./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2265471724

<...>
Warning: Permanently added '10.128.0.124' (ED25519) to the list of known hosts.
execve("./syz-executor2265471724", ["./syz-executor2265471724"], 0x7ffcec0c2eb0 /* 10 vars */) = 0
brk(NULL)                               = 0x55555591f000
brk(0x55555591fd40)                     = 0x55555591fd40
arch_prctl(ARCH_SET_FS, 0x55555591f3c0) = 0
set_tid_address(0x55555591f690)         = 5032
set_robust_list(0x55555591f6a0, 24)     = 0
rseq(0x55555591fce0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor2265471724", 4096) = 28
getrandom("\xa2\x83\xfb\xfa\x1f\xeb\xbf\x53", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x55555591fd40
brk(0x555555940d40)                     = 0x555555940d40
brk(0x555555941000)                     = 0x555555941000
mprotect(0x7f556357f000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
futex(0x7f55635856cc, FUTEX_WAKE_PRIVATE, 1000000) = 0
rt_sigaction(SIGRT_1, {sa_handler=0x7f5563524200, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f55635158b0}, NULL, 8) = 0
rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f556349c000
mprotect(0x7f556349d000, 131072, PROT_READ|PROT_WRITE) = 0
rt_sigprocmask(SIG_BLOCK, ~[], [], 8)   = 0
clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f55634bc990, parent_tid=0x7f55634bc990, exit_signal=0, stack=0x7f556349c000, stack_size=0x20300, tls=0x7f55634bc6c0} => {parent_tid=[5033]}, 88) = 5033
./strace-static-x86_64: Process 5033 attached
[pid  5033] rseq(0x7f55634bcfe0, 0x20, 0, 0x53053053 <unfinished ...>
[pid  5032] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid  5032] futex(0x7f55635856c8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5032] futex(0x7f55635856cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5033] <... rseq resumed>)         = 0
[pid  5033] set_robust_list(0x7f55634bc9a0, 24) = 0
[pid  5033] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid  5033] memfd_create("syzkaller", 0) = 3
[pid  5033] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f555b09c000
[pid  5033] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid  5033] munmap(0x7f555b09c000, 1048576) = 0
[pid  5033] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5033] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5033] close(3)                    = 0
[pid  5033] mkdir("./file0", 0777)      = 0
[   73.421784][ T5033] syz-executor226[5033]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[   73.445252][ T5033] loop0: detected capacity change from 0 to 2048
[pid  5033] mount("/dev/loop0", "./file0", "ext4", MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, ",errors=continue") = 0
[pid  5033] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5033] chdir("./file0")            = 0
[pid  5033] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5033] close(4)                    = 0
[pid  5033] futex(0x7f55635856cc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5032] <... futex resumed>)        = 0
[pid  5033] futex(0x7f55635856c8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5032] futex(0x7f55635856c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5033] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  5032] <... futex resumed>)        = 0
[pid  5033] openat(AT_FDCWD, "pids.events", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 <unfinished ...>
[pid  5032] futex(0x7f55635856cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5033] <... openat resumed>)       = 4
[pid  5033] futex(0x7f55635856cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5032] <... futex resumed>)        = 0
[pid  5032] futex(0x7f55635856c8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5032] futex(0x7f55635856cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5033] <... futex resumed>)        = 1
[   73.466384][ T5033] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[pid  5033] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 23531112 <unfinished ...>
[pid  5032] <... futex resumed>)        = -1 ETIMEDOUT (Connection timed out)
[pid  5032] futex(0x7f55635856dc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5032] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f555b17b000
[pid  5032] mprotect(0x7f555b17c000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5032] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid  5032] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f555b19b990, parent_tid=0x7f555b19b990, exit_signal=0, stack=0x7f555b17b000, stack_size=0x20300, tls=0x7f555b19b6c0}./strace-static-x86_64: Process 5038 attached
