no interfaces have a carrier
forked to background, child pid 3178
[   27.068633][ T3179] 8021q: adding VLAN 0 to HW filter on device bond0
[   27.080893][ T3179] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
syzkaller login: [   76.127260][  T922] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.10.31' (ECDSA) to the list of known hosts.
executing program
[   86.474068][ T3598] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   86.592407][ T3598] page:ffffea000085b000 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x216c0
[   86.602828][ T3598] head:ffffea000085b000 order:3 compound_mapcount:0 compound_pincount:0
[   86.611180][ T3598] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[   86.619247][ T3598] raw: 00fff00000010200 0000000000000000 dead000000000001 ffff888011842140
[   86.627897][ T3598] raw: 0000000000000000 0000000000040004 00000001ffffffff 0000000000000000
[   86.636516][ T3598] page dumped because: VM_BUG_ON_FOLIO(folio_test_slab(folio))
[   86.644056][ T3598] page_owner tracks the page as allocated
[   86.650236][ T3598] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 3082, tgid 3082 (v4l_id), ts 20493212629, free_ts 20444131157
[   86.670383][ T3598]  get_page_from_freelist+0x210d/0x3a30
[   86.675985][ T3598]  __alloc_pages+0x1c7/0x510
[   86.680605][ T3598]  alloc_pages+0x1aa/0x310
[   86.685081][ T3598]  allocate_slab+0x27e/0x3d0
[   86.689691][ T3598]  ___slab_alloc+0x89d/0xef0
[   86.694274][ T3598]  __slab_alloc.constprop.0+0x4d/0xa0
[   86.699683][ T3598]  __kmalloc+0x3a2/0x450
[   86.703952][ T3598]  tomoyo_realpath_from_path+0xc3/0x620
[   86.709539][ T3598]  tomoyo_path_perm+0x21b/0x400
[   86.714397][ T3598]  security_inode_getattr+0xcf/0x140
[   86.719727][ T3598]  vfs_statx+0x16a/0x390
[   86.723982][ T3598]  vfs_fstatat+0x8c/0xb0
[   86.728268][ T3598]  __do_sys_newfstatat+0x91/0x110
[   86.733309][ T3598]  do_syscall_64+0x35/0xb0
[   86.737756][ T3598]  entry_SYSCALL_64_after_hwframe+0x46/0xb0
[   86.743656][ T3598] page last free stack trace:
[   86.748354][ T3598]  free_pcp_prepare+0x5e4/0xd20
[   86.753213][ T3598]  free_unref_page+0x19/0x4d0
[   86.757924][ T3598]  __unfreeze_partials+0x17c/0x1a0
[   86.763058][ T3598]  qlist_free_all+0x6a/0x170
[   86.767698][ T3598]  kasan_quarantine_reduce+0x180/0x200
[   86.773193][ T3598]  __kasan_slab_alloc+0xa2/0xc0
[   86.778114][ T3598]  kmem_cache_alloc+0x2d6/0x4c0
[   86.782974][ T3598]  vm_area_dup+0x81/0x380
[   86.787353][ T3598]  __split_vma+0x9f/0x530
[   86.791693][ T3598]  do_mas_align_munmap+0x54c/0xee0
[   86.796866][ T3598]  do_mas_munmap+0x202/0x2c0
[   86.801474][ T3598]  mmap_region+0x219/0x1bf0
[   86.806050][ T3598]  do_mmap+0x825/0xf50
[   86.810134][ T3598]  vm_mmap_pgoff+0x1ab/0x270
[   86.814775][ T3598]  ksys_mmap_pgoff+0x40d/0x5a0
[   86.819575][ T3598]  do_syscall_64+0x35/0xb0
[   86.824048][ T3598] ------------[ cut here ]------------
[   86.829527][ T3598] kernel BUG at include/linux/memcontrol.h:524!
