====================================================== WARNING: the mand mount option is being deprecated and will be removed in v5.15! ====================================================== netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. BUG: Bad page state in process syz-executor.3 pfn:ab7b6 page:ffffea0002aded80 count:0 mapcount:0 mapping: (null) index:0x2f flags: 0xfff0000000100c(referenced|uptodate|private) raw: 00fff0000000100c 0000000000000000 000000000000002f 00000000ffffffff raw: ffffea00023e07e0 ffffea0002bc1560 ffff8880a05a2a50 0000000000000000 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set bad because of flags: 0x1000(private) Modules linked in: CPU: 1 PID: 11038 Comm: syz-executor.3 Not tainted 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f34677665a9 RSP: 002b:00007f34660da168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007f3467887f80 RCX: 00007f34677665a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007f34677c1580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fff801f787f R14: 00007f34660da300 R15: 0000000000022000 BUG: Bad page state in process syz-executor.3 pfn:8f81f page:ffffea00023e07c0 count:0 mapcount:0 mapping: (null) index:0x2e flags: 0xfff0000000100c(referenced|uptodate|private) raw: 00fff0000000100c 0000000000000000 000000000000002e 00000000ffffffff raw: ffffea00024ece20 ffffea0002adeda0 ffff8880a05a2b40 0000000000000000 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set bad because of flags: 0x1000(private) Modules linked in: CPU: 1 PID: 11038 Comm: syz-executor.3 Tainted: G B 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f34677665a9 RSP: 002b:00007f34660da168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007f3467887f80 RCX: 00007f34677665a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007f34677c1580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fff801f787f R14: 00007f34660da300 R15: 0000000000022000 BUG: Bad page state in process syz-executor.3 pfn:93b38 page:ffffea00024ece00 count:0 mapcount:0 mapping: (null) index:0x2d flags: 0xfff0000000100c(referenced|uptodate|private) raw: 00fff0000000100c 0000000000000000 000000000000002d 00000000ffffffff raw: ffffea0002a531e0 ffffea00023e07e0 ffff8880a05a2c30 0000000000000000 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set bad because of flags: 0x1000(private) Modules linked in: CPU: 1 PID: 11038 Comm: syz-executor.3 Tainted: G B 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f34677665a9 RSP: 002b:00007f34660da168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007f3467887f80 RCX: 00007f34677665a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007f34677c1580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fff801f787f R14: 00007f34660da300 R15: 0000000000022000 netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. 9pnet: Insufficient options for proto=fd 9pnet: Insufficient options for proto=fd ERROR: (device loop3): txAbort: BUG: Bad page state in process syz-executor.3 pfn:b0591 page:ffffea0002c16440 count:0 mapcount:0 mapping: (null) index:0x2f 9pnet: Insufficient options for proto=fd ERROR: (device loop0): txAbort: flags: 0xfff0000000100c(referenced|uptodate|private) 9pnet: Insufficient options for proto=fd 9pnet: Insufficient options for proto=fd raw: 00fff0000000100c 0000000000000000 000000000000002f 00000000ffffffff BUG: Bad page state in process syz-executor.0 pfn:9f70b raw: ffffea00027d6a60 ffffea0002ab6760 ffff8880928f8c30 0000000000000000 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set page:ffffea00027dc2c0 count:0 mapcount:0 mapping: (null) index:0x2f bad because of flags: 0x1000(private) Modules linked in: flags: 0xfff0000000100c(referenced|uptodate|private) CPU: 1 PID: 11089 Comm: syz-executor.3 Tainted: G B 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 raw: 00fff0000000100c 0000000000000000 000000000000002f 00000000ffffffff bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 raw: ffffea0002771a20 ffffea000288c0a0 ffff88809dacf870 0000000000000000 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 bad because of flags: 0x1000(private) jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 Modules linked in: do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f34677665a9 RSP: 002b:00007f34660da168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007f3467887f80 RCX: 00007f34677665a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007f34677c1580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fff801f787f R14: 00007f34660da300 R15: 0000000000022000 CPU: 0 PID: 11105 Comm: syz-executor.0 Tainted: G B 4.14.295-syzkaller #0 BUG: Bad page state in process syz-executor.3 pfn:9f5a9 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 page:ffffea00027d6a40 count:0 mapcount:0 mapping: (null) index:0x2e __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 flags: 0xfff0000000100c(referenced|uptodate|private) jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 raw: 00fff0000000100c 0000000000000000 000000000000002e 00000000ffffffff do_remount_sb+0x150/0x530 fs/super.c:868 raw: ffffea0002b035e0 ffffea0002c16460 ffff8880928f8d20 0000000000000000 