 => {parent_tid=[5038]}, 88) = 5038
[pid  5038] rseq(0x7f555b19bfe0, 0x20, 0, 0x53053053 <unfinished ...>
[pid  5032] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid  5038] <... rseq resumed>)         = 0
[pid  5032] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid  5038] set_robust_list(0x7f555b19b9a0, 24 <unfinished ...>
[pid  5032] futex(0x7f55635856d8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5038] <... set_robust_list resumed>) = 0
[pid  5032] <... futex resumed>)        = 0
[pid  5038] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid  5038] mmap(0x20000000, 11755520, PROT_WRITE, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 4, 0 <unfinished ...>
[pid  5032] futex(0x7f55635856dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5033] <... write resumed>)        = 3002368
[pid  5033] futex(0x7f55635856cc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5033] futex(0x7f55635856c8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5038] <... mmap resumed>)         = 0x20000000
[pid  5038] futex(0x7f55635856dc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5032] <... futex resumed>)        = 0
[pid  5038] <... futex resumed>)        = 1
[pid  5032] futex(0x7f55635856c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5038] futex(0x7f55635856d8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5032] <... futex resumed>)        = 1
[pid  5032] futex(0x7f55635856cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5033] <... futex resumed>)        = 0
[   73.561316][ T5033] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   73.576831][ T5033] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1466 with error 28
[   73.590080][ T5033] EXT4-fs (loop0): This should not happen!! Data will be lost
[   73.590080][ T5033] 
[   73.599864][ T5033] EXT4-fs (loop0): Total free blocks count 0
[   73.605899][ T5033] EXT4-fs (loop0): Free/Dirty block details
[pid  5033] ioctl(4, FS_IOC_FSSETXATTR, 0x20000000 <unfinished ...>
[pid  5032] <... futex resumed>)        = -1 ETIMEDOUT (Connection timed out)
[pid  5032] futex(0x7f55635856d8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5038] <... futex resumed>)        = 0
[pid  5032] futex(0x7f55635856dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5038] gettid()                    = 5038
[pid  5038] futex(0x7f55635856dc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5032] <... futex resumed>)        = 0
[pid  5038] <... futex resumed>)        = 1
[pid  5032] futex(0x7f55635856d8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5038] process_vm_writev(5038, [{iov_base=0x2034afa4, iov_len=8064}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, ...], 112, [{iov_base=0x20000080, iov_len=540323749}], 1, 0 <unfinished ...>
[pid  5032] <... futex resumed>)        = 0
[pid  5032] futex(0x7f55635856dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out)
[pid  5033] <... ioctl resumed>)        = -1 ENOSPC (No space left on device)
[pid  5033] futex(0x7f55635856cc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[   73.611892][ T5033] EXT4-fs (loop0): free_blocks=2415919104
[   73.617792][ T5033] EXT4-fs (loop0): dirty_blocks=1472
[   73.623121][ T5033] EXT4-fs (loop0): Block reservation details
[   73.629112][ T5033] EXT4-fs (loop0): i_reserved_data_blocks=92
[   73.686482][ T5038] ------------[ cut here ]------------
[   73.692001][ T5038] WARNING: CPU: 0 PID: 5038 at fs/ext4/inode.c:3533 ext4_dirty_folio+0xfc/0x130
[   73.701074][ T5038] Modules linked in:
[   73.705079][ T5038] CPU: 0 PID: 5038 Comm: syz-executor226 Not tainted 6.6.0-rc2-syzkaller-00244-g27bbf45eae9c #0
[   73.715570][ T5038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[   73.725692][ T5038] RIP: 0010:ext4_dirty_folio+0xfc/0x130
[   73.731305][ T5038] Code: 31 ff 48 c1 ed 04 83 e5 01 89 ee e8 8e 73 54 ff 40 84 ed 0f 85 70 ff ff ff e8 50 78 54 ff 0f 0b e9 64 ff ff ff e8 44 78 54 ff <0f> 0b eb 86 48 89 ef e8 48 2b aa ff e9 39 ff ff ff e8 3e 2b aa ff
[   73.750952][ T5038] RSP: 0018:ffffc90004377a30 EFLAGS: 00010293
[   73.757073][ T5038] RAX: 0000000000000000 RBX: ffffea00004a3100 RCX: 0000000000000000
[   73.765079][ T5038] RDX: ffff888075e68000 RSI: ffffffff82334cac RDI: ffffea00004a3128
[   73.773117][ T5038] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[pid  5033] futex(0x7f55635856c8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5032] exit_group(0)               = ?
[pid  5033] <... futex resumed>)        = ?
