x198 [ 37.985652][ C1] kfree+0x268/0x474 [ 37.986680][ C1] slab_free_after_rcu_debug+0x78/0x2f4 [ 37.988151][ C1] rcu_core+0x848/0x17a4 [ 37.989299][ C1] rcu_core_si+0x10/0x1c [ 37.990418][ C1] handle_softirqs+0x328/0xc88 1970/01/01 00:00:37 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:00:37 ignoring optional flag "type"="gce" [ 37.991603][ C1] run_ksoftirqd+0x70/0xc0 [ 37.992717][ C1] smpboot_thread_fn+0x4d8/0x9cc [ 37.994066][ C1] kthread+0x5fc/0x75c [ 37.995109][ C1] ret_from_fork+0x10/0x20 [ 37.996252][ C1] irq event stamp: 557977 [ 37.997158][ C1] hardirqs last enabled at (557976): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 37.999822][ C1] hardirqs last disabled at (557977): [] el1_dbg+0x24/0x80 [ 38.002076][ C1] softirqs last enabled at (556678): [] handle_softirqs+0xaf8/0xc88 [ 38.004493][ C1] softirqs last disabled at (556683): [] run_ksoftirqd+0x70/0xc0 [ 38.006920][ C1] ---[ end trace 0000000000000000 ]--- 1970/01/01 00:00:37 parsed 1 programs [ 38.268809][ T6493] cgroup: Unknown subsys name 'net' [ 38.497819][ T6493] cgroup: Unknown subsys name 'cpuset' [ 38.501557][ T6493] cgroup: Unknown subsys name 'rlimit' [ 38.810633][ T6493] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SS 1970/01/01 00:00:38 executed programs: 0 [ 38.873885][ T55] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 38.874842][ T55] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 38.875787][ T55] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 38.876427][ T55] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 38.876861][ T55] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 38.980549][ T6501] chnl_net:caif_netlink_parms(): no params data found [ 39.024489][ T6501] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.024641][ T6501] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.024801][ T6501] bridge_slave_0: entered allmulticast mode [ 39.026289][ T6501] bridge_slave_0: entered promiscuous mode [ 39.028224][ T6501] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.028271][ T6501] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.028358][ T6501] bridge_slave_1: entered allmulticast mode [ 39.029243][ T6501] bridge_slave_1: entered promiscuous mode [ 39.050293][ T6501] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 39.051743][ T6501] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 39.066165][ T6501] team0: Port device team_slave_0 added [ 39.067666][ T6501] team0: Port device team_slave_1 added [ 39.082293][ T6501] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 39.082351][ T6501] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 39.082381][ T6501] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 39.083628][ T6501] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 39.083656][ T6501] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 39.083684][ T6501] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 39.116859][ T6501] hsr_slave_0: entered promiscuous mode [ 39.117441][ T6501] hsr_slave_1: entered promiscuous mode [ 39.197479][ T6501] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 39.203023][ T6501] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 39.206852][ T6501] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 39.210424][ T6501] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 39.226266][ T6501] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.226373][ T6501] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.226659][ T6501] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.226722][ T6501] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.253561][ T6501] 8021q: adding VLAN 0 to HW filter on device bond0 [ 39.259964][ T183] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.262219][ T183] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.271633][ T6501] 8021q: adding VLAN 0 to HW filter on device team0 [ 39.278368][ T183] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.278447][ T183] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.281647][ T696] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.281697][ T696] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.381037][ T6501] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 39.402147][ T6501] veth0_vlan: entered promiscuous mode [ 39.405089][ T6501] veth1_vlan: entered promiscuous mode [ 39.419333][ T6501] veth0_macvtap: entered promiscuous mode [ 39.421317][ T6501] veth1_macvtap: entered promiscuous mode [ 39.432950][ T6501] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 39.436400][ T6501] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 39.437929][ T6501] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.437985][ T6501] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.438016][ T6501] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.438046][ T6501] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.483288][ T696] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 39.483374][ T696] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 39.498981][ T696] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 39.499036][ T696] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 39.525951][ T183] ------------[ cut here ]------------ [ 39.526009][ T183] WARNING: CPU: 1 PID: 183 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 39.530192][ T183] Modules linked in: [ 39.531198][ T183] CPU: 1 UID: 0 PID: 183 Comm: kworker/u8:4 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 39.534455][ T183] Tainted: [W]=WARN [ 39.535355][ T183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 39.537960][ T183] Workqueue: ipv6_addrconf addrconf_dad_work [ 39.539522][ T183] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 39.541640][ T183] pc : __apply_to_page_range+0xdb4/0x13e4 [ 39.543120][ T183] lr : __apply_to_page_range+0xdb4/0x13e4 [ 39.544548][ T183] sp : ffff80009b846c20 [ 39.545588][ T183] x29: ffff80009b846d40 x28: ffff0001ffa2afff x27: ffff0001fec50fe8 [ 39.547773][ T183] x26: ffff0001ffa2b000 x25: dfff800000000000 x24: ffff0001ffa2a000 [ 39.549836][ T183] x23: ffff0001fea8e150 x22: 0000000000000200 x21: ffff0000c5ed5b80 [ 39.551926][ T183] x20: 100000023ea8e403 x19: 0000000000000001 x18: 00000000ffffffff [ 39.553991][ T183] x17: ffff800092f37000 x16: ffff80008051bab8 x15: 0000000000000001 [ 39.556084][ T183] x14: 1ffff00012dfb971 x13: 0000000000000000 x12: 0000000000000000 [ 39.558127][ T183] x11: ffff700012dfb972 x10: 0000000000ff0100 x9 : 0000000000000000 [ 39.560050][ T183] x8 : ffff0000c5ed5b80 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 39.562192][ T183] x5 : 0000000000000001 x4 : ffff80009b846e20 x3 : ffff8000802595f4 [ 39.564217][ T183] x2 : 0000000000001000 x1 : 0000000000000200 x0 : 0000000000000000 [ 39.566355][ T183] Call trace: [ 39.567189][ T183] __apply_to_page_range+0xdb4/0x13e4 (P) [ 39.568662][ T183] apply_to_page_range+0x4c/0x64 [ 39.569933][ T183] __change_memory_common+0xac/0x3f8 [ 39.571256][ T183] set_memory_valid+0x68/0x7c [ 39.572475][ T183] kfence_guarded_free+0x278/0x5a8 [ 39.573839][ T183] __kfence_free+0x104/0x198 [ 39.575158][ T183] kmem_cache_free+0x250/0x550 [ 39.576407][ T183] kfree_skbmem+0x14c/0x1dc [ 39.577553][ T183] consume_skb+0xb8/0x130 [ 39.578682][ T183] nsim_start_xmit+0x1cc/0x6d8 [ 39.579961][ T183] dev_hard_start_xmit+0x2b0/0x8ac [ 39.581229][ T183] __dev_queue_xmit+0x15a4/0x31f0 [ 39.582527][ T183] neigh_resolve_output+0x550/0x654 [ 39.583910][ T183] ip6_finish_output2+0x1544/0x1c7c [ 39.585352][ T183] ip6_finish_output+0x418/0x7b4 [ 39.586744][ T183] ip6_output+0x274/0x504 [ 39.587869][ T183] ndisc_send_skb+0xb48/0x1524 [ 39.589106][ T183] ndisc_send_ns+0xd4/0x164 [ 39.590307][ T183] addrconf_dad_work+0x770/0x10cc [ 39.591606][ T183] process_one_work+0x7e8/0x156c [ 39.592896][ T183] worker_thread+0x958/0xed8 [ 39.594151][ T183] kthread+0x5fc/0x75c [ 39.595213][ T183] ret_from_fork+0x10/0x20 [ 39.596324][ T183] irq event stamp: 155823 [ 39.597412][ T183] hardirqs last enabled at (155822): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 39.600111][ T183] hardirqs last disabled at (155823): [] el1_dbg+0x24/0x80 [ 39.602561][ T183] softirqs last enabled at (155804): [] neigh_resolve_output+0x25c/0x654 [ 39.605366][ T183] softirqs last disabled at (155808): [] local_bh_disable+0x10/0x34 [ 39.607971][ T183] ---[ end trace 0000000000000000 ]--- [ 39.617357][ T6501] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 39.695439][ C1] ------------[ cut here ]------------ [ 39.695477][ C1] WARNING: CPU: 1 PID: 6488 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 39.699766][ C1] Modules linked in: [ 39.700694][ C1] CPU: 1 UID: 0 PID: 6488 Comm: syz-execprog Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 39.704013][ C1] Tainted: [W]=WARN [ 39.705047][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 39.707566][ C1] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 39.709496][ C1] pc : __apply_to_page_range+0xdb4/0x13e4 [ 39.711001][ C1] lr : __apply_to_page_range+0xdb4/0x13e4 [ 39.712392][ C1] sp : ffff8000800179c0 [ 39.713393][ C1] x29: ffff800080017ae0 x28: ffff0001ffa1afff x27: ffff0001fec50fe8 [ 39.715481][ C1] x26: ffff0001ffa1b000 x25: dfff800000000000 x24: ffff0001ffa1a000 [ 39.717488][ C1] x23: ffff0001fea8e0d0 x22: 0000000000000100 x21: ffff0000dd4b8000 [ 39.719382][ C1] x20: 100000023ea8e403 x19: 0000000000000001 x18: 1fffe0003386f276 [ 39.721288][ C1] x17: ffff80010d10c000 x16: ffff80008051bab8 x15: 0000000000000001 [ 39.723421][ C1] x14: 1ffff00012dfb93e x13: 0000000000000000 x12: 0000000000000000 [ 39.725411][ C1] x11: ffff700012dfb93f x10: 0000000000ff0100 x9 : 0000000000000000 [ 39.727532][ C1] x8 : ffff0000dd4b8000 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 39.729664][ C1] x5 : 0000000000000001 x4 : ffff800080017bc0 x3 : ffff8000802595f4 [ 39.731619][ C1] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 39.733698][ C1] Call trace: [ 39.734541][ C1] __apply_to_page_range+0xdb4/0x13e4 (P) [ 39.735992][ C1] apply_to_page_range+0x4c/0x64 [ 39.737200][ C1] __change_memory_common+0xac/0x3f8 [ 39.738574][ C1] set_memory_valid+0x68/0x7c [ 39.739777][ C1] kfence_guarded_free+0x278/0x5a8 [ 39.741087][ C1] rcu_guarded_free+0x4c/0x5c [ 39.742285][ C1] rcu_core+0x848/0x17a4 [ 39.743402][ C1] rcu_core_si+0x10/0x1c [ 39.744452][ C1] handle_softirqs+0x328/0xc88 [ 39.745648][ C1] __do_softirq+0x14/0x20 [ 39.746759][ C1] ____do_softirq+0x14/0x20 [ 39.747851][ C1] call_on_irq_stack+0x24/0x30 [ 39.749003][ C1] do_softirq_own_stack+0x20/0x2c [ 39.750239][ C1] __irq_exit_rcu+0x1b0/0x478 [ 39.751478][ C1] irq_exit_rcu+0x14/0x84 [ 39.752572][ C1] el1_interrupt+0x38/0x54 [ 39.753836][ C1] el1h_64_irq_handler+0x18/0x24 [ 39.755059][ C1] el1h_64_irq+0x6c/0x70 [ 39.756153][ C1] _raw_spin_unlock_irqrestore+0x44/0x98 (P) [ 39.757711][ C1] debug_check_no_obj_freed+0x454/0x470 [ 39.759077][ C1] free_unref_folios+0x568/0x14e0 [ 39.760346][ C1] folios_put_refs+0x608/0x718 [ 39.761532][ C1] free_pages_and_swap_cache+0x204/0x3a0 [ 39.762959][ C1] tlb_flush_mmu+0x14c/0x398 [ 39.764204][ C1] unmap_page_range+0x2afc/0x311c [ 39.765448][ C1] unmap_vmas+0x264/0x3d4 [ 39.766535][ C1] exit_mmap+0x1bc/0xbec [ 39.767655][ C1] __mmput+0xec/0x3dc [ 39.768645][ C1] mmput+0x70/0xac [ 39.769617][ C1] exit_mm+0x13c/0x200 [ 39.770672][ C1] do_exit+0x470/0x1998 [ 39.771673][ C0] ------------[ cut here ]------------ [ 39.771928][ C0] WARNING: CPU: 0 PID: 345 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 39.771962][ C0] Modules linked in: [ 39.772063][ C0] CPU: 0 UID: 0 PID: 345 Comm: kworker/u8:6 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 39.772090][ C0] Tainted: [W]=WARN [ 39.772103][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 39.772119][ C0] Workqueue: events_unbound toggle_allocation_gate [ 39.772146][ C0] pstate: 404000c5 (nZcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 39.772167][ C0] pc : __apply_to_page_range+0xdb4/0x13e4 [ 39.772189][ C0] lr : __apply_to_page_range+0xdb4/0x13e4 [ 39.772211][ C0] sp : ffff800080007280 [ 39.772224][ C0] x29: ffff8000800073a0 x28: ffff0001ffa2efff x27: ffff0001fec50fe8 [ 39.772258][ C0] x26: ffff0001ffa2f000 x25: dfff800000000000 x24: ffff0001ffa2e000 [ 39.772292][ C0] x23: ffff0001fea8e170 x22: 0000000000000100 x21: ffff0000c6c40000 [ 39.772326][ C0] x20: 100000023ea8e403 x19: 0000000000000001 x18: 00000000ffffffff [ 39.772358][ C0] x17: ffff800092f37000 x16: ffff80008adb82bc x15: ffff700010000e98 [ 39.772392][ C0] x14: 1ffff00010000e98 x13: 0000000000000004 x12: ffffffffffffffff [ 39.772425][ C0] x11: 000000004407a50d x10: 0000000000ff0100 x9 : 0000000000000000 [ 39.772458][ C0] x8 : ffff0000c6c40000 x7 : ffff800080c2c30c x6 : 0000000000000000 [ 39.772490][ C0] x5 : 0000000000000001 x4 : ffff800080007480 x3 : ffff8000802595f4 [ 39.772523][ C0] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 39.772556][ C0] Call trace: [ 39.772568][ C0] __apply_to_page_range+0xdb4/0x13e4 (P) [ 39.772593][ C0] apply_to_page_range+0x4c/0x64 [ 39.772617][ C0] __change_memory_common+0xac/0x3f8 [ 39.772639][ C0] set_memory_valid+0x68/0x7c [ 39.772660][ C0] kfence_guarded_alloc+0x2e8/0xb08 [ 39.772681][ C0] __kfence_alloc+0x394/0x45c [ 39.772702][ C0] kmem_cache_alloc_node_noprof+0x34c/0x3f4 [ 39.772727][ C0] __alloc_skb+0x144/0x2ec [ 39.772761][ C0] __netdev_alloc_skb+0xc8/0x6cc [ 39.772788][ C0] __ieee80211_beacon_get+0x98c/0x12c0 [ 39.772813][ C0] ieee80211_beacon_get_tim+0xb8/0x244 [ 39.772838][ C0] mac80211_hwsim_beacon_tx+0x350/0x6ec [ 39.772862][ C0] __iterate_interfaces+0x250/0x504 [ 39.772883][ C0] ieee80211_iterate_active_interfaces_atomic+0xd4/0x180 [ 39.772906][ C0] mac80211_hwsim_beacon+0xc8/0x1b8 [ 39.772927][ C0] __hrtimer_run_queues+0x41c/0xb78 [ 39.772951][ C0] hrtimer_run_softirq+0x160/0x400 [ 39.772974][ C0] handle_softirqs+0x328/0xc88 [ 39.772998][ C0] __do_softirq+0x14/0x20 [ 39.773017][ C0] ____do_softirq+0x14/0x20 [ 39.773038][ C0] call_on_irq_stack+0x24/0x30 [ 39.773059][ C0] do_softirq_own_stack+0x20/0x2c [ 39.773080][ C0] __irq_exit_rcu+0x1b0/0x478 [ 39.773104][ C0] irq_exit_rcu+0x14/0x84 [ 39.773127][ C0] el1_interrupt+0x38/0x54 [ 39.773150][ C0] el1h_64_irq_handler+0x18/0x24 [ 39.773173][ C0] el1h_64_irq+0x6c/0x70 [ 39.773192][ C0] smp_call_function_many_cond+0xe14/0x1308 (P) [ 39.773213][ C0] kick_all_cpus_sync+0x40/0xa0 [ 39.773237][ C0] arch_jump_label_transform_apply+0x14/0x20 [ 39.773260][ C0] __jump_label_update+0x30c/0x334 [ 39.773283][ C0] jump_label_update+0x3f0/0x484 [ 39.773305][ C0] static_key_enable_cpuslocked+0x11c/0x220 [ 39.773328][ C0] static_key_enable+0x24/0x38 [ 39.773349][ C0] toggle_allocation_gate+0xbc/0x240 [ 39.773371][ C0] process_one_work+0x7e8/0x156c [ 39.773391][ C0] worker_thread+0x958/0xed8 [ 39.773411][ C0] kthread+0x5fc/0x75c [ 39.773434][ C0] ret_from_fork+0x10/0x20 [ 39.773455][ C0] irq event stamp: 641907 [ 39.773467][ C0] hardirqs last enabled at (641906): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 39.773494][ C0] hardirqs last disabled at (641907): [] kfence_guarded_alloc+0x190/0xb08 [ 39.773518][ C0] softirqs last enabled at (641864): [] handle_softirqs+0xaf8/0xc88 [ 39.773544][ C0] softirqs last disabled at (641899): [] __do_softirq+0x14/0x20 [ 39.773565][ C0] ---[ end trace 0000000000000000 ]--- [ 39.773587][ C0] ------------[ cut here ]------------ [ 39.773599][ C0] WARNING: CPU: 0 PID: 345 at ./arch/arm64/include/asm/pgtable.h:67 change_page_range+0x188/0x1cc [ 39.773624][ C0] Modules linked in: [ 39.773643][ C0] CPU: 0 UID: 0 PID: 345 Comm: kworker/u8:6 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 39.773667][ C0] Tainted: [W]=WARN [ 39.773680][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 39.773695][ C0] Workqueue: events_unbound toggle_allocation_gate [ 39.773718][ C0] pstate: 404000c5 (nZcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 39.773744][ C0] pc : change_page_range+0x188/0x1cc [ 39.773763][ C0] lr : change_page_range+0x188/0x1cc [ 39.773785][ C0] sp : ffff800080007240 [ 39.773798][ C0] x29: ffff800080007240 x28: ffff0001ffa2efff x27: ffff0001fec50fe8 [ 39.773833][ C0] x26: ffff0001ffa2f000 x25: ffff0001ffa2e000 x24: ffff0001ffa2e000 [ 39.773867][ C0] x23: 006800023fa2e707 x22: 0040000000000001 x21: dfff800000000000 [ 39.773900][ C0] x20: 0000000000000100 x19: ffff0000c6c40000 x18: 00000000ffffffff [ 39.773933][ C0] x17: ffff800092f37000 x16: ffff80008adb82bc x15: 0000000000000001 [ 39.773967][ C0] x14: 1fffe00018d88000 x13: 0000000000000000 x12: 0000000000000000 [ 39.773999][ C0] x11: ffff600018d88001 x10: 0000000000ff0100 x9 : 0000000000000000 [ 39.774032][ C0] x8 : ffff0000c6c40000 x7 : ffff800080c2c30c x6 : 0000000000000000 [ 39.774065][ C0] x5 : 0000000000000001 x4 : ffff800080007480 x3 : ffff800080ac62d0 [ 39.774101][ C0] x2 : ffff800080007480 x1 : 0000000000000100 x0 : 0000000000000000 [ 39.774134][ C0] Call trace: [ 39.774146][ C0] change_page_range+0x188/0x1cc (P) [ 39.774168][ C0] __apply_to_page_range+0xd58/0x13e4 [ 39.774191][ C0] apply_to_page_range+0x4c/0x64 [ 