eam0 [ 211.936947][ T14] bridge0: port 1(bridge_slave_0) entered blocking state [ 211.936984][ T14] bridge0: port 1(bridge_slave_0) entered forwarding state [ 211.938527][ T14] bridge0: port 2(bridge_slave_1) entered blocking state [ 211.938553][ T14] bridge0: port 2(bridge_slave_1) entered forwarding state [ 211.956270][T13976] loop9: detected capacity change from 0 to 4096 [ 212.005097][T13961] bridge0: port 1(bridge_slave_0) entered blocking state [ 212.005135][T13961] bridge0: port 1(bridge_slave_0) entered disabled state [ 212.005215][T13961] bridge_slave_0: entered allmulticast mode [ 212.005690][T13961] bridge_slave_0: entered promiscuous mode [ 212.006429][T13961] bridge0: port 2(bridge_slave_1) entered blocking state [ 212.006445][T13961] bridge0: port 2(bridge_slave_1) entered disabled state [ 212.006509][T13961] bridge_slave_1: entered allmulticast mode [ 212.006933][T13961] bridge_slave_1: entered promiscuous mode [ 212.088508][T13924] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 212.101373][T13961] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 212.102934][T13961] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 212.131544][T13961] team0: Port device team_slave_0 added [ 212.132366][T13961] team0: Port device team_slave_1 added [ 212.173437][T13714] ntfs3(loop9): ino=1e, mi_enum_attr [ 212.173471][T13714] ntfs3(loop9): Mark volume as dirty due to NTFS errors [ 212.174496][T13924] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 212.178293][T13714] ntfs3(loop9): ino=1e, mi_enum_attr [ 212.178453][T13714] ntfs3(loop9): ino=1e, mi_enum_attr [ 212.181216][T13961] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 212.182879][T13961] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 212.182899][T13961] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 212.192396][T13773] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 212.193087][T13961] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 212.193098][T13961] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 212.193113][T13961] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 212.218451][T13961] hsr_slave_0: entered promiscuous mode [ 212.219963][T13961] hsr_slave_1: entered promiscuous mode [ 212.221625][T13961] debugfs: 'hsr0' already exists in 'hsr' [ 212.222805][T13961] Cannot create hsr debugfs directory [ 212.652475][T13773] veth0_vlan: entered promiscuous mode [ 212.670458][T13961] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 212.677259][T13773] veth1_vlan: entered promiscuous mode [ 212.679002][T13924] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 212.681845][T13924] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 212.685684][T13924] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 212.686960][T13924] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 212.699937][T13773] veth0_macvtap: entered promiscuous mode [ 212.701261][T13773] veth1_macvtap: entered promiscuous mode [ 212.718860][T13773] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 212.729776][T13961] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 212.736809][T13773] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 212.740373][ T14] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 212.741917][ T14] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 212.758600][ T14] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 212.760101][ T14] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 213.090067][T13924] 8021q: adding VLAN 0 to HW filter on device bond0 [ 213.093079][T13924] 8021q: adding VLAN 0 to HW filter on device team0 [ 213.103592][ T6670] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 213.105678][ T6670] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 213.105990][ T6670] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 213.106946][ T6670] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 213.107128][ T6670] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 213.303390][ T6670] Bluetooth: hci3: command tx timeout [ 213.518170][T13961] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 213.521167][ T14] bridge0: port 1(bridge_slave_0) entered blocking state [ 213.521215][ T14] bridge0: port 1(bridge_slave_0) entered forwarding state [ 213.713281][ T6670] Bluetooth: hci2: command tx timeout [ 213.783328][ T6670] Bluetooth: hci0: command tx timeout [ 213.920325][ T14] bridge0: port 2(bridge_slave_1) entered blocking state [ 213.920370][ T14] bridge0: port 2(bridge_slave_1) entered forwarding state [ 213.930142][T13961] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 214.281620][ T6571] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 214.282276][ T6571] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 214.282554][ T6571] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 214.283000][ T6571] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 214.283716][ T6571] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 214.293736][ T776] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 214.293762][ T776] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 1970/01/01 00:03:34 executed programs: 343 [ 214.723866][ T41] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 214.728156][ T7736] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 214.728186][ T7736] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 214.779602][ T41] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 214.837067][ T41] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 214.856020][T14012] loop7: detected capacity change from 0 to 4096 [ 214.879244][T13961] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 214.941166][ T41] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 214.950045][T13961] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 214.965054][T13961] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 214.971275][T14003] chnl_net:caif_netlink_parms(): no params data found [ 214.996942][T13961] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 215.025299][T13996] chnl_net:caif_netlink_parms(): no params data found [ 215.056630][T13773] ntfs3(loop7): ino=1e, mi_enum_attr [ 215.056664][T13773] ntfs3(loop7): Mark volume as dirty due to NTFS errors [ 215.068679][T13773] ntfs3(loop7): ino=1e, mi_enum_attr [ 215.068784][T13773] ntfs3(loop7): ino=1e, mi_enum_attr [ 215.077375][T13961] 8021q: adding VLAN 0 to HW filter on device bond0 [ 215.081418][T13961] 8021q: adding VLAN 0 to HW filter on device team0 [ 215.083084][ T776] bridge0: port 1(bridge_slave_0) entered blocking state [ 215.083122][ T776] bridge0: port 1(bridge_slave_0) entered forwarding state [ 215.111549][ T14] bridge0: port 2(bridge_slave_1) entered blocking state [ 215.111591][ T14] bridge0: port 2(bridge_slave_1) entered forwarding state [ 215.115820][T14003] bridge0: port 1(bridge_slave_0) entered blocking state [ 215.115893][T14003] bridge0: port 1(bridge_slave_0) entered disabled state [ 215.116098][T14003] bridge_slave_0: entered allmulticast mode [ 215.116602][T14003] bridge_slave_0: entered promiscuous mode [ 215.117417][T14003] bridge0: port 2(bridge_slave_1) entered blocking state [ 215.117434][T14003] bridge0: port 2(bridge_slave_1) entered disabled state [ 215.117491][T14003] bridge_slave_1: entered allmulticast mode [ 215.117999][T14003] bridge_slave_1: entered promiscuous mode [ 215.144329][ T6571] Bluetooth: hci1: command tx timeout [ 215.149101][T13996] bridge0: port 1(bridge_slave_0) entered blocking state [ 215.149526][T13996] bridge0: port 1(bridge_slave_0) entered disabled state [ 215.149656][T13996] bridge_slave_0: entered allmulticast mode [ 215.151099][T13996] bridge_slave_0: entered promiscuous mode [ 215.151872][T13996] bridge0: port 2(bridge_slave_1) entered blocking state [ 215.151887][T13996] bridge0: port 2(bridge_slave_1) entered disabled state [ 215.151950][T13996] bridge_slave_1: entered allmulticast mode [ 215.152384][T13996] bridge_slave_1: entered promiscuous mode [ 215.180748][T14003] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 215.184827][T13924] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 215.194784][T13996] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 215.238965][ T41] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 215.242401][T14003] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 215.248595][T13996] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 215.271528][T13996] team0: Port device team_slave_0 added [ 215.276240][T13996] team0: Port device team_slave_1 added [ 215.328095][ T41] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 215.334115][T13996] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 215.335262][T13996] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 215.339349][T13996] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 215.341668][T13996] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 215.342852][T13996] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 215.348324][T13996] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 215.351203][T14003] team0: Port device team_slave_0 added [ 215.361963][T14003] team0: Port device team_slave_1 added [ 215.376572][ T41] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 215.385064][ T6571] Bluetooth: hci3: command tx timeout [ 215.412652][T14003] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 215.412682][T14003] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 215.412697][T14003] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 215.418809][T14003] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 215.418819][T14003] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 215.418836][T14003] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 215.452003][ T41] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 215.462790][T13924] veth0_vlan: entered promiscuous mode [ 215.479178][T13996] hsr_slave_0: entered promiscuous mode [ 215.479578][T13996] hsr_slave_1: entered promiscuous mode [ 215.479782][T13996] debugfs: 'hsr0' already exists in 'hsr' [ 215.479793][T13996] Cannot create hsr debugfs directory [ 215.520598][T14003] hsr_slave_0: entered promiscuous mode [ 215.521033][T14003] hsr_slave_1: entered promiscuous mode [ 215.521250][T14003] debugfs: 'hsr0' already exists in 'hsr' [ 215.521261][T14003] Cannot create hsr debugfs directory [ 215.532257][T13961] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 215.600908][T13924] veth1_vlan: entered promiscuous mode [ 215.608349][T13961] veth0_vlan: entered promiscuous mode [ 215.611526][T13961] veth1_vlan: entered promiscuous mode [ 215.620583][T13961] veth0_macvtap: entered promiscuous mode [ 215.667209][T13961] veth1_macvtap: entered promiscuous mode [ 215.676080][T13961] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 215.722554][T13996] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 215.740605][ T41] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 215.748397][T13961] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 215.761640][ T541] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 215.761700][ T541] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 215.761725][ T541] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 215.761740][ T541] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 215.762257][T13924] veth0_macvtap: entered promiscuous mode [ 215.770491][T13924] veth1_macvtap: entered promiscuous mode [ 215.822324][ T41] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 215.833033][T13996] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 215.840731][T13924] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 215.856497][T13924] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 215.862148][ T934] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 215.862165][ T934] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 215.864718][ T6571] Bluetooth: hci0: command tx timeout [ 215.870430][ T934] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 215.885123][ T934] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 215.886896][ T845] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 215.888730][ T845] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 215.910209][ T41] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 215.918975][T13996] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 215.923010][ T776] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 215.923033][ T776] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 215.943127][ T41] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 215.966862][ T14] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 215.966891][ T14] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 215.978812][ T845] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 215.978840][ T845] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 216.022056][T13996] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 216.056078][T14093] loop2: detected capacity change from 0 to 4096 [ 216.096902][ T6670] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 216.104340][ T6670] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 216.106315][ T6670] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 216.108683][ T6670] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 216.110785][ T6670] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 216.157773][T14104] loop4: detected capacity change from 0 to 4096 [ 216.182570][ T41] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 216.289675][ T41] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 216.361133][ T6670] Bluetooth: hci4: command tx timeout [ 216.393146][T13924] ntfs3(loop4): ino=1e, mi_enum_attr [ 216.393342][T13924] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 216.398839][T13924] ntfs3(loop4): ino=1e, mi_enum_attr [ 216.399320][T13924] ntfs3(loop4): ino=1e, mi_enum_attr [ 216.411340][T13961] ntfs3(loop2): ino=1e, mi_enum_attr [ 216.411373][T13961] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 216.417570][ T41] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 216.420050][T13961] ntfs3(loop2): ino=1e, mi_enum_attr [ 216.420151][T13961] ntfs3(loop2): ino=1e, mi_enum_attr [ 216.462525][T13996] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 216.474718][T13996] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 216.478828][T13996] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 216.481253][T13996] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 216.509193][ T41] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 216.582435][T14100] chnl_net:caif_netlink_parms(): no params data found [ 216.622562][T14100] bridge0: port 1(bridge_slave_0) entered blocking state [ 216.622637][T14100] bridge0: port 1(bridge_slave_0) entered disabled state [ 216.622720][T14100] bridge_slave_0: entered allmulticast mode [ 216.630382][T14100] bridge_slave_0: entered promiscuous mode [ 216.632719][T13996] 8021q: adding VLAN 0 to HW filter on device bond0 [ 216.634643][T14100] bridge0: port 2(bridge_slave_1) entered blocking state [ 216.634685][T14100] bridge0: port 2(bridge_slave_1) entered disabled state [ 216.634821][T14100] bridge_slave_1: entered allmulticast mode [ 216.635313][T14100] bridge_slave_1: entered promiscuous mode [ 216.677374][T14100] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 216.692084][T13996] 8021q: adding VLAN 0 to HW filter on device team0 [ 216.700751][T14100] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 216.712609][ T845] bridge0: port 1(bridge_slave_0) entered blocking state [ 216.712659][ T845] bridge0: port 1(bridge_slave_0) entered forwarding state [ 216.729776][ T41] bridge_slave_1: left allmulticast mode [ 216.729806][ T41] bridge_slave_1: left promiscuous mode [ 216.729875][ T41] bridge0: port 2(bridge_slave_1) entered disabled state [ 216.732031][ T41] bridge_slave_0: left allmulticast mode [ 216.732041][ T41] bridge_slave_0: left promiscuous mode [ 216.732098][ T41] bridge0: port 1(bridge_slave_0) entered disabled state [ 216.745017][ T41] bridge_slave_1: left allmulticast mode [ 216.745046][ T41] bridge_slave_1: left promiscuous mode [ 216.745102][ T41] bridge0: port 2(bridge_slave_1) entered disabled state [ 216.748976][ T41] bridge_slave_0: left allmulticast mode [ 216.749003][ T41] bridge_slave_0: left promiscuous mode [ 216.749059][ T41] bridge0: port 1(bridge_slave_0) entered disabled state [ 216.751718][ T41] bridge_slave_1: left allmulticast mode [ 216.751732][ T41] bridge_slave_1: left promiscuous mode [ 216.751779][ T41] bridge0: port 2(bridge_slave_1) entered disabled state [ 216.761461][ T41] bridge_slave_0: left allmulticast mode [ 216.761487][ T41] bridge_slave_0: left promiscuous mode [ 216.761555][ T41] bridge0: port 1(bridge_slave_0) entered disabled state [ 216.765369][ T41] bridge_slave_1: left allmulticast mode [ 216.765381][ T41] bridge_slave_1: left promiscuous mode [ 216.765431][ T41] bridge0: port 2(bridge_slave_1) entered disabled state [ 216.767415][ T41] bridge_slave_0: left allmulticast mode [ 216.767423][ T41] bridge_slave_0: left promiscuous mode [ 216.767479][ T41] bridge0: port 1(bridge_slave_0) entered disabled state [ 216.770055][ T41] bridge_slave_1: left allmulticast mode [ 216.770067][ T41] bridge_slave_1: left promiscuous mode [ 216.770127][ T41] bridge0: port 2(bridge_slave_1) entered disabled state [ 216.772532][ T41] bridge_slave_0: left allmulticast mode [ 216.772542][ T41] bridge_slave_0: left promiscuous mode [ 216.772594][ T41] bridge0: port 1(bridge_slave_0) entered disabled state [ 216.780800][ T41] bridge_slave_1: left allmulticast mode [ 216.780828][ T41] bridge_slave_1: left promiscuous mode [ 216.780883][ T41] bridge0: port 2(bridge_slave_1) entered disabled state [ 216.782878][ T41] bridge_slave_0: left allmulticast mode [ 216.782886][ T41] bridge_slave_0: left promiscuous mode [ 216.782931][ T41] bridge0: port 1(bridge_slave_0) entered disabled state [ 216.787436][ T41] bridge_slave_1: left allmulticast mode [ 216.787457][ T41] bridge_slave_1: left promiscuous mode [ 216.787510][ T41] bridge0: port 2(bridge_slave_1) entered disabled state [ 216.789545][ T41] bridge_slave_0: left allmulticast mode [ 216.789554][ T41] bridge_slave_0: left promiscuous mode [ 216.789600][ T41] bridge0: port 1(bridge_slave_0) entered disabled state [ 216.792038][ T41] bridge_slave_1: left allmulticast mode [ 216.792050][ T41] bridge_slave_1: left promiscuous mode [ 216.792110][ T41] bridge0: port 2(bridge_slave_1) entered disabled state [ 216.797958][ T41] bridge_slave_0: left allmulticast mode [ 216.797978][ T41] bridge_slave_0: left promiscuous mode [ 216.798247][ T41] bridge0: port 1(bridge_slave_0) entered disabled state [ 216.805969][ T41] bridge_slave_1: left allmulticast mode [ 216.805998][ T41] bridge_slave_1: left promiscuous mode [ 216.806073][ T41] bridge0: port 2(bridge_slave_1) entered disabled state [ 216.809751][ T41] bridge_slave_0: left allmulticast mode [ 216.809769][ T41] bridge_slave_0: left promiscuous mode [ 216.810140][ T41] bridge0: port 1(bridge_slave_0) entered disabled state [ 216.812473][ T41] bridge_slave_1: left allmulticast mode [ 216.812483][ T41] bridge_slave_1: left promiscuous mode [ 216.812524][ T41] bridge0: port 2(bridge_slave_1) entered disabled state [ 216.816562][ T41] bridge_slave_0: left allmulticast mode [ 216.816582][ T41] bridge_slave_0: left promiscuous mode [ 216.816656][ T41] bridge0: port 1(bridge_slave_0) entered disabled state [ 217.028013][ T6571] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 217.029886][ T6571] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 217.031099][ T6571] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 217.032681][ T6571] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 217.033669][ T6571] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 217.223502][ T6571] Bluetooth: hci1: command tx timeout [ 217.640724][ T6670] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 217.641984][ T6670] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 217.646713][ T6670] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 217.648446][ T6670] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 217.650139][ T6670] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 217.803053][ T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 217.824655][ T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 217.835073][ T41] bond0 (unregistering): Released all slaves [ 217.941234][ T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 217.974472][ T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 218.025356][ T41] bond0 (unregistering): Released all slaves [ 218.141568][ T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 218.154521][ T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 218.174590][ T41] bond0 (unregistering): Released all slaves [ 218.183468][ T6670] Bluetooth: hci2: command tx timeout [ 218.281090][ T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 218.304645][ T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 218.324128][ T41] bond0 (unregistering): Released all slaves [ 218.423616][ T6670] Bluetooth: hci4: command tx timeout [ 218.441208][ T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 218.484425][ T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 218.504503][ T41] bond0 (unregistering): Released all slaves [ 218.623926][ T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 218.654865][ T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 218.674300][ T41] bond0 (unregistering): Released all slaves [ 218.792050][ T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 218.805260][ T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 218.854544][ T41] bond0 (unregistering): Released all slaves [ 218.953040][ T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 218.974396][ T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 218.994313][ T41] bond0 (unregistering): Released all slaves [ 219.063630][ T6670] Bluetooth: hci0: command tx timeout [ 219.082676][ T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 219.095805][ T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 219.124174][ T41] bond0 (unregistering): Released all slaves [ 219.243314][ T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 219.265452][ T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 219.274075][ T41] bond0 (unregistering): Released all slaves [ 219.284067][T14100] team0: Port device team_slave_0 added [ 219.285459][T14100] team0: Port device team_slave_1 added [ 219.297417][T14100] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 219.298709][T14100] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 219.299805][T14100] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 219.303379][ T6670] Bluetooth: hci1: command tx timeout [ 219.314268][ T541] bridge0: port 2(bridge_slave_1) entered blocking state [ 219.314303][ T541] bridge0: port 2(bridge_slave_1) entered forwarding state [ 219.362824][T14100] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 219.362858][T14100] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 219.362877][T14100] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 219.409529][T14100] hsr_slave_0: entered promiscuous mode [ 219.413896][T14100] hsr_slave_1: entered promiscuous mode [ 219.415407][T14100] debugfs: 'hsr0' already exists in 'hsr' [ 219.416698][T14100] Cannot create hsr debugfs directory [ 219.590983][T14150] chnl_net:caif_netlink_parms(): no params data found [ 219.703428][ T6670] Bluetooth: hci3: command tx timeout [ 219.770723][T14150] bridge0: port 1(bridge_slave_0) entered blocking state [ 219.772066][T14150] bridge0: port 1(bridge_slave_0) entered disabled state [ 219.777417][T14150] bridge_slave_0: entered allmulticast mode [ 219.778988][T14150] bridge_slave_0: entered promiscuous mode [ 219.817295][T14150] bridge0: port 2(bridge_slave_1) entered blocking state [ 219.817334][T14150] bridge0: port 2(bridge_slave_1) entered disabled state [ 219.817466][T14150] bridge_slave_1: entered allmulticast mode [ 219.817983][T14150] bridge_slave_1: entered promiscuous mode [ 219.844414][T14147] chnl_net:caif_netlink_parms(): no params data found [ 219.855513][T14150] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 219.953948][T14150] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 219.970165][T14150] team0: Port device team_slave_0 added [ 219.972197][T14150] team0: Port device team_slave_1 added [ 220.006737][T14003] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 220.009025][T14003] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 220.011748][T14003] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 220.031513][T14003] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 220.037442][T14147] bridge0: port 1(bridge_slave_0) entered blocking state [ 220.037546][T14147] bridge0: port 1(bridge_slave_0) entered disabled state [ 220.037691][T14147] bridge_slave_0: entered allmulticast mode [ 220.038460][T14147] bridge_slave_0: entered promiscuous mode [ 220.042216][T14150] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 220.045049][T14150] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 220.045088][T14150] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 220.045830][T14150] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 220.045845][T14150] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 220.045869][T14150] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 220.112591][T13996] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 220.112959][T14147] bridge0: port 2(bridge_slave_1) entered blocking state [ 220.112980][T14147] bridge0: port 2(bridge_slave_1) entered disabled state [ 220.113097][T14147] bridge_slave_1: entered allmulticast mode [ 220.114384][T14147] bridge_slave_1: entered promiscuous mode [ 220.129361][T14147] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 220.146270][T14147] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 220.185865][T14147] team0: Port device team_slave_0 added [ 220.186681][T14147] team0: Port device team_slave_1 added [ 220.265019][ T6670] Bluetooth: hci2: command tx timeout [ 220.272197][T14147] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 220.272234][T14147] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 220.272247][T14147] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 220.285260][T14150] hsr_slave_0: entered promiscuous mode [ 220.286858][T14150] hsr_slave_1: entered promiscuous mode [ 220.287080][T14150] debugfs: 'hsr0' already exists in 'hsr' [ 220.287091][T14150] Cannot create hsr debugfs directory [ 220.326677][T14147] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 220.326715][T14147] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 220.326735][T14147] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 220.457425][T13996] veth0_vlan: entered promiscuous mode [ 220.459048][T13996] veth1_vlan: entered promiscuous mode [ 220.484257][T14147] hsr_slave_0: entered promiscuous mode [ 220.485661][T14147] hsr_slave_1: entered promiscuous mode [ 220.487084][T14147] debugfs: 'hsr0' already exists in 'hsr' [ 220.487659][T14147] Cannot create hsr debugfs directory [ 220.503436][ T6670] Bluetooth: hci4: command tx timeout [ 220.649391][T13996] veth0_macvtap: entered promiscuous mode [ 220.718501][T14100] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 220.721125][T14100] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 220.734167][T13996] veth1_macvtap: entered promiscuous mode [ 220.737422][T13996] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 220.801840][T14003] 8021q: adding VLAN 0 to HW filter on device bond0 [ 220.804848][T14100] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 220.807926][T14100] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 220.811272][T13996] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 220.882836][T14003] 8021q: adding VLAN 0 to HW filter on device team0 [ 220.884712][T14152] bridge0: port 1(bridge_slave_0) entered blocking state [ 220.884744][T14152] bridge0: port 1(bridge_slave_0) entered forwarding state [ 220.930258][ T12] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.930307][ T12] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.930324][ T12] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.930338][ T12] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.958172][ T541] bridge0: port 2(bridge_slave_1) entered blocking state [ 220.958218][ T541] bridge0: port 2(bridge_slave_1) entered forwarding state [ 221.110644][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 221.113378][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 221.143304][ T6670] Bluetooth: hci0: command tx timeout [ 221.173261][ T541] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 221.173287][ T541] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 1970/01/01 00:03:41 executed programs: 353 [ 221.229146][T14260] loop5: detected capacity change from 0 to 4096 [ 221.275919][T14100] 8021q: adding VLAN 0 to HW filter on device bond0 [ 221.279035][T14100] 8021q: adding VLAN 0 to HW filter on device team0 [ 221.284042][ T42] bridge0: port 1(bridge_slave_0) entered blocking state [ 221.284063][ T42] bridge0: port 1(bridge_slave_0) entered forwarding state [ 221.284547][ T42] bridge0: port 2(bridge_slave_1) entered blocking state [ 221.284564][ T42] bridge0: port 2(bridge_slave_1) entered forwarding state [ 221.312261][T14100] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 221.312299][T14100] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 221.386396][ T6670] Bluetooth: hci1: command tx timeout [ 221.446378][T14003] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 221.492610][T13996] ntfs3(loop5): ino=1e, mi_enum_attr [ 221.492665][T13996] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 221.500999][T14100] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 221.506454][T13996] ntfs3(loop5): ino=1e, mi_enum_attr [ 221.506554][T13996] ntfs3(loop5): ino=1e, mi_enum_attr [ 221.555747][T14150] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 221.558207][T14150] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 221.560379][T14150] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 221.562590][T14150] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 221.749714][T14150] 8021q: adding VLAN 0 to HW filter on device bond0 [ 221.760930][T14150] 8021q: adding VLAN 0 to HW filter on device team0 [ 221.766010][ T42] bridge0: port 1(bridge_slave_0) entered blocking state [ 221.766055][ T42] bridge0: port 1(bridge_slave_0) entered forwarding state [ 221.772512][T14003] veth0_vlan: entered promiscuous mode [ 221.783539][ T6670] Bluetooth: hci3: command tx timeout [ 221.826832][T14100] veth0_vlan: entered promiscuous mode [ 221.829931][T14100] veth1_vlan: entered promiscuous mode [ 221.860410][ T42] bridge0: port 2(bridge_slave_1) entered blocking state [ 221.860452][ T42] bridge0: port 2(bridge_slave_1) entered forwarding state [ 221.862975][T14003] veth1_vlan: entered promiscuous mode [ 221.928770][ T6571] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 221.930111][ T6571] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 221.933784][ T6571] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 221.942369][ T6571] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 221.943119][ T6571] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 222.020620][T14150] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 222.031094][T14100] veth0_macvtap: entered promiscuous mode [ 222.032149][T14100] veth1_macvtap: entered promiscuous mode [ 222.082436][T14003] veth0_macvtap: entered promiscuous mode [ 222.098163][T14003] veth1_macvtap: entered promiscuous mode [ 222.102760][T14100] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 222.104937][T14100] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 222.108547][T14003] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 222.109976][T14003] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 222.209971][ T845] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 222.210024][ T845] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 222.210044][ T845] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 222.210061][ T845] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 222.280447][T14150] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 222.312646][ T541] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 222.312756][ T541] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 222.312788][ T541] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 222.312806][ T541] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 222.343403][ T6571] Bluetooth: hci2: command tx timeout [ 222.362656][T14150] veth0_vlan: entered promiscuous mode [ 222.470745][T14150] veth1_vlan: entered promiscuous mode [ 222.517883][T14147] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 222.535583][T14150] veth0_macvtap: entered promiscuous mode [ 222.545186][ T7000] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 222.545215][ T7000] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 222.560690][T14147] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 222.564675][T14147] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 222.597777][ T6571] Bluetooth: hci4: command tx timeout [ 222.635542][T14304] chnl_net:caif_netlink_parms(): no params data found [ 222.651425][T14147] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 222.660510][T14150] veth1_macvtap: entered promiscuous mode [ 222.731276][ T7000] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 222.731308][ T7000] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 222.739505][T14150] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 222.741350][T14304] bridge0: port 1(bridge_slave_0) entered blocking state [ 222.742511][T14304] bridge0: port 1(bridge_slave_0) entered disabled state [ 222.742655][T14304] bridge_slave_0: entered allmulticast mode [ 222.748107][T14304] bridge_slave_0: entered promiscuous mode [ 222.748985][T14304] bridge0: port 2(bridge_slave_1) entered blocking state [ 222.749001][T14304] bridge0: port 2(bridge_slave_1) entered disabled state [ 222.749071][T14304] bridge_slave_1: entered allmulticast mode [ 222.749673][T14304] bridge_slave_1: entered promiscuous mode [ 222.871490][T14150] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 222.873816][T14152] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 222.874285][T14152] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 222.874673][T14152] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 222.875053][T14152] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 222.880093][T14304] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 222.897297][T14304] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 222.944425][ T41] hsr_slave_0: left promiscuous mode [ 222.945459][ T41] hsr_slave_1: left promiscuous mode [ 222.945957][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 222.945968][ T41] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 222.949903][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 222.949932][ T41] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 222.956924][ T41] hsr_slave_0: left promiscuous mode [ 222.958406][ T41] hsr_slave_1: left promiscuous mode [ 222.959660][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 222.960853][ T41] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 222.962424][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 222.963707][ T41] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 222.970353][T14404] loop6: detected capacity change from 0 to 4096 [ 222.971784][ T41] hsr_slave_0: left promiscuous mode [ 222.972927][ T41] hsr_slave_1: left promiscuous mode [ 222.974412][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 222.975637][ T41] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 222.978249][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 222.979499][ T41] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 222.987086][ T41] hsr_slave_0: left promiscuous mode [ 222.988427][ T41] hsr_slave_1: left promiscuous mode [ 222.989654][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 222.990939][ T41] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 222.992503][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 222.996614][ T41] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 223.001120][ T41] hsr_slave_0: left promiscuous mode [ 223.002829][ T41] hsr_slave_1: left promiscuous mode [ 223.006013][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 223.007320][ T41] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 223.008825][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 223.010376][ T41] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 223.024122][ T41] hsr_slave_0: left promiscuous mode [ 223.025409][ T41] hsr_slave_1: left promiscuous mode [ 223.025708][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 223.025724][ T41] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 223.029111][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 223.029132][ T41] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 223.033805][ T41] hsr_slave_0: left promiscuous mode [ 223.043795][ T41] hsr_slave_1: left promiscuous mode [ 223.044058][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 223.044073][ T41] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 223.051205][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 223.052495][ T41] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 223.057983][ T41] hsr_slave_0: left promiscuous mode [ 223.059248][ T41] hsr_slave_1: left promiscuous mode [ 223.060384][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 223.061561][ T41] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 223.063115][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 223.067498][ T41] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 223.081778][ T41] hsr_slave_0: left promiscuous mode [ 223.082738][ T41] hsr_slave_1: left promiscuous mode [ 223.083527][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 223.083540][ T41] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 223.086545][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 223.086573][ T41] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 223.090311][ T41] hsr_slave_0: left promiscuous mode [ 223.091158][ T41] hsr_slave_1: left promiscuous mode [ 223.091387][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 223.091397][ T41] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 223.092339][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 223.092349][ T41] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 223.169479][ T41] veth1_macvtap: left promiscuous mode [ 223.170465][ T41] veth0_macvtap: left promiscuous mode [ 223.171402][ T41] veth1_vlan: left promiscuous mode [ 223.172270][ T41] veth0_vlan: left promiscuous mode [ 223.173733][ T41] veth1_macvtap: left promiscuous mode [ 223.174672][ T41] veth0_macvtap: left promiscuous mode [ 223.174753][ T41] veth1_vlan: left promiscuous mode [ 223.174789][ T41] veth0_vlan: left promiscuous mode [ 223.177791][ T41] veth1_macvtap: left promiscuous mode [ 223.178806][ T41] veth0_macvtap: left promiscuous mode [ 223.179802][ T41] veth1_vlan: left promiscuous mode [ 223.180724][ T41] veth0_vlan: left promiscuous mode [ 223.182138][ T41] veth1_macvtap: left promiscuous mode [ 223.183081][ T41] veth0_macvtap: left promiscuous mode [ 223.184247][ T41] veth1_vlan: left promiscuous mode [ 223.185146][ T41] veth0_vlan: left promiscuous mode [ 223.186421][ T41] veth1_macvtap: left promiscuous mode [ 223.187317][ T41] veth0_macvtap: left promiscuous mode [ 223.188247][ T41] veth1_vlan: left promiscuous mode [ 223.189189][ T41] veth0_vlan: left promiscuous mode [ 223.190667][ T41] veth1_macvtap: left promiscuous mode [ 223.191624][ T41] veth0_macvtap: left promiscuous mode [ 223.192646][T14003] ntfs3(loop6): ino=1e, mi_enum_attr [ 223.192678][T14003] ntfs3(loop6): Mark volume as dirty due to NTFS errors [ 223.194880][ T41] veth1_vlan: left promiscuous mode [ 223.195797][ T41] veth0_vlan: left promiscuous mode [ 223.200085][ T41] veth1_macvtap: left promiscuous mode [ 223.200994][ T41] veth0_macvtap: left promiscuous mode [ 223.201980][ T41] veth1_vlan: left promiscuous mode [ 223.202396][T14003] ntfs3(loop6): ino=1e, mi_enum_attr [ 223.202479][T14003] ntfs3(loop6): ino=1e, mi_enum_attr [ 223.204636][ T41] veth0_vlan: left promiscuous mode [ 223.206424][ T41] veth1_macvtap: left promiscuous mode [ 223.206454][ T41] veth0_macvtap: left promiscuous mode [ 223.206512][ T41] veth1_vlan: left promiscuous mode [ 223.206558][ T41] veth0_vlan: left promiscuous mode [ 223.210319][ T41] veth1_macvtap: left promiscuous mode [ 223.211250][ T41] veth0_macvtap: left promiscuous mode [ 223.212201][ T41] veth1_vlan: left promiscuous mode [ 223.213081][ T41] veth0_vlan: left promiscuous mode [ 223.215476][ T41] veth1_macvtap: left promiscuous mode [ 223.216407][ T41] veth0_macvtap: left promiscuous mode [ 223.217278][ T41] veth1_vlan: left promiscuous mode [ 223.218196][ T41] veth0_vlan: left promiscuous mode [ 223.227185][ T6571] Bluetooth: hci0: command tx timeout [ 223.642909][ T41] team0 (unregistering): Port device team_slave_1 removed [ 223.655740][ T41] team0 (unregistering): Port device team_slave_0 removed [ 223.871480][ T41] team0 (unregistering): Port device team_slave_1 removed [ 223.873840][ T6571] Bluetooth: hci3: command tx timeout [ 223.889743][ T41] team0 (unregistering): Port device team_slave_0 removed [ 224.033376][ T6571] Bluetooth: hci1: command tx timeout [ 224.139962][ T41] team0 (unregistering): Port device team_slave_1 removed [ 224.150304][ T41] team0 (unregistering): Port device team_slave_0 removed [ 224.396520][ T41] team0 (unregistering): Port device team_slave_1 removed [ 224.412654][ T41] team0 (unregistering): Port device team_slave_0 removed [ 224.423247][ T6571] Bluetooth: hci2: command tx timeout [ 224.676494][ T41] team0 (unregistering): Port device team_slave_1 removed [ 224.686750][ T41] team0 (unregistering): Port device team_slave_0 removed [ 224.921699][ T41] team0 (unregistering): Port device team_slave_1 removed [ 224.931765][ T41] team0 (unregistering): Port device team_slave_0 removed [ 225.148178][ T41] team0 (unregistering): Port device team_slave_1 removed [ 225.159452][ T41] team0 (unregistering): Port device team_slave_0 removed [ 225.304402][ T6571] Bluetooth: hci0: command tx timeout [ 225.374936][ T41] team0 (unregistering): Port device team_slave_1 removed [ 225.385037][ T41] team0 (unregistering): Port device team_slave_0 removed [ 225.594373][ T41] team0 (unregistering): Port device team_slave_1 removed [ 225.604293][ T41] team0 (unregistering): Port device team_slave_0 removed [ 225.828403][ T41] team0 (unregistering): Port device team_slave_1 removed [ 225.838394][ T41] team0 (unregistering): Port device team_slave_0 removed [ 225.953603][ T6571] Bluetooth: hci3: command tx timeout [ 225.970961][ T7000] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 225.970988][ T7000] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 225.977185][T14304] team0: Port device team_slave_0 added [ 226.013823][T14304] team0: Port device team_slave_1 added [ 226.037040][T14147] 8021q: adding VLAN 0 to HW filter on device bond0 [ 226.039834][T14147] 8021q: adding VLAN 0 to HW filter on device team0 [ 226.056675][T14304] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 226.056700][T14304] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 226.056713][T14304] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 226.074524][ T7736] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 226.074558][ T7736] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 226.086651][T14304] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 226.086678][T14304] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 226.086694][T14304] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 226.100928][ T541] bridge0: port 1(bridge_slave_0) entered blocking state [ 226.100970][ T541] bridge0: port 1(bridge_slave_0) entered forwarding state [ 226.101441][ T541] bridge0: port 2(bridge_slave_1) entered blocking state [ 226.101456][ T541] bridge0: port 2(bridge_slave_1) entered forwarding state [ 226.115473][ T6571] Bluetooth: hci1: command tx timeout [ 226.135476][T14304] hsr_slave_0: entered promiscuous mode [ 226.147157][T14304] hsr_slave_1: entered promiscuous mode [ 226.147535][T14304] debugfs: 'hsr0' already exists in 'hsr' [ 226.147563][T14304] Cannot create hsr debugfs directory [ 226.165045][ T6670] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 226.165522][ T6670] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 226.165731][ T6670] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 226.166011][ T6670] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 226.166198][ T6670] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 1970/01/01 00:03:46 executed programs: 359 [ 226.267931][T14435] loop8: detected capacity change from 0 to 4096 [ 226.298533][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 226.298557][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 226.434203][ T7736] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 226.436359][ T7736] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 226.510718][T14100] ntfs3(loop8): ino=1e, mi_enum_attr [ 226.511761][T14100] ntfs3(loop8): Mark volume as dirty due to NTFS errors [ 226.555145][T14100] ntfs3(loop8): ino=1e, mi_enum_attr [ 226.556503][T14100] ntfs3(loop8): ino=1e, mi_enum_attr [ 226.566540][T14452] loop0: detected capacity change from 0 to 4096 [ 226.581761][T14304] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 226.674968][T14147] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 226.682451][T14147] veth0_vlan: entered promiscuous mode [ 226.725914][T14423] chnl_net:caif_netlink_parms(): no params data found [ 226.762833][T14150] ntfs3(loop0): ino=1e, mi_enum_attr [ 226.762878][T14150] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 226.769733][T14150] ntfs3(loop0): ino=1e, mi_enum_attr [ 226.769835][T14150] ntfs3(loop0): ino=1e, mi_enum_attr [ 226.785757][T14304] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 226.801668][T14147] veth1_vlan: entered promiscuous mode [ 226.837507][T14147] veth0_macvtap: entered promiscuous mode [ 226.838485][T14147] veth1_macvtap: entered promiscuous mode [ 226.909113][T14304] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 226.920556][T14147] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 226.921506][T14147] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 226.928027][T14423] bridge0: port 1(bridge_slave_0) entered blocking state [ 226.928178][T14423] bridge0: port 1(bridge_slave_0) entered disabled state [ 226.928306][T14423] bridge_slave_0: entered allmulticast mode [ 226.928782][T14423] bridge_slave_0: entered promiscuous mode [ 226.929695][ T845] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 226.929750][ T845] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 226.929778][ T845] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 226.929793][ T845] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 226.930050][T14423] bridge0: port 2(bridge_slave_1) entered blocking state [ 226.930073][T14423] bridge0: port 2(bridge_slave_1) entered disabled state [ 226.930145][T14423] bridge_slave_1: entered allmulticast mode [ 226.930633][T14423] bridge_slave_1: entered promiscuous mode [ 226.971663][T14304] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 226.982041][T14423] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 227.001419][T14423] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 227.023061][ T7736] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 227.023088][ T7736] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 227.036402][T14423] team0: Port device team_slave_0 added [ 227.038729][T14423] team0: Port device team_slave_1 added [ 227.047270][ T845] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 227.047300][ T845] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 227.056401][T14423] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 227.056431][T14423] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 227.056456][T14423] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 227.060384][T14423] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 227.060396][T14423] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 227.060415][T14423] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 227.134554][T14423] hsr_slave_0: entered promiscuous mode [ 227.135028][T14423] hsr_slave_1: entered promiscuous mode [ 227.136764][T14423] debugfs: 'hsr0' already exists in 'hsr' [ 227.136804][T14423] Cannot create hsr debugfs directory [ 227.140218][T14489] loop1: detected capacity change from 0 to 4096 [ 227.157465][T14304] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 227.181154][T14304] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 227.189209][T14304] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 227.216101][T14304] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 227.324460][T14147] ntfs3(loop1): ino=1e, mi_enum_attr [ 227.324493][T14147] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 227.327867][T14147] ntfs3(loop1): ino=1e, mi_enum_attr [ 227.327987][T14147] ntfs3(loop1): ino=1e, mi_enum_attr [ 227.370856][T14304] 8021q: adding VLAN 0 to HW filter on device bond0 [ 227.372689][ T6670] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 227.373732][ T6670] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 227.374544][ T6670] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 227.374867][ T6670] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 227.375053][ T6670] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 227.413771][T14423] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 227.441434][ T6670] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 227.447382][ T6670] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 227.453021][ T6670] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 227.460045][ T6670] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 227.465601][ T6670] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 227.492367][T14304] 8021q: adding VLAN 0 to HW filter on device team0 [ 227.501773][ T541] bridge0: port 1(bridge_slave_0) entered blocking state [ 227.501819][ T541] bridge0: port 1(bridge_slave_0) entered forwarding state [ 227.512273][T14423] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 227.522256][T14152] bridge0: port 2(bridge_slave_1) entered blocking state [ 227.522299][T14152] bridge0: port 2(bridge_slave_1) entered forwarding state [ 227.570236][T14304] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 227.612753][T14423] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 227.700840][T14514] chnl_net:caif_netlink_parms(): no params data found [ 227.709930][T14304] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 227.750188][T14524] chnl_net:caif_netlink_parms(): no params data found [ 227.759743][T14514] bridge0: port 1(bridge_slave_0) entered blocking state [ 227.759839][T14514] bridge0: port 1(bridge_slave_0) entered disabled state [ 227.759924][T14514] bridge_slave_0: entered allmulticast mode [ 227.760377][T14514] bridge_slave_0: entered promiscuous mode [ 227.769704][T14423] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 227.775653][T14514] bridge0: port 2(bridge_slave_1) entered blocking state [ 227.777025][T14514] bridge0: port 2(bridge_slave_1) entered disabled state [ 227.778364][T14514] bridge_slave_1: entered allmulticast mode [ 227.779806][T14514] bridge_slave_1: entered promiscuous mode [ 227.796462][T14304] veth0_vlan: entered promiscuous mode [ 227.811419][T14514] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 227.812464][T14514] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 227.823139][T14514] team0: Port device team_slave_0 added [ 227.832307][T14514] team0: Port device team_slave_1 added [ 227.835438][T14304] veth1_vlan: entered promiscuous mode [ 227.857502][T14524] bridge0: port 1(bridge_slave_0) entered blocking state [ 227.857576][T14524] bridge0: port 1(bridge_slave_0) entered disabled state [ 227.857657][T14524] bridge_slave_0: entered allmulticast mode [ 227.858125][T14524] bridge_slave_0: entered promiscuous mode [ 227.858832][T14524] bridge0: port 2(bridge_slave_1) entered blocking state [ 227.858848][T14524] bridge0: port 2(bridge_slave_1) entered disabled state [ 227.858916][T14524] bridge_slave_1: entered allmulticast mode [ 227.859341][T14524] bridge_slave_1: entered promiscuous mode [ 227.875533][T14514] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 227.876355][T14514] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 227.876382][T14514] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 227.878511][T14514] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 227.878519][T14514] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 227.878534][T14514] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 227.909488][T14304] veth0_macvtap: entered promiscuous mode [ 227.910495][T14304] veth1_macvtap: entered promiscuous mode [ 227.916367][T14514] hsr_slave_0: entered promiscuous mode [ 227.917795][T14514] hsr_slave_1: entered promiscuous mode [ 227.919061][T14514] debugfs: 'hsr0' already exists in 'hsr' [ 227.920039][T14514] Cannot create hsr debugfs directory [ 227.925021][T14524] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 227.926082][T14524] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 227.934103][T14423] netdevsim netdevsim9 netdevsim0: renamed from eth0 [ 227.936679][T14423] netdevsim netdevsim9 netdevsim1: renamed from eth1 [ 227.939011][T14423] netdevsim netdevsim9 netdevsim2: renamed from eth2 [ 227.941403][T14423] netdevsim netdevsim9 netdevsim3: renamed from eth3 [ 227.944634][T14524] team0: Port device team_slave_0 added [ 227.945487][T14524] team0: Port device team_slave_1 added [ 227.976295][T14524] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 227.977538][T14524] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 227.981511][T14524] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 227.994535][T14524] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 227.995784][T14524] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 227.996583][T14524] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 228.008011][T14304] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 228.027682][T14304] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 228.039205][T14524] hsr_slave_0: entered promiscuous mode [ 228.039539][T14524] hsr_slave_1: entered promiscuous mode [ 228.039734][T14524] debugfs: 'hsr0' already exists in 'hsr' [ 228.039745][T14524] Cannot create hsr debugfs directory [ 228.052678][ T7000] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 228.053713][ T7000] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 228.053741][ T7000] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 228.053758][ T7000] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 228.091070][T14423] 8021q: adding VLAN 0 to HW filter on device bond0 [ 228.116125][T14514] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 228.128346][ T7000] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 228.128366][ T7000] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 228.151605][T14423] 8021q: adding VLAN 0 to HW filter on device team0 [ 228.164204][ T7736] bridge0: port 1(bridge_slave_0) entered blocking state [ 228.164238][ T7736] bridge0: port 1(bridge_slave_0) entered forwarding state [ 228.172535][ T845] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 228.172560][ T845] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 228.174335][ T541] bridge0: port 2(bridge_slave_1) entered blocking state [ 228.174361][ T541] bridge0: port 2(bridge_slave_1) entered forwarding state [ 228.183386][ T6571] Bluetooth: hci4: command tx timeout [ 228.183411][ T6670] Bluetooth: hci1: command tx timeout [ 228.186877][T14423] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 228.186922][T14423] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 228.221195][T14514] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 228.257613][T14423] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 228.269649][T14576] loop3: detected capacity change from 0 to 4096 [ 228.298458][T14514] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 228.379568][T14514] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 228.383310][T14423] veth0_vlan: entered promiscuous mode [ 228.387679][T14423] veth1_vlan: entered promiscuous mode [ 228.408383][T14423] veth0_macvtap: entered promiscuous mode [ 228.409742][T14423] veth1_macvtap: entered promiscuous mode [ 228.422653][ T6670] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 228.429016][T14423] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 228.432253][T14423] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 228.433873][ T6670] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 228.436551][T14152] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 228.437803][ T12] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 228.437857][ T12] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 228.437971][ T12] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 228.442246][ T6670] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 228.450085][ T6670] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 228.451684][ T6670] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 228.481282][T14304] ntfs3(loop3): ino=1e, mi_enum_attr [ 228.481313][T14304] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 228.484946][T14304] ntfs3(loop3): ino=1e, mi_enum_attr [ 228.485045][T14304] ntfs3(loop3): ino=1e, mi_enum_attr [ 228.505424][ T541] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 228.505453][ T541] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 228.522646][T14152] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 228.522683][T14152] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 228.610312][T14592] loop9: detected capacity change from 0 to 4096 [ 228.629609][T14585] chnl_net:caif_netlink_parms(): no params data found [ 228.746545][T14514] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 228.747979][T14514] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 228.756608][T14423] ntfs3(loop9): ino=1e, mi_enum_attr [ 228.757527][T14423] ntfs3(loop9): Mark volume as dirty due to NTFS errors [ 228.760255][T14423] ntfs3(loop9): ino=1e, mi_enum_attr [ 228.761309][T14423] ntfs3(loop9): ino=1e, mi_enum_attr [ 228.791839][T14524] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 228.798338][T14514] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 228.847572][T14514] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 228.944762][T14524] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 228.949798][T14585] bridge0: port 1(bridge_slave_0) entered blocking state [ 228.949893][T14585] bridge0: port 1(bridge_slave_0) entered disabled state [ 228.949988][T14585] bridge_slave_0: entered allmulticast mode [ 228.950466][T14585] bridge_slave_0: entered promiscuous mode [ 228.951454][T14585] bridge0: port 2(bridge_slave_1) entered blocking state [ 228.951476][T14585] bridge0: port 2(bridge_slave_1) entered disabled state [ 228.951558][T14585] bridge_slave_1: entered allmulticast mode [ 228.952010][T14585] bridge_slave_1: entered promiscuous mode [ 228.972944][T14585] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 228.987968][T14585] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 229.020976][T14585] team0: Port device team_slave_0 added [ 229.024523][T14585] team0: Port device team_slave_1 added [ 229.036706][T14524] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 229.046221][T14585] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 229.047546][T14585] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 229.047581][T14585] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 229.048285][T14585] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 229.048302][T14585] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 229.048321][T14585] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 229.075202][T14585] hsr_slave_0: entered promiscuous mode [ 229.075593][T14585] hsr_slave_1: entered promiscuous mode [ 229.075824][T14585] debugfs: 'hsr0' already exists in 'hsr' [ 229.075836][T14585] Cannot create hsr debugfs directory [ 229.079620][T14514] 8021q: adding VLAN 0 to HW filter on device bond0 [ 229.105926][T14524] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 229.463633][ T6670] Bluetooth: hci2: command tx timeout [ 229.543309][ T6670] Bluetooth: hci3: command tx timeout [ 229.616297][T14514] 8021q: adding VLAN 0 to HW filter on device team0 [ 229.955833][ T845] bridge0: port 1(bridge_slave_0) entered blocking state [ 229.955883][ T845] bridge0: port 1(bridge_slave_0) entered forwarding state [ 230.513296][ T6670] Bluetooth: hci0: command tx timeout [ 230.697527][ T6571] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 230.699501][ T6571] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 230.700974][ T6571] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 230.702731][ T6571] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 230.703644][ T6571] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 230.945343][ T7000] bridge0: port 2(bridge_slave_1) entered blocking state [ 230.945386][ T7000] bridge0: port 2(bridge_slave_1) entered forwarding state [ 230.980183][ T41] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.011323][T14524] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 231.020167][T14524] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 231.030207][T14585] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.040702][T14524] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 231.042968][T14524] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 231.049157][ T41] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.087085][T14585] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.092255][T14605] chnl_net:caif_netlink_parms(): no params data found [ 231.128152][ T41] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.142199][T14605] bridge0: port 1(bridge_slave_0) entered blocking state [ 231.143265][T14605] bridge0: port 1(bridge_slave_0) entered disabled state [ 231.143365][T14605] bridge_slave_0: entered allmulticast mode [ 231.143854][T14605] bridge_slave_0: entered promiscuous mode [ 231.151110][T14585] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.157771][T14514] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 231.162306][T14605] bridge0: port 2(bridge_slave_1) entered blocking state [ 231.162330][T14605] bridge0: port 2(bridge_slave_1) entered disabled state [ 231.162404][T14605] bridge_slave_1: entered allmulticast mode [ 231.162889][T14605] bridge_slave_1: entered promiscuous mode [ 231.182400][ T41] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.186231][T14605] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 231.188571][T14605] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 231.191189][T14524] 8021q: adding VLAN 0 to HW filter on device bond0 [ 231.210498][T14605] team0: Port device team_slave_0 added [ 231.211281][T14605] team0: Port device team_slave_1 added [ 231.219912][T14585] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.230453][T14605] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 231.230477][T14605] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 231.230793][T14605] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 231.231896][T14605] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 231.231904][T14605] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 231.231918][T14605] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 231.252378][T14524] 8021q: adding VLAN 0 to HW filter on device team0 [ 231.272880][ T6670] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 231.275147][ T6670] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 231.275540][ T42] bridge0: port 1(bridge_slave_0) entered blocking state [ 231.275563][ T42] bridge0: port 1(bridge_slave_0) entered forwarding state [ 231.276553][ T42] bridge0: port 2(bridge_slave_1) entered blocking state [ 231.276572][ T42] bridge0: port 2(bridge_slave_1) entered forwarding state [ 231.277468][ T6670] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 231.295021][ T6670] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 231.298223][T14605] hsr_slave_0: entered promiscuous mode [ 231.298282][ T6670] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 1970/01/01 00:03:51 executed programs: 373 [ 231.315054][T14605] hsr_slave_1: entered promiscuous mode [ 231.315364][T14605] debugfs: 'hsr0' already exists in 'hsr' [ 231.315377][T14605] Cannot create hsr debugfs directory [ 231.358402][T14514] veth0_vlan: entered promiscuous mode [ 231.369103][ T41] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.407007][T14514] veth1_vlan: entered promiscuous mode [ 231.420038][T14524] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 231.431497][ T41] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.464333][ T41] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.503145][T14585] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 231.506275][T14585] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 231.508073][T14585] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 231.545634][ T6670] Bluetooth: hci2: command tx timeout [ 231.548492][ T41] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.563472][T14585] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 231.577880][T14605] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.587473][T14514] veth0_macvtap: entered promiscuous mode [ 231.588446][T14514] veth1_macvtap: entered promiscuous mode [ 231.591397][T14514] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 231.592321][T14514] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 231.608239][ T42] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 231.608293][ T42] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 231.608324][ T42] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 231.608347][ T42] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 231.624212][ T6670] Bluetooth: hci3: command tx timeout [ 231.641766][T14524] veth0_vlan: entered promiscuous mode [ 231.646060][T14524] veth1_vlan: entered promiscuous mode [ 231.689071][T14524] veth0_macvtap: entered promiscuous mode [ 231.690017][T14524] veth1_macvtap: entered promiscuous mode [ 231.697127][T14605] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.715892][T14634] chnl_net:caif_netlink_parms(): no params data found [ 231.759217][T14605] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.761882][T14524] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 231.771166][ T845] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 231.771195][ T845] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 231.797532][ T41] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.806995][T14524] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 231.829190][T14605] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.851047][ T845] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 231.852589][ T845] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 231.858849][ T845] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 231.858967][ T845] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 231.858979][ T845] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 231.880172][ T41] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.894307][ T845] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 231.902055][T14634] bridge0: port 1(bridge_slave_0) entered blocking state [ 231.904108][T14634] bridge0: port 1(bridge_slave_0) entered disabled state [ 231.905462][T14634] bridge_slave_0: entered allmulticast mode [ 231.906958][T14634] bridge_slave_0: entered promiscuous mode [ 231.925866][T14634] bridge0: port 2(bridge_slave_1) entered blocking state [ 231.925967][T14634] bridge0: port 2(bridge_slave_1) entered disabled state [ 231.926113][T14634] bridge_slave_1: entered allmulticast mode [ 231.930392][T14634] bridge_slave_1: entered promiscuous mode [ 231.952462][ T41] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.991047][T14691] loop7: detected capacity change from 0 to 4096 [ 231.995368][T14634] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 231.996433][T14634] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 232.056578][T14634] team0: Port device team_slave_0 added [ 232.057457][T14634] team0: Port device team_slave_1 added [ 232.077994][ T41] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.101398][T14634] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 232.101428][T14634] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 232.101442][T14634] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 232.101995][T14634] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 232.102000][T14634] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 232.102009][T14634] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 232.178354][T14634] hsr_slave_0: entered promiscuous mode [ 232.178779][T14634] hsr_slave_1: entered promiscuous mode [ 232.183047][T14634] debugfs: 'hsr0' already exists in 'hsr' [ 232.183085][T14634] Cannot create hsr debugfs directory [ 232.185101][T14585] 8021q: adding VLAN 0 to HW filter on device bond0 [ 232.188018][T14585] 8021q: adding VLAN 0 to HW filter on device team0 [ 232.205586][T14514] ntfs3(loop7): ino=1e, mi_enum_attr [ 232.206640][T14514] ntfs3(loop7): Mark volume as dirty due to NTFS errors [ 232.215962][T14514] ntfs3(loop7): ino=1e, mi_enum_attr [ 232.218977][T14514] ntfs3(loop7): ino=1e, mi_enum_attr [ 232.221960][ T845] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 232.221991][ T845] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 232.235279][T14605] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 232.239034][T14605] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 232.245143][ T934] bridge0: port 1(bridge_slave_0) entered blocking state [ 232.245178][ T934] bridge0: port 1(bridge_slave_0) entered forwarding state [ 232.248470][ T934] bridge0: port 2(bridge_slave_1) entered blocking state [ 232.248502][ T934] bridge0: port 2(bridge_slave_1) entered forwarding state [ 232.269762][T14605] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 232.271254][ T845] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 232.271276][ T845] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 232.277144][T14605] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 232.291556][T14585] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 232.291589][T14585] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 232.319810][ T41] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.387399][ T41] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.398268][T14585] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 232.475248][ T41] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.480645][T14719] loop4: detected capacity change from 0 to 4096 [ 232.493885][T14605] 8021q: adding VLAN 0 to HW filter on device bond0 [ 232.536663][ T41] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.580238][T14585] veth0_vlan: entered promiscuous mode [ 232.581857][T14585] veth1_vlan: entered promiscuous mode [ 232.587547][ T6670] Bluetooth: hci0: command tx timeout [ 232.594961][T14605] 8021q: adding VLAN 0 to HW filter on device team0 [ 232.609802][ T845] bridge0: port 1(bridge_slave_0) entered blocking state [ 232.609841][ T845] bridge0: port 1(bridge_slave_0) entered forwarding state [ 232.613074][ T845] bridge0: port 2(bridge_slave_1) entered blocking state [ 232.613102][ T845] bridge0: port 2(bridge_slave_1) entered forwarding state [ 232.621182][T14585] veth0_macvtap: entered promiscuous mode [ 232.622181][T14585] veth1_macvtap: entered promiscuous mode [ 232.667241][T14585] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 232.668212][T14585] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 232.704425][ T541] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.704493][ T541] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.704520][ T541] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.704537][ T541] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.743586][ T6670] Bluetooth: hci1: command tx timeout [ 232.758216][T14524] ntfs3(loop4): ino=1e, mi_enum_attr [ 232.758252][T14524] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 232.760257][T14524] ntfs3(loop4): ino=1e, mi_enum_attr [ 232.760373][T14524] ntfs3(loop4): ino=1e, mi_enum_attr [ 232.761244][ T6571] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 232.763375][ T6571] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 232.767193][ T6571] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 232.771067][ T6571] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 232.771351][ T6571] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 232.791906][ T41] bridge_slave_1: left allmulticast mode [ 232.792930][ T41] bridge_slave_1: left promiscuous mode [ 232.794441][ T41] bridge0: port 2(bridge_slave_1) entered disabled state [ 232.796925][ T41] bridge_slave_0: left allmulticast mode [ 232.797889][ T41] bridge_slave_0: left promiscuous mode [ 232.798961][ T41] bridge0: port 1(bridge_slave_0) entered disabled state [ 232.801759][ T41] bridge_slave_1: left allmulticast mode [ 232.802722][ T41] bridge_slave_1: left promiscuous mode [ 232.803935][ T41] bridge0: port 2(bridge_slave_1) entered disabled state [ 232.806041][ T41] bridge_slave_0: left allmulticast mode [ 232.806982][ T41] bridge_slave_0: left promiscuous mode [ 232.807977][ T41] bridge0: port 1(bridge_slave_0) entered disabled state [ 232.810544][ T41] bridge_slave_1: left allmulticast mode [ 232.811490][ T41] bridge_slave_1: left promiscuous mode [ 232.812525][ T41] bridge0: port 2(bridge_slave_1) entered disabled state [ 232.815696][ T41] bridge_slave_0: left allmulticast mode [ 232.816888][ T41] bridge_slave_0: left promiscuous mode [ 232.816964][ T41] bridge0: port 1(bridge_slave_0) entered disabled state [ 232.822951][ T41] bridge_slave_1: left allmulticast mode [ 232.826389][ T41] bridge_slave_1: left promiscuous mode [ 232.827464][ T41] bridge0: port 2(bridge_slave_1) entered disabled state [ 232.830325][ T41] bridge_slave_0: left allmulticast mode [ 232.831224][ T41] bridge_slave_0: left promiscuous mode [ 232.832262][ T41] bridge0: port 1(bridge_slave_0) entered disabled state [ 232.836729][ T41] bridge_slave_1: left allmulticast mode [ 232.837664][ T41] bridge_slave_1: left promiscuous mode [ 232.838708][ T41] bridge0: port 2(bridge_slave_1) entered disabled state [ 232.840711][ T41] bridge_slave_0: left allmulticast mode [ 232.841659][ T41] bridge_slave_0: left promiscuous mode [ 232.842670][ T41] bridge0: port 1(bridge_slave_0) entered disabled state [ 232.847442][ T41] bridge_slave_1: left allmulticast mode [ 232.848369][ T41] bridge_slave_1: left promiscuous mode [ 232.849360][ T41] bridge0: port 2(bridge_slave_1) entered disabled state [ 232.851391][ T41] bridge_slave_0: left allmulticast mode [ 232.851409][ T41] bridge_slave_0: left promiscuous mode [ 232.851458][ T41] bridge0: port 1(bridge_slave_0) entered disabled state [ 232.858382][ T41] bridge_slave_1: left allmulticast mode [ 232.858416][ T41] bridge_slave_1: left promiscuous mode [ 232.858500][ T41] bridge0: port 2(bridge_slave_1) entered disabled state [ 232.863883][ T41] bridge_slave_0: left allmulticast mode [ 232.863902][ T41] bridge_slave_0: left promiscuous mode [ 232.863967][ T41] bridge0: port 1(bridge_slave_0) entered disabled state [ 232.868279][ T41] bridge_slave_1: left allmulticast mode [ 232.868301][ T41] bridge_slave_1: left promiscuous mode [ 232.868352][ T41] bridge0: port 2(bridge_slave_1) entered disabled state [ 232.870324][ T41] bridge_slave_0: left allmulticast mode [ 232.870331][ T41] bridge_slave_0: left promiscuous mode [ 232.870377][ T41] bridge0: port 1(bridge_slave_0) entered disabled state [ 232.872965][ T41] bridge_slave_1: left allmulticast mode [ 232.872976][ T41] bridge_slave_1: left promiscuous mode [ 232.873032][ T41] bridge0: port 2(bridge_slave_1) entered disabled state [ 232.878138][ T41] bridge_slave_0: left allmulticast mode [ 232.878156][ T41] bridge_slave_0: left promiscuous mode [ 232.878220][ T41] bridge0: port 1(bridge_slave_0) entered disabled state [ 232.881621][ T41] bridge_slave_1: left allmulticast mode [ 232.881639][ T41] bridge_slave_1: left promiscuous mode [ 232.881693][ T41] bridge0: port 2(bridge_slave_1) entered disabled state [ 232.887263][ T41] bridge_slave_0: left allmulticast mode [ 232.887289][ T41] bridge_slave_0: left promiscuous mode [ 232.887347][ T41] bridge0: port 1(bridge_slave_0) entered disabled state [ 233.303301][ T6571] Bluetooth: hci4: command tx timeout [ 233.860795][ T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 233.884525][ T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 233.894226][ T41] bond0 (unregistering): Released all slaves [ 233.990574][ T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 234.027777][ T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 234.034241][ T41] bond0 (unregistering): Released all slaves [ 234.137817][ T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 234.165041][ T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 234.184693][ T41] bond0 (unregistering): Released all slaves [ 234.289606][ T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 234.317343][ T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 234.354245][ T41] bond0 (unregistering): Released all slaves [ 234.469737][ T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 234.505623][ T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 234.554415][ T41] bond0 (unregistering): Released all slaves [ 234.663315][ T6571] Bluetooth: hci0: command tx timeout [ 234.698248][ T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 234.714795][ T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 234.745199][ T41] bond0 (unregistering): Released all slaves [ 234.823693][ T6571] Bluetooth: hci2: command tx timeout [ 234.823717][ T6670] Bluetooth: hci1: command tx timeout [ 234.869926][ T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 234.894479][ T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 234.914039][ T41] bond0 (unregistering): Released all slaves [ 235.010280][ T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 235.024686][ T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 235.044327][ T41] bond0 (unregistering): Released all slaves [ 235.142491][ T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 235.154750][ T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 235.184148][ T41] bond0 (unregistering): Released all slaves [ 235.301364][ T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 235.314473][ T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 235.364104][ T41] bond0 (unregistering): Released all slaves [ 235.384039][ T6571] Bluetooth: hci4: command tx timeout [ 235.502616][ T845] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 235.502653][ T845] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 235.589043][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 235.590860][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 235.672425][ T6670] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 235.674742][ T6670] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 235.676134][ T6670] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 235.677624][ T6670] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 235.677845][ T6670] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 235.708465][T14764] loop2: detected capacity change from 0 to 4096 [ 235.732791][T14605] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 235.862423][T14737] chnl_net:caif_netlink_parms(): no params data found [ 235.913903][T14585] ntfs3(loop2): ino=1e, mi_enum_attr [ 235.913935][T14585] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 235.924560][T14585] ntfs3(loop2): ino=1e, mi_enum_attr [ 235.925699][T14585] ntfs3(loop2): ino=1e, mi_enum_attr [ 236.042043][T14634] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 236.044565][T14634] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 236.047651][T14634] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 236.090138][T14737] bridge0: port 1(bridge_slave_0) entered blocking state [ 236.091542][T14737] bridge0: port 1(bridge_slave_0) entered disabled state [ 236.092993][T14737] bridge_slave_0: entered allmulticast mode [ 236.095107][T14737] bridge_slave_0: entered promiscuous mode [ 236.096815][T14634] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 236.161318][T14737] bridge0: port 2(bridge_slave_1) entered blocking state [ 236.161365][T14737] bridge0: port 2(bridge_slave_1) entered disabled state [ 236.161497][T14737] bridge_slave_1: entered allmulticast mode [ 236.161974][T14737] bridge_slave_1: entered promiscuous mode [ 236.192350][T14737] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 236.200695][T14737] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 236.220856][T14737] team0: Port device team_slave_0 added [ 236.221775][T14737] team0: Port device team_slave_1 added [ 236.245213][T14737] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 236.246422][T14737] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 236.250757][T14737] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 236.276291][T14605] veth0_vlan: entered promiscuous mode [ 236.288857][T14737] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 236.290106][T14737] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 236.294157][T14737] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 236.382185][T14605] veth1_vlan: entered promiscuous mode [ 236.391546][T14737] hsr_slave_0: entered promiscuous mode [ 236.392949][T14737] hsr_slave_1: entered promiscuous mode [ 236.394353][T14737] debugfs: 'hsr0' already exists in 'hsr' [ 236.395335][T14737] Cannot create hsr debugfs directory [ 236.413470][T14760] chnl_net:caif_netlink_parms(): no params data found [ 236.430832][T14605] veth0_macvtap: entered promiscuous mode [ 236.431865][T14605] veth1_macvtap: entered promiscuous mode [ 236.473127][ T6571] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 236.474571][ T6571] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 236.474801][ T6571] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 236.475268][ T6571] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 236.476014][ T6571] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 1970/01/01 00:03:56 executed programs: 382 [ 236.560099][T14605] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 236.561992][T14605] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 236.563737][ T845] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 236.563868][ T845] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 236.563889][ T845] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 236.563902][ T845] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 236.652259][T14760] bridge0: port 1(bridge_slave_0) entered blocking state [ 236.653640][T14760] bridge0: port 1(bridge_slave_0) entered disabled state [ 236.655101][T14760] bridge_slave_0: entered allmulticast mode [ 236.657515][T14760] bridge_slave_0: entered promiscuous mode [ 236.696169][T14760] bridge0: port 2(bridge_slave_1) entered blocking state [ 236.696216][T14760] bridge0: port 2(bridge_slave_1) entered disabled state [ 236.696461][T14760] bridge_slave_1: entered allmulticast mode [ 236.696963][T14760] bridge_slave_1: entered promiscuous mode [ 236.734505][T14760] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 236.737461][T14760] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 236.808653][T14634] 8021q: adding VLAN 0 to HW filter on device bond0 [ 236.810596][T14760] team0: Port device team_slave_0 added [ 236.812574][T14760] team0: Port device team_slave_1 added [ 236.847976][T14760] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 236.849174][T14760] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 236.862350][T14760] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 236.872863][ T934] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 236.875519][ T934] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 236.877090][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 236.877100][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 236.903562][ T6670] Bluetooth: hci1: command tx timeout [ 236.903696][ T6670] Bluetooth: hci2: command tx timeout [ 236.906415][T14760] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 236.906452][T14760] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 236.906467][T14760] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 236.922517][T14634] 8021q: adding VLAN 0 to HW filter on device team0 [ 236.941158][T14760] hsr_slave_0: entered promiscuous mode [ 236.946493][T14760] hsr_slave_1: entered promiscuous mode [ 236.947751][T14760] debugfs: 'hsr0' already exists in 'hsr' [ 236.948756][T14760] Cannot create hsr debugfs directory [ 237.011967][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 237.012017][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 237.027405][T14815] chnl_net:caif_netlink_parms(): no params data found [ 237.038107][T14843] loop5: detected capacity change from 0 to 4096 [ 237.183119][ T42] bridge0: port 2(bridge_slave_1) entered blocking state [ 237.183194][ T42] bridge0: port 2(bridge_slave_1) entered forwarding state [ 237.272407][T14605] ntfs3(loop5): ino=1e, mi_enum_attr [ 237.272445][T14605] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 237.275166][T14605] ntfs3(loop5): ino=1e, mi_enum_attr [ 237.275275][T14605] ntfs3(loop5): ino=1e, mi_enum_attr [ 237.327848][T14815] bridge0: port 1(bridge_slave_0) entered blocking state [ 237.327917][T14815] bridge0: port 1(bridge_slave_0) entered disabled state [ 237.328021][T14815] bridge_slave_0: entered allmulticast mode [ 237.328514][T14815] bridge_slave_0: entered promiscuous mode [ 237.329204][T14815] bridge0: port 2(bridge_slave_1) entered blocking state [ 237.329224][T14815] bridge0: port 2(bridge_slave_1) entered disabled state [ 237.329291][T14815] bridge_slave_1: entered allmulticast mode [ 237.329735][T14815] bridge_slave_1: entered promiscuous mode [ 237.367310][T14815] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 237.433733][T14815] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 237.459470][T14815] team0: Port device team_slave_0 added [ 237.461354][T14815] team0: Port device team_slave_1 added [ 237.465008][ T6571] Bluetooth: hci4: command tx timeout [ 237.505463][T14815] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 237.505492][T14815] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 