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 bad because of flags: 0x1000(private) entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f902db9c5a9 RSP: 002b:00007f902c510168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 Modules linked in: RAX: ffffffffffffffda RBX: 00007f902dcbdf80 RCX: 00007f902db9c5a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007f902dbf7580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffeeb2e79ef R14: 00007f902c510300 R15: 0000000000022000 BUG: Bad page state in process syz-executor.0 pfn:9dc68 CPU: 1 PID: 11089 Comm: syz-executor.3 Tainted: G B 4.14.295-syzkaller #0 page:ffffea0002771a00 count:0 mapcount:0 mapping: (null) index:0x2e Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 flags: 0xfff0000000100c(referenced|uptodate|private) free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 raw: 00fff0000000100c 0000000000000000 000000000000002e 00000000ffffffff release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 raw: ffffea000274b4a0 ffffea00027dc2e0 ffff88809dacf960 0000000000000000 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 bad because of flags: 0x1000(private) do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 Modules linked in: SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f34677665a9 RSP: 002b:00007f34660da168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007f3467887f80 RCX: 00007f34677665a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007f34677c1580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fff801f787f R14: 00007f34660da300 R15: 0000000000022000 CPU: 0 PID: 11105 Comm: syz-executor.0 Tainted: G B 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 BUG: Bad page state in process syz-executor.3 pfn:ac0d7 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 page:ffffea0002b035c0 count:0 mapcount:0 mapping: (null) index:0x2d release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 flags: 0xfff0000000100c(referenced|uptodate|private) raw: 00fff0000000100c 0000000000000000 000000000000002d 00000000ffffffff jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 raw: ffffea0002d19ee0 ffffea00027d6a60 ffff8880928f8e10 0000000000000000 do_remount_sb+0x150/0x530 fs/super.c:868 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set bad because of flags: 0x1000(private) do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 Modules linked in: SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f902db9c5a9 RSP: 002b:00007f902c510168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007f902dcbdf80 RCX: 00007f902db9c5a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007f902dbf7580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffeeb2e79ef R14: 00007f902c510300 R15: 0000000000022000 CPU: 1 PID: 11089 Comm: syz-executor.3 Tainted: G B 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 BUG: Bad page state in process syz-executor.0 pfn:9d2d2 page:ffffea000274b480 count:0 mapcount:0 mapping: (null) index:0x2d free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 flags: 0xfff0000000100c(referenced|uptodate|private) __pagevec_release+0x84/0xe0 mm/swap.c:837 raw: 00fff0000000100c 0000000000000000 000000000000002d 00000000ffffffff pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 raw: ffffea000272fd20 ffffea0002771a20 ffff88809dacfa50 0000000000000000 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set bad because of flags: 0x1000(private) jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 Modules linked in: SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f34677665a9 RSP: 002b:00007f34660da168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007f3467887f80 RCX: 00007f34677665a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007f34677c1580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fff801f787f R14: 00007f34660da300 R15: 0000000000022000 CPU: 0 PID: 11105 Comm: syz-executor.0 Tainted: G B 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f902db9c5a9 RSP: 002b:00007f902c510168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007f902dcbdf80 RCX: 00007f902db9c5a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007f902dbf7580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffeeb2e79ef R14: 00007f902c510300 R15: 0000000000022000 9pnet: Insufficient options for proto=fd 9pnet: Insufficient options for proto=fd 9pnet: Insufficient options for proto=fd 9pnet: Insufficient options for proto=fd ERROR: (device loop0): txAbort: ERROR: (device loop3): txAbort: BUG: Bad page state in process syz-executor.0 pfn:9dc3e page:ffffea0002770f80 count:0 mapcount:0 mapping: (null) index:0x2f flags: 0xfff0000000100c(referenced|uptodate|private) raw: 00fff0000000100c 0000000000000000 000000000000002f 00000000ffffffff BUG: Bad page state in process syz-executor.3 pfn:b1198 raw: ffffea00026ea060 ffffea0002787ce0 ffff8880a054fa50 0000000000000000 page:ffffea0002c46600 count:0 mapcount:0 mapping: (null) index:0x2f page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set flags: 0xfff0000000100c(referenced|uptodate|private) 9pnet: Insufficient options for proto=fd raw: 00fff0000000100c 0000000000000000 000000000000002f 00000000ffffffff