program: bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) close(0x3) syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x1018e54, &(0x7f0000000380), 0x3, 0x614, &(0x7f0000001300)="$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") bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async) close(0x3) (async) syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x1018e54, &(0x7f0000000380), 0x3, 0x614, &(0x7f0000001300)="$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") (async) [ 84.156941][ T5115] loop0: detected capacity change from 0 to 1024 [ 84.159559][ T5099] Bluetooth: hci0: command tx timeout [ 84.168094][ T5115] ======================================================= [ 84.168094][ T5115] WARNING: The mand mount option has been deprecated and [ 84.168094][ T5115] and is ignored by this kernel. Remove the mand [ 84.168094][ T5115] option from the mount to silence this warning. [ 84.168094][ T5115] ======================================================= [ 84.313219][ T5115] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 84.338055][ T28] page: refcount:2 mapcount:0 mapping:0000000000000000 index:0xffff888011926000 pfn:0x11926 [ 84.341919][ T28] flags: 0xfff00000020001(locked|reclaim|node=0|zone=1|lastcpupid=0x7ff) [ 84.344801][ T28] raw: 00fff00000020001 ffffc900004ef2d0 ffffc900004ef2d0 ffffffff8c183462 [ 84.354211][ T28] raw: ffff888011926000 0000000000000000 00000002ffffffff 0000000000000000 [ 84.357434][ T28] page dumped because: VM_BUG_ON_PAGE(!((__builtin_constant_p(PAGE_CLAIMED) && __builtin_constant_p((uintptr_t)(&page->private) != (uintptr_t)((void *)0)) && (uintptr_t)(&page->private) != (uintptr_t)((void *)0) && __builtin_constant_p(*(const unsigned long *)(&page->private))) ? const_test_bit(PAGE_CLAIMED, &page->private) : _test_bit(PAGE_CLAIMED, &page->private))) [ 84.370665][ T28] page_owner tracks the page as allocated [ 84.372788][ T28] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12800(GFP_NOWAIT|__GFP_NORETRY), pid 78, tgid 78 (kswapd0), ts 84235425402, free_ts 84049906072 [ 84.378456][ T28] post_alloc_hook+0x1f3/0x230 [ 84.380258][ T28] get_page_from_freelist+0x2e4c/0x2f10 [ 84.382516][ T28] __alloc_pages_noprof+0x256/0x6c0 [ 84.384573][ T28] alloc_pages_mpol_noprof+0x3e8/0x680 [ 84.386643][ T28] z3fold_zpool_malloc+0x3d1/0xe70 [ 84.388795][ T28] zswap_compress+0x4ec/0x7c0 [ 84.390635][ T28] zswap_store+0xcd3/0x1620 [ 84.392264][ T28] swap_writepage+0x79/0x1a0 [ 84.393917][ T28] shrink_folio_list+0x35fe/0x8c90 [ 84.395733][ T28] evict_folios+0x54c7/0x7b60 [ 84.397430][ T28] try_to_shrink_lruvec+0x9ab/0xbb0 [ 84.418234][ T28] shrink_one+0x3b9/0x850 [ 84.420555][ T28] shrink_node+0x3799/0x3de0 [ 84.422349][ T28] kswapd+0x1cbc/0x3720 [ 84.423950][ T28] kthread+0x2f0/0x390 [ 84.425191][ T28] ret_from_fork+0x4b/0x80 [ 84.426483][ T28] page last free pid 1037 tgid 1037 stack trace: [ 84.447921][ T28] free_unref_page+0xd22/0xea0 [ 84.450059][ T28] __slab_free+0x31b/0x3d0 [ 84.452025][ T28] qlist_free_all+0x9e/0x140 [ 84.453639][ T28] kasan_quarantine_reduce+0x14f/0x170 [ 84.455570][ T28] __kasan_slab_alloc+0x23/0x80 [ 84.467601][ T28] kmem_cache_alloc_node_noprof+0x16b/0x320 [ 84.469969][ T28] __alloc_skb+0x1c3/0x440 [ 84.471808][ T28] alloc_skb_with_frags+0xc3/0x770 [ 84.473777][ T28] sock_alloc_send_pskb+0x91a/0xa60 [ 84.475801][ T28] mld_newpack+0x1c3/0xa90 [ 84.487593][ T28] add_grec+0x1492/0x19a0 [ 84.489159][ T28] mld_send_initial_cr+0x228/0x4b0 [ 84.491121][ T28] ipv6_mc_dad_complete+0x88/0x490 [ 84.492994][ T28] addrconf_dad_completed+0x712/0xcd0 [ 84.494977][ T28] addrconf_dad_work+0xdc2/0x16f0 [ 84.496873][ T28] process_scheduled_works+0xa2c/0x1830 [ 84.510664][ T28] ------------[ cut here ]------------ [ 84.512835][ T28] kernel BUG at mm/z3fold.c:1293! [ 84.514712][ T28] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI [ 84.517303][ T28] CPU: 0 UID: 0 PID: 28 Comm: kcompactd0 Not tainted 6.11.0-rc6-syzkaller-00019-g67784a74e258 #0 [ 84.520781][ T28] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 84.524316][ T28] RIP: 0010:z3fold_page_migrate+0xafd/0xf50 [ 84.526183][ T28] Code: ff 4c 89 f7 48 c7 c6 00 36 18 8c e8 4d 19 d7 ff 90 0f 0b e8 95 b7 8c ff 48 8b 7c 24 08 48 c7 c6 60 36 18 8c e8 34 19 d7 ff 90 <0f> 0b f3 0f 1e fa 48 89 ee 48 81 e6 ff 0f 00 00 31 ff e8 4c bc 8c [ 84.532379][ T28] RSP: 0018:ffffc900004eed98 EFLAGS: 00010246 [ 84.534281][ T28] RAX: 8b9348a7cb8a3d00 RBX: 0000000000000000 RCX: 0000000000000001 [ 84.537179][ T28] RDX: dffffc0000000000 RSI: ffffffff8c0ad560 RDI: 0000000000000001 [ 84.540244][ T28] RBP: ffffea00008c8440 R08: ffffffff90186f2f R09: 1ffffffff2030de5 [ 84.547657][ T28] R10: dffffc0000000000 R11: fffffbfff2030de6 R12: dffffc0000000000 [ 84.550804][ T28] R13: ffffffff8c183468 R14: ffffea0000464980 R15: 1ffffd400008c930 [ 84.553575][ T28] FS: 0000000000000000(0000) GS:ffff88801fe00000(0000) knlGS:0000000000000000 [ 84.556709][ T28] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 84.559186][ T28] CR2: 00007f892aeca5b0 CR3: 000000001a952000 CR4: 0000000000350ef0 [ 84.562140][ T28] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 84.565025][ T28] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 84.567879][ T28] Call Trace: [ 84.570460][ T28] [ 84.571594][ T28] ? __die_body+0x88/0xe0 [ 84.573274][ T28] ? die+0xcf/0x110 [ 84.574690][ T28] ? do_trap+0x15a/0x3a0 [ 84.576412][ T28] ? z3fold_page_migrate+0xafd/0xf50 [ 84.578286][ T28] ? do_error_trap+0x1dc/0x2c0 [ 84.579896][ T28] ? z3fold_page_migrate+0xafd/0xf50 [ 84.582008][ T28] ? __pfx_do_error_trap+0x10/0x10 [ 84.584020][ T28] ? handle_invalid_op+0x34/0x40 [ 84.585958][ T28] ? z3fold_page_migrate+0xafd/0xf50 [ 84.588082][ T28] ? exc_invalid_op+0x38/0x50 [ 84.589997][ T28] ? asm_exc_invalid_op+0x1a/0x20 [ 84.591971][ T28] ? z3fold_page_migrate+0xafd/0xf50 [ 