237.505516][T14815] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 237.508600][T14815] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 237.508609][T14815] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 237.508624][T14815] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 237.572190][T14815] hsr_slave_0: entered promiscuous mode [ 237.572533][T14815] hsr_slave_1: entered promiscuous mode [ 237.572742][T14815] debugfs: 'hsr0' already exists in 'hsr' [ 237.572752][T14815] Cannot create hsr debugfs directory [ 237.603764][T14737] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 237.679136][T14737] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 237.682356][T14737] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 237.705371][ T6571] Bluetooth: hci3: command tx timeout [ 237.735258][T14737] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 237.861654][ T6670] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 237.864264][ T6670] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 237.864928][ T6670] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 237.865805][ T6670] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 237.865998][ T6670] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 237.963115][T14634] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 238.032052][T14737] 8021q: adding VLAN 0 to HW filter on device bond0 [ 238.047103][T14737] 8021q: adding VLAN 0 to HW filter on device team0 [ 238.050646][ T845] bridge0: port 1(bridge_slave_0) entered blocking state [ 238.050694][ T845] bridge0: port 1(bridge_slave_0) entered forwarding state [ 238.060025][ T845] bridge0: port 2(bridge_slave_1) entered blocking state [ 238.060069][ T845] bridge0: port 2(bridge_slave_1) entered forwarding state [ 238.261444][T14634] veth0_vlan: entered promiscuous mode [ 238.262858][T14888] chnl_net:caif_netlink_parms(): no params data found [ 238.320280][T14737] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 238.341598][T14760] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 238.378698][T14760] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 238.419284][T14760] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 238.451381][T14634] veth1_vlan: entered promiscuous mode [ 238.453419][T14888] bridge0: port 1(bridge_slave_0) entered blocking state [ 238.453467][T14888] bridge0: port 1(bridge_slave_0) entered disabled state [ 238.453605][T14888] bridge_slave_0: entered allmulticast mode [ 238.454091][T14888] bridge_slave_0: entered promiscuous mode [ 238.454786][T14888] bridge0: port 2(bridge_slave_1) entered blocking state [ 238.454805][T14888] bridge0: port 2(bridge_slave_1) entered disabled state [ 238.454879][T14888] bridge_slave_1: entered allmulticast mode [ 238.455305][T14888] bridge_slave_1: entered promiscuous mode [ 238.467104][T14888] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 238.467459][T14760] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 238.501822][T14888] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 238.503684][ T6571] Bluetooth: hci0: command tx timeout [ 238.545842][T14888] team0: Port device team_slave_0 added [ 238.601122][T14888] team0: Port device team_slave_1 added [ 238.615019][T14888] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 238.615045][T14888] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 238.615057][T14888] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 238.616340][T14888] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 238.616349][T14888] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 238.616366][T14888] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 238.645609][T14888] hsr_slave_0: entered promiscuous mode [ 238.647074][T14888] hsr_slave_1: entered promiscuous mode [ 238.648414][T14888] debugfs: 'hsr0' already exists in 'hsr' [ 238.649361][T14888] Cannot create hsr debugfs directory [ 238.690048][T14634] veth0_macvtap: entered promiscuous mode [ 238.745982][T14634] veth1_macvtap: entered promiscuous mode [ 238.751689][T14737] veth0_vlan: entered promiscuous mode [ 238.779702][T14634] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 238.783802][T14634] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 238.789579][T14815] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 238.828463][T14815] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 238.830846][T14815] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 238.833124][T14815] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 238.843422][ T541] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 238.844967][ T541] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 238.846227][ T541] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 238.846257][ T541] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 238.850880][T14737] veth1_vlan: entered promiscuous mode [ 238.871559][T14888] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 238.946018][ T541] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 238.946050][ T541] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 238.959928][T14888] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 238.968080][T14737] veth0_macvtap: entered promiscuous mode [ 238.970170][T14737] veth1_macvtap: entered promiscuous mode [ 238.978827][T14760] 8021q: adding VLAN 0 to HW filter on device bond0 [ 238.983409][ T6571] Bluetooth: hci2: command tx timeout [ 239.008893][ T41] hsr_slave_0: left promiscuous mode [ 239.009787][ T41] hsr_slave_1: left promiscuous mode [ 239.010047][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 239.010055][ T41] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 239.011018][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 239.011028][ T41] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 239.016022][ T41] hsr_slave_0: left promiscuous mode [ 239.016847][ T41] hsr_slave_1: left promiscuous mode [ 239.017092][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 239.017100][ T41] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 239.017958][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 239.017968][ T41] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 239.022828][ T41] hsr_slave_0: left promiscuous mode [ 239.024382][ T41] hsr_slave_1: left promiscuous mode [ 239.025432][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 239.025593][ T41] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 239.026033][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 239.026041][ T41] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 239.034054][ T41] hsr_slave_0: left promiscuous mode [ 239.035014][ T41] hsr_slave_1: left promiscuous mode [ 239.035245][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 239.035256][ T41] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 239.036167][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 239.036177][ T41] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 239.042018][ T41] hsr_slave_0: left promiscuous mode [ 239.042868][ T41] hsr_slave_1: left promiscuous mode [ 239.043123][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 239.043132][ T41] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 239.051107][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 239.051130][ T41] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 239.055089][ T41] hsr_slave_0: left promiscuous mode [ 239.056469][ T41] hsr_slave_1: left promiscuous mode [ 239.056955][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 239.056965][ T41] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 239.057758][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 239.057769][ T41] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 239.062012][ T41] hsr_slave_0: left promiscuous mode [ 239.062904][ T41] hsr_slave_1: left promiscuous mode [ 239.069548][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 239.069571][ T41] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 239.071055][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 239.071065][ T41] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 239.076095][ T41] hsr_slave_0: left promiscuous mode [ 239.077234][ T41] hsr_slave_1: left promiscuous mode [ 239.077460][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 239.077471][ T41] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 239.078368][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 239.078379][ T41] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 239.082943][ T41] hsr_slave_0: left promiscuous mode [ 239.084003][ T41] hsr_slave_1: left promiscuous mode [ 239.089484][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 239.089512][ T41] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 239.090773][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 239.090783][ T41] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 239.096788][ T41] hsr_slave_0: left promiscuous mode [ 239.097713][ T41] hsr_slave_1: left promiscuous mode [ 239.097917][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 239.097927][ T41] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 239.098881][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 239.098892][ T41] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 239.155285][ T41] veth1_macvtap: left promiscuous mode [ 239.156360][ T41] veth0_macvtap: left promiscuous mode [ 239.157322][ T41] veth1_vlan: left promiscuous mode [ 239.158208][ T41] veth0_vlan: left promiscuous mode [ 239.159476][ T41] veth1_macvtap: left promiscuous mode [ 239.160437][ T41] veth0_macvtap: left promiscuous mode [ 239.161363][ T41] veth1_vlan: left promiscuous mode [ 239.162250][ T41] veth0_vlan: left promiscuous mode [ 239.169612][ T41] veth1_macvtap: left promiscuous mode [ 239.170547][ T41] veth0_macvtap: left promiscuous mode [ 239.171473][ T41] veth1_vlan: left promiscuous mode [ 239.172326][ T41] veth0_vlan: left promiscuous mode [ 239.176459][ T41] veth1_macvtap: left promiscuous mode [ 239.177438][ T41] veth0_macvtap: left promiscuous mode [ 239.178394][ T41] veth1_vlan: left promiscuous mode [ 239.179305][ T41] veth0_vlan: left promiscuous mode [ 239.180598][ T41] veth1_macvtap: left promiscuous mode [ 239.181501][ T41] veth0_macvtap: left promiscuous mode [ 239.182446][ T41] veth1_vlan: left promiscuous mode [ 239.183523][ T41] veth0_vlan: left promiscuous mode [ 239.189261][ T41] veth1_macvtap: left promiscuous mode [ 239.190174][ T41] veth0_macvtap: left promiscuous mode [ 239.191105][ T41] veth1_vlan: left promiscuous mode [ 239.191952][ T41] veth0_vlan: left promiscuous mode [ 239.195483][ T41] veth1_macvtap: left promiscuous mode [ 239.196427][ T41] veth0_macvtap: left promiscuous mode [ 239.197331][ T41] veth1_vlan: left promiscuous mode [ 239.198208][ T41] veth0_vlan: left promiscuous mode [ 239.199548][ T41] veth1_macvtap: left promiscuous mode [ 239.200520][ T41] veth0_macvtap: left promiscuous mode [ 239.201479][ T41] veth1_vlan: left promiscuous mode [ 239.202366][ T41] veth0_vlan: left promiscuous mode [ 239.209197][ T41] veth1_macvtap: left promiscuous mode [ 239.210148][ T41] veth0_macvtap: left promiscuous mode [ 239.211106][ T41] veth1_vlan: left promiscuous mode [ 239.212023][ T41] veth0_vlan: left promiscuous mode [ 239.213884][ T41] veth1_macvtap: left promiscuous mode [ 239.214862][ T41] veth0_macvtap: left promiscuous mode [ 239.215851][ T41] veth1_vlan: left promiscuous mode [ 239.216772][ T41] veth0_vlan: left promiscuous mode [ 239.543440][ T6571] Bluetooth: hci4: command tx timeout [ 239.622499][ T41] team0 (unregistering): Port device team_slave_1 removed [ 239.635761][ T41] team0 (unregistering): Port device team_slave_0 removed [ 239.783414][ T6571] Bluetooth: hci3: command tx timeout [ 239.855207][ T41] team0 (unregistering): Port device team_slave_1 removed [ 239.864560][ T41] team0 (unregistering): Port device team_slave_0 removed [ 239.943945][ T6571] Bluetooth: hci1: command tx timeout [ 240.084828][ T41] team0 (unregistering): Port device team_slave_1 removed [ 240.097293][ T41] team0 (unregistering): Port device team_slave_0 removed [ 240.358240][ T41] team0 (unregistering): Port device team_slave_1 removed [ 240.371489][ T41] team0 (unregistering): Port device team_slave_0 removed [ 240.594444][ T6571] Bluetooth: hci0: command tx timeout [ 240.606833][ T41] team0 (unregistering): Port device team_slave_1 removed [ 240.616606][ T41] team0 (unregistering): Port device team_slave_0 removed [ 240.852064][ T41] team0 (unregistering): Port device team_slave_1 removed [ 240.869845][ T41] team0 (unregistering): Port device team_slave_0 removed [ 241.073326][ T6571] Bluetooth: hci2: command tx timeout [ 241.104028][ T41] team0 (unregistering): Port device team_slave_1 removed [ 241.112763][ T41] team0 (unregistering): Port device team_slave_0 removed [ 241.363478][ T41] team0 (unregistering): Port device team_slave_1 removed [ 241.372280][ T41] team0 (unregistering): Port device team_slave_0 removed [ 241.609127][ T41] team0 (unregistering): Port device team_slave_1 removed [ 241.625553][ T41] team0 (unregistering): Port device team_slave_0 removed [ 241.859928][ T41] team0 (unregistering): Port device team_slave_1 removed [ 241.869760][ T41] team0 (unregistering): Port device team_slave_0 removed [ 241.873445][ T6571] Bluetooth: hci3: command tx timeout [ 242.005154][T14888] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 242.008384][T14737] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 242.018023][T14760] 8021q: adding VLAN 0 to HW filter on device team0 [ 242.029122][T14737] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 242.032911][T14152] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 242.033080][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 242.033100][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 242.036595][ T6571] Bluetooth: hci1: command tx timeout [ 242.041583][T14152] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 242.051533][ T7000] bridge0: port 2(bridge_slave_1) entered blocking state [ 242.051569][ T7000] bridge0: port 2(bridge_slave_1) entered forwarding state [ 242.071403][T14760] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 242.074485][T14760] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 242.080250][ T7000] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.080522][ T7000] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.080783][ T7000] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.080866][ T7000] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.112170][T14888] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 242.120648][T14815] 8021q: adding VLAN 0 to HW filter on device bond0 1970/01/01 00:04:02 executed programs: 386 [ 242.192854][T14815] 8021q: adding VLAN 0 to HW filter on device team0 [ 242.198713][T14938] loop6: detected capacity change from 0 to 4096 [ 242.209549][ T934] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 242.209577][ T934] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 242.234534][ T934] bridge0: port 1(bridge_slave_0) entered blocking state [ 242.234575][ T934] bridge0: port 1(bridge_slave_0) entered forwarding state [ 242.235090][ T934] bridge0: port 2(bridge_slave_1) entered blocking state [ 242.235107][ T934] bridge0: port 2(bridge_slave_1) entered forwarding state [ 242.261260][ T845] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 242.261304][ T845] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 242.279198][T14760] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 242.381636][T14888] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 242.391809][T14888] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 242.442106][T14888] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 242.457175][T14888] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 242.475888][T14950] loop0: detected capacity change from 0 to 4096 [ 242.529744][T14815] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 242.592365][T14815] veth0_vlan: entered promiscuous mode [ 242.617304][T14634] ntfs3(loop6): ino=1e, mi_enum_attr [ 242.617343][T14634] ntfs3(loop6): Mark volume as dirty due to NTFS errors [ 242.632940][T14815] veth1_vlan: entered promiscuous mode [ 242.635316][T14634] ntfs3(loop6): ino=1e, mi_enum_attr [ 242.635417][T14634] ntfs3(loop6): ino=1e, mi_enum_attr [ 242.664729][ T6571] Bluetooth: hci0: command tx timeout [ 242.680017][T14815] veth0_macvtap: entered promiscuous mode [ 242.681500][T14815] veth1_macvtap: entered promiscuous mode [ 242.712841][T14888] 8021q: adding VLAN 0 to HW filter on device bond0 [ 242.741911][T14815] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 242.760849][T14815] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 242.772712][T14888] 8021q: adding VLAN 0 to HW filter on device team0 [ 242.777603][T14760] veth0_vlan: entered promiscuous mode [ 242.813273][T14760] veth1_vlan: entered promiscuous mode [ 242.818817][T14760] veth0_macvtap: entered promiscuous mode [ 242.833629][T14737] ntfs3(loop0): ino=1e, mi_enum_attr [ 242.833669][T14737] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 242.836233][T14760] veth1_macvtap: entered promiscuous mode [ 242.837888][ T845] bridge0: port 1(bridge_slave_0) entered blocking state [ 242.837929][ T845] bridge0: port 1(bridge_slave_0) entered forwarding state [ 242.855356][T14737] ntfs3(loop0): ino=1e, mi_enum_attr [ 242.856457][T14737] ntfs3(loop0): ino=1e, mi_enum_attr [ 242.858178][ T845] bridge0: port 2(bridge_slave_1) entered blocking state [ 242.858223][ T845] bridge0: port 2(bridge_slave_1) entered forwarding state [ 242.864121][T14760] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 242.867250][ T7000] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.867722][ T7000] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.868099][ T7000] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.868473][ T7000] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.919033][T14760] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 242.946205][ T934] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 242.946227][ T934] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 242.949610][ T7000] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.949668][ T7000] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.949884][ T7000] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.950025][ T7000] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.987253][ T6670] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 242.991315][ T6670] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 242.992128][ T6670] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 242.995630][ T6670] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 242.995935][ T6670] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 243.061971][T14888] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 243.086146][T14152] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 243.087470][T14152] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 243.099250][T14888] veth0_vlan: entered promiscuous mode [ 243.119071][ T7000] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 243.119099][ T7000] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 243.129840][T14888] veth1_vlan: entered promiscuous mode [ 243.179716][T14888] veth0_macvtap: entered promiscuous mode [ 243.189289][T14888] veth1_macvtap: entered promiscuous mode [ 243.198721][T15006] loop1: detected capacity change from 0 to 4096 [ 243.218435][T14888] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 243.225140][T14888] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 243.227795][ T7000] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 243.232250][ T934] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 243.232287][ T934] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 243.274808][ T7000] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 243.274889][ T7000] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 243.274916][ T7000] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 243.352559][ T7000] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 243.352589][ T7000] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 243.429695][ T541] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 243.429727][ T541] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 243.447837][T15017] loop8: detected capacity change from 0 to 4096 [ 243.558515][T15026] loop3: detected capacity change from 0 to 4096 [ 243.578092][ T6571] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 243.589125][ T6571] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 243.589685][ T6571] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 243.589981][ T6571] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 243.590159][ T6571] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 243.597025][T14986] chnl_net:caif_netlink_parms(): no params data found [ 243.621021][T14815] ntfs3(loop1): ino=1e, mi_enum_attr [ 243.621059][T14815] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 243.650357][T14815] ntfs3(loop1): ino=1e, mi_enum_attr [ 243.650467][T14815] ntfs3(loop1): ino=1e, mi_enum_attr [ 243.655748][T14760] ntfs3(loop8): ino=1e, mi_enum_attr [ 243.655773][T14760] ntfs3(loop8): Mark volume as dirty due to NTFS errors [ 243.665055][T14760] ntfs3(loop8): ino=1e, mi_enum_attr [ 243.666152][T14760] ntfs3(loop8): ino=1e, mi_enum_attr [ 243.724203][T15044] page: refcount:593 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 243.724234][T15044] head: order:9 mapcount:80 entire_mapcount:0 nr_pages_mapped:80 pincount:0 [ 243.724254][T15044] memcg:ffff0000c19c2580 [ 243.724264][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 243.724279][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 243.724294][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 243.724303][T15044] raw: 0000000000000000 0000000000000000 00000251ffffffff ffff0000c19c2580 [ 243.724311][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 243.724319][T15044] head: 0000000000000000 0000000000000000 00000251ffffffff ffff0000c19c2580 [ 243.724327][T15044] head: 05ffc00000000209 fffffdffc43b8001 000000500000004f 00000000ffffffff [ 243.724334][T15044] head: ffffffff0000004f 0000000000000024 00000000ffffffff 0000000000000200 [ 243.724340][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 243.724385][T15044] ------------[ cut here ]------------ [ 243.724389][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 243.744882][T15044] Modules linked in: [ 243.745441][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Not tainted 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 243.747018][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 243.748566][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 243.749729][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 243.750673][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 243.751650][T15044] sp : ffff8000a0a672c0 [ 243.752357][T15044] x29: ffff8000a0a672c0 x28: 00000000000001b0 x27: 0000000020050000 [ 243.753604][T15044] x26: 00e800014ee52f43 x25: dfff800000000000 x24: 000000000020ac5d [ 243.754837][T15044] x23: fffffdffc43c0080 x22: fffffdffc43c0048 x21: 0000000000000000 [ 243.755949][T15044] x20: 00000000000001b0 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 243.757114][T15044] x17: 3030303030303020 x16: ffff80008b007340 x15: 0000000000000001 [ 243.758358][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 243.759609][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 243.760811][T15044] x8 : 14e578ac1de0e000 x7 : ffff800080563af4 x6 : 0000000000000000 [ 243.762088][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 243.763286][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 243.764654][T15044] Call trace: [ 243.765095][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 243.766044][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 243.766912][T15044] set_pte_range+0x2e4/0x49c [ 243.767628][T15044] filemap_map_pages+0xb54/0x155c [ 243.768420][T15044] handle_mm_fault+0x2b64/0x4d34 [ 243.769213][T15044] __get_user_pages+0x1f40/0x2da0 [ 243.770058][T15044] populate_vma_page_range+0x258/0x348 [ 243.770952][T15044] __mm_populate+0x208/0x330 [ 243.771714][T15044] vm_mmap_pgoff+0x398/0x45c [ 243.772422][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 243.773162][T15044] __arm64_sys_mmap+0xf8/0x110 [ 243.773939][T15044] invoke_syscall+0x98/0x2b8 [ 243.774701][T15044] el0_svc_common+0x130/0x23c [ 243.775446][T15044] do_el0_svc+0x48/0x58 [ 243.776101][T15044] el0_svc+0x58/0x180 [ 243.776727][T15044] el0t_64_sync_handler+0x84/0x12c [ 243.777509][T15044] el0t_64_sync+0x198/0x19c [ 243.778235][T15044] irq event stamp: 268 [ 243.778854][T15044] hardirqs last enabled at (267): [] exit_to_kernel_mode+0xc0/0xf0 [ 243.780355][T15044] hardirqs last disabled at (268): [] el1_brk64+0x1c/0x48 [ 243.781681][T15044] softirqs last enabled at (100): [] handle_softirqs+0xaf8/0xc88 [ 243.783075][T15044] softirqs last disabled at (57): [] __do_softirq+0x14/0x20 [ 243.784382][T15044] ---[ end trace 0000000000000000 ]--- [ 243.785924][T15044] page: refcount:1025 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 243.786439][T15044] head: order:9 mapcount:512 entire_mapcount:0 nr_pages_mapped:512 pincount:0 [ 243.786450][T15044] memcg:ffff0000c19c2580 [ 243.786458][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 243.786471][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 243.786485][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 243.786493][T15044] raw: 0000000000000000 0000000000000000 00000401ffffffff ffff0000c19c2580 [ 243.786502][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 243.786509][T15044] head: 0000000000000000 0000000000000000 00000401ffffffff ffff0000c19c2580 [ 243.786517][T15044] head: 05ffc00000000209 fffffdffc43b8001 00000200000001ff 00000000ffffffff [ 243.786525][T15044] head: ffffffff000001ff 0000000000000024 00000000ffffffff 0000000000000200 [ 243.786530][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 243.786574][T15044] ------------[ cut here ]------------ [ 243.786577][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 243.805303][T15044] Modules linked in: [ 243.805881][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 243.807644][T15044] Tainted: [W]=WARN [ 243.808210][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 243.809857][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 243.811138][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 243.812174][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 243.813182][T15044] sp : ffff8000a0a672c0 [ 243.813829][T15044] x29: ffff8000a0a672c0 x28: 0000000000000002 x27: 0000000020202000 [ 243.815013][T15044] x26: 00e800014f004b43 x25: dfff800000000000 x24: 000000000020ac5d [ 243.816210][T15044] x23: fffffdffc43c0108 x22: fffffdffc43c0100 x21: 0000000000000000 [ 243.817415][T15044] x20: 0000000000000002 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 243.818637][T15044] x17: 3030303030303020 x16: ffff80008b007340 x15: 0000000000000001 [ 243.819798][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 243.820995][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 243.822165][T15044] x8 : 14e578ac1de0e000 x7 : ffff800080563af4 x6 : 0000000000000000 [ 243.823416][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 243.824741][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 243.826016][T15044] Call trace: [ 243.826543][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 243.827512][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 243.828412][T15044] set_pte_range+0x2e4/0x49c [ 243.829190][T15044] filemap_map_pages+0xb54/0x155c [ 243.829959][T15044] handle_mm_fault+0x2b64/0x4d34 [ 243.830879][T15044] __get_user_pages+0x1f40/0x2da0 [ 243.831689][T15044] populate_vma_page_range+0x258/0x348 [ 243.832577][T15044] __mm_populate+0x208/0x330 [ 243.833306][T15044] vm_mmap_pgoff+0x398/0x45c [ 243.834115][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 243.834911][T15044] __arm64_sys_mmap+0xf8/0x110 [ 243.835678][T15044] invoke_syscall+0x98/0x2b8 [ 243.836404][T15044] el0_svc_common+0x130/0x23c [ 243.837173][T15044] do_el0_svc+0x48/0x58 [ 243.837800][T15044] el0_svc+0x58/0x180 [ 243.838445][T15044] el0t_64_sync_handler+0x84/0x12c [ 243.839237][T15044] el0t_64_sync+0x198/0x19c [ 243.839949][T15044] irq event stamp: 1306 [ 243.840568][T15044] hardirqs last enabled at (1305): [] exit_to_kernel_mode+0xc0/0xf0 [ 243.842065][T15044] hardirqs last disabled at (1306): [] el1_brk64+0x1c/0x48 [ 243.843429][T15044] softirqs last enabled at (1260): [] handle_softirqs+0xaf8/0xc88 [ 243.844889][T15044] softirqs last disabled at (729): [] __do_softirq+0x14/0x20 [ 243.846419][T15044] ---[ end trace 0000000000000000 ]--- [ 243.847796][T15044] page: refcount:1025 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 243.848225][T15044] head: order:9 mapcount:512 entire_mapcount:0 nr_pages_mapped:512 pincount:0 [ 243.848235][T15044] memcg:ffff0000c19c2580 [ 243.848243][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 243.848255][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 243.848267][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 243.848275][T15044] raw: 0000000000000000 0000000000000000 00000401ffffffff ffff0000c19c2580 [ 243.848283][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 243.848291][T15044] head: 0000000000000000 0000000000000000 00000401ffffffff ffff0000c19c2580 [ 243.848298][T15044] head: 05ffc00000000209 fffffdffc43b8001 00000200000001ff 00000000ffffffff [ 243.848306][T15044] head: ffffffff000001ff 0000000000000024 00000000ffffffff 0000000000000200 [ 243.848312][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 243.848354][T15044] ------------[ cut here ]------------ [ 243.848357][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 243.867645][T15044] Modules linked in: [ 243.868243][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 243.870257][T15044] Tainted: [W]=WARN [ 243.870843][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 243.872306][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 243.873577][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 243.874517][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 243.875490][T15044] sp : ffff8000a0a672c0 [ 243.876109][T15044] x29: ffff8000a0a672c0 x28: 0000000000000002 x27: 0000000020202000 [ 243.877188][T15044] x26: 00e800014f004b43 x25: dfff800000000000 x24: 000000000020ac5d [ 243.878470][T15044] x23: fffffdffc43c0180 x22: fffffdffc43c0148 x21: 0000000000000000 [ 243.879745][T15044] x20: 0000000000000002 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 243.880945][T15044] x17: 3030303030303020 x16: ffff80008b007340 x15: 0000000000000001 [ 243.882234][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 243.883432][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 243.884612][T15044] x8 : 14e578ac1de0e000 x7 : ffff800080563af4 x6 : 0000000000000000 [ 243.885870][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 243.887107][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 243.888232][T15044] Call trace: [ 243.888748][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 243.889722][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 243.890505][T15044] set_pte_range+0x2e4/0x49c [ 243.891253][T15044] filemap_map_pages+0xb54/0x155c [ 243.892048][T15044] handle_mm_fault+0x2b64/0x4d34 [ 243.892862][T15044] __get_user_pages+0x1f40/0x2da0 [ 243.893623][T15044] populate_vma_page_range+0x258/0x348 [ 243.894425][T15044] __mm_populate+0x208/0x330 [ 243.895109][T15044] vm_mmap_pgoff+0x398/0x45c [ 243.895864][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 243.896685][T15044] __arm64_sys_mmap+0xf8/0x110 [ 243.897448][T15044] invoke_syscall+0x98/0x2b8 [ 243.898229][T15044] el0_svc_common+0x130/0x23c [ 243.899020][T15044] do_el0_svc+0x48/0x58 [ 243.899627][T15044] el0_svc+0x58/0x180 [ 243.900267][T15044] el0t_64_sync_handler+0x84/0x12c [ 243.901149][T15044] el0t_64_sync+0x198/0x19c [ 243.901881][T15044] irq event stamp: 2356 [ 243.902507][T15044] hardirqs last enabled at (2355): [] exit_to_kernel_mode+0xc0/0xf0 [ 243.904093][T15044] hardirqs last disabled at (2356): [] el1_brk64+0x1c/0x48 [ 243.905443][T15044] softirqs last enabled at (2310): [] handle_softirqs+0xaf8/0xc88 [ 243.907053][T15044] softirqs last disabled at (1783): [] __do_softirq+0x14/0x20 [ 243.908614][T15044] ---[ end trace 0000000000000000 ]--- [ 243.909732][T15044] page: refcount:1027 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 243.909747][T15044] head: order:9 mapcount:514 entire_mapcount:0 nr_pages_mapped:514 pincount:0 [ 243.909759][T15044] memcg:ffff0000c19c2580 [ 243.909770][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 243.909783][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 243.909796][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 243.909805][T15044] raw: 0000000000000000 0000000000000000 00000403ffffffff ffff0000c19c2580 [ 243.909813][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 243.909821][T15044] head: 0000000000000000 0000000000000000 00000403ffffffff ffff0000c19c2580 [ 243.909829][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000020200000201 00000000ffffffff [ 243.909837][T15044] head: ffffffff00000201 0000000000000024 00000000ffffffff 0000000000000200 [ 243.909843][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 243.909886][T15044] ------------[ cut here ]------------ [ 243.909889][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 243.929057][T15044] Modules linked in: [ 243.929590][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 243.931405][T15044] Tainted: [W]=WARN [ 243.931944][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 243.933349][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 243.934450][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 243.935371][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 243.936202][T15044] sp : ffff8000a0a672c0 [ 243.936778][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020205000 [ 243.937921][T15044] x26: 00e800014f007b43 x25: dfff800000000000 x24: 000000000020ac5d [ 243.939213][T15044] x23: fffffdffc43c01c8 x22: fffffdffc43c01c0 x21: 0000000000000000 [ 243.940461][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 243.941628][T15044] x17: 3030303030303020 x16: ffff80008b007340 x15: 0000000000000001 [ 243.942821][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 243.943983][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 243.945138][T15044] x8 : 14e578ac1de0e000 x7 : ffff800080563af4 x6 : 0000000000000000 [ 243.946320][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 243.947549][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 243.948737][T15044] Call trace: [ 243.949205][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 243.950110][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 243.950920][T15044] set_pte_range+0x2e4/0x49c [ 243.951669][T15044] filemap_map_pages+0xb54/0x155c [ 243.952475][T15044] handle_mm_fault+0x2b64/0x4d34 [ 243.953204][T15044] __get_user_pages+0x1f40/0x2da0 [ 243.953961][T15044] populate_vma_page_range+0x258/0x348 [ 243.954802][T15044] __mm_populate+0x208/0x330 [ 243.955499][T15044] vm_mmap_pgoff+0x398/0x45c [ 243.956246][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 243.956999][T15044] __arm64_sys_mmap+0xf8/0x110 [ 243.957716][T15044] invoke_syscall+0x98/0x2b8 [ 243.958437][T15044] el0_svc_common+0x130/0x23c [ 243.959162][T15044] do_el0_svc+0x48/0x58 [ 243.959779][T15044] el0_svc+0x58/0x180 [ 243.960404][T15044] el0t_64_sync_handler+0x84/0x12c [ 243.961158][T15044] el0t_64_sync+0x198/0x19c [ 243.961821][T15044] irq event stamp: 2484 [ 243.962406][T15044] hardirqs last enabled at (2483): [] exit_to_kernel_mode+0xc0/0xf0 [ 243.963825][T15044] hardirqs last disabled at (2484): [] el1_brk64+0x1c/0x48 [ 243.965078][T15044] softirqs last enabled at (2434): [] handle_softirqs+0xaf8/0xc88 [ 243.966479][T15044] softirqs last disabled at (2359): [] __do_softirq+0x14/0x20 [ 243.967802][T15044] ---[ end trace 0000000000000000 ]--- [ 243.969305][T15044] page: refcount:1027 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 243.969762][T15044] head: order:9 mapcount:514 entire_mapcount:0 nr_pages_mapped:514 pincount:0 [ 243.969772][T15044] memcg:ffff0000c19c2580 [ 243.969781][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 243.969792][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 243.969804][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 243.969812][T15044] raw: 0000000000000000 0000000000000000 00000403ffffffff ffff0000c19c2580 [ 243.969820][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 243.969828][T15044] head: 0000000000000000 0000000000000000 00000403ffffffff ffff0000c19c2580 [ 243.969835][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000020200000201 00000000ffffffff [ 243.969843][T15044] head: ffffffff00000201 0000000000000024 00000000ffffffff 0000000000000200 [ 243.969849][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 243.969891][T15044] ------------[ cut here ]------------ [ 243.969894][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 243.988118][T15044] Modules linked in: [ 243.988692][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 243.990421][T15044] Tainted: [W]=WARN [ 243.990974][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 243.992304][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 243.993421][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 243.994257][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 243.995100][T15044] sp : ffff8000a0a672c0 [ 243.995699][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020205000 [ 243.996881][T15044] x26: 00e800014f007b43 x25: dfff800000000000 x24: 000000000020ac5d [ 243.998027][T15044] x23: fffffdffc43c0200 x22: fffffdffc43c01c8 x21: 0000000000000000 [ 243.999235][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 244.000450][T15044] x17: 3030303030303020 x16: ffff80008b007340 x15: 0000000000000001 [ 244.001714][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 244.002989][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 244.004237][T15044] x8 : 14e578ac1de0e000 x7 : ffff800080563af4 x6 : 0000000000000000 [ 244.005530][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 244.006760][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 244.008025][T15044] Call trace: [ 244.008515][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 244.009473][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 244.010268][T15044] set_pte_range+0x2e4/0x49c [ 244.010983][T15044] filemap_map_pages+0xb54/0x155c [ 244.011766][T15044] handle_mm_fault+0x2b64/0x4d34 [ 244.012573][T15044] __get_user_pages+0x1f40/0x2da0 [ 244.013360][T15044] populate_vma_page_range+0x258/0x348 [ 244.014196][T15044] __mm_populate+0x208/0x330 [ 244.014903][T15044] vm_mmap_pgoff+0x398/0x45c [ 244.015646][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 244.016393][T15044] __arm64_sys_mmap+0xf8/0x110 [ 244.017163][T15044] invoke_syscall+0x98/0x2b8 [ 244.017889][T15044] el0_svc_common+0x130/0x23c [ 244.018660][T15044] do_el0_svc+0x48/0x58 [ 244.019305][T15044] el0_svc+0x58/0x180 [ 244.019924][T15044] el0t_64_sync_handler+0x84/0x12c [ 244.020695][T15044] el0t_64_sync+0x198/0x19c [ 244.021400][T15044] irq event stamp: 3654 [ 244.022008][T15044] hardirqs last enabled at (3653): [] exit_to_kernel_mode+0xc0/0xf0 [ 244.023539][T15044] hardirqs last disabled at (3654): [] el1_brk64+0x1c/0x48 [ 244.024807][T15044] softirqs last enabled at (3608): [] handle_softirqs+0xaf8/0xc88 [ 244.026130][T15044] softirqs last disabled at (3061): [] __do_softirq+0x14/0x20 [ 244.027410][T15044] ---[ end trace 0000000000000000 ]--- [ 244.028406][T15044] page: refcount:1028 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 244.028420][T15044] head: order:9 mapcount:515 entire_mapcount:0 nr_pages_mapped:515 pincount:0 [ 244.028432][T15044] memcg:ffff0000c19c2580 [ 244.028441][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 244.028453][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 244.028466][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.028475][T15044] raw: 0000000000000000 0000000000000000 00000404ffffffff ffff0000c19c2580 [ 244.028483][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.028491][T15044] head: 0000000000000000 0000000000000000 00000404ffffffff ffff0000c19c2580 [ 244.028499][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000020300000202 00000000ffffffff [ 244.028506][T15044] head: ffffffff00000202 0000000000000024 00000000ffffffff 0000000000000200 [ 244.028512][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 244.028555][T15044] ------------[ cut here ]------------ [ 244.028558][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 244.046425][T15044] Modules linked in: [ 244.047015][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 244.049018][T15044] Tainted: [W]=WARN [ 244.049589][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 244.050975][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 244.052141][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 244.053018][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 244.053954][T15044] sp : ffff8000a0a672c0 [ 244.054651][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002020b000 [ 244.055910][T15044] x26: 00e800014f00db43 x25: dfff800000000000 x24: 000000000020ac5d [ 244.057143][T15044] x23: fffffdffc43c0348 x22: fffffdffc43c0340 x21: 0000000000000000 [ 244.058325][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 244.059492][T15044] x17: 3030303030303020 x16: ffff80008b007340 x15: 0000000000000001 [ 244.060695][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 244.061913][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 244.063175][T15044] x8 : 14e578ac1de0e000 x7 : ffff800080563af4 x6 : 0000000000000000 [ 244.064462][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 244.065677][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 244.066851][T15044] Call trace: [ 244.067336][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 244.068211][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 244.068986][T15044] set_pte_range+0x2e4/0x49c [ 244.069651][T15044] filemap_map_pages+0xb54/0x155c [ 244.070424][T15044] handle_mm_fault+0x2b64/0x4d34 [ 244.071133][T15044] __get_user_pages+0x1f40/0x2da0 [ 244.071923][T15044] populate_vma_page_range+0x258/0x348 [ 244.072742][T15044] __mm_populate+0x208/0x330 [ 244.073477][T15044] vm_mmap_pgoff+0x398/0x45c [ 244.074197][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 244.074937][T15044] __arm64_sys_mmap+0xf8/0x110 [ 244.075694][T15044] invoke_syscall+0x98/0x2b8 [ 244.076429][T15044] el0_svc_common+0x130/0x23c [ 244.077181][T15044] do_el0_svc+0x48/0x58 [ 244.077862][T15044] el0_svc+0x58/0x180 [ 244.078442][T15044] el0t_64_sync_handler+0x84/0x12c [ 244.079191][T15044] el0t_64_sync+0x198/0x19c [ 244.079904][T15044] irq event stamp: 3792 [ 244.080567][T15044] hardirqs last enabled at (3791): [] exit_to_kernel_mode+0xc0/0xf0 [ 244.082154][T15044] hardirqs last disabled at (3792): [] el1_brk64+0x1c/0x48 [ 244.083560][T15044] softirqs last enabled at (3742): [] handle_softirqs+0xaf8/0xc88 [ 244.085063][T15044] softirqs last disabled at (3657): [] __do_softirq+0x14/0x20 [ 244.086301][T15044] ---[ end trace 0000000000000000 ]--- [ 244.087749][T15044] page: refcount:1028 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 244.088192][T15044] head: order:9 mapcount:515 entire_mapcount:0 nr_pages_mapped:515 pincount:0 [ 244.088203][T15044] memcg:ffff0000c19c2580 [ 244.088211][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 244.088222][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 244.088235][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.088243][T15044] raw: 0000000000000000 0000000000000000 00000404ffffffff ffff0000c19c2580 [ 244.088251][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.088258][T15044] head: 0000000000000000 0000000000000000 00000404ffffffff ffff0000c19c2580 [ 244.088266][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000020300000202 00000000ffffffff [ 244.088273][T15044] head: ffffffff00000202 0000000000000024 00000000ffffffff 0000000000000200 [ 244.088279][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 244.088321][T15044] ------------[ cut here ]------------ [ 244.088324][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 244.107057][T15044] Modules linked in: [ 244.107691][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 244.109649][T15044] Tainted: [W]=WARN [ 244.110210][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 244.111748][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 244.112881][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 244.113717][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 244.114554][T15044] sp : ffff8000a0a672c0 [ 244.115185][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002020b000 [ 244.116391][T15044] x26: 00e800014f00db43 x25: dfff800000000000 x24: 000000000020ac5d [ 244.117549][T15044] x23: fffffdffc43c0380 x22: fffffdffc43c0348 x21: 0000000000000000 [ 244.118699][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 244.119857][T15044] x17: 3030303030303020 x16: ffff80008b007340 x15: 0000000000000001 [ 244.121021][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 244.122273][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 244.123556][T15044] x8 : 14e578ac1de0e000 x7 : ffff800080563af4 x6 : 0000000000000000 [ 244.124829][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 244.126071][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 244.127281][T15044] Call trace: [ 244.127749][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 244.128694][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 244.129548][T15044] set_pte_range+0x2e4/0x49c [ 244.130226][T15044] filemap_map_pages+0xb54/0x155c [ 244.130961][T15044] handle_mm_fault+0x2b64/0x4d34 [ 244.131713][T15044] __get_user_pages+0x1f40/0x2da0 [ 244.132439][T15044] populate_vma_page_range+0x258/0x348 [ 244.133334][T15044] __mm_populate+0x208/0x330 [ 244.134073][T15044] vm_mmap_pgoff+0x398/0x45c [ 244.134817][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 244.135485][T15044] __arm64_sys_mmap+0xf8/0x110 [ 244.136164][T15044] invoke_syscall+0x98/0x2b8 [ 244.136870][T15044] el0_svc_common+0x130/0x23c [ 244.137566][T15044] do_el0_svc+0x48/0x58 [ 244.138214][T15044] el0_svc+0x58/0x180 [ 244.138822][T15044] el0t_64_sync_handler+0x84/0x12c [ 244.139690][T15044] el0t_64_sync+0x198/0x19c [ 244.140412][T15044] irq event stamp: 4834 [ 244.141039][T15044] hardirqs last enabled at (4833): [] exit_to_kernel_mode+0xc0/0xf0 [ 244.142540][T15044] hardirqs last disabled at (4834): [] el1_brk64+0x1c/0x48 [ 244.143928][T15044] softirqs last enabled at (4788): [] handle_softirqs+0xaf8/0xc88 [ 244.145318][T15044] softirqs last disabled at (4251): [] __do_softirq+0x14/0x20 [ 244.146720][T15044] ---[ end trace 0000000000000000 ]--- [ 244.148148][T15044] page: refcount:1029 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 244.148582][T15044] head: order:9 mapcount:516 entire_mapcount:0 nr_pages_mapped:516 pincount:0 [ 244.148592][T15044] memcg:ffff0000c19c2580 [ 244.148601][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 244.148612][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 244.148625][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.148633][T15044] raw: 0000000000000000 0000000000000000 00000405ffffffff ffff0000c19c2580 [ 244.148645][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.148656][T15044] head: 0000000000000000 0000000000000000 00000405ffffffff ffff0000c19c2580 [ 244.148667][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000020400000203 00000000ffffffff [ 244.148675][T15044] head: ffffffff00000203 0000000000000024 00000000ffffffff 0000000000000200 [ 244.148681][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 244.148726][T15044] ------------[ cut here ]------------ [ 244.148729][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 244.168150][T15044] Modules linked in: [ 244.168734][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 244.170578][T15044] Tainted: [W]=WARN [ 244.171206][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 244.172684][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 244.173828][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 244.174710][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 244.175588][T15044] sp : ffff8000a0a672c0 [ 244.176240][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002020e000 [ 244.177398][T15044] x26: 00e800014f010b43 x25: dfff800000000000 x24: 000000000020ac5d [ 244.178710][T15044] x23: fffffdffc43c0408 x22: fffffdffc43c0400 x21: 0000000000000000 [ 244.179944][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 244.181153][T15044] x17: 3030303030303020 x16: ffff80008b007340 x15: 0000000000000001 [ 244.182426][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 244.183752][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 244.184921][T15044] x8 : 14e578ac1de0e000 x7 : ffff800080563af4 x6 : 0000000000000000 [ 244.186182][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 244.187558][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 244.188904][T15044] Call trace: [ 244.189374][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 244.190384][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 244.191256][T15044] set_pte_range+0x2e4/0x49c [ 244.191912][T15044] filemap_map_pages+0xb54/0x155c [ 244.192672][T15044] handle_mm_fault+0x2b64/0x4d34 [ 244.193367][T15044] __get_user_pages+0x1f40/0x2da0 [ 244.194104][T15044] populate_vma_page_range+0x258/0x348 [ 244.194883][T15044] __mm_populate+0x208/0x330 [ 244.195581][T15044] vm_mmap_pgoff+0x398/0x45c [ 244.196331][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 244.197044][T15044] __arm64_sys_mmap+0xf8/0x110 [ 244.197802][T15044] invoke_syscall+0x98/0x2b8 [ 244.198568][T15044] el0_svc_common+0x130/0x23c [ 244.199341][T15044] do_el0_svc+0x48/0x58 [ 244.199988][T15044] el0_svc+0x58/0x180 [ 244.200609][T15044] el0t_64_sync_handler+0x84/0x12c [ 244.201436][T15044] el0t_64_sync+0x198/0x19c [ 244.202125][T15044] irq event stamp: 5990 [ 244.202791][T15044] hardirqs last enabled at (5989): [] exit_to_kernel_mode+0xc0/0xf0 [ 244.204305][T15044] hardirqs last disabled at (5990): [] el1_brk64+0x1c/0x48 [ 244.205679][T15044] softirqs last enabled at (5944): [] handle_softirqs+0xaf8/0xc88 [ 244.207124][T15044] softirqs last disabled at (5401): [] __do_softirq+0x14/0x20 [ 244.208502][T15044] ---[ end trace 0000000000000000 ]--- [ 244.209610][T15044] page: refcount:1029 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 244.209626][T15044] head: order:9 mapcount:516 entire_mapcount:0 nr_pages_mapped:516 pincount:0 [ 244.209642][T15044] memcg:ffff0000c19c2580 [ 244.209652][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 244.209668][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 244.209684][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.209693][T15044] raw: 0000000000000000 0000000000000000 00000405ffffffff ffff0000c19c2580 [ 244.209703][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.209711][T15044] head: 0000000000000000 0000000000000000 00000405ffffffff ffff0000c19c2580 [ 244.209719][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000020400000203 00000000ffffffff [ 244.209726][T15044] head: ffffffff00000203 0000000000000024 00000000ffffffff 0000000000000200 [ 244.209732][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 244.209775][T15044] ------------[ cut here ]------------ [ 244.209778][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 244.228177][T15044] Modules linked in: [ 244.228700][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 244.230544][T15044] Tainted: [W]=WARN [ 244.231098][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 244.232563][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 244.233772][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 244.234790][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 244.235777][T15044] sp : ffff8000a0a672c0 [ 244.236432][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002020e000 [ 244.237819][T15044] x26: 00e800014f010b43 x25: dfff800000000000 x24: 000000000020ac5d [ 244.239203][T15044] x23: fffffdffc43c0440 x22: fffffdffc43c0408 x21: 0000000000000000 [ 244.240529][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 244.241881][T15044] x17: 3030303030303020 x16: ffff80008b007340 x15: 0000000000000001 [ 244.243146][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 244.244413][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 244.245757][T15044] x8 : 14e578ac1de0e000 x7 : ffff800080563af4 x6 : 0000000000000000 [ 244.247002][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 244.248317][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 244.249634][T15044] Call trace: [ 244.250135][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 244.251037][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 244.251903][T15044] set_pte_range+0x2e4/0x49c [ 244.252606][T15044] filemap_map_pages+0xb54/0x155c [ 244.253418][T15044] handle_mm_fault+0x2b64/0x4d34 [ 244.254133][T15044] __get_user_pages+0x1f40/0x2da0 [ 244.254976][T15044] populate_vma_page_range+0x258/0x348 [ 244.255843][T15044] __mm_populate+0x208/0x330 [ 244.256566][T15044] vm_mmap_pgoff+0x398/0x45c [ 244.257321][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 244.258103][T15044] __arm64_sys_mmap+0xf8/0x110 [ 244.258840][T15044] invoke_syscall+0x98/0x2b8 [ 244.259520][T15044] el0_svc_common+0x130/0x23c [ 244.260225][T15044] do_el0_svc+0x48/0x58 [ 244.260847][T15044] el0_svc+0x58/0x180 [ 244.261423][T15044] el0t_64_sync_handler+0x84/0x12c [ 244.262308][T15044] el0t_64_sync+0x198/0x19c [ 244.263080][T15044] irq event stamp: 6158 [ 244.263779][T15044] hardirqs last enabled at (6157): [] exit_to_kernel_mode+0xc0/0xf0 [ 244.265297][T15044] hardirqs last disabled at (6158): [] el1_brk64+0x1c/0x48 [ 244.266685][T15044] softirqs last enabled at (6108): [] handle_softirqs+0xaf8/0xc88 [ 244.268106][T15044] softirqs last disabled at (5993): [] __do_softirq+0x14/0x20 [ 244.269419][T15044] ---[ end trace 0000000000000000 ]--- [ 244.270820][T15044] page: refcount:1030 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 244.271248][T15044] head: order:9 mapcount:517 entire_mapcount:0 nr_pages_mapped:517 pincount:0 [ 244.271259][T15044] memcg:ffff0000c19c2580 [ 244.271267][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 244.271278][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 244.271290][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.271298][T15044] raw: 0000000000000000 0000000000000000 00000406ffffffff ffff0000c19c2580 [ 244.271306][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.271314][T15044] head: 0000000000000000 0000000000000000 00000406ffffffff ffff0000c19c2580 [ 244.271322][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000020500000204 00000000ffffffff [ 244.271329][T15044] head: ffffffff00000204 0000000000000024 00000000ffffffff 0000000000000200 [ 244.271335][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 244.271377][T15044] ------------[ cut here ]------------ [ 244.271380][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 244.289676][T15044] Modules linked in: [ 244.290316][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 244.292285][T15044] Tainted: [W]=WARN [ 244.292884][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 244.294546][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 244.295761][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 244.296706][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 244.297614][T15044] sp : ffff8000a0a672c0 [ 244.298173][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020210000 [ 244.299366][T15044] x26: 00e800014f012b43 x25: dfff800000000000 x24: 000000000020ac5d [ 244.300561][T15044] x23: fffffdffc43c0488 x22: fffffdffc43c0480 x21: 0000000000000000 [ 244.301765][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 244.302990][T15044] x17: 3030303030303020 x16: ffff80008b007340 x15: 0000000000000001 [ 244.304175][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 244.305399][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 244.306580][T15044] x8 : 14e578ac1de0e000 x7 : ffff800080563af4 x6 : 0000000000000000 [ 244.307812][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 244.309011][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 244.310170][T15044] Call trace: [ 244.310603][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 244.311482][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 244.312358][T15044] set_pte_range+0x2e4/0x49c [ 244.313101][T15044] filemap_map_pages+0xb54/0x155c [ 244.313912][T15044] handle_mm_fault+0x2b64/0x4d34 [ 244.314699][T15044] __get_user_pages+0x1f40/0x2da0 [ 244.315487][T15044] populate_vma_page_range+0x258/0x348 [ 244.316354][T15044] __mm_populate+0x208/0x330 [ 244.317056][T15044] vm_mmap_pgoff+0x398/0x45c [ 244.317775][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 244.318486][T15044] __arm64_sys_mmap+0xf8/0x110 [ 244.319183][T15044] invoke_syscall+0x98/0x2b8 [ 244.319894][T15044] el0_svc_common+0x130/0x23c [ 244.320608][T15044] do_el0_svc+0x48/0x58 [ 244.321205][T15044] el0_svc+0x58/0x180 [ 244.321801][T15044] el0t_64_sync_handler+0x84/0x12c [ 244.322566][T15044] el0t_64_sync+0x198/0x19c [ 244.323234][T15044] irq event stamp: 7192 [ 244.323836][T15044] hardirqs last enabled at (7191): [] exit_to_kernel_mode+0xc0/0xf0 [ 244.325196][T15044] hardirqs last disabled at (7192): [] el1_brk64+0x1c/0x48 [ 244.326455][T15044] softirqs last enabled at (7146): [] handle_softirqs+0xaf8/0xc88 [ 244.327895][T15044] softirqs last disabled at (6609): [] __do_softirq+0x14/0x20 [ 244.329271][T15044] ---[ end trace 0000000000000000 ]--- [ 244.330373][T15044] page: refcount:1030 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 244.330387][T15044] head: order:9 mapcount:517 entire_mapcount:0 nr_pages_mapped:517 pincount:0 [ 244.330400][T15044] memcg:ffff0000c19c2580 [ 244.330410][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 244.330427][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 244.330441][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.330450][T15044] raw: 0000000000000000 0000000000000000 00000406ffffffff ffff0000c19c2580 [ 244.330458][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.330466][T15044] head: 0000000000000000 0000000000000000 00000406ffffffff ffff0000c19c2580 [ 244.330474][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000020500000204 00000000ffffffff [ 244.330482][T15044] head: ffffffff00000204 0000000000000024 00000000ffffffff 0000000000000200 [ 244.330488][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 244.330531][T15044] ------------[ cut here ]------------ [ 244.330534][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 244.351404][T15044] Modules linked in: [ 244.352009][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 244.353957][T15044] Tainted: [W]=WARN [ 244.354505][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 244.356098][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 244.357307][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 244.358172][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 244.359036][T15044] sp : ffff8000a0a672c0 [ 244.359623][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020210000 [ 244.360901][T15044] x26: 00e800014f012b43 x25: dfff800000000000 x24: 000000000020ac5d [ 244.362147][T15044] x23: fffffdffc43c04c0 x22: fffffdffc43c0488 x21: 0000000000000000 [ 244.363340][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 244.364460][T15044] x17: 3030303030303020 x16: ffff80008b007340 x15: 0000000000000001 [ 244.365572][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 244.366819][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 244.368043][T15044] x8 : 14e578ac1de0e000 x7 : ffff800080563af4 x6 : 0000000000000000 [ 244.369255][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 244.370482][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 244.371688][T15044] Call trace: [ 244.372254][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 244.373204][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 244.374106][T15044] set_pte_range+0x2e4/0x49c [ 244.375110][T15044] filemap_map_pages+0xb54/0x155c [ 244.375934][T15044] handle_mm_fault+0x2b64/0x4d34 [ 244.376716][T15044] __get_user_pages+0x1f40/0x2da0 [ 244.377483][T15044] populate_vma_page_range+0x258/0x348 [ 244.378322][T15044] __mm_populate+0x208/0x330 [ 244.378980][T15044] vm_mmap_pgoff+0x398/0x45c [ 244.379658][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 244.380368][T15044] __arm64_sys_mmap+0xf8/0x110 [ 244.381125][T15044] invoke_syscall+0x98/0x2b8 [ 244.381835][T15044] el0_svc_common+0x130/0x23c [ 244.382564][T15044] do_el0_svc+0x48/0x58 [ 244.383203][T15044] el0_svc+0x58/0x180 [ 244.383838][T15044] el0t_64_sync_handler+0x84/0x12c [ 244.384634][T15044] el0t_64_sync+0x198/0x19c [ 244.385340][T15044] irq event stamp: 7330 [ 244.385991][T15044] hardirqs last enabled at (7329): [] exit_to_kernel_mode+0xc0/0xf0 [ 244.387477][T15044] hardirqs last disabled at (7330): [] el1_brk64+0x1c/0x48 [ 244.388810][T15044] softirqs last enabled at (7280): [] handle_softirqs+0xaf8/0xc88 [ 244.390262][T15044] softirqs last disabled at (7195): [] __do_softirq+0x14/0x20 [ 244.391706][T15044] ---[ end trace 0000000000000000 ]--- [ 244.395725][T15044] ================================================================== [ 244.395737][T15044] BUG: KASAN: slab-out-of-bounds in filemap_map_pages+0xa94/0x155c [ 244.395751][T15044] Read of size 8 at addr ffff0000f6fa30b0 by task syz.3.402/15044 [ 244.395759][T15044] [ 244.395763][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 244.395771][T15044] Tainted: [W]=WARN [ 244.395773][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 244.395777][T15044] Call trace: [ 244.395779][T15044] show_stack+0x2c/0x3c (C) [ 244.395785][T15044] __dump_stack+0x30/0x40 [ 244.395791][T15044] dump_stack_lvl+0xd8/0x12c [ 244.395796][T15044] print_address_description+0xa8/0x238 [ 244.395803][T15044] print_report+0x68/0x84 [ 244.395809][T15044] kasan_report+0xb0/0x110 [ 244.395816][T15044] __asan_report_load8_noabort+0x20/0x2c [ 244.395822][T15044] filemap_map_pages+0xa94/0x155c [ 244.395826][T15044] handle_mm_fault+0x2b64/0x4d34 [ 244.395833][T15044] __get_user_pages+0x1f40/0x2da0 [ 244.395839][T15044] populate_vma_page_range+0x258/0x348 [ 244.395844][T15044] __mm_populate+0x208/0x330 [ 244.395849][T15044] vm_mmap_pgoff+0x398/0x45c [ 244.395854][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 244.395860][T15044] __arm64_sys_mmap+0xf8/0x110 [ 244.395865][T15044] invoke_syscall+0x98/0x2b8 [ 244.395870][T15044] el0_svc_common+0x130/0x23c [ 244.395874][T15044] do_el0_svc+0x48/0x58 [ 244.395879][T15044] el0_svc+0x58/0x180 [ 244.395885][T15044] el0t_64_sync_handler+0x84/0x12c [ 244.395890][T15044] el0t_64_sync+0x198/0x19c [ 244.395896][T15044] [ 244.395897][T15044] Allocated by task 14888: [ 244.395901][T15044] kasan_save_track+0x40/0x78 [ 244.395907][T15044] kasan_save_alloc_info+0x44/0x54 [ 244.395911][T15044] __kasan_slab_alloc+0x70/0x88 [ 244.395916][T15044] kmem_cache_alloc_noprof+0x238/0x3e8 [ 244.395922][T15044] __kernfs_new_node+0xe4/0x5c4 [ 244.395927][T15044] kernfs_new_node+0xe8/0x1f4 [ 244.395931][T15044] __kernfs_create_file+0x60/0x2d4 [ 244.395935][T15044] sysfs_add_file_mode_ns+0x1d8/0x294 [ 244.395940][T15044] internal_create_group+0x5c0/0xe28 [ 244.395945][T15044] sysfs_create_groups+0x60/0x134 [ 244.395950][T15044] device_add_attrs+0xd8/0x6e8 [ 244.395956][T15044] device_add+0x490/0xa60 [ 244.395960][T15044] netdev_register_kobject+0x15c/0x2e0 [ 244.395966][T15044] register_netdevice+0xb58/0x1248 [ 244.395971][T15044] wg_newlink+0x32c/0x58c [ 244.395978][T15044] rtnl_newlink_create+0x28c/0x9ac [ 244.395982][T15044] rtnl_newlink+0x1194/0x15dc [ 244.395988][T15044] rtnetlink_rcv_msg+0x664/0x97c [ 244.395994][T15044] netlink_rcv_skb+0x220/0x3fc [ 244.396000][T15044] rtnetlink_rcv+0x28/0x38 [ 244.396006][T15044] netlink_unicast+0x694/0x8c4 [ 244.396011][T15044] netlink_sendmsg+0x648/0x930 [ 244.396017][T15044] __sys_sendto+0x36c/0x4f4 [ 244.396021][T15044] __arm64_sys_sendto+0xd8/0xf8 [ 244.396026][T15044] invoke_syscall+0x98/0x2b8 [ 244.396030][T15044] el0_svc_common+0x130/0x23c [ 244.396034][T15044] do_el0_svc+0x48/0x58 [ 244.396038][T15044] el0_svc+0x58/0x180 [ 244.396042][T15044] el0t_64_sync_handler+0x84/0x12c [ 244.396046][T15044] el0t_64_sync+0x198/0x19c [ 244.396050][T15044] [ 244.396052][T15044] The buggy address belongs to the object at ffff0000f6fa3000 [ 244.396052][T15044] which belongs to the cache kernfs_node_cache of size 176 [ 244.396057][T15044] The buggy address is located 0 bytes to the right of [ 244.396057][T15044] allocated 176-byte region [ffff0000f6fa3000, ffff0000f6fa30b0) [ 244.396062][T15044] [ 244.396064][T15044] The buggy address belongs to the physical page: [ 244.396067][T15044] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x136fa3 [ 244.396072][T15044] flags: 0x5ffc00000000000(node=0|zone=2|lastcpupid=0x7ff) [ 244.396077][T15044] page_type: f5(slab) [ 244.396082][T15044] raw: 05ffc00000000000 ffff0000c18b9000 fffffdffc34a00c0 dead000000000002 [ 244.396086][T15044] raw: 0000000000000000 0000000000110011 00000000f5000000 0000000000000000 [ 244.396088][T15044] page dumped because: kasan: bad access detected [ 244.396090][T15044] [ 244.396092][T15044] Memory state around the buggy address: [ 244.396094][T15044] ffff0000f6fa2f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 244.396098][T15044] ffff0000f6fa3000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 244.396101][T15044] >ffff0000f6fa3080: 00 00 00 00 00 00 fc fc fc fc fc fc fc fc 00 00 [ 244.396103][T15044] ^ [ 244.396106][T15044] ffff0000f6fa3100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 244.396110][T15044] ffff0000f6fa3180: 00 00 00 00 fc fc fc fc fc fc fc fc 00 00 00 00 [ 244.396112][T15044] ================================================================== [ 244.396867][T15044] Disabling lock debugging due to kernel taint [ 244.396879][T15044] page: refcount:1031 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 244.396891][T15044] head: order:9 mapcount:518 entire_mapcount:0 nr_pages_mapped:518 pincount:0 [ 244.396902][T15044] memcg:ffff0000c19c2580 [ 244.396910][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 244.396919][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 244.396930][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.396937][T15044] raw: 0000000000000000 0000000000000000 00000407ffffffff ffff0000c19c2580 [ 244.396944][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.396951][T15044] head: 0000000000000000 0000000000000000 00000407ffffffff ffff0000c19c2580 [ 244.396958][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000020600000205 00000000ffffffff [ 244.396965][T15044] head: ffffffff00000205 0000000000000024 00000000ffffffff 0000000000000200 [ 244.396971][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 244.397012][T15044] ------------[ cut here ]------------ [ 244.397015][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 244.485805][T15044] Modules linked in: [ 244.486401][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 244.488154][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 244.488909][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 244.490348][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 244.491591][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 244.492685][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 244.493684][T15044] sp : ffff8000a0a672c0 [ 244.494385][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 0000000020213000 [ 244.495678][T15044] x26: 00e800014f015b43 x25: dfff800000000000 x24: 000000000020ac5d [ 244.496982][T15044] x23: fffffdffc43c0548 x22: fffffdffc43c0540 x21: 0000000000000000 [ 244.498209][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 244.499444][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 244.500742][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 244.502068][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 244.503261][T15044] x8 : 14e578ac1de0e000 x7 : 000000000001f850 x6 : ffff800080563af4 [ 244.504504][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 244.505796][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 244.507047][T15044] Call trace: [ 244.507557][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 244.508503][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 244.509401][T15044] set_pte_range+0x2e4/0x49c [ 244.510158][T15044] filemap_map_pages+0xb54/0x155c [ 244.510950][T15044] handle_mm_fault+0x2b64/0x4d34 [ 244.511776][T15044] __get_user_pages+0x1f40/0x2da0 [ 244.512582][T15044] populate_vma_page_range+0x258/0x348 [ 244.513426][T15044] __mm_populate+0x208/0x330 [ 244.514160][T15044] vm_mmap_pgoff+0x398/0x45c [ 244.514938][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 244.515731][T15044] __arm64_sys_mmap+0xf8/0x110 [ 244.516547][T15044] invoke_syscall+0x98/0x2b8 [ 244.517313][T15044] el0_svc_common+0x130/0x23c [ 244.518131][T15044] do_el0_svc+0x48/0x58 [ 244.518839][T15044] el0_svc+0x58/0x180 [ 244.519487][T15044] el0t_64_sync_handler+0x84/0x12c [ 244.520384][T15044] el0t_64_sync+0x198/0x19c [ 244.521128][T15044] irq event stamp: 10813 [ 244.521818][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 244.523456][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 244.525027][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 244.526558][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 244.528022][T15044] ---[ end trace 0000000000000000 ]--- [ 244.529387][T15044] page: refcount:1031 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 244.529776][T15044] head: order:9 mapcount:518 entire_mapcount:0 nr_pages_mapped:518 pincount:0 [ 244.529787][T15044] memcg:ffff0000c19c2580 [ 244.529795][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 244.529807][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 244.529819][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.529827][T15044] raw: 0000000000000000 0000000000000000 00000407ffffffff ffff0000c19c2580 [ 244.529834][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.529841][T15044] head: 0000000000000000 0000000000000000 00000407ffffffff ffff0000c19c2580 [ 244.529848][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000020600000205 00000000ffffffff [ 244.529855][T15044] head: ffffffff00000205 0000000000000024 00000000ffffffff 0000000000000200 [ 244.529861][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 244.529904][T15044] ------------[ cut here ]------------ [ 244.529907][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 244.548423][T15044] Modules linked in: [ 244.549029][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 244.550954][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 244.551710][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 244.553134][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 244.554199][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 244.555059][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 244.555919][T15044] sp : ffff8000a0a672c0 [ 244.556570][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 0000000020213000 [ 244.557774][T15044] x26: 00e800014f015b43 x25: dfff800000000000 x24: 000000000020ac5d [ 244.559089][T15044] x23: fffffdffc43c0600 x22: fffffdffc43c05c8 x21: 0000000000000000 [ 244.560400][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 244.561622][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 244.562817][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 244.563990][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 244.565137][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000207e0 x6 : ffff800080563af4 [ 244.566374][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 244.567542][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 244.568843][T15044] Call trace: [ 244.569386][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 244.570401][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 244.571258][T15044] set_pte_range+0x2e4/0x49c [ 244.571973][T15044] filemap_map_pages+0xb54/0x155c [ 244.572779][T15044] handle_mm_fault+0x2b64/0x4d34 [ 244.573610][T15044] __get_user_pages+0x1f40/0x2da0 [ 244.574392][T15044] populate_vma_page_range+0x258/0x348 [ 244.575238][T15044] __mm_populate+0x208/0x330 [ 244.575982][T15044] vm_mmap_pgoff+0x398/0x45c [ 244.576797][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 244.577569][T15044] __arm64_sys_mmap+0xf8/0x110 [ 244.578345][T15044] invoke_syscall+0x98/0x2b8 [ 244.579142][T15044] el0_svc_common+0x130/0x23c [ 244.579887][T15044] do_el0_svc+0x48/0x58 [ 244.580585][T15044] el0_svc+0x58/0x180 [ 244.581217][T15044] el0t_64_sync_handler+0x84/0x12c [ 244.582105][T15044] el0t_64_sync+0x198/0x19c [ 244.582828][T15044] irq event stamp: 10813 [ 244.583491][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 244.585031][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 244.586545][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 244.587996][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 244.589494][T15044] ---[ end trace 0000000000000000 ]--- [ 244.590813][T15044] page: refcount:1034 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 244.591175][T15044] head: order:9 mapcount:521 entire_mapcount:0 nr_pages_mapped:521 pincount:0 [ 244.591185][T15044] memcg:ffff0000c19c2580 [ 244.591193][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 244.591204][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 244.591217][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.591224][T15044] raw: 0000000000000000 0000000000000000 0000040affffffff ffff0000c19c2580 [ 244.591232][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.591239][T15044] head: 0000000000000000 0000000000000000 0000040affffffff ffff0000c19c2580 [ 244.591246][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000020900000208 00000000ffffffff [ 244.591253][T15044] head: ffffffff00000208 0000000000000024 00000000ffffffff 0000000000000200 [ 244.591258][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 244.591300][T15044] ------------[ cut here ]------------ [ 244.591303][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 244.609097][T15044] Modules linked in: [ 244.609657][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 244.611364][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 244.612073][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 244.613451][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 244.614644][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 244.615565][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 244.616469][T15044] sp : ffff8000a0a672c0 [ 244.617056][T15044] x29: ffff8000a0a672c0 x28: 0000000000000007 x27: 0000000020217000 [ 244.618241][T15044] x26: 00e800014f019b43 x25: dfff800000000000 x24: 000000000020ac5d [ 244.619504][T15044] x23: fffffdffc43c0648 x22: fffffdffc43c0640 x21: 0000000000000000 [ 244.620870][T15044] x20: 0000000000000007 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 244.622148][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 244.623517][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 244.624719][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 244.625955][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000021810 x6 : ffff800080563af4 [ 244.627145][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 244.628335][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 244.629485][T15044] Call trace: [ 244.629947][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 244.630828][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 244.631689][T15044] set_pte_range+0x2e4/0x49c [ 244.632342][T15044] filemap_map_pages+0xb54/0x155c [ 244.633118][T15044] handle_mm_fault+0x2b64/0x4d34 [ 244.633894][T15044] __get_user_pages+0x1f40/0x2da0 [ 244.634636][T15044] populate_vma_page_range+0x258/0x348 [ 244.635492][T15044] __mm_populate+0x208/0x330 [ 244.636164][T15044] vm_mmap_pgoff+0x398/0x45c [ 244.636815][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 244.637518][T15044] __arm64_sys_mmap+0xf8/0x110 [ 244.638279][T15044] invoke_syscall+0x98/0x2b8 [ 244.639052][T15044] el0_svc_common+0x130/0x23c [ 244.639860][T15044] do_el0_svc+0x48/0x58 [ 244.640600][T15044] el0_svc+0x58/0x180 [ 244.641287][T15044] el0t_64_sync_handler+0x84/0x12c [ 244.642085][T15044] el0t_64_sync+0x198/0x19c [ 244.642755][T15044] irq event stamp: 10813 [ 244.643402][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 244.644899][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 244.646210][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 244.647696][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 244.649073][T15044] ---[ end trace 0000000000000000 ]--- [ 244.650009][T15044] page: refcount:1034 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 244.650028][T15044] head: order:9 mapcount:521 entire_mapcount:0 nr_pages_mapped:521 pincount:0 [ 244.650039][T15044] memcg:ffff0000c19c2580 [ 244.650048][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 244.650064][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 244.650078][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.650086][T15044] raw: 0000000000000000 0000000000000000 0000040affffffff ffff0000c19c2580 [ 244.650094][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.650102][T15044] head: 0000000000000000 0000000000000000 0000040affffffff ffff0000c19c2580 [ 244.650109][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000020900000208 00000000ffffffff [ 244.650117][T15044] head: ffffffff00000208 0000000000000024 00000000ffffffff 0000000000000200 [ 244.650122][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 244.650163][T15044] ------------[ cut here ]------------ [ 244.650166][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 244.669507][T15044] Modules linked in: [ 244.670083][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 244.671866][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 244.672552][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 244.673982][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 244.675186][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 244.676087][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 244.676969][T15044] sp : ffff8000a0a672c0 [ 244.677624][T15044] x29: ffff8000a0a672c0 x28: 0000000000000007 x27: 0000000020217000 [ 244.678894][T15044] x26: 00e800014f019b43 x25: dfff800000000000 x24: 000000000020ac5d [ 244.680095][T15044] x23: fffffdffc43c0800 x22: fffffdffc43c07c8 x21: 0000000000000000 [ 244.681272][T15044] x20: 0000000000000007 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 244.682536][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 244.683716][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 244.684944][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 244.686242][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000022c88 x6 : ffff800080563af4 [ 244.687630][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 244.688947][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 244.690192][T15044] Call trace: [ 244.690715][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 244.691562][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 244.692396][T15044] set_pte_range+0x2e4/0x49c [ 244.693063][T15044] filemap_map_pages+0xb54/0x155c [ 244.693849][T15044] handle_mm_fault+0x2b64/0x4d34 [ 244.694579][T15044] __get_user_pages+0x1f40/0x2da0 [ 244.695356][T15044] populate_vma_page_range+0x258/0x348 [ 244.696167][T15044] __mm_populate+0x208/0x330 [ 244.696826][T15044] vm_mmap_pgoff+0x398/0x45c [ 244.697454][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 244.698189][T15044] __arm64_sys_mmap+0xf8/0x110 [ 244.698994][T15044] invoke_syscall+0x98/0x2b8 [ 244.699731][T15044] el0_svc_common+0x130/0x23c [ 244.700460][T15044] do_el0_svc+0x48/0x58 [ 244.701094][T15044] el0_svc+0x58/0x180 [ 244.701734][T15044] el0t_64_sync_handler+0x84/0x12c [ 244.702493][T15044] el0t_64_sync+0x198/0x19c [ 244.703253][T15044] irq event stamp: 10813 [ 244.703905][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 244.705398][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 244.706882][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 244.708442][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 244.709881][T15044] ---[ end trace 0000000000000000 ]--- [ 244.711070][T15044] page: refcount:1041 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 244.711443][T15044] head: order:9 mapcount:528 entire_mapcount:0 nr_pages_mapped:528 pincount:0 [ 244.711453][T15044] memcg:ffff0000c19c2580 [ 244.711460][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 244.711470][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 244.711481][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.711489][T15044] raw: 0000000000000000 0000000000000000 00000411ffffffff ffff0000c19c2580 [ 244.711496][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.711503][T15044] head: 0000000000000000 0000000000000000 00000411ffffffff ffff0000c19c2580 [ 244.711510][T15044] head: 05ffc00000000209 fffffdffc43b8001 000002100000020f 00000000ffffffff [ 244.711517][T15044] head: ffffffff0000020f 0000000000000024 00000000ffffffff 0000000000000200 [ 244.711523][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 244.711564][T15044] ------------[ cut here ]------------ [ 244.711567][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 244.731096][T15044] Modules linked in: [ 244.731743][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 244.733867][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 244.734694][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 244.736367][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 244.737674][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 244.738681][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 244.739603][T15044] sp : ffff8000a0a672c0 [ 244.740275][T15044] x29: ffff8000a0a672c0 x28: 0000000000000002 x27: 0000000020220000 [ 244.741612][T15044] x26: 00e800014f022b43 x25: dfff800000000000 x24: 000000000020ac5d [ 244.742995][T15044] x23: fffffdffc43c0888 x22: fffffdffc43c0880 x21: 0000000000000000 [ 244.744260][T15044] x20: 0000000000000002 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 244.745566][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 244.746793][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 244.748127][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 244.749389][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000023fe8 x6 : ffff800080563af4 [ 244.750567][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 244.751856][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 244.753033][T15044] Call trace: [ 244.753564][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 244.754484][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 244.755371][T15044] set_pte_range+0x2e4/0x49c [ 244.756155][T15044] filemap_map_pages+0xb54/0x155c [ 244.756991][T15044] handle_mm_fault+0x2b64/0x4d34 [ 244.757817][T15044] __get_user_pages+0x1f40/0x2da0 [ 244.758653][T15044] populate_vma_page_range+0x258/0x348 [ 244.759595][T15044] __mm_populate+0x208/0x330 [ 244.760434][T15044] vm_mmap_pgoff+0x398/0x45c [ 244.761282][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 244.762067][T15044] __arm64_sys_mmap+0xf8/0x110 [ 244.762902][T15044] invoke_syscall+0x98/0x2b8 [ 244.763654][T15044] el0_svc_common+0x130/0x23c [ 244.764453][T15044] do_el0_svc+0x48/0x58 [ 244.765097][T15044] el0_svc+0x58/0x180 [ 244.765678][T15044] el0t_64_sync_handler+0x84/0x12c [ 244.766506][T15044] el0t_64_sync+0x198/0x19c [ 244.767244][T15044] irq event stamp: 10813 [ 244.767920][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 244.769496][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 244.771181][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 244.772872][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 244.774364][T15044] ---[ end trace 0000000000000000 ]--- [ 244.775760][T15044] page: refcount:1041 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 244.776134][T15044] head: order:9 mapcount:528 entire_mapcount:0 nr_pages_mapped:528 pincount:0 [ 244.776145][T15044] memcg:ffff0000c19c2580 [ 244.776152][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 244.776162][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 244.776174][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.776182][T15044] raw: 0000000000000000 0000000000000000 00000411ffffffff ffff0000c19c2580 [ 244.776189][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.776197][T15044] head: 0000000000000000 0000000000000000 00000411ffffffff ffff0000c19c2580 [ 244.776204][T15044] head: 05ffc00000000209 fffffdffc43b8001 000002100000020f 00000000ffffffff [ 244.776211][T15044] head: ffffffff0000020f 0000000000000024 00000000ffffffff 0000000000000200 [ 244.776216][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 244.776258][T15044] ------------[ cut here ]------------ [ 244.776261][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 244.796587][T15044] Modules linked in: [ 244.797227][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 244.799067][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 244.799846][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 244.801384][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 244.802689][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 244.803685][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 244.804644][T15044] sp : ffff8000a0a672c0 [ 244.805295][T15044] x29: ffff8000a0a672c0 x28: 0000000000000002 x27: 0000000020220000 [ 244.806562][T15044] x26: 00e800014f022b43 x25: dfff800000000000 x24: 000000000020ac5d [ 244.807848][T15044] x23: fffffdffc43c0900 x22: fffffdffc43c08c8 x21: 0000000000000000 [ 244.809074][T15044] x20: 0000000000000002 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 244.810309][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 244.811518][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 244.812752][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 244.813892][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000024fa0 x6 : ffff800080563af4 [ 244.815105][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 244.816289][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 244.817518][T15044] Call trace: [ 244.818009][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 244.818906][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 244.819717][T15044] set_pte_range+0x2e4/0x49c [ 244.820381][T15044] filemap_map_pages+0xb54/0x155c [ 244.821132][T15044] handle_mm_fault+0x2b64/0x4d34 [ 244.821893][T15044] __get_user_pages+0x1f40/0x2da0 [ 244.822658][T15044] populate_vma_page_range+0x258/0x348 [ 244.823416][T15044] __mm_populate+0x208/0x330 [ 244.824058][T15044] vm_mmap_pgoff+0x398/0x45c [ 244.824781][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 244.825524][T15044] __arm64_sys_mmap+0xf8/0x110 [ 244.826218][T15044] invoke_syscall+0x98/0x2b8 [ 244.826884][T15044] el0_svc_common+0x130/0x23c [ 244.827620][T15044] do_el0_svc+0x48/0x58 [ 244.828245][T15044] el0_svc+0x58/0x180 [ 244.828878][T15044] el0t_64_sync_handler+0x84/0x12c [ 244.829694][T15044] el0t_64_sync+0x198/0x19c [ 244.830431][T15044] irq event stamp: 10813 [ 244.831070][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 244.832497][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 244.834078][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 244.835688][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 244.837209][T15044] ---[ end trace 0000000000000000 ]--- [ 244.838259][T15044] page: refcount:1043 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 244.838273][T15044] head: order:9 mapcount:530 entire_mapcount:0 nr_pages_mapped:530 pincount:0 [ 244.838284][T15044] memcg:ffff0000c19c2580 [ 244.838293][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 244.838307][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 244.838320][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.838329][T15044] raw: 0000000000000000 0000000000000000 00000413ffffffff ffff0000c19c2580 [ 244.838337][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.838344][T15044] head: 0000000000000000 0000000000000000 00000413ffffffff ffff0000c19c2580 [ 244.838351][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000021200000211 00000000ffffffff [ 244.838359][T15044] head: ffffffff00000211 0000000000000024 00000000ffffffff 0000000000000200 [ 244.838364][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 244.838405][T15044] ------------[ cut here ]------------ [ 244.838408][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 244.856809][T15044] Modules linked in: [ 244.857394][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 244.859178][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 244.859880][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 244.861520][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 244.862721][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 244.863603][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 244.864579][T15044] sp : ffff8000a0a672c0 [ 244.865189][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020223000 [ 244.866361][T15044] x26: 00e800014f025b43 x25: dfff800000000000 x24: 000000000020ac5d [ 244.867591][T15044] x23: fffffdffc43c0948 x22: fffffdffc43c0940 x21: 0000000000000000 [ 244.868778][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 244.870021][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 244.871296][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 244.872462][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 244.873631][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000025d58 x6 : ffff800080563af4 [ 244.874916][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 244.876148][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 244.877381][T15044] Call trace: [ 244.877877][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 244.878852][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 244.879727][T15044] set_pte_range+0x2e4/0x49c [ 244.880455][T15044] filemap_map_pages+0xb54/0x155c [ 244.881252][T15044] handle_mm_fault+0x2b64/0x4d34 [ 244.882026][T15044] __get_user_pages+0x1f40/0x2da0 [ 244.882810][T15044] populate_vma_page_range+0x258/0x348 [ 244.883646][T15044] __mm_populate+0x208/0x330 [ 244.884396][T15044] vm_mmap_pgoff+0x398/0x45c [ 244.885124][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 244.885842][T15044] __arm64_sys_mmap+0xf8/0x110 [ 244.886578][T15044] invoke_syscall+0x98/0x2b8 [ 244.887268][T15044] el0_svc_common+0x130/0x23c [ 244.887989][T15044] do_el0_svc+0x48/0x58 [ 244.888608][T15044] el0_svc+0x58/0x180 [ 244.889239][T15044] el0t_64_sync_handler+0x84/0x12c [ 244.890041][T15044] el0t_64_sync+0x198/0x19c [ 244.890775][T15044] irq event stamp: 10813 [ 244.891388][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 244.892794][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 244.894218][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 244.895624][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 244.897082][T15044] ---[ end trace 0000000000000000 ]--- [ 244.898351][T15044] page: refcount:1043 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 244.898725][T15044] head: order:9 mapcount:530 entire_mapcount:0 nr_pages_mapped:530 pincount:0 [ 244.898735][T15044] memcg:ffff0000c19c2580 [ 244.898744][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 244.898758][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 244.898771][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.898779][T15044] raw: 0000000000000000 0000000000000000 00000413ffffffff ffff0000c19c2580 [ 244.898786][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.898794][T15044] head: 0000000000000000 0000000000000000 00000413ffffffff ffff0000c19c2580 [ 244.898801][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000021200000211 00000000ffffffff [ 244.898807][T15044] head: ffffffff00000211 0000000000000024 00000000ffffffff 0000000000000200 [ 244.898813][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 244.898854][T15044] ------------[ cut here ]------------ [ 244.898857][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 244.916961][T15044] Modules linked in: [ 244.917583][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 244.919438][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 244.920186][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 244.921728][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 244.922907][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 244.923814][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 244.924754][T15044] sp : ffff8000a0a672c0 [ 244.925425][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020223000 [ 244.926735][T15044] x26: 00e800014f025b43 x25: dfff800000000000 x24: 000000000020ac5d [ 244.928021][T15044] x23: fffffdffc43c0980 x22: fffffdffc43c0948 x21: 0000000000000000 [ 244.929319][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 244.930615][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 244.931928][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 244.933198][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 244.934405][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000026c98 x6 : ffff800080563af4 [ 244.935653][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 244.936814][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 244.938041][T15044] Call trace: [ 244.938514][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 244.939382][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 244.940219][T15044] set_pte_range+0x2e4/0x49c [ 244.940889][T15044] filemap_map_pages+0xb54/0x155c [ 244.941636][T15044] handle_mm_fault+0x2b64/0x4d34 [ 244.942396][T15044] __get_user_pages+0x1f40/0x2da0 [ 244.943216][T15044] populate_vma_page_range+0x258/0x348 [ 244.944058][T15044] __mm_populate+0x208/0x330 [ 244.944751][T15044] vm_mmap_pgoff+0x398/0x45c [ 244.945484][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 244.946233][T15044] __arm64_sys_mmap+0xf8/0x110 [ 244.946982][T15044] invoke_syscall+0x98/0x2b8 [ 244.947699][T15044] el0_svc_common+0x130/0x23c [ 244.948481][T15044] do_el0_svc+0x48/0x58 [ 244.949157][T15044] el0_svc+0x58/0x180 [ 244.949809][T15044] el0t_64_sync_handler+0x84/0x12c [ 244.950581][T15044] el0t_64_sync+0x198/0x19c [ 244.951244][T15044] irq event stamp: 10813 [ 244.951882][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 244.953423][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 244.954995][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 244.956515][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 244.957868][T15044] ---[ end trace 0000000000000000 ]--- [ 244.958825][T15044] page: refcount:1044 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 244.958838][T15044] head: order:9 mapcount:531 entire_mapcount:0 nr_pages_mapped:531 pincount:0 [ 244.958848][T15044] memcg:ffff0000c19c2580 [ 244.958857][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 244.958872][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 244.958886][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.958894][T15044] raw: 0000000000000000 0000000000000000 00000414ffffffff ffff0000c19c2580 [ 244.958902][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 244.958910][T15044] head: 0000000000000000 0000000000000000 00000414ffffffff ffff0000c19c2580 [ 244.958917][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000021300000212 00000000ffffffff [ 244.958924][T15044] head: ffffffff00000212 0000000000000024 00000000ffffffff 0000000000000200 [ 244.958929][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 244.958970][T15044] ------------[ cut here ]------------ [ 244.958973][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 244.977371][T15044] Modules linked in: [ 244.977949][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 244.979787][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 244.980451][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 244.981797][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 244.982930][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 244.983891][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 244.984812][T15044] sp : ffff8000a0a672c0 [ 244.985422][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 0000000020227000 [ 244.986669][T15044] x26: 00e800014f029b43 x25: dfff800000000000 x24: 000000000020ac5d [ 244.987917][T15044] x23: fffffdffc43c0a48 x22: fffffdffc43c0a40 x21: 0000000000000000 [ 244.989246][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 244.990456][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 244.991669][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 244.992890][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 244.994154][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000027d50 x6 : ffff800080563af4 [ 244.995408][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 244.996685][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 244.997992][T15044] Call trace: [ 244.998526][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 244.999490][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 245.000312][T15044] set_pte_range+0x2e4/0x49c [ 245.000994][T15044] filemap_map_pages+0xb54/0x155c [ 245.001806][T15044] handle_mm_fault+0x2b64/0x4d34 [ 245.002540][T15044] __get_user_pages+0x1f40/0x2da0 [ 245.003416][T15044] populate_vma_page_range+0x258/0x348 [ 245.004238][T15044] __mm_populate+0x208/0x330 [ 245.004951][T15044] vm_mmap_pgoff+0x398/0x45c [ 245.005629][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 245.006321][T15044] __arm64_sys_mmap+0xf8/0x110 [ 245.007021][T15044] invoke_syscall+0x98/0x2b8 [ 245.007660][T15044] el0_svc_common+0x130/0x23c [ 245.008418][T15044] do_el0_svc+0x48/0x58 [ 245.009029][T15044] el0_svc+0x58/0x180 [ 245.009641][T15044] el0t_64_sync_handler+0x84/0x12c [ 245.010403][T15044] el0t_64_sync+0x198/0x19c [ 245.011080][T15044] irq event stamp: 10813 [ 245.011703][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 245.013306][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 245.014767][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 245.016232][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 245.017704][T15044] ---[ end trace 0000000000000000 ]--- [ 245.019760][T15044] page: refcount:1044 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 245.020262][T15044] head: order:9 mapcount:531 entire_mapcount:0 nr_pages_mapped:531 pincount:0 [ 245.020273][T15044] memcg:ffff0000c19c2580 [ 245.020282][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 245.020298][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 245.020312][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.020320][T15044] raw: 0000000000000000 0000000000000000 00000414ffffffff ffff0000c19c2580 [ 245.020327][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.020334][T15044] head: 0000000000000000 0000000000000000 00000414ffffffff ffff0000c19c2580 [ 245.020342][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000021300000212 00000000ffffffff [ 245.020349][T15044] head: ffffffff00000212 0000000000000024 00000000ffffffff 0000000000000200 [ 245.020354][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 245.020397][T15044] ------------[ cut here ]------------ [ 245.020400][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 245.039292][T15044] Modules linked in: [ 245.039856][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 245.041758][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 245.042483][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 245.044126][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 245.045388][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 245.046383][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 245.047333][T15044] sp : ffff8000a0a672c0 [ 245.047964][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 0000000020227000 [ 245.049229][T15044] x26: 00e800014f029b43 x25: dfff800000000000 x24: 000000000020ac5d [ 245.050428][T15044] x23: fffffdffc43c0b00 x22: fffffdffc43c0ac8 x21: 0000000000000000 [ 245.051697][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 245.053011][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 245.054294][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 245.055511][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 245.056726][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000028ec8 x6 : ffff800080563af4 [ 245.057972][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 245.059248][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 245.060455][T15044] Call trace: [ 245.060977][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 245.061962][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 245.062767][T15044] set_pte_range+0x2e4/0x49c [ 245.063461][T15044] filemap_map_pages+0xb54/0x155c [ 245.064278][T15044] handle_mm_fault+0x2b64/0x4d34 [ 245.065004][T15044] __get_user_pages+0x1f40/0x2da0 [ 245.065844][T15044] populate_vma_page_range+0x258/0x348 [ 245.066756][T15044] __mm_populate+0x208/0x330 [ 245.067472][T15044] vm_mmap_pgoff+0x398/0x45c [ 245.068150][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 245.068912][T15044] __arm64_sys_mmap+0xf8/0x110 [ 245.069644][T15044] invoke_syscall+0x98/0x2b8 [ 245.070304][T15044] el0_svc_common+0x130/0x23c [ 245.071089][T15044] do_el0_svc+0x48/0x58 [ 245.071741][T15044] el0_svc+0x58/0x180 [ 245.072371][T15044] el0t_64_sync_handler+0x84/0x12c [ 245.073144][T15044] el0t_64_sync+0x198/0x19c [ 245.073879][T15044] irq event stamp: 10813 [ 245.074511][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 245.076069][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 245.077592][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 245.079177][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 245.080574][T15044] ---[ end trace 0000000000000000 ]--- [ 245.081873][T15044] page: refcount:1047 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 245.082252][T15044] head: order:9 mapcount:534 entire_mapcount:0 nr_pages_mapped:534 pincount:0 [ 245.082262][T15044] memcg:ffff0000c19c2580 [ 245.082272][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 245.082285][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 245.082298][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.082306][T15044] raw: 0000000000000000 0000000000000000 00000417ffffffff ffff0000c19c2580 [ 245.082314][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.082321][T15044] head: 0000000000000000 0000000000000000 00000417ffffffff ffff0000c19c2580 [ 245.082328][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000021600000215 00000000ffffffff [ 245.082335][T15044] head: ffffffff00000215 0000000000000024 00000000ffffffff 0000000000000200 [ 245.082341][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 245.082381][T15044] ------------[ cut here ]------------ [ 245.082384][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 245.101300][T15044] Modules linked in: [ 245.101929][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 245.103775][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 245.104517][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 245.106079][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 245.107275][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 245.108229][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 245.109203][T15044] sp : ffff8000a0a672c0 [ 245.109856][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002022c000 [ 245.111158][T15044] x26: 00e800014f02eb43 x25: dfff800000000000 x24: 000000000020ac5d [ 245.112381][T15044] x23: fffffdffc43c0b88 x22: fffffdffc43c0b80 x21: 0000000000000000 [ 245.113688][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 245.114902][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 245.116110][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 245.117274][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 245.118423][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000029dd0 x6 : ffff800080563af4 [ 245.119605][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 245.120751][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 245.122026][T15044] Call trace: [ 245.122547][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 245.123527][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 245.124401][T15044] set_pte_range+0x2e4/0x49c [ 245.125125][T15044] filemap_map_pages+0xb54/0x155c [ 245.125951][T15044] handle_mm_fault+0x2b64/0x4d34 [ 245.126747][T15044] __get_user_pages+0x1f40/0x2da0 [ 245.127564][T15044] populate_vma_page_range+0x258/0x348 [ 245.128369][T15044] __mm_populate+0x208/0x330 [ 245.129068][T15044] vm_mmap_pgoff+0x398/0x45c [ 245.129748][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 245.130505][T15044] __arm64_sys_mmap+0xf8/0x110 [ 245.131166][T15044] invoke_syscall+0x98/0x2b8 [ 245.131872][T15044] el0_svc_common+0x130/0x23c [ 245.132599][T15044] do_el0_svc+0x48/0x58 [ 245.133233][T15044] el0_svc+0x58/0x180 [ 245.133798][T15044] el0t_64_sync_handler+0x84/0x12c [ 245.134656][T15044] el0t_64_sync+0x198/0x19c [ 245.135366][T15044] irq event stamp: 10813 [ 245.136073][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 245.137742][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 245.139304][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 245.140842][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 245.142357][T15044] ---[ end trace 0000000000000000 ]--- [ 245.143369][T15044] page: refcount:1047 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 245.143382][T15044] head: order:9 mapcount:534 entire_mapcount:0 nr_pages_mapped:534 pincount:0 [ 245.143392][T15044] memcg:ffff0000c19c2580 [ 245.143401][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 245.143416][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 245.143429][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.143438][T15044] raw: 0000000000000000 0000000000000000 00000417ffffffff ffff0000c19c2580 [ 245.143446][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.143453][T15044] head: 0000000000000000 0000000000000000 00000417ffffffff ffff0000c19c2580 [ 245.143460][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000021600000215 00000000ffffffff [ 245.143467][T15044] head: ffffffff00000215 0000000000000024 00000000ffffffff 0000000000000200 [ 245.143472][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 245.143513][T15044] ------------[ cut here ]------------ [ 245.143516][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 245.162316][T15044] Modules linked in: [ 245.162886][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 245.164946][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 245.165778][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 245.167454][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 245.168620][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 245.169511][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 245.170438][T15044] sp : ffff8000a0a672c0 [ 245.171032][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002022c000 [ 245.172253][T15044] x26: 00e800014f02eb43 x25: dfff800000000000 x24: 000000000020ac5d [ 245.173556][T15044] x23: fffffdffc43c0bc0 x22: fffffdffc43c0b88 x21: 0000000000000000 [ 245.174923][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 245.176220][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 245.177607][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 245.178898][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 245.180281][T15044] x8 : 14e578ac1de0e000 x7 : 000000000002aaa8 x6 : ffff800080563af4 [ 245.181606][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 245.182923][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 245.184304][T15044] Call trace: [ 245.184814][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 245.185778][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 245.186663][T15044] set_pte_range+0x2e4/0x49c [ 245.187383][T15044] filemap_map_pages+0xb54/0x155c [ 245.188143][T15044] handle_mm_fault+0x2b64/0x4d34 [ 245.188909][T15044] __get_user_pages+0x1f40/0x2da0 [ 245.189678][T15044] populate_vma_page_range+0x258/0x348 [ 245.190525][T15044] __mm_populate+0x208/0x330 [ 245.191271][T15044] vm_mmap_pgoff+0x398/0x45c [ 245.191978][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 245.192714][T15044] __arm64_sys_mmap+0xf8/0x110 [ 245.193516][T15044] invoke_syscall+0x98/0x2b8 [ 245.194297][T15044] el0_svc_common+0x130/0x23c [ 245.195069][T15044] do_el0_svc+0x48/0x58 [ 245.195724][T15044] el0_svc+0x58/0x180 [ 245.196385][T15044] el0t_64_sync_handler+0x84/0x12c [ 245.197236][T15044] el0t_64_sync+0x198/0x19c [ 245.197919][T15044] irq event stamp: 10813 [ 245.198611][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 245.200256][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 245.201850][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 245.203274][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 245.204586][T15044] ---[ end trace 0000000000000000 ]--- [ 245.205782][T15044] page: refcount:1048 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 245.206148][T15044] head: order:9 mapcount:535 entire_mapcount:0 nr_pages_mapped:535 pincount:0 [ 245.206158][T15044] memcg:ffff0000c19c2580 [ 245.206166][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 245.206175][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 245.206187][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.206195][T15044] raw: 0000000000000000 0000000000000000 00000418ffffffff ffff0000c19c2580 [ 245.206202][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.206209][T15044] head: 0000000000000000 0000000000000000 00000418ffffffff ffff0000c19c2580 [ 245.206216][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000021700000216 00000000ffffffff [ 245.206223][T15044] head: ffffffff00000216 0000000000000024 00000000ffffffff 0000000000000200 [ 245.206228][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 245.206268][T15044] ------------[ cut here ]------------ [ 245.206271][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 245.224650][T15044] Modules linked in: [ 245.225181][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 245.226984][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 245.227746][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 245.229170][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 245.230265][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 245.231139][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 245.232005][T15044] sp : ffff8000a0a672c0 [ 245.232610][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002022e000 [ 245.233978][T15044] x26: 00e800014f030b43 x25: dfff800000000000 x24: 000000000020ac5d [ 245.235334][T15044] x23: fffffdffc43c0c08 x22: fffffdffc43c0c00 x21: 0000000000000000 [ 245.236658][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 245.237912][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 245.239254][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 245.240531][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 245.241835][T15044] x8 : 14e578ac1de0e000 x7 : 000000000002b7e8 x6 : ffff800080563af4 [ 245.243121][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 245.244374][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 245.245551][T15044] Call trace: [ 245.246011][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 245.246929][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 245.247781][T15044] set_pte_range+0x2e4/0x49c [ 245.248476][T15044] filemap_map_pages+0xb54/0x155c [ 245.249303][T15044] handle_mm_fault+0x2b64/0x4d34 [ 245.250166][T15044] __get_user_pages+0x1f40/0x2da0 [ 245.251029][T15044] populate_vma_page_range+0x258/0x348 [ 245.251954][T15044] __mm_populate+0x208/0x330 [ 245.252727][T15044] vm_mmap_pgoff+0x398/0x45c [ 245.253553][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 245.254306][T15044] __arm64_sys_mmap+0xf8/0x110 [ 245.255044][T15044] invoke_syscall+0x98/0x2b8 [ 245.255805][T15044] el0_svc_common+0x130/0x23c [ 245.256583][T15044] do_el0_svc+0x48/0x58 [ 245.257241][T15044] el0_svc+0x58/0x180 [ 245.257896][T15044] el0t_64_sync_handler+0x84/0x12c [ 245.258708][T15044] el0t_64_sync+0x198/0x19c [ 245.259410][T15044] irq event stamp: 10813 [ 245.260025][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 245.261483][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 245.262910][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 245.264269][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 245.265611][T15044] ---[ end trace 0000000000000000 ]--- [ 245.266585][T15044] page: refcount:1048 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 245.266602][T15044] head: order:9 mapcount:535 entire_mapcount:0 nr_pages_mapped:535 pincount:0 [ 245.266613][T15044] memcg:ffff0000c19c2580 [ 245.266623][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 245.266634][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 245.266651][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.266663][T15044] raw: 0000000000000000 0000000000000000 00000418ffffffff ffff0000c19c2580 [ 245.266674][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.266683][T15044] head: 0000000000000000 0000000000000000 00000418ffffffff ffff0000c19c2580 [ 245.266691][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000021700000216 00000000ffffffff [ 245.266698][T15044] head: ffffffff00000216 0000000000000024 00000000ffffffff 0000000000000200 [ 245.266704][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 245.266745][T15044] ------------[ cut here ]------------ [ 245.266748][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 245.286249][T15044] Modules linked in: [ 245.286855][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 245.288680][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 245.289435][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 245.290966][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 245.292114][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 245.293048][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 245.294020][T15044] sp : ffff8000a0a672c0 [ 245.294682][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002022e000 [ 245.296005][T15044] x26: 00e800014f030b43 x25: dfff800000000000 x24: 000000000020ac5d [ 245.297254][T15044] x23: fffffdffc43c0c40 x22: fffffdffc43c0c08 x21: 0000000000000000 [ 245.298545][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 245.299867][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 245.301101][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 245.302354][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 245.303597][T15044] x8 : 14e578ac1de0e000 x7 : 000000000002c760 x6 : ffff800080563af4 [ 245.304865][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 245.306114][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 245.307365][T15044] Call trace: [ 245.307889][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 245.308885][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 245.309791][T15044] set_pte_range+0x2e4/0x49c [ 245.310537][T15044] filemap_map_pages+0xb54/0x155c [ 245.311313][T15044] handle_mm_fault+0x2b64/0x4d34 [ 245.312110][T15044] __get_user_pages+0x1f40/0x2da0 [ 245.312898][T15044] populate_vma_page_range+0x258/0x348 [ 245.313714][T15044] __mm_populate+0x208/0x330 [ 245.314397][T15044] vm_mmap_pgoff+0x398/0x45c [ 245.315150][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 245.315927][T15044] __arm64_sys_mmap+0xf8/0x110 [ 245.316641][T15044] invoke_syscall+0x98/0x2b8 [ 245.317351][T15044] el0_svc_common+0x130/0x23c [ 245.318056][T15044] do_el0_svc+0x48/0x58 [ 245.318677][T15044] el0_svc+0x58/0x180 [ 245.319295][T15044] el0t_64_sync_handler+0x84/0x12c [ 245.320094][T15044] el0t_64_sync+0x198/0x19c [ 245.320813][T15044] irq event stamp: 10813 [ 245.321517][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 245.323094][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 245.324581][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 245.326133][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 245.327485][T15044] ---[ end trace 0000000000000000 ]--- [ 245.328772][T15044] page: refcount:1049 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 245.329142][T15044] head: order:9 mapcount:536 entire_mapcount:0 nr_pages_mapped:536 pincount:0 [ 245.329153][T15044] memcg:ffff0000c19c2580 [ 245.329160][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 245.329170][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 245.329183][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.329190][T15044] raw: 0000000000000000 0000000000000000 00000419ffffffff ffff0000c19c2580 [ 245.329197][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.329205][T15044] head: 0000000000000000 0000000000000000 00000419ffffffff ffff0000c19c2580 [ 245.329211][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000021800000217 00000000ffffffff [ 245.329218][T15044] head: ffffffff00000217 0000000000000024 00000000ffffffff 0000000000000200 [ 245.329224][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 245.329264][T15044] ------------[ cut here ]------------ [ 245.329267][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 245.347806][T15044] Modules linked in: [ 245.348404][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 245.350271][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 245.351079][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 245.352632][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 245.353819][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 245.354806][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 245.355698][T15044] sp : ffff8000a0a672c0 [ 245.356276][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 0000000020231000 [ 245.357479][T15044] x26: 00e800014f033b43 x25: dfff800000000000 x24: 000000000020ac5d [ 245.358787][T15044] x23: fffffdffc43c0cc8 x22: fffffdffc43c0cc0 x21: 0000000000000000 [ 245.360057][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 245.361269][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 245.362542][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 245.363798][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 245.365106][T15044] x8 : 14e578ac1de0e000 x7 : 000000000002da68 x6 : ffff800080563af4 [ 245.366328][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 245.367517][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 245.368756][T15044] Call trace: [ 245.369258][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 245.370244][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 245.371119][T15044] set_pte_range+0x2e4/0x49c [ 245.371849][T15044] filemap_map_pages+0xb54/0x155c [ 245.372626][T15044] handle_mm_fault+0x2b64/0x4d34 [ 245.373381][T15044] __get_user_pages+0x1f40/0x2da0 [ 245.374220][T15044] populate_vma_page_range+0x258/0x348 [ 245.375115][T15044] __mm_populate+0x208/0x330 [ 245.375861][T15044] vm_mmap_pgoff+0x398/0x45c [ 245.376619][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 245.377392][T15044] __arm64_sys_mmap+0xf8/0x110 [ 245.378170][T15044] invoke_syscall+0x98/0x2b8 [ 245.378899][T15044] el0_svc_common+0x130/0x23c [ 245.379641][T15044] do_el0_svc+0x48/0x58 [ 245.380299][T15044] el0_svc+0x58/0x180 [ 245.380963][T15044] el0t_64_sync_handler+0x84/0x12c [ 245.381862][T15044] el0t_64_sync+0x198/0x19c [ 245.382645][T15044] irq event stamp: 10813 [ 245.383333][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 245.384840][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 245.386268][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 245.387659][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 245.389013][T15044] ---[ end trace 0000000000000000 ]--- [ 245.390210][T15044] page: refcount:1049 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 245.390583][T15044] head: order:9 mapcount:536 entire_mapcount:0 nr_pages_mapped:536 pincount:0 [ 245.390593][T15044] memcg:ffff0000c19c2580 [ 245.390600][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 245.390611][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 245.390623][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.390630][T15044] raw: 0000000000000000 0000000000000000 00000419ffffffff ffff0000c19c2580 [ 245.390642][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.390650][T15044] head: 0000000000000000 0000000000000000 00000419ffffffff ffff0000c19c2580 [ 245.390659][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000021800000217 00000000ffffffff [ 245.390668][T15044] head: ffffffff00000217 0000000000000024 00000000ffffffff 0000000000000200 [ 245.390675][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 245.390717][T15044] ------------[ cut here ]------------ [ 245.390720][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 245.411275][T15044] Modules linked in: [ 245.411866][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 245.413746][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 245.414430][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 245.415891][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 245.417022][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 245.417951][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 245.418826][T15044] sp : ffff8000a0a672c0 [ 245.419396][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 0000000020231000 [ 245.420579][T15044] x26: 00e800014f033b43 x25: dfff800000000000 x24: 000000000020ac5d [ 245.421809][T15044] x23: fffffdffc43c0d80 x22: fffffdffc43c0d48 x21: 0000000000000000 [ 245.423068][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 245.424309][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 245.425475][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 245.426712][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 245.427958][T15044] x8 : 14e578ac1de0e000 x7 : 000000000002ed80 x6 : ffff800080563af4 [ 245.429128][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 245.430417][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 245.431674][T15044] Call trace: [ 245.432187][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 245.433133][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 245.433947][T15044] set_pte_range+0x2e4/0x49c [ 245.434641][T15044] filemap_map_pages+0xb54/0x155c [ 245.435417][T15044] handle_mm_fault+0x2b64/0x4d34 [ 245.436172][T15044] __get_user_pages+0x1f40/0x2da0 [ 245.436918][T15044] populate_vma_page_range+0x258/0x348 [ 245.437732][T15044] __mm_populate+0x208/0x330 [ 245.438429][T15044] vm_mmap_pgoff+0x398/0x45c [ 245.439085][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 245.439818][T15044] __arm64_sys_mmap+0xf8/0x110 [ 245.440496][T15044] invoke_syscall+0x98/0x2b8 [ 245.441228][T15044] el0_svc_common+0x130/0x23c [ 245.441990][T15044] do_el0_svc+0x48/0x58 [ 245.442676][T15044] el0_svc+0x58/0x180 [ 245.443340][T15044] el0t_64_sync_handler+0x84/0x12c [ 245.444133][T15044] el0t_64_sync+0x198/0x19c [ 245.444819][T15044] irq event stamp: 10813 [ 245.445488][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 245.446984][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 245.448538][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 245.449986][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 245.451352][T15044] ---[ end trace 0000000000000000 ]--- [ 245.452266][T15044] page: refcount:1052 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 245.452279][T15044] head: order:9 mapcount:539 entire_mapcount:0 nr_pages_mapped:539 pincount:0 [ 245.452290][T15044] memcg:ffff0000c19c2580 [ 245.452299][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 245.452313][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 245.452326][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.452335][T15044] raw: 0000000000000000 0000000000000000 0000041cffffffff ffff0000c19c2580 [ 245.452343][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.452350][T15044] head: 0000000000000000 0000000000000000 0000041cffffffff ffff0000c19c2580 [ 245.452357][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000021b0000021a 00000000ffffffff [ 245.452364][T15044] head: ffffffff0000021a 0000000000000024 00000000ffffffff 0000000000000200 [ 245.452369][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 245.452410][T15044] ------------[ cut here ]------------ [ 245.452413][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 245.471675][T15044] Modules linked in: [ 245.472276][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 245.474095][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 245.474855][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 245.476418][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 245.477660][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 245.478515][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 245.479390][T15044] sp : ffff8000a0a672c0 [ 245.479985][T15044] x29: ffff8000a0a672c0 x28: 0000000000000007 x27: 0000000020235000 [ 245.481141][T15044] x26: 00e800014f037b43 x25: dfff800000000000 x24: 000000000020ac5d [ 245.482380][T15044] x23: fffffdffc43c0dc8 x22: fffffdffc43c0dc0 x21: 0000000000000000 [ 245.483570][T15044] x20: 0000000000000007 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 245.484783][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 245.486020][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 245.487267][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 245.488488][T15044] x8 : 14e578ac1de0e000 x7 : 000000000002fdb0 x6 : ffff800080563af4 [ 245.489794][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 245.491015][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 245.492334][T15044] Call trace: [ 245.492843][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 245.493798][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 245.494665][T15044] set_pte_range+0x2e4/0x49c [ 245.495377][T15044] filemap_map_pages+0xb54/0x155c [ 245.496129][T15044] handle_mm_fault+0x2b64/0x4d34 [ 245.496875][T15044] __get_user_pages+0x1f40/0x2da0 [ 245.497617][T15044] populate_vma_page_range+0x258/0x348 [ 245.498416][T15044] __mm_populate+0x208/0x330 [ 245.499156][T15044] vm_mmap_pgoff+0x398/0x45c [ 245.499949][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 245.500697][T15044] __arm64_sys_mmap+0xf8/0x110 [ 245.501517][T15044] invoke_syscall+0x98/0x2b8 [ 245.502234][T15044] el0_svc_common+0x130/0x23c [ 245.503005][T15044] do_el0_svc+0x48/0x58 [ 245.503702][T15044] el0_svc+0x58/0x180 [ 245.504372][T15044] el0t_64_sync_handler+0x84/0x12c [ 245.505204][T15044] el0t_64_sync+0x198/0x19c [ 245.505968][T15044] irq event stamp: 10813 [ 245.506661][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 245.508254][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 245.509806][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 245.511292][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 245.512615][T15044] ---[ end trace 0000000000000000 ]--- [ 245.513911][T15044] page: refcount:1052 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 245.514269][T15044] head: order:9 mapcount:539 entire_mapcount:0 nr_pages_mapped:539 pincount:0 [ 245.514279][T15044] memcg:ffff0000c19c2580 [ 245.514287][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 245.514297][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 245.514309][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.514316][T15044] raw: 0000000000000000 0000000000000000 0000041cffffffff ffff0000c19c2580 [ 245.514324][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.514331][T15044] head: 0000000000000000 0000000000000000 0000041cffffffff ffff0000c19c2580 [ 245.514338][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000021b0000021a 00000000ffffffff [ 245.514345][T15044] head: ffffffff0000021a 0000000000000024 00000000ffffffff 0000000000000200 [ 245.514350][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 245.514392][T15044] ------------[ cut here ]------------ [ 245.514395][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 245.535221][T15044] Modules linked in: [ 245.535821][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 245.537688][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 245.538390][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 245.540022][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 245.541250][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 245.542273][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 245.543224][T15044] sp : ffff8000a0a672c0 [ 245.543860][T15044] x29: ffff8000a0a672c0 x28: 0000000000000007 x27: 0000000020235000 [ 245.545213][T15044] x26: 00e800014f037b43 x25: dfff800000000000 x24: 000000000020ac5d [ 245.546533][T15044] x23: fffffdffc43c0f80 x22: fffffdffc43c0f48 x21: 0000000000000000 [ 245.547882][T15044] x20: 0000000000000007 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 245.549154][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 245.550390][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 245.551694][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 245.553015][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000030eb8 x6 : ffff800080563af4 [ 245.554245][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 245.555478][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 245.556693][T15044] Call trace: [ 245.557187][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 245.558159][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 245.559045][T15044] set_pte_range+0x2e4/0x49c [ 245.559753][T15044] filemap_map_pages+0xb54/0x155c [ 245.560545][T15044] handle_mm_fault+0x2b64/0x4d34 [ 245.561297][T15044] __get_user_pages+0x1f40/0x2da0 [ 245.562114][T15044] populate_vma_page_range+0x258/0x348 [ 245.563012][T15044] __mm_populate+0x208/0x330 [ 245.563786][T15044] vm_mmap_pgoff+0x398/0x45c [ 245.564470][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 245.565190][T15044] __arm64_sys_mmap+0xf8/0x110 [ 245.565935][T15044] invoke_syscall+0x98/0x2b8 [ 245.566735][T15044] el0_svc_common+0x130/0x23c [ 245.567456][T15044] do_el0_svc+0x48/0x58 [ 245.568155][T15044] el0_svc+0x58/0x180 [ 245.568779][T15044] el0t_64_sync_handler+0x84/0x12c [ 245.569605][T15044] el0t_64_sync+0x198/0x19c [ 245.570308][T15044] irq event stamp: 10813 [ 245.570956][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 245.572500][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 245.574101][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 245.575576][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 245.576974][T15044] ---[ end trace 0000000000000000 ]--- [ 245.577939][T15044] page: refcount:1059 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 245.577953][T15044] head: order:9 mapcount:546 entire_mapcount:0 nr_pages_mapped:546 pincount:0 [ 245.577964][T15044] memcg:ffff0000c19c2580 [ 245.577973][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 245.577987][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 245.578000][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.578009][T15044] raw: 0000000000000000 0000000000000000 00000423ffffffff ffff0000c19c2580 [ 245.578017][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.578024][T15044] head: 0000000000000000 0000000000000000 00000423ffffffff ffff0000c19c2580 [ 245.578031][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000022200000221 00000000ffffffff [ 245.578038][T15044] head: ffffffff00000221 0000000000000024 00000000ffffffff 0000000000000200 [ 245.578044][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 245.578085][T15044] ------------[ cut here ]------------ [ 245.578087][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 245.598036][T15044] Modules linked in: [ 245.598684][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 245.600659][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 245.601480][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 245.603059][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 245.604310][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 245.605290][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 245.606241][T15044] sp : ffff8000a0a672c0 [ 245.606873][T15044] x29: ffff8000a0a672c0 x28: 0000000000000002 x27: 000000002023e000 [ 245.608065][T15044] x26: 00e800014f040b43 x25: dfff800000000000 x24: 000000000020ac5d [ 245.609383][T15044] x23: fffffdffc43c1008 x22: fffffdffc43c1000 x21: 0000000000000000 [ 245.610687][T15044] x20: 0000000000000002 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 245.611983][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 245.613285][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 245.614599][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 245.615956][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000031fa8 x6 : ffff800080563af4 [ 245.617246][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 245.618522][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 245.619785][T15044] Call trace: [ 245.620256][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 245.621184][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 245.621955][T15044] set_pte_range+0x2e4/0x49c [ 245.622683][T15044] filemap_map_pages+0xb54/0x155c [ 245.623479][T15044] handle_mm_fault+0x2b64/0x4d34 [ 245.624168][T15044] __get_user_pages+0x1f40/0x2da0 [ 245.624959][T15044] populate_vma_page_range+0x258/0x348 [ 245.625789][T15044] __mm_populate+0x208/0x330 [ 245.626523][T15044] vm_mmap_pgoff+0x398/0x45c [ 245.627220][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 245.628003][T15044] __arm64_sys_mmap+0xf8/0x110 [ 245.628802][T15044] invoke_syscall+0x98/0x2b8 [ 245.629545][T15044] el0_svc_common+0x130/0x23c [ 245.630294][T15044] do_el0_svc+0x48/0x58 [ 245.630976][T15044] el0_svc+0x58/0x180 [ 245.631591][T15044] el0t_64_sync_handler+0x84/0x12c [ 245.632412][T15044] el0t_64_sync+0x198/0x19c [ 245.633141][T15044] irq event stamp: 10813 [ 245.633850][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 245.635453][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 245.636902][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 245.638363][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 245.639810][T15044] ---[ end trace 0000000000000000 ]--- [ 245.641460][T15044] page: refcount:1059 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 245.641941][T15044] head: order:9 mapcount:546 entire_mapcount:0 nr_pages_mapped:546 pincount:0 [ 245.641952][T15044] memcg:ffff0000c19c2580 [ 245.641962][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 245.641977][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 245.641989][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.641997][T15044] raw: 0000000000000000 0000000000000000 00000423ffffffff ffff0000c19c2580 [ 245.642005][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.642012][T15044] head: 0000000000000000 0000000000000000 00000423ffffffff ffff0000c19c2580 [ 245.642019][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000022200000221 00000000ffffffff [ 245.642027][T15044] head: ffffffff00000221 0000000000000024 00000000ffffffff 0000000000000200 [ 245.642032][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 245.642073][T15044] ------------[ cut here ]------------ [ 245.642077][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 245.661504][T15044] Modules linked in: [ 245.662123][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 245.663991][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 245.664774][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 245.666303][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 245.667693][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 245.668677][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 245.669689][T15044] sp : ffff8000a0a672c0 [ 245.670382][T15044] x29: ffff8000a0a672c0 x28: 0000000000000002 x27: 000000002023e000 [ 245.671646][T15044] x26: 00e800014f040b43 x25: dfff800000000000 x24: 000000000020ac5d [ 245.672955][T15044] x23: fffffdffc43c1080 x22: fffffdffc43c1048 x21: 0000000000000000 [ 245.674253][T15044] x20: 0000000000000002 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 245.675660][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 245.677030][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 245.678360][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 245.679761][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000032fc8 x6 : ffff800080563af4 [ 245.681138][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 245.682545][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 245.683805][T15044] Call trace: [ 245.684306][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 245.685167][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 245.686004][T15044] set_pte_range+0x2e4/0x49c [ 245.686667][T15044] filemap_map_pages+0xb54/0x155c [ 245.687479][T15044] handle_mm_fault+0x2b64/0x4d34 [ 245.688276][T15044] __get_user_pages+0x1f40/0x2da0 [ 245.689055][T15044] populate_vma_page_range+0x258/0x348 [ 245.689911][T15044] __mm_populate+0x208/0x330 [ 245.690608][T15044] vm_mmap_pgoff+0x398/0x45c [ 245.691348][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 245.692138][T15044] __arm64_sys_mmap+0xf8/0x110 [ 245.692891][T15044] invoke_syscall+0x98/0x2b8 [ 245.693612][T15044] el0_svc_common+0x130/0x23c [ 245.694332][T15044] do_el0_svc+0x48/0x58 [ 245.694961][T15044] el0_svc+0x58/0x180 [ 245.695620][T15044] el0t_64_sync_handler+0x84/0x12c [ 245.696450][T15044] el0t_64_sync+0x198/0x19c [ 245.697182][T15044] irq event stamp: 10813 [ 245.697836][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 245.699381][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 245.700836][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 245.702232][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 245.703703][T15044] ---[ end trace 0000000000000000 ]--- [ 245.705087][T15044] page: refcount:1061 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 245.705600][T15044] head: order:9 mapcount:548 entire_mapcount:0 nr_pages_mapped:548 pincount:0 [ 245.705610][T15044] memcg:ffff0000c19c2580 [ 245.705619][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 245.705633][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 245.705652][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.705663][T15044] raw: 0000000000000000 0000000000000000 00000425ffffffff ffff0000c19c2580 [ 245.705672][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.705680][T15044] head: 0000000000000000 0000000000000000 00000425ffffffff ffff0000c19c2580 [ 245.705687][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000022400000223 00000000ffffffff [ 245.705694][T15044] head: ffffffff00000223 0000000000000024 00000000ffffffff 0000000000000200 [ 245.705700][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 245.705741][T15044] ------------[ cut here ]------------ [ 245.705744][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 245.725253][T15044] Modules linked in: [ 245.725917][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 245.727974][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 245.728752][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 245.730266][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 245.731456][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 245.732433][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 245.733418][T15044] sp : ffff8000a0a672c0 [ 245.734095][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020241000 [ 245.735365][T15044] x26: 00e800014f043b43 x25: dfff800000000000 x24: 000000000020ac5d [ 245.736627][T15044] x23: fffffdffc43c10c8 x22: fffffdffc43c10c0 x21: 0000000000000000 [ 245.737926][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 245.739249][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 245.740617][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 245.741998][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 245.743243][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000034130 x6 : ffff800080563af4 [ 245.744576][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 245.745805][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 245.747051][T15044] Call trace: [ 245.747531][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 245.748446][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 245.749271][T15044] set_pte_range+0x2e4/0x49c [ 245.749946][T15044] filemap_map_pages+0xb54/0x155c [ 245.750673][T15044] handle_mm_fault+0x2b64/0x4d34 [ 245.751399][T15044] __get_user_pages+0x1f40/0x2da0 [ 245.752214][T15044] populate_vma_page_range+0x258/0x348 [ 245.753205][T15044] __mm_populate+0x208/0x330 [ 245.753965][T15044] vm_mmap_pgoff+0x398/0x45c [ 245.754695][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 245.755459][T15044] __arm64_sys_mmap+0xf8/0x110 [ 245.756211][T15044] invoke_syscall+0x98/0x2b8 [ 245.756927][T15044] el0_svc_common+0x130/0x23c [ 245.757705][T15044] do_el0_svc+0x48/0x58 [ 245.758384][T15044] el0_svc+0x58/0x180 [ 245.759001][T15044] el0t_64_sync_handler+0x84/0x12c [ 245.759792][T15044] el0t_64_sync+0x198/0x19c [ 245.760552][T15044] irq event stamp: 10813 [ 245.761200][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 245.762763][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 245.764303][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 245.765784][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 245.767265][T15044] ---[ end trace 0000000000000000 ]--- [ 245.768249][T15044] page: refcount:1061 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 245.768266][T15044] head: order:9 mapcount:548 entire_mapcount:0 nr_pages_mapped:548 pincount:0 [ 245.768276][T15044] memcg:ffff0000c19c2580 [ 245.768285][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 245.768299][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 245.768313][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.768322][T15044] raw: 0000000000000000 0000000000000000 00000425ffffffff ffff0000c19c2580 [ 245.768330][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.768338][T15044] head: 0000000000000000 0000000000000000 00000425ffffffff ffff0000c19c2580 [ 245.768345][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000022400000223 00000000ffffffff [ 245.768352][T15044] head: ffffffff00000223 0000000000000024 00000000ffffffff 0000000000000200 [ 245.768357][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 245.768398][T15044] ------------[ cut here ]------------ [ 245.768401][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 245.787222][T15044] Modules linked in: [ 245.787753][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 245.789578][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 245.790308][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 245.791812][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 245.793097][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 245.794028][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 245.795033][T15044] sp : ffff8000a0a672c0 [ 245.795682][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020241000 [ 245.797018][T15044] x26: 00e800014f043b43 x25: dfff800000000000 x24: 000000000020ac5d [ 245.798351][T15044] x23: fffffdffc43c1100 x22: fffffdffc43c10c8 x21: 0000000000000000 [ 245.799658][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 245.800960][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 245.802171][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 245.803359][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 245.804577][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000034ea0 x6 : ffff800080563af4 [ 245.805678][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 245.806841][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 245.808076][T15044] Call trace: [ 245.808551][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 245.809465][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 245.810351][T15044] set_pte_range+0x2e4/0x49c [ 245.811109][T15044] filemap_map_pages+0xb54/0x155c [ 245.811921][T15044] handle_mm_fault+0x2b64/0x4d34 [ 245.812739][T15044] __get_user_pages+0x1f40/0x2da0 [ 245.813577][T15044] populate_vma_page_range+0x258/0x348 [ 245.814458][T15044] __mm_populate+0x208/0x330 [ 245.815254][T15044] vm_mmap_pgoff+0x398/0x45c [ 245.816076][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 245.816899][T15044] __arm64_sys_mmap+0xf8/0x110 [ 245.817635][T15044] invoke_syscall+0x98/0x2b8 [ 245.818407][T15044] el0_svc_common+0x130/0x23c [ 245.819159][T15044] do_el0_svc+0x48/0x58 [ 245.819805][T15044] el0_svc+0x58/0x180 [ 245.820440][T15044] el0t_64_sync_handler+0x84/0x12c [ 245.821183][T15044] el0t_64_sync+0x198/0x19c [ 245.821943][T15044] irq event stamp: 10813 [ 245.822654][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 245.824357][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 245.826059][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 245.827553][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 245.829053][T15044] ---[ end trace 0000000000000000 ]--- [ 245.830426][T15044] page: refcount:1062 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 245.830868][T15044] head: order:9 mapcount:549 entire_mapcount:0 nr_pages_mapped:549 pincount:0 [ 245.830879][T15044] memcg:ffff0000c19c2580 [ 245.830888][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 245.830901][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 245.830914][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.830922][T15044] raw: 0000000000000000 0000000000000000 00000426ffffffff ffff0000c19c2580 [ 245.830929][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.830936][T15044] head: 0000000000000000 0000000000000000 00000426ffffffff ffff0000c19c2580 [ 245.830944][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000022500000224 00000000ffffffff [ 245.830950][T15044] head: ffffffff00000224 0000000000000024 00000000ffffffff 0000000000000200 [ 245.830956][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 245.830997][T15044] ------------[ cut here ]------------ [ 245.831000][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 245.851115][T15044] Modules linked in: [ 245.851760][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 245.853769][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 245.854645][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 245.856332][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 245.857713][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 245.858759][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 245.859795][T15044] sp : ffff8000a0a672c0 [ 245.860488][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020247000 [ 245.861706][T15044] x26: 00e800014f049b43 x25: dfff800000000000 x24: 000000000020ac5d [ 245.862888][T15044] x23: fffffdffc43c1248 x22: fffffdffc43c1240 x21: 0000000000000000 [ 245.864251][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 245.865611][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 245.867029][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 245.868348][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 245.869673][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000035e38 x6 : ffff800080563af4 [ 245.871066][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 245.872468][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 245.873814][T15044] Call trace: [ 245.874356][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 245.875316][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 245.876198][T15044] set_pte_range+0x2e4/0x49c [ 245.876904][T15044] filemap_map_pages+0xb54/0x155c [ 245.877728][T15044] handle_mm_fault+0x2b64/0x4d34 [ 245.878576][T15044] __get_user_pages+0x1f40/0x2da0 [ 245.879406][T15044] populate_vma_page_range+0x258/0x348 [ 245.880288][T15044] __mm_populate+0x208/0x330 [ 245.881054][T15044] vm_mmap_pgoff+0x398/0x45c [ 245.881791][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 245.882563][T15044] __arm64_sys_mmap+0xf8/0x110 [ 245.883279][T15044] invoke_syscall+0x98/0x2b8 [ 245.884065][T15044] el0_svc_common+0x130/0x23c [ 245.884883][T15044] do_el0_svc+0x48/0x58 [ 245.885563][T15044] el0_svc+0x58/0x180 [ 245.886228][T15044] el0t_64_sync_handler+0x84/0x12c [ 245.887045][T15044] el0t_64_sync+0x198/0x19c [ 245.887767][T15044] irq event stamp: 10813 [ 245.888421][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 245.889938][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 245.891537][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 245.892978][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 245.894399][T15044] ---[ end trace 0000000000000000 ]--- [ 245.895957][T15044] page: refcount:1062 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 245.896458][T15044] head: order:9 mapcount:549 entire_mapcount:0 nr_pages_mapped:549 pincount:0 [ 245.896469][T15044] memcg:ffff0000c19c2580 [ 245.896478][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 245.896494][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 245.896509][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.896517][T15044] raw: 0000000000000000 0000000000000000 00000426ffffffff ffff0000c19c2580 [ 245.896525][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.896533][T15044] head: 0000000000000000 0000000000000000 00000426ffffffff ffff0000c19c2580 [ 245.896540][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000022500000224 00000000ffffffff [ 245.896547][T15044] head: ffffffff00000224 0000000000000024 00000000ffffffff 0000000000000200 [ 245.896553][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 245.896595][T15044] ------------[ cut here ]------------ [ 245.896598][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 245.915652][T15044] Modules linked in: [ 245.916212][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 245.918230][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 245.919030][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 245.920618][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 245.921861][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 245.922836][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 245.923811][T15044] sp : ffff8000a0a672c0 [ 245.924479][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020247000 [ 245.925724][T15044] x26: 00e800014f049b43 x25: dfff800000000000 x24: 000000000020ac5d [ 245.926958][T15044] x23: fffffdffc43c1280 x22: fffffdffc43c1248 x21: 0000000000000000 [ 245.928241][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 245.929429][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 245.930609][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 245.931819][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 245.933161][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000037068 x6 : ffff800080563af4 [ 245.934485][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 245.935849][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 245.937161][T15044] Call trace: [ 245.937703][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 245.938631][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 245.939486][T15044] set_pte_range+0x2e4/0x49c [ 245.940215][T15044] filemap_map_pages+0xb54/0x155c [ 245.941044][T15044] handle_mm_fault+0x2b64/0x4d34 [ 245.941819][T15044] __get_user_pages+0x1f40/0x2da0 [ 245.942651][T15044] populate_vma_page_range+0x258/0x348 [ 245.943468][T15044] __mm_populate+0x208/0x330 [ 245.944224][T15044] vm_mmap_pgoff+0x398/0x45c [ 245.944975][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 245.945739][T15044] __arm64_sys_mmap+0xf8/0x110 [ 245.946468][T15044] invoke_syscall+0x98/0x2b8 [ 245.947202][T15044] el0_svc_common+0x130/0x23c [ 245.947920][T15044] do_el0_svc+0x48/0x58 [ 245.948600][T15044] el0_svc+0x58/0x180 [ 245.949286][T15044] el0t_64_sync_handler+0x84/0x12c [ 245.950156][T15044] el0t_64_sync+0x198/0x19c [ 245.950903][T15044] irq event stamp: 10813 [ 245.951646][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 245.953251][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 245.954886][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 245.956421][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 245.957852][T15044] ---[ end trace 0000000000000000 ]--- [ 245.958901][T15044] page: refcount:1063 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 245.959010][T15044] head: order:9 mapcount:550 entire_mapcount:0 nr_pages_mapped:550 pincount:0 [ 245.959019][T15044] memcg:ffff0000c19c2580 [ 245.959027][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 245.959037][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 245.959048][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.959055][T15044] raw: 0000000000000000 0000000000000000 00000427ffffffff ffff0000c19c2580 [ 245.959063][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 245.959070][T15044] head: 0000000000000000 0000000000000000 00000427ffffffff ffff0000c19c2580 [ 245.959077][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000022600000225 00000000ffffffff [ 245.959084][T15044] head: ffffffff00000225 0000000000000024 00000000ffffffff 0000000000000200 [ 245.959089][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 245.959130][T15044] ------------[ cut here ]------------ [ 245.959133][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 245.979048][T15044] Modules linked in: [ 245.979630][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 245.981446][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 245.982286][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 245.983941][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 245.985269][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 245.986282][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 245.987304][T15044] sp : ffff8000a0a672c0 [ 245.987967][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002024a000 [ 245.989284][T15044] x26: 00e800014f04cb43 x25: dfff800000000000 x24: 000000000020ac5d [ 245.990566][T15044] x23: fffffdffc43c1308 x22: fffffdffc43c1300 x21: 0000000000000000 [ 245.991828][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 245.993117][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 245.994367][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 245.995718][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 245.997081][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000038310 x6 : ffff800080563af4 [ 245.998408][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 245.999667][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 246.000917][T15044] Call trace: [ 246.001397][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 246.002357][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 246.003203][T15044] set_pte_range+0x2e4/0x49c [ 246.003944][T15044] filemap_map_pages+0xb54/0x155c [ 246.004726][T15044] handle_mm_fault+0x2b64/0x4d34 [ 246.005520][T15044] __get_user_pages+0x1f40/0x2da0 [ 246.006291][T15044] populate_vma_page_range+0x258/0x348 [ 246.007175][T15044] __mm_populate+0x208/0x330 [ 246.007936][T15044] vm_mmap_pgoff+0x398/0x45c [ 246.008694][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 246.009448][T15044] __arm64_sys_mmap+0xf8/0x110 [ 246.010171][T15044] invoke_syscall+0x98/0x2b8 [ 246.010859][T15044] el0_svc_common+0x130/0x23c [ 246.011645][T15044] do_el0_svc+0x48/0x58 [ 246.012328][T15044] el0_svc+0x58/0x180 [ 246.012964][T15044] el0t_64_sync_handler+0x84/0x12c [ 246.013791][T15044] el0t_64_sync+0x198/0x19c [ 246.014521][T15044] irq event stamp: 10813 [ 246.015231][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 246.016872][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 246.018391][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 246.019923][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 246.021429][T15044] ---[ end trace 0000000000000000 ]--- [ 246.022677][T15044] page: refcount:1063 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 246.023037][T15044] head: order:9 mapcount:550 entire_mapcount:0 nr_pages_mapped:550 pincount:0 [ 246.023047][T15044] memcg:ffff0000c19c2580 [ 246.023055][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 246.023065][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 246.023076][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.023084][T15044] raw: 0000000000000000 0000000000000000 00000427ffffffff ffff0000c19c2580 [ 246.023091][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.023098][T15044] head: 0000000000000000 0000000000000000 00000427ffffffff ffff0000c19c2580 [ 246.023105][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000022600000225 00000000ffffffff [ 246.023112][T15044] head: ffffffff00000225 0000000000000024 00000000ffffffff 0000000000000200 [ 246.023117][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 246.023161][T15044] ------------[ cut here ]------------ [ 246.023164][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 246.042395][T15044] Modules linked in: [ 246.042985][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 246.045066][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 246.045852][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 246.047541][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 246.048803][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 246.049719][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 246.050604][T15044] sp : ffff8000a0a672c0 [ 246.051336][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002024a000 [ 246.052724][T15044] x26: 00e800014f04cb43 x25: dfff800000000000 x24: 000000000020ac5d [ 246.054094][T15044] x23: fffffdffc43c1340 x22: fffffdffc43c1308 x21: 0000000000000000 [ 246.055390][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 246.056739][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 246.058090][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 246.059307][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 246.060566][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000391d0 x6 : ffff800080563af4 [ 246.061750][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 246.062883][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 246.064139][T15044] Call trace: [ 246.064675][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 246.065681][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 246.066575][T15044] set_pte_range+0x2e4/0x49c [ 246.067324][T15044] filemap_map_pages+0xb54/0x155c [ 246.068158][T15044] handle_mm_fault+0x2b64/0x4d34 [ 246.068889][T15044] __get_user_pages+0x1f40/0x2da0 [ 246.069672][T15044] populate_vma_page_range+0x258/0x348 [ 246.070571][T15044] __mm_populate+0x208/0x330 [ 246.071343][T15044] vm_mmap_pgoff+0x398/0x45c [ 246.072046][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 246.072782][T15044] __arm64_sys_mmap+0xf8/0x110 [ 246.073473][T15044] invoke_syscall+0x98/0x2b8 [ 246.074170][T15044] el0_svc_common+0x130/0x23c [ 246.074893][T15044] do_el0_svc+0x48/0x58 [ 246.075576][T15044] el0_svc+0x58/0x180 [ 246.076255][T15044] el0t_64_sync_handler+0x84/0x12c [ 246.077098][T15044] el0t_64_sync+0x198/0x19c [ 246.077853][T15044] irq event stamp: 10813 [ 246.078560][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 246.080182][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 246.081742][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 246.083229][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 246.084641][T15044] ---[ end trace 0000000000000000 ]--- [ 246.085867][T15044] page: refcount:1064 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 246.085988][T15044] head: order:9 mapcount:551 entire_mapcount:0 nr_pages_mapped:551 pincount:0 [ 246.085998][T15044] memcg:ffff0000c19c2580 [ 246.086005][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 246.086015][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 246.086027][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.086034][T15044] raw: 0000000000000000 0000000000000000 00000428ffffffff ffff0000c19c2580 [ 246.086041][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.086048][T15044] head: 0000000000000000 0000000000000000 00000428ffffffff ffff0000c19c2580 [ 246.086055][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000022700000226 00000000ffffffff [ 246.086062][T15044] head: ffffffff00000226 0000000000000024 00000000ffffffff 0000000000000200 [ 246.086067][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 246.086108][T15044] ------------[ cut here ]------------ [ 246.086111][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 246.104413][T15044] Modules linked in: [ 246.105084][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 246.107242][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 246.108142][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 246.109770][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 246.110935][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 246.111979][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 246.112927][T15044] sp : ffff8000a0a672c0 [ 246.113608][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002024c000 [ 246.114926][T15044] x26: 00e800014f04eb43 x25: dfff800000000000 x24: 000000000020ac5d [ 246.116274][T15044] x23: fffffdffc43c1388 x22: fffffdffc43c1380 x21: 0000000000000000 [ 246.117601][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 246.118902][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 246.120183][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 246.121524][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 246.122888][T15044] x8 : 14e578ac1de0e000 x7 : 000000000003a150 x6 : ffff800080563af4 [ 246.124257][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 246.125506][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 246.126758][T15044] Call trace: [ 246.127270][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 246.128294][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 246.129244][T15044] set_pte_range+0x2e4/0x49c [ 246.129981][T15044] filemap_map_pages+0xb54/0x155c [ 246.130809][T15044] handle_mm_fault+0x2b64/0x4d34 [ 246.131644][T15044] __get_user_pages+0x1f40/0x2da0 [ 246.132452][T15044] populate_vma_page_range+0x258/0x348 [ 246.133341][T15044] __mm_populate+0x208/0x330 [ 246.134083][T15044] vm_mmap_pgoff+0x398/0x45c [ 246.134846][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 246.135663][T15044] __arm64_sys_mmap+0xf8/0x110 [ 246.136408][T15044] invoke_syscall+0x98/0x2b8 [ 246.137167][T15044] el0_svc_common+0x130/0x23c [ 246.137929][T15044] do_el0_svc+0x48/0x58 [ 246.138619][T15044] el0_svc+0x58/0x180 [ 246.139302][T15044] el0t_64_sync_handler+0x84/0x12c [ 246.140194][T15044] el0t_64_sync+0x198/0x19c [ 246.140911][T15044] irq event stamp: 10813 [ 246.141632][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 246.143126][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 246.144618][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 246.146075][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 246.147494][T15044] ---[ end trace 0000000000000000 ]--- [ 246.149008][T15044] page: refcount:1064 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 246.149528][T15044] head: order:9 mapcount:551 entire_mapcount:0 nr_pages_mapped:551 pincount:0 [ 246.149539][T15044] memcg:ffff0000c19c2580 [ 246.149549][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 246.149562][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 246.149574][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.149582][T15044] raw: 0000000000000000 0000000000000000 00000428ffffffff ffff0000c19c2580 [ 246.149590][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.149597][T15044] head: 0000000000000000 0000000000000000 00000428ffffffff ffff0000c19c2580 [ 246.149604][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000022700000226 00000000ffffffff [ 246.149611][T15044] head: ffffffff00000226 0000000000000024 00000000ffffffff 0000000000000200 [ 246.149617][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 246.149662][T15044] ------------[ cut here ]------------ [ 246.149666][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 246.169204][T15044] Modules linked in: [ 246.169841][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 246.171853][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 246.172656][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 246.174207][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 246.175448][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 246.176393][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 246.177338][T15044] sp : ffff8000a0a672c0 [ 246.178013][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002024c000 [ 246.179246][T15044] x26: 00e800014f04eb43 x25: dfff800000000000 x24: 000000000020ac5d [ 246.180533][T15044] x23: fffffdffc43c13c0 x22: fffffdffc43c1388 x21: 0000000000000000 [ 246.181838][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 246.183134][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 246.184382][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 246.185626][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 246.186941][T15044] x8 : 14e578ac1de0e000 x7 : 000000000003af48 x6 : ffff800080563af4 [ 246.188263][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 246.189524][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 246.190748][T15044] Call trace: [ 246.191216][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 246.192129][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 246.193005][T15044] set_pte_range+0x2e4/0x49c [ 246.193774][T15044] filemap_map_pages+0xb54/0x155c [ 246.194551][T15044] handle_mm_fault+0x2b64/0x4d34 [ 246.195392][T15044] __get_user_pages+0x1f40/0x2da0 [ 246.196246][T15044] populate_vma_page_range+0x258/0x348 [ 246.197185][T15044] __mm_populate+0x208/0x330 [ 246.197944][T15044] vm_mmap_pgoff+0x398/0x45c [ 246.198669][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 246.199293][T15044] __arm64_sys_mmap+0xf8/0x110 [ 246.199972][T15044] invoke_syscall+0x98/0x2b8 [ 246.200673][T15044] el0_svc_common+0x130/0x23c [ 246.201405][T15044] do_el0_svc+0x48/0x58 [ 246.202091][T15044] el0_svc+0x58/0x180 [ 246.202716][T15044] el0t_64_sync_handler+0x84/0x12c [ 246.203502][T15044] el0t_64_sync+0x198/0x19c [ 246.204180][T15044] irq event stamp: 10813 [ 246.204853][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 246.206425][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 246.207907][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 246.209452][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 246.210858][T15044] ---[ end trace 0000000000000000 ]--- [ 246.212257][T15044] page: refcount:1065 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 246.212739][T15044] head: order:9 mapcount:552 entire_mapcount:0 nr_pages_mapped:552 pincount:0 [ 246.212750][T15044] memcg:ffff0000c19c2580 [ 246.212760][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 246.212773][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 246.212786][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.212794][T15044] raw: 0000000000000000 0000000000000000 00000429ffffffff ffff0000c19c2580 [ 246.212802][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.212809][T15044] head: 0000000000000000 0000000000000000 00000429ffffffff ffff0000c19c2580 [ 246.212816][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000022800000227 00000000ffffffff [ 246.212823][T15044] head: ffffffff00000227 0000000000000024 00000000ffffffff 0000000000000200 [ 246.212829][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 246.212869][T15044] ------------[ cut here ]------------ [ 246.212872][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 246.232101][T15044] Modules linked in: [ 246.232679][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 246.234482][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 246.235262][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 246.236777][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 246.237906][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 246.238781][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 246.239662][T15044] sp : ffff8000a0a672c0 [ 246.240282][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 000000002024f000 [ 246.241383][T15044] x26: 00e800014f051b43 x25: dfff800000000000 x24: 000000000020ac5d [ 246.242592][T15044] x23: fffffdffc43c1448 x22: fffffdffc43c1440 x21: 0000000000000000 [ 246.243800][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 246.245053][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 246.246362][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 246.247608][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 246.248932][T15044] x8 : 14e578ac1de0e000 x7 : 000000000003ba88 x6 : ffff800080563af4 [ 246.250196][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 246.251418][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 246.252612][T15044] Call trace: [ 246.253075][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 246.253911][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 246.254729][T15044] set_pte_range+0x2e4/0x49c [ 246.255390][T15044] filemap_map_pages+0xb54/0x155c [ 246.256150][T15044] handle_mm_fault+0x2b64/0x4d34 [ 246.256862][T15044] __get_user_pages+0x1f40/0x2da0 [ 246.257613][T15044] populate_vma_page_range+0x258/0x348 [ 246.258353][T15044] __mm_populate+0x208/0x330 [ 246.259018][T15044] vm_mmap_pgoff+0x398/0x45c [ 246.259680][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 246.260336][T15044] __arm64_sys_mmap+0xf8/0x110 [ 246.261069][T15044] invoke_syscall+0x98/0x2b8 [ 246.261808][T15044] el0_svc_common+0x130/0x23c [ 246.262590][T15044] do_el0_svc+0x48/0x58 [ 246.263251][T15044] el0_svc+0x58/0x180 [ 246.263873][T15044] el0t_64_sync_handler+0x84/0x12c [ 246.264737][T15044] el0t_64_sync+0x198/0x19c [ 246.265473][T15044] irq event stamp: 10813 [ 246.266118][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 246.267777][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 246.269337][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 246.270811][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 246.272310][T15044] ---[ end trace 0000000000000000 ]--- [ 246.275863][T15044] page: refcount:1065 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 246.276003][T15044] head: order:9 mapcount:552 entire_mapcount:0 nr_pages_mapped:552 pincount:0 [ 246.276013][T15044] memcg:ffff0000c19c2580 [ 246.276021][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 246.276032][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 246.276043][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.276051][T15044] raw: 0000000000000000 0000000000000000 00000429ffffffff ffff0000c19c2580 [ 246.276059][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.276065][T15044] head: 0000000000000000 0000000000000000 00000429ffffffff ffff0000c19c2580 [ 246.276073][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000022800000227 00000000ffffffff [ 246.276080][T15044] head: ffffffff00000227 0000000000000024 00000000ffffffff 0000000000000200 [ 246.276085][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 246.276127][T15044] ------------[ cut here ]------------ [ 246.276130][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 246.296174][T15044] Modules linked in: [ 246.296805][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 246.298924][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 246.299780][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 246.301359][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 246.302645][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 246.303661][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 246.304596][T15044] sp : ffff8000a0a672c0 [ 246.305239][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 000000002024f000 [ 246.306505][T15044] x26: 00e800014f051b43 x25: dfff800000000000 x24: 000000000020ac5d [ 246.307778][T15044] x23: fffffdffc43c1500 x22: fffffdffc43c14c8 x21: 0000000000000000 [ 246.309059][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 246.310358][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 246.311588][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 246.312838][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 246.314119][T15044] x8 : 14e578ac1de0e000 x7 : 000000000003c9f0 x6 : ffff800080563af4 [ 246.315443][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 246.316623][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 246.317855][T15044] Call trace: [ 246.318385][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 246.319339][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 246.320141][T15044] set_pte_range+0x2e4/0x49c [ 246.320845][T15044] filemap_map_pages+0xb54/0x155c [ 246.321663][T15044] handle_mm_fault+0x2b64/0x4d34 [ 246.322406][T15044] __get_user_pages+0x1f40/0x2da0 [ 246.323124][T15044] populate_vma_page_range+0x258/0x348 [ 246.324014][T15044] __mm_populate+0x208/0x330 [ 246.324757][T15044] vm_mmap_pgoff+0x398/0x45c [ 246.325428][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 246.326184][T15044] __arm64_sys_mmap+0xf8/0x110 [ 246.326969][T15044] invoke_syscall+0x98/0x2b8 [ 246.327749][T15044] el0_svc_common+0x130/0x23c [ 246.328501][T15044] do_el0_svc+0x48/0x58 [ 246.329152][T15044] el0_svc+0x58/0x180 [ 246.329810][T15044] el0t_64_sync_handler+0x84/0x12c [ 246.330681][T15044] el0t_64_sync+0x198/0x19c [ 246.331415][T15044] irq event stamp: 10813 [ 246.332127][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 246.333710][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 246.335177][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 246.336728][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 246.338208][T15044] ---[ end