BUG: TASK stack guard page was hit at ffffc90002a9ffb8 (stack is ffffc90002aa0000..ffffc90002aa8000)
stack guard page: 0000 [#1] PREEMPT SMP KASAN
CPU: 0 PID: 1669 Comm: syz.0.424 Not tainted 6.1.138-syzkaller-1169863-gdb710ea87c32 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
RIP: 0010:bpf_overflow_handler+0x77/0x5c0 kernel/events/core.c:10193
Code: 86 48 c7 44 24 50 c0 9f 97 81 4c 8d 7c 24 40 49 c1 ef 03 48 b8 f1 f1 f1 f1 00 00 00 f3 4b 89 04 2f 43 c7 44 2f 08 f3 f3 f3 f3 <e8> d4 50 d8 ff 4c 89 64 24 10 4c 89 64 24 68 4c 89 74 24 70 48 89
RSP: 0000:ffffc90002a9ffc0 EFLAGS: 00010806
RAX: f3000000f1f1f1f1 RBX: ffffc90002aa7f58 RCX: ffff88810db93cc0
RDX: ffffc90002aa7f58 RSI: ffffc90002aa7ac0 RDI: ffff88811fe4ce10
RBP: ffffc90002aa00b0 R08: dffffc0000000000 R09: ffffed1023fc9a31
R10: 0000000000000000 R11: ffffffff81979fc0 R12: ffffc90002aa7ac0
R13: dffffc0000000000 R14: ffff88811fe4ce10 R15: 1ffff92000554000
FS:  00007fb3f88f06c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: ffffc90002a9ffb8 CR3: 0000000111b86000 CR4: 00000000003506b0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 </TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:bpf_overflow_handler+0x77/0x5c0 kernel/events/core.c:10193
Code: 86 48 c7 44 24 50 c0 9f 97 81 4c 8d 7c 24 40 49 c1 ef 03 48 b8 f1 f1 f1 f1 00 00 00 f3 4b 89 04 2f 43 c7 44 2f 08 f3 f3 f3 f3 <e8> d4 50 d8 ff 4c 89 64 24 10 4c 89 64 24 68 4c 89 74 24 70 48 89
RSP: 0000:ffffc90002a9ffc0 EFLAGS: 00010806
RAX: f3000000f1f1f1f1 RBX: ffffc90002aa7f58 RCX: ffff88810db93cc0
RDX: ffffc90002aa7f58 RSI: ffffc90002aa7ac0 RDI: ffff88811fe4ce10
RBP: ffffc90002aa00b0 R08: dffffc0000000000 R09: ffffed1023fc9a31
R10: 0000000000000000 R11: ffffffff81979fc0 R12: ffffc90002aa7ac0
R13: dffffc0000000000 R14: ffff88811fe4ce10 R15: 1ffff92000554000
FS:  00007fb3f88f06c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: ffffc90002a9ffb8 CR3: 0000000111b86000 CR4: 00000000003506b0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
----------------
Code disassembly (best guess):
   0:	86 48 c7             	xchg   %cl,-0x39(%rax)
   3:	44 24 50             	rex.R and $0x50,%al
   6:	c0 9f 97 81 4c 8d 7c 	rcrb   $0x7c,-0x72b37e69(%rdi)
   d:	24 40                	and    $0x40,%al
   f:	49 c1 ef 03          	shr    $0x3,%r15
  13:	48 b8 f1 f1 f1 f1 00 	movabs $0xf3000000f1f1f1f1,%rax
  1a:	00 00 f3
  1d:	4b 89 04 2f          	mov    %rax,(%r15,%r13,1)
  21:	43 c7 44 2f 08 f3 f3 	movl   $0xf3f3f3f3,0x8(%r15,%r13,1)
  28:	f3 f3
* 2a:	e8 d4 50 d8 ff       	call   0xffd85103 <-- trapping instruction
  2f:	4c 89 64 24 10       	mov    %r12,0x10(%rsp)
  34:	4c 89 64 24 68       	mov    %r12,0x68(%rsp)
  39:	4c 89 74 24 70       	mov    %r14,0x70(%rsp)
  3e:	48                   	rex.W
  3f:	89                   	.byte 0x89