DUID 00:04:17:4d:40:87:6e:bf:2d:0e:65:92:c1:2a:fb:91:5f:79
forked to background, child pid 3174
[   22.996440][ T3175] 8021q: adding VLAN 0 to HW filter on device bond0
[   23.005799][ T3175] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.1.74' (ED25519) to the list of known hosts.
executing program
syzkaller login: [   38.159505][ T3500] page:ffffea0001487000 refcount:4 mapcount:1 mapping:ffff88807e229c30 index:0x0 pfn:0x521c0
[   38.169757][ T3500] memcg:ffff888011e84000
[   38.173993][ T3500] aops:shmem_aops ino:3
[   38.178162][ T3500] flags: 0xfff00000080017(locked|referenced|uptodate|lru|swapbacked|node=0|zone=1|lastcpupid=0x7ff)
[   38.188913][ T3500] raw: 00fff00000080017 ffffea0001fdaec8 ffffea0001489008 ffff88807e229c30
[   38.197480][ T3500] raw: 0000000000000000 0000000000000000 0000000400000000 ffff888011e84000
[   38.206042][ T3500] page dumped because: VM_BUG_ON_PAGE(page_mapped(page))
[   38.213045][ T3500] page_owner tracks the page as allocated
[   38.218736][ T3500] page last allocated via order 0, migratetype Movable, gfp_mask 0x1100cca(GFP_HIGHUSER_MOVABLE), pid 3500, ts 38158971880, free_ts 38121004934
[   38.233290][ T3500]  get_page_from_freelist+0x322a/0x33c0
[   38.238814][ T3500]  __alloc_pages+0x272/0x700
[   38.243385][ T3500]  alloc_pages_vma+0x39a/0x800
[   38.248122][ T3500]  shmem_alloc_and_acct_page+0x4d1/0xd10
[   38.253725][ T3500]  shmem_getpage_gfp+0x17b1/0x3190
[   38.258815][ T3500]  shmem_read_mapping_page_gfp+0xfd/0x180
[   38.264512][ T3500]  udmabuf_create+0xa62/0x15e0
[   38.269261][ T3500]  udmabuf_ioctl+0x300/0x4e0
[   38.273838][ T3500]  __se_sys_ioctl+0xf1/0x160
[   38.278407][ T3500]  do_syscall_64+0x3b/0xb0
[   38.282797][ T3500]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   38.288669][ T3500] page last free stack trace:
[   38.293505][ T3500]  free_unref_page_prepare+0xc34/0xcf0
[   38.298939][ T3500]  free_unref_page_list+0x1f7/0x8e0
[   38.304324][ T3500]  release_pages+0x1bb9/0x1f40
[   38.309074][ T3500]  tlb_finish_mmu+0x177/0x320
[   38.313746][ T3500]  exit_mmap+0x3cd/0x670
[   38.317965][ T3500]  __mmput+0x112/0x3b0
[   38.322009][ T3500]  exec_mmap+0x543/0x630
[   38.326315][ T3500]  begin_new_exec+0x75d/0x1030
[   38.331164][ T3500]  load_elf_binary+0x945/0x2750
[   38.336006][ T3500]  bprm_execve+0x8fd/0x17c0
[   38.340491][ T3500]  do_execveat_common+0x583/0x720
[   38.345489][ T3500]  __x64_sys_execve+0x8e/0xa0
[   38.350227][ T3500]  do_syscall_64+0x3b/0xb0
[   38.354620][ T3500]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   38.360549][ T3500] ------------[ cut here ]------------
[   38.365973][ T3500] kernel BUG at mm/filemap.c:166!