39.774214][ C0] __change_memory_common+0xac/0x3f8 [ 39.774236][ C0] set_memory_valid+0x68/0x7c [ 39.774256][ C0] kfence_guarded_alloc+0x2e8/0xb08 [ 39.774278][ C0] __kfence_alloc+0x394/0x45c [ 39.774298][ C0] kmem_cache_alloc_node_noprof+0x34c/0x3f4 [ 39.774323][ C0] __alloc_skb+0x144/0x2ec [ 39.774345][ C0] __netdev_alloc_skb+0xc8/0x6cc [ 39.774367][ C0] __ieee80211_beacon_get+0x98c/0x12c0 [ 39.774392][ C0] ieee80211_beacon_get_tim+0xb8/0x244 [ 39.774416][ C0] mac80211_hwsim_beacon_tx+0x350/0x6ec [ 39.774438][ C0] __iterate_interfaces+0x250/0x504 [ 39.774459][ C0] ieee80211_iterate_active_interfaces_atomic+0xd4/0x180 [ 39.774482][ C0] mac80211_hwsim_beacon+0xc8/0x1b8 [ 39.774503][ C0] __hrtimer_run_queues+0x41c/0xb78 [ 39.774526][ C0] hrtimer_run_softirq+0x160/0x400 [ 39.774550][ C0] handle_softirqs+0x328/0xc88 [ 39.774573][ C0] __do_softirq+0x14/0x20 [ 39.774592][ C0] ____do_softirq+0x14/0x20 [ 39.774612][ C0] call_on_irq_stack+0x24/0x30 [ 39.774633][ C0] do_softirq_own_stack+0x20/0x2c [ 39.774654][ C0] __irq_exit_rcu+0x1b0/0x478 [ 39.774678][ C0] irq_exit_rcu+0x14/0x84 [ 39.774701][ C0] el1_interrupt+0x38/0x54 [ 39.774723][ C0] el1h_64_irq_handler+0x18/0x24 [ 39.774751][ C0] el1h_64_irq+0x6c/0x70 [ 39.774770][ C0] smp_call_function_many_cond+0xe14/0x1308 (P) [ 39.774795][ C0] kick_all_cpus_sync+0x40/0xa0 [ 39.774814][ C0] arch_jump_label_transform_apply+0x14/0x20 [ 39.774837][ C0] __jump_label_update+0x30c/0x334 [ 39.774859][ C0] jump_label_update+0x3f0/0x484 [ 39.774881][ C0] static_key_enable_cpuslocked+0x11c/0x220 [ 39.774903][ C0] static_key_enable+0x24/0x38 [ 39.774924][ C0] toggle_allocation_gate+0xbc/0x240 [ 39.774946][ C0] process_one_work+0x7e8/0x156c [ 39.774965][ C0] worker_thread+0x958/0xed8 [ 39.774985][ C0] kthread+0x5fc/0x75c [ 39.775007][ C0] ret_from_fork+0x10/0x20 [ 39.775027][ C0] irq event stamp: 641907 [ 39.775040][ C0] hardirqs last enabled at (641906): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 39.775066][ C0] hardirqs last disabled at (641907): [] kfence_guarded_alloc+0x190/0xb08 [ 39.775089][ C0] softirqs last enabled at (641864): [] handle_softirqs+0xaf8/0xc88 [ 39.775114][ C0] softirqs last disabled at (641899): [] __do_softirq+0x14/0x20 [ 39.775135][ C0] ---[ end trace 0000000000000000 ]--- [ 39.775341][ C0] ------------[ cut here ]------------ [ 39.775355][ C0] WARNING: CPU: 0 PID: 345 at ./arch/arm64/include/asm/pgtable.h:82 __apply_to_page_range+0xdb4/0x13e4 [ 39.775384][ C0] Modules linked in: [ 39.775403][ C0] CPU: 0 UID: 0 PID: 345 Comm: kworker/u8:6 Tainted: G W 6.15.0-rc5-syzkaller-00074-gac57c6b0f09c #0 PREEMPT [ 39.775428][ C0] Tainted: [W]=WARN [ 39.775440][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 39.775455][ C0] Workqueue: events_unbound toggle_allocation_gate [ 39.775478][ C0] pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 39.775498][ C0] pc : __apply_to_page_range+0xdb4/0x13e4 [ 39.775520][ C0] lr : __apply_to_page_range+0xdb4/0x13e4 [ 39.775541][ C0] sp : ffff8000800076a0 [ 39.775553][ C0] x29: ffff8000800077c0 x28: ffff0001ffa2efff x27: ffff0001fec50fe8 [ 39.775587][ C0] x26: ffff0001ffa2f000 x25: dfff800000000000 x24: ffff0001ffa2e000 [ 39.775620][ C0] x23: ffff0001fea8e170 x22: 0000000000000100 x21: ffff0000c6c40000 [ 39.775653][ C0] x20: 100000023ea8e403 x19: 0000000000000001 x18: 00000000ffffffff [ 39.775685][ C0] x17: 00000000ffff0000 x16: ffff80008051bab8 x15: 