------------[ cut here ]------------
VFS: brelse: Trying to free free buffer
WARNING: CPU: 1 PID: 4853 at fs/buffer.c:1148 __brelse fs/buffer.c:1148 [inline]
WARNING: CPU: 1 PID: 4853 at fs/buffer.c:1148 brelse include/linux/buffer_head.h:325 [inline]
WARNING: CPU: 1 PID: 4853 at fs/buffer.c:1148 __invalidate_bh_lrus fs/buffer.c:1394 [inline]
WARNING: CPU: 1 PID: 4853 at fs/buffer.c:1148 invalidate_bh_lru+0x130/0x228 fs/buffer.c:1407
Modules linked in:
CPU: 1 PID: 4853 Comm: syz.3.283 Not tainted 5.15.173-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : __brelse fs/buffer.c:1148 [inline]
pc : brelse include/linux/buffer_head.h:325 [inline]
pc : __invalidate_bh_lrus fs/buffer.c:1394 [inline]
pc : invalidate_bh_lru+0x130/0x228 fs/buffer.c:1407
lr : __brelse fs/buffer.c:1148 [inline]
lr : brelse include/linux/buffer_head.h:325 [inline]
lr : __invalidate_bh_lrus fs/buffer.c:1394 [inline]
lr : invalidate_bh_lru+0x130/0x228 fs/buffer.c:1407
sp : ffff800008017df0
x29: ffff800008017df0 x28: ffff0000d1c18000 x27: ffff800008a7943c
x26: dfff800000000000 x25: 0000000000000001 x24: ffff0001b41a7298
x23: 0000000000000000 x22: dfff800000000000 x21: 0000000000000000
x20: ffff0000cc7206b8 x19: ffff800011d4d360 x18: 0000000000010002
x17: 0000000000010002 x16: ffff800011b4c108 x15: 00000000ffffffff
x14: ffff0000d1c18000 x13: 0000000000000001 x12: 0000000000000001
x11: 0000000000010001 x10: 0000000000010001 x9 : fc935373f6d9b500
x8 : fc935373f6d9b500 x7 : 0000000000000001 x6 : 0000000000000001
x5 : ffff800008017558 x4 : ffff800014c405e0 x3 : ffff800008555e80
x2 : 0000000000000001 x1 : 0000000100010001 x0 : 0000000000000027
Call trace:
 __brelse fs/buffer.c:1148 [inline]
 brelse include/linux/buffer_head.h:325 [inline]
 __invalidate_bh_lrus fs/buffer.c:1394 [inline]
 invalidate_bh_lru+0x130/0x228 fs/buffer.c:1407
 flush_smp_call_function_queue+0x3d0/0x8c4 kernel/smp.c:628
 generic_smp_call_function_single_interrupt+0x18/0x24 kernel/smp.c:544
 do_handle_IPI arch/arm64/kernel/smp.c:904 [inline]
 ipi_handler+0x15c/0x7d4 arch/arm64/kernel/smp.c:950
 handle_percpu_devid_irq+0x29c/0x7fc kernel/irq/chip.c:930
 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline]
 handle_irq_desc kernel/irq/irqdesc.c:652 [inline]
 handle_domain_irq+0xec/0x178 kernel/irq/irqdesc.c:707
 gic_handle_irq+0x78/0x1c8 drivers/irqchip/irq-gic-v3.c:765
 call_on_irq_stack+0x24/0x4c arch/arm64/kernel/entry.S:899
 do_interrupt_handler+0x74/0x94 arch/arm64/kernel/entry-common.c:267
 el1_interrupt+0x30/0x58 arch/arm64/kernel/entry-common.c:454
 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:470
 el1h_64_irq+0x78/0x7c arch/arm64/kernel/entry.S:522
 arch_local_irq_restore arch/arm64/include/asm/irqflags.h:122 [inline]
 seqcount_lockdep_reader_access+0x174/0x234 include/linux/seqlock.h:105
 read_seqbegin include/linux/seqlock.h:840 [inline]
 zone_span_seqbegin include/linux/memory_hotplug.h:83 [inline]
 page_outside_zone_boundaries mm/page_alloc.c:580 [inline]
 bad_range+0xa8/0x2b4 mm/page_alloc.c:607
 rmqueue mm/page_alloc.c:3760 [inline]
 get_page_from_freelist+0x3958/0x3b14 mm/page_alloc.c:4189
 __alloc_pages+0x20c/0x674 mm/page_alloc.c:5464
 alloc_pages_vma+0x294/0x7c0 mm/mempolicy.c:2146
 shmem_alloc_page mm/shmem.c:1588 [inline]
 shmem_alloc_and_acct_page+0x5bc/0xca0 mm/shmem.c:1613
 shmem_getpage_gfp+0x1144/0x20e4 mm/shmem.c:1908
 shmem_getpage mm/shmem.c:151 [inline]
 shmem_write_begin+0xe0/0x29c mm/shmem.c:2479
 generic_perform_write+0x24c/0x520 mm/filemap.c:3785
 __generic_file_write_iter+0x230/0x454 mm/filemap.c:3912
 generic_file_write_iter+0xb4/0x1b8 mm/filemap.c:3944
 call_write_iter include/linux/fs.h:2174 [inline]
 new_sync_write fs/read_write.c:507 [inline]
 vfs_write+0x884/0xb44 fs/read_write.c:594
 ksys_write+0x15c/0x26c fs/read_write.c:647
 __do_sys_write fs/read_write.c:659 [inline]
 __se_sys_write fs/read_write.c:656 [inline]
 __arm64_sys_write+0x7c/0x90 fs/read_write.c:656
 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline]
 invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:52
 el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:142
 do_el0_svc+0x58/0x14c arch/arm64/kernel/syscall.c:181
 el0_svc+0x7c/0x1f0 arch/arm64/kernel/entry-common.c:608
 el0t_64_sync_handler+0x84/0xe4 arch/arm64/kernel/entry-common.c:626
 el0t_64_sync+0x1a0/0x1a4 arch/arm64/kernel/entry.S:584
irq event stamp: 56882
hardirqs last  enabled at (56881): [<ffff800008843e14>] seqcount_lockdep_reader_access+0x164/0x234 include/linux/seqlock.h:105
hardirqs last disabled at (56882): [<ffff800011b4a7e4>] enter_el1_irq_or_nmi+0x10/0x1c arch/arm64/kernel/entry-common.c:227
softirqs last  enabled at (55602): [<ffff8000081b691c>] softirq_handle_end kernel/softirq.c:401 [inline]
softirqs last  enabled at (55602): [<ffff8000081b691c>] handle_softirqs+0xb88/0xdbc kernel/softirq.c:586
softirqs last disabled at (55581): [<ffff8000081b6fb4>] __do_softirq kernel/softirq.c:592 [inline]
softirqs last disabled at (55581): [<ffff8000081b6fb4>] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline]
softirqs last disabled at (55581): [<ffff8000081b6fb4>] invoke_softirq kernel/softirq.c:439 [inline]
softirqs last disabled at (55581): [<ffff8000081b6fb4>] __irq_exit_rcu+0x268/0x4d8 kernel/softirq.c:641
---[ end trace 6204ddf22cc739a3 ]---