Unable to handle kernel paging request at virtual address ffff8000183a8125
Mem abort info:
  Exception class = DABT (current EL), IL = 32 bits
  SET = 0, FnV = 0
  EA = 0, S1PTW = 0
Data abort info:
  ISV = 0, ISS = 0x00000033
  CM = 0, WnR = 0
swapper pgtable: 4k pages, 48-bit VAs, pgd = ffff20000eeb2000
[ffff8000183a8125] *pgd=000000007eff7003, *pud=000000007eff6003, *pmd=00f8000058200711
Internal error: Oops: 96000021 [#1] PREEMPT SMP
Modules linked in:
CPU: 2 PID: 3827 Comm: syz-executor0 Not tainted 4.14.0-rc2-00001-gd7ad33d #115
Hardware name: linux,dummy-virt (DT)
task: ffff800016c24f80 task.stack: ffff800019e54000
PC is at __ll_sc_atomic_add+0x4/0x18 arch/arm64/include/asm/atomic_ll_sc.h:113
LR is at atomic_add arch/arm64/include/asm/atomic_lse.h:45 [inline]
LR is at __skb_clone+0x4a8/0x6c0 net/core/skbuff.c:873
pc : [<ffff20000a30ce44>] lr : [<ffff200009dffb58>] pstate: 10000145
sp : ffff80003efbd6e0
x29: ffff80003efbd6e0 x28: 0000600034170000 
x27: ffff20000ae55360 x26: ffff800016e99d88 
x25: ffff8000183a8001 x24: ffff800016e99d90 
x23: ffff20000ae60000 x22: ffff800016e459dc 
x21: 1ffff00007df7ae8 x20: ffff800016e99cc0 
x19: ffff800016e45900 x18: ffff20000da58140 
x17: 0000000000000001 x16: 0000000000000000 
x15: ffff20000e1485a0 x14: ffff2000082f912c 
x13: ffff2000082f8dcc x12: ffff2000082f8980 
x11: 1ffff00002dc8b37 x10: ffff100002dc8b37 
x9 : dfff200000000000 x8 : 0082009000b00008 
x7 : 0000000000000000 x6 : ffff800016e459c0 
x5 : ffff100002dc8b38 x4 : 0000000000000000 
x3 : 1ffff00002dc8b3b x2 : ffff8000183a8101 
x1 : ffff8000183a8125 x0 : 0000000000000001 
Process syz-executor0 (pid: 3827, stack limit = 0xffff800019e54000)
Call trace:
Exception stack(0xffff80003efbd5a0 to 0xffff80003efbd6e0)
d5a0: 0000000000000001 ffff8000183a8125 ffff8000183a8101 1ffff00002dc8b3b
d5c0: 0000000000000000 ffff100002dc8b38 ffff800016e459c0 0000000000000000
d5e0: 0082009000b00008 dfff200000000000 ffff100002dc8b37 1ffff00002dc8b37
d600: ffff2000082f8980 ffff2000082f8dcc ffff2000082f912c ffff20000e1485a0
d620: 0000000000000000 0000000000000001 ffff20000da58140 ffff800016e45900
d640: ffff800016e99cc0 1ffff00007df7ae8 ffff800016e459dc ffff20000ae60000
d660: ffff800016e99d90 ffff8000183a8001 ffff800016e99d88 ffff20000ae55360
d680: 0000600034170000 ffff80003efbd6e0 ffff200009dffb58 ffff80003efbd6e0
d6a0: ffff20000a30ce44 0000000010000145 ffff800016e45900 ffff800016e99cc0
d6c0: 0001000000000000 ffff800016e99d4e ffff80003efbd6e0 ffff20000a30ce44
[<ffff20000a30ce44>] __ll_sc_atomic_add+0x4/0x18 arch/arm64/include/asm/atomic_ll_sc.h:113
[<ffff200009e1009c>] skb_clone+0x1c4/0x3b0 net/core/skbuff.c:1286
[<ffff200009f2ff80>] ip_expire+0x4e8/0x7c0 net/ipv4/ip_fragment.c:239
[<ffff2000082f8980>] call_timer_fn+0x1b8/0x430 kernel/time/timer.c:1281
[<ffff2000082f8dcc>] expire_timers+0x1d4/0x320 kernel/time/timer.c:1320
[<ffff2000082f912c>] __run_timers kernel/time/timer.c:1620 [inline]