[   38.370991][ T3500] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[   38.377031][ T3500] CPU: 0 PID: 3500 Comm: syz-executor181 Not tainted 5.15.161-syzkaller #0
[   38.385757][ T3500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   38.395808][ T3500] RIP: 0010:unaccount_page_cache_page+0x79d/0x8b0
[   38.402205][ T3500] Code: e8 28 7f d8 ff 4c 89 f7 48 c7 c6 20 14 93 8a e8 39 c8 0e 00 0f 0b e8 12 7f d8 ff 4c 89 f7 48 c7 c6 60 14 93 8a e8 23 c8 0e 00 <0f> 0b 48 85 ed 75 62 e8 f7 7e d8 ff 4c 89 eb eb 60 e8 ed 7e d8 ff
[   38.421955][ T3500] RSP: 0018:ffffc900011df6d0 EFLAGS: 00010046
[   38.427994][ T3500] RAX: 3c846f8db987a900 RBX: 0000000000000000 RCX: ffff888071eb9dc0
[   38.435934][ T3500] RDX: 0000000000000000 RSI: 000000000000ffff RDI: 000000000000ffff
[   38.443905][ T3500] RBP: 0000000000000000 R08: ffffffff81d0ed44 R09: ffffed1017344f24
[   38.451878][ T3500] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffffd4000290e01
[   38.459833][ T3500] R13: ffffea0001487008 R14: ffffea0001487000 R15: dffffc0000000000
[   38.467791][ T3500] FS:  0000555556953380(0000) GS:ffff8880b9a00000(0000) knlGS:0000000000000000
[   38.476699][ T3500] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   38.483258][ T3500] CR2: 00007f40204140d0 CR3: 0000000070123000 CR4: 00000000003506f0
[   38.491209][ T3500] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   38.499170][ T3500] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   38.507228][ T3500] Call Trace:
[   38.510489][ T3500]  <TASK>
[   38.513395][ T3500]  ? __die_body+0x5e/0xa0
[   38.517712][ T3500]  ? die+0x83/0xb0
[   38.521405][ T3500]  ? do_trap+0x11e/0x350
[   38.525625][ T3500]  ? unaccount_page_cache_page+0x79d/0x8b0
[   38.531420][ T3500]  ? unaccount_page_cache_page+0x79d/0x8b0
[   38.537199][ T3500]  ? do_error_trap+0x13d/0x1e0
[   38.542195][ T3500]  ? unaccount_page_cache_page+0x79d/0x8b0
[   38.547976][ T3500]  ? do_int3+0x30/0x30
[   38.552109][ T3500]  ? unaccount_page_cache_page+0x79d/0x8b0
[   38.558004][ T3500]  ? handle_invalid_op+0x2c/0x40
[   38.562915][ T3500]  ? unaccount_page_cache_page+0x79d/0x8b0
[   38.568696][ T3500]  ? exc_invalid_op+0x2f/0x40
[   38.573372][ T3500]  ? asm_exc_invalid_op+0x16/0x20
[   38.578479][ T3500]  ? __dump_page_owner+0x414/0x620
[   38.583591][ T3500]  ? unaccount_page_cache_page+0x79d/0x8b0
[   38.589371][ T3500]  ? rcu_is_watching+0x11/0xa0
[   38.594140][ T3500]  __delete_from_page_cache+0xd1/0x860
[   38.599608][ T3500]  ? __rwlock_init+0x140/0x140
[   38.604348][ T3500]  ? __bpf_trace_file_check_and_advance_wb_err+0x30/0x30
[   38.611344][ T3500]  ? _raw_spin_lock_irq+0xdb/0x110
[   38.616431][ T3500]  ? _raw_spin_lock_irqsave+0x120/0x120
[   38.621955][ T3500]  ? page_mapping+0x312/0x440
[   38.626616][ T3500]  delete_from_page_cache+0x126/0x190
[   38.631989][ T3500]  truncate_inode_page+0x8d/0xb0
[   38.636900][ T3500]  shmem_undo_range+0x535/0x1b50
[   38.641833][ T3500]  ? shmem_truncate_range+0xa0/0xa0
[   38.647012][ T3500]  ? __lock_acquire+0x1ff0/0x1ff0
[   38.652059][ T3500]  ? do_raw_spin_lock+0x14a/0x370
[   38.657523][ T3500]  shmem_evict_inode+0x21b/0xa00
[   38.662792][ T3500]  ? _raw_spin_unlock+0x24/0x40