trace 0000000000000000 ]--- [ 246.339528][T15044] page: refcount:1068 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 246.339933][T15044] head: order:9 mapcount:555 entire_mapcount:0 nr_pages_mapped:555 pincount:0 [ 246.339943][T15044] memcg:ffff0000c19c2580 [ 246.339951][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 246.339962][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 246.339973][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.339981][T15044] raw: 0000000000000000 0000000000000000 0000042cffffffff ffff0000c19c2580 [ 246.339988][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.339995][T15044] head: 0000000000000000 0000000000000000 0000042cffffffff ffff0000c19c2580 [ 246.340002][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000022b0000022a 00000000ffffffff [ 246.340009][T15044] head: ffffffff0000022a 0000000000000024 00000000ffffffff 0000000000000200 [ 246.340014][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 246.340055][T15044] ------------[ cut here ]------------ [ 246.340058][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 246.358384][T15044] Modules linked in: [ 246.358977][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 246.360916][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 246.361695][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 246.363203][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 246.364338][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 246.365189][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 246.366047][T15044] sp : ffff8000a0a672c0 [ 246.366626][T15044] x29: ffff8000a0a672c0 x28: 0000000000000007 x27: 0000000020253000 [ 246.367916][T15044] x26: 00e800014f055b43 x25: dfff800000000000 x24: 000000000020ac5d [ 246.369083][T15044] x23: fffffdffc43c1548 x22: fffffdffc43c1540 x21: 0000000000000000 [ 246.370189][T15044] x20: 0000000000000007 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 246.371308][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 246.372387][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 246.373583][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 246.374986][T15044] x8 : 14e578ac1de0e000 x7 : 000000000003dc48 x6 : ffff800080563af4 [ 246.376330][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 246.377693][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 246.379039][T15044] Call trace: [ 246.379585][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 246.380674][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 246.381565][T15044] set_pte_range+0x2e4/0x49c [ 246.382325][T15044] filemap_map_pages+0xb54/0x155c [ 246.383165][T15044] handle_mm_fault+0x2b64/0x4d34 [ 246.384020][T15044] __get_user_pages+0x1f40/0x2da0 [ 246.384923][T15044] populate_vma_page_range+0x258/0x348 [ 246.385781][T15044] __mm_populate+0x208/0x330 [ 246.386514][T15044] vm_mmap_pgoff+0x398/0x45c [ 246.387282][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 246.388035][T15044] __arm64_sys_mmap+0xf8/0x110 [ 246.388781][T15044] invoke_syscall+0x98/0x2b8 [ 246.389477][T15044] el0_svc_common+0x130/0x23c [ 246.390140][T15044] do_el0_svc+0x48/0x58 [ 246.390782][T15044] el0_svc+0x58/0x180 [ 246.391374][T15044] el0t_64_sync_handler+0x84/0x12c [ 246.392152][T15044] el0t_64_sync+0x198/0x19c [ 246.392820][T15044] irq event stamp: 10813 [ 246.393497][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 246.395105][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 246.396587][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 246.398085][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 246.399607][T15044] ---[ end trace 0000000000000000 ]--- [ 246.401325][T15044] page: refcount:1068 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 246.401816][T15044] head: order:9 mapcount:555 entire_mapcount:0 nr_pages_mapped:555 pincount:0 [ 246.401827][T15044] memcg:ffff0000c19c2580 [ 246.401836][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 246.401850][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 246.401863][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.401871][T15044] raw: 0000000000000000 0000000000000000 0000042cffffffff ffff0000c19c2580 [ 246.401878][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.401885][T15044] head: 0000000000000000 0000000000000000 0000042cffffffff ffff0000c19c2580 [ 246.401893][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000022b0000022a 00000000ffffffff [ 246.401899][T15044] head: ffffffff0000022a 0000000000000024 00000000ffffffff 0000000000000200 [ 246.401905][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 246.401946][T15044] ------------[ cut here ]------------ [ 246.401949][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 246.421019][T15044] Modules linked in: [ 246.421605][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 246.423443][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 246.424139][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 246.425559][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 246.426698][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 246.427518][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 246.428360][T15044] sp : ffff8000a0a672c0 [ 246.428918][T15044] x29: ffff8000a0a672c0 x28: 0000000000000007 x27: 0000000020253000 [ 246.430135][T15044] x26: 00e800014f055b43 x25: dfff800000000000 x24: 000000000020ac5d [ 246.431283][T15044] x23: fffffdffc43c1700 x22: fffffdffc43c16c8 x21: 0000000000000000 [ 246.432431][T15044] x20: 0000000000000007 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 246.433628][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 246.434938][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 246.436194][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 246.437406][T15044] x8 : 14e578ac1de0e000 x7 : 000000000003ee50 x6 : ffff800080563af4 [ 246.438560][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 246.439828][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 246.441107][T15044] Call trace: [ 246.441608][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 246.442499][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 246.443340][T15044] set_pte_range+0x2e4/0x49c [ 246.443990][T15044] filemap_map_pages+0xb54/0x155c [ 246.444772][T15044] handle_mm_fault+0x2b64/0x4d34 [ 246.445558][T15044] __get_user_pages+0x1f40/0x2da0 [ 246.446361][T15044] populate_vma_page_range+0x258/0x348 [ 246.447212][T15044] __mm_populate+0x208/0x330 [ 246.447922][T15044] vm_mmap_pgoff+0x398/0x45c [ 246.448633][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 246.449330][T15044] __arm64_sys_mmap+0xf8/0x110 [ 246.450030][T15044] invoke_syscall+0x98/0x2b8 [ 246.450747][T15044] el0_svc_common+0x130/0x23c [ 246.451438][T15044] do_el0_svc+0x48/0x58 [ 246.452067][T15044] el0_svc+0x58/0x180 [ 246.452689][T15044] el0t_64_sync_handler+0x84/0x12c [ 246.453528][T15044] el0t_64_sync+0x198/0x19c [ 246.454223][T15044] irq event stamp: 10813 [ 246.454878][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 246.456388][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 246.457850][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 246.459349][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 246.460738][T15044] ---[ end trace 0000000000000000 ]--- [ 246.462021][T15044] page: refcount:1075 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 246.462147][T15044] head: order:9 mapcount:562 entire_mapcount:0 nr_pages_mapped:562 pincount:0 [ 246.462158][T15044] memcg:ffff0000c19c2580 [ 246.462166][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 246.462176][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 246.462188][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.462195][T15044] raw: 0000000000000000 0000000000000000 00000433ffffffff ffff0000c19c2580 [ 246.462203][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.462210][T15044] head: 0000000000000000 0000000000000000 00000433ffffffff ffff0000c19c2580 [ 246.462216][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000023200000231 00000000ffffffff [ 246.462224][T15044] head: ffffffff00000231 0000000000000024 00000000ffffffff 0000000000000200 [ 246.462229][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 246.462270][T15044] ------------[ cut here ]------------ [ 246.462274][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 246.481602][T15044] Modules linked in: [ 246.482232][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 246.484374][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 246.485206][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 246.486841][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 246.488151][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 246.489048][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 246.490072][T15044] sp : ffff8000a0a672c0 [ 246.490735][T15044] x29: ffff8000a0a672c0 x28: 0000000000000002 x27: 000000002025c000 [ 246.492003][T15044] x26: 00e800014f05eb43 x25: dfff800000000000 x24: 000000000020ac5d [ 246.493307][T15044] x23: fffffdffc43c1788 x22: fffffdffc43c1780 x21: 0000000000000000 [ 246.494560][T15044] x20: 0000000000000002 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 246.495806][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 246.497161][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 246.498423][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 246.499673][T15044] x8 : 14e578ac1de0e000 x7 : 000000000003ff60 x6 : ffff800080563af4 [ 246.500985][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 246.502323][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 246.503584][T15044] Call trace: [ 246.504125][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 246.505126][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 246.506075][T15044] set_pte_range+0x2e4/0x49c [ 246.506820][T15044] filemap_map_pages+0xb54/0x155c [ 246.507610][T15044] handle_mm_fault+0x2b64/0x4d34 [ 246.508425][T15044] __get_user_pages+0x1f40/0x2da0 [ 246.509284][T15044] populate_vma_page_range+0x258/0x348 [ 246.510186][T15044] __mm_populate+0x208/0x330 [ 246.510899][T15044] vm_mmap_pgoff+0x398/0x45c [ 246.511632][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 246.512412][T15044] __arm64_sys_mmap+0xf8/0x110 [ 246.513199][T15044] invoke_syscall+0x98/0x2b8 [ 246.513929][T15044] el0_svc_common+0x130/0x23c [ 246.514718][T15044] do_el0_svc+0x48/0x58 [ 246.515403][T15044] el0_svc+0x58/0x180 [ 246.516074][T15044] el0t_64_sync_handler+0x84/0x12c [ 246.516918][T15044] el0t_64_sync+0x198/0x19c [ 246.517670][T15044] irq event stamp: 10813 [ 246.518346][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 246.519840][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 246.521342][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 246.522895][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 246.524384][T15044] ---[ end trace 0000000000000000 ]--- [ 246.525760][T15044] page: refcount:1075 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 246.526146][T15044] head: order:9 mapcount:562 entire_mapcount:0 nr_pages_mapped:562 pincount:0 [ 246.526156][T15044] memcg:ffff0000c19c2580 [ 246.526164][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 246.526174][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 246.526186][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.526193][T15044] raw: 0000000000000000 0000000000000000 00000433ffffffff ffff0000c19c2580 [ 246.526201][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.526208][T15044] head: 0000000000000000 0000000000000000 00000433ffffffff ffff0000c19c2580 [ 246.526215][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000023200000231 00000000ffffffff [ 246.526222][T15044] head: ffffffff00000231 0000000000000024 00000000ffffffff 0000000000000200 [ 246.526227][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 246.526268][T15044] ------------[ cut here ]------------ [ 246.526271][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 246.546937][T15044] Modules linked in: [ 246.547574][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 246.549585][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 246.550399][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 246.551981][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 246.553088][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 246.554064][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 246.554944][T15044] sp : ffff8000a0a672c0 [ 246.555598][T15044] x29: ffff8000a0a672c0 x28: 0000000000000002 x27: 000000002025c000 [ 246.556816][T15044] x26: 00e800014f05eb43 x25: dfff800000000000 x24: 000000000020ac5d [ 246.558036][T15044] x23: fffffdffc43c1800 x22: fffffdffc43c17c8 x21: 0000000000000000 [ 246.559193][T15044] x20: 0000000000000002 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 246.560321][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 246.561536][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 246.562791][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 246.564004][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000040fc0 x6 : ffff800080563af4 [ 246.565177][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 246.566479][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 246.567739][T15044] Call trace: [ 246.568190][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 246.569114][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 246.569924][T15044] set_pte_range+0x2e4/0x49c [ 246.570654][T15044] filemap_map_pages+0xb54/0x155c [ 246.571551][T15044] handle_mm_fault+0x2b64/0x4d34 [ 246.572384][T15044] __get_user_pages+0x1f40/0x2da0 [ 246.573194][T15044] populate_vma_page_range+0x258/0x348 [ 246.574103][T15044] __mm_populate+0x208/0x330 [ 246.574932][T15044] vm_mmap_pgoff+0x398/0x45c [ 246.575702][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 246.576483][T15044] __arm64_sys_mmap+0xf8/0x110 [ 246.577279][T15044] invoke_syscall+0x98/0x2b8 [ 246.578030][T15044] el0_svc_common+0x130/0x23c [ 246.578812][T15044] do_el0_svc+0x48/0x58 [ 246.579442][T15044] el0_svc+0x58/0x180 [ 246.580070][T15044] el0t_64_sync_handler+0x84/0x12c [ 246.580907][T15044] el0t_64_sync+0x198/0x19c [ 246.581588][T15044] irq event stamp: 10813 [ 246.582206][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 246.583734][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 246.585247][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 246.586682][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 246.588233][T15044] ---[ end trace 0000000000000000 ]--- [ 246.589311][T15044] page: refcount:1077 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 246.589332][T15044] head: order:9 mapcount:564 entire_mapcount:0 nr_pages_mapped:564 pincount:0 [ 246.589343][T15044] memcg:ffff0000c19c2580 [ 246.589353][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 246.589368][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 246.589381][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.589390][T15044] raw: 0000000000000000 0000000000000000 00000435ffffffff ffff0000c19c2580 [ 246.589398][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.589406][T15044] head: 0000000000000000 0000000000000000 00000435ffffffff ffff0000c19c2580 [ 246.589413][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000023400000233 00000000ffffffff [ 246.589420][T15044] head: ffffffff00000233 0000000000000024 00000000ffffffff 0000000000000200 [ 246.589426][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 246.589467][T15044] ------------[ cut here ]------------ [ 246.589470][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 246.606872][T15044] Modules linked in: [ 246.607434][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 246.609405][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 246.610180][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 246.611575][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 246.612680][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 246.613547][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 246.614451][T15044] sp : ffff8000a0a672c0 [ 246.615098][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002025f000 [ 246.616192][T15044] x26: 00e800014f061b43 x25: dfff800000000000 x24: 000000000020ac5d [ 246.617349][T15044] x23: fffffdffc43c1848 x22: fffffdffc43c1840 x21: 0000000000000000 [ 246.618631][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 246.620020][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 246.621321][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 246.622620][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 246.623989][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000042030 x6 : ffff800080563af4 [ 246.625311][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 246.626603][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 246.627906][T15044] Call trace: [ 246.628418][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 246.629430][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 246.630425][T15044] set_pte_range+0x2e4/0x49c [ 246.631132][T15044] filemap_map_pages+0xb54/0x155c [ 246.631852][T15044] handle_mm_fault+0x2b64/0x4d34 [ 246.632660][T15044] __get_user_pages+0x1f40/0x2da0 [ 246.633480][T15044] populate_vma_page_range+0x258/0x348 [ 246.634356][T15044] __mm_populate+0x208/0x330 [ 246.635077][T15044] vm_mmap_pgoff+0x398/0x45c [ 246.635839][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 246.636625][T15044] __arm64_sys_mmap+0xf8/0x110 [ 246.637363][T15044] invoke_syscall+0x98/0x2b8 [ 246.638017][T15044] el0_svc_common+0x130/0x23c [ 246.638707][T15044] do_el0_svc+0x48/0x58 [ 246.639448][T15044] el0_svc+0x58/0x180 [ 246.640085][T15044] el0t_64_sync_handler+0x84/0x12c [ 246.640940][T15044] el0t_64_sync+0x198/0x19c [ 246.641682][T15044] irq event stamp: 10813 [ 246.642363][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 246.643901][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 246.645326][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 246.646661][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 246.648122][T15044] ---[ end trace 0000000000000000 ]--- [ 246.649359][T15044] page: refcount:1077 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 246.649735][T15044] head: order:9 mapcount:564 entire_mapcount:0 nr_pages_mapped:564 pincount:0 [ 246.649744][T15044] memcg:ffff0000c19c2580 [ 246.649752][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 246.649762][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 246.649773][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.649781][T15044] raw: 0000000000000000 0000000000000000 00000435ffffffff ffff0000c19c2580 [ 246.649788][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.649796][T15044] head: 0000000000000000 0000000000000000 00000435ffffffff ffff0000c19c2580 [ 246.649803][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000023400000233 00000000ffffffff [ 246.649810][T15044] head: ffffffff00000233 0000000000000024 00000000ffffffff 0000000000000200 [ 246.649815][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 246.649856][T15044] ------------[ cut here ]------------ [ 246.649859][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 246.668635][T15044] Modules linked in: [ 246.669261][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 246.671145][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 246.671926][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 246.673421][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 246.674671][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 246.675589][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 246.676480][T15044] sp : ffff8000a0a672c0 [ 246.677140][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002025f000 [ 246.678448][T15044] x26: 00e800014f061b43 x25: dfff800000000000 x24: 000000000020ac5d [ 246.679690][T15044] x23: fffffdffc43c1880 x22: fffffdffc43c1848 x21: 0000000000000000 [ 246.680953][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 246.682186][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 246.683414][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 246.684688][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 246.685913][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000042fe8 x6 : ffff800080563af4 [ 246.687136][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 246.688390][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 246.689647][T15044] Call trace: [ 246.690121][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 246.691065][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 246.691905][T15044] set_pte_range+0x2e4/0x49c [ 246.692631][T15044] filemap_map_pages+0xb54/0x155c [ 246.693436][T15044] handle_mm_fault+0x2b64/0x4d34 [ 246.694234][T15044] __get_user_pages+0x1f40/0x2da0 [ 246.694999][T15044] populate_vma_page_range+0x258/0x348 [ 246.695843][T15044] __mm_populate+0x208/0x330 [ 246.696545][T15044] vm_mmap_pgoff+0x398/0x45c [ 246.697219][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 246.697922][T15044] __arm64_sys_mmap+0xf8/0x110 [ 246.698620][T15044] invoke_syscall+0x98/0x2b8 [ 246.699289][T15044] el0_svc_common+0x130/0x23c [ 246.699970][T15044] do_el0_svc+0x48/0x58 [ 246.700563][T15044] el0_svc+0x58/0x180 [ 246.701192][T15044] el0t_64_sync_handler+0x84/0x12c [ 246.701922][T15044] el0t_64_sync+0x198/0x19c [ 246.702548][T15044] irq event stamp: 10813 [ 246.703191][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 246.704634][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 246.706255][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 246.707853][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 246.709299][T15044] ---[ end trace 0000000000000000 ]--- [ 246.710680][T15044] page: refcount:1078 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 246.711065][T15044] head: order:9 mapcount:565 entire_mapcount:0 nr_pages_mapped:565 pincount:0 [ 246.711076][T15044] memcg:ffff0000c19c2580 [ 246.711086][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 246.711099][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 246.711113][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.711121][T15044] raw: 0000000000000000 0000000000000000 00000436ffffffff ffff0000c19c2580 [ 246.711128][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.711136][T15044] head: 0000000000000000 0000000000000000 00000436ffffffff ffff0000c19c2580 [ 246.711143][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000023500000234 00000000ffffffff [ 246.711150][T15044] head: ffffffff00000234 0000000000000024 00000000ffffffff 0000000000000200 [ 246.711156][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 246.711198][T15044] ------------[ cut here ]------------ [ 246.711201][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 246.730891][T15044] Modules linked in: [ 246.731490][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 246.733493][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 246.734338][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 246.735877][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 246.737067][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 246.738017][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 246.738933][T15044] sp : ffff8000a0a672c0 [ 246.739667][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020265000 [ 246.741006][T15044] x26: 00e800014f067b43 x25: dfff800000000000 x24: 000000000020ac5d [ 246.742321][T15044] x23: fffffdffc43c19c8 x22: fffffdffc43c19c0 x21: 0000000000000000 [ 246.743677][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 246.744888][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 246.746144][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 246.747277][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 246.748456][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000444a8 x6 : ffff800080563af4 [ 246.749602][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 246.750805][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 246.752008][T15044] Call trace: [ 246.752502][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 246.753435][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 246.754325][T15044] set_pte_range+0x2e4/0x49c [ 246.755041][T15044] filemap_map_pages+0xb54/0x155c [ 246.755753][T15044] handle_mm_fault+0x2b64/0x4d34 [ 246.756488][T15044] __get_user_pages+0x1f40/0x2da0 [ 246.757219][T15044] populate_vma_page_range+0x258/0x348 [ 246.758059][T15044] __mm_populate+0x208/0x330 [ 246.758761][T15044] vm_mmap_pgoff+0x398/0x45c [ 246.759494][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 246.760282][T15044] __arm64_sys_mmap+0xf8/0x110 [ 246.760981][T15044] invoke_syscall+0x98/0x2b8 [ 246.761651][T15044] el0_svc_common+0x130/0x23c [ 246.762385][T15044] do_el0_svc+0x48/0x58 [ 246.763016][T15044] el0_svc+0x58/0x180 [ 246.763642][T15044] el0t_64_sync_handler+0x84/0x12c [ 246.764486][T15044] el0t_64_sync+0x198/0x19c [ 246.765230][T15044] irq event stamp: 10813 [ 246.765904][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 246.767463][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 246.769025][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 246.770679][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 246.772169][T15044] ---[ end trace 0000000000000000 ]--- [ 246.773217][T15044] page: refcount:1078 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 246.773236][T15044] head: order:9 mapcount:565 entire_mapcount:0 nr_pages_mapped:565 pincount:0 [ 246.773247][T15044] memcg:ffff0000c19c2580 [ 246.773258][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 246.773271][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 246.773284][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.773292][T15044] raw: 0000000000000000 0000000000000000 00000436ffffffff ffff0000c19c2580 [ 246.773300][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.773307][T15044] head: 0000000000000000 0000000000000000 00000436ffffffff ffff0000c19c2580 [ 246.773315][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000023500000234 00000000ffffffff [ 246.773322][T15044] head: ffffffff00000234 0000000000000024 00000000ffffffff 0000000000000200 [ 246.773327][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 246.773369][T15044] ------------[ cut here ]------------ [ 246.773372][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 246.791652][T15044] Modules linked in: [ 246.792200][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 246.794033][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 246.794717][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 246.796160][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 246.797307][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 246.798258][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 246.799277][T15044] sp : ffff8000a0a672c0 [ 246.799959][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020265000 [ 246.801401][T15044] x26: 00e800014f067b43 x25: dfff800000000000 x24: 000000000020ac5d [ 246.802752][T15044] x23: fffffdffc43c1a00 x22: fffffdffc43c19c8 x21: 0000000000000000 [ 246.804048][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 246.805356][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 246.806612][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 246.807864][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 246.809193][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000045560 x6 : ffff800080563af4 [ 246.810539][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 246.811861][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 246.813114][T15044] Call trace: [ 246.813623][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 246.814617][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 246.815508][T15044] set_pte_range+0x2e4/0x49c [ 246.816250][T15044] filemap_map_pages+0xb54/0x155c [ 246.817044][T15044] handle_mm_fault+0x2b64/0x4d34 [ 246.817784][T15044] __get_user_pages+0x1f40/0x2da0 [ 246.818590][T15044] populate_vma_page_range+0x258/0x348 [ 246.819374][T15044] __mm_populate+0x208/0x330 [ 246.820082][T15044] vm_mmap_pgoff+0x398/0x45c [ 246.820760][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 246.821386][T15044] __arm64_sys_mmap+0xf8/0x110 [ 246.822099][T15044] invoke_syscall+0x98/0x2b8 [ 246.822748][T15044] el0_svc_common+0x130/0x23c [ 246.823498][T15044] do_el0_svc+0x48/0x58 [ 246.824169][T15044] el0_svc+0x58/0x180 [ 246.824823][T15044] el0t_64_sync_handler+0x84/0x12c [ 246.825552][T15044] el0t_64_sync+0x198/0x19c [ 246.826274][T15044] irq event stamp: 10813 [ 246.826903][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 246.828429][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 246.829910][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 246.831359][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 246.832713][T15044] ---[ end trace 0000000000000000 ]--- [ 246.833965][T15044] page: refcount:1079 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 246.834347][T15044] head: order:9 mapcount:566 entire_mapcount:0 nr_pages_mapped:566 pincount:0 [ 246.834357][T15044] memcg:ffff0000c19c2580 [ 246.834364][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 246.834374][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 246.834386][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.834393][T15044] raw: 0000000000000000 0000000000000000 00000437ffffffff ffff0000c19c2580 [ 246.834401][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.834407][T15044] head: 0000000000000000 0000000000000000 00000437ffffffff ffff0000c19c2580 [ 246.834415][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000023600000235 00000000ffffffff [ 246.834422][T15044] head: ffffffff00000235 0000000000000024 00000000ffffffff 0000000000000200 [ 246.834427][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 246.834468][T15044] ------------[ cut here ]------------ [ 246.834471][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 246.853108][T15044] Modules linked in: [ 246.853685][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 246.855537][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 246.856332][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 246.857793][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 246.858959][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 246.859809][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 246.860705][T15044] sp : ffff8000a0a672c0 [ 246.861336][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020268000 [ 246.862505][T15044] x26: 00e800014f06ab43 x25: dfff800000000000 x24: 000000000020ac5d [ 246.863717][T15044] x23: fffffdffc43c1a88 x22: fffffdffc43c1a80 x21: 0000000000000000 [ 246.864941][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 246.866257][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 246.867587][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 246.868855][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 246.870039][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000046460 x6 : ffff800080563af4 [ 246.871306][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 246.872655][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 246.873942][T15044] Call trace: [ 246.874514][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 246.875529][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 246.876414][T15044] set_pte_range+0x2e4/0x49c [ 246.877201][T15044] filemap_map_pages+0xb54/0x155c [ 246.878037][T15044] handle_mm_fault+0x2b64/0x4d34 [ 246.878846][T15044] __get_user_pages+0x1f40/0x2da0 [ 246.879716][T15044] populate_vma_page_range+0x258/0x348 [ 246.880584][T15044] __mm_populate+0x208/0x330 [ 246.881290][T15044] vm_mmap_pgoff+0x398/0x45c [ 246.882029][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 246.882772][T15044] __arm64_sys_mmap+0xf8/0x110 [ 246.883521][T15044] invoke_syscall+0x98/0x2b8 [ 246.884262][T15044] el0_svc_common+0x130/0x23c [ 246.885035][T15044] do_el0_svc+0x48/0x58 [ 246.885736][T15044] el0_svc+0x58/0x180 [ 246.886397][T15044] el0t_64_sync_handler+0x84/0x12c [ 246.887218][T15044] el0t_64_sync+0x198/0x19c [ 246.887949][T15044] irq event stamp: 10813 [ 246.888600][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 246.890162][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 246.891726][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 246.893143][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 246.894413][T15044] ---[ end trace 0000000000000000 ]--- [ 246.895265][T15044] page: refcount:1079 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 246.895278][T15044] head: order:9 mapcount:566 entire_mapcount:0 nr_pages_mapped:566 pincount:0 [ 246.895288][T15044] memcg:ffff0000c19c2580 [ 246.895297][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 246.895312][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 246.895326][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.895334][T15044] raw: 0000000000000000 0000000000000000 00000437ffffffff ffff0000c19c2580 [ 246.895342][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.895349][T15044] head: 0000000000000000 0000000000000000 00000437ffffffff ffff0000c19c2580 [ 246.895357][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000023600000235 00000000ffffffff [ 246.895364][T15044] head: ffffffff00000235 0000000000000024 00000000ffffffff 0000000000000200 [ 246.895369][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 246.895410][T15044] ------------[ cut here ]------------ [ 246.895413][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 246.915575][T15044] Modules linked in: [ 246.916206][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 246.918265][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 246.919040][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 246.920642][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 246.921808][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 246.922679][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 246.923613][T15044] sp : ffff8000a0a672c0 [ 246.924247][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020268000 [ 246.925457][T15044] x26: 00e800014f06ab43 x25: dfff800000000000 x24: 000000000020ac5d [ 246.926663][T15044] x23: fffffdffc43c1ac0 x22: fffffdffc43c1a88 x21: 0000000000000000 [ 246.927911][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 246.929105][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 246.930355][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 246.931651][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 246.932931][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000047290 x6 : ffff800080563af4 [ 246.934193][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 246.935406][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 246.936646][T15044] Call trace: [ 246.937148][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 246.938070][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 246.938949][T15044] set_pte_range+0x2e4/0x49c [ 246.939718][T15044] filemap_map_pages+0xb54/0x155c [ 246.940551][T15044] handle_mm_fault+0x2b64/0x4d34 [ 246.941313][T15044] __get_user_pages+0x1f40/0x2da0 [ 246.942143][T15044] populate_vma_page_range+0x258/0x348 [ 246.942988][T15044] __mm_populate+0x208/0x330 [ 246.943724][T15044] vm_mmap_pgoff+0x398/0x45c [ 246.944459][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 246.945226][T15044] __arm64_sys_mmap+0xf8/0x110 [ 246.945967][T15044] invoke_syscall+0x98/0x2b8 [ 246.946685][T15044] el0_svc_common+0x130/0x23c [ 246.947412][T15044] do_el0_svc+0x48/0x58 [ 246.948019][T15044] el0_svc+0x58/0x180 [ 246.948547][T15044] el0t_64_sync_handler+0x84/0x12c [ 246.949282][T15044] el0t_64_sync+0x198/0x19c [ 246.950022][T15044] irq event stamp: 10813 [ 246.950721][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 246.952242][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 246.953680][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 246.955183][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 246.956522][T15044] ---[ end trace 0000000000000000 ]--- [ 246.958073][T15044] page: refcount:1080 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 246.958695][T15044] head: order:9 mapcount:567 entire_mapcount:0 nr_pages_mapped:567 pincount:0 [ 246.958707][T15044] memcg:ffff0000c19c2580 [ 246.958716][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 246.958730][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 246.958742][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.958750][T15044] raw: 0000000000000000 0000000000000000 00000438ffffffff ffff0000c19c2580 [ 246.958758][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 246.958765][T15044] head: 0000000000000000 0000000000000000 00000438ffffffff ffff0000c19c2580 [ 246.958772][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000023700000236 00000000ffffffff [ 246.958779][T15044] head: ffffffff00000236 0000000000000024 00000000ffffffff 0000000000000200 [ 246.958785][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 246.958826][T15044] ------------[ cut here ]------------ [ 246.958829][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 246.977254][T15044] Modules linked in: [ 246.977952][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 246.979861][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 246.980655][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 246.982083][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 246.983312][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 246.984224][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 246.985142][T15044] sp : ffff8000a0a672c0 [ 246.985798][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002026a000 [ 246.987034][T15044] x26: 00e800014f06cb43 x25: dfff800000000000 x24: 000000000020ac5d [ 246.988165][T15044] x23: fffffdffc43c1b08 x22: fffffdffc43c1b00 x21: 0000000000000000 [ 246.989337][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 246.990470][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 246.991690][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 246.992895][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 246.994105][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000481c0 x6 : ffff800080563af4 [ 246.995326][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 246.996514][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 246.997673][T15044] Call trace: [ 246.998144][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 246.998998][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 246.999772][T15044] set_pte_range+0x2e4/0x49c [ 247.000448][T15044] filemap_map_pages+0xb54/0x155c [ 247.001210][T15044] handle_mm_fault+0x2b64/0x4d34 [ 247.001910][T15044] __get_user_pages+0x1f40/0x2da0 [ 247.002706][T15044] populate_vma_page_range+0x258/0x348 [ 247.003569][T15044] __mm_populate+0x208/0x330 [ 247.004300][T15044] vm_mmap_pgoff+0x398/0x45c [ 247.005060][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 247.005885][T15044] __arm64_sys_mmap+0xf8/0x110 [ 247.006655][T15044] invoke_syscall+0x98/0x2b8 [ 247.007352][T15044] el0_svc_common+0x130/0x23c [ 247.008058][T15044] do_el0_svc+0x48/0x58 [ 247.008712][T15044] el0_svc+0x58/0x180 [ 247.009360][T15044] el0t_64_sync_handler+0x84/0x12c [ 247.010114][T15044] el0t_64_sync+0x198/0x19c [ 247.010819][T15044] irq event stamp: 10813 [ 247.011471][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 247.012889][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 247.014343][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 247.015841][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 247.017288][T15044] ---[ end trace 0000000000000000 ]--- [ 247.018690][T15044] page: refcount:1080 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 247.019061][T15044] head: order:9 mapcount:567 entire_mapcount:0 nr_pages_mapped:567 pincount:0 [ 247.019071][T15044] memcg:ffff0000c19c2580 [ 247.019079][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 247.019090][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 247.019102][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.019109][T15044] raw: 0000000000000000 0000000000000000 00000438ffffffff ffff0000c19c2580 [ 247.019117][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.019124][T15044] head: 0000000000000000 0000000000000000 00000438ffffffff ffff0000c19c2580 [ 247.019131][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000023700000236 00000000ffffffff [ 247.019137][T15044] head: ffffffff00000236 0000000000000024 00000000ffffffff 0000000000000200 [ 247.019143][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 247.019185][T15044] ------------[ cut here ]------------ [ 247.019188][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 247.037860][T15044] Modules linked in: [ 247.038419][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 247.040367][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 247.041127][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 247.042580][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 247.043752][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 247.044681][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 247.045635][T15044] sp : ffff8000a0a672c0 [ 247.046305][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002026a000 [ 247.047533][T15044] x26: 00e800014f06cb43 x25: dfff800000000000 x24: 000000000020ac5d [ 247.048772][T15044] x23: fffffdffc43c1b40 x22: fffffdffc43c1b08 x21: 0000000000000000 [ 247.050077][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 247.051393][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 247.052665][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 247.053868][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 247.055209][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000049440 x6 : ffff800080563af4 [ 247.056511][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 247.057838][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 247.059020][T15044] Call trace: [ 247.059492][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 247.060400][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 247.061355][T15044] set_pte_range+0x2e4/0x49c [ 247.062167][T15044] filemap_map_pages+0xb54/0x155c [ 247.063030][T15044] handle_mm_fault+0x2b64/0x4d34 [ 247.063831][T15044] __get_user_pages+0x1f40/0x2da0 [ 247.064658][T15044] populate_vma_page_range+0x258/0x348 [ 247.065550][T15044] __mm_populate+0x208/0x330 [ 247.066283][T15044] vm_mmap_pgoff+0x398/0x45c [ 247.067011][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 247.067702][T15044] __arm64_sys_mmap+0xf8/0x110 [ 247.068477][T15044] invoke_syscall+0x98/0x2b8 [ 247.069227][T15044] el0_svc_common+0x130/0x23c [ 247.069964][T15044] do_el0_svc+0x48/0x58 [ 247.070623][T15044] el0_svc+0x58/0x180 [ 247.071266][T15044] el0t_64_sync_handler+0x84/0x12c [ 247.072109][T15044] el0t_64_sync+0x198/0x19c [ 247.072894][T15044] irq event stamp: 10813 [ 247.073632][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 247.075212][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 247.076799][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 247.078346][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 247.079795][T15044] ---[ end trace 0000000000000000 ]--- [ 247.080851][T15044] page: refcount:1081 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 247.080993][T15044] head: order:9 mapcount:568 entire_mapcount:0 nr_pages_mapped:568 pincount:0 [ 247.081002][T15044] memcg:ffff0000c19c2580 [ 247.081009][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 247.081019][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 247.081030][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.081038][T15044] raw: 0000000000000000 0000000000000000 00000439ffffffff ffff0000c19c2580 [ 247.081046][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.081052][T15044] head: 0000000000000000 0000000000000000 00000439ffffffff ffff0000c19c2580 [ 247.081059][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000023800000237 00000000ffffffff [ 247.081066][T15044] head: ffffffff00000237 0000000000000024 00000000ffffffff 0000000000000200 [ 247.081072][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 247.081113][T15044] ------------[ cut here ]------------ [ 247.081116][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 247.100336][T15044] Modules linked in: [ 247.100917][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 247.102941][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 247.103733][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 247.105275][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 247.106466][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 247.107373][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 247.108297][T15044] sp : ffff8000a0a672c0 [ 247.108974][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 000000002026d000 [ 247.110213][T15044] x26: 00e800014f06fb43 x25: dfff800000000000 x24: 000000000020ac5d [ 247.111465][T15044] x23: fffffdffc43c1bc8 x22: fffffdffc43c1bc0 x21: 0000000000000000 [ 247.112693][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 247.114000][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 247.115309][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 247.116580][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 247.117896][T15044] x8 : 14e578ac1de0e000 x7 : 000000000004a568 x6 : ffff800080563af4 [ 247.119144][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 247.120438][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 247.121772][T15044] Call trace: [ 247.122256][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 247.123176][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 247.124001][T15044] set_pte_range+0x2e4/0x49c [ 247.124687][T15044] filemap_map_pages+0xb54/0x155c [ 247.125488][T15044] handle_mm_fault+0x2b64/0x4d34 [ 247.126272][T15044] __get_user_pages+0x1f40/0x2da0 [ 247.127068][T15044] populate_vma_page_range+0x258/0x348 [ 247.127873][T15044] __mm_populate+0x208/0x330 [ 247.128567][T15044] vm_mmap_pgoff+0x398/0x45c [ 247.129220][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 247.129909][T15044] __arm64_sys_mmap+0xf8/0x110 [ 247.130603][T15044] invoke_syscall+0x98/0x2b8 [ 247.131272][T15044] el0_svc_common+0x130/0x23c [ 247.131951][T15044] do_el0_svc+0x48/0x58 [ 247.132564][T15044] el0_svc+0x58/0x180 [ 247.133178][T15044] el0t_64_sync_handler+0x84/0x12c [ 247.133989][T15044] el0t_64_sync+0x198/0x19c [ 247.134731][T15044] irq event stamp: 10813 [ 247.135428][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 247.136926][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 247.138311][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 247.139722][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 247.141173][T15044] ---[ end trace 0000000000000000 ]--- [ 247.142480][T15044] page: refcount:1081 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 247.142878][T15044] head: order:9 mapcount:568 entire_mapcount:0 nr_pages_mapped:568 pincount:0 [ 247.142888][T15044] memcg:ffff0000c19c2580 [ 247.142897][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 247.142906][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 247.142918][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.142925][T15044] raw: 0000000000000000 0000000000000000 00000439ffffffff ffff0000c19c2580 [ 247.142932][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.142939][T15044] head: 0000000000000000 0000000000000000 00000439ffffffff ffff0000c19c2580 [ 247.142946][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000023800000237 00000000ffffffff [ 247.142953][T15044] head: ffffffff00000237 0000000000000024 00000000ffffffff 0000000000000200 [ 247.142959][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 247.143001][T15044] ------------[ cut here ]------------ [ 247.143004][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 247.162275][T15044] Modules linked in: [ 247.162916][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 247.164828][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 247.165591][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 247.167165][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 247.168341][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 247.169311][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 247.170259][T15044] sp : ffff8000a0a672c0 [ 247.170852][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 000000002026d000 [ 247.172137][T15044] x26: 00e800014f06fb43 x25: dfff800000000000 x24: 000000000020ac5d [ 247.173355][T15044] x23: fffffdffc43c1c80 x22: fffffdffc43c1c48 x21: 0000000000000000 [ 247.174660][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 247.175841][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 247.177050][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 247.178382][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 247.179747][T15044] x8 : 14e578ac1de0e000 x7 : 000000000004b4d0 x6 : ffff800080563af4 [ 247.181064][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 247.182465][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 247.183768][T15044] Call trace: [ 247.184313][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 247.185288][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 247.186151][T15044] set_pte_range+0x2e4/0x49c [ 247.186869][T15044] filemap_map_pages+0xb54/0x155c [ 247.187608][T15044] handle_mm_fault+0x2b64/0x4d34 [ 247.188309][T15044] __get_user_pages+0x1f40/0x2da0 [ 247.189033][T15044] populate_vma_page_range+0x258/0x348 [ 247.189880][T15044] __mm_populate+0x208/0x330 [ 247.190571][T15044] vm_mmap_pgoff+0x398/0x45c [ 247.191230][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 247.191989][T15044] __arm64_sys_mmap+0xf8/0x110 [ 247.192782][T15044] invoke_syscall+0x98/0x2b8 [ 247.193526][T15044] el0_svc_common+0x130/0x23c [ 247.194330][T15044] do_el0_svc+0x48/0x58 [ 247.194977][T15044] el0_svc+0x58/0x180 [ 247.195601][T15044] el0t_64_sync_handler+0x84/0x12c [ 247.196431][T15044] el0t_64_sync+0x198/0x19c [ 247.197123][T15044] irq event stamp: 10813 [ 247.197865][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 247.199423][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 247.200835][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 247.202296][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 247.203769][T15044] ---[ end trace 0000000000000000 ]--- [ 247.204915][T15044] page: refcount:1084 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 247.204980][T15044] head: order:9 mapcount:571 entire_mapcount:0 nr_pages_mapped:571 pincount:0 [ 247.204991][T15044] memcg:ffff0000c19c2580 [ 247.205000][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 247.205012][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 247.205024][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.205032][T15044] raw: 0000000000000000 0000000000000000 0000043cffffffff ffff0000c19c2580 [ 247.205040][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.205047][T15044] head: 0000000000000000 0000000000000000 0000043cffffffff ffff0000c19c2580 [ 247.205054][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000023b0000023a 00000000ffffffff [ 247.205061][T15044] head: ffffffff0000023a 0000000000000024 00000000ffffffff 0000000000000200 [ 247.205067][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 247.205108][T15044] ------------[ cut here ]------------ [ 247.205111][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 247.222994][T15044] Modules linked in: [ 247.223548][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 247.225281][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 247.226060][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 247.227590][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 247.228751][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 247.229794][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 247.230829][T15044] sp : ffff8000a0a672c0 [ 247.231504][T15044] x29: ffff8000a0a672c0 x28: 0000000000000007 x27: 0000000020271000 [ 247.232738][T15044] x26: 00e800014f073b43 x25: dfff800000000000 x24: 000000000020ac5d [ 247.234063][T15044] x23: fffffdffc43c1cc8 x22: fffffdffc43c1cc0 x21: 0000000000000000 [ 247.235375][T15044] x20: 0000000000000007 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 247.236718][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 247.238100][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 247.239473][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 247.240783][T15044] x8 : 14e578ac1de0e000 x7 : 000000000004c2c8 x6 : ffff800080563af4 [ 247.242134][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 247.243512][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 247.244822][T15044] Call trace: [ 247.245390][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 247.246357][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 247.247245][T15044] set_pte_range+0x2e4/0x49c [ 247.248015][T15044] filemap_map_pages+0xb54/0x155c [ 247.248843][T15044] handle_mm_fault+0x2b64/0x4d34 [ 247.249652][T15044] __get_user_pages+0x1f40/0x2da0 [ 247.250488][T15044] populate_vma_page_range+0x258/0x348 [ 247.251379][T15044] __mm_populate+0x208/0x330 [ 247.252054][T15044] vm_mmap_pgoff+0x398/0x45c [ 247.252722][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 247.253390][T15044] __arm64_sys_mmap+0xf8/0x110 [ 247.254162][T15044] invoke_syscall+0x98/0x2b8 [ 247.254903][T15044] el0_svc_common+0x130/0x23c [ 247.255662][T15044] do_el0_svc+0x48/0x58 [ 247.256368][T15044] el0_svc+0x58/0x180 [ 247.257073][T15044] el0t_64_sync_handler+0x84/0x12c [ 247.257918][T15044] el0t_64_sync+0x198/0x19c [ 247.258662][T15044] irq event stamp: 10813 [ 247.259285][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 247.260781][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 247.262204][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 247.263743][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 247.265172][T15044] ---[ end trace 0000000000000000 ]--- [ 247.266562][T15044] page: refcount:1084 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 247.266945][T15044] head: order:9 mapcount:571 entire_mapcount:0 nr_pages_mapped:571 pincount:0 [ 247.266955][T15044] memcg:ffff0000c19c2580 [ 247.266963][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 247.266973][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 247.266984][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.266991][T15044] raw: 0000000000000000 0000000000000000 0000043cffffffff ffff0000c19c2580 [ 247.266999][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.267005][T15044] head: 0000000000000000 0000000000000000 0000043cffffffff ffff0000c19c2580 [ 247.267012][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000023b0000023a 00000000ffffffff [ 247.267019][T15044] head: ffffffff0000023a 0000000000000024 00000000ffffffff 0000000000000200 [ 247.267025][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 247.267066][T15044] ------------[ cut here ]------------ [ 247.267069][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 247.286759][T15044] Modules linked in: [ 247.287371][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 247.289447][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 247.290243][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 247.291783][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 247.292965][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 247.293863][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 247.294783][T15044] sp : ffff8000a0a672c0 [ 247.295401][T15044] x29: ffff8000a0a672c0 x28: 0000000000000007 x27: 0000000020271000 [ 247.296625][T15044] x26: 00e800014f073b43 x25: dfff800000000000 x24: 000000000020ac5d [ 247.297856][T15044] x23: fffffdffc43c1e80 x22: fffffdffc43c1e48 x21: 0000000000000000 [ 247.299039][T15044] x20: 0000000000000007 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 247.300256][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 247.301441][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 247.302715][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 247.303988][T15044] x8 : 14e578ac1de0e000 x7 : 000000000004ce80 x6 : ffff800080563af4 [ 247.305200][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 247.306406][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 247.307678][T15044] Call trace: [ 247.308188][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 247.309089][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 247.309871][T15044] set_pte_range+0x2e4/0x49c [ 247.310509][T15044] filemap_map_pages+0xb54/0x155c [ 247.311291][T15044] handle_mm_fault+0x2b64/0x4d34 [ 247.312047][T15044] __get_user_pages+0x1f40/0x2da0 [ 247.312793][T15044] populate_vma_page_range+0x258/0x348 [ 247.313608][T15044] __mm_populate+0x208/0x330 [ 247.314302][T15044] vm_mmap_pgoff+0x398/0x45c [ 247.314966][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 247.315706][T15044] __arm64_sys_mmap+0xf8/0x110 [ 247.316372][T15044] invoke_syscall+0x98/0x2b8 [ 247.317060][T15044] el0_svc_common+0x130/0x23c [ 247.317713][T15044] do_el0_svc+0x48/0x58 [ 247.318312][T15044] el0_svc+0x58/0x180 [ 247.318911][T15044] el0t_64_sync_handler+0x84/0x12c [ 247.319672][T15044] el0t_64_sync+0x198/0x19c [ 247.320303][T15044] irq event stamp: 10813 [ 247.320919][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 247.322305][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 247.323681][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 247.325052][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 247.326358][T15044] ---[ end trace 0000000000000000 ]--- [ 247.327752][T15044] page: refcount:1091 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 247.328122][T15044] head: order:9 mapcount:578 entire_mapcount:0 nr_pages_mapped:578 pincount:0 [ 247.328133][T15044] memcg:ffff0000c19c2580 [ 247.328142][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 247.328154][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 247.328167][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.328175][T15044] raw: 0000000000000000 0000000000000000 00000443ffffffff ffff0000c19c2580 [ 247.328183][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.328190][T15044] head: 0000000000000000 0000000000000000 00000443ffffffff ffff0000c19c2580 [ 247.328197][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000024200000241 00000000ffffffff [ 247.328204][T15044] head: ffffffff00000241 0000000000000024 00000000ffffffff 0000000000000200 [ 247.328209][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 247.328250][T15044] ------------[ cut here ]------------ [ 247.328253][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 247.347178][T15044] Modules linked in: [ 247.347715][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 247.349761][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 247.350541][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 247.352177][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 247.353493][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 247.354494][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 247.355478][T15044] sp : ffff8000a0a672c0 [ 247.356136][T15044] x29: ffff8000a0a672c0 x28: 0000000000000002 x27: 000000002027a000 [ 247.357396][T15044] x26: 00e800014f07cb43 x25: dfff800000000000 x24: 000000000020ac5d [ 247.358728][T15044] x23: fffffdffc43c1f08 x22: fffffdffc43c1f00 x21: 0000000000000000 [ 247.359993][T15044] x20: 0000000000000002 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 247.361146][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 247.362317][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 247.363572][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 247.364822][T15044] x8 : 14e578ac1de0e000 x7 : 000000000004df58 x6 : ffff800080563af4 [ 247.366037][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 247.367289][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 247.368509][T15044] Call trace: [ 247.369028][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 247.369978][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 247.370833][T15044] set_pte_range+0x2e4/0x49c [ 247.371583][T15044] filemap_map_pages+0xb54/0x155c [ 247.372360][T15044] handle_mm_fault+0x2b64/0x4d34 [ 247.373143][T15044] __get_user_pages+0x1f40/0x2da0 [ 247.373946][T15044] populate_vma_page_range+0x258/0x348 [ 247.374805][T15044] __mm_populate+0x208/0x330 [ 247.375486][T15044] vm_mmap_pgoff+0x398/0x45c [ 247.376186][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 247.376915][T15044] __arm64_sys_mmap+0xf8/0x110 [ 247.377655][T15044] invoke_syscall+0x98/0x2b8 [ 247.378349][T15044] el0_svc_common+0x130/0x23c [ 247.379116][T15044] do_el0_svc+0x48/0x58 [ 247.379785][T15044] el0_svc+0x58/0x180 [ 247.380421][T15044] el0t_64_sync_handler+0x84/0x12c [ 247.381249][T15044] el0t_64_sync+0x198/0x19c [ 247.381951][T15044] irq event stamp: 10813 [ 247.382589][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 247.384066][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 247.385457][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 247.386888][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 247.388141][T15044] ---[ end trace 0000000000000000 ]--- [ 247.389209][T15044] page: refcount:1091 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 247.389340][T15044] head: order:9 mapcount:578 entire_mapcount:0 nr_pages_mapped:578 pincount:0 [ 247.389353][T15044] memcg:ffff0000c19c2580 [ 247.389361][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 247.389372][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 247.389383][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.389390][T15044] raw: 0000000000000000 0000000000000000 00000443ffffffff ffff0000c19c2580 [ 247.389398][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.389405][T15044] head: 0000000000000000 0000000000000000 00000443ffffffff ffff0000c19c2580 [ 247.389412][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000024200000241 00000000ffffffff [ 247.389419][T15044] head: ffffffff00000241 0000000000000024 00000000ffffffff 0000000000000200 [ 247.389424][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 247.389465][T15044] ------------[ cut here ]------------ [ 247.389468][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 247.409183][T15044] Modules linked in: [ 247.409824][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 247.411713][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 247.412476][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 247.413976][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 247.415130][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 247.416027][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 247.416887][T15044] sp : ffff8000a0a672c0 [ 247.417477][T15044] x29: ffff8000a0a672c0 x28: 0000000000000002 x27: 000000002027a000 [ 247.418720][T15044] x26: 00e800014f07cb43 x25: dfff800000000000 x24: 000000000020ac5d [ 247.419948][T15044] x23: fffffdffc43c1f80 x22: fffffdffc43c1f48 x21: 0000000000000000 [ 247.421171][T15044] x20: 0000000000000002 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 247.422429][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 247.423790][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 247.425150][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 247.426500][T15044] x8 : 14e578ac1de0e000 x7 : 000000000004f158 x6 : ffff800080563af4 [ 247.427785][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 247.429053][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 247.430385][T15044] Call trace: [ 247.430876][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 247.431842][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 247.432739][T15044] set_pte_range+0x2e4/0x49c [ 247.433496][T15044] filemap_map_pages+0xb54/0x155c [ 247.434262][T15044] handle_mm_fault+0x2b64/0x4d34 [ 247.435024][T15044] __get_user_pages+0x1f40/0x2da0 [ 247.435781][T15044] populate_vma_page_range+0x258/0x348 [ 247.436681][T15044] __mm_populate+0x208/0x330 [ 247.437337][T15044] vm_mmap_pgoff+0x398/0x45c [ 247.438048][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 247.438729][T15044] __arm64_sys_mmap+0xf8/0x110 [ 247.439489][T15044] invoke_syscall+0x98/0x2b8 [ 247.440203][T15044] el0_svc_common+0x130/0x23c [ 247.440907][T15044] do_el0_svc+0x48/0x58 [ 247.441534][T15044] el0_svc+0x58/0x180 [ 247.442127][T15044] el0t_64_sync_handler+0x84/0x12c [ 247.442909][T15044] el0t_64_sync+0x198/0x19c [ 247.443567][T15044] irq event stamp: 10813 [ 247.444325][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 247.445944][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 247.447418][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 247.448897][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 247.450216][T15044] ---[ end trace 0000000000000000 ]--- [ 247.451444][T15044] page: refcount:1093 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 247.451831][T15044] head: order:9 mapcount:580 entire_mapcount:0 nr_pages_mapped:580 pincount:0 [ 247.451841][T15044] memcg:ffff0000c19c2580 [ 247.451849][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 247.451859][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 247.451871][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.451879][T15044] raw: 0000000000000000 0000000000000000 00000445ffffffff ffff0000c19c2580 [ 247.451886][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.451893][T15044] head: 0000000000000000 0000000000000000 00000445ffffffff ffff0000c19c2580 [ 247.451900][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000024400000243 00000000ffffffff [ 247.451907][T15044] head: ffffffff00000243 0000000000000024 00000000ffffffff 0000000000000200 [ 247.451912][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 247.451954][T15044] ------------[ cut here ]------------ [ 247.451957][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 247.470992][T15044] Modules linked in: [ 247.471606][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 247.473636][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 247.474411][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 247.475950][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 247.477245][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 247.478209][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 247.479106][T15044] sp : ffff8000a0a672c0 [ 247.479730][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002027d000 [ 247.480896][T15044] x26: 00e800014f07fb43 x25: dfff800000000000 x24: 000000000020ac5d [ 247.482083][T15044] x23: fffffdffc43c1fc8 x22: fffffdffc43c1fc0 x21: 0000000000000000 [ 247.483370][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 247.484613][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 247.485901][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 247.487139][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 247.488333][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000500c8 x6 : ffff800080563af4 [ 247.489683][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 247.490981][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 247.492262][T15044] Call trace: [ 247.492766][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 247.493805][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 247.494678][T15044] set_pte_range+0x2e4/0x49c [ 247.495369][T15044] filemap_map_pages+0xb54/0x155c [ 247.496189][T15044] handle_mm_fault+0x2b64/0x4d34 [ 247.497028][T15044] __get_user_pages+0x1f40/0x2da0 [ 247.497836][T15044] populate_vma_page_range+0x258/0x348 [ 247.498697][T15044] __mm_populate+0x208/0x330 [ 247.499357][T15044] vm_mmap_pgoff+0x398/0x45c [ 247.500088][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 247.500770][T15044] __arm64_sys_mmap+0xf8/0x110 [ 247.501527][T15044] invoke_syscall+0x98/0x2b8 [ 247.502189][T15044] el0_svc_common+0x130/0x23c [ 247.502826][T15044] do_el0_svc+0x48/0x58 [ 247.503414][T15044] el0_svc+0x58/0x180 [ 247.504051][T15044] el0t_64_sync_handler+0x84/0x12c [ 247.504861][T15044] el0t_64_sync+0x198/0x19c [ 247.505647][T15044] irq event stamp: 10813 [ 247.506386][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 247.507991][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 247.509585][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 247.511175][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 247.512622][T15044] ---[ end trace 0000000000000000 ]--- [ 247.513799][T15044] page: refcount:1093 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 247.513893][T15044] head: order:9 mapcount:580 entire_mapcount:0 nr_pages_mapped:580 pincount:0 [ 247.513907][T15044] memcg:ffff0000c19c2580 [ 247.513918][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 247.513934][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 247.513947][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.513956][T15044] raw: 0000000000000000 0000000000000000 00000445ffffffff ffff0000c19c2580 [ 247.513964][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.513971][T15044] head: 0000000000000000 0000000000000000 00000445ffffffff ffff0000c19c2580 [ 247.513978][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000024400000243 00000000ffffffff [ 247.513985][T15044] head: ffffffff00000243 0000000000000024 00000000ffffffff 0000000000000200 [ 247.513990][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 247.514032][T15044] ------------[ cut here ]------------ [ 247.514035][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 247.534123][T15044] Modules linked in: [ 247.534728][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 247.536680][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 247.537524][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 247.539192][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 247.540440][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 247.541362][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 247.542297][T15044] sp : ffff8000a0a672c0 [ 247.542904][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002027d000 [ 247.544115][T15044] x26: 00e800014f07fb43 x25: dfff800000000000 x24: 000000000020ac5d [ 247.545265][T15044] x23: fffffdffc43c2000 x22: fffffdffc43c1fc8 x21: 0000000000000000 [ 247.546434][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 247.547571][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 247.548815][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 247.550047][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 247.551289][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000511c8 x6 : ffff800080563af4 [ 247.552488][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 247.553729][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 247.555079][T15044] Call trace: [ 247.555567][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 247.556506][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 247.557420][T15044] set_pte_range+0x2e4/0x49c [ 247.558198][T15044] filemap_map_pages+0xb54/0x155c [ 247.558994][T15044] handle_mm_fault+0x2b64/0x4d34 [ 247.559782][T15044] __get_user_pages+0x1f40/0x2da0 [ 247.560616][T15044] populate_vma_page_range+0x258/0x348 [ 247.561492][T15044] __mm_populate+0x208/0x330 [ 247.562230][T15044] vm_mmap_pgoff+0x398/0x45c [ 247.563012][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 247.563772][T15044] __arm64_sys_mmap+0xf8/0x110 [ 247.564563][T15044] invoke_syscall+0x98/0x2b8 [ 247.565335][T15044] el0_svc_common+0x130/0x23c [ 247.566083][T15044] do_el0_svc+0x48/0x58 [ 247.566704][T15044] el0_svc+0x58/0x180 [ 247.567264][T15044] el0t_64_sync_handler+0x84/0x12c [ 247.568095][T15044] el0t_64_sync+0x198/0x19c [ 247.568786][T15044] irq event stamp: 10813 [ 247.569461][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 247.571062][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 247.572625][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 247.574172][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 247.575650][T15044] ---[ end trace 0000000000000000 ]--- [ 247.577994][T15044] page: refcount:1094 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 247.578869][T15044] head: order:9 mapcount:581 entire_mapcount:0 nr_pages_mapped:581 pincount:0 [ 247.578882][T15044] memcg:ffff0000c19c2580 [ 247.578891][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 247.578906][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 247.578919][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.578927][T15044] raw: 0000000000000000 0000000000000000 00000446ffffffff ffff0000c19c2580 [ 247.578935][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.578942][T15044] head: 0000000000000000 0000000000000000 00000446ffffffff ffff0000c19c2580 [ 247.578949][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000024500000244 00000000ffffffff [ 247.578956][T15044] head: ffffffff00000244 0000000000000024 00000000ffffffff 0000000000000200 [ 247.578961][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 247.579003][T15044] ------------[ cut here ]------------ [ 247.579006][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 247.597649][T15044] Modules linked in: [ 247.598303][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 247.600375][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 247.601165][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 247.602687][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 247.603886][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 247.604803][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 247.605701][T15044] sp : ffff8000a0a672c0 [ 247.606318][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020283000 [ 247.607631][T15044] x26: 00e800014f085b43 x25: dfff800000000000 x24: 000000000020ac5d [ 247.608936][T15044] x23: fffffdffc43c2148 x22: fffffdffc43c2140 x21: 0000000000000000 [ 247.610275][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 247.611573][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 247.612890][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 247.614218][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 247.615485][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000052308 x6 : ffff800080563af4 [ 247.616717][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 247.617985][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 247.619137][T15044] Call trace: [ 247.619649][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 247.620519][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 247.621321][T15044] set_pte_range+0x2e4/0x49c [ 247.622000][T15044] filemap_map_pages+0xb54/0x155c [ 247.622823][T15044] handle_mm_fault+0x2b64/0x4d34 [ 247.623582][T15044] __get_user_pages+0x1f40/0x2da0 [ 247.624326][T15044] populate_vma_page_range+0x258/0x348 [ 247.625192][T15044] __mm_populate+0x208/0x330 [ 247.625947][T15044] vm_mmap_pgoff+0x398/0x45c [ 247.626579][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 247.627292][T15044] __arm64_sys_mmap+0xf8/0x110 [ 247.628069][T15044] invoke_syscall+0x98/0x2b8 [ 247.628825][T15044] el0_svc_common+0x130/0x23c [ 247.629597][T15044] do_el0_svc+0x48/0x58 [ 247.630247][T15044] el0_svc+0x58/0x180 [ 247.630860][T15044] el0t_64_sync_handler+0x84/0x12c [ 247.631664][T15044] el0t_64_sync+0x198/0x19c [ 247.632352][T15044] irq event stamp: 10813 [ 247.633022][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 247.634600][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 247.636074][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 247.637478][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 247.638792][T15044] ---[ end trace 0000000000000000 ]--- [ 247.640176][T15044] page: refcount:1094 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 247.640618][T15044] head: order:9 mapcount:581 entire_mapcount:0 nr_pages_mapped:581 pincount:0 [ 247.640629][T15044] memcg:ffff0000c19c2580 [ 247.640636][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 247.640654][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 247.640672][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.640681][T15044] raw: 0000000000000000 0000000000000000 00000446ffffffff ffff0000c19c2580 [ 247.640689][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.640696][T15044] head: 0000000000000000 0000000000000000 00000446ffffffff ffff0000c19c2580 [ 247.640703][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000024500000244 00000000ffffffff [ 247.640710][T15044] head: ffffffff00000244 0000000000000024 00000000ffffffff 0000000000000200 [ 247.640715][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 247.640757][T15044] ------------[ cut here ]------------ [ 247.640760][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 247.660999][T15044] Modules linked in: [ 247.661560][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 247.663437][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 247.664191][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 247.665569][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 247.666713][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 247.667625][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 247.668614][T15044] sp : ffff8000a0a672c0 [ 247.669250][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020283000 [ 247.670570][T15044] x26: 00e800014f085b43 x25: dfff800000000000 x24: 000000000020ac5d [ 247.671859][T15044] x23: fffffdffc43c2180 x22: fffffdffc43c2148 x21: 0000000000000000 [ 247.673140][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 247.674382][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 247.675602][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 247.676855][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 247.678121][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000053508 x6 : ffff800080563af4 [ 247.679446][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 247.680730][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 247.681982][T15044] Call trace: [ 247.682531][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 247.683545][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 247.684424][T15044] set_pte_range+0x2e4/0x49c [ 247.685198][T15044] filemap_map_pages+0xb54/0x155c [ 247.686008][T15044] handle_mm_fault+0x2b64/0x4d34 [ 247.686753][T15044] __get_user_pages+0x1f40/0x2da0 [ 247.687514][T15044] populate_vma_page_range+0x258/0x348 [ 247.688380][T15044] __mm_populate+0x208/0x330 [ 247.689107][T15044] vm_mmap_pgoff+0x398/0x45c [ 247.689864][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 247.690615][T15044] __arm64_sys_mmap+0xf8/0x110 [ 247.691292][T15044] invoke_syscall+0x98/0x2b8 [ 247.691988][T15044] el0_svc_common+0x130/0x23c [ 247.692648][T15044] do_el0_svc+0x48/0x58 [ 247.693206][T15044] el0_svc+0x58/0x180 [ 247.693800][T15044] el0t_64_sync_handler+0x84/0x12c [ 247.694628][T15044] el0t_64_sync+0x198/0x19c [ 247.695329][T15044] irq event stamp: 10813 [ 247.695961][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 247.697493][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 247.698992][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 247.700645][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 247.702121][T15044] ---[ end trace 0000000000000000 ]--- [ 247.703189][T15044] page: refcount:1095 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 247.703282][T15044] head: order:9 mapcount:582 entire_mapcount:0 nr_pages_mapped:582 pincount:0 [ 247.703333][T15044] memcg:ffff0000c19c2580 [ 247.703342][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 247.703353][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 247.703364][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.703372][T15044] raw: 0000000000000000 0000000000000000 00000447ffffffff ffff0000c19c2580 [ 247.703380][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.703387][T15044] head: 0000000000000000 0000000000000000 00000447ffffffff ffff0000c19c2580 [ 247.703394][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000024600000245 00000000ffffffff [ 247.703401][T15044] head: ffffffff00000245 0000000000000024 00000000ffffffff 0000000000000200 [ 247.703406][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 247.703446][T15044] ------------[ cut here ]------------ [ 247.703449][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 247.722547][T15044] Modules linked in: [ 247.723107][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 247.725125][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 247.725899][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 247.727439][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 247.728573][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 247.729468][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 247.730384][T15044] sp : ffff8000a0a672c0 [ 247.731010][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020286000 [ 247.732232][T15044] x26: 00e800014f088b43 x25: dfff800000000000 x24: 000000000020ac5d [ 247.733407][T15044] x23: fffffdffc43c2208 x22: fffffdffc43c2200 x21: 0000000000000000 [ 247.734606][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 247.735757][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 247.737055][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 247.738297][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 247.739502][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000054890 x6 : ffff800080563af4 [ 247.740704][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 247.741886][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 247.743223][T15044] Call trace: [ 247.743791][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 247.744797][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 247.745694][T15044] set_pte_range+0x2e4/0x49c [ 247.746433][T15044] filemap_map_pages+0xb54/0x155c [ 247.747167][T15044] handle_mm_fault+0x2b64/0x4d34 [ 247.747950][T15044] __get_user_pages+0x1f40/0x2da0 [ 247.748717][T15044] populate_vma_page_range+0x258/0x348 [ 247.749588][T15044] __mm_populate+0x208/0x330 [ 247.750288][T15044] vm_mmap_pgoff+0x398/0x45c [ 247.751019][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 247.751759][T15044] __arm64_sys_mmap+0xf8/0x110 [ 247.752518][T15044] invoke_syscall+0x98/0x2b8 [ 247.753270][T15044] el0_svc_common+0x130/0x23c [ 247.754017][T15044] do_el0_svc+0x48/0x58 [ 247.754674][T15044] el0_svc+0x58/0x180 [ 247.755262][T15044] el0t_64_sync_handler+0x84/0x12c [ 247.756025][T15044] el0t_64_sync+0x198/0x19c [ 247.756683][T15044] irq event stamp: 10813 [ 247.757296][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 247.758614][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 247.759992][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 247.761348][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 247.762594][T15044] ---[ end trace 0000000000000000 ]--- [ 247.763785][T15044] page: refcount:1095 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 247.764163][T15044] head: order:9 mapcount:582 entire_mapcount:0 nr_pages_mapped:582 pincount:0 [ 247.764173][T15044] memcg:ffff0000c19c2580 [ 247.764183][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 247.764198][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 247.764213][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.764222][T15044] raw: 0000000000000000 0000000000000000 00000447ffffffff ffff0000c19c2580 [ 247.764230][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.764237][T15044] head: 0000000000000000 0000000000000000 00000447ffffffff ffff0000c19c2580 [ 247.764244][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000024600000245 00000000ffffffff [ 247.764251][T15044] head: ffffffff00000245 0000000000000024 00000000ffffffff 0000000000000200 [ 247.764257][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 247.764299][T15044] ------------[ cut here ]------------ [ 247.764302][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 247.783431][T15044] Modules linked in: [ 247.784004][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 247.785858][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 247.786655][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 247.788089][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 247.789213][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 247.790203][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 247.791172][T15044] sp : ffff8000a0a672c0 [ 247.791807][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020286000 [ 247.792988][T15044] x26: 00e800014f088b43 x25: dfff800000000000 x24: 000000000020ac5d [ 247.794172][T15044] x23: fffffdffc43c2240 x22: fffffdffc43c2208 x21: 0000000000000000 [ 247.795341][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 247.796550][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 247.797748][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 247.798914][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 247.800024][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000055850 x6 : ffff800080563af4 [ 247.801121][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 247.802243][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 247.803444][T15044] Call trace: [ 247.803940][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 247.804920][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 247.805743][T15044] set_pte_range+0x2e4/0x49c [ 247.806483][T15044] filemap_map_pages+0xb54/0x155c [ 247.807267][T15044] handle_mm_fault+0x2b64/0x4d34 [ 247.808095][T15044] __get_user_pages+0x1f40/0x2da0 [ 247.808887][T15044] populate_vma_page_range+0x258/0x348 [ 247.809775][T15044] __mm_populate+0x208/0x330 [ 247.810453][T15044] vm_mmap_pgoff+0x398/0x45c [ 247.811145][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 247.811854][T15044] __arm64_sys_mmap+0xf8/0x110 [ 247.812620][T15044] invoke_syscall+0x98/0x2b8 [ 247.813334][T15044] el0_svc_common+0x130/0x23c [ 247.814020][T15044] do_el0_svc+0x48/0x58 [ 247.814617][T15044] el0_svc+0x58/0x180 [ 247.815197][T15044] el0t_64_sync_handler+0x84/0x12c [ 247.815933][T15044] el0t_64_sync+0x198/0x19c [ 247.816575][T15044] irq event stamp: 10813 [ 247.817135][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 247.818572][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 247.819985][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 247.821534][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 247.822861][T15044] ---[ end trace 0000000000000000 ]--- [ 247.823958][T15044] page: refcount:1096 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 247.824098][T15044] head: order:9 mapcount:583 entire_mapcount:0 nr_pages_mapped:583 pincount:0 [ 247.824108][T15044] memcg:ffff0000c19c2580 [ 247.824118][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 247.824131][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 247.824143][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.824151][T15044] raw: 0000000000000000 0000000000000000 00000448ffffffff ffff0000c19c2580 [ 247.824159][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.824166][T15044] head: 0000000000000000 0000000000000000 00000448ffffffff ffff0000c19c2580 [ 247.824173][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000024700000246 