bad because of flags: 0x1000(private) Modules linked in: 9pnet: Insufficient options for proto=fd 9pnet: Insufficient options for proto=fd raw: ffffea0002649020 ffffea0002ad7a60 ffff88809a0ea690 0000000000000000 9pnet: Insufficient options for proto=fd CPU: 1 PID: 11158 Comm: syz-executor.0 Tainted: G B 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set bad because of flags: 0x1000(private) jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 Modules linked in: do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f902db9c5a9 RSP: 002b:00007f902c510168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007f902dcbdf80 RCX: 00007f902db9c5a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007f902dbf7580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffeeb2e79ef R14: 00007f902c510300 R15: 0000000000022000 CPU: 0 PID: 11163 Comm: syz-executor.3 Tainted: G B 4.14.295-syzkaller #0 BUG: Bad page state in process syz-executor.0 pfn:9ba81 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 page:ffffea00026ea040 count:0 mapcount:0 mapping: (null) index:0x2e jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 flags: 0xfff0000000100c(referenced|uptodate|private) do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 raw: 00fff0000000100c 0000000000000000 000000000000002e 00000000ffffffff SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 raw: ffffea00026a33a0 ffffea0002770fa0 ffff8880a054fb40 0000000000000000 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f34677665a9 RSP: 002b:00007f34660b9168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007f3467888050 RCX: 00007f34677665a9 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007f34677c1580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fff801f787f R14: 00007f34660b9300 R15: 0000000000022000 BUG: Bad page state in process syz-executor.3 pfn:99240 bad because of flags: 0x1000(private) Modules linked in: CPU: 1 PID: 11158 Comm: syz-executor.0 Tainted: G B 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 page:ffffea0002649000 count:0 mapcount:0 mapping: (null) index:0x2e __pagevec_release+0x84/0xe0 mm/swap.c:837 flags: 0xfff0000000100c(referenced|uptodate|private) pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 raw: 00fff0000000100c 0000000000000000 000000000000002e 00000000ffffffff raw: ffffea00025fce20 ffffea0002c46620 ffff88809a0ea780 0000000000000000 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 bad because of flags: 0x1000(private) do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 Modules linked in: SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f902db9c5a9 RSP: 002b:00007f902c510168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007f902dcbdf80 RCX: 00007f902db9c5a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007f902dbf7580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 9pnet: Insufficient options for proto=fd R13: 00007ffeeb2e79ef R14: 00007f902c510300 R15: 0000000000022000 CPU: 0 PID: 11163 Comm: syz-executor.3 Tainted: G B 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 BUG: Bad page state in process syz-executor.0 pfn:9a8ce bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 page:ffffea00026a3380 count:0 mapcount:0 mapping: (null) index:0x2d __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 flags: 0xfff0000000100c(referenced|uptodate|private) raw: 00fff0000000100c 0000000000000000 000000000000002d 00000000ffffffff jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 raw: ffffea00028e6b60 ffffea00026ea060 ffff8880a054fc30 0000000000000000 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 bad because of flags: 0x1000(private) SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 Modules linked in: do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f34677665a9 RSP: 002b:00007f34660b9168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007f3467888050 RCX: 00007f34677665a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007f34677c1580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fff801f787f R14: 00007f34660b9300 R15: 0000000000022000 BUG: Bad page state in process syz-executor.3 pfn:97f38 CPU: 1 PID: 11158 Comm: syz-executor.0 Tainted: G B 4.14.295-syzkaller #0 page:ffffea00025fce00 count:0 mapcount:0 mapping: (null) index:0x2d Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 flags: 0xfff0000000100c(referenced|uptodate|private) __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 raw: 00fff0000000100c 0000000000000000 000000000000002d 00000000ffffffff raw: ffffea0002bc7b20 ffffea0002649020 ffff88809a0ea870 0000000000000000 jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 bad because of flags: 0x1000(private) Modules linked in: SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f902db9c5a9 RSP: 002b:00007f902c510168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007f902dcbdf80 RCX: 00007f902db9c5a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007f902dbf7580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffeeb2e79ef R14: 00007f902c510300 R15: 0000000000022000 CPU: 1 PID: 11163 Comm: syz-executor.3 Tainted: G B 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f34677665a9 