BUG: TASK stack guard page was hit at ffffc9000efc7fb8 (stack is ffffc9000efc8000..ffffc9000efd0000)
Oops: stack guard page: 0000 [#1] PREEMPT SMP KASAN PTI
CPU: 0 UID: 0 PID: 830 Comm: syz.3.170 Not tainted syzkaller #0 955f6180463debd82b9f2b9d8786ee899826498b
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
RIP: 0010:update_curr+0x9b/0x9e0 kernel/sched/fair.c:-1
Code: f2 f8 f3 4a 89 04 23 4c 8d 6f 50 4c 89 e8 48 c1 e8 03 48 89 44 24 78 42 80 3c 20 00 74 08 4c 89 ef e8 39 da 7f 00 4d 8b 77 50 <4c> 89 7c 24 20 49 81 c7 38 01 00 00 4c 89 f8 48 c1 e8 03 48 89 44
RSP: 0018:ffffc9000efc7fc0 EFLAGS: 00010046
RAX: 1ffff1103edc9f82 RBX: 1ffff92001df9008 RCX: dffffc0000000000
RDX: 1ffff92001df9030 RSI: ffff888133eca600 RDI: ffff8881f6e4fbc0
RBP: ffffc9000efc80e0 R08: 0000000000000003 R09: 0000000000000004
R10: dffffc0000000000 R11: fffff52001df9022 R12: dffffc0000000000
R13: ffff8881f6e4fc10 R14: ffff88810cf79800 R15: ffff8881f6e4fbc0
FS:  00007fda9212f6c0(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: ffffc9000efc7fb8 CR3: 000000010cf28000 CR4: 00000000003526b0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 000000000000000e DR6: 00000000ffff0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 </TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:update_curr+0x9b/0x9e0 kernel/sched/fair.c:-1
Code: f2 f8 f3 4a 89 04 23 4c 8d 6f 50 4c 89 e8 48 c1 e8 03 48 89 44 24 78 42 80 3c 20 00 74 08 4c 89 ef e8 39 da 7f 00 4d 8b 77 50 <4c> 89 7c 24 20 49 81 c7 38 01 00 00 4c 89 f8 48 c1 e8 03 48 89 44
RSP: 0018:ffffc9000efc7fc0 EFLAGS: 00010046
RAX: 1ffff1103edc9f82 RBX: 1ffff92001df9008 RCX: dffffc0000000000
RDX: 1ffff92001df9030 RSI: ffff888133eca600 RDI: ffff8881f6e4fbc0
RBP: ffffc9000efc80e0 R08: 0000000000000003 R09: 0000000000000004
R10: dffffc0000000000 R11: fffff52001df9022 R12: dffffc0000000000
R13: ffff8881f6e4fc10 R14: ffff88810cf79800 R15: ffff8881f6e4fbc0
FS:  00007fda9212f6c0(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: ffffc9000efc7fb8 CR3: 000000010cf28000 CR4: 00000000003526b0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 000000000000000e DR6: 00000000ffff0ff0 DR7: 0000000000000400
----------------
Code disassembly (best guess):
   0:	f2 f8                	repnz clc
   2:	f3 4a 89 04 23       	xrelease mov %rax,(%rbx,%r12,1)
   7:	4c 8d 6f 50          	lea    0x50(%rdi),%r13
   b:	4c 89 e8             	mov    %r13,%rax
   e:	48 c1 e8 03          	shr    $0x3,%rax
  12:	48 89 44 24 78       	mov    %rax,0x78(%rsp)
  17:	42 80 3c 20 00       	cmpb   $0x0,(%rax,%r12,1)
  1c:	74 08                	je     0x26
  1e:	4c 89 ef             	mov    %r13,%rdi
  21:	e8 39 da 7f 00       	call   0x7fda5f
  26:	4d 8b 77 50          	mov    0x50(%r15),%r14
* 2a:	4c 89 7c 24 20       	mov    %r15,0x20(%rsp) <-- trapping instruction
  2f:	49 81 c7 38 01 00 00 	add    $0x138,%r15
  36:	4c 89 f8             	mov    %r15,%rax
  39:	48 c1 e8 03          	shr    $0x3,%rax
  3d:	48                   	rex.W
  3e:	89                   	.byte 0x89
  3f:	44                   	rex.R