00000000ffffffff [ 247.824180][T15044] head: ffffffff00000246 0000000000000024 00000000ffffffff 0000000000000200 [ 247.824185][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 247.824227][T15044] ------------[ cut here ]------------ [ 247.824230][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 247.843152][T15044] Modules linked in: [ 247.843736][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 247.845449][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 247.846178][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 247.847614][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 247.848703][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 247.849575][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 247.850429][T15044] sp : ffff8000a0a672c0 [ 247.851004][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020288000 [ 247.852192][T15044] x26: 00e800014f08ab43 x25: dfff800000000000 x24: 000000000020ac5d [ 247.853375][T15044] x23: fffffdffc43c2288 x22: fffffdffc43c2280 x21: 0000000000000000 [ 247.854545][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 247.855662][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 247.856904][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 247.858123][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 247.859347][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000056810 x6 : ffff800080563af4 [ 247.860659][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 247.861908][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 247.863063][T15044] Call trace: [ 247.863624][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 247.864555][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 247.865407][T15044] set_pte_range+0x2e4/0x49c [ 247.866145][T15044] filemap_map_pages+0xb54/0x155c [ 247.866926][T15044] handle_mm_fault+0x2b64/0x4d34 [ 247.867714][T15044] __get_user_pages+0x1f40/0x2da0 [ 247.868496][T15044] populate_vma_page_range+0x258/0x348 [ 247.869457][T15044] __mm_populate+0x208/0x330 [ 247.870222][T15044] vm_mmap_pgoff+0x398/0x45c [ 247.870992][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 247.871785][T15044] __arm64_sys_mmap+0xf8/0x110 [ 247.872500][T15044] invoke_syscall+0x98/0x2b8 [ 247.873197][T15044] el0_svc_common+0x130/0x23c [ 247.873885][T15044] do_el0_svc+0x48/0x58 [ 247.874529][T15044] el0_svc+0x58/0x180 [ 247.875164][T15044] el0t_64_sync_handler+0x84/0x12c [ 247.875989][T15044] el0t_64_sync+0x198/0x19c [ 247.876739][T15044] irq event stamp: 10813 [ 247.877418][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 247.878936][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 247.880421][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 247.881813][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 247.883284][T15044] ---[ end trace 0000000000000000 ]--- [ 247.884661][T15044] page: refcount:1096 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 247.885050][T15044] head: order:9 mapcount:583 entire_mapcount:0 nr_pages_mapped:583 pincount:0 [ 247.885061][T15044] memcg:ffff0000c19c2580 [ 247.885071][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 247.885084][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 247.885098][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.885106][T15044] raw: 0000000000000000 0000000000000000 00000448ffffffff ffff0000c19c2580 [ 247.885113][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.885120][T15044] head: 0000000000000000 0000000000000000 00000448ffffffff ffff0000c19c2580 [ 247.885128][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000024700000246 00000000ffffffff [ 247.885135][T15044] head: ffffffff00000246 0000000000000024 00000000ffffffff 0000000000000200 [ 247.885140][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 247.885181][T15044] ------------[ cut here ]------------ [ 247.885184][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 247.904149][T15044] Modules linked in: [ 247.904736][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 247.906469][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 247.907238][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 247.908693][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 247.909932][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 247.910906][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 247.911800][T15044] sp : ffff8000a0a672c0 [ 247.912417][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020288000 [ 247.913603][T15044] x26: 00e800014f08ab43 x25: dfff800000000000 x24: 000000000020ac5d [ 247.914967][T15044] x23: fffffdffc43c22c0 x22: fffffdffc43c2288 x21: 0000000000000000 [ 247.916281][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 247.917547][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 247.918724][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 247.920005][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 247.921256][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000057568 x6 : ffff800080563af4 [ 247.922454][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 247.923745][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 247.924983][T15044] Call trace: [ 247.925493][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 247.926418][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 247.927212][T15044] set_pte_range+0x2e4/0x49c [ 247.927913][T15044] filemap_map_pages+0xb54/0x155c [ 247.928699][T15044] handle_mm_fault+0x2b64/0x4d34 [ 247.929406][T15044] __get_user_pages+0x1f40/0x2da0 [ 247.930142][T15044] populate_vma_page_range+0x258/0x348 [ 247.931027][T15044] __mm_populate+0x208/0x330 [ 247.931701][T15044] vm_mmap_pgoff+0x398/0x45c [ 247.932442][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 247.933232][T15044] __arm64_sys_mmap+0xf8/0x110 [ 247.934011][T15044] invoke_syscall+0x98/0x2b8 [ 247.934711][T15044] el0_svc_common+0x130/0x23c [ 247.935454][T15044] do_el0_svc+0x48/0x58 [ 247.936147][T15044] el0_svc+0x58/0x180 [ 247.936801][T15044] el0t_64_sync_handler+0x84/0x12c [ 247.937657][T15044] el0t_64_sync+0x198/0x19c [ 247.938454][T15044] irq event stamp: 10813 [ 247.939115][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 247.940571][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 247.942095][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 247.943543][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 247.944909][T15044] ---[ end trace 0000000000000000 ]--- [ 247.946181][T15044] page: refcount:1097 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 247.946541][T15044] head: order:9 mapcount:584 entire_mapcount:0 nr_pages_mapped:584 pincount:0 [ 247.946551][T15044] memcg:ffff0000c19c2580 [ 247.946559][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 247.946569][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 247.946581][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.946588][T15044] raw: 0000000000000000 0000000000000000 00000449ffffffff ffff0000c19c2580 [ 247.946595][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 247.946602][T15044] head: 0000000000000000 0000000000000000 00000449ffffffff ffff0000c19c2580 [ 247.946609][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000024800000247 00000000ffffffff [ 247.946616][T15044] head: ffffffff00000247 0000000000000024 00000000ffffffff 0000000000000200 [ 247.946621][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 247.946667][T15044] ------------[ cut here ]------------ [ 247.946671][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 247.964773][T15044] Modules linked in: [ 247.965367][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 247.967171][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 247.967934][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 247.969398][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 247.970444][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 247.971418][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 247.972336][T15044] sp : ffff8000a0a672c0 [ 247.972976][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 000000002028b000 [ 247.974258][T15044] x26: 00e800014f08db43 x25: dfff800000000000 x24: 000000000020ac5d [ 247.975553][T15044] x23: fffffdffc43c2348 x22: fffffdffc43c2340 x21: 0000000000000000 [ 247.976824][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 247.978065][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 247.979342][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 247.980606][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 247.981872][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000584d0 x6 : ffff800080563af4 [ 247.983153][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 247.984448][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 247.985770][T15044] Call trace: [ 247.986244][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 247.987139][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 247.987994][T15044] set_pte_range+0x2e4/0x49c [ 247.988801][T15044] filemap_map_pages+0xb54/0x155c [ 247.989636][T15044] handle_mm_fault+0x2b64/0x4d34 [ 247.990418][T15044] __get_user_pages+0x1f40/0x2da0 [ 247.991223][T15044] populate_vma_page_range+0x258/0x348 [ 247.992087][T15044] __mm_populate+0x208/0x330 [ 247.992841][T15044] vm_mmap_pgoff+0x398/0x45c [ 247.993573][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 247.994318][T15044] __arm64_sys_mmap+0xf8/0x110 [ 247.995058][T15044] invoke_syscall+0x98/0x2b8 [ 247.995794][T15044] el0_svc_common+0x130/0x23c [ 247.996512][T15044] do_el0_svc+0x48/0x58 [ 247.997112][T15044] el0_svc+0x58/0x180 [ 247.997726][T15044] el0t_64_sync_handler+0x84/0x12c [ 247.998465][T15044] el0t_64_sync+0x198/0x19c [ 247.999133][T15044] irq event stamp: 10813 [ 247.999827][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 248.001321][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 248.002856][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 248.004415][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 248.005913][T15044] ---[ end trace 0000000000000000 ]--- [ 248.006918][T15044] page: refcount:1097 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 248.006934][T15044] head: order:9 mapcount:584 entire_mapcount:0 nr_pages_mapped:584 pincount:0 [ 248.006945][T15044] memcg:ffff0000c19c2580 [ 248.006954][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 248.006969][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 248.006982][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.006990][T15044] raw: 0000000000000000 0000000000000000 00000449ffffffff ffff0000c19c2580 [ 248.006998][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.007005][T15044] head: 0000000000000000 0000000000000000 00000449ffffffff ffff0000c19c2580 [ 248.007013][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000024800000247 00000000ffffffff [ 248.007020][T15044] head: ffffffff00000247 0000000000000024 00000000ffffffff 0000000000000200 [ 248.007025][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 248.007066][T15044] ------------[ cut here ]------------ [ 248.007069][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 248.026868][T15044] Modules linked in: [ 248.027447][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 248.029459][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 248.030177][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 248.031719][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 248.033004][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 248.033945][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 248.034939][T15044] sp : ffff8000a0a672c0 [ 248.035591][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 000000002028b000 [ 248.036857][T15044] x26: 00e800014f08db43 x25: dfff800000000000 x24: 000000000020ac5d [ 248.038132][T15044] x23: fffffdffc43c2400 x22: fffffdffc43c23c8 x21: 0000000000000000 [ 248.039301][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 248.040533][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 248.041713][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 248.042820][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 248.043947][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000595d8 x6 : ffff800080563af4 [ 248.045097][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 248.046164][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 248.047413][T15044] Call trace: [ 248.047931][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 248.048851][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 248.049726][T15044] set_pte_range+0x2e4/0x49c [ 248.050436][T15044] filemap_map_pages+0xb54/0x155c [ 248.051167][T15044] handle_mm_fault+0x2b64/0x4d34 [ 248.051923][T15044] __get_user_pages+0x1f40/0x2da0 [ 248.052682][T15044] populate_vma_page_range+0x258/0x348 [ 248.053437][T15044] __mm_populate+0x208/0x330 [ 248.054101][T15044] vm_mmap_pgoff+0x398/0x45c [ 248.054764][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 248.055475][T15044] __arm64_sys_mmap+0xf8/0x110 [ 248.056187][T15044] invoke_syscall+0x98/0x2b8 [ 248.056884][T15044] el0_svc_common+0x130/0x23c [ 248.057604][T15044] do_el0_svc+0x48/0x58 [ 248.058265][T15044] el0_svc+0x58/0x180 [ 248.058830][T15044] el0t_64_sync_handler+0x84/0x12c [ 248.059583][T15044] el0t_64_sync+0x198/0x19c [ 248.060205][T15044] irq event stamp: 10813 [ 248.060851][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 248.062310][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 248.063793][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 248.065199][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 248.066599][T15044] ---[ end trace 0000000000000000 ]--- [ 248.067889][T15044] page: refcount:1100 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 248.068240][T15044] head: order:9 mapcount:587 entire_mapcount:0 nr_pages_mapped:587 pincount:0 [ 248.068250][T15044] memcg:ffff0000c19c2580 [ 248.068257][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 248.068267][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 248.068278][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.068285][T15044] raw: 0000000000000000 0000000000000000 0000044cffffffff ffff0000c19c2580 [ 248.068293][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.068300][T15044] head: 0000000000000000 0000000000000000 0000044cffffffff ffff0000c19c2580 [ 248.068307][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000024b0000024a 00000000ffffffff [ 248.068314][T15044] head: ffffffff0000024a 0000000000000024 00000000ffffffff 0000000000000200 [ 248.068319][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 248.068360][T15044] ------------[ cut here ]------------ [ 248.068363][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 248.086525][T15044] Modules linked in: [ 248.087062][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 248.088916][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 248.089653][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 248.091166][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 248.092261][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 248.093244][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 248.094226][T15044] sp : ffff8000a0a672c0 [ 248.094919][T15044] x29: ffff8000a0a672c0 x28: 0000000000000007 x27: 000000002028f000 [ 248.096165][T15044] x26: 00e800014f091b43 x25: dfff800000000000 x24: 000000000020ac5d [ 248.097424][T15044] x23: fffffdffc43c2448 x22: fffffdffc43c2440 x21: 0000000000000000 [ 248.098731][T15044] x20: 0000000000000007 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 248.099992][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 248.101301][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 248.102603][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 248.104000][T15044] x8 : 14e578ac1de0e000 x7 : 000000000005a890 x6 : ffff800080563af4 [ 248.105303][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 248.106644][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 248.107948][T15044] Call trace: [ 248.108454][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 248.109462][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 248.110283][T15044] set_pte_range+0x2e4/0x49c [ 248.111034][T15044] filemap_map_pages+0xb54/0x155c [ 248.111817][T15044] handle_mm_fault+0x2b64/0x4d34 [ 248.112649][T15044] __get_user_pages+0x1f40/0x2da0 [ 248.113472][T15044] populate_vma_page_range+0x258/0x348 [ 248.114352][T15044] __mm_populate+0x208/0x330 [ 248.115110][T15044] vm_mmap_pgoff+0x398/0x45c [ 248.115859][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 248.116697][T15044] __arm64_sys_mmap+0xf8/0x110 [ 248.117506][T15044] invoke_syscall+0x98/0x2b8 [ 248.118172][T15044] el0_svc_common+0x130/0x23c [ 248.118917][T15044] do_el0_svc+0x48/0x58 [ 248.119539][T15044] el0_svc+0x58/0x180 [ 248.120121][T15044] el0t_64_sync_handler+0x84/0x12c [ 248.120882][T15044] el0t_64_sync+0x198/0x19c [ 248.121564][T15044] irq event stamp: 10813 [ 248.122246][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 248.123740][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 248.125153][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 248.126706][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 248.128197][T15044] ---[ end trace 0000000000000000 ]--- [ 248.129212][T15044] page: refcount:1100 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 248.129231][T15044] head: order:9 mapcount:587 entire_mapcount:0 nr_pages_mapped:587 pincount:0 [ 248.129242][T15044] memcg:ffff0000c19c2580 [ 248.129251][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 248.129266][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 248.129280][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.129289][T15044] raw: 0000000000000000 0000000000000000 0000044cffffffff ffff0000c19c2580 [ 248.129297][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.129304][T15044] head: 0000000000000000 0000000000000000 0000044cffffffff ffff0000c19c2580 [ 248.129311][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000024b0000024a 00000000ffffffff [ 248.129319][T15044] head: ffffffff0000024a 0000000000000024 00000000ffffffff 0000000000000200 [ 248.129324][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 248.129365][T15044] ------------[ cut here ]------------ [ 248.129369][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 248.148073][T15044] Modules linked in: [ 248.148591][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 248.150428][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 248.151197][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 248.152635][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 248.153784][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 248.154668][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 248.155546][T15044] sp : ffff8000a0a672c0 [ 248.156184][T15044] x29: ffff8000a0a672c0 x28: 0000000000000007 x27: 000000002028f000 [ 248.157488][T15044] x26: 00e800014f091b43 x25: dfff800000000000 x24: 000000000020ac5d [ 248.158725][T15044] x23: fffffdffc43c2600 x22: fffffdffc43c25c8 x21: 0000000000000000 [ 248.159976][T15044] x20: 0000000000000007 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 248.161183][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 248.162382][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 248.163627][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 248.164971][T15044] x8 : 14e578ac1de0e000 x7 : 000000000005b6f0 x6 : ffff800080563af4 [ 248.166231][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 248.167547][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 248.168834][T15044] Call trace: [ 248.169356][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 248.170343][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 248.171133][T15044] set_pte_range+0x2e4/0x49c [ 248.171840][T15044] filemap_map_pages+0xb54/0x155c [ 248.172607][T15044] handle_mm_fault+0x2b64/0x4d34 [ 248.173406][T15044] __get_user_pages+0x1f40/0x2da0 [ 248.174227][T15044] populate_vma_page_range+0x258/0x348 [ 248.175145][T15044] __mm_populate+0x208/0x330 [ 248.175858][T15044] vm_mmap_pgoff+0x398/0x45c [ 248.176580][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 248.177305][T15044] __arm64_sys_mmap+0xf8/0x110 [ 248.178104][T15044] invoke_syscall+0x98/0x2b8 [ 248.178882][T15044] el0_svc_common+0x130/0x23c [ 248.179688][T15044] do_el0_svc+0x48/0x58 [ 248.180327][T15044] el0_svc+0x58/0x180 [ 248.180953][T15044] el0t_64_sync_handler+0x84/0x12c [ 248.181760][T15044] el0t_64_sync+0x198/0x19c [ 248.182465][T15044] irq event stamp: 10813 [ 248.183124][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 248.184664][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 248.186038][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 248.187391][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 248.188802][T15044] ---[ end trace 0000000000000000 ]--- [ 248.191345][T15044] page: refcount:1107 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 248.192254][T15044] head: order:9 mapcount:594 entire_mapcount:0 nr_pages_mapped:594 pincount:0 [ 248.192267][T15044] memcg:ffff0000c19c2580 [ 248.192277][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 248.192293][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 248.192310][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.192318][T15044] raw: 0000000000000000 0000000000000000 00000453ffffffff ffff0000c19c2580 [ 248.192326][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.192334][T15044] head: 0000000000000000 0000000000000000 00000453ffffffff ffff0000c19c2580 [ 248.192341][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000025200000251 00000000ffffffff [ 248.192348][T15044] head: ffffffff00000251 0000000000000024 00000000ffffffff 0000000000000200 [ 248.192353][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 248.192395][T15044] ------------[ cut here ]------------ [ 248.192398][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 248.211232][T15044] Modules linked in: [ 248.211812][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 248.213590][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 248.214301][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 248.215790][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 248.216939][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 248.217840][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 248.218701][T15044] sp : ffff8000a0a672c0 [ 248.219304][T15044] x29: ffff8000a0a672c0 x28: 0000000000000002 x27: 0000000020298000 [ 248.220586][T15044] x26: 00e800014f09ab43 x25: dfff800000000000 x24: 000000000020ac5d [ 248.221799][T15044] x23: fffffdffc43c2688 x22: fffffdffc43c2680 x21: 0000000000000000 [ 248.222976][T15044] x20: 0000000000000002 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 248.224185][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 248.225374][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 248.226590][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 248.227863][T15044] x8 : 14e578ac1de0e000 x7 : 000000000005c960 x6 : ffff800080563af4 [ 248.229057][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 248.230177][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 248.231522][T15044] Call trace: [ 248.232004][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 248.233001][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 248.233854][T15044] set_pte_range+0x2e4/0x49c [ 248.234519][T15044] filemap_map_pages+0xb54/0x155c [ 248.235287][T15044] handle_mm_fault+0x2b64/0x4d34 [ 248.236022][T15044] __get_user_pages+0x1f40/0x2da0 [ 248.236774][T15044] populate_vma_page_range+0x258/0x348 [ 248.237685][T15044] __mm_populate+0x208/0x330 [ 248.238424][T15044] vm_mmap_pgoff+0x398/0x45c [ 248.239131][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 248.239881][T15044] __arm64_sys_mmap+0xf8/0x110 [ 248.240591][T15044] invoke_syscall+0x98/0x2b8 [ 248.241256][T15044] el0_svc_common+0x130/0x23c [ 248.241938][T15044] do_el0_svc+0x48/0x58 [ 248.242565][T15044] el0_svc+0x58/0x180 [ 248.243143][T15044] el0t_64_sync_handler+0x84/0x12c [ 248.243871][T15044] el0t_64_sync+0x198/0x19c [ 248.244569][T15044] irq event stamp: 10813 [ 248.245181][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 248.246645][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 248.247995][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 248.249338][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 248.250557][T15044] ---[ end trace 0000000000000000 ]--- [ 248.251743][T15044] page: refcount:1107 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 248.252107][T15044] head: order:9 mapcount:594 entire_mapcount:0 nr_pages_mapped:594 pincount:0 [ 248.252117][T15044] memcg:ffff0000c19c2580 [ 248.252125][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 248.252135][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 248.252147][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.252154][T15044] raw: 0000000000000000 0000000000000000 00000453ffffffff ffff0000c19c2580 [ 248.252162][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.252169][T15044] head: 0000000000000000 0000000000000000 00000453ffffffff ffff0000c19c2580 [ 248.252176][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000025200000251 00000000ffffffff [ 248.252183][T15044] head: ffffffff00000251 0000000000000024 00000000ffffffff 0000000000000200 [ 248.252188][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 248.252231][T15044] ------------[ cut here ]------------ [ 248.252234][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 248.271603][T15044] Modules linked in: [ 248.272193][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 248.274077][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 248.274789][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 248.276279][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 248.277445][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 248.278351][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 248.279326][T15044] sp : ffff8000a0a672c0 [ 248.279957][T15044] x29: ffff8000a0a672c0 x28: 0000000000000002 x27: 0000000020298000 [ 248.281193][T15044] x26: 00e800014f09ab43 x25: dfff800000000000 x24: 000000000020ac5d [ 248.282468][T15044] x23: fffffdffc43c2700 x22: fffffdffc43c26c8 x21: 0000000000000000 [ 248.283828][T15044] x20: 0000000000000002 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 248.285102][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 248.286398][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 248.287633][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 248.288890][T15044] x8 : 14e578ac1de0e000 x7 : 000000000005d840 x6 : ffff800080563af4 [ 248.290139][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 248.291340][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 248.292591][T15044] Call trace: [ 248.293090][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 248.293965][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 248.294810][T15044] set_pte_range+0x2e4/0x49c [ 248.295502][T15044] filemap_map_pages+0xb54/0x155c [ 248.296233][T15044] handle_mm_fault+0x2b64/0x4d34 [ 248.296899][T15044] __get_user_pages+0x1f40/0x2da0 [ 248.297635][T15044] populate_vma_page_range+0x258/0x348 [ 248.298518][T15044] __mm_populate+0x208/0x330 [ 248.299180][T15044] vm_mmap_pgoff+0x398/0x45c [ 248.299827][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 248.300604][T15044] __arm64_sys_mmap+0xf8/0x110 [ 248.301318][T15044] invoke_syscall+0x98/0x2b8 [ 248.302039][T15044] el0_svc_common+0x130/0x23c [ 248.302774][T15044] do_el0_svc+0x48/0x58 [ 248.303385][T15044] el0_svc+0x58/0x180 [ 248.303980][T15044] el0t_64_sync_handler+0x84/0x12c [ 248.304763][T15044] el0t_64_sync+0x198/0x19c [ 248.305526][T15044] irq event stamp: 10813 [ 248.306279][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 248.307803][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 248.309293][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 248.310702][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 248.312035][T15044] ---[ end trace 0000000000000000 ]--- [ 248.313009][T15044] page: refcount:1109 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 248.313023][T15044] head: order:9 mapcount:596 entire_mapcount:0 nr_pages_mapped:596 pincount:0 [ 248.313034][T15044] memcg:ffff0000c19c2580 [ 248.313044][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 248.313060][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 248.313073][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.313081][T15044] raw: 0000000000000000 0000000000000000 00000455ffffffff ffff0000c19c2580 [ 248.313089][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.313096][T15044] head: 0000000000000000 0000000000000000 00000455ffffffff ffff0000c19c2580 [ 248.313103][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000025400000253 00000000ffffffff [ 248.313110][T15044] head: ffffffff00000253 0000000000000024 00000000ffffffff 0000000000000200 [ 248.313116][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 248.313158][T15044] ------------[ cut here ]------------ [ 248.313161][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 248.332046][T15044] Modules linked in: [ 248.332664][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 248.334709][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 248.335446][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 248.336945][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 248.338169][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 248.339165][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 248.340082][T15044] sp : ffff8000a0a672c0 [ 248.340701][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002029b000 [ 248.341893][T15044] x26: 00e800014f09db43 x25: dfff800000000000 x24: 000000000020ac5d [ 248.343026][T15044] x23: fffffdffc43c2748 x22: fffffdffc43c2740 x21: 0000000000000000 [ 248.344309][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 248.345451][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 248.346613][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 248.347909][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 248.349130][T15044] x8 : 14e578ac1de0e000 x7 : 000000000005e3c8 x6 : ffff800080563af4 [ 248.350391][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 248.351595][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 248.352824][T15044] Call trace: [ 248.353322][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 248.354295][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 248.355179][T15044] set_pte_range+0x2e4/0x49c [ 248.355848][T15044] filemap_map_pages+0xb54/0x155c [ 248.356611][T15044] handle_mm_fault+0x2b64/0x4d34 [ 248.357336][T15044] __get_user_pages+0x1f40/0x2da0 [ 248.358138][T15044] populate_vma_page_range+0x258/0x348 [ 248.358962][T15044] __mm_populate+0x208/0x330 [ 248.359630][T15044] vm_mmap_pgoff+0x398/0x45c [ 248.360282][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 248.360981][T15044] __arm64_sys_mmap+0xf8/0x110 [ 248.361661][T15044] invoke_syscall+0x98/0x2b8 [ 248.362200][T15044] el0_svc_common+0x130/0x23c [ 248.362908][T15044] do_el0_svc+0x48/0x58 [ 248.363519][T15044] el0_svc+0x58/0x180 [ 248.364092][T15044] el0t_64_sync_handler+0x84/0x12c [ 248.364862][T15044] el0t_64_sync+0x198/0x19c [ 248.365519][T15044] irq event stamp: 10813 [ 248.366113][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 248.367539][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 248.368937][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 248.370474][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 248.371984][T15044] ---[ end trace 0000000000000000 ]--- [ 248.373323][T15044] page: refcount:1109 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 248.373716][T15044] head: order:9 mapcount:596 entire_mapcount:0 nr_pages_mapped:596 pincount:0 [ 248.373726][T15044] memcg:ffff0000c19c2580 [ 248.373735][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 248.373749][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 248.373761][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.373769][T15044] raw: 0000000000000000 0000000000000000 00000455ffffffff ffff0000c19c2580 [ 248.373776][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.373784][T15044] head: 0000000000000000 0000000000000000 00000455ffffffff ffff0000c19c2580 [ 248.373791][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000025400000253 00000000ffffffff [ 248.373798][T15044] head: ffffffff00000253 0000000000000024 00000000ffffffff 0000000000000200 [ 248.373804][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 248.373844][T15044] ------------[ cut here ]------------ [ 248.373847][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 248.392282][T15044] Modules linked in: [ 248.392858][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 248.394586][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 248.395308][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 248.396714][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 248.397893][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 248.398805][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 248.399658][T15044] sp : ffff8000a0a672c0 [ 248.400236][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002029b000 [ 248.401420][T15044] x26: 00e800014f09db43 x25: dfff800000000000 x24: 000000000020ac5d [ 248.402750][T15044] x23: fffffdffc43c2780 x22: fffffdffc43c2748 x21: 0000000000000000 [ 248.404076][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 248.405323][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 248.406561][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 248.407770][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 248.409072][T15044] x8 : 14e578ac1de0e000 x7 : 000000000005f210 x6 : ffff800080563af4 [ 248.410397][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 248.411694][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 248.412918][T15044] Call trace: [ 248.413392][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 248.414354][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 248.415188][T15044] set_pte_range+0x2e4/0x49c [ 248.415909][T15044] filemap_map_pages+0xb54/0x155c [ 248.416703][T15044] handle_mm_fault+0x2b64/0x4d34 [ 248.417494][T15044] __get_user_pages+0x1f40/0x2da0 [ 248.418270][T15044] populate_vma_page_range+0x258/0x348 [ 248.419062][T15044] __mm_populate+0x208/0x330 [ 248.419772][T15044] vm_mmap_pgoff+0x398/0x45c [ 248.420502][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 248.421221][T15044] __arm64_sys_mmap+0xf8/0x110 [ 248.421887][T15044] invoke_syscall+0x98/0x2b8 [ 248.422551][T15044] el0_svc_common+0x130/0x23c [ 248.423197][T15044] do_el0_svc+0x48/0x58 [ 248.423779][T15044] el0_svc+0x58/0x180 [ 248.424384][T15044] el0t_64_sync_handler+0x84/0x12c [ 248.425161][T15044] el0t_64_sync+0x198/0x19c [ 248.425850][T15044] irq event stamp: 10813 [ 248.426505][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 248.427938][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 248.429300][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 248.430809][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 248.432233][T15044] ---[ end trace 0000000000000000 ]--- [ 248.433254][T15044] page: refcount:1110 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 248.433273][T15044] head: order:9 mapcount:597 entire_mapcount:0 nr_pages_mapped:597 pincount:0 [ 248.433285][T15044] memcg:ffff0000c19c2580 [ 248.433293][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 248.433303][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 248.433315][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.433322][T15044] raw: 0000000000000000 0000000000000000 00000456ffffffff ffff0000c19c2580 [ 248.433330][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.433337][T15044] head: 0000000000000000 0000000000000000 00000456ffffffff ffff0000c19c2580 [ 248.433344][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000025500000254 00000000ffffffff [ 248.433351][T15044] head: ffffffff00000254 0000000000000024 00000000ffffffff 0000000000000200 [ 248.433356][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 248.433397][T15044] ------------[ cut here ]------------ [ 248.433400][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 248.452983][T15044] Modules linked in: [ 248.453560][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 248.455369][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 248.456151][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 248.457785][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 248.459038][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 248.460004][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 248.460933][T15044] sp : ffff8000a0a672c0 [ 248.461526][T15044] x29: ffff8000a0a672c0 x28: 0000000000000002 x27: 00000000202a0000 [ 248.462749][T15044] x26: 00e800014f0a2b43 x25: dfff800000000000 x24: 000000000020ac5d [ 248.463991][T15044] x23: fffffdffc43c2888 x22: fffffdffc43c2880 x21: 0000000000000000 [ 248.465253][T15044] x20: 0000000000000002 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 248.466576][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 248.467888][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 248.469124][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 248.470326][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000060188 x6 : ffff800080563af4 [ 248.471486][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 248.472751][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 248.474055][T15044] Call trace: [ 248.474559][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 248.475563][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 248.476436][T15044] set_pte_range+0x2e4/0x49c [ 248.477119][T15044] filemap_map_pages+0xb54/0x155c [ 248.477855][T15044] handle_mm_fault+0x2b64/0x4d34 [ 248.478637][T15044] __get_user_pages+0x1f40/0x2da0 [ 248.479399][T15044] populate_vma_page_range+0x258/0x348 [ 248.480262][T15044] __mm_populate+0x208/0x330 [ 248.481002][T15044] vm_mmap_pgoff+0x398/0x45c [ 248.481732][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 248.482521][T15044] __arm64_sys_mmap+0xf8/0x110 [ 248.483307][T15044] invoke_syscall+0x98/0x2b8 [ 248.484036][T15044] el0_svc_common+0x130/0x23c [ 248.484765][T15044] do_el0_svc+0x48/0x58 [ 248.485395][T15044] el0_svc+0x58/0x180 [ 248.486037][T15044] el0t_64_sync_handler+0x84/0x12c [ 248.486841][T15044] el0t_64_sync+0x198/0x19c [ 248.487563][T15044] irq event stamp: 10813 [ 248.488239][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 248.489677][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 248.491145][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 248.492588][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 248.494033][T15044] ---[ end trace 0000000000000000 ]--- [ 248.495262][T15044] page: refcount:1110 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 248.495642][T15044] head: order:9 mapcount:597 entire_mapcount:0 nr_pages_mapped:597 pincount:0 [ 248.495655][T15044] memcg:ffff0000c19c2580 [ 248.495665][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 248.495677][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 248.495690][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.495698][T15044] raw: 0000000000000000 0000000000000000 00000456ffffffff ffff0000c19c2580 [ 248.495706][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.495713][T15044] head: 0000000000000000 0000000000000000 00000456ffffffff ffff0000c19c2580 [ 248.495720][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000025500000254 00000000ffffffff [ 248.495727][T15044] head: ffffffff00000254 0000000000000024 00000000ffffffff 0000000000000200 [ 248.495732][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 248.495774][T15044] ------------[ cut here ]------------ [ 248.495777][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 248.514492][T15044] Modules linked in: [ 248.515058][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 248.517026][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 248.517797][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 248.519320][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 248.520466][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 248.521433][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 248.522329][T15044] sp : ffff8000a0a672c0 [ 248.522947][T15044] x29: ffff8000a0a672c0 x28: 0000000000000002 x27: 00000000202a0000 [ 248.524119][T15044] x26: 00e800014f0a2b43 x25: dfff800000000000 x24: 000000000020ac5d [ 248.525356][T15044] x23: fffffdffc43c2900 x22: fffffdffc43c28c8 x21: 0000000000000000 [ 248.526568][T15044] x20: 0000000000000002 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 248.527805][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 248.529144][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 248.530329][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 248.531489][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000061008 x6 : ffff800080563af4 [ 248.532720][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 248.534058][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 248.535343][T15044] Call trace: [ 248.535884][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 248.536870][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 248.537745][T15044] set_pte_range+0x2e4/0x49c [ 248.538455][T15044] filemap_map_pages+0xb54/0x155c [ 248.539210][T15044] handle_mm_fault+0x2b64/0x4d34 [ 248.539960][T15044] __get_user_pages+0x1f40/0x2da0 [ 248.540704][T15044] populate_vma_page_range+0x258/0x348 [ 248.541571][T15044] __mm_populate+0x208/0x330 [ 248.542272][T15044] vm_mmap_pgoff+0x398/0x45c [ 248.543005][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 248.543789][T15044] __arm64_sys_mmap+0xf8/0x110 [ 248.544568][T15044] invoke_syscall+0x98/0x2b8 [ 248.545286][T15044] el0_svc_common+0x130/0x23c [ 248.546053][T15044] do_el0_svc+0x48/0x58 [ 248.546698][T15044] el0_svc+0x58/0x180 [ 248.547308][T15044] el0t_64_sync_handler+0x84/0x12c [ 248.548093][T15044] el0t_64_sync+0x198/0x19c [ 248.548834][T15044] irq event stamp: 10813 [ 248.549491][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 248.551078][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 248.552597][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 248.554176][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 248.555644][T15044] ---[ end trace 0000000000000000 ]--- [ 248.556899][T15044] page: refcount:1112 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 248.557254][T15044] head: order:9 mapcount:599 entire_mapcount:0 nr_pages_mapped:599 pincount:0 [ 248.557264][T15044] memcg:ffff0000c19c2580 [ 248.557274][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 248.557293][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 248.557308][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.557316][T15044] raw: 0000000000000000 0000000000000000 00000458ffffffff ffff0000c19c2580 [ 248.557324][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.557331][T15044] head: 0000000000000000 0000000000000000 00000458ffffffff ffff0000c19c2580 [ 248.557339][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000025700000256 00000000ffffffff [ 248.557346][T15044] head: ffffffff00000256 0000000000000024 00000000ffffffff 0000000000000200 [ 248.557351][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 248.557392][T15044] ------------[ cut here ]------------ [ 248.557395][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 248.575557][T15044] Modules linked in: [ 248.576163][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 248.578080][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 248.578871][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 248.580472][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 248.581700][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 248.582610][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 248.583604][T15044] sp : ffff8000a0a672c0 [ 248.584225][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 00000000202a4000 [ 248.585422][T15044] x26: 00e800014f0a6b43 x25: dfff800000000000 x24: 000000000020ac5d [ 248.586592][T15044] x23: fffffdffc43c2988 x22: fffffdffc43c2980 x21: 0000000000000000 [ 248.587915][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 248.589085][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 248.590306][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 248.591685][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 248.593064][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000062190 x6 : ffff800080563af4 [ 248.594465][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 248.595781][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 248.597106][T15044] Call trace: [ 248.597611][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 248.598647][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 248.599521][T15044] set_pte_range+0x2e4/0x49c [ 248.600256][T15044] filemap_map_pages+0xb54/0x155c [ 248.601012][T15044] handle_mm_fault+0x2b64/0x4d34 [ 248.601862][T15044] __get_user_pages+0x1f40/0x2da0 [ 248.602664][T15044] populate_vma_page_range+0x258/0x348 [ 248.603515][T15044] __mm_populate+0x208/0x330 [ 248.604189][T15044] vm_mmap_pgoff+0x398/0x45c [ 248.604931][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 248.605684][T15044] __arm64_sys_mmap+0xf8/0x110 [ 248.606436][T15044] invoke_syscall+0x98/0x2b8 [ 248.607130][T15044] el0_svc_common+0x130/0x23c [ 248.607832][T15044] do_el0_svc+0x48/0x58 [ 248.608432][T15044] el0_svc+0x58/0x180 [ 248.609015][T15044] el0t_64_sync_handler+0x84/0x12c [ 248.609748][T15044] el0t_64_sync+0x198/0x19c [ 248.610402][T15044] irq event stamp: 10813 [ 248.610951][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 248.612311][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 248.613689][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 248.615099][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 248.616363][T15044] ---[ end trace 0000000000000000 ]--- [ 248.617257][T15044] page: refcount:1112 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 248.617274][T15044] head: order:9 mapcount:599 entire_mapcount:0 nr_pages_mapped:599 pincount:0 [ 248.617284][T15044] memcg:ffff0000c19c2580 [ 248.617294][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 248.617305][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 248.617318][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.617326][T15044] raw: 0000000000000000 0000000000000000 00000458ffffffff ffff0000c19c2580 [ 248.617334][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.617341][T15044] head: 0000000000000000 0000000000000000 00000458ffffffff ffff0000c19c2580 [ 248.617348][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000025700000256 00000000ffffffff [ 248.617355][T15044] head: ffffffff00000256 0000000000000024 00000000ffffffff 0000000000000200 [ 248.617360][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 248.617402][T15044] ------------[ cut here ]------------ [ 248.617405][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 248.636577][T15044] Modules linked in: [ 248.637142][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 248.639089][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 248.639883][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 248.641428][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 248.642657][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 248.643571][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 248.644477][T15044] sp : ffff8000a0a672c0 [ 248.645082][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 00000000202a4000 [ 248.646245][T15044] x26: 00e800014f0a6b43 x25: dfff800000000000 x24: 000000000020ac5d [ 248.647526][T15044] x23: fffffdffc43c29c0 x22: fffffdffc43c2988 x21: 0000000000000000 [ 248.648806][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 248.649955][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 248.651160][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 248.652546][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 248.653864][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000063578 x6 : ffff800080563af4 [ 248.655117][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 248.656365][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 248.657573][T15044] Call trace: [ 248.658078][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 248.658989][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 248.659853][T15044] set_pte_range+0x2e4/0x49c [ 248.660584][T15044] filemap_map_pages+0xb54/0x155c [ 248.661380][T15044] handle_mm_fault+0x2b64/0x4d34 [ 248.662191][T15044] __get_user_pages+0x1f40/0x2da0 [ 248.662988][T15044] populate_vma_page_range+0x258/0x348 [ 248.663842][T15044] __mm_populate+0x208/0x330 [ 248.664541][T15044] vm_mmap_pgoff+0x398/0x45c [ 248.665264][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 248.665976][T15044] __arm64_sys_mmap+0xf8/0x110 [ 248.666744][T15044] invoke_syscall+0x98/0x2b8 [ 248.667486][T15044] el0_svc_common+0x130/0x23c [ 248.668189][T15044] do_el0_svc+0x48/0x58 [ 248.668814][T15044] el0_svc+0x58/0x180 [ 248.669414][T15044] el0t_64_sync_handler+0x84/0x12c [ 248.670178][T15044] el0t_64_sync+0x198/0x19c [ 248.670869][T15044] irq event stamp: 10813 [ 248.671497][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 248.672942][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 248.674342][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 248.675724][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 248.677041][T15044] ---[ end trace 0000000000000000 ]--- [ 248.678187][T15044] page: refcount:1113 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 248.678564][T15044] head: order:9 mapcount:600 entire_mapcount:0 nr_pages_mapped:600 pincount:0 [ 248.678575][T15044] memcg:ffff0000c19c2580 [ 248.678584][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 248.678597][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 248.678609][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.678617][T15044] raw: 0000000000000000 0000000000000000 00000459ffffffff ffff0000c19c2580 [ 248.678624][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.678631][T15044] head: 0000000000000000 0000000000000000 00000459ffffffff ffff0000c19c2580 [ 248.678643][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000025800000257 00000000ffffffff [ 248.678652][T15044] head: ffffffff00000257 0000000000000024 00000000ffffffff 0000000000000200 [ 248.678659][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 248.678701][T15044] ------------[ cut here ]------------ [ 248.678704][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 248.696831][T15044] Modules linked in: [ 248.697397][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 248.699141][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 248.699886][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 248.701339][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 248.702458][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 248.703338][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 248.704252][T15044] sp : ffff8000a0a672c0 [ 248.704910][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 00000000202a6000 [ 248.706141][T15044] x26: 00e800014f0a8b43 x25: dfff800000000000 x24: 000000000020ac5d [ 248.707400][T15044] x23: fffffdffc43c2a08 x22: fffffdffc43c2a00 x21: 0000000000000000 [ 248.708714][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 248.709953][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 248.711169][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 248.712303][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 248.713470][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000064660 x6 : ffff800080563af4 [ 248.714652][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 248.715781][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 248.716930][T15044] Call trace: [ 248.717391][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 248.718387][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 248.719269][T15044] set_pte_range+0x2e4/0x49c [ 248.720005][T15044] filemap_map_pages+0xb54/0x155c [ 248.720819][T15044] handle_mm_fault+0x2b64/0x4d34 [ 248.721618][T15044] __get_user_pages+0x1f40/0x2da0 [ 248.722418][T15044] populate_vma_page_range+0x258/0x348 [ 248.723323][T15044] __mm_populate+0x208/0x330 [ 248.724023][T15044] vm_mmap_pgoff+0x398/0x45c [ 248.724746][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 248.725484][T15044] __arm64_sys_mmap+0xf8/0x110 [ 248.726245][T15044] invoke_syscall+0x98/0x2b8 [ 248.726989][T15044] el0_svc_common+0x130/0x23c [ 248.727754][T15044] do_el0_svc+0x48/0x58 [ 248.728399][T15044] el0_svc+0x58/0x180 [ 248.729026][T15044] el0t_64_sync_handler+0x84/0x12c [ 248.729878][T15044] el0t_64_sync+0x198/0x19c [ 248.730599][T15044] irq event stamp: 10813 [ 248.731209][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 248.732618][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 248.733982][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 248.735424][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 248.736764][T15044] ---[ end trace 0000000000000000 ]--- [ 248.737707][T15044] page: refcount:1113 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 248.737719][T15044] head: order:9 mapcount:600 entire_mapcount:0 nr_pages_mapped:600 pincount:0 [ 248.737729][T15044] memcg:ffff0000c19c2580 [ 248.737738][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 248.737749][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 248.737762][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.737770][T15044] raw: 0000000000000000 0000000000000000 00000459ffffffff ffff0000c19c2580 [ 248.737777][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.737785][T15044] head: 0000000000000000 0000000000000000 00000459ffffffff ffff0000c19c2580 [ 248.737792][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000025800000257 00000000ffffffff [ 248.737799][T15044] head: ffffffff00000257 0000000000000024 00000000ffffffff 0000000000000200 [ 248.737804][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 248.737844][T15044] ------------[ cut here ]------------ [ 248.737847][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 248.758346][T15044] Modules linked in: [ 248.758959][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 248.760864][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 248.761606][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 248.763142][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 248.764459][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 248.765357][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 248.766330][T15044] sp : ffff8000a0a672c0 [ 248.766943][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 00000000202a6000 [ 248.768140][T15044] x26: 00e800014f0a8b43 x25: dfff800000000000 x24: 000000000020ac5d [ 248.769338][T15044] x23: fffffdffc43c2a40 x22: fffffdffc43c2a08 x21: 0000000000000000 [ 248.770583][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 248.771837][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 248.773113][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 248.774370][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 248.775691][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000065858 x6 : ffff800080563af4 [ 248.776985][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 248.778293][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 248.779484][T15044] Call trace: [ 248.779966][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 248.780893][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 248.781717][T15044] set_pte_range+0x2e4/0x49c [ 248.782381][T15044] filemap_map_pages+0xb54/0x155c [ 248.783106][T15044] handle_mm_fault+0x2b64/0x4d34 [ 248.783843][T15044] __get_user_pages+0x1f40/0x2da0 [ 248.784666][T15044] populate_vma_page_range+0x258/0x348 [ 248.785575][T15044] __mm_populate+0x208/0x330 [ 248.786294][T15044] vm_mmap_pgoff+0x398/0x45c [ 248.787072][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 248.787823][T15044] __arm64_sys_mmap+0xf8/0x110 [ 248.788647][T15044] invoke_syscall+0x98/0x2b8 [ 248.789381][T15044] el0_svc_common+0x130/0x23c [ 248.790164][T15044] do_el0_svc+0x48/0x58 [ 248.790838][T15044] el0_svc+0x58/0x180 [ 248.791440][T15044] el0t_64_sync_handler+0x84/0x12c [ 248.792224][T15044] el0t_64_sync+0x198/0x19c [ 248.792955][T15044] irq event stamp: 10813 [ 248.793631][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 248.795177][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 248.796685][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 248.798120][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 248.799479][T15044] ---[ end trace 0000000000000000 ]--- [ 248.800719][T15044] page: refcount:1114 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 248.801083][T15044] head: order:9 mapcount:601 entire_mapcount:0 nr_pages_mapped:601 pincount:0 [ 248.801093][T15044] memcg:ffff0000c19c2580 [ 248.801100][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 248.801110][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 248.801122][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.801130][T15044] raw: 0000000000000000 0000000000000000 0000045affffffff ffff0000c19c2580 [ 248.801137][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.801144][T15044] head: 0000000000000000 0000000000000000 0000045affffffff ffff0000c19c2580 [ 248.801151][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000025900000258 00000000ffffffff [ 248.801158][T15044] head: ffffffff00000258 0000000000000024 00000000ffffffff 0000000000000200 [ 248.801164][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 248.801205][T15044] ------------[ cut here ]------------ [ 248.801208][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 248.819623][T15044] Modules linked in: [ 248.820165][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 248.821924][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 248.822615][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 248.823984][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 248.825041][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 248.825990][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 248.826929][T15044] sp : ffff8000a0a672c0 [ 248.827565][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 00000000202a9000 [ 248.828825][T15044] x26: 00e800014f0abb43 x25: dfff800000000000 x24: 000000000020ac5d [ 248.830043][T15044] x23: fffffdffc43c2ac8 x22: fffffdffc43c2ac0 x21: 0000000000000000 [ 248.831257][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 248.832456][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 248.833660][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 248.834986][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 248.836296][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000066ac0 x6 : ffff800080563af4 [ 248.837586][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 248.838877][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 248.840085][T15044] Call trace: [ 248.840586][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 248.841559][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 248.842417][T15044] set_pte_range+0x2e4/0x49c [ 248.843185][T15044] filemap_map_pages+0xb54/0x155c [ 248.843963][T15044] handle_mm_fault+0x2b64/0x4d34 [ 248.844696][T15044] __get_user_pages+0x1f40/0x2da0 [ 248.845560][T15044] populate_vma_page_range+0x258/0x348 [ 248.846403][T15044] __mm_populate+0x208/0x330 [ 248.847102][T15044] vm_mmap_pgoff+0x398/0x45c [ 248.847839][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 248.848596][T15044] __arm64_sys_mmap+0xf8/0x110 [ 248.849316][T15044] invoke_syscall+0x98/0x2b8 [ 248.850015][T15044] el0_svc_common+0x130/0x23c [ 248.850774][T15044] do_el0_svc+0x48/0x58 [ 248.851400][T15044] el0_svc+0x58/0x180 [ 248.852028][T15044] el0t_64_sync_handler+0x84/0x12c [ 248.852803][T15044] el0t_64_sync+0x198/0x19c [ 248.853518][T15044] irq event stamp: 10813 [ 248.854166][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 248.855473][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 248.856788][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 248.858150][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 248.859424][T15044] ---[ end trace 0000000000000000 ]--- [ 248.861523][T15044] page: refcount:1114 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 248.862160][T15044] head: order:9 mapcount:601 entire_mapcount:0 nr_pages_mapped:601 pincount:0 [ 248.862172][T15044] memcg:ffff0000c19c2580 [ 248.862179][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 248.862190][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 248.862202][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.862210][T15044] raw: 0000000000000000 0000000000000000 0000045affffffff ffff0000c19c2580 [ 248.862217][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.862224][T15044] head: 0000000000000000 0000000000000000 0000045affffffff ffff0000c19c2580 [ 248.862231][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000025900000258 00000000ffffffff [ 248.862238][T15044] head: ffffffff00000258 0000000000000024 00000000ffffffff 0000000000000200 [ 248.862243][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 248.862286][T15044] ------------[ cut here ]------------ [ 248.862289][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 248.880728][T15044] Modules linked in: [ 248.881300][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 248.883037][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 248.883786][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 248.885247][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 248.886491][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 248.887423][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 248.888344][T15044] sp : ffff8000a0a672c0 [ 248.889000][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 00000000202a9000 [ 248.890239][T15044] x26: 00e800014f0abb43 x25: dfff800000000000 x24: 000000000020ac5d [ 248.891436][T15044] x23: fffffdffc43c2b80 x22: fffffdffc43c2b48 x21: 0000000000000000 [ 248.892850][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 248.894139][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 248.895389][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 248.896609][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 248.897916][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000067af8 x6 : ffff800080563af4 [ 248.899163][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 248.900450][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 248.901769][T15044] Call trace: [ 248.902285][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 248.903244][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 248.904099][T15044] set_pte_range+0x2e4/0x49c [ 248.904816][T15044] filemap_map_pages+0xb54/0x155c [ 248.905660][T15044] handle_mm_fault+0x2b64/0x4d34 [ 248.906450][T15044] __get_user_pages+0x1f40/0x2da0 [ 248.907232][T15044] populate_vma_page_range+0x258/0x348 [ 248.908040][T15044] __mm_populate+0x208/0x330 [ 248.908793][T15044] vm_mmap_pgoff+0x398/0x45c [ 248.909552][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 248.910243][T15044] __arm64_sys_mmap+0xf8/0x110 [ 248.911026][T15044] invoke_syscall+0x98/0x2b8 [ 248.911773][T15044] el0_svc_common+0x130/0x23c [ 248.912504][T15044] do_el0_svc+0x48/0x58 [ 248.913165][T15044] el0_svc+0x58/0x180 [ 248.913801][T15044] el0t_64_sync_handler+0x84/0x12c [ 248.914621][T15044] el0t_64_sync+0x198/0x19c [ 248.915358][T15044] irq event stamp: 10813 [ 248.916007][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 248.917579][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 248.919260][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 248.920834][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 248.922133][T15044] ---[ end trace 0000000000000000 ]--- [ 248.923005][T15044] page: refcount:1117 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 248.923018][T15044] head: order:9 mapcount:604 entire_mapcount:0 nr_pages_mapped:604 pincount:0 [ 248.923028][T15044] memcg:ffff0000c19c2580 [ 248.923037][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 248.923051][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 248.923065][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.923074][T15044] raw: 0000000000000000 0000000000000000 0000045dffffffff ffff0000c19c2580 [ 248.923082][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.923089][T15044] head: 0000000000000000 0000000000000000 0000045dffffffff ffff0000c19c2580 [ 248.923096][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000025c0000025b 00000000ffffffff [ 248.923103][T15044] head: ffffffff0000025b 0000000000000024 00000000ffffffff 0000000000000200 [ 248.923109][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 248.923149][T15044] ------------[ cut here ]------------ [ 248.923152][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 248.941528][T15044] Modules linked in: [ 248.942085][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 248.943840][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 248.944533][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 248.945957][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 248.947049][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 248.947919][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 248.948781][T15044] sp : ffff8000a0a672c0 [ 248.949378][T15044] x29: ffff8000a0a672c0 x28: 0000000000000007 x27: 00000000202ad000 [ 248.950503][T15044] x26: 00e800014f0afb43 x25: dfff800000000000 x24: 000000000020ac5d [ 248.951821][T15044] x23: fffffdffc43c2bc8 x22: fffffdffc43c2bc0 x21: 0000000000000000 [ 248.953143][T15044] x20: 0000000000000007 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 248.954433][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 248.955644][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 248.956860][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 248.958211][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000068928 x6 : ffff800080563af4 [ 248.959440][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 248.960674][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 248.961856][T15044] Call trace: [ 248.962331][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 248.963236][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 248.964034][T15044] set_pte_range+0x2e4/0x49c [ 248.964684][T15044] filemap_map_pages+0xb54/0x155c [ 248.965384][T15044] handle_mm_fault+0x2b64/0x4d34 [ 248.966071][T15044] __get_user_pages+0x1f40/0x2da0 [ 248.966877][T15044] populate_vma_page_range+0x258/0x348 [ 248.967761][T15044] __mm_populate+0x208/0x330 [ 248.968494][T15044] vm_mmap_pgoff+0x398/0x45c [ 248.969187][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 248.970029][T15044] __arm64_sys_mmap+0xf8/0x110 [ 248.970831][T15044] invoke_syscall+0x98/0x2b8 [ 248.971571][T15044] el0_svc_common+0x130/0x23c [ 248.972390][T15044] do_el0_svc+0x48/0x58 [ 248.973073][T15044] el0_svc+0x58/0x180 [ 248.973711][T15044] el0t_64_sync_handler+0x84/0x12c [ 248.974500][T15044] el0t_64_sync+0x198/0x19c [ 248.975203][T15044] irq event stamp: 10813 [ 248.975953][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 248.977468][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 248.978943][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 248.980449][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 248.981980][T15044] ---[ end trace 0000000000000000 ]--- [ 248.983312][T15044] page: refcount:1117 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 248.983704][T15044] head: order:9 mapcount:604 entire_mapcount:0 nr_pages_mapped:604 pincount:0 [ 248.983714][T15044] memcg:ffff0000c19c2580 [ 248.983723][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 248.983736][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 248.983748][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.983756][T15044] raw: 0000000000000000 0000000000000000 0000045dffffffff ffff0000c19c2580 [ 248.983764][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 248.983771][T15044] head: 0000000000000000 0000000000000000 0000045dffffffff ffff0000c19c2580 [ 248.983778][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000025c0000025b 00000000ffffffff [ 248.983785][T15044] head: ffffffff0000025b 0000000000000024 00000000ffffffff 0000000000000200 [ 248.983791][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 248.983832][T15044] ------------[ cut here ]------------ [ 248.983835][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 249.002768][T15044] Modules linked in: [ 249.003322][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 249.005203][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 249.006031][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 249.007606][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 249.008820][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 249.009735][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 249.010696][T15044] sp : ffff8000a0a672c0 [ 249.011343][T15044] x29: ffff8000a0a672c0 x28: 0000000000000007 x27: 00000000202ad000 [ 249.012629][T15044] x26: 00e800014f0afb43 x25: dfff800000000000 x24: 000000000020ac5d [ 249.013900][T15044] x23: fffffdffc43c2d80 x22: fffffdffc43c2d48 x21: 0000000000000000 [ 249.015135][T15044] x20: 0000000000000007 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 249.016470][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 249.017716][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 249.018945][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 249.020191][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000697a0 x6 : ffff800080563af4 [ 249.021411][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 249.022687][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 249.023925][T15044] Call trace: [ 249.024387][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 249.025321][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 249.026167][T15044] set_pte_range+0x2e4/0x49c [ 249.026887][T15044] filemap_map_pages+0xb54/0x155c [ 249.027693][T15044] handle_mm_fault+0x2b64/0x4d34 [ 249.028500][T15044] __get_user_pages+0x1f40/0x2da0 [ 249.029287][T15044] populate_vma_page_range+0x258/0x348 [ 249.030120][T15044] __mm_populate+0x208/0x330 [ 249.030806][T15044] vm_mmap_pgoff+0x398/0x45c [ 249.031523][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 249.032260][T15044] __arm64_sys_mmap+0xf8/0x110 [ 249.033083][T15044] invoke_syscall+0x98/0x2b8 [ 249.033807][T15044] el0_svc_common+0x130/0x23c [ 249.034592][T15044] do_el0_svc+0x48/0x58 [ 249.035252][T15044] el0_svc+0x58/0x180 [ 249.035890][T15044] el0t_64_sync_handler+0x84/0x12c [ 249.036658][T15044] el0t_64_sync+0x198/0x19c [ 249.037413][T15044] irq event stamp: 10813 [ 249.038104][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 249.039627][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 249.041190][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 249.042720][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 249.044189][T15044] ---[ end trace 0000000000000000 ]--- [ 249.045209][T15044] page: refcount:1124 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 249.045223][T15044] head: order:9 mapcount:611 entire_mapcount:0 nr_pages_mapped:611 pincount:0 [ 249.045234][T15044] memcg:ffff0000c19c2580 [ 249.045244][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 249.045255][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 249.045268][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.045276][T15044] raw: 0000000000000000 0000000000000000 00000464ffffffff ffff0000c19c2580 [ 249.045284][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.045291][T15044] head: 0000000000000000 0000000000000000 00000464ffffffff ffff0000c19c2580 [ 249.045298][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000026300000262 00000000ffffffff [ 249.045305][T15044] head: ffffffff00000262 0000000000000024 00000000ffffffff 0000000000000200 [ 249.045311][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 249.045351][T15044] ------------[ cut here ]------------ [ 249.045354][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 249.065404][T15044] Modules linked in: [ 249.066027][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 249.067868][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 249.068614][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 249.070114][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 249.071424][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 249.072347][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 249.073271][T15044] sp : ffff8000a0a672c0 [ 249.073866][T15044] x29: ffff8000a0a672c0 x28: 0000000000000002 x27: 00000000202b6000 [ 249.075017][T15044] x26: 00e800014f0b8b43 x25: dfff800000000000 x24: 000000000020ac5d [ 249.076241][T15044] x23: fffffdffc43c2e08 x22: fffffdffc43c2e00 x21: 0000000000000000 [ 249.077437][T15044] x20: 0000000000000002 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 249.078618][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 249.079841][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 249.081036][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 249.082183][T15044] x8 : 14e578ac1de0e000 x7 : 000000000006a6b0 x6 : ffff800080563af4 [ 249.083394][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 249.084597][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 249.085850][T15044] Call trace: [ 249.086348][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 249.087363][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 249.088237][T15044] set_pte_range+0x2e4/0x49c [ 249.088981][T15044] filemap_map_pages+0xb54/0x155c [ 249.089778][T15044] handle_mm_fault+0x2b64/0x4d34 [ 249.090555][T15044] __get_user_pages+0x1f40/0x2da0 [ 249.091359][T15044] populate_vma_page_range+0x258/0x348 [ 249.092188][T15044] __mm_populate+0x208/0x330 [ 249.092871][T15044] vm_mmap_pgoff+0x398/0x45c [ 249.093633][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 249.094448][T15044] __arm64_sys_mmap+0xf8/0x110 [ 249.095146][T15044] invoke_syscall+0x98/0x2b8 [ 249.095900][T15044] el0_svc_common+0x130/0x23c [ 249.096659][T15044] do_el0_svc+0x48/0x58 [ 249.097364][T15044] el0_svc+0x58/0x180 [ 249.098034][T15044] el0t_64_sync_handler+0x84/0x12c [ 249.098808][T15044] el0t_64_sync+0x198/0x19c [ 249.099487][T15044] irq event stamp: 10813 [ 249.100077][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 249.101466][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 249.102810][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 249.104199][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 249.105520][T15044] ---[ end trace 0000000000000000 ]--- [ 249.106890][T15044] page: refcount:1124 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 249.107254][T15044] head: order:9 mapcount:611 entire_mapcount:0 nr_pages_mapped:611 pincount:0 [ 249.107265][T15044] memcg:ffff0000c19c2580 [ 249.107274][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 249.107287][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 249.107300][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.107308][T15044] raw: 0000000000000000 0000000000000000 00000464ffffffff ffff0000c19c2580 [ 249.107316][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.107323][T15044] head: 0000000000000000 0000000000000000 00000464ffffffff ffff0000c19c2580 [ 249.107330][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000026300000262 00000000ffffffff [ 249.107337][T15044] head: ffffffff00000262 0000000000000024 00000000ffffffff 0000000000000200 [ 249.107342][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 249.107385][T15044] ------------[ cut here ]------------ [ 249.107388][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 249.128109][T15044] Modules linked in: [ 249.128715][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 249.130890][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 249.131646][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 249.133143][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 249.134385][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 249.135304][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 249.136201][T15044] sp : ffff8000a0a672c0 [ 249.136822][T15044] x29: ffff8000a0a672c0 x28: 0000000000000002 x27: 00000000202b6000 [ 249.138008][T15044] x26: 00e800014f0b8b43 x25: dfff800000000000 x24: 000000000020ac5d [ 249.139170][T15044] x23: fffffdffc43c2e80 x22: fffffdffc43c2e48 x21: 0000000000000000 [ 249.140344][T15044] x20: 0000000000000002 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 249.141427][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 249.142584][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 249.143794][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 249.145002][T15044] x8 : 14e578ac1de0e000 x7 : 000000000006b758 x6 : ffff800080563af4 [ 249.146123][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 249.147251][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 249.148385][T15044] Call trace: [ 249.148827][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 249.149647][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 249.150496][T15044] set_pte_range+0x2e4/0x49c [ 249.151186][T15044] filemap_map_pages+0xb54/0x155c [ 249.151901][T15044] handle_mm_fault+0x2b64/0x4d34 [ 249.152635][T15044] __get_user_pages+0x1f40/0x2da0 [ 249.153386][T15044] populate_vma_page_range+0x258/0x348 [ 249.154224][T15044] __mm_populate+0x208/0x330 [ 249.154975][T15044] vm_mmap_pgoff+0x398/0x45c [ 249.155727][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 249.156483][T15044] __arm64_sys_mmap+0xf8/0x110 [ 249.157205][T15044] invoke_syscall+0x98/0x2b8 [ 249.157930][T15044] el0_svc_common+0x130/0x23c [ 249.158619][T15044] do_el0_svc+0x48/0x58 [ 249.159298][T15044] el0_svc+0x58/0x180 [ 249.159923][T15044] el0t_64_sync_handler+0x84/0x12c [ 249.160692][T15044] el0t_64_sync+0x198/0x19c [ 249.161414][T15044] irq event stamp: 10813 [ 249.162064][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 249.163505][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 249.164890][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 249.166276][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 249.167585][T15044] ---[ end trace 0000000000000000 ]--- [ 249.168850][T15044] page: refcount:1126 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 249.169212][T15044] head: order:9 mapcount:613 entire_mapcount:0 nr_pages_mapped:613 pincount:0 [ 249.169222][T15044] memcg:ffff0000c19c2580 [ 249.169230][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 249.169240][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 249.169253][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.169260][T15044] raw: 0000000000000000 0000000000000000 00000466ffffffff ffff0000c19c2580 [ 249.169267][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.169274][T15044] head: 0000000000000000 0000000000000000 00000466ffffffff ffff0000c19c2580 [ 249.169281][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000026500000264 00000000ffffffff [ 249.169288][T15044] head: ffffffff00000264 0000000000000024 00000000ffffffff 0000000000000200 [ 249.169293][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 249.169335][T15044] ------------[ cut here ]------------ [ 249.169339][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 249.187597][T15044] Modules linked in: [ 249.188227][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 249.190137][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 249.190903][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 249.192579][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 249.193840][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 249.194849][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 249.195876][T15044] sp : ffff8000a0a672c0 [ 249.196593][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 00000000202b9000 [ 249.197949][T15044] x26: 00e800014f0bbb43 x25: dfff800000000000 x24: 000000000020ac5d [ 249.199217][T15044] x23: fffffdffc43c2ec8 x22: fffffdffc43c2ec0 x21: 0000000000000000 [ 249.200437][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 249.201640][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 249.202837][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 249.204079][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 249.205391][T15044] x8 : 14e578ac1de0e000 x7 : 000000000006cac8 x6 : ffff800080563af4 [ 249.206597][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 249.207869][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 249.209098][T15044] Call trace: [ 249.209580][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 249.210569][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 249.211428][T15044] set_pte_range+0x2e4/0x49c [ 249.212172][T15044] filemap_map_pages+0xb54/0x155c [ 249.212976][T15044] handle_mm_fault+0x2b64/0x4d34 [ 249.213737][T15044] __get_user_pages+0x1f40/0x2da0 [ 249.214510][T15044] populate_vma_page_range+0x258/0x348 [ 249.215319][T15044] __mm_populate+0x208/0x330 [ 249.216087][T15044] vm_mmap_pgoff+0x398/0x45c [ 249.216848][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 249.217623][T15044] __arm64_sys_mmap+0xf8/0x110 [ 249.218376][T15044] invoke_syscall+0x98/0x2b8 [ 249.219083][T15044] el0_svc_common+0x130/0x23c [ 249.219822][T15044] do_el0_svc+0x48/0x58 [ 249.220495][T15044] el0_svc+0x58/0x180 [ 249.221178][T15044] el0t_64_sync_handler+0x84/0x12c [ 249.222012][T15044] el0t_64_sync+0x198/0x19c [ 249.222719][T15044] irq event stamp: 10813 [ 249.223379][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 249.224959][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 249.226465][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 249.228050][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 249.229498][T15044] ---[ end trace 0000000000000000 ]--- [ 249.230521][T15044] page: refcount:1126 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 249.230535][T15044] head: order:9 mapcount:613 entire_mapcount:0 nr_pages_mapped:613 pincount:0 [ 249.230545][T15044] memcg:ffff0000c19c2580 [ 249.230554][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 249.230566][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 249.230578][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.230586][T15044] raw: 0000000000000000 0000000000000000 00000466ffffffff ffff0000c19c2580 [ 249.230594][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.230601][T15044] head: 0000000000000000 0000000000000000 00000466ffffffff ffff0000c19c2580 [ 249.230608][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000026500000264 00000000ffffffff [ 249.230615][T15044] head: ffffffff00000264 0000000000000024 00000000ffffffff 0000000000000200 [ 249.230620][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 249.230665][T15044] ------------[ cut here ]------------ [ 249.230669][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 249.249503][T15044] Modules linked in: [ 249.250094][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 249.251905][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 249.252631][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 249.254074][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 249.255281][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 249.256174][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 249.257043][T15044] sp : ffff8000a0a672c0 [ 249.257634][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 00000000202b9000 [ 249.258808][T15044] x26: 00e800014f0bbb43 x25: dfff800000000000 x24: 000000000020ac5d [ 249.260114][T15044] x23: fffffdffc43c2f00 x22: fffffdffc43c2ec8 x21: 0000000000000000 [ 249.261376][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 249.262653][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 249.263881][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 249.265028][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 249.266223][T15044] x8 : 14e578ac1de0e000 x7 : 000000000006daf0 x6 : ffff800080563af4 [ 249.267449][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 249.268642][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 249.269822][T15044] Call trace: [ 249.270244][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 249.271277][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 249.272171][T15044] set_pte_range+0x2e4/0x49c [ 249.272909][T15044] filemap_map_pages+0xb54/0x155c [ 249.273729][T15044] handle_mm_fault+0x2b64/0x4d34 [ 249.274445][T15044] __get_user_pages+0x1f40/0x2da0 [ 249.275244][T15044] populate_vma_page_range+0x258/0x348 [ 249.276090][T15044] __mm_populate+0x208/0x330 [ 249.276789][T15044] vm_mmap_pgoff+0x398/0x45c [ 249.277543][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 249.278305][T15044] __arm64_sys_mmap+0xf8/0x110 [ 249.279060][T15044] invoke_syscall+0x98/0x2b8 [ 249.279726][T15044] el0_svc_common+0x130/0x23c [ 249.280503][T15044] do_el0_svc+0x48/0x58 [ 249.281119][T15044] el0_svc+0x58/0x180 [ 249.281735][T15044] el0t_64_sync_handler+0x84/0x12c [ 249.282503][T15044] el0t_64_sync+0x198/0x19c [ 249.283171][T15044] irq event stamp: 10813 [ 249.283826][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 249.285322][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 249.286822][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 249.288362][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 249.289786][T15044] ---[ end trace 0000000000000000 ]--- [ 249.291069][T15044] page: refcount:1127 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 249.291446][T15044] head: order:9 mapcount:614 entire_mapcount:0 nr_pages_mapped:614 pincount:0 [ 249.291456][T15044] memcg:ffff0000c19c2580 [ 249.291463][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 249.291473][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 249.291485][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.291493][T15044] raw: 0000000000000000 0000000000000000 00000467ffffffff ffff0000c19c2580 [ 249.291500][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.291507][T15044] head: 0000000000000000 0000000000000000 00000467ffffffff ffff0000c19c2580 [ 249.291514][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000026600000265 00000000ffffffff [ 249.291521][T15044] head: ffffffff00000265 0000000000000024 00000000ffffffff 0000000000000200 [ 249.291526][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 249.291566][T15044] ------------[ cut here ]------------ [ 249.291569][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 249.310908][T15044] Modules linked in: [ 249.311447][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 249.313316][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 249.314057][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 249.315557][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 