[pid  5033] +++ exited with 0 +++
[   73.781095][ T5038] R10: 0000000000000001 R11: 0000000000000000 R12: ffff88807604b6d8
[   73.789128][ T5038] R13: dffffc0000000000 R14: ffffea00004a3100 R15: ffffea00004a3100
[   73.797204][ T5038] FS:  00007f555b19b6c0(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[   73.806224][ T5038] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   73.812870][ T5038] CR2: 000000002034afa4 CR3: 000000007af8f000 CR4: 0000000000350ef0
[   73.820878][ T5038] Call Trace:
[   73.824272][ T5038]  <TASK>
[   73.827225][ T5038]  ? show_regs+0x8f/0xa0
[   73.831881][ T5038]  ? __warn+0xe6/0x380
[   73.835995][ T5038]  ? ext4_dirty_folio+0xfc/0x130
[   73.840939][ T5038]  ? report_bug+0x3bc/0x580
[   73.845562][ T5038]  ? handle_bug+0x3c/0x70
[   73.849930][ T5038]  ? exc_invalid_op+0x17/0x40
[   73.854757][ T5038]  ? asm_exc_invalid_op+0x1a/0x20
[   73.866623][ T5038]  ? ext4_dirty_folio+0xfc/0x130
[   73.871904][ T5038]  ? ext4_dirty_folio+0xfc/0x130
[   73.876863][ T5038]  folio_mark_dirty+0xc3/0x130
[   73.881696][ T5038]  unpin_user_pages_dirty_lock+0x432/0x4e0
[   73.887550][ T5038]  process_vm_rw_core.constprop.0+0x875/0xa10
[   73.893690][ T5038]  ? vmalloc_dump_obj+0x290/0x290
[   73.898744][ T5038]  ? iovec_from_user.part.0+0x7e/0x130
[   73.904287][ T5038]  process_vm_rw+0x2ff/0x360
[   73.908907][ T5038]  ? process_vm_rw_core.constprop.0+0xa10/0xa10
[   73.915208][ T5038]  ? lock_sync+0x190/0x190
[   73.919689][ T5038]  ? spin_bug+0x1d0/0x1d0
[   73.924404][ T5038]  ? cgroup_update_frozen+0x144/0x6b0
[   73.929848][ T5038]  ? _raw_spin_unlock_irq+0x23/0x50
[   73.935132][ T5038]  ? lockdep_hardirqs_on+0x7d/0x100
[   73.940360][ T5038]  __x64_sys_process_vm_writev+0xe2/0x1b0
[   73.946162][ T5038]  ? syscall_trace_enter.constprop.0+0xaf/0x1e0
[   73.952450][ T5038]  do_syscall_64+0x38/0xb0
[   73.956853][ T5038]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   73.962773][ T5038] RIP: 0033:0x7f55634fe3a9
[   73.967199][ T5038] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   73.986863][ T5038] RSP: 002b:00007f555b19b208 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[   73.995333][ T5038] RAX: ffffffffffffffda RBX: 00007f55635856d8 RCX: 00007f55634fe3a9
[   74.003359][ T5038] RDX: 0000000000000070 RSI: 0000000020c22000 RDI: 00000000000013ae
[   74.011398][ T5038] RBP: 00007f55635856d0 R08: 0000000000000001 R09: 0000000000000000
[   74.019371][ T5038] R10: 0000000020c22fa0 R11: 0000000000000246 R12: 00007f55635527cc
[   74.027376][ T5038] R13: 00007f5563552047 R14: 0030656c69662f2e R15: 6576652e73646970
[   74.035383][ T5038]  </TASK>
[   74.038408][ T5038] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   74.045664][ T5038] CPU: 0 PID: 5038 Comm: syz-executor226 Not tainted 6.6.0-rc2-syzkaller-00244-g27bbf45eae9c #0
[   74.056079][ T5038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[   74.066119][ T5038] Call Trace:
[   74.069401][ T5038]  <TASK>
[   74.072314][ T5038]  dump_stack_lvl+0xd9/0x1b0
[   74.076890][ T5038]  panic+0x6a6/0x750
