syz-executor139[3546]: segfault at 0 ip 00007f82ec855e1e sp 00007fffa1214cf8 error 4 in syz-executor1392570341[7f82ec826000+7e000] likely on CPU 0 (core 0, socket 0) Code: fd d7 c9 0f bc d1 c5 fe 7f 27 c5 fe 7f 6f 20 c5 fe 7f 77 40 c5 fe 7f 7f 60 49 83 c0 1f 49 29 d0 48 8d 7c 17 61 e9 d2 04 00 00 fe 6f 1e c5 fe 6f 56 20 c5 fd 74 cb c5 fd d7 d1 49 83 f8 21 0f ------------[ cut here ]------------ WARNING: CPU: 1 PID: 3546 at include/linux/backing-dev.h:246 folio_account_dirtied mm/page-writeback.c:2565 [inline] WARNING: CPU: 1 PID: 3546 at include/linux/backing-dev.h:246 __folio_mark_dirty+0x924/0x1140 mm/page-writeback.c:2616 Modules linked in: CPU: 1 PID: 3546 Comm: syz-executor139 Not tainted 6.1.85-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 RIP: 0010:inode_to_wb include/linux/backing-dev.h:243 [inline] RIP: 0010:folio_account_dirtied mm/page-writeback.c:2565 [inline] RIP: 0010:__folio_mark_dirty+0x924/0x1140 mm/page-writeback.c:2616 Code: e9 90 f8 ff ff e8 8c ee cf ff 0f 0b e9 e3 f8 ff ff e8 80 ee cf ff 4c 89 f7 48 8b 74 24 20 e8 53 91 2e 00 eb 9f e8 6c ee cf ff <0f> 0b e9 36 fb ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c f8 f8 ff RSP: 0018:ffffc90003c2f4b8 EFLAGS: 00010093 RAX: ffffffff81baa884 RBX: 0000000000000000 RCX: ffff888017fd8000 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffff888012894978 R08: ffffffff81baa3b4 R09: ffffed1002512930 R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000001 R13: ffff888012894800 R14: ffffea0001dfe4c0 R15: 1ffff1100251292f FS: 0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000055656b8cd458 CR3: 000000000ce8e000 CR4: 00000000003506e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: __set_page_dirty include/linux/pagemap.h:1088 [inline] mark_buffer_dirty+0x34f/0x7d0 fs/buffer.c:1105 gfs2_unpin+0x129/0xa60 fs/gfs2/lops.c:111 buf_lo_after_commit+0x14b/0x1a0 fs/gfs2/lops.c:747 lops_after_commit fs/gfs2/lops.h:49 [inline] gfs2_log_flush+0x1151/0x2610 fs/gfs2/log.c:1116 gfs2_kill_sb+0x50/0xd0 fs/gfs2/ops_fstype.c:1732 deactivate_locked_super+0xa0/0x110 fs/super.c:332 cleanup_mnt+0x490/0x520 fs/namespace.c:1186 task_work_run+0x246/0x300 kernel/task_work.c:179 exit_task_work include/linux/task_work.h:38 [inline] do_exit+0xa73/0x26a0 kernel/exit.c:869 do_group_exit+0x202/0x2b0 kernel/exit.c:1019 get_signal+0x16f7/0x17d0 kernel/signal.c:2862 arch_do_signal_or_restart+0xb0/0x1a10 arch/x86/kernel/signal.c:871 exit_to_user_mode_loop+0x6a/0x100 kernel/entry/common.c:174 exit_to_user_mode_prepare+0xb1/0x140 kernel/entry/common.c:210 irqentry_exit_to_user_mode+0x5/0x30 kernel/entry/common.c:316 exc_page_fault+0x1c0/0x660 arch/x86/mm/fault.c:1521 asm_exc_page_fault+0x22/0x30 arch/x86/include/asm/idtentry.h:570 RIP: 0033:0x7f82ec855e1e Code: Unable to access opcode bytes at 0x7f82ec855df4. RSP: 002b:00007fffa1214cf8 EFLAGS: 00010287 RAX: 00007fffa1214d90 RBX: 0000000020000180 RCX: 0000000000000000 RDX: 00000000000000e0 RSI: 0000000000000000 RDI: 00007fffa1214d90 RBP: 0000000000000000 R08: 00000000000000e0 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffa1214d90 R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 ---------------- Code disassembly (best guess): 0: fd std 1: d7 xlat %ds:(%rbx) 2: c9 leave 3: 0f bc d1 bsf %ecx,%edx 6: c5 fe 7f 27 vmovdqu %ymm4,(%rdi) a: c5 fe 7f 6f 20 vmovdqu %ymm5,0x20(%rdi) f: c5 fe 7f 77 40 vmovdqu %ymm6,0x40(%rdi) 14: c5 fe 7f 7f 60 vmovdqu %ymm7,0x60(%rdi) 19: 49 83 c0 1f add $0x1f,%r8 1d: 49 29 d0 sub %rdx,%r8 20: 48 8d 7c 17 61 lea 0x61(%rdi,%rdx,1),%rdi 25: e9 d2 04 00 00 jmp 0x4fc * 2a: c5 fe 6f 1e vmovdqu (%rsi),%ymm3 <-- trapping instruction 2e: c5 fe 6f 56 20 vmovdqu 0x20(%rsi),%ymm2 33: c5 fd 74 cb vpcmpeqb %ymm3,%ymm0,%ymm1 37: c5 fd d7 d1 vpmovmskb %ymm1,%edx 3b: 49 83 f8 21 cmp $0x21,%r8 3f: 0f .byte 0xf