249.316691][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 249.317697][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 249.318653][T15044] sp : ffff8000a0a672c0 [ 249.319321][T15044] x29: ffff8000a0a672c0 x28: 0000000000000002 x27: 00000000202be000 [ 249.320562][T15044] x26: 00e800014f0c0b43 x25: dfff800000000000 x24: 000000000020ac5d [ 249.321823][T15044] x23: fffffdffc43c3008 x22: fffffdffc43c3000 x21: 0000000000000000 [ 249.323165][T15044] x20: 0000000000000002 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 249.324472][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 249.325650][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 249.326767][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 249.328103][T15044] x8 : 14e578ac1de0e000 x7 : 000000000006ebc8 x6 : ffff800080563af4 [ 249.329404][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 249.330699][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 249.332004][T15044] Call trace: [ 249.332516][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 249.333505][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 249.334449][T15044] set_pte_range+0x2e4/0x49c [ 249.335213][T15044] filemap_map_pages+0xb54/0x155c [ 249.336100][T15044] handle_mm_fault+0x2b64/0x4d34 [ 249.336862][T15044] __get_user_pages+0x1f40/0x2da0 [ 249.337651][T15044] populate_vma_page_range+0x258/0x348 [ 249.338567][T15044] __mm_populate+0x208/0x330 [ 249.339341][T15044] vm_mmap_pgoff+0x398/0x45c [ 249.340100][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 249.340822][T15044] __arm64_sys_mmap+0xf8/0x110 [ 249.341536][T15044] invoke_syscall+0x98/0x2b8 [ 249.342222][T15044] el0_svc_common+0x130/0x23c [ 249.342966][T15044] do_el0_svc+0x48/0x58 [ 249.343600][T15044] el0_svc+0x58/0x180 [ 249.344276][T15044] el0t_64_sync_handler+0x84/0x12c [ 249.345087][T15044] el0t_64_sync+0x198/0x19c [ 249.345874][T15044] irq event stamp: 10813 [ 249.346547][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 249.348066][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 249.349552][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 249.351022][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 249.352407][T15044] ---[ end trace 0000000000000000 ]--- [ 249.353384][T15044] page: refcount:1127 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 249.353408][T15044] head: order:9 mapcount:614 entire_mapcount:0 nr_pages_mapped:614 pincount:0 [ 249.353428][T15044] memcg:ffff0000c19c2580 [ 249.353437][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 249.353447][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 249.353459][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.353467][T15044] raw: 0000000000000000 0000000000000000 00000467ffffffff ffff0000c19c2580 [ 249.353474][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.353481][T15044] head: 0000000000000000 0000000000000000 00000467ffffffff ffff0000c19c2580 [ 249.353488][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000026600000265 00000000ffffffff [ 249.353495][T15044] head: ffffffff00000265 0000000000000024 00000000ffffffff 0000000000000200 [ 249.353500][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 249.353541][T15044] ------------[ cut here ]------------ [ 249.353544][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 249.373821][T15044] Modules linked in: [ 249.374435][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 249.376387][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 249.377171][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 249.378703][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 249.379989][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 249.380974][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 249.381917][T15044] sp : ffff8000a0a672c0 [ 249.382584][T15044] x29: ffff8000a0a672c0 x28: 0000000000000002 x27: 00000000202be000 [ 249.383931][T15044] x26: 00e800014f0c0b43 x25: dfff800000000000 x24: 000000000020ac5d [ 249.385318][T15044] x23: fffffdffc43c3080 x22: fffffdffc43c3048 x21: 0000000000000000 [ 249.386598][T15044] x20: 0000000000000002 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 249.387843][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 249.389176][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 249.390400][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 249.391593][T15044] x8 : 14e578ac1de0e000 x7 : 000000000006f9d8 x6 : ffff800080563af4 [ 249.392867][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 249.394183][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 249.395485][T15044] Call trace: [ 249.396003][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 249.396978][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 249.397861][T15044] set_pte_range+0x2e4/0x49c [ 249.398577][T15044] filemap_map_pages+0xb54/0x155c [ 249.399333][T15044] handle_mm_fault+0x2b64/0x4d34 [ 249.400078][T15044] __get_user_pages+0x1f40/0x2da0 [ 249.400854][T15044] populate_vma_page_range+0x258/0x348 [ 249.401672][T15044] __mm_populate+0x208/0x330 [ 249.402427][T15044] vm_mmap_pgoff+0x398/0x45c [ 249.403150][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 249.404010][T15044] __arm64_sys_mmap+0xf8/0x110 [ 249.404761][T15044] invoke_syscall+0x98/0x2b8 [ 249.405472][T15044] el0_svc_common+0x130/0x23c [ 249.406211][T15044] do_el0_svc+0x48/0x58 [ 249.406797][T15044] el0_svc+0x58/0x180 [ 249.407375][T15044] el0t_64_sync_handler+0x84/0x12c [ 249.408117][T15044] el0t_64_sync+0x198/0x19c [ 249.408767][T15044] irq event stamp: 10813 [ 249.409386][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 249.410778][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 249.412125][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 249.413556][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 249.414817][T15044] ---[ end trace 0000000000000000 ]--- [ 249.416072][T15044] page: refcount:1129 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 249.416437][T15044] head: order:9 mapcount:616 entire_mapcount:0 nr_pages_mapped:616 pincount:0 [ 249.416447][T15044] memcg:ffff0000c19c2580 [ 249.416455][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 249.416464][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 249.416476][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.416483][T15044] raw: 0000000000000000 0000000000000000 00000469ffffffff ffff0000c19c2580 [ 249.416490][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.416497][T15044] head: 0000000000000000 0000000000000000 00000469ffffffff ffff0000c19c2580 [ 249.416504][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000026800000267 00000000ffffffff [ 249.416511][T15044] head: ffffffff00000267 0000000000000024 00000000ffffffff 0000000000000200 [ 249.416517][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 249.416557][T15044] ------------[ cut here ]------------ [ 249.416560][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 249.435401][T15044] Modules linked in: [ 249.436098][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 249.438238][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 249.439029][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 249.440627][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 249.441880][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 249.442826][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 249.443805][T15044] sp : ffff8000a0a672c0 [ 249.444477][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 00000000202c2000 [ 249.445778][T15044] x26: 00e800014f0c4b43 x25: dfff800000000000 x24: 000000000020ac5d [ 249.447073][T15044] x23: fffffdffc43c3108 x22: fffffdffc43c3100 x21: 0000000000000000 [ 249.448334][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 249.449668][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 249.451008][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 249.452274][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 249.453533][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000070578 x6 : ffff800080563af4 [ 249.454788][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 249.456060][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 249.457345][T15044] Call trace: [ 249.457870][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 249.458849][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 249.459787][T15044] set_pte_range+0x2e4/0x49c [ 249.460492][T15044] filemap_map_pages+0xb54/0x155c [ 249.461244][T15044] handle_mm_fault+0x2b64/0x4d34 [ 249.462033][T15044] __get_user_pages+0x1f40/0x2da0 [ 249.462811][T15044] populate_vma_page_range+0x258/0x348 [ 249.463687][T15044] __mm_populate+0x208/0x330 [ 249.464403][T15044] vm_mmap_pgoff+0x398/0x45c [ 249.465152][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 249.465972][T15044] __arm64_sys_mmap+0xf8/0x110 [ 249.466741][T15044] invoke_syscall+0x98/0x2b8 [ 249.467468][T15044] el0_svc_common+0x130/0x23c [ 249.468182][T15044] do_el0_svc+0x48/0x58 [ 249.468841][T15044] el0_svc+0x58/0x180 [ 249.469471][T15044] el0t_64_sync_handler+0x84/0x12c [ 249.470271][T15044] el0t_64_sync+0x198/0x19c [ 249.470975][T15044] irq event stamp: 10813 [ 249.471594][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 249.473194][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 249.474700][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 249.476199][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 249.477676][T15044] ---[ end trace 0000000000000000 ]--- [ 249.480064][T15044] page: refcount:1129 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 249.480838][T15044] head: order:9 mapcount:616 entire_mapcount:0 nr_pages_mapped:616 pincount:0 [ 249.480850][T15044] memcg:ffff0000c19c2580 [ 249.480860][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 249.480874][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 249.480887][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.480895][T15044] raw: 0000000000000000 0000000000000000 00000469ffffffff ffff0000c19c2580 [ 249.480903][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.480910][T15044] head: 0000000000000000 0000000000000000 00000469ffffffff ffff0000c19c2580 [ 249.480917][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000026800000267 00000000ffffffff [ 249.480924][T15044] head: ffffffff00000267 0000000000000024 00000000ffffffff 0000000000000200 [ 249.480930][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 249.480972][T15044] ------------[ cut here ]------------ [ 249.480975][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 249.501338][T15044] Modules linked in: [ 249.501989][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 249.504017][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 249.504882][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 249.506477][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 249.507705][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 249.508672][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 249.509584][T15044] sp : ffff8000a0a672c0 [ 249.510219][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 00000000202c2000 [ 249.511522][T15044] x26: 00e800014f0c4b43 x25: dfff800000000000 x24: 000000000020ac5d [ 249.512812][T15044] x23: fffffdffc43c3140 x22: fffffdffc43c3108 x21: 0000000000000000 [ 249.514071][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 249.515353][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 249.516725][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 249.518084][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 249.519377][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000071348 x6 : ffff800080563af4 [ 249.520624][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 249.521813][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 249.522964][T15044] Call trace: [ 249.523416][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 249.524313][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 249.525159][T15044] set_pte_range+0x2e4/0x49c [ 249.525807][T15044] filemap_map_pages+0xb54/0x155c [ 249.526512][T15044] handle_mm_fault+0x2b64/0x4d34 [ 249.527237][T15044] __get_user_pages+0x1f40/0x2da0 [ 249.528089][T15044] populate_vma_page_range+0x258/0x348 [ 249.528892][T15044] __mm_populate+0x208/0x330 [ 249.529594][T15044] vm_mmap_pgoff+0x398/0x45c [ 249.530333][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 249.531175][T15044] __arm64_sys_mmap+0xf8/0x110 [ 249.531918][T15044] invoke_syscall+0x98/0x2b8 [ 249.532774][T15044] el0_svc_common+0x130/0x23c [ 249.533555][T15044] do_el0_svc+0x48/0x58 [ 249.534281][T15044] el0_svc+0x58/0x180 [ 249.534962][T15044] el0t_64_sync_handler+0x84/0x12c [ 249.535810][T15044] el0t_64_sync+0x198/0x19c [ 249.536513][T15044] irq event stamp: 10813 [ 249.537211][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 249.538646][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 249.540046][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 249.541489][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 249.542875][T15044] ---[ end trace 0000000000000000 ]--- [ 249.543796][T15044] page: refcount:1130 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 249.543809][T15044] head: order:9 mapcount:617 entire_mapcount:0 nr_pages_mapped:617 pincount:0 [ 249.543820][T15044] memcg:ffff0000c19c2580 [ 249.543829][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 249.543843][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 249.543856][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.543865][T15044] raw: 0000000000000000 0000000000000000 0000046affffffff ffff0000c19c2580 [ 249.543873][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.543880][T15044] head: 0000000000000000 0000000000000000 0000046affffffff ffff0000c19c2580 [ 249.543887][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000026900000268 00000000ffffffff [ 249.543894][T15044] head: ffffffff00000268 0000000000000024 00000000ffffffff 0000000000000200 [ 249.543899][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 249.543939][T15044] ------------[ cut here ]------------ [ 249.543942][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 249.563041][T15044] Modules linked in: [ 249.563602][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 249.565442][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 249.566207][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 249.567725][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 249.568988][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 249.569887][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 249.570926][T15044] sp : ffff8000a0a672c0 [ 249.571567][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 00000000202c4000 [ 249.572866][T15044] x26: 00e800014f0c6b43 x25: dfff800000000000 x24: 000000000020ac5d [ 249.574096][T15044] x23: fffffdffc43c3188 x22: fffffdffc43c3180 x21: 0000000000000000 [ 249.575408][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 249.576701][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 249.577975][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 249.579269][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 249.580568][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000072520 x6 : ffff800080563af4 [ 249.581931][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 249.583209][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 249.584488][T15044] Call trace: [ 249.585038][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 249.585922][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 249.586768][T15044] set_pte_range+0x2e4/0x49c [ 249.587521][T15044] filemap_map_pages+0xb54/0x155c [ 249.588291][T15044] handle_mm_fault+0x2b64/0x4d34 [ 249.589142][T15044] __get_user_pages+0x1f40/0x2da0 [ 249.589912][T15044] populate_vma_page_range+0x258/0x348 [ 249.590778][T15044] __mm_populate+0x208/0x330 [ 249.591469][T15044] vm_mmap_pgoff+0x398/0x45c [ 249.592204][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 249.592958][T15044] __arm64_sys_mmap+0xf8/0x110 [ 249.593716][T15044] invoke_syscall+0x98/0x2b8 [ 249.594452][T15044] el0_svc_common+0x130/0x23c [ 249.595191][T15044] do_el0_svc+0x48/0x58 [ 249.595866][T15044] el0_svc+0x58/0x180 [ 249.596441][T15044] el0t_64_sync_handler+0x84/0x12c [ 249.597182][T15044] el0t_64_sync+0x198/0x19c [ 249.597815][T15044] irq event stamp: 10813 [ 249.598445][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 249.599803][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 249.601087][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 249.602701][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 249.604111][T15044] ---[ end trace 0000000000000000 ]--- [ 249.605313][T15044] page: refcount:1130 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 249.605699][T15044] head: order:9 mapcount:617 entire_mapcount:0 nr_pages_mapped:617 pincount:0 [ 249.605709][T15044] memcg:ffff0000c19c2580 [ 249.605717][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 249.605728][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 249.605740][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.605747][T15044] raw: 0000000000000000 0000000000000000 0000046affffffff ffff0000c19c2580 [ 249.605755][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.605762][T15044] head: 0000000000000000 0000000000000000 0000046affffffff ffff0000c19c2580 [ 249.605769][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000026900000268 00000000ffffffff [ 249.605776][T15044] head: ffffffff00000268 0000000000000024 00000000ffffffff 0000000000000200 [ 249.605781][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 249.605822][T15044] ------------[ cut here ]------------ [ 249.605825][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 249.625384][T15044] Modules linked in: [ 249.626010][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 249.627831][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 249.628572][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 249.630005][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 249.631158][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 249.632017][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 249.632928][T15044] sp : ffff8000a0a672c0 [ 249.633626][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 00000000202c4000 [ 249.634895][T15044] x26: 00e800014f0c6b43 x25: dfff800000000000 x24: 000000000020ac5d [ 249.636134][T15044] x23: fffffdffc43c31c0 x22: fffffdffc43c3188 x21: 0000000000000000 [ 249.637301][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 249.638525][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 249.639664][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 249.640916][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 249.642144][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000073480 x6 : ffff800080563af4 [ 249.643349][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 249.644571][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 249.645803][T15044] Call trace: [ 249.646287][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 249.647125][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 249.648013][T15044] set_pte_range+0x2e4/0x49c [ 249.648754][T15044] filemap_map_pages+0xb54/0x155c [ 249.649631][T15044] handle_mm_fault+0x2b64/0x4d34 [ 249.650449][T15044] __get_user_pages+0x1f40/0x2da0 [ 249.651315][T15044] populate_vma_page_range+0x258/0x348 [ 249.652227][T15044] __mm_populate+0x208/0x330 [ 249.652989][T15044] vm_mmap_pgoff+0x398/0x45c [ 249.653785][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 249.654538][T15044] __arm64_sys_mmap+0xf8/0x110 [ 249.655228][T15044] invoke_syscall+0x98/0x2b8 [ 249.656025][T15044] el0_svc_common+0x130/0x23c [ 249.656792][T15044] do_el0_svc+0x48/0x58 [ 249.657461][T15044] el0_svc+0x58/0x180 [ 249.658152][T15044] el0t_64_sync_handler+0x84/0x12c [ 249.658951][T15044] el0t_64_sync+0x198/0x19c [ 249.659777][T15044] irq event stamp: 10813 [ 249.660468][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 249.662082][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 249.663599][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 249.665223][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 249.666740][T15044] ---[ end trace 0000000000000000 ]--- [ 249.667737][T15044] page: refcount:1131 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 249.667750][T15044] head: order:9 mapcount:618 entire_mapcount:0 nr_pages_mapped:618 pincount:0 [ 249.667761][T15044] memcg:ffff0000c19c2580 [ 249.667770][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 249.667782][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 249.667794][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.667802][T15044] raw: 0000000000000000 0000000000000000 0000046bffffffff ffff0000c19c2580 [ 249.667810][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.667818][T15044] head: 0000000000000000 0000000000000000 0000046bffffffff ffff0000c19c2580 [ 249.667825][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000026a00000269 00000000ffffffff [ 249.667832][T15044] head: ffffffff00000269 0000000000000024 00000000ffffffff 0000000000000200 [ 249.667837][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 249.667878][T15044] ------------[ cut here ]------------ [ 249.667880][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 249.687597][T15044] Modules linked in: [ 249.688191][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 249.690059][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 249.690816][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 249.692316][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 249.693511][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 249.694417][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 249.695275][T15044] sp : ffff8000a0a672c0 [ 249.695933][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 00000000202c7000 [ 249.697185][T15044] x26: 00e800014f0c9b43 x25: dfff800000000000 x24: 000000000020ac5d [ 249.698536][T15044] x23: fffffdffc43c3248 x22: fffffdffc43c3240 x21: 0000000000000000 [ 249.699745][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 249.700965][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 249.702165][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 249.703426][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 249.704787][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000743e8 x6 : ffff800080563af4 [ 249.706127][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 249.707472][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 249.708847][T15044] Call trace: [ 249.709403][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 249.710361][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 249.711272][T15044] set_pte_range+0x2e4/0x49c [ 249.711975][T15044] filemap_map_pages+0xb54/0x155c [ 249.712834][T15044] handle_mm_fault+0x2b64/0x4d34 [ 249.713643][T15044] __get_user_pages+0x1f40/0x2da0 [ 249.714427][T15044] populate_vma_page_range+0x258/0x348 [ 249.715313][T15044] __mm_populate+0x208/0x330 [ 249.715994][T15044] vm_mmap_pgoff+0x398/0x45c [ 249.716745][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 249.717581][T15044] __arm64_sys_mmap+0xf8/0x110 [ 249.718367][T15044] invoke_syscall+0x98/0x2b8 [ 249.719104][T15044] el0_svc_common+0x130/0x23c [ 249.719853][T15044] do_el0_svc+0x48/0x58 [ 249.720512][T15044] el0_svc+0x58/0x180 [ 249.721117][T15044] el0t_64_sync_handler+0x84/0x12c [ 249.722042][T15044] el0t_64_sync+0x198/0x19c [ 249.722738][T15044] irq event stamp: 10813 [ 249.723406][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 249.725006][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 249.726533][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 249.727948][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 249.729398][T15044] ---[ end trace 0000000000000000 ]--- [ 249.730784][T15044] page: refcount:1131 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 249.731148][T15044] head: order:9 mapcount:618 entire_mapcount:0 nr_pages_mapped:618 pincount:0 [ 249.731159][T15044] memcg:ffff0000c19c2580 [ 249.731166][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 249.731177][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 249.731189][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.731197][T15044] raw: 0000000000000000 0000000000000000 0000046bffffffff ffff0000c19c2580 [ 249.731204][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.731211][T15044] head: 0000000000000000 0000000000000000 0000046bffffffff ffff0000c19c2580 [ 249.731218][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000026a00000269 00000000ffffffff [ 249.731225][T15044] head: ffffffff00000269 0000000000000024 00000000ffffffff 0000000000000200 [ 249.731230][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 249.731271][T15044] ------------[ cut here ]------------ [ 249.731274][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 249.750155][T15044] Modules linked in: [ 249.750699][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 249.752655][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 249.753417][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 249.754924][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 249.756085][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 249.756981][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 249.757865][T15044] sp : ffff8000a0a672c0 [ 249.758573][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 00000000202c7000 [ 249.759913][T15044] x26: 00e800014f0c9b43 x25: dfff800000000000 x24: 000000000020ac5d [ 249.761263][T15044] x23: fffffdffc43c3300 x22: fffffdffc43c32c8 x21: 0000000000000000 [ 249.762566][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 249.763879][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 249.765216][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 249.766501][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 249.767700][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000075548 x6 : ffff800080563af4 [ 249.768981][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 249.770198][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 249.771410][T15044] Call trace: [ 249.771950][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 249.772816][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 249.773604][T15044] set_pte_range+0x2e4/0x49c [ 249.774373][T15044] filemap_map_pages+0xb54/0x155c [ 249.775238][T15044] handle_mm_fault+0x2b64/0x4d34 [ 249.776027][T15044] __get_user_pages+0x1f40/0x2da0 [ 249.776799][T15044] populate_vma_page_range+0x258/0x348 [ 249.777612][T15044] __mm_populate+0x208/0x330 [ 249.778302][T15044] vm_mmap_pgoff+0x398/0x45c [ 249.779003][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 249.779743][T15044] __arm64_sys_mmap+0xf8/0x110 [ 249.780494][T15044] invoke_syscall+0x98/0x2b8 [ 249.781219][T15044] el0_svc_common+0x130/0x23c [ 249.781925][T15044] do_el0_svc+0x48/0x58 [ 249.782555][T15044] el0_svc+0x58/0x180 [ 249.783208][T15044] el0t_64_sync_handler+0x84/0x12c [ 249.784054][T15044] el0t_64_sync+0x198/0x19c [ 249.784760][T15044] irq event stamp: 10813 [ 249.785384][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 249.786879][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 249.788299][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 249.789730][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 249.791172][T15044] ---[ end trace 0000000000000000 ]--- [ 249.792505][T15044] page: refcount:1134 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 249.792879][T15044] head: order:9 mapcount:621 entire_mapcount:0 nr_pages_mapped:621 pincount:0 [ 249.792890][T15044] memcg:ffff0000c19c2580 [ 249.792897][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 249.792908][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 249.792920][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.792927][T15044] raw: 0000000000000000 0000000000000000 0000046effffffff ffff0000c19c2580 [ 249.792934][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.792941][T15044] head: 0000000000000000 0000000000000000 0000046effffffff ffff0000c19c2580 [ 249.792948][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000026d0000026c 00000000ffffffff [ 249.792955][T15044] head: ffffffff0000026c 0000000000000024 00000000ffffffff 0000000000000200 [ 249.792960][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 249.793001][T15044] ------------[ cut here ]------------ [ 249.793004][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 249.811982][T15044] Modules linked in: [ 249.812641][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 249.814680][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 249.815454][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 249.817017][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 249.818238][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 249.819209][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 249.820217][T15044] sp : ffff8000a0a672c0 [ 249.820893][T15044] x29: ffff8000a0a672c0 x28: 0000000000000007 x27: 00000000202cb000 [ 249.822227][T15044] x26: 00e800014f0cdb43 x25: dfff800000000000 x24: 000000000020ac5d [ 249.823557][T15044] x23: fffffdffc43c3348 x22: fffffdffc43c3340 x21: 0000000000000000 [ 249.824912][T15044] x20: 0000000000000007 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 249.826273][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 249.827521][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 249.828782][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 249.830115][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000767b0 x6 : ffff800080563af4 [ 249.831418][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 249.832706][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 249.834063][T15044] Call trace: [ 249.834587][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 249.835545][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 249.836351][T15044] set_pte_range+0x2e4/0x49c [ 249.837058][T15044] filemap_map_pages+0xb54/0x155c [ 249.837823][T15044] handle_mm_fault+0x2b64/0x4d34 [ 249.838662][T15044] __get_user_pages+0x1f40/0x2da0 [ 249.839523][T15044] populate_vma_page_range+0x258/0x348 [ 249.840406][T15044] __mm_populate+0x208/0x330 [ 249.841149][T15044] vm_mmap_pgoff+0x398/0x45c [ 249.841857][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 249.842663][T15044] __arm64_sys_mmap+0xf8/0x110 [ 249.843475][T15044] invoke_syscall+0x98/0x2b8 [ 249.844224][T15044] el0_svc_common+0x130/0x23c [ 249.845007][T15044] do_el0_svc+0x48/0x58 [ 249.845710][T15044] el0_svc+0x58/0x180 [ 249.846362][T15044] el0t_64_sync_handler+0x84/0x12c [ 249.847226][T15044] el0t_64_sync+0x198/0x19c [ 249.847951][T15044] irq event stamp: 10813 [ 249.848609][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 249.850231][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 249.851732][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 249.853297][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 249.854781][T15044] ---[ end trace 0000000000000000 ]--- [ 249.855708][T15044] page: refcount:1134 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 249.855729][T15044] head: order:9 mapcount:621 entire_mapcount:0 nr_pages_mapped:621 pincount:0 [ 249.855747][T15044] memcg:ffff0000c19c2580 [ 249.855755][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 249.855765][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 249.855777][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.855784][T15044] raw: 0000000000000000 0000000000000000 0000046effffffff ffff0000c19c2580 [ 249.855792][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.855799][T15044] head: 0000000000000000 0000000000000000 0000046effffffff ffff0000c19c2580 [ 249.855806][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000026d0000026c 00000000ffffffff [ 249.855813][T15044] head: ffffffff0000026c 0000000000000024 00000000ffffffff 0000000000000200 [ 249.855818][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 249.855859][T15044] ------------[ cut here ]------------ [ 249.855862][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 249.874780][T15044] Modules linked in: [ 249.875348][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 249.877165][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 249.877846][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 249.879346][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 249.880635][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 249.881685][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 249.882669][T15044] sp : ffff8000a0a672c0 [ 249.883329][T15044] x29: ffff8000a0a672c0 x28: 0000000000000007 x27: 00000000202cb000 [ 249.884687][T15044] x26: 00e800014f0cdb43 x25: dfff800000000000 x24: 000000000020ac5d [ 249.885935][T15044] x23: fffffdffc43c3500 x22: fffffdffc43c34c8 x21: 0000000000000000 [ 249.887206][T15044] x20: 0000000000000007 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 249.888455][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 249.889783][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 249.891050][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 249.892244][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000077950 x6 : ffff800080563af4 [ 249.893402][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 249.894538][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 249.895734][T15044] Call trace: [ 249.896218][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 249.897073][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 249.897937][T15044] set_pte_range+0x2e4/0x49c [ 249.898621][T15044] filemap_map_pages+0xb54/0x155c [ 249.899350][T15044] handle_mm_fault+0x2b64/0x4d34 [ 249.900105][T15044] __get_user_pages+0x1f40/0x2da0 [ 249.900880][T15044] populate_vma_page_range+0x258/0x348 [ 249.901702][T15044] __mm_populate+0x208/0x330 [ 249.902344][T15044] vm_mmap_pgoff+0x398/0x45c [ 249.903100][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 249.903883][T15044] __arm64_sys_mmap+0xf8/0x110 [ 249.904624][T15044] invoke_syscall+0x98/0x2b8 [ 249.905372][T15044] el0_svc_common+0x130/0x23c [ 249.906194][T15044] do_el0_svc+0x48/0x58 [ 249.906857][T15044] el0_svc+0x58/0x180 [ 249.907501][T15044] el0t_64_sync_handler+0x84/0x12c [ 249.908353][T15044] el0t_64_sync+0x198/0x19c [ 249.909122][T15044] irq event stamp: 10813 [ 249.909820][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 249.911312][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 249.912876][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 249.914351][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 249.915834][T15044] ---[ end trace 0000000000000000 ]--- [ 249.917130][T15044] page: refcount:1141 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 249.917504][T15044] head: order:9 mapcount:628 entire_mapcount:0 nr_pages_mapped:628 pincount:0 [ 249.917515][T15044] memcg:ffff0000c19c2580 [ 249.917522][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 249.917532][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 249.917544][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.917551][T15044] raw: 0000000000000000 0000000000000000 00000475ffffffff ffff0000c19c2580 [ 249.917559][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.917566][T15044] head: 0000000000000000 0000000000000000 00000475ffffffff ffff0000c19c2580 [ 249.917573][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000027400000273 00000000ffffffff [ 249.917580][T15044] head: ffffffff00000273 0000000000000024 00000000ffffffff 0000000000000200 [ 249.917585][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 249.917625][T15044] ------------[ cut here ]------------ [ 249.917628][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 249.936211][T15044] Modules linked in: [ 249.936808][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 249.938672][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 249.939525][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 249.941109][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 249.942338][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 249.943369][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 249.944282][T15044] sp : ffff8000a0a672c0 [ 249.944928][T15044] x29: ffff8000a0a672c0 x28: 0000000000000002 x27: 00000000202d4000 [ 249.946226][T15044] x26: 00e800014f0d6b43 x25: dfff800000000000 x24: 000000000020ac5d [ 249.947512][T15044] x23: fffffdffc43c3588 x22: fffffdffc43c3580 x21: 0000000000000000 [ 249.948854][T15044] x20: 0000000000000002 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 249.950201][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 249.951450][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 249.952722][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 249.954036][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000078c00 x6 : ffff800080563af4 [ 249.955345][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 249.956632][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 249.957971][T15044] Call trace: [ 249.958513][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 249.959518][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 249.960449][T15044] set_pte_range+0x2e4/0x49c [ 249.961175][T15044] filemap_map_pages+0xb54/0x155c [ 249.962021][T15044] handle_mm_fault+0x2b64/0x4d34 [ 249.962818][T15044] __get_user_pages+0x1f40/0x2da0 [ 249.963612][T15044] populate_vma_page_range+0x258/0x348 [ 249.964484][T15044] __mm_populate+0x208/0x330 [ 249.965235][T15044] vm_mmap_pgoff+0x398/0x45c [ 249.965928][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 249.966653][T15044] __arm64_sys_mmap+0xf8/0x110 [ 249.967343][T15044] invoke_syscall+0x98/0x2b8 [ 249.968022][T15044] el0_svc_common+0x130/0x23c [ 249.968727][T15044] do_el0_svc+0x48/0x58 [ 249.969367][T15044] el0_svc+0x58/0x180 [ 249.969962][T15044] el0t_64_sync_handler+0x84/0x12c [ 249.970707][T15044] el0t_64_sync+0x198/0x19c [ 249.971449][T15044] irq event stamp: 10813 [ 249.972126][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 249.973622][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 249.975077][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 249.976491][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 249.977794][T15044] ---[ end trace 0000000000000000 ]--- [ 249.978738][T15044] page: refcount:1141 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 249.978750][T15044] head: order:9 mapcount:628 entire_mapcount:0 nr_pages_mapped:628 pincount:0 [ 249.978761][T15044] memcg:ffff0000c19c2580 [ 249.978771][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 249.978786][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 249.978798][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.978807][T15044] raw: 0000000000000000 0000000000000000 00000475ffffffff ffff0000c19c2580 [ 249.978814][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 249.978822][T15044] head: 0000000000000000 0000000000000000 00000475ffffffff ffff0000c19c2580 [ 249.978829][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000027400000273 00000000ffffffff [ 249.978836][T15044] head: ffffffff00000273 0000000000000024 00000000ffffffff 0000000000000200 [ 249.978841][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 249.978881][T15044] ------------[ cut here ]------------ [ 249.978884][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 249.997798][T15044] Modules linked in: [ 249.998403][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 250.000379][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 250.001111][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 250.002592][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 250.003741][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 250.004615][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 250.005484][T15044] sp : ffff8000a0a672c0 [ 250.006069][T15044] x29: ffff8000a0a672c0 x28: 0000000000000002 x27: 00000000202d4000 [ 250.007247][T15044] x26: 00e800014f0d6b43 x25: dfff800000000000 x24: 000000000020ac5d [ 250.008442][T15044] x23: fffffdffc43c3600 x22: fffffdffc43c35c8 x21: 0000000000000000 [ 250.009633][T15044] x20: 0000000000000002 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 250.010882][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 250.012253][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 250.013501][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 250.014750][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000079c00 x6 : ffff800080563af4 [ 250.015984][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 250.017154][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 250.018324][T15044] Call trace: [ 250.018781][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 250.019777][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 250.020677][T15044] set_pte_range+0x2e4/0x49c [ 250.021395][T15044] filemap_map_pages+0xb54/0x155c [ 250.022237][T15044] handle_mm_fault+0x2b64/0x4d34 [ 250.022972][T15044] __get_user_pages+0x1f40/0x2da0 [ 250.023705][T15044] populate_vma_page_range+0x258/0x348 [ 250.024540][T15044] __mm_populate+0x208/0x330 [ 250.025242][T15044] vm_mmap_pgoff+0x398/0x45c [ 250.025916][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 250.026642][T15044] __arm64_sys_mmap+0xf8/0x110 [ 250.027317][T15044] invoke_syscall+0x98/0x2b8 [ 250.028079][T15044] el0_svc_common+0x130/0x23c [ 250.028834][T15044] do_el0_svc+0x48/0x58 [ 250.029496][T15044] el0_svc+0x58/0x180 [ 250.030073][T15044] el0t_64_sync_handler+0x84/0x12c [ 250.030909][T15044] el0t_64_sync+0x198/0x19c [ 250.031613][T15044] irq event stamp: 10813 [ 250.032314][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 250.033850][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 250.035281][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 250.036784][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 250.038210][T15044] ---[ end trace 0000000000000000 ]--- [ 250.039503][T15044] page: refcount:1143 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 250.039889][T15044] head: order:9 mapcount:630 entire_mapcount:0 nr_pages_mapped:630 pincount:0 [ 250.039900][T15044] memcg:ffff0000c19c2580 [ 250.039907][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 250.039918][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 250.039929][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.039937][T15044] raw: 0000000000000000 0000000000000000 00000477ffffffff ffff0000c19c2580 [ 250.039944][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.039951][T15044] head: 0000000000000000 0000000000000000 00000477ffffffff ffff0000c19c2580 [ 250.039958][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000027600000275 00000000ffffffff [ 250.039965][T15044] head: ffffffff00000275 0000000000000024 00000000ffffffff 0000000000000200 [ 250.039971][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 250.040011][T15044] ------------[ cut here ]------------ [ 250.040013][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 250.059270][T15044] Modules linked in: [ 250.059882][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 250.062022][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 250.062773][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 250.064350][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 250.065555][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 250.066470][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 250.067317][T15044] sp : ffff8000a0a672c0 [ 250.067912][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 00000000202d7000 [ 250.069165][T15044] x26: 00e800014f0d9b43 x25: dfff800000000000 x24: 000000000020ac5d [ 250.070327][T15044] x23: fffffdffc43c3648 x22: fffffdffc43c3640 x21: 0000000000000000 [ 250.071538][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 250.072671][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 250.073817][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 250.075003][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 250.076190][T15044] x8 : 14e578ac1de0e000 x7 : 000000000007abe8 x6 : ffff800080563af4 [ 250.077261][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 250.078396][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 250.079527][T15044] Call trace: [ 250.079977][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 250.080955][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 250.081819][T15044] set_pte_range+0x2e4/0x49c [ 250.082580][T15044] filemap_map_pages+0xb54/0x155c [ 250.083394][T15044] handle_mm_fault+0x2b64/0x4d34 [ 250.084146][T15044] __get_user_pages+0x1f40/0x2da0 [ 250.084978][T15044] populate_vma_page_range+0x258/0x348 [ 250.085788][T15044] __mm_populate+0x208/0x330 [ 250.086420][T15044] vm_mmap_pgoff+0x398/0x45c [ 250.087109][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 250.087831][T15044] __arm64_sys_mmap+0xf8/0x110 [ 250.088476][T15044] invoke_syscall+0x98/0x2b8 [ 250.089101][T15044] el0_svc_common+0x130/0x23c [ 250.089758][T15044] do_el0_svc+0x48/0x58 [ 250.090352][T15044] el0_svc+0x58/0x180 [ 250.090945][T15044] el0t_64_sync_handler+0x84/0x12c [ 250.091811][T15044] el0t_64_sync+0x198/0x19c [ 250.092565][T15044] irq event stamp: 10813 [ 250.093204][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 250.094656][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 250.096113][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 250.097597][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 250.098993][T15044] ---[ end trace 0000000000000000 ]--- [ 250.100225][T15044] page: refcount:1143 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 250.100604][T15044] head: order:9 mapcount:630 entire_mapcount:0 nr_pages_mapped:630 pincount:0 [ 250.100614][T15044] memcg:ffff0000c19c2580 [ 250.100622][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 250.100631][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 250.100648][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.100657][T15044] raw: 0000000000000000 0000000000000000 00000477ffffffff ffff0000c19c2580 [ 250.100664][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.100671][T15044] head: 0000000000000000 0000000000000000 00000477ffffffff ffff0000c19c2580 [ 250.100678][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000027600000275 00000000ffffffff [ 250.100685][T15044] head: ffffffff00000275 0000000000000024 00000000ffffffff 0000000000000200 [ 250.100691][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 250.100732][T15044] ------------[ cut here ]------------ [ 250.100735][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 250.121184][T15044] Modules linked in: [ 250.121777][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 250.123731][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 250.124525][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 250.126129][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 250.127389][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 250.128352][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 250.129237][T15044] sp : ffff8000a0a672c0 [ 250.129834][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 00000000202d7000 [ 250.131047][T15044] x26: 00e800014f0d9b43 x25: dfff800000000000 x24: 000000000020ac5d [ 250.132271][T15044] x23: fffffdffc43c3680 x22: fffffdffc43c3648 x21: 0000000000000000 [ 250.133573][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 250.134837][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 250.136092][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 250.137333][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 250.138549][T15044] x8 : 14e578ac1de0e000 x7 : 000000000007ba40 x6 : ffff800080563af4 [ 250.139837][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 250.141118][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 250.142360][T15044] Call trace: [ 250.142915][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 250.143871][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 250.144785][T15044] set_pte_range+0x2e4/0x49c [ 250.145481][T15044] filemap_map_pages+0xb54/0x155c [ 250.146324][T15044] handle_mm_fault+0x2b64/0x4d34 [ 250.147103][T15044] __get_user_pages+0x1f40/0x2da0 [ 250.147963][T15044] populate_vma_page_range+0x258/0x348 [ 250.148856][T15044] __mm_populate+0x208/0x330 [ 250.149576][T15044] vm_mmap_pgoff+0x398/0x45c [ 250.150326][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 250.151090][T15044] __arm64_sys_mmap+0xf8/0x110 [ 250.151892][T15044] invoke_syscall+0x98/0x2b8 [ 250.152607][T15044] el0_svc_common+0x130/0x23c [ 250.153364][T15044] do_el0_svc+0x48/0x58 [ 250.154039][T15044] el0_svc+0x58/0x180 [ 250.154680][T15044] el0t_64_sync_handler+0x84/0x12c [ 250.155563][T15044] el0t_64_sync+0x198/0x19c [ 250.156342][T15044] irq event stamp: 10813 [ 250.157041][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 250.158658][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 250.160165][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 250.161730][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 250.163141][T15044] ---[ end trace 0000000000000000 ]--- [ 250.164764][T15044] page: refcount:1144 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 250.164995][T15044] head: order:9 mapcount:631 entire_mapcount:0 nr_pages_mapped:631 pincount:0 [ 250.165010][T15044] memcg:ffff0000c19c2580 [ 250.165020][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 250.165034][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 250.165048][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.165056][T15044] raw: 0000000000000000 0000000000000000 00000478ffffffff ffff0000c19c2580 [ 250.165064][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.165071][T15044] head: 0000000000000000 0000000000000000 00000478ffffffff ffff0000c19c2580 [ 250.165078][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000027700000276 00000000ffffffff [ 250.165085][T15044] head: ffffffff00000276 0000000000000024 00000000ffffffff 0000000000000200 [ 250.165090][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 250.165132][T15044] ------------[ cut here ]------------ [ 250.165135][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 250.183500][T15044] Modules linked in: [ 250.184058][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 250.185979][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 250.186706][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 250.188179][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 250.189312][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 250.190180][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 250.191090][T15044] sp : ffff8000a0a672c0 [ 250.191733][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 00000000202db000 [ 250.192927][T15044] x26: 00e800014f0ddb43 x25: dfff800000000000 x24: 000000000020ac5d [ 250.194114][T15044] x23: fffffdffc43c3748 x22: fffffdffc43c3740 x21: 0000000000000000 [ 250.195399][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 250.196664][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 250.197882][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 250.199179][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 250.200511][T15044] x8 : 14e578ac1de0e000 x7 : 000000000007c830 x6 : ffff800080563af4 [ 250.201772][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 250.203052][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 250.204346][T15044] Call trace: [ 250.204848][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 250.205840][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 250.206677][T15044] set_pte_range+0x2e4/0x49c [ 250.207385][T15044] filemap_map_pages+0xb54/0x155c [ 250.208165][T15044] handle_mm_fault+0x2b64/0x4d34 [ 250.208994][T15044] __get_user_pages+0x1f40/0x2da0 [ 250.209817][T15044] populate_vma_page_range+0x258/0x348 [ 250.210677][T15044] __mm_populate+0x208/0x330 [ 250.211422][T15044] vm_mmap_pgoff+0x398/0x45c [ 250.212134][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 250.212840][T15044] __arm64_sys_mmap+0xf8/0x110 [ 250.213614][T15044] invoke_syscall+0x98/0x2b8 [ 250.214410][T15044] el0_svc_common+0x130/0x23c [ 250.215148][T15044] do_el0_svc+0x48/0x58 [ 250.215807][T15044] el0_svc+0x58/0x180 [ 250.216470][T15044] el0t_64_sync_handler+0x84/0x12c [ 250.217223][T15044] el0t_64_sync+0x198/0x19c [ 250.217881][T15044] irq event stamp: 10813 [ 250.218497][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 250.219994][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 250.221544][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 250.223052][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 250.224508][T15044] ---[ end trace 0000000000000000 ]--- [ 250.225786][T15044] page: refcount:1144 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 250.226155][T15044] head: order:9 mapcount:631 entire_mapcount:0 nr_pages_mapped:631 pincount:0 [ 250.226165][T15044] memcg:ffff0000c19c2580 [ 250.226173][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 250.226183][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 250.226195][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.226203][T15044] raw: 0000000000000000 0000000000000000 00000478ffffffff ffff0000c19c2580 [ 250.226210][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.226217][T15044] head: 0000000000000000 0000000000000000 00000478ffffffff ffff0000c19c2580 [ 250.226224][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000027700000276 00000000ffffffff [ 250.226231][T15044] head: ffffffff00000276 0000000000000024 00000000ffffffff 0000000000000200 [ 250.226236][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 250.226279][T15044] ------------[ cut here ]------------ [ 250.226282][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 250.245153][T15044] Modules linked in: [ 250.245776][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 250.247664][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 250.248388][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 250.249809][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 250.250907][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 250.251758][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 250.252626][T15044] sp : ffff8000a0a672c0 [ 250.253285][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 00000000202db000 [ 250.254545][T15044] x26: 00e800014f0ddb43 x25: dfff800000000000 x24: 000000000020ac5d [ 250.255836][T15044] x23: fffffdffc43c3800 x22: fffffdffc43c37c8 x21: 0000000000000000 [ 250.257117][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 250.258342][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 250.259623][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 250.260906][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 250.262057][T15044] x8 : 14e578ac1de0e000 x7 : 000000000007d918 x6 : ffff800080563af4 [ 250.263349][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 250.264564][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 250.265807][T15044] Call trace: [ 250.266269][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 250.267157][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 250.268061][T15044] set_pte_range+0x2e4/0x49c [ 250.268796][T15044] filemap_map_pages+0xb54/0x155c [ 250.269618][T15044] handle_mm_fault+0x2b64/0x4d34 [ 250.270384][T15044] __get_user_pages+0x1f40/0x2da0 [ 250.271115][T15044] populate_vma_page_range+0x258/0x348 [ 250.272007][T15044] __mm_populate+0x208/0x330 [ 250.272810][T15044] vm_mmap_pgoff+0x398/0x45c [ 250.273564][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 250.274345][T15044] __arm64_sys_mmap+0xf8/0x110 [ 250.275113][T15044] invoke_syscall+0x98/0x2b8 [ 250.275849][T15044] el0_svc_common+0x130/0x23c [ 250.276625][T15044] do_el0_svc+0x48/0x58 [ 250.277293][T15044] el0_svc+0x58/0x180 [ 250.277905][T15044] el0t_64_sync_handler+0x84/0x12c [ 250.278758][T15044] el0t_64_sync+0x198/0x19c [ 250.279513][T15044] irq event stamp: 10813 [ 250.280168][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 250.281735][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 250.283348][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 250.284941][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 250.286373][T15044] ---[ end trace 0000000000000000 ]--- [ 250.287343][T15044] page: refcount:1147 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 250.287362][T15044] head: order:9 mapcount:634 entire_mapcount:0 nr_pages_mapped:634 pincount:0 [ 250.287373][T15044] memcg:ffff0000c19c2580 [ 250.287382][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 250.287393][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 250.287406][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.287414][T15044] raw: 0000000000000000 0000000000000000 0000047bffffffff ffff0000c19c2580 [ 250.287422][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.287430][T15044] head: 0000000000000000 0000000000000000 0000047bffffffff ffff0000c19c2580 [ 250.287437][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000027a00000279 00000000ffffffff [ 250.287444][T15044] head: ffffffff00000279 0000000000000024 00000000ffffffff 0000000000000200 [ 250.287449][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 250.287490][T15044] ------------[ cut here ]------------ [ 250.287493][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 250.307344][T15044] Modules linked in: [ 250.307976][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 250.309746][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 250.310507][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 250.311941][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 250.313124][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 250.314022][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 250.314927][T15044] sp : ffff8000a0a672c0 [ 250.315571][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 00000000202e0000 [ 250.316831][T15044] x26: 00e800014f0e2b43 x25: dfff800000000000 x24: 000000000020ac5d [ 250.317977][T15044] x23: fffffdffc43c3888 x22: fffffdffc43c3880 x21: 0000000000000000 [ 250.319163][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 250.320353][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 250.321545][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 250.322812][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 250.324023][T15044] x8 : 14e578ac1de0e000 x7 : 000000000007ea58 x6 : ffff800080563af4 [ 250.325199][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 250.326380][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 250.327600][T15044] Call trace: [ 250.328133][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 250.329106][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 250.329872][T15044] set_pte_range+0x2e4/0x49c [ 250.330558][T15044] filemap_map_pages+0xb54/0x155c [ 250.331326][T15044] handle_mm_fault+0x2b64/0x4d34 [ 250.332128][T15044] __get_user_pages+0x1f40/0x2da0 [ 250.332893][T15044] populate_vma_page_range+0x258/0x348 [ 250.333757][T15044] __mm_populate+0x208/0x330 [ 250.334538][T15044] vm_mmap_pgoff+0x398/0x45c [ 250.335340][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 250.336123][T15044] __arm64_sys_mmap+0xf8/0x110 [ 250.336932][T15044] invoke_syscall+0x98/0x2b8 [ 250.337689][T15044] el0_svc_common+0x130/0x23c [ 250.338430][T15044] do_el0_svc+0x48/0x58 [ 250.339079][T15044] el0_svc+0x58/0x180 [ 250.339750][T15044] el0t_64_sync_handler+0x84/0x12c [ 250.340584][T15044] el0t_64_sync+0x198/0x19c [ 250.341313][T15044] irq event stamp: 10813 [ 250.342005][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 250.343546][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 250.345002][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 250.346604][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 250.348096][T15044] ---[ end trace 0000000000000000 ]--- [ 250.349419][T15044] page: refcount:1147 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 250.349800][T15044] head: order:9 mapcount:634 entire_mapcount:0 nr_pages_mapped:634 pincount:0 [ 250.349811][T15044] memcg:ffff0000c19c2580 [ 250.349819][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 250.349829][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 250.349840][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.349848][T15044] raw: 0000000000000000 0000000000000000 0000047bffffffff ffff0000c19c2580 [ 250.349855][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.349862][T15044] head: 0000000000000000 0000000000000000 0000047bffffffff ffff0000c19c2580 [ 250.349869][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000027a00000279 00000000ffffffff [ 250.349876][T15044] head: ffffffff00000279 0000000000000024 00000000ffffffff 0000000000000200 [ 250.349881][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 250.349922][T15044] ------------[ cut here ]------------ [ 250.349925][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 250.368965][T15044] Modules linked in: [ 250.369519][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 250.371307][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 250.372059][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 250.373653][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 250.374854][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 250.375777][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 250.376772][T15044] sp : ffff8000a0a672c0 [ 250.377450][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 00000000202e0000 [ 250.378795][T15044] x26: 00e800014f0e2b43 x25: dfff800000000000 x24: 000000000020ac5d [ 250.380078][T15044] x23: fffffdffc43c38c0 x22: fffffdffc43c3888 x21: 0000000000000000 [ 250.381427][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 250.382697][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 250.383990][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 250.385269][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 250.386555][T15044] x8 : 14e578ac1de0e000 x7 : 000000000007fdf8 x6 : ffff800080563af4 [ 250.387845][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 250.389152][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 250.390530][T15044] Call trace: [ 250.391033][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 250.392046][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 250.392916][T15044] set_pte_range+0x2e4/0x49c [ 250.393634][T15044] filemap_map_pages+0xb54/0x155c [ 250.394422][T15044] handle_mm_fault+0x2b64/0x4d34 [ 250.395211][T15044] __get_user_pages+0x1f40/0x2da0 [ 250.396035][T15044] populate_vma_page_range+0x258/0x348 [ 250.396936][T15044] __mm_populate+0x208/0x330 [ 250.397666][T15044] vm_mmap_pgoff+0x398/0x45c [ 250.398401][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 250.399158][T15044] __arm64_sys_mmap+0xf8/0x110 [ 250.399928][T15044] invoke_syscall+0x98/0x2b8 [ 250.400673][T15044] el0_svc_common+0x130/0x23c [ 250.401424][T15044] do_el0_svc+0x48/0x58 [ 250.402116][T15044] el0_svc+0x58/0x180 [ 250.402769][T15044] el0t_64_sync_handler+0x84/0x12c [ 250.403646][T15044] el0t_64_sync+0x198/0x19c [ 250.404356][T15044] irq event stamp: 10813 [ 250.405008][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 250.406577][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 250.408210][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 250.409756][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 250.411222][T15044] ---[ end trace 0000000000000000 ]--- [ 250.412466][T15044] page: refcount:1148 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 250.412839][T15044] head: order:9 mapcount:635 entire_mapcount:0 nr_pages_mapped:635 pincount:0 [ 250.412849][T15044] memcg:ffff0000c19c2580 [ 250.412857][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 250.412866][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 250.412878][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.412885][T15044] raw: 0000000000000000 0000000000000000 0000047cffffffff ffff0000c19c2580 [ 250.412893][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.412900][T15044] head: 0000000000000000 0000000000000000 0000047cffffffff ffff0000c19c2580 [ 250.412907][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000027b0000027a 00000000ffffffff [ 250.412914][T15044] head: ffffffff0000027a 0000000000000024 00000000ffffffff 0000000000000200 [ 250.412919][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 250.412960][T15044] ------------[ cut here ]------------ [ 250.412963][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 250.432030][T15044] Modules linked in: [ 250.432565][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 250.434337][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 250.435090][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 250.436525][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 250.437707][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 250.438600][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 250.439479][T15044] sp : ffff8000a0a672c0 [ 250.440056][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 00000000202e2000 [ 250.441220][T15044] x26: 00e800014f0e4b43 x25: dfff800000000000 x24: 000000000020ac5d [ 250.442377][T15044] x23: fffffdffc43c3908 x22: fffffdffc43c3900 x21: 0000000000000000 [ 250.443527][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 250.444644][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 250.445792][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 250.447029][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 250.448241][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000080db8 x6 : ffff800080563af4 [ 250.449573][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 250.450903][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 250.452225][T15044] Call trace: [ 250.452720][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 250.453632][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 250.454493][T15044] set_pte_range+0x2e4/0x49c [ 250.455239][T15044] filemap_map_pages+0xb54/0x155c [ 250.456082][T15044] handle_mm_fault+0x2b64/0x4d34 [ 250.456873][T15044] __get_user_pages+0x1f40/0x2da0 [ 250.457620][T15044] populate_vma_page_range+0x258/0x348 [ 250.458504][T15044] __mm_populate+0x208/0x330 [ 250.459256][T15044] vm_mmap_pgoff+0x398/0x45c [ 250.459947][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 250.460689][T15044] __arm64_sys_mmap+0xf8/0x110 [ 250.461411][T15044] invoke_syscall+0x98/0x2b8 [ 250.462088][T15044] el0_svc_common+0x130/0x23c [ 250.462820][T15044] do_el0_svc+0x48/0x58 [ 250.463496][T15044] el0_svc+0x58/0x180 [ 250.464188][T15044] el0t_64_sync_handler+0x84/0x12c [ 250.465023][T15044] el0t_64_sync+0x198/0x19c [ 250.465782][T15044] irq event stamp: 10813 [ 250.466457][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 250.467979][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 250.469324][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 250.470648][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 250.471989][T15044] ---[ end trace 0000000000000000 ]--- [ 250.472875][T15044] page: refcount:1148 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 250.472892][T15044] head: order:9 mapcount:635 entire_mapcount:0 nr_pages_mapped:635 pincount:0 [ 250.472903][T15044] memcg:ffff0000c19c2580 [ 250.472912][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 250.472927][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 250.472940][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.472949][T15044] raw: 0000000000000000 0000000000000000 0000047cffffffff ffff0000c19c2580 [ 250.472957][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.472964][T15044] head: 0000000000000000 0000000000000000 0000047cffffffff ffff0000c19c2580 [ 250.472971][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000027b0000027a 00000000ffffffff [ 250.472978][T15044] head: ffffffff0000027a 0000000000000024 00000000ffffffff 0000000000000200 [ 250.472984][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 250.473026][T15044] ------------[ cut here ]------------ [ 250.473028][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 250.492052][T15044] Modules linked in: [ 250.492610][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 250.494581][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 250.495315][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 250.496923][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 250.498223][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 250.499131][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 250.500052][T15044] sp : ffff8000a0a672c0 [ 250.500675][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 00000000202e2000 [ 250.501912][T15044] x26: 00e800014f0e4b43 x25: dfff800000000000 x24: 000000000020ac5d [ 250.503196][T15044] x23: fffffdffc43c3940 x22: fffffdffc43c3908 x21: 0000000000000000 [ 250.504442][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 250.505656][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 250.506951][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 250.508208][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 250.509488][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000081cc0 x6 : ffff800080563af4 [ 250.510657][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 250.511922][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 250.513168][T15044] Call trace: [ 250.513664][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 250.514558][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 250.515410][T15044] set_pte_range+0x2e4/0x49c [ 250.516133][T15044] filemap_map_pages+0xb54/0x155c [ 250.516946][T15044] handle_mm_fault+0x2b64/0x4d34 [ 250.517702][T15044] __get_user_pages+0x1f40/0x2da0 [ 250.518515][T15044] populate_vma_page_range+0x258/0x348 [ 250.519403][T15044] __mm_populate+0x208/0x330 [ 250.520105][T15044] vm_mmap_pgoff+0x398/0x45c [ 250.520860][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 250.521581][T15044] __arm64_sys_mmap+0xf8/0x110 [ 250.522361][T15044] invoke_syscall+0x98/0x2b8 [ 250.523160][T15044] el0_svc_common+0x130/0x23c [ 250.523850][T15044] do_el0_svc+0x48/0x58 [ 250.524510][T15044] el0_svc+0x58/0x180 [ 250.525170][T15044] el0t_64_sync_handler+0x84/0x12c [ 250.525969][T15044] el0t_64_sync+0x198/0x19c [ 250.526720][T15044] irq event stamp: 10813 [ 250.527376][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 250.528897][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 250.530296][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 250.531691][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 250.533072][T15044] ---[ end trace 0000000000000000 ]--- [ 250.534291][T15044] page: refcount:1149 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 250.534693][T15044] head: order:9 mapcount:636 entire_mapcount:0 nr_pages_mapped:636 pincount:0 [ 250.534703][T15044] memcg:ffff0000c19c2580 [ 250.534711][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 250.534721][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 250.534732][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.534740][T15044] raw: 0000000000000000 0000000000000000 0000047dffffffff ffff0000c19c2580 [ 250.534747][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.534754][T15044] head: 0000000000000000 0000000000000000 0000047dffffffff ffff0000c19c2580 [ 250.534761][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000027c0000027b 00000000ffffffff [ 250.534768][T15044] head: ffffffff0000027b 0000000000000024 00000000ffffffff 0000000000000200 [ 250.534774][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 250.534814][T15044] ------------[ cut here ]------------ [ 250.534817][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 250.553030][T15044] Modules linked in: [ 250.553608][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 250.555442][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 250.556234][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 250.557841][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 250.559028][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 250.559950][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 250.560888][T15044] sp : ffff8000a0a672c0 [ 250.561559][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 00000000202e5000 [ 250.562820][T15044] x26: 00e800014f0e7b43 x25: dfff800000000000 x24: 000000000020ac5d [ 250.564023][T15044] x23: fffffdffc43c39c8 x22: fffffdffc43c39c0 x21: 0000000000000000 [ 250.565209][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 250.566424][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 250.567704][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 250.568951][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 250.570151][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000082a70 x6 : ffff800080563af4 [ 250.571415][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 250.572766][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 250.574092][T15044] Call trace: [ 250.574587][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 250.575591][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 250.576413][T15044] set_pte_range+0x2e4/0x49c [ 250.577055][T15044] filemap_map_pages+0xb54/0x155c [ 250.577810][T15044] handle_mm_fault+0x2b64/0x4d34 [ 250.578549][T15044] __get_user_pages+0x1f40/0x2da0 [ 250.579272][T15044] populate_vma_page_range+0x258/0x348 [ 250.580138][T15044] __mm_populate+0x208/0x330 [ 250.580871][T15044] vm_mmap_pgoff+0x398/0x45c [ 250.581620][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 250.582299][T15044] __arm64_sys_mmap+0xf8/0x110 [ 250.583009][T15044] invoke_syscall+0x98/0x2b8 [ 250.583771][T15044] el0_svc_common+0x130/0x23c [ 250.584468][T15044] do_el0_svc+0x48/0x58 [ 250.585111][T15044] el0_svc+0x58/0x180 [ 250.585758][T15044] el0t_64_sync_handler+0x84/0x12c [ 250.586564][T15044] el0t_64_sync+0x198/0x19c [ 250.587274][T15044] irq event stamp: 10813 [ 250.587959][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 250.589458][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 250.590872][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 250.592300][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 250.593674][T15044] ---[ end trace 0000000000000000 ]--- [ 250.594510][T15044] page: refcount:1149 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 250.594527][T15044] head: order:9 mapcount:636 entire_mapcount:0 nr_pages_mapped:636 pincount:0 [ 250.594536][T15044] memcg:ffff0000c19c2580 [ 250.594543][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 250.594553][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 250.594565][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.594572][T15044] raw: 0000000000000000 0000000000000000 0000047dffffffff ffff0000c19c2580 [ 250.594579][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.594586][T15044] head: 0000000000000000 0000000000000000 0000047dffffffff ffff0000c19c2580 [ 250.594593][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000027c0000027b 00000000ffffffff [ 250.594600][T15044] head: ffffffff0000027b 0000000000000024 00000000ffffffff 0000000000000200 [ 250.594605][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 250.594651][T15044] ------------[ cut here ]------------ [ 250.594654][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 250.615557][T15044] Modules linked in: [ 250.616164][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 250.618090][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 250.618791][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 250.620348][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 250.621524][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 250.622460][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 250.623499][T15044] sp : ffff8000a0a672c0 [ 250.624201][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 00000000202e5000 [ 250.625541][T15044] x26: 00e800014f0e7b43 x25: dfff800000000000 x24: 000000000020ac5d [ 250.626823][T15044] x23: fffffdffc43c3a80 x22: fffffdffc43c3a48 x21: 0000000000000000 [ 250.628217][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 250.629479][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 250.630812][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 250.632136][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 250.633466][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000083598 x6 : ffff800080563af4 [ 250.634803][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 250.636077][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 250.637317][T15044] Call trace: [ 250.637804][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 250.638840][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 250.639716][T15044] set_pte_range+0x2e4/0x49c [ 250.640438][T15044] filemap_map_pages+0xb54/0x155c [ 250.641280][T15044] handle_mm_fault+0x2b64/0x4d34 [ 250.642183][T15044] __get_user_pages+0x1f40/0x2da0 [ 250.643010][T15044] populate_vma_page_range+0x258/0x348 [ 250.643915][T15044] __mm_populate+0x208/0x330 [ 250.644665][T15044] vm_mmap_pgoff+0x398/0x45c [ 250.645374][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 250.646158][T15044] __arm64_sys_mmap+0xf8/0x110 [ 250.646939][T15044] invoke_syscall+0x98/0x2b8 [ 250.647659][T15044] el0_svc_common+0x130/0x23c [ 250.648380][T15044] do_el0_svc+0x48/0x58 [ 250.649053][T15044] el0_svc+0x58/0x180 [ 250.649746][T15044] el0t_64_sync_handler+0x84/0x12c [ 250.650565][T15044] el0t_64_sync+0x198/0x19c [ 250.651296][T15044] irq event stamp: 10813 [ 250.651944][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 250.653462][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 250.655056][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 250.656601][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 250.658031][T15044] ---[ end trace 0000000000000000 ]--- [ 250.659283][T15044] page: refcount:1152 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 250.659673][T15044] head: order:9 mapcount:639 entire_mapcount:0 nr_pages_mapped:639 pincount:0 [ 250.659684][T15044] memcg:ffff0000c19c2580 [ 250.659691][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 250.659701][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 250.659713][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.659720][T15044] raw: 0000000000000000 0000000000000000 00000480ffffffff ffff0000c19c2580 [ 250.659727][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.659734][T15044] head: 0000000000000000 0000000000000000 00000480ffffffff ffff0000c19c2580 [ 250.659742][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000027f0000027e 00000000ffffffff [ 250.659748][T15044] head: ffffffff0000027e 0000000000000024 00000000ffffffff 0000000000000200 [ 250.659754][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 250.659794][T15044] ------------[ cut here ]------------ [ 250.659797][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 250.678086][T15044] Modules linked in: [ 250.678650][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 250.680560][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 250.681300][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 250.682821][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 250.683979][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 250.684904][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 250.685893][T15044] sp : ffff8000a0a672c0 [ 250.686548][T15044] x29: ffff8000a0a672c0 x28: 0000000000000007 x27: 00000000202e9000 [ 250.687808][T15044] x26: 00e800014f0ebb43 x25: dfff800000000000 x24: 000000000020ac5d [ 250.689111][T15044] x23: fffffdffc43c3ac8 x22: fffffdffc43c3ac0 x21: 0000000000000000 [ 250.690404][T15044] x20: 0000000000000007 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 250.691577][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 250.692895][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 250.694165][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 250.695381][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000084548 x6 : ffff800080563af4 [ 250.696595][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 250.697917][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 250.699154][T15044] Call trace: [ 250.699645][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 250.700605][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 250.701493][T15044] set_pte_range+0x2e4/0x49c [ 250.702220][T15044] filemap_map_pages+0xb54/0x155c [ 250.703069][T15044] handle_mm_fault+0x2b64/0x4d34 [ 250.703912][T15044] __get_user_pages+0x1f40/0x2da0 [ 250.704719][T15044] populate_vma_page_range+0x258/0x348 [ 250.705572][T15044] __mm_populate+0x208/0x330 [ 250.706286][T15044] vm_mmap_pgoff+0x398/0x45c [ 250.706952][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 250.707680][T15044] __arm64_sys_mmap+0xf8/0x110 [ 250.708385][T15044] invoke_syscall+0x98/0x2b8 [ 250.709055][T15044] el0_svc_common+0x130/0x23c [ 250.709771][T15044] do_el0_svc+0x48/0x58 [ 250.710411][T15044] el0_svc+0x58/0x180 [ 250.711025][T15044] el0t_64_sync_handler+0x84/0x12c [ 250.711796][T15044] el0t_64_sync+0x198/0x19c [ 250.712452][T15044] irq event stamp: 10813 [ 250.713084][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 250.714475][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 250.715824][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 250.717228][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 250.718673][T15044] ---[ end trace 0000000000000000 ]--- [ 250.719812][T15044] page: refcount:1152 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 250.720176][T15044] head: order:9 mapcount:639 entire_mapcount:0 nr_pages_mapped:639 pincount:0 [ 250.720186][T15044] memcg:ffff0000c19c2580 [ 250.720194][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 250.720204][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 250.720216][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.720223][T15044] raw: 0000000000000000 0000000000000000 00000480ffffffff ffff0000c19c2580 [ 250.720231][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.720238][T15044] head: 0000000000000000 0000000000000000 00000480ffffffff ffff0000c19c2580 [ 250.720245][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000027f0000027e 00000000ffffffff [ 250.720252][T15044] head: ffffffff0000027e 0000000000000024 00000000ffffffff 0000000000000200 [ 250.720257][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 250.720299][T15044] ------------[ cut here ]------------ [ 250.720301][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 250.739590][T15044] Modules linked in: [ 250.740162][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 250.741974][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 250.742812][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 250.744449][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 250.745754][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 250.746677][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 250.747657][T15044] sp : ffff8000a0a672c0 [ 250.748294][T15044] x29: ffff8000a0a672c0 x28: 0000000000000007 x27: 00000000202e9000 [ 250.749584][T15044] x26: 00e800014f0ebb43 x25: dfff800000000000 x24: 000000000020ac5d [ 250.750835][T15044] x23: fffffdffc43c3c80 x22: fffffdffc43c3c48 x21: 0000000000000000 [ 250.752047][T15044] x20: 0000000000000007 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 250.753285][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 250.754591][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 250.755943][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 250.757202][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000085620 x6 : ffff800080563af4 [ 250.758477][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 250.759745][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 250.760949][T15044] Call trace: [ 250.761417][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 250.762392][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 250.763230][T15044] set_pte_range+0x2e4/0x49c [ 250.763934][T15044] filemap_map_pages+0xb54/0x155c [ 250.764759][T15044] handle_mm_fault+0x2b64/0x4d34 [ 250.765545][T15044] __get_user_pages+0x1f40/0x2da0 [ 250.766322][T15044] populate_vma_page_range+0x258/0x348 [ 250.767200][T15044] __mm_populate+0x208/0x330 [ 250.767962][T15044] vm_mmap_pgoff+0x398/0x45c [ 250.768689][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 250.769472][T15044] __arm64_sys_mmap+0xf8/0x110 [ 250.770233][T15044] invoke_syscall+0x98/0x2b8 [ 250.770975][T15044] el0_svc_common+0x130/0x23c [ 250.771707][T15044] do_el0_svc+0x48/0x58 [ 250.772302][T15044] el0_svc+0x58/0x180 [ 250.772864][T15044] el0t_64_sync_handler+0x84/0x12c [ 250.773598][T15044] el0t_64_sync+0x198/0x19c [ 250.774352][T15044] irq event stamp: 10813 [ 250.775068][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 250.776655][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 250.778086][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 250.779487][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 250.780907][T15044] ---[ end trace 0000000000000000 ]--- [ 250.782550][T15044] page: refcount:1159 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 250.782738][T15044] head: order:9 mapcount:646 entire_mapcount:0 nr_pages_mapped:646 pincount:0 [ 250.782749][T15044] memcg:ffff0000c19c2580 [ 250.782758][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 250.782772][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 250.782784][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.782792][T15044] raw: 0000000000000000 0000000000000000 00000487ffffffff ffff0000c19c2580 [ 250.782800][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.782807][T15044] head: 0000000000000000 0000000000000000 00000487ffffffff ffff0000c19c2580 [ 250.782814][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000028600000285 00000000ffffffff [ 250.782821][T15044] head: ffffffff00000285 0000000000000024 00000000ffffffff 0000000000000200 [ 250.782826][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 250.782868][T15044] ------------[ cut here ]------------ [ 250.782871][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 250.801580][T15044] Modules linked in: [ 250.802190][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 250.804244][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 250.805048][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 250.806678][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 250.807944][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 250.808842][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 250.809757][T15044] sp : ffff8000a0a672c0 [ 250.810384][T15044] x29: ffff8000a0a672c0 x28: 0000000000000002 x27: 00000000202f2000 [ 250.811609][T15044] x26: 00e800014f0f4b43 x25: dfff800000000000 x24: 000000000020ac5d [ 250.812798][T15044] x23: fffffdffc43c3d08 x22: fffffdffc43c3d00 x21: 0000000000000000 [ 250.814029][T15044] x20: 0000000000000002 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 250.815243][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 250.816440][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 