[   38.667619][ T3500]  ? inode_wait_for_writeback+0x21f/0x280
[   38.673385][ T3500]  ? shmem_free_in_core_inode+0xb0/0xb0
[   38.678904][ T3500]  ? bit_waitqueue+0x30/0x30
[   38.683500][ T3500]  ? do_raw_spin_unlock+0x137/0x8b0
[   38.688671][ T3500]  ? shmem_free_in_core_inode+0xb0/0xb0
[   38.694197][ T3500]  evict+0x2a4/0x620
[   38.698104][ T3500]  __dentry_kill+0x436/0x650
[   38.702695][ T3500]  dentry_kill+0xbb/0x290
[   38.707030][ T3500]  dput+0xd8/0x1a0
[   38.710729][ T3500]  __fput+0x5ec/0x890
[   38.714691][ T3500]  task_work_run+0x129/0x1a0
[   38.719366][ T3500]  exit_to_user_mode_loop+0x106/0x130
[   38.724714][ T3500]  exit_to_user_mode_prepare+0xb1/0x140
[   38.730231][ T3500]  syscall_exit_to_user_mode+0x5d/0x240
[   38.735751][ T3500]  do_syscall_64+0x47/0xb0
[   38.740137][ T3500]  ? clear_bhb_loop+0x15/0x70
[   38.744786][ T3500]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   38.750652][ T3500] RIP: 0033:0x7f402039c0e0
[   38.755131][ T3500] Code: ff f7 d8 64 89 02 48 c7 c0 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 80 3d a1 8f 07 00 00 74 17 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 48 c3 0f 1f 80 00 00 00 00 48 83 ec 18 89 7c
[   38.774709][ T3500] RSP: 002b:00007fff66f6ad48 EFLAGS: 00000202 ORIG_RAX: 0000000000000003
[   38.783096][ T3500] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 00007f402039c0e0
[   38.791131][ T3500] RDX: 000000000100000e RSI: 0000000020000000 RDI: 0000000000000003
[   38.799075][ T3500] RBP: 00000000000f4240 R08: 0000000000000005 R09: 0000000000000000
[   38.807016][ T3500] R10: 0000000000028011 R11: 0000000000000202 R12: 00007f40204105f0
[   38.815051][ T3500] R13: 00007fff66f6af88 R14: 00007fff66f6ad70 R15: 00007fff66f6ad60
[   38.823002][ T3500]  </TASK>
[   38.826083][ T3500] Modules linked in:
[   38.829977][ T3500] ---[ end trace 700921cbd8f63ed0 ]---
[   38.835409][ T3500] RIP: 0010:unaccount_page_cache_page+0x79d/0x8b0
[   38.841833][ T3500] Code: e8 28 7f d8 ff 4c 89 f7 48 c7 c6 20 14 93 8a e8 39 c8 0e 00 0f 0b e8 12 7f d8 ff 4c 89 f7 48 c7 c6 60 14 93 8a e8 23 c8 0e 00 <0f> 0b 48 85 ed 75 62 e8 f7 7e d8 ff 4c 89 eb eb 60 e8 ed 7e d8 ff
[   38.861416][ T3500] RSP: 0018:ffffc900011df6d0 EFLAGS: 00010046
[   38.867465][ T3500] RAX: 3c846f8db987a900 RBX: 0000000000000000 RCX: ffff888071eb9dc0
[   38.875419][ T3500] RDX: 0000000000000000 RSI: 000000000000ffff RDI: 000000000000ffff
[   38.883361][ T3500] RBP: 0000000000000000 R08: ffffffff81d0ed44 R09: ffffed1017344f24
[   38.891390][ T3500] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffffd4000290e01
[   38.899349][ T3500] R13: ffffea0001487008 R14: ffffea0001487000 R15: dffffc0000000000
[   38.907307][ T3500] FS:  0000555556953380(0000) GS:ffff8880b9a00000(0000) knlGS:0000000000000000
[   38.916207][ T3500] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   38.922771][ T3500] CR2: 00007f40204140d0 CR3: 0000000070123000 CR4: 00000000003506f0
[   38.930744][ T3500] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   38.938798][ T3500] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   38.946757][ T3500] Kernel panic - not syncing: Fatal exception
[   38.953001][ T3500] Kernel Offset: disabled
[   38.957327][ T3500] Rebooting in 86400 seconds..