------------[ cut here ]------------
kernel BUG at fs/f2fs/inode.c:965!
Internal error: Oops - BUG: 00000000f2000800 [#1]  SMP
Modules linked in:
CPU: 0 UID: 0 PID: 6721 Comm: syz.2.18 Not tainted syzkaller #0 PREEMPT 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025
pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--)
pc : f2fs_evict_inode+0x16cc/0x182c fs/f2fs/inode.c:965
lr : f2fs_evict_inode+0x16cc/0x182c fs/f2fs/inode.c:965
sp : ffff8000a01e6080
x29: ffff8000a01e6120 x28: dfff800000000000 x27: 1fffe0001ef34362
x26: ffff0000d5c28000 x25: ffff0000f79a1f78 x24: ffff0000f79a1b28
x23: 0000000000000000 x22: 0000001000000102 x21: 1fffe0001ef343ef
x20: ffff0000f79a1b10 x19: ffff0000f79a1ae8 x18: 00000000ffffffff
x17: ffff800093335000 x16: ffff800082defcc0 x15: 0000000000000001
x14: 1fffe0001ab852ce x13: 0000000000000000 x12: 0000000000000000
x11: 0000000000080000 x10: 000000000007ffff x9 : ffff8000a8640000
x8 : 0000000000080000 x7 : ffff800080229288 x6 : ffff8000802294cc
x5 : ffff0000f600e3c0 x4 : ffff8000a01e5e40 x3 : ffff8000826e8cc0
x2 : 0000000000000001 x1 : 0000000000000002 x0 : 0000000000000000
Call trace:
 f2fs_evict_inode+0x16cc/0x182c fs/f2fs/inode.c:965 (P)
 evict+0x414/0x928 fs/inode.c:810
 dispose_list fs/inode.c:852 [inline]
 prune_icache_sb+0x1bc/0x264 fs/inode.c:1000
 super_cache_scan+0x280/0x380 fs/super.c:224
 do_shrink_slab+0x650/0x11b0 mm/shrinker.c:437
 shrink_slab_memcg mm/shrinker.c:550 [inline]
 shrink_slab+0x668/0xfb8 mm/shrinker.c:628
 shrink_node_memcgs mm/vmscan.c:6056 [inline]
 shrink_node+0xe44/0x22b8 mm/vmscan.c:6095
 shrink_zones mm/vmscan.c:6339 [inline]
 do_try_to_free_pages+0x55c/0x1440 mm/vmscan.c:6401
 try_to_free_mem_cgroup_pages+0x2ec/0x9a4 mm/vmscan.c:6729
 try_charge_memcg+0x714/0xec4 mm/memcontrol.c:2356
 try_charge mm/memcontrol.c:2498 [inline]
 charge_memcg+0xa0/0x184 mm/memcontrol.c:4701
 __mem_cgroup_charge+0x38/0xb0 mm/memcontrol.c:4718
 mem_cgroup_charge include/linux/memcontrol.h:662 [inline]
 shmem_alloc_and_add_folio+0x6ec/0x10c4 mm/shmem.c:1922
 shmem_get_folio_gfp+0x4d4/0x159c mm/shmem.c:2535
 shmem_read_folio_gfp+0x8c/0xf0 mm/shmem.c:5933
 drm_gem_get_pages+0x1cc/0x7c0 drivers/gpu/drm/drm_gem.c:656
 drm_gem_shmem_get_pages_locked+0x1d4/0x364 drivers/gpu/drm/drm_gem_shmem_helper.c:200
 drm_gem_shmem_mmap+0x184/0x460 drivers/gpu/drm/drm_gem_shmem_helper.c:646
 drm_gem_shmem_object_mmap+0x28/0x38 include/drm/drm_gem_shmem_helper.h:277
 drm_gem_mmap_obj+0x170/0x574 drivers/gpu/drm/drm_gem.c:1167
 drm_gem_mmap+0x374/0x5a8 drivers/gpu/drm/drm_gem.c:1245
 vfs_mmap include/linux/fs.h:2405 [inline]
 mmap_file mm/internal.h:167 [inline]
 __mmap_new_file_vma mm/vma.c:2413 [inline]
 __mmap_new_vma mm/vma.c:2476 [inline]
 __mmap_region mm/vma.c:2670 [inline]
 mmap_region+0x1348/0x1d28 mm/vma.c:2740
 do_mmap+0x968/0xfac mm/mmap.c:558
 vm_mmap_pgoff+0x2d8/0x45c mm/util.c:581
 ksys_mmap_pgoff+0x394/0x5b8 mm/mmap.c:604
 __do_sys_mmap arch/arm64/kernel/sys.c:28 [inline]
 __se_sys_mmap arch/arm64/kernel/sys.c:21 [inline]
 __arm64_sys_mmap+0xf8/0x110 arch/arm64/kernel/sys.c:21
 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]
 invoke_syscall+0x98/0x254 arch/arm64/kernel/syscall.c:49
 el0_svc_common+0xe8/0x23c arch/arm64/kernel/syscall.c:132
 do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151
 el0_svc+0x5c/0x254 arch/arm64/kernel/entry-common.c:724
 el0t_64_sync_handler+0x84/0x12c arch/arm64/kernel/entry-common.c:743
 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:596
Code: c8097ec8 35ffffa9 17fffe10 978137d6 (d4210000) 
---[ end trace 0000000000000000 ]---