0000000000000001 [ 39.775718][ C0] x14: 1ffff00012dfb9d3 x13: 0000000000000000 x12: 0000000000000000 [ 39.775761][ C0] x11: ffff700012dfb9d4 x10: 0000000000ff0100 x9 : 0000000000000000 [ 39.775799][ C0] x8 : ffff0000c6c40000 x7 : ffff800080c2b0a4 x6 : 0000000000000000 [ 39.775832][ C0] x5 : 0000000000000001 x4 : ffff8000800078a0 x3 : ffff8000802595f4 [ 39.775865][ C0] x2 : 0000000000001000 x1 : 0000000000000100 x0 : 0000000000000000 [ 39.775897][ C0] Call trace: [ 39.775908][ C0] __apply_to_page_range+0xdb4/0x13e4 (P) [ 39.775933][ C0] apply_to_page_range+0x4c/0x64 [ 39.775956][ C0] __change_memory_common+0xac/0x3f8 [ 39.775977][ C0] set_memory_valid+0x68/0x7c [ 39.775998][ C0] kfence_guarded_free+0x278/0x5a8 [ 39.776019][ C0] __kfence_free+0x104/0x198 [ 39.776040][ C0] kmem_cache_free+0x250/0x550 [ 39.776059][ C0] kfree_skbmem+0x14c/0x1dc [ 39.776082][ C0] consume_skb+0xb8/0x130 [ 39.776105][ C0] mac80211_hwsim_tx_frame+0x1c8/0x1f4 [ 39.776127][ C0] __mac80211_hwsim_beacon_tx+0x3bc/0x5e4 [ 39.776150][ C0] mac80211_hwsim_beacon_tx+0x37c/0x6ec [ 39.776172][ C0] __iterate_interfaces+0x250/0x504 [ 39.776194][ C0] ieee80211_iterate_active_interfaces_atomic+0xd4/0x180 [ 39.776216][ C0] mac80211_hwsim_beacon+0xc8/0x1b8 [ 39.776237][ C0] __hrtimer_run_queues+0x41c/0xb78 [ 39.776260][ C0] hrtimer_run_softirq+0x160/0x400 [ 39.776283][ C0] handle_softirqs+0x328/0xc88 [ 39.776307][ C0] __do_softirq+0x14/0x20 [ 39.776325][ C0] ____do_softirq+0x14/0x20 [ 39.776346][ C0] call_on_irq_stack+0x24/0x30 [ 39.776366][ C0] do_softirq_own_stack+0x20/0x2c [ 39.776387][ C0] __irq_exit_rcu+0x1b0/0x478 [ 39.776411][ C0] irq_exit_rcu+0x14/0x84 [ 39.776434][ C0] el1_interrupt+0x38/0x54 [ 39.776456][ C0] el1h_64_irq_handler+0x18/0x24 [ 39.776479][ C0] el1h_64_irq+0x6c/0x70 [ 39.776498][ C0] smp_call_function_many_cond+0xe14/0x1308 (P) [ 39.776518][ C0] kick_all_cpus_sync+0x40/0xa0 [ 39.776538][ C0] arch_jump_label_transform_apply+0x14/0x20 [ 39.776560][ C0] __jump_label_update+0x30c/0x334 [ 39.776582][ C0] jump_label_update+0x3f0/0x484 [ 39.776604][ C0] static_key_enable_cpuslocked+0x11c/0x220 [ 39.776626][ C0] static_key_enable+0x24/0x38 [ 39.776648][ C0] toggle_allocation_gate+0xbc/0x240 [ 39.776670][ C0] process_one_work+0x7e8/0x156c [ 39.776688][ C0] worker_thread+0x958/0xed8 [ 39.776708][ C0] kthread+0x5fc/0x75c [ 39.776735][ C0] ret_from_fork+0x10/0x20 [ 39.776756][ C0] irq event stamp: 641927 [ 39.776769][ C0] hardirqs last enabled at (641926): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 39.776798][ C0] hardirqs last disabled at (641927): [] el1_dbg+0x24/0x80 [ 39.776822][ C0] softirqs last enabled at (641864): [] handle_softirqs+0xaf8/0xc88 [ 39.776847][ C0] softirqs last disabled at (641899): [] __do_softirq+0x14/0x20 [ 39.776867][ C0] ---[ end trace 0000000000000000 ]--- [ 40.080826][ C1] do_group_exit+0x194/0x22c [ 40.082030][ C1] pid_child_should_wake+0x0/0x1dc [ 40.083355][ C1] invoke_syscall+0x98/0x2b8 [ 40.084525][ C1] el0_svc_common+0x130/0x23c [ 40.085761][ C1] do_el0_svc+0x48/0x58 [ 40.086835][ C1] el0_svc+0x58/0x17c [ 40.087873][ C1] el0t_64_sync_handler+0x78/0x108 [ 40.089118][ C1] el0t_64_sync+0x198/0x19c [ 40.090328][ C1] irq event stamp: 66055 [ 40.091442][ C1] hardirqs last enabled at (66054): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 40.094160][ C1] hardirqs last disabled at (66055): [] el1_dbg+0x24/0x80 [ 40.096362][ C1] softirqs