[   74.080782][ T5038]  ? panic_smp_self_stop+0xa0/0xa0
[   74.085905][ T5038]  ? ext4_dirty_folio+0xfc/0x130
[   74.090908][ T5038]  check_panic_on_warn+0xab/0xb0
[   74.095844][ T5038]  __warn+0xf2/0x380
[   74.099763][ T5038]  ? ext4_dirty_folio+0xfc/0x130
[   74.104714][ T5038]  report_bug+0x3bc/0x580
[   74.109046][ T5038]  handle_bug+0x3c/0x70
[   74.113240][ T5038]  exc_invalid_op+0x17/0x40
[   74.117764][ T5038]  asm_exc_invalid_op+0x1a/0x20
[   74.122615][ T5038] RIP: 0010:ext4_dirty_folio+0xfc/0x130
[   74.128281][ T5038] Code: 31 ff 48 c1 ed 04 83 e5 01 89 ee e8 8e 73 54 ff 40 84 ed 0f 85 70 ff ff ff e8 50 78 54 ff 0f 0b e9 64 ff ff ff e8 44 78 54 ff <0f> 0b eb 86 48 89 ef e8 48 2b aa ff e9 39 ff ff ff e8 3e 2b aa ff
[   74.147890][ T5038] RSP: 0018:ffffc90004377a30 EFLAGS: 00010293
[   74.153996][ T5038] RAX: 0000000000000000 RBX: ffffea00004a3100 RCX: 0000000000000000
[   74.161962][ T5038] RDX: ffff888075e68000 RSI: ffffffff82334cac RDI: ffffea00004a3128
[   74.169922][ T5038] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[   74.177906][ T5038] R10: 0000000000000001 R11: 0000000000000000 R12: ffff88807604b6d8
[   74.185953][ T5038] R13: dffffc0000000000 R14: ffffea00004a3100 R15: ffffea00004a3100
[   74.193923][ T5038]  ? ext4_dirty_folio+0xfc/0x130
[   74.198870][ T5038]  folio_mark_dirty+0xc3/0x130
[   74.203626][ T5038]  unpin_user_pages_dirty_lock+0x432/0x4e0
[   74.209441][ T5038]  process_vm_rw_core.constprop.0+0x875/0xa10
[   74.215547][ T5038]  ? vmalloc_dump_obj+0x290/0x290
[   74.220570][ T5038]  ? iovec_from_user.part.0+0x7e/0x130
[   74.226048][ T5038]  process_vm_rw+0x2ff/0x360
[   74.230635][ T5038]  ? process_vm_rw_core.constprop.0+0xa10/0xa10
[   74.236872][ T5038]  ? lock_sync+0x190/0x190
[   74.241317][ T5038]  ? spin_bug+0x1d0/0x1d0
[   74.245666][ T5038]  ? cgroup_update_frozen+0x144/0x6b0
[   74.251054][ T5038]  ? _raw_spin_unlock_irq+0x23/0x50
[   74.256263][ T5038]  ? lockdep_hardirqs_on+0x7d/0x100
[   74.261475][ T5038]  __x64_sys_process_vm_writev+0xe2/0x1b0
[   74.267204][ T5038]  ? syscall_trace_enter.constprop.0+0xaf/0x1e0
[   74.273440][ T5038]  do_syscall_64+0x38/0xb0
[   74.277895][ T5038]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   74.283790][ T5038] RIP: 0033:0x7f55634fe3a9
[   74.288295][ T5038] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   74.308070][ T5038] RSP: 002b:00007f555b19b208 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[   74.316489][ T5038] RAX: ffffffffffffffda RBX: 00007f55635856d8 RCX: 00007f55634fe3a9
[   74.324456][ T5038] RDX: 0000000000000070 RSI: 0000000020c22000 RDI: 00000000000013ae
[   74.332423][ T5038] RBP: 00007f55635856d0 R08: 0000000000000001 R09: 0000000000000000
[   74.340496][ T5038] R10: 0000000020c22fa0 R11: 0000000000000246 R12: 00007f55635527cc
[   74.348464][ T5038] R13: 00007f5563552047 R14: 0030656c69662f2e R15: 6576652e73646970
[   74.356438][ T5038]  </TASK>
[   74.360113][ T5038] Kernel Offset: disabled
[   74.364514][ T5038] Rebooting in 86400 seconds..