RSP: 002b:00007f34660b9168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007f3467888050 RCX: 00007f34677665a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007f34677c1580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fff801f787f R14: 00007f34660b9300 R15: 0000000000022000 ERROR: (device loop0): txAbort: 9pnet: Insufficient options for proto=fd BUG: Bad page state in process syz-executor.0 pfn:9c092 ERROR: (device loop3): txAbort: BUG: Bad page state in process syz-executor.3 pfn:8f850 page:ffffea0002702480 count:0 mapcount:0 mapping: (null) index:0x2f page:ffffea00023e1400 count:0 mapcount:0 mapping: (null) index:0x2f flags: 0xfff0000000100c(referenced|uptodate|private) flags: 0xfff0000000100c(referenced|uptodate|private) raw: 00fff0000000100c 0000000000000000 000000000000002f 00000000ffffffff raw: 00fff0000000100c 0000000000000000 000000000000002f 00000000ffffffff raw: ffffea0002a5c460 ffffea00026f6fe0 ffff8880b009b4b0 0000000000000000 raw: ffffea0002be2ee0 ffffea0002d4e160 ffff8880a9471870 0000000000000000 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set bad because of flags: 0x1000(private) Modules linked in: CPU: 0 PID: 11232 Comm: syz-executor.3 Tainted: G B 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 bad because of flags: 0x1000(private) pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 Modules linked in: jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f34677665a9 RSP: 002b:00007f34660da168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007f3467887f80 RCX: 00007f34677665a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007f34677c1580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fff801f787f R14: 00007f34660da300 R15: 0000000000022000 CPU: 1 PID: 11226 Comm: syz-executor.0 Tainted: G B 4.14.295-syzkaller #0 BUG: Bad page state in process syz-executor.3 pfn:a9711 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 page:ffffea0002a5c440 count:0 mapcount:0 mapping: (null) index:0x2e release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 flags: 0xfff0000000100c(referenced|uptodate|private) jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 raw: 00fff0000000100c 0000000000000000 000000000000002e 00000000ffffffff do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 raw: ffffea0002bd97e0 ffffea00023e1420 ffff8880b009b5a0 0000000000000000 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set RIP: 0033:0x7f902db9c5a9 RSP: 002b:00007f902c510168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007f902dcbdf80 RCX: 00007f902db9c5a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007f902dbf7580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffeeb2e79ef R14: 00007f902c510300 R15: 0000000000022000 BUG: Bad page state in process syz-executor.0 pfn:af8bb bad because of flags: 0x1000(private) page:ffffea0002be2ec0 count:0 mapcount:0 mapping: (null) index:0x2e Modules linked in: flags: 0xfff0000000100c(referenced|uptodate|private) CPU: 0 PID: 11232 Comm: syz-executor.3 Tainted: G B 4.14.295-syzkaller #0 raw: 00fff0000000100c 0000000000000000 000000000000002e 00000000ffffffff Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 raw: ffffea0002d2d260 ffffea00027024a0 ffff8880a9471960 0000000000000000 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set __pagevec_release+0x84/0xe0 mm/swap.c:837 bad because of flags: 0x1000(private) pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 Modules linked in: jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f34677665a9 RSP: 002b:00007f34660da168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007f3467887f80 RCX: 00007f34677665a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007f34677c1580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fff801f787f R14: 00007f34660da300 R15: 0000000000022000 CPU: 1 PID: 11226 Comm: syz-executor.0 Tainted: G B 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 BUG: Bad page state in process syz-executor.3 pfn:af65f Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 page:ffffea0002bd97c0 count:0 mapcount:0 mapping: (null) index:0x2d free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 flags: 0xfff0000000100c(referenced|uptodate|private) __pagevec_release+0x84/0xe0 mm/swap.c:837 raw: 00fff0000000100c 0000000000000000 000000000000002d 00000000ffffffff pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 raw: ffffea00027324e0 ffffea0002a5c460 ffff8880b009b690 0000000000000000 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 bad because of flags: 0x1000(private) do_remount_sb+0x150/0x530 fs/super.c:868 Modules linked in: do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f902db9c5a9 RSP: 002b:00007f902c510168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007f902dcbdf80 RCX: 00007f902db9c5a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007f902dbf7580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffeeb2e79ef R14: 00007f902c510300 R15: 0000000000022000 CPU: 0 PID: 11232 Comm: syz-executor.3 Tainted: G B 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f34677665a9 RSP: 002b:00007f34660da168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007f3467887f80 