CFI failure at __traceiter_tlb_flush+0x80/0xd0 include/trace/events/tlb.h:38 (target: tp_stub_func+0x0/0x10; expected type: 0x205553a5)
invalid opcode: 0000 [#1] PREEMPT SMP KASAN
CPU: 0 PID: 470 Comm: syz-executor Not tainted syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
RIP: 0010:__traceiter_tlb_flush+0x80/0xd0 include/trace/events/tlb.h:38
Code: 89 f8 48 c1 e8 03 42 80 3c 28 00 74 05 e8 48 62 07 00 49 8b 7c 24 08 44 89 f6 48 8b 55 d0 41 ba 5b ac aa df 44 03 53 fc 74 02 <0f> 0b ff d3 49 83 c7 18 4c 89 f8 48 c1 e8 03 42 80 3c 28 00 74 08
RSP: 0000:ffffc90000c878e0 EFLAGS: 00010093
RAX: 1ffff11023754ac6 RBX: ffffffff81714650 RCX: ffff88811abf8000
RDX: 0000000000000001 RSI: 0000000000000003 RDI: ffffc90000b1b000
RBP: ffffc90000c87910 R08: ffff88811abf8000 R09: 000000000000000c
R10: 0000000084eb1367 R11: 0000000000000000 R12: ffff88811baa5628
R13: dffffc0000000000 R14: 0000000000000003 R15: ffff88811baa5628
FS:  000055557cbc5500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f0d55b7e5e8 CR3: 000000012a972000 CR4: 00000000003506b0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 trace_tlb_flush include/trace/events/tlb.h:38 [inline]
 flush_tlb_func+0x4ca/0x4f0 arch/x86/mm/tlb.c:879
 flush_tlb_mm_range+0x385/0x470 arch/x86/mm/tlb.c:1062
 flush_tlb_page arch/x86/include/asm/tlbflush.h:241 [inline]
 ptep_clear_flush+0x111/0x150 mm/pgtable-generic.c:99
 wp_page_copy+0xca3/0x15b0 mm/memory.c:3278
 do_wp_page+0x9f2/0xfc0 mm/memory.c:-1
 handle_pte_fault mm/memory.c:5189 [inline]
 __handle_mm_fault mm/memory.c:5313 [inline]
 handle_mm_fault+0x10e4/0x2640 mm/memory.c:5453
 do_user_addr_fault+0x905/0x1050 arch/x86/mm/fault.c:1323
 handle_page_fault arch/x86/mm/fault.c:1466 [inline]
 exc_page_fault+0x51/0xb0 arch/x86/mm/fault.c:1522
 asm_exc_page_fault+0x27/0x30 arch/x86/include/asm/idtentry.h:608
RIP: 0033:0x7f0d55966622
Code: ff ff ff 0f 1f 44 00 00 0f b7 0e 66 89 0f c6 47 02 00 e9 59 ff ff ff 90 8b 16 89 17 e9 4f ff ff ff 0f 1f 80 00 00 00 00 8b 0e <89> 0f 8b 4c 16 fd 89 4c 17 fd e9 37 ff ff ff 66 66 2e 0f 1f 84 00
RSP: 002b:00007ffc4a63a4c8 EFLAGS: 00010202
RAX: 00007f0d55b7e5e8 RBX: 00007f0d55b7e5e8 RCX: 00000000746c6966
RDX: 0000000000000006 RSI: 00007f0d55a11e44 RDI: 00007f0d55b7e5e8
RBP: 00007f0d55a11e44 R08: 00007ffc4a63abc0 R09: 00007ffc4a63a457
R10: 00007f0d55b7df68 R11: 0000000000000202 R12: 0000000000000003
R13: 00007f0d55b7d260 R14: 0000000000000003 R15: 00007ffc4a63abc0
 </TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:__traceiter_tlb_flush+0x80/0xd0 include/trace/events/tlb.h:38
Code: 89 f8 48 c1 e8 03 42 80 3c 28 00 74 05 e8 48 62 07 00 49 8b 7c 24 08 44 89 f6 48 8b 55 d0 41 ba 5b ac aa df 44 03 53 fc 74 02 <0f> 0b ff d3 49 83 c7 18 4c 89 f8 48 c1 e8 03 42 80 3c 28 00 74 08
RSP: 0000:ffffc90000c878e0 EFLAGS: 00010093

RAX: 1ffff11023754ac6 RBX: ffffffff81714650 RCX: ffff88811abf8000
RDX: 0000000000000001 RSI: 0000000000000003 RDI: ffffc90000b1b000
RBP: ffffc90000c87910 R08: ffff88811abf8000 R09: 000000000000000c
R10: 0000000084eb1367 R11: 0000000000000000 R12: ffff88811baa5628
R13: dffffc0000000000 R14: 0000000000000003 R15: ffff88811baa5628
FS:  000055557cbc5500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f0d55b7e5e8 CR3: 000000012a972000 CR4: 00000000003506b0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400