250.817636][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 250.818807][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000086728 x6 : ffff800080563af4 [ 250.820007][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 250.821246][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 250.822491][T15044] Call trace: [ 250.822944][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 250.823862][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 250.824707][T15044] set_pte_range+0x2e4/0x49c [ 250.825433][T15044] filemap_map_pages+0xb54/0x155c [ 250.826171][T15044] handle_mm_fault+0x2b64/0x4d34 [ 250.826870][T15044] __get_user_pages+0x1f40/0x2da0 [ 250.827618][T15044] populate_vma_page_range+0x258/0x348 [ 250.828450][T15044] __mm_populate+0x208/0x330 [ 250.829121][T15044] vm_mmap_pgoff+0x398/0x45c [ 250.829759][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 250.830532][T15044] __arm64_sys_mmap+0xf8/0x110 [ 250.831276][T15044] invoke_syscall+0x98/0x2b8 [ 250.832027][T15044] el0_svc_common+0x130/0x23c [ 250.832832][T15044] do_el0_svc+0x48/0x58 [ 250.833557][T15044] el0_svc+0x58/0x180 [ 250.834236][T15044] el0t_64_sync_handler+0x84/0x12c [ 250.835138][T15044] el0t_64_sync+0x198/0x19c [ 250.835841][T15044] irq event stamp: 10813 [ 250.836565][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 250.838259][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 250.839896][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 250.841456][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 250.842952][T15044] ---[ end trace 0000000000000000 ]--- [ 250.844237][T15044] page: refcount:1159 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 250.844631][T15044] head: order:9 mapcount:646 entire_mapcount:0 nr_pages_mapped:646 pincount:0 [ 250.844645][T15044] memcg:ffff0000c19c2580 [ 250.844653][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 250.844664][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 250.844676][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.844683][T15044] raw: 0000000000000000 0000000000000000 00000487ffffffff ffff0000c19c2580 [ 250.844691][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.844698][T15044] head: 0000000000000000 0000000000000000 00000487ffffffff ffff0000c19c2580 [ 250.844705][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000028600000285 00000000ffffffff [ 250.844712][T15044] head: ffffffff00000285 0000000000000024 00000000ffffffff 0000000000000200 [ 250.844717][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 250.844759][T15044] ------------[ cut here ]------------ [ 250.844762][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 250.863305][T15044] Modules linked in: [ 250.863863][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 250.865664][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 250.866388][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 250.867964][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 250.869249][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 250.870147][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 250.871014][T15044] sp : ffff8000a0a672c0 [ 250.871584][T15044] x29: ffff8000a0a672c0 x28: 0000000000000002 x27: 00000000202f2000 [ 250.872744][T15044] x26: 00e800014f0f4b43 x25: dfff800000000000 x24: 000000000020ac5d [ 250.873972][T15044] x23: fffffdffc43c3d80 x22: fffffdffc43c3d48 x21: 0000000000000000 [ 250.875157][T15044] x20: 0000000000000002 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 250.876348][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 250.877512][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 250.878660][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 250.879836][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000878f0 x6 : ffff800080563af4 [ 250.881052][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 250.882196][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 250.883428][T15044] Call trace: [ 250.883931][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 250.884788][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 250.885683][T15044] set_pte_range+0x2e4/0x49c [ 250.886431][T15044] filemap_map_pages+0xb54/0x155c [ 250.887260][T15044] handle_mm_fault+0x2b64/0x4d34 [ 250.887997][T15044] __get_user_pages+0x1f40/0x2da0 [ 250.888816][T15044] populate_vma_page_range+0x258/0x348 [ 250.889711][T15044] __mm_populate+0x208/0x330 [ 250.890457][T15044] vm_mmap_pgoff+0x398/0x45c [ 250.891176][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 250.891962][T15044] __arm64_sys_mmap+0xf8/0x110 [ 250.892671][T15044] invoke_syscall+0x98/0x2b8 [ 250.893335][T15044] el0_svc_common+0x130/0x23c [ 250.894049][T15044] do_el0_svc+0x48/0x58 [ 250.894751][T15044] el0_svc+0x58/0x180 [ 250.895388][T15044] el0t_64_sync_handler+0x84/0x12c [ 250.896174][T15044] el0t_64_sync+0x198/0x19c [ 250.896880][T15044] irq event stamp: 10813 [ 250.897485][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 250.898835][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 250.900140][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 250.901469][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 250.902832][T15044] ---[ end trace 0000000000000000 ]--- [ 250.903993][T15044] page: refcount:1161 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 250.904356][T15044] head: order:9 mapcount:648 entire_mapcount:0 nr_pages_mapped:648 pincount:0 [ 250.904366][T15044] memcg:ffff0000c19c2580 [ 250.904374][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 250.904384][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 250.904395][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.904403][T15044] raw: 0000000000000000 0000000000000000 00000489ffffffff ffff0000c19c2580 [ 250.904410][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.904417][T15044] head: 0000000000000000 0000000000000000 00000489ffffffff ffff0000c19c2580 [ 250.904424][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000028800000287 00000000ffffffff [ 250.904431][T15044] head: ffffffff00000287 0000000000000024 00000000ffffffff 0000000000000200 [ 250.904436][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 250.904478][T15044] ------------[ cut here ]------------ [ 250.904481][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 250.922487][T15044] Modules linked in: [ 250.923087][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 250.924859][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 250.925569][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 250.927018][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 250.928295][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 250.929194][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 250.930186][T15044] sp : ffff8000a0a672c0 [ 250.930877][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 00000000202f5000 [ 250.932112][T15044] x26: 00e800014f0f7b43 x25: dfff800000000000 x24: 000000000020ac5d [ 250.933329][T15044] x23: fffffdffc43c3dc8 x22: fffffdffc43c3dc0 x21: 0000000000000000 [ 250.934528][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 250.935764][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 250.936916][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 250.938223][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 250.939482][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000889e8 x6 : ffff800080563af4 [ 250.940724][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 250.941934][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 250.943189][T15044] Call trace: [ 250.943702][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 250.944670][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 250.945476][T15044] set_pte_range+0x2e4/0x49c [ 250.946203][T15044] filemap_map_pages+0xb54/0x155c [ 250.946958][T15044] handle_mm_fault+0x2b64/0x4d34 [ 250.947677][T15044] __get_user_pages+0x1f40/0x2da0 [ 250.948410][T15044] populate_vma_page_range+0x258/0x348 [ 250.949207][T15044] __mm_populate+0x208/0x330 [ 250.949903][T15044] vm_mmap_pgoff+0x398/0x45c [ 250.950655][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 250.951431][T15044] __arm64_sys_mmap+0xf8/0x110 [ 250.952139][T15044] invoke_syscall+0x98/0x2b8 [ 250.952822][T15044] el0_svc_common+0x130/0x23c [ 250.953570][T15044] do_el0_svc+0x48/0x58 [ 250.954230][T15044] el0_svc+0x58/0x180 [ 250.954942][T15044] el0t_64_sync_handler+0x84/0x12c [ 250.955727][T15044] el0t_64_sync+0x198/0x19c [ 250.956439][T15044] irq event stamp: 10813 [ 250.957060][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 250.958554][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 250.960072][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 250.961539][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 250.962820][T15044] ---[ end trace 0000000000000000 ]--- [ 250.963712][T15044] page: refcount:1161 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 250.963728][T15044] head: order:9 mapcount:648 entire_mapcount:0 nr_pages_mapped:648 pincount:0 [ 250.963739][T15044] memcg:ffff0000c19c2580 [ 250.963748][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 250.963759][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 250.963772][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.963780][T15044] raw: 0000000000000000 0000000000000000 00000489ffffffff ffff0000c19c2580 [ 250.963788][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 250.963795][T15044] head: 0000000000000000 0000000000000000 00000489ffffffff ffff0000c19c2580 [ 250.963802][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000028800000287 00000000ffffffff [ 250.963809][T15044] head: ffffffff00000287 0000000000000024 00000000ffffffff 0000000000000200 [ 250.963814][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 250.963855][T15044] ------------[ cut here ]------------ [ 250.963858][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 250.982266][T15044] Modules linked in: [ 250.982841][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 250.984685][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 250.985452][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 250.986869][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 250.988048][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 250.988921][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 250.989881][T15044] sp : ffff8000a0a672c0 [ 250.990585][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 00000000202f5000 [ 250.991868][T15044] x26: 00e800014f0f7b43 x25: dfff800000000000 x24: 000000000020ac5d [ 250.993066][T15044] x23: fffffdffc43c3e00 x22: fffffdffc43c3dc8 x21: 0000000000000000 [ 250.994309][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 250.995465][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 250.996769][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 250.998048][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 250.999351][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000089b50 x6 : ffff800080563af4 [ 251.000630][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 251.001865][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 251.003110][T15044] Call trace: [ 251.003600][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 251.004546][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 251.005379][T15044] set_pte_range+0x2e4/0x49c [ 251.006153][T15044] filemap_map_pages+0xb54/0x155c [ 251.007002][T15044] handle_mm_fault+0x2b64/0x4d34 [ 251.007751][T15044] __get_user_pages+0x1f40/0x2da0 [ 251.008474][T15044] populate_vma_page_range+0x258/0x348 [ 251.009224][T15044] __mm_populate+0x208/0x330 [ 251.009866][T15044] vm_mmap_pgoff+0x398/0x45c [ 251.010580][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 251.011324][T15044] __arm64_sys_mmap+0xf8/0x110 [ 251.012115][T15044] invoke_syscall+0x98/0x2b8 [ 251.012864][T15044] el0_svc_common+0x130/0x23c [ 251.013596][T15044] do_el0_svc+0x48/0x58 [ 251.014243][T15044] el0_svc+0x58/0x180 [ 251.014902][T15044] el0t_64_sync_handler+0x84/0x12c [ 251.015720][T15044] el0t_64_sync+0x198/0x19c [ 251.016377][T15044] irq event stamp: 10813 [ 251.017015][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 251.018489][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 251.019946][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 251.021418][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 251.022839][T15044] ---[ end trace 0000000000000000 ]--- [ 251.024103][T15044] page: refcount:1162 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 251.024482][T15044] head: order:9 mapcount:649 entire_mapcount:0 nr_pages_mapped:649 pincount:0 [ 251.024493][T15044] memcg:ffff0000c19c2580 [ 251.024500][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 251.024511][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 251.024522][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.024530][T15044] raw: 0000000000000000 0000000000000000 0000048affffffff ffff0000c19c2580 [ 251.024537][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.024544][T15044] head: 0000000000000000 0000000000000000 0000048affffffff ffff0000c19c2580 [ 251.024551][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000028900000288 00000000ffffffff [ 251.024558][T15044] head: ffffffff00000288 0000000000000024 00000000ffffffff 0000000000000200 [ 251.024563][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 251.024603][T15044] ------------[ cut here ]------------ [ 251.024606][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 251.043151][T15044] Modules linked in: [ 251.043704][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 251.045738][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 251.046532][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 251.048157][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 251.049508][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 251.050511][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 251.051409][T15044] sp : ffff8000a0a672c0 [ 251.052049][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 00000000202f9000 [ 251.053321][T15044] x26: 00e800014f0fbb43 x25: dfff800000000000 x24: 000000000020ac5d [ 251.054608][T15044] x23: fffffdffc43c3ec8 x22: fffffdffc43c3ec0 x21: 0000000000000000 [ 251.055899][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 251.057132][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 251.058400][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 251.059606][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 251.060802][T15044] x8 : 14e578ac1de0e000 x7 : 000000000008ab30 x6 : ffff800080563af4 [ 251.062060][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 251.063216][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 251.064393][T15044] Call trace: [ 251.064904][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 251.065792][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 251.066572][T15044] set_pte_range+0x2e4/0x49c [ 251.067307][T15044] filemap_map_pages+0xb54/0x155c [ 251.068082][T15044] handle_mm_fault+0x2b64/0x4d34 [ 251.068871][T15044] __get_user_pages+0x1f40/0x2da0 [ 251.069647][T15044] populate_vma_page_range+0x258/0x348 [ 251.070423][T15044] __mm_populate+0x208/0x330 [ 251.071079][T15044] vm_mmap_pgoff+0x398/0x45c [ 251.071771][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 251.072512][T15044] __arm64_sys_mmap+0xf8/0x110 [ 251.073231][T15044] invoke_syscall+0x98/0x2b8 [ 251.073922][T15044] el0_svc_common+0x130/0x23c [ 251.074694][T15044] do_el0_svc+0x48/0x58 [ 251.075321][T15044] el0_svc+0x58/0x180 [ 251.075942][T15044] el0t_64_sync_handler+0x84/0x12c [ 251.076722][T15044] el0t_64_sync+0x198/0x19c [ 251.077428][T15044] irq event stamp: 10813 [ 251.078088][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 251.079589][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 251.080973][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 251.082464][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 251.083896][T15044] ---[ end trace 0000000000000000 ]--- [ 251.084894][T15044] page: refcount:1162 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 251.084907][T15044] head: order:9 mapcount:649 entire_mapcount:0 nr_pages_mapped:649 pincount:0 [ 251.084918][T15044] memcg:ffff0000c19c2580 [ 251.084927][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 251.084941][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 251.084954][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.084962][T15044] raw: 0000000000000000 0000000000000000 0000048affffffff ffff0000c19c2580 [ 251.084970][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.084978][T15044] head: 0000000000000000 0000000000000000 0000048affffffff ffff0000c19c2580 [ 251.084985][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000028900000288 00000000ffffffff [ 251.084992][T15044] head: ffffffff00000288 0000000000000024 00000000ffffffff 0000000000000200 [ 251.084997][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 251.085038][T15044] ------------[ cut here ]------------ [ 251.085041][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 251.104068][T15044] Modules linked in: [ 251.104633][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 251.106409][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 251.107162][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 251.108825][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 251.110168][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 251.111123][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 251.112061][T15044] sp : ffff8000a0a672c0 [ 251.112736][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 00000000202f9000 [ 251.113976][T15044] x26: 00e800014f0fbb43 x25: dfff800000000000 x24: 000000000020ac5d [ 251.115316][T15044] x23: fffffdffc43c3f80 x22: fffffdffc43c3f48 x21: 0000000000000000 [ 251.116654][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 251.117984][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 251.119252][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 251.120552][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 251.121844][T15044] x8 : 14e578ac1de0e000 x7 : 000000000008be40 x6 : ffff800080563af4 [ 251.123108][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 251.124361][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 251.125616][T15044] Call trace: [ 251.126104][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 251.127073][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 251.127976][T15044] set_pte_range+0x2e4/0x49c [ 251.128756][T15044] filemap_map_pages+0xb54/0x155c [ 251.129547][T15044] handle_mm_fault+0x2b64/0x4d34 [ 251.130302][T15044] __get_user_pages+0x1f40/0x2da0 [ 251.131052][T15044] populate_vma_page_range+0x258/0x348 [ 251.131998][T15044] __mm_populate+0x208/0x330 [ 251.132790][T15044] vm_mmap_pgoff+0x398/0x45c [ 251.133510][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 251.134285][T15044] __arm64_sys_mmap+0xf8/0x110 [ 251.135056][T15044] invoke_syscall+0x98/0x2b8 [ 251.135787][T15044] el0_svc_common+0x130/0x23c [ 251.136531][T15044] do_el0_svc+0x48/0x58 [ 251.137191][T15044] el0_svc+0x58/0x180 [ 251.137804][T15044] el0t_64_sync_handler+0x84/0x12c [ 251.138574][T15044] el0t_64_sync+0x198/0x19c [ 251.139248][T15044] irq event stamp: 10813 [ 251.139883][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 251.141397][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 251.142952][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 251.144562][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 251.146078][T15044] ---[ end trace 0000000000000000 ]--- [ 251.147372][T15044] page: refcount:1165 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 251.147773][T15044] head: order:9 mapcount:652 entire_mapcount:0 nr_pages_mapped:652 pincount:0 [ 251.147784][T15044] memcg:ffff0000c19c2580 [ 251.147792][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 251.147802][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 251.147813][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.147821][T15044] raw: 0000000000000000 0000000000000000 0000048dffffffff ffff0000c19c2580 [ 251.147828][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.147835][T15044] head: 0000000000000000 0000000000000000 0000048dffffffff ffff0000c19c2580 [ 251.147842][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000028c0000028b 00000000ffffffff [ 251.147849][T15044] head: ffffffff0000028b 0000000000000024 00000000ffffffff 0000000000000200 [ 251.147854][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 251.147894][T15044] ------------[ cut here ]------------ [ 251.147897][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 251.167042][T15044] Modules linked in: [ 251.167659][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 251.169595][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 251.170348][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 251.171946][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 251.173148][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 251.174111][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 251.175040][T15044] sp : ffff8000a0a672c0 [ 251.175679][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 00000000202fe000 [ 251.176838][T15044] x26: 00e800014f100b43 x25: dfff800000000000 x24: 000000000020ac5d [ 251.178132][T15044] x23: fffffdffc43c4008 x22: fffffdffc43c4000 x21: 0000000000000000 [ 251.179393][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 251.180633][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 251.181875][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 251.183071][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 251.184275][T15044] x8 : 14e578ac1de0e000 x7 : 000000000008ced0 x6 : ffff800080563af4 [ 251.185521][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 251.186696][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 251.187900][T15044] Call trace: [ 251.188337][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 251.189317][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 251.190145][T15044] set_pte_range+0x2e4/0x49c [ 251.190853][T15044] filemap_map_pages+0xb54/0x155c [ 251.191636][T15044] handle_mm_fault+0x2b64/0x4d34 [ 251.192419][T15044] __get_user_pages+0x1f40/0x2da0 [ 251.193170][T15044] populate_vma_page_range+0x258/0x348 [ 251.194003][T15044] __mm_populate+0x208/0x330 [ 251.194732][T15044] vm_mmap_pgoff+0x398/0x45c [ 251.195484][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 251.196240][T15044] __arm64_sys_mmap+0xf8/0x110 [ 251.197019][T15044] invoke_syscall+0x98/0x2b8 [ 251.197696][T15044] el0_svc_common+0x130/0x23c [ 251.198422][T15044] do_el0_svc+0x48/0x58 [ 251.199063][T15044] el0_svc+0x58/0x180 [ 251.199721][T15044] el0t_64_sync_handler+0x84/0x12c [ 251.200568][T15044] el0t_64_sync+0x198/0x19c [ 251.201274][T15044] irq event stamp: 10813 [ 251.201903][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 251.203406][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 251.204956][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 251.206434][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 251.207815][T15044] ---[ end trace 0000000000000000 ]--- [ 251.208701][T15044] page: refcount:1165 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 251.208722][T15044] head: order:9 mapcount:652 entire_mapcount:0 nr_pages_mapped:652 pincount:0 [ 251.208734][T15044] memcg:ffff0000c19c2580 [ 251.208743][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 251.208758][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 251.208771][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.208780][T15044] raw: 0000000000000000 0000000000000000 0000048dffffffff ffff0000c19c2580 [ 251.208788][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.208795][T15044] head: 0000000000000000 0000000000000000 0000048dffffffff ffff0000c19c2580 [ 251.208803][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000028c0000028b 00000000ffffffff [ 251.208809][T15044] head: ffffffff0000028b 0000000000000024 00000000ffffffff 0000000000000200 [ 251.208815][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 251.208857][T15044] ------------[ cut here ]------------ [ 251.208860][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 251.228475][T15044] Modules linked in: [ 251.229065][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 251.230890][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 251.231618][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 251.233189][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 251.234431][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 251.235404][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 251.236288][T15044] sp : ffff8000a0a672c0 [ 251.236867][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 00000000202fe000 [ 251.238072][T15044] x26: 00e800014f100b43 x25: dfff800000000000 x24: 000000000020ac5d [ 251.239399][T15044] x23: fffffdffc43c4040 x22: fffffdffc43c4008 x21: 0000000000000000 [ 251.240694][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 251.242047][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 251.243322][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 251.244591][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 251.245907][T15044] x8 : 14e578ac1de0e000 x7 : 000000000008dcf0 x6 : ffff800080563af4 [ 251.247277][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 251.248593][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 251.249865][T15044] Call trace: [ 251.250352][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 251.251327][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 251.252197][T15044] set_pte_range+0x2e4/0x49c [ 251.252971][T15044] filemap_map_pages+0xb54/0x155c [ 251.253789][T15044] handle_mm_fault+0x2b64/0x4d34 [ 251.254619][T15044] __get_user_pages+0x1f40/0x2da0 [ 251.255435][T15044] populate_vma_page_range+0x258/0x348 [ 251.256301][T15044] __mm_populate+0x208/0x330 [ 251.257046][T15044] vm_mmap_pgoff+0x398/0x45c [ 251.257784][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 251.258528][T15044] __arm64_sys_mmap+0xf8/0x110 [ 251.259237][T15044] invoke_syscall+0x98/0x2b8 [ 251.259922][T15044] el0_svc_common+0x130/0x23c [ 251.260594][T15044] do_el0_svc+0x48/0x58 [ 251.261169][T15044] el0_svc+0x58/0x180 [ 251.261764][T15044] el0t_64_sync_handler+0x84/0x12c [ 251.262485][T15044] el0t_64_sync+0x198/0x19c [ 251.263173][T15044] irq event stamp: 10813 [ 251.263779][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 251.265312][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 251.266654][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 251.268012][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 251.269358][T15044] ---[ end trace 0000000000000000 ]--- [ 251.270530][T15044] page: refcount:1166 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 251.270934][T15044] head: order:9 mapcount:653 entire_mapcount:0 nr_pages_mapped:653 pincount:0 [ 251.270944][T15044] memcg:ffff0000c19c2580 [ 251.270952][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 251.270962][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 251.270973][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.270981][T15044] raw: 0000000000000000 0000000000000000 0000048effffffff ffff0000c19c2580 [ 251.270988][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.270995][T15044] head: 0000000000000000 0000000000000000 0000048effffffff ffff0000c19c2580 [ 251.271002][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000028d0000028c 00000000ffffffff [ 251.271009][T15044] head: ffffffff0000028c 0000000000000024 00000000ffffffff 0000000000000200 [ 251.271014][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 251.271055][T15044] ------------[ cut here ]------------ [ 251.271058][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 251.290565][T15044] Modules linked in: [ 251.291166][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 251.293130][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 251.293877][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 251.295446][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 251.296668][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 251.297640][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 251.298620][T15044] sp : ffff8000a0a672c0 [ 251.299277][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020300000 [ 251.300508][T15044] x26: 00e800014f102b43 x25: dfff800000000000 x24: 000000000020ac5d [ 251.301716][T15044] x23: fffffdffc43c4088 x22: fffffdffc43c4080 x21: 0000000000000000 [ 251.302907][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 251.304271][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 251.305561][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 251.306813][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 251.307979][T15044] x8 : 14e578ac1de0e000 x7 : 000000000008eb98 x6 : ffff800080563af4 [ 251.309189][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 251.310312][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 251.311564][T15044] Call trace: [ 251.312065][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 251.312968][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 251.313785][T15044] set_pte_range+0x2e4/0x49c [ 251.314534][T15044] filemap_map_pages+0xb54/0x155c [ 251.315291][T15044] handle_mm_fault+0x2b64/0x4d34 [ 251.316023][T15044] __get_user_pages+0x1f40/0x2da0 [ 251.316802][T15044] populate_vma_page_range+0x258/0x348 [ 251.317634][T15044] __mm_populate+0x208/0x330 [ 251.318375][T15044] vm_mmap_pgoff+0x398/0x45c [ 251.319057][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 251.319796][T15044] __arm64_sys_mmap+0xf8/0x110 [ 251.320546][T15044] invoke_syscall+0x98/0x2b8 [ 251.321235][T15044] el0_svc_common+0x130/0x23c [ 251.321996][T15044] do_el0_svc+0x48/0x58 [ 251.322628][T15044] el0_svc+0x58/0x180 [ 251.323238][T15044] el0t_64_sync_handler+0x84/0x12c [ 251.324002][T15044] el0t_64_sync+0x198/0x19c [ 251.324677][T15044] irq event stamp: 10813 [ 251.325346][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 251.326810][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 251.328294][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 251.329732][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 251.331120][T15044] ---[ end trace 0000000000000000 ]--- [ 251.332289][T15044] page: refcount:1166 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 251.332663][T15044] head: order:9 mapcount:653 entire_mapcount:0 nr_pages_mapped:653 pincount:0 [ 251.332679][T15044] memcg:ffff0000c19c2580 [ 251.332687][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 251.332697][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 251.332710][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.332717][T15044] raw: 0000000000000000 0000000000000000 0000048effffffff ffff0000c19c2580 [ 251.332725][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.332732][T15044] head: 0000000000000000 0000000000000000 0000048effffffff ffff0000c19c2580 [ 251.332739][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000028d0000028c 00000000ffffffff [ 251.332746][T15044] head: ffffffff0000028c 0000000000000024 00000000ffffffff 0000000000000200 [ 251.332751][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 251.332793][T15044] ------------[ cut here ]------------ [ 251.332796][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 251.351593][T15044] Modules linked in: [ 251.352158][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 251.354164][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 251.354892][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 251.356462][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 251.357699][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 251.358633][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 251.359505][T15044] sp : ffff8000a0a672c0 [ 251.360124][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020300000 [ 251.361436][T15044] x26: 00e800014f102b43 x25: dfff800000000000 x24: 000000000020ac5d [ 251.362702][T15044] x23: fffffdffc43c40c0 x22: fffffdffc43c4088 x21: 0000000000000000 [ 251.363988][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 251.365239][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 251.366529][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 251.367735][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 251.369062][T15044] x8 : 14e578ac1de0e000 x7 : 000000000008fc68 x6 : ffff800080563af4 [ 251.370361][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 251.371815][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 251.373116][T15044] Call trace: [ 251.373620][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 251.374590][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 251.375525][T15044] set_pte_range+0x2e4/0x49c [ 251.376286][T15044] filemap_map_pages+0xb54/0x155c [ 251.377094][T15044] handle_mm_fault+0x2b64/0x4d34 [ 251.377936][T15044] __get_user_pages+0x1f40/0x2da0 [ 251.378801][T15044] populate_vma_page_range+0x258/0x348 [ 251.379683][T15044] __mm_populate+0x208/0x330 [ 251.380396][T15044] vm_mmap_pgoff+0x398/0x45c [ 251.381199][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 251.381995][T15044] __arm64_sys_mmap+0xf8/0x110 [ 251.382757][T15044] invoke_syscall+0x98/0x2b8 [ 251.383518][T15044] el0_svc_common+0x130/0x23c [ 251.384274][T15044] do_el0_svc+0x48/0x58 [ 251.384922][T15044] el0_svc+0x58/0x180 [ 251.385556][T15044] el0t_64_sync_handler+0x84/0x12c [ 251.386428][T15044] el0t_64_sync+0x198/0x19c [ 251.387150][T15044] irq event stamp: 10813 [ 251.387846][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 251.389352][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 251.390756][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 251.392080][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 251.393439][T15044] ---[ end trace 0000000000000000 ]--- [ 251.394602][T15044] page: refcount:1167 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 251.394824][T15044] head: order:9 mapcount:654 entire_mapcount:0 nr_pages_mapped:654 pincount:0 [ 251.394835][T15044] memcg:ffff0000c19c2580 [ 251.394845][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 251.394860][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 251.394875][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.394884][T15044] raw: 0000000000000000 0000000000000000 0000048fffffffff ffff0000c19c2580 [ 251.394892][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.394899][T15044] head: 0000000000000000 0000000000000000 0000048fffffffff ffff0000c19c2580 [ 251.394907][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000028e0000028d 00000000ffffffff [ 251.394914][T15044] head: ffffffff0000028d 0000000000000024 00000000ffffffff 0000000000000200 [ 251.394919][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 251.394960][T15044] ------------[ cut here ]------------ [ 251.394963][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 251.413863][T15044] Modules linked in: [ 251.414425][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 251.416244][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 251.416967][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 251.418308][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 251.419478][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 251.420407][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 251.421294][T15044] sp : ffff8000a0a672c0 [ 251.421872][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 0000000020303000 [ 251.423047][T15044] x26: 00e800014f105b43 x25: dfff800000000000 x24: 000000000020ac5d [ 251.424209][T15044] x23: fffffdffc43c4148 x22: fffffdffc43c4140 x21: 0000000000000000 [ 251.425324][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 251.426454][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 251.427682][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 251.428961][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 251.430235][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000090f18 x6 : ffff800080563af4 [ 251.431579][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 251.432926][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 251.434239][T15044] Call trace: [ 251.434769][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 251.435752][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 251.436634][T15044] set_pte_range+0x2e4/0x49c [ 251.437389][T15044] filemap_map_pages+0xb54/0x155c [ 251.438215][T15044] handle_mm_fault+0x2b64/0x4d34 [ 251.439070][T15044] __get_user_pages+0x1f40/0x2da0 [ 251.439903][T15044] populate_vma_page_range+0x258/0x348 [ 251.440792][T15044] __mm_populate+0x208/0x330 [ 251.441548][T15044] vm_mmap_pgoff+0x398/0x45c [ 251.442317][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 251.443104][T15044] __arm64_sys_mmap+0xf8/0x110 [ 251.443941][T15044] invoke_syscall+0x98/0x2b8 [ 251.444659][T15044] el0_svc_common+0x130/0x23c [ 251.445415][T15044] do_el0_svc+0x48/0x58 [ 251.446126][T15044] el0_svc+0x58/0x180 [ 251.446751][T15044] el0t_64_sync_handler+0x84/0x12c [ 251.447667][T15044] el0t_64_sync+0x198/0x19c [ 251.448427][T15044] irq event stamp: 10813 [ 251.449140][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 251.450697][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 251.452195][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 251.453792][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 251.455221][T15044] ---[ end trace 0000000000000000 ]--- [ 251.456543][T15044] page: refcount:1167 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 251.456924][T15044] head: order:9 mapcount:654 entire_mapcount:0 nr_pages_mapped:654 pincount:0 [ 251.456934][T15044] memcg:ffff0000c19c2580 [ 251.456942][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 251.456952][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 251.456963][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.456971][T15044] raw: 0000000000000000 0000000000000000 0000048fffffffff ffff0000c19c2580 [ 251.456978][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.456985][T15044] head: 0000000000000000 0000000000000000 0000048fffffffff ffff0000c19c2580 [ 251.456992][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000028e0000028d 00000000ffffffff [ 251.456999][T15044] head: ffffffff0000028d 0000000000000024 00000000ffffffff 0000000000000200 [ 251.457004][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 251.457046][T15044] ------------[ cut here ]------------ [ 251.457049][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 251.475845][T15044] Modules linked in: [ 251.476418][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 251.478550][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 251.479336][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 251.480987][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 251.482237][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 251.483172][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 251.484188][T15044] sp : ffff8000a0a672c0 [ 251.484870][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 0000000020303000 [ 251.486242][T15044] x26: 00e800014f105b43 x25: dfff800000000000 x24: 000000000020ac5d [ 251.487577][T15044] x23: fffffdffc43c4200 x22: fffffdffc43c41c8 x21: 0000000000000000 [ 251.488870][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 251.490107][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 251.491409][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 251.492726][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 251.494061][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000091e28 x6 : ffff800080563af4 [ 251.495284][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 251.496515][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 251.497711][T15044] Call trace: [ 251.498199][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 251.499093][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 251.499918][T15044] set_pte_range+0x2e4/0x49c [ 251.500643][T15044] filemap_map_pages+0xb54/0x155c [ 251.501399][T15044] handle_mm_fault+0x2b64/0x4d34 [ 251.502117][T15044] __get_user_pages+0x1f40/0x2da0 [ 251.502849][T15044] populate_vma_page_range+0x258/0x348 [ 251.503603][T15044] __mm_populate+0x208/0x330 [ 251.504279][T15044] vm_mmap_pgoff+0x398/0x45c [ 251.504939][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 251.505661][T15044] __arm64_sys_mmap+0xf8/0x110 [ 251.506386][T15044] invoke_syscall+0x98/0x2b8 [ 251.507044][T15044] el0_svc_common+0x130/0x23c [ 251.507725][T15044] do_el0_svc+0x48/0x58 [ 251.508342][T15044] el0_svc+0x58/0x180 [ 251.508936][T15044] el0t_64_sync_handler+0x84/0x12c [ 251.509681][T15044] el0t_64_sync+0x198/0x19c [ 251.510396][T15044] irq event stamp: 10813 [ 251.511062][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 251.512575][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 251.513978][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 251.515350][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 251.516716][T15044] ---[ end trace 0000000000000000 ]--- [ 251.518033][T15044] page: refcount:1170 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 251.518388][T15044] head: order:9 mapcount:657 entire_mapcount:0 nr_pages_mapped:657 pincount:0 [ 251.518398][T15044] memcg:ffff0000c19c2580 [ 251.518405][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 251.518415][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 251.518426][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.518434][T15044] raw: 0000000000000000 0000000000000000 00000492ffffffff ffff0000c19c2580 [ 251.518441][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.518448][T15044] head: 0000000000000000 0000000000000000 00000492ffffffff ffff0000c19c2580 [ 251.518455][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000029100000290 00000000ffffffff [ 251.518462][T15044] head: ffffffff00000290 0000000000000024 00000000ffffffff 0000000000000200 [ 251.518467][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 251.518508][T15044] ------------[ cut here ]------------ [ 251.518511][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 251.537850][T15044] Modules linked in: [ 251.538405][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 251.540214][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 251.541034][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 251.542566][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 251.543775][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 251.544727][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 251.545616][T15044] sp : ffff8000a0a672c0 [ 251.546196][T15044] x29: ffff8000a0a672c0 x28: 0000000000000007 x27: 0000000020307000 [ 251.547388][T15044] x26: 00e800014f109b43 x25: dfff800000000000 x24: 000000000020ac5d [ 251.548495][T15044] x23: fffffdffc43c4248 x22: fffffdffc43c4240 x21: 0000000000000000 [ 251.549657][T15044] x20: 0000000000000007 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 251.550879][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 251.552074][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 251.553238][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 251.554424][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000092ce8 x6 : ffff800080563af4 [ 251.555735][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 251.557052][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 251.558361][T15044] Call trace: [ 251.558890][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 251.559911][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 251.560729][T15044] set_pte_range+0x2e4/0x49c [ 251.561443][T15044] filemap_map_pages+0xb54/0x155c [ 251.562195][T15044] handle_mm_fault+0x2b64/0x4d34 [ 251.562926][T15044] __get_user_pages+0x1f40/0x2da0 [ 251.563681][T15044] populate_vma_page_range+0x258/0x348 [ 251.564524][T15044] __mm_populate+0x208/0x330 [ 251.565269][T15044] vm_mmap_pgoff+0x398/0x45c [ 251.565928][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 251.566596][T15044] __arm64_sys_mmap+0xf8/0x110 [ 251.567392][T15044] invoke_syscall+0x98/0x2b8 [ 251.568177][T15044] el0_svc_common+0x130/0x23c [ 251.568929][T15044] do_el0_svc+0x48/0x58 [ 251.569598][T15044] el0_svc+0x58/0x180 [ 251.570261][T15044] el0t_64_sync_handler+0x84/0x12c [ 251.571069][T15044] el0t_64_sync+0x198/0x19c [ 251.571803][T15044] irq event stamp: 10813 [ 251.572491][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 251.573924][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 251.575355][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 251.576791][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 251.578149][T15044] ---[ end trace 0000000000000000 ]--- [ 251.579067][T15044] page: refcount:1170 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 251.579085][T15044] head: order:9 mapcount:657 entire_mapcount:0 nr_pages_mapped:657 pincount:0 [ 251.579099][T15044] memcg:ffff0000c19c2580 [ 251.579109][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 251.579122][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 251.579139][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.579147][T15044] raw: 0000000000000000 0000000000000000 00000492ffffffff ffff0000c19c2580 [ 251.579156][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.579163][T15044] head: 0000000000000000 0000000000000000 00000492ffffffff ffff0000c19c2580 [ 251.579170][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000029100000290 00000000ffffffff [ 251.579177][T15044] head: ffffffff00000290 0000000000000024 00000000ffffffff 0000000000000200 [ 251.579183][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 251.579224][T15044] ------------[ cut here ]------------ [ 251.579227][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 251.597752][T15044] Modules linked in: [ 251.598277][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 251.600087][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 251.600752][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 251.602235][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 251.603483][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 251.604442][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 251.605356][T15044] sp : ffff8000a0a672c0 [ 251.605973][T15044] x29: ffff8000a0a672c0 x28: 0000000000000007 x27: 0000000020307000 [ 251.607172][T15044] x26: 00e800014f109b43 x25: dfff800000000000 x24: 000000000020ac5d [ 251.608464][T15044] x23: fffffdffc43c4400 x22: fffffdffc43c43c8 x21: 0000000000000000 [ 251.609811][T15044] x20: 0000000000000007 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 251.611133][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 251.612486][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 251.613877][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 251.615198][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000939d8 x6 : ffff800080563af4 [ 251.616437][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 251.617748][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 251.619060][T15044] Call trace: [ 251.619608][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 251.620649][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 251.621530][T15044] set_pte_range+0x2e4/0x49c [ 251.622217][T15044] filemap_map_pages+0xb54/0x155c [ 251.622955][T15044] handle_mm_fault+0x2b64/0x4d34 [ 251.623661][T15044] __get_user_pages+0x1f40/0x2da0 [ 251.624453][T15044] populate_vma_page_range+0x258/0x348 [ 251.625267][T15044] __mm_populate+0x208/0x330 [ 251.625927][T15044] vm_mmap_pgoff+0x398/0x45c [ 251.626593][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 251.627265][T15044] __arm64_sys_mmap+0xf8/0x110 [ 251.627929][T15044] invoke_syscall+0x98/0x2b8 [ 251.628603][T15044] el0_svc_common+0x130/0x23c [ 251.629282][T15044] do_el0_svc+0x48/0x58 [ 251.629984][T15044] el0_svc+0x58/0x180 [ 251.630538][T15044] el0t_64_sync_handler+0x84/0x12c [ 251.631265][T15044] el0t_64_sync+0x198/0x19c [ 251.631912][T15044] irq event stamp: 10813 [ 251.632503][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 251.633958][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 251.635321][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 251.636733][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 251.638000][T15044] ---[ end trace 0000000000000000 ]--- [ 251.639070][T15044] page: refcount:1177 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 251.639447][T15044] head: order:9 mapcount:664 entire_mapcount:0 nr_pages_mapped:664 pincount:0 [ 251.639458][T15044] memcg:ffff0000c19c2580 [ 251.639468][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 251.639480][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 251.639493][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.639501][T15044] raw: 0000000000000000 0000000000000000 00000499ffffffff ffff0000c19c2580 [ 251.639508][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.639515][T15044] head: 0000000000000000 0000000000000000 00000499ffffffff ffff0000c19c2580 [ 251.639523][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000029800000297 00000000ffffffff [ 251.639530][T15044] head: ffffffff00000297 0000000000000024 00000000ffffffff 0000000000000200 [ 251.639535][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 251.639575][T15044] ------------[ cut here ]------------ [ 251.639578][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 251.657823][T15044] Modules linked in: [ 251.658447][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 251.660245][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 251.661000][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 251.662511][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 251.663728][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 251.664695][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 251.665676][T15044] sp : ffff8000a0a672c0 [ 251.666312][T15044] x29: ffff8000a0a672c0 x28: 0000000000000002 x27: 0000000020310000 [ 251.667471][T15044] x26: 00e800014f112b43 x25: dfff800000000000 x24: 000000000020ac5d [ 251.668756][T15044] x23: fffffdffc43c4488 x22: fffffdffc43c4480 x21: 0000000000000000 [ 251.670042][T15044] x20: 0000000000000002 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 251.671322][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 251.672488][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 251.673782][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 251.675005][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000946b0 x6 : ffff800080563af4 [ 251.676205][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 251.677349][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 251.678545][T15044] Call trace: [ 251.679025][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 251.679888][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 251.680753][T15044] set_pte_range+0x2e4/0x49c [ 251.681493][T15044] filemap_map_pages+0xb54/0x155c [ 251.682259][T15044] handle_mm_fault+0x2b64/0x4d34 [ 251.682975][T15044] __get_user_pages+0x1f40/0x2da0 [ 251.683708][T15044] populate_vma_page_range+0x258/0x348 [ 251.684591][T15044] __mm_populate+0x208/0x330 [ 251.685280][T15044] vm_mmap_pgoff+0x398/0x45c [ 251.685959][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 251.686715][T15044] __arm64_sys_mmap+0xf8/0x110 [ 251.687471][T15044] invoke_syscall+0x98/0x2b8 [ 251.688170][T15044] el0_svc_common+0x130/0x23c [ 251.688900][T15044] do_el0_svc+0x48/0x58 [ 251.689549][T15044] el0_svc+0x58/0x180 [ 251.690129][T15044] el0t_64_sync_handler+0x84/0x12c [ 251.690962][T15044] el0t_64_sync+0x198/0x19c [ 251.691614][T15044] irq event stamp: 10813 [ 251.692238][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 251.693676][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 251.695170][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 251.696675][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 251.698097][T15044] ---[ end trace 0000000000000000 ]--- [ 251.699020][T15044] page: refcount:1177 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 251.699042][T15044] head: order:9 mapcount:664 entire_mapcount:0 nr_pages_mapped:664 pincount:0 [ 251.699052][T15044] memcg:ffff0000c19c2580 [ 251.699060][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 251.699069][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 251.699081][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.699088][T15044] raw: 0000000000000000 0000000000000000 00000499ffffffff ffff0000c19c2580 [ 251.699096][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.699102][T15044] head: 0000000000000000 0000000000000000 00000499ffffffff ffff0000c19c2580 [ 251.699109][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000029800000297 00000000ffffffff [ 251.699116][T15044] head: ffffffff00000297 0000000000000024 00000000ffffffff 0000000000000200 [ 251.699121][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 251.699163][T15044] ------------[ cut here ]------------ [ 251.699166][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 251.718351][T15044] Modules linked in: [ 251.718949][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 251.720976][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 251.721765][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 251.723260][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 251.724467][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 251.725520][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 251.726490][T15044] sp : ffff8000a0a672c0 [ 251.727158][T15044] x29: ffff8000a0a672c0 x28: 0000000000000002 x27: 0000000020310000 [ 251.728431][T15044] x26: 00e800014f112b43 x25: dfff800000000000 x24: 000000000020ac5d [ 251.729821][T15044] x23: fffffdffc43c4500 x22: fffffdffc43c44c8 x21: 0000000000000000 [ 251.731100][T15044] x20: 0000000000000002 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 251.732391][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 251.733647][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 251.734828][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 251.736113][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000095758 x6 : ffff800080563af4 [ 251.737273][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 251.738442][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 251.739676][T15044] Call trace: [ 251.740200][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 251.741083][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 251.741898][T15044] set_pte_range+0x2e4/0x49c [ 251.742592][T15044] filemap_map_pages+0xb54/0x155c [ 251.743365][T15044] handle_mm_fault+0x2b64/0x4d34 [ 251.744146][T15044] __get_user_pages+0x1f40/0x2da0 [ 251.744965][T15044] populate_vma_page_range+0x258/0x348 [ 251.745781][T15044] __mm_populate+0x208/0x330 [ 251.746490][T15044] vm_mmap_pgoff+0x398/0x45c [ 251.747135][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 251.747828][T15044] __arm64_sys_mmap+0xf8/0x110 [ 251.748474][T15044] invoke_syscall+0x98/0x2b8 [ 251.749130][T15044] el0_svc_common+0x130/0x23c [ 251.749797][T15044] do_el0_svc+0x48/0x58 [ 251.750380][T15044] el0_svc+0x58/0x180 [ 251.751013][T15044] el0t_64_sync_handler+0x84/0x12c [ 251.751860][T15044] el0t_64_sync+0x198/0x19c [ 251.752616][T15044] irq event stamp: 10813 [ 251.753351][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 251.754893][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 251.756380][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 251.757933][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 251.759366][T15044] ---[ end trace 0000000000000000 ]--- [ 251.760606][T15044] page: refcount:1179 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 251.760980][T15044] head: order:9 mapcount:666 entire_mapcount:0 nr_pages_mapped:666 pincount:0 [ 251.760990][T15044] memcg:ffff0000c19c2580 [ 251.760998][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 251.761008][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 251.761020][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.761028][T15044] raw: 0000000000000000 0000000000000000 0000049bffffffff ffff0000c19c2580 [ 251.761035][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.761042][T15044] head: 0000000000000000 0000000000000000 0000049bffffffff ffff0000c19c2580 [ 251.761049][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000029a00000299 00000000ffffffff [ 251.761056][T15044] head: ffffffff00000299 0000000000000024 00000000ffffffff 0000000000000200 [ 251.761061][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 251.761102][T15044] ------------[ cut here ]------------ [ 251.761105][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 251.779394][T15044] Modules linked in: [ 251.779950][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 251.781788][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 251.782500][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 251.783998][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 251.785108][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 251.786017][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 251.786963][T15044] sp : ffff8000a0a672c0 [ 251.787561][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020313000 [ 251.788720][T15044] x26: 00e800014f115b43 x25: dfff800000000000 x24: 000000000020ac5d [ 251.789951][T15044] x23: fffffdffc43c4548 x22: fffffdffc43c4540 x21: 0000000000000000 [ 251.791112][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 251.792427][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 251.793672][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 251.794928][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 251.796135][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000096900 x6 : ffff800080563af4 [ 251.797337][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 251.798664][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 251.799912][T15044] Call trace: [ 251.800485][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 251.801517][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 251.802326][T15044] set_pte_range+0x2e4/0x49c [ 251.803028][T15044] filemap_map_pages+0xb54/0x155c [ 251.803779][T15044] handle_mm_fault+0x2b64/0x4d34 [ 251.804595][T15044] __get_user_pages+0x1f40/0x2da0 [ 251.805464][T15044] populate_vma_page_range+0x258/0x348 [ 251.806361][T15044] __mm_populate+0x208/0x330 [ 251.807099][T15044] vm_mmap_pgoff+0x398/0x45c [ 251.807807][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 251.808544][T15044] __arm64_sys_mmap+0xf8/0x110 [ 251.809286][T15044] invoke_syscall+0x98/0x2b8 [ 251.810023][T15044] el0_svc_common+0x130/0x23c [ 251.810808][T15044] do_el0_svc+0x48/0x58 [ 251.811500][T15044] el0_svc+0x58/0x180 [ 251.812139][T15044] el0t_64_sync_handler+0x84/0x12c [ 251.812952][T15044] el0t_64_sync+0x198/0x19c [ 251.813652][T15044] irq event stamp: 10813 [ 251.814293][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 251.815743][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 251.817174][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 251.818614][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 251.819878][T15044] ---[ end trace 0000000000000000 ]--- [ 251.820752][T15044] page: refcount:1179 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 251.820769][T15044] head: order:9 mapcount:666 entire_mapcount:0 nr_pages_mapped:666 pincount:0 [ 251.820779][T15044] memcg:ffff0000c19c2580 [ 251.820788][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 251.820804][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 251.820818][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.820826][T15044] raw: 0000000000000000 0000000000000000 0000049bffffffff ffff0000c19c2580 [ 251.820834][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.820842][T15044] head: 0000000000000000 0000000000000000 0000049bffffffff ffff0000c19c2580 [ 251.820849][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000029a00000299 00000000ffffffff [ 251.820856][T15044] head: ffffffff00000299 0000000000000024 00000000ffffffff 0000000000000200 [ 251.820861][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 251.820903][T15044] ------------[ cut here ]------------ [ 251.820905][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 251.840053][T15044] Modules linked in: [ 251.840607][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 251.842481][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 251.843258][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 251.844863][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 251.846190][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 251.847245][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 251.848245][T15044] sp : ffff8000a0a672c0 [ 251.848860][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020313000 [ 251.850060][T15044] x26: 00e800014f115b43 x25: dfff800000000000 x24: 000000000020ac5d [ 251.851432][T15044] x23: fffffdffc43c4580 x22: fffffdffc43c4548 x21: 0000000000000000 [ 251.852677][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 251.854081][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 251.855420][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 251.856785][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 251.858126][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000097bf0 x6 : ffff800080563af4 [ 251.859346][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 251.860671][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 251.862025][T15044] Call trace: [ 251.862545][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 251.863516][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 251.864325][T15044] set_pte_range+0x2e4/0x49c [ 251.864985][T15044] filemap_map_pages+0xb54/0x155c [ 251.865687][T15044] handle_mm_fault+0x2b64/0x4d34 [ 251.866406][T15044] __get_user_pages+0x1f40/0x2da0 [ 251.867159][T15044] populate_vma_page_range+0x258/0x348 [ 251.867967][T15044] __mm_populate+0x208/0x330 [ 251.868656][T15044] vm_mmap_pgoff+0x398/0x45c [ 251.869275][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 251.869933][T15044] __arm64_sys_mmap+0xf8/0x110 [ 251.870570][T15044] invoke_syscall+0x98/0x2b8 [ 251.871248][T15044] el0_svc_common+0x130/0x23c [ 251.871887][T15044] do_el0_svc+0x48/0x58 [ 251.872516][T15044] el0_svc+0x58/0x180 [ 251.873120][T15044] el0t_64_sync_handler+0x84/0x12c [ 251.873865][T15044] el0t_64_sync+0x198/0x19c [ 251.874497][T15044] irq event stamp: 10813 [ 251.875071][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 251.876570][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 251.878158][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 251.879704][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 251.881091][T15044] ---[ end trace 0000000000000000 ]--- [ 251.882311][T15044] page: refcount:1180 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 251.882687][T15044] head: order:9 mapcount:667 entire_mapcount:0 nr_pages_mapped:667 pincount:0 [ 251.882697][T15044] memcg:ffff0000c19c2580 [ 251.882705][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 251.882715][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 251.882727][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.882734][T15044] raw: 0000000000000000 0000000000000000 0000049cffffffff ffff0000c19c2580 [ 251.882742][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.882749][T15044] head: 0000000000000000 0000000000000000 0000049cffffffff ffff0000c19c2580 [ 251.882756][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000029b0000029a 00000000ffffffff [ 251.882763][T15044] head: ffffffff0000029a 0000000000000024 00000000ffffffff 0000000000000200 [ 251.882768][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 251.882809][T15044] ------------[ cut here ]------------ [ 251.882811][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 251.901592][T15044] Modules linked in: [ 251.902226][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 251.904220][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 251.905002][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 251.906526][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 251.907780][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 251.908718][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 251.909576][T15044] sp : ffff8000a0a672c0 [ 251.910204][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020319000 [ 251.911383][T15044] x26: 00e800014f11bb43 x25: dfff800000000000 x24: 000000000020ac5d [ 251.912611][T15044] x23: fffffdffc43c46c8 x22: fffffdffc43c46c0 x21: 0000000000000000 [ 251.913926][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 251.915213][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 251.916506][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 251.917761][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 251.919043][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000098bf8 x6 : ffff800080563af4 [ 251.920250][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 251.921588][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 251.922879][T15044] Call trace: [ 251.923419][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 251.924279][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 251.925104][T15044] set_pte_range+0x2e4/0x49c [ 251.925881][T15044] filemap_map_pages+0xb54/0x155c [ 251.926663][T15044] handle_mm_fault+0x2b64/0x4d34 [ 251.927435][T15044] __get_user_pages+0x1f40/0x2da0 [ 251.928178][T15044] populate_vma_page_range+0x258/0x348 [ 251.928975][T15044] __mm_populate+0x208/0x330 [ 251.929716][T15044] vm_mmap_pgoff+0x398/0x45c [ 251.930479][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 251.931273][T15044] __arm64_sys_mmap+0xf8/0x110 [ 251.932031][T15044] invoke_syscall+0x98/0x2b8 [ 251.932739][T15044] el0_svc_common+0x130/0x23c [ 251.933428][T15044] do_el0_svc+0x48/0x58 [ 251.933999][T15044] el0_svc+0x58/0x180 [ 251.934615][T15044] el0t_64_sync_handler+0x84/0x12c [ 251.935323][T15044] el0t_64_sync+0x198/0x19c [ 251.935976][T15044] irq event stamp: 10813 [ 251.936566][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 251.938051][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 251.939599][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 251.941165][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 251.942663][T15044] ---[ end trace 0000000000000000 ]--- [ 251.943931][T15044] page: refcount:1180 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 251.944294][T15044] head: order:9 mapcount:667 entire_mapcount:0 nr_pages_mapped:667 pincount:0 [ 251.944304][T15044] memcg:ffff0000c19c2580 [ 251.944312][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 251.944322][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 251.944334][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.944341][T15044] raw: 0000000000000000 0000000000000000 0000049cffffffff ffff0000c19c2580 [ 251.944348][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 251.944355][T15044] head: 0000000000000000 0000000000000000 0000049cffffffff ffff0000c19c2580 [ 251.944362][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000029b0000029a 00000000ffffffff [ 251.944369][T15044] head: ffffffff0000029a 0000000000000024 00000000ffffffff 0000000000000200 [ 251.944374][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 251.944416][T15044] ------------[ cut here ]------------ [ 251.944418][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 251.964399][T15044] Modules linked in: [ 251.965000][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 251.966814][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 251.967541][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 251.969045][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 251.970257][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 251.971135][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 251.971992][T15044] sp : ffff8000a0a672c0 [ 251.972605][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020319000 [ 251.973916][T15044] x26: 00e800014f11bb43 x25: dfff800000000000 x24: 000000000020ac5d [ 251.975210][T15044] x23: fffffdffc43c4700 x22: fffffdffc43c46c8 x21: 0000000000000000 [ 251.976426][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 251.977684][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 251.978891][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 251.980064][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 251.981312][T15044] x8 : 14e578ac1de0e000 x7 : 0000000000099d38 x6 : ffff800080563af4 [ 251.982445][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 251.983615][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 251.984758][T15044] Call trace: [ 251.985207][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 251.986088][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 251.986917][T15044] set_pte_range+0x2e4/0x49c [ 251.987658][T15044] filemap_map_pages+0xb54/0x155c [ 251.988432][T15044] handle_mm_fault+0x2b64/0x4d34 [ 251.989174][T15044] __get_user_pages+0x1f40/0x2da0 [ 251.989984][T15044] populate_vma_page_range+0x258/0x348 [ 251.990819][T15044] __mm_populate+0x208/0x330 [ 251.991559][T15044] vm_mmap_pgoff+0x398/0x45c [ 251.992332][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 251.993103][T15044] __arm64_sys_mmap+0xf8/0x110 [ 251.993897][T15044] invoke_syscall+0x98/0x2b8 [ 251.994652][T15044] el0_svc_common+0x130/0x23c [ 251.995386][T15044] do_el0_svc+0x48/0x58 [ 251.996061][T15044] el0_svc+0x58/0x180 [ 251.996735][T15044] el0t_64_sync_handler+0x84/0x12c [ 251.997515][T15044] el0t_64_sync+0x198/0x19c [ 251.998252][T15044] irq event stamp: 10813 [ 251.998897][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 252.000491][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 252.002017][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 252.003601][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 252.005021][T15044] ---[ end trace 0000000000000000 ]--- [ 252.005908][T15044] page: refcount:1181 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 252.005921][T15044] head: order:9 mapcount:668 entire_mapcount:0 nr_pages_mapped:668 pincount:0 [ 252.005932][T15044] memcg:ffff0000c19c2580 [ 252.005941][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 252.005956][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 252.005969][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.005978][T15044] raw: 0000000000000000 0000000000000000 0000049dffffffff ffff0000c19c2580 [ 252.005986][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.005994][T15044] head: 0000000000000000 0000000000000000 0000049dffffffff ffff0000c19c2580 [ 252.006001][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000029c0000029b 00000000ffffffff [ 252.006008][T15044] head: ffffffff0000029b 0000000000000024 00000000ffffffff 0000000000000200 [ 252.006013][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 252.006054][T15044] ------------[ cut here ]------------ [ 252.006057][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 252.024487][T15044] Modules linked in: [ 252.025091][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 252.027008][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 252.027760][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 252.029259][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 252.030566][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 252.031492][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 252.032397][T15044] sp : ffff8000a0a672c0 [ 252.033079][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002031c000 [ 252.034381][T15044] x26: 00e800014f11eb43 x25: dfff800000000000 x24: 000000000020ac5d [ 252.035601][T15044] x23: fffffdffc43c4788 x22: fffffdffc43c4780 x21: 0000000000000000 [ 252.036815][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 252.038007][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 252.039239][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 252.040557][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 252.041835][T15044] x8 : 14e578ac1de0e000 x7 : 000000000009af10 x6 : ffff800080563af4 [ 252.043032][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 252.044324][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 252.045562][T15044] Call trace: [ 252.046041][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 252.046922][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 252.047733][T15044] set_pte_range+0x2e4/0x49c [ 252.048374][T15044] filemap_map_pages+0xb54/0x155c [ 252.049165][T15044] handle_mm_fault+0x2b64/0x4d34 [ 252.049922][T15044] __get_user_pages+0x1f40/0x2da0 [ 252.050616][T15044] populate_vma_page_range+0x258/0x348 [ 252.051389][T15044] __mm_populate+0x208/0x330 [ 252.052135][T15044] vm_mmap_pgoff+0x398/0x45c [ 252.052858][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 252.053580][T15044] __arm64_sys_mmap+0xf8/0x110 [ 252.054269][T15044] invoke_syscall+0x98/0x2b8 [ 252.054972][T15044] el0_svc_common+0x130/0x23c [ 252.055670][T15044] do_el0_svc+0x48/0x58 [ 252.056300][T15044] el0_svc+0x58/0x180 [ 252.056893][T15044] el0t_64_sync_handler+0x84/0x12c [ 252.057645][T15044] el0t_64_sync+0x198/0x19c [ 252.058306][T15044] irq event stamp: 10813 [ 252.058895][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 252.060236][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 252.061602][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 252.063017][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 252.064311][T15044] ---[ end trace 0000000000000000 ]--- [ 252.065642][T15044] page: refcount:1181 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 252.066031][T15044] head: order:9 mapcount:668 entire_mapcount:0 nr_pages_mapped:668 pincount:0 [ 252.066043][T15044] memcg:ffff0000c19c2580 [ 252.066054][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 252.066067][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 252.066079][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.066087][T15044] raw: 0000000000000000 0000000000000000 0000049dffffffff ffff0000c19c2580 [ 252.066095][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.066102][T15044] head: 0000000000000000 0000000000000000 0000049dffffffff ffff0000c19c2580 [ 252.066109][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000029c0000029b 00000000ffffffff [ 252.066116][T15044] head: ffffffff0000029b 0000000000000024 00000000ffffffff 0000000000000200 [ 252.066121][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 252.066162][T15044] ------------[ cut here ]------------ [ 252.066165][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 252.084155][T15044] Modules linked in: [ 252.084760][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 252.086586][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 252.087294][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 252.088733][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 252.089823][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 252.090725][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 252.091542][T15044] sp : ffff8000a0a672c0 [ 252.092148][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002031c000 [ 252.093352][T15044] x26: 00e800014f11eb43 x25: dfff800000000000 x24: 000000000020ac5d [ 252.094658][T15044] x23: fffffdffc43c47c0 x22: fffffdffc43c4788 x21: 0000000000000000 [ 252.096000][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 252.097237][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 252.098582][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 252.099873][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 252.101147][T15044] x8 : 14e578ac1de0e000 x7 : 000000000009c158 x6 : ffff800080563af4 [ 252.102458][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 252.103698][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 252.104836][T15044] Call trace: [ 252.105299][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 252.106163][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 252.106984][T15044] set_pte_range+0x2e4/0x49c [ 252.107688][T15044] filemap_map_pages+0xb54/0x155c [ 252.108415][T15044] handle_mm_fault+0x2b64/0x4d34 [ 252.109138][T15044] __get_user_pages+0x1f40/0x2da0 [ 252.109960][T15044] populate_vma_page_range+0x258/0x348 [ 252.110848][T15044] __mm_populate+0x208/0x330 [ 252.111537][T15044] vm_mmap_pgoff+0x398/0x45c [ 252.112223][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 252.112942][T15044] __arm64_sys_mmap+0xf8/0x110 [ 252.113709][T15044] invoke_syscall+0x98/0x2b8 [ 252.114351][T15044] el0_svc_common+0x130/0x23c [ 252.115016][T15044] do_el0_svc+0x48/0x58 [ 252.115562][T15044] el0_svc+0x58/0x180 [ 252.116115][T15044] el0t_64_sync_handler+0x84/0x12c [ 252.116902][T15044] el0t_64_sync+0x198/0x19c [ 252.117589][T15044] irq event stamp: 10813 [ 252.118205][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 252.119503][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 252.120854][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 252.122226][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 252.123450][T15044] ---[ end trace 0000000000000000 ]--- [ 252.124444][T15044] page: refcount:1182 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 252.124457][T15044] head: order:9 mapcount:669 entire_mapcount:0 nr_pages_mapped:669 pincount:0 [ 252.124468][T15044] memcg:ffff0000c19c2580 [ 252.124477][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 252.124491][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 252.124504][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.124512][T15044] raw: 0000000000000000 0000000000000000 0000049effffffff ffff0000c19c2580 [ 252.124520][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.124528][T15044] head: 0000000000000000 0000000000000000 0000049effffffff ffff0000c19c2580 [ 252.124535][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000029d0000029c 00000000ffffffff [ 252.124542][T15044] head: ffffffff0000029c 0000000000000024 00000000ffffffff 0000000000000200 [ 252.124547][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 252.124587][T15044] ------------[ cut here ]------------ [ 252.124590][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 252.142707][T15044] Modules linked in: [ 252.143272][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 252.145017][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 252.145765][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 252.147133][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 252.148282][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 252.149238][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 252.150160][T15044] sp : ffff8000a0a672c0 [ 252.150774][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002031e000 [ 252.152067][T15044] x26: 00e800014f120b43 x25: dfff800000000000 x24: 000000000020ac5d [ 252.153324][T15044] x23: fffffdffc43c4808 x22: fffffdffc43c4800 x21: 0000000000000000 [ 252.154551][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 252.155914][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 252.157173][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 252.158433][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 252.159659][T15044] x8 : 14e578ac1de0e000 x7 : 000000000009d0b0 x6 : ffff800080563af4 [ 252.161006][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 252.162246][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 252.163494][T15044] Call trace: [ 252.163964][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 252.164916][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 252.165762][T15044] set_pte_range+0x2e4/0x49c [ 252.166455][T15044] filemap_map_pages+0xb54/0x155c [ 252.167223][T15044] handle_mm_fault+0x2b64/0x4d34 [ 252.168020][T15044] __get_user_pages+0x1f40/0x2da0 [ 252.168790][T15044] populate_vma_page_range+0x258/0x348 [ 252.169544][T15044] __mm_populate+0x208/0x330 [ 252.170275][T15044] vm_mmap_pgoff+0x398/0x45c [ 252.170913][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 252.171609][T15044] __arm64_sys_mmap+0xf8/0x110 [ 252.172331][T15044] invoke_syscall+0x98/0x2b8 [ 252.173015][T15044] el0_svc_common+0x130/0x23c [ 252.173719][T15044] do_el0_svc+0x48/0x58 [ 252.174389][T15044] el0_svc+0x58/0x180 [ 252.175001][T15044] el0t_64_sync_handler+0x84/0x12c [ 252.175722][T15044] el0t_64_sync+0x198/0x19c [ 252.176390][T15044] irq event stamp: 10813 [ 252.176990][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 252.178432][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 252.179819][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 252.181147][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 252.182434][T15044] ---[ end trace 0000000000000000 ]--- [ 252.183559][T15044] page: refcount:1182 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 252.183911][T15044] head: order:9 mapcount:669 entire_mapcount:0 nr_pages_mapped:669 pincount:0 [ 252.183921][T15044] memcg:ffff0000c19c2580 [ 252.183929][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 252.183939][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 252.183950][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.183958][T15044] raw: 0000000000000000 0000000000000000 0000049effffffff ffff0000c19c2580 [ 252.183965][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.183972][T15044] head: 0000000000000000 0000000000000000 0000049effffffff ffff0000c19c2580 [ 252.183979][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000029d0000029c 00000000ffffffff [ 252.183986][T15044] head: ffffffff0000029c 0000000000000024 00000000ffffffff 0000000000000200 [ 252.183991][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 252.184032][T15044] ------------[ cut here ]------------ [ 252.184035][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 252.202728][T15044] Modules linked in: [ 252.203293][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 252.205051][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 252.205797][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 252.207419][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 252.208583][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 252.209420][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 252.210338][T15044] sp : ffff8000a0a672c0 [ 252.210959][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002031e000 [ 252.212153][T15044] x26: 00e800014f120b43 x25: dfff800000000000 x24: 000000000020ac5d [ 252.213428][T15044] x23: fffffdffc43c4840 x22: fffffdffc43c4808 x21: 0000000000000000 [ 252.214658][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 252.215867][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 252.217066][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 252.218286][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 252.219416][T15044] x8 : 14e578ac1de0e000 x7 : 000000000009de20 x6 : ffff800080563af4 [ 252.220619][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 252.221912][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 252.223253][T15044] Call trace: [ 252.223780][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 252.224798][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 252.225709][T15044] set_pte_range+0x2e4/0x49c [ 252.226440][T15044] filemap_map_pages+0xb54/0x155c [ 252.227236][T15044] handle_mm_fault+0x2b64/0x4d34 [ 252.228061][T15044] __get_user_pages+0x1f40/0x2da0 [ 252.228896][T15044] populate_vma_page_range+0x258/0x348 [ 252.229747][T15044] __mm_populate+0x208/0x330 [ 252.230450][T15044] vm_mmap_pgoff+0x398/0x45c [ 252.231229][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 252.231924][T15044] __arm64_sys_mmap+0xf8/0x110 [ 252.232641][T15044] invoke_syscall+0x98/0x2b8 [ 252.233367][T15044] el0_svc_common+0x130/0x23c [ 252.234087][T15044] do_el0_svc+0x48/0x58 [ 252.234766][T15044] el0_svc+0x58/0x180 [ 252.235409][T15044] el0t_64_sync_handler+0x84/0x12c [ 252.236219][T15044] el0t_64_sync+0x198/0x19c [ 252.236965][T15044] irq event stamp: 10813 [ 252.237609][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 252.239007][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 252.240260][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 252.241693][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 252.243009][T15044] ---[ end trace 0000000000000000 ]--- [ 252.244138][T15044] page: refcount:1183 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 252.244480][T15044] head: order:9 mapcount:670 entire_mapcount:0 nr_pages_mapped:670 pincount:0 [ 252.244491][T15044] memcg:ffff0000c19c2580 [ 252.244500][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 252.244513][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 252.244526][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.244533][T15044] raw: 0000000000000000 0000000000000000 0000049fffffffff ffff0000c19c2580 [ 252.244541][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.244548][T15044] head: 0000000000000000 0000000000000000 0000049fffffffff ffff0000c19c2580 [ 252.244555][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000029e0000029d 00000000ffffffff [ 252.244562][T15044] head: ffffffff0000029d 0000000000000024 00000000ffffffff 0000000000000200 [ 252.244567][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 252.244608][T15044] ------------[ cut here ]------------ [ 252.244611][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 252.263132][T15044] Modules linked in: [ 252.263720][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 252.265409][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 252.266140][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 252.267661][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 252.268927][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 252.269828][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 252.270754][T15044] sp : ffff8000a0a672c0 [ 252.271301][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 0000000020321000 [ 252.272650][T15044] x26: 00e800014f123b43 x25: dfff800000000000 x24: 000000000020ac5d [ 252.273936][T15044] x23: fffffdffc43c48c8 x22: fffffdffc43c48c0 x21: 0000000000000000 [ 252.275253][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 252.276484][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 252.277709][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 252.278873][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 252.280180][T15044] x8 : 14e578ac1de0e000 x7 : 000000000009edb0 x6 : ffff800080563af4 [ 252.281566][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 252.282895][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 252.284187][T15044] Call trace: [ 252.284703][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 252.285737][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 252.286615][T15044] set_pte_range+0x2e4/0x49c [ 252.287343][T15044] filemap_map_pages+0xb54/0x155c [ 252.288114][T15044] handle_mm_fault+0x2b64/0x4d34 [ 252.288942][T15044] __get_user_pages+0x1f40/0x2da0 [ 252.289757][T15044] populate_vma_page_range+0x258/0x348 [ 252.290615][T15044] __mm_populate+0x208/0x330 [ 252.291303][T15044] vm_mmap_pgoff+0x398/0x45c [ 252.292028][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 