[   86.835795][ T3598] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[   86.841847][ T3598] CPU: 1 PID: 3598 Comm: syz-executor104 Not tainted 5.19.0-rc4-next-20220628-syzkaller #0
[   86.851973][ T3598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[   86.862019][ T3598] RIP: 0010:workingset_activation+0x68e/0x7d0
[   86.868074][ T3598] Code: 80 3c 10 00 0f 85 38 01 00 00 4c 8b 2d 03 ca 0c 0c e9 b8 fc ff ff e8 a1 5c ca ff 48 c7 c6 20 19 d8 89 48 89 ef e8 42 01 00 00 <0f> 0b e8 8b 5c ca ff 0f 0b e9 4a fa ff ff e8 7f 5c ca ff 48 c7 c6
[   86.887674][ T3598] RSP: 0018:ffffc90002f7f4a0 EFLAGS: 00010293
[   86.893742][ T3598] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000000
[   86.901703][ T3598] RDX: ffff88801e629d40 RSI: ffffffff81b05a7e RDI: 0000000000000003
[   86.909660][ T3598] RBP: ffffea000085b000 R08: 0000000000000003 R09: 000000000000ffff
[   86.917617][ T3598] R10: 000000000000ffff R11: 0000000000000001 R12: 0000000000000000
[   86.925585][ T3598] R13: ffffea000085b038 R14: dffffc0000000000 R15: 0000000000000003
[   86.933549][ T3598] FS:  0000000000000000(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000
[   86.942472][ T3598] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   86.949064][ T3598] CR2: 00007fdd15d54fc8 CR3: 00000000734b0000 CR4: 00000000003526e0
[   86.957036][ T3598] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   86.965018][ T3598] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   86.972994][ T3598] Call Trace:
[   86.976264][ T3598]  <TASK>
[   86.979189][ T3598]  folio_mark_accessed+0x591/0xda0
[   86.984313][ T3598]  kvm_set_pfn_accessed+0x23b/0x2a0
[   86.989521][ T3598]  handle_changed_spte_acc_track+0x1bc/0x290
[   86.995507][ T3598]  __handle_changed_spte+0xc75/0x1810
[   87.001058][ T3598]  ? tdp_mmu_init_child_sp+0x590/0x590
[   87.006516][ T3598]  ? mark_lock.part.0+0xee/0x1910
[   87.011551][ T3598]  __handle_changed_spte+0xc66/0x1810
[   87.016940][ T3598]  ? tdp_mmu_init_child_sp+0x590/0x590
[   87.022403][ T3598]  __tdp_mmu_set_spte+0x229/0x9d0
[   87.027433][ T3598]  ? __handle_changed_spte+0x1810/0x1810
[   87.033063][ T3598]  ? tdp_iter_step_up+0x150/0x150
[   87.038090][ T3598]  __tdp_mmu_zap_root+0x7e6/0x860
[   87.043119][ T3598]  ? clear_dirty_pt_masked+0x520/0x520
[   87.048593][ T3598]  ? lock_release+0x780/0x780
[   87.053263][ T3598]  ? tdp_mmu_zap_root_work+0x70/0x70
[   87.058549][ T3598]  tdp_mmu_zap_root+0x12e/0x330
[   87.063463][ T3598]  kvm_tdp_mmu_zap_all+0x154/0x1b0
[   87.068573][ T3598]  ? kvm_mmu_notifier_invalidate_range+0xd0/0xd0
[   87.074900][ T3598]  kvm_mmu_zap_all+0x27c/0x2c0
[   87.079660][ T3598]  ? kvm_mmu_slot_leaf_clear_dirty+0x4c0/0x4c0
[   87.085809][ T3598]  ? lock_release+0x780/0x780
[   87.090494][ T3598]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   87.096468][ T3598]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   87.102788][ T3598]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   87.108763][ T3598]  ? kvm_mmu_notifier_invalidate_range+0xd0/0xd0
[   87.115092][ T3598]  kvm_mmu_notifier_release+0x5c/0xb0