last enabled at (61378): [] handle_softirqs+0xaf8/0xc88 [ 40.098912][ C1] softirqs last disabled at (65949): [] __do_softirq+0x14/0x20 [ 40.101208][ C1] ---[ end trace 0000000000000000 ]--- syzkaller build log: go env (err=) GO111MODULE='auto' GOARCH='amd64' GOBIN='' GOCACHE='/syzkaller/.cache/go-build' GOENV='/syzkaller/.config/go/env' GOEXE='' GOEXPERIMENT='' GOFLAGS='' GOHOSTARCH='amd64' GOHOSTOS='linux' GOINSECURE='' GOMODCACHE='/syzkaller/jobs-2/linux/gopath/pkg/mod' GONOPROXY='' GONOSUMDB='' GOOS='linux' GOPATH='/syzkaller/jobs-2/linux/gopath' GOPRIVATE='' GOPROXY='https://proxy.golang.org,direct' GOROOT='/usr/local/go' GOSUMDB='sum.golang.org' GOTMPDIR='' GOTOOLCHAIN='auto' GOTOOLDIR='/usr/local/go/pkg/tool/linux_amd64' GOVCS='' GOVERSION='go1.22.7' GCCGO='gccgo' GOAMD64='v1' AR='ar' CC='gcc' CXX='g++' CGO_ENABLED='1' GOMOD='/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/go.mod' GOWORK='' CGO_CFLAGS='-O2 -g' CGO_CPPFLAGS='' CGO_CXXFLAGS='-O2 -g' CGO_FFLAGS='-O2 -g' CGO_LDFLAGS='-O2 -g' PKG_CONFIG='pkg-config' GOGCCFLAGS='-fPIC -m64 -pthread -Wl,--no-gc-sections -fmessage-length=0 -ffile-prefix-map=/tmp/go-build4162540505=/tmp/go-build -gno-record-gcc-switches' git status (err=) HEAD detached at 6baf506947b nothing to commit, working tree clean tput: No value for $TERM and no -T specified tput: No value for $TERM and no -T specified Makefile:31: run command via tools/syz-env for best compatibility, see: Makefile:32: https://github.com/google/syzkaller/blob/master/docs/contributing.md#using-syz-env go list -f '{{.Stale}}' ./sys/syz-sysgen | grep -q false || go install ./sys/syz-sysgen make .descriptions tput: No value for $TERM and no -T specified tput: No value for $TERM and no -T specified Makefile:31: run command via tools/syz-env for best compatibility, see: Makefile:32: https://github.com/google/syzkaller/blob/master/docs/contributing.md#using-syz-env bin/syz-sysgen touch .descriptions GOOS=linux GOARCH=arm64 go build "-ldflags=-s -w -X github.com/google/syzkaller/prog.GitRevision=6baf506947ba27ed9ce775cf9351cb0886166083 -X 'github.com/google/syzkaller/prog.gitRevisionDate=20240329-215124'" "-tags=syz_target syz_os_linux syz_arch_arm64 " -o ./bin/linux_arm64/syz-fuzzer github.com/google/syzkaller/syz-fuzzer GOOS=linux GOARCH=arm64 go build "-ldflags=-s -w -X github.com/google/syzkaller/prog.GitRevision=6baf506947ba27ed9ce775cf9351cb0886166083 -X 'github.com/google/syzkaller/prog.gitRevisionDate=20240329-215124'" "-tags=syz_target syz_os_linux syz_arch_arm64 " -o ./bin/linux_arm64/syz-execprog github.com/google/syzkaller/tools/syz-execprog GOOS=linux GOARCH=arm64 go build "-ldflags=-s -w -X github.com/google/syzkaller/prog.GitRevision=6baf506947ba27ed9ce775cf9351cb0886166083 -X 'github.com/google/syzkaller/prog.gitRevisionDate=20240329-215124'" "-tags=syz_target syz_os_linux syz_arch_arm64 " -o ./bin/linux_arm64/syz-stress github.com/google/syzkaller/tools/syz-stress mkdir -p ./bin/linux_arm64 aarch64-linux-gnu-gcc -o ./bin/linux_arm64/syz-executor executor/executor.cc \ -O2 -pthread -Wall -Werror -Wparentheses -Wunused-const-variable -Wframe-larger-than=16384 -Wno-stringop-overflow -Wno-array-bounds -Wno-format-overflow -Wno-unused-but-set-variable -Wno-unused-command-line-argument -static-pie -fpermissive -w -DGOOS_linux=1 -DGOARCH_arm64=1 \ -DHOSTGOOS_linux=1 -DGIT_REVISION=\"6baf506947ba27ed9ce775cf9351cb0886166083\"