252.292793][T15044] __arm64_sys_mmap+0xf8/0x110 [ 252.293538][T15044] invoke_syscall+0x98/0x2b8 [ 252.294170][T15044] el0_svc_common+0x130/0x23c [ 252.294902][T15044] do_el0_svc+0x48/0x58 [ 252.295559][T15044] el0_svc+0x58/0x180 [ 252.296195][T15044] el0t_64_sync_handler+0x84/0x12c [ 252.297004][T15044] el0t_64_sync+0x198/0x19c [ 252.297669][T15044] irq event stamp: 10813 [ 252.298279][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 252.299763][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 252.301180][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 252.302538][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 252.303912][T15044] ---[ end trace 0000000000000000 ]--- [ 252.304885][T15044] page: refcount:1183 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 252.304898][T15044] head: order:9 mapcount:670 entire_mapcount:0 nr_pages_mapped:670 pincount:0 [ 252.304909][T15044] memcg:ffff0000c19c2580 [ 252.304918][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 252.304933][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 252.304947][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.304955][T15044] raw: 0000000000000000 0000000000000000 0000049fffffffff ffff0000c19c2580 [ 252.304964][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.304971][T15044] head: 0000000000000000 0000000000000000 0000049fffffffff ffff0000c19c2580 [ 252.304978][T15044] head: 05ffc00000000209 fffffdffc43b8001 0000029e0000029d 00000000ffffffff [ 252.304985][T15044] head: ffffffff0000029d 0000000000000024 00000000ffffffff 0000000000000200 [ 252.304990][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 252.305031][T15044] ------------[ cut here ]------------ [ 252.305034][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 252.323283][T15044] Modules linked in: [ 252.323838][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 252.325764][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 252.326551][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 252.328149][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 252.329473][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 252.330438][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 252.331393][T15044] sp : ffff8000a0a672c0 [ 252.332079][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 0000000020321000 [ 252.333344][T15044] x26: 00e800014f123b43 x25: dfff800000000000 x24: 000000000020ac5d [ 252.334593][T15044] x23: fffffdffc43c4980 x22: fffffdffc43c4948 x21: 0000000000000000 [ 252.335840][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 252.336949][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 252.338101][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 252.339363][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 252.340584][T15044] x8 : 14e578ac1de0e000 x7 : 000000000009ffa8 x6 : ffff800080563af4 [ 252.341876][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 252.343154][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 252.344469][T15044] Call trace: [ 252.345011][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 252.346042][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 252.346929][T15044] set_pte_range+0x2e4/0x49c [ 252.347675][T15044] filemap_map_pages+0xb54/0x155c [ 252.348501][T15044] handle_mm_fault+0x2b64/0x4d34 [ 252.349287][T15044] __get_user_pages+0x1f40/0x2da0 [ 252.350083][T15044] populate_vma_page_range+0x258/0x348 [ 252.350962][T15044] __mm_populate+0x208/0x330 [ 252.351731][T15044] vm_mmap_pgoff+0x398/0x45c [ 252.352448][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 252.353253][T15044] __arm64_sys_mmap+0xf8/0x110 [ 252.353987][T15044] invoke_syscall+0x98/0x2b8 [ 252.354700][T15044] el0_svc_common+0x130/0x23c [ 252.355474][T15044] do_el0_svc+0x48/0x58 [ 252.356118][T15044] el0_svc+0x58/0x180 [ 252.356794][T15044] el0t_64_sync_handler+0x84/0x12c [ 252.357682][T15044] el0t_64_sync+0x198/0x19c [ 252.358337][T15044] irq event stamp: 10813 [ 252.358997][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 252.360535][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 252.362128][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 252.363711][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 252.365136][T15044] ---[ end trace 0000000000000000 ]--- [ 252.366358][T15044] page: refcount:1186 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 252.366724][T15044] head: order:9 mapcount:673 entire_mapcount:0 nr_pages_mapped:673 pincount:0 [ 252.366734][T15044] memcg:ffff0000c19c2580 [ 252.366742][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 252.366752][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 252.366763][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.366771][T15044] raw: 0000000000000000 0000000000000000 000004a2ffffffff ffff0000c19c2580 [ 252.366778][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.366785][T15044] head: 0000000000000000 0000000000000000 000004a2ffffffff ffff0000c19c2580 [ 252.366792][T15044] head: 05ffc00000000209 fffffdffc43b8001 000002a1000002a0 00000000ffffffff [ 252.366799][T15044] head: ffffffff000002a0 0000000000000024 00000000ffffffff 0000000000000200 [ 252.366805][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 252.366845][T15044] ------------[ cut here ]------------ [ 252.366848][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 252.386744][T15044] Modules linked in: [ 252.387350][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 252.389326][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 252.390162][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 252.391786][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 252.393098][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 252.394081][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 252.395084][T15044] sp : ffff8000a0a672c0 [ 252.395691][T15044] x29: ffff8000a0a672c0 x28: 0000000000000007 x27: 0000000020325000 [ 252.397022][T15044] x26: 00e800014f127b43 x25: dfff800000000000 x24: 000000000020ac5d [ 252.398297][T15044] x23: fffffdffc43c49c8 x22: fffffdffc43c49c0 x21: 0000000000000000 [ 252.399518][T15044] x20: 0000000000000007 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 252.400836][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 252.402122][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 252.403448][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 252.404799][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000a10e0 x6 : ffff800080563af4 [ 252.406053][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 252.407302][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 252.408515][T15044] Call trace: [ 252.409014][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 252.409944][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 252.410766][T15044] set_pte_range+0x2e4/0x49c [ 252.411450][T15044] filemap_map_pages+0xb54/0x155c [ 252.412212][T15044] handle_mm_fault+0x2b64/0x4d34 [ 252.412972][T15044] __get_user_pages+0x1f40/0x2da0 [ 252.413736][T15044] populate_vma_page_range+0x258/0x348 [ 252.414518][T15044] __mm_populate+0x208/0x330 [ 252.415206][T15044] vm_mmap_pgoff+0x398/0x45c [ 252.415873][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 252.416632][T15044] __arm64_sys_mmap+0xf8/0x110 [ 252.417351][T15044] invoke_syscall+0x98/0x2b8 [ 252.418017][T15044] el0_svc_common+0x130/0x23c [ 252.418749][T15044] do_el0_svc+0x48/0x58 [ 252.419367][T15044] el0_svc+0x58/0x180 [ 252.419927][T15044] el0t_64_sync_handler+0x84/0x12c [ 252.420662][T15044] el0t_64_sync+0x198/0x19c [ 252.421303][T15044] irq event stamp: 10813 [ 252.421920][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 252.423315][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 252.424663][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 252.426017][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 252.427450][T15044] ---[ end trace 0000000000000000 ]--- [ 252.428355][T15044] page: refcount:1186 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 252.428368][T15044] head: order:9 mapcount:673 entire_mapcount:0 nr_pages_mapped:673 pincount:0 [ 252.428378][T15044] memcg:ffff0000c19c2580 [ 252.428387][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 252.428402][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 252.428414][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.428423][T15044] raw: 0000000000000000 0000000000000000 000004a2ffffffff ffff0000c19c2580 [ 252.428431][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.428438][T15044] head: 0000000000000000 0000000000000000 000004a2ffffffff ffff0000c19c2580 [ 252.428445][T15044] head: 05ffc00000000209 fffffdffc43b8001 000002a1000002a0 00000000ffffffff [ 252.428452][T15044] head: ffffffff000002a0 0000000000000024 00000000ffffffff 0000000000000200 [ 252.428457][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 252.428498][T15044] ------------[ cut here ]------------ [ 252.428501][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 252.447949][T15044] Modules linked in: [ 252.448582][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 252.450507][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 252.451283][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 252.452824][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 252.454067][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 252.455035][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 252.455985][T15044] sp : ffff8000a0a672c0 [ 252.456679][T15044] x29: ffff8000a0a672c0 x28: 0000000000000007 x27: 0000000020325000 [ 252.457931][T15044] x26: 00e800014f127b43 x25: dfff800000000000 x24: 000000000020ac5d [ 252.459151][T15044] x23: fffffdffc43c4b80 x22: fffffdffc43c4b48 x21: 0000000000000000 [ 252.460452][T15044] x20: 0000000000000007 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 252.461771][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 252.462992][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 252.464173][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 252.465394][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000a2190 x6 : ffff800080563af4 [ 252.466557][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 252.467726][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 252.468850][T15044] Call trace: [ 252.469290][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 252.470183][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 252.470925][T15044] set_pte_range+0x2e4/0x49c [ 252.471647][T15044] filemap_map_pages+0xb54/0x155c [ 252.472464][T15044] handle_mm_fault+0x2b64/0x4d34 [ 252.473252][T15044] __get_user_pages+0x1f40/0x2da0 [ 252.474027][T15044] populate_vma_page_range+0x258/0x348 [ 252.474919][T15044] __mm_populate+0x208/0x330 [ 252.475607][T15044] vm_mmap_pgoff+0x398/0x45c [ 252.476356][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 252.477115][T15044] __arm64_sys_mmap+0xf8/0x110 [ 252.477878][T15044] invoke_syscall+0x98/0x2b8 [ 252.478563][T15044] el0_svc_common+0x130/0x23c [ 252.479277][T15044] do_el0_svc+0x48/0x58 [ 252.479905][T15044] el0_svc+0x58/0x180 [ 252.480473][T15044] el0t_64_sync_handler+0x84/0x12c [ 252.481303][T15044] el0t_64_sync+0x198/0x19c [ 252.482027][T15044] irq event stamp: 10813 [ 252.482714][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 252.484265][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 252.485753][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 252.487259][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 252.488760][T15044] ---[ end trace 0000000000000000 ]--- [ 252.490007][T15044] page: refcount:1193 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 252.490350][T15044] head: order:9 mapcount:680 entire_mapcount:0 nr_pages_mapped:680 pincount:0 [ 252.490361][T15044] memcg:ffff0000c19c2580 [ 252.490368][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 252.490378][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 252.490389][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.490397][T15044] raw: 0000000000000000 0000000000000000 000004a9ffffffff ffff0000c19c2580 [ 252.490404][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.490411][T15044] head: 0000000000000000 0000000000000000 000004a9ffffffff ffff0000c19c2580 [ 252.490418][T15044] head: 05ffc00000000209 fffffdffc43b8001 000002a8000002a7 00000000ffffffff [ 252.490425][T15044] head: ffffffff000002a7 0000000000000024 00000000ffffffff 0000000000000200 [ 252.490430][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 252.490470][T15044] ------------[ cut here ]------------ [ 252.490473][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 252.509577][T15044] Modules linked in: [ 252.510196][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 252.512107][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 252.512958][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 252.514563][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 252.515810][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 252.516763][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 252.517661][T15044] sp : ffff8000a0a672c0 [ 252.518279][T15044] x29: ffff8000a0a672c0 x28: 0000000000000002 x27: 000000002032e000 [ 252.519502][T15044] x26: 00e800014f130b43 x25: dfff800000000000 x24: 000000000020ac5d [ 252.520786][T15044] x23: fffffdffc43c4c08 x22: fffffdffc43c4c00 x21: 0000000000000000 [ 252.522034][T15044] x20: 0000000000000002 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 252.523294][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 252.524515][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 252.525672][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 252.526850][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000a2fc0 x6 : ffff800080563af4 [ 252.528098][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 252.529389][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 252.530659][T15044] Call trace: [ 252.531225][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 252.532073][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 252.532925][T15044] set_pte_range+0x2e4/0x49c [ 252.533640][T15044] filemap_map_pages+0xb54/0x155c [ 252.534396][T15044] handle_mm_fault+0x2b64/0x4d34 [ 252.535109][T15044] __get_user_pages+0x1f40/0x2da0 [ 252.535888][T15044] populate_vma_page_range+0x258/0x348 [ 252.536645][T15044] __mm_populate+0x208/0x330 [ 252.537319][T15044] vm_mmap_pgoff+0x398/0x45c [ 252.538047][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 252.538740][T15044] __arm64_sys_mmap+0xf8/0x110 [ 252.539409][T15044] invoke_syscall+0x98/0x2b8 [ 252.540127][T15044] el0_svc_common+0x130/0x23c [ 252.540792][T15044] do_el0_svc+0x48/0x58 [ 252.541405][T15044] el0_svc+0x58/0x180 [ 252.541989][T15044] el0t_64_sync_handler+0x84/0x12c [ 252.542740][T15044] el0t_64_sync+0x198/0x19c [ 252.543422][T15044] irq event stamp: 10813 [ 252.544041][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 252.545484][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 252.546809][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 252.548188][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 252.549443][T15044] ---[ end trace 0000000000000000 ]--- [ 252.550657][T15044] page: refcount:1193 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 252.550995][T15044] head: order:9 mapcount:680 entire_mapcount:0 nr_pages_mapped:680 pincount:0 [ 252.551006][T15044] memcg:ffff0000c19c2580 [ 252.551014][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 252.551025][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 252.551037][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.551044][T15044] raw: 0000000000000000 0000000000000000 000004a9ffffffff ffff0000c19c2580 [ 252.551051][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.551058][T15044] head: 0000000000000000 0000000000000000 000004a9ffffffff ffff0000c19c2580 [ 252.551065][T15044] head: 05ffc00000000209 fffffdffc43b8001 000002a8000002a7 00000000ffffffff [ 252.551072][T15044] head: ffffffff000002a7 0000000000000024 00000000ffffffff 0000000000000200 [ 252.551078][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 252.551119][T15044] ------------[ cut here ]------------ [ 252.551122][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 252.570257][T15044] Modules linked in: [ 252.570826][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 252.572648][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 252.573336][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 252.574665][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 252.575797][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 252.576671][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 252.577646][T15044] sp : ffff8000a0a672c0 [ 252.578299][T15044] x29: ffff8000a0a672c0 x28: 0000000000000002 x27: 000000002032e000 [ 252.579592][T15044] x26: 00e800014f130b43 x25: dfff800000000000 x24: 000000000020ac5d [ 252.580878][T15044] x23: fffffdffc43c4c80 x22: fffffdffc43c4c48 x21: 0000000000000000 [ 252.582190][T15044] x20: 0000000000000002 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 252.583396][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 252.584682][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 252.585973][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 252.587139][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000a3b30 x6 : ffff800080563af4 [ 252.588506][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 252.589849][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 252.591090][T15044] Call trace: [ 252.591655][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 252.592604][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 252.593406][T15044] set_pte_range+0x2e4/0x49c [ 252.594052][T15044] filemap_map_pages+0xb54/0x155c [ 252.594764][T15044] handle_mm_fault+0x2b64/0x4d34 [ 252.595522][T15044] __get_user_pages+0x1f40/0x2da0 [ 252.596224][T15044] populate_vma_page_range+0x258/0x348 [ 252.597060][T15044] __mm_populate+0x208/0x330 [ 252.597753][T15044] vm_mmap_pgoff+0x398/0x45c [ 252.598396][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 252.599076][T15044] __arm64_sys_mmap+0xf8/0x110 [ 252.599791][T15044] invoke_syscall+0x98/0x2b8 [ 252.600426][T15044] el0_svc_common+0x130/0x23c [ 252.601081][T15044] do_el0_svc+0x48/0x58 [ 252.601667][T15044] el0_svc+0x58/0x180 [ 252.602255][T15044] el0t_64_sync_handler+0x84/0x12c [ 252.602971][T15044] el0t_64_sync+0x198/0x19c [ 252.603589][T15044] irq event stamp: 10813 [ 252.604107][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 252.605436][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 252.606727][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 252.608095][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 252.609330][T15044] ---[ end trace 0000000000000000 ]--- [ 252.610191][T15044] page: refcount:1195 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 252.610204][T15044] head: order:9 mapcount:682 entire_mapcount:0 nr_pages_mapped:682 pincount:0 [ 252.610214][T15044] memcg:ffff0000c19c2580 [ 252.610223][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 252.610235][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 252.610247][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.610255][T15044] raw: 0000000000000000 0000000000000000 000004abffffffff ffff0000c19c2580 [ 252.610263][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.610270][T15044] head: 0000000000000000 0000000000000000 000004abffffffff ffff0000c19c2580 [ 252.610278][T15044] head: 05ffc00000000209 fffffdffc43b8001 000002aa000002a9 00000000ffffffff [ 252.610284][T15044] head: ffffffff000002a9 0000000000000024 00000000ffffffff 0000000000000200 [ 252.610290][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 252.610331][T15044] ------------[ cut here ]------------ [ 252.610333][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 252.628746][T15044] Modules linked in: [ 252.629299][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 252.631056][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 252.631764][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 252.633392][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 252.634662][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 252.635645][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 252.636553][T15044] sp : ffff8000a0a672c0 [ 252.637141][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020331000 [ 252.638414][T15044] x26: 00e800014f133b43 x25: dfff800000000000 x24: 000000000020ac5d [ 252.639621][T15044] x23: fffffdffc43c4cc8 x22: fffffdffc43c4cc0 x21: 0000000000000000 [ 252.640791][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 252.642038][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 252.643259][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 252.644473][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 252.645693][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000a4b28 x6 : ffff800080563af4 [ 252.647007][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 252.648298][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 252.649528][T15044] Call trace: [ 252.650061][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 252.651010][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 252.651911][T15044] set_pte_range+0x2e4/0x49c [ 252.652648][T15044] filemap_map_pages+0xb54/0x155c [ 252.653450][T15044] handle_mm_fault+0x2b64/0x4d34 [ 252.654238][T15044] __get_user_pages+0x1f40/0x2da0 [ 252.655034][T15044] populate_vma_page_range+0x258/0x348 [ 252.655879][T15044] __mm_populate+0x208/0x330 [ 252.656558][T15044] vm_mmap_pgoff+0x398/0x45c [ 252.657233][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 252.658004][T15044] __arm64_sys_mmap+0xf8/0x110 [ 252.658723][T15044] invoke_syscall+0x98/0x2b8 [ 252.659466][T15044] el0_svc_common+0x130/0x23c [ 252.660229][T15044] do_el0_svc+0x48/0x58 [ 252.660914][T15044] el0_svc+0x58/0x180 [ 252.661570][T15044] el0t_64_sync_handler+0x84/0x12c [ 252.662398][T15044] el0t_64_sync+0x198/0x19c [ 252.663120][T15044] irq event stamp: 10813 [ 252.663738][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 252.665268][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 252.666788][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 252.668340][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 252.669730][T15044] ---[ end trace 0000000000000000 ]--- [ 252.671232][T15044] page: refcount:1195 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 252.671721][T15044] head: order:9 mapcount:682 entire_mapcount:0 nr_pages_mapped:682 pincount:0 [ 252.671732][T15044] memcg:ffff0000c19c2580 [ 252.671740][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 252.671751][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 252.671763][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.671770][T15044] raw: 0000000000000000 0000000000000000 000004abffffffff ffff0000c19c2580 [ 252.671778][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.671785][T15044] head: 0000000000000000 0000000000000000 000004abffffffff ffff0000c19c2580 [ 252.671792][T15044] head: 05ffc00000000209 fffffdffc43b8001 000002aa000002a9 00000000ffffffff [ 252.671799][T15044] head: ffffffff000002a9 0000000000000024 00000000ffffffff 0000000000000200 [ 252.671804][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 252.671846][T15044] ------------[ cut here ]------------ [ 252.671848][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 252.691604][T15044] Modules linked in: [ 252.692202][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 252.694207][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 252.694990][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 252.696441][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 252.697573][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 252.698440][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 252.699364][T15044] sp : ffff8000a0a672c0 [ 252.699956][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020331000 [ 252.701105][T15044] x26: 00e800014f133b43 x25: dfff800000000000 x24: 000000000020ac5d [ 252.702318][T15044] x23: fffffdffc43c4d00 x22: fffffdffc43c4cc8 x21: 0000000000000000 [ 252.703469][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 252.704662][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 252.705836][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 252.706968][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 252.708139][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000a5a08 x6 : ffff800080563af4 [ 252.709284][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 252.710408][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 252.711485][T15044] Call trace: [ 252.711926][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 252.712819][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 252.713611][T15044] set_pte_range+0x2e4/0x49c [ 252.714291][T15044] filemap_map_pages+0xb54/0x155c [ 252.715070][T15044] handle_mm_fault+0x2b64/0x4d34 [ 252.715838][T15044] __get_user_pages+0x1f40/0x2da0 [ 252.716610][T15044] populate_vma_page_range+0x258/0x348 [ 252.717443][T15044] __mm_populate+0x208/0x330 [ 252.718147][T15044] vm_mmap_pgoff+0x398/0x45c [ 252.718836][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 252.719563][T15044] __arm64_sys_mmap+0xf8/0x110 [ 252.720285][T15044] invoke_syscall+0x98/0x2b8 [ 252.720996][T15044] el0_svc_common+0x130/0x23c [ 252.721718][T15044] do_el0_svc+0x48/0x58 [ 252.722321][T15044] el0_svc+0x58/0x180 [ 252.722888][T15044] el0t_64_sync_handler+0x84/0x12c [ 252.723616][T15044] el0t_64_sync+0x198/0x19c [ 252.724302][T15044] irq event stamp: 10813 [ 252.724946][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 252.726450][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 252.727935][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 252.729364][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 252.730548][T15044] ---[ end trace 0000000000000000 ]--- [ 252.731512][T15044] page: refcount:1196 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 252.731525][T15044] head: order:9 mapcount:683 entire_mapcount:0 nr_pages_mapped:683 pincount:0 [ 252.731536][T15044] memcg:ffff0000c19c2580 [ 252.731545][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 252.731555][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 252.731568][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.731576][T15044] raw: 0000000000000000 0000000000000000 000004acffffffff ffff0000c19c2580 [ 252.731583][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.731590][T15044] head: 0000000000000000 0000000000000000 000004acffffffff ffff0000c19c2580 [ 252.731598][T15044] head: 05ffc00000000209 fffffdffc43b8001 000002ab000002aa 00000000ffffffff [ 252.731605][T15044] head: ffffffff000002aa 0000000000000024 00000000ffffffff 0000000000000200 [ 252.731610][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 252.731655][T15044] ------------[ cut here ]------------ [ 252.731658][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 252.749755][T15044] Modules linked in: [ 252.750302][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 252.751999][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 252.752738][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 252.754138][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 252.755243][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 252.756155][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 252.757036][T15044] sp : ffff8000a0a672c0 [ 252.757649][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 0000000020335000 [ 252.758884][T15044] x26: 00e800014f137b43 x25: dfff800000000000 x24: 000000000020ac5d [ 252.760124][T15044] x23: fffffdffc43c4dc8 x22: fffffdffc43c4dc0 x21: 0000000000000000 [ 252.761263][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 252.762405][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 252.763574][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 252.764846][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 252.766185][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000a6a90 x6 : ffff800080563af4 [ 252.767392][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 252.768722][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 252.769982][T15044] Call trace: [ 252.770543][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 252.771515][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 252.772360][T15044] set_pte_range+0x2e4/0x49c [ 252.773057][T15044] filemap_map_pages+0xb54/0x155c [ 252.774059][T15044] handle_mm_fault+0x2b64/0x4d34 [ 252.774812][T15044] __get_user_pages+0x1f40/0x2da0 [ 252.775561][T15044] populate_vma_page_range+0x258/0x348 [ 252.776304][T15044] __mm_populate+0x208/0x330 [ 252.776975][T15044] vm_mmap_pgoff+0x398/0x45c [ 252.777627][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 252.778346][T15044] __arm64_sys_mmap+0xf8/0x110 [ 252.779035][T15044] invoke_syscall+0x98/0x2b8 [ 252.779637][T15044] el0_svc_common+0x130/0x23c [ 252.780273][T15044] do_el0_svc+0x48/0x58 [ 252.780849][T15044] el0_svc+0x58/0x180 [ 252.781473][T15044] el0t_64_sync_handler+0x84/0x12c [ 252.782189][T15044] el0t_64_sync+0x198/0x19c [ 252.782998][T15044] irq event stamp: 10813 [ 252.783704][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 252.785328][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 252.786867][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 252.788278][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 252.789675][T15044] ---[ end trace 0000000000000000 ]--- [ 252.790925][T15044] page: refcount:1196 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 252.791284][T15044] head: order:9 mapcount:683 entire_mapcount:0 nr_pages_mapped:683 pincount:0 [ 252.791294][T15044] memcg:ffff0000c19c2580 [ 252.791301][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 252.791312][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 252.791324][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.791331][T15044] raw: 0000000000000000 0000000000000000 000004acffffffff ffff0000c19c2580 [ 252.791339][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.791346][T15044] head: 0000000000000000 0000000000000000 000004acffffffff ffff0000c19c2580 [ 252.791352][T15044] head: 05ffc00000000209 fffffdffc43b8001 000002ab000002aa 00000000ffffffff [ 252.791359][T15044] head: ffffffff000002aa 0000000000000024 00000000ffffffff 0000000000000200 [ 252.791365][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 252.791406][T15044] ------------[ cut here ]------------ [ 252.791409][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 252.810097][T15044] Modules linked in: [ 252.810714][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 252.812521][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 252.813293][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 252.814823][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 252.815968][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 252.816870][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 252.817746][T15044] sp : ffff8000a0a672c0 [ 252.818355][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 0000000020335000 [ 252.819580][T15044] x26: 00e800014f137b43 x25: dfff800000000000 x24: 000000000020ac5d [ 252.820699][T15044] x23: fffffdffc43c4e80 x22: fffffdffc43c4e48 x21: 0000000000000000 [ 252.821940][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 252.823260][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 252.824567][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 252.825764][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 252.827089][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000a7980 x6 : ffff800080563af4 [ 252.828415][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 252.829740][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 252.831029][T15044] Call trace: [ 252.831504][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 252.832431][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 252.833223][T15044] set_pte_range+0x2e4/0x49c [ 252.833925][T15044] filemap_map_pages+0xb54/0x155c [ 252.834676][T15044] handle_mm_fault+0x2b64/0x4d34 [ 252.835365][T15044] __get_user_pages+0x1f40/0x2da0 [ 252.836063][T15044] populate_vma_page_range+0x258/0x348 [ 252.836862][T15044] __mm_populate+0x208/0x330 [ 252.837522][T15044] vm_mmap_pgoff+0x398/0x45c [ 252.838197][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 252.838908][T15044] __arm64_sys_mmap+0xf8/0x110 [ 252.839563][T15044] invoke_syscall+0x98/0x2b8 [ 252.840250][T15044] el0_svc_common+0x130/0x23c [ 252.840933][T15044] do_el0_svc+0x48/0x58 [ 252.841560][T15044] el0_svc+0x58/0x180 [ 252.842163][T15044] el0t_64_sync_handler+0x84/0x12c [ 252.842875][T15044] el0t_64_sync+0x198/0x19c [ 252.843562][T15044] irq event stamp: 10813 [ 252.844148][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 252.845613][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 252.846994][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 252.848339][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 252.849601][T15044] ---[ end trace 0000000000000000 ]--- [ 252.850671][T15044] page: refcount:1199 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 252.851040][T15044] head: order:9 mapcount:686 entire_mapcount:0 nr_pages_mapped:686 pincount:0 [ 252.851050][T15044] memcg:ffff0000c19c2580 [ 252.851058][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 252.851068][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 252.851080][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.851087][T15044] raw: 0000000000000000 0000000000000000 000004afffffffff ffff0000c19c2580 [ 252.851095][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.851102][T15044] head: 0000000000000000 0000000000000000 000004afffffffff ffff0000c19c2580 [ 252.851109][T15044] head: 05ffc00000000209 fffffdffc43b8001 000002ae000002ad 00000000ffffffff [ 252.851116][T15044] head: ffffffff000002ad 0000000000000024 00000000ffffffff 0000000000000200 [ 252.851122][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 252.851163][T15044] ------------[ cut here ]------------ [ 252.851166][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 252.869669][T15044] Modules linked in: [ 252.870232][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 252.871977][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 252.872683][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 252.874085][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 252.875161][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 252.876101][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 252.877056][T15044] sp : ffff8000a0a672c0 [ 252.877743][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002033a000 [ 252.879065][T15044] x26: 00e800014f13cb43 x25: dfff800000000000 x24: 000000000020ac5d [ 252.880243][T15044] x23: fffffdffc43c4f08 x22: fffffdffc43c4f00 x21: 0000000000000000 [ 252.881530][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 252.882741][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 252.883957][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 252.885135][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 252.886504][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000a88a0 x6 : ffff800080563af4 [ 252.887733][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 252.889039][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 252.890359][T15044] Call trace: [ 252.890877][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 252.891766][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 252.892584][T15044] set_pte_range+0x2e4/0x49c [ 252.893352][T15044] filemap_map_pages+0xb54/0x155c [ 252.894118][T15044] handle_mm_fault+0x2b64/0x4d34 [ 252.894819][T15044] __get_user_pages+0x1f40/0x2da0 [ 252.895548][T15044] populate_vma_page_range+0x258/0x348 [ 252.896382][T15044] __mm_populate+0x208/0x330 [ 252.897045][T15044] vm_mmap_pgoff+0x398/0x45c [ 252.897714][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 252.898480][T15044] __arm64_sys_mmap+0xf8/0x110 [ 252.899135][T15044] invoke_syscall+0x98/0x2b8 [ 252.899753][T15044] el0_svc_common+0x130/0x23c [ 252.900445][T15044] do_el0_svc+0x48/0x58 [ 252.901035][T15044] el0_svc+0x58/0x180 [ 252.901581][T15044] el0t_64_sync_handler+0x84/0x12c [ 252.902273][T15044] el0t_64_sync+0x198/0x19c [ 252.902936][T15044] irq event stamp: 10813 [ 252.903502][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 252.904881][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 252.906219][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 252.907612][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 252.908948][T15044] ---[ end trace 0000000000000000 ]--- [ 252.909807][T15044] page: refcount:1199 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 252.909821][T15044] head: order:9 mapcount:686 entire_mapcount:0 nr_pages_mapped:686 pincount:0 [ 252.909832][T15044] memcg:ffff0000c19c2580 [ 252.909841][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 252.909852][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 252.909865][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.909873][T15044] raw: 0000000000000000 0000000000000000 000004afffffffff ffff0000c19c2580 [ 252.909881][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.909888][T15044] head: 0000000000000000 0000000000000000 000004afffffffff ffff0000c19c2580 [ 252.909895][T15044] head: 05ffc00000000209 fffffdffc43b8001 000002ae000002ad 00000000ffffffff [ 252.909902][T15044] head: ffffffff000002ad 0000000000000024 00000000ffffffff 0000000000000200 [ 252.909907][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 252.909948][T15044] ------------[ cut here ]------------ [ 252.909950][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 252.929356][T15044] Modules linked in: [ 252.929942][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 252.931929][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 252.932669][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 252.934008][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 252.935071][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 252.935932][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 252.936735][T15044] sp : ffff8000a0a672c0 [ 252.937307][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002033a000 [ 252.938421][T15044] x26: 00e800014f13cb43 x25: dfff800000000000 x24: 000000000020ac5d [ 252.939660][T15044] x23: fffffdffc43c4f40 x22: fffffdffc43c4f08 x21: 0000000000000000 [ 252.941010][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 252.942308][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 252.943627][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 252.944844][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 252.946136][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000a9790 x6 : ffff800080563af4 [ 252.947445][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 252.948709][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 252.949919][T15044] Call trace: [ 252.950431][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 252.951371][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 252.952190][T15044] set_pte_range+0x2e4/0x49c [ 252.952915][T15044] filemap_map_pages+0xb54/0x155c [ 252.953738][T15044] handle_mm_fault+0x2b64/0x4d34 [ 252.954485][T15044] __get_user_pages+0x1f40/0x2da0 [ 252.955227][T15044] populate_vma_page_range+0x258/0x348 [ 252.956019][T15044] __mm_populate+0x208/0x330 [ 252.956653][T15044] vm_mmap_pgoff+0x398/0x45c [ 252.957338][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 252.958015][T15044] __arm64_sys_mmap+0xf8/0x110 [ 252.958682][T15044] invoke_syscall+0x98/0x2b8 [ 252.959359][T15044] el0_svc_common+0x130/0x23c [ 252.960046][T15044] do_el0_svc+0x48/0x58 [ 252.960610][T15044] el0_svc+0x58/0x180 [ 252.961189][T15044] el0t_64_sync_handler+0x84/0x12c [ 252.962027][T15044] el0t_64_sync+0x198/0x19c [ 252.962798][T15044] irq event stamp: 10813 [ 252.963461][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 252.965033][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 252.966534][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 252.968008][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 252.969395][T15044] ---[ end trace 0000000000000000 ]--- [ 252.970601][T15044] page: refcount:1200 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 252.970973][T15044] head: order:9 mapcount:687 entire_mapcount:0 nr_pages_mapped:687 pincount:0 [ 252.970983][T15044] memcg:ffff0000c19c2580 [ 252.970990][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 252.971000][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 252.971011][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.971019][T15044] raw: 0000000000000000 0000000000000000 000004b0ffffffff ffff0000c19c2580 [ 252.971026][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 252.971033][T15044] head: 0000000000000000 0000000000000000 000004b0ffffffff ffff0000c19c2580 [ 252.971040][T15044] head: 05ffc00000000209 fffffdffc43b8001 000002af000002ae 00000000ffffffff [ 252.971047][T15044] head: ffffffff000002ae 0000000000000024 00000000ffffffff 0000000000000200 [ 252.971052][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 252.971093][T15044] ------------[ cut here ]------------ [ 252.971096][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 252.990321][T15044] Modules linked in: [ 252.990923][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 252.992819][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 252.993512][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 252.995047][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 252.996158][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 252.997050][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 252.997931][T15044] sp : ffff8000a0a672c0 [ 252.998520][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002033c000 [ 252.999712][T15044] x26: 00e800014f13eb43 x25: dfff800000000000 x24: 000000000020ac5d [ 253.000941][T15044] x23: fffffdffc43c4f88 x22: fffffdffc43c4f80 x21: 0000000000000000 [ 253.002078][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 253.003244][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 253.004417][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 253.005535][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 253.006642][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000aa6b0 x6 : ffff800080563af4 [ 253.007905][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 253.009116][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 253.010292][T15044] Call trace: [ 253.010775][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 253.011644][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 253.012440][T15044] set_pte_range+0x2e4/0x49c [ 253.013149][T15044] filemap_map_pages+0xb54/0x155c [ 253.013857][T15044] handle_mm_fault+0x2b64/0x4d34 [ 253.014567][T15044] __get_user_pages+0x1f40/0x2da0 [ 253.015271][T15044] populate_vma_page_range+0x258/0x348 [ 253.016030][T15044] __mm_populate+0x208/0x330 [ 253.016717][T15044] vm_mmap_pgoff+0x398/0x45c [ 253.017454][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 253.018262][T15044] __arm64_sys_mmap+0xf8/0x110 [ 253.019071][T15044] invoke_syscall+0x98/0x2b8 [ 253.019729][T15044] el0_svc_common+0x130/0x23c [ 253.020470][T15044] do_el0_svc+0x48/0x58 [ 253.021126][T15044] el0_svc+0x58/0x180 [ 253.021719][T15044] el0t_64_sync_handler+0x84/0x12c [ 253.022560][T15044] el0t_64_sync+0x198/0x19c [ 253.023260][T15044] irq event stamp: 10813 [ 253.023949][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 253.025485][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 253.027003][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 253.028365][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 253.029729][T15044] ---[ end trace 0000000000000000 ]--- [ 253.030645][T15044] page: refcount:1200 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 253.030667][T15044] head: order:9 mapcount:687 entire_mapcount:0 nr_pages_mapped:687 pincount:0 [ 253.030678][T15044] memcg:ffff0000c19c2580 [ 253.030687][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 253.030698][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 253.030711][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 253.030719][T15044] raw: 0000000000000000 0000000000000000 000004b0ffffffff ffff0000c19c2580 [ 253.030727][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 253.030734][T15044] head: 0000000000000000 0000000000000000 000004b0ffffffff ffff0000c19c2580 [ 253.030741][T15044] head: 05ffc00000000209 fffffdffc43b8001 000002af000002ae 00000000ffffffff [ 253.030748][T15044] head: ffffffff000002ae 0000000000000024 00000000ffffffff 0000000000000200 [ 253.030753][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 253.030795][T15044] ------------[ cut here ]------------ [ 253.030798][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 253.048589][T15044] Modules linked in: [ 253.049150][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 253.051035][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 253.051783][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 253.053259][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 253.054300][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 253.055135][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 253.056010][T15044] sp : ffff8000a0a672c0 [ 253.056594][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002033c000 [ 253.057748][T15044] x26: 00e800014f13eb43 x25: dfff800000000000 x24: 000000000020ac5d [ 253.058981][T15044] x23: fffffdffc43c4fc0 x22: fffffdffc43c4f88 x21: 0000000000000000 [ 253.060083][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 253.061366][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 253.062615][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 253.063932][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 253.065240][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000ab5a0 x6 : ffff800080563af4 [ 253.066586][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 253.067915][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 253.069123][T15044] Call trace: [ 253.069624][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 253.070540][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 253.071363][T15044] set_pte_range+0x2e4/0x49c [ 253.072023][T15044] filemap_map_pages+0xb54/0x155c [ 253.072772][T15044] handle_mm_fault+0x2b64/0x4d34 [ 253.073522][T15044] __get_user_pages+0x1f40/0x2da0 [ 253.074242][T15044] populate_vma_page_range+0x258/0x348 [ 253.074992][T15044] __mm_populate+0x208/0x330 [ 253.075745][T15044] vm_mmap_pgoff+0x398/0x45c [ 253.076442][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 253.077164][T15044] __arm64_sys_mmap+0xf8/0x110 [ 253.077964][T15044] invoke_syscall+0x98/0x2b8 [ 253.078763][T15044] el0_svc_common+0x130/0x23c [ 253.079597][T15044] do_el0_svc+0x48/0x58 [ 253.080205][T15044] el0_svc+0x58/0x180 [ 253.080822][T15044] el0t_64_sync_handler+0x84/0x12c [ 253.081649][T15044] el0t_64_sync+0x198/0x19c [ 253.082410][T15044] irq event stamp: 10813 [ 253.083100][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 253.084622][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 253.086231][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 253.087803][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 253.089182][T15044] ---[ end trace 0000000000000000 ]--- [ 253.090423][T15044] page: refcount:1201 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 253.090795][T15044] head: order:9 mapcount:688 entire_mapcount:0 nr_pages_mapped:688 pincount:0 [ 253.090805][T15044] memcg:ffff0000c19c2580 [ 253.090813][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 253.090823][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 253.090834][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 253.090841][T15044] raw: 0000000000000000 0000000000000000 000004b1ffffffff ffff0000c19c2580 [ 253.090849][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 253.090856][T15044] head: 0000000000000000 0000000000000000 000004b1ffffffff ffff0000c19c2580 [ 253.090863][T15044] head: 05ffc00000000209 fffffdffc43b8001 000002b0000002af 00000000ffffffff [ 253.090870][T15044] head: ffffffff000002af 0000000000000024 00000000ffffffff 0000000000000200 [ 253.090875][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 253.090915][T15044] ------------[ cut here ]------------ [ 253.090918][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 253.109184][T15044] Modules linked in: [ 253.109771][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 253.111618][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 253.112346][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 253.113923][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 253.115068][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 253.115974][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 253.116872][T15044] sp : ffff8000a0a672c0 [ 253.117467][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002033f000 [ 253.118629][T15044] x26: 00e800014f141b43 x25: dfff800000000000 x24: 000000000020ac5d [ 253.119785][T15044] x23: fffffdffc43c5048 x22: fffffdffc43c5040 x21: 0000000000000000 [ 253.121029][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 253.122335][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 253.123627][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 253.124928][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 253.126172][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000ac4c0 x6 : ffff800080563af4 [ 253.127407][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 253.128673][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 253.130016][T15044] Call trace: [ 253.130501][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 253.131424][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 253.132341][T15044] set_pte_range+0x2e4/0x49c [ 253.133071][T15044] filemap_map_pages+0xb54/0x155c [ 253.133871][T15044] handle_mm_fault+0x2b64/0x4d34 [ 253.134676][T15044] __get_user_pages+0x1f40/0x2da0 [ 253.135434][T15044] populate_vma_page_range+0x258/0x348 [ 253.136259][T15044] __mm_populate+0x208/0x330 [ 253.136949][T15044] vm_mmap_pgoff+0x398/0x45c [ 253.137641][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 253.138294][T15044] __arm64_sys_mmap+0xf8/0x110 [ 253.138983][T15044] invoke_syscall+0x98/0x2b8 [ 253.139636][T15044] el0_svc_common+0x130/0x23c [ 253.140367][T15044] do_el0_svc+0x48/0x58 [ 253.141021][T15044] el0_svc+0x58/0x180 [ 253.141599][T15044] el0t_64_sync_handler+0x84/0x12c [ 253.142351][T15044] el0t_64_sync+0x198/0x19c [ 253.143007][T15044] irq event stamp: 10813 [ 253.143599][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 253.145033][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 253.146403][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 253.147861][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 253.149146][T15044] ---[ end trace 0000000000000000 ]--- [ 253.150031][T15044] page: refcount:1201 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 253.150047][T15044] head: order:9 mapcount:688 entire_mapcount:0 nr_pages_mapped:688 pincount:0 [ 253.150059][T15044] memcg:ffff0000c19c2580 [ 253.150069][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 253.150083][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 253.150096][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 253.150104][T15044] raw: 0000000000000000 0000000000000000 000004b1ffffffff ffff0000c19c2580 [ 253.150112][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 253.150119][T15044] head: 0000000000000000 0000000000000000 000004b1ffffffff ffff0000c19c2580 [ 253.150127][T15044] head: 05ffc00000000209 fffffdffc43b8001 000002b0000002af 00000000ffffffff [ 253.150133][T15044] head: ffffffff000002af 0000000000000024 00000000ffffffff 0000000000000200 [ 253.150139][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 253.150180][T15044] ------------[ cut here ]------------ [ 253.150183][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 253.169394][T15044] Modules linked in: [ 253.169971][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 253.171787][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 253.172470][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 253.173859][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 253.174944][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 253.175790][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 253.176725][T15044] sp : ffff8000a0a672c0 [ 253.177360][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 000000002033f000 [ 253.178637][T15044] x26: 00e800014f141b43 x25: dfff800000000000 x24: 000000000020ac5d [ 253.179870][T15044] x23: fffffdffc43c5080 x22: fffffdffc43c5048 x21: 0000000000000000 [ 253.181160][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 253.182413][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 253.183727][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 253.184922][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 253.186157][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000ad3b0 x6 : ffff800080563af4 [ 253.187432][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 253.188729][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 253.189991][T15044] Call trace: [ 253.190483][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 253.191388][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 253.192225][T15044] set_pte_range+0x2e4/0x49c [ 253.192929][T15044] filemap_map_pages+0xb54/0x155c [ 253.193753][T15044] handle_mm_fault+0x2b64/0x4d34 [ 253.194549][T15044] __get_user_pages+0x1f40/0x2da0 [ 253.195396][T15044] populate_vma_page_range+0x258/0x348 [ 253.196262][T15044] __mm_populate+0x208/0x330 [ 253.196943][T15044] vm_mmap_pgoff+0x398/0x45c [ 253.197657][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 253.198350][T15044] __arm64_sys_mmap+0xf8/0x110 [ 253.199106][T15044] invoke_syscall+0x98/0x2b8 [ 253.199748][T15044] el0_svc_common+0x130/0x23c [ 253.200475][T15044] do_el0_svc+0x48/0x58 [ 253.201132][T15044] el0_svc+0x58/0x180 [ 253.201711][T15044] el0t_64_sync_handler+0x84/0x12c [ 253.202441][T15044] el0t_64_sync+0x198/0x19c [ 253.203189][T15044] irq event stamp: 10813 [ 253.203869][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 253.205502][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 253.206989][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 253.208316][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 253.209551][T15044] ---[ end trace 0000000000000000 ]--- [ 253.210691][T15044] page: refcount:1202 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 253.211043][T15044] head: order:9 mapcount:689 entire_mapcount:0 nr_pages_mapped:689 pincount:0 [ 253.211053][T15044] memcg:ffff0000c19c2580 [ 253.211060][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 253.211070][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 253.211081][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 253.211088][T15044] raw: 0000000000000000 0000000000000000 000004b2ffffffff ffff0000c19c2580 [ 253.211096][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 253.211103][T15044] head: 0000000000000000 0000000000000000 000004b2ffffffff ffff0000c19c2580 [ 253.211110][T15044] head: 05ffc00000000209 fffffdffc43b8001 000002b1000002b0 00000000ffffffff [ 253.211117][T15044] head: ffffffff000002b0 0000000000000024 00000000ffffffff 0000000000000200 [ 253.211122][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 253.211162][T15044] ------------[ cut here ]------------ [ 253.211165][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 253.228614][T15044] Modules linked in: [ 253.229159][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 253.230902][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 253.231590][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 253.232945][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 253.233987][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 253.234813][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 253.235695][T15044] sp : ffff8000a0a672c0 [ 253.236317][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020341000 [ 253.237626][T15044] x26: 00e800014f143b43 x25: dfff800000000000 x24: 000000000020ac5d [ 253.238905][T15044] x23: fffffdffc43c50c8 x22: fffffdffc43c50c0 x21: 0000000000000000 [ 253.240158][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 253.241409][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 253.242689][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 253.243940][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 253.245154][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000ae2d0 x6 : ffff800080563af4 [ 253.246383][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 253.247629][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 253.248807][T15044] Call trace: [ 253.249339][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 253.250176][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 253.250956][T15044] set_pte_range+0x2e4/0x49c [ 253.251567][T15044] filemap_map_pages+0xb54/0x155c [ 253.252359][T15044] handle_mm_fault+0x2b64/0x4d34 [ 253.253135][T15044] __get_user_pages+0x1f40/0x2da0 [ 253.253941][T15044] populate_vma_page_range+0x258/0x348 [ 253.254832][T15044] __mm_populate+0x208/0x330 [ 253.255537][T15044] vm_mmap_pgoff+0x398/0x45c [ 253.256273][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 253.257024][T15044] __arm64_sys_mmap+0xf8/0x110 [ 253.257742][T15044] invoke_syscall+0x98/0x2b8 [ 253.258422][T15044] el0_svc_common+0x130/0x23c [ 253.259177][T15044] do_el0_svc+0x48/0x58 [ 253.259844][T15044] el0_svc+0x58/0x180 [ 253.260488][T15044] el0t_64_sync_handler+0x84/0x12c [ 253.261290][T15044] el0t_64_sync+0x198/0x19c [ 253.261944][T15044] irq event stamp: 10813 [ 253.262507][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 253.264073][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 253.265595][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 253.267148][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 253.268560][T15044] ---[ end trace 0000000000000000 ]--- [ 253.269741][T15044] page: refcount:1202 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 253.270107][T15044] head: order:9 mapcount:689 entire_mapcount:0 nr_pages_mapped:689 pincount:0 [ 253.270117][T15044] memcg:ffff0000c19c2580 [ 253.270124][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 253.270135][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 253.270146][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 253.270154][T15044] raw: 0000000000000000 0000000000000000 000004b2ffffffff ffff0000c19c2580 [ 253.270161][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 253.270169][T15044] head: 0000000000000000 0000000000000000 000004b2ffffffff ffff0000c19c2580 [ 253.270176][T15044] head: 05ffc00000000209 fffffdffc43b8001 000002b1000002b0 00000000ffffffff [ 253.270182][T15044] head: ffffffff000002b0 0000000000000024 00000000ffffffff 0000000000000200 [ 253.270188][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 253.270229][T15044] ------------[ cut here ]------------ [ 253.270232][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 253.290520][T15044] Modules linked in: [ 253.291158][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 253.293154][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 253.293866][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 253.295390][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 253.296745][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 253.297735][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 253.298654][T15044] sp : ffff8000a0a672c0 [ 253.299342][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020341000 [ 253.300709][T15044] x26: 00e800014f143b43 x25: dfff800000000000 x24: 000000000020ac5d [ 253.302023][T15044] x23: fffffdffc43c5100 x22: fffffdffc43c50c8 x21: 0000000000000000 [ 253.303422][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 253.304702][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 253.306008][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 253.307290][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 253.308589][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000af1c0 x6 : ffff800080563af4 [ 253.309859][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 253.311165][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 253.312394][T15044] Call trace: [ 253.312886][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 253.313880][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 253.314744][T15044] set_pte_range+0x2e4/0x49c [ 253.315449][T15044] filemap_map_pages+0xb54/0x155c [ 253.316197][T15044] handle_mm_fault+0x2b64/0x4d34 [ 253.317019][T15044] __get_user_pages+0x1f40/0x2da0 [ 253.317776][T15044] populate_vma_page_range+0x258/0x348 [ 253.318659][T15044] __mm_populate+0x208/0x330 [ 253.319367][T15044] vm_mmap_pgoff+0x398/0x45c [ 253.320064][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 253.320836][T15044] __arm64_sys_mmap+0xf8/0x110 [ 253.321603][T15044] invoke_syscall+0x98/0x2b8 [ 253.322295][T15044] el0_svc_common+0x130/0x23c [ 253.323026][T15044] do_el0_svc+0x48/0x58 [ 253.323696][T15044] el0_svc+0x58/0x180 [ 253.324305][T15044] el0t_64_sync_handler+0x84/0x12c [ 253.325157][T15044] el0t_64_sync+0x198/0x19c [ 253.325925][T15044] irq event stamp: 10813 [ 253.326605][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 253.328208][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 253.329810][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 253.331342][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 253.332804][T15044] ---[ end trace 0000000000000000 ]--- [ 253.334285][T15044] page: refcount:1203 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 253.334572][T15044] head: order:9 mapcount:690 entire_mapcount:0 nr_pages_mapped:690 pincount:0 [ 253.334583][T15044] memcg:ffff0000c19c2580 [ 253.334592][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 253.334606][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 253.334618][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 253.334627][T15044] raw: 0000000000000000 0000000000000000 000004b3ffffffff ffff0000c19c2580 [ 253.334634][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 253.334647][T15044] head: 0000000000000000 0000000000000000 000004b3ffffffff ffff0000c19c2580 [ 253.334656][T15044] head: 05ffc00000000209 fffffdffc43b8001 000002b2000002b1 00000000ffffffff [ 253.334664][T15044] head: ffffffff000002b1 0000000000000024 00000000ffffffff 0000000000000200 [ 253.334669][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 253.334711][T15044] ------------[ cut here ]------------ [ 253.334714][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 253.352850][T15044] Modules linked in: [ 253.353407][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 253.355291][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 253.356054][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 253.357729][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 253.359017][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 253.360060][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 253.361116][T15044] sp : ffff8000a0a672c0 [ 253.361822][T15044] x29: ffff8000a0a672c0 x28: 0000000000000006 x27: 0000000020344000 [ 253.363155][T15044] x26: 00e800014f146b43 x25: dfff800000000000 x24: 000000000020ac5d [ 253.364487][T15044] x23: fffffdffc43c5188 x22: fffffdffc43c5180 x21: 0000000000000000 [ 253.365839][T15044] x20: 0000000000000006 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 253.367143][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 253.368426][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 253.369710][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 253.371015][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000b00e0 x6 : ffff800080563af4 [ 253.372317][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 253.373621][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 253.374944][T15044] Call trace: [ 253.375460][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 253.376316][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 253.377131][T15044] set_pte_range+0x2e4/0x49c [ 253.377830][T15044] filemap_map_pages+0xb54/0x155c [ 253.378649][T15044] handle_mm_fault+0x2b64/0x4d34 [ 253.379458][T15044] __get_user_pages+0x1f40/0x2da0 [ 253.380286][T15044] populate_vma_page_range+0x258/0x348 [ 253.381163][T15044] __mm_populate+0x208/0x330 [ 253.381864][T15044] vm_mmap_pgoff+0x398/0x45c [ 253.382515][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 253.383265][T15044] __arm64_sys_mmap+0xf8/0x110 [ 253.384039][T15044] invoke_syscall+0x98/0x2b8 [ 253.384739][T15044] el0_svc_common+0x130/0x23c [ 253.385479][T15044] do_el0_svc+0x48/0x58 [ 253.386210][T15044] el0_svc+0x58/0x180 [ 253.386844][T15044] el0t_64_sync_handler+0x84/0x12c [ 253.387674][T15044] el0t_64_sync+0x198/0x19c [ 253.388413][T15044] irq event stamp: 10813 [ 253.389024][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 253.390569][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 253.392060][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 253.393577][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 253.394913][T15044] ---[ end trace 0000000000000000 ]--- [ 253.396137][T15044] page: refcount:1203 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 253.396512][T15044] head: order:9 mapcount:690 entire_mapcount:0 nr_pages_mapped:690 pincount:0 [ 253.396521][T15044] memcg:ffff0000c19c2580 [ 253.396529][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 253.396538][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 253.396550][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 253.396558][T15044] raw: 0000000000000000 0000000000000000 000004b3ffffffff ffff0000c19c2580 [ 253.396565][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 253.396572][T15044] head: 0000000000000000 0000000000000000 000004b3ffffffff ffff0000c19c2580 [ 253.396579][T15044] head: 05ffc00000000209 fffffdffc43b8001 000002b2000002b1 00000000ffffffff [ 253.396586][T15044] head: ffffffff000002b1 0000000000000024 00000000ffffffff 0000000000000200 [ 253.396591][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 253.396633][T15044] ------------[ cut here ]------------ [ 253.396635][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 253.415231][T15044] Modules linked in: [ 253.415797][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 253.417575][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 253.418347][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 253.419932][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 253.421058][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 253.421962][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 253.422860][T15044] sp : ffff8000a0a672c0 [ 253.423439][T15044] x29: ffff8000a0a672c0 x28: 0000000000000006 x27: 0000000020344000 [ 253.424630][T15044] x26: 00e800014f146b43 x25: dfff800000000000 x24: 000000000020ac5d [ 253.425762][T15044] x23: fffffdffc43c5300 x22: fffffdffc43c52c8 x21: 0000000000000000 [ 253.426908][T15044] x20: 0000000000000006 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 253.428125][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 253.429441][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 253.430699][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 253.431853][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000b0d18 x6 : ffff800080563af4 [ 253.433032][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 253.434401][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 253.435697][T15044] Call trace: [ 253.436187][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 253.437175][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 253.438032][T15044] set_pte_range+0x2e4/0x49c [ 253.438786][T15044] filemap_map_pages+0xb54/0x155c [ 253.439609][T15044] handle_mm_fault+0x2b64/0x4d34 [ 253.440423][T15044] __get_user_pages+0x1f40/0x2da0 [ 253.441250][T15044] populate_vma_page_range+0x258/0x348 [ 253.442138][T15044] __mm_populate+0x208/0x330 [ 253.442816][T15044] vm_mmap_pgoff+0x398/0x45c [ 253.443488][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 253.444201][T15044] __arm64_sys_mmap+0xf8/0x110 [ 253.444918][T15044] invoke_syscall+0x98/0x2b8 [ 253.445610][T15044] el0_svc_common+0x130/0x23c [ 253.446311][T15044] do_el0_svc+0x48/0x58 [ 253.446887][T15044] el0_svc+0x58/0x180 [ 253.447453][T15044] el0t_64_sync_handler+0x84/0x12c [ 253.448122][T15044] el0t_64_sync+0x198/0x19c [ 253.448742][T15044] irq event stamp: 10813 [ 253.449309][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 253.450870][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 253.452422][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 253.453914][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 253.455197][T15044] ---[ end trace 0000000000000000 ]--- [ 253.456084][T15044] page: refcount:1209 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 253.456097][T15044] head: order:9 mapcount:696 entire_mapcount:0 nr_pages_mapped:696 pincount:0 [ 253.456107][T15044] memcg:ffff0000c19c2580 [ 253.456116][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 253.456131][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 253.456144][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 253.456153][T15044] raw: 0000000000000000 0000000000000000 000004b9ffffffff ffff0000c19c2580 [ 253.456161][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 253.456169][T15044] head: 0000000000000000 0000000000000000 000004b9ffffffff ffff0000c19c2580 [ 253.456176][T15044] head: 05ffc00000000209 fffffdffc43b8001 000002b8000002b7 00000000ffffffff [ 253.456183][T15044] head: ffffffff000002b7 0000000000000024 00000000ffffffff 0000000000000200 [ 253.456188][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 253.456229][T15044] ------------[ cut here ]------------ [ 253.456231][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 253.474221][T15044] Modules linked in: [ 253.474752][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 253.476681][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 253.477382][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 253.478782][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 253.479906][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 253.480766][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 253.481648][T15044] sp : ffff8000a0a672c0 [ 253.482267][T15044] x29: ffff8000a0a672c0 x28: 0000000000000004 x27: 000000002034c000 [ 253.483526][T15044] x26: 00e800014f14eb43 x25: dfff800000000000 x24: 000000000020ac5d [ 253.484713][T15044] x23: fffffdffc43c5388 x22: fffffdffc43c5380 x21: 0000000000000000 [ 253.485886][T15044] x20: 0000000000000004 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 253.487047][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 253.488208][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 253.489302][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 253.490452][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000b1808 x6 : ffff800080563af4 [ 253.491605][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 253.492840][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 253.494001][T15044] Call trace: [ 253.494471][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 253.495350][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 253.496153][T15044] set_pte_range+0x2e4/0x49c [ 253.496837][T15044] filemap_map_pages+0xb54/0x155c [ 253.497582][T15044] handle_mm_fault+0x2b64/0x4d34 [ 253.498368][T15044] __get_user_pages+0x1f40/0x2da0 [ 253.499146][T15044] populate_vma_page_range+0x258/0x348 [ 253.499965][T15044] __mm_populate+0x208/0x330 [ 253.500634][T15044] vm_mmap_pgoff+0x398/0x45c [ 253.501325][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 253.502061][T15044] __arm64_sys_mmap+0xf8/0x110 [ 253.502800][T15044] invoke_syscall+0x98/0x2b8 [ 253.503499][T15044] el0_svc_common+0x130/0x23c [ 253.504218][T15044] do_el0_svc+0x48/0x58 [ 253.504845][T15044] el0_svc+0x58/0x180 [ 253.505413][T15044] el0t_64_sync_handler+0x84/0x12c [ 253.506129][T15044] el0t_64_sync+0x198/0x19c [ 253.506784][T15044] irq event stamp: 10813 [ 253.507443][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 253.508840][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 253.510107][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 253.511395][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 253.512623][T15044] ---[ end trace 0000000000000000 ]--- [ 253.513737][T15044] page: refcount:1209 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 253.514122][T15044] head: order:9 mapcount:696 entire_mapcount:0 nr_pages_mapped:696 pincount:0 [ 253.514132][T15044] memcg:ffff0000c19c2580 [ 253.514140][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 253.514149][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 253.514161][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 253.514168][T15044] raw: 0000000000000000 0000000000000000 000004b9ffffffff ffff0000c19c2580 [ 253.514175][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 253.514182][T15044] head: 0000000000000000 0000000000000000 000004b9ffffffff ffff0000c19c2580 [ 253.514189][T15044] head: 05ffc00000000209 fffffdffc43b8001 000002b8000002b7 00000000ffffffff [ 253.514196][T15044] head: ffffffff000002b7 0000000000000024 00000000ffffffff 0000000000000200 [ 253.514201][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 253.514242][T15044] ------------[ cut here ]------------ [ 253.514245][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 253.533946][T15044] Modules linked in: [ 253.534579][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 253.536482][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 253.537265][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 253.538910][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 253.540148][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 253.541125][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 253.542016][T15044] sp : ffff8000a0a672c0 [ 253.542676][T15044] x29: ffff8000a0a672c0 x28: 0000000000000004 x27: 000000002034c000 [ 253.543986][T15044] x26: 00e800014f14eb43 x25: dfff800000000000 x24: 000000000020ac5d [ 253.545291][T15044] x23: fffffdffc43c5480 x22: fffffdffc43c5448 x21: 0000000000000000 [ 253.546593][T15044] x20: 0000000000000004 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 253.547864][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 253.549122][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 253.550345][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 253.551527][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000b2700 x6 : ffff800080563af4 [ 253.552745][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 253.554033][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 253.555254][T15044] Call trace: [ 253.555758][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 253.556797][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 253.557704][T15044] set_pte_range+0x2e4/0x49c [ 253.558432][T15044] filemap_map_pages+0xb54/0x155c [ 253.559183][T15044] handle_mm_fault+0x2b64/0x4d34 [ 253.559891][T15044] __get_user_pages+0x1f40/0x2da0 [ 253.560663][T15044] populate_vma_page_range+0x258/0x348 [ 253.561481][T15044] __mm_populate+0x208/0x330 [ 253.562119][T15044] vm_mmap_pgoff+0x398/0x45c [ 253.562751][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 253.563496][T15044] __arm64_sys_mmap+0xf8/0x110 [ 253.564287][T15044] invoke_syscall+0x98/0x2b8 [ 253.565004][T15044] el0_svc_common+0x130/0x23c [ 253.565719][T15044] do_el0_svc+0x48/0x58 [ 253.566372][T15044] el0_svc+0x58/0x180 [ 253.567027][T15044] el0t_64_sync_handler+0x84/0x12c [ 253.567943][T15044] el0t_64_sync+0x198/0x19c [ 253.568669][T15044] irq event stamp: 10813 [ 253.569353][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 253.570907][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 253.572427][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 253.573811][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 253.575121][T15044] ---[ end trace 0000000000000000 ]--- [ 253.576368][T15044] page: refcount:1213 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 253.576746][T15044] head: order:9 mapcount:700 entire_mapcount:0 nr_pages_mapped:700 pincount:0 [ 253.576756][T15044] memcg:ffff0000c19c2580 [ 253.576764][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 253.576774][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 253.576786][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 253.576793][T15044] raw: 0000000000000000 0000000000000000 000004bdffffffff ffff0000c19c2580 [ 253.576801][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 253.576808][T15044] head: 0000000000000000 0000000000000000 000004bdffffffff ffff0000c19c2580 [ 253.576815][T15044] head: 05ffc00000000209 fffffdffc43b8001 000002bc000002bb 00000000ffffffff [ 253.576821][T15044] head: ffffffff000002bb 0000000000000024 00000000ffffffff 0000000000000200 [ 253.576827][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 253.576868][T15044] ------------[ cut here ]------------ [ 253.576871][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 253.595962][T15044] Modules linked in: [ 253.596553][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 253.598453][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 253.599244][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 253.600827][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 253.602072][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 253.603106][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 253.604110][T15044] sp : ffff8000a0a672c0 [ 253.604755][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020355000 [ 253.605980][T15044] x26: 00e800014f157b43 x25: dfff800000000000 x24: 000000000020ac5d [ 253.607283][T15044] x23: fffffdffc43c55c8 x22: fffffdffc43c55c0 x21: 0000000000000000 [ 253.608508][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 253.609641][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 253.610911][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 253.612141][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 253.613479][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000b3638 x6 : ffff800080563af4 [ 253.614735][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 253.615957][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 253.617181][T15044] Call trace: [ 253.617722][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 253.618669][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 253.619573][T15044] set_pte_range+0x2e4/0x49c [ 253.620307][T15044] filemap_map_pages+0xb54/0x155c [ 253.621130][T15044] handle_mm_fault+0x2b64/0x4d34 [ 253.621970][T15044] __get_user_pages+0x1f40/0x2da0 [ 253.622777][T15044] populate_vma_page_range+0x258/0x348 [ 253.623709][T15044] __mm_populate+0x208/0x330 [ 253.624509][T15044] vm_mmap_pgoff+0x398/0x45c [ 253.625244][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 253.626037][T15044] __arm64_sys_mmap+0xf8/0x110 [ 253.626852][T15044] invoke_syscall+0x98/0x2b8 [ 253.627587][T15044] el0_svc_common+0x130/0x23c [ 253.628351][T15044] do_el0_svc+0x48/0x58 [ 253.629002][T15044] el0_svc+0x58/0x180 [ 253.629554][T15044] el0t_64_sync_handler+0x84/0x12c [ 253.630302][T15044] el0t_64_sync+0x198/0x19c [ 253.631023][T15044] irq event stamp: 10813 [ 253.631625][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 253.633029][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 253.634356][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 253.635716][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 253.637043][T15044] ---[ end trace 0000000000000000 ]--- [ 253.637989][T15044] page: refcount:1213 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 253.638006][T15044] head: order:9 mapcount:700 entire_mapcount:0 nr_pages_mapped:700 pincount:0 [ 253.638016][T15044] memcg:ffff0000c19c2580 [ 253.638025][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 253.638040][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 253.638053][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 253.638061][T15044] raw: 0000000000000000 0000000000000000 000004bdffffffff ffff0000c19c2580 [ 253.638069][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 253.638076][T15044] head: 0000000000000000 0000000000000000 000004bdffffffff ffff0000c19c2580 [ 253.638083][T15044] head: 05ffc00000000209 fffffdffc43b8001 000002bc000002bb 00000000ffffffff [ 253.638090][T15044] head: ffffffff000002bb 0000000000000024 00000000ffffffff 0000000000000200 [ 253.638096][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page + nr_pages - 1), const struct page *: (const struct folio *)_compound_head(page + nr_pages - 1), struct page *: (struct folio *)_compound_head(page + nr_pages - 1))) != folio) [ 253.638137][T15044] ------------[ cut here ]------------ [ 253.638139][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:427 __folio_rmap_sanity_checks+0x2ec/0x430 [ 253.657187][T15044] Modules linked in: [ 253.657759][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 253.659819][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 253.660598][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 253.662205][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 253.663417][T15044] pc : __folio_rmap_sanity_checks+0x2ec/0x430 [ 253.664372][T15044] lr : __folio_rmap_sanity_checks+0x2ec/0x430 [ 253.665367][T15044] sp : ffff8000a0a672c0 [ 253.666045][T15044] x29: ffff8000a0a672c0 x28: 0000000000000001 x27: 0000000020355000 [ 253.667407][T15044] x26: 00e800014f157b43 x25: dfff800000000000 x24: 000000000020ac5d [ 253.668723][T15044] x23: fffffdffc43c5600 x22: fffffdffc43c55c8 x21: 0000000000000000 [ 253.669997][T15044] x20: 0000000000000001 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 253.671302][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 253.672550][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 253.673858][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 253.675186][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000b4540 x6 : ffff800080563af4 [ 253.676481][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 253.677789][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000e5 [ 253.679064][T15044] Call trace: [ 253.679552][T15044] __folio_rmap_sanity_checks+0x2ec/0x430 (P) [ 253.680512][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 253.681336][T15044] set_pte_range+0x2e4/0x49c [ 253.682046][T15044] filemap_map_pages+0xb54/0x155c [ 253.682823][T15044] handle_mm_fault+0x2b64/0x4d34 [ 253.683573][T15044] __get_user_pages+0x1f40/0x2da0 [ 253.684413][T15044] populate_vma_page_range+0x258/0x348 [ 253.685317][T15044] __mm_populate+0x208/0x330 [ 253.686090][T15044] vm_mmap_pgoff+0x398/0x45c [ 253.686853][T15044] ksys_mmap_pgoff+0x394/0x5b8 [ 253.687648][T15044] __arm64_sys_mmap+0xf8/0x110 [ 253.688399][T15044] invoke_syscall+0x98/0x2b8 [ 253.689150][T15044] el0_svc_common+0x130/0x23c [ 253.689904][T15044] do_el0_svc+0x48/0x58 [ 253.690596][T15044] el0_svc+0x58/0x180 [ 253.691200][T15044] el0t_64_sync_handler+0x84/0x12c [ 253.692008][T15044] el0t_64_sync+0x198/0x19c [ 253.692703][T15044] irq event stamp: 10813 [ 253.693361][T15044] hardirqs last enabled at (10813): [] exit_to_kernel_mode+0xc0/0xf0 [ 253.694884][T15044] hardirqs last disabled at (10812): [] handle_softirqs+0x988/0xc88 [ 253.696371][T15044] softirqs last enabled at (10090): [] handle_softirqs+0xaf8/0xc88 [ 253.697942][T15044] softirqs last disabled at (7333): [] __do_softirq+0x14/0x20 [ 253.699356][T15044] ---[ end trace 0000000000000000 ]--- [ 253.700536][T15044] page: refcount:1214 mapcount:0 mapping:000000007f72e850 index:0x0 pfn:0x14ee00 [ 253.700911][T15044] head: order:9 mapcount:701 entire_mapcount:0 nr_pages_mapped:701 pincount:0 [ 253.700921][T15044] memcg:ffff0000c19c2580 [ 253.700929][T15044] aops:shmem_aops ino:2 dentry name(?):"memory.events.local" [ 253.700939][T15044] flags: 0x5ffc0000002017d(locked|referenced|uptodate|dirty|lru|active|head|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 253.700950][T15044] raw: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 253.700957][T15044] raw: 0000000000000000 0000000000000000 000004beffffffff ffff0000c19c2580 [ 253.700965][T15044] head: 05ffc0000002017d fffffdffc3a27648 fffffdffc43ac008 ffff0000db3283a0 [ 253.700972][T15044] head: 0000000000000000 0000000000000000 000004beffffffff ffff0000c19c2580 [ 253.700979][T15044] head: 05ffc00000000209 fffffdffc43b8001 000002bd000002bc 00000000ffffffff [ 253.700986][T15044] head: ffffffff000002bc 0000000000000024 00000000ffffffff 0000000000000200 [ 253.700991][T15044] page dumped because: VM_WARN_ON_FOLIO((_Generic((page), const struct page *: (const struct folio *)_compound_head(page), struct page *: (struct folio *)_compound_head(page))) != folio) [ 253.701031][T15044] ------------[ cut here ]------------ [ 253.701034][T15044] WARNING: CPU: 1 PID: 15044 at ./include/linux/rmap.h:426 __folio_rmap_sanity_checks+0x2c0/0x430 [ 253.719793][T15044] Modules linked in: [ 253.720426][T15044] CPU: 1 UID: 0 PID: 15044 Comm: syz.3.402 Tainted: G B W 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT [ 253.722405][T15044] Tainted: [B]=BAD_PAGE, [W]=WARN [ 253.723133][T15044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 253.724626][T15044] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 253.725837][T15044] pc : __folio_rmap_sanity_checks+0x2c0/0x430 [ 253.726761][T15044] lr : __folio_rmap_sanity_checks+0x2c0/0x430 [ 253.727666][T15044] sp : ffff8000a0a672c0 [ 253.728336][T15044] x29: ffff8000a0a672c0 x28: 0000000000000003 x27: 0000000020358000 [ 253.729642][T15044] x26: 00e800014f15ab43 x25: dfff800000000000 x24: 000000000020ac5d [ 253.730856][T15044] x23: fffffdffc43c5688 x22: fffffdffc43c5680 x21: 0000000000000000 [ 253.732024][T15044] x20: 0000000000000003 x19: fffffdffc43b8000 x18: 1fffe000337a0688 [ 253.733176][T15044] x17: 3030303030303020 x16: ffff80008b007230 x15: 0000000000000001 [ 253.734245][T15044] x14: 1ffff0001414cd84 x13: 0000000000000000 x12: 0000000000000000 [ 253.735399][T15044] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 14e578ac1de0e000 [ 253.736592][T15044] x8 : 14e578ac1de0e000 x7 : 00000000000b5478 x6 : ffff800080563af4 [ 253.737772][T15044] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807de560 [ 253.738988][T15044] x2 : 0000000000000002 x1 : 0000000000000001 x0 : 00000000000000b8 [ 253.740177][T15044] Call trace: [ 253.740713][T15044] __folio_rmap_sanity_checks+0x2c0/0x430 (P) [ 253.741707][T15044] folio_add_file_rmap_ptes+0x84/0x8e8 [ 253.742548][T15044] set_pte_range+0x2e4/0x49c [ 253.743238][T15044] filemap_map_pages+0xb54/0x155c [ 253.743978][T15044] handle_mm_fault+0x2b64/0x4d34 [ 253.744704][T15044] __get_user_pages+0x1f40/0x2da0 [ 253.745446][T15044] populate_vma_page_range+0x258/0x348