[<ffff2000082f912c>] run_timer_softirq+0x214/0x5f0 kernel/time/timer.c:1646
[<ffff2000080826c0>] __do_softirq+0x350/0xc0c kernel/softirq.c:284
[<ffff200008170af4>] do_softirq_own_stack include/linux/interrupt.h:498 [inline]
[<ffff200008170af4>] invoke_softirq kernel/softirq.c:371 [inline]
[<ffff200008170af4>] irq_exit+0x1dc/0x2f8 kernel/softirq.c:405
[<ffff2000082a95bc>] __handle_domain_irq+0xdc/0x230 kernel/irq/irqdesc.c:647
[<ffff2000080820ac>] handle_domain_irq include/linux/irqdesc.h:175 [inline]
[<ffff2000080820ac>] gic_handle_irq+0x6c/0xe0 drivers/irqchip/irq-gic.c:367
Exception stack(0xffff800019e57aa0 to 0xffff800019e57be0)
7aa0: ffff800016c2584c 0000000000000007 0000000000000000 1ffff00002d84b09
7ac0: 1fffe400017ad00c dfff200000000000 0000000000000000 0000000000000002
7ae0: ffff800016c25850 1ffff00002d84b09 ffff800016c25848 ffff800016c258c8
7b00: 1ffff00002d84b18 1ffff00002d84b1a 1ffff00002d84b19 ffff20000e1485a0
7b20: 0000000000000002 00000000002fa079 ffff20000da58140 0000000000000140
7b40: ffff8000177f8808 ffff20000ae60b88 ffff80001ffec818 1ffff00002eff01b
7b60: ffff8000177f8808 ffff8000177f8100 ffff8000177f8000 ffff8000180a7480
7b80: ffff800019182600 ffff800019e57be0 ffff20000a361294 ffff800019e57be0
7ba0: ffff20000a361298 0000000010000145 0000000000000140 ffff8000177f8808
7bc0: 0001000000000000 ffff80001ffec800 ffff800019e57be0 ffff20000a361298
[<ffff200008084034>] el1_irq+0xb4/0x12c arch/arm64/kernel/entry.S:569
[<ffff20000a361298>] arch_local_irq_restore arch/arm64/include/asm/irqflags.h:81 [inline]
[<ffff20000a361298>] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline]
[<ffff20000a361298>] _raw_spin_unlock_irqrestore+0x90/0x118 kernel/locking/spinlock.c:191
[<ffff2000081efcf0>] task_rq_unlock kernel/sched/sched.h:1707 [inline]
[<ffff2000081efcf0>] wake_up_new_task+0x4e0/0x9a0 kernel/sched/core.c:2475
[<ffff20000815ba28>] _do_fork+0x1b8/0xc10 kernel/fork.c:2052
[<ffff20000815c5e0>] SYSC_clone kernel/fork.c:2137 [inline]
[<ffff20000815c5e0>] SyS_clone+0x48/0x60 kernel/fork.c:2115
Exception stack(0xffff800019e57ec0 to 0xffff800019e58000)
7ec0: 00000000003d0f00 0000ffff9282c870 0000ffff9282d030 0000ffff9282d650
7ee0: 0000ffff9282d030 0000ffff9282d650 0000ffff9282d030 0000000000000000
7f00: 00000000000000dc 0000000000000000 0000000000405850 00000000003d0f00
7f20: 0000ffff9282cf60 00000000004ae890 0000000000000027 0000000000000001
7f40: 0000000000000000 0000000000826000 0000000000000000 0000ffff9282cf60
7f60: 0000fffffc066780 0000000000000000 0000fffffc06671f 0000000000820000
7f80: 000000000040233c 0000000000000001 0000fffffc066920 0000000000000000
7fa0: 0000ffff9282cf60 0000fffffc066620 0000000000404604 0000fffffc066620
7fc0: 000000000042e150 0000000040000000 00000000003d0f00 00000000000000dc
7fe0: 0000000000000000 0000000000000000 0000000000000000 0000000000000000
[<ffff2000080846f0>] el0_svc_naked+0x24/0x28
Code: 978b7cfd 17ffff91 00000000 f9800031 (885f7c31) 
---[ end trace 37f3001c6b30dbb6 ]---