[   87.120466][ T3598]  ? kvm_mmu_notifier_invalidate_range+0xd0/0xd0
[   87.126797][ T3598]  __mmu_notifier_release+0x1a9/0x600
[   87.132168][ T3598]  ? mmu_interval_notifier_insert+0x170/0x170
[   87.138230][ T3598]  ? find_held_lock+0x2d/0x110
[   87.142998][ T3598]  ? uprobe_clear_state+0xf8/0x420
[   87.148112][ T3598]  exit_mmap+0x60f/0x720
[   87.152352][ T3598]  ? __mutex_lock+0x231/0x1350
[   87.157112][ T3598]  ? __ia32_sys_remap_file_pages+0x150/0x150
[   87.163089][ T3598]  ? ioctx_alloc+0x21f0/0x21f0
[   87.167847][ T3598]  ? find_held_lock+0x2d/0x110
[   87.172615][ T3598]  __mmput+0x128/0x4c0
[   87.176680][ T3598]  mmput+0x5c/0x70
[   87.180407][ T3598]  do_exit+0xa09/0x29f0
[   87.184557][ T3598]  ? mm_update_next_owner+0x7b0/0x7b0
[   87.189922][ T3598]  do_group_exit+0xd2/0x2f0
[   87.194417][ T3598]  __x64_sys_exit_group+0x3a/0x50
[   87.199435][ T3598]  do_syscall_64+0x35/0xb0
[   87.203847][ T3598]  entry_SYSCALL_64_after_hwframe+0x46/0xb0
[   87.209734][ T3598] RIP: 0033:0x7fdd15d16d79
[   87.214138][ T3598] Code: Unable to access opcode bytes at RIP 0x7fdd15d16d4f.
[   87.221491][ T3598] RSP: 002b:00007ffd3b499c58 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   87.229894][ T3598] RAX: ffffffffffffffda RBX: 00007fdd15d853f0 RCX: 00007fdd15d16d79
[   87.237858][ T3598] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000
[   87.245829][ T3598] RBP: 0000000000000000 R08: ffffffffffffffc0 R09: 0000003500000015
[   87.253797][ T3598] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fdd15d853f0
[   87.261761][ T3598] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000001
[   87.269728][ T3598]  </TASK>
[   87.272750][ T3598] Modules linked in:
[   87.276753][ T3598] ---[ end trace 0000000000000000 ]---
[   87.282211][ T3598] RIP: 0010:workingset_activation+0x68e/0x7d0
[   87.288323][ T3598] Code: 80 3c 10 00 0f 85 38 01 00 00 4c 8b 2d 03 ca 0c 0c e9 b8 fc ff ff e8 a1 5c ca ff 48 c7 c6 20 19 d8 89 48 89 ef e8 42 01 00 00 <0f> 0b e8 8b 5c ca ff 0f 0b e9 4a fa ff ff e8 7f 5c ca ff 48 c7 c6
[   87.307965][ T3598] RSP: 0018:ffffc90002f7f4a0 EFLAGS: 00010293
[   87.314035][ T3598] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000000
[   87.322019][ T3598] RDX: ffff88801e629d40 RSI: ffffffff81b05a7e RDI: 0000000000000003
[   87.330014][ T3598] RBP: ffffea000085b000 R08: 0000000000000003 R09: 000000000000ffff
[   87.337999][ T3598] R10: 000000000000ffff R11: 0000000000000001 R12: 0000000000000000
[   87.345992][ T3598] R13: ffffea000085b038 R14: dffffc0000000000 R15: 0000000000000003
[   87.353973][ T3598] FS:  0000000000000000(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000
[   87.362918][ T3598] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   87.369525][ T3598] CR2: 00007fdd15d54fc8 CR3: 00000000734b0000 CR4: 00000000003526e0
[   87.377511][ T3598] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   87.385502][ T3598] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   87.393457][ T3598] Kernel panic - not syncing: Fatal exception
[   87.399580][ T3598] Kernel Offset: disabled
[   87.403892][ T3598] Rebooting in 86400 seconds..