BUG: TASK stack guard page was hit at ffffc90001d17fd8 (stack is ffffc90001d18000..ffffc90001d20000)
Oops: stack guard page: 0000 [#1] PREEMPT SMP KASAN PTI
CPU: 0 UID: 0 PID: 1142 Comm: syz.1.228 Not tainted syzkaller #0 471281939cd7bfdfff4c6b6074d5d68627c837ba
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
RIP: 0010:update_stack_state+0x115/0x4b0 arch/x86/kernel/unwind_frame.c:-1
Code: 4b 10 4c 89 7d b0 4c 01 f8 48 89 85 78 ff ff ff 48 8d 53 18 48 8d 43 28 48 8d 73 20 48 89 b5 60 ff ff ff 4c 89 f6 48 c1 ee 03 <48> 89 b5 40 ff ff ff 48 89 8d 70 ff ff ff 48 c1 e9 03 48 89 8d 48
RSP: 0018:ffffc90001d17fe0 EFLAGS: 00010a02
RAX: ffffc90001d18150 RBX: ffffc90001d18128 RCX: ffffc90001d18138
RDX: ffffc90001d18140 RSI: 1ffff920003a3026 RDI: ffffc90001d18180
RBP: ffffc90001d180a0 R08: ffffc90001d18101 R09: 0000000000000000
R10: ffffc90001d18128 R11: fffff520003a3031 R12: 0000000000000000
R13: dffffc0000000000 R14: ffffc90001d18130 R15: ffffc90001d18118
FS:  00007fa49406e6c0(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: ffffc90001d17fd8 CR3: 000000011bc1a000 CR4: 00000000003526b0
Call Trace:
 <TASK>
 </TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:update_stack_state+0x115/0x4b0 arch/x86/kernel/unwind_frame.c:-1
Code: 4b 10 4c 89 7d b0 4c 01 f8 48 89 85 78 ff ff ff 48 8d 53 18 48 8d 43 28 48 8d 73 20 48 89 b5 60 ff ff ff 4c 89 f6 48 c1 ee 03 <48> 89 b5 40 ff ff ff 48 89 8d 70 ff ff ff 48 c1 e9 03 48 89 8d 48
RSP: 0018:ffffc90001d17fe0 EFLAGS: 00010a02
RAX: ffffc90001d18150 RBX: ffffc90001d18128 RCX: ffffc90001d18138
RDX: ffffc90001d18140 RSI: 1ffff920003a3026 RDI: ffffc90001d18180
RBP: ffffc90001d180a0 R08: ffffc90001d18101 R09: 0000000000000000
R10: ffffc90001d18128 R11: fffff520003a3031 R12: 0000000000000000
R13: dffffc0000000000 R14: ffffc90001d18130 R15: ffffc90001d18118
FS:  00007fa49406e6c0(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: ffffc90001d17fd8 CR3: 000000011bc1a000 CR4: 00000000003526b0
----------------
Code disassembly (best guess):
   0:	4b 10 4c 89 7d       	rex.WXB adc %cl,0x7d(%r9,%r9,4)
   5:	b0 4c                	mov    $0x4c,%al
   7:	01 f8                	add    %edi,%eax
   9:	48 89 85 78 ff ff ff 	mov    %rax,-0x88(%rbp)
  10:	48 8d 53 18          	lea    0x18(%rbx),%rdx
  14:	48 8d 43 28          	lea    0x28(%rbx),%rax
  18:	48 8d 73 20          	lea    0x20(%rbx),%rsi
  1c:	48 89 b5 60 ff ff ff 	mov    %rsi,-0xa0(%rbp)
  23:	4c 89 f6             	mov    %r14,%rsi
  26:	48 c1 ee 03          	shr    $0x3,%rsi
* 2a:	48 89 b5 40 ff ff ff 	mov    %rsi,-0xc0(%rbp) <-- trapping instruction
  31:	48 89 8d 70 ff ff ff 	mov    %rcx,-0x90(%rbp)
  38:	48 c1 e9 03          	shr    $0x3,%rcx
  3c:	48                   	rex.W
  3d:	89                   	.byte 0x89
  3e:	8d                   	.byte 0x8d
  3f:	48                   	rex.W