------------[ cut here ]------------
kernel BUG at arch/x86/mm/physaddr.c:28!
Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI
CPU: 0 UID: 0 PID: 15 Comm: ksoftirqd/0 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
RIP: 0010:__phys_addr+0xfa/0x180 arch/x86/mm/physaddr.c:28
Code: 48 d3 e8 48 89 c3 48 89 c6 e8 c2 3b 4f 00 48 85 db 75 11 e8 48 40 4f 00 48 89 e8 5b 5d 41 5c e9 d7 98 a3 ff e8 37 40 4f 00 90 <0f> 0b e8 2f 40 4f 00 48 c7 c0 10 d0 3a 8e 48 ba 00 00 00 00 00 fc
RSP: 0018:ffffc90000147bb0 EFLAGS: 00010246
RAX: 0000000000000000 RBX: 000000017fff0000 RCX: ffffffff816ca7b3
RDX: ffff88801dee3c00 RSI: ffffffff816ca839 RDI: 0000000000000006
RBP: 00007780ffff0000 R08: 0000000000000006 R09: 000000017fff0000
R10: 00007780ffff0000 R11: 0000000000000001 R12: 0000000000000000
R13: ffffffff81a2e287 R14: ffffc90000147cd0 R15: 0000000000000001
FS:  0000000000000000(0000) GS:ffff8881246ff000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f3abd4915bd CR3: 000000007cee0000 CR4: 0000000000350ef0
Call Trace:
 <TASK>
 virt_to_folio include/linux/mm.h:1178 [inline]
 kfree+0x66/0x4d0 mm/slub.c:4834
 in_dev_free_rcu+0x44/0x60 net/ipv4/devinet.c:245
 rcu_do_batch kernel/rcu/tree.c:2576 [inline]
 rcu_core+0x79c/0x14e0 kernel/rcu/tree.c:2832
 handle_softirqs+0x219/0x8e0 kernel/softirq.c:579
 run_ksoftirqd kernel/softirq.c:968 [inline]
 run_ksoftirqd+0x3a/0x60 kernel/softirq.c:960
 smpboot_thread_fn+0x3f7/0xae0 kernel/smpboot.c:164
 kthread+0x3c5/0x780 kernel/kthread.c:464
 ret_from_fork+0x5d7/0x6f0 arch/x86/kernel/process.c:148
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
 </TASK>
Modules linked in:
vkms_vblank_simulate: vblank timer overrun
---[ end trace 0000000000000000 ]---
RIP: 0010:__phys_addr+0xfa/0x180 arch/x86/mm/physaddr.c:28
Code: 48 d3 e8 48 89 c3 48 89 c6 e8 c2 3b 4f 00 48 85 db 75 11 e8 48 40 4f 00 48 89 e8 5b 5d 41 5c e9 d7 98 a3 ff e8 37 40 4f 00 90 <0f> 0b e8 2f 40 4f 00 48 c7 c0 10 d0 3a 8e 48 ba 00 00 00 00 00 fc
RSP: 0018:ffffc90000147bb0 EFLAGS: 00010246
RAX: 0000000000000000 RBX: 000000017fff0000 RCX: ffffffff816ca7b3
RDX: ffff88801dee3c00 RSI: ffffffff816ca839 RDI: 0000000000000006
RBP: 00007780ffff0000 R08: 0000000000000006 R09: 000000017fff0000
R10: 00007780ffff0000 R11: 0000000000000001 R12: 0000000000000000
R13: ffffffff81a2e287 R14: ffffc90000147cd0 R15: 0000000000000001
FS:  0000000000000000(0000) GS:ffff8881246ff000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f3abd4915bd CR3: 000000007cee0000 CR4: 0000000000350ef0