BUG: TASK stack guard page was hit at ffffc90001a37f78 (stack is ffffc90001a38000..ffffc90001a40000)
Oops: stack guard page: 0000 [#1] PREEMPT SMP KASAN PTI
CPU: 1 UID: 0 PID: 7519 Comm: syz.1.2500 Not tainted syzkaller #0 43b6d7f3e817ec535415847ac2d00a46ab6e4796
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
RIP: 0010:get_page_from_freelist+0x8e/0x4a20 mm/page_alloc.c:3800
Code: 81 48 8d 8c 24 e0 01 00 00 48 c1 e9 03 48 b8 f1 f1 f1 f1 f8 f2 f2 f2 4a 89 04 21 48 b8 f8 f2 f8 f2 f8 f2 f8 f2 4a 89 44 21 08 <48> 89 4c 24 38 42 c7 44 21 10 f8 f3 f3 f3 49 8d 7f 10 4d 8d 77 1c
RSP: 0018:ffffc90001a37f80 EFLAGS: 00010a02
RAX: f2f8f2f8f2f8f2f8 RBX: 0000000000000002 RCX: 1ffff9200034702c
RDX: 0000000000000101 RSI: 0000000000000002 RDI: 0000000000192000
RBP: ffffc90001a38250 R08: ffffffff876aace3 R09: 1ffffffff0ed559c
R10: dffffc0000000000 R11: fffffbfff0ed559d R12: dffffc0000000000
R13: dffffc0000000000 R14: 1ffff92000347050 R15: ffffc90001a382f0
FS:  00007fe7f87176c0(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: ffffc90001a37f78 CR3: 000000011bd9c000 CR4: 00000000003526b0
Call Trace:
 <TASK>
 </TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:get_page_from_freelist+0x8e/0x4a20 mm/page_alloc.c:3800
Code: 81 48 8d 8c 24 e0 01 00 00 48 c1 e9 03 48 b8 f1 f1 f1 f1 f8 f2 f2 f2 4a 89 04 21 48 b8 f8 f2 f8 f2 f8 f2 f8 f2 4a 89 44 21 08 <48> 89 4c 24 38 42 c7 44 21 10 f8 f3 f3 f3 49 8d 7f 10 4d 8d 77 1c
RSP: 0018:ffffc90001a37f80 EFLAGS: 00010a02
RAX: f2f8f2f8f2f8f2f8 RBX: 0000000000000002 RCX: 1ffff9200034702c
RDX: 0000000000000101 RSI: 0000000000000002 RDI: 0000000000192000
RBP: ffffc90001a38250 R08: ffffffff876aace3 R09: 1ffffffff0ed559c
R10: dffffc0000000000 R11: fffffbfff0ed559d R12: dffffc0000000000
R13: dffffc0000000000 R14: 1ffff92000347050 R15: ffffc90001a382f0
FS:  00007fe7f87176c0(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: ffffc90001a37f78 CR3: 000000011bd9c000 CR4: 00000000003526b0
----------------
Code disassembly (best guess):
   0:	81 48 8d 8c 24 e0 01 	orl    $0x1e0248c,-0x73(%rax)
   7:	00 00                	add    %al,(%rax)
   9:	48 c1 e9 03          	shr    $0x3,%rcx
   d:	48 b8 f1 f1 f1 f1 f8 	movabs $0xf2f2f2f8f1f1f1f1,%rax
  14:	f2 f2 f2
  17:	4a 89 04 21          	mov    %rax,(%rcx,%r12,1)
  1b:	48 b8 f8 f2 f8 f2 f8 	movabs $0xf2f8f2f8f2f8f2f8,%rax
  22:	f2 f8 f2
  25:	4a 89 44 21 08       	mov    %rax,0x8(%rcx,%r12,1)
* 2a:	48 89 4c 24 38       	mov    %rcx,0x38(%rsp) <-- trapping instruction
  2f:	42 c7 44 21 10 f8 f3 	movl   $0xf3f3f3f8,0x10(%rcx,%r12,1)
  36:	f3 f3
  38:	49 8d 7f 10          	lea    0x10(%r15),%rdi
  3c:	4d 8d 77 1c          	lea    0x1c(%r15),%r14