RCX: 00007f34677665a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007f34677c1580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fff801f787f R14: 00007f34660da300 R15: 0000000000022000 BUG: Bad page state in process syz-executor.0 pfn:b4b49 page:ffffea0002d2d240 count:0 mapcount:0 mapping: (null) index:0x2d flags: 0xfff0000000100c(referenced|uptodate|private) raw: 00fff0000000100c 0000000000000000 000000000000002d 00000000ffffffff raw: ffffea0002a9a360 ffffea0002be2ee0 ffff8880a9471a50 0000000000000000 page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set bad because of flags: 0x1000(private) Modules linked in: CPU: 1 PID: 11226 Comm: syz-executor.0 Tainted: G B 4.14.295-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 bad_page.cold+0xdb/0x100 mm/page_alloc.c:576 free_hot_cold_page_list+0x93/0x300 mm/page_alloc.c:2663 release_pages+0x828/0xbf0 mm/swap.c:820 __pagevec_release+0x84/0xe0 mm/swap.c:837 pagevec_release include/linux/pagevec.h:78 [inline] truncate_inode_pages_range+0x5ce/0x13e0 mm/truncate.c:320 jfs_remount+0x41f/0x5a0 fs/jfs/super.c:485 do_remount_sb+0x150/0x530 fs/super.c:868 do_remount fs/namespace.c:2393 [inline] do_mount+0x15f3/0x2a30 fs/namespace.c:2896 SYSC_mount fs/namespace.c:3121 [inline] SyS_mount+0xa8/0x120 fs/namespace.c:3098 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x7f902db9c5a9 RSP: 002b:00007f902c510168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 RAX: ffffffffffffffda RBX: 00007f902dcbdf80 RCX: 00007f902db9c5a9 RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000000 RBP: 00007f902dbf7580 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000060 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffeeb2e79ef R14: 00007f902c510300 R15: 0000000000022000 8021q: adding VLAN 0 to HW filter on device team0 bond0: Enslaving team0 as an active interface with an up link bond0: Releasing backup interface team0 bridge0: port 3(team0) entered blocking state bridge0: port 3(team0) entered disabled state device team0 entered promiscuous mode device team_slave_0 entered promiscuous mode device team_slave_1 entered promiscuous mode device team0 left promiscuous mode device team_slave_0 left promiscuous mode device team_slave_1 left promiscuous mode bridge0: port 3(team0) entered disabled state 8021q: adding VLAN 0 to HW filter on device team0 bond0: Enslaving team0 as an active interface with an up link bond0: Releasing backup interface team0 bridge0: port 3(team0) entered blocking state bridge0: port 3(team0) entered disabled state device team0 entered promiscuous mode device team_slave_0 entered promiscuous mode device team_slave_1 entered promiscuous mode L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. device team0 left promiscuous mode PM: Starting manual resume from disk device team_slave_0 left promiscuous mode device team_slave_1 left promiscuous mode bridge0: port 3(team0) entered disabled state PM: Starting manual resume from disk PM: Starting manual resume from disk 8021q: adding VLAN 0 to HW filter on device team0 bond0: Enslaving team0 as an active interface with an up link bond0: Releasing backup interface team0 bridge0: port 3(team0) entered blocking state bridge0: port 3(team0) entered disabled state device team0 entered promiscuous mode device team_slave_0 entered promiscuous mode device team_slave_1 entered promiscuous mode PM: Starting manual resume from disk device team0 left promiscuous mode device team_slave_0 left promiscuous mode PM: Starting manual resume from disk device team_slave_1 left promiscuous mode bridge0: port 3(team0) entered disabled state audit: type=1800 audit(1664939553.973:21): pid=11655 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="syz-executor.3" name="bus" dev="sda1" ino=14155 res=0 8021q: adding VLAN 0 to HW filter on device team0 PM: Starting manual resume from disk bond0: Enslaving team0 as an active interface with an up link bond0: Releasing backup interface team0 bridge0: port 3(team0) entered blocking state bridge0: port 3(team0) entered disabled state device team0 entered promiscuous mode device team_slave_0 entered promiscuous mode device team_slave_1 entered promiscuous mode netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. ptrace attach of "/root/syz-executor.4 exec"[7996] was attempted by " netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'. netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. PM: Starting manual resume from disk netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'. netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. ptrace attach of "/root/syz-executor.4 exec"[7996] was attempted by " audit: type=1800 audit(1664939554.904:22): pid=11752 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="syz-executor.3" name="bus" dev="sda1" ino=14135 res=0 netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'. ptrace attach of "/root/syz-executor.4 exec"[7996] was attempted by " netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. audit: type=1800 audit(1664939555.344:23): pid=11798 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="syz-executor.2" name="bus" dev="sda1" ino=14146 res=0