flags: 0x4000000000008100(slab|head)
raw: 4000000000008100 0000000000000000 0000000000000000 0000000100010001
raw: dead000000000100 dead000000000200 ffff8881da802400 0000000000000000
page dumped because: VM_BUG_ON_PAGE(PageSlab(page))
------------[ cut here ]------------
kernel BUG at ./include/linux/mm.h:578!
invalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI
Modules linked in:
CPU: 0 PID: 19437 Comm: syz-executor.3 Not tainted 4.14.106+ #31
task: ffff8881c38c0000 task.stack: ffff8881cfc78000
RIP: 0010:page_mapcount include/linux/mm.h:578 [inline]
RIP: 0010:isolate_migratepages_block+0x15f9/0x1bc0 mm/compaction.c:814
RSP: 0018:ffff8881cfc7ea90 EFLAGS: 00010246
RAX: 0000000000040000 RBX: dffffc0000000000 RCX: 0000000000040000
RDX: ffffffff814ac1d9 RSI: ffffc900013a0000 RDI: ffffea00061e0338
RBP: ffffea00061e0300 R08: 0000000000000033 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: ffffea00061e0318
R13: 000000000018780c R14: ffffea00061e0000 R15: ffff8881cfc7ed30
FS:  00007f74d998d700(0000) GS:ffff8881dba00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fc193f91570 CR3: 00000001c37fe005 CR4: 00000000001606b0
Call Trace:
 isolate_migratepages mm/compaction.c:1260 [inline]
 compact_zone+0xcc6/0x2260 mm/compaction.c:1573
 compact_zone_order+0x119/0x180 mm/compaction.c:1702
 try_to_compact_pages+0x1f2/0x750 mm/compaction.c:1751
 __alloc_pages_direct_compact+0xba/0x310 mm/page_alloc.c:3392
 __alloc_pages_slowpath mm/page_alloc.c:3936 [inline]
 __alloc_pages_nodemask+0x1bb9/0x22e0 mm/page_alloc.c:4210
 __alloc_pages include/linux/gfp.h:461 [inline]
 __alloc_pages_node include/linux/gfp.h:474 [inline]
 alloc_pages_node include/linux/gfp.h:488 [inline]
 alloc_slab_page mm/slub.c:1437 [inline]
 allocate_slab mm/slub.c:1588 [inline]
 new_slab+0x397/0x480 mm/slub.c:1651
Code: 89 44 24 48 e8 19 e4 e5 ff 48 8b 44 24 48 48 8d 78 ff e9 82 f5 ff ff e8 06 e4 e5 ff 48 c7 c6 c0 30 4b 95 48 89 ef e8 b7 ea 00 00 <0f> 0b 48 89 44 24 60 e8 eb e3 e5 ff 48 8b 44 24 60 4c 8d 60 ff 
RIP: page_mapcount include/linux/mm.h:578 [inline] RSP: ffff8881cfc7ea90
RIP: isolate_migratepages_block+0x15f9/0x1bc0 mm/compaction.c:814 RSP: ffff8881cfc7ea90
ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
---[ end trace e52869375a232e7c ]---