Oops: general protection fault, probably for non-canonical address 0xdffffc001fffe000: 0000 [#1] SMP KASAN PTI
KASAN: probably user-memory-access in range [0x00000000ffff0000-0x00000000ffff0007]
CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
RIP: 0010:percpu_ref_get_many+0x8d/0x140
Code: 01 48 c7 c7 00 4b 98 8b be 4b 03 00 00 48 c7 c2 40 4b 98 8b e8 d4 ba 71 ff 49 bc 00 00 00 00 00 fc ff df 4c 89 f8 48 c1 e8 03 <42> 80 3c 20 00 74 08 4c 89 ff e8 14 4c f7 ff 49 8b 07 a8 03 75 62
RSP: 0018:ffffc900001e09f8 EFLAGS: 00010206
RAX: 000000001fffe000 RBX: ffffffff822bca69 RCX: 004c8fa78514aa00
RDX: 0000000000000000 RSI: ffffffff8be33660 RDI: ffffffff8be33620
RBP: 0000000000000048 R08: 0000000000000000 R09: 0000000000000000
R10: dffffc0000000000 R11: ffffed102324e424 R12: dffffc0000000000
R13: ffff88813663b540 R14: 0000000000000001 R15: 00000000ffff0000
FS:  0000000000000000(0000) GS:ffff8881a3c1a000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fb8a29b7dac CR3: 000000003cb1c000 CR4: 00000000000006f0
Call Trace:
 <IRQ>
 refill_obj_stock+0x254/0x850
 __memcg_slab_free_hook+0x127/0x3d0
 kfree+0x255/0x440
 security_cred_free+0xbf/0x1d0
 put_cred_rcu+0x6a/0x2e0
 rcu_core+0xcab/0x1770
 handle_softirqs+0x286/0x870
 __irq_exit_rcu+0xca/0x1f0
 irq_exit_rcu+0x9/0x30
 sysvec_apic_timer_interrupt+0xa6/0xc0
 </IRQ>
 <TASK>
 asm_sysvec_apic_timer_interrupt+0x1a/0x20
RIP: 0010:pv_native_safe_halt+0x13/0x20
Code: 53 e7 02 00 cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa eb 07 0f 00 2d f3 36 0e 00 f3 0f 1e fa fb f4 <c3> cc cc cc cc cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90
RSP: 0018:ffffc90000177de0 EFLAGS: 00000282
RAX: 004c8fa78514aa00 RBX: ffffffff819683b8 RCX: 004c8fa78514aa00
RDX: 0000000000000001 RSI: ffffffff8be33660 RDI: ffffffff819683b8
RBP: ffffc90000177f20 R08: ffff888136632f9b R09: 1ffff11026cc65f3
R10: dffffc0000000000 R11: ffffed1026cc65f4 R12: ffffffff8fa38530
R13: 0000000000000001 R14: 0000000000000001 R15: 1ffff110200d5000
 default_idle+0x13/0x20
 default_idle_call+0x74/0xb0
 do_idle+0x1e8/0x510
 cpu_startup_entry+0x44/0x60
 start_secondary+0x101/0x110
 common_startup_64+0x13e/0x147
 </TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:percpu_ref_get_many+0x8d/0x140
Code: 01 48 c7 c7 00 4b 98 8b be 4b 03 00 00 48 c7 c2 40 4b 98 8b e8 d4 ba 71 ff 49 bc 00 00 00 00 00 fc ff df 4c 89 f8 48 c1 e8 03 <42> 80 3c 20 00 74 08 4c 89 ff e8 14 4c f7 ff 49 8b 07 a8 03 75 62
RSP: 0018:ffffc900001e09f8 EFLAGS: 00010206
RAX: 000000001fffe000 RBX: ffffffff822bca69 RCX: 004c8fa78514aa00
RDX: 0000000000000000 RSI: ffffffff8be33660 RDI: ffffffff8be33620
RBP: 0000000000000048 R08: 0000000000000000 R09: 0000000000000000
R10: dffffc0000000000 R11: ffffed102324e424 R12: dffffc0000000000
R13: ffff88813663b540 R14: 0000000000000001 R15: 00000000ffff0000
FS:  0000000000000000(0000) GS:ffff8881a3c1a000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fb8a29b7dac CR3: 000000003cb1c000 CR4: 00000000000006f0