84.594074][ T28] ? z3fold_page_migrate+0xafc/0xf50 [ 84.596296][ T28] move_to_new_folio+0x99e/0x12e0 [ 84.598136][ T28] ? post_alloc_hook+0x206/0x230 [ 84.600112][ T28] ? __pfx_move_to_new_folio+0x10/0x10 [ 84.602366][ T28] ? compaction_alloc+0x3385/0x3960 [ 84.604416][ T28] ? do_raw_spin_unlock+0x58/0x8b0 [ 84.606357][ T28] ? __pfx___might_resched+0x10/0x10 [ 84.608470][ T28] ? __pfx___folio_put+0x10/0x10 [ 84.610496][ T28] ? migrate_folio_done+0x254/0x4a0 [ 84.612506][ T28] ? folio_unlock+0x126/0x2f0 [ 84.614362][ T28] migrate_pages_batch+0x2527/0x3560 [ 84.616229][ T28] ? __pfx_compaction_free+0x10/0x10 [ 84.617853][ T28] ? __pfx_migrate_pages_batch+0x10/0x10 [ 84.620079][ T28] ? isolate_movable_page+0x2a/0xbf0 [ 84.622159][ T28] ? __pfx_lock_release+0x10/0x10 [ 84.624169][ T28] migrate_pages+0x262b/0x3460 [ 84.625748][ T28] ? __pfx_compaction_free+0x10/0x10 [ 84.627744][ T28] ? __pfx_compaction_alloc+0x10/0x10 [ 84.629765][ T28] ? __pfx_migrate_pages+0x10/0x10 [ 84.631891][ T28] ? __mutex_unlock_slowpath+0x21d/0x750 [ 84.633950][ T28] compact_zone+0x3404/0x4af0 [ 84.635696][ T28] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 84.637915][ T28] ? mark_lock+0x9a/0x350 [ 84.639506][ T28] ? __lock_acquire+0x137a/0x2040 [ 84.641495][ T28] ? __pfx_compact_zone+0x10/0x10 [ 84.643361][ T28] compact_node+0x2de/0x460 [ 84.644864][ T28] ? __pfx_compact_node+0x10/0x10 [ 84.646474][ T28] ? fragmentation_score_node+0x322/0x340 [ 84.648277][ T28] kcompactd+0x788/0x1530 [ 84.649668][ T28] ? __pfx_kcompactd+0x10/0x10 [ 84.651282][ T28] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 84.653315][ T28] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 84.655499][ T28] ? __pfx_autoremove_wake_function+0x10/0x10 [ 84.657686][ T28] ? __kthread_parkme+0x169/0x1d0 [ 84.659565][ T28] ? __pfx_kcompactd+0x10/0x10 [ 84.661312][ T28] kthread+0x2f0/0x390 [ 84.663628][ T28] ? __pfx_kcompactd+0x10/0x10 [ 84.665498][ T28] ? __pfx_kthread+0x10/0x10 [ 84.667178][ T28] ret_from_fork+0x4b/0x80 [ 84.668598][ T28] ? __pfx_kthread+0x10/0x10 [ 84.670212][ T28] ret_from_fork_asm+0x1a/0x30 [ 84.671913][ T28] [ 84.673032][ T28] Modules linked in: [ 84.697598][ T5115] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 84.701378][ T5115] EXT4-fs (loop0): orphan cleanup on readonly fs [ 84.737617][ T5115] Quota error (device loop0): v2_read_file_info: Number of blocks too big for quota file size (10240 > 6144). [ 84.748080][ T5115] EXT4-fs warning (device loop0): ext4_enable_quotas:7066: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix. [ 84.753235][ T5115] EXT4-fs (loop0): Cannot turn on quotas: error -117 [ 84.755926][ T5115] EXT4-fs error (device loop0): ext4_free_blocks:6590: comm syz.0.0: Freeing blocks not in datazone - block = 0, count = 4096 [ 84.808487][ T5115] EXT4-fs (loop0): 1 orphan inode deleted [ 84.811333][ T5115] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.